Activity

A feed of development activity from across Sia Foundation GitHub repositories.

Mar 25, 2025

Bumps the all-dependencies group with 1 update: go.sia.tech/web/walletd.

Updates go.sia.tech/web/walletd from 0.29.1 to 0.29.2

Release notes

Sourced from go.sia.tech/web/walletd's releases.

[email protected]

Patch Changes

  • cad48e35: Fixed an issue where a v2ContractResolution event in the wallet would crash the app. Closes SiaFoundation/hostd#629
Commits
  • f8d7650 chore: release packages
  • b9cb439 feat(hostd): v2 contracts
  • ce20d28 feat(hostd-libs): add v2 contracts api
  • cad48e3 fix(hostd): issue with events v2ContractResolution type
  • e63d981 feat(explorer): change average price titles to median
  • ea9cc58 fix(explorer): change protocolVersion to an array and join
  • 7d137c1 feat(explorer): add v2 hardfork countdowns to home page
  • cf5ac11 chore(cluster): install v2 module paths
  • 7147e15 feat(explorer): use v2Settings for host page display
  • 1bc11c2 chore(explorer-e2e): e2e target should build dependencies
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 25, 2025

Removes the experimental key store. It will be moved and provided as part of an external seed vault.

Mar 24, 2025
Mar 24, 2025

Bumps the all-dependencies group with 2 updates: github.com/go-sql-driver/mysql and go.sia.tech/web/renterd.

Updates github.com/go-sql-driver/mysql from 1.9.0 to 1.9.1

Release notes

Sourced from github.com/go-sql-driver/mysql's releases.

v1.9.1

What's Changed

New Contributors

Full Changelog: https://github.com/go-sql-driver/mysql/compare/v1.9.0...v1.9.1

Changelog

Sourced from github.com/go-sql-driver/mysql's changelog.

v1.9.1 (2025-03-21)

Major Changes

  • Add Charset() option. (#1679)

Bugfixes

  • go.mod: fix go version format (#1682)
  • Fix FormatDSN missing ConnectionAttributes (#1619)
Commits

Updates go.sia.tech/web/renterd from 0.77.0 to 0.77.1

Release notes

Sourced from go.sia.tech/web/renterd's releases.

[email protected]

Patch Changes

  • cad48e35: Fixed an issue where a v2ContractResolution event in the wallet would crash the app. Closes SiaFoundation/hostd#629
Commits
  • f8d7650 chore: release packages
  • b9cb439 feat(hostd): v2 contracts
  • ce20d28 feat(hostd-libs): add v2 contracts api
  • cad48e3 fix(hostd): issue with events v2ContractResolution type
  • e63d981 feat(explorer): change average price titles to median
  • ea9cc58 fix(explorer): change protocolVersion to an array and join
  • 7d137c1 feat(explorer): add v2 hardfork countdowns to home page
  • cf5ac11 chore(cluster): install v2 module paths
  • 7147e15 feat(explorer): use v2Settings for host page display
  • 1bc11c2 chore(explorer-e2e): e2e target should build dependencies
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 24, 2025

Improve migrate performance when removing large volumes. The old query took on ~2s to complete, while the split query takes ~3ms. This should help reduce database is locked failures for active hosts.

Mar 21, 2025
Mar 21, 2025
Mar 21, 2025
Mar 21, 2025
Mar 21, 2025
Mar 21, 2025
  • Move a copy of these mocks right to where they are used. The entire walletd-mock library is being deleted in subsequent PR.
Mar 21, 2025
  • Add V2HostSettings to core.
Mar 21, 2025
  • Fixed the units for v2 host settings total and remaining storage.
    • These fields were in bytes in v1, for v2 they are in sectors.
Mar 21, 2025
  • The sector utils were moved to @siafoundation/units.
Mar 21, 2025
  • Fixed the alignment of volume stats in the subnav.

Screenshot 2025-03-21 at 8.12.00 AM.png

Screenshot 2025-03-21 at 8.12.19 AM.png

Mar 21, 2025

Screenshot 2025-03-21 at 8.09.00 AM.png

Mar 21, 2025
  • File download behaviour is now consistent across all browsers.
Mar 21, 2025
  • Check the payout height on the actual timeline, this is more inline with the goal of the test and is more deterministic.
Mar 21, 2025

This is part of the implementation of two endpoints relevant to mining pools for creating a block template and submitting a block after mining. Similar to BIP22.

What's still missing apart from tests and client methods is long polling. But before that I'd like to discuss this and have consensus on whether we want to actually implement it like this.

The caveat here is that we need to return separate versions for block encoding and transactions for the client to know how to decode them.

Overall, if we expect the client to already do all the work of building the block header and handling the different encodings correctly, it seems a little forced to implement these endpoints. I'm not sure about how big the upside is but I'm also not a miner.

Mar 20, 2025
Mar 20, 2025

fix comment

Mar 20, 2025

We currently don't infer a content type for multipart uploads. Only regular uploads. To be consistent with regular uploads and common S3 client implementations, this PR changes multipart uploads to also infer the type from the extension and if that doesn't work set it to application/octet-stream.

Mar 19, 2025

🙃

Mar 19, 2025

This adds a useful helper to Usage. e.g. when computing how much funds to put into a contract it's nice to be able to do RPCAppendSectorCost.Mul(sectorsPerTiB) or whatever.

Mar 19, 2025
  • The contracts list now shows both v1 and v2 contracts.
  • The contracts list now has a version column that displays either v1 or v2.
  • Because the v1 and v2 contracts must be fetched separately, this PR also moves the filtering and pagination to the client-side. This is workable because both collections are roughly 10s or 100s (in the future some hosts may have low thousands) of records.

Screenshot 2025-03-17 at 2 15 59 PM
Mar 19, 2025
  • Added V2 contracts API.
  • Add capacity field to V2FileContract.
Mar 19, 2025
Mar 19, 2025
Mar 19, 2025
Mar 18, 2025
Mar 18, 2025
Mar 18, 2025

Enables overriding the RHP4 port from the CLI instead of requiring config changes.

Also bumps core and coreutils

Mar 17, 2025
Mar 17, 2025

Tested with YAML:

seed: [ENTER SEED HERE]
directory: "."
autoOpenWebUI: true
network: mainnet
shutdownTimeout: 5m0s
log:
    level: info
    stdout:
        enabled: true
        format: human
        enableANSI: true
    file:
        enabled: true
        format: human
http:
    address: localhost:9980
    password: test
autopilot:
    enabled: true
    heartbeat: 30m0s
    migrationHealthCutoff: 0.8
    migratorParallelSlabsPerWorker: 2
    revisionBroadcastInterval: 168h0m0s
    revisionSubmissionBuffer: 150
    scannerInterval: 4h0m0s
    scannerBatchSize: 100
    scannerNumThreads: 10
bus:
    persistInterval: 1m0s
    announcementMaxAgeHours: 8736
    bootstrap: true
    gatewayAddr: :9981
    usedUtxoExpiry: 24h0m0s
    slabBufferCompleionThreshold: 4096
worker:
    contractLockTimeout: 1h0m0s
    enabled: true
    id: worker
    accountsRefillInterval: 10s
    busFlushInterval: 5s
    downloadOverdriveTimeout: 3s
    uploadOverdriveTimeout: 3s
    downloadMaxOverdrive: 5
    downloadMaxMemory: 1073741824
    uploadMaxMemory: 1073741824
    uploadMaxOverdrive: 5
s3:
    address: localhost:8080
    enabled: true
    keypairsV4:
      foo: bar
database:
    log:
        enabled: true
        level: info
        ignoreRecordNotFoundError: true
        slowThreshold: 500ms
    mysql:
        user: renterd
        database: renterd
        metricsDatabase: renterd_metrics

On master this errors out with

➜  local2 ./renterd_master
failed to load config file: failed to decode config file: yaml: unmarshal errors:
  line 21: field migrationHealthCutoff not found in type config.Autopilot
  line 22: field migratorParallelSlabsPerWorker not found in type config.Autopilot
  line 29: field persistInterval not found in type config.Bus
  line 36: field contractLockTimeout not found in type config.Worker
  line 50: field keypairsV4 not found in type config.S3
  line 53: field log not found in type config.Database

On pj/upgrade-v111config compat runs fine and migrates the YAML properly.

Fixes https://github.com/SiaFoundation/renterd/issues/1852

Mar 17, 2025
Mar 14, 2025

The reason for this change is that hosts can set wildly high or low prices and throw off our averages. explored now supplies median, instead.

Mar 14, 2025
Mar 14, 2025
Mar 14, 2025
  • Upgrade cluster.
  • build-cluster targets now install hostd, renterd, and walletd (not explored) with v2 module path.
Mar 14, 2025

This PR updates the description where I felt it was lacking or missing entirely.

One thing I noticed is that most informative descriptions are a bit buried in the schema and object descriptions which aren't visible by default in a swagger editor. For example, the issue I linked mentioned a missing description for what the owner of an account is, which is in the schema but not immediately obvious indeed

Screenshot 2025-03-13 at 15 37 44

Closes https://github.com/SiaFoundation/renterd/issues/1843

Mar 13, 2025

Adds godoc examples for the wallet client and transaction construction

Mar 13, 2025

Bumps the go_modules group with 1 update: golang.org/x/net.

