- Run
cargo update
followed bycargo outdated
, to check if we have any dependency updates which are not already automatically taken by their semver specs.- If we do, take them if possible. There should be dependabot PRs submitted for these already, but if not make separate commits for these and land those first.
- Run the daily-tests CI workflow to check if we have any unfixed regressions. You can run the workflow manually for the to-be-released branch by visiting the daily-tests workflow in your browser and selecting "Run workflow".
- Update
rustls/Cargo.toml
to set the correct version. Then runcargo update
again in repo root and infuzz/
so that lock files pick the new rustls version. - Make a commit with the new version number, something like 'Prepare $VERSION'. This should not contain functional changes: just version numbers, and perhaps markdown changes.
- Do a dry run: in
rustls/
checkcargo publish --dry-run
.- Do not use
--allow-dirty
; use a separate working tree if needed.
- Do not use
- Come up with text detailing headline changes for this release. General guidelines:
- 💚 include any breaking changes.
- 💚 include any major new headline features.
- 💚 include any major, user-visible bug fixes.
- 💚 include any new API deprecations.
- 💚 emphasise contributions from outside the maintainer team.
- ❌ omit any internal build, process or test improvements.
- ❌ omit any minor or user-invisible bug fixes.
- ❌ omit any changes to dependency versions (unless these cause breaking changes).
- Open a PR with the above commit and include the release notes in the description.
Wait for review and CI to confirm it as green.
- Any red should naturally block the release.
- If rustc nightly is broken, this may be acceptable if the reason is understood
and does not point to a defect in rustls. eg, at the time of writing in releasing 0.20:
cargo fuzz
is broken: rust-fuzz/cargo-fuzz#276- oss fuzz is broken: google/oss-fuzz#6268 (Both of these share the same root cause of LLVM13 breaking changes; which are unfortunately common when rustc nightly takes a new LLVM.)
- Tag the released version: eg.
git tag -m '0.20.0' v/0.20.0
- Push the tag: eg.
git push origin v/0.20.0
- Do the release:
cargo publish
when sat inrustls/
.- Do not use
--allow-dirty
; use a separate working tree if needed.
- Do not use
- Create a new GitHub release for that tag. Use "Generate release notes" (against the tag for the previous release) as a starting point for the release description. Then add the "headlines" produced earlier at the top.
- Update dependent crates (eg, hyper-rustls, rustls-native-certs, etc.) if this was a semver-incompatible release.
When point releases for bug fixes and small backwards compatible changes, but main
contains unreleased breaking
changes we follow a modified release process using a longer-lived maintenance branch.
- Check if there is an existing release branch, e.g.
rel-0.21
for point releases in the0.21.x
series.- If there is, use that branch.
- If there is not, create a new branch from the tag for the previous release, e.g.
git checkout -b rel-0.21 v/0.21.0
. Remember to also create a branch protection rule for the release branch, matching the settings frommain
.
- Make pull-requests for any changes you want to include in the point release, targeted against the release branch.
- Follow the usual release process, but use the release branch instead of
main
when making the release.- For example,
cargo publish
should be run from the release branch, notmain
.
- For example,