commit 4d2628e8aab6d0673ac0a010acbfaa9d76b7d568
author Andrey Andreev <narf@devilix.net> Tue Mar 22 13:42:03 2016 +0200
committer Andrey Andreev <narf@devilix.net> Tue Mar 22 13:42:03 2016 +0200
tree b3cac7e3e06b8ac4c56d771cc83b5df53eca1231
parent 86758e1003e6ce44b205d2eb104318a309fd92ab

random_bytes()-related improvements

See #4260

user_guide_src/source/changelog.rst

diff --git a/user_guide_src/source/changelog.rst b/user_guide_src/source/changelog.rst
index 88b797b..5732ed3 100644
--- a/user_guide_src/source/changelog.rst
+++ b/user_guide_src/source/changelog.rst
@@ -10,6 +10,13 @@
 -  General Changes
 
    -  Updated :doc:`Image Manipulation Library <libraries/image_lib>` to validate *width* and *height* configuration values.
+   -  Updated :doc:`Encryption Library <libraries/encryption>` to always prefer ``random_bytes()`` when it is available.
+
+   -  :php:func:`password_hash()` :doc:`compatibility function <general/compatibility_functions>` changes:
+
+      - Changed salt-generation logic to prefer ``random_bytes()`` when it is available.
+      - Changed salt-generation logic to prefer direct access to */dev/urandom* over ``openssl_random_pseudo_bytes()``.
+      - Changed salt-generation logic to error if ``openssl_random_pseudo_bytes()`` sets its ``$crypto_strong`` flag to FALSE.
 
 Bug fixes for 3.0.7
 -------------------