adjust FIPS feature handling w.r.t aws-lc-sys #2291

cpu · 2024-12-24T19:18:32Z

Previously rustls unconditionally used the aws-lc-sys and prebuilt-nasm features of the aws-lc-rs dep, meaning we always brought along aws-lc-sys (note the prebuilt-nasm feature customizes that dep). See rustls/webpki#307

However, when a user is looking for a FIPS crypto provider we want to avoid bringing in aws-lc-sys and instead use aws-lc-rs/fips to get aws-lc-fips-sys.

This commit makes the aws-lc-rs feature of webpki activate the "usual" config: aws-lc-rs/aws-lc-sys w/ aws-lc-rs/prebuilt-nasm to have aws-lc-sys with prebuilt assmebly to avoid the nasm dep.

The pre-existing fips feature of rustls now activates aws-lc-rs/fips. The new downstream webpki/fips feature is activated to have that crate do similar. The net result should be no aws-lc-sys dep, just aws-lc-fips-sys.

codecov · 2024-12-24T19:29:03Z

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 94.89%. Comparing base (72c4c07) to head (59db772).
Report is 3 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #2291   +/-   ##
=======================================
  Coverage   94.89%   94.89%           
=======================================
  Files         103      103           
  Lines       24532    24532           
=======================================
  Hits        23280    23280           
  Misses       1252     1252

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

cpu · 2025-02-27T15:20:37Z

I'll rebase this soon now that #2342 has landed.

Edit: all set.

Previously rustls unconditionally used the aws-lc-sys and prebuilt-nasm features of the aws-lc-rs dep, meaning we always brought along aws-lc-sys (note the prebuilt-nasm feature customizes that dep). However, when a user is looking for a FIPS crypto provider we want to avoid bringing in aws-lc-sys and instead use aws-lc-rs/fips to get aws-lc-fips-sys. This commit makes the aws-lc-rs feature of webpki activate the "usual" config: aws-lc-rs/aws-lc-sys w/ aws-lc-rs/prebuilt-nasm to have aws-lc-sys with prebuilt assmebly to avoid the nasm dep. The pre-existing fips feature of rustls activates aws-lc-rs/fips and the new downstream webpki/aws-lc-rs-fips feature is activated to have that crate do similar. The net result should be no `aws-lc-sys` dep, just `aws-lc-fips-sys`.

rustls-benchmarking · 2025-02-27T19:13:59Z

Benchmark results

Instruction counts

Significant differences

There are no significant instruction count differences

Other differences

Click to expand

Scenario	Baseline	Candidate	Diff	Threshold
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_chacha_client	8244069	`8290626`	46557 (0.56%)	1.08%
handshake_no_resume_aws_lc_rs_1.3_rsa_chacha_server	10714203	10752545	38342 (0.36%)	1.34%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_aes_client	8270555	8291301	20746 (0.25%)	1.30%
handshake_no_resume_aws_lc_rs_1.3_rsa_aes_server	10749831	10730194	-19637 (-0.18%)	1.17%
handshake_no_resume_ring_1.3_ecdsap256_aes_client	3301731	3303697	1966 (0.06%)	0.23%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_aes_server	1143920	1143846	-74 (-0.01%)	1.55%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_chacha_client	3085679	3085839	160 (0.01%)	0.56%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_aes_server	2059478	2059561	83 (0.00%)	0.20%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_aes_client	3083068	3083180	112 (0.00%)	0.51%
handshake_no_resume_ring_1.3_ecdsap256_chacha_client	3305107	3305183	76 (0.00%)	0.26%
handshake_no_resume_aws_lc_rs_1.2_rsa_aes_server	10430610	10430371	-239 (-0.00%)	1.11%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_chacha_client	28202463	28202745	282 (0.00%)	0.20%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_chacha_server	2062604	2062623	19 (0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_aes_client	27864834	27865030	196 (0.00%)	0.20%
handshake_no_resume_aws_lc_rs_1.3_rsa_chacha_client	1934166	1934154	-12 (-0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_aes_server	30445400	30445541	141 (0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_aes_client	27862304	27862431	127 (0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_aes_client	28229475	28229366	-109 (-0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_rsa_chacha_client	28206636	28206534	-102 (-0.00%)	0.20%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_chacha_server	1146211	1146207	-4 (-0.00%)	1.54%
handshake_session_id_aws_lc_rs_1.3_rsa_aes_client	27869361	27869267	-94 (-0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_aes_server	28985316	28985407	91 (0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_chacha_client	27805447	27805360	-87 (-0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_chacha_server	28906754	28906844	90 (0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_chacha_server	30402789	30402698	-91 (-0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_rsa_aes_server	30442997	30442909	-88 (-0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_rsa_chacha_server	28904705	28904624	-81 (-0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_rsa_chacha_server	30400321	30400236	-85 (-0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_rsa_aes_client	28236400	28236325	-75 (-0.00%)	0.20%
handshake_no_resume_ring_1.3_ecdsap256_aes_server	1295868	1295865	-3 (-0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_rsa_aes_server	28983005	28982941	-64 (-0.00%)	0.20%
handshake_no_resume_aws_lc_rs_1.3_rsa_aes_client	1927408	1927404	-4 (-0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_rsa_chacha_client	27809817	27809863	46 (0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_chacha_client	27802977	27803019	42 (0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_aes_server	28985241	28985278	37 (0.00%)	0.20%
handshake_no_resume_ring_1.3_ecdsap384_chacha_server	7229666	7229674	8 (0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_chacha_server	30403299	30403266	-33 (-0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_aes_server	30445781	30445814	33 (0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_chacha_server	28906929	28906909	-20 (-0.00%)	0.20%
handshake_no_resume_ring_1.3_ecdsap384_chacha_client	34743451	34743472	21 (0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_chacha_client	28199598	28199606	8 (0.00%)	0.20%
transfer_no_resume_ring_1.2_rsa_aes_server	46148667	46148656	-11 (-0.00%)	0.20%
transfer_no_resume_ring_1.3_rsa_aes_server	46241652	46241641	-11 (-0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.2_rsa_aes_server	46407677	46407684	7 (0.00%)	0.20%
transfer_no_resume_ring_1.3_ecdsap384_aes_server	46253820	46253826	6 (0.00%)	0.20%
transfer_no_resume_ring_1.3_ecdsap384_aes_client	58087169	58087162	-7 (-0.00%)	0.20%
handshake_no_resume_ring_1.3_ecdsap384_aes_client	34741532	34741528	-4 (-0.00%)	0.20%
transfer_no_resume_ring_1.3_ecdsap256_chacha_server	80548539	80548547	8 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_chacha_server	80650254	80650248	-6 (-0.00%)	0.20%
transfer_no_resume_ring_1.3_ecdsap256_aes_client	58079376	58079380	4 (0.00%)	0.20%
transfer_no_resume_ring_1.3_ecdsap256_aes_server	46248379	46248382	3 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_chacha_client	92699995	92699990	-5 (-0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.2_rsa_aes_client	58179011	58179014	3 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_aes_client	58236627	58236630	3 (0.00%)	0.20%
transfer_no_resume_ring_1.3_rsa_chacha_server	80541807	80541811	4 (0.00%)	0.20%
transfer_no_resume_ring_1.3_ecdsap384_chacha_client	92681728	92681724	-4 (-0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_aes_server	46458943	46458945	2 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_rsa_aes_server	46461267	46461269	2 (0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_aes_client	28232504	28232505	1 (0.00%)	0.20%
transfer_no_resume_ring_1.3_rsa_aes_client	58090277	58090279	2 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_aes_client	58238864	58238866	2 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_chacha_server	80642624	80642626	2 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_chacha_client	92702224	92702226	2 (0.00%)	0.20%
transfer_no_resume_ring_1.2_rsa_aes_client	57982217	57982216	-1 (-0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_rsa_aes_client	58240947	58240946	-1 (-0.00%)	0.20%
transfer_no_resume_ring_1.3_ecdsap384_chacha_server	80553341	80553342	1 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_rsa_chacha_server	80645589	80645588	-1 (-0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_rsa_chacha_client	92706228	92706227	-1 (-0.00%)	0.20%
handshake_session_id_ring_1.3_rsa_chacha_client	30849763	30849763	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_rsa_chacha_server	32632812	32632812	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_ecdsap256_chacha_server	32154351	32154351	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_rsa_aes_client	30932203	30932203	0 (0.00%)	0.20%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_aes_server	46465925	46465925	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_ecdsap256_chacha_server	32634988	32634988	0 (0.00%)	0.20%
handshake_no_resume_ring_1.2_rsa_aes_server	10999953	10999953	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_ecdsap384_aes_client	30925218	30925218	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_rsa_aes_server	32725887	32725887	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_ecdsap384_aes_client	31223518	31223518	0 (0.00%)	0.20%
handshake_no_resume_ring_1.3_rsa_aes_server	11128442	11128442	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_ecdsap384_chacha_server	32154399	32154399	0 (0.00%)	0.20%
handshake_session_id_ring_1.2_rsa_aes_client	4300152	4300152	0 (0.00%)	0.20%
handshake_no_resume_ring_1.3_rsa_chacha_client	2339309	2339309	0 (0.00%)	0.20%
handshake_no_resume_aws_lc_rs_1.2_rsa_aes_client	1719091	1719091	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_ecdsap256_chacha_client	31164368	31164368	0 (0.00%)	0.20%
handshake_no_resume_ring_1.3_rsa_aes_client	2333453	2333453	0 (0.00%)	0.20%
handshake_no_resume_ring_1.3_ecdsap384_aes_server	7227498	7227498	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_rsa_aes_server	32264956	32264956	0 (0.00%)	0.20%
handshake_tickets_ring_1.2_rsa_aes_client	4563284	4563284	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_ecdsap384_chacha_client	31161109	31161109	0 (0.00%)	0.20%
transfer_no_resume_ring_1.3_rsa_chacha_client	92683561	92683561	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_ecdsap256_chacha_client	30845710	30845710	0 (0.00%)	0.20%
handshake_no_resume_ring_1.3_ecdsap256_chacha_server	1297269	1297269	0 (0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.2_rsa_aes_client	3876055	3876055	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_ecdsap384_chacha_client	30842769	30842769	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_ecdsap384_aes_server	32728238	32728238	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_ecdsap256_aes_server	32267121	32267121	0 (0.00%)	0.20%
handshake_no_resume_ring_1.3_rsa_chacha_server	11134412	11134412	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_ecdsap384_chacha_server	32635208	32635208	0 (0.00%)	0.20%
handshake_no_resume_ring_1.2_rsa_aes_client	2245506	2245506	0 (0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.2_rsa_aes_client	4218259	4218259	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_rsa_aes_client	31230791	31230791	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_rsa_chacha_client	31168370	31168370	0 (0.00%)	0.20%
handshake_session_id_ring_1.2_rsa_aes_server	4297748	4297748	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_rsa_chacha_server	32152186	32152186	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_ecdsap256_aes_server	32728063	32728063	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_ecdsap256_aes_client	30928150	30928150	0 (0.00%)	0.20%
handshake_tickets_ring_1.3_ecdsap256_aes_client	31226789	31226789	0 (0.00%)	0.20%
handshake_session_id_aws_lc_rs_1.2_rsa_aes_server	3872985	3872985	0 (0.00%)	0.20%
transfer_no_resume_ring_1.3_ecdsap256_chacha_client	92672656	92672656	0 (0.00%)	0.20%
handshake_tickets_aws_lc_rs_1.2_rsa_aes_server	5022982	5022982	0 (0.00%)	0.20%
handshake_tickets_ring_1.2_rsa_aes_server	4762382	4762382	0 (0.00%)	0.20%
handshake_session_id_ring_1.3_ecdsap384_aes_server	32267169	32267169	0 (0.00%)	0.20%

Wall-time

Significant differences

There are no significant wall-time differences

Other differences

Click to expand

Scenario	Baseline	Candidate	Diff	Threshold
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_aes	4.53 ms	4.43 ms	-0.10 ms (-2.30%)	6.35%
transfer_no_resume_aws_lc_rs_1.2_rsa_aes	5.13 ms	5.02 ms	-0.11 ms (-2.15%)	5.88%
transfer_no_resume_aws_lc_rs_1.3_rsa_aes	5.20 ms	5.09 ms	-0.11 ms (-2.06%)	6.06%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_aes	5.21 ms	5.12 ms	-0.10 ms (-1.84%)	5.57%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_aes	457.59 µs	450.41 µs	-7.18 µs (-1.57%)	4.00%
transfer_no_resume_ring_1.3_ecdsap256_aes	6.30 ms	6.20 ms	-0.09 ms (-1.49%)	4.71%
transfer_no_resume_ring_1.3_rsa_aes	6.79 ms	6.69 ms	-0.10 ms (-1.46%)	4.13%
transfer_no_resume_ring_1.2_rsa_aes	6.71 ms	6.61 ms	-0.10 ms (-1.44%)	3.67%
handshake_no_resume_aws_lc_rs_1.3_ecdsap256_chacha	455.17 µs	448.77 µs	-6.40 µs (-1.41%)	4.32%
handshake_no_resume_ring_1.3_ecdsap256_chacha	476.42 µs	469.92 µs	-6.50 µs (-1.36%)	3.19%
handshake_no_resume_ring_1.3_ecdsap256_aes	479.01 µs	473.27 µs	-5.74 µs (-1.20%)	2.88%
transfer_no_resume_ring_1.3_ecdsap384_aes	9.44 ms	9.34 ms	-0.10 ms (-1.07%)	2.97%
transfer_no_resume_aws_lc_rs_1.3_ecdsap256_chacha	13.00 ms	12.90 ms	-0.10 ms (-0.76%)	2.45%
transfer_no_resume_ring_1.3_ecdsap256_chacha	13.01 ms	12.91 ms	-0.10 ms (-0.75%)	2.21%
handshake_tickets_ring_1.3_ecdsap256_aes	5.66 ms	5.61 ms	-0.04 ms (-0.75%)	1.00%
transfer_no_resume_ring_1.3_rsa_chacha	13.50 ms	13.40 ms	-0.10 ms (-0.73%)	2.08%
transfer_no_resume_aws_lc_rs_1.3_rsa_chacha	13.68 ms	13.58 ms	-0.10 ms (-0.73%)	2.25%
transfer_no_resume_aws_lc_rs_1.3_ecdsap384_chacha	13.68 ms	13.58 ms	-0.10 ms (-0.72%)	2.20%
handshake_session_id_aws_lc_rs_1.2_rsa_aes	1.63 ms	1.62 ms	-0.01 ms (-0.71%)	2.29%
handshake_tickets_ring_1.2_rsa_aes	1.61 ms	1.60 ms	-0.01 ms (-0.70%)	1.43%
handshake_no_resume_aws_lc_rs_1.3_rsa_aes	1.12 ms	1.11 ms	-0.01 ms (-0.66%)	2.78%
handshake_no_resume_ring_1.2_rsa_aes	964.71 µs	959.00 µs	-5.70 µs (-0.59%)	1.67%
handshake_tickets_aws_lc_rs_1.2_rsa_aes	1.80 ms	1.79 ms	-0.01 ms (-0.59%)	2.37%
handshake_session_id_ring_1.3_ecdsap256_aes	5.59 ms	5.55 ms	-0.03 ms (-0.58%)	1.04%
handshake_tickets_ring_1.3_rsa_aes	6.15 ms	6.12 ms	-0.04 ms (-0.58%)	1.00%
handshake_no_resume_aws_lc_rs_1.2_rsa_aes	1.08 ms	1.08 ms	-0.01 ms (-0.57%)	3.12%
handshake_tickets_ring_1.3_ecdsap384_aes	8.78 ms	8.73 ms	-0.05 ms (-0.56%)	1.00%
handshake_session_id_ring_1.3_rsa_chacha	6.04 ms	6.00 ms	-0.03 ms (-0.55%)	1.00%
transfer_no_resume_ring_1.3_ecdsap384_chacha	16.12 ms	16.03 ms	-0.09 ms (-0.55%)	1.86%
handshake_no_resume_ring_1.3_rsa_chacha	969.25 µs	963.94 µs	-5.32 µs (-0.55%)	1.39%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_aes	1.14 ms	1.14 ms	-0.01 ms (-0.54%)	1.23%
handshake_session_id_ring_1.3_ecdsap256_chacha	5.54 ms	5.51 ms	-0.03 ms (-0.52%)	1.00%
handshake_session_id_ring_1.3_rsa_aes	6.08 ms	6.05 ms	-0.03 ms (-0.52%)	1.00%
handshake_tickets_aws_lc_rs_1.3_rsa_aes	5.19 ms	5.16 ms	-0.03 ms (-0.52%)	1.61%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_chacha	4.29 ms	4.27 ms	-0.02 ms (-0.51%)	2.01%
handshake_tickets_ring_1.3_rsa_chacha	6.11 ms	6.08 ms	-0.03 ms (-0.49%)	1.00%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_chacha	4.49 ms	4.46 ms	-0.02 ms (-0.48%)	1.76%
handshake_tickets_ring_1.3_ecdsap256_chacha	5.61 ms	5.59 ms	-0.03 ms (-0.47%)	1.00%
handshake_session_id_ring_1.3_ecdsap384_chacha	8.66 ms	8.62 ms	-0.04 ms (-0.46%)	1.00%
handshake_no_resume_aws_lc_rs_1.3_ecdsap384_chacha	1.13 ms	1.13 ms	-0.01 ms (-0.46%)	1.48%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_chacha	4.96 ms	4.94 ms	-0.02 ms (-0.46%)	1.58%
handshake_tickets_aws_lc_rs_1.3_rsa_chacha	5.18 ms	5.15 ms	-0.02 ms (-0.44%)	1.43%
handshake_session_id_aws_lc_rs_1.3_rsa_chacha	4.97 ms	4.95 ms	-0.02 ms (-0.42%)	1.02%
handshake_session_id_ring_1.3_ecdsap384_aes	8.70 ms	8.67 ms	-0.04 ms (-0.42%)	1.00%
handshake_tickets_ring_1.3_ecdsap384_chacha	8.74 ms	8.70 ms	-0.04 ms (-0.42%)	1.00%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_chacha	5.16 ms	5.14 ms	-0.02 ms (-0.40%)	1.59%
handshake_no_resume_ring_1.3_rsa_aes	967.09 µs	963.30 µs	-3.79 µs (-0.39%)	1.25%
handshake_tickets_aws_lc_rs_1.3_ecdsap256_aes	4.51 ms	4.49 ms	-0.02 ms (-0.38%)	2.36%
handshake_tickets_aws_lc_rs_1.3_ecdsap384_aes	5.20 ms	5.18 ms	-0.02 ms (-0.36%)	1.71%
handshake_session_id_aws_lc_rs_1.3_rsa_aes	4.99 ms	4.98 ms	-0.02 ms (-0.35%)	1.63%
handshake_session_id_aws_lc_rs_1.3_ecdsap384_aes	5.00 ms	4.98 ms	-0.02 ms (-0.34%)	1.76%
handshake_session_id_aws_lc_rs_1.3_ecdsap256_aes	4.31 ms	4.30 ms	-0.01 ms (-0.31%)	2.26%
handshake_session_id_ring_1.2_rsa_aes	1.52 ms	1.52 ms	-0.00 ms (-0.25%)	1.05%
handshake_no_resume_ring_1.3_ecdsap384_chacha	3.60 ms	3.59 ms	-0.01 ms (-0.24%)	1.00%
handshake_no_resume_ring_1.3_ecdsap384_aes	3.60 ms	3.59 ms	-0.01 ms (-0.18%)	1.00%
handshake_no_resume_aws_lc_rs_1.3_rsa_chacha	1.12 ms	1.12 ms	-0.00 ms (-0.15%)	1.11%

