Skip to content

build(deps): bump the crypto-tls group across 1 directory with 2 updates#92

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/crypto-tls-5c390a54f4
Open

build(deps): bump the crypto-tls group across 1 directory with 2 updates#92
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/cargo/crypto-tls-5c390a54f4

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 27, 2026
edited
Loading

Bumps the crypto-tls group with 2 updates in the / directory: rustls and aws-lc-rs.

Updates rustls from 0.23.37 to 0.23.40

Commits
  • b44c09f Prepare 0.23.40
  • e7a555f Prefer Ord::max to core::cmp
  • c0005be ech: base inner name padding on actual extension
  • 4e49529 ech: test inner name padding
  • 3e06ef1 ech: add both name and "gross" padding
  • c574ffd ech: avoid short-lived allocation for padding
  • 8bf935c ech: pop comment from match arm
  • 9088004 ech: expand maximum_name_length to usize ASAP
  • a612901 Default require_ems based on CryptoProvider FIPS status
  • 0541605 Cargo: version 0.23.38 -> 0.23.39
  • Additional commits viewable in compare view

Updates aws-lc-rs from 1.16.2 to 1.17.0

Release notes

Sourced from aws-lc-rs's releases.

aws-lc-rs v1.17.0

What's Changed

  • Add opt-in legacy DES cipher support behind a legacy-des feature by @​qzh0223 in aws/aws-lc-rs#1109 and aws/aws-lc-rs#1122
    • Provides 2TDEA, 3TDEA, and single DES support. This is gated behind the legacy-des feature flag and intended only for interoperability with legacy systems.
  • Add AsDer and ParsedPublicKey conversion for RSA PublicKeyComponents by @​MavenRain in aws/aws-lc-rs#1105
    • PublicKeyComponents<B> now implements AsDer<PublicKeyX509Der> and can be converted to ParsedPublicKey for use with signature verification APIs.
  • Add LessSafeKey::open_in_place_separate_tag by @​wpt-oai in aws/aws-lc-rs#1116
    • Enables AEAD decryption when the authentication tag is stored separately from the ciphertext, complementing the existing seal_in_place_separate_tag.
  • Add zig compiler support and CI coverage by @​justsmth in aws/aws-lc-rs#1103
    • Resolves long-standing issues with cross-compilation using cargo-zigbuild. The build script now correctly handles zig's compiler flags, and CI coverage has been added to prevent regressions.

Build Improvements

  • Fix jitterentropy CFLAGS filtering for HOST_CFLAGS and TARGET_CFLAGS by @​justsmth in aws/aws-lc-rs#1106
    • Fixes build failures (e.g., FreeBSD qdrant) where optimization flags leaked into the jitterentropy compilation, which must be built without optimizations.
  • Add ML-DSA x86_64 native assembly to CC builder scripts by @​jakemas in aws/aws-lc-rs#1110
  • Fix support for building with MinGW on Windows 7 by @​justsmth in aws/aws-lc-rs#1120
    • Fixes the x86_64-win7-windows-gnu target by addressing MinGW-specific compatibility issues.

Issues Being Closed

  • Add API to convert rsa::PublicKeyComponents into signature::ParsedPublicKey and/or DER encoded bytes -- aws/aws-lc-rs#1055
  • The CPU Jitter RNG must not be compiled with optimizations (FreeBSD qdrant build failure) -- aws/aws-lc-rs#1097
  • Windows 7 support for MinGW (x86_64-win7-windows-gnu target) -- aws/aws-lc-rs#1111
  • -Wp,-U breaks cross-builds using zig cc -- aws/aws-lc-rs#993
  • Failure to cross-compile for Windows on macOS with cargo-zigbuild -- aws/aws-lc-rs#512
  • Zigbuild: Unable to build using cargo-zigbuild for arm targets -- aws/aws-lc-rs#931

Other Merged PRs

New Contributors

Full Changelog: aws/aws-lc-rs@v1.16.3...v1.17.0

aws-lc-rs v1.16.3

What's Changed

  • Key length validation in UnboundCipherKey::new() now enforced at runtime by @​justsmth in aws/aws-lc-rs#1092
    • The documented error on key length mismatch was never actually checked. Streaming cipher constructors also relied on debug_assert_eq! which gets stripped in release builds — these are now runtime checks.
  • Support MSAN and TSAN sanitizer builds via AWS_LC_SYS_SANITIZER environment variable by @​justsmth in aws/aws-lc-rs#1100
    • Accepts asan, msan, or tsan. The existing asan feature flag continues to work.

