Openconnect fails to negotiate https connection [released]
asked 2017-11-11 13:50:26 +0300
We have a problem that we cannot connect to our company VPN with openconnect of Sailfish. As we have quite strict security policy in place, openconnect simply fails to negotiate TLS 1.2 connection with out VPN peer.
Openconnect relies on libgnutls to do this, so we assume that the problem is in old gnutls-2.12.23.4 version used in Sailfish.
We know there are at least two gnutls packages in openrepos.net, but for both dependency and security reasons distribution of crypto packages should always be left to the maintainers of the distro.
Would it be possible to get a newer version of gnutls into official Sailfish repos?
Update 2019.03.19
Fixed in SFOS 3.0.2.8. Gnutls and openconnect have been updated.