diff options
author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2019-03-19 16:46:01 +0000 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2019-03-19 16:46:01 +0000 |
commit | f82ffe2b3031072ad1bfdf589e945263a1696e3f (patch) | |
tree | b22f118434b52e101e07885028e84b1eab209808 /NEWS | |
parent | b6c6e148b542a3ac3b0c407708fbc86e884d4f82 (diff) | |
parent | e4c83eea960a43a38814ffd19cc5aae8ff1d206d (diff) | |
download | gnutls-f82ffe2b3031072ad1bfdf589e945263a1696e3f.tar.gz |
Merge branch 'tmp-fix-pkcs11-so' into 'master'
pkcs11: security officer login implies writable session
Closes #721
See merge request gnutls/gnutls!953
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -25,6 +25,10 @@ See the end for copying conditions. a certificate. We were already enforcing the signature algorithm, but there was a bug in parameter checking code. +** libgnutls: the flag GNUTLS_PKCS11_OBJ_FLAG_LOGIN_SO now implies a writable + session, as non-writeable security officer sessions are undefined in PKCS#11 + (#721). + ** libgnutls: no longer send downgrade sentinel in TLS 1.3. Previously the sentinel value was embedded to early in version negotiation and was sent even on TLS 1.3. It is now sent only when |