From 834bb4e52b55f8b22db7dcc9af7715a73d4c58f7 Mon Sep 17 00:00:00 2001
From: Artem Boldariev <artem@boldariev.com>
Date: Tue, 28 Sep 2021 13:13:47 +0300
Subject: [PATCH] Modify release notes [GL #2796]

Mention the new "tls" clause options in the release notes.
---
 doc/notes/notes-current.rst | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/doc/notes/notes-current.rst b/doc/notes/notes-current.rst
index 3dedf1a11d..94a49630be 100644
--- a/doc/notes/notes-current.rst
+++ b/doc/notes/notes-current.rst
@@ -27,6 +27,15 @@ New Features
 - Ability to specify supported TLS protocol versions within ``tls``
   clauses (e.g. ``protocols { TLSv1.2; TLSv1.3; };``). :gl:`#2795`
 
+- New options within ``tls`` clauses were implemented, namely:
+  - ``dhparam-file "<path_to_file>";`` to specify Diffie-Hellman parameters;
+  - ``ciphers "<cipher_list>";`` to specify OpenSSL ciphers list;
+  - ``prefer-server-ciphers yes|no;`` to assert server or client ciphers preference;
+  - ``session-tickets yes|no;`` to explicitly enable or disable stateless TLS session tickets (see RFC5077).
+  These options allow finer control over TLS protocol features and make it
+  possible to achieve perfect forward secrecy for DNS-over-TLS and
+  DNS-over-HTTPS. :gl:`#2796`
+
 Removed Features
 ~~~~~~~~~~~~~~~~