doc updatetmp-disable-tls13

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2018-04-11 14:35:26 +0200
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2018-04-13 08:50:01 +0200
commit: e0c17c5f27b11208e5d5f4d53cffd224deb153c5 (patch)
tree: f882c0a0a8000be4f2c922a1c6ec43538acaa801
parent: 74830d83eb09f440214b3dedb929677ebc0358a7 (diff)
download: gnutls-tmp-disable-tls13.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 064f8590ea..361df5b64e 100644
--- a/NEWS
+++ b/NEWS
@@ -18,6 +18,12 @@ See the end for copying conditions.
    and key usage limits. TLS1.3 support needs to be explicitly enabled via a
    priority string.
 
+** libgnutls: Improve compatibility with TLS1.2 and earlier protocol options under
+   TLS 1.3. When SRP or NULL ciphersuites are specified in priority strings
+   TLS 1.3 is will be disabled. When Anonymous ciphersuites are specified in priority
+   strings, then TLS 1.3 negotiation will be disabled if the session is associated
+   with an anonymous credentials structure.
+
 ** libgnutls: Introduced low-level function to assist applications attempting client
    hello extension parsing, prior to GnuTLS' parsing of the message.
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2018-04-11 14:35:26 +0200
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2018-04-13 08:50:01 +0200
commit	e0c17c5f27b11208e5d5f4d53cffd224deb153c5 (patch)
tree	f882c0a0a8000be4f2c922a1c6ec43538acaa801
parent	74830d83eb09f440214b3dedb929677ebc0358a7 (diff)
download	gnutls-tmp-disable-tls13.tar.gz