Updated version 2.4.4 from 'upstream/2.4.4'

with Debian dir 140f8169d27cc56f891366cfbea8aff1659cd942
author: Jörg Frings-Fürst <debian@jff-webhosting.net> 2017-10-02 06:57:11 +0200
committer: Jörg Frings-Fürst <debian@jff-webhosting.net> 2017-10-02 06:57:11 +0200
commit: 5196d94f84f23057406cb15be7c49a39a05f912d (patch)
tree: a47dad26e006bd9aa52e7de32c39d75965a2a98d /README.mbedtls
parent: 1cc61feca65e1593f3cbe69af692e31c3042a8a6 (diff)
parent: a6daf938f5f616a4a67caa6580b0c99e9a8c3779 (diff)
1 files changed, 26 insertions, 0 deletions
diff --git a/README.mbedtls b/README.mbedtls
new file mode 100644
index 0000000..4875822
--- /dev/null
+++ b/README.mbedtls
@@ -0,0 +1,26 @@
+This version of OpenVPN has mbed TLS support. To enable follow the following
+instructions:
+
+To Build and Install,
+
+	./configure --with-crypto-library=mbedtls
+	make
+	make install
+
+This version depends on mbed TLS 2.0 (and requires at least 2.0.0).
+
+*************************************************************************
+
+Due to limitations in the mbed TLS library, the following features are missing
+in the mbed TLS version of OpenVPN:
+
+ * PKCS#12 file support
+ * --capath support - Loading certificate authorities from a directory
+ * Windows CryptoAPI support
+ * X.509 alternative username fields (must be "CN")
+
+Plugin/Script features:
+
+ * X.509 subject line has a different format than the OpenSSL subject line
+ * X.509 certificate export does not work
+ * X.509 certificate tracking
author	Jörg Frings-Fürst <debian@jff-webhosting.net>	2017-10-02 06:57:11 +0200
committer	Jörg Frings-Fürst <debian@jff-webhosting.net>	2017-10-02 06:57:11 +0200
commit	5196d94f84f23057406cb15be7c49a39a05f912d (patch)
tree	a47dad26e006bd9aa52e7de32c39d75965a2a98d /README.mbedtls
parent	1cc61feca65e1593f3cbe69af692e31c3042a8a6 (diff)
parent	a6daf938f5f616a4a67caa6580b0c99e9a8c3779 (diff)