From: W.C.A. Wijngaards <wouter@nlnetlabs.nl>
Date: Thu, 17 Aug 2023 13:18:46 +0000 (+0200)
Subject: Changelog note for #762.
X-Git-Tag: release-1.18.0rc1~13
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=0f5fecd516a1f1f266f3d58c255a193970b7202f;p=thirdparty%2Funbound.git

Changelog note for #762.
- Merge PR #762: Downstream DNS Server Cookies a la RFC7873 and
  RFC9018. Create server cookies for clients that send client cookies.
  This needs to be explicitly turned on in the config file with:
  `answer-cookie: yes`. A `cookie-secret:` can be configured for
  anycast setups. Without one, a random cookie secret is generated.
  The acl option `allow_cookie` allows queries with either a valid
  cookie or over a stateful transport. The statistics output has
  `queries_cookie_valid` and `queries_cookie_client` and
  `queries_cookie_invalid` information. The `ip\-ratelimit\-cookie:`
  value determines a rate limit for queries with cookies, if desired.
---

diff --git a/doc/Changelog b/doc/Changelog
index 0b35c27b5..bf23a003c 100644
--- a/doc/Changelog
+++ b/doc/Changelog
@@ -1,3 +1,15 @@
+17 August 2023: Wouter
+	- Merge PR #762: Downstream DNS Server Cookies a la RFC7873 and
+	  RFC9018. Create server cookies for clients that send client cookies.
+	  This needs to be explicitly turned on in the config file with:
+	  `answer-cookie: yes`. A `cookie-secret:` can be configured for
+	  anycast setups. Without one, a random cookie secret is generated.
+	  The acl option `allow_cookie` allows queries with either a valid
+	  cookie or over a stateful transport. The statistics output has
+	  `queries_cookie_valid` and `queries_cookie_client` and
+	  `queries_cookie_invalid` information. The `ip\-ratelimit\-cookie:`
+	  value determines a rate limit for queries with cookies, if desired.
+
 2 August 2023: George
 	- Move a cache reply callback in worker.c closer to the cache reply
 	  generation.