8000 Release v0.37.2 by thanethomson · Pull Request #972 · cometbft/cometbft · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

Release v0.37.2 #972

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 7 commits into from
Jun 14, 2023
Merged

Release v0.37.2 #972

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
1ca29d0
changelog: Clean up and reorder
thanethomson Jun 14, 2023
cfcb4ed
changelog: Add severity to security fixes
thanethomson Jun 14, 2023
1f9941e
changelog: Add missing entries
thanethomson Jun 14, 2023
f9e2da6
changelog: Release v0.37.2
thanethomson Jun 14, 2023
b74bfd7
Rebuild changelog
thanethomson Jun 14, 2023
4df6ee8
version: Bump to v0.37.2
thanethomson Jun 14, 2023
336c3c0
test/e2e: Use Debian Bullseye as base image
thanethomson Jun 14, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 0 additions & 2 deletions .changelog/unreleased/bug-fixes/771-kvindexer-parsing-big-ints.md
View file
Open in desktop

This file was deleted.

3 changes: 0 additions & 3 deletions .changelog/unreleased/bug-fixes/771-pubsub-parsing-big-ints.md
View file
Open in desktop

This file was deleted.

2 changes: 0 additions & 2 deletions .changelog/unreleased/bug-fixes/865-fix-peerstate-marshaljson.md
View file
Open in desktop

This file was deleted.

1 change: 0 additions & 1 deletion .changelog/unreleased/bug-fixes/890-mempool-fix-cache.md
View file
Open in desktop

This file was deleted.

4 changes: 4 additions & 0 deletions .changelog/v0.37.2/bug-fixes/771-kvindexer-parsing-big-ints.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
- `[state/kvindex]` Querying event attributes that are bigger than int64 is now
enabled. We are not supporting reading floats from the db into the indexer
nor parsing them into BigFloats to not introduce breaking changes in minor
releases. ([\#771](https://github.com/cometbft/cometbft/pull/771))
4 changes: 4 additions & 0 deletions .changelog/v0.37.2/bug-fixes/771-pubsub-parsing-big-ints.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
- `[pubsub]` Pubsub queries are now able to parse big integers (larger than
int64). Very big floats are also properly parsed into very big integers
instead of being truncated to int64.
([\#771](https://github.com/cometbft/cometbft/pull/771))
0 ...ovements/654-rpc-rm-response-data-logs.md → ...ovements/654-rpc-rm-response-data-logs.md
View file
Open in desktop
File renamed without changes.
3 changes: 3 additions & 0 deletions .changelog/v0.37.2/security-fixes/787-rpc-client-pw.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
- `[rpc/jsonrpc/client]` **Low severity** - Prevent RPC
client credentials from being inadvertently dumped to logs
([\#787](https://github.com/cometbft/cometbft/pull/787))
2 changes: 2 additions & 0 deletions .changelog/v0.37.2/security-fixes/793-cli-debug-kill-unsafe-cast.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
- `[cmd/cometbft/commands/debug/kill]` **Low severity** - Fix unsafe int cast in
`debug kill` command ([\#793](https://github.com/cometbft/cometbft/pull/793))
3 changes: 3 additions & 0 deletions .changelog/v0.37.2/security-fixes/865-fix-peerstate-marshaljson.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
- `[consensus]` **Low severity** - Avoid recursive call after rename to
`(*PeerState).MarshalJSON`
([\#863](https://github.com/cometbft/cometbft/pull/863))
3 changes: 3 additions & 0 deletions .changelog/v0.37.2/security-fixes/890-mempool-fix-cache.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
- `[mempool/clist_mempool]` **Low severity** - Prevent a transaction from
appearing twice in the mempool
([\#890](https://github.com/cometbft/cometbft/pull/890): @otrack)
4 changes: 4 additions & 0 deletions .changelog/v0.37.2/summary.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
*June 14, 2023*

Provides several minor bug fixes, as well as fixes for several low-severity
security issues.
38 changes: 38 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,43 @@
# CHANGELOG

## v0.37.2

*June 14, 2023*

Provides several minor bug fixes, as well as fixes for several low-severity
security issues.

### BUG FIXES

- `[state/kvindex]` Querying event attributes that are bigger than int64 is now
enabled. We are not supporting reading floats from the db into the indexer
nor parsing them into BigFloats to not introduce breaking changes in minor
releases. ([\#771](https://github.com/cometbft/cometbft/pull/771))
- `[pubsub]` Pubsub queries are now able to parse big integers (larger than
int64). Very big floats are also properly parsed into very big integers
instead of being truncated to int64.
([\#771](https://github.com/cometbft/cometbft/pull/771))

### IMPROVEMENTS

- `[rpc]` Remove response data from response failure logs in order
to prevent large quantities of log data from being produced
([\#654](https://github.com/cometbft/cometbft/issues/654))

### SECURITY FIXES

- `[rpc/jsonrpc/client]` **Low severity** - Prevent RPC
client credentials from being inadvertently dumped to logs
([\#787](https://github.com/cometbft/cometbft/pull/787))
- `[cmd/cometbft/commands/debug/kill]` **Low severity** - Fix unsafe int cast in
`debug kill` command ([\#793](https://github.com/cometbft/cometbft/pull/793))
- `[consensus]` **Low severity** - Avoid recursive call after rename to
`(*PeerState).MarshalJSON`
([\#863](https://github.com/cometbft/cometbft/pull/863))
- `[mempool/clist_mempool]` **Low severity** - Prevent a transaction from
appearing twice in the mempool
([\#890](https://github.com/cometbft/cometbft/pull/890): @otrack)

## v0.37.1

*April 26, 2023*
Expand Down
2 changes: 1 addition & 1 deletion test/e2e/docker/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
# We need to build in a Linux environment to support C libraries, e.g. RocksDB.
# We use Debian instead of Alpine, so that we can use binary database packages
# instead of spending time compiling them.
FROM golang:1.20
FROM golang:1.20-bullseye

RUN apt-get -qq update -y && apt-get -qq upgrade -y >/dev/null
RUN apt-get -qq install -y libleveldb-dev librocksdb-dev >/dev/null
Expand Down
2 changes: 1 addition & 1 deletion version/version.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ const (
// The default version of TMCoreSemVer is the value used as the
// fallback version of CometBFT when not using git describe.
// It is formatted with semantic versioning.
TMCoreSemVer = "0.37.1"
TMCoreSemVer = "0.37.2"
// ABCISemVer is the semantic version of the ABCI protocol
ABCISemVer = "1.0.0"
ABCIVersion = ABCISemVer
Expand Down
0