random_bytes()-related improvements

See #4260
author: Andrey Andreev <narf@devilix.net> 2016-03-22 12:42:03 +0100
committer: Andrey Andreev <narf@devilix.net> 2016-03-22 12:42:03 +0100
commit: 4d2628e8aab6d0673ac0a010acbfaa9d76b7d568 (patch)
tree: b3cac7e3e06b8ac4c56d771cc83b5df53eca1231 /user_guide_src/source
parent: 86758e1003e6ce44b205d2eb104318a309fd92ab (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/user_guide_src/source/changelog.rst b/user_guide_src/source/changelog.rst
index 88b797b91..5732ed3c6 100644
--- a/user_guide_src/source/changelog.rst
+++ b/user_guide_src/source/changelog.rst
@@ -10,6 +10,13 @@ Release Date: Not Released
 -  General Changes
 
    -  Updated :doc:`Image Manipulation Library <libraries/image_lib>` to validate *width* and *height* configuration values.
+   -  Updated :doc:`Encryption Library <libraries/encryption>` to always prefer ``random_bytes()`` when it is available.
+
+   -  :php:func:`password_hash()` :doc:`compatibility function <general/compatibility_functions>` changes:
+
+      - Changed salt-generation logic to prefer ``random_bytes()`` when it is available.
+      - Changed salt-generation logic to prefer direct access to */dev/urandom* over ``openssl_random_pseudo_bytes()``.
+      - Changed salt-generation logic to error if ``openssl_random_pseudo_bytes()`` sets its ``$crypto_strong`` flag to FALSE.
 
 Bug fixes for 3.0.7
 -------------------
author	Andrey Andreev <narf@devilix.net>	2016-03-22 12:42:03 +0100
committer	Andrey Andreev <narf@devilix.net>	2016-03-22 12:42:03 +0100
commit	4d2628e8aab6d0673ac0a010acbfaa9d76b7d568 (patch)
tree	b3cac7e3e06b8ac4c56d771cc83b5df53eca1231 /user_guide_src/source
parent	86758e1003e6ce44b205d2eb104318a309fd92ab (diff)