Sia - Activity

#1883 chore(deps): bump go.sia.tech/jape from 0.13.1 to 0.14.0 in the all-dependencies group

Bumps the all-dependencies group with 1 update: go.sia.tech/jape.

Updates go.sia.tech/jape from 0.13.1 to 0.14.0

Release notes

Sourced from go.sia.tech/jape's releases.

0.14.0 (2025-04-30)

Breaking Changes

Limit the default size of incoming request bodies to 10MB

Changelog

Sourced from go.sia.tech/jape's changelog.

0.14.0 (2025-04-30)

Breaking Changes

Limit the default size of incoming request bodies to 10MB

Add Context.DecodeLimit to override the size limit

Commits

e597db5 Merge pull request #34 from SiaFoundation/release
4000f23 chore: prepare release 0.14.0
089575d Merge pull request #33 from SiaFoundation/nate/limit-request-bodies
6f6f964 fix lint
81d6902 add test, use http.MaxBytesReader
3deae90 fix lint
c0ce14b limit default request bodie size
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

May 2, 2025

#1045 fix(e2e): stabilize e2e tests

PR with a bunch of improvements found while debugging the cluster startup issues:

Update cluster deps.
Improve flaky hostd volume test.
Removed unnecessary ^build from the explorer-e2e e2e target (should make startup much faster, it was doing a production (slow) build of explorer that was not even being used cc @telestrial)
Fixed waitFor. If the condition hung or errored would prevent natural test timeout on CI.
Fixed -explored=1 startup errors in cmd.

Apr 30, 2025

#279 add check endpoint

Adds [POST] /check/addresses to check for addresses that have been seen on chain. This endpoint is useful for scanning the chain for look-aheads when in full index mode

Apr 29, 2025

#277 build(deps): bump the all-dependencies group with 3 updates

Bumps the all-dependencies group with 3 updates: go.sia.tech/core, go.sia.tech/coreutils and go.sia.tech/jape.

Updates go.sia.tech/core from 0.11.0 to 0.12.0

Release notes

Sourced from go.sia.tech/core's releases.

0.12.0 (2025-04-28)

Breaking Changes
Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage

Removed unused parameters in contract helpers

Changelog

Sourced from go.sia.tech/core's changelog.

0.12.0 (2025-04-28)

Breaking Changes
Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage

Removed unused parameters in contract helpers

Commits

ecc10d2 Merge pull request #302 from SiaFoundation/release
4c46621 chore: prepare release 0.12.0
56e3439 add changesets
80c3adf address comments
e194112 rhp4: clean up validation
See full diff in compare view

Updates go.sia.tech/coreutils from 0.13.1 to 0.13.2

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.13.2 (2025-04-28)

Features
Return error when transaction set relay fails
Fixes
Update coreutils to v0.12.0
Export 'missing block at index' error

#217 by @chris124567

The "missing block at index" error is used in multiple places to detect that a chain migration happened so that the app knows to reset whatever state it stored previously. This PR exports it so that looking at the error string is not necessary.

https://github.com/SiaFoundation/hostd/blob/711ac3eb1da09e4d6a9ff17a2efe3555d70b8185/index/update.go#L36 https://github.com/SiaFoundation/walletd/blob/d91147b7ec52b2261779949905c8e0fd3c0ad5c7/wallet/manager.go#L733

And recently in explored: SiaFoundation/explored#212

Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.13.2 (2025-04-28)

Features
Return error when transaction set relay fails
Fixes
Update coreutils to v0.12.0
Export 'missing block at index' error

##217 by @chris124567

The "missing block at index" error is used in multiple places to detect that a chain migration happened so that the app knows to reset whatever state it stored previously. This PR exports it so that looking at the error string is not necessary.

https://github.com/SiaFoundation/hostd/blob/711ac3eb1da09e4d6a9ff17a2efe3555d70b8185/index/update.go#L36 https://github.com/SiaFoundation/walletd/blob/d91147b7ec52b2261779949905c8e0fd3c0ad5c7/wallet/manager.go#L733

And recently in explored: SiaFoundation/explored#212

Commits

64c6653 Merge pull request #218 from SiaFoundation/release
d90028c chore: prepare release 0.13.2
d031d7e Merge pull request #221 from SiaFoundation/nate/update-deps
e35f738 chore: update deps
7ca0c4a Merge pull request #216 from SiaFoundation/nate/syncer-errors
bfcefb3 add extra debug logging
0766ecc actually return errors
98125a2 syncer: make all relay calls consisten
5e7b0a9 rhp4: use mock syncer
e9a9c74 syncer: add handshake timeout
Additional commits viewable in compare view

Updates go.sia.tech/jape from 0.12.2-0.20241010144215-1468bf476af6 to 0.13.1

Release notes

Sourced from go.sia.tech/jape's releases.

0.13.1 (2025-04-26)

Fixes
Automate releases

Fix off-by-one in japecheck

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 29, 2025

#278 build(deps): bump the all-dependencies group across 1 directory with 2 updates

Bumps the all-dependencies group with 2 updates in the / directory: go.sia.tech/core and go.sia.tech/jape.

Updates go.sia.tech/core from 0.11.0 to 0.12.0

Release notes

Sourced from go.sia.tech/core's releases.

0.12.0 (2025-04-28)

Breaking Changes
Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage

Removed unused parameters in contract helpers

Changelog

Sourced from go.sia.tech/core's changelog.

0.12.0 (2025-04-28)

Breaking Changes
Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage

Removed unused parameters in contract helpers

Commits

ecc10d2 Merge pull request #302 from SiaFoundation/release
4c46621 chore: prepare release 0.12.0
56e3439 add changesets
80c3adf address comments
e194112 rhp4: clean up validation
See full diff in compare view

Updates go.sia.tech/jape from 0.12.2-0.20241010144215-1468bf476af6 to 0.13.1

Release notes

Sourced from go.sia.tech/jape's releases.

0.13.1 (2025-04-26)

Fixes
Automate releases

Fix off-by-one in japecheck

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 29, 2025

#1881 chore(deps): bump the all-dependencies group with 2 updates

Bumps the all-dependencies group with 2 updates: go.sia.tech/core and go.sia.tech/coreutils.

Updates go.sia.tech/core from 0.11.0 to 0.12.0

Release notes

Sourced from go.sia.tech/core's releases.

0.12.0 (2025-04-28)

Breaking Changes
Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage

Removed unused parameters in contract helpers

Changelog

Sourced from go.sia.tech/core's changelog.

0.12.0 (2025-04-28)

Breaking Changes
Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage

Removed unused parameters in contract helpers

Commits

ecc10d2 Merge pull request #302 from SiaFoundation/release
4c46621 chore: prepare release 0.12.0
56e3439 add changesets
80c3adf address comments
e194112 rhp4: clean up validation
See full diff in compare view

Updates go.sia.tech/coreutils from 0.13.1 to 0.13.2

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.13.2 (2025-04-28)

Features
Return error when transaction set relay fails
Fixes
Update coreutils to v0.12.0
Export 'missing block at index' error

#217 by @chris124567

The "missing block at index" error is used in multiple places to detect that a chain migration happened so that the app knows to reset whatever state it stored previously. This PR exports it so that looking at the error string is not necessary.

https://github.com/SiaFoundation/hostd/blob/711ac3eb1da09e4d6a9ff17a2efe3555d70b8185/index/update.go#L36 https://github.com/SiaFoundation/walletd/blob/d91147b7ec52b2261779949905c8e0fd3c0ad5c7/wallet/manager.go#L733

And recently in explored: SiaFoundation/explored#212

Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.13.2 (2025-04-28)

Features
Return error when transaction set relay fails
Fixes
Update coreutils to v0.12.0
Export 'missing block at index' error

##217 by @chris124567

The "missing block at index" error is used in multiple places to detect that a chain migration happened so that the app knows to reset whatever state it stored previously. This PR exports it so that looking at the error string is not necessary.

https://github.com/SiaFoundation/hostd/blob/711ac3eb1da09e4d6a9ff17a2efe3555d70b8185/index/update.go#L36 https://github.com/SiaFoundation/walletd/blob/d91147b7ec52b2261779949905c8e0fd3c0ad5c7/wallet/manager.go#L733

And recently in explored: SiaFoundation/explored#212

Commits

64c6653 Merge pull request #218 from SiaFoundation/release
d90028c chore: prepare release 0.13.2
d031d7e Merge pull request #221 from SiaFoundation/nate/update-deps
e35f738 chore: update deps
7ca0c4a Merge pull request #216 from SiaFoundation/nate/syncer-errors
bfcefb3 add extra debug logging
0766ecc actually return errors
98125a2 syncer: make all relay calls consisten
5e7b0a9 rhp4: use mock syncer
e9a9c74 syncer: add handshake timeout
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 29, 2025

#1880 Fix bug when listing objects in directory view

Currently, if two objects across buckets share a similar path prefix, only the one in the bucket with the lowest db_bucket_id will show up in the directory view. This happens because we failed to join on the bucket in a sub-select that grouped the rows and hereby did a MIN on the db_bucket_id, causing the wrong object to be selected in the sub-select, which would then in turn be filtered out in the outer select that filters on the bucket.

Apr 29, 2025

#1869 Fix deadlock in migration loop

Uploads were stuck because they hadn't finished, and the number of inflight requests never dropped to zero. The error was in only considering the sector context; the upload loop must still receive a response for the sector—even if the sector upload could be skipped because it was already sent to another host. Without this, we're effectively dropping inflight requests, preventing the counter from ever reaching zero. This is only an issue if we don't have enough hosts to overdrive, which is why we haven't seen it on production.

I tried writing a decent regression test that approaches the problem from the upload manager. That's a little tricky because the uploaders aren't interfaced, so we can't easily mock the behaviour there. I added a unit test that ensures requests that can be skipped, still send a response down the channel, perhaps in combination with the extensive manual tests (on erravimus) that is sufficient (?).

Diving in the upload code it's difficult not to try and refactor everything, so this PR is (more or less) the minimum amount of lines to make it work. If we want more extensive unit testing we'll have to interface a couple of components and do more refactors.

Fixes https://github.com/SiaFoundation/renterd/issues/1849

Apr 29, 2025

#1878 Clean up refresh/renew of v2 contracts

This splits up the renew function into 2 since renew and refresh are just different enough for it to not make sense to keep them together.

