Updated versions of these patches will be placed at: https://gitlab.com/nmav/openconnect/tree/xml-config-improve On Mon, Dec 26, 2016 at 5:39 PM, Nikos Mavrogiannopoulos <n.mavrogiannopoulos at gmail.com> wrote: > The attached patches improve the XML configuration handling. The first > fixes the behavior of the client not being able to download the > configuration if the server doesn't provide any hash (doesn't address > the case where openconnect_set_xmlsha1 isn't called). The second > documents the fact that the configuration can be downloaded -without > connecting- using the --authenticate and -x flags. The last is an RFC > to replace the callback APIs with something more reasonable, i.e., a > flag to ask the client to download the config and a function for the > caller to retrieve it. > > I am not sure whether the SHA1 hash for xml configs is of any use at > all. Most likely the configuration will be downloaded, not every time, > but at specific times where the user would like to retrieve that > configuration (e.g., first connection, or first connection after a > client reset). > > If we agree on the API for xml config retrieval, I'll continue with a > patch to parse these configuration files. > > regards, > Nikos
