From: Otto Moerbeek <otto.moerbeek@open-xchange.com>
Date: Wed, 23 Feb 2022 10:22:10 +0000 (+0100)
Subject: Prep for rec-4.7.0-alpha1
X-Git-Tag: rec-4.7.0-beta1~75^2~1
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=ce484c6ffcf6ff317f727980cdf7ff1827c1db5f;p=thirdparty%2Fpdns.git

Prep for rec-4.7.0-alpha1
---

diff --git a/docs/secpoll.zone b/docs/secpoll.zone
index 4c332b2051..f4306335ba 100644
--- a/docs/secpoll.zone
+++ b/docs/secpoll.zone
@@ -1,4 +1,4 @@
-@       86400   IN  SOA pdns-public-ns1.powerdns.com. peter\.van\.dijk.powerdns.com. 2022021701 10800 3600 604800 10800
+@       86400   IN  SOA pdns-public-ns1.powerdns.com. peter\.van\.dijk.powerdns.com. 2022022801 10800 3600 604800 10800
 @       3600    IN  NS  pdns-public-ns1.powerdns.com.
 @       3600    IN  NS  pdns-public-ns2.powerdns.com.
 
@@ -302,6 +302,7 @@ recursor-4.6.0-beta1.security-status                    60 IN TXT "2 Unsupported
 recursor-4.6.0-beta2.security-status                    60 IN TXT "2 Unsupported pre-release"
 recursor-4.6.0-rc1.security-status                      60 IN TXT "2 Unsupported pre-release"
 recursor-4.6.0.security-status                          60 IN TXT "1 OK"
+recursor-4.7.0-alpha1.security-status                   60 IN TXT "1 Unsupported pre-release"
 
 ; Recursor Debian
 recursor-3.6.2-2.debian.security-status                 60 IN TXT "3 Upgrade now, see https://doc.powerdns.com/3/security/powerdns-advisory-2015-01/ and https://doc.powerdns.com/3/security/powerdns-advisory-2016-02/"
diff --git a/pdns/recursordist/docs/changelog/4.7.rst b/pdns/recursordist/docs/changelog/4.7.rst
new file mode 100644
index 0000000000..43ba0e2484
--- /dev/null
+++ b/pdns/recursordist/docs/changelog/4.7.rst
@@ -0,0 +1,135 @@
+Changelogs for 4.7.X
+====================
+
+.. changelog::
+  :version: 4.7.0-alpha1
+  :released: 28th of February 2022
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: 11338, 11349
+    :tickets: 11337
+
+    QType ADDR is supposed to be used internally only.
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: 11347
+
+    Fix unaligned access is murmur hash code used by the Newly Observed Domain feature.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11302
+    :tickets: 11294
+
+    Add Additional records to query results if appropriate and configured.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11294
+
+    Resolve AAAA for NS in an async task if applicable.
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: 11327
+    :tickets: 11320
+
+    A Lua followCNAME result might need native dns64 processing.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11319
+
+    Read the base Lua definitions into the Lua context for reading the Lua config.
+
+  .. change::
+    :tags:  Bug Fixes
+    :pullreq: 11300
+    :tickets: 11289
+
+    Use the Lua context stored in SyncRes when calling hooks.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11307
+
+    Add SNI information to outgoing DoT if available.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11305
+
+    Detect a malformed question early so we can drop it as soon as possible.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11252
+
+    Thread management re-factoring.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11288
+    :tickets: 11287
+
+    Document changes to policy.DROP better and warn on using the now unsupported way.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11283
+
+    Allow disabling of processing the root hints and lower log level of some related messages.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11269
+
+    Move two maps (failed servers and non-resolving nameservers) from thread_local to shared.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11245
+
+    A CNAME answer on DS query should abort DS retrieval.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11189,11100
+
+    ZONEMD validation for Zone to Cache function.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11186
+    :tickets: 11178
+
+    By default, build with symbol visibility hidden.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11164
+
+    Update protozero to 1.7.1.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11074
+
+    Add Lua postresolve_ffi hook.
+
+  .. change::
+    :tags: Improvements
+    :pullreq: 11036
+
+    Compute step sizes for Query Minimization according to RFC 9156.
+
+  .. change::
+    :tags: Bug Fixes
+    :pullreq: 11030
+    :tickets: 11021
+
+    Make incoming TCP bookkeeping more correct.
+
+
diff --git a/pdns/recursordist/docs/changelog/index.rst b/pdns/recursordist/docs/changelog/index.rst
index 77d7f42c07..52f283db4c 100644
--- a/pdns/recursordist/docs/changelog/index.rst
+++ b/pdns/recursordist/docs/changelog/index.rst
@@ -6,6 +6,7 @@ The changelogs for the recursor are split between release trains.
 .. toctree::
     :maxdepth: 2
 
+    4.7
     4.6
     4.5
     4.4
diff --git a/pdns/recursordist/docs/lua-config/additionals.rst b/pdns/recursordist/docs/lua-config/additionals.rst
index 7fb4042559..af97adf535 100644
--- a/pdns/recursordist/docs/lua-config/additionals.rst
+++ b/pdns/recursordist/docs/lua-config/additionals.rst
@@ -1,3 +1,5 @@
+.. _additionals:
+
 Adding Additional Records to Results
 ====================================
 Starting with version 4.7.0, the PowerDNS Recursor has the ability to add additional records to query results.
diff --git a/pdns/recursordist/docs/upgrade.rst b/pdns/recursordist/docs/upgrade.rst
index c35fd255bf..b47ce33530 100644
--- a/pdns/recursordist/docs/upgrade.rst
+++ b/pdns/recursordist/docs/upgrade.rst
@@ -7,9 +7,20 @@ When upgrading several versions, please read **all** notes applying to the upgra
 4.6.x to master
 ---------------
 
+Zone to Cache Changes
+^^^^^^^^^^^^^^^^^^^^^
+The :ref:`ztc` feature now validates ``ZONEMD`` records. This means that zones containing invalid ``ZONEMD`` record will
+be rejected by default, while previously the ``ZONEMD`` records would be ignored. For more detail, refer to :ref:`ztc`.
+
+Asynchronous retrieval of ``AAAA`` records for nameservers
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+If IPv6 is enabled in for outgoing queries using :ref:`setting-query-local-address` the Recursor will schedule an asynchronous task to resolve IPv6 addresses of nameservers it did not learn otherwise.
+These addresses will then be used for future queries to authoritative nameservers.
+This has the consequence that authoritative nameservers will be contacted over IPv6 in more case than before.
+
 Deprecated and changed settings
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
--  The :ref:`setting-hint-file` gained a special value ``no`` to indicate that no hint file should not processed.
+-  The :ref:`setting-hint-file` gained a special value ``no`` to indicate that no hint file should not processed. The hint processing code is also made less verbose.
 
 4.5.x to 4.6.0
 --------------