We are bumping the MSRV to 1.71 across the rustls project to accomodate newer Rust features and dependencies.

What's Changed

• fix load_native_certs() error return, fix smoke tests by @cpu in #132
• Clarify environment path handling code by @djc in #134
• Rework README to point users to rustls-platform-verifier by @djc in #141
• Use PEM decoding from rustls-pki-types directly by @djc in #145
• Update dependencies & bump MSRV by @djc in #152

Breaking changes

• load_native_certs() now returns a CertificateResult value containing all the certificates that were successfully found as well as any errors encountered. Changes made in 0.7.1 in order to find certificates in more locations resulted in new errors in scenarios that previously worked for most users. This change allows callers to determine the error handling strategy most appropriate to their application.

What's Changed

• Yield all the errors by @djc in #128

Release notes

• If loading certificates from a directory fails, only raise that error if no certificates were successfully loaded from a file. See #124.

  In 0.8.0 we plan to alter the API to give the caller full error details, so they can choose the level of success they require; see #128.

What's Changed

• Prefer partial success to failure by @ctz in #126

Full Changelog: v/0.7.2...v/0.7.3

• Improve error reporting if we fail when loading certificates from the filesystem.

What's Changed

• rust: update semver-compatible dependencies by @djc in #114
• Bump rustls-webpki from 0.102.4 to 0.102.5 in the crates-io group by @dependabot in #115
• lib: add more error context when loading fails by @cpu in #117
• Bump the crates-io group across 1 directory with 3 updates by @dependabot in #119
• Separate online smoke tests from main CI by @cpu in #120
• Bump the crates-io group with 2 updates by @dependabot in #121
• Prepare 0.7.2 by @ctz in #125

Full Changelog: v/0.7.1...v/0.7.2

Notable changes

• Include certificates from the SSL_CERT_DIR environment variable and openssl-probe ProbeResult::cert_dir in the set of returned certificates. This should improve results on FreeBSD (in case the ca_root_nss package is not installed).

What's changed

• Update ring & untrusted by @serprex in #88
• Bump rustls-pemfile from 2.0.0 to 2.1.2 by @dependabot in #93
• Bump webpki-roots from 0.26.0 to 0.26.1 by @dependabot in #94
• Bump x509-parser from 0.15.1 to 0.16.0 by @dependabot in #95
• Bump security-framework from 2.9.2 to 2.10.0 by @dependabot in #96
• Bump ring from 0.17.7 to 0.17.8 by @dependabot in #98
• Bump rustls-webpki from 0.102.0 to 0.102.2 by @dependabot in #99
• Bump serial_test from 2.0.0 to 3.1.0 by @dependabot in #100
• Update dependabot config to match rustls by @ctz in #101
• ci: use ubuntu-latest everywhere by @ctz in #103
• Bump schannel from 0.1.22 to 0.1.23 by @dependabot in #97
• Bump the crates-io group across 1 directory with 2 updates by @dependabot in #104
• Bump serial_test from 3.1.0 to 3.1.1 in the crates-io group by @dependabot in #105
• Bump security-framework from 2.10.0 to 2.11.0 in the crates-io group by @dependabot in #106
• Bump the crates-io group with 2 updates by @dependabot in #107
• Bump rustls from 0.23.7 to 0.23.8 in the crates-io group by @dependabot in #108
• Bump the crates-io group across 1 directory with 2 updates by @dependabot in #111
• Bump webpki-roots from 0.26.2 to 0.26.3 in the crates-io group by @dependabot in #112
• Search cert file and dir returned by openssl-probe by @pgerber in #109
• Prepare 0.7.1 by @djc in #113

Full Changelog: https://github.com/rustls/rustls-native-certs/commits/v/0.7.1

What's Changed

• Update dev-dependencies by @djc in #70
• Switch to using the pki-types crate by @djc in #72
• Bump version to 0.7.0-alpha.0 by @djc in #73
• Update to pki-types 0.2 by @tottoto in #75
• Update to rustls 0.22.0-alpha.3 by @tottoto in #76
• Bump version to 0.7.0-alpha.1 by @tottoto in #77
• Update URLs by @atouchet in #78
• Bump alpha dependency versions by @tottoto in #81
• Bump version to 0.7.0-alpha.2 by @tottoto in #82
• update Rustls/Webpki alphas by @cpu in #84
• Touch-up CI to closer match Rustls CI by @cpu in #85
• Check docs in CI, use doc_auto_cfg by @cpu in #86
• Bump to 0.7.0 by @jsha in #87

What's Changed

• Security Issue: Windows certificates require an additional check to see if the certificate has expired. by @darsvador in #45
• Document SSL_CERT_FILE environment variable by @bnoordhuis in #47
• Update dependencies by @djc in #50
• Apply clippy suggestions for Rust 1.67 by @djc in #53
• CI: update workflow actions by @cpu in #55
• Update x509-parser requirement from 0.14 to 0.15 by @dependabot in #58
• deps: update rustls v0.20.0 -> v0.21.0 by @cpu in #61
• Update dev-dependencies by @djc in #65
• Display original error on failure by @djc in #49
• Implement AsRef<[u8]> for Certificate by @daxpedda in #66
• Bump MSRV to 1.60 and restrict to checking library code by @djc in #67
• Prepare 0.6.3 by @daxpedda in #69

What's Changed

• Make CI work on macOS 11 runners by @djc in #39
• Update/improve documentation by @djc in #38
• Bump MSRV to 1.51 by @ctz in #43
• deps: update rustls-pemfile by @poliorcetics in #42

What's Changed

• Add cross-platform support for SSL_CERT_FILE by @pimterry in #32
• Bump x509-parser dev-dependency to 0.12 by @djc in #36
• Enforce formatting in CI by @djc in #34
• Prepare 0.6.1 release by @djc in #35

What's Changed

• Setup GitHub Actions by @djc in #27
• Remove dependency on rustls by @djc in #26
• Add an example to print trust anchors. by @jsha in #24
• Prepare 0.6 release by @djc in #31