gitlab.com/gpdionisio/tendermint@v0.34.19-dev2/CHANGELOG.md (about) 1 # Changelog 2 3 Friendly reminder, we have a [bug bounty program](https://hackerone.com/cosmos). 4 5 ## v0.34.19 6 7 ### BUG FIXES 8 9 - [cli] [\#8270](https://github.com/tendermint/tendermint/issues/8270) fix reset commands (@alexanderbez). 10 11 ## v0.34.18 12 13 ### BREAKING CHANGES 14 15 - CLI/RPC/Config 16 - [cli] [\#8258](https://github.com/tendermint/tendermint/pull/8258) Fix a bug in the cli that caused `unsafe-reset-all` to panic 17 18 ## v0.34.17 19 20 ### BREAKING CHANGES 21 22 - CLI/RPC/Config 23 24 - [cli] [\#8081](https://github.com/tendermint/tendermint/issues/8081) make the reset command safe to use (@marbar3778). 25 26 ### BUG FIXES 27 28 - [consensus] [\#8079](https://github.com/tendermint/tendermint/issues/8079) start the timeout ticker before relay (backport #7844) (@creachadair). 29 - [consensus] [\#7992](https://github.com/tendermint/tendermint/issues/7992) [\#7994](https://github.com/tendermint/tendermint/issues/7994) change lock handling in handleMsg and reactor to alleviate issues gossiping during long ABCI calls (@williambanfield). 30 31 ## v0.34.16 32 33 Special thanks to external contributors on this release: @yihuang 34 35 ### BUG FIXES 36 37 - [consensus] [\#7617](https://github.com/tendermint/tendermint/issues/7617) calculate prevote message delay metric (backport #7551) (@williambanfield). 38 - [consensus] [\#7631](https://github.com/tendermint/tendermint/issues/7631) check proposal non-nil in prevote message delay metric (backport #7625) (@williambanfield). 39 - [statesync] [\#7885](https://github.com/tendermint/tendermint/issues/7885) statesync: assert app version matches (backport #7856) (@cmwaters). 40 - [statesync] [\#7881](https://github.com/tendermint/tendermint/issues/7881) fix app hash in state rollback (backport #7837) (@cmwaters). 41 - [cli] [#7837](https://github.com/tendermint/tendermint/pull/7837) fix app hash in state rollback. (@yihuang). 42 43 ## v0.34.15 44 45 Special thanks to external contributors on this release: @thanethomson 46 47 ### BUG FIXES 48 49 - [\#7368](https://github.com/tendermint/tendermint/issues/7368) cmd: add integration test for rollback functionality (@cmwaters). 50 - [\#7309](https://github.com/tendermint/tendermint/issues/7309) pubsub: Report a non-nil error when shutting down (fixes #7306). 51 - [\#7057](https://github.com/tendermint/tendermint/pull/7057) Import Postgres driver support for the psql indexer (@creachadair). 52 - [\#7106](https://github.com/tendermint/tendermint/pull/7106) Revert mutex change to ABCI Clients (@tychoish). 53 54 ### IMPROVEMENTS 55 56 - [config] [\#7230](https://github.com/tendermint/tendermint/issues/7230) rpc: Add experimental config params to allow for subscription buffer size control (@thanethomson). 57 58 ## v0.34.14 59 60 This release backports the `rollback` feature to allow recovery in the event of an incorrect app hash. 61 62 ### FEATURES 63 64 - [\#6982](https://github.com/tendermint/tendermint/pull/6982) The tendermint binary now has built-in suppport for running the end-to-end test application (with state sync support) (@cmwaters). 65 - [cli] [#7033](https://github.com/tendermint/tendermint/pull/7033) Add a `rollback` command to rollback to the previous tendermint state. This may be useful in the event of non-determinstic app hash or when reverting an upgrade. @cmwaters 66 67 ### IMPROVEMENTS 68 69 - [\#7103](https://github.com/tendermint/tendermint/pull/7104) Remove IAVL dependency (backport of #6550) (@cmwaters) 70 71 ### BUG FIXES 72 73 - [\#7057](https://github.com/tendermint/tendermint/pull/7057) Import Postgres driver support for the psql indexer (@creachadair). 74 - [ABCI] [\#7110](https://github.com/tendermint/tendermint/issues/7110) Revert "change client to use multi-reader mutexes (#6873)" (@tychoish). 75 76 ## v0.34.13 77 78 This release backports improvements to state synchronization and ABCI 79 performance under concurrent load, and the PostgreSQL event indexer. 80 81 ### IMPROVEMENTS 82 83 - [statesync] [\#6881](https://github.com/tendermint/tendermint/issues/6881) improvements to stateprovider logic (@cmwaters) 84 - [ABCI] [\#6873](https://github.com/tendermint/tendermint/issues/6873) change client to use multi-reader mutexes (@tychoish) 85 - [indexing] [\#6906](https://github.com/tendermint/tendermint/issues/6906) enable the PostgreSQL indexer sink (@creachadair) 86 87 ## v0.34.12 88 89 Special thanks to external contributors on this release: @JayT106. 90 91 ### FEATURES 92 93 - [rpc] [\#6717](https://github.com/tendermint/tendermint/pull/6717) introduce 94 `/genesis_chunked` rpc endpoint for handling large genesis files by chunking them (@tychoish) 95 96 ### IMPROVEMENTS 97 98 - [rpc] [\#6825](https://github.com/tendermint/tendermint/issues/6825) Remove egregious INFO log from `ABCI#Query` RPC. (@alexanderbez) 99 100 ### BUG FIXES 101 102 - [light] [\#6685](https://github.com/tendermint/tendermint/pull/6685) fix bug 103 with incorrectly handling contexts that would occasionally freeze state sync. (@cmwaters) 104 - [privval] [\#6748](https://github.com/tendermint/tendermint/issues/6748) Fix vote timestamp to prevent chain halt (@JayT106) 105 106 ## v0.34.11 107 108 *June 18, 2021* 109 110 This release improves the robustness of statesync; tweaking channel priorities and timeouts and 111 adding two new parameters to the state sync config. 112 113 ### BREAKING CHANGES 114 115 - Apps 116 - [Version] [\#6494](https://github.com/tendermint/tendermint/issues/6494) `TMCoreSemVer` is not required to be set as a ldflag any longer. 117 118 ### IMPROVEMENTS 119 120 - [statesync] [\#6566](https://github.com/tendermint/tendermint/issues/6566) Allow state sync fetchers and request timeout to be configurable. (@alexanderbez) 121 - [statesync] [\#6378](https://github.com/tendermint/tendermint/issues/6378) Retry requests for snapshots and add a minimum discovery time (5s) for new snapshots. (@tychoish) 122 - [statesync] [\#6582](https://github.com/tendermint/tendermint/issues/6582) Increase chunk priority and add multiple retry chunk requests (@cmwaters) 123 124 ### BUG FIXES 125 126 - [evidence] [\#6375](https://github.com/tendermint/tendermint/issues/6375) Fix bug with inconsistent LightClientAttackEvidence hashing (@cmwaters) 127 128 ## v0.34.10 129 130 *April 14, 2021* 131 132 This release fixes a bug where peers would sometimes try to send messages 133 on incorrect channels. Special thanks to our friends at Oasis Labs for surfacing 134 this issue! 135 136 - [p2p/node] [\#6339](https://github.com/tendermint/tendermint/issues/6339) Fix bug with using custom channels (@cmwaters) 137 - [light] [\#6346](https://github.com/tendermint/tendermint/issues/6346) Correctly handle too high errors to improve client robustness (@cmwaters) 138 139 ## v0.34.9 140 141 *April 8, 2021* 142 143 This release fixes a moderate severity security issue, Security Advisory Alderfly, 144 which impacts all networks that rely on Tendermint light clients. 145 Further details will be released once networks have upgraded. 146 147 This release also includes a small Go API-breaking change, to reduce panics in the RPC layer. 148 149 Special thanks to our external contributors on this release: @gchaincl 150 151 ### BREAKING CHANGES 152 153 - Go API 154 - [rpc/jsonrpc/server] [\#6204](https://github.com/tendermint/tendermint/issues/6204) Modify `WriteRPCResponseHTTP(Error)` to return an error (@melekes) 155 156 ### FEATURES 157 158 - [rpc] [\#6226](https://github.com/tendermint/tendermint/issues/6226) Index block events and expose a new RPC method, `/block_search`, to allow querying for blocks by `BeginBlock` and `EndBlock` events (@alexanderbez) 159 160 ### BUG FIXES 161 162 - [rpc/jsonrpc/server] [\#6191](https://github.com/tendermint/tendermint/issues/6191) Correctly unmarshal `RPCRequest` when data is `null` (@melekes) 163 - [p2p] [\#6289](https://github.com/tendermint/tendermint/issues/6289) Fix "unknown channels" bug on CustomReactors (@gchaincl) 164 - [light/evidence] Adds logic to handle forward lunatic attacks (@cmwaters) 165 166 ## v0.34.8 167 168 *February 25, 2021* 169 170 This release, in conjunction with [a fix in the Cosmos SDK](https://github.com/cosmos/cosmos-sdk/pull/8641), 171 introduces changes that should mean the logs are much, much quieter. 🎉 172 173 ### IMPROVEMENTS 174 175 - [libs/log] [\#6174](https://github.com/tendermint/tendermint/issues/6174) Include timestamp (`ts` field; `time.RFC3339Nano` format) in JSON logger output (@melekes) 176 177 ### BUG FIXES 178 179 - [abci] [\#6124](https://github.com/tendermint/tendermint/issues/6124) Fixes a panic condition during callback execution in `ReCheckTx` during high tx load. (@alexanderbez) 180 181 ## v0.34.7 182 183 *February 18, 2021* 184 185 This release fixes a downstream security issue which impacts Cosmos SDK 186 users who are: 187 188 * Using Cosmos SDK v0.40.0 or later, AND 189 * Running validator nodes, AND 190 * Using the file-based `FilePV` implementation for their consensus keys 191 192 Users who fulfill all the above criteria were susceptible to leaking 193 private key material in the logs. All other users are unaffected. 194 195 The root cause was a discrepancy 196 between the Tendermint Core (untyped) logger and the Cosmos SDK (typed) logger: 197 Tendermint Core's logger automatically stringifies Go interfaces whenever possible; 198 however, the Cosmos SDK's logger uses reflection to log the fields within a Go interface. 199 200 The introduction of the typed logger meant that previously un-logged fields within 201 interfaces are now sometimes logged, including the private key material inside the 202 `FilePV` struct. 203 204 Tendermint Core v0.34.7 fixes this issue; however, we strongly recommend that all validators 205 use remote signer implementations instead of `FilePV` in production. 206 207 Thank you to @joe-bowman for his assistance with this vulnerability and a particular 208 shout-out to @marbar3778 for diagnosing it quickly. 209 210 ### BUG FIXES 211 212 - [consensus] [\#6128](https://github.com/tendermint/tendermint/pull/6128) Remove privValidator from log call (@tessr) 213 214 ## v0.34.6 215 216 *February 18, 2021* 217 218 _Tendermint Core v0.34.5 and v0.34.6 have been recalled due to build tooling problems._ 219 220 ## v0.34.4 221 222 *February 11, 2021* 223 224 This release includes a fix for a memory leak in the evidence reactor (see #6068, below). 225 All Tendermint clients are recommended to upgrade. 226 Thank you to our friends at Crypto.com for the initial report of this memory leak! 227 228 Special thanks to other external contributors on this release: @yayajacky, @odidev, @laniehei, and @c29r3! 229 230 ### BUG FIXES 231 232 - [light] [\#6022](https://github.com/tendermint/tendermint/pull/6022) Fix a bug when the number of validators equals 100 (@melekes) 233 - [light] [\#6026](https://github.com/tendermint/tendermint/pull/6026) Fix a bug when height isn't provided for the rpc calls: `/commit` and `/validators` (@cmwaters) 234 - [evidence] [\#6068](https://github.com/tendermint/tendermint/pull/6068) Terminate broadcastEvidenceRoutine when peer is stopped (@melekes) 235 236 237 ## v0.34.3 238 239 *January 19, 2021* 240 241 This release includes a fix for a high-severity security vulnerability, 242 a DoS-vector that impacted Tendermint Core v0.34.0-v0.34.2. For more details, see 243 [Security Advisory Mulberry](https://github.com/tendermint/tendermint/security/advisories/GHSA-p658-8693-mhvg) 244 or https://nvd.nist.gov/vuln/detail/CVE-2021-21271. 245 246 Tendermint Core v0.34.3 also updates GoGo Protobuf to 1.3.2 in order to pick up the fix for 247 https://nvd.nist.gov/vuln/detail/CVE-2021-3121. 248 249 ### BUG FIXES 250 251 - [evidence] [[security fix]](https://github.com/tendermint/tendermint/security/advisories/GHSA-p658-8693-mhvg) Use correct source of evidence time (@cmwaters) 252 - [proto] [\#5886](https://github.com/tendermint/tendermint/pull/5889) Bump gogoproto to 1.3.2 (@marbar3778) 253 254 ## v0.34.2 255 256 *January 12, 2021* 257 258 This release fixes a substantial bug in evidence handling where evidence could 259 sometimes be broadcast before the block containing that evidence was fully committed, 260 resulting in some nodes panicking when trying to verify said evidence. 261 262 ### BREAKING CHANGES 263 264 - Go API 265 - [libs/os] [\#5871](https://github.com/tendermint/tendermint/issues/5871) `EnsureDir` now propagates IO errors and checks the file type (@erikgrinaker) 266 267 ### BUG FIXES 268 269 - [evidence] [\#5890](https://github.com/tendermint/tendermint/pull/5890) Add a buffer to evidence from consensus to avoid broadcasting and proposing evidence before the 270 height of such an evidence has finished (@cmwaters) 271 - [statesync] [\#5889](https://github.com/tendermint/tendermint/issues/5889) Set `LastHeightConsensusParamsChanged` when bootstrapping Tendermint state (@cmwaters) 272 273 ## v0.34.1 274 275 *January 6, 2021* 276 277 Special thanks to external contributors on this release: 278 279 @p4u from vocdoni.io reported that the mempool might behave incorrectly under a 280 high load. The consequences can range from pauses between blocks to the peers 281 disconnecting from this node. As a temporary remedy (until the mempool package 282 is refactored), the `max-batch-bytes` was disabled. Transactions will be sent 283 one by one without batching. 284 285 ### BREAKING CHANGES 286 287 - CLI/RPC/Config 288 - [cli] [\#5786](https://github.com/tendermint/tendermint/issues/5786) deprecate snake_case commands for hyphen-case (@cmwaters) 289 290 - Go API 291 - [libs/protoio] [\#5868](https://github.com/tendermint/tendermint/issues/5868) Return number of bytes read in `Reader.ReadMsg()` (@erikgrinaker) 292 293 ### IMPROVEMENTS 294 295 - [mempool] [\#5813](https://github.com/tendermint/tendermint/issues/5813) Add `keep-invalid-txs-in-cache` config option. When set to true, mempool will keep invalid transactions in the cache (@p4u) 296 297 ### BUG FIXES 298 299 - [crypto] [\#5707](https://github.com/tendermint/tendermint/issues/5707) Fix infinite recursion in string formatting of Secp256k1 keys (@erikgrinaker) 300 - [mempool] [\#5800](https://github.com/tendermint/tendermint/issues/5800) Disable `max-batch-bytes` (@melekes) 301 - [p2p] [\#5868](https://github.com/tendermint/tendermint/issues/5868) Fix inbound traffic statistics and rate limiting in `MConnection` (@erikgrinaker) 302 303 ## v0.34.0 304 305 *November 19, 2020* 306 307 Holy smokes, this is a big one! For a more reader-friendly overview of the changes in 0.34.0 308 (and of the changes you need to accommodate as a user), check out [UPGRADING.md](UPGRADING.md). 309 310 Special thanks to external contributors on this release: @james-ray, @fedekunze, @favadi, @alessio, 311 @joe-bowman, @cuonglm, @SadPencil and @dongsam. 312 313 ### BREAKING CHANGES 314 315 - CLI/RPC/Config 316 317 - [config] [\#5315](https://github.com/tendermint/tendermint/pull/5315) Rename `prof_laddr` to `pprof_laddr` and move it to `rpc` section (@melekes) 318 - [evidence] [\#4959](https://github.com/tendermint/tendermint/pull/4959) Add JSON tags to `DuplicateVoteEvidence` (@marbar3778) 319 - [light] [\#4946](https://github.com/tendermint/tendermint/pull/4946) `tendermint lite` command has been renamed to `tendermint light` (@marbar3778) 320 - [privval] [\#4582](https://github.com/tendermint/tendermint/pull/4582) `round` in private_validator_state.json is no longer JSON string; instead it is a number (@marbar3778) 321 - [rpc] [\#4792](https://github.com/tendermint/tendermint/pull/4792) `/validators` are now sorted by voting power (@melekes) 322 - [rpc] [\#4947](https://github.com/tendermint/tendermint/pull/4947) Return an error when `page` pagination param is 0 in `/validators`, `tx_search` (@melekes) 323 - [rpc] [\#5137](https://github.com/tendermint/tendermint/pull/5137) JSON tags of `gasWanted` and `gasUsed` in `ResponseCheckTx` and `ResponseDeliverTx` have been made snake_case (`gas_wanted` and `gas_used`) (@marbar3778) 324 - [rpc] [\#5315](https://github.com/tendermint/tendermint/pull/5315) Remove `/unsafe_start_cpu_profiler`, `/unsafe_stop_cpu_profiler` and `/unsafe_write_heap_profile`. Please use pprof functionality instead (@melekes) 325 - [rpc/client, rpc/jsonrpc/client] [\#5347](https://github.com/tendermint/tendermint/pull/5347) All client methods now accept `context.Context` as 1st param (@melekes) 326 327 - Apps 328 329 - [abci] [\#4704](https://github.com/tendermint/tendermint/pull/4704) Add ABCI methods `ListSnapshots`, `LoadSnapshotChunk`, `OfferSnapshot`, and `ApplySnapshotChunk` for state sync snapshots. `ABCIVersion` bumped to 0.17.0. (@erikgrinaker) 330 - [abci] [\#4989](https://github.com/tendermint/tendermint/pull/4989) `Proof` within `ResponseQuery` has been renamed to `ProofOps` (@marbar3778) 331 - [abci] [\#5096](https://github.com/tendermint/tendermint/pull/5096) `CheckTxType` Protobuf enum names are now uppercase, to follow Protobuf style guide (@erikgrinaker) 332 - [abci] [\#5324](https://github.com/tendermint/tendermint/pull/5324) ABCI evidence type is now an enum with two types of possible evidence (@cmwaters) 333 334 - P2P Protocol 335 336 - [blockchain] [\#4637](https://github.com/tendermint/tendermint/pull/4637) Migrate blockchain reactor(s) to Protobuf encoding (@marbar3778) 337 - [evidence] [\#4949](https://github.com/tendermint/tendermint/pull/4949) Migrate evidence reactor to Protobuf encoding (@marbar3778) 338 - [mempool] [\#4940](https://github.com/tendermint/tendermint/pull/4940) Migrate mempool from to Protobuf encoding (@marbar3778) 339 - [mempool] [\#5321](https://github.com/tendermint/tendermint/pull/5321) Batch transactions when broadcasting them to peers (@melekes) 340 - `MaxBatchBytes` new config setting defines the max size of one batch. 341 - [p2p/pex] [\#4973](https://github.com/tendermint/tendermint/pull/4973) Migrate `p2p/pex` reactor to Protobuf encoding (@marbar3778) 342 - [statesync] [\#4943](https://github.com/tendermint/tendermint/pull/4943) Migrate state sync reactor to Protobuf encoding (@marbar3778) 343 344 - Blockchain Protocol 345 346 - [evidence] [\#4725](https://github.com/tendermint/tendermint/pull/4725) Remove `Pubkey` from `DuplicateVoteEvidence` (@marbar3778) 347 - [evidence] [\#5499](https://github.com/tendermint/tendermint/pull/5449) Cap evidence to a maximum number of bytes (supercedes [\#4780](https://github.com/tendermint/tendermint/pull/4780)) (@cmwaters) 348 - [merkle] [\#5193](https://github.com/tendermint/tendermint/pull/5193) Header hashes are no longer empty for empty inputs, notably `DataHash`, `EvidenceHash`, and `LastResultsHash` (@erikgrinaker) 349 - [state] [\#4845](https://github.com/tendermint/tendermint/pull/4845) Include `GasWanted` and `GasUsed` into `LastResultsHash` (@melekes) 350 - [types] [\#4792](https://github.com/tendermint/tendermint/pull/4792) Sort validators by voting power to enable faster commit verification (@melekes) 351 352 - On-disk serialization 353 354 - [state] [\#4679](https://github.com/tendermint/tendermint/pull/4679) Migrate state module to Protobuf encoding (@marbar3778) 355 - `BlockStoreStateJSON` is now `BlockStoreState` and is encoded as binary in the database 356 - [store] [\#4778](https://github.com/tendermint/tendermint/pull/4778) Migrate store module to Protobuf encoding (@marbar3778) 357 358 - Light client, private validator 359 360 - [light] [\#4964](https://github.com/tendermint/tendermint/pull/4964) Migrate light module migration to Protobuf encoding (@marbar3778) 361 - [privval] [\#4985](https://github.com/tendermint/tendermint/pull/4985) Migrate `privval` module to Protobuf encoding (@marbar3778) 362 363 - Go API 364 365 - [consensus] [\#4582](https://github.com/tendermint/tendermint/pull/4582) RoundState: `Round`, `LockedRound` & `CommitRound` are now `int32` (@marbar3778) 366 - [consensus] [\#4582](https://github.com/tendermint/tendermint/pull/4582) HeightVoteSet: `round` is now `int32` (@marbar3778) 367 - [crypto] [\#4721](https://github.com/tendermint/tendermint/pull/4721) Remove `SimpleHashFromMap()` and `SimpleProofsFromMap()` (@erikgrinaker) 368 - [crypto] [\#4940](https://github.com/tendermint/tendermint/pull/4940) All keys have become `[]byte` instead of `[<size>]byte`. The byte method no longer returns the marshaled value but just the `[]byte` form of the data. (@marbar3778) 369 - [crypto] [\#4988](https://github.com/tendermint/tendermint/pull/4988) Removal of key type multisig (@marbar3778) 370 - The key has been moved to the [Cosmos-SDK](https://github.com/cosmos/cosmos-sdk/blob/master/crypto/types/multisig/multisignature.go) 371 - [crypto] [\#4989](https://github.com/tendermint/tendermint/pull/4989) Remove `Simple` prefixes from `SimpleProof`, `SimpleValueOp` & `SimpleProofNode`. (@marbar3778) 372 - `merkle.Proof` has been renamed to `ProofOps`. 373 - Protobuf messages `Proof` & `ProofOp` has been moved to `proto/crypto/merkle` 374 - `SimpleHashFromByteSlices` has been renamed to `HashFromByteSlices` 375 - `SimpleHashFromByteSlicesIterative` has been renamed to `HashFromByteSlicesIterative` 376 - `SimpleProofsFromByteSlices` has been renamed to `ProofsFromByteSlices` 377 - [crypto] [\#4941](https://github.com/tendermint/tendermint/pull/4941) Remove suffixes from all keys. (@marbar3778) 378 - ed25519: type `PrivKeyEd25519` is now `PrivKey` 379 - ed25519: type `PubKeyEd25519` is now `PubKey` 380 - secp256k1: type`PrivKeySecp256k1` is now `PrivKey` 381 - secp256k1: type`PubKeySecp256k1` is now `PubKey` 382 - sr25519: type `PrivKeySr25519` is now `PrivKey` 383 - sr25519: type `PubKeySr25519` is now `PubKey` 384 - [crypto] [\#5214](https://github.com/tendermint/tendermint/pull/5214) Change `GenPrivKeySecp256k1` to `GenPrivKeyFromSecret` to be consistent with other keys (@marbar3778) 385 - [crypto] [\#5236](https://github.com/tendermint/tendermint/pull/5236) `VerifyBytes` is now `VerifySignature` on the `crypto.PubKey` interface (@marbar3778) 386 - [evidence] [\#5361](https://github.com/tendermint/tendermint/pull/5361) Add LightClientAttackEvidence and change evidence interface (@cmwaters) 387 - [libs] [\#4831](https://github.com/tendermint/tendermint/pull/4831) Remove `Bech32` pkg from Tendermint. This pkg now lives in the [cosmos-sdk](https://github.com/cosmos/cosmos-sdk/tree/4173ea5ebad906dd9b45325bed69b9c655504867/types/bech32) (@marbar3778) 388 - [light] [\#4946](https://github.com/tendermint/tendermint/pull/4946) Rename `lite2` pkg to `light`. Remove `lite` implementation. (@marbar3778) 389 - [light] [\#5347](https://github.com/tendermint/tendermint/pull/5347) `NewClient`, `NewHTTPClient`, `VerifyHeader` and `VerifyLightBlockAtHeight` now accept `context.Context` as 1st param (@melekes) 390 - [merkle] [\#5193](https://github.com/tendermint/tendermint/pull/5193) `HashFromByteSlices` and `ProofsFromByteSlices` now return a hash for empty inputs, following RFC6962 (@erikgrinaker) 391 - [proto] [\#5025](https://github.com/tendermint/tendermint/pull/5025) All proto files have been moved to `/proto` directory. (@marbar3778) 392 - Using the recommended the file layout from buf, [see here for more info](https://buf.build/docs/lint-checkers#file_layout) 393 - [rpc/client] [\#4947](https://github.com/tendermint/tendermint/pull/4947) `Validators`, `TxSearch` `page`/`per_page` params become pointers (@melekes) 394 - `UnconfirmedTxs` `limit` param is a pointer 395 - [rpc/jsonrpc/server] [\#5141](https://github.com/tendermint/tendermint/pull/5141) Remove `WriteRPCResponseArrayHTTP` (use `WriteRPCResponseHTTP` instead) (@melekes) 396 - [state] [\#4679](https://github.com/tendermint/tendermint/pull/4679) `TxResult` is a Protobuf type defined in `abci` types directory (@marbar3778) 397 - [state] [\#5191](https://github.com/tendermint/tendermint/pull/5191) Add `State.InitialHeight` field to record initial block height, must be `1` (not `0`) to start from 1 (@erikgrinaker) 398 - [state] [\#5231](https://github.com/tendermint/tendermint/pull/5231) `LoadStateFromDBOrGenesisFile()` and `LoadStateFromDBOrGenesisDoc()` no longer saves the state in the database if not found, the genesis state is simply returned (@erikgrinaker) 399 - [state] [\#5348](https://github.com/tendermint/tendermint/pull/5348) Define an Interface for the state store. (@marbar3778) 400 - [types] [\#4939](https://github.com/tendermint/tendermint/pull/4939) `SignedMsgType` has moved to a Protobuf enum types (@marbar3778) 401 - [types] [\#4962](https://github.com/tendermint/tendermint/pull/4962) `ConsensusParams`, `BlockParams`, `EvidenceParams`, `ValidatorParams` & `HashedParams` are now Protobuf types (@marbar3778) 402 - [types] [\#4852](https://github.com/tendermint/tendermint/pull/4852) Vote & Proposal `SignBytes` is now func `VoteSignBytes` & `ProposalSignBytes` (@marbar3778) 403 - [types] [\#4798](https://github.com/tendermint/tendermint/pull/4798) Simplify `VerifyCommitTrusting` func + remove extra validation (@melekes) 404 - [types] [\#4845](https://github.com/tendermint/tendermint/pull/4845) Remove `ABCIResult` (@melekes) 405 - [types] [\#5029](https://github.com/tendermint/tendermint/pull/5029) Rename all values from `PartsHeader` to `PartSetHeader` to have consistency (@marbar3778) 406 - [types] [\#4939](https://github.com/tendermint/tendermint/pull/4939) `Total` in `Parts` & `PartSetHeader` has been changed from a `int` to a `uint32` (@marbar3778) 407 - [types] [\#4939](https://github.com/tendermint/tendermint/pull/4939) Vote: `ValidatorIndex` & `Round` are now `int32` (@marbar3778) 408 - [types] [\#4939](https://github.com/tendermint/tendermint/pull/4939) Proposal: `POLRound` & `Round` are now `int32` (@marbar3778) 409 - [types] [\#4939](https://github.com/tendermint/tendermint/pull/4939) Block: `Round` is now `int32` (@marbar3778) 410 411 ### FEATURES 412 413 - [abci] [\#5031](https://github.com/tendermint/tendermint/pull/5031) Add `AppVersion` to consensus parameters (@james-ray) 414 - This makes it possible to update your ABCI application version via `EndBlock` response 415 - [abci] [\#5174](https://github.com/tendermint/tendermint/pull/5174) Remove `MockEvidence` in favor of testing with actual evidence types (`DuplicateVoteEvidence` & `LightClientAttackEvidence`) (@cmwaters) 416 - [abci] [\#5191](https://github.com/tendermint/tendermint/pull/5191) Add `InitChain.InitialHeight` field giving the initial block height (@erikgrinaker) 417 - [abci] [\#5227](https://github.com/tendermint/tendermint/pull/5227) Add `ResponseInitChain.app_hash` which is recorded in genesis block (@erikgrinaker) 418 - [config] [\#5147](https://github.com/tendermint/tendermint/pull/5147) Add `--consensus.double_sign_check_height` flag and `DoubleSignCheckHeight` config variable. See [ADR-51](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-051-double-signing-risk-reduction.md) (@dongsam) 419 - [db] [\#5233](https://github.com/tendermint/tendermint/pull/5233) Add support for `badgerdb` database backend (@erikgrinaker) 420 - [evidence] [\#4532](https://github.com/tendermint/tendermint/pull/4532) Handle evidence from light clients (@melekes) 421 - [evidence] [#4821](https://github.com/tendermint/tendermint/pull/4821) Amnesia (light client attack) evidence can be detected, verified and committed (@cmwaters) 422 - [genesis] [\#5191](https://github.com/tendermint/tendermint/pull/5191) Add `initial_height` field to specify the initial chain height (defaults to `1`) (@erikgrinaker) 423 - [libs/math] [\#5665](https://github.com/tendermint/tendermint/pull/5665) Make fractions unsigned integers (uint64) (@cmwaters) 424 - [light] [\#5298](https://github.com/tendermint/tendermint/pull/5298) Morph validator set and signed header into light block (@cmwaters) 425 - [p2p] [\#4981](https://github.com/tendermint/tendermint/pull/4981) Expose `SaveAs` func on NodeKey (@melekes) 426 - [privval] [\#5239](https://github.com/tendermint/tendermint/pull/5239) Add `chainID` to requests from client. (@marbar3778) 427 - [rpc] [\#4532](https://github.com/tendermint/tendermint/pull/4923) Support `BlockByHash` query (@fedekunze) 428 - [rpc] [\#4979](https://github.com/tendermint/tendermint/pull/4979) Support EXISTS operator in `/tx_search` query (@melekes) 429 - [rpc] [\#5017](https://github.com/tendermint/tendermint/pull/5017) Add `/check_tx` endpoint to check transactions without executing them or adding them to the mempool (@melekes) 430 - [rpc] [\#5108](https://github.com/tendermint/tendermint/pull/5108) Subscribe using the websocket for new evidence events (@cmwaters) 431 - [statesync] Add state sync support, where a new node can be rapidly bootstrapped by fetching state snapshots from peers instead of replaying blocks. See the `[statesync]` config section. 