[crypto/merkle]The publicProof.ComputeRootHashfunction has been deleted. (#558)[rpc/grpc]Remove the deprecated gRPC broadcast API (#650)[consensus]Handshaker.Handshakenow requirescontext.Context(cometbft/cometbft#857)[node]NewNodenow requirescontext.Contextas the first parameter (cometbft/cometbft#857)[mempool]Change the signature ofCheckTxin theMempoolinterface toCheckTx(tx types.Tx) (*abcicli.ReqRes, error). Also, add new methodSetTxRemovedCallback. (#1010)[mempool]RemovemempoolIDsfor internally storing peer ids asp2p.IDinstead ofuint16. (#1146)[cmd]Removereplayandreplay-consolesubcommands and corresponding consensus file replay code, such asconsensus.RunReplayFile, andconsensus.State.ReplayFile(#1170)[node]Change the signature ofGenesisDocProviderto return the checksum of JSON content alongside the parsed genesis data (#1287).
[consensus]#1203 consensus now prevotesnilwhen the proposed value does not match the value the local validator has locked on (#1203)[consensus]#1175 remove logic to unlock block on +2/3 prevote for nil (#1175: @BrendanChou)
[mempool]Add a metric (a counter) to measure whether a tx was received more than once. (#634)[consensus]New metrics (counters) to track duplicate votes and block parts. (#896)[consensus]Optimize vote and block part gossip with new messageHasProposalBlockPartMessage, which is similar toHasVoteMessage; and random sleep in the loop broadcasting those messages. The sleep can be configured with new configpeer_gossip_intraloop_sleep_duration, which is set to 0 by default as this is experimental. Our scale tests show substantial bandwidth improvement with a value of 50 ms. (#904)- Update Apalache type annotations in the light client spec (#955)
[node]Remove genesis persistence in state db, replaced by a hash (cometbft/cometbft#1017, cometbft/cometbft#1295)[consensus]Log vote validation failures at info level (#1022)[consensus]When prevoting, avoid calling PropocessProposal when we know the proposal was already validated by correct nodes. (#1230)[node]On upgrade, after #1296, delete the genesis file existing in the DB. (cometbft/cometbft#1297
- Bump minimum Go version to v1.21 (#1244)
September 12, 2023
This release includes the second part of ABCI++, called ABCI 2.0.
ABCI 2.0 introduces ABCI methods ExtendVote and VerifyVoteExtension.
These new methods allow the application to add data (opaque to CometBFT),
called vote extensions to precommit votes sent by validators.
These vote extensions are made available to the proposer(s) of the next height.
Additionally, ABCI 2.0 coalesces BeginBlock, DeliverTx, and EndBlock
into one method, FinalizeBlock, whose Request* and Response*
data structures contain the sum of all data previously contained
in the respective Request* and Response* data structures in
BeginBlock, DeliverTx, and EndBlock.
See the specification for more details on ABCI 2.0.
[mempool]Remove priority mempool. (#260)[config]RemoveVersionfield fromMempoolConfig. (#260)[protobuf]Remove fieldssender,priority, andmempool_errorfromResponseCheckTx. (#260)[crypto/merkle]Do not allow verification of Merkle Proofs against empty trees (nilroot).Proof.ComputeRootHashnow panics when it encounters an error, butProof.Verifydoes not panic (#558)[state/kvindexer]Remove the function type from the event key stored in the database. This should be breaking only for people who forked CometBFT and interact directly with the indexers kvstore. (#774)[rpc]Removedbegin_block_eventsandend_block_eventsfromBlockResultsResponse. The events are merged into one field calledfinalize_block_events. (#9427)[pubsub]Added support for big integers and big floats in the pubsub event query system. Breaking changes: functionNumberin packagelibs/pubsub/query/syntaxchanged its return value. (#797)[kvindexer]Added support for big integers and big floats in the kvindexer. Breaking changes: functionNumberin packagelibs/pubsub/query/syntaxchanged its return value. (#797)[mempool]Application can now setConsensusParams.Block.MaxBytesto -1 to have visibility on all transactions in the mempool atPrepareProposaltime. This means that the total size of transactions sent viaRequestPrepareProposalmight exceedRequestPrepareProposal.max_tx_bytes. If that is the case, the application MUST make sure that the total size of transactions returned inResponsePrepareProposal.txsdoes not exceedRequestPrepareProposal.max_tx_bytes, otherwise CometBFT will panic. (#980)[node/state]Add Go API to bootstrap block store and state store to a height. Make sure block sync starts