From 8c43ed9baa905d907a6aad77de2282a852ba69a9 Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Sun, 13 Dec 2020 17:43:52 +0100
Subject: libinterimap: use default locations for trusted CA certificates when
 neither CAfile nor CApath are set.

In particular, OpenSSL's default locations can be overridden by the
SSL_CERT_FILE resp. SSL_CERT_DIR environment variables, see
SSL_CTX_load_verify_locations(3ssl).

This bumps the minimum OpenSSL version to 1.1.0 (when SSL_verify is
used).
---
 Changelog | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'Changelog')

diff --git a/Changelog b/Changelog
index 9a36e8a..2fbdf36 100644
--- a/Changelog
+++ b/Changelog
@@ -10,6 +10,12 @@ interimap (0.5.5) upstream;
    protocol black/whitelist greatly; this only allows simple min/max
    bounds, but holes are arguably not very useful here.  Using the new
    settings bumps the required libssl version to 1.1.0.
+ * libinterimap: use default locations for trusted CA certificates when
+   neither CAfile nor CApath are set.  In particular, OpenSSL's default
+   locations can be overridden by the SSL_CERT_FILE resp. SSL_CERT_DIR
+   environment variables, see SSL_CTX_load_verify_locations(3ssl).
+   This bumps the minimum OpenSSL version to 1.1.0 (when SSL_verify is
+   used).
  + `make release`: also bump libinterimap version and pin it in 'use'
    declarations.
  + Make error messages more uniform and consistent.
-- 
cgit v1.2.3