Apr 29, 2025

#663 build(deps): bump the dependencies group across 1 directory with 3 updates

Bumps the dependencies group with 3 updates in the / directory: go.sia.tech/core, go.sia.tech/coreutils and go.sia.tech/jape.

Updates go.sia.tech/core from 0.11.0 to 0.12.0

Release notes

Sourced from go.sia.tech/core's releases.

0.12.0 (2025-04-28)

Breaking Changes
Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage

Removed unused parameters in contract helpers

Changelog

Sourced from go.sia.tech/core's changelog.

0.12.0 (2025-04-28)

Breaking Changes
Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage

Removed unused parameters in contract helpers

Commits

ecc10d2 Merge pull request #302 from SiaFoundation/release
4c46621 chore: prepare release 0.12.0
56e3439 add changesets
80c3adf address comments
e194112 rhp4: clean up validation
See full diff in compare view

Updates go.sia.tech/coreutils from 0.13.1 to 0.13.2

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.13.2 (2025-04-28)

Features
Return error when transaction set relay fails
Fixes
Update coreutils to v0.12.0
Export 'missing block at index' error

#217 by @chris124567

The "missing block at index" error is used in multiple places to detect that a chain migration happened so that the app knows to reset whatever state it stored previously. This PR exports it so that looking at the error string is not necessary.

https://github.com/SiaFoundation/hostd/blob/711ac3eb1da09e4d6a9ff17a2efe3555d70b8185/index/update.go#L36 https://github.com/SiaFoundation/walletd/blob/d91147b7ec52b2261779949905c8e0fd3c0ad5c7/wallet/manager.go#L733

And recently in explored: SiaFoundation/explored#212

Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.13.2 (2025-04-28)

Features
Return error when transaction set relay fails
Fixes
Update coreutils to v0.12.0
Export 'missing block at index' error

##217 by @chris124567

The "missing block at index" error is used in multiple places to detect that a chain migration happened so that the app knows to reset whatever state it stored previously. This PR exports it so that looking at the error string is not necessary.

https://github.com/SiaFoundation/hostd/blob/711ac3eb1da09e4d6a9ff17a2efe3555d70b8185/index/update.go#L36 https://github.com/SiaFoundation/walletd/blob/d91147b7ec52b2261779949905c8e0fd3c0ad5c7/wallet/manager.go#L733

And recently in explored: SiaFoundation/explored#212

Commits

64c6653 Merge pull request #218 from SiaFoundation/release
d90028c chore: prepare release 0.13.2
d031d7e Merge pull request #221 from SiaFoundation/nate/update-deps
e35f738 chore: update deps
7ca0c4a Merge pull request #216 from SiaFoundation/nate/syncer-errors
bfcefb3 add extra debug logging
0766ecc actually return errors
98125a2 syncer: make all relay calls consisten
5e7b0a9 rhp4: use mock syncer
e9a9c74 syncer: add handshake timeout
Additional commits viewable in compare view

Updates go.sia.tech/jape from 0.13.0 to 0.13.1

Release notes

Sourced from go.sia.tech/jape's releases.

0.13.1 (2025-04-26)

Fixes
Automate releases

Fix off-by-one in japecheck

Commits

ec010df Merge pull request #30 from SiaFoundation/release
0229cad chore: prepare release 0.13.1
3ec8b54 Merge pull request #32 from SiaFoundation/dependabot/go_modules/all-dependenc...
736df34 Bump golang.org/x/tools in the all-dependencies group
77f38f4 Merge pull request #31 from SiaFoundation/n8maninger-patch-1
3910600 Setup dependabot.yml
d89eda6 Merge pull request #28 from SiaFoundation/christopher/fix-parsing-client-routes
6b9cbcd fix response types
694c9da fix parsing client routes after context parameter introduction
72fe9c8 add changeset
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 29, 2025

#662 update deps

Updates to the latest coreutils and updates tests and call sites that expect the syncer to work to use the mock syncer since BroadcastTransaction will now error when there are no peers connected.

Apr 29, 2025

#664 sqlite: remove jitter sleep and transaction retries

Now that the database is limited to a single conn there is no need to retry transactions.

Apr 28, 2025

#1043 fix(explorer): correctly pass id to v2ContractByID params

Apr 28, 2025

#661 build(deps): bump go.sia.tech/jape from 0.13.0 to 0.13.1 in the dependencies group

Bumps the dependencies group with 1 update: go.sia.tech/jape.

Updates go.sia.tech/jape from 0.13.0 to 0.13.1

Release notes

Sourced from go.sia.tech/jape's releases.

0.13.1 (2025-04-26)

Fixes
Automate releases

Fix off-by-one in japecheck

Commits

ec010df Merge pull request #30 from SiaFoundation/release
0229cad chore: prepare release 0.13.1
3ec8b54 Merge pull request #32 from SiaFoundation/dependabot/go_modules/all-dependenc...
736df34 Bump golang.org/x/tools in the all-dependencies group
77f38f4 Merge pull request #31 from SiaFoundation/n8maninger-patch-1
3910600 Setup dependabot.yml
d89eda6 Merge pull request #28 from SiaFoundation/christopher/fix-parsing-client-routes
6b9cbcd fix response types
694c9da fix parsing client routes after context parameter introduction
72fe9c8 add changeset
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 28, 2025

#276 build(deps): bump go.sia.tech/jape from 0.12.2-0.20241010144215-1468bf476af6 to 0.13.1 in the all-dependencies group

Bumps the all-dependencies group with 1 update: go.sia.tech/jape.

Updates go.sia.tech/jape from 0.12.2-0.20241010144215-1468bf476af6 to 0.13.1

Release notes

Sourced from go.sia.tech/jape's releases.

0.13.1 (2025-04-26)

Fixes
Automate releases

Fix off-by-one in japecheck

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 28, 2025

#302 chore: prepare release 0.12.0

This PR was created automatically. Merging it will create a new release for 0.12.0

Breaking Changes

Changed contract validation helpers to take current contract as parameter instead of individual values to simplify usage
Removed unused parameters in contract helpers

Apr 28, 2025

#301 Clean up validation

Reverts #298 to the old behavior and removes unused params.

Looking at the original PR, #298, I think the logic change there is actually incorrect. It's not clear to me why a contract refresh would ever have plenty of allowance but not enough collateral since the funds always flow from the renter to the host.

The subtest that got changed in https://github.com/SiaFoundation/coreutils/pull/215 should have been a valid state based on the intended behavior.

The desired behavior is that the host's total collateral locked is a consistent ratio with the renter's total spending. In the case of that subtest, the renter has locked 110 SC total and the host has locked 220 SC total. With the new logic, that is now considered a bad state because the renter spent 25 SC of its allowance funding an account, giving it 85 SC remaining allowance to 220 SC collateral. The renter ends up needing to lock significantly more SC to compensate for the account spending.

Apr 28, 2025

#1042 chore: commitlint body length

Bump up the max line length for commit body content.

Apr 28, 2025

#1877 Remove leftover webhook code

Apr 28, 2025

#1879 chore(deps): bump go.sia.tech/jape from 0.13.0 to 0.13.1 in the all-dependencies group

Bumps the all-dependencies group with 1 update: go.sia.tech/jape.

Updates go.sia.tech/jape from 0.13.0 to 0.13.1

Release notes

Sourced from go.sia.tech/jape's releases.

0.13.1 (2025-04-26)

Fixes
Automate releases

Fix off-by-one in japecheck

Commits

ec010df Merge pull request #30 from SiaFoundation/release
0229cad chore: prepare release 0.13.1
3ec8b54 Merge pull request #32 from SiaFoundation/dependabot/go_modules/all-dependenc...
736df34 Bump golang.org/x/tools in the all-dependencies group
77f38f4 Merge pull request #31 from SiaFoundation/n8maninger-patch-1
3910600 Setup dependabot.yml
d89eda6 Merge pull request #28 from SiaFoundation/christopher/fix-parsing-client-routes
6b9cbcd fix response types
694c9da fix parsing client routes after context parameter introduction
72fe9c8 add changeset
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 24, 2025

#275 Remove keystore leftovers

Apr 24, 2025

#1873 Fix renewal with insufficient allowance

Depends on https://github.com/SiaFoundation/core/pull/299

Noticed that none of my Zen contracts renewed. This change fixed it.

Need to update go.mod once the dependencies are merged.

Apr 24, 2025

#658 Update jape dependency

While trying to update cluster I ran into an issue where our software used incompatible version of jape. Basically walletd was using latest master while the other ones weren't. Which caused issues when updating cluster.

Apr 24, 2025

#1876 Update jape dependency

Apr 24, 2025

#1875 chore(deps): bump the all-dependencies group with 3 updates

Apr 24, 2025

#274 chore: prepare release 2.2.1

This PR was created automatically. Merging it will finalize the changelog for 2.2.1

Update core to v0.11.0 and coreutils to v0.13.1

Apr 24, 2025

#657 build(deps): bump the dependencies group with 3 updates

Apr 23, 2025

#300 chore: prepare release 0.11.0

This PR was created automatically. Merging it will create a new release for 0.11.0

Breaking Changes

Removed duration parameter from MinRenterAllowance helper

Add MaxHostCollateral helper
Consider post-refresh values for the minRenterAllowance check rather than the additional values.

Apr 22, 2025

#266 chore: prepare release 2.2.0

This PR was created automatically. Merging it will finalize the changelog for 2.2.0

Features

Address endpoints can now exclude transaction pool utxos

Transaction broadcasts can now discover parents already in the transaction pool.

