From 7c4e9d57761b10058d36756df3b39039e292812d Mon Sep 17 00:00:00 2001
From: Dave Brolley <brolley@redhat.com>
Date: Tue, 5 May 2009 12:08:49 -0400
Subject: [PATCH] Describe new module signing capability.

---
 NEWS | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/NEWS b/NEWS
index 6cfd7158c..664753d37 100644
--- a/NEWS
+++ b/NEWS
@@ -1,5 +1,12 @@
 * What's new
 
+- Module signing: If the appropriate nss libraries are available on your system,
+  stap will sign each compiled module using a self-generated certificate.
+  This is the first step toward extending authority to load certain modules to
+  unprivileged users. For now, if the system administrator adds a certificate
+  to a database of trusted signers (stap-authorize-signing-cert), modules signed
+  using that certificate will be verified by staprun against tampering.
+  Otherwise, you should notice no difference in the operation of stap or staprun.
 
 * What's new in version 0.9.7
 
-- 
2.43.5