From 1989c52ca0eecdaadfecb623e9b962026add1dc3 Mon Sep 17 00:00:00 2001
From: Wouter Wijngaards <wouter@nlnetlabs.nl>
Date: Thu, 19 Apr 2018 12:45:27 +0000
Subject: [PATCH] Note bugfix and RFC support. - Fix #658: unbound using TLS in
 a forwarding configuration does not   verify the server's certificate (RFC
 8310 support).

git-svn-id: file:///svn/unbound/trunk@4636 be551aaa-1e26-0410-a405-d3ace91eadb9
---
 doc/Changelog | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/doc/Changelog b/doc/Changelog
index dbe4a59c9..6ed2754df 100644
--- a/doc/Changelog
+++ b/doc/Changelog
@@ -2,7 +2,9 @@
 	- Can set tls authentication with forward-addr: IP#tls.auth.name
 	  And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem".
 	  such as forward-addr: 9.9.9.9@853#dns.quad9.net or
-	  1.1.1.1@853#cloudflare-dns.com (RFC 8310).
+	  1.1.1.1@853#cloudflare-dns.com
+	- Fix #658: unbound using TLS in a forwarding configuration does not
+	  verify the server's certificate (RFC 8310 support).
 
 18 April 2018: Wouter
 	- Fix auth-zone retry timer to be on schedule with retry timeout,