From 1877c3d444e6109a3d9273e46b4b9c8e8c50ea2a Mon Sep 17 00:00:00 2001
From: Matthias Andree <matthias.andree@gmx.de>
Date: Mon, 30 Mar 2020 14:25:05 +0200
Subject: "Require" OpenSSL 1.1.1 and tolerate/warn 1.0.2.

OpenSSL 1.0.2 is EOL since end of 2019, so warn if it is to be used
at configure and compile time.

The assumption is that 1.0.2 may still be in use by maintainers that
backport security fixes.

Also warn, at configure time, about "OpenSSL" API-compatible libraries
that do not declare TLS1_3_VERSION.
---
 fetchmail.c | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'fetchmail.c')

diff --git a/fetchmail.c b/fetchmail.c
index 69d80e23..c74d553c 100644
--- a/fetchmail.c
+++ b/fetchmail.c
@@ -272,6 +272,12 @@ int main(int argc, char **argv)
 	"-SSLv3"
 #endif
 #endif
+#ifndef HAVE_DECL_TLS1_2_VERSION
+	"-TLS1.2"
+#endif
+#ifndef HAVE_DECL_TLS1_2_VERSION
+	"-TLS1.3"
+#endif
 #ifdef OPIE_ENABLE
 	"+OPIE"
 #endif /* OPIE_ENABLE */
-- 
cgit v1.2.3