MINOR: cfgparse: Update for "cluster-secret" keyword for QUIC Retry

The QUIC Retry feature is disabled if no "cluster-secret" setting was set.

diff --git a/doc/configuration.txt b/doc/configuration.txt
index 7293a3cb43c6f54b6f5f28baf3d8d3ec37d1bc71..f8a36b0ad9155e93cef6209fc44752bd7cfd7eaa 100644 (file)
--- a/doc/configuration.txt
+++ b/doc/configuration.txt
@@ -1170,8 +1170,9 @@ cluster-secret <secret>
   Define an ASCII string secret shared between several nodes belonging to the
   same cluster. It could be used for different usages. It is at least used to
   derive stateless reset tokens for all the QUIC connections instantiated by
-  this process. If you do not set this parameter, the stateless reset QUIC
-  feature will be silently disabled.
+  this process. This is also the case to derive secrets used to encrypt Retry
+  tokens. If you do not set this parameter, the stateless reset and Retry QUIC
+  features will be both silently disabled.
 
 close-spread-time <time>
   Define a time window during which idle connections and active connections

diff --git a/src/cfgparse.c b/src/cfgparse.c
index 976cd59aeeebd5f8507b3823ddf0feffc0f96c03..c123ff1d72fb2caaa8e8d32fc01fcfb7e3f7f364 100644 (file)
--- a/src/cfgparse.c
+++ b/src/cfgparse.c
@@ -4010,8 +4010,8 @@ out_uri_auth_compat:
        }
 
        if (diag_no_cluster_secret)
-               ha_diag_warning("No cluster secret was set. The stateless reset feature"
-                               " is disabled for all QUIC bindings.\n");
+               ha_diag_warning("No cluster secret was set. The stateless reset and Retry"
+                               " features are disabled for all QUIC bindings.\n");
 
        /*
         * Recount currently required checks.