RUSTSEC-2021-0076 bump libsecp256k1 (#9391)

mirror of https://github.com/pezkuwichain/pezkuwi-subxt.git synced 2026-05-29 20:31:04 +00:00

* RUSTSEC-2021-0076 bump libsecp256k1

libsecp256k1 allows overflowing signatures
https://rustsec.org/advisories/RUSTSEC-2021-0076

Changes were made to conform to libsecp256k1 version differences.

Closes #9356

* parse_standard_slice() -> parse_overflowing_slice()

* Added v2 host function for ecdsa_verify

* Add feature tag over helpers

* Added ecdsa_verify v2 to test runner

* PR feedback

- Spaces -> tabs
- renamed two helper functions

* Fixed imports after rebasing

* Bump rest of libsecp256k1 (and libp2p)

libp2p also uses libsecp256k1 so it is required to be bumped too, along
with all the version difference changes.

* Add version2 for ecdsa pubkey recovery

* libp2p rebase master fixes

* Fix test panic when non Behaviour event is returned

* Update bin/node/browser-testing/Cargo.toml

* Update primitives/core/src/ecdsa.rs

* Update primitives/core/src/ecdsa.rs

* Update Cargo.lock

Co-authored-by: Bastian Köcher <bkchr@users.noreply.github.com>

This commit is contained in:

Trevor Arjeski

2021-08-16 17:17:10 +03:00

committed by

GitHub

parent 65a8b00f3b

commit d9f02296ab

26 changed files with 583 additions and 367 deletions

									
										substrate/utils/browser/Cargo.toml
									
		+1
		-1
	
												View File
												
				@@ -15,7 +15,7 @@ targets = ["x86_64-unknown-linux-gnu"]

				[dependencies]

				futures = "0.3.16"

				log = "0.4.8"

				libp2p-wasm-ext = { version = "0.28.1", features = ["websocket"] }

				libp2p-wasm-ext = { version = "0.29", features = ["websocket"] }

				console_error_panic_hook = "0.1.6"

				js-sys = "0.3.34"

				wasm-bindgen = "0.2.73"