v/0.20.3
版本发布时间: 2023-07-07 22:36:56
rustls/rustls最新发布版本:v/0.23.15(2024-10-16 21:21:05)
- Support loading ECDSA keys in SEC1 format.
- Support receipt of 0-RTT "early data" in TLS1.3 servers. It is not enabled
by default; opt in by setting
ServerConfig::max_early_data_size
to a non-zero value. - Support sending of data with the first server flight. This is also not
enabled by default either: opt in by setting
ServerConfig::send_half_rtt_data
. - Support
read_buf
interface when compiled with nightly. This means data can be safely read out of a rustls connection into a buffer without the buffer requiring initialisation first. Set theread_buf
feature to use this. - Improve efficiency when writing vectors of TLS types.
- Reduce copying and improve efficiency in TLS1.2 handshake.
What's Changed
- Fix deprecation notice by @linkmauve in https://github.com/rustls/rustls/pull/863
- Reworked ticketswitcher to reduce time mutex is held. by @davidv1992 in https://github.com/rustls/rustls/pull/861
- Add rfc7251 cipher suites IDs by @ShadowJonathan in https://github.com/rustls/rustls/pull/865
- Fix typo in docs by @horazont in https://github.com/rustls/rustls/pull/869
- Fix clippy suggestions for 1.57 by @djc in https://github.com/rustls/rustls/pull/867
- Strict ALPN checking for QUIC by @Ralith in https://github.com/rustls/rustls/pull/873
- Defer opening key log file until writing to it by @djc in https://github.com/rustls/rustls/pull/871
- Support for feature(read_buf) by @divergentdave in https://github.com/rustls/rustls/pull/877
- Minimize state passed to process_alpn_protocol() by @djc in https://github.com/rustls/rustls/pull/880
- Correct docs for WebPkiVerifier server impl by @teisenbe in https://github.com/rustls/rustls/pull/887
- Silence clippy false positive warning by @djc in https://github.com/rustls/rustls/pull/892
- Avoid copying key agreement key material by @djc in https://github.com/rustls/rustls/pull/891
- CI: add CIFuzz integration by @DavidKorczynski in https://github.com/rustls/rustls/pull/862
- Avoid temporary allocations for encoding TLS vectors by @djc in https://github.com/rustls/rustls/pull/894
- Update (and thereby fix) verifybench tests by @ctz in https://github.com/rustls/rustls/pull/896
- Fix deny-by-default Clippy lints in examples and api.rs by @zombiepigdragon in https://github.com/rustls/rustls/pull/901
- Fix new unreachable_pub warnings by @djc in https://github.com/rustls/rustls/pull/917
- Use
Self(())
instead ofSelf { 0: () }
. by @briansmith in https://github.com/rustls/rustls/pull/923 - Address Clippy warnings about
unwrap_or_else(Vec::new)
. by @briansmith in https://github.com/rustls/rustls/pull/924 - Revert "Defer opening key log file until writing to it" by @briansmith in https://github.com/rustls/rustls/pull/926
- Split
KeyLogFile
into its own module. by @briansmith in https://github.com/rustls/rustls/pull/929 - Derive debug for marker types by @tsoutsman in https://github.com/rustls/rustls/pull/902
- Use the new feature resolver (
resolver = "2"
). by @briansmith in https://github.com/rustls/rustls/pull/927 - Clean up client extension construction by @ctz in https://github.com/rustls/rustls/pull/934
- Implement TLS1.3 "early data" for TCP-TLS servers by @ctz in https://github.com/rustls/rustls/pull/897
- TLS 1.3 client: Stop holding onto entire
ClientConfig
after handshake. by @briansmith in https://github.com/rustls/rustls/pull/937 - Correct comment typos:
RSASigningKey
->RsaSigningKey
. by @briansmith in https://github.com/rustls/rustls/pull/941 - Make side handling more obvious by @djc in https://github.com/rustls/rustls/pull/914
- Clarify when
may_receive_application_data
is set. by @briansmith in https://github.com/rustls/rustls/pull/953 - CommonState::process_main_protocol: Remove misleading comments. by @briansmith in https://github.com/rustls/rustls/pull/954
- Remove
RsaSigningKey
from the public API documentation. by @briansmith in https://github.com/rustls/rustls/pull/942 - Restore thread-safety to the integration test suite w.r.t.
