change(deps): Update dependencies that only appear in the lock file (#6217)

* Manually update duplicate dependency exceptions * Update the release checklist to check for missed dependency updates * Fix a clippy "unused result" lint * Run `cargo update` Output: ``` $ cargo update Updating crates.io index Updating addr2line v0.17.0 -> v0.19.0 Updating ahash v0.8.2 -> v0.8.3 Updating aho-corasick v0.7.18 -> v0.7.20 Updating anyhow v1.0.69 -> v1.0.70 Updating arrayref v0.3.6 -> v0.3.7 Updating async-stream v0.3.2 -> v0.3.4 Updating async-stream-impl v0.3.2 -> v0.3.4 Updating async-trait v0.1.52 -> v0.1.67 Updating axum v0.5.17 -> v0.6.12 Updating axum-core v0.2.9 -> v0.3.3 Updating backtrace v0.3.64 -> v0.3.67 Updating base64 v0.13.0 -> v0.13.1 Updating bit-set v0.5.2 -> v0.5.3 Removing block-buffer v0.7.3 Removing block-buffer v0.10.2 Adding block-buffer v0.10.4 Removing block-padding v0.1.5 Updating bls12_381 v0.7.0 -> v0.7.1 Updating bstr v0.2.17 -> v1.4.0 Updating byte-slice-cast v1.2.1 -> v1.2.2 Removing byte-tools v0.3.1 Updating bytemuck v1.8.0 -> v1.13.1 Updating cc v1.0.73 -> v1.0.79 Removing chunked_transfer v1.4.0 Updating cipher v0.4.3 -> v0.4.4 Updating clang-sys v1.3.1 -> v1.6.0 Updating clap v3.2.20 -> v3.2.23 Updating console v0.15.4 -> v0.15.5 Updating constant_time_eq v0.2.4 -> v0.2.5 Updating crossbeam-channel v0.5.4 -> v0.5.7 Updating crossbeam-deque v0.8.1 -> v0.8.3 Updating crossbeam-epoch v0.9.7 -> v0.9.14 Updating crossbeam-utils v0.8.7 -> v0.8.15 Adding cxx-build v1.0.93 Updating cxx-gen v0.7.74 -> v0.7.93 Updating darling v0.14.1 -> v0.14.4 Updating darling_core v0.14.1 -> v0.14.4 Updating darling_macro v0.14.1 -> v0.14.4 Removing digest v0.8.1 Removing digest v0.10.5 Adding digest v0.10.6 Updating dirs-sys v0.3.6 -> v0.3.7 Updating either v1.6.1 -> v1.8.1 Updating encoding_rs v0.8.30 -> v0.8.32 Updating enum-iterator v1.2.0 -> v1.4.0 Updating enum-iterator-derive v1.1.0 -> v1.2.0 Updating eyre v0.6.7 -> v0.6.8 Removing fake-simd v0.1.2 Updating fastrand v1.7.0 -> v1.9.0 Updating ff v0.12.0 -> v0.12.1 Updating fixedbitset v0.4.1 -> v0.4.2 Updating flate2 v1.0.22 -> v1.0.25 Updating form_urlencoded v1.0.1 -> v1.1.0 Removing generic-array v0.12.4 Removing generic-array v0.14.5 Adding generic-array v0.14.6 Updating gimli v0.26.1 -> v0.27.2 Updating glob v0.3.0 -> v0.3.1 Updating globset v0.4.8 -> v0.4.10 Updating h2 v0.3.11 -> v0.3.16 Updating hashbrown v0.12.1 -> v0.12.3 Updating hdrhistogram v7.5.0 -> v7.5.2 Updating heck v0.4.0 -> v0.4.1 Updating http v0.2.8 -> v0.2.9 Removing http-range-header v0.3.0 Updating hyper-rustls v0.23.0 -> v0.23.2 Updating iana-time-zone v0.1.46 -> v0.1.54 Adding iana-time-zone-haiku v0.1.1 Updating idna v0.2.3 -> v0.3.0 Updating io-lifetimes v1.0.4 -> v1.0.9 Updating ipnet v2.4.0 -> v2.7.1 Updating is-terminal v0.4.4 -> v0.4.5 Updating itoa v1.0.4 -> v1.0.6 Updating jobserver v0.1.24 -> v0.1.26 Updating js-sys v0.3.59 -> v0.3.61 Updating libc v0.2.139 -> v0.2.140 Updating libloading v0.7.3 -> v0.7.4 Updating libm v0.2.2 -> v0.2.6 Updating libz-sys v1.1.4 -> v1.1.8 Updating link-cplusplus v1.0.7 -> v1.0.8 Updating lock_api v0.4.6 -> v0.4.9 Removing maplit v1.0.2 Removing matches v0.1.9 Updating matchit v0.5.0 -> v0.7.0 Updating memoffset v0.6.5 -> v0.8.0 Updating mime v0.3.16 -> v0.3.17 Updating miniz_oxide v0.4.4 -> v0.6.2 Updating minreq v2.6.0 -> v2.7.0 Updating mio v0.8.4 -> v0.8.6 Updating net2 v0.2.37 -> v0.2.38 