432 - [evidence] [\#5361](https://github.com/tendermint/tendermint/pull/5361) Add LightClientAttackEvidence and refactor evidence lifecycle - for more information see [ADR-059](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-059-evidence-composition-and-lifecycle.md) (@cmwaters) 433 434 ### IMPROVEMENTS 435 436 - [blockchain] [\#5278](https://github.com/tendermint/tendermint/pull/5278) Verify only +2/3 of the signatures in a block when fast syncing. (@marbar3778) 437 - [consensus] [\#4578](https://github.com/tendermint/tendermint/pull/4578) Attempt to repair the consensus WAL file (`data/cs.wal/wal`) automatically in case of corruption (@alessio) 438 - The original WAL file will be backed up to `data/cs.wal/wal.CORRUPTED`. 439 - [consensus] [\#5143](https://github.com/tendermint/tendermint/pull/5143) Only call `privValidator.GetPubKey` once per block (@melekes) 440 - [evidence] [\#4722](https://github.com/tendermint/tendermint/pull/4722) Consolidate evidence store and pool types to improve evidence DB (@cmwaters) 441 - [evidence] [\#4839](https://github.com/tendermint/tendermint/pull/4839) Reject duplicate evidence from being proposed (@cmwaters) 442 - [evidence] [\#5219](https://github.com/tendermint/tendermint/pull/5219) Change the source of evidence time to block time (@cmwaters) 443 - [libs] [\#5126](https://github.com/tendermint/tendermint/pull/5126) Add a sync package which wraps sync.(RW)Mutex & deadlock.(RW)Mutex and use a build flag (deadlock) in order to enable deadlock checking (@marbar3778) 444 - [light] [\#4935](https://github.com/tendermint/tendermint/pull/4935) Fetch and compare a new header with witnesses in parallel (@melekes) 445 - [light] [\#4929](https://github.com/tendermint/tendermint/pull/4929) Compare header with witnesses only when doing bisection (@melekes) 446 - [light] [\#4916](https://github.com/tendermint/tendermint/pull/4916) Validate basic for inbound validator sets and headers before further processing them (@cmwaters) 447 - [mempool] Add RemoveTxByKey() exported function for custom mempool cleaning (@p4u) 448 - [p2p/conn] [\#4795](https://github.com/tendermint/tendermint/pull/4795) Return err on `signChallenge()` instead of panic 449 - [privval] [\#5437](https://github.com/tendermint/tendermint/pull/5437) `NewSignerDialerEndpoint` can now be given `SignerServiceEndpointOption` (@erikgrinaker) 450 - [rpc] [\#4968](https://github.com/tendermint/tendermint/pull/4968) JSON encoding is now handled by `libs/json`, not Amino (@erikgrinaker) 451 - [rpc] [\#5293](https://github.com/tendermint/tendermint/pull/5293) `/dial_peers` has added `private` and `unconditional` as parameters. (@marbar3778) 452 - [state] [\#4781](https://github.com/tendermint/tendermint/pull/4781) Export `InitStateVersion` for the initial state version (@erikgrinaker) 453 - [txindex] [\#4466](https://github.com/tendermint/tendermint/pull/4466) Allow to index an event at runtime (@favadi) 454 - `abci.EventAttribute` replaces `KV.Pair` 455 - [types] [\#4905](https://github.com/tendermint/tendermint/pull/4905) Add `ValidateBasic` to validator and validator set (@cmwaters) 456 - [types] [\#5340](https://github.com/tendermint/tendermint/pull/5340) Add check in `Header.ValidateBasic()` for block protocol version (@marbar3778) 457 - [types] [\#5490](https://github.com/tendermint/tendermint/pull/5490) Use `Commit` and `CommitSig` max sizes instead of vote max size to calculate the maximum block size. (@cmwaters) 458 459 460 ### BUG FIXES 461 462 - [abci/grpc] [\#5520](https://github.com/tendermint/tendermint/pull/5520) Return async responses in order, to avoid mempool panics. (@erikgrinaker) 463 - [blockchain/v2] [\#4971](https://github.com/tendermint/tendermint/pull/4971) Correctly set block store base in status responses (@erikgrinaker) 464 - [blockchain/v2] [\#5499](https://github.com/tendermint/tendermint/pull/5499) Fix "duplicate block enqueued by processor" panic (@melekes) 465 - [blockchain/v2] [\#5530](https://github.com/tendermint/tendermint/pull/5530) Fix out of order block processing panic (@melekes) 466 - [blockchain/v2] [\#5553](https://github.com/tendermint/tendermint/pull/5553) Make the removal of an already removed peer a noop (@melekes) 467 - [consensus] [\#4895](https://github.com/tendermint/tendermint/pull/4895) Cache the address of the validator to reduce querying a remote KMS (@joe-bowman) 468 - [consensus] [\#4970](https://github.com/tendermint/tendermint/pull/4970) Don't allow `LastCommitRound` to be negative (@cuonglm) 469 - [consensus] [\#5329](https://github.com/tendermint/tendermint/pull/5329) Fix wrong proposer schedule for validators returned by `InitChain` (@erikgrinaker) 470 - [docker] [\#5385](https://github.com/tendermint/tendermint/pull/5385) Fix incorrect `time_iota_ms` default setting causing block timestamp drift (@erikgrinaker) 471 - [evidence] [\#5170](https://github.com/tendermint/tendermint/pull/5170) Change ABCI evidence time to the time the infraction happened not the time the evidence was committed on the block (@cmwaters) 472 - [evidence] [\#5610](https://github.com/tendermint/tendermint/pull/5610) Make it possible for ABCI evidence to be formed from Tendermint evidence (@cmwaters) 473 - [libs/rand] [\#5215](https://github.com/tendermint/tendermint/pull/5215) Fix out-of-memory error on unexpected argument of Str() (@SadPencil) 474 - [light] [\#5307](https://github.com/tendermint/tendermint/pull/5307) Persist correct proposer priority in light client validator sets (@cmwaters) 475 - [p2p] [\#5136](https://github.com/tendermint/tendermint/pull/5136) Fix error for peer with the same ID but different IPs (@valardragon) 476 - [privval] [\#5638](https://github.com/tendermint/tendermint/pull/5638) Increase read/write timeout to 5s and calculate ping interval based on it (@JoeKash) 477 - [proxy] [\#5078](https://github.com/tendermint/tendermint/pull/5078) Force Tendermint to exit when ABCI app crashes (@melekes) 478 - [rpc] [\#5660](https://github.com/tendermint/tendermint/pull/5660) Set `application/json` as the `Content-Type` header in RPC responses. (@alexanderbez) 479 - [store] [\#5382](https://github.com/tendermint/tendermint/pull/5382) Fix race conditions when loading/saving/pruning blocks (@erikgrinaker) 480 481 ## v0.33.8 482 483 *August 11, 2020* 484 485 ### Go security update 486 487 Go reported a security vulnerability that affected the `encoding/binary` package. The most recent binary for tendermint is using 1.14.6, for this 488 reason the Tendermint engineering team has opted to conduct a release to aid users in using the correct version of Go. Read more about the security issue [here](https://github.com/golang/go/issues/40618). 489 490 491 ## v0.33.7 492 493 *August 4, 2020* 494 495 ### BUG FIXES: 496 497 - [go] Build release binary using Go 1.14.4, to avoid halt caused by Go 1.14.1 (https://github.com/golang/go/issues/38223) 498 - [privval] [\#5140](https://github.com/tendermint/tendermint/pull/5140) `RemoteSignerError` from remote signers are no longer retried (@melekes) 499 500 501 ## v0.33.6 502 503 *July 2, 2020* 504 505 This security release fixes: 506 507 ### Denial of service 508 509 Tendermint 0.33.0 and above allow block proposers to include signatures for the 510 wrong block. This may happen naturally if you start a network, have it run for 511 some time and restart it **without changing the chainID**. (It is a 512 [misconfiguration](https://docs.tendermint.com/master/tendermint-core/using-tendermint.html) 513 to reuse chainIDs.) Correct block proposers will accidentally include signatures 514 for the wrong block if they see these signatures, and then commits won't validate, 515 making all proposed blocks invalid. A malicious validator (even with a minimal 516 amount of stake) can use this vulnerability to completely halt the network. 517 518 Tendermint 0.33.6 checks all the signatures are for the block with +2/3 519 majority before creating a commit. 520 521 ### False Witness 522 523 Tendermint 0.33.1 and above are no longer fully verifying commit signatures 524 during block execution - they stop after +2/3. This means proposers can propose 525 blocks that contain valid +2/3 signatures and then the rest of the signatures 526 can be whatever they want. They can claim that all the other validators signed 527 just by including a CommitSig with arbitrary signature data. While this doesn't 528 seem to impact safety of Tendermint per se, it means that Commits may contain a 529 lot of invalid data. 530 531 _This was already true of blocks, since they could include invalid txs filled 532 with garbage, but in that case the application knew that they are invalid and 533 could punish the proposer. But since applications didn't--and don't-- 534 verify commit signatures directly (they trust Tendermint to do that), 535 they won't be able to detect it._ 536 537 This can impact incentivization logic in the application that depends on the 538 LastCommitInfo sent in BeginBlock, which includes which validators signed. For 539 instance, Gaia incentivizes proposers with a bonus for including more than +2/3 540 of the signatures. But a proposer can now claim that bonus just by including 541 arbitrary data for the final -1/3 of validators without actually waiting for 542 their signatures. There may be other tricks that can be played because of this. 543 544 Tendermint 0.33.6 verifies all the signatures during block execution. 545 546 _Please note that the light client does not check nil votes and exits as soon 547 as 2/3+ of the signatures are checked._ 548 549 **All clients are recommended to upgrade.** 550 551 Special thanks to @njmurarka at Bluzelle Networks for reporting this. 552 553 ### SECURITY: 554 555 - [consensus] Do not allow signatures for a wrong block in commits (@ebuchman) 556 - [consensus] Verify all the signatures during block execution (@melekes) 557 558 **Please note that the fix for the False Witness issue renames the `VerifyCommitTrusting` 559 function to `VerifyCommitLightTrusting`. If you were relying on the light client, you may 560 need to update your code.** 561 562 ## v0.33.5 563 564 *May 28, 2020* 565 566 Special thanks to external contributors on this release: @tau3, 567 568 ### BREAKING CHANGES: 569 570 - Go API 571 572 - [privval] [\#4744](https://github.com/tendermint/tendermint/pull/4744) Remove deprecated `OldFilePV` (@melekes) 573 - [mempool] [\#4759](https://github.com/tendermint/tendermint/pull/4759) Modify `Mempool#InitWAL` to return an error (@melekes) 574 - [node] [\#4832](https://github.com/tendermint/tendermint/pull/4832) `ConfigureRPC` returns an error (@melekes) 575 - [rpc] [\#4836](https://github.com/tendermint/tendermint/pull/4836) Overhaul `lib` folder (@melekes) 576 Move lib/ folder to jsonrpc/. 577 Rename: 578 rpc package -> jsonrpc package 579 rpcclient package -> client package 580 rpcserver package -> server package 581 JSONRPCClient to Client 582 JSONRPCRequestBatch to RequestBatch 583 JSONRPCCaller to Caller 584 StartHTTPServer to Serve 585 StartHTTPAndTLSServer to ServeTLS 586 NewURIClient to NewURI 587 NewJSONRPCClient to New 588 NewJSONRPCClientWithHTTPClient to NewWithHTTPClient 589 NewWSClient to NewWS 590 Unexpose ResponseWriterWrapper 591 Remove unused http_params.go 592 593 594 ### FEATURES: 595 596 - [pex] [\#4439](https://github.com/tendermint/tendermint/pull/4439) Use highwayhash for pex buckets (@tau3) 597 598 ### IMPROVEMENTS: 599 600 - [abci/server] [\#4719](https://github.com/tendermint/tendermint/pull/4719) Print panic & stack trace to STDERR if logger is not set (@melekes) 601 - [types] [\#4638](https://github.com/tendermint/tendermint/pull/4638) Implement `Header#ValidateBasic` (@alexanderbez) 602 - [buildsystem] [\#4378](https://github.com/tendermint/tendermint/pull/4738) Replace build_c and install_c with TENDERMINT_BUILD_OPTIONS parsing. The following options are available: 603 - nostrip: don't strip debugging symbols nor DWARF tables. 604 - cleveldb: use cleveldb as db backend instead of goleveldb. 605 - race: pass -race to go build and enable data race detection. 606 - [mempool] [\#4759](https://github.com/tendermint/tendermint/pull/4759) Allow ReapX and CheckTx functions to run in parallel (@melekes) 607 - [rpc/core] [\#4844](https://github.com/tendermint/tendermint/pull/4844) Do not lock consensus state in `/validators`, `/consensus_params` and `/status` (@melekes) 608 609 ### BUG FIXES: 610 611 - [blockchain/v2] [\#4761](https://github.com/tendermint/tendermint/pull/4761) Fix excessive CPU usage caused by spinning on closed channels (@erikgrinaker) 612 - [blockchain/v2] Respect `fast_sync` option (@erikgrinaker) 613 - [light] [\#4741](https://github.com/tendermint/tendermint/pull/4741) Correctly return `ErrSignedHeaderNotFound` and `ErrValidatorSetNotFound` on corresponding RPC errors (@erikgrinaker) 614 - [rpc] [\#4805](https://github.com/tendermint/tendermint/issues/4805) Attempt to handle panics during panic recovery (@erikgrinaker) 615 - [types] [\#4764](https://github.com/tendermint/tendermint/pull/4764) Return an error if voting power overflows in `VerifyCommitTrusting` (@melekes) 616 - [privval] [\#4812](https://github.com/tendermint/tendermint/pull/4812) Retry `GetPubKey/SignVote/SignProposal` a few times before returning an error (@melekes) 617 - [p2p] [\#4847](https://github.com/tendermint/tendermint/pull/4847) Return masked IP (not the actual IP) in addrbook#groupKey (@melekes) 618 619 ## v0.33.4 620 621 - Nodes are no longer guaranteed to contain all blocks up to the latest height. The ABCI app can now control which blocks to retain through the ABCI field `ResponseCommit.retain_height`, all blocks and associated data below this height will be removed. 622 623 *April 21, 2020* 624 625 Special thanks to external contributors on this release: @whylee259, @greg-szabo 626 627 ### BREAKING CHANGES: 628 629 - Go API 630 631 - [lite2] [\#4616](https://github.com/tendermint/tendermint/pull/4616) Make `maxClockDrift` an option `Verify/VerifyAdjacent/VerifyNonAdjacent` now accept `maxClockDrift time.Duration` (@melekes). 632 - [rpc/client] [\#4628](https://github.com/tendermint/tendermint/pull/4628) Split out HTTP and local clients into `http` and `local` packages (@erikgrinaker). 633 634 ### FEATURES: 635 636 - [abci] [\#4588](https://github.com/tendermint/tendermint/issues/4588) Add `ResponseCommit.retain_height` field, which will automatically remove blocks below this height. This bumps the ABCI version to 0.16.2 (@erikgrinaker). 637 - [cmd] [\#4665](https://github.com/tendermint/tendermint/pull/4665) New `tendermint completion` command to generate Bash/Zsh completion scripts (@alessio). 638 - [rpc] [\#4588](https://github.com/tendermint/tendermint/issues/4588) Add `/status` response fields for the earliest block available on the node (@erikgrinaker). 639 - [rpc] [\#4611](https://github.com/tendermint/tendermint/pull/4611) Add `codespace` to `ResultBroadcastTx` (@whylee259). 640 641 ### IMPROVEMENTS: 642 643 - [all] [\#4608](https://github.com/tendermint/tendermint/pull/4608) Give reactors descriptive names when they're initialized (@tessr). 644 - [blockchain] [\#4588](https://github.com/tendermint/tendermint/issues/4588) Add `Base` to blockchain reactor P2P messages `StatusRequest` and `StatusResponse` (@erikgrinaker). 645 - [Docker] [\#4569](https://github.com/tendermint/tendermint/issues/4569) Default configuration added to docker image (you can still mount your own config the same way) (@greg-szabo). 646 - [example/kvstore] [\#4588](https://github.com/tendermint/tendermint/issues/4588) Add `RetainBlocks` option to control block retention (@erikgrinaker). 647 - [evidence] [\#4632](https://github.com/tendermint/tendermint/pull/4632) Inbound evidence checked if already existing (@cmwaters). 648 - [lite2] [\#4575](https://github.com/tendermint/tendermint/pull/4575) Use bisection for within-range verification (@cmwaters). 649 - [lite2] [\#4562](https://github.com/tendermint/tendermint/pull/4562) Cache headers when using bisection (@cmwaters). 650 - [p2p] [\#4548](https://github.com/tendermint/tendermint/pull/4548) Add ban list to address book (@cmwaters). 651 - [privval] [\#4534](https://github.com/tendermint/tendermint/issues/4534) Add `error` as a return value on`GetPubKey()` (@marbar3778). 652 - [p2p] [\#4621](https://github.com/tendermint/tendermint/issues/4621) Ban peers when messages are unsolicited or too frequent (@cmwaters). 653 - [rpc] [\#4703](https://github.com/tendermint/tendermint/pull/4703) Add `count` and `total` to `/validators` response (@melekes). 654 - [tools] [\#4615](https://github.com/tendermint/tendermint/issues/4615) Allow developers to use Docker to generate proto stubs, via `make proto-gen-docker` (@erikgrinaker). 655 656 ### BUG FIXES: 657 658 - [rpc] [\#4568](https://github.com/tendermint/tendermint/issues/4568) Fix panic when `Subscribe` is called, but HTTP client is not running. `Subscribe`, `Unsubscribe(All)` methods return an error now (@melekes). 659 660 ## v0.33.3 661 662 *April 6, 2020* 663 664 This security release fixes: 665 666 ### Denial of service 1 667 668 Tendermint 0.33.2 and earlier does not limit P2P connection requests number. 669 For each p2p connection, Tendermint allocates ~0.5MB. Even though this 670 memory is garbage collected once the connection is terminated (due to duplicate 671 IP or reaching a maximum number of inbound peers), temporary memory spikes can 672 lead to OOM (Out-Of-Memory) exceptions. 673 674 Tendermint 0.33.3 (and 0.32.10) limits the total number of P2P incoming 675 connection requests to to `p2p.max_num_inbound_peers + 676 len(p2p.unconditional_peer_ids)`. 677 678 Notes: 679 680 - Tendermint does not rate limit P2P connection requests per IP (an attacker 681 can saturate all the inbound slots); 682 - Tendermint does not rate limit HTTP(S) requests. If you expose any RPC 683 endpoints to the public, please make sure to put in place some protection 684 (https://www.nginx.com/blog/rate-limiting-nginx/). We may implement this in 685 the future ([\#1696](https://github.com/tendermint/tendermint/issues/1696)). 686 687 ### Denial of service 2 688 689 Tendermint 0.33.2 and earlier does not reclaim `activeID` of a peer after it's 690 removed in `Mempool` reactor. This does not happen all the time. It only 691 happens when a connection fails (for any reason) before the Peer is created and 692 added to all reactors. `RemovePeer` is therefore called before `AddPeer`, which 693 leads to always growing memory (`activeIDs` map). The `activeIDs` map has a 694 maximum size of 65535 and the node will panic if this map reaches the maximum. 695 An attacker can create a lot of connection attempts (exploiting Denial of 696 service 1), which ultimately will lead to the node panicking. 697 698 Tendermint 0.33.3 (and 0.32.10) claims `activeID` for a peer in `InitPeer`, 699 which is executed before `MConnection` is started. 700 701 Notes: 702 703 - `InitPeer` function was added to all reactors to combat a similar issue - 704 [\#3338](https://github.com/tendermint/tendermint/issues/3338); 705 - Denial of service 2 is independent of Denial of service 1 and can be executed 706 without it. 707 708 **All clients are recommended to upgrade** 709 710 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for finding 711 and reporting this. 712 713 ### SECURITY: 714 715 - [mempool] Reserve IDs in InitPeer instead of AddPeer (@tessr) 716 - [p2p] Limit the number of incoming connections (@melekes) 717 718 ## v0.33.2 719 720 *March 11, 2020* 721 722 Special thanks to external contributors on this release: 723 @antho1404, @michaelfig, @gterzian, @tau3, @Shivani912 724 725 ### BREAKING CHANGES: 726 727 - CLI/RPC/Config 728 - [cli] [\#4505](https://github.com/tendermint/tendermint/pull/4505) `tendermint lite` sub-command new syntax (@melekes): 729 `lite cosmoshub-3 -p 52.57.29.196:26657 -w public-seed-node.cosmoshub.certus.one:26657 730 --height 962118 --hash 28B97BE9F6DE51AC69F70E0B7BFD7E5C9CD1A595B7DC31AFF27C50D4948` 731 732 - Go API 733 - [lite2] [\#4535](https://github.com/tendermint/tendermint/pull/4535) Remove `Start/Stop` (@melekes) 734 - [lite2] [\#4469](https://github.com/tendermint/tendermint/issues/4469) Remove `RemoveNoLongerTrustedHeaders` and `RemoveNoLongerTrustedHeadersPeriod` option (@cmwaters) 735 - [lite2] [\#4473](https://github.com/tendermint/tendermint/issues/4473) Return height as a 2nd param in `TrustedValidatorSet` (@melekes) 736 - [lite2] [\#4536](https://github.com/tendermint/tendermint/pull/4536) `Update` returns a signed header (1st param) (@melekes) 737 738 739 ### IMPROVEMENTS: 740 741 - [blockchain/v2] [\#4361](https://github.com/tendermint/tendermint/pull/4361) Add reactor (@brapse) 742 - [cmd] [\#4515](https://github.com/tendermint/tendermint/issues/4515) Change `tendermint debug dump` sub-command archives filename's format (@melekes) 743 - [consensus] [\#3583](https://github.com/tendermint/tendermint/issues/3583) Reduce `non-deterministic signature` log noise (@tau3) 744 - [examples/kvstore] [\#4507](https://github.com/tendermint/tendermint/issues/4507) ABCI query now returns the proper height (@erikgrinaker) 745 - [lite2] [\#4462](https://github.com/tendermint/tendermint/issues/4462) Add `NewHTTPClient` and `NewHTTPClientFromTrustedStore` (@cmwaters) 746 - [lite2] [\#4329](https://github.com/tendermint/tendermint/issues/4329) modified bisection to loop (@cmwaters) 747 - [lite2] [\#4385](https://github.com/tendermint/tendermint/issues/4385) Disconnect from bad nodes (@melekes) 748 - [lite2] [\#4398](https://github.com/tendermint/tendermint/issues/4398) Add `VerifyAdjacent` and `VerifyNonAdjacent` funcs (@cmwaters) 749 - [lite2] [\#4426](https://github.com/tendermint/tendermint/issues/4426) Don't save intermediate headers (@cmwaters) 750 - [lite2] [\#4464](https://github.com/tendermint/tendermint/issues/4464) Cross-check first header (@cmwaters) 751 - [lite2] [\#4470](https://github.com/tendermint/tendermint/issues/4470) Fix inconsistent header-validatorset pairing (@melekes) 752 - [lite2] [\#4488](https://github.com/tendermint/tendermint/issues/4488) Allow local clock drift -10 sec. (@melekes) 753 - [p2p] [\#4449](https://github.com/tendermint/tendermint/pull/4449) Use `curve25519.X25519()` instead of `ScalarMult` (@erikgrinaker) 754 - [types] [\#4417](https://github.com/tendermint/tendermint/issues/4417) **VerifyCommitX() functions should return as soon as +2/3 threshold is reached** (@alessio). 755 - [libs/kv] [\#4542](https://github.com/tendermint/tendermint/pull/4542) remove unused type KI64Pair (@tessr) 756 757 ### BUG FIXES: 758 759 - [cmd] [\#4303](https://github.com/tendermint/tendermint/issues/4303) Show useful error when Tendermint is not initialized (@melekes) 760 - [cmd] [\#4515](https://github.com/tendermint/tendermint/issues/4515) **Fix `tendermint debug kill` sub-command** (@melekes) 761 - [rpc] [\#3935](https://github.com/tendermint/tendermint/issues/3935) **Create buffered subscriptions on `/subscribe`** (@melekes) 762 - [rpc] [\#4375](https://github.com/tendermint/tendermint/issues/4375) Stop searching for txs in `/tx_search` upon client timeout (@gterzian) 763 - [rpc] [\#4406](https://github.com/tendermint/tendermint/pull/4406) Fix issue with multiple subscriptions on the websocket (@antho1404) 764 - [rpc] [\#4432](https://github.com/tendermint/tendermint/issues/4432) Fix `/tx_search` pagination with ordered results (@erikgrinaker) 765 - [rpc] [\#4492](https://github.com/tendermint/tendermint/issues/4492) Keep the original subscription "id" field when new RPCs come in (@michaelfig) 766 767 768 ## v0.33.1 769 770 *Feburary 13, 2020* 771 772 Special thanks to external contributors on this release: 773 @princesinha19 774 775 ### FEATURES: 776 777 - [rpc] [\#3333](https://github.com/tendermint/tendermint/issues/3333) Add `order_by` to `/tx_search` endpoint, allowing to change default ordering from asc to desc (@princesinha19) 778 779 ### IMPROVEMENTS: 780 781 - [proto] [\#4369](https://github.com/tendermint/tendermint/issues/4369) Add [buf](https://buf.build/) for usage with linting and checking if there are breaking changes with the master branch. 782 - [proto] [\#4369](https://github.com/tendermint/tendermint/issues/4369) Add `make proto-gen` cmd to generate proto stubs outside of GOPATH. 783 784 ### BUG FIXES: 785 786 - [node] [\#4311](https://github.com/tendermint/tendermint/issues/4311) Use `GRPCMaxOpenConnections` when creating the gRPC server, not `MaxOpenConnections` 787 - [rpc] [\#4319](https://github.com/tendermint/tendermint/issues/4319) Check `BlockMeta` is not nil in `/block` & `/block_by_hash` 788 789 ## v0.33 790 791 Special thanks to external contributors on this release: @mrekucci, @PSalant726, @princesinha19, @greg-szabo, @dongsam, @cuonglm, @jgimeno, @yenkhoon 792 793 *January 14, 2020* 794 795 This release contains breaking changes to the `Block#Header`, specifically 796 `NumTxs` and `TotalTxs` were removed (\#2521). Here's how this change affects 797 different modules: 798 799 - apps: it breaks the ABCI header field numbering 800 - state: it breaks the format of `State` on disk 801 - RPC: all RPC requests which expose the header broke 802 - Go API: the `Header` broke 803 - P2P: since blocks go over the wire, technically the P2P protocol broke 804 805 Also, blocks are significantly smaller 🔥 because we got rid of the redundant 806 information in `Block#LastCommit`. `Commit` now mainly consists of a signature 807 and a validator address plus a timestamp. Note we may remove the validator 808 address & timestamp fields in the future (see ADR-25). 809 810 `lite2` package has been added to solve `lite` issues and introduce weak 811 subjectivity interface. Refer to the [spec](https://github.com/tendermint/spec/blob/master/spec/consensus/light-client.md) for complete details. 812 `lite` package is now deprecated and will be removed in v0.34 release. 813 814 ### BREAKING CHANGES: 815 816 - CLI/RPC/Config 817 818 - [rpc] [\#3471](https://github.com/tendermint/tendermint/issues/3471) Paginate `/validators` response (default: 30 vals per page) 819 - [rpc] [\#3188](https://github.com/tendermint/tendermint/issues/3188) Remove `BlockMeta` in `ResultBlock` in favor of `BlockId` for `/block` 820 - [rpc] `/block_results` response format updated (see RPC docs for details) 821 ``` 822 { 823 "jsonrpc": "2.0", 824 "id": "", 825 "result": { 826 "height": "2109", 827 "txs_results": null, 828 "begin_block_events": null, 829 "end_block_events": null, 830 "validator_updates": null, 831 "consensus_param_updates": null 832 } 833 } 834 ``` 835 - [rpc] [\#4141](https://github.com/tendermint/tendermint/pull/4141) Remove `#event` suffix from the ID in event responses. 836 `{"jsonrpc": "2.0", "id": 0, "result": ...}` 837 - [rpc] [\#4141](https://github.com/tendermint/tendermint/pull/4141) Switch to integer IDs instead of `json-client-XYZ` 838 ``` 839 id=0 method=/subscribe 840 id=0 result=... 841 id=1 method=/abci_query 842 id=1 result=... 843 ``` 844 - ID is unique for each request; 845 - Request.ID is now optional. Notification is a Request without an ID. Previously ID="" or ID=0 were considered as notifications. 846 847 - [config] [\#4046](https://github.com/tendermint/tendermint/issues/4046) Rename tag(s) to CompositeKey & places where tag is still present it was renamed to event or events. Find how a compositeKey is constructed [here](https://github.com/tendermint/tendermint/blob/6d05c531f7efef6f0619155cf10ae8557dd7832f/docs/app-dev/indexing-transactions.md) 848 - You will have to generate a new config for your Tendermint node(s) 849 - [genesis] [\#2565](https://github.com/tendermint/tendermint/issues/2565) Add `consensus_params.evidence.max_age_duration`. Rename 850 `consensus_params.evidence.max_age` to `max_age_num_blocks`. 851 - [cli] [\#1771](https://github.com/tendermint/tendermint/issues/1771) `tendermint lite` now uses new light client package (`lite2`) 852 and has 3 more flags: `--trusting-period`, `--trusted-height` and 853 `--trusted-hash` 854 855 - Apps 856 857 - [tm-bench] Removed tm-bench in favor of [tm-load-test](https://github.com/informalsystems/tm-load-test) 858 859 - Go API 860 861 - [rpc] [\#3953](https://github.com/tendermint/tendermint/issues/3953) Modify NewHTTP, NewXXXClient functions to return an error on invalid remote instead of panicking (@mrekucci) 862 - [rpc/client] [\#3471](https://github.com/tendermint/tendermint/issues/3471) `Validators` now requires two more args: `page` and `perPage` 863 - [libs/common] [\#3262](https://github.com/tendermint/tendermint/issues/3262) Make error the last parameter of `Task` (@PSalant726) 864 - [cs/types] [\#3262](https://github.com/tendermint/tendermint/issues/3262) Rename `GotVoteFromUnwantedRoundError` to `ErrGotVoteFromUnwantedRound` (@PSalant726) 865 - [libs/common] [\#3862](https://github.com/tendermint/tendermint/issues/3862) Remove `errors.go` from `libs/common` 866 - [libs/common] [\#4230](https://github.com/tendermint/tendermint/issues/4230) Move `KV` out of common to its own pkg 867 - [libs/common] [\#4230](https://github.com/tendermint/tendermint/issues/4230) Rename `cmn.KVPair(s)` to `kv.Pair(s)`s 868 - [libs/common] [\#4232](https://github.com/tendermint/tendermint/issues/4232) Move `Service` & `BaseService` from `libs/common` to `libs/service` 869 - [libs/common] [\#4232](https://github.com/tendermint/tendermint/issues/4232) Move `common/nil.go` to `types/utils.go` & make the functions private 870 - [libs/common] [\#4231](https://github.com/tendermint/tendermint/issues/4231) Move random functions from `libs/common` into pkg `rand` 871 - [libs/common] [\#4237](https://github.com/tendermint/tendermint/issues/4237) Move byte functions from `libs/common` into pkg `bytes` 872 - [libs/common] [\#4237](https://github.com/tendermint/tendermint/issues/4237) Move throttletimer functions from `libs/common` into pkg `timer` 873 - [libs/common] [\#4237](https://github.com/tendermint/tendermint/issues/4237) Move tempfile functions from `libs/common` into pkg `tempfile` 874 - [libs/common] [\#4240](https://github.com/tendermint/tendermint/issues/4240) Move os functions from `libs/common` into pkg `os` 875 - [libs/common] [\#4240](https://github.com/tendermint/tendermint/issues/4240) Move net functions from `libs/common` into pkg `net` 876 - [libs/common] [\#4240](https://github.com/tendermint/tendermint/issues/4240) Move mathematical functions and types out of `libs/common` to `math` pkg 877 - [libs/common] [\#4240](https://github.com/tendermint/tendermint/issues/4240) Move string functions out of `libs/common` to `strings` pkg 878 - [libs/common] [\#4240](https://github.com/tendermint/tendermint/issues/4240) Move async functions out of `libs/common` to `async` pkg 879 - [libs/common] [\#4240](https://github.com/tendermint/tendermint/issues/4240) Move bit functions out of `libs/common` to `bits` pkg 880 - [libs/common] [\#4240](https://github.com/tendermint/tendermint/issues/4240) Move cmap functions out of `libs/common` to `cmap` pkg 881 - [libs/common] [\#4258](https://github.com/tendermint/tendermint/issues/4258) Remove `Rand` from all `rand` pkg functions 882 - [types] [\#2565](https://github.com/tendermint/tendermint/issues/2565) Remove `MockBadEvidence` & `MockGoodEvidence` in favor of `MockEvidence` 883 884 - Blockchain Protocol 885 886 - [abci] [\#2521](https://github.com/tendermint/tendermint/issues/2521) Remove `TotalTxs` and `NumTxs` from `Header` 887 - [types] [\#4151](https://github.com/tendermint/tendermint/pull/4151) Enforce ordering of votes in DuplicateVoteEvidence to be lexicographically sorted on BlockID 888 - [types] [\#1648](https://github.com/tendermint/tendermint/issues/1648) Change `Commit` to consist of just signatures 889 890 - P2P Protocol 891 892 - [p2p] [\#3668](https://github.com/tendermint/tendermint/pull/3668) Make `SecretConnection` non-malleable 893 894 - [proto] [\#3986](https://github.com/tendermint/tendermint/pull/3986) Prefix protobuf types to avoid name conflicts. 895 - ABCI becomes `tendermint.abci.types` with the new API endpoint `/tendermint.abci.types.ABCIApplication/` 896 - core_grpc becomes `tendermint.rpc.grpc` with the new API endpoint `/tendermint.rpc.grpc.BroadcastAPI/` 897 - merkle becomes `tendermint.crypto.merkle` 898 - libs.common becomes `tendermint.libs.common` 899 - proto3 becomes `tendermint.types.proto3` 900 901 ### FEATURES: 902 903 - [p2p] [\#4053](https://github.com/tendermint/tendermint/issues/4053) Add `unconditional_peer_ids` and `persistent_peers_max_dial_period` config variables (see ADR-050) (@dongsam) 904 - [tools] [\#4227](https://github.com/tendermint/tendermint/pull/4227) Implement `tendermint debug kill` and 905 `tendermint debug dump` commands for Tendermint node debugging functionality. See `--help` in both 906 commands for further documentation and usage. 907 - [cli] [\#4234](https://github.com/tendermint/tendermint/issues/4234) Add `--db_backend and --db_dir` flags (@princesinha19) 908 - [cli] [\#4113](https://github.com/tendermint/tendermint/issues/4113) Add optional `--genesis_hash` flag to check genesis hash upon startup 909 - [config] [\#3831](https://github.com/tendermint/tendermint/issues/3831) Add support for [RocksDB](https://rocksdb.org/) (@Stumble) 910 - [rpc] [\#3985](https://github.com/tendermint/tendermint/issues/3985) Add new `/block_by_hash` endpoint, which allows to fetch a block by its hash (@princesinha19) 911 - [metrics] [\#4263](https://github.com/tendermint/tendermint/issues/4263) Add 912 - `consensus_validator_power`: track your validators power 913 - `consensus_validator_last_signed_height`: track at which height the validator last signed 914 - `consensus_validator_missed_blocks`: total amount of missed blocks for a validator 915 as gauges in prometheus for validator specific metrics 916 - [rpc/lib] [\#4248](https://github.com/tendermint/tendermint/issues/4248) RPC client basic authentication support (@greg-szabo) 917 - [lite2] [\#1771](https://github.com/tendermint/tendermint/issues/1771) Light client with weak subjectivity 918 919 ### IMPROVEMENTS: 920 921 - [rpc] [\#3188](https://github.com/tendermint/tendermint/issues/3188) Added `block_size` to `BlockMeta` this is reflected in `/blockchain` 922 - [types] [\#2521](https://github.com/tendermint/tendermint/issues/2521) Add `NumTxs` to `BlockMeta` and `EventDataNewBlockHeader` 923 - [p2p] [\#4185](https://github.com/tendermint/tendermint/pull/4185) Simplify `SecretConnection` handshake with merlin 924 - [cli] [\#4065](https://github.com/tendermint/tendermint/issues/4065) Add `--consensus.create_empty_blocks_interval` flag (@jgimeno) 925 - [docs] [\#4065](https://github.com/tendermint/tendermint/issues/4065) Document `--consensus.create_empty_blocks_interval` flag (@jgimeno) 926 - [crypto] [\#4190](https://github.com/tendermint/tendermint/pull/4190) Added SR25519 signature scheme 927 - [abci] [\#4177] kvstore: Return `LastBlockHeight` and `LastBlockAppHash` in `Info` (@princesinha19) 928 - [rpc] [\#2741](https://github.com/tendermint/tendermint/issues/2741) Add `proposer` to `/consensus_state` response (@princesinha19) 929 - [deps] [\#4289](https://github.com/tendermint/tendermint/pull/4289) Update tm-db to 0.4.0, this includes major breaking changes in the dep that change how errors are handled. 930 931 ### BUG FIXES: 932 933 - [rpc/lib][\#4051](https://github.com/tendermint/tendermint/pull/4131) Fix RPC client, which was previously resolving https protocol to http (@yenkhoon) 934 - [rpc] [\#4141](https://github.com/tendermint/tendermint/pull/4141) JSONRPCClient: validate that Response.ID matches Request.ID 935 - [rpc] [\#4141](https://github.com/tendermint/tendermint/pull/4141) WSClient: check for unsolicited responses 936 - [types] [\4164](https://github.com/tendermint/tendermint/pull/4164) Prevent temporary power overflows on validator updates 937 - [cs] [\#4069](https://github.com/tendermint/tendermint/issues/4069) Don't panic when block meta is not found in store (@gregzaitsev) 938 - [types] [\#4164](https://github.com/tendermint/tendermint/issues/4164) Prevent temporary power overflows on validator updates (joint 939 efforts of @gchaincl and @ancazamfir) 940 - [p2p] [\#4140](https://github.com/tendermint/tendermint/issues/4140) `SecretConnection`: use the transcript solely for authentication (i.e. MAC) 941 - [consensus/types] [\#4243](https://github.com/tendermint/tendermint/issues/4243) fix BenchmarkRoundStateDeepCopy panics (@cuonglm) 942 - [rpc] [\#4256](https://github.com/tendermint/tendermint/issues/4256) Pass `outCapacity` to `eventBus#Subscribe` when subscribing using a local client 943 944 ## v0.32.13 945 946 *August 5, 2020* 947 948 ### BUG FIXES 949 950 - [privval] [\#5112](https://github.com/tendermint/tendermint/issues/5112) If remote signer errors, don't retry (@melekes) 951 952 ## v0.32.12 953 954 *May 19, 2020* 955 956 ### BUG FIXES 957 958 - [p2p] [\#4847](https://github.com/tendermint/tendermint/pull/4847) Return masked IP (not the actual IP) in addrbook#groupKey (@melekes) 959 960 ## v0.32.11 961 962 *April 29, 2020* 963 964 ### BUG FIXES: 965 966 - [privval] [\#4275](https://github.com/tendermint/tendermint/issues/4275) Fix consensus failure when remote signer drops (@melekes) 967 968 ## v0.32.10 969 970 *April 6, 2020* 971 972 This security release fixes: 973 974 ### Denial of Service 1 975 976 Tendermint 0.33.2 and earlier does not limit the number of P2P connection 977 requests. For each p2p connection, Tendermint allocates ~0.5MB. Even though 978 this memory is garbage collected once the connection is terminated (due to 979 duplicate IP or reaching a maximum number of inbound peers), temporary memory 980 spikes can lead to OOM (Out-Of-Memory) exceptions. 981 982 Tendermint 0.33.3 (and 0.32.10) limits the total number of P2P incoming 983 connection requests to to `p2p.max_num_inbound_peers + 984 len(p2p.unconditional_peer_ids)`. 985 986 Notes: 987 988 - Tendermint does not rate limit P2P connection requests per IP (an attacker 989 can saturate all the inbound slots); 990 - Tendermint does not rate limit HTTP(S) requests. If you expose any RPC 991 endpoints to the public, please make sure to put in place some protection 992 (https://www.nginx.com/blog/rate-limiting-nginx/). We may implement this in 993 the future ([\#1696](https://github.com/tendermint/tendermint/issues/1696)). 994 995 ### Denial of Service 2 996 997 Tendermint 0.33.2 and earlier does not reclaim `activeID` of a peer after it's 998 removed in `Mempool` reactor. This does not happen all the time. It only 999 happens when a connection fails (for any reason) before the Peer is created and 1000 added to all reactors. `RemovePeer` is therefore called before `AddPeer`, which 1001 leads to always growing memory (`activeIDs` map). The `activeIDs` map has a 1002 maximum size of 65535 and the node will panic if this map reaches the maximum. 1003 An attacker can create a lot of connection attempts (exploiting Denial of 1004 Service 1), which ultimately will lead to the node panicking. 1005 1006 Tendermint 0.33.3 (and 0.32.10) claims `activeID` for a peer in `InitPeer`, 1007 which is executed before `MConnection` is started. 1008 1009 Notes: 1010 1011 - `InitPeer` function was added to all reactors to combat a similar issue - 1012 [\#3338](https://github.com/tendermint/tendermint/issues/3338); 1013 - Denial of Service 2 is independent of Denial of Service 1 and can be executed 1014 without it. 1015 1016 **All clients are recommended to upgrade** 1017 1018 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for finding 1019 and reporting this. 1020 1021 ### SECURITY: 1022 1023 - [mempool] Reserve IDs in InitPeer instead of AddPeer (@tessr) 1024 - [p2p] Limit the number of incoming connections (@melekes) 1025 1026 ## v0.32.9 1027 1028 _January, 9, 2020_ 1029 1030 Special thanks to external contributors on this release: @greg-szabo, @gregzaitsev, @yenkhoon 1031 1032 ### FEATURES: 1033 1034 - [rpc/lib] [\#4248](https://github.com/tendermint/tendermint/issues/4248) RPC client basic authentication support (@greg-szabo) 1035 1036 - [metrics] [\#4294](https://github.com/tendermint/tendermint/pull/4294) Add 1037 - `consensus_validator_power`: track your validators power 1038 - `consensus_validator_last_signed_height`: track at which height the validator last signed 1039 - `consensus_validator_missed_blocks`: total amount of missed blocks for a validator 1040 as gauges in prometheus for validator specific metrics 1041 1042 ### BUG FIXES: 1043 1044 - [rpc/lib] [\#4131](https://github.com/tendermint/tendermint/pull/4131) Fix RPC client, which was previously resolving https protocol to http (@yenkhoon) 1045 - [cs] [\#4069](https://github.com/tendermint/tendermint/issues/4069) Don't panic when block meta is not found in store (@gregzaitsev) 1046 1047 ## v0.32.8 1048 1049 *November 19, 2019* 1050 1051 Special thanks to external contributors on this release: @erikgrinaker, @guagualvcha, @hsyis, @cosmostuba, @whunmr, @austinabell 1052 1053 1054 ### BREAKING CHANGES: 1055 1056 - Go API 1057 1058 - [libs/pubsub] [\#4070](https://github.com/tendermint/tendermint/pull/4070) `Query#(Matches|Conditions)` returns an error. 1059 1060 ### IMPROVEMENTS: 1061 1062 - [mempool] [\#4083](https://github.com/tendermint/tendermint/pull/4083) Added TxInfo parameter to CheckTx(), and removed CheckTxWithInfo() (@erikgrinaker) 1063 - [mempool] [\#4057](https://github.com/tendermint/tendermint/issues/4057) Include peer ID when logging rejected txns (@erikgrinaker) 1064 - [tools] [\#4023](https://github.com/tendermint/tendermint/issues/4023) Improved `tm-monitor` formatting of start time and avg tx throughput (@erikgrinaker) 1065 - [p2p] [\#3991](https://github.com/tendermint/tendermint/issues/3991) Log "has been established or dialed" as debug log instead of Error for connected peers (@whunmr) 1066 - [rpc] [\#4077](https://github.com/tendermint/tendermint/pull/4077) Added support for `EXISTS` clause to the Websocket query interface. 1067 - [privval] Add `SignerDialerEndpointRetryWaitInterval` option (@cosmostuba) 1068 - [crypto] Add `RegisterKeyType` to amino to allow external key types registration (@austinabell) 1069 1070 ### BUG FIXES: 1071 1072 - [libs/pubsub] [\#4070](https://github.com/tendermint/tendermint/pull/4070) Strip out non-numeric characters when attempting to match numeric values. 1073 - [libs/pubsub] [\#4070](https://github.com/tendermint/tendermint/pull/4070) No longer panic in Query#(Matches|Conditions) preferring to return an error instead. 1074 - [tools] [\#4023](https://github.com/tendermint/tendermint/issues/4023) Refresh `tm-monitor` health when validator count is updated (@erikgrinaker) 1075 - [state] [\#4104](https://github.com/tendermint/tendermint/pull/4104) txindex/kv: Fsync data to disk immediately after receiving it (@guagualvcha) 1076 - [state] [\#4095](https://github.com/tendermint/tendermint/pull/4095) txindex/kv: Return an error if there's one when the user searches for a tx (hash=X) (@hsyis) 1077 1078 ## v0.32.7 1079 1080 *October 18, 2019* 1081 1082 This security release fixes a vulnerability found in the `consensus` package, 1083 where an attacker could construct a `BlockPartMessage` message in such a way 1084 that it will lead to consensus failure. A few similar issues have been 1085 identified and fixed here. 1086 1087 **All clients are recommended to upgrade** 1088 1089 Special thanks to [elvishacker](https://hackerone.com/elvishacker) for finding 1090 and reporting this. 1091 1092 ### BREAKING CHANGES: 1093 1094 - Go API 1095 - [consensus] Modify `WAL#Write` and `WAL#WriteSync` to return an error if 1096 they fail to write a message 1097 1098 ### SECURITY: 1099 1100 - [consensus] Validate incoming messages more throughly 1101 1102 ## v0.32.6 1103 1104 *October 8, 2019* 1105 1106 The previous patch was insufficient because the attacker could still find a way 1107 to submit a `nil` pubkey by constructing a `PubKeyMultisigThreshold` pubkey 1108 with `nil` subpubkeys for example. 1109 1110 This release provides multiple fixes, which include recovering from panics when 1111 accepting new peers and only allowing `ed25519` pubkeys. 1112 1113 **All clients are recommended to upgrade** 1114 1115 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for pointing 1116 this out. 1117 1118 ### SECURITY: 1119 1120 - [p2p] [\#4030](https://github.com/tendermint/tendermint/issues/4030) Only allow ed25519 pubkeys when connecting 1121 1122 ## v0.32.5 1123 1124 *October 1, 2019* 1125 1126 This release fixes a major security vulnerability found in the `p2p` package. 1127 All clients are recommended to upgrade. See 1128 [\#4030](https://github.com/tendermint/tendermint/issues/4030) for details. 1129 1130 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for discovering 1131 and reporting this issue. 1132 1133 ### SECURITY: 1134 1135 - [p2p] [\#4030](https://github.com/tendermint/tendermint/issues/4030) Fix for panic on nil public key send to a peer 1136 1137 ## v0.32.4 1138 1139 *September 19, 2019* 1140 1141 Special thanks to external contributors on this release: @jon-certik, @gracenoah, @PSalant726, @gchaincl 1142 1143 ### BREAKING CHANGES: 1144 1145 - CLI/RPC/Config 1146 - [rpc] [\#3984](https://github.com/tendermint/tendermint/issues/3984) Add `MempoolClient` interface to `Client` interface 1147 1148 ### IMPROVEMENTS: 1149 1150 - [rpc] [\#2010](https://github.com/tendermint/tendermint/issues/2010) Add NewHTTPWithClient and NewJSONRPCClientWithHTTPClient (note these and NewHTTP, NewJSONRPCClient functions panic if remote is invalid) (@gracenoah) 1151 - [rpc] [\#3882](https://github.com/tendermint/tendermint/issues/3882) Add custom marshalers to proto messages to disable `omitempty` 1152 - [deps] [\#3952](https://github.com/tendermint/tendermint/pull/3952) bump github.com/go-kit/kit from 0.6.0 to 0.9.0 1153 - [deps] [\#3951](https://github.com/tendermint/tendermint/pull/3951) bump github.com/stretchr/testify from 1.3.0 to 1.4.0 1154 - [deps] [\#3945](https://github.com/tendermint/tendermint/pull/3945) bump github.com/gorilla/websocket from 1.2.0 to 1.4.1 1155 - [deps] [\#3948](https://github.com/tendermint/tendermint/pull/3948) bump github.com/libp2p/go-buffer-pool from 0.0.1 to 0.0.2 1156 - [deps] [\#3943](https://github.com/tendermint/tendermint/pull/3943) bump github.com/fortytw2/leaktest from 1.2.0 to 1.3.0 1157 - [deps] [\#3939](https://github.com/tendermint/tendermint/pull/3939) bump github.com/rs/cors from 1.6.0 to 1.7.0 1158 - [deps] [\#3937](https://github.com/tendermint/tendermint/pull/3937) bump github.com/magiconair/properties from 1.8.0 to 1.8.1 1159 - [deps] [\#3947](https://github.com/tendermint/tendermint/pull/3947) update gogo/protobuf version from v1.2.1 to v1.3.0 1160 - [deps] [\#4001](https://github.com/tendermint/tendermint/pull/4001) bump github.com/tendermint/tm-db from 0.1.1 to 0.2.0 1161 1162 ### BUG FIXES: 1163 1164 - [consensus] [\#3908](https://github.com/tendermint/tendermint/issues/3908) Wait `timeout_commit` to pass even if `create_empty_blocks` is `false` 1165 - [mempool] [\#3968](https://github.com/tendermint/tendermint/issues/3968) Fix memory loading error on 32-bit machines (@jon-certik) 1166 1167 ## v0.32.3 1168 1169 *August 28, 2019* 1170 1171 @climber73 wrote the [Writing a Tendermint Core application in Java 1172 (gRPC)](https://github.com/tendermint/tendermint/blob/master/docs/guides/java.md) 1173 guide. 1174 1175 Special thanks to external contributors on this release: 1176 @gchaincl, @bluele, @climber73 1177 1178 ### IMPROVEMENTS: 1179 1180 - [consensus] [\#3839](https://github.com/tendermint/tendermint/issues/3839) Reduce "Error attempting to add vote" message severity (Error -> Info) 1181 - [mempool] [\#3877](https://github.com/tendermint/tendermint/pull/3877) Make `max_tx_bytes` configurable instead of `max_msg_bytes` (@bluele) 1182 - [privval] [\#3370](https://github.com/tendermint/tendermint/issues/3370) Refactor and simplify validator/kms connection handling. Please refer to [this comment](https://github.com/tendermint/tendermint/pull/3370#issue-257360971) for details 1183 - [rpc] [\#3880](https://github.com/tendermint/tendermint/issues/3880) Document endpoints with `swagger`, introduce contract tests of implementation against documentation 1184 1185 ### BUG FIXES: 1186 1187 - [config] [\#3868](https://github.com/tendermint/tendermint/issues/3868) Move misplaced `max_msg_bytes` into mempool section (@bluele) 1188 - [rpc] [\#3910](https://github.com/tendermint/tendermint/pull/3910) Fix DATA RACE in HTTP client (@gchaincl) 1189 - [store] [\#3893](https://github.com/tendermint/tendermint/issues/3893) Fix "Unregistered interface types.Evidence" panic 1190 1191 ## v0.32.2 1192 1193 *July 31, 2019* 1194 1195 Special thanks to external contributors on this release: 1196 @ruseinov, @bluele, @guagualvcha 1197 1198 ### BREAKING CHANGES: 1199 1200 - Go API 1201 - [libs] [\#3811](https://github.com/tendermint/tendermint/issues/3811) Remove `db` from libs in favor of `https://github.com/tendermint/tm-db` 1202 1203 ### FEATURES: 1204 1205 - [blockchain] [\#3561](https://github.com/tendermint/tendermint/issues/3561) Add early version of the new blockchain reactor, which is supposed to be more modular and testable compared to the old version. To try it, you'll have to change `version` in the config file, [here](https://github.com/tendermint/tendermint/blob/master/config/toml.go#L303) NOTE: It's not ready for a production yet. For further information, see [ADR-40](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-040-blockchain-reactor-refactor.md) & [ADR-43](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-043-blockchain-riri-org.md) 1206 - [mempool] [\#3826](https://github.com/tendermint/tendermint/issues/3826) Make `max_msg_bytes` configurable(@bluele) 1207 - [node] [\#3846](https://github.com/tendermint/tendermint/pull/3846) Allow replacing existing p2p.Reactor(s) using [`CustomReactors` 1208 option](https://godoc.org/github.com/tendermint/tendermint/node#CustomReactors). 1209 Warning: beware of accidental name clashes. Here is the list of existing 1210 reactors: MEMPOOL, BLOCKCHAIN, CONSENSUS, EVIDENCE, PEX. 1211 - [rpc] [\#3818](https://github.com/tendermint/tendermint/issues/3818) Make `max_body_bytes` and `max_header_bytes` configurable(@bluele) 1212 - [rpc] [\#2252](https://github.com/tendermint/tendermint/issues/2252) Add `/broadcast_evidence` endpoint to submit double signing and other types of evidence 1213 1214 ### IMPROVEMENTS: 1215 1216 - [abci] [\#3809](https://github.com/tendermint/tendermint/issues/3809) Recover from application panics in `server/socket_server.go` to allow socket cleanup (@ruseinov) 1217 - [p2p] [\#3664](https://github.com/tendermint/tendermint/issues/3664) p2p/conn: reuse buffer when write/read from secret connection(@guagualvcha) 1218 - [p2p] [\#3834](https://github.com/tendermint/tendermint/issues/3834) Do not write 'Couldn't connect to any seeds' error log if there are no seeds in config file 1219 - [rpc] [\#3076](https://github.com/tendermint/tendermint/issues/3076) Improve transaction search performance 1220 1221 ### BUG FIXES: 1222 1223 - [p2p] [\#3644](https://github.com/tendermint/tendermint/issues/3644) Fix error logging for connection stop (@defunctzombie) 1224 - [rpc] [\#3813](https://github.com/tendermint/tendermint/issues/3813) Return err if page is incorrect (less than 0 or greater than total pages) 1225 1226 ## v0.32.1 1227 1228 *July 15, 2019* 1229 1230 Special thanks to external contributors on this release: 1231 @ParthDesai, @climber73, @jim380, @ashleyvega 1232 1233 This release contains a minor enhancement to the ABCI and some breaking changes to our libs folder, namely: 1234 - CheckTx requests include a `CheckTxType` enum that can be set to `Recheck` to indicate to the application that this transaction was already checked/validated and certain expensive operations (like checking signatures) can be skipped 1235 - Removed various functions from `libs` pkgs 1236 1237 ### BREAKING CHANGES: 1238 1239 - Go API 1240 1241 - [abci] [\#2127](https://github.com/tendermint/tendermint/issues/2127) The CheckTx and DeliverTx methods in the ABCI `Application` interface now take structs as arguments (RequestCheckTx and RequestDeliverTx, respectively), instead of just the raw tx bytes. This allows more information to be passed to these methods, for instance, indicating whether a tx has already been checked. 1242 - [libs] Remove unused `db/debugDB` and `common/colors.go` & `errors/errors.go` files (@marbar3778) 1243 - [libs] [\#2432](https://github.com/tendermint/tendermint/issues/2432) Remove unused `common/heap.go` file (@marbar3778) 1244 - [libs] Remove unused `date.go`, `io.go`. Remove `GoPath()`, `Prompt()` and `IsDirEmpty()` functions from `os.go` (@marbar3778) 1245 - [libs] Remove unused `FailRand()` func and minor clean up to `fail.go`(@marbar3778) 1246 1247 ### FEATURES: 1248 1249 - [node] Add variadic argument to `NewNode` to support functional options, allowing the Node to be more easily customized. 1250 - [node][\#3730](https://github.com/tendermint/tendermint/pull/3730) Add `CustomReactors` option to `NewNode` allowing caller to pass 1251 custom reactors to run inside Tendermint node (@ParthDesai) 1252 - [abci] [\#2127](https://github.com/tendermint/tendermint/issues/2127)RequestCheckTx has a new field, `CheckTxType`, which can take values of `CheckTxType_New` and `CheckTxType_Recheck`, indicating whether this is a new tx being checked for the first time or whether this tx is being rechecked after a block commit. This allows applications to skip certain expensive operations, like signature checking, if they've already been done once. see [docs](https://github.com/tendermint/tendermint/blob/eddb433d7c082efbeaf8974413a36641519ee895/docs/spec/abci/apps.md#mempool-connection) 1253 1254 ### IMPROVEMENTS: 1255 1256 - [rpc] [\#3700](https://github.com/tendermint/tendermint/issues/3700) Make possible to set absolute paths for TLS cert and key (@climber73) 1257 - [abci] [\#3513](https://github.com/tendermint/tendermint/issues/3513) Call the reqRes callback after the resCb so they always happen in the same order 1258 1259 ### BUG FIXES: 1260 1261 - [p2p] [\#3338](https://github.com/tendermint/tendermint/issues/3338) Prevent "sent next PEX request too soon" errors by not calling 1262 ensurePeers outside of ensurePeersRoutine 1263 - [behaviour] [\3772](https://github.com/tendermint/tendermint/pull/3772) Return correct reason in MessageOutOfOrder (@jim380) 1264 - [config] [\#3723](https://github.com/tendermint/tendermint/issues/3723) Add consensus_params to testnet config generation; document time_iota_ms (@ashleyvega) 1265 1266 1267 ## v0.32.0 1268 1269 *June 25, 2019* 1270 1271 Special thanks to external contributors on this release: 1272 @needkane, @SebastianElvis, @andynog, @Yawning, @wooparadog 1273 1274 This release contains breaking changes to our build and release processes, ABCI, 1275 and the RPC, namely: 1276 - Use Go modules instead of dep 1277 - Bring active development to the `master` Github branch 1278 - ABCI Tags are now Events - see 1279 [docs](https://github.com/tendermint/tendermint/blob/60827f75623b92eff132dc0eff5b49d2025c591e/docs/spec/abci/abci.md#events) 1280 - Bind RPC to localhost by default, not to the public interface [UPGRADING/RPC_Changes](./UPGRADING.md#rpc_changes) 1281 1282 ### BREAKING CHANGES: 1283 1284 * CLI/RPC/Config 1285 - [cli] [\#3613](https://github.com/tendermint/tendermint/issues/3613) Switch from golang/dep to Go Modules to resolve dependencies: 1286 It is recommended to switch to Go Modules if your project has tendermint as 1287 a dependency. Read more on Modules here: 1288 https://github.com/golang/go/wiki/Modules 1289 - [config] [\#3632](https://github.com/tendermint/tendermint/pull/3632) Removed `leveldb` as generic 1290 option for `db_backend`. Must be `goleveldb` or `cleveldb`. 1291 - [rpc] [\#3616](https://github.com/tendermint/tendermint/issues/3616) Fix field names for `/block_results` response (eg. `results.DeliverTx` 1292 -> `results.deliver_tx`). See docs for details. 1293 - [rpc] [\#3724](https://github.com/tendermint/tendermint/issues/3724) RPC now binds to `127.0.0.1` by default instead of `0.0.0.0` 1294 1295 * Apps 1296 - [abci] [\#1859](https://github.com/tendermint/tendermint/issues/1859) `ResponseCheckTx`, `ResponseDeliverTx`, `ResponseBeginBlock`, 1297 and `ResponseEndBlock` now include `Events` instead of `Tags`. Each `Event` 1298 contains a `type` and a list of `attributes` (list of key-value pairs) 1299 allowing for inclusion of multiple distinct events in each response. 1300 1301 * Go API 1302 - [abci] [\#3193](https://github.com/tendermint/tendermint/issues/3193) Use RequestDeliverTx and RequestCheckTx in the ABCI 1303 Application interface 1304 - [libs/db] [\#3632](https://github.com/tendermint/tendermint/pull/3632) Removed deprecated `LevelDBBackend` const 1305 If you have `db_backend` set to `leveldb` in your config file, please 1306 change it to `goleveldb` or `cleveldb`. 1307 - [p2p] [\#3521](https://github.com/tendermint/tendermint/issues/3521) Remove NewNetAddressStringWithOptionalID 1308 1309 * Blockchain Protocol 1310 1311 * P2P Protocol 1312 1313 ### FEATURES: 1314 1315 ### IMPROVEMENTS: 1316 - [abci/examples] [\#3659](https://github.com/tendermint/tendermint/issues/3659) Change validator update tx format in the `persistent_kvstore` to use base64 for pubkeys instead of hex (@needkane) 1317 - [consensus] [\#3656](https://github.com/tendermint/tendermint/issues/3656) Exit if SwitchToConsensus fails 1318 - [p2p] [\#3666](https://github.com/tendermint/tendermint/issues/3666) Add per channel telemetry to improve reactor observability 1319 - [rpc] [\#3686](https://github.com/tendermint/tendermint/pull/3686) `HTTPClient#Call` returns wrapped errors, so a caller could use `errors.Cause` to retrieve an error code. (@wooparadog) 1320 1321 ### BUG FIXES: 1322 - [libs/db] [\#3717](https://github.com/tendermint/tendermint/issues/3717) Fixed the BoltDB backend's Batch.Delete implementation (@Yawning) 1323 - [libs/db] [\#3718](https://github.com/tendermint/tendermint/issues/3718) Fixed the BoltDB backend's Get and Iterator implementation (@Yawning) 1324 - [node] [\#3716](https://github.com/tendermint/tendermint/issues/3716) Fix a bug where `nil` is recorded as node's address 1325 - [node] [\#3741](https://github.com/tendermint/tendermint/issues/3741) Fix profiler blocking the entire node 1326 1327 *Tendermint 0.31 release series has reached End-Of-Life and is no longer supported.* 1328 1329 ## v0.31.12 1330 1331 *April 6, 2020* 1332 1333 This security release fixes: 1334 1335 ### Denial of Service 1 1336 1337 Tendermint 0.33.2 and earlier does not limit the number of P2P connection requests. 1338 For each p2p connection, Tendermint allocates ~0.5MB. Even though this 1339 memory is garbage collected once the connection is terminated (due to duplicate 1340 IP or reaching a maximum number of inbound peers), temporary memory spikes can 1341 lead to OOM (Out-Of-Memory) exceptions. 1342 1343 Tendermint 0.33.3, 0.32.10, and 0.31.12 limit the total number of P2P incoming 1344 connection requests to to `p2p.max_num_inbound_peers + 1345 len(p2p.unconditional_peer_ids)`. 1346 1347 Notes: 1348 1349 - Tendermint does not rate limit P2P connection requests per IP (an attacker 1350 can saturate all the inbound slots); 1351 - Tendermint does not rate limit HTTP(S) requests. If you expose any RPC 1352 endpoints to the public, please make sure to put in place some protection 1353 (https://www.nginx.com/blog/rate-limiting-nginx/). We may implement this in 1354 the future ([\#1696](https://github.com/tendermint/tendermint/issues/1696)). 1355 1356 ### Denial of Service 2 1357 1358 Tendermint 0.33.2 and earlier does not reclaim `activeID` of a peer after it's 1359 removed in `Mempool` reactor. This does not happen all the time. It only 1360 happens when a connection fails (for any reason) before the Peer is created and 1361 added to all reactors. `RemovePeer` is therefore called before `AddPeer`, which 1362 leads to always growing memory (`activeIDs` map). The `activeIDs` map has a 1363 maximum size of 65535 and the node will panic if this map reaches the maximum. 1364 An attacker can create a lot of connection attempts (exploiting Denial of 1365 Service 1), which ultimately will lead to the node panicking. 1366 1367 Tendermint 0.33.3, 0.32.10, and 0.31.12 claim `activeID` for a peer in `InitPeer`, 1368 which is executed before `MConnection` is started. 1369 1370 Notes: 1371 1372 - `InitPeer` function was added to all reactors to combat a similar issue - 1373 [\#3338](https://github.com/tendermint/tendermint/issues/3338); 1374 - Denial of Service 2 is independent of Denial of Service 1 and can be executed 1375 without it. 1376 1377 **All clients are recommended to upgrade** 1378 1379 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for finding 1380 and reporting this. 1381 1382 ### SECURITY: 1383 1384 - [mempool] Reserve IDs in InitPeer instead of AddPeer (@tessr) 1385 - [p2p] Limit the number of incoming connections (@melekes) 1386 1387 ## v0.31.11 1388 1389 *October 18, 2019* 1390 1391 This security release fixes a vulnerability found in the `consensus` package, 1392 where an attacker could construct a `BlockPartMessage` message in such a way 1393 that it will lead to consensus failure. A few similar issues have been 1394 identified and fixed here. 1395 1396 **All clients are recommended to upgrade** 1397 1398 Special thanks to [elvishacker](https://hackerone.com/elvishacker) for finding 1399 and reporting this. 1400 1401 ### BREAKING CHANGES: 1402 1403 - Go API 1404 - [consensus] Modify `WAL#Write` and `WAL#WriteSync` to return an error if 1405 they fail to write a message 1406 1407 ### SECURITY: 1408 1409 - [consensus] Validate incoming messages more throughly 1410 1411 ## v0.31.10 1412 1413 *October 8, 2019* 1414 1415 The previous patch was insufficient because the attacker could still find a way 1416 to submit a `nil` pubkey by constructing a `PubKeyMultisigThreshold` pubkey 1417 with `nil` subpubkeys for example. 1418 1419 This release provides multiple fixes, which include recovering from panics when 1420 accepting new peers and only allowing `ed25519` pubkeys. 1421 1422 **All clients are recommended to upgrade** 1423 1424 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for pointing 1425 this out. 1426 1427 ### SECURITY: 1428 1429 - [p2p] [\#4030](https://github.com/tendermint/tendermint/issues/4030) Only allow ed25519 pubkeys when connecting 1430 1431 ## v0.31.9 1432 1433 *October 1, 2019* 1434 1435 This release fixes a major security vulnerability found in the `p2p` package. 1436 All clients are recommended to upgrade. See 1437 [\#4030](https://github.com/tendermint/tendermint/issues/4030) for details. 1438 1439 Special thanks to [fudongbai](https://hackerone.com/fudongbai) for discovering 1440 and reporting this issue. 1441 1442 ### SECURITY: 1443 1444 - [p2p] [\#4030](https://github.com/tendermint/tendermint/issues/4030) Fix for panic on nil public key send to a peer 1445 1446 ### BUG FIXES: 1447 1448 - [node] [\#3716](https://github.com/tendermint/tendermint/issues/3716) Fix a bug where `nil` is recorded as node's address 1449 - [node] [\#3741](https://github.com/tendermint/tendermint/issues/3741) Fix profiler blocking the entire node 1450 1451 ## v0.31.8 1452 1453 *July 29, 2019* 1454 1455 This releases fixes one bug in the PEX reactor and adds a `recover` to the Go's 1456 ABCI server, which allows it to properly cleanup. 1457 1458 ### IMPROVEMENTS: 1459 - [abci] [\#3809](https://github.com/tendermint/tendermint/issues/3809) Recover from application panics in `server/socket_server.go` to allow socket cleanup (@ruseinov) 1460 1461 ### BUG FIXES: 1462 - [p2p] [\#3338](https://github.com/tendermint/tendermint/issues/3338) Prevent "sent next PEX request too soon" errors by not calling 1463 ensurePeers outside of ensurePeersRoutine 1464 1465 ## v0.31.7 1466 1467 *June 3, 2019* 1468 1469 This releases fixes a regression in the mempool introduced in v0.31.6. 1470 The regression caused the invalid committed txs to be proposed in blocks over and 1471 over again. 1472 1473 ### BUG FIXES: 1474 - [mempool] [\#3699](https://github.com/tendermint/tendermint/issues/3699) Remove all committed txs from the mempool. 1475 This reverts the change from v0.31.6 where we only remove valid txs from the mempool. 1476 Note this means malicious proposals can cause txs to be dropped from the 1477 mempools of other nodes by including them in blocks before they are valid. 1478 See [\#3322](https://github.com/tendermint/tendermint/issues/3322). 1479 1480 ## v0.31.6 1481 1482 *May 31st, 2019* 1483 1484 This release contains many fixes and improvements, primarily for p2p functionality. 1485 It also fixes a security issue in the mempool package. 1486 1487 With this release, Tendermint now supports [boltdb](https://github.com/etcd-io/bbolt), although 1488 in experimental mode. Feel free to try and report to us any findings/issues. 1489 Note also that the build tags for compiling CLevelDB have changed. 1490 1491 Special thanks to external contributors on this release: 1492 @guagualvcha, @james-ray, @gregdhill, @climber73, @yutianwu, 1493 @carlosflrs, @defunctzombie, @leoluk, @needkane, @CrocdileChan 1494 1495 ### BREAKING CHANGES: 1496 1497 * Go API 1498 - [libs/common] Removed deprecated `PanicSanity`, `PanicCrisis`, 1499 `PanicConsensus` and `PanicQ` 1500 - [mempool, state] [\#2659](https://github.com/tendermint/tendermint/issues/2659) `Mempool` now an interface that lives in the mempool package. 1501 See issue and PR for more details. 1502 - [p2p] [\#3346](https://github.com/tendermint/tendermint/issues/3346) `Reactor#InitPeer` method is added to `Reactor` interface 1503 - [types] [\#1648](https://github.com/tendermint/tendermint/issues/1648) `Commit#VoteSignBytes` signature was changed 1504 1505 ### FEATURES: 1506 - [node] [\#2659](https://github.com/tendermint/tendermint/issues/2659) Add `node.Mempool()` method, which allows you to access mempool 1507 - [libs/db] [\#3604](https://github.com/tendermint/tendermint/pull/3604) Add experimental support for bolt db (etcd's fork of bolt) (@CrocdileChan) 1508 1509 ### IMPROVEMENTS: 1510 - [cli] [\#3585](https://github.com/tendermint/tendermint/issues/3585) Add `--keep-addr-book` option to `unsafe_reset_all` cmd to not 1511 clear the address book (@climber73) 1512 - [cli] [\#3160](https://github.com/tendermint/tendermint/issues/3160) Add 1513 `--config=<path-to-config>` option to `testnet` cmd (@gregdhill) 1514 - [cli] [\#3661](https://github.com/tendermint/tendermint/pull/3661) Add 1515 `--hostname-suffix`, `--hostname` and `--random-monikers` options to `testnet` 1516 cmd for greater peer address/identity generation flexibility. 1517 - [crypto] [\#3672](https://github.com/tendermint/tendermint/issues/3672) Return more info in the `AddSignatureFromPubKey` error 1518 - [cs/replay] [\#3460](https://github.com/tendermint/tendermint/issues/3460) Check appHash for each block 1519 - [libs/db] [\#3611](https://github.com/tendermint/tendermint/issues/3611) Conditional compilation 1520 * Use `cleveldb` tag instead of `gcc` to compile Tendermint with CLevelDB or 1521 use `make build_c` / `make install_c` (full instructions can be found at 1522 https://docs.tendermint.com/master/introduction/install.html#compile-with-cleveldb-support) 1523 * Use `boltdb` tag to compile Tendermint with bolt db 1524 - [node] [\#3362](https://github.com/tendermint/tendermint/issues/3362) Return an error if `persistent_peers` list is invalid (except 1525 when IP lookup fails) 1526 - [p2p] [\#3463](https://github.com/tendermint/tendermint/pull/3463) Do not log "Can't add peer's address to addrbook" error for a private peer (@guagualvcha) 1527 - [p2p] [\#3531](https://github.com/tendermint/tendermint/issues/3531) Terminate session on nonce wrapping (@climber73) 1528 - [pex] [\#3647](https://github.com/tendermint/tendermint/pull/3647) Dial seeds, if any, instead of crawling peers first (@defunctzombie) 1529 - [rpc] [\#3534](https://github.com/tendermint/tendermint/pull/3534) Add support for batched requests/responses in JSON RPC 1530 - [rpc] [\#3362](https://github.com/tendermint/tendermint/issues/3362) `/dial_seeds` & `/dial_peers` return errors if addresses are 1531 incorrect (except when IP lookup fails) 1532 1533 ### BUG FIXES: 1534 - [consensus] [\#3067](https://github.com/tendermint/tendermint/issues/3067) Fix replay from appHeight==0 with validator set changes (@james-ray) 1535 - [consensus] [\#3304](https://github.com/tendermint/tendermint/issues/3304) Create a peer state in consensus reactor before the peer 1536 is started (@guagualvcha) 1537 - [lite] [\#3669](https://github.com/tendermint/tendermint/issues/3669) Add context parameter to RPC Handlers in proxy routes (@yutianwu) 1538 - [mempool] [\#3322](https://github.com/tendermint/tendermint/issues/3322) When a block is committed, only remove committed txs from the mempool 1539 that were valid (ie. `ResponseDeliverTx.Code == 0`) 1540 - [p2p] [\#3338](https://github.com/tendermint/tendermint/issues/3338) Ensure `RemovePeer` is always called before `InitPeer` (upon a peer 1541 reconnecting to our node) 1542 - [p2p] [\#3532](https://github.com/tendermint/tendermint/issues/3532) Limit the number of attempts to connect to a peer in seed mode 1543 to 16 (as a result, the node will stop retrying after a 35 hours time window) 1544 - [p2p] [\#3362](https://github.com/tendermint/tendermint/issues/3362) Allow inbound peers to be persistent, including for seed nodes. 1545 - [pex] [\#3603](https://github.com/tendermint/tendermint/pull/3603) Dial seeds when addrbook needs more addresses (@defunctzombie) 1546 1547 ### OTHERS: 1548 - [networks] fixes ansible integration script (@carlosflrs) 1549 1550 ## v0.31.5 1551 1552 *April 16th, 2019* 1553 1554 This release fixes a regression from v0.31.4 where, in existing chains that 1555 were upgraded, `/validators` could return an empty validator set. This is true 1556 for almost all heights, given the validator set remains the same. 1557 1558 Special thanks to external contributors on this release: 1559 @brapse, @guagualvcha, @dongsam, @phucc 1560 1561 ### IMPROVEMENTS: 1562 1563 - [libs/common] `CMap`: slight optimization in `Keys()` and `Values()` (@phucc) 1564 - [gitignore] gitignore: add .vendor-new (@dongsam) 1565 1566 ### BUG FIXES: 1567 1568 - [state] [\#3537](https://github.com/tendermint/tendermint/pull/3537#issuecomment-482711833) 1569 `LoadValidators`: do not return an empty validator set 1570 - [blockchain] [\#3457](https://github.com/tendermint/tendermint/issues/3457) 1571 Fix "peer did not send us anything" in `fast_sync` mode when under high pressure 1572 1573 ## v0.31.4 1574 1575 *April 12th, 2019* 1576 1577 This release fixes a regression from v0.31.3 which used the peer's `SocketAddr` to add the peer to 1578 the address book. This swallowed the peer's self-reported port which is important in case of reconnect. 1579 It brings back `NetAddress()` to `NodeInfo` and uses it instead of `SocketAddr` for adding peers. 1580 Additionally, it improves response time on the `/validators` or `/status` RPC endpoints. 1581 As a side-effect it makes these RPC endpoint more difficult to DoS and fixes a performance degradation in `ExecCommitBlock`. 1582 Also, it contains an [ADR](https://github.com/tendermint/tendermint/pull/3539) that proposes decoupling the 1583 responsibility for peer behaviour from the `p2p.Switch` (by @brapse). 1584 1585 Special thanks to external contributors on this release: 1586 @brapse, @guagualvcha, @mydring 1587 1588 ### IMPROVEMENTS: 1589 1590 - [p2p] [\#3463](https://github.com/tendermint/tendermint/pull/3463) Do not log "Can't add peer's address to addrbook" error for a private peer 1591 - [p2p] [\#3547](https://github.com/tendermint/tendermint/pull/3547) Fix a couple of annoying typos (@mdyring) 1592 1593 ### BUG FIXES: 1594 1595 - [docs] [\#3514](https://github.com/tendermint/tendermint/issues/3514) Fix block.Header.Time description (@melekes) 1596 - [p2p] [\#2716](https://github.com/tendermint/tendermint/issues/2716) Check if we're already connected to peer right before dialing it (@melekes) 1597 - [p2p] [\#3545](https://github.com/tendermint/tendermint/issues/3545) Add back `NetAddress()` to `NodeInfo` and use it instead of peer's `SocketAddr()` when adding a peer to the `PEXReactor` (potential fix for [\#3532](https://github.com/tendermint/tendermint/issues/3532)) 1598 - [state] [\#3438](https://github.com/tendermint/tendermint/pull/3438) 1599 Persist validators every 100000 blocks even if no changes to the set 1600 occurred (@guagualvcha). This 1601 1) Prevents possible DoS attack using `/validators` or `/status` RPC 1602 endpoints. Before response time was growing linearly with height if no 1603 changes were made to the validator set. 1604 2) Fixes performance degradation in `ExecCommitBlock` where we call 1605 `LoadValidators` for each `Evidence` in the block. 1606 1607 ## v0.31.3 1608 1609 *April 1st, 2019* 1610 1611 This release includes two security sensitive fixes: it ensures generated private 1612 keys are valid, and it prevents certain DNS lookups that would cause the node to 1613 panic if the lookup failed. 1614 1615 ### BREAKING CHANGES: 1616 * Go API 1617 - [crypto/secp256k1] [\#3439](https://github.com/tendermint/tendermint/issues/3439) 1618 The `secp256k1.GenPrivKeySecp256k1` function has changed to guarantee that it returns a valid key, which means it 1619 will return a different private key than in previous versions for the same secret. 1620 1621 ### BUG FIXES: 1622 1623 - [crypto/secp256k1] [\#3439](https://github.com/tendermint/tendermint/issues/3439) 1624 Ensure generated private keys are valid by randomly sampling until a valid key is found. 1625 Previously, it was possible (though rare!) to generate keys that exceeded the curve order. 1626 Such keys would lead to invalid signatures. 1627 - [p2p] [\#3522](https://github.com/tendermint/tendermint/issues/3522) Memoize 1628 socket address in peer connections to avoid DNS lookups. Previously, failed 1629 DNS lookups could cause the node to panic. 1630 1631 ## v0.31.2 1632 1633 *March 30th, 2019* 1634 1635 This release fixes a regression from v0.31.1 where Tendermint panics under 1636 mempool load for external ABCI apps. 1637 1638 Special thanks to external contributors on this release: 1639 @guagualvcha 1640 1641 ### BREAKING CHANGES: 1642 1643 * CLI/RPC/Config 1644 1645 * Apps 1646 1647 * Go API 1648 - [libs/autofile] [\#3504](https://github.com/tendermint/tendermint/issues/3504) Remove unused code in autofile package. Deleted functions: `Group.Search`, `Group.FindLast`, `GroupReader.ReadLine`, `GroupReader.PushLine`, `MakeSimpleSearchFunc` (@guagualvcha) 1649 1650 * Blockchain Protocol 1651 1652 * P2P Protocol 1653 1654 ### FEATURES: 1655 1656 ### IMPROVEMENTS: 1657 1658 - [circle] [\#3497](https://github.com/tendermint/tendermint/issues/3497) Move release management to CircleCI 1659 1660 ### BUG FIXES: 1661 1662 - [mempool] [\#3512](https://github.com/tendermint/tendermint/issues/3512) Fix panic from concurrent access to txsMap, a regression for external ABCI apps introduced in v0.31.1 1663 1664 ## v0.31.1 1665 1666 *March 27th, 2019* 1667 1668 This release contains a major improvement for the mempool that reduce the amount of sent data by about 30% 1669 (see some numbers below). 1670 It also fixes a memory leak in the mempool and adds TLS support to the RPC server by providing a certificate and key in the config. 1671 1672 Special thanks to external contributors on this release: 1673 @brapse, @guagualvcha, @HaoyangLiu, @needkane, @TraceBundy 1674 1675 ### BREAKING CHANGES: 1676 1677 * CLI/RPC/Config 1678 1679 * Apps 1680 1681 * Go API 1682 - [crypto] [\#3426](https://github.com/tendermint/tendermint/pull/3426) Remove `Ripemd160` helper method (@needkane) 1683 - [libs/common] [\#3429](https://github.com/tendermint/tendermint/pull/3429) Remove `RepeatTimer` (also `TimerMaker` and `Ticker` interface) 1684 - [rpc/client] [\#3458](https://github.com/tendermint/tendermint/issues/3458) Include `NetworkClient` interface into `Client` interface 1685 - [types] [\#3448](https://github.com/tendermint/tendermint/issues/3448) Remove method `PB2TM.ConsensusParams` 1686 1687 * Blockchain Protocol 1688 1689 * P2P Protocol 1690 1691 ### FEATURES: 1692 1693 - [rpc] [\#3419](https://github.com/tendermint/tendermint/issues/3419) Start HTTPS server if `rpc.tls_cert_file` and `rpc.tls_key_file` are provided in the config (@guagualvcha) 1694 1695 ### IMPROVEMENTS: 1696 1697 - [docs] [\#3140](https://github.com/tendermint/tendermint/issues/3140) Formalize proposer election algorithm properties 1698 - [docs] [\#3482](https://github.com/tendermint/tendermint/issues/3482) Fix broken links (@brapse) 1699 - [mempool] [\#2778](https://github.com/tendermint/tendermint/issues/2778) No longer send txs back to peers who sent it to you. 1700 Also, limit to 65536 active peers. 1701 This vastly improves the bandwidth consumption of nodes. 1702 For instance, for a 4 node localnet, in a test sending 250byte txs for 120 sec. at 500 txs/sec (total of 15MB): 1703 - total bytes received from 1st node: 1704 - before: 42793967 (43MB) 1705 - after: 30003256 (30MB) 1706 - total bytes sent to 1st node: 1707 - before: 30569339 (30MB) 1708 - after: 19304964 (19MB) 1709 - [p2p] [\#3475](https://github.com/tendermint/tendermint/issues/3475) Simplify `GetSelectionWithBias` for addressbook (@guagualvcha) 1710 - [rpc/lib/client] [\#3430](https://github.com/tendermint/tendermint/issues/3430) Disable compression for HTTP client to prevent GZIP-bomb DoS attacks (@guagualvcha) 1711 1712 ### BUG FIXES: 1713 1714 - [blockchain] [\#2699](https://github.com/tendermint/tendermint/issues/2699) Update the maxHeight when a peer is removed 1715 - [mempool] [\#3478](https://github.com/tendermint/tendermint/issues/3478) Fix memory-leak related to `broadcastTxRoutine` (@HaoyangLiu) 1716 1717 1718 ## v0.31.0 1719 1720 *March 16th, 2019* 1721 1722 Special thanks to external contributors on this release: 1723 @danil-lashin, @guagualvcha, @siburu, @silasdavis, @srmo, @Stumble, @svenstaro 1724 1725 This release is primarily about the new pubsub implementation, dubbed `pubsub 2.0`, and related changes, 1726 like configurable limits on the number of active RPC subscriptions at a time (`max_subscription_clients`). 1727 Pubsub 2.0 is an improved version of the older pubsub that is non-blocking and has a nicer API. 1728 Note the improved pubsub API also resulted in some improvements to the HTTPClient interface and the API for WebSocket subscriptions. 1729 This release also adds a configurable limit to the mempool size (`max_txs_bytes`, default 1GB) 1730 and a configurable timeout for the `/broadcast_tx_commit` endpoint. 1731 1732 See the [v0.31.0 1733 Milestone](https://github.com/tendermint/tendermint/milestone/19?closed=1) for 1734 more details. 1735 1736 ### BREAKING CHANGES: 1737 1738 * CLI/RPC/Config 1739 - [config] [\#2920](https://github.com/tendermint/tendermint/issues/2920) Remove `consensus.blocktime_iota` parameter 1740 - [rpc] [\#3227](https://github.com/tendermint/tendermint/issues/3227) New PubSub design does not block on clients when publishing 1741 messages. Slow clients may miss messages and receive an error, terminating 1742 the subscription. 1743 - [rpc] [\#3269](https://github.com/tendermint/tendermint/issues/2826) Limit number of unique clientIDs with open subscriptions. Configurable via `rpc.max_subscription_clients` 1744 - [rpc] [\#3269](https://github.com/tendermint/tendermint/issues/2826) Limit number of unique queries a given client can subscribe to at once. Configurable via `rpc.max_subscriptions_per_client`. 1745 - [rpc] [\#3435](https://github.com/tendermint/tendermint/issues/3435) Default ReadTimeout and WriteTimeout changed to 10s. WriteTimeout can increased by setting `rpc.timeout_broadcast_tx_commit` in the config. 1746 - [rpc/client] [\#3269](https://github.com/tendermint/tendermint/issues/3269) Update `EventsClient` interface to reflect new pubsub/eventBus API [ADR-33](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-033-pubsub.md). This includes `Subscribe`, `Unsubscribe`, and `UnsubscribeAll` methods. 1747 1748 * Apps 1749 - [abci] [\#3403](https://github.com/tendermint/tendermint/issues/3403) Remove `time_iota_ms` from BlockParams. This is a 1750 ConsensusParam but need not be exposed to the app for now. 1751 - [abci] [\#2920](https://github.com/tendermint/tendermint/issues/2920) Rename `consensus_params.block_size` to `consensus_params.block` in ABCI ConsensusParams 1752 1753 * Go API 1754 - [libs/common] TrapSignal accepts logger as a first parameter and does not block anymore 1755 * previously it was dumping "captured ..." msg to os.Stdout 1756 * TrapSignal should not be responsible for blocking thread of execution 1757 - [libs/db] [\#3397](https://github.com/tendermint/tendermint/pull/3397) Add possibility to `Close()` `Batch` to prevent memory leak when using ClevelDB. (@Stumble) 1758 - [types] [\#3354](https://github.com/tendermint/tendermint/issues/3354) Remove RoundState from EventDataRoundState 1759 - [rpc] [\#3435](https://github.com/tendermint/tendermint/issues/3435) `StartHTTPServer` / `StartHTTPAndTLSServer` now require a Config (use `rpcserver.DefaultConfig`) 1760 1761 * Blockchain Protocol 1762 1763 * P2P Protocol 1764 1765 ### FEATURES: 1766 - [config] [\#3269](https://github.com/tendermint/tendermint/issues/2826) New configuration values for controlling RPC subscriptions: 1767 - `rpc.max_subscription_clients` sets the maximum number of unique clients 1768 with open subscriptions 1769 - `rpc.max_subscriptions_per_client`sets the maximum number of unique 1770 subscriptions from a given client 1771 - `rpc.timeout_broadcast_tx_commit` sets the time to wait for a tx to be committed during `/broadcast_tx_commit` 1772 - [types] [\#2920](https://github.com/tendermint/tendermint/issues/2920) Add `time_iota_ms` to block's consensus parameters (not exposed to the application) 1773 - [lite] [\#3269](https://github.com/tendermint/tendermint/issues/3269) Add `/unsubscribe_all` endpoint to unsubscribe from all events 1774 - [mempool] [\#3079](https://github.com/tendermint/tendermint/issues/3079) Bound mempool memory usage via the `mempool.max_txs_bytes` configuration value. Set to 1GB by default. The mempool's current `txs_total_bytes` is exposed via `total_bytes` field in 1775 `/num_unconfirmed_txs` and `/unconfirmed_txs` RPC endpoints. 1776 1777 ### IMPROVEMENTS: 1778 - [all] [\#3385](https://github.com/tendermint/tendermint/issues/3385), [\#3386](https://github.com/tendermint/tendermint/issues/3386) Various linting improvements 1779 - [crypto] [\#3371](https://github.com/tendermint/tendermint/issues/3371) Copy in secp256k1 package from go-ethereum instead of importing 1780 go-ethereum (@silasdavis) 1781 - [deps] [\#3382](https://github.com/tendermint/tendermint/issues/3382) Don't pin repos without releases 1782 - [deps] [\#3357](https://github.com/tendermint/tendermint/issues/3357), [\#3389](https://github.com/tendermint/tendermint/issues/3389), [\#3392](https://github.com/tendermint/tendermint/issues/3392) Update gogo/protobuf, golang/protobuf, levigo, golang.org/x/crypto 1783 - [libs/common] [\#3238](https://github.com/tendermint/tendermint/issues/3238) exit with zero (0) code upon receiving SIGTERM/SIGINT 1784 - [libs/db] [\#3378](https://github.com/tendermint/tendermint/issues/3378) CLevelDB#Stats now returns the following properties: 1785 - leveldb.num-files-at-level{n} 1786 - leveldb.stats 1787 - leveldb.sstables 1788 - leveldb.blockpool 1789 - leveldb.cachedblock 1790 - leveldb.openedtables 1791 - leveldb.alivesnaps 1792 - leveldb.aliveiters 1793 - [privval] [\#3351](https://github.com/tendermint/tendermint/pull/3351) First part of larger refactoring that clarifies and separates concerns in the privval package. 1794 1795 ### BUG FIXES: 1796 - [blockchain] [\#3358](https://github.com/tendermint/tendermint/pull/3358) Fix timer leak in `BlockPool` (@guagualvcha) 1797 - [cmd] [\#3408](https://github.com/tendermint/tendermint/issues/3408) Fix `testnet` command's panic when creating non-validator configs (using `--n` flag) (@srmo) 1798 - [libs/db/remotedb/grpcdb] [\#3402](https://github.com/tendermint/tendermint/issues/3402) Close Iterator/ReverseIterator after use 1799 - [libs/pubsub] [\#951](https://github.com/tendermint/tendermint/issues/951), [\#1880](https://github.com/tendermint/tendermint/issues/1880) Use non-blocking send when dispatching messages [ADR-33](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-033-pubsub.md) 1800 - [lite] [\#3364](https://github.com/tendermint/tendermint/issues/3364) Fix `/validators` and `/abci_query` proxy endpoints 1801 (@guagualvcha) 1802 - [p2p/conn] [\#3347](https://github.com/tendermint/tendermint/issues/3347) Reject all-zero shared secrets in the Diffie-Hellman step of secret-connection 1803 - [p2p] [\#3369](https://github.com/tendermint/tendermint/issues/3369) Do not panic when filter times out 1804 - [p2p] [\#3359](https://github.com/tendermint/tendermint/pull/3359) Fix reconnecting report duplicate ID error due to race condition between adding peer to peerSet and starting it (@guagualvcha) 1805 1806 ## v0.30.2 1807 1808 *March 10th, 2019* 1809 1810 This release fixes a CLevelDB memory leak. It was happening because we were not 1811 closing the WriteBatch object after use. See [levigo's 1812 godoc](https://godoc.org/github.com/jmhodges/levigo#WriteBatch.Close) for the 1813 Close method. Special thanks goes to @Stumble who both reported an issue in 1814 [cosmos-sdk](https://github.com/cosmos/cosmos-sdk/issues/3842) and provided a 1815 fix here. 1816 1817 ### BREAKING CHANGES: 1818 1819 * Go API 1820 - [libs/db] [\#3842](https://github.com/cosmos/cosmos-sdk/issues/3842) Add Close() method to Batch interface (@Stumble) 1821 1822 ### BUG FIXES: 1823 - [libs/db] [\#3842](https://github.com/cosmos/cosmos-sdk/issues/3842) Fix CLevelDB memory leak (@Stumble) 1824 1825 ## v0.30.1 1826 1827 *February 20th, 2019* 1828 1829 This release fixes a consensus halt and a DataCorruptionError after restart 1830 discovered in `game_of_stakes_6`. It also fixes a security issue in the p2p 1831 handshake by authenticating the NetAddress.ID of the peer we're dialing. 1832 1833 ### IMPROVEMENTS: 1834 1835 * [config] [\#3291](https://github.com/tendermint/tendermint/issues/3291) Make 1836 config.ResetTestRootWithChainID() create concurrency-safe test directories. 1837 1838 ### BUG FIXES: 1839 1840 * [consensus] [\#3295](https://github.com/tendermint/tendermint/issues/3295) 1841 Flush WAL on stop to prevent data corruption during graceful shutdown. 1842 * [consensus] [\#3302](https://github.com/tendermint/tendermint/issues/3302) 1843 Fix possible halt by resetting TriggeredTimeoutPrecommit before starting next height. 1844 * [rpc] [\#3251](https://github.com/tendermint/tendermint/issues/3251) Fix 1845 `/net_info#peers#remote_ip` format. New format spec: 1846 * dotted decimal ("192.0.2.1"), if ip is an IPv4 or IP4-mapped IPv6 address 1847 * IPv6 ("2001:db8::1"), if ip is a valid IPv6 address 1848 * [cmd] [\#3314](https://github.com/tendermint/tendermint/issues/3314) Return 1849 an error on `show_validator` when the private validator file does not exist. 1850 * [p2p] [\#3010](https://github.com/tendermint/tendermint/issues/3010#issuecomment-464287627) 1851 Authenticate a peer against its NetAddress.ID when dialing. 1852 1853 ## v0.30.0 1854 1855 *February 8th, 2019* 1856 1857 This release fixes yet another issue with the proposer selection algorithm. 1858 We hope it's the last one, but we won't be surprised if it's not. 1859 We plan to one day expose the selection algorithm more directly to 1860 the application ([\#3285](https://github.com/tendermint/tendermint/issues/3285)), and even to support randomness ([\#763](https://github.com/tendermint/tendermint/issues/763)). 1861 For more, see issues marked 1862 [proposer-selection](https://github.com/tendermint/tendermint/labels/proposer-selection). 1863 1864 This release also includes a fix to prevent Tendermint from including the same 1865 piece of evidence in more than one block. This issue was reported by @chengwenxi in our 1866 [bug bounty program](https://hackerone.com/cosmos). 1867 1868 ### BREAKING CHANGES: 1869 1870 * Apps 1871 - [state] [\#3222](https://github.com/tendermint/tendermint/issues/3222) 1872 Duplicate updates for the same validator are forbidden. Apps must ensure 1873 that a given `ResponseEndBlock.ValidatorUpdates` contains only one entry per pubkey. 1874 1875 * Go API 1876 - [types] [\#3222](https://github.com/tendermint/tendermint/issues/3222) 1877 Remove `Add` and `Update` methods from `ValidatorSet` in favor of new 1878 `UpdateWithChangeSet`. This allows updates to be applied as a set, instead of 1879 one at a time. 1880 1881 * Block Protocol 1882 - [state] [\#3286](https://github.com/tendermint/tendermint/issues/3286) Blocks that include already committed evidence are invalid. 1883 1884 * P2P Protocol 1885 - [consensus] [\#3222](https://github.com/tendermint/tendermint/issues/3222) 1886 Validator updates are applied as a set, instead of one at a time, thus 1887 impacting the proposer priority calculation. This ensures that the proposer 1888 selection algorithm does not depend on the order of updates in 1889 `ResponseEndBlock.ValidatorUpdates`. 1890 1891 ### IMPROVEMENTS: 1892 - [crypto] [\#3279](https://github.com/tendermint/tendermint/issues/3279) Use `btcec.S256().N` directly instead of hard coding a copy. 1893 1894 ### BUG FIXES: 1895 - [state] [\#3222](https://github.com/tendermint/tendermint/issues/3222) Fix validator set updates so they are applied as a set, rather 1896 than one at a time. This makes the proposer selection algorithm independent of 1897 the order of updates in `ResponseEndBlock.ValidatorUpdates`. 1898 - [evidence] [\#3286](https://github.com/tendermint/tendermint/issues/3286) Don't add committed evidence to evidence pool. 1899 1900 ## v0.29.2 1901 1902 *February 7th, 2019* 1903 1904 Special thanks to external contributors on this release: 1905 @ackratos, @rickyyangz 1906 1907 **Note**: This release contains security sensitive patches in the `p2p` and 1908 `crypto` packages: 1909 - p2p: 1910 - Partial fix for MITM attacks on the p2p connection. MITM conditions may 1911 still exist. See [\#3010](https://github.com/tendermint/tendermint/issues/3010). 1912 - crypto: 1913 - Eliminate our fork of `btcd` and use the `btcd/btcec` library directly for 1914 native secp256k1 signing. Note we still modify the signature encoding to 1915 prevent malleability. 1916 - Support the libsecp256k1 library via CGo through the `go-ethereum/crypto/secp256k1` package. 1917 - Eliminate MixEntropy functions 1918 1919 ### BREAKING CHANGES: 1920 1921 * Go API 1922 - [crypto] [\#3278](https://github.com/tendermint/tendermint/issues/3278) Remove 1923 MixEntropy functions 1924 - [types] [\#3245](https://github.com/tendermint/tendermint/issues/3245) Commit uses `type CommitSig Vote` instead of `Vote` directly. 1925 In preparation for removing redundant fields from the commit [\#1648](https://github.com/tendermint/tendermint/issues/1648) 1926 1927 ### IMPROVEMENTS: 1928 - [consensus] [\#3246](https://github.com/tendermint/tendermint/issues/3246) Better logging and notes on recovery for corrupted WAL file 1929 - [crypto] [\#3163](https://github.com/tendermint/tendermint/issues/3163) Use ethereum's libsecp256k1 go-wrapper for signatures when cgo is available 1930 - [crypto] [\#3162](https://github.com/tendermint/tendermint/issues/3162) Wrap btcd instead of forking it to keep up with fixes (used if cgo is not available) 1931 - [makefile] [\#3233](https://github.com/tendermint/tendermint/issues/3233) Use golangci-lint instead of go-metalinter 1932 - [tools] [\#3218](https://github.com/tendermint/tendermint/issues/3218) Add go-deadlock tool to help detect deadlocks 1933 - [tools] [\#3106](https://github.com/tendermint/tendermint/issues/3106) Add tm-signer-harness test harness for remote signers 1934 - [tests] [\#3258](https://github.com/tendermint/tendermint/issues/3258) Fixed a bunch of non-deterministic test failures 1935 1936 ### BUG FIXES: 1937 - [node] [\#3186](https://github.com/tendermint/tendermint/issues/3186) EventBus and indexerService should be started before first block (for replay last block on handshake) execution (@ackratos) 1938 - [p2p] [\#3232](https://github.com/tendermint/tendermint/issues/3232) Fix infinite loop leading to addrbook deadlock for seed nodes 1939 - [p2p] [\#3247](https://github.com/tendermint/tendermint/issues/3247) Fix panic in SeedMode when calling FlushStop and OnStop 1940 concurrently 1941 - [p2p] [\#3040](https://github.com/tendermint/tendermint/issues/3040) Fix MITM on secret connection by checking low-order points 1942 - [privval] [\#3258](https://github.com/tendermint/tendermint/issues/3258) Fix race between sign requests and ping requests in socket that was causing messages to be corrupted 1943 1944 ## v0.29.1 1945 1946 *January 24, 2019* 1947 1948 Special thanks to external contributors on this release: 1949 @infinytum, @gauthamzz 1950 1951 This release contains two important fixes: one for p2p layer where we sometimes 1952 were not closing connections and one for consensus layer where consensus with 1953 no empty blocks (`create_empty_blocks = false`) could halt. 1954 1955 ### IMPROVEMENTS: 1956 - [pex] [\#3037](https://github.com/tendermint/tendermint/issues/3037) Only log "Reached max attempts to dial" once 1957 - [rpc] [\#3159](https://github.com/tendermint/tendermint/issues/3159) Expose 1958 `triggered_timeout_commit` in the `/dump_consensus_state` 1959 1960 ### BUG FIXES: 1961 - [consensus] [\#3199](https://github.com/tendermint/tendermint/issues/3199) Fix consensus halt with no empty blocks from not resetting triggeredTimeoutCommit 1962 - [p2p] [\#2967](https://github.com/tendermint/tendermint/issues/2967) Fix file descriptor leak 1963 1964 ## v0.29.0 1965 1966 *January 21, 2019* 1967 1968 Special thanks to external contributors on this release: 1969 @bradyjoestar, @kunaldhariwal, @gauthamzz, @hrharder 1970 1971 This release is primarily about making some breaking changes to 1972 the Block protocol version before Cosmos launch, and to fixing more issues 1973 in the proposer selection algorithm discovered on Cosmos testnets. 1974 1975 The Block protocol changes include using a standard Merkle tree format (RFC 6962), 1976 fixing some inconsistencies between field orders in Vote and Proposal structs, 1977 and constraining the hash of the ConsensusParams to include only a few fields. 1978 1979 The proposer selection algorithm saw significant progress, 1980 including a [formal proof by @cwgoes for the base-case in Idris](https://github.com/cwgoes/tm-proposer-idris) 1981 and a [much more detailed specification (still in progress) by 1982 @ancazamfir](https://github.com/tendermint/tendermint/pull/3140). 1983 1984 Fixes to the proposer selection algorithm include normalizing the proposer 1985 priorities to mitigate the effects of large changes to the validator set. 1986 That said, we just discovered [another bug](https://github.com/tendermint/tendermint/issues/3181), 1987 which will be fixed in the next breaking release. 1988 1989 While we are trying to stabilize the Block protocol to preserve compatibility 1990 with old chains, there may be some final changes yet to come before Cosmos 1991 launch as we continue to audit and test the software. 1992 1993 ### BREAKING CHANGES: 1994 1995 * CLI/RPC/Config 1996 1997 * Apps 1998 - [state] [\#3049](https://github.com/tendermint/tendermint/issues/3049) Total voting power of the validator set is upper bounded by 1999 `MaxInt64 / 8`. Apps must ensure they do not return changes to the validator 2000 set that cause this maximum to be exceeded. 2001 2002 * Go API 2003 - [node] [\#3082](https://github.com/tendermint/tendermint/issues/3082) MetricsProvider now requires you to pass a chain ID 2004 - [types] [\#2713](https://github.com/tendermint/tendermint/issues/2713) Rename `TxProof.LeafHash` to `TxProof.Leaf` 2005 - [crypto/merkle] [\#2713](https://github.com/tendermint/tendermint/issues/2713) `SimpleProof.Verify` takes a `leaf` instead of a 2006 `leafHash` and performs the hashing itself 2007 2008 * Blockchain Protocol 2009 * [crypto/merkle] [\#2713](https://github.com/tendermint/tendermint/issues/2713) Merkle trees now match the RFC 6962 specification 2010 * [types] [\#3078](https://github.com/tendermint/tendermint/issues/3078) Re-order Timestamp and BlockID in CanonicalVote so it's 2011 consistent with CanonicalProposal (BlockID comes 2012 first) 2013 * [types] [\#3165](https://github.com/tendermint/tendermint/issues/3165) Hash of ConsensusParams only includes BlockSize.MaxBytes and 2014 BlockSize.MaxGas 2015 2016 * P2P Protocol 2017 - [consensus] [\#3049](https://github.com/tendermint/tendermint/issues/3049) Normalize priorities to not exceed `2*TotalVotingPower` to mitigate unfair proposer selection 2018 heavily preferring earlier joined validators in the case of an early bonded large validator unbonding 2019 2020 ### FEATURES: 2021 2022 ### IMPROVEMENTS: 2023 - [rpc] [\#3065](https://github.com/tendermint/tendermint/issues/3065) Return maxPerPage (100), not defaultPerPage (30) if `per_page` is greater than the max 100. 2024 - [instrumentation] [\#3082](https://github.com/tendermint/tendermint/issues/3082) Add `chain_id` label for all metrics 2025 2026 ### BUG FIXES: 2027 - [crypto] [\#3164](https://github.com/tendermint/tendermint/issues/3164) Update `btcd` fork for rare signRFC6979 bug 2028 - [lite] [\#3171](https://github.com/tendermint/tendermint/issues/3171) Fix verifying large validator set changes 2029 - [log] [\#3125](https://github.com/tendermint/tendermint/issues/3125) Fix year format 2030 - [mempool] [\#3168](https://github.com/tendermint/tendermint/issues/3168) Limit tx size to fit in the max reactor msg size 2031 - [scripts] [\#3147](https://github.com/tendermint/tendermint/issues/3147) Fix json2wal for large block parts (@bradyjoestar) 2032 2033 ## v0.28.1 2034 2035 *January 18th, 2019* 2036 2037 Special thanks to external contributors on this release: 2038 @HaoyangLiu 2039 2040 ### BUG FIXES: 2041 - [consensus] Fix consensus halt from proposing blocks with too much evidence 2042 2043 ## v0.28.0 2044 2045 *January 16th, 2019* 2046 2047 Special thanks to external contributors on this release: 2048 @fmauricios, @gianfelipe93, @husio, @needkane, @srmo, @yutianwu 2049 2050 This release is primarily about upgrades to the `privval` system - 2051 separating the `priv_validator.json` into distinct config and data files, and 2052 refactoring the socket validator to support reconnections. 2053 2054 **Note:** Please backup your existing `priv_validator.json` before using this 2055 version. 2056 2057 See [UPGRADING.md](UPGRADING.md) for more details. 2058 2059 ### BREAKING CHANGES: 2060 2061 * CLI/RPC/Config 2062 - [cli] Removed `--proxy_app=dummy` option. Use `kvstore` (`persistent_kvstore`) instead. 2063 - [cli] Renamed `--proxy_app=nilapp` to `--proxy_app=noop`. 2064 - [config] [\#2992](https://github.com/tendermint/tendermint/issues/2992) `allow_duplicate_ip` is now set to false 2065 - [privval] [\#1181](https://github.com/tendermint/tendermint/issues/1181) Split `priv_validator.json` into immutable (`config/priv_validator_key.json`) and mutable (`data/priv_validator_state.json`) parts (@yutianwu) 2066 - [privval] [\#2926](https://github.com/tendermint/tendermint/issues/2926) Split up `PubKeyMsg` into `PubKeyRequest` and `PubKeyResponse` to be consistent with other message types 2067 - [privval] [\#2923](https://github.com/tendermint/tendermint/issues/2923) Listen for unix socket connections instead of dialing them 2068 2069 * Apps 2070 2071 * Go API 2072 - [types] [\#2981](https://github.com/tendermint/tendermint/issues/2981) Remove `PrivValidator.GetAddress()` 2073 2074 * Blockchain Protocol 2075 2076 * P2P Protocol 2077 2078 ### FEATURES: 2079 - [rpc] [\#3052](https://github.com/tendermint/tendermint/issues/3052) Include peer's remote IP in `/net_info` 2080 2081 ### IMPROVEMENTS: 2082 - [consensus] [\#3086](https://github.com/tendermint/tendermint/issues/3086) Log peerID on ignored votes (@srmo) 2083 - [docs] [\#3061](https://github.com/tendermint/tendermint/issues/3061) Added specification for signing consensus msgs at 2084 ./docs/spec/consensus/signing.md 2085 - [privval] [\#2948](https://github.com/tendermint/tendermint/issues/2948) Memoize pubkey so it's only requested once on startup 2086 - [privval] [\#2923](https://github.com/tendermint/tendermint/issues/2923) Retry RemoteSigner connections on error 2087 2088 ### BUG FIXES: 2089 2090 - [build] [\#3085](https://github.com/tendermint/tendermint/issues/3085) Fix `Version` field in build scripts (@husio) 2091 - [crypto/multisig] [\#3102](https://github.com/tendermint/tendermint/issues/3102) Fix multisig keys address length 2092 - [crypto/encoding] [\#3101](https://github.com/tendermint/tendermint/issues/3101) Fix `PubKeyMultisigThreshold` unmarshalling into `crypto.PubKey` interface 2093 - [p2p/conn] [\#3111](https://github.com/tendermint/tendermint/issues/3111) Make SecretConnection thread safe 2094 - [rpc] [\#3053](https://github.com/tendermint/tendermint/issues/3053) Fix internal error in `/tx_search` when results are empty 2095 (@gianfelipe93) 2096 - [types] [\#2926](https://github.com/tendermint/tendermint/issues/2926) Do not panic if retrieving the privval's public key fails 2097 2098 ## v0.27.4 2099 2100 *December 21st, 2018* 2101 2102 ### BUG FIXES: 2103 2104 - [mempool] [\#3036](https://github.com/tendermint/tendermint/issues/3036) Fix 2105 LRU cache by popping the least recently used item when the cache is full, 2106 not the most recently used one! 2107 2108 ## v0.27.3 2109 2110 *December 16th, 2018* 2111 2112 ### BREAKING CHANGES: 2113 2114 * Go API 2115 - [dep] [\#3027](https://github.com/tendermint/tendermint/issues/3027) Revert to mainline Go crypto library, eliminating the modified 2116 `bcrypt.GenerateFromPassword` 2117 2118 ## v0.27.2 2119 2120 *December 16th, 2018* 2121 2122 ### IMPROVEMENTS: 2123 2124 - [node] [\#3025](https://github.com/tendermint/tendermint/issues/3025) Validate NodeInfo addresses on startup. 2125 2126 ### BUG FIXES: 2127 2128 - [p2p] [\#3025](https://github.com/tendermint/tendermint/pull/3025) Revert to using defers in addrbook. Fixes deadlocks in pex and consensus upon invalid ExternalAddr/ListenAddr configuration. 2129 2130 ## v0.27.1 2131 2132 *December 15th, 2018* 2133 2134 Special thanks to external contributors on this release: 2135 @danil-lashin, @hleb-albau, @james-ray, @leo-xinwang 2136 2137 ### FEATURES: 2138 - [rpc] [\#2964](https://github.com/tendermint/tendermint/issues/2964) Add `UnconfirmedTxs(limit)` and `NumUnconfirmedTxs()` methods to HTTP/Local clients (@danil-lashin) 2139 - [docs] [\#3004](https://github.com/tendermint/tendermint/issues/3004) Enable full-text search on docs pages 2140 2141 ### IMPROVEMENTS: 2142 - [consensus] [\#2971](https://github.com/tendermint/tendermint/issues/2971) Return error if ValidatorSet is empty after InitChain 2143 (@leo-xinwang) 2144 - [ci/cd] [\#3005](https://github.com/tendermint/tendermint/issues/3005) Updated CircleCI job to trigger website build when docs are updated 2145 - [docs] Various updates 2146 2147 ### BUG FIXES: 2148 - [cmd] [\#2983](https://github.com/tendermint/tendermint/issues/2983) `testnet` command always sets `addr_book_strict = false` 2149 - [config] [\#2980](https://github.com/tendermint/tendermint/issues/2980) Fix CORS options formatting 2150 - [kv indexer] [\#2912](https://github.com/tendermint/tendermint/issues/2912) Don't ignore key when executing CONTAINS 2151 - [mempool] [\#2961](https://github.com/tendermint/tendermint/issues/2961) Call `notifyTxsAvailable` if there're txs left after committing a block, but recheck=false 2152 - [mempool] [\#2994](https://github.com/tendermint/tendermint/issues/2994) Reject txs with negative GasWanted 2153 - [p2p] [\#2990](https://github.com/tendermint/tendermint/issues/2990) Fix a bug where seeds don't disconnect from a peer after 3h 2154 - [consensus] [\#3006](https://github.com/tendermint/tendermint/issues/3006) Save state after InitChain only when stateHeight is also 0 (@james-ray) 2155 2156 ## v0.27.0 2157 2158 *December 5th, 2018* 2159 2160 Special thanks to external contributors on this release: 2161 @danil-lashin, @srmo 2162 2163 Special thanks to @dlguddus for discovering a [major 2164 issue](https://github.com/tendermint/tendermint/issues/2718#issuecomment-440888677) 2165 in the proposer selection algorithm. 2166 2167 This release is primarily about fixes to the proposer selection algorithm 2168 in preparation for the [Cosmos Game of 2169 Stakes](https://blog.cosmos.network/the-game-of-stakes-is-open-for-registration-83a404746ee6). 2170 It also makes use of the `ConsensusParams.Validator.PubKeyTypes` to restrict the 2171 key types that can be used by validators, and removes the `Heartbeat` consensus 2172 message. 2173 2174 ### BREAKING CHANGES: 2175 2176 * CLI/RPC/Config 2177 - [rpc] [\#2932](https://github.com/tendermint/tendermint/issues/2932) Rename `accum` to `proposer_priority` 2178 2179 * Go API 2180 - [db] [\#2913](https://github.com/tendermint/tendermint/pull/2913) 2181 ReverseIterator API change: start < end, and end is exclusive. 2182 - [types] [\#2932](https://github.com/tendermint/tendermint/issues/2932) Rename `Validator.Accum` to `Validator.ProposerPriority` 2183 2184 * Blockchain Protocol 2185 - [state] [\#2714](https://github.com/tendermint/tendermint/issues/2714) Validators can now only use pubkeys allowed within 2186 ConsensusParams.Validator.PubKeyTypes 2187 2188 * P2P Protocol 2189 - [consensus] [\#2871](https://github.com/tendermint/tendermint/issues/2871) 2190 Remove *ProposalHeartbeat* message as it serves no real purpose (@srmo) 2191 - [state] Fixes for proposer selection: 2192 - [\#2785](https://github.com/tendermint/tendermint/issues/2785) Accum for new validators is `-1.125*totalVotingPower` instead of 0 2193 - [\#2941](https://github.com/tendermint/tendermint/issues/2941) val.Accum is preserved during ValidatorSet.Update to avoid being 2194 reset to 0 2195 2196 ### IMPROVEMENTS: 2197 2198 - [state] [\#2929](https://github.com/tendermint/tendermint/issues/2929) Minor refactor of updateState logic (@danil-lashin) 2199 - [node] [\#2959](https://github.com/tendermint/tendermint/issues/2959) Allow node to start even if software's BlockProtocol is 2200 different from state's BlockProtocol 2201 - [pex] [\#2959](https://github.com/tendermint/tendermint/issues/2959) Pex reactor logger uses `module=pex` 2202 2203 ### BUG FIXES: 2204 2205 - [p2p] [\#2968](https://github.com/tendermint/tendermint/issues/2968) Panic on transport error rather than continuing to run but not 2206 accept new connections 2207 - [p2p] [\#2969](https://github.com/tendermint/tendermint/issues/2969) Fix mismatch in peer count between `/net_info` and the prometheus 2208 metrics 2209 - [rpc] [\#2408](https://github.com/tendermint/tendermint/issues/2408) `/broadcast_tx_commit`: Fix "interface conversion: interface {} in nil, not EventDataTx" panic (could happen if somebody sent a tx using `/broadcast_tx_commit` while Tendermint was being stopped) 2210 - [state] [\#2785](https://github.com/tendermint/tendermint/issues/2785) Fix accum for new validators to be `-1.125*totalVotingPower` 2211 instead of 0, forcing them to wait before becoming the proposer. Also: 2212 - do not batch clip 2213 - keep accums averaged near 0 2214 - [txindex/kv] [\#2925](https://github.com/tendermint/tendermint/issues/2925) Don't return false positives when range searching for a prefix of a tag value 2215 - [types] [\#2938](https://github.com/tendermint/tendermint/issues/2938) Fix regression in v0.26.4 where we panic on empty 2216 genDoc.Validators 2217 - [types] [\#2941](https://github.com/tendermint/tendermint/issues/2941) Preserve val.Accum during ValidatorSet.Update to avoid it being 2218 reset to 0 every time a validator is updated 2219 2220 ## v0.26.4 2221 2222 *November 27th, 2018* 2223 2224 Special thanks to external contributors on this release: 2225 @ackratos, @goolAdapter, @james-ray, @joe-bowman, @kostko, 2226 @nagarajmanjunath, @tomtau 2227 2228 ### FEATURES: 2229 2230 - [rpc] [\#2747](https://github.com/tendermint/tendermint/issues/2747) Enable subscription to tags emitted from `BeginBlock`/`EndBlock` (@kostko) 2231 - [types] [\#2747](https://github.com/tendermint/tendermint/issues/2747) Add `ResultBeginBlock` and `ResultEndBlock` fields to `EventDataNewBlock` 2232 and `EventDataNewBlockHeader` to support subscriptions (@kostko) 2233 - [types] [\#2918](https://github.com/tendermint/tendermint/issues/2918) Add Marshal, MarshalTo, Unmarshal methods to various structs 2234 to support Protobuf compatibility (@nagarajmanjunath) 2235 2236 ### IMPROVEMENTS: 2237 2238 - [config] [\#2877](https://github.com/tendermint/tendermint/issues/2877) Add `blocktime_iota` to the config.toml (@ackratos) 2239 - NOTE: this should be a ConsensusParam, not part of the config, and will be 2240 removed from the config at a later date 2241 ([\#2920](https://github.com/tendermint/tendermint/issues/2920). 2242 - [mempool] [\#2882](https://github.com/tendermint/tendermint/issues/2882) Add txs from Update to cache 2243 - [mempool] [\#2891](https://github.com/tendermint/tendermint/issues/2891) Remove local int64 counter from being stored in every tx 2244 - [node] [\#2866](https://github.com/tendermint/tendermint/issues/2866) Add ability to instantiate IPCVal (@joe-bowman) 2245 2246 ### BUG FIXES: 2247 2248 - [blockchain] [\#2731](https://github.com/tendermint/tendermint/issues/2731) Retry both blocks if either is bad to avoid getting stuck during fast sync (@goolAdapter) 2249 - [consensus] [\#2893](https://github.com/tendermint/tendermint/issues/2893) Use genDoc.Validators instead of state.NextValidators on replay when appHeight==0 (@james-ray) 2250 - [log] [\#2868](https://github.com/tendermint/tendermint/issues/2868) Fix `module=main` setting overriding all others 2251 - NOTE: this changes the default logging behaviour to be much less verbose. 2252 Set `log_level="info"` to restore the previous behaviour. 2253 - [rpc] [\#2808](https://github.com/tendermint/tendermint/issues/2808) Fix `accum` field in `/validators` by calling `IncrementAccum` if necessary 2254 - [rpc] [\#2811](https://github.com/tendermint/tendermint/issues/2811) Allow integer IDs in JSON-RPC requests (@tomtau) 2255 - [txindex/kv] [\#2759](https://github.com/tendermint/tendermint/issues/2759) Fix tx.height range queries 2256 - [txindex/kv] [\#2775](https://github.com/tendermint/tendermint/issues/2775) Order tx results by index if height is the same 2257 - [txindex/kv] [\#2908](https://github.com/tendermint/tendermint/issues/2908) Don't return false positives when searching for a prefix of a tag value 2258 2259 ## v0.26.3 2260 2261 *November 17th, 2018* 2262 2263 Special thanks to external contributors on this release: 2264 @danil-lashin, @kevlubkcm, @krhubert, @srmo 2265 2266 ### BREAKING CHANGES: 2267 2268 * Go API 2269 - [rpc] [\#2791](https://github.com/tendermint/tendermint/issues/2791) Functions that start HTTP servers are now blocking: 2270 - Impacts `StartHTTPServer`, `StartHTTPAndTLSServer`, and `StartGRPCServer` 2271 - These functions now take a `net.Listener` instead of an address 2272 - [rpc] [\#2767](https://github.com/tendermint/tendermint/issues/2767) Subscribing to events 2273 `NewRound` and `CompleteProposal` return new types `EventDataNewRound` and 2274 `EventDataCompleteProposal`, respectively, instead of the generic `EventDataRoundState`. (@kevlubkcm) 2275 2276 ### FEATURES: 2277 2278 - [log] [\#2843](https://github.com/tendermint/tendermint/issues/2843) New `log_format` config option, which can be set to 'plain' for colored 2279 text or 'json' for JSON output 2280 - [types] [\#2767](https://github.com/tendermint/tendermint/issues/2767) New event types EventDataNewRound (with ProposerInfo) and EventDataCompleteProposal (with BlockID). (@kevlubkcm) 2281 2282 ### IMPROVEMENTS: 2283 2284 - [dep] [\#2844](https://github.com/tendermint/tendermint/issues/2844) Dependencies are no longer pinned to an exact version in the 2285 Gopkg.toml: 2286 - Serialization libs are allowed to vary by patch release 2287 - Other libs are allowed to vary by minor release 2288 - [p2p] [\#2857](https://github.com/tendermint/tendermint/issues/2857) "Send failed" is logged at debug level instead of error. 2289 - [rpc] [\#2780](https://github.com/tendermint/tendermint/issues/2780) Add read and write timeouts to HTTP servers 2290 - [state] [\#2848](https://github.com/tendermint/tendermint/issues/2848) Make "Update to validators" msg value pretty (@danil-lashin) 2291 2292 ### BUG FIXES: 2293 - [consensus] [\#2819](https://github.com/tendermint/tendermint/issues/2819) Don't send proposalHearbeat if not a validator 2294 - [docs] [\#2859](https://github.com/tendermint/tendermint/issues/2859) Fix ConsensusParams details in spec 2295 - [libs/autofile] [\#2760](https://github.com/tendermint/tendermint/issues/2760) Comment out autofile permissions check - should fix 2296 running Tendermint on Windows 2297 - [p2p] [\#2869](https://github.com/tendermint/tendermint/issues/2869) Set connection config properly instead of always using default 2298 - [p2p/pex] [\#2802](https://github.com/tendermint/tendermint/issues/2802) Seed mode fixes: 2299 - Only disconnect from inbound peers 2300 - Use FlushStop instead of Sleep to ensure all messages are sent before 2301 disconnecting 2302 2303 ## v0.26.2 2304 2305 *November 15th, 2018* 2306 2307 Special thanks to external contributors on this release: @hleb-albau, @zhuzeyu 2308 2309 ### FEATURES: 2310 2311 - [rpc] [\#2582](https://github.com/tendermint/tendermint/issues/2582) Enable CORS on RPC API (@hleb-albau) 2312 2313 ### BUG FIXES: 2314 2315 - [abci] [\#2748](https://github.com/tendermint/tendermint/issues/2748) Unlock mutex in localClient so even when app panics (e.g. during CheckTx), consensus continue working 2316 - [abci] [\#2748](https://github.com/tendermint/tendermint/issues/2748) Fix DATA RACE in localClient 2317 - [amino] [\#2822](https://github.com/tendermint/tendermint/issues/2822) Update to v0.14.1 to support compiling on 32-bit platforms 2318 - [rpc] [\#2748](https://github.com/tendermint/tendermint/issues/2748) Drain channel before calling Unsubscribe(All) in `/broadcast_tx_commit` 2319 2320 ## v0.26.1 2321 2322 *November 11, 2018* 2323 2324 Special thanks to external contributors on this release: @katakonst 2325 2326 ### IMPROVEMENTS: 2327 2328 - [consensus] [\#2704](https://github.com/tendermint/tendermint/issues/2704) Simplify valid POL round logic 2329 - [docs] [\#2749](https://github.com/tendermint/tendermint/issues/2749) Deduplicate some ABCI docs 2330 - [mempool] More detailed log messages 2331 - [\#2724](https://github.com/tendermint/tendermint/issues/2724) 2332 - [\#2762](https://github.com/tendermint/tendermint/issues/2762) 2333 2334 ### BUG FIXES: 2335 2336 - [autofile] [\#2703](https://github.com/tendermint/tendermint/issues/2703) Do not panic when checking Head size 2337 - [crypto/merkle] [\#2756](https://github.com/tendermint/tendermint/issues/2756) Fix crypto/merkle ProofOperators.Verify to check bounds on keypath parts. 2338 - [mempool] fix a bug where we create a WAL despite `wal_dir` being empty 2339 - [p2p] [\#2771](https://github.com/tendermint/tendermint/issues/2771) Fix `peer-id` label name to `peer_id` in prometheus metrics 2340 - [p2p] [\#2797](https://github.com/tendermint/tendermint/pull/2797) Fix IDs in peer NodeInfo and require them for addresses 2341 in AddressBook 2342 - [p2p] [\#2797](https://github.com/tendermint/tendermint/pull/2797) Do not close conn immediately after sending pex addrs in seed mode. Partial fix for [\#2092](https://github.com/tendermint/tendermint/issues/2092). 2343 2344 ## v0.26.0 2345 2346 *November 2, 2018* 2347 2348 Special thanks to external contributors on this release: 2349 @bradyjoestar, @connorwstein, @goolAdapter, @HaoyangLiu, 2350 @james-ray, @overbool, @phymbert, @Slamper, @Uzair1995, @yutianwu. 2351 2352 Special thanks to @Slamper for a series of bug reports in our [bug bounty 2353 program](https://hackerone.com/cosmos) which are fixed in this release. 2354 2355 This release is primarily about adding Version fields to various data structures, 2356 optimizing consensus messages for signing and verification in 2357 restricted environments (like HSMs and the Ethereum Virtual Machine), and 2358 aligning the consensus code with the [specification](https://arxiv.org/abs/1807.04938). 2359 It also includes our first take at a generalized merkle proof system, and 2360 changes the length of hashes used for hashing data structures from 20 to 32 2361 bytes. 2362 2363 See the [UPGRADING.md](UPGRADING.md#v0.26.0) for details on upgrading to the new 2364 version. 2365 2366 Please note that we are still making breaking changes to the protocols. 2367 While the new Version fields should help us to keep the software backwards compatible 2368 even while upgrading the protocols, we cannot guarantee that new releases will 2369 be compatible with old chains just yet. We expect there will be another breaking 2370 release or two before the Cosmos Hub launch, but we will otherwise be paying 2371 increasing attention to backwards compatibility. Thanks for bearing with us! 2372 2373 ### BREAKING CHANGES: 2374 2375 * CLI/RPC/Config 2376 * [config] [\#2232](https://github.com/tendermint/tendermint/issues/2232) Timeouts are now strings like "3s" and "100ms", not ints 2377 * [config] [\#2505](https://github.com/tendermint/tendermint/issues/2505) Remove Mempool.RecheckEmpty (it was effectively useless anyways) 2378 * [config] [\#2490](https://github.com/tendermint/tendermint/issues/2490) `mempool.wal` is disabled by default 2379 * [privval] [\#2459](https://github.com/tendermint/tendermint/issues/2459) Split `SocketPVMsg`s implementations into Request and Response, where the Response may contain a error message (returned by the remote signer) 2380 * [state] [\#2644](https://github.com/tendermint/tendermint/issues/2644) Add Version field to State, breaking the format of State as 2381 encoded on disk. 2382 * [rpc] [\#2298](https://github.com/tendermint/tendermint/issues/2298) `/abci_query` takes `prove` argument instead of `trusted` and switches the default 2383 behaviour to `prove=false` 2384 * [rpc] [\#2654](https://github.com/tendermint/tendermint/issues/2654) Remove all `node_info.other.*_version` fields in `/status` and 2385 `/net_info` 2386 * [rpc] [\#2636](https://github.com/tendermint/tendermint/issues/2636) Remove 2387 `_params` suffix from fields in `consensus_params`. 2388 2389 * Apps 2390 * [abci] [\#2298](https://github.com/tendermint/tendermint/issues/2298) ResponseQuery.Proof is now a structured merkle.Proof, not just 2391 arbitrary bytes 2392 * [abci] [\#2644](https://github.com/tendermint/tendermint/issues/2644) Add Version to Header and shift all fields by one 2393 * [abci] [\#2662](https://github.com/tendermint/tendermint/issues/2662) Bump the field numbers for some `ResponseInfo` fields to make room for 2394 `AppVersion` 2395 * [abci] [\#2636](https://github.com/tendermint/tendermint/issues/2636) Updates to ConsensusParams 2396 * Remove `Params` suffix from field names 2397 * Add `Params` suffix to message types 2398 * Add new field and type, `Validator ValidatorParams`, to control what types of validator keys are allowed. 2399 2400 * Go API 2401 * [config] [\#2232](https://github.com/tendermint/tendermint/issues/2232) Timeouts are time.Duration, not ints 2402 * [crypto/merkle & lite] [\#2298](https://github.com/tendermint/tendermint/issues/2298) Various changes to accomodate General Merkle trees 2403 * [crypto/merkle] [\#2595](https://github.com/tendermint/tendermint/issues/2595) Remove all Hasher objects in favor of byte slices 2404 * [crypto/merkle] [\#2635](https://github.com/tendermint/tendermint/issues/2635) merkle.SimpleHashFromTwoHashes is no longer exported 2405 * [node] [\#2479](https://github.com/tendermint/tendermint/issues/2479) Remove node.RunForever 2406 * [rpc/client] [\#2298](https://github.com/tendermint/tendermint/issues/2298) `ABCIQueryOptions.Trusted` -> `ABCIQueryOptions.Prove` 2407 * [types] [\#2298](https://github.com/tendermint/tendermint/issues/2298) Remove `Index` and `Total` fields from `TxProof`. 2408 * [types] [\#2598](https://github.com/tendermint/tendermint/issues/2598) 2409 `VoteTypeXxx` are now of type `SignedMsgType byte` and named `XxxType`, eg. 2410 `PrevoteType`, `PrecommitType`. 2411 * [types] [\#2636](https://github.com/tendermint/tendermint/issues/2636) Rename fields in ConsensusParams to remove `Params` suffixes 2412 * [types] [\#2735](https://github.com/tendermint/tendermint/issues/2735) Simplify Proposal message to align with spec 2413 2414 * Blockchain Protocol 2415 * [crypto/tmhash] [\#2732](https://github.com/tendermint/tendermint/issues/2732) TMHASH is now full 32-byte SHA256 2416 * All hashes in the block header and Merkle trees are now 32-bytes 2417 * PubKey Addresses are still only 20-bytes 2418 * [state] [\#2587](https://github.com/tendermint/tendermint/issues/2587) Require block.Time of the fist block to be genesis time 2419 * [state] [\#2644](https://github.com/tendermint/tendermint/issues/2644) Require block.Version to match state.Version 2420 * [types] Update SignBytes for `Vote`/`Proposal`/`Heartbeat`: 2421 * [\#2459](https://github.com/tendermint/tendermint/issues/2459) Use amino encoding instead of JSON in `SignBytes`. 2422 * [\#2598](https://github.com/tendermint/tendermint/issues/2598) Reorder fields and use fixed sized encoding. 2423 * [\#2598](https://github.com/tendermint/tendermint/issues/2598) Change `Type` field from `string` to `byte` and use new 2424 `SignedMsgType` to enumerate. 2425 * [types] [\#2730](https://github.com/tendermint/tendermint/issues/2730) Use 2426 same order for fields in `Vote` as in the SignBytes 2427 * [types] [\#2732](https://github.com/tendermint/tendermint/issues/2732) Remove the address field from the validator hash 2428 * [types] [\#2644](https://github.com/tendermint/tendermint/issues/2644) Add Version struct to Header 2429 * [types] [\#2609](https://github.com/tendermint/tendermint/issues/2609) ConsensusParams.Hash() is the hash of the amino encoded 2430 struct instead of the Merkle tree of the fields 2431 * [types] [\#2670](https://github.com/tendermint/tendermint/issues/2670) Header.Hash() builds Merkle tree out of fields in the same 2432 order they appear in the header, instead of sorting by field name 2433 * [types] [\#2682](https://github.com/tendermint/tendermint/issues/2682) Use proto3 `varint` encoding for ints that are usually unsigned (instead of zigzag encoding). 2434 * [types] [\#2636](https://github.com/tendermint/tendermint/issues/2636) Add Validator field to ConsensusParams 2435 (Used to control which pubkey types validators can use, by abci type). 2436 2437 * P2P Protocol 2438 * [consensus] [\#2652](https://github.com/tendermint/tendermint/issues/2652) 2439 Replace `CommitStepMessage` with `NewValidBlockMessage` 2440 * [consensus] [\#2735](https://github.com/tendermint/tendermint/issues/2735) Simplify `Proposal` message to align with spec 2441 * [consensus] [\#2730](https://github.com/tendermint/tendermint/issues/2730) 2442 Add `Type` field to `Proposal` and use same order of fields as in the 2443 SignBytes for both `Proposal` and `Vote` 2444 * [p2p] [\#2654](https://github.com/tendermint/tendermint/issues/2654) Add `ProtocolVersion` struct with protocol versions to top of 2445 DefaultNodeInfo and require `ProtocolVersion.Block` to match during peer handshake 2446 2447 2448 ### FEATURES: 2449 - [abci] [\#2557](https://github.com/tendermint/tendermint/issues/2557) Add `Codespace` field to `Response{CheckTx, DeliverTx, Query}` 2450 - [abci] [\#2662](https://github.com/tendermint/tendermint/issues/2662) Add `BlockVersion` and `P2PVersion` to `RequestInfo` 2451 - [crypto/merkle] [\#2298](https://github.com/tendermint/tendermint/issues/2298) General Merkle Proof scheme for chaining various types of Merkle trees together 2452 - [docs/architecture] [\#1181](https://github.com/tendermint/tendermint/issues/1181) S 2453 plit immutable and mutable parts of priv_validator.json 2454 2455 ### IMPROVEMENTS: 2456 - Additional Metrics 2457 - [consensus] [\#2169](https://github.com/cosmos/cosmos-sdk/issues/2169) 2458 - [p2p] [\#2169](https://github.com/cosmos/cosmos-sdk/issues/2169) 2459 - [config] [\#2232](https://github.com/tendermint/tendermint/issues/2232) Added ValidateBasic method, which performs basic checks 2460 - [crypto/ed25519] [\#2558](https://github.com/tendermint/tendermint/issues/2558) Switch to use latest `golang.org/x/crypto` through our fork at 2461 github.com/tendermint/crypto 2462 - [libs/log] [\#2707](https://github.com/tendermint/tendermint/issues/2707) Add year to log format (@yutianwu) 2463 - [tools] [\#2238](https://github.com/tendermint/tendermint/issues/2238) Binary dependencies are now locked to a specific git commit 2464 2465 ### BUG FIXES: 2466 - [\#2711](https://github.com/tendermint/tendermint/issues/2711) Validate all incoming reactor messages. Fixes various bugs due to negative ints. 2467 - [autofile] [\#2428](https://github.com/tendermint/tendermint/issues/2428) Group.RotateFile need call Flush() before rename (@goolAdapter) 2468 - [common] [\#2533](https://github.com/tendermint/tendermint/issues/2533) Fixed a bug in the `BitArray.Or` method 2469 - [common] [\#2506](https://github.com/tendermint/tendermint/issues/2506) Fixed a bug in the `BitArray.Sub` method (@james-ray) 2470 - [common] [\#2534](https://github.com/tendermint/tendermint/issues/2534) Fix `BitArray.PickRandom` to choose uniformly from true bits 2471 - [consensus] [\#1690](https://github.com/tendermint/tendermint/issues/1690) Wait for 2472 timeoutPrecommit before starting next round 2473 - [consensus] [\#1745](https://github.com/tendermint/tendermint/issues/1745) Wait for 2474 Proposal or timeoutProposal before entering prevote 2475 - [consensus] [\#2642](https://github.com/tendermint/tendermint/issues/2642) Only propose ValidBlock, not LockedBlock 2476 - [consensus] [\#2642](https://github.com/tendermint/tendermint/issues/2642) Initialized ValidRound and LockedRound to -1 2477 - [consensus] [\#1637](https://github.com/tendermint/tendermint/issues/1637) Limit the amount of evidence that can be included in a 2478 block 2479 - [consensus] [\#2652](https://github.com/tendermint/tendermint/issues/2652) Ensure valid block property with faulty proposer 2480 - [evidence] [\#2515](https://github.com/tendermint/tendermint/issues/2515) Fix db iter leak (@goolAdapter) 2481 - [libs/event] [\#2518](https://github.com/tendermint/tendermint/issues/2518) Fix event concurrency flaw (@goolAdapter) 2482 - [node] [\#2434](https://github.com/tendermint/tendermint/issues/2434) Make node respond to signal interrupts while sleeping for genesis time 2483 - [state] [\#2616](https://github.com/tendermint/tendermint/issues/2616) Pass nil to NewValidatorSet() when genesis file's Validators field is nil 2484 - [p2p] [\#2555](https://github.com/tendermint/tendermint/issues/2555) Fix p2p switch FlushThrottle value (@goolAdapter) 2485 - [p2p] [\#2668](https://github.com/tendermint/tendermint/issues/2668) Reconnect to originally dialed address (not self-reported address) for persistent peers 2486 2487 ## v0.25.0 2488 2489 *September 22, 2018* 2490 2491 Special thanks to external contributors on this release: 2492 @scriptionist, @bradyjoestar, @WALL-E 2493 2494 This release is mostly about the ConsensusParams - removing fields and enforcing MaxGas. 2495 It also addresses some issues found via security audit, removes various unused 2496 functions from `libs/common`, and implements 2497 [ADR-012](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-012-peer-transport.md). 2498 2499 BREAKING CHANGES: 2500 2501 * CLI/RPC/Config 2502 * [rpc] [\#2391](https://github.com/tendermint/tendermint/issues/2391) /status `result.node_info.other` became a map 2503 * [types] [\#2364](https://github.com/tendermint/tendermint/issues/2364) Remove `TxSize` and `BlockGossip` from `ConsensusParams` 2504 * Maximum tx size is now set implicitly via the `BlockSize.MaxBytes` 2505 * The size of block parts in the consensus is now fixed to 64kB 2506 2507 * Apps 2508 * [mempool] [\#2360](https://github.com/tendermint/tendermint/issues/2360) Mempool tracks the `ResponseCheckTx.GasWanted` and 2509 `ConsensusParams.BlockSize.MaxGas` and enforces: 2510 - `GasWanted <= MaxGas` for every tx 2511 - `(sum of GasWanted in block) <= MaxGas` for block proposal 2512 2513 * Go API 2514 * [libs/common] [\#2431](https://github.com/tendermint/tendermint/issues/2431) Remove Word256 due to lack of use 2515 * [libs/common] [\#2452](https://github.com/tendermint/tendermint/issues/2452) Remove the following functions due to lack of use: 2516 * byteslice.go: cmn.IsZeros, cmn.RightPadBytes, cmn.LeftPadBytes, cmn.PrefixEndBytes 2517 * strings.go: cmn.IsHex, cmn.StripHex 2518 * int.go: Uint64Slice, all put/get int64 methods 2519 2520 FEATURES: 2521 - [rpc] [\#2415](https://github.com/tendermint/tendermint/issues/2415) New `/consensus_params?height=X` endpoint to query the consensus 2522 params at any height (@scriptonist) 2523 - [types] [\#1714](https://github.com/tendermint/tendermint/issues/1714) Add Address to GenesisValidator 2524 - [metrics] [\#2337](https://github.com/tendermint/tendermint/issues/2337) `consensus.block_interval_metrics` is now gauge, not histogram (you will be able to see spikes, if any) 2525 - [libs] [\#2286](https://github.com/tendermint/tendermint/issues/2286) Panic if `autofile` or `db/fsdb` permissions change from 0600. 2526 2527 IMPROVEMENTS: 2528 - [libs/db] [\#2371](https://github.com/tendermint/tendermint/issues/2371) Output error instead of panic when the given `db_backend` is not initialised (@bradyjoestar) 2529 - [mempool] [\#2399](https://github.com/tendermint/tendermint/issues/2399) Make mempool cache a proper LRU (@bradyjoestar) 2530 - [p2p] [\#2126](https://github.com/tendermint/tendermint/issues/2126) Introduce PeerTransport interface to improve isolation of concerns 2531 - [libs/common] [\#2326](https://github.com/tendermint/tendermint/issues/2326) Service returns ErrNotStarted 2532 2533 BUG FIXES: 2534 - [node] [\#2294](https://github.com/tendermint/tendermint/issues/2294) Delay starting node until Genesis time 2535 - [consensus] [\#2048](https://github.com/tendermint/tendermint/issues/2048) Correct peer statistics for marking peer as good 2536 - [rpc] [\#2460](https://github.com/tendermint/tendermint/issues/2460) StartHTTPAndTLSServer() now passes StartTLS() errors back to the caller rather than hanging forever. 2537 - [p2p] [\#2047](https://github.com/tendermint/tendermint/issues/2047) Accept new connections asynchronously 2538 - [tm-bench] [\#2410](https://github.com/tendermint/tendermint/issues/2410) Enforce minimum transaction size (@WALL-E) 2539 2540 ## 0.24.0 2541 2542 *September 6th, 2018* 2543 2544 Special thanks to external contributors with PRs included in this release: ackratos, james-ray, bradyjoestar, 2545 peerlink, Ahmah2009, bluele, b00f. 2546 2547 This release includes breaking upgrades in the block header, 2548 including the long awaited changes for delaying validator set updates by one 2549 block to better support light clients. 2550 It also fixes enforcement on the maximum size of blocks, and includes a BFT 2551 timestamp in each block that can be safely used by applications. 2552 There are also some minor breaking changes to the rpc, config, and ABCI. 2553 2554 See the [UPGRADING.md](UPGRADING.md#v0.24.0) for details on upgrading to the new 2555 version. 2556 2557 From here on, breaking changes will be broken down to better reflect how users 2558 are affected by a change. 2559 2560 A few more breaking changes are in the works - each will come with a clear 2561 Architecture Decision Record (ADR) explaining the change. You can review ADRs 2562 [here](https://github.com/tendermint/tendermint/tree/develop/docs/architecture) 2563 or in the [open Pull Requests](https://github.com/tendermint/tendermint/pulls). 2564 You can also check in on the [issues marked as 2565 breaking](https://github.com/tendermint/tendermint/issues?q=is%3Aopen+is%3Aissue+label%3Abreaking). 2566 2567 BREAKING CHANGES: 2568 2569 * CLI/RPC/Config 2570 - [config] [\#2169](https://github.com/tendermint/tendermint/issues/2169) Replace MaxNumPeers with MaxNumInboundPeers and MaxNumOutboundPeers 2571 - [config] [\#2300](https://github.com/tendermint/tendermint/issues/2300) Reduce default mempool size from 100k to 5k, until ABCI rechecking is implemented. 2572 - [rpc] [\#1815](https://github.com/tendermint/tendermint/issues/1815) `/commit` returns a `signed_header` field instead of everything being top-level 2573 2574 * Apps 2575 - [abci] Added address of the original proposer of the block to Header 2576 - [abci] Change ABCI Header to match Tendermint exactly 2577 - [abci] [\#2159](https://github.com/tendermint/tendermint/issues/2159) Update use of `Validator` (see 2578 [ADR-018](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-018-ABCI-Validators.md)): 2579 - Remove PubKey from `Validator` (so it's just Address and Power) 2580 - Introduce `ValidatorUpdate` (with just PubKey and Power) 2581 - InitChain and EndBlock use ValidatorUpdate 2582 - Update field names and types in BeginBlock 2583 - [state] [\#1815](https://github.com/tendermint/tendermint/issues/1815) Validator set changes are now delayed by one block 2584 - updates returned in ResponseEndBlock for block H will be included in RequestBeginBlock for block H+2 2585 2586 * Go API 2587 - [lite] [\#1815](https://github.com/tendermint/tendermint/issues/1815) Complete refactor of the package 2588 - [node] [\#2212](https://github.com/tendermint/tendermint/issues/2212) NewNode now accepts a `*p2p.NodeKey` (@bradyjoestar) 2589 - [libs/common] [\#2199](https://github.com/tendermint/tendermint/issues/2199) Remove Fmt, in favor of fmt.Sprintf 2590 - [libs/common] SplitAndTrim was deleted 2591 - [libs/common] [\#2274](https://github.com/tendermint/tendermint/issues/2274) Remove unused Math functions like MaxInt, MaxInt64, 2592 MinInt, MinInt64 (@Ahmah2009) 2593 - [libs/clist] Panics if list extends beyond MaxLength 2594 - [crypto] [\#2205](https://github.com/tendermint/tendermint/issues/2205) Rename AminoRoute variables to no longer be prefixed by signature type. 2595 2596 * Blockchain Protocol 2597 - [state] [\#1815](https://github.com/tendermint/tendermint/issues/1815) Validator set changes are now delayed by one block (!) 2598 - Add NextValidatorSet to State, changes on-disk representation of state 2599 - [state] [\#2184](https://github.com/tendermint/tendermint/issues/2184) Enforce ConsensusParams.BlockSize.MaxBytes (See 2600 [ADR-020](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-020-block-size.md)). 2601 - Remove ConsensusParams.BlockSize.MaxTxs 2602 - Introduce maximum sizes for all components of a block, including ChainID 2603 - [types] Updates to the block Header: 2604 - [\#1815](https://github.com/tendermint/tendermint/issues/1815) NextValidatorsHash - hash of the validator set for the next block, 2605 so the current validators actually sign over the hash for the new 2606 validators 2607 - [\#2106](https://github.com/tendermint/tendermint/issues/2106) ProposerAddress - address of the block's original proposer 2608 - [consensus] [\#2203](https://github.com/tendermint/tendermint/issues/2203) Implement BFT time 2609 - Timestamp in block must be monotonic and equal the median of timestamps in block's LastCommit 2610 - [crypto] [\#2239](https://github.com/tendermint/tendermint/issues/2239) Secp256k1 signature changes (See 2611 [ADR-014](https://github.com/tendermint/tendermint/blob/master/docs/architecture/adr-014-secp-malleability.md)): 2612 - format changed from DER to `r || s`, both little endian encoded as 32 bytes. 2613 - malleability removed by requiring `s` to be in canonical form. 2614 2615 * P2P Protocol 2616 - [p2p] [\#2263](https://github.com/tendermint/tendermint/issues/2263) Update secret connection to use a little endian encoded nonce 2617 - [blockchain] [\#2213](https://github.com/tendermint/tendermint/issues/2213) Fix Amino routes for blockchain reactor messages 2618 (@peerlink) 2619 2620 2621 FEATURES: 2622 - [types] [\#2015](https://github.com/tendermint/tendermint/issues/2015) Allow genesis file to have 0 validators (@b00f) 2623 - Initial validator set can be determined by the app in ResponseInitChain 2624 - [rpc] [\#2161](https://github.com/tendermint/tendermint/issues/2161) New event `ValidatorSetUpdates` for when the validator set changes 2625 - [crypto/multisig] [\#2164](https://github.com/tendermint/tendermint/issues/2164) Introduce multisig pubkey and signature format 2626 - [libs/db] [\#2293](https://github.com/tendermint/tendermint/issues/2293) Allow passing options through when creating instances of leveldb dbs 2627 2628 IMPROVEMENTS: 2629 - [docs] Lint documentation with `write-good` and `stop-words`. 2630 - [docs] [\#2249](https://github.com/tendermint/tendermint/issues/2249) Refactor, deduplicate, and improve the ABCI docs and spec (with thanks to @ttmc). 2631 - [scripts] [\#2196](https://github.com/tendermint/tendermint/issues/2196) Added json2wal tool, which is supposed to help our users restore (@bradyjoestar) 2632 corrupted WAL files and compose test WAL files (@bradyjoestar) 2633 - [mempool] [\#2234](https://github.com/tendermint/tendermint/issues/2234) Now stores txs by hash inside of the cache, to mitigate memory leakage 2634 - [mempool] [\#2166](https://github.com/tendermint/tendermint/issues/2166) Set explicit capacity for map when updating txs (@bluele) 2635 2636 BUG FIXES: 2637 - [config] [\#2284](https://github.com/tendermint/tendermint/issues/2284) Replace `db_path` with `db_dir` from automatically generated configuration files. 2638 - [mempool] [\#2188](https://github.com/tendermint/tendermint/issues/2188) Fix OOM issue from cache map and list getting out of sync 2639 - [state] [\#2051](https://github.com/tendermint/tendermint/issues/2051) KV store index supports searching by `tx.height` (@ackratos) 2640 - [rpc] [\#2327](https://github.com/tendermint/tendermint/issues/2327) `/dial_peers` does not try to dial existing peers 2641 - [node] [\#2323](https://github.com/tendermint/tendermint/issues/2323) Filter empty strings from config lists (@james-ray) 2642 - [abci/client] [\#2236](https://github.com/tendermint/tendermint/issues/2236) Fix closing GRPC connection (@bradyjoestar) 2643 2644 ## 0.23.1 2645 2646 *August 22nd, 2018* 2647 2648 BUG FIXES: 2649 - [libs/autofile] [\#2261](https://github.com/tendermint/tendermint/issues/2261) Fix log rotation so it actually happens. 2650 - Fixes issues with consensus WAL growing unbounded ala [\#2259](https://github.com/tendermint/tendermint/issues/2259) 2651 2652 ## 0.23.0 2653 2654 *August 5th, 2018* 2655 2656 This release includes breaking upgrades in our P2P encryption, 2657 some ABCI messages, and how we encode time and signatures. 2658 2659 A few more changes are still coming to the Header, ABCI, 2660 and validator set handling to better support light clients, BFT time, and 2661 upgrades. Most notably, validator set changes will be delayed by one block (see 2662 [#1815][i1815]). 2663 2664 We also removed `make ensure_deps` in favour of `make get_vendor_deps`. 2665 2666 BREAKING CHANGES: 2667 - [abci] Changed time format from int64 to google.protobuf.Timestamp 2668 - [abci] Changed Validators to LastCommitInfo in RequestBeginBlock 2669 - [abci] Removed Fee from ResponseDeliverTx and ResponseCheckTx 2670 - [crypto] Switch crypto.Signature from interface to []byte for space efficiency 2671 [#2128](https://github.com/tendermint/tendermint/pull/2128) 2672 - NOTE: this means signatures no longer have the prefix bytes in Amino 2673 binary nor the `type` field in Amino JSON. They're just bytes. 2674 - [p2p] Remove salsa and ripemd primitives, in favor of using chacha as a stream cipher, and hkdf [#2054](https://github.com/tendermint/tendermint/pull/2054) 2675 - [tools] Removed `make ensure_deps` in favor of `make get_vendor_deps` 2676 - [types] CanonicalTime uses nanoseconds instead of clipping to ms 2677 - breaks serialization/signing of all messages with a timestamp 2678 2679 FEATURES: 2680 - [tools] Added `make check_dep` 2681 - ensures gopkg.lock is synced with gopkg.toml 2682 - ensures no branches are used in the gopkg.toml 2683 2684 IMPROVEMENTS: 2685 - [blockchain] Improve fast-sync logic 2686 [#1805](https://github.com/tendermint/tendermint/pull/1805) 2687 - tweak params 2688 - only process one block at a time to avoid starving 2689 - [common] bit array functions which take in another parameter are now thread safe 2690 - [crypto] Switch hkdfchachapoly1305 to xchachapoly1305 2691 - [p2p] begin connecting to peers as soon a seed node provides them to you ([#2093](https://github.com/tendermint/tendermint/issues/2093)) 2692 2693 BUG FIXES: 2694 - [common] Safely handle cases where atomic write files already exist [#2109](https://github.com/tendermint/tendermint/issues/2109) 2695 - [privval] fix a deadline for accepting new connections in socket private 2696 validator. 2697 - [p2p] Allow startup if a configured seed node's IP can't be resolved ([#1716](https://github.com/tendermint/tendermint/issues/1716)) 2698 - [node] Fully exit when CTRL-C is pressed even if consensus state panics [#2072](https://github.com/tendermint/tendermint/issues/2072) 2699 2700 [i1815]: https://github.com/tendermint/tendermint/pull/1815 2701 2702 ## 0.22.8 2703 2704 *July 26th, 2018* 2705 2706 BUG FIXES 2707 2708 - [consensus, blockchain] Fix 0.22.7 below. 2709 2710 ## 0.22.7 2711 2712 *July 26th, 2018* 2713 2714 BUG FIXES 2715 2716 - [consensus, blockchain] Register the Evidence interface so it can be 2717 marshalled/unmarshalled by the blockchain and consensus reactors 2718 2719 ## 0.22.6 2720 2721 *July 24th, 2018* 2722 2723 BUG FIXES 2724 2725 - [rpc] Fix `/blockchain` endpoint 2726 - (#2049) Fix OOM attack by returning error on negative input 2727 - Fix result length to have max 20 (instead of 21) block metas 2728 - [rpc] Validate height is non-negative in `/abci_query` 2729 - [consensus] (#2050) Include evidence in proposal block parts (previously evidence was 2730 not being included in blocks!) 2731 - [p2p] (#2046) Close rejected inbound connections so file descriptor doesn't 2732 leak 2733 - [Gopkg] (#2053) Fix versions in the toml 2734 2735 ## 0.22.5 2736 2737 *July 23th, 2018* 2738 2739 BREAKING CHANGES: 2740 - [crypto] Refactor `tendermint/crypto` into many subpackages 2741 - [libs/common] remove exponentially distributed random numbers 2742 2743 IMPROVEMENTS: 2744 - [abci, libs/common] Generated gogoproto static marshaller methods 2745 - [config] Increase default send/recv rates to 5 mB/s 2746 - [p2p] reject addresses coming from private peers 2747 - [p2p] allow persistent peers to be private 2748 2749 BUG FIXES: 2750 - [mempool] fixed a race condition when `create_empty_blocks=false` where a 2751 transaction is published at an old height. 2752 - [p2p] dial external IP setup by `persistent_peers`, not internal NAT IP 2753 - [rpc] make `/status` RPC endpoint resistant to consensus halt 2754 2755 ## 0.22.4 2756 2757 *July 14th, 2018* 2758 2759 BREAKING CHANGES: 2760 - [genesis] removed deprecated `app_options` field. 2761 - [types] Genesis.AppStateJSON -> Genesis.AppState 2762 2763 FEATURES: 2764 - [tools] Merged in from github.com/tendermint/tools 2765 2766 BUG FIXES: 2767 - [tools/tm-bench] Various fixes 2768 - [consensus] Wait for WAL to stop on shutdown 2769 - [abci] Fix #1891, pending requests cannot hang when abci server dies. 2770 Previously a crash in BeginBlock could leave tendermint in broken state. 2771 2772 ## 0.22.3 2773 2774 *July 10th, 2018* 2775 2776 IMPROVEMENTS 2777 - Update dependencies 2778 * pin all values in Gopkg.toml to version or commit 2779 * update golang/protobuf to v1.1.0 2780 2781 ## 0.22.2 2782 2783 *July 10th, 2018* 2784 2785 IMPROVEMENTS 2786 - More cleanup post repo merge! 2787 - [docs] Include `ecosystem.json` and `tendermint-bft.md` from deprecated `aib-data` repository. 2788 - [config] Add `instrumentation.max_open_connections`, which limits the number 2789 of requests in flight to Prometheus server (if enabled). Default: 3. 2790 2791 2792 BUG FIXES 2793 - [rpc] Allow unquoted integers in requests 2794 - NOTE: this is only for URI requests. JSONRPC requests and all responses 2795 will use quoted integers (the proto3 JSON standard). 2796 - [consensus] Fix halt on shutdown 2797 2798 ## 0.22.1 2799 2800 *July 5th, 2018* 2801 2802 IMPROVEMENTS 2803 2804 * Cleanup post repo-merge. 2805 * [docs] Various improvements. 2806 2807 BUG FIXES 2808 2809 * [state] Return error when EndBlock returns a 0-power validator that isn't 2810 already in the validator set. 2811 * [consensus] Shut down WAL properly. 2812 2813 2814 ## 0.22.0 2815 2816 *July 2nd, 2018* 2817 2818 BREAKING CHANGES: 2819 - [config] 2820 * Remove `max_block_size_txs` and `max_block_size_bytes` in favor of 2821 consensus params from the genesis file. 2822 * Rename `skip_upnp` to `upnp`, and turn it off by default. 2823 * Change `max_packet_msg_size` back to `max_packet_msg_payload_size` 2824 - [rpc] 2825 * All integers are encoded as strings (part of the update for Amino v0.10.1) 2826 * `syncing` is now called `catching_up` 2827 - [types] Update Amino to v0.10.1 2828 * Amino is now fully proto3 compatible for the basic types 2829 * JSON-encoded types now use the type name instead of the prefix bytes 2830 * Integers are encoded as strings 2831 - [crypto] Update go-crypto to v0.10.0 and merge into `crypto` 2832 * privKey.Sign returns error. 2833 * ed25519 address changed to the first 20-bytes of the SHA256 of the raw pubkey bytes 2834 * `tmlibs/merkle` -> `crypto/merkle`. Uses SHA256 instead of RIPEMD160 2835 - [tmlibs] Update to v0.9.0 and merge into `libs` 2836 * remove `merkle` package (moved to `crypto/merkle`) 2837 2838 FEATURES 2839 - [cmd] Added metrics (served under `/metrics` using a Prometheus client; 2840 disabled by default). See the new `instrumentation` section in the config and 2841 [metrics](https://tendermint.readthedocs.io/projects/tools/en/develop/metrics.html) 2842 guide. 2843 - [p2p] Add IPv6 support to peering. 2844 - [p2p] Add `external_address` to config to allow specifying the address for 2845 peers to dial 2846 2847 IMPROVEMENT 2848 - [rpc/client] Supports https and wss now. 2849 - [crypto] Make public key size into public constants 2850 - [mempool] Log tx hash, not entire tx 2851 - [abci] Merged in github.com/tendermint/abci 2852 - [crypto] Merged in github.com/tendermint/go-crypto 2853 - [libs] Merged in github.com/tendermint/tmlibs 2854 - [docs] Move from .rst to .md 2855 2856 BUG FIXES: 2857 - [rpc] Limit maximum number of HTTP/WebSocket connections 2858 (`rpc.max_open_connections`) and gRPC connections 2859 (`rpc.grpc_max_open_connections`). Check out "Running In Production" guide if 2860 you want to increase them. 2861 - [rpc] Limit maximum request body size to 1MB (header is limited to 1MB). 2862 - [consensus] Fix a halting bug where `create_empty_blocks=false` 2863 - [p2p] Fix panic in seed mode 2864 2865 ## 0.21.0 2866 2867 *June 21th, 2018* 2868 2869 BREAKING CHANGES 2870 2871 - [config] Change default ports from 4665X to 2665X. Ports over 32768 are 2872 ephemeral and reserved for use by the kernel. 2873 - [cmd] `unsafe_reset_all` removes the addrbook.json 2874 2875 IMPROVEMENT 2876 2877 - [pubsub] Set default capacity to 0 2878 - [docs] Various improvements 2879 2880 BUG FIXES 2881 2882 - [consensus] Fix an issue where we don't make blocks after `fast_sync` when `create_empty_blocks=false` 2883 - [mempool] Fix #1761 where we don't process txs if `cache_size=0` 2884 - [rpc] Fix memory leak in Websocket (when using `/subscribe` method) 2885 - [config] Escape paths in config - fixes config paths on Windows 2886 2887 ## 0.20.0 2888 2889 *June 6th, 2018* 2890 2891 This is the first in a series of breaking releases coming to Tendermint after 2892 soliciting developer feedback and conducting security audits. 2893 2894 This release does not break any blockchain data structures or 2895 protocols other than the ABCI messages between Tendermint and the application. 2896 2897 Applications that upgrade for ABCI v0.11.0 should be able to continue running Tendermint 2898 v0.20.0 on blockchains created with v0.19.X 2899 2900 BREAKING CHANGES 2901 2902 - [abci] Upgrade to 2903 [v0.11.0](https://github.com/tendermint/abci/blob/master/CHANGELOG.md#0110) 2904 - [abci] Change Query path for filtering peers by node ID from 2905 `p2p/filter/pubkey/<id>` to `p2p/filter/id/<id>` 2906 2907 ## 0.19.9 2908 2909 *June 5th, 2018* 2910 2911 BREAKING CHANGES 2912 2913 - [types/priv_validator] Moved to top level `privval` package 2914 2915 FEATURES 2916 2917 - [config] Collapse PeerConfig into P2PConfig 2918 - [docs] Add quick-install script 2919 - [docs/spec] Add table of Amino prefixes 2920 2921 BUG FIXES 2922 2923 - [rpc] Return 404 for unknown endpoints 2924 - [consensus] Flush WAL on stop 2925 - [evidence] Don't send evidence to peers that are behind 2926 - [p2p] Fix memory leak on peer disconnects 2927 - [rpc] Fix panic when `per_page=0` 2928 2929 ## 0.19.8 2930 2931 *June 4th, 2018* 2932 2933 BREAKING: 2934 2935 - [p2p] Remove `auth_enc` config option, peer connections are always auth 2936 encrypted. Technically a breaking change but seems no one was using it and 2937 arguably a bug fix :) 2938 2939 BUG FIXES 2940 2941 - [mempool] Fix deadlock under high load when `skip_timeout_commit=true` and 2942 `create_empty_blocks=false` 2943 2944 ## 0.19.7 2945 2946 *May 31st, 2018* 2947 2948 BREAKING: 2949 2950 - [libs/pubsub] TagMap#Get returns a string value 2951 - [libs/pubsub] NewTagMap accepts a map of strings 2952 2953 FEATURES 2954 2955 - [rpc] the RPC documentation is now published to https://tendermint.github.io/slate 2956 - [p2p] AllowDuplicateIP config option to refuse connections from same IP. 2957 - true by default for now, false by default in next breaking release 2958 - [docs] Add docs for query, tx indexing, events, pubsub 2959 - [docs] Add some notes about running Tendermint in production 2960 2961 IMPROVEMENTS: 2962 2963 - [consensus] Consensus reactor now receives events from a separate synchronous event bus, 2964 which is not dependant on external RPC load 2965 - [consensus/wal] do not look for height in older files if we've seen height - 1 2966 - [docs] Various cleanup and link fixes 2967 2968 ## 0.19.6 2969 2970 *May 29th, 2018* 2971 2972 BUG FIXES 2973 2974 - [blockchain] Fix fast-sync deadlock during high peer turnover 2975 2976 BUG FIX: 2977 2978 - [evidence] Dont send peers evidence from heights they haven't synced to yet 2979 - [p2p] Refuse connections to more than one peer with the same IP 2980 - [docs] Various fixes 2981 2982 ## 0.19.5 2983 2984 *May 20th, 2018* 2985 2986 BREAKING CHANGES 2987 2988 - [rpc/client] TxSearch and UnconfirmedTxs have new arguments (see below) 2989 - [rpc/client] TxSearch returns ResultTxSearch 2990 - [version] Breaking changes to Go APIs will not be reflected in breaking 2991 version change, but will be included in changelog. 2992 2993 FEATURES 2994 2995 - [rpc] `/tx_search` takes `page` (starts at 1) and `per_page` (max 100, default 30) args to paginate results 2996 - [rpc] `/unconfirmed_txs` takes `limit` (max 100, default 30) arg to limit the output 2997 - [config] `mempool.size` and `mempool.cache_size` options 2998 2999 IMPROVEMENTS 3000 3001 - [docs] Lots of updates 3002 - [consensus] Only Fsync() the WAL before executing msgs from ourselves 3003 3004 BUG FIXES 3005 3006 - [mempool] Enforce upper bound on number of transactions 3007 3008 ## 0.19.4 (May 17th, 2018) 3009 3010 IMPROVEMENTS 3011 3012 - [state] Improve tx indexing by using batches 3013 - [consensus, state] Improve logging (more consensus logs, fewer tx logs) 3014 - [spec] Moved to `docs/spec` (TODO cleanup the rest of the docs ...) 3015 3016 BUG FIXES 3017 3018 - [consensus] Fix issue #1575 where a late proposer can get stuck 3019 3020 ## 0.19.3 (May 14th, 2018) 3021 3022 FEATURES 3023 3024 - [rpc] New `/consensus_state` returns just the votes seen at the current height 3025 3026 IMPROVEMENTS 3027 3028 - [rpc] Add stringified votes and fraction of power voted to `/dump_consensus_state` 3029 - [rpc] Add PeerStateStats to `/dump_consensus_state` 3030 3031 BUG FIXES 3032 3033 - [cmd] Set GenesisTime during `tendermint init` 3034 - [consensus] fix ValidBlock rules 3035 3036 ## 0.19.2 (April 30th, 2018) 3037 3038 FEATURES: 3039 3040 - [p2p] Allow peers with different Minor versions to connect 3041 - [rpc] `/net_info` includes `n_peers` 3042 3043 IMPROVEMENTS: 3044 3045 - [p2p] Various code comments, cleanup, error types 3046 - [p2p] Change some Error logs to Debug 3047 3048 BUG FIXES: 3049 3050 - [p2p] Fix reconnect to persistent peer when first dial fails 3051 - [p2p] Validate NodeInfo.ListenAddr 3052 - [p2p] Only allow (MaxNumPeers - MaxNumOutboundPeers) inbound peers 3053 - [p2p/pex] Limit max msg size to 64kB 3054 - [p2p] Fix panic when pex=false 3055 - [p2p] Allow multiple IPs per ID in AddrBook 3056 - [p2p] Fix before/after bugs in addrbook isBad() 3057 3058 ## 0.19.1 (April 27th, 2018) 3059 3060 Note this release includes some small breaking changes in the RPC and one in the 3061 config that are really bug fixes. v0.19.1 will work with existing chains, and make Tendermint 3062 easier to use and debug. With <3 3063 3064 BREAKING (MINOR) 3065 3066 - [config] Removed `wal_light` setting. If you really needed this, let us know 3067 3068 FEATURES: 3069 3070 - [networks] moved in tooling from devops repo: terraform and ansible scripts for deploying testnets ! 3071 - [cmd] Added `gen_node_key` command 3072 3073 BUG FIXES 3074 3075 Some of these are breaking in the RPC response, but they're really bugs! 3076 3077 - [spec] Document address format and pubkey encoding pre and post Amino 3078 - [rpc] Lower case JSON field names 3079 - [rpc] Fix missing entries, improve, and lower case the fields in `/dump_consensus_state` 3080 - [rpc] Fix NodeInfo.Channels format to hex 3081 - [rpc] Add Validator address to `/status` 3082 - [rpc] Fix `prove` in ABCIQuery 3083 - [cmd] MarshalJSONIndent on init 3084 3085 ## 0.19.0 (April 13th, 2018) 3086 3087 BREAKING: 3088 - [cmd] improved `testnet` command; now it can fill in `persistent_peers` for you in the config file and much more (see `tendermint testnet --help` for details) 3089 - [cmd] `show_node_id` now returns an error if there is no node key 3090 - [rpc]: changed the output format for the `/status` endpoint (see https://godoc.org/github.com/tendermint/tendermint/rpc/core#Status) 3091 3092 Upgrade from go-wire to go-amino. This is a sweeping change that breaks everything that is 3093 serialized to disk or over the network. 3094 3095 See github.com/tendermint/go-amino for details on the new format. 3096 3097 See `scripts/wire2amino.go` for a tool to upgrade 3098 genesis/priv_validator/node_key JSON files. 3099 3100 FEATURES 3101 3102 - [test] docker-compose for local testnet setup (thanks Greg!) 3103 3104 ## 0.18.0 (April 6th, 2018) 3105 3106 BREAKING: 3107 3108 - [types] Merkle tree uses different encoding for varints (see tmlibs v0.8.0) 3109 - [types] ValidtorSet.GetByAddress returns -1 if no validator found 3110 - [p2p] require all addresses come with an ID no matter what 3111 - [rpc] Listening address must contain tcp:// or unix:// prefix 3112 3113 FEATURES: 3114 3115 - [rpc] StartHTTPAndTLSServer (not used yet) 3116 - [rpc] Include validator's voting power in `/status` 3117 - [rpc] `/tx` and `/tx_search` responses now include the transaction hash 3118 - [rpc] Include peer NodeIDs in `/net_info` 3119 3120 IMPROVEMENTS: 3121 - [config] trim whitespace from elements of lists (like `persistent_peers`) 3122 - [rpc] `/tx_search` results are sorted by height 3123 - [p2p] do not try to connect to ourselves (ok, maybe only once) 3124 - [p2p] seeds respond with a bias towards good peers 3125 3126 BUG FIXES: 3127 - [rpc] fix subscribing using an abci.ResponseDeliverTx tag 3128 - [rpc] fix tx_indexers matchRange 3129 - [rpc] fix unsubscribing (see tmlibs v0.8.0) 3130 3131 ## 0.17.1 (March 27th, 2018) 3132 3133 BUG FIXES: 3134 - [types] Actually support `app_state` in genesis as `AppStateJSON` 3135 3136 ## 0.17.0 (March 27th, 2018) 3137 3138 BREAKING: 3139 - [types] WriteSignBytes -> SignBytes 3140 3141 IMPROVEMENTS: 3142 - [all] renamed `dummy` (`persistent_dummy`) to `kvstore` (`persistent_kvstore`) (name "dummy" is deprecated and will not work in the next breaking release) 3143 - [docs] note on determinism (docs/determinism.rst) 3144 - [genesis] `app_options` field is deprecated. please rename it to `app_state` in your genesis file(s). `app_options` will not work in the next breaking release 3145 - [p2p] dial seeds directly without potential peers 3146 - [p2p] exponential backoff for addrs in the address book 3147 - [p2p] mark peer as good if it contributed enough votes or block parts 3148 - [p2p] stop peer if it sends incorrect data, msg to unknown channel, msg we did not expect 3149 - [p2p] when `auth_enc` is true, all dialed peers must have a node ID in their address 3150 - [spec] various improvements 3151 - switched from glide to dep internally for package management 3152 - [wire] prep work for upgrading to new go-wire (which is now called go-amino) 3153 3154 FEATURES: 3155 - [config] exposed `auth_enc` flag to enable/disable encryption 3156 - [config] added the `--p2p.private_peer_ids` flag and `PrivatePeerIDs` config variable (see config for description) 3157 - [rpc] added `/health` endpoint, which returns empty result for now 3158 - [types/priv_validator] new format and socket client, allowing for remote signing 3159 3160 BUG FIXES: 3161 - [consensus] fix liveness bug by introducing ValidBlock mechanism 3162 3163 ## 0.16.0 (February 20th, 2018) 3164 3165 BREAKING CHANGES: 3166 - [config] use $TMHOME/config for all config and json files 3167 - [p2p] old `--p2p.seeds` is now `--p2p.persistent_peers` (persistent peers to which TM will always connect to) 3168 - [p2p] now `--p2p.seeds` only used for getting addresses (if addrbook is empty; not persistent) 3169 - [p2p] NodeInfo: remove RemoteAddr and add Channels 3170 - we must have at least one overlapping channel with peer 3171 - we only send msgs for channels the peer advertised 3172 - [p2p/conn] pong timeout 3173 - [lite] comment out IAVL related code 3174 3175 FEATURES: 3176 - [p2p] added new `/dial_peers&persistent=_` **unsafe** endpoint 3177 - [p2p] persistent node key in `$THMHOME/config/node_key.json` 3178 - [p2p] introduce peer ID and authenticate peers by ID using addresses like `ID@IP:PORT` 3179 - [p2p/pex] new seed mode crawls the network and serves as a seed. 3180 - [config] MempoolConfig.CacheSize 3181 - [config] P2P.SeedMode (`--p2p.seed_mode`) 3182 3183 IMPROVEMENT: 3184 - [p2p/pex] stricter rules in the PEX reactor for better handling of abuse 3185 - [p2p] various improvements to code structure including subpackages for `pex` and `conn` 3186 - [docs] new spec! 3187 - [all] speed up the tests! 