aboutsummaryrefslogtreecommitdiffstats
path: root/README.SSL
diff options
context:
space:
mode:
authorMatthias Andree <matthias.andree@gmx.de>2021-11-20 16:48:10 +0100
committerMatthias Andree <matthias.andree@gmx.de>2021-11-21 00:33:34 +0100
commitcc5c80eb4d6f98b94f20e5abd4cd50c5bf0e5a44 (patch)
tree337fa4b5691643fea540e5026a4c64dc8a9a3509 /README.SSL
parent9dadc0e51c91e98d4f23b3385fd2ef20fbdb3358 (diff)
downloadfetchmail-cc5c80eb4d6f98b94f20e5abd4cd50c5bf0e5a44.tar.gz
fetchmail-cc5c80eb4d6f98b94f20e5abd4cd50c5bf0e5a44.tar.bz2
fetchmail-cc5c80eb4d6f98b94f20e5abd4cd50c5bf0e5a44.zip
wolfSSL: support 5.0.0+.
Diffstat (limited to 'README.SSL')
-rw-r--r--README.SSL19
1 files changed, 13 insertions, 6 deletions
diff --git a/README.SSL b/README.SSL
index 519e986f..63620b55 100644
--- a/README.SSL
+++ b/README.SSL
@@ -21,18 +21,25 @@ below and in the manual).
fetchmail 6.4.0 will auto-negotiate TLSv1 or newer only.
-Fetchmail 6.4.22 supports OpenSSL 3.0.0 and 1.1.1.
+Fetchmail 6.4.25 supports OpenSSL 3.0 and 1.1.1 and WolfSSL 5.0.
- -- Matthias Andree, 2021-09-09
+The configure options --with-wolfssl takes precedence over --with-ssl.
+
+ -- Matthias Andree, 2021-11-20
Quickstart
----------
-Use an up-to-date release of OpenSSL v1.1.1 or v3.0.0 or newer, so as to get
-TLSv1.3 support. Older OpenSSL versions are unsupported upstream, and
-fetchmail rejects versions before v1.0.2f and warns about versions before
-v1.1.1.
+Use an up-to-date release of OpenSSL v1.1.1 or v3.0.0 or wolfSSL 5.0.0 or
+newer, so as to get TLSv1.3 support. Older OpenSSL versions are unsupported
+upstream, and fetchmail rejects versions before v1.0.2f and warns about
+versions before v1.1.1.
+
+wolfSSL needs to be configured with --enable-opensslall --enable-harden,
+else some required OpenSSL APIs are missing, especially for SNI (server name
+indication), which is required to fetch mail from Google and some other mail
+server providers.
In all four examples below, the (--)sslcertck has become redundant
since fetchmail v6.4.0, but since fetchmail 6.3 releases will be in circulation