Can't connect to (older?) cisco vpn server with openssl >= 3
I ran into an issue where the connection seemed to start but it ended with SSL routines:final_renegotiate:unsafe legacy renegotiation disabled:ssl/statem/extensions.c:893
. After some research it seems that openconnect (currently in git only until the next release?) has a switch to ignore the situation and keep going if the right commandline parameter is provided. This is a better than the solutions you find online where people are more or less forced to modify their openssl.cnf files.
I have created a patch for this issue for which I will create a MR.