github.com/franono/tendermint@v0.32.2-0.20200527150959-749313264ce9/CHANGELOG.md (about) 1 # Changelog 2 3 ## v0.33.4 4 5 - Nodes are no longer guaranteed to contain all blocks up to the latest height. The ABCI app can now control which blocks to retain through the ABCI field `ResponseCommit.retain_height`, all blocks and associated data below this height will be removed. 6 7 *April 21, 2020* 8 9 Special thanks to external contributors on this release: @whylee259, @greg-szabo 10 11 Friendly reminder, we have a [bug bounty program](https://hackerone.com/tendermint). 12 13 ### BREAKING CHANGES: 14 15 - Go API 16 17 - [lite2] [\#4616](https://github.com/franono/tendermint/pull/4616) Make `maxClockDrift` an option `Verify/VerifyAdjacent/VerifyNonAdjacent` now accept `maxClockDrift time.Duration` (@melekes). 18 - [rpc/client] [\#4628](https://github.com/franono/tendermint/pull/4628) Split out HTTP and local clients into `http` and `local` packages (@erikgrinaker). 19 20 ### FEATURES: 21 22 - [abci] [\#4588](https://github.com/franono/tendermint/issues/4588) Add `ResponseCommit.retain_height` field, which will automatically remove blocks below this height. This bumps the ABCI version to 0.16.2 (@erikgrinaker). 23 - [cmd] [\#4665](https://github.com/franono/tendermint/pull/4665) New `tendermint completion` command to generate Bash/Zsh completion scripts (@alessio). 24 - [rpc] [\#4588](https://github.com/franono/tendermint/issues/4588) Add `/status` response fields for the earliest block available on the node (@erikgrinaker). 25 - [rpc] [\#4611](https://github.com/franono/tendermint/pull/4611) Add `codespace` to `ResultBroadcastTx` (@whylee259). 26 27 ### IMPROVEMENTS: 28 29 - [all] [\#4608](https://github.com/franono/tendermint/pull/4608) Give reactors descriptive names when they're initialized (@tessr). 30 - [blockchain] [\#4588](https://github.com/franono/tendermint/issues/4588) Add `Base` to blockchain reactor P2P messages `StatusRequest` and `StatusResponse` (@erikgrinaker). 31 - [Docker] [\#4569](https://github.com/franono/tendermint/issues/4569) Default configuration added to docker image (you can still mount your own config the same way) (@greg-szabo). 32 - [example/kvstore] [\#4588](https://github.com/franono/tendermint/issues/4588) Add `RetainBlocks` option to control block retention (@erikgrinaker). 33 - [evidence] [\#4632](https://github.com/franono/tendermint/pull/4632) Inbound evidence checked if already existing (@cmwaters). 34 - [lite2] [\#4575](https://github.com/franono/tendermint/pull/4575) Use bisection for within-range verification (@cmwaters). 35 - [lite2] [\#4562](https://github.com/franono/tendermint/pull/4562) Cache headers when using bisection (@cmwaters). 36 - [p2p] [\#4548](https://github.com/franono/tendermint/pull/4548) Add ban list to address book (@cmwaters). 37 - [privval] [\#4534](https://github.com/franono/tendermint/issues/4534) Add `error` as a return value on`GetPubKey()` (@marbar3778). 38 - [p2p] [\#4621](https://github.com/franono/tendermint/issues/4621) Ban peers when messages are unsolicited or too frequent (@cmwaters). 39 - [rpc] [\#4703](https://github.com/franono/tendermint/pull/4703) Add `count` and `total` to `/validators` response (@melekes). 40 - [tools] [\#4615](https://github.com/franono/tendermint/issues/4615) Allow developers to use Docker to generate proto stubs, via `make proto-gen-docker` (@erikgrinaker). 41 42 ### BUG FIXES: 43 44 - [rpc] [\#4568](https://github.com/franono/tendermint/issues/4568) Fix panic when `Subscribe` is called, but HTTP client is not running. `Subscribe`, `Unsubscribe(All)` methods return an error now (@melekes). 45 46 ## v0.33.3 47 48 *April 6, 2020* 49 50 This security release fixes: 51 52 ### Denial of service 1 53 54 Tendermint 0.33.2 and earlier does not limit P2P connection requests number. 55 For each p2p connection, Tendermint allocates ~0.5MB. Even though this 56 memory is garbage collected once the connection is terminated (due to duplicate 57 IP or reaching a maximum number of inbound peers), temporary memory spikes can 58 lead to OOM (Out-Of-Memory) exceptions. 59 60 Tendermint 0.33.3 (and 0.32.10) limits the total number of P2P incoming 61 connection requests to to `p2p.max_num_inbound_peers + 62 len(p2p.unconditional_peer_ids)`. 63 64 Notes: 65 66 - Tendermint does not rate limit P2P connection requests per IP (an attacker 67 can saturate all the inbound slots); 68 - Tendermint does not rate limit HTTP(S) requests. If you expose any RPC 69 endpoints to the public, please make sure to put in place some protection 70 (https://www.nginx.com/blog/rate-limiting-nginx/). We may implement this in 71 the future ([\#1696](https://github.com/franono/tendermint/issues/1696)). 72 73 ### Denial of service 2 74 75 Tendermint 0.33.2 and earlier does not reclaim `activeID` of a peer after it's 76 removed in `Mempool` reactor. This does not happen all the time. It only 77 happens when a connection fails (for any reason) before the Peer is created and 78 added to all reactors. `RemovePeer` is therefore called before `AddPeer`, which 79 leads to always growing memory (`activeIDs` map). The `activeIDs` map has a 80 maximum size of 65535 and the node will panic if this map reaches the maximum. 81 An attacker can create a lot of connection attempts (exploiting Denial of 82 service 1), which ultimately will lead to the node panicking. 83 84 Tendermint 0.33.3 (and 0.32.10) claims `activeID` for a peer in `InitPeer`, 85 which is executed before `MConnection` is started. 86 87 Notes: 88 89 - `InitPeer` function was added to all reactors to combat a similar issue - 90 [\#3338](https://github.com/franono/tendermint/issues/3338); 91 - Denial of service 2 is independent of Denial of service 1 and can be executed 92 without it. 93 94 **All clients are recommended to upgrade** 95 96 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for finding 97 and reporting this. 98 99 Friendly reminder, we have a [bug bounty 100 program](https://hackerone.com/tendermint). 101 102 ### SECURITY: 103 104 - [mempool] Reserve IDs in InitPeer instead of AddPeer (@tessr) 105 - [p2p] Limit the number of incoming connections (@melekes) 106 107 ## v0.33.2 108 109 *March 11, 2020* 110 111 Special thanks to external contributors on this release: 112 @antho1404, @michaelfig, @gterzian, @tau3, @Shivani912 113 114 Friendly reminder, we have a [bug bounty program](https://hackerone.com/tendermint). 115 116 ### BREAKING CHANGES: 117 118 - CLI/RPC/Config 119 - [cli] [\#4505](https://github.com/franono/tendermint/pull/4505) `tendermint lite` sub-command new syntax (@melekes): 120 `lite cosmoshub-3 -p 52.57.29.196:26657 -w public-seed-node.cosmoshub.certus.one:26657 121 --height 962118 --hash 28B97BE9F6DE51AC69F70E0B7BFD7E5C9CD1A595B7DC31AFF27C50D4948` 122 123 - Go API 124 - [lite2] [\#4535](https://github.com/franono/tendermint/pull/4535) Remove `Start/Stop` (@melekes) 125 - [lite2] [\#4469](https://github.com/franono/tendermint/issues/4469) Remove `RemoveNoLongerTrustedHeaders` and `RemoveNoLongerTrustedHeadersPeriod` option (@cmwaters) 126 - [lite2] [\#4473](https://github.com/franono/tendermint/issues/4473) Return height as a 2nd param in `TrustedValidatorSet` (@melekes) 127 - [lite2] [\#4536](https://github.com/franono/tendermint/pull/4536) `Update` returns a signed header (1st param) (@melekes) 128 129 130 ### IMPROVEMENTS: 131 132 - [blockchain/v2] [\#4361](https://github.com/franono/tendermint/pull/4361) Add reactor (@brapse) 133 - [cmd] [\#4515](https://github.com/franono/tendermint/issues/4515) Change `tendermint debug dump` sub-command archives filename's format (@melekes) 134 - [consensus] [\#3583](https://github.com/franono/tendermint/issues/3583) Reduce `non-deterministic signature` log noise (@tau3) 135 - [examples/kvstore] [\#4507](https://github.com/franono/tendermint/issues/4507) ABCI query now returns the proper height (@erikgrinaker) 136 - [lite2] [\#4462](https://github.com/franono/tendermint/issues/4462) Add `NewHTTPClient` and `NewHTTPClientFromTrustedStore` (@cmwaters) 137 - [lite2] [\#4329](https://github.com/franono/tendermint/issues/4329) modified bisection to loop (@cmwaters) 138 - [lite2] [\#4385](https://github.com/franono/tendermint/issues/4385) Disconnect from bad nodes (@melekes) 139 - [lite2] [\#4398](https://github.com/franono/tendermint/issues/4398) Add `VerifyAdjacent` and `VerifyNonAdjacent` funcs (@cmwaters) 140 - [lite2] [\#4426](https://github.com/franono/tendermint/issues/4426) Don't save intermediate headers (@cmwaters) 141 - [lite2] [\#4464](https://github.com/franono/tendermint/issues/4464) Cross-check first header (@cmwaters) 142 - [lite2] [\#4470](https://github.com/franono/tendermint/issues/4470) Fix inconsistent header-validatorset pairing (@melekes) 143 - [lite2] [\#4488](https://github.com/franono/tendermint/issues/4488) Allow local clock drift -10 sec. (@melekes) 144 - [p2p] [\#4449](https://github.com/franono/tendermint/pull/4449) Use `curve25519.X25519()` instead of `ScalarMult` (@erikgrinaker) 145 - [types] [\#4417](https://github.com/franono/tendermint/issues/4417) **VerifyCommitX() functions should return as soon as +2/3 threshold is reached** (@alessio). 146 - [libs/kv] [\#4542](https://github.com/franono/tendermint/pull/4542) remove unused type KI64Pair (@tessr) 147 148 ### BUG FIXES: 149 150 - [cmd] [\#4303](https://github.com/franono/tendermint/issues/4303) Show useful error when Tendermint is not initialized (@melekes) 151 - [cmd] [\#4515](https://github.com/franono/tendermint/issues/4515) **Fix `tendermint debug kill` sub-command** (@melekes) 152 - [rpc] [\#3935](https://github.com/franono/tendermint/issues/3935) **Create buffered subscriptions on `/subscribe`** (@melekes) 153 - [rpc] [\#4375](https://github.com/franono/tendermint/issues/4375) Stop searching for txs in `/tx_search` upon client timeout (@gterzian) 154 - [rpc] [\#4406](https://github.com/franono/tendermint/pull/4406) Fix issue with multiple subscriptions on the websocket (@antho1404) 155 - [rpc] [\#4432](https://github.com/franono/tendermint/issues/4432) Fix `/tx_search` pagination with ordered results (@erikgrinaker) 156 - [rpc] [\#4492](https://github.com/franono/tendermint/issues/4492) Keep the original subscription "id" field when new RPCs come in (@michaelfig) 157 158 159 ## v0.33.1 160 161 *Feburary 13, 2020* 162 163 Special thanks to external contributors on this release: 164 @princesinha19 165 166 Friendly reminder, we have a [bug bounty 167 program](https://hackerone.com/tendermint). 168 169 ### FEATURES: 170 171 - [rpc] [\#3333](https://github.com/franono/tendermint/issues/3333) Add `order_by` to `/tx_search` endpoint, allowing to change default ordering from asc to desc (@princesinha19) 172 173 ### IMPROVEMENTS: 174 175 - [proto] [\#4369](https://github.com/franono/tendermint/issues/4369) Add [buf](https://buf.build/) for usage with linting and checking if there are breaking changes with the master branch. 176 - [proto] [\#4369](https://github.com/franono/tendermint/issues/4369) Add `make proto-gen` cmd to generate proto stubs outside of GOPATH. 177 178 ### BUG FIXES: 179 180 - [node] [\#4311](https://github.com/franono/tendermint/issues/4311) Use `GRPCMaxOpenConnections` when creating the gRPC server, not `MaxOpenConnections` 181 - [rpc] [\#4319](https://github.com/franono/tendermint/issues/4319) Check `BlockMeta` is not nil in `/block` & `/block_by_hash` 182 183 ## v0.33 184 185 Special thanks to external contributors on this release: @mrekucci, @PSalant726, @princesinha19, @greg-szabo, @dongsam, @cuonglm, @jgimeno, @yenkhoon 186 187 Friendly reminder, we have a [bug bounty 188 program.](https://hackerone.com/tendermint). 189 190 *January 14, 2020* 191 192 This release contains breaking changes to the `Block#Header`, specifically 193 `NumTxs` and `TotalTxs` were removed (\#2521). Here's how this change affects 194 different modules: 195 196 - apps: it breaks the ABCI header field numbering 197 - state: it breaks the format of `State` on disk 198 - RPC: all RPC requests which expose the header broke 199 - Go API: the `Header` broke 200 - P2P: since blocks go over the wire, technically the P2P protocol broke 201 202 Also, blocks are significantly smaller 🔥 because we got rid of the redundant 203 information in `Block#LastCommit`. `Commit` now mainly consists of a signature 204 and a validator address plus a timestamp. Note we may remove the validator 205 address & timestamp fields in the future (see ADR-25). 206 207 `lite2` package has been added to solve `lite` issues and introduce weak 208 subjectivity interface. Refer to the [spec](https://github.com/tendermint/spec/blob/master/spec/consensus/light-client.md) for complete details. 209 `lite` package is now deprecated and will be removed in v0.34 release. 210 211 ### BREAKING CHANGES: 212 213 - CLI/RPC/Config 214 215 - [rpc] [\#3471](https://github.com/franono/tendermint/issues/3471) Paginate `/validators` response (default: 30 vals per page) 216 - [rpc] [\#3188](https://github.com/franono/tendermint/issues/3188) Remove `BlockMeta` in `ResultBlock` in favor of `BlockId` for `/block` 217 - [rpc] `/block_results` response format updated (see RPC docs for details) 218 ``` 219 { 220 "jsonrpc": "2.0", 221 "id": "", 222 "result": { 223 "height": "2109", 224 "txs_results": null, 225 "begin_block_events": null, 226 "end_block_events": null, 227 "validator_updates": null, 228 "consensus_param_updates": null 229 } 230 } 231 ``` 232 - [rpc] [\#4141](https://github.com/franono/tendermint/pull/4141) Remove `#event` suffix from the ID in event responses. 233 `{"jsonrpc": "2.0", "id": 0, "result": ...}` 234 - [rpc] [\#4141](https://github.com/franono/tendermint/pull/4141) Switch to integer IDs instead of `json-client-XYZ` 235 ``` 236 id=0 method=/subscribe 237 id=0 result=... 238 id=1 method=/abci_query 239 id=1 result=... 240 ``` 241 - ID is unique for each request; 242 - Request.ID is now optional. Notification is a Request without an ID. Previously ID="" or ID=0 were considered as notifications. 243 244 - [config] [\#4046](https://github.com/franono/tendermint/issues/4046) Rename tag(s) to CompositeKey & places where tag is still present it was renamed to event or events. Find how a compositeKey is constructed [here](https://github.com/franono/tendermint/blob/6d05c531f7efef6f0619155cf10ae8557dd7832f/docs/app-dev/indexing-transactions.md) 245 - You will have to generate a new config for your Tendermint node(s) 246 - [genesis] [\#2565](https://github.com/franono/tendermint/issues/2565) Add `consensus_params.evidence.max_age_duration`. Rename 247 `consensus_params.evidence.max_age` to `max_age_num_blocks`. 248 - [cli] [\#1771](https://github.com/franono/tendermint/issues/1771) `tendermint lite` now uses new light client package (`lite2`) 249 and has 3 more flags: `--trusting-period`, `--trusted-height` and 250 `--trusted-hash` 251 252 - Apps 253 254 - [tm-bench] Removed tm-bench in favor of [tm-load-test](https://github.com/informalsystems/tm-load-test) 255 256 - Go API 257 258 - [rpc] [\#3953](https://github.com/franono/tendermint/issues/3953) Modify NewHTTP, NewXXXClient functions to return an error on invalid remote instead of panicking (@mrekucci) 259 - [rpc/client] [\#3471](https://github.com/franono/tendermint/issues/3471) `Validators` now requires two more args: `page` and `perPage` 260 - [libs/common] [\#3262](https://github.com/franono/tendermint/issues/3262) Make error the last parameter of `Task` (@PSalant726) 261 - [cs/types] [\#3262](https://github.com/franono/tendermint/issues/3262) Rename `GotVoteFromUnwantedRoundError` to `ErrGotVoteFromUnwantedRound` (@PSalant726) 262 - [libs/common] [\#3862](https://github.com/franono/tendermint/issues/3862) Remove `errors.go` from `libs/common` 263 - [libs/common] [\#4230](https://github.com/franono/tendermint/issues/4230) Move `KV` out of common to its own pkg 264 - [libs/common] [\#4230](https://github.com/franono/tendermint/issues/4230) Rename `cmn.KVPair(s)` to `kv.Pair(s)`s 265 - [libs/common] [\#4232](https://github.com/franono/tendermint/issues/4232) Move `Service` & `BaseService` from `libs/common` to `libs/service` 266 - [libs/common] [\#4232](https://github.com/franono/tendermint/issues/4232) Move `common/nil.go` to `types/utils.go` & make the functions private 267 - [libs/common] [\#4231](https://github.com/franono/tendermint/issues/4231) Move random functions from `libs/common` into pkg `rand` 268 - [libs/common] [\#4237](https://github.com/franono/tendermint/issues/4237) Move byte functions from `libs/common` into pkg `bytes` 269 - [libs/common] [\#4237](https://github.com/franono/tendermint/issues/4237) Move throttletimer functions from `libs/common` into pkg `timer` 270 - [libs/common] [\#4237](https://github.com/franono/tendermint/issues/4237) Move tempfile functions from `libs/common` into pkg `tempfile` 271 - [libs/common] [\#4240](https://github.com/franono/tendermint/issues/4240) Move os functions from `libs/common` into pkg `os` 272 - [libs/common] [\#4240](https://github.com/franono/tendermint/issues/4240) Move net functions from `libs/common` into pkg `net` 273 - [libs/common] [\#4240](https://github.com/franono/tendermint/issues/4240) Move mathematical functions and types out of `libs/common` to `math` pkg 274 - [libs/common] [\#4240](https://github.com/franono/tendermint/issues/4240) Move string functions out of `libs/common` to `strings` pkg 275 - [libs/common] [\#4240](https://github.com/franono/tendermint/issues/4240) Move async functions out of `libs/common` to `async` pkg 276 - [libs/common] [\#4240](https://github.com/franono/tendermint/issues/4240) Move bit functions out of `libs/common` to `bits` pkg 277 - [libs/common] [\#4240](https://github.com/franono/tendermint/issues/4240) Move cmap functions out of `libs/common` to `cmap` pkg 278 - [libs/common] [\#4258](https://github.com/franono/tendermint/issues/4258) Remove `Rand` from all `rand` pkg functions 279 - [types] [\#2565](https://github.com/franono/tendermint/issues/2565) Remove `MockBadEvidence` & `MockGoodEvidence` in favor of `MockEvidence` 280 281 - Blockchain Protocol 282 283 - [abci] [\#2521](https://github.com/franono/tendermint/issues/2521) Remove `TotalTxs` and `NumTxs` from `Header` 284 - [types] [\#4151](https://github.com/franono/tendermint/pull/4151) Enforce ordering of votes in DuplicateVoteEvidence to be lexicographically sorted on BlockID 285 - [types] [\#1648](https://github.com/franono/tendermint/issues/1648) Change `Commit` to consist of just signatures 286 287 - P2P Protocol 288 289 - [p2p] [\#3668](https://github.com/franono/tendermint/pull/3668) Make `SecretConnection` non-malleable 290 291 - [proto] [\#3986](https://github.com/franono/tendermint/pull/3986) Prefix protobuf types to avoid name conflicts. 292 - ABCI becomes `tendermint.abci.types` with the new API endpoint `/tendermint.abci.types.ABCIApplication/` 293 - core_grpc becomes `tendermint.rpc.grpc` with the new API endpoint `/tendermint.rpc.grpc.BroadcastAPI/` 294 - merkle becomes `tendermint.crypto.merkle` 295 - libs.common becomes `tendermint.libs.common` 296 - proto3 becomes `tendermint.types.proto3` 297 298 ### FEATURES: 299 300 - [p2p] [\#4053](https://github.com/franono/tendermint/issues/4053) Add `unconditional_peer_ids` and `persistent_peers_max_dial_period` config variables (see ADR-050) (@dongsam) 301 - [tools] [\#4227](https://github.com/franono/tendermint/pull/4227) Implement `tendermint debug kill` and 302 `tendermint debug dump` commands for Tendermint node debugging functionality. See `--help` in both 303 commands for further documentation and usage. 304 - [cli] [\#4234](https://github.com/franono/tendermint/issues/4234) Add `--db_backend and --db_dir` flags (@princesinha19) 305 - [cli] [\#4113](https://github.com/franono/tendermint/issues/4113) Add optional `--genesis_hash` flag to check genesis hash upon startup 306 - [config] [\#3831](https://github.com/franono/tendermint/issues/3831) Add support for [RocksDB](https://rocksdb.org/) (@Stumble) 307 - [rpc] [\#3985](https://github.com/franono/tendermint/issues/3985) Add new `/block_by_hash` endpoint, which allows to fetch a block by its hash (@princesinha19) 308 - [metrics] [\#4263](https://github.com/franono/tendermint/issues/4263) Add 309 - `consensus_validator_power`: track your validators power 310 - `consensus_validator_last_signed_height`: track at which height the validator last signed 311 - `consensus_validator_missed_blocks`: total amount of missed blocks for a validator 312 as gauges in prometheus for validator specific metrics 313 - [rpc/lib] [\#4248](https://github.com/franono/tendermint/issues/4248) RPC client basic authentication support (@greg-szabo) 314 - [lite2] [\#1771](https://github.com/franono/tendermint/issues/1771) Light client with weak subjectivity 315 316 ### IMPROVEMENTS: 317 318 - [rpc] [\#3188](https://github.com/franono/tendermint/issues/3188) Added `block_size` to `BlockMeta` this is reflected in `/blockchain` 319 - [types] [\#2521](https://github.com/franono/tendermint/issues/2521) Add `NumTxs` to `BlockMeta` and `EventDataNewBlockHeader` 320 - [p2p] [\#4185](https://github.com/franono/tendermint/pull/4185) Simplify `SecretConnection` handshake with merlin 321 - [cli] [\#4065](https://github.com/franono/tendermint/issues/4065) Add `--consensus.create_empty_blocks_interval` flag (@jgimeno) 322 - [docs] [\#4065](https://github.com/franono/tendermint/issues/4065) Document `--consensus.create_empty_blocks_interval` flag (@jgimeno) 323 - [crypto] [\#4190](https://github.com/franono/tendermint/pull/4190) Added SR25519 signature scheme 324 - [abci] [\#4177] kvstore: Return `LastBlockHeight` and `LastBlockAppHash` in `Info` (@princesinha19) 325 - [rpc] [\#2741](https://github.com/franono/tendermint/issues/2741) Add `proposer` to `/consensus_state` response (@princesinha19) 326 - [deps] [\#4289](https://github.com/franono/tendermint/pull/4289) Update tm-db to 0.4.0, this includes major breaking changes in the dep that change how errors are handled. 