[PATCH] improve xml config retrieval
Nikos Mavrogiannopoulos
n.mavrogiannopoulos at gmail.com
Mon Dec 26 08:54:24 PST 2016
Updated versions of these patches will be placed at:
https://gitlab.com/nmav/openconnect/tree/xml-config-improve
On Mon, Dec 26, 2016 at 5:39 PM, Nikos Mavrogiannopoulos
<n.mavrogiannopoulos at gmail.com> wrote:
> The attached patches improve the XML configuration handling. The first
> fixes the behavior of the client not being able to download the
> configuration if the server doesn't provide any hash (doesn't address
> the case where openconnect_set_xmlsha1 isn't called). The second
> documents the fact that the configuration can be downloaded -without
> connecting- using the --authenticate and -x flags. The last is an RFC
> to replace the callback APIs with something more reasonable, i.e., a
> flag to ask the client to download the config and a function for the
> caller to retrieve it.
>
> I am not sure whether the SHA1 hash for xml configs is of any use at
> all. Most likely the configuration will be downloaded, not every time,
> but at specific times where the user would like to retrieve that
> configuration (e.g., first connection, or first connection after a
> client reset).
>
> If we agree on the API for xml config retrieval, I'll continue with a
> patch to parse these configuration files.
>
> regards,
> Nikos
More information about the openconnect-devel
mailing list