fix(deps): update module github.com/btcsuite/btcd to v0.24.0 [security]

[renovate[bot]]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
github.com/btcsuite/btcd	v0.23.2 -> v0.24.0

GitHub Vulnerability Alerts

CVE-2024-34478

btcd before 0.24.0 does not correctly implement the consensus rules outlined in BIP 68 and BIP 112, making it susceptible to consensus failures. Specifically, it uses the transaction version as a signed integer when it is supposed to be treated as unsigned. There can be a chain split and loss of funds.

---

btcd susceptible to consensus failures

CVE-2024-34478 / GHSA-3jgf-r68h-xfqm / GO-2024-2818

More information

#### Details btcd before 0.24.0 does not correctly implement the consensus rules outlined in BIP 68 and BIP 112, making it susceptible to consensus failures. Specifically, it uses the transaction version as a signed integer when it is supposed to be treated as unsigned. There can be a chain split and loss of funds. #### Severity Moderate #### References - [https://nvd.nist.gov/vuln/detail/CVE-2024-34478](https://nvd.nist.gov/vuln/detail/CVE-2024-34478) - [https://github.com/btcsuite/btcd/pull/1981](https://togithub.com/btcsuite/btcd/pull/1981) - [https://github.com/btcsuite/btcd/commit/253b688c68b89eca7eb75d4d5443dbdbc928db3c](https://togithub.com/btcsuite/btcd/commit/253b688c68b89eca7eb75d4d5443dbdbc928db3c) - [https://delvingbitcoin.org/t/disclosure-btcd-consensus-bugs-due-to-usage-of-signed-transaction-version/455](https://delvingbitcoin.org/t/disclosure-btcd-consensus-bugs-due-to-usage-of-signed-transaction-version/455) - [https://github.com/btcsuite/btcd](https://togithub.com/btcsuite/btcd) - [https://github.com/btcsuite/btcd/blob/e4c88c3a3ecb1813529bf3dddc7a865bd418a6b8/blockchain/chain.go#L383C1-L392C3](https://togithub.com/btcsuite/btcd/blob/e4c88c3a3ecb1813529bf3dddc7a865bd418a6b8/blockchain/chain.go#L383C1-L392C3) - [https://github.com/btcsuite/btcd/blob/e4c88c3a3ecb1813529bf3dddc7a865bd418a6b8/txscript/opcode.go#L1172C1-L1178C3](https://togithub.com/btcsuite/btcd/blob/e4c88c3a3ecb1813529bf3dddc7a865bd418a6b8/txscript/opcode.go#L1172C1-L1178C3) This data is provided by [OSV](https://osv.dev/vulnerability/GHSA-3jgf-r68h-xfqm) and the [GitHub Advisory Database](https://togithub.com/github/advisory-database) ([CC-BY 4.0](https://togithub.com/github/advisory-database/blob/main/LICENSE.md)).

---

Consensus failures in github.com/btcsuite/btcd

CVE-2024-34478 / GHSA-3jgf-r68h-xfqm / GO-2024-2818

More information

#### Details Incorrect implementation of the consensus rules outlined in BIP 68 and BIP 112 making btcd susceptible to consensus failures. Specifically, it uses the transaction version as a signed integer when it is supposed to be treated as unsigned. There can be a chain split and loss of funds. #### Severity Unknown #### References - [https://nvd.nist.gov/vuln/detail/CVE-2024-34478](https://nvd.nist.gov/vuln/detail/CVE-2024-34478) - [https://delvingbitcoin.org/t/disclosure-btcd-consensus-bugs-due-to-usage-of-signed-transaction-version/455](https://delvingbitcoin.org/t/disclosure-btcd-consensus-bugs-due-to-usage-of-signed-transaction-version/455) - [https://github.com/btcsuite/btcd/blob/e4c88c3a3ecb1813529bf3dddc7a865bd418a6b8/blockchain/chain.go#L383C1-L392C3](https://togithub.com/btcsuite/btcd/blob/e4c88c3a3ecb1813529bf3dddc7a865bd418a6b8/blockchain/chain.go#L383C1-L392C3) - [https://github.com/btcsuite/btcd/blob/e4c88c3a3ecb1813529bf3dddc7a865bd418a6b8/txscript/opcode.go#L1172C1-L1178C3](https://togithub.com/btcsuite/btcd/blob/e4c88c3a3ecb1813529bf3dddc7a865bd418a6b8/txscript/opcode.go#L1172C1-L1178C3) - [https://github.com/btcsuite/btcd/pull/1981](https://togithub.com/btcsuite/btcd/pull/1981) This data is provided by [OSV](https://osv.dev/vulnerability/GO-2024-2818) and the [Go Vulnerability Database](https://togithub.com/golang/vulndb) ([CC-BY 4.0](https://togithub.com/golang/vulndb#license)).

---

Release Notes

btcsuite/btcd (github.com/btcsuite/btcd)

### [`v0.24.0`](https://togithub.com/btcsuite/btcd/releases/tag/v0.24.0): btcd v0.24.0 [Compare Source](https://togithub.com/btcsuite/btcd/compare/v0.23.4...v0.24.0) This release is a major release that includes several general bug fixes, **security bug fixes** (please update!), and also a series of performance improvements that dramatically reduce the time for initial block download from ~45 hours+ to around 6 hours! With this release,`btcd` now also supports BIP 155 and has gained support for pruning (`--prune=MiB`). ### Verifying the Release In order to verify the release, you'll need to have `gpg` or `gpg2` installed on your system. Once you've obtained a copy (and hopefully verified that as well), you'll first need to import the keys that have signed this release if you haven't done so already: curl https://raw.githubusercontent.com/lightningnetwork/lnd/master/scripts/keys/roasbeef.asc | gpg --import Once you have the required PGP keys, you can verify the release (assuming `manifest-roasbeef-v0.24.0.sig` and `manifest-v0.24.0.txt` are in the current directory) with: gpg --verify manifest-roasbeef-v0.24.0.sig manifest-v0.24.0.txt You should see the following if the verification was successful: gpg: Signature made Sat Dec 30 17:11:22 2023 PST gpg: using RSA key 60A1FA7DA5BFF08BDCBBE7903BBD59E99B280306 gpg: Good signature from "Olaoluwa Osuntokun " [ultimate] That will verify the signature of the manifest file, which ensures integrity and authenticity of the archive you've downloaded locally containing the binaries. Next, depending on your operating system, you should then re-compute the `sha256` hash of the archive with `shasum -a 256 `, compare it with the corresponding one in the manifest file, and ensure they match *exactly*. ### What's Changed - Musig2: Update to 1.0.0.rc2 by [@​sputn1ck](https://togithub.com/sputn1ck) in [https://github.com/btcsuite/btcd/pull/1913](https://togithub.com/btcsuite/btcd/pull/1913) - btcec/schnorr/musig2: fix BenchmarkPartialVerify by [@​Roasbeef](https://togithub.com/Roasbeef) in [https://github.com/btcsuite/btcd/pull/1920](https://togithub.com/btcsuite/btcd/pull/1920) - base58: fix decoding issue by [@​guggero](https://togithub.com/guggero) in [https://github.com/btcsuite/btcd/pull/1923](https://togithub.com/btcsuite/btcd/pull/1923) - Update Docker documentation towards building your own image by [@​guiand888](https://togithub.com/guiand888) in [https://github.com/btcsuite/btcd/pull/1925](https://togithub.com/btcsuite/btcd/pull/1925) - chainhash: JSON marshal hash as string by [@​ffranr](https://togithub.com/ffranr) in [https://github.com/btcsuite/btcd/pull/1932](https://togithub.com/btcsuite/btcd/pull/1932) - Update Dockerfile to Alpine 3.16 by [@​guiand888](https://togithub.com/guiand888) in [https://github.com/btcsuite/btcd/pull/1924](https://togithub.com/btcsuite/btcd/pull/1924) - Fix memory leak in connmanager by [@​hxw](https://togithub.com/hxw) in [https://github.com/btcsuite/btcd/pull/1576](https://togithub.com/btcsuite/btcd/pull/1576) - Update mining.md by [@​jagottsicher](https://togithub.com/jagottsicher) in [https://github.com/btcsuite/btcd/pull/1938](https://togithub.com/btcsuite/btcd/pull/1938) - Sighash taproot keyspend bug fix by [@​Roasbeef](https://togithub.com/Roasbeef) in [https://github.com/btcsuite/btcd/pull/1941](https://togithub.com/btcsuite/btcd/pull/1941) - btcutil/psbt: export helper functions, fix/add encoding of unknown fields by [@​guggero](https://togithub.com/guggero) in [https://github.com/btcsuite/btcd/pull/1942](https://togithub.com/btcsuite/btcd/pull/1942) - docs: Update Go version as per the Readme. by [@​hristog](https://togithub.com/hristog) in [https://github.com/btcsuite/btcd/pull/1944](https://togithub.com/btcsuite/btcd/pull/1944) - txscript: Fix typo in IsUnspendable() comment by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1945](https://togithub.com/btcsuite/btcd/pull/1945) - txscript: allow script builder capacity to be specified by [@​guggero](https://togithub.com/guggero) in [https://github.com/btcsuite/btcd/pull/1954](https://togithub.com/btcsuite/btcd/pull/1954) - Export MakeScritpNum, AsSmallInt, and IsSmallInt by [@​martonp](https://togithub.com/martonp) in [https://github.com/btcsuite/btcd/pull/1956](https://togithub.com/btcsuite/btcd/pull/1956) - chainhash: JSON Unmarshal hash from appropriate string. by [@​LindenWang01](https://togithub.com/LindenWang01) in [https://github.com/btcsuite/btcd/pull/1952](https://togithub.com/btcsuite/btcd/pull/1952) - psbt: add verification method for utxo data by [@​ziggie1984](https://togithub.com/ziggie1984) in [https://github.com/btcsuite/btcd/pull/1964](https://togithub.com/btcsuite/btcd/pull/1964) - txscript: fix typos by [@​hieblmi](https://togithub.com/hieblmi) in [https://github.com/btcsuite/btcd/pull/1957](https://togithub.com/btcsuite/btcd/pull/1957) - chaincfg: Update checkpoints by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1968](https://togithub.com/btcsuite/btcd/pull/1968) - btcd: Add memory profiling flag by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1953](https://togithub.com/btcsuite/btcd/pull/1953) - blockchain: Use slices when fetching utxos by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1972](https://togithub.com/btcsuite/btcd/pull/1972) - main: Update README.md's minimum go version by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1977](https://togithub.com/btcsuite/btcd/pull/1977) - Add wire.Outpoint parser from string by [@​GeorgeTsagk](https://togithub.com/GeorgeTsagk) in [https://github.com/btcsuite/btcd/pull/1879](https://togithub.com/btcsuite/btcd/pull/1879) - multi: Run gofmt on the entire repository by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1981](https://togithub.com/btcsuite/btcd/pull/1981) - blockchain+chaincfg: disable retargeting for regtest by [@​guggero](https://togithub.com/guggero) in [https://github.com/btcsuite/btcd/pull/1985](https://togithub.com/btcsuite/btcd/pull/1985) - multi: remove repetitive the by [@​cuishuang](https://togithub.com/cuishuang) in [https://github.com/btcsuite/btcd/pull/1998](https://togithub.com/btcsuite/btcd/pull/1998) - blockchain: refactor and export header validation checks by [@​Crypt-iQ](https://togithub.com/Crypt-iQ) in [https://github.com/btcsuite/btcd/pull/1931](https://togithub.com/btcsuite/btcd/pull/1931) - btcutil: format BTC amounts with trailing zeroes by [@​C-Otto](https://togithub.com/C-Otto) in [https://github.com/btcsuite/btcd/pull/1996](https://togithub.com/btcsuite/btcd/pull/1996) - musig2: fix early nonce gen option by [@​sputn1ck](https://togithub.com/sputn1ck) in [https://github.com/btcsuite/btcd/pull/2003](https://togithub.com/btcsuite/btcd/pull/2003) - fix: missing sighashtype when finalizing taproot keyspend signature by [@​0xEclair](https://togithub.com/0xEclair) in [https://github.com/btcsuite/btcd/pull/2006](https://togithub.com/btcsuite/btcd/pull/2006) - Add