changes: add note about the new provider random hook

author Pauli <ppzgs1@gmail.com>

Mon, 3 Feb 2025 12:01:57 +0000 (23:01 +1100)

committer Pauli <ppzgs1@gmail.com>

Tue, 4 Feb 2025 20:20:22 +0000 (07:20 +1100)
author Pauli <ppzgs1@gmail.com>
Mon, 3 Feb 2025 12:01:57 +0000 (23:01 +1100)
committer Pauli <ppzgs1@gmail.com>
Tue, 4 Feb 2025 20:20:22 +0000 (07:20 +1100)
diff --git a/CHANGES.md b/CHANGES.md

index 51d17b3a9b6a66af60e71c2da8061e8b95e409d6..e7f0b6a47255d274ea429e6c346bf901d1bbf5f7 100644 (file)
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -30,6 +30,13 @@ OpenSSL 3.5
  
  ### Changes between 3.4 and 3.5 [xx XXX xxxx]
  
+* A new random generation API has been introduced which modifies all
+  of the L<RAND_bytes(3)> family of calls so they are routed through a
+  specific named provider instead of being resolved via the normal DRBG
+  chaining.  In a future OpenSSL release, this will obsolete RAND_METHOD.
+
+  *Dr Paul Dale*
+
  * New inline functions were added to support loads and stores of unsigned
    16-bit, 32-bit and 64-bit integers in either little-endian or big-endian
    form, regardless of the host byte-order.  See the `OPENSSL_load_u16_le(3)`
author	Pauli <ppzgs1@gmail.com>
	Mon, 3 Feb 2025 12:01:57 +0000 (23:01 +1100)
committer	Pauli <ppzgs1@gmail.com>
	Tue, 4 Feb 2025 20:20:22 +0000 (07:20 +1100)