From 9ed8a6d2011a2dc14ef9a5902d8dbce238d6aabf Mon Sep 17 00:00:00 2001
From: Peter van Dijk <peter.van.dijk@powerdns.com>
Date: Thu, 17 Dec 2020 10:16:48 +0100
Subject: [PATCH] changelog+secpoll+EOL update for auth-4.4.0

---
 docs/appendices/EOL.rst | 22 +++++++++---------
 docs/changelog/4.4.rst  | 51 +++++++++++++++++++++++++++++++++++++++++
 docs/secpoll.zone       |  7 +++---
 3 files changed, 66 insertions(+), 14 deletions(-)

diff --git a/docs/appendices/EOL.rst b/docs/appendices/EOL.rst
index c3b04dafb8..dec66cfdf8 100644
--- a/docs/appendices/EOL.rst
+++ b/docs/appendices/EOL.rst
@@ -7,14 +7,14 @@ The release before that gets critical security updates only.
 Older releases are marked end of life and receive no updates at all.
 Pre-releases do not receive immediate security updates.
 
-The currently supported release train of PowerDNS Authoritative Server is 4.3.
+The currently supported release train of PowerDNS Authoritative Server is 4.4.
 
-PowerDNS Authoritative Server 4.2 will only receive correctness, stability and security updates and will be receiving security updates only after PowerDNS Authoritative Server 4.4 is released.
-It wil be end of life after PowerDNS Authoritative Server 4.5 is released.
+PowerDNS Authoritative Server 4.3 will only receive correctness, stability and security updates and will be receiving security updates only after PowerDNS Authoritative Server 4.5 is released.
+It will be end of life after PowerDNS Authoritative Server 4.6 is released.
 
-PowerDNS Authoritative Server 4.1 will only receive critical security updates and will be end of life after PowerDNS Authoritative Server 4.4 is released.
+PowerDNS Authoritative Server 4.2 will only receive critical security updates and will be end of life after PowerDNS Authoritative Server 4.5 is released.
 
-PowerDNS Authoritative Server 4.0, 3.x and 2.x are end of life, and will not
+PowerDNS Authoritative Server 4.1, 4.0, 3.x and 2.x are end of life, and will not
 receive any updates, not even security fixes.
 
 Note: Users with a commercial agreement with PowerDNS.COM BV or Open-Xchange
@@ -28,19 +28,19 @@ such a user, these EOL statements do not apply to you.
      - Release date
      - Security-Only updates
      - End of Life
+   * - 4.4
+     - December 18 2020
+     - ~ December 2021
+     - ~ June 2022
    * - 4.3
      - April 7 2020
      - ~ April 2021
      - ~ October 2021
    * - 4.2
      - August 30 2019
-     - ~ October 2020
+     - December 2020
      - ~ April 2021
-   * - 4.1
-     - November 30 2017
-     - April 7 2020
-     - ~ October 2020
-   * - 4.0 and older
+   * - 4.1 and older
      - EOL
      - EOL
      - EOL
diff --git a/docs/changelog/4.4.rst b/docs/changelog/4.4.rst
index c162b2e01f..6ad4dac39b 100644
--- a/docs/changelog/4.4.rst
+++ b/docs/changelog/4.4.rst
@@ -1,6 +1,57 @@
 Changelogs for 4.4.x
 ====================
 
+.. changelog::
+  :version: 4.4.0
+  :released: 18th of December 2020
+
+  This is version 4.4.0 of the Authoritative Server.
+
+  This release drops GSS/TSIG support, please see :doc:`PowerDNS Security Advisory 2020-06 <../security-advisories/powerdns-advisory-2020-06>`.
+
+  Version 4.4.0 brings a bunch of exciting changes:
+
+  * the LMDB backend now supports long record content, making it production ready for everybody
+  * the SVCB and HTTPS record types are supported, with limited additional processing
+  * transaction handling in the 2136 handler and the HTTP API was again improved a lot, avoiding various spurious issues users may have noticed if they do a lot of changes
+  * a new setting (:ref:`setting-consistent-backends`) offers a roughly 30% speedup, subject to conditions
+  * we finally emit Prometheus metrics!
+
+  We want to specifically thank Robin Geuze, Kees Monshouwer, Mischan Toosarani-Hausberger, Chris Hofstaedtler, and Kevin Fleming for their contributions to this release.
+  We are also grateful to all other reporters of bugs, issues, feature requests, and submitters of smaller fixes and features.
+
+  Please make sure to read the :doc:`upgrade notes <../upgrading>` before upgrading.
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: #9884
+
+    clear the LMDB set state when performing a new lookup or list to prevent corruption cases (Robin Geuze)
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: #9878
+
+    SVCB: Correctly parse and print unknown params
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: #9873
+
+    fix direct-dnskey in AXFR-out (Kees Monshouwer)
+
+  .. change::
+    :tags: Improvements
+    :pullreq: #9866
+
+    don't log trusted-notification-proxy notify at error level (Kees Monshouwer)
+
+  .. change::
+    :tags: Improvements
+    :pullreq: #9853
+
+    Stop using incbin and use od & sed to generate constant string data.
+
 .. changelog::
   :version: 4.4.0-rc1
   :released: 7th of December 2020
diff --git a/docs/secpoll.zone b/docs/secpoll.zone
index 849b29bef1..45eaddcc6b 100644
--- a/docs/secpoll.zone
+++ b/docs/secpoll.zone
@@ -1,4 +1,4 @@
-@       86400   IN  SOA pdns-public-ns1.powerdns.com. pieter\.lexis.powerdns.com. 2020121401 10800 3600 604800 10800
+@       86400   IN  SOA pdns-public-ns1.powerdns.com. pieter\.lexis.powerdns.com. 2020121801 10800 3600 604800 10800
 @       3600    IN  NS  pdns-public-ns1.powerdns.com.
 @       3600    IN  NS  pdns-public-ns2.powerdns.com.
 
@@ -53,7 +53,7 @@ auth-4.1.10.security-status                             60 IN TXT "3 Upgrade now
 auth-4.1.11.security-status                             60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2020-05.html"
 auth-4.1.12.security-status                             60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2020-05.html"
 auth-4.1.13.security-status                             60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2020-05.html"
-auth-4.1.14.security-status                             60 IN TXT "1 OK"
+auth-4.1.14.security-status                             60 IN TXT "2 Unsupported release (EOL)"
 auth-4.2.0-alpha1.security-status                       60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-03.html"
 auth-4.2.0-beta1.security-status                        60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-03.html"
 auth-4.2.0-rc1.security-status                          60 IN TXT "2 Unsupported pre-release (known vulnerabilities)"
@@ -74,7 +74,8 @@ auth-4.4.0-alpha1.security-status                       60 IN TXT "2 Unsupported
 auth-4.4.0-alpha2.security-status                       60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)"
 auth-4.4.0-alpha3.security-status                       60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)"
 auth-4.4.0-beta1.security-status                        60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)"
-auth-4.4.0-rc1.security-status                          60 IN TXT "1 OK"
+auth-4.4.0-rc1.security-status                          60 IN TXT "2 Unsupported pre-release (no known vulnerabilities)"
+auth-4.4.0.security-status                              60 IN TXT "1 OK"
 
 ; Auth Debian
 auth-3.4.1-2.debian.security-status                     60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/3/security/powerdns-advisory-2015-01/ and https://doc.powerdns.com/3/security/powerdns-advisory-2015-02/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-02/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-03/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-04/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-05/"
-- 
2.47.2