From 1877c3d444e6109a3d9273e46b4b9c8e8c50ea2a Mon Sep 17 00:00:00 2001
From: Matthias Andree <matthias.andree@gmx.de>
Date: Mon, 30 Mar 2020 14:25:05 +0200
Subject: "Require" OpenSSL 1.1.1 and tolerate/warn 1.0.2.

OpenSSL 1.0.2 is EOL since end of 2019, so warn if it is to be used
at configure and compile time.

The assumption is that 1.0.2 may still be in use by maintainers that
backport security fixes.

Also warn, at configure time, about "OpenSSL" API-compatible libraries
that do not declare TLS1_3_VERSION.
---
 NEWS | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'NEWS')

diff --git a/NEWS b/NEWS
index 7f25c694..1a503c1b 100644
--- a/NEWS
+++ b/NEWS
@@ -77,6 +77,14 @@ fetchmail-6.4.3 (WIP)
   Faulty commit 418cda65f752e367fa663fd13884a45fcbc39ddd.
   Reported by Stefan Thurner.
 
+## CHANGES:
+* Fetchmail documentation was updated to require OpenSSL 1.1.1.
+  OpenSSL 1.0.2 reached End Of Life status at the end of the year 2019.
+  Fetchmail will tolerate, but warn about, 1.0.2 for now on the assumption that 
+  distributors backport security fixes as the need arises.
+  Fetchmail will also warn if another SSL library that is API-compatible
+  with OpenSSL lacks TLS v1.3 support.
+
 fetchmail-6.4.2 (released 2020-02-14, 27473 LoC):
 
 ## BREAKING CHANGES:
-- 
cgit v1.2.3