... (truncated)

Commits
  • 2201001 Fix rustfmt (#1123)
  • 1ed08ba Add single DES support and rename legacy-3des feature to legacy-des (#1122)
  • 889047e Prepare aws-lc-rs v1.17.0 (#1121)
  • 4fdf672 fix: support building with MinGW on Windows 7 (#1120)
  • 1cbe889 Adds LessSafeKey::open_in_place_separate_tag (#1116)
  • ce8bccc Bump actions/dependency-review-action from 4 to 5 (#1118)
  • aac6ebd Prepare aws lc sys 0.41.0 (#1117)
  • 3cb6cfd Add AsDer and ParsedPublicKey conversion for RSA PublicKeyComponents (#1105)
  • 54a222f Fix clippy warnings: inline format args, remove redundant borrows, use assert...
  • c9c9bc6 Add opt-in 2TDEA and 3TDEA cipher support behind a legacy-3des feature (#1109)
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels Apr 27, 2026
@coderabbitai
Copy link
Copy Markdown

coderabbitai Bot commented Apr 27, 2026
edited
Loading

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Free

Run ID: f95589b6-6681-4c39-b772-fee78578b370

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

  • 🔍 Trigger review

Comment @coderabbitai help to get the list of available commands and usage tips.

@dependabot dependabot Bot changed the title chore(deps): bump the crypto-tls group with 2 updates chore(deps): bump the crypto-tls group across 1 directory with 2 updates Apr 29, 2026
@dependabot dependabot Bot force-pushed the dependabot/cargo/crypto-tls-5c390a54f4 branch from c359e0e to da6e46c Compare April 29, 2026 04:33
@dependabot dependabot Bot force-pushed the dependabot/cargo/crypto-tls-5c390a54f4 branch from da6e46c to 2466365 Compare May 11, 2026 09:03
@dependabot dependabot Bot force-pushed the dependabot/cargo/crypto-tls-5c390a54f4 branch from 2466365 to 3696662 Compare May 18, 2026 11:25
@dependabot
build(deps): bump the crypto-tls group across 1 directory with 2 updates
35eedb1 
Bumps the crypto-tls group with 2 updates in the / directory: [rustls](https://github.com/rustls/rustls) and [aws-lc-rs](https://github.com/aws/aws-lc-rs).


Updates `rustls` from 0.23.37 to 0.23.40
- [Release notes](https://github.com/rustls/rustls/releases)
- [Changelog](https://github.com/rustls/rustls/blob/main/CHANGELOG.md)
- [Commits](rustls/rustls@v/0.23.37...v/0.23.40)

Updates `aws-lc-rs` from 1.16.2 to 1.17.0
- [Release notes](https://github.com/aws/aws-lc-rs/releases)
- [Commits](aws/aws-lc-rs@v1.16.2...v1.17.0)

---
updated-dependencies:
- dependency-name: aws-lc-rs
  dependency-version: 1.16.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: crypto-tls
- dependency-name: rustls
  dependency-version: 0.23.39
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: crypto-tls
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps): bump the crypto-tls group across 1 directory with 2 updates build(deps): bump the crypto-tls group across 1 directory with 2 updates May 25, 2026
@dependabot dependabot Bot force-pushed the dependabot/cargo/crypto-tls-5c390a54f4 branch from 3696662 to 35eedb1 Compare May 25, 2026 10:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file rust Pull requests that update rust code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants