Release Notes

py-libp2p v0.6.0 (2026-02-16)

Breaking Changes

Bitswap CIDv1 now uses proper varint encoding for codec values per the multicodec specification. This is a breaking change for CIDs using codecs with value ≥ 128.

Summary

CIDv1 now uses proper varint encoding for codec values, as specified in the multicodec specification. This changes the binary format for CIDs using codecs with values \(\ge 128\).

Impact
- 95% of CIDs unaffected: Common codecs (raw, dag-pb, dag-cbor) use values < 128, which encode identically in both the legacy single-byte and the new varint formats.
- 5% of CIDs affected: Codecs such as dag-jose (0x85), dag-json (0x129), and other experimental codecs with values \(\ge 128\) now use multi-byte varint encoding. Their CIDv1 byte layout changes and thus their CID identities change.
Migration Required

If you use dag-jose, dag-json, or custom codecs \(\ge 128\):
1. Identify affected CIDs using detect_cid_encoding_format() (in libp2p.bitswap.cid).
2. Recompute CIDs from original data using recompute_cid_from_data() (in libp2p.bitswap.cid).
3. Update storage (databases, caches, indexes) with the new CIDs.
Code Examples

Check if your CIDs are affected
```
from libp2p.bitswap.cid import detect_cid_encoding_format

info = detect_cid_encoding_format(your_cid)

if info["is_breaking"]:
    print(f"CID uses {info['codec_name']} and needs migration")
```
Recompute affected CIDs
```
from libp2p.bitswap.cid import recompute_cid_from_data

# old_cid: the existing CID
# original_data: the original data that was hashed
new_cid = recompute_cid_from_data(old_cid, original_data)
```
Backward Compatibility

Code continues to accept integer codec values for API compatibility:
```
from libp2p.bitswap.cid import CODEC_RAW, compute_cid_v1

data = b"example"

# All of these work:
cid1 = compute_cid_v1(data, codec=0x55)      # int
cid2 = compute_cid_v1(data, codec="raw")     # str
cid3 = compute_cid_v1(data, codec=CODEC_RAW) # Code object
```

(#1193)

Bugfixes

Fixed swarm listener crash on inbound peer negotiation failures by handling security and muxer upgrade exceptions gracefully, allowing the listener to continue accepting new connections. (#417)
Fixed peer ID validation by checking the authenticated peer ID immediately after security handshake, failing fast on mismatches instead of later during mux negotiation with misleading errors. (#429)
Fixed interoperability issue where generated Ed25519 keys were not always valid curve points, complying with strict ZIP-215 validation. (#921)
Fixed yamux listener incorrectly logging errors when peers close connections gracefully after completing protocol exchanges. Clean connection closures (0 bytes received) are now logged at INFO level instead of ERROR level. (#1084)
Fixed MessageCache KeyError crash when async topic validators process the same message concurrently by adding duplicate detection in put() and defensive pop with default None in shift(). (#1118)
Fixed pubsub service crashes when peers disconnect abruptly by properly handling StreamReset exceptions during message writes. (#1120)
Fixed Pubsub._get_in_topic_gossipsub_peers_from_minus to use self.peer_protocol.get(peer_id) instead of direct dictionary access via self.peer_protocol[peer_id]. This safely ignores peers that are partially disconnected during the heartbeat cycle. (#1124)
Fixed TLS certificate interoperability with Rust libp2p by setting BasicConstraints and KeyUsage X.509 extensions to non-critical, allowing cross-implementation compatibility per libp2p TLS spec. (#1159)
Fixed intermittent Windows CI failure in pubsub dummyaccount ring-topology tests by replacing fixed sleep timers with a state-based wait_for_convergence helper. Tests now wait until all nodes satisfy the expected condition (or timeout with a clear assertion) instead of relying on platform-sensitive delays, resolving nested ExceptionGroup flakiness on Windows. (#1164)
Fixed WebSocket transport to immediately raise IOException on connection closure instead of returning empty bytes, preventing retry loops in read_exactly(). Also added graceful error handling in yamux send_window_update() for connections closed by peers during window updates. (#1212)
Fixed WebSocket transport crashing on IPv6 multiaddrs due to unhandled ProtocolLookupError in host extraction, and corrected IPv6 dial URL construction to use RFC 3986 bracket notation. (#1215)

Features

Implemented initial network attack simulation framework to support testing against common P2P attacks (e.g. Eclipse attacks). (#57)
Enhanced Circuit Relay v2 security by implementing multi-hop prevention, elegantly blocking relay chaining attempts while preserving legitimate client connections. (#697)
Added a comprehensive NAT traversal example demonstrating Circuit Relay v2, DCUtR (Direct Connection Upgrade through Relay), and AutoNAT protocols.

The example includes three scripts in examples/nat/: - relay.py: A publicly reachable relay node that facilitates connections between NATed peers - listener.py: A NATed peer that advertises via relay and accepts incoming connections - dialer.py: A NATed peer that connects through relay and attempts DCUtR hole punching to establish direct connections

This example demonstrates how two NATed peers can establish communication through a relay and automatically upgrade to a direct connection when possible, while using AutoNAT to detect and report network reachability status. (#870)
Added Gossipsub 2.0 support with enhanced peer scoring, adaptive gossip dissemination, and security features.

