Use rustls for tls & trust-dns-resolver for dns resolution

By default, reqwest uses native-tls, which is openssl on linux and that
makes cross-compilation very hard as they need to compile openssl
themselves and exposes it via pkg-config.

Enabling vendored-openssl does not help there because the dep:openssl is
only enabled by dist-server.

reqwest by default uses libc's getaddrinfo, which is a poor solution
that requires a dedicated thread and it is not nearly as reliable as
trust-dns-resolver, not to mention libc implementation, e.g. musl, might
deliberately leave out some features.

Signed-off-by: Jiahao XU <[email protected]>

Author: NobodyXu

Cargo.toml

@@ -56,7 +56,7 @@ number_prefix = "0.4"
 openssl = { version = "0.10.48", optional = true }
 rand = "0.8.4"
 regex = "1.7.3"
-reqwest = { version = "0.11", features = ["json", "blocking", "stream"], optional = true }
+reqwest = { version = "0.11", features = ["json", "blocking", "stream", "rustls-tls", "trust-dns"], optional = true }
 retry = "2"
 semver = "1.0"
 sha2 = { version = "0.10.6", optional = true }
@@ -65,6 +65,8 @@ serde_json = "1.0"
 strip-ansi-escapes = "0.1"
 tar = "0.4.36"
 tempfile = "3"
+# trust-dns-resolver must be kept in sync with the version reqwest uses
+trust-dns-resolver = { version = "0.22.0", features = ["dnssec-ring", "dns-over-rustls", "dns-over-https-rustls", "dns-over-quic"] }
 mime = "0.3"
 tokio = { version = "1", features = ["rt-multi-thread", "io-util", "time", "net", "process", "macros"] }
 tokio-serde = "0.8"