Skip to content
This repository has been archived by the owner on Nov 6, 2020. It is now read-only.

[dependencies] bump rand 0.7 #11022

Merged
merged 26 commits into from
Oct 18, 2019
Merged

[dependencies] bump rand 0.7 #11022

merged 26 commits into from
Oct 18, 2019

Conversation

niklasad1
Copy link
Collaborator

@niklasad1 niklasad1 commented Sep 4, 2019

After upgrading ethereum-types to 0.8 which internally depends on rand 0.7 this PR tries the align we use rand 0.7 in all our crates in parity-ethereum

It is still some other crates that depend on earlier versions of rand which this doesn't fix.

@niklasad1
Copy link
Collaborator Author

I misread the vulnerability, should be backported to 0.6 so no rush I guess. Closing for now

@niklasad1 niklasad1 closed this Sep 4, 2019
@niklasad1 niklasad1 marked this pull request as ready for review October 16, 2019 20:20
@niklasad1 niklasad1 changed the title [WIP] bump rand 0.7 [dependencies] bump rand 0.7 Oct 16, 2019
@ordian ordian added A0-pleasereview 🤓 Pull request needs code review. M5-dependencies 🖇 Dependencies. labels Oct 17, 2019
@ordian ordian added this to the 2.7 milestone Oct 17, 2019
accounts/ethkey/src/random.rs Outdated Show resolved Hide resolved
@ordian ordian added A7-looksgoodtestsfail 🤖 Pull request is reviewed well, but cannot be merged due to tests failing. and removed A0-pleasereview 🤓 Pull request needs code review. labels Oct 17, 2019
`#11139` makes use a different `RNG/seed`, not `H64::random_using(&mut self.rand)`

This commit reverts the changed tests (the generated id by `Subscribers::next_id`)
@ordian ordian added A8-looksgood 🦄 Pull request is reviewed well. and removed A7-looksgoodtestsfail 🤖 Pull request is reviewed well, but cannot be merged due to tests failing. labels Oct 17, 2019
@debris debris merged commit 2d2513b into master Oct 18, 2019
@debris debris deleted the na-bump-rand branch October 18, 2019 13:12
dvdplm added a commit that referenced this pull request Oct 24, 2019
* master:
  Type annotation for next_key() matching of json filter options (#11192)
  Crypto primitives removed from ethkey (#11174)
  Made ecrecover implementation trait public (#11188)
  Remove unused macro_use. (#11191)
  [dependencies]: jsonrpc `14.0.1` (#11183)
  [receipt]: add `sender` & `receiver` to `RichReceipts` (#11179)
  [dependencies] bump rand 0.7 (#11022)
  [ethcore/builtin]: do not panic in blake2pricer on short input (#11180)
  TxPermissions ver 3: gas price & data (#11170)
  [ethash] chainspec validate `ecip1017EraRounds` non-zero (#11123)
  util Host: fix a double Read Lock bug in fn Host::session_readable() (#11175)
  ethcore client: fix a double Read Lock bug in fn Client::logs() (#11172)
  Aura: Report malice on sibling blocks from the same validator (#11160)
dvdplm added a commit that referenced this pull request Oct 24, 2019
* master:
  Pause pruning while snapshotting (#11178)
  Type annotation for next_key() matching of json filter options (#11192)
  Crypto primitives removed from ethkey (#11174)
  Made ecrecover implementation trait public (#11188)
  Remove unused macro_use. (#11191)
  [dependencies]: jsonrpc `14.0.1` (#11183)
  [receipt]: add `sender` & `receiver` to `RichReceipts` (#11179)
  [dependencies] bump rand 0.7 (#11022)
  [ethcore/builtin]: do not panic in blake2pricer on short input (#11180)
  TxPermissions ver 3: gas price & data (#11170)
  [ethash] chainspec validate `ecip1017EraRounds` non-zero (#11123)
  util Host: fix a double Read Lock bug in fn Host::session_readable() (#11175)
  ethcore client: fix a double Read Lock bug in fn Client::logs() (#11172)
  Aura: Report malice on sibling blocks from the same validator (#11160)
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
A8-looksgood 🦄 Pull request is reviewed well. M5-dependencies 🖇 Dependencies.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants