Add release notes for Gerrit v3.3.4
Change-Id: Ice02bc5e497087bf026cfd6b74eaa2e751b48ed3
diff --git a/pages/site/releases/3.3.md b/pages/site/releases/3.3.md
index 057fca1..e6da44e 100644
--- a/pages/site/releases/3.3.md
+++ b/pages/site/releases/3.3.md
@@ -6,12 +6,14 @@
toc: true
---
-Download: **[3.3.3](https://gerrit-releases.storage.googleapis.com/gerrit-3.3.3.war)**
+Download: **[3.3.4](https://gerrit-releases.storage.googleapis.com/gerrit-3.3.4.war)**
+| [3.3.3](https://gerrit-releases.storage.googleapis.com/gerrit-3.3.3.war)
| [3.3.2](https://gerrit-releases.storage.googleapis.com/gerrit-3.3.2.war)
| [3.3.1](https://gerrit-releases.storage.googleapis.com/gerrit-3.3.1.war)
| [3.3.0](https://gerrit-releases.storage.googleapis.com/gerrit-3.3.0.war)
-Documentation: **[3.3.3](https://gerrit-documentation.storage.googleapis.com/Documentation/3.3.3/index.html)**
+Documentation: **[3.3.4](https://gerrit-documentation.storage.googleapis.com/Documentation/3.3.4/index.html)**
+| [3.3.3](https://gerrit-documentation.storage.googleapis.com/Documentation/3.3.3/index.html)
| [3.3.2](https://gerrit-documentation.storage.googleapis.com/Documentation/3.3.2/index.html)
| [3.3.1](https://gerrit-documentation.storage.googleapis.com/Documentation/3.3.1/index.html)
| [3.3.0](https://gerrit-documentation.storage.googleapis.com/Documentation/3.3.0/index.html)
@@ -503,6 +505,93 @@
## Bugfix releases
+### 3.3.4
+
+* Bug Fixes
+
+ * [Issue 13721](https://crbug.com/gerrit/13721):
+ Don't serve polygerrit assets for git requests
+
+ After migration to Polymer UI, PolyGerrit static resources are mounted at
+ the root of the gerrit URL, and would collide with project namespaces, so that
+ the project with these prefixes cannot be served with Git over HTTP protocol.
+
+ * Fix `EqualsLabelPredicate` to not fail when calling match() from a plugin
+
+ Calling `match()` on the `EqualsLabelPredicate` returned from
+ `ChangeQueryBuilder.parse()` in a plugin fails when in the context of an
+ HTTP query.
+
+ * Fix registration redirect on OpenID
+
+ * Log when a new SSH connection is rejected due to exceeded limit
+
+ When the `sshd.maxConnectionsPerUser` got exceeded for a user, new
+ connections from that user were rejected but no log entry was reported.
+
+ * [Issue 14127](https://crbug.com/gerrit/14127):
+ Fix binding of DELETE REST calls from plugins.
+
+ The processing of the DELETE request actually never reached the
+ delete-project plugin due to bug in the RestApiServlet which wrongly
+ delegated the request to a child collection in Gerrit core.
+
+ * [Issue 13140](https://crbug.com/gerrit/13140):
+ OpenID: Remove support for Yahoo! OpenID provider.
+
+ Yahoo! discontinued support for OpenID provider:
+ "OpenID2 will be EOLed on 6/30/20"
+
+ * [Issue 14246](https://crbug.com/gerrit/14246):
+ Creation of internal account does not respect `auth.userNameToLowerCase`.
+
+ The CreateAccount SSH command and REST API was able to create accounts
+ with usernames that contained uppercase letters even if
+ `auth.userNameToLowerCase` was set to true.
+
+ * [Issue 14490](https://crbug.com/gerrit/14490):
+ Missing LDAP metrics for authentication.
+
+ Expose the LDAP metrics in terms of latency and call rates so that any
+ problem can be highlighted early on and potentially alerted to the Gerrit
+ admin.
+
+ * [Issue 14497](https://crbug.com/gerrit/14497):
+ Git/HTTP traffic overloads LDAP with duplicate authentication requests.
+
+ When authenticating incoming Git calls over HTTP the BasicAuth filter was
+ called 3 times per call triggering multiple authentications against the
+ backend.
+
+ * [Issue 14508](https://crbug.com/gerrit/14508):
+ Allow GerritAccount Cookie authentication for Git/HTTP.
+
+ Allow to create a Gerrit session from the GerritAccount cookie set on the
+ Git client, so that only the first HTTP call will actually authenticate
+ and create a session whilst all the others would just reuse the existing
+ cookie.
+
+ * [Issue 14553](https://crbug.com/gerrit/14553):
+ Gerrit REST-API fails when using /a/ prefix and cookies
+
+ Recent fix to support GerritAccount Cookie authentication for Git/HTTP
+ broke existing Python (or other) scripting when performing automation with
+ Gerrit REST-API. That is due to the generation of the GerritAccount cookie
+ in the HTTP response, which Python automatically manages to reuse in
+ subsequent calls.
+
+ * [Issue 11142](https://crbug.com/gerrit/11142):
+ ssh to gerrit with no args requires standard input to terminate.
+
+ * [JGit Issue 552173](https://bugs.eclipse.org/bugs/show_bug.cgi?id=552173)
+ Too many open files when fetching repos with lots of refs
+
+ JGit update fixes "Too many open files" errors.
+
+* Dependency Updates
+
+ * Update JGit to 73f8acdc5c97e068143c86765995c4fb6923ee91.
+
### 3.3.3
* New Features