From: Willy Tarreau <w@1wt.eu>
Date: Tue, 31 May 2022 09:37:37 +0000 (+0200)
Subject: DOC: install: update supported OpenSSL versions in the INSTALL doc
X-Git-Tag: v2.6.0~9
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=cd50e7673f7faba724a346fef3ba646b1b22ad66;p=thirdparty%2Fhaproxy.git

DOC: install: update supported OpenSSL versions in the INSTALL doc

OpenSSL 3.0 is now supported but was not mentioned. Also, it was
found that OpenSSL 0.9.8 doesn't build anymore since 2.5 due to
some of the functions used in the JWT token processing, and since
nobody complained, it seems it's not worth fixing it so support for
it was removed.
---

diff --git a/INSTALL b/INSTALL
index 55033cbfc4..502f7ab197 100644
--- a/INSTALL
+++ b/INSTALL
@@ -225,7 +225,7 @@ to forcefully enable it using "USE_LIBCRYPT=1".
 -----------------
 For SSL/TLS, it is necessary to use a cryptography library. HAProxy currently
 supports the OpenSSL library, and is known to build and work with branches
-0.9.8, 1.0.0, 1.0.1, 1.0.2, 1.1.0 and 1.1.1. OpenSSL follows a long-term
+1.0.0, 1.0.1, 1.0.2, 1.1.0, 1.1.1, and 3.0.x. OpenSSL follows a long-term
 support cycle similar to HAProxy's, and each of the branches above receives its
 own fixes, without forcing you to upgrade to another branch. There is no excuse
 for staying vulnerable by not applying a fix available for your version. There