Updates golang.org/x/net from 0.34.0 to 0.36.0

Commits
  • 85d1d54 go.mod: update golang.org/x dependencies
  • cde1dda proxy, http/httpproxy: do not mismatch IPv6 zone ids against hosts
  • fe7f039 publicsuffix: spruce up code gen and speed up PublicSuffix
  • 459513d internal/http3: move more common stream processing to genericConn
  • aad0180 http2: fix flakiness from t.Log when GOOS=js
  • b73e574 http2: don't log expected errors from writing invalid trailers
  • 5f45c77 internal/http3: make read-data tests usable for server handlers
  • 43c2540 http2, internal/httpcommon: reject userinfo in :authority
  • 1d78a08 http2, internal/httpcommon: factor out server header logic for h2/h3
  • 0d7dc54 quic: add Conn.ConnectionState
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.
Mar 12, 2025

It seems like on busy databases, UPDATE volume_sectors SET sector_id=null WHERE id=$1 fails to upgrade from a shared to an exclusive lock https://github.com/SiaFoundation/hostd/issues/616

To avoid that I'd like to propose combining the select and update into a single query. That way SQLite should be able to figure out that the transaction needs to be exclusive from the very beginning rather than trying to upgrade from a shared to an exclusive lock and failing to do so cause it ends up in a deadlock situation. This way I expect it to correctly make use of the PENDING state, block until it can acquire the lock and then do its thing without being starved by other goroutines.

Mar 12, 2025
Mar 11, 2025

The rhpV4Settings key has changed to v2Settings.

Mar 11, 2025
Mar 11, 2025
Mar 11, 2025

https://pkg.go.dev/go.sia.tech/walletd?utm_source=godoc shows v0.8.0 as the latest version. However, we have since released v2.0.0. This makes it more difficult to import and use walletd's API client. This adds the required /v2 suffix to the module path to satisfy Go Doc. It is very unfortunate that all importers of the package will need to update their dependency to go.sia.tech/walletd/v2.

I am not positive that this will fix the issue, but the go documentation suggests this is required even if you want the package to stay in the root.

Mar 11, 2025

Bumps the dependencies group with 4 updates: go.sia.tech/core, golang.org/x/sys, golang.org/x/term and golang.org/x/time.

Updates go.sia.tech/core from 0.10.3 to 0.10.4

Release notes

Sourced from go.sia.tech/core's releases.

0.10.4 (2025-03-10)

Fixes

  • Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.
Changelog

Sourced from go.sia.tech/core's changelog.

0.10.4 (2025-03-10)

Fixes

  • Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.
Commits
  • d91b56f chore: prepare release 0.10.4
  • 96754dc build(deps): bump the all-dependencies group with 2 updates
  • 487e0bb Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
  • 2c8ed42 Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
  • e72a38d docs: add changelog entry for MaxLen fix
  • 3f58a79 chore(doc): comment rhp4 settings
  • 9a49925 knope: updat config
  • d652370 Merge pull request #284 from SiaFoundation/pj/max-len
  • bbcee7a encoding: fix maxLen
  • 67d8e73 build(deps): bump golang.org/x/crypto in the all-dependencies group
  • See full diff in compare view

Updates golang.org/x/sys from 0.30.0 to 0.31.0

Commits

Updates golang.org/x/term from 0.29.0 to 0.30.0

Commits
  • 04218fd go.mod: update golang.org/x dependencies
  • 208db03 all: upgrade go directive to at least 1.23.0 [generated]
  • See full diff in compare view

Updates golang.org/x/time from 0.10.0 to 0.11.0

Commits
  • 0c50ed8 all: upgrade go directive to at least 1.23.0 [generated]
  • 66520f6 rate: simplify function advance only returns new Tokens to caller
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 11, 2025

Bumps the all-dependencies group with 1 update in the / directory: go.sia.tech/core.

Updates go.sia.tech/core from 0.10.3 to 0.10.4

Release notes

Sourced from go.sia.tech/core's releases.

0.10.4 (2025-03-10)

Fixes

  • Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.
Changelog

Sourced from go.sia.tech/core's changelog.

0.10.4 (2025-03-10)

Fixes

  • Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.
Commits
  • d91b56f chore: prepare release 0.10.4
  • 96754dc build(deps): bump the all-dependencies group with 2 updates
  • 487e0bb Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
  • 2c8ed42 Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
  • e72a38d docs: add changelog entry for MaxLen fix
  • 3f58a79 chore(doc): comment rhp4 settings
  • 9a49925 knope: updat config
  • d652370 Merge pull request #284 from SiaFoundation/pj/max-len
  • bbcee7a encoding: fix maxLen
  • 67d8e73 build(deps): bump golang.org/x/crypto in the all-dependencies group
  • See full diff in compare view

Updates golang.org/x/crypto from 0.34.0 to 0.36.0

Commits
  • 49bf5b8 go.mod: update golang.org/x dependencies
  • 24852b6 ssh: add decode support for banners
  • bbc689c ssh: use a more straightforward return value
  • 7292932 ssh: limit the size of the internal packet queue while waiting for KEX
  • See full diff in compare view

Updates golang.org/x/term from 0.29.0 to 0.30.0

Commits
  • 04218fd go.mod: update golang.org/x dependencies
  • 208db03 all: upgrade go directive to at least 1.23.0 [generated]
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 11, 2025

Bumps the all-dependencies group with 4 updates: go.sia.tech/core, go.sia.tech/web/walletd, golang.org/x/crypto and golang.org/x/term.

Updates go.sia.tech/core from 0.10.3 to 0.10.4

Release notes

Sourced from go.sia.tech/core's releases.

0.10.4 (2025-03-10)

Fixes

  • Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.
Changelog

Sourced from go.sia.tech/core's changelog.

0.10.4 (2025-03-10)

Fixes

  • Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.
Commits
  • d91b56f chore: prepare release 0.10.4
  • 96754dc build(deps): bump the all-dependencies group with 2 updates
  • 487e0bb Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
  • 2c8ed42 Update .changeset/fixed_several_implementations_of_maxlen_where_it_was_return...
  • e72a38d docs: add changelog entry for MaxLen fix
  • 3f58a79 chore(doc): comment rhp4 settings
  • 9a49925 knope: updat config
  • d652370 Merge pull request #284 from SiaFoundation/pj/max-len
  • bbcee7a encoding: fix maxLen
  • 67d8e73 build(deps): bump golang.org/x/crypto in the all-dependencies group
  • See full diff in compare view

Updates go.sia.tech/web/walletd from 0.29.0 to 0.29.1

Release notes

Sourced from go.sia.tech/web/walletd's releases.

[email protected]

Patch Changes

  • a8e77c6c: Fixed V2 signing for wallets that do not have siafund outputs.
Commits
  • e5b9df8 chore: release packages
  • 5f4ebab refactor(explorer): rely on successfulInteractions for unscanned hosts
  • c93054e fix(explorer): shorten contract opengraph image date display
  • 9323af7 feat(explorer): add v2 host type support
  • 443c4a4 feat(explored-types): add v2 host type support
  • cb7fd2b test(explorer): add v2 host title support
  • 05778c2 fix(walletd): update test for new v2 signing
  • b90ee0e fix(walletd): remove duplicate keypair call
  • a8e77c6 fix(walletd,types): fix signing v2 transactions when the wallet does not have...
  • 2d83b41 fix(explorer): fix one-off transaction confirmation count
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.34.0 to 0.36.0

Commits
  • 49bf5b8 go.mod: update golang.org/x dependencies
  • 24852b6 ssh: add decode support for banners
  • bbc689c ssh: use a more straightforward return value
  • 7292932 ssh: limit the size of the internal packet queue while waiting for KEX
  • See full diff in compare view

Updates golang.org/x/term from 0.29.0 to 0.30.0

Commits
  • 04218fd go.mod: update golang.org/x dependencies
  • 208db03 all: upgrade go directive to at least 1.23.0 [generated]
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 11, 2025
Mar 10, 2025
Mar 10, 2025

This PR was created automatically. Merging it will create a new release for 0.10.4

  • Fixed several implementations of MaxLen where it was returning a too low number, resulting in decoding errors during contract related RPCs.
Mar 10, 2025

Bumps the all-dependencies group with 2 updates: golang.org/x/crypto and golang.org/x/sys.

Updates golang.org/x/crypto from 0.35.0 to 0.36.0

Commits
  • 49bf5b8 go.mod: update golang.org/x dependencies
  • 24852b6 ssh: add decode support for banners
  • bbc689c ssh: use a more straightforward return value
  • See full diff in compare view

Updates golang.org/x/sys from 0.30.0 to 0.31.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 10, 2025
Mar 10, 2025
Mar 10, 2025

This PR batch updates wallet outputs which yields a pretty big performance improvement over executing the prepared statement for every row in our table. It's about a 15x performance improvement at the cost of using twice the memory and doing twice as many allocations. If you have ~300 outputs the combined updates on MySQL take ~150ms on my machine.

I found out about this because I want to redistribute our wallet into 100 outputs by default. This led to some tests failing where we mine a lot of blocks in quick succession. We always update all the elements, regardless of whether their proof changed. I understand that in most cases we'll roughly have to update half or even all of the elements but I still feel we could change the interface of the updater so that it returns a boolean that indicates if the proof got updated.

