-
Notifications
You must be signed in to change notification settings - Fork 636
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use end_entity
variable when verifying CertificateVerify
#1799
Conversation
The function very nicely constructs the `end_entity` variable, use it throughout instead of selecting it again. This makes it so that we use the position of `end_entity` in the chain only once, and it makes it more clear that we're using the previously-verified certificate.
9ef2466
to
4d01019
Compare
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## main #1799 +/- ##
=======================================
Coverage 96.02% 96.02%
=======================================
Files 81 81
Lines 18678 18678
=======================================
Hits 17935 17935
Misses 743 743 ☔ View full report in Codecov by Sentry. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Nice, thanks!
Benchmark resultsInstruction countsSignificant differencesThere are no significant instruction count differences Other differencesClick to expand
Wall-timeSignificant differencesClick to expand
Other differencesClick to expand
Additional informationCheckout details:
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks!
Also, a surprisingly large performance win! |
That is odd, because it includes places where this code isn't even used 🤨 |
Measuring performance is very hard and weird---maybe the small difference in codegen somehow results in other code getting aligned differently or something |
The function very nicely constructs the
end_entity
variable, use it throughout instead of selecting it again.This makes it so that we use the position of
end_entity
in the chain only once, and it makes it more clear that we're using the previously-verified certificate.