Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps)!: use iota-sdk and remove dependency causing security alert #1247

Merged
merged 9 commits into from
Sep 12, 2023
Merged
Show file tree
Hide file tree
Changes from 8 commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2,008 changes: 1,381 additions & 627 deletions Cargo.lock

Large diffs are not rendered by default.

22 changes: 10 additions & 12 deletions Cargo.toml
Original file line number Diff line number Diff line change
Expand Up @@ -32,10 +32,10 @@ eyre = { version = "0.6", default-features = false, features = [ "track-caller",
futures = { version = "0.3", default-features = false }
humantime = { version = "2.1.0", default-features = false }
humantime-serde = { version = "1.1", default-features = false }
iota-crypto = { version = "0.17", default-features = false, features = [ "blake2b" ] }
iota-types = { version = "1.0.0-rc.7", default-features = false, features = [ "api", "block", "std" ] }
iota-crypto = { version = "0.23", default-features = false, features = [ "blake2b", "ed25519", "slip10", "bip39-en" ] }
iota-sdk = { version = "1.0", default-features = false, features = [ "std", "serde" ] }
mongodb = { version = "2.4", default-features = false, features = [ "tokio-runtime" ] }
packable = { version = "0.7", default-features = false }
packable = { version = "0.8", default-features = false }
pin-project = { version = "1.0", default-features = false }
prefix-hex = { version = "0.7.0", default-features = false, features = [ "primitive-types", "std" ] }
primitive-types = { version = "0.12", default-features = false }
Expand All @@ -54,30 +54,29 @@ uuid = { version = "1.3", default-features = false, features = [ "v4" ] }

# Optional
chrono = { version = "0.4", default-features = false, features = [ "std" ], optional = true }
influxdb = { version = "0.5", default-features = false, features = [ "use-serde", "reqwest-client-rustls", "derive" ], optional = true }
influxdb = { version = "0.7", default-features = false, features = [ "use-serde", "reqwest-client-rustls", "derive" ], optional = true }

# API
auth-helper = { version = "0.3", default-features = false, optional = true }
axum = { version = "0.5", default-features = false, features = [ "http1", "json", "query", "original-uri", "headers" ], optional = true }
ed25519 = { version = "2.0", default-features = false, features = [ "alloc", "pkcs8", "pem" ], optional = true }
ed25519-dalek = { version = "1.0", default-features = false, features = [ "u64_backend" ], optional = true }
ed25519-zebra = { version = "4.0", default-features = false, features = [ "std", "pkcs8", "pem" ], optional = true }
hex = { version = "0.4", default-features = false, optional = true }
hyper = { version = "0.14", default-features = false, features = [ "server", "tcp", "stream" ], optional = true }
rand = { version = "0.8", default-features = false, features = [ "std" ], optional = true }
regex = { version = "1.7", default-features = false, features = [ "std" ], optional = true }
rust-argon2 = { version = "1.0.0", default-features = false, optional = true }
rust-argon2 = { version = "2.0.0", default-features = false, optional = true }
serde_urlencoded = { version = "0.7", default-features = false, optional = true }
tower = { version = "0.4", default-features = false, optional = true }
tower-http = { version = "0.4", default-features = false, features = [ "cors", "catch-panic", "trace" ], optional = true }
zeroize = { version = "1.5", default-features = false, features = [ "std" ], optional = true }
zeroize = { version = "1.5", default-features = false, features = [ "std", "zeroize_derive" ], optional = true }

# INX
inx = { version = "1.0.0-beta.8", default-features = false, optional = true }
tonic = { version = "0.8", default-features = false, optional = true }

[dev-dependencies]
bincode = { version = "1.3", default-features = false }
iota-types = { version = "1.0.0-rc.7", default-features = false, features = [ "api", "block", "std", "rand" ] }
iota-sdk = { version = "1.0", default-features = false, features = [ "std", "serde", "rand" ] }
rand = { version = "0.8", default-features = false, features = [ "std" ] }
ron = { version = "0.8", default-features = false }
yazi = { version = "0.1", default-features = false }
Expand All @@ -96,8 +95,7 @@ analytics = [
api = [
"dep:auth-helper",
"dep:axum",
"dep:ed25519",
"dep:ed25519-dalek",
"dep:ed25519-zebra",
"dep:hex",
"derive_more/from",
"dep:hyper",
Expand All @@ -124,7 +122,7 @@ poi = [
"api",
]
rand = [
"iota-types/rand",
"iota-sdk/rand",
]

