Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for enforcing CRL expiration #1922

Merged
merged 2 commits into from May 21, 2024
Merged

Add support for enforcing CRL expiration #1922

merged 2 commits into from May 21, 2024

Conversation

jasperpatterson
Copy link
Contributor

This adds support for enforcing the CRL nextUpdate field (i.e. expiration). The corresponding changes in webpki are here: rustls/webpki#227

@jasperpatterson jasperpatterson marked this pull request as draft April 25, 2024 21:04
@jasperpatterson jasperpatterson changed the title Draft: Add support for enforcing CRL expiration Add support for enforcing CRL expiration Apr 25, 2024
@jasperpatterson jasperpatterson mentioned this pull request Apr 25, 2024
Merged
@codecov Codecov
Copy link

codecov bot commented Apr 25, 2024
edited

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 95.49%. Comparing base (06dc1d5) to head (62c9d78).
Report is 14 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #1922      +/-   ##
==========================================
+ Coverage   95.48%   95.49%   +0.01%     
==========================================
  Files          86       86              
  Lines       18664    18709      +45     
==========================================
+ Hits        17821    17866      +45     
  Misses        843      843

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@cpu
Copy link
Member

cpu commented Apr 25, 2024

rustls / Check semver compatibility (pull_request) Failing after 44s

Just wanted to note IME this job always fails when there's a cargo patch in play, so don't worry about debugging this one.

cpu
cpu reviewed Apr 26, 2024
View reviewed changes
Copy link
Member

@cpu cpu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you, this looks good 🌠

Are you open to adding an integration test for this? There are some existing tests (starting around here) in api.rs.

I don't think it needs to be super extensive. Something like:

  • updating test_ca.rs to generate an expired CRL alongside the others
  • adding one integration test that uses the default verification behaviour, allowing the expired CRL to be processed without err
  • adding one integration test that uses the customized behaviour, verifying the CRL is rejected with the expected err.

@jasperpatterson
Copy link
Contributor Author

@cpu Thanks, I've added in this test! 👍

cpu
cpu reviewed May 1, 2024
View reviewed changes
Copy link
Member

@cpu cpu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for adding the integration test. I had a bit of feedback on the details but the overall test logic looks spot on.

rustls/examples/internal/test_ca.rs Outdated Show resolved Hide resolved
rustls/examples/internal/test_ca.rs Outdated Show resolved Hide resolved
cpu
cpu reviewed May 16, 2024
View reviewed changes
Cargo.toml Outdated Show resolved Hide resolved
@jasperpatterson jasperpatterson marked this pull request as ready for review May 16, 2024 18:44
cpu
cpu approved these changes May 16, 2024
View reviewed changes
Copy link
Member

@cpu cpu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me. Thanks!

Would you mind tidying the commit history? Unless anyone else has an opinion I would vote to do this in two commits: one to land the feature, and one to land the integration test update. It feels worth keeping the two separate in this case since the latter requires a large test-ca diff.

rustls/tests/common/mod.rs Show resolved Hide resolved
rustls/Cargo.toml Show resolved Hide resolved
@cpu cpu requested review from djc and ctz May 16, 2024 20:22
@rustls-benchmarking Rustls Benchmarking
Copy link

rustls-benchmarking bot commented May 16, 2024
edited

Benchmark results

Instruction counts

Significant differences

⚠️ There are significant instruction count differences

Click to expand
Scenario Baseline Candidate Diff Threshold
handshake_tickets_aws_lc_rs_1.3_rsa_chacha_server 32742058 32583038 -159020 (-0.49%) 0.46%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_chacha_client 30183353 30086517 -96836 (-0.32%) 0.31%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_chacha_client 3366780 3373834 ⚠️ 7054 (0.21%) 0.20%