env::set_var
. by @briansmith in https://github.com/rustls/rustls/pull/936 - Remove unused variant HandshakeType::EarlyData by @djc in https://github.com/rustls/rustls/pull/956
- Make
cargo {check,build,test} --all-features
work on Rust Stable (take 3). by @briansmith in https://github.com/rustls/rustls/pull/965 - Remove
check_message
and match all incoming messages uniformly by @briansmith in https://github.com/rustls/rustls/pull/957 - TLS client: Make the logic for sending Certificate/CertificateVerify clearer. by @briansmith in https://github.com/rustls/rustls/pull/971
- Tests: Split out dangerous_configuration tests from rest, client/server cert verifier tests in particular. by @briansmith in https://github.com/rustls/rustls/pull/935
- TLS 1.3: Improve error reporting for handshake message received during early data. by @briansmith in https://github.com/rustls/rustls/pull/967
- TLS 1.3: Fix build warning with default feature set. by @briansmith in https://github.com/rustls/rustls/pull/972
- Server: Don't depend on
ALL_CIPHER_SUITES
when not usingAcceptor
. by @briansmith in https://github.com/rustls/rustls/pull/975 - Remove redundant rustls-mio/tests/curves.rs. by @briansmith in https://github.com/rustls/rustls/pull/980
- Remove redundant rustls-mio/tests/{client,server}_suites.rs tests. by @briansmith in https://github.com/rustls/rustls/pull/979
- Remove redundant OpenSSL-based ALPN tests and "skipped()" test helper. by @briansmith in https://github.com/rustls/rustls/pull/978
- Add integration test for
AllowAnyAnonymousOrAuthenticatedClient
. by @briansmith in https://github.com/rustls/rustls/pull/983 - AllowAnyAuthenticatedClient: Remove redundant function. by @briansmith in https://github.com/rustls/rustls/pull/984
- Add tests for
Debug
implementations of assertions. by @briansmith in https://github.com/rustls/rustls/pull/985 - Remove all client auth tests that use OpenSSL by @briansmith in https://github.com/rustls/rustls/pull/982
- Remove redundant rustls-mio/tests/errors.rs test. by @briansmith in https://github.com/rustls/rustls/pull/986
- Remove 1 second pause before running BadSSL tests. by @briansmith in https://github.com/rustls/rustls/pull/988
- Remove OpenSSL-based session resumption tests and dead OpenSSL-specific test utilities by @briansmith in https://github.com/rustls/rustls/pull/987
- Remove final openssl-using tests by @ctz in https://github.com/rustls/rustls/pull/992
- Change nor to and in docs about compression support in TLS versions by @hasheddan in https://github.com/rustls/rustls/pull/993
- Require 0.5RTT server data to be explicitly enabled by @ctz in https://github.com/rustls/rustls/pull/990
- Support SEC1-format EC keys via PKCS8 conversion by @ctz in https://github.com/rustls/rustls/pull/998
- Update rustls-pemfile requirement from 0.2.0 to 0.3.0 by @dependabot in https://github.com/rustls/rustls/pull/1001
- Reject malformed change_cipher_specs in TLS1.3 by @ctz in https://github.com/rustls/rustls/pull/1000
New Contributors
- @ShadowJonathan made their first contribution in https://github.com/rustls/rustls/pull/865
- @divergentdave made their first contribution in https://github.com/rustls/rustls/pull/877
- @teisenbe made their first contribution in https://github.com/rustls/rustls/pull/887
- @DavidKorczynski made their first contribution in https://github.com/rustls/rustls/pull/862
- @zombiepigdragon made their first contribution in https://github.com/rustls/rustls/pull/901
- @tsoutsman made their first contribution in https://github.com/rustls/rustls/pull/902
- @hasheddan made their first contribution in https://github.com/rustls/rustls/pull/993
Full Changelog: https://github.com/rustls/rustls/compare/v/0.20.2...v/0.20.3