From a6daf938f5f616a4a67caa6580b0c99e9a8c3779 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=B6rg=20Frings-F=C3=BCrst?= <debian@jff-webhosting.net>
Date: Mon, 2 Oct 2017 06:57:04 +0200
Subject: New upstream version 2.4.4

---
 README.mbedtls | 26 ++++++++++++++++++++++++++
 1 file changed, 26 insertions(+)
 create mode 100644 README.mbedtls

(limited to 'README.mbedtls')

diff --git a/README.mbedtls b/README.mbedtls
new file mode 100644
index 0000000..4875822
--- /dev/null
+++ b/README.mbedtls
@@ -0,0 +1,26 @@
+This version of OpenVPN has mbed TLS support. To enable follow the following
+instructions:
+
+To Build and Install,
+
+	./configure --with-crypto-library=mbedtls
+	make
+	make install
+
+This version depends on mbed TLS 2.0 (and requires at least 2.0.0).
+
+*************************************************************************
+
+Due to limitations in the mbed TLS library, the following features are missing
+in the mbed TLS version of OpenVPN:
+
+ * PKCS#12 file support
+ * --capath support - Loading certificate authorities from a directory
+ * Windows CryptoAPI support
+ * X.509 alternative username fields (must be "CN")
+
+Plugin/Script features:
+
+ * X.509 subject line has a different format than the OpenSSL subject line
+ * X.509 certificate export does not work
+ * X.509 certificate tracking
-- 
cgit v1.2.3