https://src.fedoraproject.org/rpms/fetchmail/blob/master/f/fetchmail-6.3.26-ssl-backport.patch Allows configuring sslproto "TLS1.2+", for example. This patch looks useful for SNI-requiring servers: https://src.fedoraproject.org/rpms/fetchmail/blob/master/f/fetchmail-6.3.26-ssl-set-sni.patch
Hi, (In reply to Conrad Meyer from comment #0) Regarding SNI, I've already backported it. See bug 233078.
(In reply to Koichiro Iwao from comment #1) Heh, quite recently! Thank you.
Created attachment 200631 [details] Patch adding Fedora's backported TLS handling Attached patch integrates Fedora's backported SSL/TLS changes. Passes 'poudrierer testport' on 11.2/amd64 with ssl=base and default OPTIONS, with ssl=port and GSSAPI_MIT, and with ssl=libressl and GSSAPI_MIT. Fetches mail as expected in my testing. :)
Thanks Corey!
Reporter is committer, assign accordingly
Comment on attachment 200631 [details] Patch adding Fedora's backported TLS handling Approved by: koobs (ports) @Conrad If you're happy and confident with your own QA/testing beyond what maintainer has done (i would confirm the poudriere run), feel free to commit
A commit references this bug: Author: cem Date: Sun Jan 6 07:21:25 UTC 2019 New revision: 489439 URL: https://svnweb.freebsd.org/changeset/ports/489439 Log: mail/fetchmail: backport less-old TLS support from Fedora Allows options like 'sslproto "TLS1.2+"', for example. PR: 233247 Submitted by: Corey Halpin <chalpin@cs.wisc.edu> (maintainer) Approved by: koobs Changes: head/mail/fetchmail/Makefile head/mail/fetchmail/distinfo head/mail/fetchmail/files/patch-fetchmail.c head/mail/fetchmail/files/patch-socket.c