]> git.ipfire.org Git - thirdparty/gnutls.git/commitdiff
doc update
authorNikos Mavrogiannopoulos <nmav@redhat.com>
Thu, 2 Jan 2014 12:36:35 +0000 (13:36 +0100)
committerNikos Mavrogiannopoulos <nmav@redhat.com>
Thu, 2 Jan 2014 12:36:35 +0000 (13:36 +0100)
NEWS

diff --git a/NEWS b/NEWS
index be0ef3139052a88bc9dd44f4aa48ee74db25dbee..8d992a74fdf289c0f8dab1701a138496c8062725 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -46,6 +46,12 @@ option enables:
 
 ** libgnutls: Depend on p11-kit 0.19.1 or later.
 
+** libgnutls: When a PKCS #11 trust store is specified (e.g. using the
+configure option --with-default-trust-store-pkcs11), then the PKCS #11
+token is used on demand to obtain the trusted anchors, rather than
+preloading all trusted certificates. That allows CA certificate management
+to occur outside the process boundaries.
+
 ** API and ABI modifications:
 gnutls_privkey_generate: Added
 gnutls_fips140_mode_enabled: Added