Mostly compatibility fixes following on from the 5.00 release. Also add a --no-xmlpost option to fall back to the old method (if you need this, it's a bug), and a --dump-http-traffic option for debugging. ftp://ftp.infradead.org/pub/openconnect/openconnect-5.01.tar.gz ftp://ftp.infradead.org/pub/openconnect/openconnect-5.01.tar.gz.asc David Woodhouse (22): Close HTTPS socket after various errors On failure to send HTTP request to an existing session, retry Update changelog Close https connection when falling back to non-xmlpost mode Improve changelog consistency Add --no-xmlpost option to fall back to old behaviour Add missing newline on error message When falling back to non-xmlpost, revert to original URL Be a little more lenient about XML errors Add --dump-http-traffic option Enable AES256 for GnuTLS DTLS Drop X-Aggregate-Auth: header in fallback mode Handle <client-cert-request> in aggregate auth mode Drop xmlpost argument to handle_auth_form() Use gnutls_pubkey_verify_data2() only if we have gnutls_pk_to_sign() Add /etc/ssl/ca-bundle.pem to list of potential system CA trust files Fix shadow 'ret' variable declaration in parse_xml_response() Check for broken OpenSSL versions at configure time Fix typo in warning message Fix --no-xmlpost Fix cipher in AES256-SHA Use GnuTLS 3.1.12 for Android build -- David Woodhouse Open Source Technology Centre David.Woodhouse at intel.com Intel Corporation -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 5745 bytes Desc: not available URL: <http://lists.infradead.org/pipermail/openconnect-devel/attachments/20130601/dd6b6d6a/attachment.bin>