Other differences

Click to expand
Scenario Baseline Candidate Diff Threshold
handshake_session_id_aws_lc_rs_1.2_rsa_aes_server 3968449 3851910 -116539 (-2.94%) 6.51%
handshake_tickets_aws_lc_rs_1.2_rsa_aes_server 4466219 4412595 -53624 (-1.20%) 2.39%
handshake_no_resume_aws_lc_rs_1.3_rsa_aes_server 13764164 13721239 -42925 (-0.31%) 0.83%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_chacha_client 8718963 8742618 23655 (0.27%) 1.19%
handshake_no_resume_aws_lc_rs_1.3_rsa_chacha_server 13798450 13763145 -35305 (-0.26%) 0.85%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_chacha_client 30355397 30285692 -69705 (-0.23%) 0.32%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_aes_client 30416558 30354381 -62177 (-0.20%) 0.44%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_chacha_server 1895550 1899027 3477 (0.18%) 0.20%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_aes_client 8724202 8708300 -15902 (-0.18%) 0.79%
handshake_session_id_aws_lc_rs_1.3_rsa_aes_server 32478328 32423204 -55124 (-0.17%) 0.47%
handshake_no_resume_aws_lc_rs_1.2_rsa_aes_server 13390960 13412855 21895 (0.16%) 1.33%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_aes_server 1892670 1895760 3090 (0.16%) 0.20%
handshake_session_id_aws_lc_rs_1.3_rsa_chacha_server 32393673 32343222 -50451 (-0.16%) 0.54%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_aes_server 32442341 32393637 -48704 (-0.15%) 0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_aes_server 32442400 32393995 -48405 (-0.15%) 0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_chacha_server 32402448 32354202 -48246 (-0.15%) 0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_chacha_server 32678970 32630591 -48379 (-0.15%) 0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_chacha_server 32401805 32354086 -47719 (-0.15%) 0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_aes_server 32703066 32655231 -47835 (-0.15%) 0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_chacha_server 32678795 32631560 -47235 (-0.14%) 0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_aes_server 32702660 32655530 -47130 (-0.14%) 0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_chacha_client 30365334 30322878 -42456 (-0.14%) 0.20%
handshake_tickets_aws_lc_rs_1.3_rsa_aes_client 30399765 30358325 -41440 (-0.14%) 0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_chacha_client 30162152 30121146 -41006 (-0.14%) 0.20%
handshake_session_id_aws_lc_rs_1.3_rsa_chacha_client 30175333 30135084 -40249 (-0.13%) 0.20%
handshake_session_id_aws_lc_rs_1.3_rsa_aes_client 30199616 30159479 -40137 (-0.13%) 0.20%
handshake_tickets_aws_lc_rs_1.3_rsa_chacha_client 30376588 30336351 -40237 (-0.13%) 0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_aes_client 30387278 30348624 -38654 (-0.13%) 0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_aes_client 30182857 30149434 -33423 (-0.11%) 0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_aes_client 30167506 30148283 -19223 (-0.06%) 0.28%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_aes_client 58241051 58207888 -33163 (-0.06%) 0.20%
handshake_tickets_ring_1.2_rsa_aes_server 4666609 4664038 -2571 (-0.06%) 0.20%
handshake_tickets_ring_1.2_rsa_aes_client 4509325 4506977 -2348 (-0.05%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_chacha_client 92699869 92656162 -43707 (-0.05%) 0.20%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_aes_client 3365769 3367135 1366 (0.04%) 0.20%
handshake_session_id_ring_1.2_rsa_aes_server 4234326 4232829 -1497 (-0.04%) 0.20%
handshake_session_id_aws_lc_rs_1.2_rsa_aes_client 3973389 3972097 -1292 (-0.03%) 0.20%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_aes_server 4273689 4272391 -1298 (-0.03%) 0.20%
handshake_no_resume_aws_lc_rs_1.3_rsa_chacha_client 2223340 2222695 -645 (-0.03%) 0.20%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_chacha_server 4276884 4275907 -977 (-0.02%) 0.20%
transfer_no_resume_aws_lc_rs_1.2_rsa_aes_server 46423039 46413809 -9230 (-0.02%) 0.40%
handshake_session_id_ring_1.2_rsa_aes_client 4234327 4233648 -679 (-0.02%) 0.20%
handshake_tickets_ring_1.3_ecdsap384_aes_server 43695989 43689557 -6432 (-0.01%) 0.20%
handshake_tickets_ring_1.3_rsa_aes_server 43693799 43687842 -5957 (-0.01%) 0.20%
handshake_session_id_ring_1.3_ecdsap256_aes_server 43415591 43409744 -5847 (-0.01%) 0.20%
handshake_session_id_ring_1.3_ecdsap384_aes_server 43415829 43410093 -5736 (-0.01%) 0.20%
handshake_tickets_ring_1.3_ecdsap256_aes_server 43696241 43690600 -5641 (-0.01%) 0.20%
handshake_tickets_aws_lc_rs_1.2_rsa_aes_client 4300037 4299489 -548 (-0.01%) 0.20%
handshake_session_id_ring_1.3_rsa_aes_server 43413065 43407717 -5348 (-0.01%) 0.20%
handshake_tickets_ring_1.3_ecdsap384_chacha_server 43619580 43614973 -4607 (-0.01%) 0.20%
handshake_session_id_ring_1.3_ecdsap256_chacha_server 43313927 43309353 -4574 (-0.01%) 0.20%
handshake_no_resume_ring_1.3_rsa_aes_client 2949045 2949351 306 (0.01%) 0.20%
handshake_session_id_ring_1.3_ecdsap384_chacha_server 43313288 43308798 -4490 (-0.01%) 0.20%
handshake_tickets_ring_1.3_ecdsap256_chacha_server 43620133 43615928 -4205 (-0.01%) 0.20%
handshake_tickets_ring_1.3_rsa_chacha_server 43617070 43612908 -4162 (-0.01%) 0.20%
handshake_session_id_ring_1.3_rsa_chacha_server 43310946 43306839 -4107 (-0.01%) 0.20%
handshake_no_resume_ring_1.3_ecdsap256_chacha_server 2131668 2131498 -170 (-0.01%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_rsa_chacha_server 80668926 80662628 -6298 (-0.01%) 0.20%
handshake_tickets_ring_1.3_ecdsap256_chacha_client 41971926 41968761 -3165 (-0.01%) 0.20%
handshake_no_resume_ring_1.3_ecdsap256_chacha_client 3916136 3915865 -271 (-0.01%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_aes_client 58230769 58234738 3969 (0.01%) 0.20%
handshake_no_resume_ring_1.2_rsa_aes_client 2856175 2856362 187 (0.01%) 0.20%
handshake_tickets_aws_lc_rs_1.3_rsa_aes_server 32715288 32713223 -2065 (-0.01%) 0.76%
handshake_no_resume_ring_1.3_rsa_chacha_client 2954907 2955093 186 (0.01%) 0.20%
handshake_no_resume_ring_1.3_ecdsap256_aes_client 3914509 3914712 203 (0.01%) 0.20%
handshake_no_resume_ring_1.3_ecdsap256_aes_server 2129417 2129520 103 (0.00%) 0.20%
handshake_tickets_ring_1.3_rsa_aes_client 42055404 42053641 -1763 (-0.00%) 0.20%
handshake_session_id_ring_1.3_ecdsap256_chacha_client 41769984 41771552 1568 (0.00%) 0.20%
handshake_no_resume_ring_1.3_ecdsap384_aes_server 13737905 13737538 -367 (-0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_chacha_client 92690919 92688458 -2461 (-0.00%) 0.20%
handshake_session_id_ring_1.3_ecdsap384_chacha_client 41767288 41766304 -984 (-0.00%) 0.20%
