Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump rcgen from 0.9.3 to 0.13.2 #328

Closed
wants to merge 1 commit into from
Closed

chore(deps): bump rcgen from 0.9.3 to 0.13.2 #328

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 23, 2024
edited
Loading

Bumps rcgen from 0.9.3 to 0.13.2.

Release notes

Sourced from rcgen's releases.

0.13.2

Several improvements to the capabilities available when working with certificate signing requests.

What's Changed

0.13.1

Fixed incorrect usage of the subject certificate's parameter's key identifier method when computing the key identifier of the issuer for the subject's authority key identifier (AKI) extension.

What's Changed

0.13.0

Breaking changes

  • The API used to create/issue key pairs, certificates, certificate signing requests (CSRs), and certificate revocation lists (CRLs) has been restructured to emphasize consistency and avoid common errors with serialization.

    For each concrete type (cert, CSR, CRL) the process is now the same:

    1. generate or load a key pair and any information about issuers required.
    2. create parameters, customizing as appropriate.
    3. call a generation fn on the parameters, providing subject key pair and issuer information and as appropriate.
    4. call serialization fns on the finalized type, obtaining DER or PEM.

    For more information, see [rcgen/docs/0.12-to-0.13.md].

  • Throughout the API DER inputs are now represented using types from the Rustls rustls-pki-types crate, e.g. PrivateKeyDer, CertificateDer, CertificateSigningRequestDer. Contributed by Tudyx.

... (truncated)

Commits
  • 447322c rcgen: 0.13.1 -> 0.13.2
  • 12d6533 Remove extern crate example in docs.
  • 72369d3 Update README.md example to match what's in lib.rs
  • 1b4a355 Bump codecov/codecov-action from 4 to 5
  • 331b8fd Add PKCS#10 attributes to CSR serializer
  • 349ffe4 Add CertificateParams::write_extension_request_attribute for cleanup
  • 57a8066 Fix: Write CSR attributes as an implicit set
  • ad9b094 Fix: Don't forget to write EKUs in CSRs
  • 5811e47 Fix: Don't write SANs in CSRs if none are present
  • d3dea5e Add more CSR roundtrip unit tests
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added dependencies Pull requests that update a dependency file rust Pull requests that update Rust code labels Dec 23, 2024
@k8s-ci-robot k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Dec 23, 2024
@k8s-ci-robot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign aryan9600 for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@k8s-ci-robot k8s-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Dec 23, 2024
@dependabot dependabot bot force-pushed the dependabot/cargo/rcgen-0.13.2 branch from abba73f to 5ef72f9 Compare January 6, 2025 12:33
@dependabot @shaneutt
chore(deps): bump rcgen from 0.9.3 to 0.13.2
1e28505 
Bumps [rcgen](https://github.com/rustls/rcgen) from 0.9.3 to 0.13.2.
- [Release notes](https://github.com/rustls/rcgen/releases)
- [Commits](rustls/rcgen@v0.9.3...v0.13.2)

---
updated-dependencies:
- dependency-name: rcgen
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@shaneutt shaneutt force-pushed the dependabot/cargo/rcgen-0.13.2 branch from 5ef72f9 to 1e28505 Compare January 6, 2025 13:29
@shaneutt
Copy link
Member

shaneutt commented Jan 6, 2025

Breaking changed occured in v0.13.0, which will need manual intervention. I'll fix this as a separate PR.

/close

@shaneutt shaneutt closed this Jan 6, 2025
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 6, 2025

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@shaneutt shaneutt deleted the dependabot/cargo/rcgen-0.13.2 branch January 6, 2025 13:54
@shaneutt
Copy link
Member

shaneutt commented Jan 6, 2025

#330 is the follow-up.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aryan9600 aryan9600 Awaiting requested review from aryan9600

@astoycos astoycos Awaiting requested review from astoycos

Assignees
No one assigned
Labels
cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. dependencies Pull requests that update a dependency file rust Pull requests that update Rust code size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@k8s-ci-robot @shaneutt