summaryrefslogtreecommitdiff
path: root/README.mbedtls
diff options
context:
space:
mode:
Diffstat (limited to 'README.mbedtls')
-rw-r--r--README.mbedtls26
1 files changed, 26 insertions, 0 deletions
diff --git a/README.mbedtls b/README.mbedtls
new file mode 100644
index 0000000..4875822
--- /dev/null
+++ b/README.mbedtls
@@ -0,0 +1,26 @@
+This version of OpenVPN has mbed TLS support. To enable follow the following
+instructions:
+
+To Build and Install,
+
+ ./configure --with-crypto-library=mbedtls
+ make
+ make install
+
+This version depends on mbed TLS 2.0 (and requires at least 2.0.0).
+
+*************************************************************************
+
+Due to limitations in the mbed TLS library, the following features are missing
+in the mbed TLS version of OpenVPN:
+
+ * PKCS#12 file support
+ * --capath support - Loading certificate authorities from a directory
+ * Windows CryptoAPI support
+ * X.509 alternative username fields (must be "CN")
+
+Plugin/Script features:
+
+ * X.509 subject line has a different format than the OpenSSL subject line
+ * X.509 certificate export does not work
+ * X.509 certificate tracking