Add support for custom networks

Adds support for loading custom network parameters from a local file. This makes it easier to setup local testnets for development. A network file can be specified by using a file path for the --network CLI flag. The file should be JSON formatted with the following structure:

{
  "network": {
    "name": "zen",
    "initialCoinbase": "300000000000000000000000000000",
    "minimumCoinbase": "30000000000000000000000000000",
    "initialTarget": "0000000100000000000000000000000000000000000000000000000000000000",
    "blockInterval": 600000000000,
    "maturityDelay": 144,
    "hardforkDevAddr": {
      "height": 1,
      "oldAddress": "000000000000000000000000000000000000000000000000000000000000000089eb0d6a8a69",
      "newAddress": "000000000000000000000000000000000000000000000000000000000000000089eb0d6a8a69"
    },
    "hardforkTax": {
      "height": 2
    },
    "hardforkStorageProof": {
      "height": 5
    },
    "hardforkOak": {
      "height": 10,
      "fixHeight": 12,
      "genesisTimestamp": "2023-01-13T00:53:20-08:00"
    },
    "hardforkASIC": {
      "height": 20,
      "oakTime": 10000000000000,
      "oakTarget": "0000000100000000000000000000000000000000000000000000000000000000"
    },
    "hardforkFoundation": {
      "height": 30,
      "primaryAddress": "053b2def3cbdd078c19d62ce2b4f0b1a3c5e0ffbeeff01280efb1f8969b2f5bb4fdc680f0807",
      "failsafeAddress": "000000000000000000000000000000000000000000000000000000000000000089eb0d6a8a69"
    },
    "hardforkV2": {
      "allowHeight": 112000,
      "requireHeight": 114000
    }
  },
  "genesis": {
    "parentID": "0000000000000000000000000000000000000000000000000000000000000000",
    "nonce": 0,
    "timestamp": "2023-01-13T00:53:20-08:00",
    "minerPayouts": null,
    "transactions": [
      {
        "id": "268ef8627241b3eb505cea69b21379c4b91c21dfc4b3f3f58c66316249058cfd",
        "siacoinOutputs": [
          {
            "value": "1000000000000000000000000000000000000",
            "address": "3d7f707d05f2e0ec7ccc9220ed7c8af3bc560fbee84d068c2cc28151d617899e1ee8bc069946"
          }
        ],
        "siafundOutputs": [
          {
            "value": 10000,
            "address": "053b2def3cbdd078c19d62ce2b4f0b1a3c5e0ffbeeff01280efb1f8969b2f5bb4fdc680f0807"
          }
        ]
      }
    ]
  }
}

Apr 22, 2025

#1874 chore(deps): bump the all-dependencies group with 2 updates

Bumps the all-dependencies group with 2 updates: github.com/gabriel-vasile/mimetype and github.com/mattn/go-sqlite3.

Updates github.com/gabriel-vasile/mimetype from 1.4.8 to 1.4.9

Release notes

Sourced from github.com/gabriel-vasile/mimetype's releases.

v1.4.9 GLTF support and performance improvements

What's Changed
SRT detection: reduce allocs by @gabriel-vasile in gabriel-vasile/mimetype#636

json: more benchmarking by @gabriel-vasile in gabriel-vasile/mimetype#640

Bump golang.org/x/net from 0.33.0 to 0.39.0 in the gomod

json: add parser with query capacity by @gabriel-vasile in gabriel-vasile/mimetype#652

feat: add support for GLTF by @gabriel-vasile in gabriel-vasile/mimetype#655
Full Changelog: https://github.com/gabriel-vasile/mimetype/compare/v1.4.8...v1.4.9

Commits

551461b add support for GLTF
63e2356 go mod tidy
12592ed json: add parser with query capacity
55e964a Bump the github-actions group across 1 directory with 2 updates
a10cc03 Bump golang.org/x/net in the gomod group across 1 directory
773b07c CI: move fuzz to cron job (#653)
68c306d tests: revert effects of Extend
e8ef900 gha: use stable version of golang in CI
9ab9e39 benchmark: reset mem and timer after allocating and before bench run
adb0181 json: more benchmarking
Additional commits viewable in compare view

Updates github.com/mattn/go-sqlite3 from 1.14.27 to 1.14.28

Commits

f76bae4 upgrade amalgamation code
65302b0 Add ability to set an int64 file control (#1298)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 22, 2025

#273 build(deps): bump github.com/mattn/go-sqlite3 from 1.14.27 to 1.14.28 in the all-dependencies group

Bumps the all-dependencies group with 1 update: github.com/mattn/go-sqlite3.

Updates github.com/mattn/go-sqlite3 from 1.14.27 to 1.14.28

Commits

f76bae4 upgrade amalgamation code
65302b0 Add ability to set an int64 file control (#1298)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 21, 2025

#656 build(deps): bump github.com/mattn/go-sqlite3 from 1.14.27 to 1.14.28 in the dependencies group

Bumps the dependencies group with 1 update: github.com/mattn/go-sqlite3.

Updates github.com/mattn/go-sqlite3 from 1.14.27 to 1.14.28

Commits

f76bae4 upgrade amalgamation code
65302b0 Add ability to set an int64 file control (#1298)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 17, 2025

#299 Add MaxHostCollateral

This PR adds MaxHostCollateral as a counterpart to MinRenterAllowance.

It also removes the duration since it doesn't affect the outcome of the functions since the ratio stays the same regardless of the duration.

Apr 17, 2025

#298 Update refresh validation to consider post refresh allowance and collateral

I ran into a min allowance issue on Zen which made me reread this part of the code and I noticed that the current behavior for refreshing contracts is not necessarily what we want.

Before this PR, we make sure the ratio of newly added allowance and collateral is sane during a refresh. However, if a contract still has plenty of allowance left in it, this shouldn't affect our ability to refresh this contract without pouring more renter funds into it if the ratio is still sane after the refresh.

So this PR changes the check to consider the ratio of unused collateral+allowance after the refresh rather than the one of the added values.

Apr 17, 2025

#1040 chore(deps): bump the go_modules group across 2 directories with 2 updates

Bumps the go_modules group with 2 updates in the /internal/cluster directory: golang.org/x/crypto and golang.org/x/net. Bumps the go_modules group with 1 update in the /sdk directory: golang.org/x/crypto.

Updates golang.org/x/crypto from 0.36.0 to 0.37.0

Commits

959f8f3 go.mod: update golang.org/x dependencies
769bcd6 ssh: use the configured rand in kex init
d0a798f cryptobyte: fix typo 'octects' into 'octets' for asn1.go
acbcbef acme: remove unnecessary []byte conversion
376eb14 x509roots: support constrained roots
b369b72 crypto/internal/poly1305: implement function update in assembly on loong64
6b853fb ssh/knownhosts: check more than one key
See full diff in compare view

Updates golang.org/x/net from 0.37.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
See full diff in compare view

Updates golang.org/x/crypto from 0.32.0 to 0.35.0

Commits

959f8f3 go.mod: update golang.org/x dependencies
769bcd6 ssh: use the configured rand in kex init
d0a798f cryptobyte: fix typo 'octects' into 'octets' for asn1.go
acbcbef acme: remove unnecessary []byte conversion
376eb14 x509roots: support constrained roots
b369b72 crypto/internal/poly1305: implement function update in assembly on loong64
6b853fb ssh/knownhosts: check more than one key
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.

Apr 17, 2025

#272 build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 in the go_modules group

Bumps the go_modules group with 1 update: golang.org/x/net.

Updates golang.org/x/net from 0.37.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.

Apr 17, 2025

#654 build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 in the go_modules group

Bumps the go_modules group with 1 update: golang.org/x/net.

Updates golang.org/x/net from 0.37.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.

Apr 16, 2025

#1039 chore(deps): bump golang.org/x/crypto from 0.32.0 to 0.35.0 in /sdk in the go_modules group across 1 directory

Bumps the go_modules group with 1 update in the /sdk directory: golang.org/x/crypto.

Updates golang.org/x/crypto from 0.32.0 to 0.35.0

Commits

7292932 ssh: limit the size of the internal packet queue while waiting for KEX
f66f74b acme/autocert: check host policy before probing the cache
b0784b7 x509roots/fallback: drop obsolete build constraint
911360c all: bump golang.org/x/crypto dependencies of asm generators
89ff08d all: upgrade go directive to at least 1.23.0 [generated]
e47973b all: update certs for go1.24
9290511 go.mod: update golang.org/x dependencies
fa5273e x509roots/fallback: update bundle
a8ea4be ssh: add ServerConfig.PreAuthConnCallback, ServerPreAuthConn (banner) interface
71d3a4c acme: support challenges that require the ACME client to send a non-empty JSO...
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.

Apr 15, 2025

#1033 Set up contracts in clusterd

If we have network=v1 or network=v2, we will:

Fund a new address by mining a block
Use it to create 3 contracts
- One that we let expire (expiredContract)
- One that we revise and then submit a storage proof for (successfulContract)
- One that we renew (renewedContract)
- ~~And expose these contract addresses via /fixtures/explored.~~

~~Example successful response:~~

{"expiredContract":"664aa3a708fce114eebb6ff352af8956c45aaaf0cb6b55f9808a3af7e5137af3","successfulContract":"297048b6a99a484598d1ce41c71b8ac05377cf71e6d03e0db7d51a596f37db04","renewedContract":"0a44d067f23bc315211439376b85297afc133cd0ac453043f86a758ffa8d5fb5"}

~~Example unsuccessful response:~~

{"expiredContract":null,"successfulContract":null,"renewedContract":null}

I think it is best to do it in Go vs JS because for v2 creating the contracts is already serious pain in the neck.

Update: We decided not to expose a special endpoint where the contract addresses could be retrieved. Instead, you can find the transaction where all the contracts were formed by looking at blocks until you find one containing a transaction where 3 contracts are formed. Then for instance you could query the state of those contracts using the explored API to get the expected state and compare that to what is displayed in the UI.

Apr 15, 2025

#1872 Remove context from bus initialisation

We pass a sane timeout to bus constructors to avoid hanging indefinitely, since we now potentially have a reasonably long chain db migration I removed it and added a sane timeout to the two locations that apparently need it. It's mostly because our Store requires a context on all of its methods, like initialising the autopilot config.

Apr 15, 2025

#297 build(deps): bump golang.org/x/tools from 0.31.0 to 0.32.0 in the all-dependencies group

Bumps the all-dependencies group with 1 update: golang.org/x/tools.

Updates golang.org/x/tools from 0.31.0 to 0.32.0

Commits

456962e go.mod: update golang.org/x dependencies
5916e3c internal/tokeninternal: AddExistingFiles: tweaks for proposal
9a1fbbd internal/typesinternal: change Used to UsedIdent
e73cd5a gopls/internal/golang: implement dynamicFuncCallType with typeutil.ClassifyCall
11a9b3f gopls/internal/server: fix event labels after the big rename
3e7f74d go/types/typeutil: used doesn't need Info.Selections
b97074b internal/gofix: fix URLs
e850fe1 gopls/internal/golang: CodeAction: place gopls doc as the last action
b948add internal/gofix: move from gopls/internal/analysis/gofix
b437eff go/types/typeutil: implement Callee and StaticCallee with Used
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 14, 2025

#652 Prevent "database is locked"

This should effectively get rid of the database is locked error by preventing parallel connections. It's like wrapping a mutex around every database interaction and seems to be the recommended way of doing this.

The benchmarks seem to be mostly unaffected which makes sense considering that they are single-threaded. To see how it performs in practice we'll need to run it on a used host.

Going through https://sqlite.org/faq.html#q6 lead me to https://sqlite.org/threadsafe.html and it seems like it's generally recommended to use the SQLITE_CONFIG_SINGLETHREAD threading mode if locking isn't required to speed up performance. However, I haven't been able to figure out how to do that from the Go driver.

Closes https://github.com/SiaFoundation/hostd/issues/643

The before and after results of the existing benchmarks:

Before:

goos: darwin
goarch: arm64
pkg: go.sia.tech/hostd/v2/persist/sqlite
cpu: Apple M2 Pro
BenchmarkTrimSectors
BenchmarkTrimSectors-12        	  217003	      5595 ns/op	    217003 sectors	    1843 B/op	      50 allocs/op
BenchmarkV2AppendSectors
BenchmarkV2AppendSectors-12    	  170421	     12802 ns/op	    170421 sectors	    2800 B/op	      43 allocs/op
BenchmarkV2TrimSectors
BenchmarkV2TrimSectors-12      	 1356486	       949.9 ns/op	   1356486 sectors	       0 B/op	       0 allocs/op
BenchmarkVolumeGrow
BenchmarkVolumeGrow-12         	  407421	      3158 ns/op	    407421 sectors	     224 B/op	       8 allocs/op
BenchmarkVolumeShrink
BenchmarkVolumeShrink-12       	  716907	      1891 ns/op	    716907 sectors	       0 B/op	       0 allocs/op
BenchmarkVolumeMigrate
BenchmarkVolumeMigrate-12      	      18	  64587782 ns/op	        18.00 sectors	   11207 B/op	     298 allocs/op
BenchmarkStoreSector
BenchmarkStoreSector-12        	    7747	    160465 ns/op	      7747 sectors	    9243 B/op	     225 allocs/op
BenchmarkReadSector
BenchmarkReadSector-12         	   35526	     31730 ns/op	     35526 sectors	    4782 B/op	      94 allocs/op
PASS
ok  	go.sia.tech/hostd/v2/persist/sqlite	953.837s

After:

goos: darwin
goarch: arm64
pkg: go.sia.tech/hostd/v2/persist/sqlite
cpu: Apple M2 Pro
BenchmarkTrimSectors
BenchmarkTrimSectors-12        	  235959	      5596 ns/op	    235959 sectors	    1843 B/op	      50 allocs/op
BenchmarkV2AppendSectors
BenchmarkV2AppendSectors-12    	  175136	     12997 ns/op	    175136 sectors	    2800 B/op	      43 allocs/op
BenchmarkV2TrimSectors
BenchmarkV2TrimSectors-12      	 1344559	       934.5 ns/op	   1344559 sectors	       0 B/op	       0 allocs/op
BenchmarkVolumeGrow
BenchmarkVolumeGrow-12         	  410400	      3112 ns/op	    410400 sectors	     224 B/op	       8 allocs/op
BenchmarkVolumeShrink
BenchmarkVolumeShrink-12       	  724045	      1898 ns/op	    724045 sectors	       0 B/op	       0 allocs/op
BenchmarkVolumeMigrate
BenchmarkVolumeMigrate-12      	      18	  66599769 ns/op	        18.00 sectors	   11230 B/op	     298 allocs/op
BenchmarkStoreSector
BenchmarkStoreSector-12        	    7740	    154748 ns/op	      7740 sectors	    9240 B/op	     225 allocs/op
BenchmarkReadSector
BenchmarkReadSector-12         	   35342	     31820 ns/op	     35342 sectors	    4783 B/op	      94 allocs/op
PASS
ok  	go.sia.tech/hostd/v2/persist/sqlite	970.016s

Apr 14, 2025

#1871 chore(deps): bump github.com/go-sql-driver/mysql from 1.9.1 to 1.9.2 in the all-dependencies group

Bumps the all-dependencies group with 1 update: github.com/go-sql-driver/mysql.

Updates github.com/go-sql-driver/mysql from 1.9.1 to 1.9.2

Release notes

Sourced from github.com/go-sql-driver/mysql's releases.

v1.9.2

What's Changed

v1.9.2 is a re-release of v1.9.1 due to a release process issue; no changes were made to the content.

Full Changelog: https://github.com/go-sql-driver/mysql/compare/v1.9.1...v1.9.2

Changelog

Sourced from github.com/go-sql-driver/mysql's changelog.

v1.9.2 (2025-04-07)

v1.9.2 is a re-release of v1.9.1 due to a release process issue; no changes were made to the content.

Commits

21ef4c6 release v1.9.2 (#1693)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 11, 2025

#1870 Debug upload

Apr 10, 2025

#1868 Upgrade coreutils dependency

Apr 9, 2025

#650 use chain logger

Apr 9, 2025

#271 chore: update deps

Apr 9, 2025

#270 update coreutils

Apr 9, 2025

#649 chore(deps): update core and coreutils

Apr 9, 2025

#648 fix(cmd): change rhp4 listener log to info

Fixes #647

Apr 8, 2025

#1038 fix(explorer, explored-types): add missing address event types

Apr 8, 2025

#1037 feat(exlorer, design-system): move entity list components to explorer

This PR moves the entitylist component and its related subcomponents out of design-system and into explorer. I brought BlockList over as well.

The only snafu is with the PeerList component, so I rewrote this using only the props that it needed. This component is used across our non-explorer apps, so this likely needs a manual QA'ing to make sure things work as expected with it.

Apr 8, 2025

#1036 feat(explorer): add unconfirmed events to the address page

Apr 8, 2025

#1035 feat(explored-types): add unconfirmed address events api and missing address events hook

Apr 8, 2025

#1867 Fix panic in alerts manager

Not sure how we missed this for so long

http: panic serving 172.18.0.17:43362: runtime error: slice bounds out of range [450:1]
goroutine 7191094 [running]:
net/http.(*conn).serve.func1()
	/usr/local/go/src/net/http/server.go:1947 +0xbe
panic({0xe8b8e0?, 0xc000350198?})
	/usr/local/go/src/runtime/panic.go:791 +0x132
go.sia.tech/renterd/v2/alerts.(*Manager).Alerts(0xc0002b0680, {0xc00018a620?, 0xc002180140?}, {0x0?, 0x0?, 0x0?})
	/renterd/alerts/alerts.go:242 +0x53e
go.sia.tech/renterd/v2/bus.(*Bus).handleGETAlerts(0xc0001d2c80, {{0x19142d0, 0xc00018a620}, 0xc002180140, {0x0, 0x0, 0x0}})
	/renterd/bus/routes.go:1858 +0x24a

Apr 8, 2025

#260 Easier use of ephemeral outputs

Easier use of ephemeral outputs for atomic swaps

Apr 8, 2025

#645 build(deps): bump the dependencies group with 3 updates

Bumps the dependencies group with 3 updates: github.com/mattn/go-sqlite3, golang.org/x/sys and golang.org/x/term.

Updates github.com/mattn/go-sqlite3 from 1.14.24 to 1.14.27

Commits

8d69329 revert #1259
9794660 docs: clarify GCP section
b9f4d8c chore: Fix memory leak in callbackRetText function
7658c06 Fix sqlite3_opt_unlock_notify with USE_LIBSQLITE3 (#1262)
c61eeb5 remove superfluous use of runtime.SetFinalizer on SQLiteRows
ab13d63 Remove suggestion that CGO isn't always needed (#1290)
348128f Upgrade upload-artifact action
82bc911 close statement when missing query arguments
See full diff in compare view

Updates golang.org/x/sys from 0.31.0 to 0.32.0

Commits

01aaa83 all: simplify code by using modern Go constructs
1b2bd6b windows: replace all StringToUTF16 calls with UTF16FromString
1c3b72f unix: update Linux kernel to 6.14
c175b6b windows: add cmsghdr and pktinfo structures
3330b5e unix: support Readv, Preadv, Writev and Pwritev for darwin
7401cce cpu: replace specific instructions with WORD in the function get_cpucfg on lo...
b8f7da6 cpu: add support for detecting cpu features on loong64
f2ce62c windows: add constants for PMTUD socket options
See full diff in compare view

Updates golang.org/x/term from 0.30.0 to 0.31.0

Commits

5d2308b go.mod: update golang.org/x dependencies
e770ddd x/term: disabling auto-completion around GetPassword()
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 7, 2025

#269 build(deps): bump the all-dependencies group with 2 updates

Bumps the all-dependencies group with 2 updates: github.com/mattn/go-sqlite3 and golang.org/x/term.

Updates github.com/mattn/go-sqlite3 from 1.14.24 to 1.14.27

Commits

8d69329 revert #1259
9794660 docs: clarify GCP section
b9f4d8c chore: Fix memory leak in callbackRetText function
7658c06 Fix sqlite3_opt_unlock_notify with USE_LIBSQLITE3 (#1262)
c61eeb5 remove superfluous use of runtime.SetFinalizer on SQLiteRows
ab13d63 Remove suggestion that CGO isn't always needed (#1290)
348128f Upgrade upload-artifact action
82bc911 close statement when missing query arguments
See full diff in compare view

Updates golang.org/x/term from 0.30.0 to 0.31.0

Commits

5d2308b go.mod: update golang.org/x dependencies
e770ddd x/term: disabling auto-completion around GetPassword()
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 7, 2025

#296 build(deps): bump the all-dependencies group with 2 updates

Bumps the all-dependencies group with 2 updates: golang.org/x/crypto and golang.org/x/sys.

Updates golang.org/x/crypto from 0.36.0 to 0.37.0

Commits

959f8f3 go.mod: update golang.org/x dependencies
769bcd6 ssh: use the configured rand in kex init
d0a798f cryptobyte: fix typo 'octects' into 'octets' for asn1.go
acbcbef acme: remove unnecessary []byte conversion
376eb14 x509roots: support constrained roots
b369b72 crypto/internal/poly1305: implement function update in assembly on loong64
6b853fb ssh/knownhosts: check more than one key
See full diff in compare view

Updates golang.org/x/sys from 0.31.0 to 0.32.0

Commits

01aaa83 all: simplify code by using modern Go constructs
1b2bd6b windows: replace all StringToUTF16 calls with UTF16FromString
1c3b72f unix: update Linux kernel to 6.14
c175b6b windows: add cmsghdr and pktinfo structures
3330b5e unix: support Readv, Preadv, Writev and Pwritev for darwin
7401cce cpu: replace specific instructions with WORD in the function get_cpucfg on lo...
b8f7da6 cpu: add support for detecting cpu features on loong64
f2ce62c windows: add constants for PMTUD socket options
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Apr 7, 2025

#1866 chore(deps): bump the all-dependencies group with 5 updates

Apr 4, 2025

#1027 test(explorer): use cluster for testing

Apr 4, 2025

#1018 feat(explorer): add support for v2 types

Apr 4, 2025

#1017 feat(explored-types): add v2 type support

Apr 4, 2025

#1026 test(explorer): disable contract renewedFrom, renewedTo, and adjust constant

This disables the tests that will fail as a result of disabling the renewedFrom and renewedTo buttons until such time as those are available. That said, the next PR up the stack will fail. The one after that I'm aiming to succeed with this PR. The final one, adjusting the testing suite to fully utilize clusterd, obviously changes all this. I wanted to see the pre-cluster testing succeed to verify assumptions, if that makes sense.

Apr 4, 2025

#1032 refactor(request): narrow to() function response type

Apr 4, 2025

#1034 feat(explored-types): add explorerTip route

Apr 4, 2025

#1028 fix(explored-types): update hostByPubkeyRoute to match new explored location

This route was changed in https://github.com/SiaFoundation/explored/pull/189

Apr 3, 2025

#1030 fix(cluster): add missing explored param, upgrade

Add missing explored param.
Upgrade explored.

Apr 3, 2025

#1029 fix(website): map zero results

Fixed the map when zero hosts are found.

Apr 1, 2025

#1024 feat(explorer): sync and index warnings

The explorer now shows specific syncing and indexing warnings.

Apr 1, 2025

#641 build(deps): bump the dependencies group with 2 updates

Apr 1, 2025

#268 build(deps): bump go.sia.tech/core from 0.10.5-0.20250317164759-1a1e10e046f0 to 0.10.5 in the all-dependencies group

Mar 31, 2025

#291 chore: prepare release 0.10.5

This PR was created automatically. Merging it will create a new release for 0.10.5

Add Mul helper to Usage type
Fixed an issue with memory aliasing of merkle proofs

Mar 31, 2025

#1865 chore(deps): bump go.sia.tech/web/renterd from 0.77.1 to 0.79.0 in the all-dependencies group

Bumps the all-dependencies group with 1 update: go.sia.tech/web/renterd.

Updates go.sia.tech/web/renterd from 0.77.1 to 0.79.0

Release notes

Sourced from go.sia.tech/web/renterd's releases.

[email protected]

Minor Changes
e32e617f: The host explorer now has a version column.

e32e617f: The host explorer now has columns for v2 settings.

e32e617f: The host explorer address column now gets populates v2 host addresses.
[email protected]

Minor Changes
96a58672: The siascan setting toggle was removed from the cmd+k menu.

96a58672: Averages prices in the configuration page are based off v2 settings once the current network passes the allow height.

9e603732: File download behaviour is now consistent across all browsers.

96a58672: Host geolocation data is now provided by the configured explorer.

96a58672: Privacy and security settings quick nav actions were added to the cmd+k menu.

96a58672: Averages prices in the configuration page are now provided by the configured explorer.

Commits

e4af330 chore: release packages
e617f65 fix(hostd): contact explorer total and modes
e32e617 feat(renterd): host explorer v2 settings columns
d95a0d4 refactor(explorer): hastings to fiat method name
0bf07ad fix(hostd): use immature field for immature balance
a56df5a chore(explorer): update explored APIs
0d5ca6e chore: export renterd/v0.78.0 hostd/v0.60.0
5aba425 chore: release packages
ab80eb6 feat(hostd): remove announce button
6a3bcdb feat(explorer): v2 median prices after hardfork
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 28, 2025

#1022 fix(hostd): contact explorer total and modes

Extends the work (and reverts the change from server to client filtering) done in https://github.com/SiaFoundation/web/pull/989 and adds two distinct modes.

Changes

The contract explorer now has distinct v1 and v2 viewing modes.
Fixed an issue where the contract explorer did not show the correct total number of contracts.

Screenshot 2025-03-28 at 1.32.22 PM.png

Screenshot 2025-03-28 at 1.32.18 PM.png

Mar 28, 2025

#1016 feat(renterd): host explorer v2 settings columns

The host explorer now has a version column.
The host explorer now has columns for v2 settings.

Screenshot 2025-03-26 at 4.35.19 PM.png

Screenshot 2025-03-26 at 4.35.07 PM.png

Screenshot 2025-03-26 at 4.34.36 PM.png

Mar 28, 2025

#1015 refactor(explorer): hastings to fiat method name

Small change to make method name more specific/accurate.

Mar 28, 2025

#267 build(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in the go_modules group

Bumps the go_modules group with 1 update: golang.org/x/net.

Updates golang.org/x/net from 0.34.0 to 0.36.0

Commits

85d1d54 go.mod: update golang.org/x dependencies
cde1dda proxy, http/httpproxy: do not mismatch IPv6 zone ids against hosts
fe7f039 publicsuffix: spruce up code gen and speed up PublicSuffix
459513d internal/http3: move more common stream processing to genericConn
aad0180 http2: fix flakiness from t.Log when GOOS=js
b73e574 http2: don't log expected errors from writing invalid trailers
5f45c77 internal/http3: make read-data tests usable for server handlers
43c2540 http2, internal/httpcommon: reject userinfo in :authority
1d78a08 http2, internal/httpcommon: factor out server header logic for h2/h3
0d7dc54 quic: add Conn.ConnectionState
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.

Mar 28, 2025

#264 Easier support for local testnets

{
  "network": {
    "name": "zen",
    "initialCoinbase": "300000000000000000000000000000",
    "minimumCoinbase": "30000000000000000000000000000",
    "initialTarget": "0000000100000000000000000000000000000000000000000000000000000000",
    "blockInterval": 600000000000,
    "maturityDelay": 144,
    "hardforkDevAddr": {
      "height": 1,
      "oldAddress": "000000000000000000000000000000000000000000000000000000000000000089eb0d6a8a69",
      "newAddress": "000000000000000000000000000000000000000000000000000000000000000089eb0d6a8a69"
    },
    "hardforkTax": {
      "height": 2
    },
    "hardforkStorageProof": {
      "height": 5
    },
    "hardforkOak": {
      "height": 10,
      "fixHeight": 12,
      "genesisTimestamp": "2023-01-13T00:53:20-08:00"
    },
    "hardforkASIC": {
      "height": 20,
      "oakTime": 10000000000000,
      "oakTarget": "0000000100000000000000000000000000000000000000000000000000000000"
    },
    "hardforkFoundation": {
      "height": 30,
      "primaryAddress": "053b2def3cbdd078c19d62ce2b4f0b1a3c5e0ffbeeff01280efb1f8969b2f5bb4fdc680f0807",
      "failsafeAddress": "000000000000000000000000000000000000000000000000000000000000000089eb0d6a8a69"
    },
    "hardforkV2": {
      "allowHeight": 112000,
      "requireHeight": 114000
    }
  },
  "genesis": {
    "parentID": "0000000000000000000000000000000000000000000000000000000000000000",
    "nonce": 0,
    "timestamp": "2023-01-13T00:53:20-08:00",
    "minerPayouts": null,
    "transactions": [
      {
        "id": "268ef8627241b3eb505cea69b21379c4b91c21dfc4b3f3f58c66316249058cfd",
        "siacoinOutputs": [
          {
            "value": "1000000000000000000000000000000000000",
            "address": "3d7f707d05f2e0ec7ccc9220ed7c8af3bc560fbee84d068c2cc28151d617899e1ee8bc069946"
          }
        ],
        "siafundOutputs": [
          {
            "value": 10000,
            "address": "053b2def3cbdd078c19d62ce2b4f0b1a3c5e0ffbeeff01280efb1f8969b2f5bb4fdc680f0807"
          }
        ]
      }
    ]
  }
}

Closes https://github.com/SiaFoundation/walletd/issues/265

Mar 28, 2025

#292 all: Add Element memory management methods and linter

This should go a long way towards catching memory aliasing bugs like https://github.com/SiaFoundation/core/pull/290. I should have done this ages ago. 😬 Basically, the linter flags anything like:

sce := txn.SiacoinInputs[0].Parent // "shallow copy of SiacoinElement; use Move, Share, or Copy"
cau.UpdateElementProof(&sce)

To silence it, you annotate each copy with one of those ownership methods, and then we panic if you try to call UpdateElementProof on an element that you don't exclusively own.

Annotating every copy is kind of annoying, but it wasn't too onerous to churn through them once the linter was working. In case it's not clear, the idea is:

Default to Copy.
If you're not going to retain the element (e.g. if you're a function that just inspects elements and returns them), you can use Share. Putting the element inside of a struct (like a transaction) counts as retaining it! Usually, it's okay to use Share when passing an element to a function (and consequently, if you're a function that takes an element, you should treat it as shared).
If you "own" the element and you just need to tweak it for whatever reason, you can use Move. This is most common when calling UpdateElementProof on each element in a map (since can't get a pointer to map values, you need to make a temporary copy, update that, then store it back in the map). Move is like Share, except you "retain ownership" so you're still allowed to update the proof.

One nice thing about this approach is that it's opt-in. If you're importing core, you don't need to be aware of any of this stuff, even if you're directly touching elements. But you are encouraged to run the linter on your code and annotate all your copies. I've done this with coreutils and it was pretty easy.

The biggest shortcoming is that this won't detect shallow copies of structs containing an element. For example, if you copy a transaction without .DeepCopy, it won't complain. Flagging every such copy would be impractical, since you would need to add Copy/Share/Move methods to every type containing an element.

Lastly -- yes, this is (to paraphrase Greenspun) "an ad hoc, informally-specified, bug-ridden, slow implementation of half of Rust."

Mar 27, 2025

#1020 fix(hostd): use immature field for immature balance

Mar 27, 2025

#639 Reduce migration time for mostly empty volumes

This PR fixes a regression with migration time for mostly empty volumes by skipping unused sectors instead of checking each one. This may reintroduce the race condition with unmigrated sectors -- should test thoroughly before release.

Mar 26, 2025

#1014 chore(explorer): update explored APIs

Mar 26, 2025

#638 chore(deps): update ui

Mar 25, 2025

#1013 feat(hostd): remove announce button

The announce button has been removed in favor of automatic announcements.

Mar 25, 2025

#1012 feat(explorer): v2 median prices after hardfork

The home page will now show median prices based off v2 host settings after the allow height.

Mar 25, 2025

#1011 feat(explorer): sync banner, hardfork banner sync

Made some tweaks around sync status since the node height is not the actual network height until fully synced.

Changes

The hardfork countdown only shows if the explorer is fully synced.
The explorer now shows a warning banner if syncing is in progress.

Screenshot 2025-03-25 at 3.29.17 PM.png

Mar 25, 2025

#1010 docs(hostd): add comments for v2 contract data

Discussed the meaning of these fields and v2 heights in general again today, so thought it would be worth adding some comments for the next passerby.

Mar 25, 2025

#261 build(deps): bump go.sia.tech/web/walletd from 0.29.1 to 0.29.2 in the all-dependencies group

Bumps the all-dependencies group with 1 update: go.sia.tech/web/walletd.

Updates go.sia.tech/web/walletd from 0.29.1 to 0.29.2

Release notes

Sourced from go.sia.tech/web/walletd's releases.

[email protected]

Patch Changes
cad48e35: Fixed an issue where a v2ContractResolution event in the wallet would crash the app. Closes SiaFoundation/hostd#629

Commits

f8d7650 chore: release packages
b9cb439 feat(hostd): v2 contracts
ce20d28 feat(hostd-libs): add v2 contracts api
cad48e3 fix(hostd): issue with events v2ContractResolution type
e63d981 feat(explorer): change average price titles to median
ea9cc58 fix(explorer): change protocolVersion to an array and join
7d137c1 feat(explorer): add v2 hardfork countdowns to home page
cf5ac11 chore(cluster): install v2 module paths
7147e15 feat(explorer): use v2Settings for host page display
1bc11c2 chore(explorer-e2e): e2e target should build dependencies
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 25, 2025

#262 Remove key store

Removes the experimental key store. It will be moved and provided as part of an external seed vault.

Mar 24, 2025

#1863 github issue template tweaks

Mar 24, 2025

#1864 chore(deps): bump the all-dependencies group with 2 updates

Bumps the all-dependencies group with 2 updates: github.com/go-sql-driver/mysql and go.sia.tech/web/renterd.

Updates github.com/go-sql-driver/mysql from 1.9.0 to 1.9.1

Release notes

Sourced from github.com/go-sql-driver/mysql's releases.

v1.9.1

What's Changed
add Charset() option by @methane in go-sql-driver/mysql#1679

Fix FormatDSN missing ConnectionAttributes by @bogcon in go-sql-driver/mysql#1619

go.mod: fix go version format by @methane in go-sql-driver/mysql#1682

release v1.9.1 by @methane in go-sql-driver/mysql#1683
New Contributors
@bogcon made their first contribution in go-sql-driver/mysql#1619
Full Changelog: https://github.com/go-sql-driver/mysql/compare/v1.9.0...v1.9.1

Changelog

Sourced from github.com/go-sql-driver/mysql's changelog.

v1.9.1 (2025-03-21)

Major Changes
Add Charset() option. (#1679)
Bugfixes
go.mod: fix go version format (#1682)

Fix FormatDSN missing ConnectionAttributes (#1619)

Commits

1fbafa8 release v1.9.1 (#1683)
b84ac5a go.mod: fix go version format (#1682)
88ff88b Fix FormatDSN missing ConnectionAttributes (#1619)
c879816 add Charset() option (#1679)
See full diff in compare view

Updates go.sia.tech/web/renterd from 0.77.0 to 0.77.1

Release notes

Sourced from go.sia.tech/web/renterd's releases.

[email protected]

Patch Changes
cad48e35: Fixed an issue where a v2ContractResolution event in the wallet would crash the app. Closes SiaFoundation/hostd#629

Commits

f8d7650 chore: release packages
b9cb439 feat(hostd): v2 contracts
ce20d28 feat(hostd-libs): add v2 contracts api
cad48e3 fix(hostd): issue with events v2ContractResolution type
e63d981 feat(explorer): change average price titles to median
ea9cc58 fix(explorer): change protocolVersion to an array and join
7d137c1 feat(explorer): add v2 hardfork countdowns to home page
cf5ac11 chore(cluster): install v2 module paths
7147e15 feat(explorer): use v2Settings for host page display
1bc11c2 chore(explorer-e2e): e2e target should build dependencies
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 24, 2025

#637 Improve migrate performance

Improve migrate performance when removing large volumes. The old query took on ~2s to complete, while the split query takes ~3ms. This should help reduce database is locked failures for active hosts.

Mar 21, 2025

#636 chore(deps): update core and web dependency

Mar 21, 2025

#634 Update V2Contract docstrings

Fixes https://github.com/SiaFoundation/hostd/issues/633

Mar 21, 2025

#248 Routes for requesting a block template and submitting a block similar to BIP22

This is part of the implementation of two endpoints relevant to mining pools for creating a block template and submitting a block after mining. Similar to BIP22.

What's still missing apart from tests and client methods is long polling. But before that I'd like to discuss this and have consensus on whether we want to actually implement it like this.

The caveat here is that we need to return separate versions for block encoding and transactions for the client to know how to decode them.

Overall, if we expect the client to already do all the work of building the block header and handling the different encodings correctly, it seems a little forced to implement these endpoints. I'm not sure about how big the upside is but I'm also not a miner.

Mar 20, 2025

#295 chore(doc): add more RHP4 doc comments

Mar 20, 2025

#259 chore: fix comment

fix comment

Mar 20, 2025

#1857 Infer mime type when creating multipart upload

We currently don't infer a content type for multipart uploads. Only regular uploads. To be consistent with regular uploads and common S3 client implementations, this PR changes multipart uploads to also infer the type from the extension and if that doesn't work set it to application/octet-stream.

Mar 19, 2025

#294 gateway: Fix missing SendCheckpoint RPC

🙃

Mar 19, 2025

#293 Add mul to Usage

This adds a useful helper to Usage. e.g. when computing how much funds to put into a contract it's nice to be able to do RPCAppendSectorCost.Mul(sectorsPerTiB) or whatever.

Mar 19, 2025

#1861 Update openapi.yml with dl query param

Mar 19, 2025

#1858 Add 'dl' query param to downloads to force direct download

Mar 19, 2025

#1860 Fix broadcastExpiredFileContractResolutions not including unconfirmed transactions when broadcasting revisions

Fix https://github.com/SiaFoundation/renterd/issues/1856

Mar 18, 2025

#1855 chore(deps): update core and coreutils

Mar 18, 2025

#257 chore(deps): update core

Mar 18, 2025

#632 Add rhp4 flag

Enables overriding the RHP4 port from the CLI instead of requiring config changes.

Also bumps core and coreutils

Mar 17, 2025

#290 consensus: fix contract revision aliasing

Mar 17, 2025

#1854 Add v111 compat code

Tested with YAML:

seed: [ENTER SEED HERE]
directory: "."
autoOpenWebUI: true
network: mainnet
shutdownTimeout: 5m0s
log:
    level: info
    stdout:
        enabled: true
        format: human
        enableANSI: true
    file:
        enabled: true
        format: human
http:
    address: localhost:9980
    password: test
autopilot:
    enabled: true
    heartbeat: 30m0s
    migrationHealthCutoff: 0.8
    migratorParallelSlabsPerWorker: 2
    revisionBroadcastInterval: 168h0m0s
    revisionSubmissionBuffer: 150
    scannerInterval: 4h0m0s
    scannerBatchSize: 100
    scannerNumThreads: 10
bus:
    persistInterval: 1m0s
    announcementMaxAgeHours: 8736
    bootstrap: true
    gatewayAddr: :9981
    usedUtxoExpiry: 24h0m0s
    slabBufferCompleionThreshold: 4096
worker:
    contractLockTimeout: 1h0m0s
    enabled: true
    id: worker
    accountsRefillInterval: 10s
    busFlushInterval: 5s
    downloadOverdriveTimeout: 3s
    uploadOverdriveTimeout: 3s
    downloadMaxOverdrive: 5
    downloadMaxMemory: 1073741824
    uploadMaxMemory: 1073741824
    uploadMaxOverdrive: 5
s3:
    address: localhost:8080
    enabled: true
    keypairsV4:
      foo: bar
database:
    log:
        enabled: true
        level: info
        ignoreRecordNotFoundError: true
        slowThreshold: 500ms
    mysql:
        user: renterd
        database: renterd
        metricsDatabase: renterd_metrics

On master this errors out with

➜  local2 ./renterd_master
failed to load config file: failed to decode config file: yaml: unmarshal errors:
  line 21: field migrationHealthCutoff not found in type config.Autopilot
  line 22: field migratorParallelSlabsPerWorker not found in type config.Autopilot
  line 29: field persistInterval not found in type config.Bus
  line 36: field contractLockTimeout not found in type config.Worker
  line 50: field keypairsV4 not found in type config.S3
  line 53: field log not found in type config.Database

On pj/upgrade-v111config compat runs fine and migrates the YAML properly.

Fixes https://github.com/SiaFoundation/renterd/issues/1852

Mar 17, 2025

#1853 chore(deps): bump the all-dependencies group with 2 updates

Mar 14, 2025

#1850 Extend docs with descriptions for all routes and schemas

This PR updates the description where I felt it was lacking or missing entirely.

One thing I noticed is that most informative descriptions are a bit buried in the schema and object descriptions which aren't visible by default in a swagger editor. For example, the issue I linked mentioned a missing description for what the owner of an account is, which is in the schema but not immediately obvious indeed

Closes https://github.com/SiaFoundation/renterd/issues/1843

Mar 13, 2025

#255 Add wallet client transaction examples

Adds godoc examples for the wallet client and transaction construction

Mar 13, 2025

#631 build(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in the go_modules group

Bumps the go_modules group with 1 update: golang.org/x/net.