Updating nom v7.1.0 -> v7.1.3 Updating num-format v0.4.3 -> v0.4.4 Updating num-traits v0.2.14 -> v0.2.15 Updating object v0.27.1 -> v0.30.3 Removing opaque-debug v0.2.3 Updating openssl v0.10.38 -> v0.10.48 Adding openssl-macros v0.1.0 Updating openssl-sys v0.9.72 -> v0.9.83 Updating os_info v3.5.1 -> v3.7.0 Updating os_str_bytes v6.3.0 -> v6.5.0 Updating parity-scale-codec v3.1.2 -> v3.4.0 Updating parity-scale-codec-derive v3.1.2 -> v3.1.4 Updating parking_lot v0.12.0 -> v0.12.1 Removing parking_lot_core v0.8.5 Removing parking_lot_core v0.9.1 Adding parking_lot_core v0.8.6 Adding parking_lot_core v0.9.7 Updating pasta_curves v0.4.0 -> v0.4.1 Updating percent-encoding v2.1.0 -> v2.2.0 Updating pest v2.1.3 -> v2.5.6 Updating pest_derive v2.1.0 -> v2.5.6 Updating pest_generator v2.1.3 -> v2.5.6 Updating pest_meta v2.1.3 -> v2.5.6 Updating petgraph v0.6.0 -> v0.6.3 Updating pkg-config v0.3.24 -> v0.3.26 Updating plotters v0.3.1 -> v0.3.4 Updating plotters-backend v0.3.2 -> v0.3.4 Updating plotters-svg v0.3.1 -> v0.3.3 Updating portable-atomic v0.3.15 -> v0.3.19 Updating ppv-lite86 v0.2.16 -> v0.2.17 Updating prettyplease v0.1.9 -> v0.1.25 Updating proc-macro-crate v1.1.3 -> v1.3.1 Updating proc-macro2 v1.0.52 -> v1.0.53 Updating prost-build v0.11.1 -> v0.11.8 Updating prost-types v0.11.1 -> v0.11.8 Updating raw-cpuid v10.2.0 -> v10.7.0 Updating redox_syscall v0.2.11 -> v0.2.16 Updating redox_users v0.4.0 -> v0.4.3 Updating rgb v0.8.32 -> v0.8.36 Updating rustc-demangle v0.1.21 -> v0.1.22 Updating rustix v0.36.7 -> v0.36.11 Updating rustls v0.20.7 -> v0.20.8 Updating rustls-pemfile v1.0.0 -> v1.0.2 Updating rustversion v1.0.11 -> v1.0.12 Updating ryu v1.0.9 -> v1.0.13 Updating schannel v0.1.19 -> v0.1.21 Adding scratch v1.0.5 Updating security-framework v2.6.1 -> v2.8.2 Updating security-framework-sys v2.6.1 -> v2.8.0 Removing sha-1 v0.8.2 Adding sha2 v0.10.6 Updating signal-hook-registry v1.4.0 -> v1.4.1 Updating similar v2.1.0 -> v2.2.1 Updating slab v0.4.5 -> v0.4.8 Updating socket2 v0.4.7 -> v0.4.9 Removing syn v1.0.104 Removing syn v2.0.3 Adding syn v1.0.109 Adding syn v2.0.8 Updating sync_wrapper v0.1.1 -> v0.1.2 Updating termcolor v1.1.3 -> v1.2.0 Updating textwrap v0.15.0 -> v0.16.0 Updating thread_local v1.1.4 -> v1.1.7 Removing time v0.1.44 Removing time v0.3.17 Adding time v0.1.43 Adding time v0.3.20 Updating time-macros v0.2.6 -> v0.2.8 Updating tinyvec_macros v0.1.0 -> v0.1.1 Updating tokio-macros v1.7.0 -> v1.8.2 Updating tokio-native-tls v0.3.0 -> v0.3.1 Updating tokio-rustls v0.23.2 -> v0.23.4 Updating tokio-util v0.6.9 -> v0.6.10 Updating toml_edit v0.19.7 -> v0.19.8 Updating tonic v0.8.2 -> v0.8.3 Updating tonic-build v0.8.2 -> v0.8.4 Removing tower-http v0.3.4 Updating tower-layer v0.3.1 -> v0.3.2 Updating tower-service v0.3.1 -> v0.3.2 Updating try-lock v0.2.3 -> v0.2.4 Updating typenum v1.15.0 -> v1.16.0 Updating ucd-trie v0.1.3 -> v0.1.5 Updating unicode-bidi v0.3.7 -> v0.3.13 Updating unicode-ident v1.0.2 -> v1.0.8 Updating unicode-normalization v0.1.19 -> v0.1.22 Updating unicode-segmentation v1.9.0 -> v1.10.1 Updating unicode-width v0.1.9 -> v0.1.10 Updating unicode-xid v0.2.2 -> v0.2.4 Updating ureq v2.5.0 -> v2.6.2 Updating url v2.2.2 -> v2.3.1 Updating uuid v1.1.0 -> v1.3.0 Updating walkdir v2.3.2 -> v2.3.3 Updating wasi v0.10.0+wasi-snapshot-preview1 -> v0.10.2+wasi-snapshot-preview1 Updating wasm-bindgen v0.2.82 -> v0.2.84 Updating