If GnuTLS support will not be ready for the 1.11 release, may I suggest that we not advertise it in NEWS? After all, it's badly broken in that it doesn't support certificate validation, which is one of the most important features of an SSL client. It also doesn't support many of our SSL command-line options, which makes Wget almost broken, https-wise, under GnuTLS. IMO announcing such unfinished work brings more harm than good in a stable release.