Hi David,

On 25.05.2012 23:07, David Woodhouse wrote:
> On Fri, 2012-05-25 at 22:45 +0200, Michael Biebl wrote:
>> If only openconnect would have used gnutls... 
> If only gnutls would have given a sane way to use a certificate from a
> TPM, and supported DTLS. Hey, maybe I wouldn't have had to write HTTP
> client support for myself at all; I could have used one of the multitude
> of existing libraries!

Oh, yeah, I'm very well aware that gnutls has its own share of issues
and peculiarities.

> Patches to openconnect to make it optionally use gnutls instead of
> openssl would be most welcome... and it could be done incrementally;
> using gnutls just for the TCP connection first and still using OpenSSL
> for DTLS (which happens in openconnect(8) not in libopenconnect). That
> would be enough to solve this issue, and adding PKCS#11 support and DTLS
> support could come later.

Personally I don't have the time to work on that but would appreciate
any efforts in that direction.


Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?

Attachment: signature.asc
Description: OpenPGP digital signature

pkg-kde-extras mailing list

Reply via email to