Sam Kleinman
0c2c0afaf8
db: migration script for key format change ( #6355 )
2021-04-16 11:53:43 -04:00
Tess Rinearson
281b5234b2
changelog: update for 0.34.10 ( #6358 )
2021-04-15 09:29:11 -07:00
Sam Kleinman
4d03d7516b
test/e2e: produce structured reporting from benchmarks ( #6343 )
2021-04-14 10:12:46 -04:00
Aleksandr Bezobchuk
47b28fd6aa
p2p: minor cleanup + update router options ( #6353 )
2021-04-14 09:35:43 -04:00
JayT106
ca7dbea05b
Set cache control in the HTTP-RPC response header ( #6265 )
2021-04-14 14:05:27 +02:00
dependabot[bot]
c9125a6625
build(deps): Bump actions/cache from v2.1.4 to v2.1.5 ( #6350 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/cache/releases )
- [Commits](https://github.com/actions/cache/compare/v2.1.4...1a9e2138d905efd099035b49d8b7a3888c653ca8 )
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marko <marbar3778@yahoo.com >
2021-04-13 15:30:59 -07:00
Aleksandr Bezobchuk
570e24f902
adr: ADR 065: Custom Event Indexing ( #6307 )
2021-04-13 13:37:09 -04:00
Callum Waters
2b8aa65e4f
e2e: tx load to use broadcast sync instead of commit ( #6347 )
2021-04-13 17:59:15 +02:00
Tess Rinearson
3761aa6904
docs: remove RFC section and s/RFC001/ADR066 ( #6345 )
...
Per conversations earlier today, we'll consider all proposed implementation changes part of the ADR process rather than the RFC process (which will remain, for now, on the spec; this may get incorporated instead into the burgeoning "CIPS" process).
This change renames RFC 1 to ADR 66, leaving space for the not-yet-merged ADR 65.
2021-04-13 13:34:50 +00:00
Callum Waters
d4d2b66067
light: handle too high errors correctly ( #6346 )
2021-04-13 14:21:00 +02:00
Cyrus Goh
be48602c6b
docs: bump vuepress-theme-cosmos ( #6344 )
2021-04-12 23:12:07 +00:00
dependabot[bot]
0dde4826e7
build(deps): Bump styfle/cancel-workflow-action from 0.8.0 to 0.9.0 ( #6341 )
...
Bumps [styfle/cancel-workflow-action](https://github.com/styfle/cancel-workflow-action ) from 0.8.0 to 0.9.0.
- [Release notes](https://github.com/styfle/cancel-workflow-action/releases )
- [Commits](https://github.com/styfle/cancel-workflow-action/compare/0.8.0...89f242ee29e10c53a841bfe71cc0ce7b2f065abc )
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Sam Kleinman <garen@tychoish.com >
2021-04-12 17:14:20 +02:00
Nate Williams
b517dd5685
Expose getter for txIndexer ( #6327 )
2021-04-12 14:47:20 +02:00
gotjoshua
f563bd4ff1
RPC: don't cap page size in unsafe mode ( #6329 )
2021-04-12 13:51:56 +02:00
Shahan Khatchadourian
d0828f3454
Minor update to security.md ( #6337 )
2021-04-09 12:04:42 +02:00
Tess Rinearson
b13b7620b4
security: update policy after latest security release ( #6336 )
2021-04-09 11:59:57 +02:00
Sam Kleinman
3a690568ae
p2p: make peer scoring test more resilient ( #6322 )
2021-04-08 16:06:54 -04:00
Tess Rinearson
8b7a53bdb2
changelog: update to reflect 0.34.9 ( #6334 )
2021-04-08 19:33:16 +00:00
dependabot[bot]
ae2646a371
build(deps): Bump google.golang.org/grpc from 1.36.1 to 1.37.0 ( #6330 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.36.1 to 1.37.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases ">google.golang.org/grpc's releases</a>.</em></p>
<blockquote>
<h2>Release 1.37.0</h2>
<h1>API Changes</h1>
<ul>
<li>balancer: Add UpdateAddresses() to balancer.ClientConn interface (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4215 ">#4215</a>)
<ul>
<li><strong>NOTICE</strong>: balancer.SubConn.UpdateAddresses() is now deprecated and will be <strong>REMOVED</strong> in gRPC-Go 1.39</li>
</ul>
</li>
</ul>
<h1>Behavior Changes</h1>
<ul>
<li>balancer/base: keep address attributes for pickers (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4253 ">#4253</a>)
<ul>
<li>Special Thanks: <a href="https://github.com/longXboy "><code>@longXboy</code></a></li>
</ul>
</li>
</ul>
<h1>New Features</h1>
<ul>
<li>xds: add support for csds (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4226 ">#4226</a>, <a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4217 ">#4217</a>, <a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4243 ">#4243</a>)</li>
<li>admin: create admin package for conveniently registering standard admin services (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4274 ">#4274</a>)</li>
<li>xds: add support for HTTP filters (gRFC A39) (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4206 ">#4206</a>, <a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4221 ">#4221</a>)</li>
<li>xds: implement fault injection HTTP filter (A33) (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4236 ">#4236</a>)</li>
<li>xds: enable timeout, circuit breaking, and fault injection by default (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4286 ">#4286</a>)</li>
<li>xds: implement a priority based load balancer (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4070 ">#4070</a>)</li>
<li>xds/creds: support all SAN matchers on client-side (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4246 ">#4246</a>)</li>
</ul>
<h1>Bug Fixes</h1>
<ul>
<li>xds: add env var protection for client-side security (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4247 ">#4247</a>)</li>
<li>circuit breaking: update picker inline when there's a counter update (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4212 ">#4212</a>)</li>
<li>server: fail RPCs without POST HTTP method (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4241 ">#4241</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="daba805838https://github-redirect.dependabot.com/grpc/grpc-go/issues/4304 ">#4304</a>)</li>
<li><a href="03fa67a523https://github-redirect.dependabot.com/grpc/grpc-go/issues/4307 ">#4307</a>) (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4320 ">#4320</a>)</li>
<li><a href="4a19753e9dhttps://github-redirect.dependabot.com/grpc/grpc-go/issues/4290 ">#4290</a>)</li>
<li><a href="2456c5cff0https://github-redirect.dependabot.com/grpc/grpc-go/issues/4291 ">#4291</a>)</li>
<li><a href="80e380eff4https://github-redirect.dependabot.com/grpc/grpc-go/issues/4253 ">#4253</a>)</li>
<li><a href="702608ffaehttps://github-redirect.dependabot.com/grpc/grpc-go/issues/4286 ">#4286</a>)</li>
<li><a href="faf4e1c777https://github-redirect.dependabot.com/grpc/grpc-go/issues/4287 ">#4287</a>)</li>
<li><a href="46da49ca60https://github-redirect.dependabot.com/grpc/grpc-go/issues/4285 ">#4285</a>)</li>
<li><a href="b331a48e06https://github-redirect.dependabot.com/grpc/grpc-go/issues/4284 ">#4284</a>)</li>
<li><a href="d26af8e391https://github-redirect.dependabot.com/grpc/grpc-go/issues/4274 ">#4274</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/grpc/grpc-go/compare/v1.36.1...v1.37.0 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2021-04-08 17:54:15 +00:00
Callum Waters
a818f914ab
fix deadlock in light tests ( #6332 )
2021-04-08 19:30:19 +02:00
Callum Waters
b272746444
Merge pull request from GHSA-f3w5-v9xx-rp8p
...
* add time warping lunatic attack test
* create too high and connecton refused errors and add to the light client provider
* add height check to provider
* introduce block lag
* add detection logic for processing forward lunatic attack
* add node-side verification logic
* clean up tests and formatting
* update adr's
* update testing
* fix fetching the latest block
* format
* update changelog
* implement suggestions
* modify ADR's
* format
* clean up node evidence verification
2021-04-08 08:10:03 -07:00
Sam Kleinman
0f41f7465c
p2p: extend e2e tests for new p2p framework ( #6323 )
2021-04-08 11:09:21 -04:00
dependabot[bot]
0b770870c9
build(deps): Bump docker/setup-buildx-action from v1 to v1.1.2 ( #6324 )
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from v1 to v1.1.2.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1...2a4b53665e15ce7d7049afb11ff1f70ff1610609 )
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-07 12:48:24 -04:00
Sam Kleinman
dbfd6fc613
consensus: reduce shared state in tests ( #6313 )
2021-04-06 11:01:48 -04:00
Callum Waters
845efdb76e
remove event bus from evidence reactor ( #6320 )
2021-04-06 16:19:30 +02:00
dependabot[bot]
cae3a75121
build(deps): Bump JamesIves/github-pages-deploy-action ( #6316 )
...
Bumps [JamesIves/github-pages-deploy-action](https://github.com/JamesIves/github-pages-deploy-action ) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/JamesIves/github-pages-deploy-action/releases )
- [Commits](https://github.com/JamesIves/github-pages-deploy-action/compare/4.1.0...164583b9e44b4fc5910e78feb607ea7c98d3c7b9 )
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-06 14:48:03 +02:00
dependabot[bot]
d3570c6734
build(deps): Bump codecov/codecov-action from v1.3.1 to v1.3.2 ( #6319 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from v1.3.1 to v1.3.2.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v1.3.1...9b0b9bbe2c64e9ed41413180dd7398450dfeee14 )
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-06 11:54:01 +00:00
dependabot[bot]
10f4b7de64
build(deps): Bump golangci/golangci-lint-action from v2.5.1 to v2.5.2 ( #6317 )
2021-04-05 12:47:27 -04:00
Sam Kleinman
6d9372bd39
test: improve cleanup for data and disk use ( #6311 )
2021-04-05 12:39:04 -04:00
Sam Kleinman
bcdf923cb8
p2p: improve router test stability ( #6310 )
2021-04-05 10:54:32 -04:00
Sam Kleinman
1c4dbe30d4
abci: change client to use multi-reader mutexes ( #6306 )
2021-04-03 14:25:15 -04:00
Aleksandr Bezobchuk
46e06c9732
state: fix block event indexing reserved key check ( #6314 )
...
copy 🍝 bug when porting similar logic from the tx indexing code.