handshake_session_id_ring_1.3_rsa_chacha_client 41785140 41784165 -975 (-0.00%) 0.20%
handshake_session_id_ring_1.3_rsa_aes_client 41866376 41865453 -923 (-0.00%) 0.20%
handshake_tickets_ring_1.3_ecdsap384_chacha_client 41966226 41965352 -874 (-0.00%) 0.20%
handshake_no_resume_aws_lc_rs_1.3_rsa_aes_client 2216044 2216012 -32 (-0.00%) 0.20%
handshake_no_resume_ring_1.2_rsa_aes_server 11985242 11985073 -169 (-0.00%) 0.20%
transfer_no_resume_ring_1.3_ecdsap256_chacha_client 92648848 92649977 1129 (0.00%) 0.20%
handshake_no_resume_ring_1.3_ecdsap384_chacha_client 35473514 35473903 389 (0.00%) 0.20%
handshake_no_resume_ring_1.3_rsa_aes_server 12168130 12168001 -129 (-0.00%) 0.20%
handshake_tickets_ring_1.3_ecdsap256_aes_client 42040826 42040381 -445 (-0.00%) 0.20%
handshake_no_resume_ring_1.3_rsa_chacha_server 12174229 12174103 -126 (-0.00%) 0.20%
handshake_session_id_ring_1.3_ecdsap384_aes_client 41847507 41847094 -413 (-0.00%) 0.20%
handshake_no_resume_ring_1.3_ecdsap384_aes_client 35471552 35471828 276 (0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_rsa_aes_client 58233209 58232761 -448 (-0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.2_rsa_aes_client 68653198 68653708 510 (0.00%) 0.20%
transfer_no_resume_ring_1.3_ecdsap384_aes_client 58314438 58314035 -403 (-0.00%) 0.20%
transfer_no_resume_ring_1.3_ecdsap256_aes_server 46453999 46453705 -294 (-0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_chacha_server 80609839 80609351 -488 (-0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_aes_server 46430026 46430296 270 (0.00%) 0.20%
handshake_no_resume_ring_1.3_ecdsap384_chacha_server 13739723 13739797 74 (0.00%) 0.20%
handshake_tickets_ring_1.3_ecdsap384_aes_client 42036321 42036102 -219 (-0.00%) 0.20%
transfer_no_resume_ring_1.3_ecdsap256_aes_client 58317258 58316961 -297 (-0.00%) 0.20%
transfer_no_resume_ring_1.3_ecdsap384_chacha_client 92646860 92646412 -448 (-0.00%) 0.20%
transfer_no_resume_ring_1.2_rsa_aes_client 58200267 58200042 -225 (-0.00%) 0.20%
transfer_no_resume_ring_1.3_ecdsap256_chacha_server 80507035 80506726 -309 (-0.00%) 0.20%
transfer_no_resume_ring_1.3_rsa_chacha_client 92650913 92651249 336 (0.00%) 0.20%
transfer_no_resume_ring_1.3_ecdsap384_chacha_server 80510355 80510640 285 (0.00%) 0.20%
handshake_no_resume_aws_lc_rs_1.2_rsa_aes_client 2015061 2015054 -7 (-0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_rsa_chacha_client 92690990 92691218 228 (0.00%) 0.20%
handshake_session_id_ring_1.3_ecdsap256_aes_client 41852019 41851924 -95 (-0.00%) 0.20%
handshake_tickets_ring_1.3_rsa_chacha_client 41984329 41984246 -83 (-0.00%) 0.20%
transfer_no_resume_ring_1.3_rsa_aes_client 58318005 58318118 113 (0.00%) 0.20%
transfer_no_resume_ring_1.3_ecdsap384_aes_server 46457188 46457275 87 (0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_aes_server 46430043 46430111 68 (0.00%) 0.20%
transfer_no_resume_ring_1.2_rsa_aes_server 46361652 46361713 61 (0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_rsa_aes_server 46474194 46474250 56 (0.00%) 0.27%
transfer_no_resume_ring_1.3_rsa_aes_server 46461866 46461833 -33 (-0.00%) 0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_chacha_server 80609422 80609397 -25 (-0.00%) 0.20%
transfer_no_resume_ring_1.3_rsa_chacha_server 80514741 80514756 15 (0.00%) 0.20%

