Describe the bug
For some reason the CI audit just caught that there is an issue with rocksdb due to "Out-of-bounds read when opening multiple column families with TTL". See:
https://rustsec.org/advisories/RUSTSEC-2022-0046.html
To Reproduce
Expected behavior
Should not fail audit tests.
Build environment
- BDK tag/commit: release/0.28
- OS+version: any
- Rust/Cargo version: ci tests against 1.57.0 and 1.65.0
- Rust/Cargo target: any
Additional context
The rocksdb dependency is only used when the compact_filters feature is enabled. The reason we haven't update our rocksdb version earlier is that newer versions don't support our MSRV of 1.57. See also #480.
I propose we disable the audit warning for this issue since compact_filters is an experimental feature and we don't use the rocksdb "multiple column families with TTL" feature mentioned in this advisory.
Describe the bug
For some reason the CI audit just caught that there is an issue with
rocksdbdue to "Out-of-bounds read when opening multiple column families with TTL". See:https://rustsec.org/advisories/RUSTSEC-2022-0046.html
To Reproduce
Expected behavior
Should not fail audit tests.
Build environment
Additional context
The
rocksdbdependency is only used when thecompact_filtersfeature is enabled. The reason we haven't update ourrocksdbversion earlier is that newer versions don't support our MSRV of 1.57. See also #480.I propose we disable the audit warning for this issue since
compact_filtersis an experimental feature and we don't use the rocksdb "multiple column families with TTL" feature mentioned in this advisory.