This is the function that is doing the slow updates:

func updateSiacoinStateElements(ctx context.Context, tx sql.Tx, elements []SiacoinStateElement) error {
	updateStmt, err := tx.Prepare(ctx, "UPDATE wallet_outputs SET leaf_index = ?, merkle_proof= ? WHERE output_id = ?")
	if err != nil {
		return fmt.Errorf("failed to prepare statement to update state elements: %w", err)
	}
	defer updateStmt.Close()

	for _, el := range elements {
		if _, err := updateStmt.Exec(ctx, el.LeafIndex, MerkleProof{el.MerkleProof}, el.ID); err != nil {
			return fmt.Errorf("failed to update state element '%v': %w", el.ID, err)
		}
	}
	return nil
}

As you can see the query is very straightforward. I double checked the schema anyway to see if it had the required indices and it does (through the UNIQUE on output_id). I also verified the execution plan which indicates it's properly using the index.

MySQL EXPLAIN output:

id	select_type	table	partitions	type	possible_keys	key	key_len	ref	rows	filtered	Extra
1	UPDATE	wallet_outputs	NULL	range	output_id	output_id	34	const	1	100.00	Using where

This code is not ready to merge yet, I wanted to open this DRAFT to open up a discussion on whether we care about this. I'm on the fence personally, I'm leaning towards adding it because it speeds up our tests so much and because it's quite sad we can't easily blow through hundreds of blocks in our test suite. If we do decide to merge it we have to have split implementations for MySQL and SQLite because this is 7x slower on SQLite.

Mar 10, 2025

Adds some doc comments to the RHP4 settings

Mar 10, 2025

https://github.com/SiaFoundation/core/pull/284 did not have a changeset entry, but that was done on purpose. I looked through recently merged core PRs and noticed we don't always add it, figured that fix did not really need one per se either. I updated the knope config to be consistent with all other repos.

Mar 10, 2025

Bumps the all-dependencies group with 4 updates: golang.org/x/crypto, golang.org/x/sys, golang.org/x/term and golang.org/x/time.

Updates golang.org/x/crypto from 0.35.0 to 0.36.0

Commits
  • 49bf5b8 go.mod: update golang.org/x dependencies
  • 24852b6 ssh: add decode support for banners
  • bbc689c ssh: use a more straightforward return value
  • See full diff in compare view

Updates golang.org/x/sys from 0.30.0 to 0.31.0

Commits

Updates golang.org/x/term from 0.29.0 to 0.30.0

Commits
  • 04218fd go.mod: update golang.org/x dependencies
  • 208db03 all: upgrade go directive to at least 1.23.0 [generated]
  • See full diff in compare view

Updates golang.org/x/time from 0.10.0 to 0.11.0

Commits
  • 0c50ed8 all: upgrade go directive to at least 1.23.0 [generated]
  • 66520f6 rate: simplify function advance only returns new Tokens to caller
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 9, 2025

There are several instances where maxLen returns a size that doesn't take into account a transaction being part of the request. While updating I noticed some values diverged from their impl probably due to changes being made to the request/response structs over time. I took them along with me but the important ones are the reasonableTransactionSetSize ones of course.

I found out because my v2 migration on my node, which was chugging along nicely, halted all of a sudden. Contracts were no longer being refreshed, resulting in empty accounts, resulting in failed migrations. One thing that's puzzling me a bit though is the error message: "couldn't renew/refresh contract: host responded with error: failed to read host inputs response: failed to read request: EOF ". That error message seems impossible, I double checked and I still can't explain how you could ever get failed to read response, failed to read request.

Mar 7, 2025

Adds an optional ed25519 signing key store for integrators to store arbitrary private keys for signing transactions. It allows for both generating private keys on the server and importing private keys.

The endpoint will return 404 if the --public CLI flag is set. It is not used by the UI.


client := api.NewClient(walletAddr, walletdPassword)

pubKey, err := client.GenerateSigningKey()
if err != nil {
    panic(err)
}

sig, err := client.SignHash(pubKey, hash)
if err != nil {
    panic(err)
}

The test diff does not spark joy, but I don't want to split it out. The only one with material changes is the new one at the bottom

Mar 7, 2025

This PR was created automatically. Merging it will finalize the changelog for 2.0.1

  • Fix default S3 address in README.md
  • Fix issue with remaining storage and version scoring for v2 hosts
  • Improve logging in v2 migration code and fix scan during migration not timing out
Mar 7, 2025
Mar 7, 2025
  • Add missing build dependencies. This will ensure all libraries used in explorer-e2e are automatically built before the e2e target runs.
Mar 6, 2025

We were carrying over a legacy Sia Central assumption here around the existence of host.settings. With explored, we should instead rely on host.successfulInteractions.

Mar 5, 2025

Closes #961

Mar 5, 2025

This adds support for the v2 Host type in the explorer and closes #971.

There are two sharper edges here I see worth discussing, of the same ilk:

  • Down stack, in the types update, we are going with a different typing strategy than explored--instead of being additive to ExplorerHost, we break this out into two types. One for v1 and one for v2, discriminating on v2: boolean.
  • We also add a lot of host.v2 ? ... logic across the host slice of the explorer. I don't think this would be avoided by using one additive type. We'd instead be checking for settings, priceTable, and rhpV4Settings all the same. I've created some helpers around getting the netAddress and the settings as they pertain to checking whether they exist (is this a legacy assumption? It doesn't match the explored types for either one--that settings wouldn't exist).

One final note: the tests downstack from this PR will probably fail, and that's because the zen allow height has passed and we're seeing the underlying data change. This will probably mean we need to take this PRs tests as final truth.

Mar 5, 2025
Mar 5, 2025
Mar 4, 2025

When signing a V2 transaction if the wallet does not have any Siafund inputs, "No outputs" is returned. This simplifies the signing logic by using the metadata already on the input instead of fetching the list of inputs from the wallet first.

Mar 4, 2025
Mar 4, 2025

Fixes #624

Mar 4, 2025

Bumps the all-dependencies group with 2 updates: go.sia.tech/core and go.sia.tech/coreutils.

Updates go.sia.tech/core from 0.10.2 to 0.10.3

Release notes

Sourced from go.sia.tech/core's releases.

0.10.3 (2025-02-25)

Fixes

  • Improved SectorRoot performance by a factor of 10 by distributing work across available CPU cores
  • Update mux dependency to 1.4.0
Changelog

Sourced from go.sia.tech/core's changelog.

0.10.3 (2025-02-25)

Fixes

  • Improved SectorRoot performance by a factor of 10 by distributing work across available CPU cores
  • Update mux dependency to 1.4.0
Commits

Updates go.sia.tech/coreutils from 0.11.1 to 0.12.0

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.12.0 (2025-02-28)

Breaking Changes

Separate RHP4 Transports

The SiaMux and QUIC transports are now separated into go.sia.tech/rhp/v4/siamux and go.sia.tech/rhp/v4/quic packages. Both packages define a Dial and Serve helper that can be used to either start a transport server or connect to a host using the transport.

Features

Add RPCReplenishAccounts Implementation

Implements RPCReplenishAccounts in the RHP4 client and server enabling clients managing a large number of accounts to fund them quicker

Fixes

  • Fixes an issue where wallet redistributing would fail if the number of outputs created were less than requested
  • Fix data race in EphemeralWalletStore.
  • Fixed an issue with event confirmations not being correctly unmarshalled
  • Increase default max streams from 100 to 1000 for QUIC transport
  • Update core to v0.10.2 and mux to v1.4.0
Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.12.0 (2025-02-28)

Breaking Changes

Separate RHP4 Transports

The SiaMux and QUIC transports are now separated into go.sia.tech/rhp/v4/siamux and go.sia.tech/rhp/v4/quic packages. Both packages define a Dial and Serve helper that can be used to either start a transport server or connect to a host using the transport.

Features

Add RPCReplenishAccounts Implementation

Implements RPCReplenishAccounts in the RHP4 client and server enabling clients managing a large number of accounts to fund them quicker

Fixes

  • Fixes an issue where wallet redistributing would fail if the number of outputs created were less than requested
  • Fix data race in EphemeralWalletStore.
  • Fixed an issue with event confirmations not being correctly unmarshalled
  • Increase default max streams from 100 to 1000 for QUIC transport
  • Update core to v0.10.2 and mux to v1.4.0
Commits
  • 3d4a3d2 Merge pull request #177 from SiaFoundation/release
  • 0dbf0e4 chore: prepare release 0.12.0
  • 482e4e8 Merge pull request #188 from SiaFoundation/nate/update-deps
  • 0e87f3f update dependencies
  • 8fec9a5 Merge pull request #187 from SiaFoundation/nate/fix-fatal
  • 2158172 siamux,quic: switch upgrade failure to debug
  • ab7a3b2 Merge pull request #186 from SiaFoundation/nate/increase-max-streams
  • 1c51221 quic: increase max streams
  • d01f7fa consistent protocol const
  • 51cb482 Merge pull request #185 from SiaFoundation/nate/refactor-transports
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 3, 2025

Bumps the all-dependencies group with 1 update: golang.org/x/crypto.

