Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade enough dependencies to upgrade to ring 0.17 #645

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Upgrade enough dependencies to upgrade to ring 0.17 #645

wants to merge 1 commit into from

Conversation

glandium
Copy link
Contributor

while limiting the amount of new and/or duplicate crates. ring 0.17 contains a build fix for arm64 windows.

@glandium @mystor
Upgrade enough dependencies to upgrade to ring 0.17
04d9441 
while limiting the amount of new and/or duplicate crates.
ring 0.17 contains a build fix for arm64 windows.
@mystor
Copy link
Collaborator

mystor commented Dec 20, 2024

Unfortunately this is currently faling vet due to a number of missing audits for various crates:

recommended audits for safe-to-deploy:
    Command                                       Publisher   Used By                                  Audit Size
    cargo vet diff sct 0.7.0 0.7.1                ctz         rustls                                   7 files changed, 76 insertions(+), 90 deletions(-)
    cargo vet diff typenum 1.16.0 1.17.0          paholg      generic-array                            13 files changed, 153 insertions(+), 94 deletions(-)
      NOTE: cargo vet import zcash would eliminate this
    cargo vet diff base64-stream 1.2.7 3.0.1      magiclen    cargo-vet                                6 files changed, 170 insertions(+), 141 deletions(-)
    cargo vet diff rustls 0.21.6 0.21.8           cpu         reqwest, hyper-rustls, and tokio-rustls  19 files changed, 255 insertions(+), 80 deletions(-)
    cargo vet diff rustls-pemfile 1.0.0 1.0.4     cpu         reqwest                                  15 files changed, 371 insertions(+), 93 deletions(-)
    cargo vet diff tokio-rustls 0.24.0 0.24.1     djc         reqwest and hyper-rustls                 10 files changed, 450 insertions(+), 20 deletions(-)
    cargo vet diff webpki 0.22.0 0.22.4           briansmith  webpki-roots                             14 files changed, 509 insertions(+), 91 deletions(-)
    cargo vet diff rustls-webpki 0.101.4 0.101.7  cpu         rustls                                   18 files changed, 651 insertions(+), 256 deletions(-)
    cargo vet diff hyper-rustls 0.23.0 0.24.2     djc         reqwest                                  21 files changed, 841 insertions(+), 385 deletions(-)
    cargo vet diff untrusted 0.7.1 0.9.0          briansmith  sct, ring, webpki, and rustls-webpki     16 files changed, 998 insertions(+), 404 deletions(-)
    cargo vet diff generic-array 0.14.6 1.1.1     novacrazy   base64-stream                            17 files changed, 2187 insertions(+), 937 deletions(-)
      NOTE: cargo vet import zcash would reduce this to a 3105-line diff
    cargo vet diff spin 0.5.2 0.9.4               zesterer    ring                                     15 files changed, 3249 insertions(+), 600 deletions(-)
    cargo vet diff ring 0.16.20 0.17.8            briansmith  sct, rustls, webpki, and rustls-webpki   409 files changed, 73287 insertions(+), 74665 deletions(-)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@glandium @mystor