3188 3189 BUG FIX: 3190 - [blockchain] StopPeerForError on timeout 3191 - [consensus] StopPeerForError on a bad Maj23 message 3192 - [state] flush mempool conn before calling commit 3193 - [types] fix priv val signing things that only differ by timestamp 3194 - [mempool] fix memory leak causing zombie peers 3195 - [p2p/conn] fix potential deadlock 3196 3197 ## 0.15.0 (December 29, 2017) 3198 3199 BREAKING CHANGES: 3200 - [p2p] enable the Peer Exchange reactor by default 3201 - [types] add Timestamp field to Proposal/Vote 3202 - [types] add new fields to Header: TotalTxs, ConsensusParamsHash, LastResultsHash, EvidenceHash 3203 - [types] add Evidence to Block 3204 - [types] simplify ValidateBasic 3205 - [state] updates to support changes to the header 3206 - [state] Enforce <1/3 of validator set can change at a time 3207 3208 FEATURES: 3209 - [state] Send indices of absent validators and addresses of byzantine validators in BeginBlock 3210 - [state] Historical ConsensusParams and ABCIResponses 3211 - [docs] Specification for the base Tendermint data structures. 3212 - [evidence] New evidence reactor for gossiping and managing evidence 3213 - [rpc] `/block_results?height=X` returns the DeliverTx results for a given height. 3214 3215 IMPROVEMENTS: 3216 - [consensus] Better handling of corrupt WAL file 3217 3218 BUG FIXES: 3219 - [lite] fix race 3220 - [state] validate block.Header.ValidatorsHash 3221 - [p2p] allow seed addresses to be prefixed with eg. `tcp://` 3222 - [p2p] use consistent key to refer to peers so we dont try to connect to existing peers 3223 - [cmd] fix `tendermint init` to ignore files that are there and generate files that aren't. 3224 3225 ## 0.14.0 (December 11, 2017) 3226 3227 BREAKING CHANGES: 3228 - consensus/wal: removed separator 3229 - rpc/client: changed Subscribe/Unsubscribe/UnsubscribeAll funcs signatures to be identical to event bus. 3230 3231 FEATURES: 3232 - new `tendermint lite` command (and `lite/proxy` pkg) for running a light-client RPC proxy. 3233 NOTE it is currently insecure and its APIs are not yet covered by semver 3234 3235 IMPROVEMENTS: 3236 - rpc/client: can act as event bus subscriber (See https://github.com/tendermint/tendermint/issues/945). 3237 - p2p: use exponential backoff from seconds to hours when attempting to reconnect to persistent peer 3238 - config: moniker defaults to the machine's hostname instead of "anonymous" 3239 3240 BUG FIXES: 3241 - p2p: no longer exit if one of the seed addresses is incorrect 3242 3243 ## 0.13.0 (December 6, 2017) 3244 3245 BREAKING CHANGES: 3246 - abci: update to v0.8 using gogo/protobuf; includes tx tags, vote info in RequestBeginBlock, data.Bytes everywhere, use int64, etc. 3247 - types: block heights are now `int64` everywhere 3248 - types & node: EventSwitch and EventCache have been replaced by EventBus and EventBuffer; event types have been overhauled 3249 - node: EventSwitch methods now refer to EventBus 3250 - rpc/lib/types: RPCResponse is no longer a pointer; WSRPCConnection interface has been modified 3251 - rpc/client: WaitForOneEvent takes an EventsClient instead of types.EventSwitch 3252 - rpc/client: Add/RemoveListenerForEvent are now Subscribe/Unsubscribe 3253 - rpc/core/types: ResultABCIQuery wraps an abci.ResponseQuery 3254 - rpc: `/subscribe` and `/unsubscribe` take `query` arg instead of `event` 3255 - rpc: `/status` returns the LatestBlockTime in human readable form instead of in nanoseconds 3256 - mempool: cached transactions return an error instead of an ABCI response with BadNonce 3257 3258 FEATURES: 3259 - rpc: new `/unsubscribe_all` WebSocket RPC endpoint 3260 - rpc: new `/tx_search` endpoint for filtering transactions by more complex queries 3261 - p2p/trust: new trust metric for tracking peers. See ADR-006 3262 - config: TxIndexConfig allows to set what DeliverTx tags to index 3263 3264 IMPROVEMENTS: 3265 - New asynchronous events system using `tmlibs/pubsub` 3266 - logging: Various small improvements 3267 - consensus: Graceful shutdown when app crashes 3268 - tests: Fix various non-deterministic errors 3269 - p2p: more defensive programming 3270 3271 BUG FIXES: 3272 - consensus: fix panic where prs.ProposalBlockParts is not initialized 3273 - p2p: fix panic on bad channel 3274 3275 ## 0.12.1 (November 27, 2017) 3276 3277 BUG FIXES: 3278 - upgrade tmlibs dependency to enable Windows builds for Tendermint 3279 3280 ## 0.12.0 (October 27, 2017) 3281 3282 BREAKING CHANGES: 3283 - rpc/client: websocket ResultsCh and ErrorsCh unified in ResponsesCh. 3284 - rpc/client: ABCIQuery no longer takes `prove` 3285 - state: remove GenesisDoc from state. 3286 - consensus: new binary WAL format provides efficiency and uses checksums to detect corruption 3287 - use scripts/wal2json to convert to json for debugging 3288 3289 FEATURES: 3290 - new `Verifiers` pkg contains the tendermint light-client library (name subject to change)! 3291 - rpc: `/genesis` includes the `app_options` . 3292 - rpc: `/abci_query` takes an additional `height` parameter to support historical queries. 3293 - rpc/client: new ABCIQueryWithOptions supports options like `trusted` (set false to get a proof) and `height` to query a historical height. 3294 3295 IMPROVEMENTS: 3296 - rpc: `/genesis` result includes `app_options` 3297 - rpc/lib/client: add jitter to reconnects. 3298 - rpc/lib/types: `RPCError` satisfies the `error` interface. 3299 3300 BUG FIXES: 3301 - rpc/client: fix ws deadlock after stopping 3302 - blockchain: fix panic on AddBlock when peer is nil 3303 - mempool: fix sending on TxsAvailable when a tx has been invalidated 3304 - consensus: dont run WAL catchup if we fast synced 3305 3306 ## 0.11.1 (October 10, 2017) 3307 3308 IMPROVEMENTS: 3309 - blockchain/reactor: respondWithNoResponseMessage for missing height 3310 3311 BUG FIXES: 3312 - rpc: fixed client WebSocket timeout 3313 - rpc: client now resubscribes on reconnection 3314 - rpc: fix panics on missing params 3315 - rpc: fix `/dump_consensus_state` to have normal json output (NOTE: technically breaking, but worth a bug fix label) 3316 - types: fixed out of range error in VoteSet.addVote 3317 - consensus: fix wal autofile via https://github.com/tendermint/tmlibs/blob/master/CHANGELOG.md#032-october-2-2017 3318 3319 ## 0.11.0 (September 22, 2017) 3320 3321 BREAKING: 3322 - genesis file: validator `amount` is now `power` 3323 - abci: Info, BeginBlock, InitChain all take structs 3324 - rpc: various changes to match JSONRPC spec (http://www.jsonrpc.org/specification), including breaking ones: 3325 - requests that previously returned HTTP code 4XX now return 200 with an error code in the JSONRPC. 3326 - `rpctypes.RPCResponse` uses new `RPCError` type instead of `string`. 3327 3328 - cmd: if there is no genesis, exit immediately instead of waiting around for one to show. 3329 - types: `Signer.Sign` returns an error. 3330 - state: every validator set change is persisted to disk, which required some changes to the `State` structure. 3331 - p2p: new `p2p.Peer` interface used for all reactor methods (instead of `*p2p.Peer` struct). 3332 3333 FEATURES: 3334 - rpc: `/validators?height=X` allows querying of validators at previous heights. 3335 - rpc: Leaving the `height` param empty for `/block`, `/validators`, and `/commit` will return the value for the latest height. 3336 3337 IMPROVEMENTS: 3338 - docs: Moved all docs from the website and tools repo in, converted to `.rst`, and cleaned up for presentation on `tendermint.readthedocs.io` 3339 3340 BUG FIXES: 3341 - fix WAL openning issue on Windows 3342 3343 ## 0.10.4 (September 5, 2017) 3344 3345 IMPROVEMENTS: 3346 - docs: Added Slate docs to each rpc function (see rpc/core) 3347 - docs: Ported all website docs to Read The Docs 3348 - config: expose some p2p params to tweak performance: RecvRate, SendRate, and MaxMsgPacketPayloadSize 3349 - rpc: Upgrade the websocket client and server, including improved auto reconnect, and proper ping/pong 3350 3351 BUG FIXES: 3352 - consensus: fix panic on getVoteBitArray 3353 - consensus: hang instead of panicking on byzantine consensus failures 3354 - cmd: dont load config for version command 3355 3356 ## 0.10.3 (August 10, 2017) 3357 3358 FEATURES: 3359 - control over empty block production: 3360 - new flag, `--consensus.create_empty_blocks`; when set to false, blocks are only created when there are txs or when the AppHash changes. 3361 - new config option, `consensus.create_empty_blocks_interval`; an empty block is created after this many seconds. 3362 - in normal operation, `create_empty_blocks = true` and `create_empty_blocks_interval = 0`, so blocks are being created all the time (as in all previous versions of tendermint). The number of empty blocks can be reduced by increasing `create_empty_blocks_interval` or by setting `create_empty_blocks = false`. 3363 - new `TxsAvailable()` method added to Mempool that returns a channel which fires when txs are available. 3364 - new heartbeat message added to consensus reactor to notify peers that a node is waiting for txs before entering propose step. 3365 - rpc: Add `syncing` field to response returned by `/status`. Is `true` while in fast-sync mode. 3366 3367 IMPROVEMENTS: 3368 - various improvements to documentation and code comments 3369 3370 BUG FIXES: 3371 - mempool: pass height into constructor so it doesn't always start at 0 3372 3373 ## 0.10.2 (July 10, 2017) 3374 3375 FEATURES: 3376 - Enable lower latency block commits by adding consensus reactor sleep durations and p2p flush throttle timeout to the config 3377 3378 IMPROVEMENTS: 3379 - More detailed logging in the consensus reactor and state machine 3380 - More in-code documentation for many exposed functions, especially in consensus/reactor.go and p2p/switch.go 3381 - Improved readability for some function definitions and code blocks with long lines 3382 3383 ## 0.10.1 (June 28, 2017) 3384 3385 FEATURES: 3386 - Use `--trace` to get stack traces for logged errors 3387 - types: GenesisDoc.ValidatorHash returns the hash of the genesis validator set 3388 - types: GenesisDocFromFile parses a GenesiDoc from a JSON file 3389 3390 IMPROVEMENTS: 3391 - Add a Code of Conduct 3392 - Variety of improvements as suggested by `megacheck` tool 3393 - rpc: deduplicate tests between rpc/client and rpc/tests 3394 - rpc: addresses without a protocol prefix default to `tcp://`. `http://` is also accepted as an alias for `tcp://` 3395 - cmd: commands are more easily reuseable from other tools 3396 - DOCKER: automate build/push 3397 3398 BUG FIXES: 3399 - Fix log statements using keys with spaces (logger does not currently support spaces) 3400 - rpc: set logger on websocket connection 3401 - rpc: fix ws connection stability by setting write deadline on pings 3402 3403 ## 0.10.0 (June 2, 2017) 3404 3405 Includes major updates to configuration, logging, and json serialization. 3406 Also includes the Grand Repo-Merge of 2017. 3407 3408 BREAKING CHANGES: 3409 3410 - Config and Flags: 3411 - The `config` map is replaced with a [`Config` struct](https://github.com/tendermint/tendermint/blob/master/config/config.go#L11), 3412 containing substructs: `BaseConfig`, `P2PConfig`, `MempoolConfig`, `ConsensusConfig`, `RPCConfig` 3413 - This affects the following flags: 3414 - `--seeds` is now `--p2p.seeds` 3415 - `--node_laddr` is now `--p2p.laddr` 3416 - `--pex` is now `--p2p.pex` 3417 - `--skip_upnp` is now `--p2p.skip_upnp` 3418 - `--rpc_laddr` is now `--rpc.laddr` 3419 - `--grpc_laddr` is now `--rpc.grpc_laddr` 3420 - Any configuration option now within a substract must come under that heading in the `config.toml`, for instance: 3421 ``` 3422 [p2p] 3423 laddr="tcp://1.2.3.4:46656" 3424 3425 [consensus] 3426 timeout_propose=1000 3427 ``` 3428 - Use viper and `DefaultConfig() / TestConfig()` functions to handle defaults, and remove `config/tendermint` and `config/tendermint_test` 3429 - Change some function and method signatures to 3430 - Change some [function and method signatures](https://gist.github.com/ebuchman/640d5fc6c2605f73497992fe107ebe0b) accomodate new config 3431 3432 - Logger 3433 - Replace static `log15` logger with a simple interface, and provide a new implementation using `go-kit`. 3434 See our new [logging library](https://github.com/tendermint/tmlibs/log) and [blog post](https://tendermint.com/blog/abstracting-the-logger-interface-in-go) for more details 3435 - Levels `warn` and `notice` are removed (you may need to change them in your `config.toml`!) 3436 - Change some [function and method signatures](https://gist.github.com/ebuchman/640d5fc6c2605f73497992fe107ebe0b) to accept a logger 3437 3438 - JSON serialization: 3439 - Replace `[TypeByte, Xxx]` with `{"type": "some-type", "data": Xxx}` in RPC and all `.json` files by using `go-wire/data`. For instance, a public key is now: 3440 ``` 3441 "pub_key": { 3442 "type": "ed25519", 3443 "data": "83DDF8775937A4A12A2704269E2729FCFCD491B933C4B0A7FFE37FE41D7760D0" 3444 } 3445 ``` 3446 - Remove type information about RPC responses, so `[TypeByte, {"jsonrpc": "2.0", ... }]` is now just `{"jsonrpc": "2.0", ... }` 3447 - Change `[]byte` to `data.Bytes` in all serialized types (for hex encoding) 3448 - Lowercase the JSON tags in `ValidatorSet` fields 3449 - Introduce `EventDataInner` for serializing events 3450 3451 - Other: 3452 - Send InitChain message in handshake if `appBlockHeight == 0` 3453 - Do not include the `Accum` field when computing the validator hash. This makes the ValidatorSetHash unique for a given validator set, rather than changing with every block (as the Accum changes) 3454 - Unsafe RPC calls are not enabled by default. This includes `/dial_seeds`, and all calls prefixed with `unsafe`. Use the `--rpc.unsafe` flag to enable. 3455 3456 3457 FEATURES: 3458 3459 - Per-module log levels. For instance, the new default is `state:info,*:error`, which means the `state` package logs at `info` level, and everything else logs at `error` level 3460 - Log if a node is validator or not in every consensus round 3461 - Use ldflags to set git hash as part of the version 3462 - Ignore `address` and `pub_key` fields in `priv_validator.json` and overwrite them with the values derrived from the `priv_key` 3463 3464 IMPROVEMENTS: 3465 3466 - Merge `tendermint/go-p2p -> tendermint/tendermint/p2p` and `tendermint/go-rpc -> tendermint/tendermint/rpc/lib` 3467 - Update paths for grand repo merge: 3468 - `go-common -> tmlibs/common` 3469 - `go-data -> go-wire/data` 3470 - All other `go-` libs, except `go-crypto` and `go-wire`, are merged under `tmlibs` 3471 - No global loggers (loggers are passed into constructors, or preferably set with a SetLogger method) 3472 - Return HTTP status codes with errors for RPC responses 3473 - Limit `/blockchain_info` call to return a maximum of 20 blocks 3474 - Use `.Wrap()` and `.Unwrap()` instead of eg. `PubKeyS` for `go-crypto` types 3475 - RPC JSON responses use pretty printing (via `json.MarshalIndent`) 3476 - Color code different instances of the consensus for tests 3477 - Isolate viper to `cmd/tendermint/commands` and do not read config from file for tests 3478 3479 3480 ## 0.9.2 (April 26, 2017) 3481 3482 BUG FIXES: 3483 3484 - Fix bug in `ResetPrivValidator` where we were using the global config and log (causing external consumers, eg. basecoin, to fail). 3485 3486 ## 0.9.1 (April 21, 2017) 3487 3488 FEATURES: 3489 3490 - Transaction indexing - txs are indexed by their hash using a simple key-value store; easily extended to more advanced indexers 3491 - New `/tx?hash=X` endpoint to query for transactions and their DeliverTx result by hash. Optionally returns a proof of the tx's inclusion in the block 3492 - `tendermint testnet` command initializes files for a testnet 3493 3494 IMPROVEMENTS: 3495 3496 - CLI now uses Cobra framework 3497 - TMROOT is now TMHOME (TMROOT will stop working in 0.10.0) 3498 - `/broadcast_tx_XXX` also returns the Hash (can be used to query for the tx) 3499 - `/broadcast_tx_commit` also returns the height the block was committed in 3500 - ABCIResponses struct persisted to disk before calling Commit; makes handshake replay much cleaner 3501 - WAL uses #ENDHEIGHT instead of #HEIGHT (#HEIGHT will stop working in 0.10.0) 3502 - Peers included via `--seeds`, under `seeds` in the config, or in `/dial_seeds` are now persistent, and will be reconnected to if the connection breaks 3503 3504 BUG FIXES: 3505 3506 - Fix bug in fast-sync where we stop syncing after a peer is removed, even if they're re-added later 3507 - Fix handshake replay to handle validator set changes and results of DeliverTx when we crash after app.Commit but before state.Save() 3508 3509 ## 0.9.0 (March 6, 2017) 3510 3511 BREAKING CHANGES: 3512 3513 - Update ABCI to v0.4.0, where Query is now `Query(RequestQuery) ResponseQuery`, enabling precise proofs at particular heights: 3514 3515 ``` 3516 message RequestQuery{ 3517 bytes data = 1; 3518 string path = 2; 3519 uint64 height = 3; 3520 bool prove = 4; 3521 } 3522 3523 message ResponseQuery{ 3524 CodeType code = 1; 3525 int64 index = 2; 3526 bytes key = 3; 3527 bytes value = 4; 3528 bytes proof = 5; 3529 uint64 height = 6; 3530 string log = 7; 3531 } 3532 ``` 3533 3534 3535 - `BlockMeta` data type unifies its Hash and PartSetHash under a `BlockID`: 3536 3537 ``` 3538 type BlockMeta struct { 3539 BlockID BlockID `json:"block_id"` // the block hash and partsethash 3540 Header *Header `json:"header"` // The block's Header 3541 } 3542 ``` 3543 3544 - `ValidatorSet.Proposer` is exposed as a field and persisted with the `State`. Use `GetProposer()` to initialize or update after validator-set changes. 3545 3546 - `tendermint gen_validator` command output is now pure JSON 3547 3548 FEATURES: 3549 3550 - New RPC endpoint `/commit?height=X` returns header and commit for block at height `X` 3551 - Client API for each endpoint, including mocks for testing 3552 3553 IMPROVEMENTS: 3554 3555 - `Node` is now a `BaseService` 3556 - Simplified starting Tendermint in-process from another application 3557 - Better organized Makefile 3558 - Scripts for auto-building binaries across platforms 3559 - Docker image improved, slimmed down (using Alpine), and changed from tendermint/tmbase to tendermint/tendermint 3560 - New repo files: `CONTRIBUTING.md`, Github `ISSUE_TEMPLATE`, `CHANGELOG.md` 3561 - Improvements on CircleCI for managing build/test artifacts 3562 - Handshake replay is doen through the consensus package, possibly using a mockApp 3563 - Graceful shutdown of RPC listeners 3564 - Tests for the PEX reactor and DialSeeds 3565 3566 BUG FIXES: 3567 3568 - Check peer.Send for failure before updating PeerState in consensus 3569 - Fix panic in `/dial_seeds` with invalid addresses 3570 - Fix proposer selection logic in ValidatorSet by taking the address into account in the `accumComparable` 3571 - Fix inconcistencies with `ValidatorSet.Proposer` across restarts by persisting it in the `State` 3572 3573 3574 ## 0.8.0 (January 13, 2017) 3575 3576 BREAKING CHANGES: 3577 3578 - New data type `BlockID` to represent blocks: 3579 3580 ``` 3581 type BlockID struct { 3582 Hash []byte `json:"hash"` 3583 PartsHeader PartSetHeader `json:"parts"` 3584 } 3585 ``` 3586 3587 - `Vote` data type now includes validator address and index: 3588 3589 ``` 3590 type Vote struct { 3591 ValidatorAddress []byte `json:"validator_address"` 3592 ValidatorIndex int `json:"validator_index"` 3593 Height int `json:"height"` 3594 Round int `json:"round"` 3595 Type byte `json:"type"` 3596 BlockID BlockID `json:"block_id"` // zero if vote is nil. 3597 Signature crypto.Signature `json:"signature"` 3598 } 3599 ``` 3600 3601 - Update TMSP to v0.3.0, where it is now called ABCI and AppendTx is DeliverTx 3602 - Hex strings in the RPC are now "0x" prefixed 3603 3604 3605 FEATURES: 3606 3607 - New message type on the ConsensusReactor, `Maj23Msg`, for peers to alert others they've seen a Maj23, 3608 in order to track and handle conflicting votes intelligently to prevent Byzantine faults from causing halts: 3609 3610 ``` 3611 type VoteSetMaj23Message struct { 3612 Height int 3613 Round int 3614 Type byte 3615 BlockID types.BlockID 3616 } 3617 ``` 3618 3619 - Configurable block part set size 3620 - Validator set changes 3621 - Optionally skip TimeoutCommit if we have all the votes 3622 - Handshake between Tendermint and App on startup to sync latest state and ensure consistent recovery from crashes 3623 - GRPC server for BroadcastTx endpoint 3624 3625 IMPROVEMENTS: 3626 3627 - Less verbose logging 3628 - Better test coverage (37% -> 49%) 3629 - Canonical SignBytes for signable types 3630 - Write-Ahead Log for Mempool and Consensus via tmlibs/autofile 3631 - Better in-process testing for the consensus reactor and byzantine faults 3632 - Better crash/restart testing for individual nodes at preset failure points, and of networks at arbitrary points 3633 - Better abstraction over timeout mechanics 3634 3635 BUG FIXES: 3636 3637 - Fix memory leak in mempool peer 3638 - Fix panic on POLRound=-1 3639 - Actually set the CommitTime 3640 - Actually send BeginBlock message 3641 - Fix a liveness issues caused by Byzantine proposals/votes. Uses the new `Maj23Msg`. 3642 3643 3644 ## 0.7.4 (December 14, 2016) 3645 3646 FEATURES: 3647 3648 - Enable the Peer Exchange reactor with the `--pex` flag for more resilient gossip network (feature still in development, beware dragons) 3649 3650 IMPROVEMENTS: 3651 3652 - Remove restrictions on RPC endpoint `/dial_seeds` to enable manual network configuration 3653 3654 ## 0.7.3 (October 20, 2016) 3655 3656 IMPROVEMENTS: 3657 3658 - Type safe FireEvent 3659 - More WAL/replay tests 3660 - Cleanup some docs 3661 3662 BUG FIXES: 3663 3664 - Fix deadlock in mempool for synchronous apps 3665 - Replay handles non-empty blocks 3666 - Fix race condition in HeightVoteSet 3667 3668 ## 0.7.2 (September 11, 2016) 3669 3670 BUG FIXES: 3671 3672 - Set mustConnect=false so tendermint will retry connecting to the app 3673 3674 ## 0.7.1 (September 10, 2016) 3675 3676 FEATURES: 3677 3678 - New TMSP connection for Query/Info 3679 - New RPC endpoints: 3680 - `tmsp_query` 3681 - `tmsp_info` 3682 - Allow application to filter peers through Query (off by default) 3683 3684 IMPROVEMENTS: 3685 3686 - TMSP connection type enforced at compile time 3687 - All listen/client urls use a "tcp://" or "unix://" prefix 3688 3689 BUG FIXES: 3690 3691 - Save LastSignature/LastSignBytes to `priv_validator.json` for recovery 3692 - Fix event unsubscribe 3693 - Fix fastsync/blockchain reactor 3694 3695 ## 0.7.0 (August 7, 2016) 3696 3697 BREAKING CHANGES: 3698 3699 - Strict SemVer starting now! 3700 - Update to ABCI v0.2.0 3701 - Validation types now called Commit 3702 - NewBlock event only returns the block header 3703 3704 3705 FEATURES: 3706 3707 - TMSP and RPC support TCP and UNIX sockets 3708 - Addition config options including block size and consensus parameters 3709 - New WAL mode `cswal_light`; logs only the validator's own votes 3710 - New RPC endpoints: 3711 - for starting/stopping profilers, and for updating config 3712 - `/broadcast_tx_commit`, returns when tx is included in a block, else an error 3713 - `/unsafe_flush_mempool`, empties the mempool 3714 3715 3716 IMPROVEMENTS: 3717 3718 - Various optimizations 3719 - Remove bad or invalidated transactions from the mempool cache (allows later duplicates) 3720 - More elaborate testing using CircleCI including benchmarking throughput on 4 digitalocean droplets 3721 3722 BUG FIXES: 3723 3724 - Various fixes to WAL and replay logic 3725 - Various race conditions 3726 3727 ## PreHistory 3728 3729 Strict versioning only began with the release of v0.7.0, in late summer 2016. 3730 The project itself began in early summer 2014 and was workable decentralized cryptocurrency software by the end of that year. 3731 Through the course of 2015, in collaboration with Eris Industries (now Monax Industries), 3732 many additional features were integrated, including an implementation from scratch of the Ethereum Virtual Machine. 3733 That implementation now forms the heart of [Burrow](https://github.com/hyperledger/burrow). 3734 In the later half of 2015, the consensus algorithm was upgraded with a more asynchronous design and a more deterministic and robust implementation. 3735 3736 By late 2015, frustration with the difficulty of forking a large monolithic stack to create alternative cryptocurrency designs led to the 3737 invention of the Application Blockchain Interface (ABCI), then called the Tendermint Socket Protocol (TMSP). 3738 The Ethereum Virtual Machine and various other transaction features were removed, and Tendermint was whittled down to a core consensus engine 3739 driving an application running in another process. 3740 The ABCI interface and implementation were iterated on and improved over the course of 2016, 3741 until versioned history kicked in with v0.7.0.