[profile.production]
Expand Down
13 changes: 6 additions & 7 deletions src/analytics/ledger/ledger_size.rs
Original file line number Diff line number Diff line change
@@ -1,6 +1,8 @@
// Copyright 2023 IOTA Stiftung
// SPDX-License-Identifier: Apache-2.0

use iota_sdk::types::block::output::Rent;

use super::*;
use crate::model::{ledger::RentStructureBytes, ProtocolParameters, TryFromWithContext};

Expand All @@ -11,16 +13,13 @@ trait LedgerSize {
impl LedgerSize for Output {
fn ledger_size(&self, protocol_params: &ProtocolParameters) -> LedgerSizeMeasurement {
// Unwrap: acceptable risk
let protocol_params = iota_types::block::protocol::ProtocolParameters::try_from(protocol_params.clone())
let protocol_params = iota_sdk::types::block::protocol::ProtocolParameters::try_from(protocol_params.clone())
.expect("protocol parameters conversion error");
let output = iota_types::block::output::Output::try_from_with_context(&protocol_params, self.clone()).unwrap();
let output =
iota_sdk::types::block::output::Output::try_from_with_context(&protocol_params, self.clone()).unwrap();
let rent_bytes = RentStructureBytes::compute(&output);
LedgerSizeMeasurement {
total_storage_deposit_amount: iota_types::block::output::Rent::rent_cost(
&output,
protocol_params.rent_structure(),
)
.into(),
total_storage_deposit_amount: Rent::rent_cost(&output, protocol_params.rent_structure()).into(),
total_key_bytes: rent_bytes.num_key_bytes,
total_data_bytes: rent_bytes.num_data_bytes,
}
Expand Down
27 changes: 11 additions & 16 deletions src/analytics/ledger/mod.rs
Original file line number Diff line number Diff line change
Expand Up @@ -80,14 +80,14 @@ mod test {

fn rand_output_with_amount(amount: TokenAmount) -> Output {
// We use `BasicOutput`s in the genesis.
let mut output = BasicOutput::rand(&iota_types::block::protocol::protocol_parameters());
let mut output = BasicOutput::rand(&iota_sdk::types::block::protocol::protocol_parameters());
output.amount = amount;
Output::Basic(output)
}

#[test]
fn test_claiming() {
let protocol_params = iota_types::block::protocol::protocol_parameters();
let protocol_params = iota_sdk::types::block::protocol::protocol_parameters();

// All the unclaimed tokens
let ledger_state = (1u32..=5)
Expand Down Expand Up @@ -170,7 +170,7 @@ mod test {

#[test]
fn test_alias_output_activity() {
let protocol_params = iota_types::block::protocol::protocol_parameters();
let protocol_params = iota_sdk::types::block::protocol::protocol_parameters();

// The id of the spending transaction.
let transaction_id = TransactionId::rand();
Expand Down Expand Up @@ -275,7 +275,7 @@ mod test {

#[test]
fn test_nft_output_activity() {
let protocol_params = iota_types::block::protocol::protocol_parameters();
let protocol_params = iota_sdk::types::block::protocol::protocol_parameters();

// The id of the spending transaction.
let transaction_id = TransactionId::rand();
Expand Down Expand Up @@ -434,28 +434,23 @@ mod test {
assert_eq!(output_activity_measurement.nft.destroyed_count, 0);
}

fn rand_output_with_address_and_amount(
address: Address,
amount: u64,
ctx: &iota_types::block::protocol::ProtocolParameters,
) -> Output {
use iota_types::block::{
fn rand_output_with_address_and_amount(address: Address, amount: u64) -> Output {
use iota_sdk::types::block::{
address::Address,
output::{unlock_condition::AddressUnlockCondition, BasicOutput},
rand::output::feature::rand_allowed_features,
};
let output = BasicOutput::build_with_amount(amount)
.unwrap()
.with_features(rand_allowed_features(BasicOutput::ALLOWED_FEATURES))
.add_unlock_condition(AddressUnlockCondition::from(Address::from(address)).into())
.finish(ctx.token_supply())
.add_unlock_condition(AddressUnlockCondition::from(Address::from(address)))
.finish()
.unwrap();
Output::Basic(output.into())
}

#[test]
fn test_base_tokens() {
let protocol_params = iota_types::block::protocol::protocol_parameters();
let protocol_params = iota_sdk::types::block::protocol::protocol_parameters();

let address_1 = Address::rand_ed25519();
let address_2 = Address::rand_ed25519();
Expand Down Expand Up @@ -483,7 +478,7 @@ mod test {
num_key_bytes: 0,
num_data_bytes: 100,
},
output: rand_output_with_address_and_amount(address, amount, &protocol_params),
output: rand_output_with_address_and_amount(address, amount),
block_id: BlockId::rand(),
booked: milestone,
})
Expand All @@ -495,7 +490,7 @@ mod test {
num_key_bytes: 0,
num_data_bytes: 100,
},
output: rand_output_with_address_and_amount(address, amount, &protocol_params),
output: rand_output_with_address_and_amount(address, amount),
block_id: BlockId::rand(),
booked: milestone,
};
Expand Down
2 changes: 1 addition & 1 deletion src/analytics/ledger/transaction_size.rs
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@ impl TransactionSizeBuckets {