syncing from bootstrapped height. (#1057) (@yihuang)[state/store]Added Go functions to save height at which offline state sync is performed. (#1057) (@jmalicevic)[p2p]Remove UPnP functionality (#1113)[node]RemovedConsensusState()accessor fromNodestruct - all access to consensus state should go via the reactor (#1120)[state]Signature ofExtendVotechanged inBlockExecutor. It now includes the block whose precommit will be extended, an the state object. (#1270)[state]Move pruneBlocks from node/state to state/execution. (#6541)[abci]Moveapp_hashparameter fromCommittoFinalizeBlock(#8664)[abci]IntroduceFinalizeBlockwhich condensesBeginBlock,DeliverTxandEndBlockinto a single method call (#9468)[p2p]Remove unused p2p/trust package (#9625)[rpc]Remove global environment and replace with constructor (#9655)[node]Move DBContext and DBProvider from the node package to the config package. (#9655)[inspect]Add a newinspectcommand for introspecting the state and block store of a crashed tendermint node. (#9655)[metrics]Move state-syncing and block-syncing metrics to their respective packages. Move labels from block_syncing -> blocksync_syncing and state_syncing -> statesync_syncing (#9682)
[kvindexer]Forward porting the fixes done to the kvindexer in 0.37 in PR #77 (#423)[consensus]Unexpected error conditions inApplyBlockare non-recoverable, so ignoring the error and carrying on is a bug. We replaced areturnthat disregarded the error by apanic. (#496)[consensus]Rename(*PeerState).ToJSONtoMarshalJSONto fix a logging data race (#524)[light]Fixed an edge case where a light client would panic when attempting to query a node that (1) has started from a non-zero height and (2) does not yet have any data. The light client will now, correctly, not panic and keep the node in its list of providers in the same way it would if it queried a node starting from height zero that does not yet have data (#575)[abci]Restore the snake_case naming in JSON serialization ofExecTxResult(#855).[consensus]Avoid recursive call after rename to (*PeerState).MarshalJSON (#863)[mempool/clist_mempool]Prevent a transaction to appear twice in the mempool (#890: @otrack)[docker]Ensure Docker image uses consistent version of Go. (#9462)[abci-cli]Fix broken abci-cli help command. (#9717)
[rpc/grpc]Mark the gRPC broadcast API as deprecated. It will be superseded by a broader API as part of #81 (#650)
[node/state]Add Go API to bootstrap block store and state store to a height (#1057) (@yihuang)[proxy]IntroduceNewConnSyncLocalClientCreator, which allows local ABCI clients to have the same concurrency model as remote clients (i.e. one mutex per client "connection", for each of the four ABCI "connections"). (tendermint/tendermint#9830 and #1145)[proxy]IntroduceNewUnsyncLocalClientCreator, which allows local ABCI clients to have the same concurrency model as remote clients (i.e. one mutex per client "connection", for each of the four ABCI "connections"). (#9830)[abci]New ABCI methodsVerifyVoteExtensionandExtendVoteallow validators to validate the vote extension data attached to a pre-commit message and allow applications to let their validators do more than just validate within consensus (#9836)
[blocksync]Generate new metrics during BlockSync (#543)[jsonrpc/client]Improve the error message for client errors stemming from bad HTTP responses. (cometbft/cometbft#638)[rpc]Remove response data from response failure logs in order to prevent large quantities of log data from being produced (#654)[pubsub/kvindexer]Numeric query conditions and event values are represented as big floats with default precision of 125. Integers are read as "big ints" and represented with as many bits as they need when converting to floats. (#797)[node]Make handshake cancelable (cometbft/cometbft#857)[mempool]Application can now setConsensusParams.Block.MaxBytesto -1 to gain more control on the max size of transactions in a block. It also allows the application to have visibility on all transactions in the mempool atPrepareProposaltime. (#980)[node]Close evidence.db OnStop (cometbft/cometbft#1210: @chillyvee)[state]Make loggingblock_app_hashandapp_hashconsistent by logging them both as hex. (#1264)[crypto/merkle]Improve HashAlternatives performance (#6443)[p2p/pex]Improve addrBook.hash performance (#6509)[crypto/merkle]Improve HashAlternatives performance (#6513)[pubsub]Performance improvements for the event query API (#7319)
June 14, 2023
Provides several minor bug fixes, as well as fixes for several low-severity security issues.