This implementation brings py-libp2p to parity with Go and JS libp2p implementations by adding:
- Enhanced Peer Scoring: Comprehensive scoring system with P6 (application-specific) and P7 (IP colocation penalty) parameters, decay mechanisms, and behavioral penalties
- Advanced Message Validation: Topic-specific validation hooks with caching, timeout mechanisms, and async validator support
- Adaptive Gossip Dissemination: Dynamic network parameter adjustment based on network health and peer scores
- Security Enhancements: Protection against spam, Sybil, and Eclipse attacks through rate limiting, IP diversity enforcement, and equivocation detection
- Protocol Negotiation: Support for /meshsub/2.0.0 protocol with backward compatibility to Gossipsub 1.1/1.2
- Interoperability: Full compatibility with existing Go and JS libp2p Gossipsub 2.0 implementations
The new protocol version enables Python-based libp2p applications to participate in modern, secure pubsub networks with improved resilience against adversarial conditions. (#920)
Added an Eclipse attack simulation module with dual-layer architecture (simulation + real integration) and metrics collection framework. (#950)
Implemented round-robin load balancing for CircuitV2 relay selection, prioritizing relays with active reservations for more reliable and evenly distributed relay usage. (#972)
Added MVP AutoTLS support in TLS stream security. (#1072)
Improved RSA key compatibility with other libp2p implementations, added public key extraction from peer IDs for Ed25519/Secp256k1 keys, and enhanced pubsub connection management to prevent premature peer removal and service crashes. (#1106)
Added IPv6 support for default bind address configuration.
- IPv6 bind address is configurable via the LIBP2P_BIND_V6 environment variable (default ::1). Use :: to listen on all IPv6 interfaces (e.g. for tests).
- Invalid LIBP2P_BIND_V6 values fall back to the secure default ::1.
- Thin-waist address utilities and examples support both IPv4 and IPv6. (#1111)
Added TLS-enabled bidirectional chat example demonstrating secure peer-to-peer communication with full-duplex messaging capabilities.

The new example includes:
- TLS Server (examples/tls/example_tls_server.py): A TLS-enabled py-libp2p host that acts as a bidirectional chat server, listening for incoming TLS connections and engaging in full-duplex chat sessions where both server and client can send messages simultaneously.
- TLS Client (examples/tls/example_tls_client.py): A TLS-enabled client with three operation modes: - Echo mode: Simple request-response pattern for testing TLS connections - Chat mode: Interactive bidirectional chat for real-time communication - Ping mode: Latency testing with round-trip time measurement
Both examples showcase TLS 1.3 encryption, automatic peer identity verification during TLS handshake, concurrent send/receive operations using async/await patterns, and graceful connection lifecycle management. This provides a practical reference implementation for developers building TLS-enabled py-libp2p applications. (#1144)
Added new test-plan transport test specifications for py-libp2p v0.x to support interoperability testing and validation of transport implementations. (#1148)
Integrate py-multihash v3 API in Bitswap CID module and records validation. Replaces manual multihash construction and exception-based validation with efficient library methods. Improves code maintainability while maintaining 100% backward compatibility. (#1180)
Multicodec integration for Bitswap CIDs: CIDv1 uses varint-encoded codec prefixes (via add_prefix()). New helpers: detect_cid_encoding_format(), recompute_cid_from_data(), and analyze_cid_collection(). See the breaking fragment and codec documentation for impact and migration. (#1193)
Added py-multibase support for peer IDs, DHT keys, and pubsub message IDs with ID.to_multibase(), ID.from_multibase(), ID.from_string(), and a configurable default encoding via libp2p.encoding_config. Backward-compatible with existing base58 peer IDs. (#1209)

Internal Changes - for py-libp2p Contributors

Standardized logger names across core modules to use __name__ pattern, enabling fine-grained logging control via LIBP2P_DEBUG environment variable. (#906)
Moved dev dependencies from [project.optional-dependencies] to [dependency-groups] and reorganized them to remove duplication. (#1115)

py-libp2p v0.5.0 (2025-12-21)

Bugfixes

Fixed pubsub service crashes when protocol negotiation fails by adding proper exception handling. (#910)
Fixed Yamux.accept_stream() hanging indefinitely when connection is closed. (#930)
Handle FLAG_FIN & FLAG_RST in TYPE_WINDOW_UPDATE frames (#931)
Added peer ID validation in identify_push protocol to prevent forged peer records.

This security enhancement ensures that the peer ID in signed peer records matches the sender’s peer ID, preventing peer ID spoofing attacks. This addresses CVE-2023-40583 equivalent vulnerability. (#958)
Fixed resource scope cleanup in SwarmConn close method to properly release connection resources when connections are closed. (#1020)
Fixed interoperability with rust-libp2p by switching default key generation to Ed25519 and enhancing Yamux to handle data with SYN/ACK frames. (#1034)
Fixed Mplex connection cleanup to properly handle connection closure callbacks, resolving interop test failures with chromium-rust-v0.53. (#1037)
Fixed QUIC interop issue where Go-to-Python ping would fail after identify stream closes. The listener now properly tracks new Connection IDs issued after connection establishment, enabling correct packet routing for subsequent streams. (#1044)
Kademlia DHT API now accepts string keys instead of bytes (put_value(key: str, ...)). Fixes UnicodeDecodeError with binary multihash keys. (#1059)
Fixed BasicHost.run() to accept task_status keyword argument for compatibility with modern pytest-trio (>=0.8.0) and trio (>=0.26.0). (#1071)
Fixed QUIC stream direction misclassification that caused server-side errors when handling client-initiated streams. (#1081)

Features

Noise protocol now uses spec-compliant X25519 keys for DH exchange while maintaining Ed25519 keys for libp2p identity signatures. This fixes signature verification failures and ensures compatibility with other libp2p implementations. Updated tests/utils/factories.py to use separate X25519 keys for Noise static keys and libp2p/security/noise/patterns.py to properly handle key separation during handshake.

