On Thu, Jul 14, 2011 at 08:06:51PM -0700, David Woodhouse wrote: > On Fri, 2011-07-15 at 01:38 +0000, openconnect at lakedaemon.net wrote: > > > > Openconnect requires engine support and DTLSv1. > > DTLSv1 yes (well, it'll work without it but you really don't want to). > > We *could* live without ENGINE support. The only reason we use that is > if you have a TPM. Which presumably you don't on an Android device, and > it could easily be made optional in OpenConnect (it's just the > load_tpm_certificate() function, isn't it?) Ok, making that configurable in openconnect would really clean up a lot of changes to Android's openssl. thx, Jason.
