Android's OpenSSL doesn't have ENGINE support; don't require it.
Signed-off-by: David Woodhouse <David.Woodhouse@intel.com>
[AC_CHECK_HEADER([net/tun/if_tun.h],
[AC_DEFINE([IF_TUN_HDR], ["net/tun/if_tun.h"])])])])])
+AC_CHECK_LIB(ssl, ENGINE_by_id,
+ AC_DEFINE(HAVE_ENGINE, [1], [OpenSSL has ENGINE support]),
+ AC_MSG_NOTICE([Building without OpenSSL TPM ENGINE support]),
+ ${OPENSSL_LIBS})
+
AC_OUTPUT(Makefile openconnect.pc)
<LI><B>OpenConnect HEAD</B><BR>
<UL>
<LI>Switch back to using TLSv1, but without extensions.</LI>
+ <LI>Make TPM support optional, dependent on OpenSSL ENGINE support.</LI>
</UL><BR>
</LI>
<LI><B><A HREF="ftp://ftp.infradead.org/pub/openconnect/openconnect-3.10.tar.gz">OpenConnect v3.10</a></B> — 2011-06-30<BR>
<hr>
<address>David Woodhouse <<A HREF="mailto:dwmw2@infradead.org">dwmw2@infradead.org</A>></address>
<!-- hhmts start -->
-Last modified: Fri Jul 15 10:19:52 PDT 2011
+Last modified: Fri Jul 15 10:20:37 PDT 2011
<!-- hhmts end -->
</body> </html>
return ret;
}
+#ifdef HAVE_ENGINE
static int load_tpm_certificate(struct openconnect_info *vpninfo)
{
ENGINE *e;
}
return 0;
}
+#else
+static int load_tpm_certificate(struct openconnect_info *vpninfo)
+{
+ vpn_progress (vpninfo, PRG_ERR,
+ "This version of OpenConnect was built without TPM support\n");
+ return -EINVAL;
+}
+#endif
static int reload_pem_cert(struct openconnect_info *vpninfo)
{