OpenConnect on Android with Yubikey PIV support

[Edwin Hermans]

Hi,

I'd like to try to get OpenConnect working on Android using my Yubikey
as a cert and key source via the PIV interface.

Now Android doesn't have support for p11kit and/or opensc. I could try
hacking that into my OS build, I know there's some code to work off of
already (SEEK-for-android), but I'd like to explore adding support for
Yubikey PIV with the Yubikey Android SDK.
This is probably going to be a nightmare, but I'll give it a try regardless.

I'm still digging through OpenConnect to fully understand how it uses
pkcs11, but if anyone has ever thought of doing something like this
and has tips, let me know.

For further reference, the Yubikey SDK is a Java SDK
(https://developers.yubico.com/yubikit-android/JavaDoc/piv/2.0.0/com/yubico/yubikit/piv/package-summary.html)
there doesn't seem to be a C or C++ version of it, so I might not even
be able to use that directly and possible have to rewrite stuff in C
or even have some sort of weird bridge between OC and the Yubikey SDK
in Java. Also, any hints there would be cool, thank you.

-- 
Vriendelijke groet/with regards/saluti,
Edwin Hermans