327 328 ### BUG FIXES: 329 330 - [rpc/lib][\#4051](https://github.com/franono/tendermint/pull/4131) Fix RPC client, which was previously resolving https protocol to http (@yenkhoon) 331 - [rpc] [\#4141](https://github.com/franono/tendermint/pull/4141) JSONRPCClient: validate that Response.ID matches Request.ID 332 - [rpc] [\#4141](https://github.com/franono/tendermint/pull/4141) WSClient: check for unsolicited responses 333 - [types] [\4164](https://github.com/franono/tendermint/pull/4164) Prevent temporary power overflows on validator updates 334 - [cs] [\#4069](https://github.com/franono/tendermint/issues/4069) Don't panic when block meta is not found in store (@gregzaitsev) 335 - [types] [\#4164](https://github.com/franono/tendermint/issues/4164) Prevent temporary power overflows on validator updates (joint 336 efforts of @gchaincl and @ancazamfir) 337 - [p2p] [\#4140](https://github.com/franono/tendermint/issues/4140) `SecretConnection`: use the transcript solely for authentication (i.e. MAC) 338 - [consensus/types] [\#4243](https://github.com/franono/tendermint/issues/4243) fix BenchmarkRoundStateDeepCopy panics (@cuonglm) 339 - [rpc] [\#4256](https://github.com/franono/tendermint/issues/4256) Pass `outCapacity` to `eventBus#Subscribe` when subscribing using a local client 340 341 ## v0.32.11 342 343 ### BUG FIXES: 344 345 - [privval] [\#4275](https://github.com/franono/tendermint/issues/4275) Fix consensus failure when remote signer drops (@melekes) 346 347 ## v0.32.10 348 349 *April 6, 2020* 350 351 This security release fixes: 352 353 ### Denial of Service 1 354 355 Tendermint 0.33.2 and earlier does not limit the number of P2P connection 356 requests. For each p2p connection, Tendermint allocates ~0.5MB. Even though 357 this memory is garbage collected once the connection is terminated (due to 358 duplicate IP or reaching a maximum number of inbound peers), temporary memory 359 spikes can lead to OOM (Out-Of-Memory) exceptions. 360 361 Tendermint 0.33.3 (and 0.32.10) limits the total number of P2P incoming 362 connection requests to to `p2p.max_num_inbound_peers + 363 len(p2p.unconditional_peer_ids)`. 364 365 Notes: 366 367 - Tendermint does not rate limit P2P connection requests per IP (an attacker 368 can saturate all the inbound slots); 369 - Tendermint does not rate limit HTTP(S) requests. If you expose any RPC 370 endpoints to the public, please make sure to put in place some protection 371 (https://www.nginx.com/blog/rate-limiting-nginx/). We may implement this in 372 the future ([\#1696](https://github.com/franono/tendermint/issues/1696)). 373 374 ### Denial of Service 2 375 376 Tendermint 0.33.2 and earlier does not reclaim `activeID` of a peer after it's 377 removed in `Mempool` reactor. This does not happen all the time. It only 378 happens when a connection fails (for any reason) before the Peer is created and 379 added to all reactors. `RemovePeer` is therefore called before `AddPeer`, which 380 leads to always growing memory (`activeIDs` map). The `activeIDs` map has a 381 maximum size of 65535 and the node will panic if this map reaches the maximum. 382 An attacker can create a lot of connection attempts (exploiting Denial of 383 Service 1), which ultimately will lead to the node panicking. 384 385 Tendermint 0.33.3 (and 0.32.10) claims `activeID` for a peer in `InitPeer`, 386 which is executed before `MConnection` is started. 387 388 Notes: 389 390 - `InitPeer` function was added to all reactors to combat a similar issue - 391 [\#3338](https://github.com/franono/tendermint/issues/3338); 392 - Denial of Service 2 is independent of Denial of Service 1 and can be executed 393 without it. 394 395 **All clients are recommended to upgrade** 396 397 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for finding 398 and reporting this. 399 400 Friendly reminder, we have a [bug bounty 401 program](https://hackerone.com/tendermint). 402 403 ### SECURITY: 404 405 - [mempool] Reserve IDs in InitPeer instead of AddPeer (@tessr) 406 - [p2p] Limit the number of incoming connections (@melekes) 407 408 ## v0.32.9 409 410 _January, 9, 2020_ 411 412 Special thanks to external contributors on this release: @greg-szabo, @gregzaitsev, @yenkhoon 413 414 Friendly reminder, we have a [bug bounty 415 program](https://hackerone.com/tendermint). 416 417 ### FEATURES: 418 419 - [rpc/lib] [\#4248](https://github.com/franono/tendermint/issues/4248) RPC client basic authentication support (@greg-szabo) 420 421 - [metrics] [\#4294](https://github.com/franono/tendermint/pull/4294) Add 422 - `consensus_validator_power`: track your validators power 423 - `consensus_validator_last_signed_height`: track at which height the validator last signed 424 - `consensus_validator_missed_blocks`: total amount of missed blocks for a validator 425 as gauges in prometheus for validator specific metrics 426 427 ### BUG FIXES: 428 429 - [rpc/lib] [\#4131](https://github.com/franono/tendermint/pull/4131) Fix RPC client, which was previously resolving https protocol to http (@yenkhoon) 430 - [cs] [\#4069](https://github.com/franono/tendermint/issues/4069) Don't panic when block meta is not found in store (@gregzaitsev) 431 432 ## v0.32.8 433 434 *November 19, 2019* 435 436 Special thanks to external contributors on this release: @erikgrinaker, @guagualvcha, @hsyis, @cosmostuba, @whunmr, @austinabell 437 438 Friendly reminder, we have a [bug bounty 439 program.](https://hackerone.com/tendermint). 440 441 442 ### BREAKING CHANGES: 443 444 - Go API 445 446 - [libs/pubsub] [\#4070](https://github.com/franono/tendermint/pull/4070) `Query#(Matches|Conditions)` returns an error. 447 448 ### IMPROVEMENTS: 449 450 - [mempool] [\#4083](https://github.com/franono/tendermint/pull/4083) Added TxInfo parameter to CheckTx(), and removed CheckTxWithInfo() (@erikgrinaker) 451 - [mempool] [\#4057](https://github.com/franono/tendermint/issues/4057) Include peer ID when logging rejected txns (@erikgrinaker) 452 - [tools] [\#4023](https://github.com/franono/tendermint/issues/4023) Improved `tm-monitor` formatting of start time and avg tx throughput (@erikgrinaker) 453 - [p2p] [\#3991](https://github.com/franono/tendermint/issues/3991) Log "has been established or dialed" as debug log instead of Error for connected peers (@whunmr) 454 - [rpc] [\#4077](https://github.com/franono/tendermint/pull/4077) Added support for `EXISTS` clause to the Websocket query interface. 455 - [privval] Add `SignerDialerEndpointRetryWaitInterval` option (@cosmostuba) 456 - [crypto] Add `RegisterKeyType` to amino to allow external key types registration (@austinabell) 457 458 ### BUG FIXES: 459 460 - [libs/pubsub] [\#4070](https://github.com/franono/tendermint/pull/4070) Strip out non-numeric characters when attempting to match numeric values. 461 - [libs/pubsub] [\#4070](https://github.com/franono/tendermint/pull/4070) No longer panic in Query#(Matches|Conditions) preferring to return an error instead. 462 - [tools] [\#4023](https://github.com/franono/tendermint/issues/4023) Refresh `tm-monitor` health when validator count is updated (@erikgrinaker) 463 - [state] [\#4104](https://github.com/franono/tendermint/pull/4104) txindex/kv: Fsync data to disk immediately after receiving it (@guagualvcha) 464 - [state] [\#4095](https://github.com/franono/tendermint/pull/4095) txindex/kv: Return an error if there's one when the user searches for a tx (hash=X) (@hsyis) 465 466 ## v0.32.7 467 468 *October 18, 2019* 469 470 This security release fixes a vulnerability found in the `consensus` package, 471 where an attacker could construct a `BlockPartMessage` message in such a way 472 that it will lead to consensus failure. A few similar issues have been 473 identified and fixed here. 474 475 **All clients are recommended to upgrade** 476 477 Special thanks to [elvishacker](https://hackerone.com/elvishacker) for finding 478 and reporting this. 479 480 Friendly reminder, we have a [bug bounty 481 program](https://hackerone.com/tendermint). 482 483 ### BREAKING CHANGES: 484 485 - Go API 486 - [consensus] Modify `WAL#Write` and `WAL#WriteSync` to return an error if 487 they fail to write a message 488 489 ### SECURITY: 490 491 - [consensus] Validate incoming messages more throughly 492 493 ## v0.32.6 494 495 *October 8, 2019* 496 497 The previous patch was insufficient because the attacker could still find a way 498 to submit a `nil` pubkey by constructing a `PubKeyMultisigThreshold` pubkey 499 with `nil` subpubkeys for example. 500 501 This release provides multiple fixes, which include recovering from panics when 502 accepting new peers and only allowing `ed25519` pubkeys. 503 504 **All clients are recommended to upgrade** 505 506 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for pointing 507 this out. 508 509 Friendly reminder, we have a [bug bounty 510 program](https://hackerone.com/tendermint). 511 512 ### SECURITY: 513 514 - [p2p] [\#4030](https://github.com/franono/tendermint/issues/4030) Only allow ed25519 pubkeys when connecting 515 516 ## v0.32.5 517 518 *October 1, 2019* 519 520 This release fixes a major security vulnerability found in the `p2p` package. 521 All clients are recommended to upgrade. See 522 [\#4030](https://github.com/franono/tendermint/issues/4030) for details. 523 524 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for discovering 525 and reporting this issue. 526 527 Friendly reminder, we have a [bug bounty 528 program](https://hackerone.com/tendermint). 529 530 ### SECURITY: 531 532 - [p2p] [\#4030](https://github.com/franono/tendermint/issues/4030) Fix for panic on nil public key send to a peer 533 534 ## v0.32.4 535 536 *September 19, 2019* 537 538 Special thanks to external contributors on this release: @jon-certik, @gracenoah, @PSalant726, @gchaincl 539 540 Friendly reminder, we have a [bug bounty 541 program](https://hackerone.com/tendermint). 542 543 ### BREAKING CHANGES: 544 545 - CLI/RPC/Config 546 - [rpc] [\#3984](https://github.com/franono/tendermint/issues/3984) Add `MempoolClient` interface to `Client` interface 547 548 ### IMPROVEMENTS: 549 550 - [rpc] [\#2010](https://github.com/franono/tendermint/issues/2010) Add NewHTTPWithClient and NewJSONRPCClientWithHTTPClient (note these and NewHTTP, NewJSONRPCClient functions panic if remote is invalid) (@gracenoah) 551 - [rpc] [\#3882](https://github.com/franono/tendermint/issues/3882) Add custom marshalers to proto messages to disable `omitempty` 552 - [deps] [\#3952](https://github.com/franono/tendermint/pull/3952) bump github.com/go-kit/kit from 0.6.0 to 0.9.0 553 - [deps] [\#3951](https://github.com/franono/tendermint/pull/3951) bump github.com/stretchr/testify from 1.3.0 to 1.4.0 554 - [deps] [\#3945](https://github.com/franono/tendermint/pull/3945) bump github.com/gorilla/websocket from 1.2.0 to 1.4.1 555 - [deps] [\#3948](https://github.com/franono/tendermint/pull/3948) bump github.com/libp2p/go-buffer-pool from 0.0.1 to 0.0.2 556 - [deps] [\#3943](https://github.com/franono/tendermint/pull/3943) bump github.com/fortytw2/leaktest from 1.2.0 to 1.3.0 557 - [deps] [\#3939](https://github.com/franono/tendermint/pull/3939) bump github.com/rs/cors from 1.6.0 to 1.7.0 558 - [deps] [\#3937](https://github.com/franono/tendermint/pull/3937) bump github.com/magiconair/properties from 1.8.0 to 1.8.1 559 - [deps] [\#3947](https://github.com/franono/tendermint/pull/3947) update gogo/protobuf version from v1.2.1 to v1.3.0 560 - [deps] [\#4001](https://github.com/franono/tendermint/pull/4001) bump github.com/tendermint/tm-db from 0.1.1 to 0.2.0 561 562 ### BUG FIXES: 563 564 - [consensus] [\#3908](https://github.com/franono/tendermint/issues/3908) Wait `timeout_commit` to pass even if `create_empty_blocks` is `false` 565 - [mempool] [\#3968](https://github.com/franono/tendermint/issues/3968) Fix memory loading error on 32-bit machines (@jon-certik) 566 567 ## v0.32.3 568 569 *August 28, 2019* 570 571 @climber73 wrote the [Writing a Tendermint Core application in Java 572 (gRPC)](https://github.com/franono/tendermint/blob/master/docs/guides/java.md) 573 guide. 574 575 Special thanks to external contributors on this release: 576 @gchaincl, @bluele, @climber73 577 578 Friendly reminder, we have a [bug bounty 579 program](https://hackerone.com/tendermint). 580 581 ### IMPROVEMENTS: 582 583 - [consensus] [\#3839](https://github.com/franono/tendermint/issues/3839) Reduce "Error attempting to add vote" message severity (Error -> Info) 584 - [mempool] [\#3877](https://github.com/franono/tendermint/pull/3877) Make `max_tx_bytes` configurable instead of `max_msg_bytes` (@bluele) 585 - [privval] [\#3370](https://github.com/franono/tendermint/issues/3370) Refactor and simplify validator/kms connection handling. Please refer to [this comment](https://github.com/franono/tendermint/pull/3370#issue-257360971) for details 586 - [rpc] [\#3880](https://github.com/franono/tendermint/issues/3880) Document endpoints with `swagger`, introduce contract tests of implementation against documentation 587 588 ### BUG FIXES: 589 590 - [config] [\#3868](https://github.com/franono/tendermint/issues/3868) Move misplaced `max_msg_bytes` into mempool section (@bluele) 591 - [rpc] [\#3910](https://github.com/franono/tendermint/pull/3910) Fix DATA RACE in HTTP client (@gchaincl) 592 - [store] [\#3893](https://github.com/franono/tendermint/issues/3893) Fix "Unregistered interface types.Evidence" panic 593 594 ## v0.32.2 595 596 *July 31, 2019* 597 598 Special thanks to external contributors on this release: 599 @ruseinov, @bluele, @guagualvcha 600 601 Friendly reminder, we have a [bug bounty 602 program](https://hackerone.com/tendermint). 603 604 ### BREAKING CHANGES: 605 606 - Go API 607 - [libs] [\#3811](https://github.com/franono/tendermint/issues/3811) Remove `db` from libs in favor of `https://github.com/tendermint/tm-db` 608 609 ### FEATURES: 610 611 - [blockchain] [\#3561](https://github.com/franono/tendermint/issues/3561) Add early version of the new blockchain reactor, which is supposed to be more modular and testable compared to the old version. To try it, you'll have to change `version` in the config file, [here](https://github.com/franono/tendermint/blob/master/config/toml.go#L303) NOTE: It's not ready for a production yet. For further information, see [ADR-40](https://github.com/franono/tendermint/blob/master/docs/architecture/adr-040-blockchain-reactor-refactor.md) & [ADR-43](https://github.com/franono/tendermint/blob/master/docs/architecture/adr-043-blockchain-riri-org.md) 612 - [mempool] [\#3826](https://github.com/franono/tendermint/issues/3826) Make `max_msg_bytes` configurable(@bluele) 613 - [node] [\#3846](https://github.com/franono/tendermint/pull/3846) Allow replacing existing p2p.Reactor(s) using [`CustomReactors` 614 option](https://godoc.org/github.com/franono/tendermint/node#CustomReactors). 615 Warning: beware of accidental name clashes. Here is the list of existing 616 reactors: MEMPOOL, BLOCKCHAIN, CONSENSUS, EVIDENCE, PEX. 617 - [rpc] [\#3818](https://github.com/franono/tendermint/issues/3818) Make `max_body_bytes` and `max_header_bytes` configurable(@bluele) 618 - [rpc] [\#2252](https://github.com/franono/tendermint/issues/2252) Add `/broadcast_evidence` endpoint to submit double signing and other types of evidence 619 620 ### IMPROVEMENTS: 621 622 - [abci] [\#3809](https://github.com/franono/tendermint/issues/3809) Recover from application panics in `server/socket_server.go` to allow socket cleanup (@ruseinov) 623 - [p2p] [\#3664](https://github.com/franono/tendermint/issues/3664) p2p/conn: reuse buffer when write/read from secret connection(@guagualvcha) 624 - [p2p] [\#3834](https://github.com/franono/tendermint/issues/3834) Do not write 'Couldn't connect to any seeds' error log if there are no seeds in config file 625 - [rpc] [\#3076](https://github.com/franono/tendermint/issues/3076) Improve transaction search performance 626 627 ### BUG FIXES: 628 629 - [p2p] [\#3644](https://github.com/franono/tendermint/issues/3644) Fix error logging for connection stop (@defunctzombie) 630 - [rpc] [\#3813](https://github.com/franono/tendermint/issues/3813) Return err if page is incorrect (less than 0 or greater than total pages) 631 632 ## v0.32.1 633 634 *July 15, 2019* 635 636 Special thanks to external contributors on this release: 637 @ParthDesai, @climber73, @jim380, @ashleyvega 638 639 This release contains a minor enhancement to the ABCI and some breaking changes to our libs folder, namely: 640 - CheckTx requests include a `CheckTxType` enum that can be set to `Recheck` to indicate to the application that this transaction was already checked/validated and certain expensive operations (like checking signatures) can be skipped 641 - Removed various functions from `libs` pkgs 642 643 Friendly reminder, we have a [bug bounty 644 program](https://hackerone.com/tendermint). 645 646 ### BREAKING CHANGES: 647 648 - Go API 649 650 - [abci] [\#2127](https://github.com/franono/tendermint/issues/2127) The CheckTx and DeliverTx methods in the ABCI `Application` interface now take structs as arguments (RequestCheckTx and RequestDeliverTx, respectively), instead of just the raw tx bytes. This allows more information to be passed to these methods, for instance, indicating whether a tx has already been checked. 651 - [libs] Remove unused `db/debugDB` and `common/colors.go` & `errors/errors.go` files (@marbar3778) 652 - [libs] [\#2432](https://github.com/franono/tendermint/issues/2432) Remove unused `common/heap.go` file (@marbar3778) 653 - [libs] Remove unused `date.go`, `io.go`. Remove `GoPath()`, `Prompt()` and `IsDirEmpty()` functions from `os.go` (@marbar3778) 654 - [libs] Remove unused `FailRand()` func and minor clean up to `fail.go`(@marbar3778) 655 656 ### FEATURES: 657 658 - [node] Add variadic argument to `NewNode` to support functional options, allowing the Node to be more easily customized. 659 - [node][\#3730](https://github.com/franono/tendermint/pull/3730) Add `CustomReactors` option to `NewNode` allowing caller to pass 660 custom reactors to run inside Tendermint node (@ParthDesai) 661 - [abci] [\#2127](https://github.com/franono/tendermint/issues/2127)RequestCheckTx has a new field, `CheckTxType`, which can take values of `CheckTxType_New` and `CheckTxType_Recheck`, indicating whether this is a new tx being checked for the first time or whether this tx is being rechecked after a block commit. This allows applications to skip certain expensive operations, like signature checking, if they've already been done once. see [docs](https://github.com/franono/tendermint/blob/eddb433d7c082efbeaf8974413a36641519ee895/docs/spec/abci/apps.md#mempool-connection) 662 663 ### IMPROVEMENTS: 664 665 - [rpc] [\#3700](https://github.com/franono/tendermint/issues/3700) Make possible to set absolute paths for TLS cert and key (@climber73) 666 - [abci] [\#3513](https://github.com/franono/tendermint/issues/3513) Call the reqRes callback after the resCb so they always happen in the same order 667 668 ### BUG FIXES: 669 670 - [p2p] [\#3338](https://github.com/franono/tendermint/issues/3338) Prevent "sent next PEX request too soon" errors by not calling 671 ensurePeers outside of ensurePeersRoutine 672 - [behaviour] [\3772](https://github.com/franono/tendermint/pull/3772) Return correct reason in MessageOutOfOrder (@jim380) 673 - [config] [\#3723](https://github.com/franono/tendermint/issues/3723) Add consensus_params to testnet config generation; document time_iota_ms (@ashleyvega) 674 675 676 ## v0.32.0 677 678 *June 25, 2019* 679 680 Special thanks to external contributors on this release: 681 @needkane, @SebastianElvis, @andynog, @Yawning, @wooparadog 682 683 This release contains breaking changes to our build and release processes, ABCI, 684 and the RPC, namely: 685 - Use Go modules instead of dep 686 - Bring active development to the `master` Github branch 687 - ABCI Tags are now Events - see 688 [docs](https://github.com/franono/tendermint/blob/60827f75623b92eff132dc0eff5b49d2025c591e/docs/spec/abci/abci.md#events) 689 - Bind RPC to localhost by default, not to the public interface [UPGRADING/RPC_Changes](./UPGRADING.md#rpc_changes) 690 691 Friendly reminder, we have a [bug bounty 692 program](https://hackerone.com/tendermint). 693 694 ### BREAKING CHANGES: 695 696 * CLI/RPC/Config 697 - [cli] [\#3613](https://github.com/franono/tendermint/issues/3613) Switch from golang/dep to Go Modules to resolve dependencies: 698 It is recommended to switch to Go Modules if your project has tendermint as 699 a dependency. Read more on Modules here: 700 https://github.com/golang/go/wiki/Modules 701 - [config] [\#3632](https://github.com/franono/tendermint/pull/3632) Removed `leveldb` as generic 702 option for `db_backend`. Must be `goleveldb` or `cleveldb`. 703 - [rpc] [\#3616](https://github.com/franono/tendermint/issues/3616) Fix field names for `/block_results` response (eg. `results.DeliverTx` 704 -> `results.deliver_tx`). See docs for details. 705 - [rpc] [\#3724](https://github.com/franono/tendermint/issues/3724) RPC now binds to `127.0.0.1` by default instead of `0.0.0.0` 706 707 * Apps 708 - [abci] [\#1859](https://github.com/franono/tendermint/issues/1859) `ResponseCheckTx`, `ResponseDeliverTx`, `ResponseBeginBlock`, 709 and `ResponseEndBlock` now include `Events` instead of `Tags`. Each `Event` 710 contains a `type` and a list of `attributes` (list of key-value pairs) 711 allowing for inclusion of multiple distinct events in each response. 712 713 * Go API 714 - [abci] [\#3193](https://github.com/franono/tendermint/issues/3193) Use RequestDeliverTx and RequestCheckTx in the ABCI 715 Application interface 716 - [libs/db] [\#3632](https://github.com/franono/tendermint/pull/3632) Removed deprecated `LevelDBBackend` const 717 If you have `db_backend` set to `leveldb` in your config file, please 718 change it to `goleveldb` or `cleveldb`. 719 - [p2p] [\#3521](https://github.com/franono/tendermint/issues/3521) Remove NewNetAddressStringWithOptionalID 720 721 * Blockchain Protocol 722 723 * P2P Protocol 724 725 ### FEATURES: 726 727 ### IMPROVEMENTS: 728 - [abci/examples] [\#3659](https://github.com/franono/tendermint/issues/3659) Change validator update tx format in the `persistent_kvstore` to use base64 for pubkeys instead of hex (@needkane) 729 - [consensus] [\#3656](https://github.com/franono/tendermint/issues/3656) Exit if SwitchToConsensus fails 730 - [p2p] [\#3666](https://github.com/franono/tendermint/issues/3666) Add per channel telemetry to improve reactor observability 731 - [rpc] [\#3686](https://github.com/franono/tendermint/pull/3686) `HTTPClient#Call` returns wrapped errors, so a caller could use `errors.Cause` to retrieve an error code. (@wooparadog) 732 733 ### BUG FIXES: 734 - [libs/db] [\#3717](https://github.com/franono/tendermint/issues/3717) Fixed the BoltDB backend's Batch.Delete implementation (@Yawning) 735 - [libs/db] [\#3718](https://github.com/franono/tendermint/issues/3718) Fixed the BoltDB backend's Get and Iterator implementation (@Yawning) 736 - [node] [\#3716](https://github.com/franono/tendermint/issues/3716) Fix a bug where `nil` is recorded as node's address 737 - [node] [\#3741](https://github.com/franono/tendermint/issues/3741) Fix profiler blocking the entire node 738 739 *Tendermint 0.31 release series has reached End-Of-Life and is no longer supported.* 740 741 ## v0.31.12 742 743 *April 6, 2020* 744 745 This security release fixes: 746 747 ### Denial of Service 1 748 749 Tendermint 0.33.2 and earlier does not limit the number of P2P connection requests. 750 For each p2p connection, Tendermint allocates ~0.5MB. Even though this 751 memory is garbage collected once the connection is terminated (due to duplicate 752 IP or reaching a maximum number of inbound peers), temporary memory spikes can 753 lead to OOM (Out-Of-Memory) exceptions. 754 755 Tendermint 0.33.3, 0.32.10, and 0.31.12 limit the total number of P2P incoming 756 connection requests to to `p2p.max_num_inbound_peers + 757 len(p2p.unconditional_peer_ids)`. 758 759 Notes: 760 761 - Tendermint does not rate limit P2P connection requests per IP (an attacker 762 can saturate all the inbound slots); 763 - Tendermint does not rate limit HTTP(S) requests. If you expose any RPC 764 endpoints to the public, please make sure to put in place some protection 765 (https://www.nginx.com/blog/rate-limiting-nginx/). We may implement this in 766 the future ([\#1696](https://github.com/franono/tendermint/issues/1696)). 767 768 ### Denial of Service 2 769 770 Tendermint 0.33.2 and earlier does not reclaim `activeID` of a peer after it's 771 removed in `Mempool` reactor. This does not happen all the time. It only 772 happens when a connection fails (for any reason) before the Peer is created and 773 added to all reactors. `RemovePeer` is therefore called before `AddPeer`, which 774 leads to always growing memory (`activeIDs` map). The `activeIDs` map has a 775 maximum size of 65535 and the node will panic if this map reaches the maximum. 776 An attacker can create a lot of connection attempts (exploiting Denial of 777 Service 1), which ultimately will lead to the node panicking. 778 779 Tendermint 0.33.3, 0.32.10, and 0.31.12 claim `activeID` for a peer in `InitPeer`, 780 which is executed before `MConnection` is started. 781 782 Notes: 783 784 - `InitPeer` function was added to all reactors to combat a similar issue - 785 [\#3338](https://github.com/franono/tendermint/issues/3338); 786 - Denial of Service 2 is independent of Denial of Service 1 and can be executed 787 without it. 788 789 **All clients are recommended to upgrade** 790 791 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for finding 792 and reporting this. 793 794 Friendly reminder, we have a [bug bounty 795 program](https://hackerone.com/tendermint). 796 797 ### SECURITY: 798 799 - [mempool] Reserve IDs in InitPeer instead of AddPeer (@tessr) 800 - [p2p] Limit the number of incoming connections (@melekes) 801 802 ## v0.31.11 803 804 *October 18, 2019* 805 806 This security release fixes a vulnerability found in the `consensus` package, 807 where an attacker could construct a `BlockPartMessage` message in such a way 808 that it will lead to consensus failure. A few similar issues have been 809 identified and fixed here. 810 811 **All clients are recommended to upgrade** 812 813 Special thanks to [elvishacker](https://hackerone.com/elvishacker) for finding 814 and reporting this. 815 816 Friendly reminder, we have a [bug bounty 817 program](https://hackerone.com/tendermint). 818 819 ### BREAKING CHANGES: 820 821 - Go API 822 - [consensus] Modify `WAL#Write` and `WAL#WriteSync` to return an error if 823 they fail to write a message 824 825 ### SECURITY: 826 827 - [consensus] Validate incoming messages more throughly 828 829 ## v0.31.10 830 831 *October 8, 2019* 832 833 The previous patch was insufficient because the attacker could still find a way 834 to submit a `nil` pubkey by constructing a `PubKeyMultisigThreshold` pubkey 835 with `nil` subpubkeys for example. 836 837 This release provides multiple fixes, which include recovering from panics when 838 accepting new peers and only allowing `ed25519` pubkeys. 839 840 **All clients are recommended to upgrade** 841 842 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for pointing 843 this out. 844 845 Friendly reminder, we have a [bug bounty 846 program](https://hackerone.com/tendermint). 847 848 ### SECURITY: 849 850 - [p2p] [\#4030](https://github.com/franono/tendermint/issues/4030) Only allow ed25519 pubkeys when connecting 851 852 ## v0.31.9 853 854 *October 1, 2019* 855 856 This release fixes a major security vulnerability found in the `p2p` package. 857 All clients are recommended to upgrade. See 858 [\#4030](https://github.com/franono/tendermint/issues/4030) for details. 859 860 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for discovering 861 and reporting this issue. 862 863 Friendly reminder, we have a [bug bounty 864 program](https://hackerone.com/tendermint). 865 866 ### SECURITY: 867 868 - [p2p] [\#4030](https://github.com/franono/tendermint/issues/4030) Fix for panic on nil public key send to a peer 869 870 ### BUG FIXES: 871 872 - [node] [\#3716](https://github.com/franono/tendermint/issues/3716) Fix a bug where `nil` is recorded as node's address 873 - [node] [\#3741](https://github.com/franono/tendermint/issues/3741) Fix profiler blocking the entire node 874 875 ## v0.31.8 876 877 *July 29, 2019* 878 879 This releases fixes one bug in the PEX reactor and adds a `recover` to the Go's 880 ABCI server, which allows it to properly cleanup. 881 882 ### IMPROVEMENTS: 883 - [abci] [\#3809](https://github.com/franono/tendermint/issues/3809) Recover from application panics in `server/socket_server.go` to allow socket cleanup (@ruseinov) 884 885 ### BUG FIXES: 886 - [p2p] [\#3338](https://github.com/franono/tendermint/issues/3338) Prevent "sent next PEX request too soon" errors by not calling 887 ensurePeers outside of ensurePeersRoutine 888 889 ## v0.31.7 890 891 *June 3, 2019* 892 893 This releases fixes a regression in the mempool introduced in v0.31.6. 894 The regression caused the invalid committed txs to be proposed in blocks over and 895 over again. 896 897 ### BUG FIXES: 898 - [mempool] [\#3699](https://github.com/franono/tendermint/issues/3699) Remove all committed txs from the mempool. 899 This reverts the change from v0.31.6 where we only remove valid txs from the mempool. 900 Note this means malicious proposals can cause txs to be dropped from the 901 mempools of other nodes by including them in blocks before they are valid. 902 See [\#3322](https://github.com/franono/tendermint/issues/3322). 903 904 ## v0.31.6 905 906 *May 31st, 2019* 907 908 This release contains many fixes and improvements, primarily for p2p functionality. 909 It also fixes a security issue in the mempool package. 910 911 With this release, Tendermint now supports [boltdb](https://github.com/etcd-io/bbolt), although 912 in experimental mode. Feel free to try and report to us any findings/issues. 913 Note also that the build tags for compiling CLevelDB have changed. 914 915 Special thanks to external contributors on this release: 916 @guagualvcha, @james-ray, @gregdhill, @climber73, @yutianwu, 917 @carlosflrs, @defunctzombie, @leoluk, @needkane, @CrocdileChan 918 919 ### BREAKING CHANGES: 920 921 * Go API 922 - [libs/common] Removed deprecated `PanicSanity`, `PanicCrisis`, 923 `PanicConsensus` and `PanicQ` 924 - [mempool, state] [\#2659](https://github.com/franono/tendermint/issues/2659) `Mempool` now an interface that lives in the mempool package. 925 See issue and PR for more details. 926 - [p2p] [\#3346](https://github.com/franono/tendermint/issues/3346) `Reactor#InitPeer` method is added to `Reactor` interface 927 - [types] [\#1648](https://github.com/franono/tendermint/issues/1648) `Commit#VoteSignBytes` signature was changed 928 929 ### FEATURES: 930 - [node] [\#2659](https://github.com/franono/tendermint/issues/2659) Add `node.Mempool()` method, which allows you to access mempool 931 - [libs/db] [\#3604](https://github.com/franono/tendermint/pull/3604) Add experimental support for bolt db (etcd's fork of bolt) (@CrocdileChan) 932 933 ### IMPROVEMENTS: 934 - [cli] [\#3585](https://github.com/franono/tendermint/issues/3585) Add `--keep-addr-book` option to `unsafe_reset_all` cmd to not 935 clear the address book (@climber73) 936 - [cli] [\#3160](https://github.com/franono/tendermint/issues/3160) Add 937 `--config=<path-to-config>` option to `testnet` cmd (@gregdhill) 938 - [cli] [\#3661](https://github.com/franono/tendermint/pull/3661) Add 939 `--hostname-suffix`, `--hostname` and `--random-monikers` options to `testnet` 940 cmd for greater peer address/identity generation flexibility. 941 - [crypto] [\#3672](https://github.com/franono/tendermint/issues/3672) Return more info in the `AddSignatureFromPubKey` error 942 - [cs/replay] [\#3460](https://github.com/franono/tendermint/issues/3460) Check appHash for each block 943 - [libs/db] [\#3611](https://github.com/franono/tendermint/issues/3611) Conditional compilation 944 * Use `cleveldb` tag instead of `gcc` to compile Tendermint with CLevelDB or 945 use `make build_c` / `make install_c` (full instructions can be found at 946 https://docs.tendermint.com/master/introduction/install.html#compile-with-cleveldb-support) 947 * Use `boltdb` tag to compile Tendermint with bolt db 948 - [node] [\#3362](https://github.com/franono/tendermint/issues/3362) Return an error if `persistent_peers` list is invalid (except 949 when IP lookup fails) 950 - [p2p] [\#3463](https://github.com/franono/tendermint/pull/3463) Do not log "Can't add peer's address to addrbook" error for a private peer (@guagualvcha) 951 - [p2p] [\#3531](https://github.com/franono/tendermint/issues/3531) Terminate session on nonce wrapping (@climber73) 952 - [pex] [\#3647](https://github.com/franono/tendermint/pull/3647) Dial seeds, if any, instead of crawling peers first (@defunctzombie) 953 - [rpc] [\#3534](https://github.com/franono/tendermint/pull/3534) Add support for batched requests/responses in JSON RPC 954 - [rpc] [\#3362](https://github.com/franono/tendermint/issues/3362) `/dial_seeds` & `/dial_peers` return errors if addresses are 955 incorrect (except when IP lookup fails) 956 957 ### BUG FIXES: 958 - [consensus] [\#3067](https://github.com/franono/tendermint/issues/3067) Fix replay from appHeight==0 with validator set changes (@james-ray) 959 - [consensus] [\#3304](https://github.com/franono/tendermint/issues/3304) Create a peer state in consensus reactor before the peer 960 is started (@guagualvcha) 961 - [lite] [\#3669](https://github.com/franono/tendermint/issues/3669) Add context parameter to RPC Handlers in proxy routes (@yutianwu) 962 - [mempool] [\#3322](https://github.com/franono/tendermint/issues/3322) When a block is committed, only remove committed txs from the mempool 963 that were valid (ie. `ResponseDeliverTx.Code == 0`) 964 - [p2p] [\#3338](https://github.com/franono/tendermint/issues/3338) Ensure `RemovePeer` is always called before `InitPeer` (upon a peer 965 reconnecting to our node) 966 - [p2p] [\#3532](https://github.com/franono/tendermint/issues/3532) Limit the number of attempts to connect to a peer in seed mode 967 to 16 (as a result, the node will stop retrying after a 35 hours time window) 968 - [p2p] [\#3362](https://github.com/franono/tendermint/issues/3362) Allow inbound peers to be persistent, including for seed nodes. 969 - [pex] [\#3603](https://github.com/franono/tendermint/pull/3603) Dial seeds when addrbook needs more addresses (@defunctzombie) 970 971 ### OTHERS: 972 - [networks] fixes ansible integration script (@carlosflrs) 973 974 ## v0.31.5 975 976 *April 16th, 2019* 977 978 This release fixes a regression from v0.31.4 where, in existing chains that 979 were upgraded, `/validators` could return an empty validator set. This is true 980 for almost all heights, given the validator set remains the same. 981 982 Special thanks to external contributors on this release: 983 @brapse, @guagualvcha, @dongsam, @phucc 984 985 ### IMPROVEMENTS: 986 987 - [libs/common] `CMap`: slight optimization in `Keys()` and `Values()` (@phucc) 988 - [gitignore] gitignore: add .vendor-new (@dongsam) 989 990 ### BUG FIXES: 991 992 - [state] [\#3537](https://github.com/franono/tendermint/pull/3537#issuecomment-482711833) 993 `LoadValidators`: do not return an empty validator set 994 - [blockchain] [\#3457](https://github.com/franono/tendermint/issues/3457) 995 Fix "peer did not send us anything" in `fast_sync` mode when under high pressure 996 997 ## v0.31.4 998 999 *April 12th, 2019* 1000 1001 This release fixes a regression from v0.31.3 which used the peer's `SocketAddr` to add the peer to 1002 the address book. This swallowed the peer's self-reported port which is important in case of reconnect. 1003 It brings back `NetAddress()` to `NodeInfo` and uses it instead of `SocketAddr` for adding peers. 1004 Additionally, it improves response time on the `/validators` or `/status` RPC endpoints. 1005 As a side-effect it makes these RPC endpoint more difficult to DoS and fixes a performance degradation in `ExecCommitBlock`. 1006 Also, it contains an [ADR](https://github.com/franono/tendermint/pull/3539) that proposes decoupling the 1007 responsibility for peer behaviour from the `p2p.Switch` (by @brapse). 1008 1009 Special thanks to external contributors on this release: 1010 @brapse, @guagualvcha, @mydring 1011 1012 ### IMPROVEMENTS: 1013 1014 - [p2p] [\#3463](https://github.com/franono/tendermint/pull/3463) Do not log "Can't add peer's address to addrbook" error for a private peer 1015 - [p2p] [\#3547](https://github.com/franono/tendermint/pull/3547) Fix a couple of annoying typos (@mdyring) 1016 1017 ### BUG FIXES: 1018 1019 - [docs] [\#3514](https://github.com/franono/tendermint/issues/3514) Fix block.Header.Time description (@melekes) 1020 - [p2p] [\#2716](https://github.com/franono/tendermint/issues/2716) Check if we're already connected to peer right before dialing it (@melekes) 1021 - [p2p] [\#3545](https://github.com/franono/tendermint/issues/3545) Add back `NetAddress()` to `NodeInfo` and use it instead of peer's `SocketAddr()` when adding a peer to the `PEXReactor` (potential fix for [\#3532](https://github.com/franono/tendermint/issues/3532)) 1022 - [state] [\#3438](https://github.com/franono/tendermint/pull/3438) 1023 Persist validators every 100000 blocks even if no changes to the set 1024 occurred (@guagualvcha). This 1025 1) Prevents possible DoS attack using `/validators` or `/status` RPC 1026 endpoints. Before response time was growing linearly with height if no 1027 changes were made to the validator set. 1028 2) Fixes performance degradation in `ExecCommitBlock` where we call 1029 `LoadValidators` for each `Evidence` in the block. 1030 1031 ## v0.31.3 1032 1033 *April 1st, 2019* 1034 1035 This release includes two security sensitive fixes: it ensures generated private 1036 keys are valid, and it prevents certain DNS lookups that would cause the node to 1037 panic if the lookup failed. 1038 1039 ### BREAKING CHANGES: 1040 * Go API 1041 - [crypto/secp256k1] [\#3439](https://github.com/franono/tendermint/issues/3439) 1042 The `secp256k1.GenPrivKeySecp256k1` function has changed to guarantee that it returns a valid key, which means it 1043 will return a different private key than in previous versions for the same secret. 1044 1045 ### BUG FIXES: 1046 1047 - [crypto/secp256k1] [\#3439](https://github.com/franono/tendermint/issues/3439) 1048 Ensure generated private keys are valid by randomly sampling until a valid key is found. 1049 Previously, it was possible (though rare!) to generate keys that exceeded the curve order. 1050 Such keys would lead to invalid signatures. 1051 - [p2p] [\#3522](https://github.com/franono/tendermint/issues/3522) Memoize 1052 socket address in peer connections to avoid DNS lookups. Previously, failed 1053 DNS lookups could cause the node to panic. 1054 1055 ## v0.31.2 1056 1057 *March 30th, 2019* 1058 1059 This release fixes a regression from v0.31.1 where Tendermint panics under 1060 mempool load for external ABCI apps. 1061 1062 Special thanks to external contributors on this release: 1063 @guagualvcha 1064 1065 ### BREAKING CHANGES: 1066 1067 * CLI/RPC/Config 1068 1069 * Apps 1070 1071 * Go API 1072 - [libs/autofile] [\#3504](https://github.com/franono/tendermint/issues/3504) Remove unused code in autofile package. Deleted functions: `Group.Search`, `Group.FindLast`, `GroupReader.ReadLine`, `GroupReader.PushLine`, `MakeSimpleSearchFunc` (@guagualvcha) 1073 1074 * Blockchain Protocol 1075 1076 * P2P Protocol 1077 1078 ### FEATURES: 1079 1080 ### IMPROVEMENTS: 1081 1082 - [circle] [\#3497](https://github.com/franono/tendermint/issues/3497) Move release management to CircleCI 1083 1084 ### BUG FIXES: 1085 1086 - [mempool] [\#3512](https://github.com/franono/tendermint/issues/3512) Fix panic from concurrent access to txsMap, a regression for external ABCI apps introduced in v0.31.1 1087 1088 ## v0.31.1 1089 1090 *March 27th, 2019* 1091 1092 This release contains a major improvement for the mempool that reduce the amount of sent data by about 30% 1093 (see some numbers below). 1094 It also fixes a memory leak in the mempool and adds TLS support to the RPC server by providing a certificate and key in the config. 1095 1096 Special thanks to external contributors on this release: 1097 @brapse, @guagualvcha, @HaoyangLiu, @needkane, @TraceBundy 1098 1099 ### BREAKING CHANGES: 1100 1101 * CLI/RPC/Config 1102 1103 * Apps 1104 1105 * Go API 1106 - [crypto] [\#3426](https://github.com/franono/tendermint/pull/3426) Remove `Ripemd160` helper method (@needkane) 1107 - [libs/common] [\#3429](https://github.com/franono/tendermint/pull/3429) Remove `RepeatTimer` (also `TimerMaker` and `Ticker` interface) 1108 - [rpc/client] [\#3458](https://github.com/franono/tendermint/issues/3458) Include `NetworkClient` interface into `Client` interface 1109 - [types] [\#3448](https://github.com/franono/tendermint/issues/3448) Remove method `PB2TM.ConsensusParams` 1110 1111 * Blockchain Protocol 1112 1113 * P2P Protocol 1114 1115 ### FEATURES: 1116 1117 - [rpc] [\#3419](https://github.com/franono/tendermint/issues/3419) Start HTTPS server if `rpc.tls_cert_file` and `rpc.tls_key_file` are provided in the config (@guagualvcha) 1118 1119 ### IMPROVEMENTS: 1120 1121 - [docs] [\#3140](https://github.com/franono/tendermint/issues/3140) Formalize proposer election algorithm properties 1122 - [docs] [\#3482](https://github.com/franono/tendermint/issues/3482) Fix broken links (@brapse) 1123 - [mempool] [\#2778](https://github.com/franono/tendermint/issues/2778) No longer send txs back to peers who sent it to you. 1124 Also, limit to 65536 active peers. 1125 This vastly improves the bandwidth consumption of nodes. 1126 For instance, for a 4 node localnet, in a test sending 250byte txs for 120 sec. at 500 txs/sec (total of 15MB): 1127 - total bytes received from 1st node: 1128 - before: 42793967 (43MB) 1129 - after: 30003256 (30MB) 1130 - total bytes sent to 1st node: 1131 - before: 30569339 (30MB) 1132 - after: 19304964 (19MB) 1133 - [p2p] [\#3475](https://github.com/franono/tendermint/issues/3475) Simplify `GetSelectionWithBias` for addressbook (@guagualvcha) 1134 - [rpc/lib/client] [\#3430](https://github.com/franono/tendermint/issues/3430) Disable compression for HTTP client to prevent GZIP-bomb DoS attacks (@guagualvcha) 1135 1136 ### BUG FIXES: 1137 1138 - [blockchain] [\#2699](https://github.com/franono/tendermint/issues/2699) Update the maxHeight when a peer is removed 1139 - [mempool] [\#3478](https://github.com/franono/tendermint/issues/3478) Fix memory-leak related to `broadcastTxRoutine` (@HaoyangLiu) 1140 1141 1142 ## v0.31.0 1143 1144 *March 16th, 2019* 1145 1146 Special thanks to external contributors on this release: 1147 @danil-lashin, @guagualvcha, @siburu, @silasdavis, @srmo, @Stumble, @svenstaro 1148 1149 This release is primarily about the new pubsub implementation, dubbed `pubsub 2.0`, and related changes, 1150 like configurable limits on the number of active RPC subscriptions at a time (`max_subscription_clients`). 1151 Pubsub 2.0 is an improved version of the older pubsub that is non-blocking and has a nicer API. 1152 Note the improved pubsub API also resulted in some improvements to the HTTPClient interface and the API for WebSocket subscriptions. 1153 This release also adds a configurable limit to the mempool size (`max_txs_bytes`, default 1GB) 1154 and a configurable timeout for the `/broadcast_tx_commit` endpoint. 1155 1156 See the [v0.31.0 1157 Milestone](https://github.com/franono/tendermint/milestone/19?closed=1) for 1158 more details. 1159 1160 Friendly reminder, we have a [bug bounty 1161 program](https://hackerone.com/tendermint). 1162 1163 ### BREAKING CHANGES: 1164 1165 * CLI/RPC/Config 1166 - [config] [\#2920](https://github.com/franono/tendermint/issues/2920) Remove `consensus.blocktime_iota` parameter 1167 - [rpc] [\#3227](https://github.com/franono/tendermint/issues/3227) New PubSub design does not block on clients when publishing 1168 messages. Slow clients may miss messages and receive an error, terminating 1169 the subscription. 1170 - [rpc] [\#3269](https://github.com/franono/tendermint/issues/2826) Limit number of unique clientIDs with open subscriptions. Configurable via `rpc.max_subscription_clients` 1171 - [rpc] [\#3269](https://github.com/franono/tendermint/issues/2826) Limit number of unique queries a given client can subscribe to at once. Configurable via `rpc.max_subscriptions_per_client`. 1172 - [rpc] [\#3435](https://github.com/franono/tendermint/issues/3435) Default ReadTimeout and WriteTimeout changed to 10s. WriteTimeout can increased by setting `rpc.timeout_broadcast_tx_commit` in the config. 1173 - [rpc/client] [\#3269](https://github.com/franono/tendermint/issues/3269) Update `EventsClient` interface to reflect new pubsub/eventBus API [ADR-33](https://github.com/franono/tendermint/blob/develop/docs/architecture/adr-033-pubsub.md). This includes `Subscribe`, `Unsubscribe`, and `UnsubscribeAll` methods. 1174 1175 * Apps 1176 - [abci] [\#3403](https://github.com/franono/tendermint/issues/3403) Remove `time_iota_ms` from BlockParams. This is a 1177 ConsensusParam but need not be exposed to the app for now. 1178 - [abci] [\#2920](https://github.com/franono/tendermint/issues/2920) Rename `consensus_params.block_size` to `consensus_params.block` in ABCI ConsensusParams 1179 1180 * Go API 1181 - [libs/common] TrapSignal accepts logger as a first parameter and does not block anymore 1182 * previously it was dumping "captured ..." msg to os.Stdout 1183 * TrapSignal should not be responsible for blocking thread of execution 1184 - [libs/db] [\#3397](https://github.com/franono/tendermint/pull/3397) Add possibility to `Close()` `Batch` to prevent memory leak when using ClevelDB. (@Stumble) 1185 - [types] [\#3354](https://github.com/franono/tendermint/issues/3354) Remove RoundState from EventDataRoundState 1186 - [rpc] [\#3435](https://github.com/franono/tendermint/issues/3435) `StartHTTPServer` / `StartHTTPAndTLSServer` now require a Config (use `rpcserver.DefaultConfig`) 1187 1188 * Blockchain Protocol 1189 1190 * P2P Protocol 1191 1192 ### FEATURES: 1193 - [config] [\#3269](https://github.com/franono/tendermint/issues/2826) New configuration values for controlling RPC subscriptions: 1194 - `rpc.max_subscription_clients` sets the maximum number of unique clients 1195 with open subscriptions 1196 - `rpc.max_subscriptions_per_client`sets the maximum number of unique 1197 subscriptions from a given client 1198 - `rpc.timeout_broadcast_tx_commit` sets the time to wait for a tx to be committed during `/broadcast_tx_commit` 1199 - [types] [\#2920](https://github.com/franono/tendermint/issues/2920) Add `time_iota_ms` to block's consensus parameters (not exposed to the application) 1200 - [lite] [\#3269](https://github.com/franono/tendermint/issues/3269) Add `/unsubscribe_all` endpoint to unsubscribe from all events 1201 - [mempool] [\#3079](https://github.com/franono/tendermint/issues/3079) Bound mempool memory usage via the `mempool.max_txs_bytes` configuration value. Set to 1GB by default. The mempool's current `txs_total_bytes` is exposed via `total_bytes` field in 1202 `/num_unconfirmed_txs` and `/unconfirmed_txs` RPC endpoints. 1203 1204 ### IMPROVEMENTS: 1205 - [all] [\#3385](https://github.com/franono/tendermint/issues/3385), [\#3386](https://github.com/franono/tendermint/issues/3386) Various linting improvements 1206 - [crypto] [\#3371](https://github.com/franono/tendermint/issues/3371) Copy in secp256k1 package from go-ethereum instead of importing 1207 go-ethereum (@silasdavis) 1208 - [deps] [\#3382](https://github.com/franono/tendermint/issues/3382) Don't pin repos without releases 1209 - [deps] [\#3357](https://github.com/franono/tendermint/issues/3357), [\#3389](https://github.com/franono/tendermint/issues/3389), [\#3392](https://github.com/franono/tendermint/issues/3392) Update gogo/protobuf, golang/protobuf, levigo, golang.org/x/crypto 1210 - [libs/common] [\#3238](https://github.com/franono/tendermint/issues/3238) exit with zero (0) code upon receiving SIGTERM/SIGINT 1211 - [libs/db] [\#3378](https://github.com/franono/tendermint/issues/3378) CLevelDB#Stats now returns the following properties: 1212 - leveldb.num-files-at-level{n} 1213 - leveldb.stats 1214 - leveldb.sstables 1215 - leveldb.blockpool 1216 - leveldb.cachedblock 1217 - leveldb.openedtables 1218 - leveldb.alivesnaps 1219 - leveldb.aliveiters 1220 - [privval] [\#3351](https://github.com/franono/tendermint/pull/3351) First part of larger refactoring that clarifies and separates concerns in the privval package. 1221 1222 ### BUG FIXES: 1223 - [blockchain] [\#3358](https://github.com/franono/tendermint/pull/3358) Fix timer leak in `BlockPool` (@guagualvcha) 1224 - [cmd] [\#3408](https://github.com/franono/tendermint/issues/3408) Fix `testnet` command's panic when creating non-validator configs (using `--n` flag) (@srmo) 1225 - [libs/db/remotedb/grpcdb] [\#3402](https://github.com/franono/tendermint/issues/3402) Close Iterator/ReverseIterator after use 1226 - [libs/pubsub] [\#951](https://github.com/franono/tendermint/issues/951), [\#1880](https://github.com/franono/tendermint/issues/1880) Use non-blocking send when dispatching messages [ADR-33](https://github.com/franono/tendermint/blob/develop/docs/architecture/adr-033-pubsub.md) 1227 - [lite] [\#3364](https://github.com/franono/tendermint/issues/3364) Fix `/validators` and `/abci_query` proxy endpoints 1228 (@guagualvcha) 1229 - [p2p/conn] [\#3347](https://github.com/franono/tendermint/issues/3347) Reject all-zero shared secrets in the Diffie-Hellman step of secret-connection 1230 - [p2p] [\#3369](https://github.com/franono/tendermint/issues/3369) Do not panic when filter times out 1231 - [p2p] [\#3359](https://github.com/franono/tendermint/pull/3359) Fix reconnecting report duplicate ID error due to race condition between adding peer to peerSet and starting it (@guagualvcha) 1232 1233 ## v0.30.2 1234 1235 *March 10th, 2019* 1236 1237 This release fixes a CLevelDB memory leak. It was happening because we were not 1238 closing the WriteBatch object after use. See [levigo's 1239 godoc](https://godoc.org/github.com/jmhodges/levigo#WriteBatch.Close) for the 1240 Close method. Special thanks goes to @Stumble who both reported an issue in 1241 [cosmos-sdk](https://github.com/cosmos/cosmos-sdk/issues/3842) and provided a 1242 fix here. 1243 1244 ### BREAKING CHANGES: 1245 1246 * Go API 1247 - [libs/db] [\#3842](https://github.com/cosmos/cosmos-sdk/issues/3842) Add Close() method to Batch interface (@Stumble) 1248 1249 ### BUG FIXES: 1250 - [libs/db] [\#3842](https://github.com/cosmos/cosmos-sdk/issues/3842) Fix CLevelDB memory leak (@Stumble) 1251 1252 ## v0.30.1 1253 1254 *February 20th, 2019* 1255 1256 This release fixes a consensus halt and a DataCorruptionError after restart 1257 discovered in `game_of_stakes_6`. It also fixes a security issue in the p2p 1258 handshake by authenticating the NetAddress.ID of the peer we're dialing. 1259 1260 ### IMPROVEMENTS: 1261 1262 * [config] [\#3291](https://github.com/franono/tendermint/issues/3291) Make 1263 config.ResetTestRootWithChainID() create concurrency-safe test directories. 1264 1265 ### BUG FIXES: 1266 1267 * [consensus] [\#3295](https://github.com/franono/tendermint/issues/3295) 1268 Flush WAL on stop to prevent data corruption during graceful shutdown. 1269 * [consensus] [\#3302](https://github.com/franono/tendermint/issues/3302) 1270 Fix possible halt by resetting TriggeredTimeoutPrecommit before starting next height. 1271 * [rpc] [\#3251](https://github.com/franono/tendermint/issues/3251) Fix 1272 `/net_info#peers#remote_ip` format. New format spec: 1273 * dotted decimal ("192.0.2.1"), if ip is an IPv4 or IP4-mapped IPv6 address 1274 * IPv6 ("2001:db8::1"), if ip is a valid IPv6 address 1275 * [cmd] [\#3314](https://github.com/franono/tendermint/issues/3314) Return 1276 an error on `show_validator` when the private validator file does not exist. 1277 * [p2p] [\#3010](https://github.com/franono/tendermint/issues/3010#issuecomment-464287627) 1278 Authenticate a peer against its NetAddress.ID when dialing. 1279 1280 ## v0.30.0 1281 1282 *February 8th, 2019* 1283 1284 This release fixes yet another issue with the proposer selection algorithm. 1285 We hope it's the last one, but we won't be surprised if it's not. 1286 We plan to one day expose the selection algorithm more directly to 1287 the application ([\#3285](https://github.com/franono/tendermint/issues/3285)), and even to support randomness ([\#763](https://github.com/franono/tendermint/issues/763)). 1288 For more, see issues marked 1289 [proposer-selection](https://github.com/franono/tendermint/labels/proposer-selection). 1290 1291 This release also includes a fix to prevent Tendermint from including the same 1292 piece of evidence in more than one block. This issue was reported by @chengwenxi in our 1293 [bug bounty program](https://hackerone.com/tendermint). 1294 1295 ### BREAKING CHANGES: 1296 1297 * Apps 1298 - [state] [\#3222](https://github.com/franono/tendermint/issues/3222) 1299 Duplicate updates for the same validator are forbidden. Apps must ensure 1300 that a given `ResponseEndBlock.ValidatorUpdates` contains only one entry per pubkey. 1301 1302 * Go API 1303 - [types] [\#3222](https://github.com/franono/tendermint/issues/3222) 1304 Remove `Add` and `Update` methods from `ValidatorSet` in favor of new 1305 `UpdateWithChangeSet`. This allows updates to be applied as a set, instead of 1306 one at a time. 1307 1308 * Block Protocol 1309 - [state] [\#3286](https://github.com/franono/tendermint/issues/3286) Blocks that include already committed evidence are invalid. 1310 1311 * P2P Protocol 1312 - [consensus] [\#3222](https://github.com/franono/tendermint/issues/3222) 1313 Validator updates are applied as a set, instead of one at a time, thus 1314 impacting the proposer priority calculation. This ensures that the proposer 1315 selection algorithm does not depend on the order of updates in 1316 `ResponseEndBlock.ValidatorUpdates`. 1317 1318 ### IMPROVEMENTS: 1319 - [crypto] [\#3279](https://github.com/franono/tendermint/issues/3279) Use `btcec.S256().N` directly instead of hard coding a copy. 1320 1321 ### BUG FIXES: 1322 - [state] [\#3222](https://github.com/franono/tendermint/issues/3222) Fix validator set updates so they are applied as a set, rather 1323 than one at a time. This makes the proposer selection algorithm independent of 1324 the order of updates in `ResponseEndBlock.ValidatorUpdates`. 1325 - [evidence] [\#3286](https://github.com/franono/tendermint/issues/3286) Don't add committed evidence to evidence pool. 1326 1327 ## v0.29.2 1328 1329 *February 7th, 2019* 1330 1331 Special thanks to external contributors on this release: 1332 @ackratos, @rickyyangz 1333 1334 **Note**: This release contains security sensitive patches in the `p2p` and 1335 `crypto` packages: 1336 - p2p: 1337 - Partial fix for MITM attacks on the p2p connection. MITM conditions may 1338 still exist. See [\#3010](https://github.com/franono/tendermint/issues/3010). 1339 - crypto: 1340 - Eliminate our fork of `btcd` and use the `btcd/btcec` library directly for 1341 native secp256k1 signing. Note we still modify the signature encoding to 1342 prevent malleability. 1343 - Support the libsecp256k1 library via CGo through the `go-ethereum/crypto/secp256k1` package. 1344 - Eliminate MixEntropy functions 1345 1346 ### BREAKING CHANGES: 1347 1348 * Go API 1349 - [crypto] [\#3278](https://github.com/franono/tendermint/issues/3278) Remove 1350 MixEntropy functions 1351 - [types] [\#3245](https://github.com/franono/tendermint/issues/3245) Commit uses `type CommitSig Vote` instead of `Vote` directly. 1352 In preparation for removing redundant fields from the commit [\#1648](https://github.com/franono/tendermint/issues/1648) 1353 1354 ### IMPROVEMENTS: 1355 - [consensus] [\#3246](https://github.com/franono/tendermint/issues/3246) Better logging and notes on recovery for corrupted WAL file 1356 - [crypto] [\#3163](https://github.com/franono/tendermint/issues/3163) Use ethereum's libsecp256k1 go-wrapper for signatures when cgo is available 1357 - [crypto] [\#3162](https://github.com/franono/tendermint/issues/3162) Wrap btcd instead of forking it to keep up with fixes (used if cgo is not available) 1358 - [makefile] [\#3233](https://github.com/franono/tendermint/issues/3233) Use golangci-lint instead of go-metalinter 1359 - [tools] [\#3218](https://github.com/franono/tendermint/issues/3218) Add go-deadlock tool to help detect deadlocks 1360 - [tools] [\#3106](https://github.com/franono/tendermint/issues/3106) Add tm-signer-harness test harness for remote signers 1361 - [tests] [\#3258](https://github.com/franono/tendermint/issues/3258) Fixed a bunch of non-deterministic test failures 1362 1363 ### BUG FIXES: 1364 - [node] [\#3186](https://github.com/franono/tendermint/issues/3186) EventBus and indexerService should be started before first block (for replay last block on handshake) execution (@ackratos) 1365 - [p2p] [\#3232](https://github.com/franono/tendermint/issues/3232) Fix infinite loop leading to addrbook deadlock for seed nodes 1366 - [p2p] [\#3247](https://github.com/franono/tendermint/issues/3247) Fix panic in SeedMode when calling FlushStop and OnStop 1367 concurrently 1368 - [p2p] [\#3040](https://github.com/franono/tendermint/issues/3040) Fix MITM on secret connection by checking low-order points 1369 - [privval] [\#3258](https://github.com/franono/tendermint/issues/3258) Fix race between sign requests and ping requests in socket that was causing messages to be corrupted 1370 1371 ## v0.29.1 1372 1373 *January 24, 2019* 1374 1375 Special thanks to external contributors on this release: 1376 @infinytum, @gauthamzz 1377 1378 This release contains two important fixes: one for p2p layer where we sometimes 1379 were not closing connections and one for consensus layer where consensus with 1380 no empty blocks (`create_empty_blocks = false`) could halt. 1381 1382 Friendly reminder, we have a [bug bounty 1383 program](https://hackerone.com/tendermint). 1384 1385 ### IMPROVEMENTS: 1386 - [pex] [\#3037](https://github.com/franono/tendermint/issues/3037) Only log "Reached max attempts to dial" once 1387 - [rpc] [\#3159](https://github.com/franono/tendermint/issues/3159) Expose 1388 `triggered_timeout_commit` in the `/dump_consensus_state` 1389 1390 ### BUG FIXES: 1391 - [consensus] [\#3199](https://github.com/franono/tendermint/issues/3199) Fix consensus halt with no empty blocks from not resetting triggeredTimeoutCommit 1392 - [p2p] [\#2967](https://github.com/franono/tendermint/issues/2967) Fix file descriptor leak 1393 1394 ## v0.29.0 1395 1396 *January 21, 2019* 1397 1398 Special thanks to external contributors on this release: 1399 @bradyjoestar, @kunaldhariwal, @gauthamzz, @hrharder 1400 1401 This release is primarily about making some breaking changes to 1402 the Block protocol version before Cosmos launch, and to fixing more issues 1403 in the proposer selection algorithm discovered on Cosmos testnets. 1404 1405 The Block protocol changes include using a standard Merkle tree format (RFC 6962), 1406 fixing some inconsistencies between field orders in Vote and Proposal structs, 1407 and constraining the hash of the ConsensusParams to include only a few fields. 1408 1409 The proposer selection algorithm saw significant progress, 1410 including a [formal proof by @cwgoes for the base-case in Idris](https://github.com/cwgoes/tm-proposer-idris) 1411 and a [much more detailed specification (still in progress) by 1412 @ancazamfir](https://github.com/franono/tendermint/pull/3140). 1413 1414 Fixes to the proposer selection algorithm include normalizing the proposer 1415 priorities to mitigate the effects of large changes to the validator set. 1416 That said, we just discovered [another bug](https://github.com/franono/tendermint/issues/3181), 1417 which will be fixed in the next breaking release. 1418 1419 While we are trying to stabilize the Block protocol to preserve compatibility 1420 with old chains, there may be some final changes yet to come before Cosmos 1421 launch as we continue to audit and test the software. 1422 1423 Friendly reminder, we have a [bug bounty 1424 program](https://hackerone.com/tendermint). 1425 1426 ### BREAKING CHANGES: 1427 1428 * CLI/RPC/Config 1429 1430 * Apps 1431 - [state] [\#3049](https://github.com/franono/tendermint/issues/3049) Total voting power of the validator set is upper bounded by 1432 `MaxInt64 / 8`. Apps must ensure they do not return changes to the validator 1433 set that cause this maximum to be exceeded. 1434 1435 * Go API 1436 - [node] [\#3082](https://github.com/franono/tendermint/issues/3082) MetricsProvider now requires you to pass a chain ID 1437 - [types] [\#2713](https://github.com/franono/tendermint/issues/2713) Rename `TxProof.LeafHash` to `TxProof.Leaf` 1438 - [crypto/merkle] [\#2713](https://github.com/franono/tendermint/issues/2713) `SimpleProof.Verify` takes a `leaf` instead of a 1439 `leafHash` and performs the hashing itself 1440 1441 * Blockchain Protocol 1442 * [crypto/merkle] [\#2713](https://github.com/franono/tendermint/issues/2713) Merkle trees now match the RFC 6962 specification 1443 * [types] [\#3078](https://github.com/franono/tendermint/issues/3078) Re-order Timestamp and BlockID in CanonicalVote so it's 1444 consistent with CanonicalProposal (BlockID comes 1445 first) 1446 * [types] [\#3165](https://github.com/franono/tendermint/issues/3165) Hash of ConsensusParams only includes BlockSize.MaxBytes and 1447 BlockSize.MaxGas 1448 1449 * P2P Protocol 1450 - [consensus] [\#3049](https://github.com/franono/tendermint/issues/3049) Normalize priorities to not exceed `2*TotalVotingPower` to mitigate unfair proposer selection 1451 heavily preferring earlier joined validators in the case of an early bonded large validator unbonding 1452 1453 ### FEATURES: 1454 1455 ### IMPROVEMENTS: 1456 - [rpc] [\#3065](https://github.com/franono/tendermint/issues/3065) Return maxPerPage (100), not defaultPerPage (30) if `per_page` is greater than the max 100. 1457 - [instrumentation] [\#3082](https://github.com/franono/tendermint/issues/3082) Add `chain_id` label for all metrics 1458 1459 ### BUG FIXES: 1460 - [crypto] [\#3164](https://github.com/franono/tendermint/issues/3164) Update `btcd` fork for rare signRFC6979 bug 1461 - [lite] [\#3171](https://github.com/franono/tendermint/issues/3171) Fix verifying large validator set changes 1462 - [log] [\#3125](https://github.com/franono/tendermint/issues/3125) Fix year format 1463 - [mempool] [\#3168](https://github.com/franono/tendermint/issues/3168) Limit tx size to fit in the max reactor msg size 1464 - [scripts] [\#3147](https://github.com/franono/tendermint/issues/3147) Fix json2wal for large block parts (@bradyjoestar) 1465 1466 ## v0.28.1 1467 1468 *January 18th, 2019* 1469 1470 Special thanks to external contributors on this release: 1471 @HaoyangLiu 1472 1473 Friendly reminder, we have a [bug bounty 1474 program](https://hackerone.com/tendermint). 1475 1476 ### BUG FIXES: 1477 - [consensus] Fix consensus halt from proposing blocks with too much evidence 1478 1479 ## v0.28.0 1480 1481 *January 16th, 2019* 1482 1483 Special thanks to external contributors on this release: 1484 @fmauricios, @gianfelipe93, @husio, @needkane, @srmo, @yutianwu 1485 1486 This release is primarily about upgrades to the `privval` system - 1487 separating the `priv_validator.json` into distinct config and data files, and 1488 refactoring the socket validator to support reconnections. 