Requesting that all node operators on mainnet upgrade their nodes (namadan) to v101.1.1 at your earliest convenience.
This upgrade can be done asynchronously and is currently consensus-compatible with the current v101.0.0.
This release is also packaged with v0.150.1 of the Namada libs.
Instructions
Simply stop your node, replace the namadan binaries on path, and then restart your nodes with the new namadan v101.1.1 binary.
Completed Validation
Housefire testnet has been running with nodes on v101.1.1 for several days, and Heliax mainnet full nodes have been running v101.1.1 for over a day now as well.
Release details
There are two particularly important issues resolved in this release relative to v101.0.0:
- Patches a vulnerability that allowed transfers of non-native tokens out of the PGF and Governance addresses without the approval of governance. This is not currently exploitable on mainnet, since there are no non-native tokens in either of these addresses right now. However, in the future we may want to keep some non-native tokens in the PGF address that can be spendable by governance.
- Patched a client fix that sometimes could have prevented gas payment for shielded transactions using shielded NAM earned from shielded rewards. This fix has already been included in the latest interface SDK and within Namadillo v1.24.0.
Other smaller pieces of work include UX improvements and additional testing. Full release details can be understood from the v101.1.1 and v101.1.0 release notes (v101.1.0 was accidentally cut with a consensus-breaking change but never communicated publicly).