From 51929ed42932817d1eb0687928b6352f3fc4c268 Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@redhat.com>
Date: Tue, 5 Dec 2017 10:24:54 +0100
Subject: doc: documented the GNUTLS_NO_FIPS140_MODE

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
---
 doc/cha-internals.texi | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/doc/cha-internals.texi b/doc/cha-internals.texi
index 9c74a24114..b9a3b73bbb 100644
--- a/doc/cha-internals.texi
+++ b/doc/cha-internals.texi
@@ -699,3 +699,14 @@ mode, when set to '0' will force a disable of it.
 
 On runtime an application can verify whether the library is in FIPS140-2
 using the @funcref{gnutls_fips140_mode_enabled} function.
+
+Applications can explicitly opt-out from FIPS140-2 mode globally by using
+the macro @code{GNUTLS_NO_FIPS140_MODE} once in their code.
+
+@example
+#include <gnutls/gnutls.h>
+
+GNUTLS_NO_FIPS140_MODE
+
+int main()
+@end example
-- 
cgit v1.2.1