cardano-db-sync - 18 commits this week

Home / IntersectMBO / cardano-db-sync

Insights Pull Requests

May 26, 3-4 PM (0)

May 26, 4-5 PM (0)

May 26, 5-6 PM (0)

May 26, 6-7 PM (0)

May 26, 7-8 PM (0)

May 26, 8-9 PM (0)

May 26, 9-10 PM (0)

May 26, 10-11 PM (0)

May 26, 11-12 AM (0)

May 27, 12-1 AM (0)

May 27, 1-2 AM (0)

May 27, 2-3 AM (0)

May 27, 3-4 AM (0)

May 27, 4-5 AM (0)

May 27, 5-6 AM (0)

May 27, 6-7 AM (0)

May 27, 7-8 AM (0)

May 27, 8-9 AM (0)

May 27, 9-10 AM (0)

May 27, 10-11 AM (0)

May 27, 11-12 PM (0)

May 27, 12-1 PM (0)

May 27, 1-2 PM (0)

May 27, 2-3 PM (0)

May 27, 3-4 PM (0)

May 27, 4-5 PM (0)

May 27, 5-6 PM (0)

May 27, 6-7 PM (0)

May 27, 7-8 PM (0)

May 27, 8-9 PM (0)

May 27, 9-10 PM (1)

May 27, 10-11 PM (2)

May 27, 11-12 AM (1)

May 28, 12-1 AM (0)

May 28, 1-2 AM (0)

May 28, 2-3 AM (0)

May 28, 3-4 AM (0)

May 28, 4-5 AM (0)

May 28, 5-6 AM (0)

May 28, 6-7 AM (0)

May 28, 7-8 AM (0)

May 28, 8-9 AM (0)

May 28, 9-10 AM (1)

May 28, 10-11 AM (4)

May 28, 11-12 PM (1)

May 28, 12-1 PM (0)

May 28, 1-2 PM (0)

May 28, 2-3 PM (0)

May 28, 3-4 PM (0)

May 28, 4-5 PM (0)

May 28, 5-6 PM (0)

May 28, 6-7 PM (0)

May 28, 7-8 PM (0)

May 28, 8-9 PM (3)

May 28, 9-10 PM (0)

May 28, 10-11 PM (0)

May 28, 11-12 AM (0)

May 29, 12-1 AM (0)

May 29, 1-2 AM (0)

May 29, 2-3 AM (0)

May 29, 3-4 AM (0)

May 29, 4-5 AM (0)

May 29, 5-6 AM (0)

May 29, 6-7 AM (0)

May 29, 7-8 AM (0)

May 29, 8-9 AM (0)

May 29, 9-10 AM (0)

May 29, 10-11 AM (0)

May 29, 11-12 PM (0)

May 29, 12-1 PM (0)

May 29, 1-2 PM (0)

May 29, 2-3 PM (0)

May 29, 3-4 PM (0)

May 29, 4-5 PM (0)

May 29, 5-6 PM (0)

May 29, 6-7 PM (0)

May 29, 7-8 PM (0)

May 29, 8-9 PM (0)

May 29, 9-10 PM (0)

May 29, 10-11 PM (0)

May 29, 11-12 AM (0)

May 30, 12-1 AM (0)

May 30, 1-2 AM (0)

May 30, 2-3 AM (0)

May 30, 3-4 AM (0)

May 30, 4-5 AM (0)

May 30, 5-6 AM (0)

May 30, 6-7 AM (0)

May 30, 7-8 AM (0)

May 30, 8-9 AM (0)

May 30, 9-10 AM (0)

May 30, 10-11 AM (0)

May 30, 11-12 PM (0)

May 30, 12-1 PM (0)

May 30, 1-2 PM (0)

May 30, 2-3 PM (0)

May 30, 3-4 PM (2)

May 30, 4-5 PM (0)

May 30, 5-6 PM (0)

May 30, 6-7 PM (0)

May 30, 7-8 PM (0)

May 30, 8-9 PM (0)

May 30, 9-10 PM (0)

May 30, 10-11 PM (0)

May 30, 11-12 AM (0)

May 31, 12-1 AM (0)

May 31, 1-2 AM (0)

May 31, 2-3 AM (0)

May 31, 3-4 AM (0)

May 31, 4-5 AM (0)

May 31, 5-6 AM (0)

May 31, 6-7 AM (0)

May 31, 7-8 AM (0)

May 31, 8-9 AM (1)

May 31, 9-10 AM (2)

May 31, 10-11 AM (0)

May 31, 11-12 PM (0)

May 31, 12-1 PM (0)

May 31, 1-2 PM (0)

May 31, 2-3 PM (0)

May 31, 3-4 PM (0)

May 31, 4-5 PM (0)

May 31, 5-6 PM (0)

May 31, 6-7 PM (0)

May 31, 7-8 PM (0)

May 31, 8-9 PM (0)

May 31, 9-10 PM (0)

May 31, 10-11 PM (0)

May 31, 11-12 AM (0)

Jun 01, 12-1 AM (0)

Jun 01, 1-2 AM (0)

Jun 01, 2-3 AM (0)

Jun 01, 3-4 AM (0)

Jun 01, 4-5 AM (0)

Jun 01, 5-6 AM (0)

Jun 01, 6-7 AM (0)

Jun 01, 7-8 AM (0)

Jun 01, 8-9 AM (0)

Jun 01, 9-10 AM (0)

Jun 01, 10-11 AM (0)

Jun 01, 11-12 PM (0)

Jun 01, 12-1 PM (0)

Jun 01, 1-2 PM (0)

Jun 01, 2-3 PM (0)

Jun 01, 3-4 PM (0)

Jun 01, 4-5 PM (0)

Jun 01, 5-6 PM (0)

Jun 01, 6-7 PM (0)

Jun 01, 7-8 PM (0)

Jun 01, 8-9 PM (0)

Jun 01, 9-10 PM (0)

Jun 01, 10-11 PM (0)

Jun 01, 11-12 AM (0)

Jun 02, 12-1 AM (0)

Jun 02, 1-2 AM (0)

Jun 02, 2-3 AM (0)

Jun 02, 3-4 AM (0)

Jun 02, 4-5 AM (0)

Jun 02, 5-6 AM (0)

Jun 02, 6-7 AM (0)

Jun 02, 7-8 AM (0)

Jun 02, 8-9 AM (0)

Jun 02, 9-10 AM (0)

Jun 02, 10-11 AM (0)

Jun 02, 11-12 PM (0)

Jun 02, 12-1 PM (0)

Jun 02, 1-2 PM (0)

Jun 02, 2-3 PM (0)

Jun 02, 3-4 PM (0)

