PKCS #12 Patch for OpenVPN 2.0_beta7
------------------------------------

Written by Mathias Sundman July 10, 2004


This patch adds support for PKCS #12 (.p12) files in OpenVPN. The patch adds
the option "--pkcs12 file", which is used to specify the .p12 file to use.

The specified .p12 file must include the private key, certificate and CA
certficate(s) to use. This means that you cannot use this option at the same
time as --key, --cert or --ca.

The .p12 file can be encrypted. OpenVPN will then query the user for the
passphrase the exact same way as if an encrypted PEM private key is used.

The patch has been tested running OpenVPN both in server and client mode.

The patch is tested to build with OpenSSL 0.9.6m and 0.9.7d on Slackware
Linux 9.

You can convert your PEM files into a .p12 file with openssl using:

openssl pkcs12 -export -inkey filename.key \
        -in filename.crt \
        -certfile ca.crt \
        -out filename.p12