Full Specification Compliance Achieved: Stream Muxers: Added stream_muxers field to NoiseExtensions (spec requirement) Legacy Cleanup: Removed non-spec data field from NoiseHandshakePayload Protobuf Schema: Updated to match official libp2p/specs/noise WebTransport Support: Certificate hash exchange fully implemented

Beyond Specification - Advanced Features: Early Data (0-RTT): Full implementation with handlers and callbacks Advanced Rekeying: Configurable policies and statistics Static Key Caching: Performance optimizations Comprehensive Management: Full handler system for early data (#591)
Added fallback mechanism in Kademlia DHT to use connected peers and peerstore when routing table has insufficient peers. (#905)
Enhanced WebSocket transport with advanced features including SOCKS proxy support, AutoTLS for browser integration, connection management, and comprehensive configuration options. The implementation adds production-ready features like connection pooling, statistics tracking, and advanced TLS configuration for improved reliability and monitoring capabilities. (#938)
Added persistent peer storage system with datastore-agnostic backend support.

The new PersistentPeerStore implementation provides persistent storage for peer data (addresses, keys, metadata, protocols, latency metrics) across application restarts. This addresses the limitation of the in-memory peerstore that loses all peer information when the process restarts.

Key features: - Datastore-agnostic interface supporting multiple backends (SQLite, LevelDB, RocksDB, Memory) - Full compatibility with existing IPeerStore interface - Automatic persistence of all PeerData fields including last_identified, ttl, and latmap - Factory functions for easy creation with different backends - Comprehensive test suite and usage examples

The implementation follows the same architectural pattern as go-libp2p’s pstoreds package, providing a robust foundation for long-running libp2p applications that need to maintain peer information across restarts. (#946)
Enhances the libp2p` stack with improved peer connection, relay routing, and discovery for resilient networking.

Voucher and Signature Verification - Implements voucher and signature verification in resources.py - Validates incoming relay vouchers and signatures to ensure proper authorization - Prevents misuse of relay resources through secure validation

Relay Selection Logic - Implements initial relay selection logic in transport.py - Uses basic selection strategies (first-available or round-robin) for relay dialing - Introduces sophisticated relay selection with scoring, latency-based metrics, and retry strategies

DHT-based Peer Discovery - Implements DHT-based peer discovery using the libp2p DHT - Enables dynamic location and connection to peers across the network

Relay Reservation and Maintenance - Implements reservation storage and refresh mechanism - Tracks active relay reservations and refreshes them before expiry - Supports long-lived relayed connections

Relay Multiaddr Handling - Adds /p2p-circuit/... addresses to peerstore for reconnects and discovery - Implements proper parsing and handling of relayed multiaddrs - Ensures correct validation and usage of /p2p-circuit/p2p/... paths during dialing

CircuitV2Listener Implementation - Implements run() method in CircuitV2Listener - Finalizes listener logic to support incoming relayed connections

Testing and Quality - Adds dedicated tests for voucher and signature verification - Includes tests for initial and advanced relay selection logic - Covers DHT-based peer discovery functionality - Tests reservation storage and refresh mechanisms - Validates relay multiaddr handling and parsing - Tests CircuitV2Listener functionality - Maintains 100% test coverage across all new features - Resolves all linting issues and adheres to code quality standards - Ensures no regressions in existing functionality (#996)
Introduced get_transport_addrs() method to BasicHost for retrieving raw transport addresses without the peer ID suffix. Refactored get_addrs() to utilize this new method, maintaining backward compatibility. (#1073)
Adds custom validator support and quorum-based value retrieval to the Kademlia DHT. (#1095)

Internal Changes - for py-libp2p Contributors

Enhanced QUIC Connection ID management with quinn-inspired improvements: - Added sequence number tracking for proper CID retirement ordering - Separated initial vs. established CID lookups for better packet routing - Improved fallback routing from O(n) to O(1) using reverse address mapping - Refactored Connection ID management into a dedicated ConnectionIDRegistry class

These changes improve robustness, performance, and alignment with proven QUIC implementations. (#1044)
Refactored QUIC Connection ID management into a dedicated ConnectionIDRegistry class, improving code organization and maintainability of the QUIC listener. (#1046)
Upgraded py-libp2p transport ping test to the latest standard. (#1086)
Updated py-multihash dependency from git repository to PyPI version 3.0.0. (#1102)

Miscellaneous Changes

#926, #1039

py-libp2p v0.4.0 (2025-11-05)

Bugfixes

Fix circuit relay hanging issue. (#767)
Fixed a typo in the negotiate_timeout parameter name. (#908)
Added IPv4 address validation for LIBP2P_BIND environment variable to prevent invalid addresses from causing runtime errors. Invalid addresses now fallback to the secure default of 127.0.0.1. (#964)
Fix type checker error with miniupnpc import by adding type ignore comment. (#1009)

Features

Adds the StreamState to the NetStream class to manage the state of network streams more effectively.

