From: Pauli <ppzgs1@gmail.com>
Date: Mon, 8 Feb 2021 03:09:49 +0000 (+1000)
Subject: changes: add a CHANGES.md entry for the OSSL_FORCE_NO_CACHE_FETCH option.
X-Git-Tag: openssl-3.0.0-alpha12~65
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=7dd5a00f410206974d4ee134bb0ca05bf0f42061;p=thirdparty%2Fopenssl.git

changes: add a CHANGES.md entry for the OSSL_FORCE_NO_CACHE_FETCH option.

Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/14126)
---

diff --git a/CHANGES.md b/CHANGES.md
index 380cd078868..b846746204c 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -23,6 +23,12 @@ OpenSSL 3.0
 
 ### Changes between 1.1.1 and 3.0 [xx XXX xxxx]
 
+ * Add a compile time option to prevent the caching of provider fetched
+   algorithms.  This is enabled by including the no-cached-fetch option
+   at configuration time.
+
+   *Paul Dale*
+
  * Combining the Configure options no-ec and no-dh no longer disables TLSv1.3.
    Typically if OpenSSL has no EC or DH algorithms then it cannot support
    connections with TLSv1.3. However OpenSSL now supports "pluggable" groups