Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the rust-dependencies group across 1 directory with 3 updates #316

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): bump the rust-dependencies group across 1 directory with 3 updates #316

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 1, 2025

Updates the requirements on vmm-sys-util, zerocopy and bincode to permit the latest version.
Updates vmm-sys-util to 0.13.0

Release notes

Sourced from vmm-sys-util's releases.

vmm-sys-util-v0.13.0

Changelog

v0.13.0

Added

  • [#230]: Introduce align_downwards! and align_upwards! macro to help address aligning, this implementation is faster than div_ceil way and more robust.
  • [#236]: Add a utility function for constructing an empty FamStructWrapper with a given header.

Changed

  • [#228]: Make Debug impl for FamStructWrapper<T> print out contents of the flexible array member. This causes Debug to only be implemented if T::Entry: Debug.

Removed

  • [#235]: Removed impl From<Vec<T>> for FamStructWrapper<T>, as this was unsound.
Changelog

Sourced from vmm-sys-util's changelog.

v0.13.0

Added

  • [#230]: Introduce align_downwards! and align_upwards! macro to help address aligning, this implementation is faster than div_ceil way and more robust.
  • [#236]: Add a utility function for constructing an empty FamStructWrapper with a given header.

Changed

  • [#228]: Make Debug impl for FamStructWrapper<T> print out contents of the flexible array member. This causes Debug to only be implemented if T::Entry: Debug.

Removed

  • [#235]: Removed impl From<Vec<T>> for FamStructWrapper<T>, as this was unsound.

v0.12.1

Changed

  • [#215]: Make as_mut_fam_struct() public and unsafe to let users modify fields of the header other than the length.

v0.12.0

Changed

  • Added all features to the generated docs.rs documentation.
  • Fixed a bug in serde implementation of FamStructWrapper which allowed out of bounds memory access from Rust-safe code. See the related GHSA here: GHSA-875g-mfp6-g7f9 for more information.

Fixed

  • Fixed ioctl_io*_nr macros expanding unhygenically, requiring for example the import of ioctl_ioc_nr! when using ioctl_iow_nr!.

v0.11.2

Changed

  • [#201] Updated SyscallReturnCode to accept any signed integer type.

v0.11.1

Changed

  • [#178]: Fixed a bug in

... (truncated)

Commits
  • 1d61067 chore: Prepare 0.13.0 release
  • 566f8c3 chore: Document #236 to CHANGELOG.md
  • e078a42 fam: add FamStructWrapper::from_header
  • e4aa208 chore: add changelog entry
  • b4a7e4c Add debug_asserts to FamStructWrapper::from_raw
  • b869a61 remove unsound impl From<Vec> for FamStructWrapper<T>
  • 995a420 build(deps): bump rust-vmm-ci from 09aef99 to 2d733b0
  • 529589f chore: appease clippy
  • f765e56 build(deps): bump rust-vmm-ci from 1150c47 to 09aef99
  • 0740cbe align: Update CHANGELOG.md
  • Additional commits viewable in compare view

Updates zerocopy to 0.8.24

Release notes

Sourced from zerocopy's releases.

v0.8.24

What's Changed

New Contributors

Full Changelog: google/zerocopy@v0.8.23...v0.8.24

Changelog

Sourced from zerocopy's changelog.

Changelog

Releases

We track releases and release notes using GitHub Releases.

Yanks and Regressions

0.2.2 through 0.2.8, 0.3.0 through 0.3.1, 0.4.0, 0.5.0, 0.6.0 through 0.6.5, 0.7.0 through 0.7.30

Security advisories for this bug have been published as RUSTSEC-2023-0074 and GHSA-3mv5-343c-w2qg.

In these versions, the Ref methods into_ref, into_mut, into_slice, and into_mut_slice were permitted in combination with the standard library cell::Ref and cell::RefMut types for Ref<B, T>'s B type parameter. These combinations are unsound, and may permit safe code to exhibit undefined behavior. Fixes have been published to each affected minor version which do not permit this code to compile.

See #716issue-716 for more details.

0.7.27, 0.7.28

These versions were briefly yanked due to a non-soundness regression reported in #672pull-672. After reconsidering our yanking policy in #679issue-679, we un-yanked these versions.

Commits

Updates bincode to 2.0.1

Release notes

Sourced from bincode's releases.

v2.0.1

What's Changed

New Contributors

Full Changelog: bincode-org/bincode@v2.0.0...v2.0.1

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the rust-dependencies group across 1 directory with…
bcecddb 
… 3 updates

Updates the requirements on [vmm-sys-util](https://github.com/rust-vmm/vmm-sys-util), [zerocopy](https://github.com/google/zerocopy) and [bincode](https://github.com/bincode-org/bincode) to permit the latest version.

Updates `vmm-sys-util` to 0.13.0
- [Release notes](https://github.com/rust-vmm/vmm-sys-util/releases)
- [Changelog](https://github.com/rust-vmm/vmm-sys-util/blob/main/CHANGELOG.md)
- [Commits](rust-vmm/vmm-sys-util@v0.12.1...v0.13.0)

Updates `zerocopy` to 0.8.24
- [Release notes](https://github.com/google/zerocopy/releases)
- [Changelog](https://github.com/google/zerocopy/blob/main/CHANGELOG.md)
- [Commits](google/zerocopy@v0.7.32...v0.8.24)

Updates `bincode` to 2.0.1
- [Release notes](https://github.com/bincode-org/bincode/releases)
- [Commits](bincode-org/bincode@v1.3.3...v2.0.1)

---
updated-dependencies:
- dependency-name: vmm-sys-util
  dependency-type: direct:production
  dependency-group: rust-dependencies
- dependency-name: zerocopy
  dependency-type: direct:production
  dependency-group: rust-dependencies
- dependency-name: bincode
  dependency-type: direct:production
  dependency-group: rust-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Apr 1, 2025
@RuoqingHe
Copy link
Member

Could we ask dependabot to ignore zerocopy in this PR 😂, I will bump it manually

@roypat
Copy link
Member

roypat commented Apr 1, 2025

Could we ask dependabot to ignore zerocopy in this PR 😂, I will bump it manually

o, thanks! It'll be an annoying one because they removed zerocopy support for unions, that's why I held off on it so far >.>

tbh, I'm also a bit concerned about the bincode update for cloud hypervisor's live update functionality. cc @rbradford

@RuoqingHe
Copy link
Member

o, thanks! It'll be an annoying one because they removed zerocopy support for unions, that's why I held off on it so far >.>

How true, I'm still contemplating how to do this in an elegant way 🫨

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@acatangiu acatangiu Awaiting requested review from acatangiu acatangiu is a code owner

@andreeaflorescu andreeaflorescu Awaiting requested review from andreeaflorescu andreeaflorescu is a code owner

@lauralt lauralt Awaiting requested review from lauralt lauralt is a code owner

@sameo sameo Awaiting requested review from sameo sameo is a code owner

@roypat roypat Awaiting requested review from roypat roypat is a code owner

@ShadowCurse ShadowCurse Awaiting requested review from ShadowCurse ShadowCurse is a code owner

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file rust Pull requests that update Rust code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@RuoqingHe @roypat