/// Gets an enumerated iterator over the single buckets.
pub(crate) fn single_buckets(&self) -> impl Iterator<Item = (usize, usize)> {
(1..8).zip(self.single.into_iter())
(1..8).zip(self.single)
}
}

Expand Down
2 changes: 1 addition & 1 deletion src/analytics/mod.rs
Original file line number Diff line number Diff line change
Expand Up @@ -675,7 +675,7 @@ mod test {
fn from(value: BsonBlockData) -> Self {
Self {
block_id: value.block_id,
block: iota_types::block::Block::unpack_unverified(value.raw.clone())
block: iota_sdk::types::block::Block::unpack_unverified(value.raw.clone())
.unwrap()
.into(),
raw: value.raw,
Expand Down
4 changes: 2 additions & 2 deletions src/analytics/tangle/mod.rs
Original file line number Diff line number Diff line change
Expand Up @@ -32,7 +32,7 @@ mod test {

#[test]
fn test_block_analytics() {
let protocol_params = iota_types::block::protocol::protocol_parameters();
let protocol_params = iota_sdk::types::block::protocol::protocol_parameters();

let blocks = vec![
Block::rand_treasury_transaction(&protocol_params),
Expand All @@ -48,7 +48,7 @@ mod test {
BlockData {
block_id: BlockId::rand(),
block,
raw: iota_types::block::rand::bytes::rand_bytes((i + 1) * 100),
raw: iota_sdk::types::block::rand::bytes::rand_bytes((i + 1) * 100),
metadata: BlockMetadata {
parents,
is_solid: true,
Expand Down
5 changes: 1 addition & 4 deletions src/bin/inx-chronicle/api/config.rs
Original file line number Diff line number Diff line change
Expand Up @@ -82,9 +82,7 @@ impl TryFrom<ApiConfig> for ApiConfigData {
config.jwt_password.as_bytes(),
config.jwt_salt.as_bytes(),
&Into::into(&JwtArgonConfig::default()),
)
// TODO: Replace this once we switch to a better error lib
.expect("invalid JWT config"),
)?,
jwt_password_salt: config.jwt_salt,
jwt_secret_key: match &config.jwt_identity_file {
Some(path) => SecretKey::from_file(path)?,
Expand Down Expand Up @@ -200,7 +198,6 @@ impl<'a> From<&'a JwtArgonConfig> for argon2::Config<'a> {
lanes: val.parallelism,
mem_cost: val.mem_cost,
secret: &[],
thread_mode: Default::default(),
time_cost: val.iterations,
variant: val.variant,
version: val.version,
Expand Down
8 changes: 4 additions & 4 deletions src/bin/inx-chronicle/api/core/responses.rs
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
// Copyright 2022 IOTA Stiftung
// SPDX-License-Identifier: Apache-2.0

use iota_types::{api::core::response as iota, block::protocol::dto::ProtocolParametersDto};
use iota_sdk::types::{api::core::response as iota, block::protocol::ProtocolParameters};
use serde::{Deserialize, Serialize};

use crate::api::responses::impl_success_response;
Expand All @@ -13,14 +13,14 @@ pub struct InfoResponse {
pub name: String,
pub version: String,
pub status: iota::StatusResponse,
pub protocol: ProtocolParametersDto,
pub protocol: ProtocolParameters,
pub base_token: iota::BaseTokenResponse,
}

impl_success_response!(InfoResponse);

/// A wrapper struct that allows us to implement [`IntoResponse`](axum::response::IntoResponse) for the foreign
/// responses from [`iota_types`](iota_types::api::core::response).
/// responses from [`iota_types`](iota_sdk::types::api::core::response).
#[derive(Clone, Debug, Serialize, derive_more::From)]
pub struct IotaResponse<T: Serialize>(T);

Expand All @@ -31,7 +31,7 @@ impl<T: Serialize> axum::response::IntoResponse for IotaResponse<T> {
}

/// A wrapper struct that allows us to implement [`IntoResponse`](axum::response::IntoResponse) for the foreign
/// raw responses from [`iota_types`](iota_types::api::core::response).
/// raw responses from [`iota_types`](iota_sdk::types::api::core::response).
#[derive(Clone, Debug, Serialize, Deserialize)]
#[serde(untagged)]
pub enum IotaRawResponse<T: Serialize> {
Expand Down
Loading
Loading