Ideas:
  
- implement a small app that can do cert+key+ca => p12 or suggest an app on the market
   - Implementation in ICS OpenVpn would require SD_WRITE permission which I would like to avoid
   
- implement an encryption for profiles, so no sensitive data has be stored in plain text
   - encrypt/decrypt with android private storage key (+no user input required)
   
- implement general settings dialog
   - encryption of profiles
   - Speed/Transfered in notification bar (byte counter of management) 
   - Kick openvpn on network state change (Wifi <-> GPRS/EDGE/UMTS)

- map SIGUSR1 to SIGINT

- add a put this certificate into file obscure option

Missing configuration options:

IPv6 support:
- fix bogus tun-ipv6 warning

Tap support:
- Actually it is possible to emulate tap with tun device, a minimal implementation would have to do:
   - generate random mac
   - strip macs header on receive
   - append mac header on send
   - implement arp, possible the most difficult task ...
      - need to chose right mac of receiver

Requested by users:
auth
mtu-link