From 8d3bde46a8482bd58e1e0581cdf110cd0943c1d7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Nov 2023 08:13:24 +0000
Subject: [PATCH 1/2] deps: bump rustls from 0.21.8 to 0.21.9

Pull-Request: #4902.
---
 Cargo.lock                 | 18 +++++++++---------
 transports/quic/Cargo.toml |  2 +-
 transports/tls/Cargo.toml  |  2 +-
 3 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index a8fe1eeee7a..49fd90990ef 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -1657,7 +1657,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "35bd3cf68c183738046838e300353e4716c674dc5e56890de4826801a6622a28"
 dependencies = [
  "futures-io",
- "rustls 0.21.8",
+ "rustls 0.21.9",
 ]
 
 [[package]]
@@ -2977,7 +2977,7 @@ dependencies = [
  "quinn",
  "rand 0.8.5",
  "ring 0.16.20",
- "rustls 0.21.8",
+ "rustls 0.21.9",
  "socket2 0.5.5",
  "thiserror",
  "tokio",
@@ -3185,7 +3185,7 @@ dependencies = [
  "libp2p-yamux",
  "rcgen",
  "ring 0.16.20",
- "rustls 0.21.8",
+ "rustls 0.21.9",
  "rustls-webpki",
  "thiserror",
  "tokio",
@@ -4409,7 +4409,7 @@ dependencies = [
  "quinn-proto",
  "quinn-udp",
  "rustc-hash",
- "rustls 0.21.8",
+ "rustls 0.21.9",
  "thiserror",
  "tokio",
  "tracing",
@@ -4425,7 +4425,7 @@ dependencies = [
  "rand 0.8.5",
  "ring 0.16.20",
  "rustc-hash",
- "rustls 0.21.8",
+ "rustls 0.21.9",
  "slab",
  "thiserror",
  "tinyvec",
@@ -4952,9 +4952,9 @@ dependencies = [
 
 [[package]]
 name = "rustls"
-version = "0.21.8"
+version = "0.21.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "446e14c5cda4f3f30fe71863c34ec70f5ac79d6087097ad0bb433e1be5edf04c"
+checksum = "629648aced5775d558af50b2b4c7b02983a04b312126d45eeead26e7caa498b9"
 dependencies = [
  "log",
  "ring 0.17.5",
@@ -6377,7 +6377,7 @@ dependencies = [
  "ring 0.16.20",
  "rtcp",
  "rtp",
- "rustls 0.21.8",
+ "rustls 0.21.9",
  "sdp",
  "serde",
  "serde_json",
@@ -6438,7 +6438,7 @@ dependencies = [
  "rand_core 0.6.4",
  "rcgen",
  "ring 0.16.20",
- "rustls 0.21.8",
+ "rustls 0.21.9",
  "sec1",
  "serde",
  "sha1",
diff --git a/transports/quic/Cargo.toml b/transports/quic/Cargo.toml
index 22b241c8d8e..c59c9b64f1c 100644
--- a/transports/quic/Cargo.toml
+++ b/transports/quic/Cargo.toml
@@ -20,7 +20,7 @@ libp2p-identity = { workspace = true }
 parking_lot = "0.12.0"
 quinn = { version = "0.10.2", default-features = false, features = ["tls-rustls", "futures-io"] }
 rand = "0.8.5"
-rustls = { version = "0.21.8", default-features = false }
+rustls = { version = "0.21.9", default-features = false }
 thiserror = "1.0.50"
 tokio = { version = "1.34.0", default-features = false, features = ["net", "rt", "time"], optional = true }
 tracing = "0.1.37"
diff --git a/transports/tls/Cargo.toml b/transports/tls/Cargo.toml
index 196251dcb76..5a1e4788245 100644
--- a/transports/tls/Cargo.toml
+++ b/transports/tls/Cargo.toml
@@ -22,7 +22,7 @@ yasna = "0.5.2"
 
 # Exposed dependencies. Breaking changes to these are breaking changes to us.
 [dependencies.rustls]
-version = "0.21.8"
+version = "0.21.9"
 default-features = false
 features = ["dangerous_configuration"] # Must enable this to allow for custom verification code.
 

From 7387500b878efb73fb3083d2aefca5bc3f08202e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Nov 2023 11:04:41 +0000
Subject: [PATCH 2/2] deps: bump zeroize from 1.6.0 to 1.7.0

Pull-Request: #4904.
---
 Cargo.lock          | 4 ++--
 identity/Cargo.toml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index 49fd90990ef..b342fbb133b 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -6783,9 +6783,9 @@ dependencies = [
 
 [[package]]
 name = "zeroize"
-version = "1.6.0"
+version = "1.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "2a0956f1ba7c7909bfb66c2e9e4124ab6f6482560f6628b5aaeba39207c9aad9"
+checksum = "525b4ec142c6b68a2d10f01f7bbf6755599ca3f81ea53b8431b7dd348f5fdb2d"
 dependencies = [
  "zeroize_derive",
 ]
diff --git a/identity/Cargo.toml b/identity/Cargo.toml
index 1d5a8f4ac54..49f90a1c680 100644
--- a/identity/Cargo.toml
+++ b/identity/Cargo.toml
@@ -27,7 +27,7 @@ serde = { version = "1", optional = true, features = ["derive"] }
 sha2 = { version = "0.10.8", optional = true }
 thiserror = { version = "1.0", optional = true }
 void = { version = "1.0", optional = true }
-zeroize = { version = "1.6", optional = true }
+zeroize = { version = "1.7", optional = true }
 
 [target.'cfg(not(target_arch = "wasm32"))'.dependencies]
 ring = { version = "0.17.5", features = [ "alloc", "std"], default-features = false, optional = true }