Release Summary

• Add a new public API, s2n_client_hello_get_random(), and move client_random storage from the connection to the s2n_client_hello struct so applications can retrieve the client random from a parsed ClientHello.
• Allow multiple application contexts to be set on a s2n-tls connection.
• Warning level TLS alerts may now be non-fatal prior to version negotiation
• Added support for Security Policies to have "strongly preferred" SupportedGroups.

What's Changed

• feat: add client hello random getter by @kaukabrizvi in https://github.com/aws/s2n-tls/pull/5620
• chore: Rust bindings release 0.3.30 by @dougch in https://github.com/aws/s2n-tls/pull/5633
• chore: s2n-tls-hyper version bump by @jouho in https://github.com/aws/s2n-tls/pull/5636
• build(deps): bump the all-gha-updates group across 1 directory with 2 updates by @dependabot[bot] in https://github.com/aws/s2n-tls/pull/5640
• feat: add rfc9151 compat policies by @jouho in https://github.com/aws/s2n-tls/pull/5615
• feat: improve performance of getting validated cert chain from libcrypto by @CarolYeh910 in https://github.com/aws/s2n-tls/pull/5622
• feat: additional rfc9151 compat policy without sha1 hmac by @jouho in https://github.com/aws/s2n-tls/pull/5645