⬆️ update Rust crate tokio to v1.43.1 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
tokio (source)	dependencies	minor	1.42.0 → 1.43.1

GitHub Vulnerability Alerts

GHSA-rr8g-9fpq-6wmg

The broadcast channel internally calls clone on the stored value when receiving it, and only requires T:Send. This means that using the broadcast channel with values that are Send but not Sync can trigger unsoundness if the clone implementation makes use of the value being !Sync.

Thank you to Austin Bonander for finding and reporting this issue.

---

Release Notes

tokio-rs/tokio (tokio)

v1.43.1

Compare Source

v1.43.0: Tokio v1.43.0

Compare Source

1.43.0 (Jan 8th, 2025)

Added

• net: add UdpSocket::peek methods (#​7068)
• net: add support for Haiku OS (#​7042)
• process: add Command::into_std() (#​7014)
• signal: add SignalKind::info on illumos (#​6995)
• signal: add support for realtime signals on illumos (#​7029)

Fixed

• io: don't call set_len before initializing vector in Blocking (#​7054)
• macros: suppress clippy::needless_return in #[tokio::main] (#​6874)
• runtime: fix thread parking on WebAssembly (#​7041)

Changes

• chore: use unsync loads for unsync_load (#​7073)
• io: use Buf::put_bytes in Repeat read impl (#​7055)
• task: drop the join waker of a task eagerly (#​6986)

Changes to unstable APIs

• metrics: improve flexibility of H2Histogram Configuration (#​6963)
• taskdump: add accessor methods for backtrace (#​6975)

Documented

• io: clarify ReadBuf::uninit allows initialized buffers as well (#​7053)
• net: fix ambiguity in TcpStream::try_write_vectored docs (#​7067)
• runtime: fix LocalRuntime doc links (#​7074)
• sync: extend documentation for watch::Receiver::wait_for (#​7038)
• sync: fix typos in OnceCell docs (#​7047)

v1.42.1: Tokio v1.42.1

Compare Source

This release fixes a soundness issue in the broadcast channel. The channel accepts values that are Send but !Sync. Previously, the channel called clone() on these values without synchronizing. This release fixes the channel by synchronizing calls to .clone() (Thanks Austin Bonander for finding and reporting the issue).

Fixed

• sync: synchronize clone() call in broadcast channel (#​7232)

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Filename                              Stmts    Miss  Cover    Missing
----------------------------------  -------  ------  -------  ------------------------------------------------------------------------------------------------------------
src/modules/display/border.rs            47      18  61.70%   20-22, 26-27, 31-33, 37-38, 42-44, 48-50, 105-106
src/modules/display/current.rs           90       6  93.33%   34, 38, 84, 97, 126-127
src/modules/display/day.rs               65       5  92.31%   29, 33, 61, 92-93
src/modules/display/graph.rs            175      62  64.57%   87-126, 142, 149, 156, 161, 177, 183-187, 197, 211, 218, 225, 230, 246, 275-284, 295-317, 334, 343, 365, 370
src/modules/display/gui_config.rs        15       3  80.00%   48, 54, 60
src/modules/display/historical.rs        68      68  0.00%    23-153
src/modules/display/hourly.rs           236     115  51.27%   48-67, 71-80, 89-92, 99, 141, 145-146, 229, 250, 269-279, 323-457
src/modules/display/product.rs           28      28  0.00%    26-76
src/modules/display/utils.rs             35       6  82.86%   14-17, 23, 54-55
src/modules/display/weathercode.rs       34      23  32.35%   13, 17-23, 26-32, 34-41
src/modules/display/week.rs              54       5  90.74%   36, 69-70, 105-106
src/modules/display/wind.rs              22      11  50.00%   24-27, 35-38, 40-42
src/modules/api.rs                       22      12  45.45%   26-29, 38, 49-86
src/modules/args.rs                       4       4  0.00%    92-96
src/modules/config.rs                    31      25  19.35%   51-92
src/modules/forecast.rs                  18       4  77.78%   20-21, 23-24
src/modules/localization.rs             109      45  58.72%   162-206, 233-269
src/modules/location.rs                  55      27  50.91%   25-29, 59-63, 75, 95-104, 109, 118-126, 131-132, 142-143
src/modules/params.rs                    63      63  0.00%    23-130
src/modules/units.rs                     13       0  100.00%
src/modules/weather.rs                   28      28  0.00%    83-154
src/main.rs                              16      16  0.00%    19-39
TOTAL                                  1228     574  53.26%

[github-actions]

Test Results

13 tests  ±0   13 ✅ ±0   1s ⏱️ ±0s
 1 suites ±0    0 💤 ±0 
 1 files   ±0    0 ❌ ±0 

Results for commit b7abf16. ± Comparison against base commit 8c71fe8.