Sourced from rustls-webpki's releases.

0.103.4

• Add unstable support for the post-quantum ML-DSA signature algorithms when using aws-lc-rs. Enable the aws-lc-rs-unstable feature to expose these algorithms (only works when aws-lc-rs-fips is not enabled).
• Use new UnsupportedSignatureAlgorithmContext, UnsupportedCrlSignatureAlgorithmContext, UnsupportedSignatureAlgorithmForPublicKeyContext and UnsupportedCrlSignatureAlgorithmForPublicKeyContext error variants which contain additional context about the error condition. The related contextless variants have been deprecated.

What's Changed

• Do not include bettertls README file in published crates by @​decathorpe in rustls/webpki#351
• deps: Update aws-lc-rs in lockfile by @​ognevny in rustls/webpki#355
• Inline signature verifications test macros by @​djc in rustls/webpki#358
• ci: test more feature flag combinations by @​djc in rustls/webpki#359
• Add unstable support for ML-DSA signature algorithms by @​djc in rustls/webpki#348
• Add context to signature-related errors by @​djc in rustls/webpki#357
• Upgrade to rcgen 0.14 by @​djc in rustls/webpki#363
• Declare ML-DSA as not FIPS approved in the API by @​ctz in rustls/webpki#364
• Bump version to 0.103.4 by @​djc in rustls/webpki#361

• 6793504 Make new error context types public
• 4831218 Bump version to 0.103.4
• 312d3de Declare ML-DSA as not FIPS approved in the API
• 5ea4b9b Use test documentation as docstring
• 785e876 Impose more structure on candidate path rejection test
• 46b9143 Upgrade to rcgen 0.14
• 44dfe42 Apply suggestions from clippy 1.88
• cbd72bc Add context for unsupported signature algorithm for public key errors
• a751a47 Add context for unsupported signature algorithm errors
• 8264e66 Allow enum variant deprecations
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)