[state/kvindex]Querying event attributes that are bigger than int64 is now enabled. We are not supporting reading floats from the db into the indexer nor parsing them into BigFloats to not introduce breaking changes in minor releases. (#771)[pubsub]Pubsub queries are now able to parse big integers (larger than int64). Very big floats are also properly parsed into very big integers instead of being truncated to int64. (#771)
[rpc]Remove response data from response failure logs in order to prevent large quantities of log data from being produced (#654)
[rpc/jsonrpc/client]Low severity - Prevent RPC client credentials from being inadvertently dumped to logs (#787)[cmd/cometbft/commands/debug/kill]Low severity - Fix unsafe int cast indebug killcommand (#793)[consensus]Low severity - Avoid recursive call after rename to(*PeerState).MarshalJSON(#863)[mempool/clist_mempool]Low severity - Prevent a transaction from appearing twice in the mempool (#890: @otrack)
April 26, 2023
This release fixes several bugs, and has had to introduce one small Go
API-breaking change in the crypto/merkle package in order to address what
could be a security issue for some users who directly and explicitly make use of
that code.
[crypto/merkle]Do not allow verification of Merkle Proofs against empty trees (nilroot).Proof.ComputeRootHashnow panics when it encounters an error, butProof.Verifydoes not panic (#558)
[consensus]Unexpected error conditions inApplyBlockare non-recoverable, so ignoring the error and carrying on is a bug. We replaced areturnthat disregarded the error by apanic. (#496)[consensus]Rename(*PeerState).ToJSONtoMarshalJSONto fix a logging data race (#524)[light]Fixed an edge case where a light client would panic when attempting to query a node that (1) has started from a non-zero height and (2) does not yet have any data. The light client will now, correctly, not panic and keep the node in its list of providers in the same way it would if it queried a node starting from height zero that does not yet have data (#575)
[jsonrpc/client]Improve the error message for client errors stemming from bad HTTP responses. (cometbft/cometbft#638)
March 6, 2023
This is the first CometBFT release with ABCI 1.0, which introduces the
PrepareProposal and ProcessProposal methods, with the aim of expanding the
range of use cases that application developers can address. This is the first
change to ABCI towards ABCI++, and the full range of ABCI++ functionality will
only become available in the next major release with ABCI 2.0. See the
specification for more details.
In the v0.34.27 release, the CometBFT Go module is still
github.com/tendermint/tendermint to facilitate ease of upgrading for users,
but in this release we have changed this to github.com/cometbft/cometbft.
Please also see our upgrading guidelines for more details on upgrading from the v0.34 release series.
Also see our QA results for the v0.37 release.
We'd love your feedback on this release! Please reach out to us via one of our communication channels, such as GitHub Discussions, with any of your questions, comments and/or concerns.
See below for more details.
