Azure · ashort96 · Mar 5, 2026 · Copilot · Mar 6, 2026 · Copilot
diff --git a/Cargo.lock b/Cargo.lock
@@ -13,6 +13,7 @@ allow = [
   "BSL-1.0",
   "ISC",
   "MIT",
+  "CDLA-Permissive-2.0",
   "MPL-2.0",
   # "OpenSSL",
   "Unicode-3.0",

@@ -71,6 +71,7 @@ reqwest = ["typespec_client_core/reqwest"]
 reqwest_deflate = ["reqwest", "typespec_client_core/reqwest_deflate"]
 reqwest_gzip = ["reqwest", "typespec_client_core/reqwest_gzip"]
-reqwest_gzip = ["reqwest", "typespec_client_core/reqwest_gzip"]
+reqwest_gzip = ["reqwest", "typespec_client_core/reqwest_gzip"]
+# TLS backend selection for reqwest:
+# - By default, this crate enables `reqwest_native_tls` via the `default` feature set above.
+# - To use `reqwest_rustls` instead, depend on `azure_core` with `default-features = false`
+#   and then enable exactly one of `reqwest_native_tls` or `reqwest_rustls`, e.g.:
+#     azure_core = { version = "0.33", default-features = false, features = ["reqwest", "reqwest_rustls"] }
+# - Enabling both `reqwest_native_tls` and `reqwest_rustls` at the same time will pull in
+#   both TLS backends (including native-tls/OpenSSL on some platforms).
-reqwest_gzip = ["reqwest", "typespec_client_core/reqwest_gzip"]
+reqwest_gzip = ["reqwest", "typespec_client_core/reqwest_gzip"]
+# TLS backend selection for reqwest:
+# - By default, this crate enables `reqwest_native_tls` via the `default` feature set above.
+# - To use `reqwest_rustls` instead, depend on `azure_core` with `default-features = false`
+#   and then enable exactly one of `reqwest_native_tls` or `reqwest_rustls`, e.g.:
+#     azure_core = { version = "0.33", default-features = false, features = ["reqwest", "reqwest_rustls"] }
+# - Enabling both `reqwest_native_tls` and `reqwest_rustls` at the same time will pull in
+#   both TLS backends (including native-tls/OpenSSL on some platforms).
 reqwest_native_tls = ["reqwest", "typespec_client_core/reqwest_native_tls"]
+reqwest_rustls = ["reqwest", "typespec_client_core/reqwest_rustls"]
 test = ["typespec_client_core/test"]
 tokio = ["dep:tokio", "typespec_client_core/tokio"]
 xml = ["typespec_client_core/xml"]
@@ -88,6 +89,7 @@ features = [
   "reqwest_deflate",
   "reqwest_gzip",
   "reqwest_native_tls",
+  "reqwest_rustls",
   "tokio",
   "xml",
 ]

@@ -58,6 +58,7 @@ reqwest = ["dep:reqwest"]
 reqwest_deflate = ["reqwest", "reqwest/deflate"]
 reqwest_gzip = ["reqwest", "reqwest/gzip"]
 reqwest_native_tls = ["reqwest", "reqwest/native-tls"]
+reqwest_rustls = ["reqwest", "reqwest/rustls-no-provider"]
-reqwest_rustls = ["reqwest", "reqwest/rustls-no-provider"]
+reqwest_rustls = ["reqwest", "reqwest/rustls-tls-native-roots"]
-reqwest_rustls = ["reqwest", "reqwest/rustls-no-provider"]
+reqwest_rustls = ["reqwest", "reqwest/rustls-tls-native-roots"]
 test = [] # Enables extra tracing including error bodies that may contain PII.
 tokio = ["tokio/sync", "tokio/time"]
 xml = [
@@ -84,6 +85,7 @@ features = [
   "reqwest_deflate",
   "reqwest_gzip",
   "reqwest_native_tls",
+  "reqwest_rustls",
   "tokio",
   "xml",
 ]