Stream State Management: - Implements comprehensive stream lifecycle tracking with states: INIT, OPEN, CLOSE_READ, CLOSE_WRITE, CLOSE_BOTH, RESET, ERROR - Provides state-based validation to prevent operations on invalid streams (e.g., write-after-close, read-after-reset) - Replaces lock-based state management with cooperative concurrency for better performance - Adds intelligent error handling that distinguishes between expected stream exceptions and truly unexpected errors

ERROR State Implementation: - Implements full ERROR state functionality with prevention, triggers, and recovery mechanisms - Adds is_operational() method to check if stream can perform I/O operations - Adds recover_from_error() method to attempt recovery from error state - Provides comprehensive error state validation across all stream operations

State Transition Summary and Monitoring: - Adds automatic state transition logging for debugging and monitoring - Implements get_state_transition_summary() method for operational status - Implements get_valid_transitions() method to show possible next states - Implements get_state_transition_documentation() for comprehensive state lifecycle info - Provides developer-friendly state transition visibility and debugging support

Testing and Quality: - Adds 13 dedicated tests for ERROR state functionality covering all scenarios - Adds 8 additional tests for state transition functionality - Maintains 100% test coverage with 876+ tests passing - Resolves all linting issues and maintains code quality standards - No regressions introduced - all existing functionality preserved

Adds the remove method to notify the Swarm that a stream has been removed. (#632)
Add NAT traversal via UPnP port mapping.
- Implements automatic port mapping through UPnP-enabled gateways
- Provides UpnpManager class for standalone UPnP operations
- Integrates UPnP support into BasicHost with enable_upnp=True parameter
- Includes comprehensive example demonstrating UPnP functionality
- Supports double-NAT detection and proper error handling
- Automatically cleans up port mappings on shutdown (#771)
Added GossipSub 1.2 protocol support to py-libp2p.
- Implements the /meshsub/1.2.0 protocol ID
- Adds support for IDONTWANT control messages for efficient bandwidth usage
- Maintains backward compatibility with previous GossipSub versions
- Exposes public get_message_id() method in PubSub class
- Includes comprehensive test coverage for new functionality (#806)
Add TLS transport support for libp2p.
- Implements TLS 1.3 transport with self-signed certificates
- Adds libp2p identity binding in X.509 extensions
- Supports peer ID verification through certificate chain
- Enables ALPN protocol negotiation for stream muxers
- Provides secure handshake and message encryption
- Compatible with other libp2p implementations
- Includes comprehensive test coverage (#831)
Circuit-Relay V2 now include signed-peer-records in protobuf schema for secure peer-relay and peer communication. (#848)
Implemented Gossipsub v1.1 peer scoring and signed peer records functionality.

This major update brings py-libp2p into compliance with the Gossipsub v1.1 specification, adding comprehensive peer scoring mechanisms and signed peer record validation for peer exchange (PX).

Key Features Added:
- Peer Scoring System: New PeerScorer class implementing weighted-decayed counters with P1-P4 topic-scoped metrics (time in mesh, first deliveries, mesh deliveries, invalid messages) and P5 global behavior penalty scoring.
- Score-Based Gates: Implemented publish acceptance, gossip emission, PX acceptance, and graylisting thresholds to control peer behavior based on their scores.
- Signed Peer Records: Enhanced peer exchange (PX) to validate and store signed peer records from PRUNE messages, ensuring peer ID matches and updating peerstore accordingly.
- Opportunistic Grafting: Added mesh management hooks that enable opportunistic grafting based on median mesh scores to improve network topology.
- Protocol Version Detection: Added supports_scoring() method to detect Gossipsub v1.1 capabilities and enable scoring features only for compatible peers.
- Observability: Comprehensive score statistics via get_score_stats() and get_all_peer_scores() methods for monitoring and debugging peer behavior.
- Heartbeat-Driven Decay: Automatic score decay during heartbeat intervals to ensure recent behavior is weighted more heavily than historical data.
The implementation maintains backward compatibility while providing production-ready scoring parameters with conservative defaults. All existing APIs continue to work unchanged, with scoring features activated automatically for Gossipsub v1.1 peers.

This addresses issue #871 and brings py-libp2p in line with other libp2p implementations for improved network resilience and attack resistance. (#872)
Added the libp2p-records module in reference with go-libp2p-record repo
- Added the NameSpaceValidator utils in libp2p/records
- Integrated the PubKey Validators with kad-dht ValueStore interfaces. (#890)
Added Rendezvous peer discovery module that enables namespace-based peer registration and discovery with automatic refresh capabilities for decentralized peer-to-peer networking. (#898)
Added Bitswap protocol implementation for peer-to-peer file sharing with Merkle DAG structure and content addressing. (#980)
Implemented timeout enforcement for MplexStream deadline functionality.

The MplexStream class now properly enforces read and write deadlines using trio.fail_after(), preventing operations from hanging indefinitely. The set_deadline(), set_read_deadline(), and set_write_deadline() methods now include input validation and return meaningful boolean values. TimeoutError exceptions are raised when operations exceed their deadlines.

This addresses the issue where deadline methods existed but were not actually enforced, improving reliability and preventing resource leaks in production applications. (#984)

Internal Changes - for py-libp2p Contributors

Added timeouts to CI/CD pipeline to prevent hanging tests.
- Added 60-minute job timeout to GitHub Actions workflow
- Added 20-minute pytest timeouts to tox.ini for all test environments
- Updated Makefile test command with 20-minute timeout
- Prevents tests from hanging indefinitely in CI/CD (#977)

Performance Improvements

Migrated CI/CD pipeline from pip to uv for improved build performance and faster dependency resolution.