1489 1490 **Note:** Please backup your existing `priv_validator.json` before using this 1491 version. 1492 1493 See [UPGRADING.md](UPGRADING.md) for more details. 1494 1495 ### BREAKING CHANGES: 1496 1497 * CLI/RPC/Config 1498 - [cli] Removed `--proxy_app=dummy` option. Use `kvstore` (`persistent_kvstore`) instead. 1499 - [cli] Renamed `--proxy_app=nilapp` to `--proxy_app=noop`. 1500 - [config] [\#2992](https://github.com/franono/tendermint/issues/2992) `allow_duplicate_ip` is now set to false 1501 - [privval] [\#1181](https://github.com/franono/tendermint/issues/1181) Split `priv_validator.json` into immutable (`config/priv_validator_key.json`) and mutable (`data/priv_validator_state.json`) parts (@yutianwu) 1502 - [privval] [\#2926](https://github.com/franono/tendermint/issues/2926) Split up `PubKeyMsg` into `PubKeyRequest` and `PubKeyResponse` to be consistent with other message types 1503 - [privval] [\#2923](https://github.com/franono/tendermint/issues/2923) Listen for unix socket connections instead of dialing them 1504 1505 * Apps 1506 1507 * Go API 1508 - [types] [\#2981](https://github.com/franono/tendermint/issues/2981) Remove `PrivValidator.GetAddress()` 1509 1510 * Blockchain Protocol 1511 1512 * P2P Protocol 1513 1514 ### FEATURES: 1515 - [rpc] [\#3052](https://github.com/franono/tendermint/issues/3052) Include peer's remote IP in `/net_info` 1516 1517 ### IMPROVEMENTS: 1518 - [consensus] [\#3086](https://github.com/franono/tendermint/issues/3086) Log peerID on ignored votes (@srmo) 1519 - [docs] [\#3061](https://github.com/franono/tendermint/issues/3061) Added specification for signing consensus msgs at 1520 ./docs/spec/consensus/signing.md 1521 - [privval] [\#2948](https://github.com/franono/tendermint/issues/2948) Memoize pubkey so it's only requested once on startup 1522 - [privval] [\#2923](https://github.com/franono/tendermint/issues/2923) Retry RemoteSigner connections on error 1523 1524 ### BUG FIXES: 1525 1526 - [build] [\#3085](https://github.com/franono/tendermint/issues/3085) Fix `Version` field in build scripts (@husio) 1527 - [crypto/multisig] [\#3102](https://github.com/franono/tendermint/issues/3102) Fix multisig keys address length 1528 - [crypto/encoding] [\#3101](https://github.com/franono/tendermint/issues/3101) Fix `PubKeyMultisigThreshold` unmarshalling into `crypto.PubKey` interface 1529 - [p2p/conn] [\#3111](https://github.com/franono/tendermint/issues/3111) Make SecretConnection thread safe 1530 - [rpc] [\#3053](https://github.com/franono/tendermint/issues/3053) Fix internal error in `/tx_search` when results are empty 1531 (@gianfelipe93) 1532 - [types] [\#2926](https://github.com/franono/tendermint/issues/2926) Do not panic if retrieving the privval's public key fails 1533 1534 ## v0.27.4 1535 1536 *December 21st, 2018* 1537 1538 ### BUG FIXES: 1539 1540 - [mempool] [\#3036](https://github.com/franono/tendermint/issues/3036) Fix 1541 LRU cache by popping the least recently used item when the cache is full, 1542 not the most recently used one! 1543 1544 ## v0.27.3 1545 1546 *December 16th, 2018* 1547 1548 ### BREAKING CHANGES: 1549 1550 * Go API 1551 - [dep] [\#3027](https://github.com/franono/tendermint/issues/3027) Revert to mainline Go crypto library, eliminating the modified 1552 `bcrypt.GenerateFromPassword` 1553 1554 ## v0.27.2 1555 1556 *December 16th, 2018* 1557 1558 ### IMPROVEMENTS: 1559 1560 - [node] [\#3025](https://github.com/franono/tendermint/issues/3025) Validate NodeInfo addresses on startup. 1561 1562 ### BUG FIXES: 1563 1564 - [p2p] [\#3025](https://github.com/franono/tendermint/pull/3025) Revert to using defers in addrbook. Fixes deadlocks in pex and consensus upon invalid ExternalAddr/ListenAddr configuration. 1565 1566 ## v0.27.1 1567 1568 *December 15th, 2018* 1569 1570 Special thanks to external contributors on this release: 1571 @danil-lashin, @hleb-albau, @james-ray, @leo-xinwang 1572 1573 ### FEATURES: 1574 - [rpc] [\#2964](https://github.com/franono/tendermint/issues/2964) Add `UnconfirmedTxs(limit)` and `NumUnconfirmedTxs()` methods to HTTP/Local clients (@danil-lashin) 1575 - [docs] [\#3004](https://github.com/franono/tendermint/issues/3004) Enable full-text search on docs pages 1576 1577 ### IMPROVEMENTS: 1578 - [consensus] [\#2971](https://github.com/franono/tendermint/issues/2971) Return error if ValidatorSet is empty after InitChain 1579 (@leo-xinwang) 1580 - [ci/cd] [\#3005](https://github.com/franono/tendermint/issues/3005) Updated CircleCI job to trigger website build when docs are updated 1581 - [docs] Various updates 1582 1583 ### BUG FIXES: 1584 - [cmd] [\#2983](https://github.com/franono/tendermint/issues/2983) `testnet` command always sets `addr_book_strict = false` 1585 - [config] [\#2980](https://github.com/franono/tendermint/issues/2980) Fix CORS options formatting 1586 - [kv indexer] [\#2912](https://github.com/franono/tendermint/issues/2912) Don't ignore key when executing CONTAINS 1587 - [mempool] [\#2961](https://github.com/franono/tendermint/issues/2961) Call `notifyTxsAvailable` if there're txs left after committing a block, but recheck=false 1588 - [mempool] [\#2994](https://github.com/franono/tendermint/issues/2994) Reject txs with negative GasWanted 1589 - [p2p] [\#2990](https://github.com/franono/tendermint/issues/2990) Fix a bug where seeds don't disconnect from a peer after 3h 1590 - [consensus] [\#3006](https://github.com/franono/tendermint/issues/3006) Save state after InitChain only when stateHeight is also 0 (@james-ray) 1591 1592 ## v0.27.0 1593 1594 *December 5th, 2018* 1595 1596 Special thanks to external contributors on this release: 1597 @danil-lashin, @srmo 1598 1599 Special thanks to @dlguddus for discovering a [major 1600 issue](https://github.com/franono/tendermint/issues/2718#issuecomment-440888677) 1601 in the proposer selection algorithm. 1602 1603 Friendly reminder, we have a [bug bounty 1604 program](https://hackerone.com/tendermint). 1605 1606 This release is primarily about fixes to the proposer selection algorithm 1607 in preparation for the [Cosmos Game of 1608 Stakes](https://blog.cosmos.network/the-game-of-stakes-is-open-for-registration-83a404746ee6). 1609 It also makes use of the `ConsensusParams.Validator.PubKeyTypes` to restrict the 1610 key types that can be used by validators, and removes the `Heartbeat` consensus 1611 message. 1612 1613 ### BREAKING CHANGES: 1614 1615 * CLI/RPC/Config 1616 - [rpc] [\#2932](https://github.com/franono/tendermint/issues/2932) Rename `accum` to `proposer_priority` 1617 1618 * Go API 1619 - [db] [\#2913](https://github.com/franono/tendermint/pull/2913) 1620 ReverseIterator API change: start < end, and end is exclusive. 1621 - [types] [\#2932](https://github.com/franono/tendermint/issues/2932) Rename `Validator.Accum` to `Validator.ProposerPriority` 1622 1623 * Blockchain Protocol 1624 - [state] [\#2714](https://github.com/franono/tendermint/issues/2714) Validators can now only use pubkeys allowed within 1625 ConsensusParams.Validator.PubKeyTypes 1626 1627 * P2P Protocol 1628 - [consensus] [\#2871](https://github.com/franono/tendermint/issues/2871) 1629 Remove *ProposalHeartbeat* message as it serves no real purpose (@srmo) 1630 - [state] Fixes for proposer selection: 1631 - [\#2785](https://github.com/franono/tendermint/issues/2785) Accum for new validators is `-1.125*totalVotingPower` instead of 0 1632 - [\#2941](https://github.com/franono/tendermint/issues/2941) val.Accum is preserved during ValidatorSet.Update to avoid being 1633 reset to 0 1634 1635 ### IMPROVEMENTS: 1636 1637 - [state] [\#2929](https://github.com/franono/tendermint/issues/2929) Minor refactor of updateState logic (@danil-lashin) 1638 - [node] [\#2959](https://github.com/franono/tendermint/issues/2959) Allow node to start even if software's BlockProtocol is 1639 different from state's BlockProtocol 1640 - [pex] [\#2959](https://github.com/franono/tendermint/issues/2959) Pex reactor logger uses `module=pex` 1641 1642 ### BUG FIXES: 1643 1644 - [p2p] [\#2968](https://github.com/franono/tendermint/issues/2968) Panic on transport error rather than continuing to run but not 1645 accept new connections 1646 - [p2p] [\#2969](https://github.com/franono/tendermint/issues/2969) Fix mismatch in peer count between `/net_info` and the prometheus 1647 metrics 1648 - [rpc] [\#2408](https://github.com/franono/tendermint/issues/2408) `/broadcast_tx_commit`: Fix "interface conversion: interface {} in nil, not EventDataTx" panic (could happen if somebody sent a tx using `/broadcast_tx_commit` while Tendermint was being stopped) 1649 - [state] [\#2785](https://github.com/franono/tendermint/issues/2785) Fix accum for new validators to be `-1.125*totalVotingPower` 1650 instead of 0, forcing them to wait before becoming the proposer. Also: 1651 - do not batch clip 1652 - keep accums averaged near 0 1653 - [txindex/kv] [\#2925](https://github.com/franono/tendermint/issues/2925) Don't return false positives when range searching for a prefix of a tag value 1654 - [types] [\#2938](https://github.com/franono/tendermint/issues/2938) Fix regression in v0.26.4 where we panic on empty 1655 genDoc.Validators 1656 - [types] [\#2941](https://github.com/franono/tendermint/issues/2941) Preserve val.Accum during ValidatorSet.Update to avoid it being 1657 reset to 0 every time a validator is updated 1658 1659 ## v0.26.4 1660 1661 *November 27th, 2018* 1662 1663 Special thanks to external contributors on this release: 1664 @ackratos, @goolAdapter, @james-ray, @joe-bowman, @kostko, 1665 @nagarajmanjunath, @tomtau 1666 1667 Friendly reminder, we have a [bug bounty 1668 program](https://hackerone.com/tendermint). 1669 1670 ### FEATURES: 1671 1672 - [rpc] [\#2747](https://github.com/franono/tendermint/issues/2747) Enable subscription to tags emitted from `BeginBlock`/`EndBlock` (@kostko) 1673 - [types] [\#2747](https://github.com/franono/tendermint/issues/2747) Add `ResultBeginBlock` and `ResultEndBlock` fields to `EventDataNewBlock` 1674 and `EventDataNewBlockHeader` to support subscriptions (@kostko) 1675 - [types] [\#2918](https://github.com/franono/tendermint/issues/2918) Add Marshal, MarshalTo, Unmarshal methods to various structs 1676 to support Protobuf compatibility (@nagarajmanjunath) 1677 1678 ### IMPROVEMENTS: 1679 1680 - [config] [\#2877](https://github.com/franono/tendermint/issues/2877) Add `blocktime_iota` to the config.toml (@ackratos) 1681 - NOTE: this should be a ConsensusParam, not part of the config, and will be 1682 removed from the config at a later date 1683 ([\#2920](https://github.com/franono/tendermint/issues/2920). 1684 - [mempool] [\#2882](https://github.com/franono/tendermint/issues/2882) Add txs from Update to cache 1685 - [mempool] [\#2891](https://github.com/franono/tendermint/issues/2891) Remove local int64 counter from being stored in every tx 1686 - [node] [\#2866](https://github.com/franono/tendermint/issues/2866) Add ability to instantiate IPCVal (@joe-bowman) 1687 1688 ### BUG FIXES: 1689 1690 - [blockchain] [\#2731](https://github.com/franono/tendermint/issues/2731) Retry both blocks if either is bad to avoid getting stuck during fast sync (@goolAdapter) 1691 - [consensus] [\#2893](https://github.com/franono/tendermint/issues/2893) Use genDoc.Validators instead of state.NextValidators on replay when appHeight==0 (@james-ray) 1692 - [log] [\#2868](https://github.com/franono/tendermint/issues/2868) Fix `module=main` setting overriding all others 1693 - NOTE: this changes the default logging behaviour to be much less verbose. 1694 Set `log_level="info"` to restore the previous behaviour. 1695 - [rpc] [\#2808](https://github.com/franono/tendermint/issues/2808) Fix `accum` field in `/validators` by calling `IncrementAccum` if necessary 1696 - [rpc] [\#2811](https://github.com/franono/tendermint/issues/2811) Allow integer IDs in JSON-RPC requests (@tomtau) 1697 - [txindex/kv] [\#2759](https://github.com/franono/tendermint/issues/2759) Fix tx.height range queries 1698 - [txindex/kv] [\#2775](https://github.com/franono/tendermint/issues/2775) Order tx results by index if height is the same 1699 - [txindex/kv] [\#2908](https://github.com/franono/tendermint/issues/2908) Don't return false positives when searching for a prefix of a tag value 1700 1701 ## v0.26.3 1702 1703 *November 17th, 2018* 1704 1705 Special thanks to external contributors on this release: 1706 @danil-lashin, @kevlubkcm, @krhubert, @srmo 1707 1708 Friendly reminder, we have a [bug bounty 1709 program](https://hackerone.com/tendermint). 1710 1711 ### BREAKING CHANGES: 1712 1713 * Go API 1714 - [rpc] [\#2791](https://github.com/franono/tendermint/issues/2791) Functions that start HTTP servers are now blocking: 1715 - Impacts `StartHTTPServer`, `StartHTTPAndTLSServer`, and `StartGRPCServer` 1716 - These functions now take a `net.Listener` instead of an address 1717 - [rpc] [\#2767](https://github.com/franono/tendermint/issues/2767) Subscribing to events 1718 `NewRound` and `CompleteProposal` return new types `EventDataNewRound` and 1719 `EventDataCompleteProposal`, respectively, instead of the generic `EventDataRoundState`. (@kevlubkcm) 1720 1721 ### FEATURES: 1722 1723 - [log] [\#2843](https://github.com/franono/tendermint/issues/2843) New `log_format` config option, which can be set to 'plain' for colored 1724 text or 'json' for JSON output 1725 - [types] [\#2767](https://github.com/franono/tendermint/issues/2767) New event types EventDataNewRound (with ProposerInfo) and EventDataCompleteProposal (with BlockID). (@kevlubkcm) 1726 1727 ### IMPROVEMENTS: 1728 1729 - [dep] [\#2844](https://github.com/franono/tendermint/issues/2844) Dependencies are no longer pinned to an exact version in the 1730 Gopkg.toml: 1731 - Serialization libs are allowed to vary by patch release 1732 - Other libs are allowed to vary by minor release 1733 - [p2p] [\#2857](https://github.com/franono/tendermint/issues/2857) "Send failed" is logged at debug level instead of error. 1734 - [rpc] [\#2780](https://github.com/franono/tendermint/issues/2780) Add read and write timeouts to HTTP servers 1735 - [state] [\#2848](https://github.com/franono/tendermint/issues/2848) Make "Update to validators" msg value pretty (@danil-lashin) 1736 1737 ### BUG FIXES: 1738 - [consensus] [\#2819](https://github.com/franono/tendermint/issues/2819) Don't send proposalHearbeat if not a validator 1739 - [docs] [\#2859](https://github.com/franono/tendermint/issues/2859) Fix ConsensusParams details in spec 1740 - [libs/autofile] [\#2760](https://github.com/franono/tendermint/issues/2760) Comment out autofile permissions check - should fix 1741 running Tendermint on Windows 1742 - [p2p] [\#2869](https://github.com/franono/tendermint/issues/2869) Set connection config properly instead of always using default 1743 - [p2p/pex] [\#2802](https://github.com/franono/tendermint/issues/2802) Seed mode fixes: 1744 - Only disconnect from inbound peers 1745 - Use FlushStop instead of Sleep to ensure all messages are sent before 1746 disconnecting 1747 1748 ## v0.26.2 1749 1750 *November 15th, 2018* 1751 1752 Special thanks to external contributors on this release: @hleb-albau, @zhuzeyu 1753 1754 Friendly reminder, we have a [bug bounty program](https://hackerone.com/tendermint). 1755 1756 ### FEATURES: 1757 1758 - [rpc] [\#2582](https://github.com/franono/tendermint/issues/2582) Enable CORS on RPC API (@hleb-albau) 1759 1760 ### BUG FIXES: 1761 1762 - [abci] [\#2748](https://github.com/franono/tendermint/issues/2748) Unlock mutex in localClient so even when app panics (e.g. during CheckTx), consensus continue working 1763 - [abci] [\#2748](https://github.com/franono/tendermint/issues/2748) Fix DATA RACE in localClient 1764 - [amino] [\#2822](https://github.com/franono/tendermint/issues/2822) Update to v0.14.1 to support compiling on 32-bit platforms 1765 - [rpc] [\#2748](https://github.com/franono/tendermint/issues/2748) Drain channel before calling Unsubscribe(All) in `/broadcast_tx_commit` 1766 1767 ## v0.26.1 1768 1769 *November 11, 2018* 1770 1771 Special thanks to external contributors on this release: @katakonst 1772 1773 Friendly reminder, we have a [bug bounty program](https://hackerone.com/tendermint). 1774 1775 ### IMPROVEMENTS: 1776 1777 - [consensus] [\#2704](https://github.com/franono/tendermint/issues/2704) Simplify valid POL round logic 1778 - [docs] [\#2749](https://github.com/franono/tendermint/issues/2749) Deduplicate some ABCI docs 1779 - [mempool] More detailed log messages 1780 - [\#2724](https://github.com/franono/tendermint/issues/2724) 1781 - [\#2762](https://github.com/franono/tendermint/issues/2762) 1782 1783 ### BUG FIXES: 1784 1785 - [autofile] [\#2703](https://github.com/franono/tendermint/issues/2703) Do not panic when checking Head size 1786 - [crypto/merkle] [\#2756](https://github.com/franono/tendermint/issues/2756) Fix crypto/merkle ProofOperators.Verify to check bounds on keypath parts. 1787 - [mempool] fix a bug where we create a WAL despite `wal_dir` being empty 1788 - [p2p] [\#2771](https://github.com/franono/tendermint/issues/2771) Fix `peer-id` label name to `peer_id` in prometheus metrics 1789 - [p2p] [\#2797](https://github.com/franono/tendermint/pull/2797) Fix IDs in peer NodeInfo and require them for addresses 1790 in AddressBook 1791 - [p2p] [\#2797](https://github.com/franono/tendermint/pull/2797) Do not close conn immediately after sending pex addrs in seed mode. Partial fix for [\#2092](https://github.com/franono/tendermint/issues/2092). 1792 1793 ## v0.26.0 1794 1795 *November 2, 2018* 1796 1797 Special thanks to external contributors on this release: 1798 @bradyjoestar, @connorwstein, @goolAdapter, @HaoyangLiu, 1799 @james-ray, @overbool, @phymbert, @Slamper, @Uzair1995, @yutianwu. 1800 1801 Special thanks to @Slamper for a series of bug reports in our [bug bounty 1802 program](https://hackerone.com/tendermint) which are fixed in this release. 1803 1804 This release is primarily about adding Version fields to various data structures, 1805 optimizing consensus messages for signing and verification in 1806 restricted environments (like HSMs and the Ethereum Virtual Machine), and 1807 aligning the consensus code with the [specification](https://arxiv.org/abs/1807.04938). 1808 It also includes our first take at a generalized merkle proof system, and 1809 changes the length of hashes used for hashing data structures from 20 to 32 1810 bytes. 1811 1812 See the [UPGRADING.md](UPGRADING.md#v0.26.0) for details on upgrading to the new 1813 version. 1814 1815 Please note that we are still making breaking changes to the protocols. 1816 While the new Version fields should help us to keep the software backwards compatible 1817 even while upgrading the protocols, we cannot guarantee that new releases will 1818 be compatible with old chains just yet. We expect there will be another breaking 1819 release or two before the Cosmos Hub launch, but we will otherwise be paying 1820 increasing attention to backwards compatibility. Thanks for bearing with us! 1821 1822 ### BREAKING CHANGES: 1823 1824 * CLI/RPC/Config 1825 * [config] [\#2232](https://github.com/franono/tendermint/issues/2232) Timeouts are now strings like "3s" and "100ms", not ints 1826 * [config] [\#2505](https://github.com/franono/tendermint/issues/2505) Remove Mempool.RecheckEmpty (it was effectively useless anyways) 1827 * [config] [\#2490](https://github.com/franono/tendermint/issues/2490) `mempool.wal` is disabled by default 1828 * [privval] [\#2459](https://github.com/franono/tendermint/issues/2459) Split `SocketPVMsg`s implementations into Request and Response, where the Response may contain a error message (returned by the remote signer) 1829 * [state] [\#2644](https://github.com/franono/tendermint/issues/2644) Add Version field to State, breaking the format of State as 1830 encoded on disk. 1831 * [rpc] [\#2298](https://github.com/franono/tendermint/issues/2298) `/abci_query` takes `prove` argument instead of `trusted` and switches the default 1832 behaviour to `prove=false` 1833 * [rpc] [\#2654](https://github.com/franono/tendermint/issues/2654) Remove all `node_info.other.*_version` fields in `/status` and 1834 `/net_info` 1835 * [rpc] [\#2636](https://github.com/franono/tendermint/issues/2636) Remove 1836 `_params` suffix from fields in `consensus_params`. 1837 1838 * Apps 1839 * [abci] [\#2298](https://github.com/franono/tendermint/issues/2298) ResponseQuery.Proof is now a structured merkle.Proof, not just 1840 arbitrary bytes 1841 * [abci] [\#2644](https://github.com/franono/tendermint/issues/2644) Add Version to Header and shift all fields by one 1842 * [abci] [\#2662](https://github.com/franono/tendermint/issues/2662) Bump the field numbers for some `ResponseInfo` fields to make room for 1843 `AppVersion` 1844 * [abci] [\#2636](https://github.com/franono/tendermint/issues/2636) Updates to ConsensusParams 1845 * Remove `Params` suffix from field names 1846 * Add `Params` suffix to message types 1847 * Add new field and type, `Validator ValidatorParams`, to control what types of validator keys are allowed. 1848 1849 * Go API 1850 * [config] [\#2232](https://github.com/franono/tendermint/issues/2232) Timeouts are time.Duration, not ints 1851 * [crypto/merkle & lite] [\#2298](https://github.com/franono/tendermint/issues/2298) Various changes to accomodate General Merkle trees 1852 * [crypto/merkle] [\#2595](https://github.com/franono/tendermint/issues/2595) Remove all Hasher objects in favor of byte slices 1853 * [crypto/merkle] [\#2635](https://github.com/franono/tendermint/issues/2635) merkle.SimpleHashFromTwoHashes is no longer exported 1854 * [node] [\#2479](https://github.com/franono/tendermint/issues/2479) Remove node.RunForever 1855 * [rpc/client] [\#2298](https://github.com/franono/tendermint/issues/2298) `ABCIQueryOptions.Trusted` -> `ABCIQueryOptions.Prove` 1856 * [types] [\#2298](https://github.com/franono/tendermint/issues/2298) Remove `Index` and `Total` fields from `TxProof`. 1857 * [types] [\#2598](https://github.com/franono/tendermint/issues/2598) 1858 `VoteTypeXxx` are now of type `SignedMsgType byte` and named `XxxType`, eg. 1859 `PrevoteType`, `PrecommitType`. 1860 * [types] [\#2636](https://github.com/franono/tendermint/issues/2636) Rename fields in ConsensusParams to remove `Params` suffixes 1861 * [types] [\#2735](https://github.com/franono/tendermint/issues/2735) Simplify Proposal message to align with spec 1862 1863 * Blockchain Protocol 1864 * [crypto/tmhash] [\#2732](https://github.com/franono/tendermint/issues/2732) TMHASH is now full 32-byte SHA256 1865 * All hashes in the block header and Merkle trees are now 32-bytes 1866 * PubKey Addresses are still only 20-bytes 1867 * [state] [\#2587](https://github.com/franono/tendermint/issues/2587) Require block.Time of the fist block to be genesis time 1868 * [state] [\#2644](https://github.com/franono/tendermint/issues/2644) Require block.Version to match state.Version 1869 * [types] Update SignBytes for `Vote`/`Proposal`/`Heartbeat`: 1870 * [\#2459](https://github.com/franono/tendermint/issues/2459) Use amino encoding instead of JSON in `SignBytes`. 1871 * [\#2598](https://github.com/franono/tendermint/issues/2598) Reorder fields and use fixed sized encoding. 1872 * [\#2598](https://github.com/franono/tendermint/issues/2598) Change `Type` field from `string` to `byte` and use new 1873 `SignedMsgType` to enumerate. 1874 * [types] [\#2730](https://github.com/franono/tendermint/issues/2730) Use 1875 same order for fields in `Vote` as in the SignBytes 1876 * [types] [\#2732](https://github.com/franono/tendermint/issues/2732) Remove the address field from the validator hash 1877 * [types] [\#2644](https://github.com/franono/tendermint/issues/2644) Add Version struct to Header 1878 * [types] [\#2609](https://github.com/franono/tendermint/issues/2609) ConsensusParams.Hash() is the hash of the amino encoded 1879 struct instead of the Merkle tree of the fields 1880 * [types] [\#2670](https://github.com/franono/tendermint/issues/2670) Header.Hash() builds Merkle tree out of fields in the same 1881 order they appear in the header, instead of sorting by field name 1882 * [types] [\#2682](https://github.com/franono/tendermint/issues/2682) Use proto3 `varint` encoding for ints that are usually unsigned (instead of zigzag encoding). 1883 * [types] [\#2636](https://github.com/franono/tendermint/issues/2636) Add Validator field to ConsensusParams 1884 (Used to control which pubkey types validators can use, by abci type). 1885 1886 * P2P Protocol 1887 * [consensus] [\#2652](https://github.com/franono/tendermint/issues/2652) 1888 Replace `CommitStepMessage` with `NewValidBlockMessage` 1889 * [consensus] [\#2735](https://github.com/franono/tendermint/issues/2735) Simplify `Proposal` message to align with spec 1890 * [consensus] [\#2730](https://github.com/franono/tendermint/issues/2730) 1891 Add `Type` field to `Proposal` and use same order of fields as in the 1892 SignBytes for both `Proposal` and `Vote` 1893 * [p2p] [\#2654](https://github.com/franono/tendermint/issues/2654) Add `ProtocolVersion` struct with protocol versions to top of 1894 DefaultNodeInfo and require `ProtocolVersion.Block` to match during peer handshake 1895 1896 1897 ### FEATURES: 1898 - [abci] [\#2557](https://github.com/franono/tendermint/issues/2557) Add `Codespace` field to `Response{CheckTx, DeliverTx, Query}` 1899 - [abci] [\#2662](https://github.com/franono/tendermint/issues/2662) Add `BlockVersion` and `P2PVersion` to `RequestInfo` 1900 - [crypto/merkle] [\#2298](https://github.com/franono/tendermint/issues/2298) General Merkle Proof scheme for chaining various types of Merkle trees together 1901 - [docs/architecture] [\#1181](https://github.com/franono/tendermint/issues/1181) S 1902 plit immutable and mutable parts of priv_validator.json 1903 1904 ### IMPROVEMENTS: 1905 - Additional Metrics 1906 - [consensus] [\#2169](https://github.com/cosmos/cosmos-sdk/issues/2169) 1907 - [p2p] [\#2169](https://github.com/cosmos/cosmos-sdk/issues/2169) 1908 - [config] [\#2232](https://github.com/franono/tendermint/issues/2232) Added ValidateBasic method, which performs basic checks 1909 - [crypto/ed25519] [\#2558](https://github.com/franono/tendermint/issues/2558) Switch to use latest `golang.org/x/crypto` through our fork at 1910 github.com/tendermint/crypto 1911 - [libs/log] [\#2707](https://github.com/franono/tendermint/issues/2707) Add year to log format (@yutianwu) 1912 - [tools] [\#2238](https://github.com/franono/tendermint/issues/2238) Binary dependencies are now locked to a specific git commit 1913 1914 ### BUG FIXES: 1915 - [\#2711](https://github.com/franono/tendermint/issues/2711) Validate all incoming reactor messages. Fixes various bugs due to negative ints. 1916 - [autofile] [\#2428](https://github.com/franono/tendermint/issues/2428) Group.RotateFile need call Flush() before rename (@goolAdapter) 1917 - [common] [\#2533](https://github.com/franono/tendermint/issues/2533) Fixed a bug in the `BitArray.Or` method 1918 - [common] [\#2506](https://github.com/franono/tendermint/issues/2506) Fixed a bug in the `BitArray.Sub` method (@james-ray) 1919 - [common] [\#2534](https://github.com/franono/tendermint/issues/2534) Fix `BitArray.PickRandom` to choose uniformly from true bits 1920 - [consensus] [\#1690](https://github.com/franono/tendermint/issues/1690) Wait for 1921 timeoutPrecommit before starting next round 1922 - [consensus] [\#1745](https://github.com/franono/tendermint/issues/1745) Wait for 1923 Proposal or timeoutProposal before entering prevote 1924 - [consensus] [\#2642](https://github.com/franono/tendermint/issues/2642) Only propose ValidBlock, not LockedBlock 1925 - [consensus] [\#2642](https://github.com/franono/tendermint/issues/2642) Initialized ValidRound and LockedRound to -1 1926 - [consensus] [\#1637](https://github.com/franono/tendermint/issues/1637) Limit the amount of evidence that can be included in a 1927 block 1928 - [consensus] [\#2652](https://github.com/franono/tendermint/issues/2652) Ensure valid block property with faulty proposer 1929 - [evidence] [\#2515](https://github.com/franono/tendermint/issues/2515) Fix db iter leak (@goolAdapter) 1930 - [libs/event] [\#2518](https://github.com/franono/tendermint/issues/2518) Fix event concurrency flaw (@goolAdapter) 1931 - [node] [\#2434](https://github.com/franono/tendermint/issues/2434) Make node respond to signal interrupts while sleeping for genesis time 1932 - [state] [\#2616](https://github.com/franono/tendermint/issues/2616) Pass nil to NewValidatorSet() when genesis file's Validators field is nil 1933 - [p2p] [\#2555](https://github.com/franono/tendermint/issues/2555) Fix p2p switch FlushThrottle value (@goolAdapter) 1934 - [p2p] [\#2668](https://github.com/franono/tendermint/issues/2668) Reconnect to originally dialed address (not self-reported address) for persistent peers 1935 1936 ## v0.25.0 1937 1938 *September 22, 2018* 1939 1940 Special thanks to external contributors on this release: 1941 @scriptionist, @bradyjoestar, @WALL-E 1942 1943 This release is mostly about the ConsensusParams - removing fields and enforcing MaxGas. 1944 It also addresses some issues found via security audit, removes various unused 1945 functions from `libs/common`, and implements 1946 [ADR-012](https://github.com/franono/tendermint/blob/develop/docs/architecture/adr-012-peer-transport.md). 1947 1948 Friendly reminder, we have a [bug bounty program](https://hackerone.com/tendermint). 1949 1950 BREAKING CHANGES: 1951 1952 * CLI/RPC/Config 1953 * [rpc] [\#2391](https://github.com/franono/tendermint/issues/2391) /status `result.node_info.other` became a map 1954 * [types] [\#2364](https://github.com/franono/tendermint/issues/2364) Remove `TxSize` and `BlockGossip` from `ConsensusParams` 1955 * Maximum tx size is now set implicitly via the `BlockSize.MaxBytes` 1956 * The size of block parts in the consensus is now fixed to 64kB 1957 1958 * Apps 1959 * [mempool] [\#2360](https://github.com/franono/tendermint/issues/2360) Mempool tracks the `ResponseCheckTx.GasWanted` and 1960 `ConsensusParams.BlockSize.MaxGas` and enforces: 1961 - `GasWanted <= MaxGas` for every tx 1962 - `(sum of GasWanted in block) <= MaxGas` for block proposal 1963 1964 * Go API 1965 * [libs/common] [\#2431](https://github.com/franono/tendermint/issues/2431) Remove Word256 due to lack of use 1966 * [libs/common] [\#2452](https://github.com/franono/tendermint/issues/2452) Remove the following functions due to lack of use: 1967 * byteslice.go: cmn.IsZeros, cmn.RightPadBytes, cmn.LeftPadBytes, cmn.PrefixEndBytes 1968 * strings.go: cmn.IsHex, cmn.StripHex 1969 * int.go: Uint64Slice, all put/get int64 methods 1970 1971 FEATURES: 1972 - [rpc] [\#2415](https://github.com/franono/tendermint/issues/2415) New `/consensus_params?height=X` endpoint to query the consensus 1973 params at any height (@scriptonist) 1974 - [types] [\#1714](https://github.com/franono/tendermint/issues/1714) Add Address to GenesisValidator 1975 - [metrics] [\#2337](https://github.com/franono/tendermint/issues/2337) `consensus.block_interval_metrics` is now gauge, not histogram (you will be able to see spikes, if any) 1976 - [libs] [\#2286](https://github.com/franono/tendermint/issues/2286) Panic if `autofile` or `db/fsdb` permissions change from 0600. 1977 1978 IMPROVEMENTS: 1979 - [libs/db] [\#2371](https://github.com/franono/tendermint/issues/2371) Output error instead of panic when the given `db_backend` is not initialised (@bradyjoestar) 1980 - [mempool] [\#2399](https://github.com/franono/tendermint/issues/2399) Make mempool cache a proper LRU (@bradyjoestar) 1981 - [p2p] [\#2126](https://github.com/franono/tendermint/issues/2126) Introduce PeerTransport interface to improve isolation of concerns 1982 - [libs/common] [\#2326](https://github.com/franono/tendermint/issues/2326) Service returns ErrNotStarted 1983 1984 BUG FIXES: 1985 - [node] [\#2294](https://github.com/franono/tendermint/issues/2294) Delay starting node until Genesis time 1986 - [consensus] [\#2048](https://github.com/franono/tendermint/issues/2048) Correct peer statistics for marking peer as good 1987 - [rpc] [\#2460](https://github.com/franono/tendermint/issues/2460) StartHTTPAndTLSServer() now passes StartTLS() errors back to the caller rather than hanging forever. 1988 - [p2p] [\#2047](https://github.com/franono/tendermint/issues/2047) Accept new connections asynchronously 1989 - [tm-bench] [\#2410](https://github.com/franono/tendermint/issues/2410) Enforce minimum transaction size (@WALL-E) 1990 1991 ## 0.24.0 1992 1993 *September 6th, 2018* 1994 1995 Special thanks to external contributors with PRs included in this release: ackratos, james-ray, bradyjoestar, 1996 peerlink, Ahmah2009, bluele, b00f. 1997 1998 This release includes breaking upgrades in the block header, 1999 including the long awaited changes for delaying validator set updates by one 2000 block to better support light clients. 2001 It also fixes enforcement on the maximum size of blocks, and includes a BFT 2002 timestamp in each block that can be safely used by applications. 2003 There are also some minor breaking changes to the rpc, config, and ABCI. 2004 2005 See the [UPGRADING.md](UPGRADING.md#v0.24.0) for details on upgrading to the new 2006 version. 2007 2008 From here on, breaking changes will be broken down to better reflect how users 2009 are affected by a change. 2010 2011 A few more breaking changes are in the works - each will come with a clear 2012 Architecture Decision Record (ADR) explaining the change. You can review ADRs 2013 [here](https://github.com/franono/tendermint/tree/develop/docs/architecture) 2014 or in the [open Pull Requests](https://github.com/franono/tendermint/pulls). 2015 You can also check in on the [issues marked as 2016 breaking](https://github.com/franono/tendermint/issues?q=is%3Aopen+is%3Aissue+label%3Abreaking). 2017 2018 BREAKING CHANGES: 2019 2020 * CLI/RPC/Config 2021 - [config] [\#2169](https://github.com/franono/tendermint/issues/2169) Replace MaxNumPeers with MaxNumInboundPeers and MaxNumOutboundPeers 2022 - [config] [\#2300](https://github.com/franono/tendermint/issues/2300) Reduce default mempool size from 100k to 5k, until ABCI rechecking is implemented. 2023 - [rpc] [\#1815](https://github.com/franono/tendermint/issues/1815) `/commit` returns a `signed_header` field instead of everything being top-level 2024 2025 * Apps 2026 - [abci] Added address of the original proposer of the block to Header 2027 - [abci] Change ABCI Header to match Tendermint exactly 2028 - [abci] [\#2159](https://github.com/franono/tendermint/issues/2159) Update use of `Validator` (see 2029 [ADR-018](https://github.com/franono/tendermint/blob/develop/docs/architecture/adr-018-ABCI-Validators.md)): 2030 - Remove PubKey from `Validator` (so it's just Address and Power) 2031 - Introduce `ValidatorUpdate` (with just PubKey and Power) 2032 - InitChain and EndBlock use ValidatorUpdate 2033 - Update field names and types in BeginBlock 2034 - [state] [\#1815](https://github.com/franono/tendermint/issues/1815) Validator set changes are now delayed by one block 2035 - updates returned in ResponseEndBlock for block H will be included in RequestBeginBlock for block H+2 2036 2037 * Go API 2038 - [lite] [\#1815](https://github.com/franono/tendermint/issues/1815) Complete refactor of the package 2039 - [node] [\#2212](https://github.com/franono/tendermint/issues/2212) NewNode now accepts a `*p2p.NodeKey` (@bradyjoestar) 2040 - [libs/common] [\#2199](https://github.com/franono/tendermint/issues/2199) Remove Fmt, in favor of fmt.Sprintf 2041 - [libs/common] SplitAndTrim was deleted 2042 - [libs/common] [\#2274](https://github.com/franono/tendermint/issues/2274) Remove unused Math functions like MaxInt, MaxInt64, 2043 MinInt, MinInt64 (@Ahmah2009) 2044 - [libs/clist] Panics if list extends beyond MaxLength 2045 - [crypto] [\#2205](https://github.com/franono/tendermint/issues/2205) Rename AminoRoute variables to no longer be prefixed by signature type. 2046 2047 * Blockchain Protocol 2048 - [state] [\#1815](https://github.com/franono/tendermint/issues/1815) Validator set changes are now delayed by one block (!) 2049 - Add NextValidatorSet to State, changes on-disk representation of state 2050 - [state] [\#2184](https://github.com/franono/tendermint/issues/2184) Enforce ConsensusParams.BlockSize.MaxBytes (See 2051 [ADR-020](https://github.com/franono/tendermint/blob/develop/docs/architecture/adr-020-block-size.md)). 2052 - Remove ConsensusParams.BlockSize.MaxTxs 2053 - Introduce maximum sizes for all components of a block, including ChainID 2054 - [types] Updates to the block Header: 2055 - [\#1815](https://github.com/franono/tendermint/issues/1815) NextValidatorsHash - hash of the validator set for the next block, 2056 so the current validators actually sign over the hash for the new 2057 validators 2058 - [\#2106](https://github.com/franono/tendermint/issues/2106) ProposerAddress - address of the block's original proposer 2059 - [consensus] [\#2203](https://github.com/franono/tendermint/issues/2203) Implement BFT time 2060 - Timestamp in block must be monotonic and equal the median of timestamps in block's LastCommit 2061 - [crypto] [\#2239](https://github.com/franono/tendermint/issues/2239) Secp256k1 signature changes (See 2062 [ADR-014](https://github.com/franono/tendermint/blob/develop/docs/architecture/adr-014-secp-malleability.md)): 2063 - format changed from DER to `r || s`, both little endian encoded as 32 bytes. 2064 - malleability removed by requiring `s` to be in canonical form. 2065 2066 * P2P Protocol 2067 - [p2p] [\#2263](https://github.com/franono/tendermint/issues/2263) Update secret connection to use a little endian encoded nonce 2068 - [blockchain] [\#2213](https://github.com/franono/tendermint/issues/2213) Fix Amino routes for blockchain reactor messages 2069 (@peerlink) 2070 2071 2072 FEATURES: 2073 - [types] [\#2015](https://github.com/franono/tendermint/issues/2015) Allow genesis file to have 0 validators (@b00f) 2074 - Initial validator set can be determined by the app in ResponseInitChain 2075 - [rpc] [\#2161](https://github.com/franono/tendermint/issues/2161) New event `ValidatorSetUpdates` for when the validator set changes 2076 - [crypto/multisig] [\#2164](https://github.com/franono/tendermint/issues/2164) Introduce multisig pubkey and signature format 2077 - [libs/db] [\#2293](https://github.com/franono/tendermint/issues/2293) Allow passing options through when creating instances of leveldb dbs 2078 2079 IMPROVEMENTS: 2080 - [docs] Lint documentation with `write-good` and `stop-words`. 2081 - [docs] [\#2249](https://github.com/franono/tendermint/issues/2249) Refactor, deduplicate, and improve the ABCI docs and spec (with thanks to @ttmc). 2082 - [scripts] [\#2196](https://github.com/franono/tendermint/issues/2196) Added json2wal tool, which is supposed to help our users restore (@bradyjoestar) 2083 corrupted WAL files and compose test WAL files (@bradyjoestar) 2084 - [mempool] [\#2234](https://github.com/franono/tendermint/issues/2234) Now stores txs by hash inside of the cache, to mitigate memory leakage 2085 - [mempool] [\#2166](https://github.com/franono/tendermint/issues/2166) Set explicit capacity for map when updating txs (@bluele) 2086 2087 BUG FIXES: 2088 - [config] [\#2284](https://github.com/franono/tendermint/issues/2284) Replace `db_path` with `db_dir` from automatically generated configuration files. 2089 - [mempool] [\#2188](https://github.com/franono/tendermint/issues/2188) Fix OOM issue from cache map and list getting out of sync 2090 - [state] [\#2051](https://github.com/franono/tendermint/issues/2051) KV store index supports searching by `tx.height` (@ackratos) 2091 - [rpc] [\#2327](https://github.com/franono/tendermint/issues/2327) `/dial_peers` does not try to dial existing peers 2092 - [node] [\#2323](https://github.com/franono/tendermint/issues/2323) Filter empty strings from config lists (@james-ray) 2093 - [abci/client] [\#2236](https://github.com/franono/tendermint/issues/2236) Fix closing GRPC connection (@bradyjoestar) 2094 2095 ## 0.23.1 2096 2097 *August 22nd, 2018* 2098 2099 BUG FIXES: 2100 - [libs/autofile] [\#2261](https://github.com/franono/tendermint/issues/2261) Fix log rotation so it actually happens. 2101 - Fixes issues with consensus WAL growing unbounded ala [\#2259](https://github.com/franono/tendermint/issues/2259) 2102 2103 ## 0.23.0 2104 2105 *August 5th, 2018* 2106 2107 This release includes breaking upgrades in our P2P encryption, 2108 some ABCI messages, and how we encode time and signatures. 2109 2110 A few more changes are still coming to the Header, ABCI, 2111 and validator set handling to better support light clients, BFT time, and 2112 upgrades. Most notably, validator set changes will be delayed by one block (see 2113 [#1815][i1815]). 2114 2115 We also removed `make ensure_deps` in favour of `make get_vendor_deps`. 2116 2117 BREAKING CHANGES: 2118 - [abci] Changed time format from int64 to google.protobuf.Timestamp 2119 - [abci] Changed Validators to LastCommitInfo in RequestBeginBlock 2120 - [abci] Removed Fee from ResponseDeliverTx and ResponseCheckTx 2121 - [crypto] Switch crypto.Signature from interface to []byte for space efficiency 2122 [#2128](https://github.com/franono/tendermint/pull/2128) 2123 - NOTE: this means signatures no longer have the prefix bytes in Amino 2124 binary nor the `type` field in Amino JSON. They're just bytes. 2125 - [p2p] Remove salsa and ripemd primitives, in favor of using chacha as a stream cipher, and hkdf [#2054](https://github.com/franono/tendermint/pull/2054) 2126 - [tools] Removed `make ensure_deps` in favor of `make get_vendor_deps` 2127 - [types] CanonicalTime uses nanoseconds instead of clipping to ms 2128 - breaks serialization/signing of all messages with a timestamp 2129 2130 FEATURES: 2131 - [tools] Added `make check_dep` 2132 - ensures gopkg.lock is synced with gopkg.toml 2133 - ensures no branches are used in the gopkg.toml 2134 2135 IMPROVEMENTS: 2136 - [blockchain] Improve fast-sync logic 2137 [#1805](https://github.com/franono/tendermint/pull/1805) 2138 - tweak params 2139 - only process one block at a time to avoid starving 2140 - [common] bit array functions which take in another parameter are now thread safe 2141 - [crypto] Switch hkdfchachapoly1305 to xchachapoly1305 2142 - [p2p] begin connecting to peers as soon a seed node provides them to you ([#2093](https://github.com/franono/tendermint/issues/2093)) 2143 2144 BUG FIXES: 2145 - [common] Safely handle cases where atomic write files already exist [#2109](https://github.com/franono/tendermint/issues/2109) 2146 - [privval] fix a deadline for accepting new connections in socket private 2147 validator. 2148 - [p2p] Allow startup if a configured seed node's IP can't be resolved ([#1716](https://github.com/franono/tendermint/issues/1716)) 2149 - [node] Fully exit when CTRL-C is pressed even if consensus state panics [#2072](https://github.com/franono/tendermint/issues/2072) 2150 2151 [i1815]: https://github.com/franono/tendermint/pull/1815 2152 2153 ## 0.22.8 2154 2155 *July 26th, 2018* 2156 2157 BUG FIXES 2158 2159 - [consensus, blockchain] Fix 0.22.7 below. 2160 2161 ## 0.22.7 2162 2163 *July 26th, 2018* 2164 2165 BUG FIXES 2166 2167 - [consensus, blockchain] Register the Evidence interface so it can be 2168 marshalled/unmarshalled by the blockchain and consensus reactors 2169 2170 ## 0.22.6 2171 2172 *July 24th, 2018* 2173 2174 BUG FIXES 2175 2176 - [rpc] Fix `/blockchain` endpoint 2177 - (#2049) Fix OOM attack by returning error on negative input 2178 - Fix result length to have max 20 (instead of 21) block metas 2179 - [rpc] Validate height is non-negative in `/abci_query` 2180 - [consensus] (#2050) Include evidence in proposal block parts (previously evidence was 2181 not being included in blocks!) 2182 - [p2p] (#2046) Close rejected inbound connections so file descriptor doesn't 2183 leak 2184 - [Gopkg] (#2053) Fix versions in the toml 2185 2186 ## 0.22.5 2187 2188 *July 23th, 2018* 2189 2190 BREAKING CHANGES: 2191 - [crypto] Refactor `tendermint/crypto` into many subpackages 2192 - [libs/common] remove exponentially distributed random numbers 2193 2194 IMPROVEMENTS: 2195 - [abci, libs/common] Generated gogoproto static marshaller methods 2196 - [config] Increase default send/recv rates to 5 mB/s 2197 - [p2p] reject addresses coming from private peers 2198 - [p2p] allow persistent peers to be private 2199 2200 BUG FIXES: 2201 - [mempool] fixed a race condition when `create_empty_blocks=false` where a 2202 transaction is published at an old height. 2203 - [p2p] dial external IP setup by `persistent_peers`, not internal NAT IP 2204 - [rpc] make `/status` RPC endpoint resistant to consensus halt 2205 2206 ## 0.22.4 2207 2208 *July 14th, 2018* 2209 2210 BREAKING CHANGES: 2211 - [genesis] removed deprecated `app_options` field. 2212 - [types] Genesis.AppStateJSON -> Genesis.AppState 2213 2214 FEATURES: 2215 - [tools] Merged in from github.com/tendermint/tools 2216 2217 BUG FIXES: 2218 - [tools/tm-bench] Various fixes 2219 - [consensus] Wait for WAL to stop on shutdown 2220 - [abci] Fix #1891, pending requests cannot hang when abci server dies. 2221 Previously a crash in BeginBlock could leave tendermint in broken state. 2222 2223 ## 0.22.3 2224 2225 *July 10th, 2018* 2226 2227 IMPROVEMENTS 2228 - Update dependencies 2229 * pin all values in Gopkg.toml to version or commit 2230 * update golang/protobuf to v1.1.0 2231 2232 ## 0.22.2 2233 2234 *July 10th, 2018* 2235 2236 IMPROVEMENTS 2237 - More cleanup post repo merge! 2238 - [docs] Include `ecosystem.json` and `tendermint-bft.md` from deprecated `aib-data` repository. 2239 - [config] Add `instrumentation.max_open_connections`, which limits the number 2240 of requests in flight to Prometheus server (if enabled). Default: 3. 2241 2242 2243 BUG FIXES 2244 - [rpc] Allow unquoted integers in requests 2245 - NOTE: this is only for URI requests. JSONRPC requests and all responses 2246 will use quoted integers (the proto3 JSON standard). 2247 - [consensus] Fix halt on shutdown 2248 2249 ## 0.22.1 2250 2251 *July 5th, 2018* 2252 2253 IMPROVEMENTS 2254 2255 * Cleanup post repo-merge. 2256 * [docs] Various improvements. 2257 2258 BUG FIXES 2259 2260 * [state] Return error when EndBlock returns a 0-power validator that isn't 2261 already in the validator set. 2262 * [consensus] Shut down WAL properly. 2263 2264 2265 ## 0.22.0 2266 2267 *July 2nd, 2018* 2268 2269 BREAKING CHANGES: 2270 - [config] 2271 * Remove `max_block_size_txs` and `max_block_size_bytes` in favor of 2272 consensus params from the genesis file. 2273 * Rename `skip_upnp` to `upnp`, and turn it off by default. 2274 * Change `max_packet_msg_size` back to `max_packet_msg_payload_size` 2275 - [rpc] 2276 * All integers are encoded as strings (part of the update for Amino v0.10.1) 2277 * `syncing` is now called `catching_up` 2278 - [types] Update Amino to v0.10.1 2279 * Amino is now fully proto3 compatible for the basic types 2280 * JSON-encoded types now use the type name instead of the prefix bytes 2281 * Integers are encoded as strings 2282 - [crypto] Update go-crypto to v0.10.0 and merge into `crypto` 2283 * privKey.Sign returns error. 2284 * ed25519 address changed to the first 20-bytes of the SHA256 of the raw pubkey bytes 2285 * `tmlibs/merkle` -> `crypto/merkle`. Uses SHA256 instead of RIPEMD160 2286 - [tmlibs] Update to v0.9.0 and merge into `libs` 2287 * remove `merkle` package (moved to `crypto/merkle`) 2288 2289 FEATURES 2290 - [cmd] Added metrics (served under `/metrics` using a Prometheus client; 2291 disabled by default). See the new `instrumentation` section in the config and 2292 [metrics](https://tendermint.readthedocs.io/projects/tools/en/develop/metrics.html) 2293 guide. 2294 - [p2p] Add IPv6 support to peering. 2295 - [p2p] Add `external_address` to config to allow specifying the address for 2296 peers to dial 2297 2298 IMPROVEMENT 2299 - [rpc/client] Supports https and wss now. 2300 - [crypto] Make public key size into public constants 2301 - [mempool] Log tx hash, not entire tx 2302 - [abci] Merged in github.com/tendermint/abci 2303 - [crypto] Merged in github.com/tendermint/go-crypto 2304 - [libs] Merged in github.com/tendermint/tmlibs 2305 - [docs] Move from .rst to .md 2306 2307 BUG FIXES: 2308 - [rpc] Limit maximum number of HTTP/WebSocket connections 2309 (`rpc.max_open_connections`) and gRPC connections 2310 (`rpc.grpc_max_open_connections`). Check out "Running In Production" guide if 2311 you want to increase them. 2312 - [rpc] Limit maximum request body size to 1MB (header is limited to 1MB). 2313 - [consensus] Fix a halting bug where `create_empty_blocks=false` 2314 - [p2p] Fix panic in seed mode 2315 2316 ## 0.21.0 2317 2318 *June 21th, 2018* 2319 2320 BREAKING CHANGES 2321 2322 - [config] Change default ports from 4665X to 2665X. Ports over 32768 are 2323 ephemeral and reserved for use by the kernel. 2324 - [cmd] `unsafe_reset_all` removes the addrbook.json 2325 2326 IMPROVEMENT 2327 2328 - [pubsub] Set default capacity to 0 2329 - [docs] Various improvements 2330 2331 BUG FIXES 2332 2333 - [consensus] Fix an issue where we don't make blocks after `fast_sync` when `create_empty_blocks=false` 2334 - [mempool] Fix #1761 where we don't process txs if `cache_size=0` 2335 - [rpc] Fix memory leak in Websocket (when using `/subscribe` method) 2336 - [config] Escape paths in config - fixes config paths on Windows 2337 2338 ## 0.20.0 2339 2340 *June 6th, 2018* 2341 2342 This is the first in a series of breaking releases coming to Tendermint after 2343 soliciting developer feedback and conducting security audits. 2344 2345 This release does not break any blockchain data structures or 2346 protocols other than the ABCI messages between Tendermint and the application. 2347 2348 Applications that upgrade for ABCI v0.11.0 should be able to continue running Tendermint 2349 v0.20.0 on blockchains created with v0.19.X 2350 2351 BREAKING CHANGES 2352 2353 - [abci] Upgrade to 2354 [v0.11.0](https://github.com/tendermint/abci/blob/master/CHANGELOG.md#0110) 2355 - [abci] Change Query path for filtering peers by node ID from 2356 `p2p/filter/pubkey/<id>` to `p2p/filter/id/<id>` 2357 2358 ## 0.19.9 2359 2360 *June 5th, 2018* 2361 2362 BREAKING CHANGES 2363 2364 - [types/priv_validator] Moved to top level `privval` package 2365 2366 FEATURES 2367 2368 - [config] Collapse PeerConfig into P2PConfig 2369 - [docs] Add quick-install script 2370 - [docs/spec] Add table of Amino prefixes 2371 2372 BUG FIXES 2373 2374 - [rpc] Return 404 for unknown endpoints 2375 - [consensus] Flush WAL on stop 2376 - [evidence] Don't send evidence to peers that are behind 2377 - [p2p] Fix memory leak on peer disconnects 2378 - [rpc] Fix panic when `per_page=0` 2379 2380 ## 0.19.8 2381 2382 *June 4th, 2018* 2383 2384 BREAKING: 2385 2386 - [p2p] Remove `auth_enc` config option, peer connections are always auth 2387 encrypted. Technically a breaking change but seems no one was using it and 2388 arguably a bug fix :) 2389 2390 BUG FIXES 2391 2392 - [mempool] Fix deadlock under high load when `skip_timeout_commit=true` and 2393 `create_empty_blocks=false` 2394 2395 ## 0.19.7 2396 2397 *May 31st, 2018* 2398 2399 BREAKING: 2400 2401 - [libs/pubsub] TagMap#Get returns a string value 2402 - [libs/pubsub] NewTagMap accepts a map of strings 2403 2404 FEATURES 2405 2406 - [rpc] the RPC documentation is now published to https://tendermint.github.io/slate 2407 - [p2p] AllowDuplicateIP config option to refuse connections from same IP. 2408 - true by default for now, false by default in next breaking release 2409 - [docs] Add docs for query, tx indexing, events, pubsub 2410 - [docs] Add some notes about running Tendermint in production 2411 2412 IMPROVEMENTS: 2413 2414 - [consensus] Consensus reactor now receives events from a separate synchronous event bus, 2415 which is not dependant on external RPC load 2416 - [consensus/wal] do not look for height in older files if we've seen height - 1 2417 - [docs] Various cleanup and link fixes 2418 2419 ## 0.19.6 2420 2421 *May 29th, 2018* 2422 2423 BUG FIXES 2424 2425 - [blockchain] Fix fast-sync deadlock during high peer turnover 2426 2427 BUG FIX: 2428 2429 - [evidence] Dont send peers evidence from heights they haven't synced to yet 2430 - [p2p] Refuse connections to more than one peer with the same IP 2431 - [docs] Various fixes 2432 2433 ## 0.19.5 2434 2435 *May 20th, 2018* 2436 2437 BREAKING CHANGES 2438 2439 - [rpc/client] TxSearch and UnconfirmedTxs have new arguments (see below) 2440 - [rpc/client] TxSearch returns ResultTxSearch 2441 - [version] Breaking changes to Go APIs will not be reflected in breaking 2442 version change, but will be included in changelog. 2443 2444 FEATURES 2445 2446 - [rpc] `/tx_search` takes `page` (starts at 1) and `per_page` (max 100, default 30) args to paginate results 2447 - [rpc] `/unconfirmed_txs` takes `limit` (max 100, default 30) arg to limit the output 2448 - [config] `mempool.size` and `mempool.cache_size` options 2449 2450 IMPROVEMENTS 2451 2452 - [docs] Lots of updates 2453 - [consensus] Only Fsync() the WAL before executing msgs from ourselves 2454 2455 BUG FIXES 2456 2457 - [mempool] Enforce upper bound on number of transactions 2458 2459 ## 0.19.4 (May 17th, 2018) 2460 2461 IMPROVEMENTS 2462 2463 - [state] Improve tx indexing by using batches 2464 - [consensus, state] Improve logging (more consensus logs, fewer tx logs) 2465 - [spec] Moved to `docs/spec` (TODO cleanup the rest of the docs ...) 2466 2467 BUG FIXES 2468 2469 - [consensus] Fix issue #1575 where a late proposer can get stuck 2470 2471 ## 0.19.3 (May 14th, 2018) 2472 2473 FEATURES 2474 2475 - [rpc] New `/consensus_state` returns just the votes seen at the current height 2476 2477 IMPROVEMENTS 2478 2479 - [rpc] Add stringified votes and fraction of power voted to `/dump_consensus_state` 2480 - [rpc] Add PeerStateStats to `/dump_consensus_state` 2481 2482 BUG FIXES 2483 2484 - [cmd] Set GenesisTime during `tendermint init` 2485 - [consensus] fix ValidBlock rules 2486 2487 ## 0.19.2 (April 30th, 2018) 2488 2489 FEATURES: 2490 2491 - [p2p] Allow peers with different Minor versions to connect 2492 - [rpc] `/net_info` includes `n_peers` 2493 2494 IMPROVEMENTS: 2495 2496 - [p2p] Various code comments, cleanup, error types 2497 - [p2p] Change some Error logs to Debug 2498 2499 BUG FIXES: 2500 2501 - [p2p] Fix reconnect to persistent peer when first dial fails 2502 - [p2p] Validate NodeInfo.ListenAddr 2503 - [p2p] Only allow (MaxNumPeers - MaxNumOutboundPeers) inbound peers 2504 - [p2p/pex] Limit max msg size to 64kB 2505 - [p2p] Fix panic when pex=false 2506 - [p2p] Allow multiple IPs per ID in AddrBook 2507 - [p2p] Fix before/after bugs in addrbook isBad() 2508 2509 ## 0.19.1 (April 27th, 2018) 2510 2511 Note this release includes some small breaking changes in the RPC and one in the 2512 config that are really bug fixes. v0.19.1 will work with existing chains, and make Tendermint 2513 easier to use and debug. With <3 2514 2515 BREAKING (MINOR) 2516 2517 - [config] Removed `wal_light` setting. If you really needed this, let us know 2518 2519 FEATURES: 2520 2521 - [networks] moved in tooling from devops repo: terraform and ansible scripts for deploying testnets ! 2522 - [cmd] Added `gen_node_key` command 2523 2524 BUG FIXES 2525 2526 Some of these are breaking in the RPC response, but they're really bugs! 2527 2528 - [spec] Document address format and pubkey encoding pre and post Amino 2529 - [rpc] Lower case JSON field names 2530 - [rpc] Fix missing entries, improve, and lower case the fields in `/dump_consensus_state` 2531 - [rpc] Fix NodeInfo.Channels format to hex 2532 - [rpc] Add Validator address to `/status` 2533 - [rpc] Fix `prove` in ABCIQuery 2534 - [cmd] MarshalJSONIndent on init 2535 2536 ## 0.19.0 (April 13th, 2018) 2537 2538 BREAKING: 2539 - [cmd] improved `testnet` command; now it can fill in `persistent_peers` for you in the config file and much more (see `tendermint testnet --help` for details) 2540 - [cmd] `show_node_id` now returns an error if there is no node key 2541 - [rpc]: changed the output format for the `/status` endpoint (see https://godoc.org/github.com/franono/tendermint/rpc/core#Status) 2542 2543 Upgrade from go-wire to go-amino. This is a sweeping change that breaks everything that is 2544 serialized to disk or over the network. 2545 2546 See github.com/tendermint/go-amino for details on the new format. 2547 2548 See `scripts/wire2amino.go` for a tool to upgrade 2549 genesis/priv_validator/node_key JSON files. 2550 2551 FEATURES 2552 2553 - [test] docker-compose for local testnet setup (thanks Greg!) 2554 2555 ## 0.18.0 (April 6th, 2018) 2556 2557 BREAKING: 2558 2559 - [types] Merkle tree uses different encoding for varints (see tmlibs v0.8.0) 2560 - [types] ValidtorSet.GetByAddress returns -1 if no validator found 2561 - [p2p] require all addresses come with an ID no matter what 2562 - [rpc] Listening address must contain tcp:// or unix:// prefix 2563 2564 FEATURES: 2565 2566 - [rpc] StartHTTPAndTLSServer (not used yet) 2567 - [rpc] Include validator's voting power in `/status` 2568 - [rpc] `/tx` and `/tx_search` responses now include the transaction hash 2569 - [rpc] Include peer NodeIDs in `/net_info` 2570 2571 IMPROVEMENTS: 2572 - [config] trim whitespace from elements of lists (like `persistent_peers`) 2573 - [rpc] `/tx_search` results are sorted by height 2574 - [p2p] do not try to connect to ourselves (ok, maybe only once) 2575 - [p2p] seeds respond with a bias towards good peers 2576 2577 BUG FIXES: 2578 - [rpc] fix subscribing using an abci.ResponseDeliverTx tag 2579 - [rpc] fix tx_indexers matchRange 2580 - [rpc] fix unsubscribing (see tmlibs v0.8.0) 2581 2582 ## 0.17.1 (March 27th, 2018) 2583 2584 BUG FIXES: 2585 - [types] Actually support `app_state` in genesis as `AppStateJSON` 2586 2587 ## 0.17.0 (March 27th, 2018) 2588 2589 BREAKING: 2590 - [types] WriteSignBytes -> SignBytes 2591 2592 IMPROVEMENTS: 2593 - [all] renamed `dummy` (`persistent_dummy`) to `kvstore` (`persistent_kvstore`) (name "dummy" is deprecated and will not work in the next breaking release) 2594 - [docs] note on determinism (docs/determinism.rst) 2595 - [genesis] `app_options` field is deprecated. please rename it to `app_state` in your genesis file(s). `app_options` will not work in the next breaking release 2596 - [p2p] dial seeds directly without potential peers 2597 - [p2p] exponential backoff for addrs in the address book 2598 - [p2p] mark peer as good if it contributed enough votes or block parts 2599 - [p2p] stop peer if it sends incorrect data, msg to unknown channel, msg we did not expect 2600 - [p2p] when `auth_enc` is true, all dialed peers must have a node ID in their address 2601 - [spec] various improvements 2602 - switched from glide to dep internally for package management 2603 - [wire] prep work for upgrading to new go-wire (which is now called go-amino) 2604 2605 FEATURES: 2606 - [config] exposed `auth_enc` flag to enable/disable encryption 2607 - [config] added the `--p2p.private_peer_ids` flag and `PrivatePeerIDs` config variable (see config for description) 2608 - [rpc] added `/health` endpoint, which returns empty result for now 2609 - [types/priv_validator] new format and socket client, allowing for remote signing 2610 2611 BUG FIXES: 2612 - [consensus] fix liveness bug by introducing ValidBlock mechanism 2613 2614 ## 0.16.0 (February 20th, 2018) 2615 2616 BREAKING CHANGES: 2617 - [config] use $TMHOME/config for all config and json files 2618 - [p2p] old `--p2p.seeds` is now `--p2p.persistent_peers` (persistent peers to which TM will always connect to) 2619 - [p2p] now `--p2p.seeds` only used for getting addresses (if addrbook is empty; not persistent) 2620 - [p2p] NodeInfo: remove RemoteAddr and add Channels 2621 - we must have at least one overlapping channel with peer 2622 - we only send msgs for channels the peer advertised 2623 - [p2p/conn] pong timeout 2624 - [lite] comment out IAVL related code 2625 2626 FEATURES: 2627 - [p2p] added new `/dial_peers&persistent=_` **unsafe** endpoint 2628 - [p2p] persistent node key in `$THMHOME/config/node_key.json` 2629 - [p2p] introduce peer ID and authenticate peers by ID using addresses like `ID@IP:PORT` 2630 - [p2p/pex] new seed mode crawls the network and serves as a seed. 2631 - [config] MempoolConfig.CacheSize 2632 - [config] P2P.SeedMode (`--p2p.seed_mode`) 2633 2634 IMPROVEMENT: 2635 - [p2p/pex] stricter rules in the PEX reactor for better handling of abuse 2636 - [p2p] various improvements to code structure including subpackages for `pex` and `conn` 2637 - [docs] new spec! 2638 - [all] speed up the tests! 2639 2640 BUG FIX: 2641 - [blockchain] StopPeerForError on timeout 2642 - [consensus] StopPeerForError on a bad Maj23 message 2643 - [state] flush mempool conn before calling commit 2644 - [types] fix priv val signing things that only differ by timestamp 2645 - [mempool] fix memory leak causing zombie peers 2646 - [p2p/conn] fix potential deadlock 2647 2648 ## 0.15.0 (December 29, 2017) 2649 2650 BREAKING CHANGES: 2651 - [p2p] enable the Peer Exchange reactor by default 2652 - [types] add Timestamp field to Proposal/Vote 2653 - [types] add new fields to Header: TotalTxs, ConsensusParamsHash, LastResultsHash, EvidenceHash 2654 - [types] add Evidence to Block 2655 - [types] simplify ValidateBasic 2656 - [state] updates to support changes to the header 2657 - [state] Enforce <1/3 of validator set can change at a time 2658 2659 FEATURES: 2660 - [state] Send indices of absent validators and addresses of byzantine validators in BeginBlock 2661 - [state] Historical ConsensusParams and ABCIResponses 2662 - [docs] Specification for the base Tendermint data structures. 2663 - [evidence] New evidence reactor for gossiping and managing evidence 2664 - [rpc] `/block_results?height=X` returns the DeliverTx results for a given height. 2665 2666 IMPROVEMENTS: 2667 - [consensus] Better handling of corrupt WAL file 2668 2669 BUG FIXES: 2670 - [lite] fix race 2671 - [state] validate block.Header.ValidatorsHash 2672 - [p2p] allow seed addresses to be prefixed with eg. `tcp://` 2673 - [p2p] use consistent key to refer to peers so we dont try to connect to existing peers 2674 - [cmd] fix `tendermint init` to ignore files that are there and generate files that aren't. 2675 2676 ## 0.14.0 (December 11, 2017) 2677 2678 BREAKING CHANGES: 2679 - consensus/wal: removed separator 2680 - rpc/client: changed Subscribe/Unsubscribe/UnsubscribeAll funcs signatures to be identical to event bus. 2681 2682 FEATURES: 2683 - new `tendermint lite` command (and `lite/proxy` pkg) for running a light-client RPC proxy. 2684 NOTE it is currently insecure and its APIs are not yet covered by semver 2685 2686 IMPROVEMENTS: 2687 - rpc/client: can act as event bus subscriber (See https://github.com/franono/tendermint/issues/945). 2688 - p2p: use exponential backoff from seconds to hours when attempting to reconnect to persistent peer 2689 - config: moniker defaults to the machine's hostname instead of "anonymous" 2690 2691 BUG FIXES: 2692 - p2p: no longer exit if one of the seed addresses is incorrect 2693 2694 ## 0.13.0 (December 6, 2017) 2695 2696 BREAKING CHANGES: 2697 - abci: update to v0.8 using gogo/protobuf; includes tx tags, vote info in RequestBeginBlock, data.Bytes everywhere, use int64, etc. 2698 - types: block heights are now `int64` everywhere 2699 - types & node: EventSwitch and EventCache have been replaced by EventBus and EventBuffer; event types have been overhauled 2700 - node: EventSwitch methods now refer to EventBus 2701 - rpc/lib/types: RPCResponse is no longer a pointer; WSRPCConnection interface has been modified 2702 - rpc/client: WaitForOneEvent takes an EventsClient instead of types.EventSwitch 2703 - rpc/client: Add/RemoveListenerForEvent are now Subscribe/Unsubscribe 2704 - rpc/core/types: ResultABCIQuery wraps an abci.ResponseQuery 2705 - rpc: `/subscribe` and `/unsubscribe` take `query` arg instead of `event` 2706 - rpc: `/status` returns the LatestBlockTime in human readable form instead of in nanoseconds 2707 - mempool: cached transactions return an error instead of an ABCI response with BadNonce 2708 2709 FEATURES: 2710 - rpc: new `/unsubscribe_all` WebSocket RPC endpoint 2711 - rpc: new `/tx_search` endpoint for filtering transactions by more complex queries 2712 - p2p/trust: new trust metric for tracking peers. See ADR-006 2713 - config: TxIndexConfig allows to set what DeliverTx tags to index 2714 2715 IMPROVEMENTS: 2716 - New asynchronous events system using `tmlibs/pubsub` 2717 - logging: Various small improvements 2718 - consensus: Graceful shutdown when app crashes 2719 - tests: Fix various non-deterministic errors 2720 - p2p: more defensive programming 2721 2722 BUG FIXES: 2723 - consensus: fix panic where prs.ProposalBlockParts is not initialized 2724 - p2p: fix panic on bad channel 2725 2726 ## 0.12.1 (November 27, 2017) 2727 2728 BUG FIXES: 2729 - upgrade tmlibs dependency to enable Windows builds for Tendermint 2730 2731 ## 0.12.0 (October 27, 2017) 2732 2733 BREAKING CHANGES: 2734 - rpc/client: websocket ResultsCh and ErrorsCh unified in ResponsesCh. 2735 - rpc/client: ABCIQuery no longer takes `prove` 2736 - state: remove GenesisDoc from state. 2737 - consensus: new binary WAL format provides efficiency and uses checksums to detect corruption 2738 - use scripts/wal2json to convert to json for debugging 2739 2740 FEATURES: 2741 - new `Verifiers` pkg contains the tendermint light-client library (name subject to change)! 2742 - rpc: `/genesis` includes the `app_options` . 2743 - rpc: `/abci_query` takes an additional `height` parameter to support historical queries. 2744 - rpc/client: new ABCIQueryWithOptions supports options like `trusted` (set false to get a proof) and `height` to query a historical height. 2745 2746 IMPROVEMENTS: 2747 - rpc: `/genesis` result includes `app_options` 2748 - rpc/lib/client: add jitter to reconnects. 2749 - rpc/lib/types: `RPCError` satisfies the `error` interface. 2750 2751 BUG FIXES: 2752 - rpc/client: fix ws deadlock after stopping 2753 - blockchain: fix panic on AddBlock when peer is nil 2754 - mempool: fix sending on TxsAvailable when a tx has been invalidated 2755 - consensus: dont run WAL catchup if we fast synced 2756 2757 ## 0.11.1 (October 10, 2017) 2758 2759 IMPROVEMENTS: 2760 - blockchain/reactor: respondWithNoResponseMessage for missing height 2761 2762 BUG FIXES: 2763 - rpc: fixed client WebSocket timeout 2764 - rpc: client now resubscribes on reconnection 2765 - rpc: fix panics on missing params 2766 - rpc: fix `/dump_consensus_state` to have normal json output (NOTE: technically breaking, but worth a bug fix label) 2767 - types: fixed out of range error in VoteSet.addVote 2768 - consensus: fix wal autofile via https://github.com/tendermint/tmlibs/blob/master/CHANGELOG.md#032-october-2-2017 2769 2770 ## 0.11.0 (September 22, 2017) 2771 2772 BREAKING: 2773 - genesis file: validator `amount` is now `power` 2774 - abci: Info, BeginBlock, InitChain all take structs 2775 - rpc: various changes to match JSONRPC spec (http://www.jsonrpc.org/specification), including breaking ones: 2776 - requests that previously returned HTTP code 4XX now return 200 with an error code in the JSONRPC. 2777 - `rpctypes.RPCResponse` uses new `RPCError` type instead of `string`. 2778 2779 - cmd: if there is no genesis, exit immediately instead of waiting around for one to show. 2780 - types: `Signer.Sign` returns an error. 2781 - state: every validator set change is persisted to disk, which required some changes to the `State` structure. 2782 - p2p: new `p2p.Peer` interface used for all reactor methods (instead of `*p2p.Peer` struct). 2783 2784 FEATURES: 2785 - rpc: `/validators?height=X` allows querying of validators at previous heights. 2786 - rpc: Leaving the `height` param empty for `/block`, `/validators`, and `/commit` will return the value for the latest height. 2787 2788 IMPROVEMENTS: 2789 - docs: Moved all docs from the website and tools repo in, converted to `.rst`, and cleaned up for presentation on `tendermint.readthedocs.io` 2790 2791 BUG FIXES: 2792 - fix WAL openning issue on Windows 2793 2794 ## 0.10.4 (September 5, 2017) 2795 2796 IMPROVEMENTS: 2797 - docs: Added Slate docs to each rpc function (see rpc/core) 2798 - docs: Ported all website docs to Read The Docs 2799 - config: expose some p2p params to tweak performance: RecvRate, SendRate, and MaxMsgPacketPayloadSize 2800 - rpc: Upgrade the websocket client and server, including improved auto reconnect, and proper ping/pong 2801 2802 BUG FIXES: 2803 - consensus: fix panic on getVoteBitArray 2804 - consensus: hang instead of panicking on byzantine consensus failures 2805 - cmd: dont load config for version command 2806 2807 ## 0.10.3 (August 10, 2017) 2808 2809 FEATURES: 2810 - control over empty block production: 2811 - new flag, `--consensus.create_empty_blocks`; when set to false, blocks are only created when there are txs or when the AppHash changes. 2812 - new config option, `consensus.create_empty_blocks_interval`; an empty block is created after this many seconds. 2813 - in normal operation, `create_empty_blocks = true` and `create_empty_blocks_interval = 0`, so blocks are being created all the time (as in all previous versions of tendermint). The number of empty blocks can be reduced by increasing `create_empty_blocks_interval` or by setting `create_empty_blocks = false`. 2814 - new `TxsAvailable()` method added to Mempool that returns a channel which fires when txs are available. 2815 - new heartbeat message added to consensus reactor to notify peers that a node is waiting for txs before entering propose step. 2816 - rpc: Add `syncing` field to response returned by `/status`. Is `true` while in fast-sync mode. 2817 2818 IMPROVEMENTS: 2819 - various improvements to documentation and code comments 2820 2821 BUG FIXES: 2822 - mempool: pass height into constructor so it doesn't always start at 0 2823 2824 ## 0.10.2 (July 10, 2017) 2825 2826 FEATURES: 2827 - Enable lower latency block commits by adding consensus reactor sleep durations and p2p flush throttle timeout to the config 2828 2829 IMPROVEMENTS: 2830 - More detailed logging in the consensus reactor and state machine 2831 - More in-code documentation for many exposed functions, especially in consensus/reactor.go and p2p/switch.go 2832 - Improved readability for some function definitions and code blocks with long lines 2833 2834 ## 0.10.1 (June 28, 2017) 2835 2836 FEATURES: 2837 - Use `--trace` to get stack traces for logged errors 2838 - types: GenesisDoc.ValidatorHash returns the hash of the genesis validator set 2839 - types: GenesisDocFromFile parses a GenesiDoc from a JSON file 2840 2841 IMPROVEMENTS: 2842 - Add a Code of Conduct 2843 - Variety of improvements as suggested by `megacheck` tool 2844 - rpc: deduplicate tests between rpc/client and rpc/tests 2845 - rpc: addresses without a protocol prefix default to `tcp://`. `http://` is also accepted as an alias for `tcp://` 2846 - cmd: commands are more easily reuseable from other tools 2847 - DOCKER: automate build/push 2848 2849 BUG FIXES: 2850 - Fix log statements using keys with spaces (logger does not currently support spaces) 2851 - rpc: set logger on websocket connection 2852 - rpc: fix ws connection stability by setting write deadline on pings 2853 2854 ## 0.10.0 (June 2, 2017) 2855 2856 Includes major updates to configuration, logging, and json serialization. 2857 Also includes the Grand Repo-Merge of 2017. 2858 2859 BREAKING CHANGES: 2860 2861 - Config and Flags: 2862 - The `config` map is replaced with a [`Config` struct](https://github.com/franono/tendermint/blob/master/config/config.go#L11), 2863 containing substructs: `BaseConfig`, `P2PConfig`, `MempoolConfig`, `ConsensusConfig`, `RPCConfig` 2864 - This affects the following flags: 2865 - `--seeds` is now `--p2p.seeds` 2866 - `--node_laddr` is now `--p2p.laddr` 2867 - `--pex` is now `--p2p.pex` 2868 - `--skip_upnp` is now `--p2p.skip_upnp` 2869 - `--rpc_laddr` is now `--rpc.laddr` 2870 - `--grpc_laddr` is now `--rpc.grpc_laddr` 2871 - Any configuration option now within a substract must come under that heading in the `config.toml`, for instance: 2872 ``` 2873 [p2p] 2874 laddr="tcp://1.2.3.4:46656" 2875 2876 [consensus] 2877 timeout_propose=1000 2878 ``` 2879 - Use viper and `DefaultConfig() / TestConfig()` functions to handle defaults, and remove `config/tendermint` and `config/tendermint_test` 2880 - Change some function and method signatures to 2881 - Change some [function and method signatures](https://gist.github.com/ebuchman/640d5fc6c2605f73497992fe107ebe0b) accomodate new config 2882 2883 - Logger 2884 - Replace static `log15` logger with a simple interface, and provide a new implementation using `go-kit`. 2885 See our new [logging library](https://github.com/tendermint/tmlibs/log) and [blog post](https://tendermint.com/blog/abstracting-the-logger-interface-in-go) for more details 2886 - Levels `warn` and `notice` are removed (you may need to change them in your `config.toml`!) 2887 - Change some [function and method signatures](https://gist.github.com/ebuchman/640d5fc6c2605f73497992fe107ebe0b) to accept a logger 2888 2889 - JSON serialization: 2890 - Replace `[TypeByte, Xxx]` with `{"type": "some-type", "data": Xxx}` in RPC and all `.json` files by using `go-wire/data`. For instance, a public key is now: 2891 ``` 2892 "pub_key": { 2893 "type": "ed25519", 2894 "data": "83DDF8775937A4A12A2704269E2729FCFCD491B933C4B0A7FFE37FE41D7760D0" 2895 } 2896 ``` 2897 - Remove type information about RPC responses, so `[TypeByte, {"jsonrpc": "2.0", ... }]` is now just `{"jsonrpc": "2.0", ... }` 2898 - Change `[]byte` to `data.Bytes` in all serialized types (for hex encoding) 2899 - Lowercase the JSON tags in `ValidatorSet` fields 2900 - Introduce `EventDataInner` for serializing events 2901 2902 - Other: 2903 - Send InitChain message in handshake if `appBlockHeight == 0` 2904 - Do not include the `Accum` field when computing the validator hash. This makes the ValidatorSetHash unique for a given validator set, rather than changing with every block (as the Accum changes) 2905 - Unsafe RPC calls are not enabled by default. This includes `/dial_seeds`, and all calls prefixed with `unsafe`. Use the `--rpc.unsafe` flag to enable. 2906 2907 2908 FEATURES: 2909 2910 - Per-module log levels. For instance, the new default is `state:info,*:error`, which means the `state` package logs at `info` level, and everything else logs at `error` level 2911 - Log if a node is validator or not in every consensus round 2912 - Use ldflags to set git hash as part of the version 2913 - Ignore `address` and `pub_key` fields in `priv_validator.json` and overwrite them with the values derrived from the `priv_key` 2914 2915 IMPROVEMENTS: 2916 2917 - Merge `tendermint/go-p2p -> franono/tendermint/p2p` and `tendermint/go-rpc -> franono/tendermint/rpc/lib` 2918 - Update paths for grand repo merge: 2919 - `go-common -> tmlibs/common` 2920 - `go-data -> go-wire/data` 2921 - All other `go-` libs, except `go-crypto` and `go-wire`, are merged under `tmlibs` 2922 - No global loggers (loggers are passed into constructors, or preferably set with a SetLogger method) 2923 - Return HTTP status codes with errors for RPC responses 2924 - Limit `/blockchain_info` call to return a maximum of 20 blocks 2925 - Use `.Wrap()` and `.Unwrap()` instead of eg. `PubKeyS` for `go-crypto` types 2926 - RPC JSON responses use pretty printing (via `json.MarshalIndent`) 2927 - Color code different instances of the consensus for tests 2928 - Isolate viper to `cmd/tendermint/commands` and do not read config from file for tests 2929 2930 2931 ## 0.9.2 (April 26, 2017) 2932 2933 BUG FIXES: 2934 2935 - Fix bug in `ResetPrivValidator` where we were using the global config and log (causing external consumers, eg. basecoin, to fail). 2936 2937 ## 0.9.1 (April 21, 2017) 2938 2939 FEATURES: 2940 2941 - Transaction indexing - txs are indexed by their hash using a simple key-value store; easily extended to more advanced indexers 2942 - New `/tx?hash=X` endpoint to query for transactions and their DeliverTx result by hash. Optionally returns a proof of the tx's inclusion in the block 2943 - `tendermint testnet` command initializes files for a testnet 2944 2945 IMPROVEMENTS: 2946 2947 - CLI now uses Cobra framework 2948 - TMROOT is now TMHOME (TMROOT will stop working in 0.10.0) 2949 - `/broadcast_tx_XXX` also returns the Hash (can be used to query for the tx) 2950 - `/broadcast_tx_commit` also returns the height the block was committed in 2951 - ABCIResponses struct persisted to disk before calling Commit; makes handshake replay much cleaner 2952 - WAL uses #ENDHEIGHT instead of #HEIGHT (#HEIGHT will stop working in 0.10.0) 2953 - Peers included via `--seeds`, under `seeds` in the config, or in `/dial_seeds` are now persistent, and will be reconnected to if the connection breaks 2954 2955 BUG FIXES: 2956 2957 - Fix bug in fast-sync where we stop syncing after a peer is removed, even if they're re-added later 2958 - Fix handshake replay to handle validator set changes and results of DeliverTx when we crash after app.Commit but before state.Save() 2959 2960 ## 0.9.0 (March 6, 2017) 2961 2962 BREAKING CHANGES: 2963 2964 - Update ABCI to v0.4.0, where Query is now `Query(RequestQuery) ResponseQuery`, enabling precise proofs at particular heights: 2965 2966 ``` 2967 message RequestQuery{ 2968 bytes data = 1; 2969 string path = 2; 2970 uint64 height = 3; 2971 bool prove = 4; 2972 } 2973 2974 message ResponseQuery{ 2975 CodeType code = 1; 2976 int64 index = 2; 2977 bytes key = 3; 2978 bytes value = 4; 2979 bytes proof = 5; 2980 uint64 height = 6; 2981 string log = 7; 2982 } 2983 ``` 2984 2985 2986 - `BlockMeta` data type unifies its Hash and PartSetHash under a `BlockID`: 2987 2988 ``` 2989 type BlockMeta struct { 2990 BlockID BlockID `json:"block_id"` // the block hash and partsethash 2991 Header *Header `json:"header"` // The block's Header 2992 } 2993 ``` 2994 2995 - `ValidatorSet.Proposer` is exposed as a field and persisted with the `State`. Use `GetProposer()` to initialize or update after validator-set changes. 2996 2997 - `tendermint gen_validator` command output is now pure JSON 2998 2999 FEATURES: 3000 3001 - New RPC endpoint `/commit?height=X` returns header and commit for block at height `X` 3002 - Client API for each endpoint, including mocks for testing 3003 3004 IMPROVEMENTS: 3005 3006 - `Node` is now a `BaseService` 3007 - Simplified starting Tendermint in-process from another application 3008 - Better organized Makefile 3009 - Scripts for auto-building binaries across platforms 3010 - Docker image improved, slimmed down (using Alpine), and changed from tendermint/tmbase to franono/tendermint 3011 - New repo files: `CONTRIBUTING.md`, Github `ISSUE_TEMPLATE`, `CHANGELOG.md` 3012 - Improvements on CircleCI for managing build/test artifacts 3013 - Handshake replay is doen through the consensus package, possibly using a mockApp 3014 - Graceful shutdown of RPC listeners 3015 - Tests for the PEX reactor and DialSeeds 3016 3017 BUG FIXES: 3018 3019 - Check peer.Send for failure before updating PeerState in consensus 3020 - Fix panic in `/dial_seeds` with invalid addresses 3021 - Fix proposer selection logic in ValidatorSet by taking the address into account in the `accumComparable` 3022 - Fix inconcistencies with `ValidatorSet.Proposer` across restarts by persisting it in the `State` 3023 3024 3025 ## 0.8.0 (January 13, 2017) 3026 3027 BREAKING CHANGES: 3028 3029 - New data type `BlockID` to represent blocks: 3030 3031 ``` 3032 type BlockID struct { 3033 Hash []byte `json:"hash"` 3034 PartsHeader PartSetHeader `json:"parts"` 3035 } 3036 ``` 3037 3038 - `Vote` data type now includes validator address and index: 3039 3040 ``` 3041 type Vote struct { 3042 ValidatorAddress []byte `json:"validator_address"` 3043 ValidatorIndex int `json:"validator_index"` 3044 Height int `json:"height"` 3045 Round int `json:"round"` 3046 Type byte `json:"type"` 3047 BlockID BlockID `json:"block_id"` // zero if vote is nil. 3048 Signature crypto.Signature `json:"signature"` 3049 } 3050 ``` 3051 3052 - Update TMSP to v0.3.0, where it is now called ABCI and AppendTx is DeliverTx 3053 - Hex strings in the RPC are now "0x" prefixed 3054 3055 3056 FEATURES: 3057 3058 - New message type on the ConsensusReactor, `Maj23Msg`, for peers to alert others they've seen a Maj23, 3059 in order to track and handle conflicting votes intelligently to prevent Byzantine faults from causing halts: 3060 3061 ``` 3062 type VoteSetMaj23Message struct { 3063 Height int 3064 Round int 3065 Type byte 3066 BlockID types.BlockID 3067 } 3068 ``` 3069 3070 - Configurable block part set size 3071 - Validator set changes 3072 - Optionally skip TimeoutCommit if we have all the votes 3073 - Handshake between Tendermint and App on startup to sync latest state and ensure consistent recovery from crashes 3074 - GRPC server for BroadcastTx endpoint 3075 3076 IMPROVEMENTS: 3077 3078 - Less verbose logging 3079 - Better test coverage (37% -> 49%) 3080 - Canonical SignBytes for signable types 3081 - Write-Ahead Log for Mempool and Consensus via tmlibs/autofile 3082 - Better in-process testing for the consensus reactor and byzantine faults 3083 - Better crash/restart testing for individual nodes at preset failure points, and of networks at arbitrary points 3084 - Better abstraction over timeout mechanics 3085 3086 BUG FIXES: 3087 3088 - Fix memory leak in mempool peer 3089 - Fix panic on POLRound=-1 3090 - Actually set the CommitTime 3091 - Actually send BeginBlock message 3092 - Fix a liveness issues caused by Byzantine proposals/votes. Uses the new `Maj23Msg`. 3093 3094 3095 ## 0.7.4 (December 14, 2016) 3096 3097 FEATURES: 3098 3099 - Enable the Peer Exchange reactor with the `--pex` flag for more resilient gossip network (feature still in development, beware dragons) 3100 3101 IMPROVEMENTS: 3102 3103 - Remove restrictions on RPC endpoint `/dial_seeds` to enable manual network configuration 3104 3105 ## 0.7.3 (October 20, 2016) 3106 3107 IMPROVEMENTS: 3108 3109 - Type safe FireEvent 3110 - More WAL/replay tests 3111 - Cleanup some docs 3112 3113 BUG FIXES: 3114 3115 - Fix deadlock in mempool for synchronous apps 3116 - Replay handles non-empty blocks 3117 - Fix race condition in HeightVoteSet 3118 3119 ## 0.7.2 (September 11, 2016) 3120 3121 BUG FIXES: 3122 3123 - Set mustConnect=false so tendermint will retry connecting to the app 3124 3125 ## 0.7.1 (September 10, 2016) 3126 3127 FEATURES: 3128 3129 - New TMSP connection for Query/Info 3130 - New RPC endpoints: 3131 - `tmsp_query` 3132 - `tmsp_info` 3133 - Allow application to filter peers through Query (off by default) 3134 3135 IMPROVEMENTS: 3136 3137 - TMSP connection type enforced at compile time 3138 - All listen/client urls use a "tcp://" or "unix://" prefix 3139 3140 BUG FIXES: 3141 3142 - Save LastSignature/LastSignBytes to `priv_validator.json` for recovery 3143 - Fix event unsubscribe 3144 - Fix fastsync/blockchain reactor 3145 3146 ## 0.7.0 (August 7, 2016) 3147 3148 BREAKING CHANGES: 3149 3150 - Strict SemVer starting now! 3151 - Update to ABCI v0.2.0 3152 - Validation types now called Commit 3153 - NewBlock event only returns the block header 3154 3155 3156 FEATURES: 3157 3158 - TMSP and RPC support TCP and UNIX sockets 3159 - Addition config options including block size and consensus parameters 3160 - New WAL mode `cswal_light`; logs only the validator's own votes 3161 - New RPC endpoints: 3162 - for starting/stopping profilers, and for updating config 3163 - `/broadcast_tx_commit`, returns when tx is included in a block, else an error 3164 - `/unsafe_flush_mempool`, empties the mempool 3165 3166 3167 IMPROVEMENTS: 3168 3169 - Various optimizations 3170 - Remove bad or invalidated transactions from the mempool cache (allows later duplicates) 3171 - More elaborate testing using CircleCI including benchmarking throughput on 4 digitalocean droplets 3172 3173 BUG FIXES: 3174 3175 - Various fixes to WAL and replay logic 3176 - Various race conditions 3177 3178 ## PreHistory 3179 3180 Strict versioning only began with the release of v0.7.0, in late summer 2016. 3181 The project itself began in early summer 2014 and was workable decentralized cryptocurrency software by the end of that year. 3182 Through the course of 2015, in collaboration with Eris Industries (now Monax Industries), 3183 many additional features were integrated, including an implementation from scratch of the Ethereum Virtual Machine. 3184 That implementation now forms the heart of [Burrow](https://github.com/hyperledger/burrow). 3185 In the later half of 2015, the consensus algorithm was upgraded with a more asynchronous design and a more deterministic and robust implementation. 3186 3187 By late 2015, frustration with the difficulty of forking a large monolithic stack to create alternative cryptocurrency designs led to the 3188 invention of the Application Blockchain Interface (ABCI), then called the Tendermint Socket Protocol (TMSP). 3189 The Ethereum Virtual Machine and various other transaction features were removed, and Tendermint was whittled down to a core consensus engine 3190 driving an application running in another process. 3191 The ABCI interface and implementation were iterated on and improved over the course of 2016, 3192 until versioned history kicked in with v0.7.0.