The first big feature is support for TLS certificates containing IP addresses. Rustls can now be used to set up TLS connections addressed by IP rather than a domain name. This is useful for things like Kubernetes pods, which often use IP addresses instead of domain names, and for DNS over HTTPS/TLS which need an IP address for the server to avoid circular dependency on name resolution. TLS certificates for IP addresses have been the most heavily requested feature for quite a while now and it's great to have it completed.
The second big feature is support for RFC8446 C.4 client tracking prevention. This means that passive network observers will no longer be able to correlate connections from ticket reuse.
this PR upgrades tokio-rustls to 0.24.0, which upgrades rustls to 0.21.0
With rustls 0.21.0 release see: https://www.memorysafety.org/blog/rustls-new-features/, two new features cames along:
this PR upgrades tokio-rustls to 0.24.0, which upgrades rustls to 0.21.0