| CARVIEW |
Select Language
HTTP/2 200
date: Thu, 24 Jul 2025 14:59:41 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"ba4b094e519fb2a847595fef577c1396"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=9yz7ufWPF1CFMYtO72zMsEII%2FzwXMCgAuuz4LFZLMg1uAW92Q%2FouYAkE5sFTbwzqOu5eKSjm15vkBHGp1ez0dZY%2BAK%2B%2FA3bhGUK3LmshDQGSbn%2BFQFBK8k1%2BODsC1XWnZS15IjZ1BFIJo66H1jelgHf9tXoJRejd1UoyOyGcbmLxaVgCEZNtlZaW%2BQWCGXhgf3R4u2XoE6reRAIa2xeXFQAT%2FUKh%2FJQI0GGhzdIXOB6GxUwrsk4z4cKi%2FK0wGHM5%2BgqO3b8p08jFldS3YueN3w%3D%3D--ibL9womiLIaoPRkx--TDwqcFog5wPbqJyQjz9gDg%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.1098594795.1753369181; Path=/; Domain=github.com; Expires=Fri, 24 Jul 2026 14:59:41 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Fri, 24 Jul 2026 14:59:41 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: EA58:212826:41006:4B4C8:68824A5D
Release 0.102.0 · rustls/webpki · GitHub
Loading
Skip to content
Navigation Menu
{{ message }}
-
Notifications
You must be signed in to change notification settings - Fork 64
0.102.0
Compare
Headlines
- More powerful certificate revocation list (CRL) support. There is now an API for explicitly configuring whether CRLs are mandatory or optional, and which parts of the certificate chain they apply to.
- Extensible and observable path building. This crate now returns an example of a found certificate path, and optionally allows callers to reject valid paths to continue the search.
- Improving API stability. This crate now uses types from rustls-pki-types; we expect this to reduce the number of breaking changes in rustls ecosystem.
- Pluggable crypto providers. This crate can now depend on signature verification algorithms provided externally. ring is now an optional (but default) dependency, and aws-lc-rs is a new optional dependency.
What's Changed
- cert: retain CRL distribution points extension. by @cpu in #127
- Tweak style in distribution point handling by @djc in #137
- crl: retain issuing distribution point extension by @cpu in #128
- Implement FromDer trait and DerIterator type by @djc in #139
- Make ring optional by @ctz in #134
- Name iterator by @djc in #140
- Impl FromDer for more types by @djc in #141
- fix no-std support by @japaric in #145
- Refactor DER parsing by @djc in #142
- revocation: more sophisticated revocation checking. by @cpu in #138
- build(deps): bump cryptography from 41.0.2 to 41.0.3 by @dependabot in #146
- Use doc_auto_cfg and remove manual doc(cfg()) gates by @ctz in #150
- bettertls: test both pathbuilding and nameconstraints. by @cpu in #151
- verify_cert: enforce maximum number of signatures. by @cpu in #152
- Fix build & clippy lints by @ctz in #156
- SECURITY.md: use github vuln reporting tool by @ctz in #155
- Enable warnings for
cargo doccomments on private items by @cpu in #157 - Switch to using the pki-types crate by @djc in #147
- Bump version to alpha.1 with pki-types by @djc in #161
- build(deps): bump actions/checkout from 3 to 4 by @dependabot in #162
- Further limits on expensive path building by @ctz in #163
- Budget tweaks by @djc in #164
- Use signature verification trait from pki-types by @ctz in #166
- verify_cert: bound name constraint comparisons. by @cpu in #165
- Remove subject common name parsing by @hawkw in #169
- verify_cert: correct handling of fatal errors. by @cpu in #168
- subject_name: fix stale unused_imports allow. by @cpu in #171
- Extract PathNode from Cert by @djc in #173
- Use pki_types::UnixTime instead of local Time type by @djc in #175
- tests: local test speed optimizations, add cargo hack feature powerset by @cpu in #176
- docs: add CONTRIBUTING.md, ref'ing Rustls CONTRIBUTING by @cpu in #177
- Note that self-signed certificates are not supported. by @bdaehlie in #180
- properly test build chain call budget by @cpu in #179
- Use stable for coverage measurement by @ctz in #181
- Optionally support aws-lc-rs by @ctz in #158
- rework
dns_nameshelper, remove alloc req. by @cpu in #178 - Let EndEntityCert deref to Cert by @djc in #184
- Refactor name verification flow by @djc in #188
- Cargo: remove rcgen git patch by @cpu in #189
- crl: rm Budget from verify_signature fn by @cpu in #190
- NFC: Correct name of mozilla::pkix in comment. by @cpu in #192
- Cargo: restore rcgen w/ no-default-features by @cpu in #195
- Upgrade to untrusted 0.9 and ring 0.17 by @djc in #193
- Prepare 0.102.0-alpha.4 by @ctz in #194
- build(deps): bump cryptography from 41.0.3 to 41.0.4 by @dependabot in #196
- Expose built path in public API by @djc in #174
- verify_cert: add test for rejecting candidate path by @cpu in #197
- Deny warnings from clippy by @djc in #198
- Use cargo-check-external-types to control type leakage in public API by @cpu in #202
- trust_anchor: fix stale note about EndEntityOrCA by @cpu in #204
- Improve CRL ergonomics, replace trait with enum by @cpu in #203
- trust_anchor: clarify and rename extract_trust_anchor by @cpu in #201
- Remove unused git exception from deny config by @djc in #208
- Migrate to pki-types ServerName by @djc in #207
- verify_cert: re-export VerifiedPath by @BiagioFesta in #210
- derive Debug for RingAlgorithm, AwsLcRsAlgorithm by @cpu in #212
New Contributors
- @japaric made their first contribution in #145
- @hawkw made their first contribution in #169
- @bdaehlie made their first contribution in #180
- @BiagioFesta made their first contribution in #210
Full Changelog: v/0.101.7...v/0.102.0
Contributors
bdaehlie, djc, and 6 other contributors
Assets 2
You can’t perform that action at this time.