GitLab

g_io_channel_read_line() may return NULL strings, so handle that.

Everything except real_connect() handled unencrypted private keys
just fine; in the TLS case with an unencrypted private key there
are no secrets.  So instead of just checking for shared key
connections before validating secrets, actually check if we need
secrets before trying to validate them.

Huzaifa S. Sidhpurwala authored Mar 01, 2010 and Dan Williams committed Mar 01, 2010

Allow PKCS#12 files to be used.  openvpn requires that all of
CA, client cert, and private key be in the same PKCS12 file, so the
UI widgets make sure that either all cert file chooser buttons
contain the selected PKCS#12 file, or none of them do.

This should also clean up handling of PEM private keys so that if
the key is unencrypted, the user is not asked for a password.

(heavily cleaned up and refactored by dcbw)

Magnus Kulke authored Feb 25, 2010 and Dan Williams committed Feb 25, 2010

(testcases and cleanups by dcbw)

And make sure we look the address up too, just to ensure it's
a numeric address and not a hostname.

Huzaifa S. Sidhpurwala authored Jan 18, 2010 and Dan Williams committed Jan 18, 2010

import/export quoting changes and testcase by dcbw.

Should build against any NM 0.7.x release really, but this was
forgotten for 0.7.1 and 0.7.2 releases, so fix it for consistency's
sake.

do_export() by Huzaifa S. Sidhpurwala <huzaifas@redhat.com> with
cleanups by me.  Testcases and import/export bugfixes by me.

Suggested by Juvenn Woo <machese@gmail.com>

Since openvpn doesn't appear to actually pass topology to the
script, we have to infer it from the 'ifconfig' arguments.  If the
second argument to ifconfig appears to be a netmask, then use it
as a netmask instead of the ptp address.

besides the fact that for some reason sscanf wasn't working, it's evil
and confusing, and we don't even need to use it.  Also add the ability
to set OPENVPN_DEBUG to get more info out of openvpn.