2021-04-03 16:18:54 +00:00
Lanie Hei
053651160f
Adds missing line break ( #6309 )
...
Adds small fix to the docs. Line 67 specifies "two key changes". I think this is where the second bullet point was meant to start.
2021-04-02 18:25:24 +00:00
Callum Waters
358d1a28b8
node: remove mode defaults. Make node mode explicit ( #6282 )
2021-04-02 09:31:25 +02:00
Sam Kleinman
f2f085c7a3
fix: test fixture peer manager in mempool reactor tests ( #6308 )
2021-04-01 13:01:04 -04:00
Sam Kleinman
19393f0c28
test: clean up databases in tests ( #6304 )
2021-04-01 11:24:23 -04:00
Sam Kleinman
0811c7be99
fix: theoretical leak in clisit.Init ( #6302 )
2021-04-01 10:03:51 -04:00
Sam Kleinman
d0b513c182
p2p: filter peers by IP address and ID ( #6300 )
2021-03-30 18:00:43 -04:00
Sam Kleinman
3ed8f14bf9
p2p: connect max inbound peers configuration to new router ( #6296 )
2021-03-30 10:04:14 -04:00
dependabot[bot]
70ea675f38
build(deps): Bump github.com/Workiva/go-datastructures ( #6298 )
...
Bumps [github.com/Workiva/go-datastructures](https://github.com/Workiva/go-datastructures ) from 1.0.52 to 1.0.53.
- [Release notes](https://github.com/Workiva/go-datastructures/releases )
- [Commits](https://github.com/Workiva/go-datastructures/compare/v1.0.52...v1.0.53 )
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marko <marbar3778@yahoo.com >
2021-03-30 11:41:47 +00:00
dependabot[bot]
e2dc241c9d
build(deps): Bump github.com/golang/protobuf from 1.5.1 to 1.5.2 ( #6299 )
...
Bumps [github.com/golang/protobuf](https://github.com/golang/protobuf ) from 1.5.1 to 1.5.2.
- [Release notes](https://github.com/golang/protobuf/releases )
- [Commits](https://github.com/golang/protobuf/compare/v1.5.1...v1.5.2 )
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-03-30 11:26:13 +00:00
Sam Kleinman
c62e320ffd
p2p: rate-limit incoming connections by IP ( #6286 )
2021-03-29 17:07:05 -04:00
Sam Kleinman
91506bf25d
p2p: simple peer scoring ( #6277 )
2021-03-29 16:12:23 -04:00
Callum Waters
cbae3613dd
e2e: add evidence generation and testing ( #6276 )
2021-03-29 20:00:20 +02:00
Marko
32ee737d42
change index block log to info ( #6290 )
...
## Description
Change log from error to info for indexing blocks
2021-03-29 13:50:12 +00:00
Marko
6a34fd8fc3
ci: add janitor ( #6292 )
...
* add janitor
* add workflow ids
* add comment
2021-03-29 13:38:26 +00:00
Frojdi Dymylja
9ecfcc93a6
fix: jsonrpc url parsing and dial function ( #6264 )
...
This PR fixes how the jsonrpc parses the URL, and how the dial function connects to the RPC.
Closes: https://github.com/tendermint/tendermint/issues/6260
2021-03-29 09:24:52 +00:00
Callum Waters
63f6c26072
update tm command from node to start ( #6283 )
2021-03-29 11:13:24 +02:00
dependabot[bot]
d988cd6101
build(deps): Bump github.com/minio/highwayhash from 1.0.1 to 1.0.2 ( #6280 )
...
Bumps [github.com/minio/highwayhash](https://github.com/minio/highwayhash ) from 1.0.1 to 1.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/minio/highwayhash/releases ">github.com/minio/highwayhash's releases</a>.</em></p>
<blockquote>
<h2>Version v1.0.2</h2>
<h2>Changelog</h2>
<h3>Fixed</h3>
<p>Issue <a href="https://github-redirect.dependabot.com/minio/highwayhash/issues/17 ">#17</a> - on arm64 (on Go 1.16) wrong hash values got computed due to incorrectly naming asm constants like regular Go functions. This probably confused the linker and caused the arm64 implementation to compute incorrect hash values. Fixed by 08ce0b4</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="08ce0b4fa7https://github-redirect.dependabot.com/minio/highwayhash/issues/19 ">#19</a>)</li>
<li><a href="5311fe963fhttps://github-redirect.dependabot.com/minio/highwayhash/issues/18 ">#18</a>)</li>
<li>See full diff in <a href="https://github.com/minio/highwayhash/compare/v1.0.1...v1.0.2 ">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
2021-03-26 19:53:56 +00:00
dependabot[bot]
ca080b5a7f
build(deps): Bump google.golang.org/grpc from 1.36.0 to 1.36.1 ( #6281 )
2021-03-26 15:43:30 -04:00
