Bump rustls from 0.19.1 to 0.20.5

[dependabot]

Bumps rustls from 0.19.1 to 0.20.5.

Changelog

Sourced from rustls's changelog.

Release history:

• 0.20.0 (2021-09-26)
  • Breaking change: Connection is now an enum instead of a trait. You can abstract over ClientConnection and ServerConnection with a bound like where C: Deref<ConnectionCommon<SD>>, SD: SideData.
  • Breaking change: the SNI arguments to ClientCertVerifier methods have been removed. The Acceptor API now allows selecting a ServerConfig based on the ClientHello instead.
  • Unclean TCP closure is now tracked by the library. This means a new error is possible when reading plaintext: ErrorKind::UnexpectedEof will be returned in this case.
  • Breaking change: insulate the rustls public API from webpki API changes:
    • PKI errors are now reported using rustls-specific errors.
    • There is now a rustls-specific root trust anchor type.
  • Breaking change: the following types are no longer exposed in the crate root, and can instead be imported through the client module exposed in the crate root: ResolvesClientCert, StoresClientSessions, WriteEarlyData, ClientSessionMemoryCache, NoClientSessionStorage, HandshakeSignatureValid, ServerCertVerified, ServerCertVerifier, WebPkiVerifier and DangerousClientConfig.
  • Breaking change: the following types are no longer exposed in the crate root, and can instead be imported through the server module exposed in the crate root: AllowAnonymousOrAuthenticatedClient, AllowAnyAuthenticatedClient, NoClientAuth, ResolvesServerCertUsingSni, NoServerSessionStorage, ServerSessionMemoryCache, StoresServerSessions, ClientHello, ProducesTickets, ResolvesServerCert, ClientCertVerified and ClientCertVerifier.
  • Breaking API change: QuicExt::write_hs() now returns a KeyChange type that returns handshake or 1-RTT keys. In the case of 1-RTT keys, a KeyChange also includes a Secrets type that must be used to derive further key updates, independent from the rustls Connection. The QuicExt::next_1rtt_keys() method has been removed.
  • Breaking API change: QUIC header protection keys now use a new type that directly exposes a masking/unmasking operation.
• 0.20.0-beta2 (2021-07-04)
  • Breaking change: internal buffers are now limited to 64 kB by default. Use Connection::set_buffer_limit to change the buffer limits to suit your application.
  • Breaking API change: PEM parsing now lives in the rustls-pemfile crate. This means rustls::internals::pemfile and rustls::RootCertStore::add_pem_file no longer exist.
  • Breaking API change: ServerCertVerifier::verify_server_cert and ClientCertVerifier::verify_client_cert pass the end-entity and intermediate certificates separately. This means rustls deals with the case where the certificate chain is empty, rather than leaving that to ServerCertVerifier/ClientCertVerifier implementation.
  • Breaking API change: SupportedCipherSuite is now an enum with TLS 1.2 and TLS 1.3 variants. Some of its methods have moved to the inner Tls12CipherSuite and Tls13CipherSuite types. Instead of usable_for_version(), it now has a version() method. get_hash() has been renamed to hash_algorithm() and usable_for_sigalg() to usable_for_signature_algorithm().
  • There are now 80% fewer unreachable unwraps in the core crate thanks to large refactoring efforts.
  • Breaking API change: the WebPkiError variant of rustls::Error now includes which operation failed.
  • Breaking API changes: These public API items have been renamed to meet naming guidelines:
    • rustls::TLSError to rustls::Error.
    • rustls::ResolvesServerCertUsingSNI to rustls::ResolvesServerCertUsingSni.
    • rustls::WebPKIVerifier to rustls::WebPkiVerifier.
    • rustls::ciphersuites to rustls::cipher_suites.
    • rustls::ALL_CIPHERSUITES to ALL_CIPHER_SUITES; rustls::DEFAULT_CIPHERSUITES to DEFAULT_CIPHER_SUITES.
    • rustls::ClientHello::sigschemes to rustls::ClientHello::signature_schemes.
    • rustls::RootCertStore::get_subjects to rustls::RootCertStore::subjects.
    • rustls::ServerSession to rustls::ServerConnection.
    • rustls::ClientSession to rustls::ClientConnection.

... (truncated)

Commits

• 34ad3ab Prepare 0.20.5
• a8d361c Deal with ServerHellos without any extensions
• 9da6446 Fix typos in comments
• 86f4695 Use original handshake encoding for transcript hash
• 9b83dcf [tls handshaked] fix:Interrupted system call (os error 4) (#1031)
• 093e88e remove extraneous trace
• 014fce9 Add support for IP addresses for dangerous clients only
• a96c93c Update rustls-pemfile requirement from 0.3.0 to 1.0.0
• c42c53e Attach location context to corrupt message errors
• 9d1557e convert some panic! in tests with assert_eq!
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #1201.