On Wed, Oct 29, 2014 at 2:15 AM, David Woodhouse <dwmw2 at infradead.org> wrote: >> Indeed, that wouldn't work. I believe that if needed that can be >> feasible to code (but still quite some work) in either gnutls or >> libopenconnect, using gnutls_privkey_import_ext2(). > I don't really want it in OpenConnect. I did that for TPM already, and > we moved that code into GnuTLS which is arguably where it belongs. > I suppose I could try building my Windows binary against OpenSSL and > using the CAPI engine :) Then you'll also need to install windows 98 :) The CAPI engine is deprecated so many years ago.