Performance Improvements: - Windows wheel tests: 60%+ faster package building - Linux lint tests: 14% average improvement - Linux interop tests: 6% average improvement - Overall CI/CD pipeline: significantly faster execution

Technical Changes: - Updated GitHub Actions workflows to use uv instead of pip - Modified tox.ini to use uv for package installation - Updated scripts to use uv commands - Maintained full compatibility with existing test environments (#997)

py-libp2p v0.3.0 (2025-09-25)

Breaking Changes

identify protocol use now prefix-length messages by default. use use_varint_format param for old raw messages (#761)

Bugfixes

Improved type safety in get_mux() and get_protocols() by returning properly typed values instead of Any. Also updated identify.py and discovery.py to handle None values safely and compare protocols correctly. (#746)
fixed malformed PeerId in test_peerinfo (#757)
Fixed incorrect handling of raw protobuf format in identify protocol. The identify example now properly handles both raw and length-prefixed (varint) message formats, provides better error messages, and displays connection status with peer IDs. Replaced mock-based tests with comprehensive real network integration tests for both formats. (#778)
Fixed incorrect handling of raw protobuf format in identify push protocol. The identify push example now properly handles both raw and length-prefixed (varint) message formats, provides better error messages, and displays connection status with peer IDs. Replaced mock-based tests with comprehensive real network integration tests for both formats. (#784)
Recompiled protobufs that were out of date and added a make rule so that protobufs are always up to date. (#818)
Added multiselect type consistency in negotiate method. Updates all the usages of the method. (#837)
Fixed message id type inconsistency in handle ihave and message id parsing improvement in handle iwant in pubsub module. (#843)
Fix kbucket splitting in routing table when full. Routing table now maintains multiple kbuckets and properly distributes peers as specified by the Kademlia DHT protocol. (#846)
Fix multi-address listening bug in swarm.listen()
- Fix early return in swarm.listen() that prevented listening on all addresses
- Add comprehensive tests for multi-address listening functionality
- Ensure all available interfaces are properly bound and connectable (#863)
Fixed cross-platform path handling by replacing hardcoded OS-specific paths with standardized utilities in core modules and examples. (#886)
Exposed timeout method in muxer multistream and updated all the usage. Added testcases to verify that timeout value is passed correctly (#896)
enhancement: Add write lock to YamuxStream to prevent concurrent write race conditions
- Implements ReadWriteLock for YamuxStream write operations
- Prevents data corruption from concurrent write operations
- Read operations remain lock-free due to existing Yamux architecture
- Resolves race conditions identified in Issue #793 (#897)
Fix multiaddr dependency to use the last py-multiaddr commit hash to resolve installation issues (#927)
Fixed Windows CI/CD tests to use correct Python version instead of hardcoded Python 3.11. test 2 (#952)
Fix flaky test_find_node in kad_dht by eliminating race conditions and adding retry mechanism
- Enhanced dht_pair fixture to force peer discovery during setup, eliminating async race conditions
- Added retry mechanism with proper type annotations for additional resilience
- Added pytest-rerunfailures dependency and flaky test marker
- Resolves intermittent CI failures in tests/core/kad_dht/test_kad_dht.py::test_find_node (#956)

Improved Documentation

Improve error message under the function decode_uvarint_from_stream in libp2p/utils/varint.py file (#760)
Clarified the requirement for a trailing newline in newsfragments to pass lint checks. (#775)

Features

Added experimental WebSocket transport support with basic WS and WSS functionality. This includes:
- WebSocket transport implementation with trio-websocket backend
- Support for both WS (WebSocket) and WSS (WebSocket Secure) protocols
- Basic connection management and stream handling
- TLS configuration support for WSS connections
- Multiaddr parsing for WebSocket addresses
- Integration with libp2p host and peer discovery
Note: This is experimental functionality. Advanced features like proxy support, interop testing, and production examples are still in development. See https://github.com/libp2p/py-libp2p/discussions/937 for the complete roadmap of missing features. (#585)
Added Bootstrap peer discovery module that allows nodes to connect to predefined bootstrap peers for network discovery. (#711)
Add lock for read/write to avoid interleaving receiving messages in mplex_stream.py (#748)
Add logic to clear_peerdata method in peerstore (#750)
Added the Certified Addr-Book interface supported by Envelope and PeerRecord class. Integrated the signed-peer-record transfer in the identify/push protocols. (#753)
add length-prefixed support to identify protocol (#761)
Add QUIC transport support for faster, more efficient peer-to-peer connections with native stream multiplexing. (#763)
Added Thin Waist address validation utilities (with support for interface enumeration, optimal binding, and wildcard expansion). (#811)
KAD-DHT now include signed-peer-records in its protobuf message schema, for more secure peer-discovery. (#815)
Added Random Walk peer discovery module that enables random peer exploration for improved peer discovery. (#822)
Implement closed_stream notification in MyNotifee
- Add notify_closed_stream method to swarm notification system for proper stream lifecycle management
- Integrate remove_stream hook in SwarmConn to enable stream closure notifications
- Add comprehensive tests for closed_stream functionality in test_notify.py
- Enable stream lifecycle integration for proper cleanup and resource management (#826)
Add automatic peer dialing in bootstrap module using trio.Nursery. (#849)
Fix type for gossipsub_message_id for consistency and security (#859)
Enhanced Swarm networking with retry logic, exponential backoff, and multi-connection support. Added configurable retry mechanisms that automatically recover from transient connection failures using exponential backoff with jitter to prevent thundering herd problems. Introduced connection pooling that allows multiple concurrent connections per peer for improved performance and fault tolerance. Added load balancing across connections and automatic connection health management. All enhancements are fully backward compatible and can be configured through new RetryConfig and ConnectionConfig classes. (#874)
Updated all example scripts and core modules to use secure loopback addresses instead of wildcard addresses for network binding. The get_wildcard_address function and related logic now utilize all available interfaces safely, improving security and consistency across the codebase. (#885)
PubSub routers now include signed-peer-records in RPC messages for secure peer-info exchange. (#889)

Internal Changes - for py-libp2p Contributors

remove FIXME comment since it’s obsolete and 32-byte prefix support is there but not enabled by default (#592)
Add comprehensive tests for relay_discovery method in circuit_relay_v2 (#749)
[mplex] Add timeout and error handling during stream close (#752)
fixed a typecheck error using cast in peerinfo.py (#757)
Fix raw format reading in identify/push protocol and add comprehensive test coverage for both varint and raw formats (#761)
Pin py-multiaddr dependency to specific git commit db8124e2321f316d3b7d2733c7df11d6ad9c03e6 (#766)
Make TProtocol as Optional[TProtocol] to keep types consistent in py-libp2p/libp2p/protocol_muxer/multiselect.py (#770)
Replace the libp2p.peer.ID cache attributes with functools.cached_property functional decorator. (#772)
Yamux RawConnError Logging Refactor - Improved error handling and debug logging (#784)
Add Thin Waist address validation utilities and integrate into echo example
- Add libp2p/utils/address_validation.py with dynamic interface discovery
- Implement get_available_interfaces(), get_optimal_binding_address(), and expand_wildcard_address()
- Update echo example to use dynamic address discovery instead of hardcoded wildcard
- Add safe fallbacks for environments lacking Thin Waist support
- Temporarily disable IPv6 support due to libp2p handshake issues (re-enabled later; use LIBP2P_BIND_V6 to configure IPv6 bind address) (#811)
The TODO IK patterns in Noise has been deprecated in specs: https://github.com/libp2p/specs/tree/master/noise#handshake-pattern (#816)
Remove the already completed TODO tasks in Peerstore: TODO: Set up an async task for periodic peer-store cleanup for expired addresses and records. TODO: Make proper use of this function (#819)
Improved PubsubNotifee integration tests and added failure scenario coverage. (#855)
Remove unused upgrade_listener function from transport upgrader
- Remove unused upgrade_listener function from libp2p/transport/upgrader.py (Issue 2 from #726)
- Clean up unused imports related to the removed function
- Improve code maintainability by removing dead code (#883)
Replace magic numbers with named constants and enums for clarity and maintainability

Key Changes: - Introduced type-safe enums for better code clarity: - RelayRole(Flag) enum with HOP, STOP, CLIENT roles supporting bitwise combinations (e.g., RelayRole.HOP | RelayRole.STOP) - ReservationStatus(Enum) for reservation lifecycle management (ACTIVE, EXPIRED, REJECTED) - Replaced magic numbers with named constants throughout the codebase, improving code maintainability and eliminating hardcoded timeout values (15s, 30s, 10s) with descriptive constant names - Added comprehensive timeout configuration system with new TimeoutConfig dataclass supporting component-specific timeouts (discovery, protocol, DCUtR) - Enhanced configurability of RelayDiscovery, CircuitV2Protocol, and DCUtRProtocol constructors with optional timeout parameters - Improved architecture consistency with clean configuration flow across all circuit relay components - Backward Compatibility: All changes maintain full backward compatibility. Existing code continues to work unchanged while new timeout configuration options are available for users who need them. (#917)

Miscellaneous Changes

#934

Performance Improvements

Added throttling for async topic validators in validate_msg, enforcing a concurrency limit to prevent resource exhaustion under heavy load. (#755)

py-libp2p v0.2.9 (2025-07-09)

Breaking Changes

Reordered the arguments to upgrade_security to place is_initiator before peer_id, and made peer_id optional. This allows the method to reflect the fact that peer identity is not required for inbound connections. (#681)

Bugfixes

Add timeout wrappers in: 1. multiselect.py: negotiate function 2. multiselect_client.py: select_one_of , query_multistream_command functions to prevent indefinite hangs when a remote peer does not respond. (#696)
Align stream creation logic with yamux specification (#701)
Fixed an issue in Pubsub where async validators were not handled reliably under concurrency. Now uses a safe aggregator list for consistent behavior. (#702)

Features

Added support for Kademlia DHT in py-libp2p. (#579)
Limit concurrency in push_identify_to_peers to prevent resource congestion under high peer counts. (#621)
Store public key and peer ID in peerstore during handshake

Modified the InsecureTransport class to accept an optional peerstore parameter and updated the handshake process to store the received public key and peer ID in the peerstore when available.