18 commits this week May 26, 2026 - Jun 02, 2026

johnalotoski · Sun, 31 May 26 10:01:25 +0000 · cardano-db-sync

srp: update consensus sha256 hash

d77e3638 · leios-prototype-remake · 1/1 ++ 1 --

kderme · Sun, 31 May 26 10:01:03 +0000 · cardano-db-sync

Add missing schema file

4d5aa732 · leios-prototype-remake · 1/24 ++ 0 --

johnalotoski · Sun, 31 May 26 09:20:23 +0000 · cardano-db-sync

srp: update consensus sha256 hash

053bfba7 · jl/leios-prototype-remake · 1/1 ++ 1 --

kderme · Sat, 30 May 26 16:59:08 +0000 · cardano-db-sync

Add leios specific fields to block

57273f08 · leios-prototype-remake · 5/28 ++ 1 --

kderme · Sat, 30 May 26 16:32:02 +0000 · cardano-db-sync

Implement dijkstra paths

9e7b26cd · leios-prototype-remake · 8/111 ++ 34 --

kderme · Thu, 28 May 26 21:31:56 +0000 · cardano-db-sync

Merge pull request #2133 from IntersectMBO/cherry-pick-13.7.1.0

Cherry pick 13.7.1.0

56899d61 · master · 10/78 ++ 8 --

kderme · Thu, 28 May 26 21:30:56 +0000 · cardano-db-sync

Prepare release 13.7.1.0

4eacf931 · cherry-pick-13.7.1.0 · 10/77 ++ 8 --

kderme · Thu, 28 May 26 21:30:53 +0000 · cardano-db-sync

Fix changelog

293eaedc · cherry-pick-13.7.1.0 · 1/1 ++ 0 --

Cmdv · Thu, 28 May 26 12:55:03 +0000 · cardano-db-sync

fix rollback error due to not deleting enough epoch_finalized

50a9e794 · 2127-replace-epoch-table-with-views · 2/8 ++ 7 --

ArturWieczorek · Thu, 28 May 26 11:42:45 +0000 · cardano-db-sync

test(offchain): cover isPrivateAddr including IPv4-mapped IPv6

Adds a table-driven Hedgehog property that exercises every classification
branch of isPrivateAddr — IPv4-mapped IPv6 (the SSRF gap fixed in #2132),
native IPv6, and IPv4 — with range-edge cases included to guard against

b86b22a7 · allow-private-offchain-urls · 3/54 ++ 1 --

ArturWieczorek · Thu, 28 May 26 11:42:44 +0000 · cardano-db-sync

feat(offchain): add --allow-private-offchain-urls flag

cardano-db-sync's off-chain pool and vote metadata fetchers reject
URLs whose host or resolved IP is in a private, loopback, or
link-local range as an SSRF mitigation (see parseOffChainUrl and
newRestrictedManager in cardano-db-sync/src/Cardano/DbSync/
OffChain/Http.hs). Local-cluster test setups whose metadata is
served from http://localhost:.../poolN.json or similar therefore
cannot exercise the success path of the fetcher.

This adds an opt-in CLI flag that replaces both layers of the
restriction with a no-op for the duration of the run, intended
for local-cluster testing only. Off by default; the existing
restriction continues to apply to every production deployment.

* New SyncNodeParams field enpAllowPrivateOffChainUrls plumbed
  through SyncOptions (soptAllowPrivateOffChainUrls) into the
  off-chain fetcher threads.
* parseOffChainUrl now takes a Bool: when True the isLocalhostHost
  rejection is skipped.
* newRestrictedManager now takes a Bool: when True it installs a
  permissiveRestriction (addressRestriction returning Nothing for
  every address) instead of offchainRestriction, so DNS-resolved
  private IPs are no longer blocked at connect time either.
* New Hedgehog suite Cardano.DbSync.OffChain.HttpTest covering
  both modes for localhost/127./[::1]/10./192.168. plus a public
  URL and non-HTTP schemes.

c7201a8f · allow-private-offchain-urls · 15/195 ++ 30 --

kderme · Thu, 28 May 26 11:32:40 +0000 · cardano-db-sync

Prepare release 13.7.1.0

8fcbcbf5 · cherry-pick-13.7.1.0 · 10/77 ++ 8 --

kderme · Thu, 28 May 26 11:32:40 +0000 · cardano-db-sync

Fix changelog

eca52b45 · cherry-pick-13.7.1.0 · 1/1 ++ 0 --

kderme · Thu, 28 May 26 10:01:14 +0000 · cardano-db-sync

Merge pull request #2132 from IntersectMBO/kderme/fix-offchain

Fix offchain issues

7777da66 · master · 2/12 ++ 2 --

ArturWieczorek · Thu, 28 May 26 00:28:40 +0000 · cardano-db-sync

feat(offchain): add --allow-private-offchain-urls flag

cardano-db-sync's off-chain pool and vote metadata fetchers reject
URLs whose host or resolved IP is in a private, loopback, or
link-local range as an SSRF mitigation (see parseOffChainUrl and
newRestrictedManager in cardano-db-sync/src/Cardano/DbSync/
OffChain/Http.hs). Local-cluster test setups whose metadata is
served from http://localhost:.../poolN.json or similar therefore
cannot exercise the success path of the fetcher.

This adds an opt-in CLI flag that replaces both layers of the
restriction with a no-op for the duration of the run, intended
for local-cluster testing only. Off by default; the existing
restriction continues to apply to every production deployment.

