Remove dependency on rust-crypto

[survived]

Removes deprecated dependency on rust-crypto. The only thing is changed in the library is merkle tree support.

• Changed the lib providing merkle tree support: merkle-sha3 v0.1 → merkle v1
  (merkle-sha3 is abandoned)
• Merkle trees support is optional
  merkle crate depends on ring. Dependency on ring might be not desirable, so I made it optional. See feature merkle-tree.
• Changed the hash function used by merkle proofs: keccak256 → sha256
ring has no support of keccak256. This change means that any proofs generated by earlier versions of curv are not compatible with the latest curv.

[elichai]

idk, ring is quite big to take in just for sha256.
Maybe we should fork/implement one of the merkle libraries?
Or maybe use this? https://github.com/nervosnetwork/merkle-tree (it allows us to use whatever hash function we want)

[survived]

merkle-cbt looks fine to me! I changed the code to use this crate, now we have no dependency on ring! 🎉

But in favour of this dependency switching, I had to change merkle trees API, and proofs generated by previous curv still are not compatible with latest curv. But I think it's fine.

[elichai]

just want to note, that before we hashed only the first 32 bytes of the point and now we hash the full point (which is better)

[survived]

Ah you're right. That was strange.

[elichai]

I think enumerate() is more idiomatic

[elichai]

although from codegen standpoint(https://godbolt.org/z/3YKPqE6e6) this is better, and there's probably no way that there are more than 2^32 leaves here (although maybe assert that in create_tree)

[survived]

enumerate yields usize that then needs to be converted to u32 via cast expression n as u32, or conversion trait u32::try_from(n).unwrap(). I find zipping more pretty among all these options

[survived]

Yeah, I think there's no way number of leaves can overflow u32

[elichai]

LGTM