From: Tomas Mraz <tomas@openssl.org>
Date: Mon, 24 Feb 2025 09:33:08 +0000 (+0100)
Subject: Add CHANGES.md entry for changed default TLS group list
X-Git-Tag: openssl-3.5.0-alpha1~73
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=7e80b16776a58aad8bfe5d81c2909757115545da;p=thirdparty%2Fopenssl.git

Add CHANGES.md entry for changed default TLS group list

Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Saša Nedvědický <sashan@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/26801)
---

diff --git a/CHANGES.md b/CHANGES.md
index 991a862504e..6eaeb760e28 100644
--- a/CHANGES.md
+++ b/CHANGES.md
@@ -87,6 +87,15 @@ OpenSSL 3.5
 
    *David Kelsey*, *Martin Schmatz*
 
+ * The default TLS group list setting is now set to:
+   `?*X25519MLKEM768 / ?*X25519:?secp256r1 / ?X448:?secp384r1:?secp521r1 / ?ffdhe2048:?ffdhe3072`
+
+   This means two key shares (X25519MLKEM768 and X25519) will be sent by
+   default by the TLS client. GOST groups and FFDHE groups larger than 3072
+   bits are no longer enabled by default.
+
+   *Viktor Dukhovni*
+
  * A new random generation API has been introduced which modifies all
    of the L<RAND_bytes(3)> family of calls so they are routed through a
    specific named provider instead of being resolved via the normal DRBG