Updates golang.org/x/crypto from 0.33.0 to 0.35.0

Commits
  • 7292932 ssh: limit the size of the internal packet queue while waiting for KEX
  • f66f74b acme/autocert: check host policy before probing the cache
  • b0784b7 x509roots/fallback: drop obsolete build constraint
  • 911360c all: bump golang.org/x/crypto dependencies of asm generators
  • 89ff08d all: upgrade go directive to at least 1.23.0 [generated]
  • e47973b all: update certs for go1.24
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Mar 2, 2025
Mar 1, 2025

in docker compose - it has to be hostd, not host

Feb 28, 2025

Adds two new endpoints for querying V2 contracts

Returns a single V2 contract by its ID

Queries a list of contracts with optional filtering

Example request body

{
  "statuses": [],
  "contractIDs": [],
  "renewedFrom": [],
  "renewedTo": [],
  "renterKey": [],
  "minNegotiationHeight": 0,
  "maxNegotiationHeight": 0,
  "minExpirationHeight": 0,
  "maxExpirationHeight": 0,
  "limit": 0,
  "offset": 0,
  "sortField": "",
  "sortDesc": false
}
Feb 28, 2025

This fixes an issue where V2 sector roots were not being properly loaded into the cache at startup and adds the integrity check method for v2 contracts.

Feb 28, 2025
Feb 28, 2025
Feb 28, 2025

This PR was created automatically. Merging it will create a new release for 0.10.3

  • Improved SectorRoot performance by a factor of 10 by distributing work across available CPU cores
  • Update mux dependency to 1.4.0
Feb 27, 2025

Closes #963

Feb 27, 2025

This fixes 2 scoring issues with v2 hosts related to version and remaining storage scores and also adds more testing for v2 host scoring.

Feb 26, 2025
  • Added contract formation API.
  • Updated payloads for contract lock and release APIs.
  • Added new fields to Contract type.
Feb 26, 2025
  • Ensures the new next directories introduced in #958 are not linted.
Feb 25, 2025
Feb 25, 2025

Adds support for starting and configuring a RHP4 QUIC transport. Includes a very naive local cert manager with the intent to add automatic ACME-based certificate issuance in a follow-up.

Requires #612

Feb 25, 2025

Updates core and coreutils to the latest dev versions, migrates the RHP4 server to the coreutils implementation, adds the required interfaces for RPC Replenish, and adds an integration test for it.

Feb 25, 2025
Feb 25, 2025
goos: darwin
goarch: arm64
pkg: go.sia.tech/core/rhp/v2
cpu: Apple M2 Pro
BenchmarkSectorRoot
BenchmarkSectorRoot/serial
BenchmarkSectorRoot/serial-10                 49          23381873 ns/op         179.38 MB/s           0 B/op          0 allocs/op
BenchmarkSectorRoot/parallel
BenchmarkSectorRoot/parallel-10              326           3563796 ns/op        1176.92 MB/s       14806 B/op         34 allocs/op

Pretty unambiguous ~10x speedup when testing with a 10-core CPU. I experimented with inlining more of the appendLeaves logic into the worker goroutines, but it didn't have a significant impact on throughput and it made the code much more complex. ‾\_(ツ)_/‾

Feb 24, 2025

Bumps the dependencies group with 2 updates: go.sia.tech/core and go.sia.tech/mux.

Updates go.sia.tech/core from 0.10.1 to 0.10.2

Release notes

Sourced from go.sia.tech/core's releases.

0.10.2 (2025-02-20)

Features

Add helpers to get revision as an element from v1/v2 file contract element diffs

#274 by @​chris124567

In the old ForEachFileContractElement interface, the revision was provided as a pointer to a (V2)FileContractElement. In the new system of diffs, the revision is only provided as a (V2)FileContract. There are multiple places where it is useful to have the revision as an element, and in all of these places more or less the same code will be duplicated unless we create this helper.

Add RPCReplenish to RHP4

Adds an RPC to RHP4 that enables renters to set a target balance instead of first fetching the current balance and then funding the account with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.2 (2025-02-20)

Features

Add helpers to get revision as an element from v1/v2 file contract element diffs

##274 by @​chris124567

In the old ForEachFileContractElement interface, the revision was provided as a pointer to a (V2)FileContractElement. In the new system of diffs, the revision is only provided as a (V2)FileContract. There are multiple places where it is useful to have the revision as an element, and in all of these places more or less the same code will be duplicated unless we create this helper.

Add RPCReplenish to RHP4

Adds an RPC to RHP4 that enables renters to set a target balance instead of first fetching the current balance and then funding the account with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Commits
  • fe05f66 Merge pull request #275 from SiaFoundation/release
  • 8dd06fb chore: prepare release 0.10.2
  • dcacdc2 rhp4: use actual encoding sizes
  • 939a947 Merge pull request #277 from SiaFoundation/nate/fix-replenish-encoding
  • 9b4e96d encoding: set reasonable object size
  • 37d788f return deposits instead of cost sum
  • 5d00184 extend validate replenish accounts
  • 847e895 rhp: add validate for fund accounts request
  • 29bd92e add account batch size constant
  • 400d96c fix lint
  • Additional commits viewable in compare view

Updates go.sia.tech/mux from 1.3.0 to 1.4.0

Commits
  • fc41f91 Merge pull request #12 from SiaFoundation/flip-nonce
  • f736c2b v2: Add theirVersion parameter to Dial/AcceptAnonymous
  • 4ae5086 Merge pull request #11 from SiaFoundation/flip-nonce
  • 4057618 v2: Remove nonce derivation and hash pubkeys into shared secret
  • e057384 v2: Improve signature and nonce handling
  • abf58b0 Merge pull request #7 from SiaFoundation/dependabot/go_modules/go_modules-5a9...
  • fa24bad build(deps): bump golang.org/x/crypto in the go_modules group
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 24, 2025

This PR was created automatically. Merging it will finalize the changelog for 2.0.4

  • Fix decoding error on RHP3 account id type
  • Update core and coreutils dependencies to v0.10.1 and v0.11.1 respectively
Feb 24, 2025

Bumps the all-dependencies group with 1 update: go.sia.tech/core.

Updates go.sia.tech/core from 0.10.1 to 0.10.2

Release notes

Sourced from go.sia.tech/core's releases.

0.10.2 (2025-02-20)

Features

Add helpers to get revision as an element from v1/v2 file contract element diffs

#274 by @​chris124567

In the old ForEachFileContractElement interface, the revision was provided as a pointer to a (V2)FileContractElement. In the new system of diffs, the revision is only provided as a (V2)FileContract. There are multiple places where it is useful to have the revision as an element, and in all of these places more or less the same code will be duplicated unless we create this helper.

Add RPCReplenish to RHP4

Adds an RPC to RHP4 that enables renters to set a target balance instead of first fetching the current balance and then funding the account with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.2 (2025-02-20)

Features

Add helpers to get revision as an element from v1/v2 file contract element diffs

##274 by @​chris124567

In the old ForEachFileContractElement interface, the revision was provided as a pointer to a (V2)FileContractElement. In the new system of diffs, the revision is only provided as a (V2)FileContract. There are multiple places where it is useful to have the revision as an element, and in all of these places more or less the same code will be duplicated unless we create this helper.

Add RPCReplenish to RHP4

Adds an RPC to RHP4 that enables renters to set a target balance instead of first fetching the current balance and then funding the account with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Commits
  • fe05f66 Merge pull request #275 from SiaFoundation/release
  • 8dd06fb chore: prepare release 0.10.2
  • dcacdc2 rhp4: use actual encoding sizes
  • 939a947 Merge pull request #277 from SiaFoundation/nate/fix-replenish-encoding
  • 9b4e96d encoding: set reasonable object size
  • 37d788f return deposits instead of cost sum
  • 5d00184 extend validate replenish accounts
  • 847e895 rhp: add validate for fund accounts request
  • 29bd92e add account batch size constant
  • 400d96c fix lint
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 24, 2025
Feb 24, 2025
Feb 24, 2025

This PR was created automatically. Merging it will create a new release for 0.10.2

#274 by @chris124567

In the old ForEachFileContractElement interface, the revision was provided as a pointer to a (V2)FileContractElement. In the new system of diffs, the revision is only provided as a (V2)FileContract. There are multiple places where it is useful to have the revision as an element, and in all of these places more or less the same code will be duplicated unless we create this helper.

Adds an RPC to RHP4 that enables renters to set a target balance instead of first fetching the current balance and then funding the account with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Feb 24, 2025

Bumps the all-dependencies group with 3 updates: github.com/google/go-cmp, go.sia.tech/mux and golang.org/x/crypto.

