From a574fc0874c906857a391b53e13360fb14df033e Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@redhat.com>
Date: Thu, 22 Sep 2016 11:07:45 +0200
Subject: doc update

---
 NEWS | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/NEWS b/NEWS
index 0b2da3d5d9..45b5e9decf 100644
--- a/NEWS
+++ b/NEWS
@@ -26,6 +26,11 @@ See the end for copying conditions.
    This will allow the library to cope better with larger packets, as
    the ones offered by current TLS 1.3 drafts.
 
+** libgnutls: Allow to use client certificates despite them containing
+   disallowed algorithms for a session. That allows for example a client
+   to use DSA-SHA1 due to his old DSA certificate, without requiring him
+   to enable DSA-SHA1 (and thus make it acceptable for the server's certificate).
+
 ** API and ABI modifications:
 gnutls_certificate_set_ocsp_status_request_function2: Added
 GNUTLS_E_PK_INVALID_PUBKEY: Added
-- 
cgit v1.2.1