Updates golang.org/x/net from 0.34.0 to 0.36.0

Commits

85d1d54 go.mod: update golang.org/x dependencies
cde1dda proxy, http/httpproxy: do not mismatch IPv6 zone ids against hosts
fe7f039 publicsuffix: spruce up code gen and speed up PublicSuffix
459513d internal/http3: move more common stream processing to genericConn
aad0180 http2: fix flakiness from t.Log when GOOS=js
b73e574 http2: don't log expected errors from writing invalid trailers
5f45c77 internal/http3: make read-data tests usable for server handlers
43c2540 http2, internal/httpcommon: reject userinfo in :authority
1d78a08 http2, internal/httpcommon: factor out server header logic for h2/h3
0d7dc54 quic: add Conn.ConnectionState
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.

Mar 12, 2025

#630 Combine sector update for pruning with fetching prunable sectors

It seems like on busy databases, UPDATE volume_sectors SET sector_id=null WHERE id=$1 fails to upgrade from a shared to an exclusive lock https://github.com/SiaFoundation/hostd/issues/616

To avoid that I'd like to propose combining the select and update into a single query. That way SQLite should be able to figure out that the transaction needs to be exclusive from the very beginning rather than trying to upgrade from a shared to an exclusive lock and failing to do so cause it ends up in a deadlock situation. This way I expect it to correctly make use of the PENDING state, block until it can acquire the lock and then do its thing without being starved by other goroutines.

Mar 12, 2025

#1848 chore(go.mod): go.sia.tech/renterd -> go.sia.tech/renterd/v2

Same as https://github.com/SiaFoundation/walletd/pull/254

Mar 11, 2025

#628 chore(deps): update core and coreutils

Mar 11, 2025

#627 chore(go.mod): go.sia.tech/hostd -> go.sia.tech/hostd/v2

Same as https://github.com/SiaFoundation/walletd/pull/254

Mar 11, 2025

#254 go.sia.tech/walletd -> go.sia.tech/walletd/v2

https://pkg.go.dev/go.sia.tech/walletd?utm_source=godoc shows v0.8.0 as the latest version. However, we have since released v2.0.0. This makes it more difficult to import and use walletd's API client. This adds the required /v2 suffix to the module path to satisfy Go Doc. It is very unfortunate that all importers of the package will need to update their dependency to go.sia.tech/walletd/v2.

I am not positive that this will fix the issue, but the go documentation suggests this is required even if you want the package to stay in the root.

Mar 11, 2025

#626 build(deps): bump the dependencies group with 4 updates

Bumps the dependencies group with 4 updates: go.sia.tech/core, golang.org/x/sys, golang.org/x/term and golang.org/x/time.

Updates go.sia.tech/core from 0.10.3 to 0.10.4

Release notes

Sourced from go.sia.tech/core's releases.

0.10.4 (2025-03-10)

Fixes
Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.4 (2025-03-10)

Fixes
Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.

Commits

d91b56f chore: prepare release 0.10.4
96754dc build(deps): bump the all-dependencies group with 2 updates
487e0bb Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
2c8ed42 Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
e72a38d docs: add changelog entry for MaxLen fix
3f58a79 chore(doc): comment rhp4 settings
9a49925 knope: updat config
d652370 Merge pull request #284 from SiaFoundation/pj/max-len
bbcee7a encoding: fix maxLen
67d8e73 build(deps): bump golang.org/x/crypto in the all-dependencies group
See full diff in compare view

Updates golang.org/x/sys from 0.30.0 to 0.31.0

Commits

74cfc93 all: upgrade go directive to at least 1.23.0 [generated]
See full diff in compare view

Updates golang.org/x/term from 0.29.0 to 0.30.0

Commits

04218fd go.mod: update golang.org/x dependencies
208db03 all: upgrade go directive to at least 1.23.0 [generated]
See full diff in compare view

Updates golang.org/x/time from 0.10.0 to 0.11.0

Commits

0c50ed8 all: upgrade go directive to at least 1.23.0 [generated]
66520f6 rate: simplify function advance only returns new Tokens to caller
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 11, 2025

#253 build(deps): bump the all-dependencies group across 1 directory with 3 updates

Bumps the all-dependencies group with 1 update in the / directory: go.sia.tech/core.

Updates go.sia.tech/core from 0.10.3 to 0.10.4

Release notes

Sourced from go.sia.tech/core's releases.

0.10.4 (2025-03-10)

Fixes
Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.4 (2025-03-10)

Fixes
Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.

Commits

d91b56f chore: prepare release 0.10.4
96754dc build(deps): bump the all-dependencies group with 2 updates
487e0bb Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
2c8ed42 Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
e72a38d docs: add changelog entry for MaxLen fix
3f58a79 chore(doc): comment rhp4 settings
9a49925 knope: updat config
d652370 Merge pull request #284 from SiaFoundation/pj/max-len
bbcee7a encoding: fix maxLen
67d8e73 build(deps): bump golang.org/x/crypto in the all-dependencies group
See full diff in compare view

Updates golang.org/x/crypto from 0.34.0 to 0.36.0

Commits

49bf5b8 go.mod: update golang.org/x dependencies
24852b6 ssh: add decode support for banners
bbc689c ssh: use a more straightforward return value
7292932 ssh: limit the size of the internal packet queue while waiting for KEX
See full diff in compare view

Updates golang.org/x/term from 0.29.0 to 0.30.0

Commits

04218fd go.mod: update golang.org/x dependencies
208db03 all: upgrade go directive to at least 1.23.0 [generated]
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 11, 2025

#251 build(deps): bump the all-dependencies group with 4 updates

Bumps the all-dependencies group with 4 updates: go.sia.tech/core, go.sia.tech/web/walletd, golang.org/x/crypto and golang.org/x/term.

Updates go.sia.tech/core from 0.10.3 to 0.10.4

Release notes

Sourced from go.sia.tech/core's releases.

0.10.4 (2025-03-10)

Fixes
Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.4 (2025-03-10)

Fixes
Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.

Commits

d91b56f chore: prepare release 0.10.4
96754dc build(deps): bump the all-dependencies group with 2 updates
487e0bb Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
2c8ed42 Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
e72a38d docs: add changelog entry for MaxLen fix
3f58a79 chore(doc): comment rhp4 settings
9a49925 knope: updat config
d652370 Merge pull request #284 from SiaFoundation/pj/max-len
bbcee7a encoding: fix maxLen
67d8e73 build(deps): bump golang.org/x/crypto in the all-dependencies group
See full diff in compare view

Updates go.sia.tech/web/walletd from 0.29.0 to 0.29.1

Release notes

Sourced from go.sia.tech/web/walletd's releases.

[email protected]

Patch Changes
a8e77c6c: Fixed V2 signing for wallets that do not have siafund outputs.

Commits

e5b9df8 chore: release packages
5f4ebab refactor(explorer): rely on successfulInteractions for unscanned hosts
c93054e fix(explorer): shorten contract opengraph image date display
9323af7 feat(explorer): add v2 host type support
443c4a4 feat(explored-types): add v2 host type support
cb7fd2b test(explorer): add v2 host title support
05778c2 fix(walletd): update test for new v2 signing
b90ee0e fix(walletd): remove duplicate keypair call
a8e77c6 fix(walletd,types): fix signing v2 transactions when the wallet does not have...
2d83b41 fix(explorer): fix one-off transaction confirmation count
Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.34.0 to 0.36.0

Commits

49bf5b8 go.mod: update golang.org/x dependencies
24852b6 ssh: add decode support for banners
bbc689c ssh: use a more straightforward return value
7292932 ssh: limit the size of the internal packet queue while waiting for KEX
See full diff in compare view

Updates golang.org/x/term from 0.29.0 to 0.30.0

Commits

04218fd go.mod: update golang.org/x dependencies
208db03 all: upgrade go directive to at least 1.23.0 [generated]
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 11, 2025

#252 ui: v0.29.1

Fixed V2 signing for wallets that do not have siafund outputs. Fixes https://github.com/SiaFoundation/walletd/issues/247

Mar 10, 2025

#1847 Increase default value for `MigratorNumThreads`

Mar 10, 2025

#288 chore: prepare release 0.10.4

This PR was created automatically. Merging it will create a new release for 0.10.4

Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.

Mar 10, 2025

#289 build(deps): bump the all-dependencies group with 2 updates

Bumps the all-dependencies group with 2 updates: golang.org/x/crypto and golang.org/x/sys.

Updates golang.org/x/crypto from 0.35.0 to 0.36.0

Commits

49bf5b8 go.mod: update golang.org/x dependencies
24852b6 ssh: add decode support for banners
bbc689c ssh: use a more straightforward return value
See full diff in compare view

Updates golang.org/x/sys from 0.30.0 to 0.31.0

Commits

74cfc93 all: upgrade go directive to at least 1.23.0 [generated]
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 10, 2025

#286 Add changelog entry for `MaxLen` fix

Mar 10, 2025

#285 chore(doc): comment rhp4 settings

Adds some doc comments to the RHP4 settings

Mar 10, 2025

#287 Update `knope` config

https://github.com/SiaFoundation/core/pull/284 did not have a changeset entry, but that was done on purpose. I looked through recently merged core PRs and noticed we don't always add it, figured that fix did not really need one per se either. I updated the knope config to be consistent with all other repos.

Mar 9, 2025

#284 Fix `maxLen`

There are several instances where maxLen returns a size that doesn't take into account a transaction being part of the request. While updating I noticed some values diverged from their impl probably due to changes being made to the request/response structs over time. I took them along with me but the important ones are the reasonableTransactionSetSize ones of course.

I found out because my v2 migration on my node, which was chugging along nicely, halted all of a sudden. Contracts were no longer being refreshed, resulting in empty accounts, resulting in failed migrations. One thing that's puzzling me a bit though is the error message: "couldn't renew/refresh contract: host responded with error: failed to read host inputs response: failed to read request: EOF ". That error message seems impossible, I double checked and I still can't explain how you could ever get failed to read response, failed to read request.

