From: Nikos Mavrogiannopoulos Date: Sun, 1 Nov 2009 16:06:07 +0000 (+0200) Subject: Documented change for certificate retrieval callbacks. X-Git-Tag: gnutls_2_9_8~22 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=1d8288977316750e97b706ee537abe15bf94bd2b;p=thirdparty%2Fgnutls.git Documented change for certificate retrieval callbacks. --- diff --git a/NEWS b/NEWS index a57f1049dc..c19845b577 100644 --- a/NEWS +++ b/NEWS @@ -9,7 +9,11 @@ See the end for copying conditions. by Tang Tong. ** libgnutls: addition of support for TLS 1.2 signature algorithms -extension and certificate verify field. +extension and certificate verify field. This requires changes for +TLS 1.2 servers and clients that use callbacks for certificate retrieval. +They are now required to check with gnutls_session_sign_algorithm_get_requested() +whether the certificate they send complies with the peer's preferences in +signature algorithms. ** libgnutls: In server side when resuming a session do not overwrite the initial session data with the resumed session data.