From ba9f9de687d86c8bc662d112c88942418a25a8b6 Mon Sep 17 00:00:00 2001 From: Mathieu Hofman Date: Thu, 2 Nov 2023 17:57:40 +0000 Subject: [PATCH 1/2] chore: add missing updates to changelog --- CHANGELOG-Agoric.md | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/CHANGELOG-Agoric.md b/CHANGELOG-Agoric.md index 368bfcda3a4..ae55ba3c5b8 100644 --- a/CHANGELOG-Agoric.md +++ b/CHANGELOG-Agoric.md @@ -36,10 +36,14 @@ Ref: https://keepachangelog.com/en/1.0.0/ ## [Unreleased] -## [v0.34.23-alpha.agoric.2] +## [v0.34.23-alpha.agoric.3] * Agoric/agoric-sdk\#6945 Cherrypick fix for informalsystems/tendermint#4. +## [v0.34.23-alpha.agoric.2] + +* Adapt to new callback tracking. See tendermint/tendermint#8331 + ## [v0.34.23-alpha.agoric.1] * Agoric/agoric-sdk\#6305 Merge `tendermint/tendermint` v0.34.23 From 3c2938b2b6164ff8d602650729b962e32efb3b90 Mon Sep 17 00:00:00 2001 From: Mathieu Hofman Date: Thu, 2 Nov 2023 18:00:07 +0000 Subject: [PATCH 2/2] chore: Lower default `BlockParams.MaxBytes` Mitigation for asa-2023-002 --- CHANGELOG-Agoric.md | 4 ++++ types/params.go | 2 +- 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/CHANGELOG-Agoric.md b/CHANGELOG-Agoric.md index ae55ba3c5b8..a10e0f738b5 100644 --- a/CHANGELOG-Agoric.md +++ b/CHANGELOG-Agoric.md @@ -36,6 +36,10 @@ Ref: https://keepachangelog.com/en/1.0.0/ ## [Unreleased] +## [v0.34.23-alpha.agoric.4] + +* Lower default `BlockParams.MaxBytes` to 5MB to mitigate asa-2023-002 + ## [v0.34.23-alpha.agoric.3] * Agoric/agoric-sdk\#6945 Cherrypick fix for informalsystems/tendermint#4. diff --git a/types/params.go b/types/params.go index 16c85aa5574..951d3dc7a0e 100644 --- a/types/params.go +++ b/types/params.go @@ -34,7 +34,7 @@ func DefaultConsensusParams() *tmproto.ConsensusParams { // DefaultBlockParams returns a default BlockParams. func DefaultBlockParams() tmproto.BlockParams { return tmproto.BlockParams{ - MaxBytes: 22020096, // 21MB + MaxBytes: 5 * 1024 * 1024, // 5MB MaxGas: -1, TimeIotaMs: 1000, // 1s }