Skip to content

v1.7.14 KVM Launch

Choose a tag to compare

View all tags
@fbsobreira fbsobreira released this 26 Sep 19:04
· 68 commits to master since this release
v1.7.14
22769b3
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

🚀 Klever Blockchain v1.7.14: "Genesis Public" - Opening the Gates to Open Source

📝 Release Notes

We are thrilled to announce Klever Blockchain v1.7.14, marking a historic milestone as we transition our blockchain infrastructure to open source! This release represents our commitment to transparency, community collaboration, and the future of decentralized technology.

🌟 What's New

Since Last Mainnet Release (v1.6.3)

This v1.7.14 release includes 316 commits with 178 tracked improvements since our last mainnet release v1.6.3, featuring:

  • Critical security vulnerability patches
  • Significant performance optimizations achieving higher TPS
  • Major smart contract enhancements and fork implementations
  • Comprehensive infrastructure upgrades including Go 1.24 and ARM64 support
  • Enhanced consensus mechanisms with improved validator protection

Repository Consolidation

This release also marks our transition to open source, consolidating all improvements with:

  • 248 commits since initial repository setup
  • Complete codebase sanitization for public release
  • Maintained development velocity with continuous improvements

📋 Key Highlights

Many of the improvements below were identified through a comprehensive audit by Certik, a leading blockchain security firm. The full audit report is publicly available on Certik's platform.

🔒 Critical Security Fixes

  • [KLC-1738] Upgrade libp2p to v0.43.0 and fix ICMP packet attack vulnerability in quic-go (#978)
  • [KLC-1706] Block Transfers for Uninitialized Smart Contract Addresses (#970)
  • [KLC-1656] Prevent initialization of smart contract addresses by transfer (#961)
  • [KLC-1390] & [KLC-1151] Fix Signature Malleability Vulnerability in VerifySecp256k1 Function (#937, #865)
  • [KLC-1220] Protect from malicious validator forcing empty slots with invalid signature (#915)
  • [KLC-1144] Prevent externally owned account with 8 leading zeros bytes as sender (#889)
  • [KLC-1119] Fix Contract Address Generation Vulnerability (#871)
  • [KLC-985] Prevent ITO price front-running attacks (#823)
  • [KLC-928] Fix insecure remote transaction serialization (#774)

⚡ Major Performance Improvements

  • [KLC-1736] Optimize consensus timing and p2p antiflood limits for higher TPS (#975)
  • [KLC-1735] Introduce distributed tracing infrastructure with Zipkin integration (#974)
  • [KLC-1737] Fix observer memory leak with periodic tx cache cleanup (#976)
  • [KLC-959] Implement block gas limit and optimize transaction selection (#836)
  • [KLC-1808] Add MaxGasLimitPerTx constant for better gas management (#987)
  • [KLC-1792] Update gas schedules to match new blockchain release (#986)
  • [KLC-961] Protect from time consuming VMHooks calls (#846)

🔧 Smart Contract Major Enhancements

  • [KLC-1732] Implement fork to fix breaking changes on testnet (#979)
  • [KLC-1322] Enforce SC address restrictions (#929)
  • [KLC-1115] Fix inconsistency issues when updating contract code during calls (#916)
  • [KLC-1025] Refactor Smart Contract deletion to preserve account state (#898)
  • [KLC-887] Enable one-time allowance for indirect smart contract deployment (#753)
  • [KLC-1153] Fix gas handling for DeleteContract and add refund mechanism (#899)

🛠️ Major Infrastructure Updates

  • [KLC-1728] Upgrade Go version to 1.24 (#973)
  • [KLC-1546] Implement operator multi-sign actions (#954)
  • [KLC-1321] Add delayed broadcaster to consensus mechanism (#918)
  • [KLC-1310] Create node API estimate fees endpoint (#914)
  • [KLC-1207] Build libvm for Linux ARM64 support (#895)
  • [KLC-946] Fix critical flaw in compute epoch calculation (#782)

🐛 Critical Bug Fixes

  • [KLC-1634] Remove TXs from mempool that have preprocess errors (#960)
  • [KLC-1328] Fix epoch slot validation during chain sync after fork (#921)
  • [KLC-1261] Fix TX integrity check and size validation (#904)
  • [KLC-1213] Fix validateTxRootHash() bypass vulnerability with Blake2b EmptyHash (#890)
  • [KLC-1077] Prevent DoS risk in SC invokes with multiple KDAs payments (#868)
  • [KLC-903] Fix delegate remaining active after undelegate call (#776)
  • [KLC-839] Fix potential DoS attack in contract invocation (#731)

🔄 Consensus & Validation Improvements

  • [KLC-1248][KLC-1211] Add new validations to intercepted block (#906)
  • [KLC-1191] Improve stateless validations (#882)
  • [KLC-876] Enable CheckDup on intercepted TX (#922)
  • [KLC-873] Fix time discrepancy between DoWork() and processReceivedBlock() (#912)
  • [KLC-917] Add protection before block commit by leader node (#773)

🚀 New Features

  • [KLC-1310] Node API estimate fees endpoint (#914)
  • [KLC-1201] Add userKDA endpoint on node (#893)
  • [KLC-1456] Address format conversion helper (bech32/hex) (#943)
  • [KLC-1325] Terminal UI event polling (#919)
  • [KLC-1546] Operator multi-sign actions (#954)
  • [KLC-1092] Add KLV and KFI as valid token identifiers in VM (#831)

Note: This represents the most impactful changes from our last commits. For the complete list, please refer to the git history.

🎯 Initial Repository Setup

Why the Consolidated Initial Commit?

Our initial commit contains 3,311 files with 491,121 lines of code - representing years of development work consolidated into a single starting point. This approach was chosen to:

  • Protect sensitive information: Remove any proprietary data, internal credentials, or information from the git history
  • Ensure a clean slate: Provide the open-source community with a stable, production-ready codebase without the burden of legacy internal development history
  • Maintain security: Eliminate any potential security vulnerabilities that might have been exposed in historical commits
  • Start fresh: Begin our open-source journey with a clear, auditable history from this point forward

🙏 Acknowledgments

We want to thank our development team for their dedication in preparing this open-source release and our community for their patience and support throughout this transition.

Security Audit

Special thanks to Certik for their comprehensive security audit of KleverChain. Their thorough analysis and recommendations have been instrumental in strengthening our blockchain's security posture. Many of the security fixes and improvements in this release stem from their professional audit findings.

Open Source Heritage

KleverChain was originally forked from ElrondNetwork/elrond-go (now MultiversX). While our blockchain has evolved significantly with distinct features, consensus mechanisms, and functionality, we acknowledge and appreciate the foundational work provided by the MultiversX team. Their open-source contribution to the blockchain ecosystem enabled us to build and innovate further.

📊 Statistics

Since v1.6.3 (Last Mainnet Release)

  • Total Commits: 316
  • Tracked Improvements (KLC/KLV): 178
  • Major Security Fixes: 20+
  • Performance Enhancements: 25+
  • Bug Fixes: 60+
  • New Features: 35+

Since Repository Open Source Setup

  • Total Commits: 248
  • Continued Development: Uninterrupted progress post-consolidation

🔗 Links

KleverChain v1.7.14 - Building the future of blockchain, together.

Assets 2
Loading