]> git.ipfire.org Git - thirdparty/gnutls.git/commitdiff
Documented change for certificate retrieval callbacks.
authorNikos Mavrogiannopoulos <nmav@gnutls.org>
Sun, 1 Nov 2009 16:06:07 +0000 (18:06 +0200)
committerNikos Mavrogiannopoulos <nmav@gnutls.org>
Sun, 1 Nov 2009 16:06:07 +0000 (18:06 +0200)
NEWS

diff --git a/NEWS b/NEWS
index a57f1049dc7296d72151500bcfbe9f40c931d9a8..c19845b577a9233aa78ada36b1e2a85de77fe90d 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -9,7 +9,11 @@ See the end for copying conditions.
 by Tang Tong.
 
 ** libgnutls: addition of support for TLS 1.2 signature algorithms
-extension and certificate verify field.
+extension and certificate verify field. This requires changes for
+TLS 1.2 servers and clients that use callbacks for certificate retrieval.
+They are now required to check with gnutls_session_sign_algorithm_get_requested()
+whether the certificate they send complies with the peer's preferences in
+signature algorithms.
 
 ** libgnutls: In server side when resuming a session do not overwrite the 
 initial session data with the resumed session data.