* New SyncNodeParams field enpAllowPrivateOffChainUrls plumbed
  through SyncOptions (soptAllowPrivateOffChainUrls) into the
  off-chain fetcher threads.
* parseOffChainUrl now takes a Bool: when True the isLocalhostHost
  rejection is skipped.
* newRestrictedManager now takes a Bool: when True it installs a
  permissiveRestriction (addressRestriction returning Nothing for
  every address) instead of offchainRestriction, so DNS-resolved
  private IPs are no longer blocked at connect time either.
* New Hedgehog suite Cardano.DbSync.OffChain.HttpTest covering
  both modes for localhost/127./[::1]/10./192.168. plus a public
  URL and non-HTTP schemes.

f4419666 · allow-private-offchain-urls · 15/195 ++ 30 --

kderme · Wed, 27 May 26 23:58:16 +0000 · cardano-db-sync

Add rollback-across-epoch-boundary test for epoch view

a17f64c4 · 2127-replace-epoch-table-with-views · 3/42 ++ 2 --

ArturWieczorek · Wed, 27 May 26 23:28:25 +0000 · cardano-db-sync

feat(offchain): add --allow-private-offchain-urls flag

cardano-db-sync's off-chain pool and vote metadata fetchers reject
URLs whose host or resolved IP is in a private, loopback, or
link-local range as an SSRF mitigation (see parseOffChainUrl and
newRestrictedManager in cardano-db-sync/src/Cardano/DbSync/
OffChain/Http.hs). Local-cluster test setups whose metadata is
served from http://localhost:.../poolN.json or similar therefore
cannot exercise the success path of the fetcher.

This adds an opt-in CLI flag that replaces both layers of the
restriction with a no-op for the duration of the run, intended
for local-cluster testing only. Off by default; the existing
restriction continues to apply to every production deployment.

* New SyncNodeParams field enpAllowPrivateOffChainUrls plumbed
  through SyncOptions (soptAllowPrivateOffChainUrls) into the
  off-chain fetcher threads.
* parseOffChainUrl now takes a Bool: when True the isLocalhostHost
  rejection is skipped.
* newRestrictedManager now takes a Bool: when True it installs a
  permissiveRestriction (addressRestriction returning Nothing for
  every address) instead of offchainRestriction, so DNS-resolved
  private IPs are no longer blocked at connect time either.
* New Hedgehog suite Cardano.DbSync.OffChain.HttpTest covering
  both modes for localhost/127./[::1]/10./192.168. plus a public
  URL and non-HTTP schemes.

dbae35ae · allow-private-offchain-urls · 15/195 ++ 30 --

ArturWieczorek · Wed, 27 May 26 22:30:58 +0000 · cardano-db-sync

feat(offchain): add --allow-private-offchain-urls flag

cardano-db-sync's off-chain pool and vote metadata fetchers reject
URLs whose host or resolved IP is in a private, loopback, or
link-local range as an SSRF mitigation (see parseOffChainUrl and
newRestrictedManager in cardano-db-sync/src/Cardano/DbSync/
OffChain/Http.hs). Local-cluster test setups whose metadata is
served from http://localhost:.../poolN.json or similar therefore
cannot exercise the success path of the fetcher.

This adds an opt-in CLI flag that replaces both layers of the
restriction with a no-op for the duration of the run, intended
for local-cluster testing only. Off by default; the existing
restriction continues to apply to every production deployment.

* New SyncNodeParams field enpAllowPrivateOffChainUrls plumbed
  through SyncOptions (soptAllowPrivateOffChainUrls) into the
  off-chain fetcher threads.
* parseOffChainUrl now takes a Bool: when True the isLocalhostHost
  rejection is skipped.
* newRestrictedManager now takes a Bool: when True it installs a
  permissiveRestriction (addressRestriction returning Nothing for
  every address) instead of offchainRestriction, so DNS-resolved
  private IPs are no longer blocked at connect time either.
* New Hedgehog suite Cardano.DbSync.OffChain.HttpTest covering
  both modes for localhost/127./[::1]/10./192.168. plus a public
  URL and non-HTTP schemes.

91278634 · allow-private-offchain-urls · 12/190 ++ 26 --

Showing 18 of 18 recent commits. Check out IntersectMBO on GitHub to see more.