wasm-bindgen-backend v0.2.82 -> v0.2.84 Updating wasm-bindgen-futures v0.4.29 -> v0.4.34 Updating wasm-bindgen-macro v0.2.82 -> v0.2.84 Updating wasm-bindgen-macro-support v0.2.82 -> v0.2.84 Updating wasm-bindgen-shared v0.2.82 -> v0.2.84 Updating web-sys v0.3.56 -> v0.3.61 Updating webpki-roots v0.22.5 -> v0.22.6 Updating which v4.2.4 -> v4.4.0 Adding windows v0.46.0 Removing windows-sys v0.32.0 Removing windows-sys v0.36.1 Updating windows-targets v0.42.1 -> v0.42.2 Updating windows_aarch64_gnullvm v0.42.1 -> v0.42.2 Removing windows_aarch64_msvc v0.32.0 Removing windows_aarch64_msvc v0.36.1 Removing windows_aarch64_msvc v0.42.1 Adding windows_aarch64_msvc v0.42.2 Removing windows_i686_gnu v0.32.0 Removing windows_i686_gnu v0.36.1 Removing windows_i686_gnu v0.42.1 Adding windows_i686_gnu v0.42.2 Removing windows_i686_msvc v0.32.0 Removing windows_i686_msvc v0.36.1 Removing windows_i686_msvc v0.42.1 Adding windows_i686_msvc v0.42.2 Removing windows_x86_64_gnu v0.32.0 Removing windows_x86_64_gnu v0.36.1 Removing windows_x86_64_gnu v0.42.1 Adding windows_x86_64_gnu v0.42.2 Updating windows_x86_64_gnullvm v0.42.1 -> v0.42.2 Removing windows_x86_64_msvc v0.32.0 Removing windows_x86_64_msvc v0.36.1 Removing windows_x86_64_msvc v0.42.1 Adding windows_x86_64_msvc v0.42.2 Updating winnow v0.3.6 -> v0.4.0 Updating wyz v0.5.0 -> v0.5.1 Updating zeroize_derive v1.3.2 -> v1.3.3 ``` * Update deny.toml
2023-03-27 09:53:17 +10:00 · 2023-03-27 09:53:17 +10:00 · 8cf62b4a17
parent de546ff7d7
commit 8cf62b4a17
4 changed files with 633 additions and 753 deletions
--- a/.github/PULL_REQUEST_TEMPLATE/release-checklist.md
+++ b/.github/PULL_REQUEST_TEMPLATE/release-checklist.md
@ -85,6 +85,15 @@ With every release and for performance reasons, we want to update the Zebra chec
 To do this you will need a synchronized `zcashd` node. You can request help from other zebra team members to submit this PR if you can't make it yourself at the moment of the release.
 ## Missed Dependency Updates
 Sometimes `dependabot` misses some dependency updates, or we accidentally turned them off.
 Here's how we make sure we got everything:
 1. Run `cargo update` on the latest `main` branch, and keep the output
 2. If needed, update [deny.toml](https://github.com/ZcashFoundation/zebra/blob/main/book/src/dev/continuous-integration.md#fixing-duplicate-dependencies-in-check-denytoml-bans)
 3. Open a separate PR with the changes, including the output of `cargo update`
 ## Change Log
 **Important**: Any merge into `main` deletes any edits to the draft changelog.
@ -118,9 +127,10 @@ From "Keep a Changelog":
 ### Create the Release PR
-After you have the version increments, the updated checkpoints and the updated changelog:
+After you have the version increments, the updated checkpoints, any missed dependency updates,
 and the updated changelog:
- [ ] Make sure the PR with the new checkpoint hashes is already merged, or make it part of the changelog PR
+- [ ] Make sure the PRs with the new checkpoint hashes and missed dependencies are already merged
 - [ ] Push the version increments and the updated changelog into a branch
      (for example: `bump-v1.0.0-rc.0` - this needs to be different to the tag name)
 - [ ] Create a release PR by adding `&template=release-checklist.md` to the comparing url ([Example](https://github.com/ZcashFoundation/zebra/compare/v1.0.0-rc.0-release?expand=1&template=release-checklist.md)).
@ -152,7 +162,9 @@ After you have the version increments, the updated checkpoints and the updated c
      (You can ignore the full sync and `lightwalletd` tests, because they take about a day to run.)
 - [ ] [Publish the release to GitHub](https://github.com/ZcashFoundation/zebra/releases) by disabling 'pre-release', then clicking "Set as the latest release"
 - [ ] Wait until [the Docker images have been published](https://github.com/ZcashFoundation/zebra/actions/workflows/release-binaries.yml)
- [ ] Test the Docker image using `docker run --tty --interactive zfnd/zebra:1.0.0-rc.<version>` <!-- TODO: replace with `zfnd/zebra` when we release 1.0.0 -->
+- [ ] Test the Docker image using `docker run --tty --interactive zfnd/zebra:1.0.0-rc.<version>`,
      and put the output in a comment on the PR
      <!-- TODO: replace with `zfnd/zebra` when we release 1.0.0 -->
 - [ ] Turn off [Merge Freeze](https://www.mergefreeze.com/installations/3676/branches) for the whole repository
--- a/Cargo.lock
+++ b/Cargo.lock
--- a/deny.toml
+++ b/deny.toml
@ -46,12 +46,14 @@ skip-tree = [
    # ZF crates
-    # wait for zcash_script to upgrade
+    # wait for zcashd and zcash_script to upgrade
    # https://github.com/ZcashFoundation/zcash_script/pulls
    { name = "zcash_primitives", version = "=0.9.1" },
    { name = "sha2", version = "=0.9.9" },
    { name = "reddsa", version = "=0.3.0" },
    # wait for ed25519-zebra, indexmap, metrics-util, and metrics to upgrade
-    # ed25519-zebra/hashbrown: https://github.com/ZcashFoundation/ed25519-zebra/pull/63
+    # ed25519-zebra/hashbrown: https://github.com/ZcashFoundation/ed25519-zebra/pull/65
    { name = "ahash", version = "=0.7.6" },
    # ECC crates
@ -60,14 +62,13 @@ skip-tree = [
    { name = "cipher", version = "=0.3.0" },
    # wait for zcash_primitives to remove duplicated dependencies
    { name = "block-buffer", version = "=0.7.3" },
    { name = "block-buffer", version = "=0.9.0" },
    # wait for zcash_address to upgrade
    { name = "bech32", version = "=0.8.1"},
    # wait for zcash_proofs to upgrade `directories`
-    { name = "dirs-sys", version = "=0.3.6"},
+    { name = "dirs-sys", version = "=0.3.7"},
    # zebra-utils dependencies
@ -78,17 +79,14 @@ skip-tree = [
    # Test-only dependencies
    # wait for tokio-test -> tokio-stream to upgrade
-    { name = "tokio-util", version = "=0.6.9" },
+    { name = "tokio-util", version = "=0.6.10" },
    # wait for proptest-derive to upgrade proc-macro2 and syn
    { name = "unicode-xid", version = "=0.1.0"},
    # wait for insta to remove duplicated dependencies
    { name = "sha-1", version = "=0.8.2" },
    # wait for console-subscriber and tower to update hdrhistogram.
    # also wait for ron to update insta, and wait for tonic update.
-    { name = "base64", version = "=0.13.0" },
+    { name = "base64", version = "=0.13.1" },
    # Optional dependencies
@ -101,6 +99,11 @@ skip-tree = [
    # wait for elasticsearch to update base64, darling, rustc_version, serde_with
    { name = "elasticsearch", version = "=8.5.0-alpha.1" },
    # Unused dependencies
    # we don't support Windows at the moment (#3801)
    { name = "windows-sys", version = "=0.42.0" },
 ]
 # This section is considered when running `cargo deny check sources`.
--- a/zebra-test/tests/command.rs
+++ b/zebra-test/tests/command.rs
@ -504,8 +504,8 @@ fn failure_regex_matches_stdout_failure_message_wait_for_output() {
    std::thread::sleep(Duration::from_secs(1));
    // Wait with output should read all unread output to generate the error context,
-    // or the output should be read on drop.
+    // or the output should be read on drop. We don't care what the exact error is here.
-    child.wait_with_output().unwrap_err();
+    let _ = child.wait_with_output().unwrap_err();
 }
 /// Make sure failure regex iters detect when a child process prints a failure message to stdout,