Additional information

Historical results

Checkout details:

Base repo: https://github.com/rustls/rustls.git
Base branch: main (72c4c07)
Candidate repo: https://github.com/cpu/rustls.git
Candidate branch: cpu-webpki-fips-refinement (59db772)

cpu mentioned this pull request Dec 24, 2024

Please add FIPS feature to mirror rustls FIPS feature to use aws-lc-fips-sys only (without aws-lc-sys) rustls/webpki#307

Closed

xnox mentioned this pull request Dec 26, 2024

Globally set transitive features (especially for FIPS), or block certain features rust-lang/cargo#14984

Closed

cpu force-pushed the cpu-webpki-fips-refinement branch from c4fc455 to f921b09 Compare December 28, 2024 16:25

ctz mentioned this pull request Jan 20, 2025

fips feature: both fips and non-fips aws-lc-sys is compiled and present in the library rustls/rustls-ffi#528

Closed

cpu mentioned this pull request Feb 7, 2025

Improve fmt::Display for common error variants rustls/webpki#316

Closed

cpu self-assigned this Feb 27, 2025

cpu force-pushed the cpu-webpki-fips-refinement branch from f921b09 to 59db772 Compare February 27, 2025 19:09

cpu marked this pull request as ready for review February 27, 2025 19:09

cpu requested review from ctz and djc and removed request for ctz February 27, 2025 19:09

djc approved these changes Feb 27, 2025

View reviewed changes

ctz approved these changes Feb 27, 2025

View reviewed changes

cpu enabled auto-merge February 27, 2025 19:15

cpu added this pull request to the merge queue Feb 27, 2025

auto-merge was automatically disabled February 27, 2025 19:30
Pull Request is not mergeable

Merged via the queue into rustls:main with commit 8926dc6 Feb 27, 2025
33 checks passed

cpu deleted the cpu-webpki-fips-refinement branch February 27, 2025 19:30

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

adjust FIPS feature handling w.r.t aws-lc-sys #2291

adjust FIPS feature handling w.r.t aws-lc-sys #2291

Uh oh!

cpu commented Dec 24, 2024 •

edited

Loading

Uh oh!

codecov bot commented Dec 24, 2024 •

edited

Loading

Uh oh!

cpu commented Feb 27, 2025 •

edited

Loading

Uh oh!

rustls-benchmarking bot commented Feb 27, 2025 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

adjust FIPS feature handling w.r.t aws-lc-sys #2291

adjust FIPS feature handling w.r.t aws-lc-sys #2291

Uh oh!

Conversation

cpu commented Dec 24, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

codecov bot commented Dec 24, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Codecov Report

Uh oh!

cpu commented Feb 27, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

rustls-benchmarking bot commented Feb 27, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Benchmark results

Instruction counts

Significant differences

Other differences

Wall-time

Significant differences

Other differences

Additional information

Uh oh!

Uh oh!

Uh oh!

cpu commented Dec 24, 2024 •

edited

Loading

codecov bot commented Dec 24, 2024 •

edited

Loading

cpu commented Feb 27, 2025 •

edited

Loading

rustls-benchmarking bot commented Feb 27, 2025 •

edited

Loading