Bump github.com/ethereum/go-ethereum from 1.16.8 to 1.17.3

[dependabot]

Bumps github.com/ethereum/go-ethereum from 1.16.8 to 1.17.3.

Release notes

Sourced from github.com/ethereum/go-ethereum's releases.

Enzymatic Injector (v1.17.3)

This is a maintenance release with continued progress on the Amsterdam fork implementation. It also introduces ETH/70, which is now live on the network.

ethereum/execution-apis#762reexec has been removed from the tracing config:

• memory: words are 0x-prefixed and padded to 32 bytes
• storage: keys and values are 0x-prefixed
• error: omitted when empty (previously serialized as "")

Geth

• Add retry mechanism for checkpoint init in blsync (#33966)
• Add subcommand for offline binary tree conversion (#33740)
• Add code exporter for db export (#34696)

Core

• Amsterdam fork updates:
  • Prerequisites of EIP-7928: Block-Level Access Lists (#34064, #34644, #34726, #34776, #34799, #33737)
  • Prerequisites of EIP-8037: State Creation Gas Cost Increase (#34691, #34712, #34841)
  • EIP-7976: Increase Calldata Floor Cost (#34748)
  • EIP-7981: Increase Access List Cost (#34755)
  • EIP-7610: Reject contract creation when storage is non-empty (#34718)
  • Update state tests (#34671)
• Implement stack arena (#33960)
• Implement EIP-7975: eth/70 partial block receipt lists (#33153)
• Prerequisites of snap/2 protocol (#34083, #34649, #34654, #34874)
• Implement history index pruner for path-mode archive nodes (#33999)
• Add Prague chain segment pruning point for Hoodi (#34714)
• Allow reorging head to parent within 32 blocks under ePBS (#34767)
• Stop serving chain segment requests when data is unavailable (#34787)
• Drop peers sending invalid bodies or receipts (#34745, #34870)
• Add kzg4844 cell-related functions (#34766)
• State database refactoring (#33102, #34700, #34763, #34724)
• Binary trie improvements (#34055, #34110, #34670, #34676, #34680, #34690, #34754, #34758, #34777, #34794)
• Merge EIP-4762 access events for all system calls (#34637)
• Reject duplicate layers in the path database (#34642)
• Omit empty slotNumber and fix block value collection in pre-Amsterdam engine API payloads (#34704)
• Include the operand in EIP-8024 error messages (#34635)
• Fix vmodule downgrades and propagate verbosity changes to derived loggers (#33111)
• Fix incorrect fsync ordering for index file truncation (#34728)
• Fix file descriptor leak in freezer error paths (#34735)
• Fix size calculation in path database (#34828)
• Fix gapped queue size cap in blobpool (#34831)
• Improve txpool pending concurrency by using read-only locking (#32924)
• Replace deprecated TypeMux with Feed (#32585)
• Continue blob retrieval when individual cell proof extraction fails (#34891)
• Use uint256 in core Message for faster gas calculations (#34934)

... (truncated)

Commits

• 117e067 version: release go-ethereum v1.17.3 stable (#34937)
• e1047b9 core: use uint256 in core.Message (#34934)
• 2f11dcc cmd/geth: respect --dev=false (#34920)
• 934a009 triedb/pathdb: fix layer 5 key range in storage iterator traversal test (#34883)
• 18becee appveyor.yml: remove appveyor configuration (#34720)
• f63c265 internal/download: close dst on io.Copy error (#34910)
• 7facf9c core/txpool: use cmp.Compare instead of subtraction (#34918)
• bcb68d2 p2p: handle return false from TCPEndpoint (#34916)
• 8581125 crypto: add hash length check in nocgo VerifySignature (#33839)
• 2ba9be9 build: upgrade -dlgo version to Go 1.25.10 (#34911)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 4 package(s) with unknown licenses.

See the Details below.

License Issues

go.mod

Package	Version	License	Issue Type
github.com/cenkalti/backoff/v5	5.0.3	Null	Unknown License
github.com/crate-crypto/go-eth-kzg	1.5.0	Null	Unknown License
github.com/ethereum/go-ethereum	1.17.3	Null	Unknown License
github.com/grpc-ecosystem/grpc-gateway/v2	2.27.7	Null	Unknown License

OpenSSF Scorecard

Package	Version	Score	Details
gomod/github.com/cenkalti/backoff/v5	5.0.3	Unknown	Unknown
gomod/github.com/crate-crypto/go-eth-kzg	1.5.0	Unknown	Unknown
gomod/github.com/ethereum/c-kzg-4844/v2	2.1.6	🟢 5.5	Details Check Score Reason Code-Review 🟢 6 Found 15/24 approved changesets -- score normalized to 6 Maintained ⚠️ 2 3 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 2 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 9 binaries present in source code Security-Policy ⚠️ 0 security policy file not detected Fuzzing 🟢 10 project is fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 6 dependency not pinned by hash detected -- score normalized to 6 Packaging 🟢 10 packaging workflow detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
gomod/github.com/ethereum/go-ethereum	1.17.3	Unknown	Unknown
gomod/github.com/grpc-ecosystem/grpc-gateway/v2	2.27.7	Unknown	Unknown
gomod/github.com/supranational/blst	0.3.16	🟢 5.8	Details Check Score Reason Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 9 security policy file detected Maintained 🟢 10 12 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions SAST 🟢 10 SAST tool detected: CodeQL Binary-Artifacts 🟢 10 no binaries found in the repo Fuzzing 🟢 10 project is fuzzed License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches
gomod/go.opentelemetry.io/otel/exporters/otlp/otlptrace	1.40.0	🟢 9.3	Details Check Score Reason Dependency-Update-Tool 🟢 10 update tool detected Maintained 🟢 10 30 commit(s) and 21 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 9 Found 9/10 approved changesets -- score normalized to 9 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Pinned-Dependencies 🟢 10 all dependencies are pinned CII-Best-Practices 🟢 5 badge detected: Passing License 🟢 10 license file detected Fuzzing 🟢 10 project is fuzzed SAST 🟢 10 SAST tool is run on all commits Signed-Releases 🟢 8 5 out of the last 5 releases have a total of 5 signed artifacts. Vulnerabilities 🟢 10 0 existing vulnerabilities detected Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected CI-Tests 🟢 10 29 out of 29 merged PRs checked by a CI test -- score normalized to 10 Contributors 🟢 10 project has 42 contributing companies or organizations
gomod/go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc	1.40.0	🟢 9.3	Details Check Score Reason Dependency-Update-Tool 🟢 10 update tool detected Maintained 🟢 10 30 commit(s) and 21 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 9 Found 9/10 approved changesets -- score normalized to 9 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Pinned-Dependencies 🟢 10 all dependencies are pinned CII-Best-Practices 🟢 5 badge detected: Passing License 🟢 10 license file detected Fuzzing 🟢 10 project is fuzzed SAST 🟢 10 SAST tool is run on all commits Signed-Releases 🟢 8 5 out of the last 5 releases have a total of 5 signed artifacts. Vulnerabilities 🟢 10 0 existing vulnerabilities detected Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Security-Policy 🟢 10 security policy file detected CI-Tests 🟢 10 29 out of 29 merged PRs checked by a CI test -- score normalized to 10 Contributors 🟢 10 project has 42 contributing companies or organizations

Scanned Files

• go.mod