- The
TMHOMEenvironment variable was renamed toCMTHOME, and all environment variables starting withTM_are instead prefixed withCMT_(#211) [p2p]ReactorSend,TrySendandReceiverenamed toSendEnvelope,TrySendEnvelopeandReceiveEnvelopeto allow metrics to be appended to messages and measure bytes sent/received. (#230)- Bump minimum Go version to 1.20 (#385)
[abci]Make length delimiter encoding consistent (uint64) between ABCI and P2P wire-level protocols (#5783)[abci]Change thekeyandvaluefields from[]bytetostringin theEventAttributetype. (#6403)[abci/counter]Delete counter example app (#6684)[abci]RenamedEvidenceTypetoMisbehaviorTypeandEvidencetoMisbehavioras a more accurate label of their contents. (#8216)[abci]Added cli commands forPrepareProposalandProcessProposal. (#8656)[abci]Added cli commands forPrepareProposalandProcessProposal. (#8901)[abci]RenamedLastCommitInfotoCommitInfoin preparation for vote extensions. (#9122)- Change spelling from British English to American. Rename
Subscription.Cancelled()toSubscription.Canceled()inlibs/pubsub(#9144) [abci]Removes unused Response/RequestSetOptionfrom ABCI (#9145)[config]Rename the fastsync section and the fast_sync key blocksync and block_sync respectively (#9259)[types]Reduce the use of protobuf types in core logic.ConsensusParams,BlockParams,ValidatorParams,EvidenceParams,VersionParamshave become native types. They still utilize protobuf when being sent over the wire or written to disk. MovedValidateConsensusParamsinside (now native type)ConsensusParams, and renamed it toValidateBasic. (#9287)[abci/params]DeduplicateConsensusParamsandBlockParamsso onlytypesproto definitions are use. RemoveTimeIotaMsand use a hard-coded 1 millisecond value to ensure monotonically increasing block times. RenameAppVersiontoAppso as to not stutter. (#9287)[abci]New ABCI methodsPrepareProposalandProcessProposalwhich give the app control over transactions proposed and allows for verification of proposed blocks. (#9301)
[consensus]Fixed a busy loop that happened when sending of a block part failed by sleeping in case of error. (#4)[state/kvindexer]Fixed the default behaviour of the kvindexer to index and query attributes by events in which they occur. In 0.34.25 this was mitigated by a separated RPC flag. @jmalicevic (#77)[state/kvindexer]Resolved crashes when event values contained slashes, introduced after adding event sequences in #77. @jmalicevic (#382)[consensus](#386) Short-term fix for the case whenneedProofBlockcannot find previous block meta by defaulting to the creation of a new proof block. (@adizere)- Special thanks to the Vega.xyz team, and in particular to Zohar (@ze97286), for reporting the problem and working with us to get to a fix.
[docker]enable cross platform build using docker buildx (#9073)[consensus]fix round number ofenterProposewhen handlingRoundStepNewRoundtimeout. (#9229)[docker]ensure Docker image uses consistent version of Go (#9462)[p2p]prevent peers who have errored from being added topeer_set(#9500)[blocksync]handle the case when the sending queue is full: retry block request after a timeout (#9518)
[abci]New ABCI methodsPrepareProposalandProcessProposalwhich give the app control over transactions proposed and allows for verification of proposed blocks. (#9301)
[e2e]Add functionality for uncoordinated (minor) upgrades (#56)[tools/tm-signer-harness]Remove the folder as it is unused (#136)[p2p]ReactorSend,TrySendandReceiverenamed toSendEnvelope,TrySendEnvelopeandReceiveEnvelopeto allow metrics to be appended to messages and measure bytes sent/received. (#230)[abci]AddedAbciVersiontoRequestInfoallowing applications to check ABCI version when connecting to CometBFT. (#5706)[cli]add--hardflag to rollback command (and a boolean to theRollbackStatemethod). This will rollback state and remove the last block. This command can be triggered multiple times. The application must also rollback state to the same height. (#9171)[crypto]Update to use btcec v2 and the latest btcutil. (#9250)[rpc]Addedheaderandheader_by_hashqueries to the RPC client (#9276)[proto]Migrate fromgogo/protobuftocosmos/gogoproto(#9356)[rpc]Enable caching of RPC responses (#9650)[consensus]Save peer LastCommit correctly to achieve 50% reduction in gossiped precommits. (#9760)
June 14, 2023
Provides several minor bug fixes, as well as fixes for several low-severity security issues.
[state/kvindex]Querying event attributes that are bigger than int64 is now enabled. (#771)[pubsub]Pubsub queries are now able to parse big integers (larger than int64). Very big floats are also properly parsed into very big integers instead of being truncated to int64. (#771)
[rpc]Remove response data from response failure logs in order to prevent large quantities of log data from being produced (#654)
[rpc/jsonrpc/client]Low severity - Prevent RPC client credentials from being inadvertently dumped to logs (#788)[cmd/cometbft/commands/debug/kill]Low severity - Fix unsafe int cast indebug killcommand (#794)[consensus]Low severity - Avoid recursive call after rename to(*PeerState).MarshalJSON(#863)[mempool/clist_mempool]Low severity - Prevent a transaction from appearing twice in the mempool (#890: @otrack)
April 26, 2023
This release fixes several bugs, and has had to introduce one small Go
API-breaking change in the crypto/merkle package in order to address what
could be a security issue for some users who directly and explicitly make use of
that code.
