Document the return type change in the migration guide Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>

commit: 5ec50039927601005534460385bbe9206dcf7ad0 [log] [tgz]
author: Dave Rodgman <dave.rodgman@arm.com> Tue Jun 22 13:41:56 2021 +0100
committer: Dave Rodgman <dave.rodgman@arm.com> Tue Jun 22 13:49:09 2021 +0100
tree: edc2df62fd2bcd8db46cbe734b879161f127c4ed
parent: 296fefeb981f8c95d580abfb46d52e1838a082eb [diff]
diff --git a/docs/3.0-migration-guide.d/key-export.md b/docs/3.0-migration-guide.d/key-export.md
index 967ecf8..f8b3505 100644
--- a/docs/3.0-migration-guide.d/key-export.md
+++ b/docs/3.0-migration-guide.d/key-export.md

@@ -18,6 +18,10 @@
 - A secret type parameter has been added to identify which key
   is being exported. For TLS 1.2, only the master secret is
   exported, but upcoming TLS 1.3 support will add other kinds of keys.
+- The callback now specifies a void return type, rather than
+  returning an error code. It is the responsibility of the application
+  to handle failures in the key export callback, for example by
+  shutting down the TLS connection.
 
 For users which do not rely on raw keys and IV, adjusting to the new
 callback type should be straightforward - see the example programs
commit	5ec50039927601005534460385bbe9206dcf7ad0	[log] [tgz]
author	Dave Rodgman <dave.rodgman@arm.com>	Tue Jun 22 13:41:56 2021 +0100
committer	Dave Rodgman <dave.rodgman@arm.com>	Tue Jun 22 13:49:09 2021 +0100
tree	edc2df62fd2bcd8db46cbe734b879161f127c4ed
parent	296fefeb981f8c95d580abfb46d52e1838a082eb [diff]