Updates github.com/google/go-cmp from 0.6.0 to 0.7.0

Release notes

Sourced from github.com/google/go-cmp's releases.

v0.7.0

New API:

  • (#367) Support compare functions with SortSlices and SortMaps

Panic messaging:

  • (#370) Detect proto.Message types when failing to export a field
Commits

Updates go.sia.tech/mux from 1.3.0 to 1.4.0

Commits
  • fc41f91 Merge pull request #12 from SiaFoundation/flip-nonce
  • f736c2b v2: Add theirVersion parameter to Dial/AcceptAnonymous
  • 4ae5086 Merge pull request #11 from SiaFoundation/flip-nonce
  • 4057618 v2: Remove nonce derivation and hash pubkeys into shared secret
  • e057384 v2: Improve signature and nonce handling
  • abf58b0 Merge pull request #7 from SiaFoundation/dependabot/go_modules/go_modules-5a9...
  • fa24bad build(deps): bump golang.org/x/crypto in the go_modules group
  • See full diff in compare view

Updates golang.org/x/crypto from 0.33.0 to 0.34.0

Commits
  • f66f74b acme/autocert: check host policy before probing the cache
  • b0784b7 x509roots/fallback: drop obsolete build constraint
  • 911360c all: bump golang.org/x/crypto dependencies of asm generators
  • 89ff08d all: upgrade go directive to at least 1.23.0 [generated]
  • e47973b all: update certs for go1.24
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 21, 2025

Added two new endpoints [GET] /outputs/siacoin/:id/spent and [GET] /outputs/siafund/:id/spent.

These endpoints will return a boolean, indicating whether the UTXO was spent, and the transaction it was spent in. These endpoints are designed to make verifying atomic swaps easier. It is an acceptable limitation that spent utxos are only kept for 144 blocks and will return a 404 afterwards. This may be changed in a follow up.