[crypto/merkle]Do not allow verification of Merkle Proofs against empty trees (nilroot).Proof.ComputeRootHashnow panics when it encounters an error, butProof.Verifydoes not panic (#558)
[consensus]Unexpected error conditions inApplyBlockare non-recoverable, so ignoring the error and carrying on is a bug. We replaced areturnthat disregarded the error by apanic. (#496)[consensus]Rename(*PeerState).ToJSONtoMarshalJSONto fix a logging data race (#524)[light]Fixed an edge case where a light client would panic when attempting to query a node that (1) has started from a non-zero height and (2) does not yet have any data. The light client will now, correctly, not panic and keep the node in its list of providers in the same way it would if it queried a node starting from height zero that does not yet have data (#575)
[crypto/sr25519]Upgrade to go-schnorrkel@v1.0.0 (#475)[jsonrpc/client]Improve the error message for client errors stemming from bad HTTP responses. (cometbft/cometbft#638)
Feb 27, 2023
This is the first official release of CometBFT - a fork of Tendermint Core. This particular release is intended to be compatible with the Tendermint Core v0.34 release series.
For details as to how to upgrade to CometBFT from Tendermint Core, please see our upgrading guidelines.
If you have any questions, comments, concerns or feedback on this release, we
would love to hear from you! Please contact us via GitHub
Discussions,
Discord (in the #cometbft channel) or
Telegram.
Special thanks to @wcsiu, @ze97286, @faddat and @JayT106 for their contributions to this release!
- Rename binary to
cometbftand Docker image tocometbft/cometbft(#152) - The
TMHOMEenvironment variable was renamed toCMTHOME, and all environment variables starting withTM_are instead prefixed withCMT_(#211) - Use Go 1.19 to build CometBFT, since Go 1.18 has reached end-of-life. (#360)
[consensus]Fixed a busy loop that happened when sending of a block part failed by sleeping in case of error. (#4)[state/kvindexer]Resolved crashes when event values contained slashes, introduced after adding event sequences. (#383: @jmalicevic)[consensus]Short-term fix for the case whenneedProofBlockcannot find previous block meta by defaulting to the creation of a new proof block. (#386: @adizere)- Special thanks to the Vega.xyz team, and in particular to Zohar (@ze97286), for reporting the problem and working with us to get to a fix.
[p2p]Correctly use non-blockingTrySendEnvelopemethod when attempting to send messages, as opposed to the blockingSendEnvelopemethod. It is unclear whether this has a meaningful impact on P2P performance, but this patch does correct the underlying behaviour to what it should be (tendermint/tendermint#9936)
- Replace tm-db with cometbft-db (#160)
- Bump tm-load-test to v1.3.0 to remove implicit dependency on Tendermint Core (#165)
[crypto]Update to use btcec v2 and the latest btcutil (tendermint/tendermint#9787: @wcsiu)
[rpc]Addmatch_eventquery parameter to indicate to the RPC that it should match events within attributes, not only within a height (tendermint/tendermint#9759)
[e2e]Add functionality for uncoordinated (minor) upgrades (#56)[tools/tm-signer-harness]Remove the folder as it is unused (#136)- Append the commit hash to the version of CometBFT being built (#204)
[mempool/v1]Suppress "rejected bad transaction" in priority mempool logs by reducing log level from info to debug (#314: @JayT106)[consensus]Addconsensus_block_gossip_parts_receivedandconsensus_step_duration_secondsmetrics in order to aid in investigating the impact of database compaction on consensus performance (tendermint/tendermint#9733)[state/kvindexer]Addmatch.eventkeyword to support condition evaluation based on the event the attributes belong to (tendermint/tendermint#9759)[p2p]Reduce log spam through reducing log level of "Dialing peer" and "Added peer" messages from info to debug (tendermint/tendermint#9764: @faddat)[consensus]Reduce bandwidth consumption of consensus votes by roughly 50% through fixing a small logic bug (tendermint/tendermint#9776)
CometBFT is a fork of Tendermint Core as of late December 2022.
Friendly reminder, we have a bug bounty program.
For changes released before the creation of CometBFT, please refer to the Tendermint Core CHANGELOG.md.