Added test cases to verify: 1. The peerstore remains unchanged when handshake fails due to peer ID mismatch 2. The handshake correctly adds a public key to a peer ID that already exists in the peerstore but doesn’t have a public key yet (#631)
Fixed several flow-control and concurrency issues in the YamuxStream class. Previously, stress-testing revealed that transferring data over DEFAULT_WINDOW_SIZE would break the stream due to inconsistent window update handling and lock management. The fixes include:
- Removed sending of window updates during writes to maintain correct flow-control.
- Added proper timeout handling when releasing and acquiring locks to prevent concurrency errors.
- Corrected the read function to properly handle window updates for both read_until_EOF and read_n_bytes.
- Added event logging at send_window_updates and waiting_for_window_updates for better observability. (#639)
Added support for Multicast DNS in py-libp2p (#649)
Optimized pubsub publishing to send multiple topics in a single message instead of separate messages per topic. (#685)
Optimized pubsub message writing by implementing a write_msg() method that uses pre-allocated buffers and single write operations, improving performance by eliminating separate varint prefix encoding and write operations in FloodSub and GossipSub. (#687)
Added peer exchange and backoff logic as part of Gossipsub v1.1 upgrade (#690)

Internal Changes - for py-libp2p Contributors

Added sparse connect utility function to pubsub test utilities for creating test networks with configurable connectivity. (#679)
Added comprehensive tests for pubsub connection utility functions to verify degree limits are enforced, excess peers are handled correctly, and edge cases (degree=0, negative values, empty lists) are managed gracefully. (#707)
Added extra tests for identify push concurrency cap under high peer load (#708)

Miscellaneous Changes

#678, #684

py-libp2p v0.2.8 (2025-06-10)

Breaking Changes

The NetStream.state property is now async and requires await. Update any direct state access to use await stream.state. (#300)

Bugfixes

Added proper state management and resource cleanup to NetStream, fixing memory leaks and improved error handling. (#300)

Improved Documentation

Updated examples to automatically use random port, when -p flag is not given (#661)

Features

Allow passing listen_addrs to new_swarm to customize swarm listening behavior. (#616)
Feature: Support for sending ls command over multistream-select to list supported protocols from remote peer. This allows inspecting which protocol handlers a peer supports at runtime. (#622)
implement AsyncContextManager for IMuxedStream to support async with (#629)
feat: add method to compute time since last message published by a peer and remove fanout peers based on ttl. (#636)
implement blacklist management for pubsub.Pubsub with methods to get, add, remove, check, and clear blacklisted peer IDs. (#641)
fix: remove expired peers from peerstore based on TTL (#650)

Internal Changes - for py-libp2p Contributors

Modernizes several aspects of the project, notably using pyproject.toml for project info instead of setup.py, using ruff to replace several separate linting tools, and pyrefly in addition to mypy for typing. Also includes changes across the codebase to conform to new linting and typing rules. (#618)

Removals

Removes support for python 3.9 and updates some code conventions, notably using | operator in typing instead of Optional or Union (#618)

py-libp2p v0.2.7 (2025-05-22)

Bugfixes

handler() inside TCPListener.listen() does not catch exceptions thrown during handshaking steps (from Sawrm). These innocuous exceptions will become fatal and crash the process if not handled. (#586)

Improved Documentation

Fixed the contributing.rst file to include the Libp2p Discord Server Link. (#592)

Features

Added support for the Yamux stream multiplexer (/yamux/1.0.0) as the preferred option, retaining Mplex (/mplex/6.7.0) for backward compatibility. (#534)
added direct peers as part of gossipsub v1.1 upgrade. (#594)
Feature: Logging in py-libp2p via env vars (#608)
Added support for multiple-error formatting in the MultiError class. (#613)

py-libp2p v0.2.6 (2025-05-12)

Improved Documentation

Expand the Introduction section in the documentation with a detailed overview of Py-libp2p. (#560)

Features

Added identify-push protocol implementation and examples to demonstrate how peers can proactively push their identity information to other peers when it changes. (#552)
Added AutoNAT protocol (#561)

Internal Changes - for py-libp2p Contributors

Bumps dependency to protobuf>=6.30.1. (#576)
Removes old interop tests, creates placeholders for new ones, and turns on interop testing in CI. (#588)

py-libp2p v0.2.5 (2025-04-14)

Bugfixes

Fixed flaky test_simple_last_seen_cache by adding a retry loop for reliable expiry detection across platforms. (#558)

Improved Documentation

Added install and getting started documentation. (#559)

Features

Added a pub-sub example having gossipsub as the router to demonstrate how to use the pub-sub module in py-libp2p. (#515)
Added documentation on how to add examples to the libp2p package. (#550)
Added Windows-specific development setup instructions to docs/contributing.rst. (#559)

py-libp2p v0.2.4 (2025-03-27)

Bugfixes

Added Windows compatibility by using coincurve instead of fastecdsa on Windows platforms (#507)

py-libp2p v0.2.3 (2025-03-27)

Bugfixes

Fixed import path in the examples to use updated net_stream module path, resolving ModuleNotFoundError when running the examples. (#513)

Improved Documentation

Updates Feature Breakdown in README to more closely match the list of standard modules. (#498)
Adds detailed Sphinx-style docstrings to abc.py. (#535)

Features

Improved the implementation of the identify protocol and enhanced test coverage to ensure proper functionality and network layer address delegation. (#358)
Adds the ability to check connection status of a peer in the peerstore. (#420)
implemented timed_cache module which will allow to implement seen_ttl configurable param for pubsub and protocols extending it. (#518)
Added a maximum RSA key size limit of 4096 bits to prevent resource exhaustion attacks.Consolidated validation logic to use a single error message source and added tests to catch invalid key sizes (including negative values). (#523)
Added automated testing of demo applications as part of CI to prevent demos from breaking silently. Tests are located in tests/core/examples/test_examples.py. (#524)
Added an example implementation of the identify protocol to demonstrate its usage and help users understand how to properly integrate it into their libp2p applications. (#536)