address field (rpc client & server) by [@​lindlof](https://togithub.com/lindlof) in [https://github.com/btcsuite/btcd/pull/1969](https://togithub.com/btcsuite/btcd/pull/1969) - schnorr: correct rfc reference in docs by [@​wydengyre](https://togithub.com/wydengyre) in [https://github.com/btcsuite/btcd/pull/2016](https://togithub.com/btcsuite/btcd/pull/2016) - blockchain, integration, mining, main: Rolling merkle root calculation by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1979](https://togithub.com/btcsuite/btcd/pull/1979) - schnorr: bip-340 compliant verification by [@​wydengyre](https://togithub.com/wydengyre) in [https://github.com/btcsuite/btcd/pull/2018](https://togithub.com/btcsuite/btcd/pull/2018) - txscript/engine: add execution StepCallback by [@​halseth](https://togithub.com/halseth) in [https://github.com/btcsuite/btcd/pull/1980](https://togithub.com/btcsuite/btcd/pull/1980) - schnorr: bip-340 compliant signing by [@​wydengyre](https://togithub.com/wydengyre) in [https://github.com/btcsuite/btcd/pull/2022](https://togithub.com/btcsuite/btcd/pull/2022) - main, wire, blockchain, indexers, ffldb: Add pruning by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1971](https://togithub.com/btcsuite/btcd/pull/1971) - chainhash: add support to legacy-marshaled hashes by [@​Beerosagos](https://togithub.com/Beerosagos) in [https://github.com/btcsuite/btcd/pull/2025](https://togithub.com/btcsuite/btcd/pull/2025) - rpcclient: catch shutdown signal when sending RPC requests by [@​yyforyongyu](https://togithub.com/yyforyongyu) in [https://github.com/btcsuite/btcd/pull/2028](https://togithub.com/btcsuite/btcd/pull/2028) - integration: add test to check prune status by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/2043](https://togithub.com/btcsuite/btcd/pull/2043) - fix: typos in sighash.go by [@​kevinheavey](https://togithub.com/kevinheavey) in [https://github.com/btcsuite/btcd/pull/2047](https://togithub.com/btcsuite/btcd/pull/2047) - Update LICENSE by [@​davidcardenasus](https://togithub.com/davidcardenasus) in [https://github.com/btcsuite/btcd/pull/2045](https://togithub.com/btcsuite/btcd/pull/2045) - blockchain: export CheckSerializedHeight by [@​Crypt-iQ](https://togithub.com/Crypt-iQ) in [https://github.com/btcsuite/btcd/pull/2051](https://togithub.com/btcsuite/btcd/pull/2051) - fix: default forward port by [@​0xEclair](https://togithub.com/0xEclair) in [https://github.com/btcsuite/btcd/pull/2038](https://togithub.com/btcsuite/btcd/pull/2038) - Added tests for FutureGetBestBlockHashResult.Receive by [@​ClaytonNorthey92](https://togithub.com/ClaytonNorthey92) in [https://github.com/btcsuite/btcd/pull/2048](https://togithub.com/btcsuite/btcd/pull/2048) - Added test for client.GetChainTxStatsAsync() in rpcclient. by [@​ClaytonNorthey92](https://togithub.com/ClaytonNorthey92) in [https://github.com/btcsuite/btcd/pull/2049](https://togithub.com/btcsuite/btcd/pull/2049) - added tests for GetBestBlockHashAsync by [@​ClaytonNorthey92](https://togithub.com/ClaytonNorthey92) in [https://github.com/btcsuite/btcd/pull/2057](https://togithub.com/btcsuite/btcd/pull/2057) - blockchain, btcjson: Implement getchaintips rpc call by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1918](https://togithub.com/btcsuite/btcd/pull/1918) - Fix typos by [@​xiaolou86](https://togithub.com/xiaolou86) in [https://github.com/btcsuite/btcd/pull/2064](https://togithub.com/btcsuite/btcd/pull/2064) - Fix typos on signature.go by [@​EvanTedesco](https://togithub.com/EvanTedesco) in [https://github.com/btcsuite/btcd/pull/2065](https://togithub.com/btcsuite/btcd/pull/2065) - schnorr: simplify some signing math by [@​wydengyre](https://togithub.com/wydengyre) in [https://github.com/btcsuite/btcd/pull/2042](https://togithub.com/btcsuite/btcd/pull/2042) - Correct comments in singature.go by [@​jcvernaleo](https://togithub.com/jcvernaleo) in [https://github.com/btcsuite/btcd/pull/2067](https://togithub.com/btcsuite/btcd/pull/2067) - blockchain: Add ancestor optimization to finding Ancestor by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1688](https://togithub.com/btcsuite/btcd/pull/1688) - Update petertodd seed DNS to .net by [@​petertodd](https://togithub.com/petertodd) in [https://github.com/btcsuite/btcd/pull/2069](https://togithub.com/btcsuite/btcd/pull/2069) - wire, netsync: change isSyncCandidate behavior by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/2035](https://togithub.com/btcsuite/btcd/pull/2035) - make: add install and release-install goals by [@​guggero](https://togithub.com/guggero) in [https://github.com/btcsuite/btcd/pull/1890](https://togithub.com/btcsuite/btcd/pull/1890) - chainhash, wire, btcutil, main: Memory efficient txhash by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1978](https://togithub.com/btcsuite/btcd/pull/1978) - blockchain, cmd, netsync, main: Add utxocache by [@​kcalvinalvin](https://togithub.com/kcalvinalvin) in [https://github.com/btcsuite/btcd/pull/1955](https://togithub.com/btcsuite/btcd/pull/1955) - btcutil: update to chaincfg/chainhash/v1.1.0 by [@​Roasbeef](https://togithub.com/Roasbeef) in [https://github.com/btcsuite/btcd/pull/2072](https://togithub.com/btcsuite/btcd/pull/2072) - fix: enhance code comments by [@​threewebcode](https://togithub.com/threewebcode) in [https://github.com/btcsuite/btcd/pull/2074](https://togithub.com/btcsuite/btcd/pull/2074) - multi: update main package and btcutil to chainhash/v1.1.0, use optimized dsha256 by [@​Roasbeef](https://togithub.com/Roasbeef) in [https://github.com/btcsuite/btcd/pull/2075](https://togithub.com/btcsuite/btcd/pull/2075) - doc: correct comments by [@​bodhi-crypo](https://togithub.com/bodhi-crypo) in [https://github.com/btcsuite/btcd/pull/2076](https://togithub.com/btcsuite/btcd/pull/2076) - rpctest: integration test harness fixes by [@​guggero](https://togithub.com/guggero) in [https://github.com/btcsuite/btcd/pull/2071](https://togithub.com/btcsuite/btcd/pull/2071) - btcutil: reuse serialized tx during TxHash by [@​Roasbeef](https://togithub.com/Roasbeef) in [https://github.com/btcsuite/btcd/pull/2081](https://togithub.com/btcsuite/btcd/pull/2081) - wire: only borrow/return binaryFreeList buffers at the message level by [@​Roasbeef](https://togithub.com/Roasbeef) in [https://github.com/btcsuite/btcd/pull/2073](https://togithub.com/btcsuite/btcd/pull/2073) - build: create btcd v0.24 release branch by [@​Roasbeef](https://togithub.com/Roasbeef) in [https://github.com/btcsuite/btcd/pull/2082](https://togithub.com/btcsuite/btcd/pull/2082) #### New Contributors - [@​guiand888](https://togithub.com/guiand888) made their first contribution in [https://github.com/btcsuite/btcd/pull/1925](https://togithub.com/btcsuite/btcd/pull/1925) - [@​hxw](https://togithub.com/hxw) made their first contribution in [https://github.com/btcsuite/btcd/pull/1576](https://togithub.com/btcsuite/btcd/pull/1576) - [@​jagottsicher](https://togithub.com/jagottsicher) made their first contribution in [https://github.com/btcsuite/btcd/pull/1938](https://togithub.com/btcsuite/btcd/pull/1938) - [@​hristog](https://togithub.com/hristog) made their first contribution in [https://github.com/btcsuite/btcd/pull/1944](https://togithub.com/btcsuite/btcd/pull/1944) - [@​martonp](https://togithub.com/martonp) made their first contribution in [https://github.com/btcsuite/btcd/pull/1956](https://togithub.com/btcsuite/btcd/pull/1956) - [@​LindenWang01](https://togithub.com/LindenWang01) made their first contribution in [https://github.com/btcsuite/btcd/pull/1952](https://togithub.com/btcsuite/btcd/pull/1952) - [@​ziggie1984](https://togithub.com/ziggie1984) made their first contribution in [https://github.com/btcsuite/btcd/pull/1964](https://togithub.com/btcsuite/btcd/pull/1964) - [@​hieblmi](https://togithub.com/hieblmi) made their first contribution in [https://github.com/btcsuite/btcd/pull/1957](https://togithub.com/btcsuite/btcd/pull/1957) - [@​GeorgeTsagk](https://togithub.com/GeorgeTsagk) made their first contribution in [https://github.com/btcsuite/btcd/pull/1879](https://togithub.com/btcsuite/btcd/pull/1879) - [@​cuishuang](https://togithub.com/cuishuang) made their first contribution in [https://github.com/btcsuite/btcd/pull/1998](https://togithub.com/btcsuite/btcd/pull/1998) - [@​C-Otto](https://togithub.com/C-Otto) made their first contribution in [https://github.com/btcsuite/btcd/pull/1996](https://togithub.com/btcsuite/btcd/pull/1996) - [@​0xEclair](https://togithub.com/0xEclair) made their first contribution in [https://github.com/btcsuite/btcd/pull/2006](https://togithub.com/btcsuite/btcd/pull/2006) - [@​wydengyre](https://togithub.com/wydengyre) made their first contribution in [https://github.com/btcsuite/btcd/pull/2016](https://togithub.com/btcsuite/btcd/pull/2016) - [@​Beerosagos](https://togithub.com/Beerosagos) made their first contribution in [https://github.com/btcsuite/btcd/pull/2025](https://togithub.com/btcsuite/btcd/pull/2025) - [@​kevinheavey](https://togithub.com/kevinheavey) made their first contribution in [https://github.com/btcsuite/btcd/pull/2047](https://togithub.com/btcsuite/btcd/pull/2047) - [@​davidcardenasus](https://togithub.com/davidcardenasus) made their first contribution in [https://github.com/btcsuite/btcd/pull/2045](https://togithub.com/btcsuite/btcd/pull/2045) - [@​ClaytonNorthey92](https://togithub.com/ClaytonNorthey92) made their first contribution in [https://github.com/btcsuite/btcd/pull/2048](https://togithub.com/btcsuite/btcd/pull/2048) - [@​xiaolou86](https://togithub.com/xiaolou86) made their first contribution in [https://github.com/btcsuite/btcd/pull/2064](https://togithub.com/btcsuite/btcd/pull/2064) - [@​EvanTedesco](https://togithub.com/EvanTedesco) made their first contribution in [https://github.com/btcsuite/btcd/pull/2065](https://togithub.com/btcsuite/btcd/pull/2065) - [@​petertodd](https://togithub.com/petertodd) made their first contribution in [https://github.com/btcsuite/btcd/pull/2069](https://togithub.com/btcsuite/btcd/pull/2069) - [@​threewebcode](https://togithub.com/threewebcode) made their first contribution in [https://github.com/btcsuite/btcd/pull/2074](https://togithub.com/btcsuite/btcd/pull/2074) - [@​bodhi-crypo](https://togithub.com/bodhi-crypo) made their first contribution in [https://github.com/btcsuite/btcd/pull/2076](https://togithub.com/btcsuite/btcd/pull/2076) **Full Changelog**: https://github.com/btcsuite/btcd/compare/v0.23.4...v0.24.0 ### [`v0.23.4`](https://togithub.com/btcsuite/btcd/compare/v0.23.3...v0.23.4) [Compare Source](https://togithub.com/btcsuite/btcd/compare/v0.23.3...v0.23.4) ### [`v0.23.3`](https://togithub.com/btcsuite/btcd/releases/tag/v0.23.3): btcd v0.23.3 [Compare Source](https://togithub.com/btcsuite/btcd/compare/v0.23.2...v0.23.3) ### Verifying the Release In order to verify the release, you'll need to have `gpg` or `gpg2` installed on your system. Once you've obtained a copy (and hopefully verified that as well), you'll first need to import the keys that have signed this release if you haven't done so already: curl https://raw.githubusercontent.com/lightningnetwork/lnd/master/scripts/keys/guggero.asc | gpg --import Once you have the required PGP keys, you can verify the release (assuming `manifest-guggero-v0.23.3.sig` and `manifest-v0.23.3.txt` are in the current directory) with: gpg --verify manifest-guggero-v0.23.3.sig manifest-v0.23.3.txt You should see the following if the verification was successful: gpg: Signature made Di 01 Nov 2022 14:00:20 CET gpg: using RSA key F4FC70F07310028424EFC20A8E4256593F177720 gpg: Good signature from "Oliver Gugger " [ultimate] That will verify the signature of the manifest file, which ensures integrity and authenticity of the archive you've downloaded locally containing the binaries. Next, depending on your operating system, you should then re-compute the `sha256` hash of the archive with `shasum -a 256 `, compare it with the corresponding one in the manifest file, and ensure they match *exactly*. #### What's Changed - Fixed ban bug that doesn't print numTxns by [@​l0k18](https://togithub.com/l0k18) in [https://github.com/btcsuite/btcd/pull/1900](https://togithub.com/btcsuite/btcd/pull/1900) - btcec/schnorr/musig2: update to musig 1.0.0 by [@​Roasbeef](https://togithub.com/Roasbeef) in [https://github.com/btcsuite/btcd/pull/1894](https://togithub.com/btcsuite/btcd/pull/1894) - wire: increase max witness items per input by [@​ellemouton](https://togithub.com/ellemouton) in [https://github.com/btcsuite/btcd/pull/1907](https://togithub.com/btcsuite/btcd/pull/1907) - build: bump version to v0.23.3 by [@​guggero](https://togithub.com/guggero) in [https://github.com/btcsuite/btcd/pull/1908](https://togithub.com/btcsuite/btcd/pull/1908) #### New Contributors - [@​l0k18](https://togithub.com/l0k18) made their first contribution in [https://github.com/btcsuite/btcd/pull/1900](https://togithub.com/btcsuite/btcd/pull/1900) **Full Changelog**: https://github.com/btcsuite/btcd/compare/v0.23.2...v0.23.3

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[github-actions[bot]]

Coverage from tests in ./e2e_test/... for ./consensus/istanbul/... at commit b75d95367dea90bb04f472de02a6ab6159fa2be7

coverage: 46.9% of statements across all listed packages

coverage:  57.2% of statements in consensus/istanbul
coverage:  23.7% of statements in consensus/istanbul/announce
coverage:  54.4% of statements in consensus/istanbul/backend
coverage:   0.0% of statements in consensus/istanbul/backend/backendtest
coverage:  24.3% of statements in consensus/istanbul/backend/internal/replica
coverage:  65.1% of statements in consensus/istanbul/core
coverage:  45.0% of statements in consensus/istanbul/db
coverage:   0.0% of statements in consensus/istanbul/proxy
coverage:  64.2% of statements in consensus/istanbul/uptime
coverage:  51.8% of statements in consensus/istanbul/validator
coverage:  79.2% of statements in consensus/istanbul/validator/random

[github-actions[bot]]