From a63623adce8903724a8911ac3baaeb748610c24d Mon Sep 17 00:00:00 2001
From: Jay Berkenbilt <ejb@ql.org>
Date: Tue, 16 Nov 2021 17:10:00 -0500
Subject: [PATCH] Update notes on API changes for weak crypto

---
 TODO | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/TODO b/TODO
index 39631885..4b205e1e 100644
--- a/TODO
+++ b/TODO
@@ -193,7 +193,12 @@ Comments appear in the code prefixed by "ABI"
     creation of files with insecure crypto. Maybe
     QPDFWriter::allowWeakCrypto. Call this when --allow-weak-crypto is
     passed and probably also when copying encryption by default from
-    an input file.
+    an input file. There should be some API change so that, when
+    people recompile with qpdf 11, their code won't suddenly stop
+    working. Getting this right will take careful consideration of the
+    developer and user experience. We don't want to create a situation
+    where exactly the same code fails to work in 11 but worked on 10.
+    See #576 for latest notes.
   * Change deterministic id to use something other than MD5 but allow
     the old way for compatibility -- maybe rename the method to force
     the developer to make a choice