X-Git-Url: http://git.indexdata.com/?p=yaz-moved-to-github.git;a=blobdiff_plain;f=NEWS;h=aa92ec3d7be16795f8b57bfbeaba2410a5f083fd;hp=f989740b65dfe157f83537d210145d6c22e63665;hb=cc6dad5cffd577eed9d001a82f08a552c2740525;hpb=8dc67a9430644549801c18ec7e3a725e5a4ef782

diff --git a/NEWS b/NEWS
index f989740..aa92ec3 100644
--- a/NEWS
+++ b/NEWS
@@ -1,5 +1,27 @@
 Possible compatibility problems with earlier versions marked with '*'.
 
+Add autoconf m4 macro YAZ_DOC for YAZ documentation setup (docbook).
+
+SSL comstack now uses yaz.pem certificate file on server side
+by default. Certificate filename can be configured by calling
+comstack function cs_set_ssl_cert before cs_bind is used.
+
+Fix bug regarding multiple calls to ZOOM_connection_connect.
+
+Implement cs_set_ssl_ctx which sets SSL_CTX for SSL comstack.
+
+Do not create SSL_CTX in cs_create (ssl_type). Create in tcpip_bind,
+tcpip_rcvconnect instead. This allows user to set custom SSL_CTX.
+
+ZOOM now allows inspection of X509 peer certificate for verification.
+The X509 buffer is retrived by reading ZOOM option "sslPeerCert".
+
+Removed libyazssl.la. When SSL is enabled, libyaz.la has SSL support and
+all programs have too (yaz-ztest, yaz-client, zoom..). May not be
+as "modular" but it simplifies things.
+
+Added cs_get_peer_certificate to that returns peer X509 PEM.
+
 Added cs_get_ssl that returns SSL handle (SSL *) for SSL comstack; returns
 NULL if SSL is unavailable.