doc update [ci skip]

author Nikos Mavrogiannopoulos <nmav@redhat.com>

Thu, 2 Jun 2016 12:37:11 +0000 (14:37 +0200)

committer Nikos Mavrogiannopoulos <nmav@redhat.com>

Thu, 2 Jun 2016 12:37:23 +0000 (14:37 +0200)
author Nikos Mavrogiannopoulos <nmav@redhat.com>
Thu, 2 Jun 2016 12:37:11 +0000 (14:37 +0200)
committer Nikos Mavrogiannopoulos <nmav@redhat.com>
Thu, 2 Jun 2016 12:37:23 +0000 (14:37 +0200)
diff --git a/NEWS b/NEWS

index d64c1d6330b079e7876c6ab46b9c0e1a7fe65100..b88fac0b58f838ec0230dd926efd9f74a73ee758 100644 (file)
--- a/NEWS
+++ b/NEWS
@@ -15,6 +15,11 @@ See the end for copying conditions.
     implemented the RFC7633 TLSFeature for OCSP status request extension.
     Feature implemented by Tim Kosse.
  
+** libgnutls: Treat CA certificates with the "Server Gated Cryptography" key
+   purpose OIDs equivalent to having the GNUTLS_KP_TLS_WWW_SERVER OID. This
+   improves interoperability with several old intermediate CA certificates
+   carrying these legacy OIDs.
+
  ** libgnutls: The SSLKEYLOGFILE and GNUTLS_KEYLOGFILE environment variables can
     be used to log session keys. These session keys are compatible with
     the NSS Key Log Format and can be used to decrypt the session for
author	Nikos Mavrogiannopoulos <nmav@redhat.com>
	Thu, 2 Jun 2016 12:37:11 +0000 (14:37 +0200)
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>
	Thu, 2 Jun 2016 12:37:23 +0000 (14:37 +0200)