Example Usage

$ curl http://localhost:9980/api/outputs/siacoin/9b89152bb967130326702c9bfb51109e9f80274ec314ba58d9ef49b881340f2f/spent
{
    spent: true,
    event: ...
}
```
Feb 20, 2025

Closes https://github.com/SiaFoundation/walletd/issues/236 Closes https://github.com/SiaFoundation/walletd/issues/237

README didn't match the actual output anymore. Added the MacOS example.

Feb 20, 2025

reasonableObjectSize is not enough for these batch types

Feb 19, 2025
Feb 19, 2025

Adds an RPC to RHP4 that enables renters to set a target balance for all accounts instead of first fetching the current balances then funding the accounts with the difference. This is primarily to speed up account funding and reduce round trips when managing a large number of accounts.

Feb 19, 2025
Feb 18, 2025

Bumps the all-dependencies group with 2 updates in the / directory: github.com/go-sql-driver/mysql and go.sia.tech/web/renterd.

Updates github.com/go-sql-driver/mysql from 1.8.1 to 1.9.0

Release notes

Sourced from github.com/go-sql-driver/mysql's releases.

v1.9.0

Major Changes

  • Implement zlib compression. (#1487)
  • Supported Go version is updated to Go 1.21+. (#1639)
  • Add support for VECTOR type introduced in MySQL 9.0. (#1609)
  • Config object can have custom dial function. (#1527)

Bugfixes

  • Fix auth errors when username/password are too long. (#1625)
  • Check if MySQL supports CLIENT_CONNECT_ATTRS before sending client attributes. (#1640)
  • Fix auth switch request handling. (#1666)

Other changes

  • Add "filename:line" prefix to log in go-mysql. Custom loggers now show it. (#1589)
  • Improve error handling. It reduces the "busy buffer" errors. (#1595, #1601, #1641)
  • Use strconv.Atoi to parse max_allowed_packet. (#1661)
  • rejectReadOnly option now handles ER_READ_ONLY_MODE (1290) error too. (#1660)

Full Changelog: https://github.com/go-sql-driver/mysql/compare/v1.8.1...v1.9.0

New Contributors

Changelog

Sourced from github.com/go-sql-driver/mysql's changelog.

v1.9.0 (2025-02-18)

Major Changes

  • Implement zlib compression. (#1487)
  • Supported Go version is updated to Go 1.21+. (#1639)
  • Add support for VECTOR type introduced in MySQL 9.0. (#1609)
  • Config object can have custom dial function. (#1527)

Bugfixes

  • Fix auth errors when username/password are too long. (#1625)
  • Check if MySQL supports CLIENT_CONNECT_ATTRS before sending client attributes. (#1640)
  • Fix auth switch request handling. (#1666)

Other changes

  • Add "filename:line" prefix to log in go-mysql. Custom loggers now show it. (#1589)
  • Improve error handling. It reduces the "busy buffer" errors. (#1595, #1601, #1641)
  • Use strconv.Atoi to parse max_allowed_packet. (#1661)
  • rejectReadOnly option now handles ER_READ_ONLY_MODE (1290) error too. (#1660)
Commits

Updates go.sia.tech/web/renterd from 0.76.0 to 0.77.0

Release notes

Sourced from go.sia.tech/web/renterd's releases.

[email protected]

Minor Changes

  • 54a4eabe: Displayed entity values which are often truncated can now be copied to clipboard by double-clicking directly on the visible characters.
  • 54a4eabe: Wallet addresses can now be copied to clipboard by clicking on the QR code in the address dialog.
Commits
  • c71aa1d chore: release packages
  • 9e24edc fix(explorer): remove async from ContractHeader component export
  • 60e5d05 refactor(walletd): ledger wallet warn at require height
  • 93b2e77 fix(walletd): switching send modes unsets other amount
  • 453b541 feat(walletd): v2 ledger transactions
  • 1c6e8c1 feat(walletd): v2 seed transactions
  • 819c066 feat(walletd): v2 seed signing
  • 306400b feat(design-system): value label support
  • 8c34848 refactor: remove unused types
  • 5457012 feat(walletd-libs): construct api and v2 api changes
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 18, 2025
Feb 17, 2025

Bumps the dependencies group with 1 update: go.sia.tech/web/hostd.

Updates go.sia.tech/web/hostd from 0.57.0 to 0.58.0

Release notes

Sourced from go.sia.tech/web/hostd's releases.

[email protected]

Minor Changes

  • 54a4eabe: Displayed entity values which are often truncated can now be copied to clipboard by double-clicking directly on the visible characters.
  • 54a4eabe: Wallet addresses can now be copied to clipboard by clicking on the QR code in the address dialog.
Commits
  • c71aa1d chore: release packages
  • 9e24edc fix(explorer): remove async from ContractHeader component export
  • 60e5d05 refactor(walletd): ledger wallet warn at require height
  • 93b2e77 fix(walletd): switching send modes unsets other amount
  • 453b541 feat(walletd): v2 ledger transactions
  • 1c6e8c1 feat(walletd): v2 seed transactions
  • 819c066 feat(walletd): v2 seed signing
  • 306400b feat(design-system): value label support
  • 8c34848 refactor: remove unused types
  • 5457012 feat(walletd-libs): construct api and v2 api changes
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 17, 2025

Bumps the all-dependencies group with 1 update: go.sia.tech/web/walletd.

Updates go.sia.tech/web/walletd from 0.28.0 to 0.29.0

Release notes

Sourced from go.sia.tech/web/walletd's releases.

[email protected]

Minor Changes

  • d73f9c3a: The send dialogs now indicate the network and transaction version details.
Commits
  • 44b75d8 chore: release packages
  • eb490d6 fix: website downloads
  • 4eb4849 fix: renterd prune validation
  • ef4fcab fix: renterd redundancy tooltip
  • 2edf9b7 fix: renterd refine contract graph logic
  • a64a77a feat: renterd host context menu copy
  • 2c80bec fix: explorer faucet 50k
  • a5c6618 feat: renterd aggregate contract stats
  • c32dcae fix: renterd health partial slabs
  • 64ca2b2 feat: alerts dialog all filter
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 14, 2025

There was a change in coreutils that makes it so the zero value of spend policy cannot be encoded or decoded. This changes the construction API to return an error if one of the funding addresses does not have a policy set.

Feb 14, 2025
Feb 14, 2025

Bumps the dependencies group with 1 update in the / directory: golang.org/x/time.

Updates golang.org/x/time from 0.9.0 to 0.10.0

Commits
  • 2c6c5a2 rate: prevent overflows when calculating durationFromTokens
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 13, 2025

Bumps the dependencies group with 3 updates in the / directory: go.sia.tech/core, go.sia.tech/coreutils and golang.org/x/time.

Updates go.sia.tech/core from 0.9.1 to 0.10.1

Release notes

Sourced from go.sia.tech/core's releases.

0.10.1 (2025-02-10)

Fixes

  • Fix Siafund ClaimStart not being recorded

0.10.0 (2025-02-04)

Breaking Changes

Consensus diffs

#270 by @​lukechampine

This replaces the ForEach update API with slices of "diffs" -- new types wrapping the various element types. This was originally intended as an ergonomics improvement (since it's annoying to e.g. break out of a ForEach callback), but it ended up significantly simplifying most MidState-related code: it consolidated the interrelated maps within MidState, and enabled a much saner rewrite of the update JSON types.

I originally left the ForEach methods in place (with a // Deprecated warning), but later removed them entirely; we're going to update all the callsites in coreutils anyway, so there's little reason to keep them around. (ForEachTreeNode remains, though, since it's used by explored.)

Fixed a panic when unmarshalling unknown spend policy types

An error will now be returned when trying to encode a transaction with an unset SpendPolicy

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.1 (2025-02-10)

Fixes

  • Fix Siafund ClaimStart not being recorded

0.10.0 (2025-02-04)

Breaking Changes

Consensus diffs

##270 by @​lukechampine

This replaces the ForEach update API with slices of "diffs" -- new types wrapping the various element types. This was originally intended as an ergonomics improvement (since it's annoying to e.g. break out of a ForEach callback), but it ended up significantly simplifying most MidState-related code: it consolidated the interrelated maps within MidState, and enabled a much saner rewrite of the update JSON types.

I originally left the ForEach methods in place (with a // Deprecated warning), but later removed them entirely; we're going to update all the callsites in coreutils anyway, so there's little reason to keep them around. (ForEachTreeNode remains, though, since it's used by explored.)

Fixed a panic when unmarshalling unknown spend policy types

An error will now be returned when trying to encode a transaction with an unset SpendPolicy

Commits
  • eeefcb2 Merge pull request #273 from SiaFoundation/release
  • bfb2661 chore: prepare release 0.10.1
  • bfa61b4 Merge pull request #272 from SiaFoundation/siafund-claim-fix
  • 289fa55 consensus: Fix Siafund ClaimStart not being recorded
  • 3c6ca85 build(deps): bump the all-dependencies group with 2 updates
  • 22e7564 Merge pull request #269 from SiaFoundation/release
  • 18252d4 chore: prepare release 0.10.0
  • 6ab1f00 Merge pull request #270 from SiaFoundation/update-slices
  • 21dfb17 Auto generate changeset
  • e1f106f consensus: Document revert diff order
  • Additional commits viewable in compare view

Updates go.sia.tech/coreutils from 0.10.1 to 0.11.1

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.11.1 (2025-02-10)

Fixes

  • Fixes an issue where redistribution of wallet outputs that require more than a single transaction would produce an invalid transaction set

0.11.0 (2025-02-06)

Breaking Changes

  • Add support for QUIC and WebTransport to RHP4

Fixes

  • Fixed data race in EphemeralContractor related to V2FileContractElement.
  • Fixed syncer deadlocking when Connect is called after Close.
  • Set 2 minute deadline for all incoming RPC in syncer
Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.11.1 (2025-02-10)

Fixes

  • Fixes an issue where redistribution of wallet outputs that require more than a single transaction would produce an invalid transaction set

0.11.0 (2025-02-06)

Breaking Changes

  • Add support for QUIC and WebTransport to RHP4

Fixes

  • Fixed data race in EphemeralContractor related to V2FileContractElement.
  • Fixed syncer deadlocking when Connect is called after Close.
  • Set 2 minute deadline for all incoming RPC in syncer
Commits
  • 375be62 Merge pull request #174 from SiaFoundation/release
  • 86d5d73 chore: prepare release 0.11.1
  • 183c247 Merge pull request #175 from SiaFoundation/nate/update-core
  • 6e41e8b deps: update core
  • 6584868 Merge pull request #170 from SiaFoundation/chris/fix-redistribute-batch
  • 2574e78 add changeset entry
  • 52d042d wallet: fix wallet Redistribute when outputs is larger than batchsize
  • 6d370c1 build(deps): bump go.etcd.io/bbolt from 1.3.11 to 1.4.0
  • 6b52cc5 build(deps): bump golang.org/x/crypto from 0.32.0 to 0.33.0
  • 8e9f80e Merge pull request #159 from SiaFoundation/release
  • Additional commits viewable in compare view

Updates golang.org/x/sys from 0.29.0 to 0.30.0

Commits
  • 863b3c4 unix: update glibc to 2.41
  • 4d4692e unix: add Auxv
  • b215a1c unix: update to Linux kernel 6.13
  • c756214 cpu: add support for AVX-VNNI and IFMA detection