Wall-time

Significant differences

There are no significant wall-time differences

Other differences

Click to expand
Scenario Baseline Candidate Diff Threshold
handshake_session_id_ring_1.3_ecdsap256_aes 6.74 ms 6.71 ms -0.03 ms (-0.49%) 1.00%
handshake_session_id_ring_1.3_ecdsap256_chacha 6.70 ms 6.67 ms -0.03 ms (-0.46%) 1.00%
handshake_session_id_ring_1.3_rsa_chacha 7.19 ms 7.16 ms -0.03 ms (-0.45%) 1.00%
handshake_tickets_ring_1.2_rsa_aes 1.63 ms 1.64 ms 0.01 ms (0.45%) 1.00%
handshake_session_id_ring_1.2_rsa_aes 1.55 ms 1.56 ms 0.01 ms (0.44%) 1.29%
handshake_session_id_ring_1.3_rsa_aes 7.23 ms 7.20 ms -0.03 ms (-0.44%) 1.00%
handshake_tickets_ring_1.3_ecdsap256_chacha 6.72 ms 6.69 ms -0.03 ms (-0.43%) 1.26%
handshake_tickets_ring_1.3_ecdsap256_aes 6.76 ms 6.73 ms -0.03 ms (-0.41%) 1.00%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_aes 5.28 ms 5.26 ms -0.02 ms (-0.39%) 1.00%
handshake_tickets_ring_1.3_rsa_chacha 7.20 ms 7.18 ms -0.03 ms (-0.37%) 1.00%
handshake_session_id_ring_1.3_ecdsap384_chacha 9.79 ms 9.76 ms -0.04 ms (-0.36%) 1.00%
handshake_tickets_ring_1.3_rsa_aes 7.25 ms 7.22 ms -0.03 ms (-0.36%) 1.00%
handshake_tickets_ring_1.3_ecdsap384_aes 9.85 ms 9.82 ms -0.03 ms (-0.32%) 1.00%
handshake_session_id_ring_1.3_ecdsap384_aes 9.83 ms 9.80 ms -0.03 ms (-0.30%) 1.00%
handshake_tickets_ring_1.3_ecdsap384_chacha 9.81 ms 9.78 ms -0.03 ms (-0.30%) 1.00%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_chacha 1.19 ms 1.18 ms -0.00 ms (-0.27%) 1.17%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_aes 5.99 ms 5.97 ms -0.02 ms (-0.26%) 1.03%
handshake_no_resume_aws_lc_rs_1.2_rsa_aes 1.38 ms 1.37 ms -0.00 ms (-0.26%) 1.28%
handshake_session_id_aws_lc_rs_1.3_rsa_aes 6.24 ms 6.23 ms -0.01 ms (-0.24%) 1.06%
transfer_no_resume_aws_lc_rs_1.2_rsa_aes 5.52 ms 5.51 ms -0.01 ms (-0.23%) 3.87%
handshake_tickets_aws_lc_rs_1.3_rsa_aes 6.25 ms 6.24 ms -0.01 ms (-0.22%) 1.08%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_aes 1.19 ms 1.19 ms -0.00 ms (-0.22%) 1.10%
transfer_no_resume_ring_1.2_rsa_aes 6.80 ms 6.78 ms -0.01 ms (-0.21%) 3.63%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_aes 5.29 ms 5.28 ms -0.01 ms (-0.21%) 1.20%
handshake_tickets_aws_lc_rs_1.2_rsa_aes 2.24 ms 2.23 ms -0.00 ms (-0.19%) 1.54%
handshake_no_resume_aws_lc_rs_1.3_rsa_chacha 1.42 ms 1.42 ms -0.00 ms (-0.17%) 1.21%
transfer_no_resume_ring_1.3_ecdsap256_chacha 13.06 ms 13.03 ms -0.02 ms (-0.17%) 1.91%
handshake_no_resume_aws_lc_rs_1.3_rsa_aes 1.43 ms 1.43 ms -0.00 ms (-0.17%) 1.11%
handshake_no_resume_ring_1.2_rsa_aes 979.04 µs 977.54 µs -1.50 µs (-0.15%) 1.00%
transfer_no_resume_ring_1.3_rsa_chacha 13.55 ms 13.53 ms -0.02 ms (-0.15%) 1.61%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_aes 481.85 µs 481.16 µs -0.69 µs (-0.14%) 3.55%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_aes 6.00 ms 6.00 ms -0.01 ms (-0.14%) 1.00%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_chacha 5.25 ms 5.24 ms -0.01 ms (-0.14%) 1.15%
transfer_no_resume_ring_1.3_ecdsap384_chacha 16.16 ms 16.13 ms -0.02 ms (-0.13%) 1.63%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_chacha 5.96 ms 5.95 ms -0.01 ms (-0.13%) 1.00%
transfer_no_resume_ring_1.3_ecdsap384_aes 9.48 ms 9.49 ms 0.01 ms (0.12%) 2.78%
handshake_no_resume_ring_1.3_ecdsap256_chacha 505.79 µs 505.16 µs -0.62 µs (-0.12%) 2.57%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_chacha 5.28 ms 5.28 ms 0.01 ms (0.11%) 1.00%
handshake_no_resume_ring_1.3_rsa_aes 999.28 µs 998.38 µs -0.90 µs (-0.09%) 1.00%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_chacha 480.18 µs 479.77 µs -0.41 µs (-0.09%) 3.57%
handshake_session_id_aws_lc_rs_1.3_rsa_chacha 6.22 ms 6.21 ms -0.01 ms (-0.08%) 1.20%
handshake_no_resume_ring_1.3_rsa_chacha 1.00 ms 1.00 ms -0.00 ms (-0.08%) 1.19%
handshake_no_resume_ring_1.3_ecdsap256_aes 507.98 µs 507.59 µs -0.39 µs (-0.08%) 2.43%
handshake_session_id_aws_lc_rs_1.2_rsa_aes 2.08 ms 2.08 ms 0.00 ms (0.08%) 1.81%
handshake_tickets_aws_lc_rs_1.3_rsa_chacha 6.25 ms 6.24 ms -0.00 ms (-0.07%) 1.05%
transfer_no_resume_ring_1.3_ecdsap256_aes 6.38 ms 6.39 ms 0.00 ms (0.07%) 3.75%
transfer_no_resume_aws_lc_rs_1.3_rsa_chacha 13.99 ms 13.98 ms -0.01 ms (-0.06%) 1.95%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_chacha 5.99 ms 5.99 ms 0.00 ms (0.05%) 1.00%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_aes 4.57 ms 4.57 ms -0.00 ms (-0.05%) 6.46%
transfer_no_resume_aws_lc_rs_1.3_rsa_aes 5.52 ms 5.52 ms 0.00 ms (0.05%) 4.63%
transfer_no_resume_ring_1.3_rsa_aes 6.88 ms 6.88 ms -0.00 ms (-0.04%) 3.62%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_aes 5.28 ms 5.29 ms 0.00 ms (0.04%) 5.00%
handshake_no_resume_ring_1.3_ecdsap384_chacha 3.60 ms 3.60 ms 0.00 ms (0.03%) 1.00%
handshake_no_resume_ring_1.3_ecdsap384_aes 3.61 ms 3.61 ms -0.00 ms (-0.03%) 1.00%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_chacha 13.74 ms 13.74 ms -0.00 ms (-0.02%) 1.67%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_chacha 13.03 ms 13.03 ms -0.00 ms (-0.01%) 1.92%

Additional information

Historical results

Checkout details:

ctz
ctz reviewed May 17, 2024
View reviewed changes
Copy link
Member

@ctz ctz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! Could benefit from some squashes, especially the back-and-forth on the testing commits.

@cpu cpu mentioned this pull request May 17, 2024
Open
cpu
cpu approved these changes May 17, 2024
View reviewed changes
Copy link
Member

@cpu cpu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚀

@cpu cpu requested a review from ctz May 21, 2024 13:21
@cpu cpu added this pull request to the merge queue May 21, 2024
@cpu
Copy link
Member

cpu commented May 21, 2024

cpu added this pull request to the merge queue 51 minutes ago

This seems to be jammed up. The last job (Build+test (stable, ubuntu-latest)) is completed, but spinning.

I'm going to pull it out and requeue and see if that does the trick.

@cpu cpu removed this pull request from the merge queue due to a manual request May 21, 2024
@cpu cpu added this pull request to the merge queue May 21, 2024
@cpu
Copy link
Member

cpu commented May 21, 2024

I'm going to pull it out and requeue and see if that does the trick.

Looks like there's a broader outage.

Merged via the queue into rustls:main with commit 572f970 May 21, 2024
25 checks passed
@jasperpatterson jasperpatterson deleted the jasper/crl-expiration branch May 21, 2024 17:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@djc djc djc approved these changes

@cpu cpu cpu approved these changes

@ctz ctz ctz approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@jasperpatterson @cpu @djc @ctz