-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Breaking change curve25519-dalek #115
Comments
I'm not sure. By this argument we should pin a specific version of all dependencies, which would also cause breakages for people who rely on different versions of them. Also I don't see the point in supporting old nightly compilers. Isn't it possible to pin the curve25519-dalek to 4.1.1 in your project? |
Sorry, but I poorly formulated the problem. I was thinking of not actually pinning the dependency, but rather replacing In fact, it is not possible because we rely on one repository that depends on ed25519-zebra (5 more that depend on curve25519-dalek ), which are now incompatible with old nightlies. Additionally, the same repository has another dependency with a version that is not compatible with the latest nightly, so we are stuck until all the dependencies release a patch and hope that all the dependencies have some latitude in range of versions, so the updates can propagate. It's not really an issue, so I'll close it, but it's more to draw your attention to this dependency that doesn't have the same constraints as the others. |
Got it, thanks for reporting it. We were also hit by this issue in one of our projects |
The PR (dalek-cryptography/curve25519-dalek#619) introduced a breaking change from version 4.1.1 to 4.1.2, with the 4.1.2 version only compatible with the latest nightly.
The unpinned version
ed25519-zebra/Cargo.toml
Line 21 in c39bd43
The text was updated successfully, but these errors were encountered: