From 9c191fc4ff2f8c76892212a1a10847e8c50d66bf Mon Sep 17 00:00:00 2001 From: Matthias Andree Date: Sat, 18 Mar 2023 11:51:41 +0100 Subject: Bump OpenSSL versions and mark 3.1 supported. --- README.SSL | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/README.SSL b/README.SSL index 7f9055c1..dfad1529 100644 --- a/README.SSL +++ b/README.SSL @@ -21,7 +21,9 @@ below and in the manual). fetchmail 6.4.0 will auto-negotiate TLSv1 or newer only. -Fetchmail 6.4.35 supports OpenSSL 3.0.7 and 1.1.1s and WolfSSL 5.5.3 or newer. +Fetchmail 6.4.38 supports OpenSSL 3.0.8 and 1.1.1t and WolfSSL 5.5.3 or newer, +including OpenSSL 3.1.0. + Note that WolfSSL 5 is a bit less flexible about its trust store, see INSTALL chapter 2.1 for details. @@ -29,13 +31,13 @@ Note that many messages printed by fetchmail will print "OpenSSL" even if wolfSSL is being used. Reason is that fetchmail uses wolfSSL's OpenSSL compatibility layer and not the native wolfSSL API. - -- Matthias Andree, 2023-01-04 + -- Matthias Andree, 2023-03-18 Quickstart ---------- -Use an up-to-date release of OpenSSL v1.1.1 or v3.0 or wolfSSL 5.5 or +Use an up-to-date release of OpenSSL v1.1.1 or v3.0/v3.1 or wolfSSL 5.5 or newer, so as to get TLSv1.3 support and latest fixes. Older OpenSSL versions are unsupported upstream, and fetchmail rejects versions before v1.0.2f and warns about versions before v1.1.1q or 3.0.7. -- cgit v1.2.3