Mar 7, 2025

#242 Add ed25519 key store

Adds an optional ed25519 signing key store for integrators to store arbitrary private keys for signing transactions. It allows for both generating private keys on the server and importing private keys.

The endpoint will return 404 if the --public CLI flag is set. It is not used by the UI.


client := api.NewClient(walletAddr, walletdPassword)

pubKey, err := client.GenerateSigningKey()
if err != nil {
    panic(err)
}

sig, err := client.SignHash(pubKey, hash)
if err != nil {
    panic(err)
}

The test diff does not spark joy, but I don't want to split it out. The only one with material changes is the new one at the bottom

Mar 4, 2025

#625 Add Prometheus support to syncer peers

Fixes #624

Mar 4, 2025

#245 build(deps): bump the all-dependencies group with 2 updates

Bumps the all-dependencies group with 2 updates: go.sia.tech/core and go.sia.tech/coreutils.

Updates go.sia.tech/core from 0.10.2 to 0.10.3

Release notes

Sourced from go.sia.tech/core's releases.

0.10.3 (2025-02-25)

Fixes
Improved SectorRoot performance by a factor of 10 by distributing work across available CPU cores

Update mux dependency to 1.4.0

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.3 (2025-02-25)

Fixes
Improved SectorRoot performance by a factor of 10 by distributing work across available CPU cores

Update mux dependency to 1.4.0

Commits

5466ce2 Merge pull request #281 from SiaFoundation/release
1afe4bd chore: prepare release 0.10.3
07b92f8 Merge pull request #282 from SiaFoundation/parallel-sector-root
5532361 remote whitespace
624cc3a add changeset
c918c3c rhp: Parallelize SectorRoot
6a333f4 Merge pull request #280 from SiaFoundation/chris/update-mux-dep
d8ad41a add changset entry
5aa3dc7 go.mod: update mux dependency
See full diff in compare view

Updates go.sia.tech/coreutils from 0.11.1 to 0.12.0

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.12.0 (2025-02-28)

Breaking Changes

Separate RHP4 Transports

The SiaMux and QUIC transports are now separated into go.sia.tech/rhp/v4/siamux and go.sia.tech/rhp/v4/quic packages. Both packages define a Dial and Serve helper that can be used to either start a transport server or connect to a host using the transport.

Features

Add RPCReplenishAccounts Implementation

Implements RPCReplenishAccounts in the RHP4 client and server enabling clients managing a large number of accounts to fund them quicker

Fixes
Fixes an issue where wallet redistributing would fail if the number of outputs created were less than requested

Fix data race in EphemeralWalletStore.

Fixed an issue with event confirmations not being correctly unmarshalled

Increase default max streams from 100 to 1000 for QUIC transport

Update core to v0.10.2 and mux to v1.4.0

Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.12.0 (2025-02-28)

Breaking Changes

Separate RHP4 Transports

The SiaMux and QUIC transports are now separated into go.sia.tech/rhp/v4/siamux and go.sia.tech/rhp/v4/quic packages. Both packages define a Dial and Serve helper that can be used to either start a transport server or connect to a host using the transport.

Features

Add RPCReplenishAccounts Implementation

Implements RPCReplenishAccounts in the RHP4 client and server enabling clients managing a large number of accounts to fund them quicker

Fixes
Fixes an issue where wallet redistributing would fail if the number of outputs created were less than requested

Fix data race in EphemeralWalletStore.

Fixed an issue with event confirmations not being correctly unmarshalled

Increase default max streams from 100 to 1000 for QUIC transport

Update core to v0.10.2 and mux to v1.4.0

Commits

3d4a3d2 Merge pull request #177 from SiaFoundation/release
0dbf0e4 chore: prepare release 0.12.0
482e4e8 Merge pull request #188 from SiaFoundation/nate/update-deps
0e87f3f update dependencies
8fec9a5 Merge pull request #187 from SiaFoundation/nate/fix-fatal
2158172 siamux,quic: switch upgrade failure to debug
ab7a3b2 Merge pull request #186 from SiaFoundation/nate/increase-max-streams
1c51221 quic: increase max streams
d01f7fa consistent protocol const
51cb482 Merge pull request #185 from SiaFoundation/nate/refactor-transports
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 3, 2025

#283 build(deps): bump golang.org/x/crypto from 0.33.0 to 0.35.0 in the all-dependencies group

Bumps the all-dependencies group with 1 update: golang.org/x/crypto.

Updates golang.org/x/crypto from 0.33.0 to 0.35.0

Commits

7292932 ssh: limit the size of the internal packet queue while waiting for KEX
f66f74b acme/autocert: check host policy before probing the cache
b0784b7 x509roots/fallback: drop obsolete build constraint
911360c all: bump golang.org/x/crypto dependencies of asm generators
89ff08d all: upgrade go directive to at least 1.23.0 [generated]
e47973b all: update certs for go1.24
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Mar 2, 2025

#244 Add endpoint to fetch block by id

Mar 1, 2025

#622 Update README.md

in docker compose - it has to be hostd, not host

Feb 28, 2025

#621 Add v2 contracts endpoints

Adds two new endpoints for querying V2 contracts

[GET] /v2/contracts/:id

Returns a single V2 contract by its ID

[POST] /v2/contracts

Queries a list of contracts with optional filtering

Example request body

{
  "statuses": [],
  "contractIDs": [],
  "renewedFrom": [],
  "renewedTo": [],
  "renterKey": [],
  "minNegotiationHeight": 0,
  "maxNegotiationHeight": 0,
  "minExpirationHeight": 0,
  "maxExpirationHeight": 0,
  "limit": 0,
  "offset": 0,
  "sortField": "",
  "sortDesc": false
}

Feb 28, 2025

#619 Add V2 sector roots to cache

This fixes an issue where V2 sector roots were not being properly loaded into the cache at startup and adds the integrity check method for v2 contracts.

Feb 28, 2025

#620 Fix outdated API client consensus methods

Feb 28, 2025

#281 chore: prepare release 0.10.3

This PR was created automatically. Merging it will create a new release for 0.10.3

Improved SectorRoot performance by a factor of 10 by distributing work across available CPU cores
Update mux dependency to 1.4.0

Feb 25, 2025

#282 rhp: Parallelize SectorRoot

goos: darwin
goarch: arm64
pkg: go.sia.tech/core/rhp/v2
cpu: Apple M2 Pro
BenchmarkSectorRoot
BenchmarkSectorRoot/serial
BenchmarkSectorRoot/serial-10                 49          23381873 ns/op         179.38 MB/s           0 B/op          0 allocs/op
BenchmarkSectorRoot/parallel
BenchmarkSectorRoot/parallel-10              326           3563796 ns/op        1176.92 MB/s       14806 B/op         34 allocs/op

Pretty unambiguous ~10x speedup when testing with a 10-core CPU. I experimented with inlining more of the appendLeaves logic into the worker goroutines, but it didn't have a significant impact on throughput and it made the code much more complex. ‾\_(ツ)_/‾

Feb 24, 2025

#241 build(deps): bump go.sia.tech/core from 0.10.1 to 0.10.2 in the all-dependencies group

Bumps the all-dependencies group with 1 update: go.sia.tech/core.

Updates go.sia.tech/core from 0.10.1 to 0.10.2

Release notes

Sourced from go.sia.tech/core's releases.

0.10.2 (2025-02-20)

Features

Add helpers to get revision as an element from v1/v2 file contract element diffs

#274 by @chris124567

In the old ForEachFileContractElement interface, the revision was provided as a pointer to a (V2)FileContractElement. In the new system of diffs, the revision is only provided as a (V2)FileContract. There are multiple places where it is useful to have the revision as an element, and in all of these places more or less the same code will be duplicated unless we create this helper.

Add RPCReplenish to RHP4

Adds an RPC to RHP4 that enables renters to set a target balance instead of first fetching the current balance and then funding the account with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.2 (2025-02-20)

Features

Add helpers to get revision as an element from v1/v2 file contract element diffs

##274 by @chris124567

In the old ForEachFileContractElement interface, the revision was provided as a pointer to a (V2)FileContractElement. In the new system of diffs, the revision is only provided as a (V2)FileContract. There are multiple places where it is useful to have the revision as an element, and in all of these places more or less the same code will be duplicated unless we create this helper.

Add RPCReplenish to RHP4

Adds an RPC to RHP4 that enables renters to set a target balance instead of first fetching the current balance and then funding the account with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Commits

fe05f66 Merge pull request #275 from SiaFoundation/release
8dd06fb chore: prepare release 0.10.2
dcacdc2 rhp4: use actual encoding sizes
939a947 Merge pull request #277 from SiaFoundation/nate/fix-replenish-encoding
9b4e96d encoding: set reasonable object size
37d788f return deposits instead of cost sum
5d00184 extend validate replenish accounts
847e895 rhp: add validate for fund accounts request
29bd92e add account batch size constant
400d96c fix lint
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Feb 24, 2025

#280 Update mux dependency to 1.4.0

Feb 24, 2025

#275 chore: prepare release 0.10.2

This PR was created automatically. Merging it will create a new release for 0.10.2

Features

Add helpers to get revision as an element from v1/v2 file contract element diffs

#274 by @chris124567

In the old ForEachFileContractElement interface, the revision was provided as a pointer to a (V2)FileContractElement. In the new system of diffs, the revision is only provided as a (V2)FileContract. There are multiple places where it is useful to have the revision as an element, and in all of these places more or less the same code will be duplicated unless we create this helper.

Add RPCReplenish to RHP4

Adds an RPC to RHP4 that enables renters to set a target balance instead of first fetching the current balance and then funding the account with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Feb 20, 2025

#278 rhp4: Use MaxAccountBatchSize for encoding sizes

reasonableObjectSize is not enough for these batch types

Feb 19, 2025

#277 RPCReplenish use reasonable object size

Feb 19, 2025

#276 Add RHP4 RPC replenish types

Adds an RPC to RHP4 that enables renters to set a target balance for all accounts instead of first fetching the current balances then funding the accounts with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Feb 11, 2025

#274 Add helpers to get revision as an element from v1/v2 file contract element diffs

See https://github.com/SiaFoundation/explored/pull/169#discussion_r1950507575

Feb 10, 2025

#273 chore: prepare release 0.10.1

This PR was created automatically. Merging it will create a new release for 0.10.1

Fix Siafund ClaimStart not being recorded

Feb 10, 2025