  • 1c14dca unix: add GetPeerUcred and UcredGet for solaris
  • See full diff in compare view

Updates golang.org/x/term from 0.28.0 to 0.29.0

Commits

Updates golang.org/x/time from 0.9.0 to 0.10.0

Commits
  • 2c6c5a2 rate: prevent overflows when calculating durationFromTokens
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 13, 2025

Second try. Now with the fixed version.

Feb 11, 2025
Feb 11, 2025

The current event queries are optimized for addresses with a large number of events. When an address has a small number of events, queries take an extremely long time to complete.

QUERY PLAN
|--SCAN ev USING INDEX events_maturity_height_id_idx
|--SEARCH ci USING INTEGER PRIMARY KEY (rowid=?)
|--SEARCH ea USING COVERING INDEX event_addresses_event_id_address_id_idx (event_id=?)
--SEARCH wa USING COVERING INDEX sqlite_autoindex_wallet_addresses_1 (wallet_id=? AND address_id=?)

Removing the forced index allows queries for a small number of events to complete quickly, but fails for a large number due to the temp b-tree sort.

QUERY PLAN
|--SEARCH sa USING COVERING INDEX sqlite_autoindex_sia_addresses_1 (sia_address=?)
|--SEARCH ea USING INDEX event_addresses_address_id_idx (address_id=?)
|--SEARCH ev USING INTEGER PRIMARY KEY (rowid=?)
`--USE TEMP B-TREE FOR ORDER BY

This fixes the performance degradation in both cases and should allow the query to complete in less than 10ms on average for addresses with 0 to 10000000 events.

Feb 11, 2025
Feb 11, 2025

Bumps the all-dependencies group with 1 update: golang.org/x/term.

Updates golang.org/x/term from 0.28.0 to 0.29.0

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 11, 2025

Bumps the dependencies group with 5 updates:

PackageFromTo
go.sia.tech/core0.9.10.10.1
go.sia.tech/coreutils0.10.10.11.0
golang.org/x/sys0.29.00.30.0
golang.org/x/term0.28.00.29.0
golang.org/x/time0.9.00.10.0

Updates go.sia.tech/core from 0.9.1 to 0.10.1

Release notes

Sourced from go.sia.tech/core's releases.

0.10.1 (2025-02-10)

Fixes

  • Fix Siafund ClaimStart not being recorded

0.10.0 (2025-02-04)

Breaking Changes

Consensus diffs

#270 by @​lukechampine

This replaces the ForEach update API with slices of "diffs" -- new types wrapping the various element types. This was originally intended as an ergonomics improvement (since it's annoying to e.g. break out of a ForEach callback), but it ended up significantly simplifying most MidState-related code: it consolidated the interrelated maps within MidState, and enabled a much saner rewrite of the update JSON types.

I originally left the ForEach methods in place (with a // Deprecated warning), but later removed them entirely; we're going to update all the callsites in coreutils anyway, so there's little reason to keep them around. (ForEachTreeNode remains, though, since it's used by explored.)

Fixed a panic when unmarshalling unknown spend policy types

An error will now be returned when trying to encode a transaction with an unset SpendPolicy

Changelog

Sourced from go.sia.tech/core's changelog.

0.10.1 (2025-02-10)

Fixes

  • Fix Siafund ClaimStart not being recorded

0.10.0 (2025-02-04)

Breaking Changes

Consensus diffs

##270 by @​lukechampine

This replaces the ForEach update API with slices of "diffs" -- new types wrapping the various element types. This was originally intended as an ergonomics improvement (since it's annoying to e.g. break out of a ForEach callback), but it ended up significantly simplifying most MidState-related code: it consolidated the interrelated maps within MidState, and enabled a much saner rewrite of the update JSON types.

I originally left the ForEach methods in place (with a // Deprecated warning), but later removed them entirely; we're going to update all the callsites in coreutils anyway, so there's little reason to keep them around. (ForEachTreeNode remains, though, since it's used by explored.)

Fixed a panic when unmarshalling unknown spend policy types

An error will now be returned when trying to encode a transaction with an unset SpendPolicy

Commits
  • eeefcb2 Merge pull request #273 from SiaFoundation/release
  • bfb2661 chore: prepare release 0.10.1
  • bfa61b4 Merge pull request #272 from SiaFoundation/siafund-claim-fix
  • 289fa55 consensus: Fix Siafund ClaimStart not being recorded
  • 3c6ca85 build(deps): bump the all-dependencies group with 2 updates
  • 22e7564 Merge pull request #269 from SiaFoundation/release
  • 18252d4 chore: prepare release 0.10.0
  • 6ab1f00 Merge pull request #270 from SiaFoundation/update-slices
  • 21dfb17 Auto generate changeset
  • e1f106f consensus: Document revert diff order
  • Additional commits viewable in compare view

Updates go.sia.tech/coreutils from 0.10.1 to 0.11.0

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.11.0 (2025-02-06)

Breaking Changes

  • Add support for QUIC and WebTransport to RHP4

Fixes

  • Fixed data race in EphemeralContractor related to V2FileContractElement.
  • Fixed syncer deadlocking when Connect is called after Close.
  • Set 2 minute deadline for all incoming RPC in syncer
Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.11.0 (2025-02-06)

Breaking Changes

  • Add support for QUIC and WebTransport to RHP4

Fixes

  • Fixed data race in EphemeralContractor related to V2FileContractElement.
  • Fixed syncer deadlocking when Connect is called after Close.
  • Set 2 minute deadline for all incoming RPC in syncer
Commits
  • 8e9f80e Merge pull request #159 from SiaFoundation/release
  • 885c964 chore: prepare release 0.11.0
  • 922b2c6 Merge pull request #168 from SiaFoundation/wallet-fcid
  • 9a868ab wallet: Fix output IDs in file contract events
  • 0744021 Merge pull request #166 from SiaFoundation/update-slices
  • 5e76b22 mod: Update core dependency
  • 206731f Merge pull request #164 from SiaFoundation/nate/support-quic
  • 88db2af address review comments
  • 83cbafb rhp4: add quic support
  • 3a96ba4 interrupt runPeer loop on shutdown
  • Additional commits viewable in compare view

Updates golang.org/x/sys from 0.29.0 to 0.30.0

Commits
  • 863b3c4 unix: update glibc to 2.41
  • 4d4692e unix: add Auxv
  • b215a1c unix: update to Linux kernel 6.13
  • c756214 cpu: add support for AVX-VNNI and IFMA detection
  • 1c14dca unix: add GetPeerUcred and UcredGet for solaris
  • See full diff in compare view

Updates golang.org/x/term from 0.28.0 to 0.29.0

Commits

Updates golang.org/x/time from 0.9.0 to 0.10.0

Commits
  • 2c6c5a2 rate: prevent overflows when calculating durationFromTokens
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 10, 2025

When migrating the config, it's possible for the explorer URL to be set to the zero value causing an error when the user tries to update their settings. This ensures the URL will properly default to SiaScan when unset.

Feb 10, 2025

This PR was created automatically. Merging it will create a new release for 0.10.1

  • Fix Siafund ClaimStart not being recorded
Feb 10, 2025

my b

Feb 10, 2025
Feb 10, 2025

Bumps the all-dependencies group with 2 updates: golang.org/x/crypto and golang.org/x/sys.

Updates golang.org/x/crypto from 0.32.0 to 0.33.0

Commits
  • 9290511 go.mod: update golang.org/x dependencies
  • fa5273e x509roots/fallback: update bundle
  • a8ea4be ssh: add ServerConfig.PreAuthConnCallback, ServerPreAuthConn (banner) interface
  • 71d3a4c acme: support challenges that require the ACME client to send a non-empty JSO...
  • See full diff in compare view

Updates golang.org/x/sys from 0.29.0 to 0.30.0

Commits
  • 863b3c4 unix: update glibc to 2.41
  • 4d4692e unix: add Auxv
  • b215a1c unix: update to Linux kernel 6.13
  • c756214 cpu: add support for AVX-VNNI and IFMA detection
  • 1c14dca unix: add GetPeerUcred and UcredGet for solaris
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Feb 10, 2025

We only unregister a failed migration alert upon successfully migrating the slab. There are (edge) cases where a slab's health temporarily crosses below the repair threshold but then later recover. Since the slab no longer needs to be migrated, we never unregister the alert. I ran into this when my node was out of funds, it raked up a huge amount of failed migration alerts and they never get dismissed properly. I was on the fence whether or not to submit the PR but figured since having such a large number of alerts is such terrible UX it probably makes sense to add some protections like the one I'm suggesting.

Feb 10, 2025

These two checks appear to be a copy-paste of the same check above in the code.

Feb 7, 2025

Significantly improves the performance of the events queries when running in full index mode.

Feb 7, 2025
Feb 7, 2025

Fixes a potential panic when the RHP2 connection closes after rpcLock has failed. The contract is still set even if the lock is released.

Only a partial error log was given

goroutine 991452 [running]:
go.sia.tech/hostd/host/contracts.(*locker).Unlock(0xc000045d30, {0xcb, 0x43, 0xe5, 0xce, 0x16, 0xa3, 0x59, 0x5a, 0x76, ...})
        go.sia.tech/hostd/host/contracts/lock.go:38 +0xed
go.sia.tech/hostd/host/contracts.(*Manager).Unlock(0xc008604650?, {0xcb, 0x43, 0xe5, 0xce, 0x16, 0xa3, 0x59, 0x5a, 0x76, ...})
        go.sia.tech/hostd/host/contracts/lock.go:109 +0x2d
go.sia.tech/hostd/rhp/v2.(*SessionHandler).upgrade.func1()
        go.sia.tech/hostd/rhp/v2/rhp.go:170 +0x89
go.sia.tech/hostd/rhp/v2.(*SessionHandler).upgrade(0xc0072e90e0, {0x186bff0, 0xc005441c20})
        go.sia.tech/hostd/rhp/v2/rhp.go:178 +0x3f6
go.sia.tech/hostd/rhp/v2.(*SessionHandler).Serve.func1()
        go.sia.tech/hostd/rhp/v2/rhp.go:200 +0x88
created by go.sia.tech/hostd/rhp/v2.(*SessionHandler).Serve in goroutine 3564
        go.sia.tech/hostd/rhp/v2/rhp.go:198 +0x26
Feb 4, 2025

This PR was created automatically. Merging it will create a new release for 0.10.0

#270 by @lukechampine

This replaces the ForEach update API with slices of "diffs" -- new types wrapping the various element types. This was originally intended as an ergonomics improvement (since it's annoying to e.g. break out of a ForEach callback), but it ended up significantly simplifying most MidState-related code: it consolidated the interrelated maps within MidState, and enabled a much saner rewrite of the update JSON types.

I originally left the ForEach methods in place (with a // Deprecated warning), but later removed them entirely; we're going to update all the callsites in coreutils anyway, so there's little reason to keep them around. (ForEachTreeNode remains, though, since it's used by explored.)

An error will now be returned when trying to encode a transaction with an unset SpendPolicy

Feb 4, 2025

This replaces the ForEach update API with slices of "diffs" -- new types wrapping the various element types. This was originally intended as an ergonomics improvement (since it's annoying to e.g. break out of a ForEach callback), but it ended up significantly simplifying most MidState-related code: it consolidated the interrelated maps within MidState, and enabled a much saner rewrite of the update JSON types.

I originally left the ForEach methods in place (with a // Deprecated warning), but later removed them entirely; we're going to update all the callsites in coreutils anyway, so there's little reason to keep them around. (ForEachTreeNode remains, though, since it's used by explored.)

Feb 4, 2025
Feb 3, 2025

Bumps the dependencies group with 1 update: github.com/cloudflare/cloudflare-go.

Updates github.com/cloudflare/cloudflare-go from 0.114.0 to 0.115.0

Release notes

Sourced from github.com/cloudflare/cloudflare-go's releases.

v0.115.0

ENHANCEMENTS:

  • access_service_token: add last_seen_at field (#3838)
  • dns: Add settings to DNSRecord (#3670)
  • teams_rules: add support for biso admin controls v2 (#3848)

DEPENDENCIES:

  • deps: bumps dependabot/fetch-metadata from 2.2.0 to 2.3.0 (#3865)
  • deps: bumps github.com/go-git/go-git/v5 from 5.11.0 to 5.13.0 (#3869)
  • deps: bumps github.com/goccy/go-json from 0.10.4 to 0.10.5 (#3870)
  • deps: bumps golang.org/x/net from 0.25.0 to 0.33.0 (#3868)
Changelog

Sourced from github.com/cloudflare/cloudflare-go's changelog.

0.115.0 (January 29th, 2025)

ENHANCEMENTS:

  • access_service_token: add last_seen_at field (#3838)
  • dns: Add settings to DNSRecord (#3670)
  • teams_rules: add support for biso admin controls v2 (#3848)

DEPENDENCIES:

  • deps: bumps dependabot/fetch-metadata from 2.2.0 to 2.3.0 (#3865)
  • deps: bumps github.com/go-git/go-git/v5 from 5.11.0 to 5.13.0 (#3869)
  • deps: bumps github.com/goccy/go-json from 0.10.4 to 0.10.5 (#3870)
  • deps: bumps golang.org/x/net from 0.25.0 to 0.33.0 (#3868)
Commits
  • 57714bf Update CHANGELOG.md
  • b063df7 generate changelog
  • 46140a1 Merge pull request #3870 from cloudflare/dependabot/go_modules/github.com/goc...
  • 3abb34b add CHANGELOG for #3870
  • c726fce Bump github.com/goccy/go-json from 0.10.4 to 0.10.5
  • d49977f Merge pull request #3869 from cloudflare/dependabot/go_modules/internal/tools...
  • 53f44dd add CHANGELOG for #3869
  • dbab899 Bump github.com/go-git/go-git/v5 in /internal/tools
  • 212ac63 Merge pull request #3868 from cloudflare/dependabot/go_modules/internal/tools...
  • ebbd11a add CHANGELOG for #3868
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Jan 29, 2025

Fixes a panic in AddV2PoolTransactions when validating v2 transactions with nil spend policies. Uses the same strategy as currency overflows to validate once and assumes it is valid afterward. AddV2PoolTransactions should be able to handle unvalidated input without panicking.

NFO    http: panic serving [::1]:60723: unhandled policy type <nil>
goroutine 713398 [running]:
net/http.(*conn).serve.func1()
        /opt/homebrew/opt/go/libexec/src/net/http/server.go:1947 +0xb0
panic({0x103d2e900?, 0x140004bfd00?})
        /opt/homebrew/opt/go/libexec/src/runtime/panic.go:785 +0x124
go.sia.tech/core/types.SpendPolicy.encodePolicy({{0x0?, 0x0?}}, 0x1?)
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/types/encoding.go:604 +0x3a0
go.sia.tech/core/types.SpendPolicy.EncodeTo({{0x0?, 0x0?}}, 0x140005f8488)
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/types/encoding.go:612 +0x5c
go.sia.tech/core/types.SatisfiedPolicy.EncodeTo({{{0x0, 0x0}}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}}, 0x140005f8488)
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/types/encoding.go:617 +0x4c
go.sia.tech/core/types.V2SiacoinInput.EncodeTo({{{0x5a, 0xe0, 0xf7, 0xba, 0xe3, 0xb, 0xea, 0xff, 0x82, 0x9a, ...}, ...}, ...}, ...)
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/types/encoding.go:633 +0x70
go.sia.tech/core/consensus.State.V2TransactionWeight({0x1400050c000, {0x262, {0xac, 0xf5, 0x34, 0xc8, 0xbd, 0x6d, 0x7a, 0x8e, ...}}, ...}, ...)
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/consensus/state.go:314 +0xe0
go.sia.tech/core/consensus.ValidateV2Transaction(_, {{0x140001f6840, 0x1, 0x1}, {0x1400021e660, 0x2, 0x2}, {0x0, 0x0, 0x0}, ...})
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/consensus/validation.go:866 +0xf4
go.sia.tech/coreutils/chain.(*Manager).checkTxnSet(0x14000134c08, {0x0, 0x0, 0x41e675be1ab4638c?}, {0x140005c9680, 0x1, 0x8e7a6dbdc834f5ac?})
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/chain/manager.go:1068 +0x8f8
go.sia.tech/coreutils/chain.(*Manager).AddV2PoolTransactions(0x14000134c08, {0x262, {0xac, 0xf5, 0x34, 0xc8, 0xbd, 0x6d, 0x7a, 0x8e, ...}}, ...)
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/chain/manager.go:1250 +0x2fc
go.sia.tech/walletd/api.(*server).txpoolBroadcastHandler(0x140005c8000, {{0x103e90fe0, 0x14000484ee0}, 0x140005ca640, {0x0, 0x0, 0x0}})
        /Users/alexfreska/go/pkg/mod/go.sia.tech/[email protected]/api/server.go:302 +0x194
go.sia.tech/walletd/api.NewServer.NewServer.func3.func16({{0x103e90fe0, 0x14000484ee0}, 0x140005ca640, {0x0, 0x0, 0x0}})
Jan 28, 2025

Bumps the all-dependencies group with 1 update: go.sia.tech/web/renterd.

Updates go.sia.tech/web/renterd from 0.75.0 to 0.76.0

Release notes

Sourced from go.sia.tech/web/renterd's releases.

[email protected]

Minor Changes

  • a7c3dae9: The default files sort direction is now asc instead of desc.

Patch Changes

  • a7c3dae9: Fixed an issue where files were being sorted by name rather than full path in all files mode.
Commits
  • b51fe3f chore: release packages
  • a7c3dae fix(renterd): files name sort is on path
  • 0d7fdf2 fix: update supported fiat exchange currencies
  • 0b60897 chore(cluster): fix cluster cmd
  • 38579da chore(cluster): upgrade cluster
  • c802b6e chore(cluster): upgrade cluster
  • 6b416c4 chore: export renterd/v0.75.0
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Jan 25, 2025

Changes the response to include the Merkle proof basis for the following endpoints. The basis is required when broadcasting v2 transactions.

  • [GET] /addresses/:address/outputs/siacoin
  • [GET] /addresses/:address/outputs/siafund
  • [GET] /wallets/:id/outputs/siacoin
  • [GET] /wallets/:id/outputs/siafund
{
    "basis": {
        "height": 1,
        "id": "f362385eea61f81627f283a31af9faf6417fbb88d53b794639a34e18515996e9"
    },
    "outputs": [
        {
            "id": "ed556177482e70822a5dcad9343efb51998425884788415349bef8eba7e063ae",
            "stateElement": {
            "leafIndex": 3,
            "merkleProof": [
                "01048fc792904f156844a5524671304d3a020861da144afa4acc6553db63c1fd",
                "33efdfaf9bb212842292ab6f298c454e1b3d412aa7beb7efdccdfccf09f5b4ee",
                "102345919e408540d240460b0d84aa2f6da9a3d8f74765fd7c6daae6e46dd7f3"
            ]
            },
            "siacoinOutput": {
                "value": "500000000000000000000000",
                "address": "fbfc3d034b1eb45f63e0087571ec1f3028a9a2f8c180381d47713e6112467d91f474059476f2"
            },
            "maturityHeight": 0
        }
    ]
}
Jan 21, 2025

Bumps the all-dependencies group with 2 updates: go.sia.tech/core and go.sia.tech/coreutils.

Updates go.sia.tech/core from 0.9.0 to 0.9.1

Release notes

Sourced from go.sia.tech/core's releases.

0.9.1 (2025-01-18)

Fixes

  • Fix account JSON encoding
Changelog

Sourced from go.sia.tech/core's changelog.

0.9.1 (2025-01-18)

Fixes

  • Fix account JSON encoding
Commits
  • 0349a9a Merge pull request #267 from SiaFoundation/release
  • 7fd523d chore: prepare release 0.9.1
  • 7e64255 Merge pull request #266 from SiaFoundation/nate/fix-account-json
  • 4e2d069 fix account json
  • 239942c build(deps): bump golang.org/x/crypto in the all-dependencies group
  • 8ec4de3 build(deps): bump golang.org/x/sys in the all-dependencies group
  • See full diff in compare view

Updates go.sia.tech/coreutils from 0.10.0 to 0.10.1

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.10.1 (2025-01-18)

Fixes

  • Update core to v0.9.1
  • Use condition rather than polling to determine whether all peers are closed in 'Run'
Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.10.1 (2025-01-18)

Fixes

  • Update core to v0.9.1
  • Use condition rather than polling to determine whether all peers are closed in 'Run'
Commits
  • 3906952 Merge pull request #156 from SiaFoundation/release
  • 4183a6a chore: prepare release 0.10.1
  • f6575e9 Merge pull request #157 from SiaFoundation/nate/update-core
  • 04d4d74 update core to v0.9.1
  • bab2bc5 Merge pull request #155 from SiaFoundation/chris/peer-cond
  • 9a05377 add changeset entry
  • c721aef use condition to wait for peers to be removed
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Jan 18, 2025

This PR was created automatically. Merging it will create a new release for 0.9.1

  • Fix account JSON encoding
Jan 18, 2025

Fixes the implementation of encoding.TextMarshaler on the rhp4.Account type. Will change the JSON encoding of an account from an array to a string.

Fixes an issue raised in https://github.com/SiaFoundation/web/pull/895

Jan 16, 2025

Refactors migrations to have one migration per transaction and adds a test to ensure schema consistency between migrations.

Jan 16, 2025

Uses standard locations for application data instead of the current directory. This brings walletd in line with other system services and makes it easier to manage application data.

Linux, FreeBSD, OpenBSD

  • Configuration: /etc/walletd/walletd.yml
  • Data directory: /var/lib/walletd

macOS

  • Configuration: ~/Library/Application Support/walletd.yml
  • Data directory: ~/Library/Application Support/walletd

Windows

  • Configuration: %APPDATA%\SiaFoundation\walletd.yml
  • Data directory: %APPDATA%\SiaFoundation\walletd

Docker

  • Configuration: /data/walletd.yml
  • Data directory: /data
Jan 14, 2025

Bumps the all-dependencies group with 1 update: golang.org/x/crypto.

Updates golang.org/x/crypto from 0.31.0 to 0.32.0

Commits
  • 8929309 go.mod: update golang.org/x dependencies
  • 4a75ba5 all: make function and struct comments match the names
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Jan 13, 2025

Bumps the all-dependencies group with 1 update: go.sia.tech/coreutils.

Updates go.sia.tech/coreutils from 0.9.0 to 0.9.1

Release notes

Sourced from go.sia.tech/coreutils's releases.

0.9.1 (2025-01-12)

Fixes

  • Release locked host UTXOs if contract formation, renewal, or refresh fails
  • Release locked UTXOs if contract formation, renewal, or refresh fails
Changelog

Sourced from go.sia.tech/coreutils's changelog.

0.9.1 (2025-01-12)

Fixes

  • Release locked host UTXOs if contract formation, renewal, or refresh fails
  • Release locked UTXOs if contract formation, renewal, or refresh fails
Commits
  • 549d02f Merge pull request #148 from SiaFoundation/release
  • e3d0db1 chore: prepare release 0.9.1
  • 0d63b63 Merge pull request #149 from SiaFoundation/nate/server-release-utxos
  • b6af4d2 rhp4: release host utxos when formation, refresh, or renew fails
  • edda581 Merge pull request #147 from mike76-dev/fix-release-inputs
  • 54a0611 chore: document change
  • 09d33c2 Release inputs if RPCFormContract, RPCRenewContract, or RPCRefreshContract fail
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Jan 6, 2025

Bumps the all-dependencies group with 1 update: golang.org/x/sys.

Updates golang.org/x/sys from 0.28.0 to 0.29.0

Commits
  • d4ac05d windows: update NewLazyDLL, LoadDLL docs to point to NewLazySystemDLL
  • 680bd24 windows: remove unused errString type
  • a7f19e9 unix: add Dup3 on dragonfly
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
Dec 18, 2024