Internal Changes - for py-libp2p Contributors

moved all interfaces to libp2p.abc along with all libp2p custom types to libp2p.custom_types. (#228)
moved libp2p/tools/factories to tests. (#503)
Fixes broken CI lint run, bumps pre-commit-hooks version to 5.0.0 and mdformat to 0.7.22. (#522)
Rebuilds protobufs with protoc v30.1. (#542)
Moves pubsub testing tools from libp2p.tools and factories from tests to tests.utils. (#543)

py-libp2p v0.2.2 (2025-02-20)

Bugfixes

- This fix issue #492 adding a missing break statement that lowers GIL usage from 99% to 0%-2%. (#492)

Features

Create entry points for demos to be run directly from installed package (#490)
Merge template, adding python 3.13 to CI checks. (#496)

Internal Changes - for py-libp2p Contributors

Drop CI runs for python 3.8, run pyupgrade to bring code up to python 3.9. (#497)
Rename typing.py to custom_types.py for clarity. (#500)

py-libp2p v0.2.1 (2024-12-20)

Bugfixes

Added missing check to reject messages claiming to be from ourselves but not locally published in pubsub’s push_msg function (#413)
Added missing check in add_addrs function for duplicate addresses in peerdata (#485)

Improved Documentation

added missing details of params in IPubsubRouter (#486)

Features

Added PingService class in host/ping.py which can be used to initiate ping requests to peers and added tests for the same (#344)
Added get_connected_peers method in class IHost which can be used to get a list of peer ids of currently connected peers (#419)

Internal Changes - for py-libp2p Contributors

Update sphinx_rtd_theme options and drop pdf build of docs (#481)
Update trio package version dependency (#482)

py-libp2p v0.2.0 (2024-07-09)

Breaking Changes

Drop support for python<3.8 (#447)
Drop dep for unmaintained async-service and copy relevant functions into a local tool of the same name (#467)

Improved Documentation

Move contributing and history info from README to docs (#454)
Display example usage and full code in docs (#466)

Features

Add basic support for python3.8, 3.9, 3.10, 3.11, 3.12 (#447)

Internal Changes - for py-libp2p Contributors

Merge updates from ethereum python project template, including using pre-commit for linting, change name of master branch to main, lots of linting changes (#447)
Fix docs CI, drop bumpversion for bump-my-version, reorg tests (#454)
Turn mypy checks on and remove async_generator dependency (#464)
Convert KeyType enum to use protobuf.KeyType options rather than ints, rebuild protobufs to include ECC_P256 (#465)
Bump to mypy==1.10.0, run pre-commit local hook instead of mirrors-mypy (#472)
Bump protobufs dep to >=5.27.2 and rebuild protobuf definition with protoc==27.2 (#473)

Removals

Drop async-exit-stack dep, as of py37 can import AsyncExitStack from contextlib, also open pynacl dep to bottom pin only (#468)

libp2p v0.1.5 (2020-03-25)

Features

Dial all multiaddrs stored for a peer when attempting to connect (not just the first one in the peer store). (#386)
Migrate transport stack to trio-compatible code. Merge in #404. (#396)
Migrate network stack to trio-compatible code. Merge in #404. (#397)
Migrate host, peer and protocols stacks to trio-compatible code. Merge in #404. (#398)
Migrate muxer and security transport stacks to trio-compatible code. Merge in #404. (#399)
Migrate pubsub stack to trio-compatible code. Merge in #404. (#400)
Fix interop tests w/ new trio-style code. Merge in #404. (#401)
Fix remainder of test code w/ new trio-style code. Merge in #404. (#402)
Add initial infrastructure for noise security transport. (#405)
Add PatternXX of noise security transport. (#406)
The msg_id in a pubsub message is now configurable by the user of the library. (#410)

Bugfixes

Use sha256 when calculating a peer’s ID from their public key in Kademlia DHTs. (#385)
Store peer ids in set instead of list and check if peer id exists in dict before accessing to prevent KeyError. (#387)
Do not close a connection if it has been reset. (#394)

Internal Changes - for py-libp2p Contributors

Add support for fastecdsa on windows (and thereby supporting windows installation via pip) (#380)
Prefer f-string style formatting everywhere except logging statements. (#389)
Mark lru dependency as third-party to fix a windows inconsistency. (#392)
Bump multiaddr dependency to version 0.0.9 so that multiaddr objects are hashable. (#393)
Remove incremental mode of mypy to disable some warnings. (#403)

libp2p v0.1.4 (2019-12-12)

Features

Added support for Python 3.6 (#372)
Add signing and verification to pubsub (#362)

Internal Changes - for py-libp2p Contributors

Refactor and cleanup gossipsub (#373)

libp2p v0.1.3 (2019-11-27)

Bugfixes

Handle Stream* errors (like StreamClosed) during calls to stream.write() and stream.read() (#350)
Relax the protobuf dependency to play nicely with other libraries. It was pinned to 3.9.0, and now permits v3.10 up to (but not including) v4. (#354)
Fixes KeyError when peer in a stream accidentally closes and resets the stream, because handlers for both will try to del streams[stream_id] without checking if the entry still exists. (#355)

Improved Documentation

Use Sphinx & autodoc to generate docs, now available on py-libp2p.readthedocs.io (#318)

Internal Changes - for py-libp2p Contributors

Added Makefile target to test a packaged version of libp2p before release. (#353)
Move helper tools from tests/ to libp2p/tools/, and some mildly-related cleanups. (#356)

Miscellaneous changes

#357

v0.1.2

Welcome to the great beyond, where changes were not tracked by release…