Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(deps): update tiny_http requirement from 0.11 to 0.12 #538

Merged
merged 1 commit into from
Oct 7, 2022

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 7, 2022

Updates the requirements on tiny_http to permit the latest version.

Release notes

Sourced from tiny_http's releases.

0.12.0

  • Bumped the minimum compiler version tested by CI to 1.56 - this is necessary due to an increasing number of dependencies introducing Cargo manifest features only supported on newer versions of Rust.

  • Add support for UNIX sockets Thanks to @​ColonelThirtyTwo for adding support for binding to UNIX sockets when creating a tiny-http server. This change makes a few small breaking API modifications, if you are constructing ServerConfig manually you will need to use the new ListenAddr type rather than directly supplying a net::SocketAddr. Likewise Server::server_addr() will now return an enum that can represent either a TCP socket or a UNIX socket.

    Finally Request::remote_addr() now returns an Option<&SocketAddr> as UNIX sockets don't ever have a remote host.

  • Reduce required dependencies by switching to httpdate @​esheppa replaced our internal HTTPDate type with the httpdate library (used extensively in the community by Hyper, Tokio and others) which reduces our baseline dependency tree from 18 crates to 5!

  • TestRequest::path no longer has a 'static bound, allowing for fuzzers to generate test request paths at runtime.

  • Unpinned zeroize so it can float around any stable ^1 version.

New Contributors

Full Changelog: tiny-http/tiny-http@0.11.0...0.12.0

Changelog

Sourced from tiny_http's changelog.

0.12.0

  • Bumped the minimum compiler version tested by CI to 1.56 - this is necessary due to an increasing number of dependencies introducing Cargo manifest features only supported on newer versions of Rust.

  • Add support for UNIX sockets

    Thanks to @​ColonelThirtyTwo for adding support for binding to UNIX sockets when creating a tiny-http server. This change makes a few small breaking API modifications, if you are constructing ServerConfig manually you will need to use the new ListenAddr type rather than directly supplying a net::SocketAddr. Likewise Server::server_addr() will now return an enum that can represent either a TCP socket or a UNIX socket.

    Finally Request::remote_addr() now returns an Option<&SocketAddr> as UNIX sockets don't ever have a remote host.

  • Reduce required dependencies by switching to httpdate

    @​esheppa replaced our internal HTTPDate type with the httpdate library (used extensively in the community by Hyper, Tokio and others) which reduces our baseline dependency tree from 18 crates to 5!

  • TestRequest::path no longer has a 'static bound, allowing for fuzzers to generate test request paths at runtime.

  • Unpinned zeroize so it can float around any stable ^1 version.

0.11.0

  • Add support for Rustls

    Thanks to @​3xmblzj5 and @​travispaul for their help in implementing Rustls as a drop-in replacement for OpenSSL, you can now build tiny-http with TLS support without any external dependencies! OpenSSL will remain the default implementation if you just enable the ssl feature, but you are strongly encouraged to use ssl-rustls where possible!

  • Fix incorrect certificate chain loading

    Fix a longstanding bug where we were only loading the first (i.e. the leaf) certificate from any PEM file supplied by the user.

0.10.0

  • Replace chrono with time-rs

    chrono was only used to store and format DateTime into the slightly odd format required by RFC 7231, so to avoid the numerous RUSTSEC advisories generated by the localtime_r issue, we can just drop it entirely and switch to time-rs. Unfortunately this means we need to bump our minimum tested compiler version to 1.51, and as such this change requires a full minor release.

0.9.0

... (truncated)

Commits
  • 212b1c4 Prepare for 0.12.0 release
  • 87b00a8 Merge pull request #228 from esheppa/use-httpdate
  • c2a38ad remove unused url dependency, switch to httpdate
  • f0fce7e Remove the 'static requirement on TestRequest::path
  • dd9c8dd Use ^1 zeroize
  • b9d9e8a Update log dependency to 0.4.4
  • 789e1c1 Add support for UNIX sockets
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Updates the requirements on [tiny_http](https://github.com/tiny-http/tiny-http) to permit the latest version.
- [Release notes](https://github.com/tiny-http/tiny-http/releases)
- [Changelog](https://github.com/tiny-http/tiny-http/blob/master/CHANGELOG.md)
- [Commits](tiny-http/tiny-http@0.11.0...0.12.0)

---
updated-dependencies:
- dependency-name: tiny_http
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 7, 2022
@sunng87 sunng87 merged commit 4fd45e4 into master Oct 7, 2022
@dependabot dependabot bot deleted the dependabot/cargo/tiny_http-0.12 branch October 7, 2022 13:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant