diff options
author | Adriaan de Jong <dejong@fox-it.com> | 2011-07-05 13:09:13 +0200 |
---|---|---|
committer | David Sommerseth <davids@redhat.com> | 2011-10-22 16:00:49 +0200 |
commit | 7dd8bbf574672b60d4776bee0ef9908cf1f49c2f (patch) | |
tree | 3f8dbf8d216011e7ad489a2e07333edc7dc273da /README.polarssl | |
parent | 88203950ef5ce2f23325ceff5ad247033dfa0005 (diff) | |
download | openvpn-7dd8bbf574672b60d4776bee0ef9908cf1f49c2f.tar.gz openvpn-7dd8bbf574672b60d4776bee0ef9908cf1f49c2f.tar.xz openvpn-7dd8bbf574672b60d4776bee0ef9908cf1f49c2f.zip |
Disabled X.509 track and username selection for PolarSSL
Signed-off-by: Adriaan de Jong <dejong@fox-it.com>
Acked-by: James Yonan <james@openvpn.net>
Signed-off-by: David Sommerseth <davids@redhat.com>
Diffstat (limited to 'README.polarssl')
-rw-r--r-- | README.polarssl | 19 |
1 files changed, 12 insertions, 7 deletions
diff --git a/README.polarssl b/README.polarssl index bd066e4..77a9575 100644 --- a/README.polarssl +++ b/README.polarssl @@ -7,17 +7,22 @@ To Build and Install, make make install +This version depends on at least PolarSSL v0.99. + ************************************************************************* -The following features are missing in the PolarSSL version of OpenVPN: +Due to limitations in the PolarSSL library, the following features are missing +in the PolarSSL version of OpenVPN: - * ca_path support - Loading certificate authorities from a directory * PKCS#12 file support + * --capath support - Loading certificate authorities from a directory * Windows CryptoAPI support * Management external key support - * X509 alternative username fields (must be "CN") + * X.509 alternative username fields (must be "CN") + +Plugin/Script features: - TODO: - * serial is in Hex - * X509 certificate export - * X.509 tracking + * X.509 Serial number is in hex, not decimal as with OpenSSL + * X.509 subject line has a different format than the OpenSSL subject line + * X.509 certificate export does not work + * X.509 certificate tracking |