How to compile ocserv with OpenSSL and use OpenSSL engine such as rdrand?
Daniel Lenski
dlenski at gmail.com
Tue Sep 29 12:13:21 EDT 2020
On Sun, Sep 27, 2020 at 9:51 AM 奧田愛美 <okudayukiko0 at yandex.com> wrote:
>
> Debian Linux Platform
> How to compile ocserv with OpenSSL (dynamic link to OS OpenSSL library) and use OpenSSL engine such as rdrand?
Unlike OpenConnect (the *client*) ocserv (the *server*) has no support
for building against OpenSSL. It is designed to be built against
GnuTLS; OpenSSL has completely different programmer interfaces, so
modifying it to build against OpenSSL would not be trivial.
> GnuTLS doesn't support HRNG such as RDRAND & TPM.
What is the use case that you envision for hardware random number
generation in ocserv?
Dan
More information about the openconnect-devel
mailing list