Skip to content

Add back ssl stat counters#731

Merged
samuel40791765 merged 12 commits intoaws:mainfrom
samuel40791765:ssl-counters
Jan 4, 2023
Merged

Add back ssl stat counters#731
samuel40791765 merged 12 commits intoaws:mainfrom
samuel40791765:ssl-counters

Conversation

@samuel40791765
Copy link
Copy Markdown
Contributor

@samuel40791765 samuel40791765 commented Dec 17, 2022

Issues:

Resolves CryptoAlg-1462

Description of changes:

This is an attempt to add back the ssl stat counters that were taken out from BoringSSL in these commits:

Call-outs:

Details can be found in the doc under the thread of the SIM

Testing:

WIP

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license and
the ISC license.

@samuel40791765 samuel40791765 force-pushed the ssl-counters branch 3 times, most recently from 7d6a06a to ac6a284 Compare December 20, 2022 03:25
andrewhop
andrewhop reviewed Dec 21, 2022
View reviewed changes
andrewhop
andrewhop reviewed Dec 21, 2022
View reviewed changes
ssl/ssl_test.cc Outdated
thread.join();
}
}
EXPECT_EQ(SSL_CTX_sess_misses(server_ctx_.get()), 255);
Copy link
Copy Markdown
Contributor

@andrewhop andrewhop Dec 21, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you explain what this test is doing and why there is one less miss than timeout?

andrewhop
andrewhop previously approved these changes Dec 22, 2022
View reviewed changes
@torben-hansen
Copy link
Copy Markdown
Contributor

torben-hansen commented Dec 22, 2022

Does this take into account the session transfer feature?

@samuel40791765
Copy link
Copy Markdown
Contributor Author

samuel40791765 commented Dec 22, 2022

Does this take into account the session transfer feature?

No, but good question. These were based on a customer ask from the same team, the counters provide valuable insight for them into SSL usage and interactions.
SSL_CTX is a shared state management configuration, so the data inside it won't be transferred around like the SSL structures for the session transfer feature.

dkostic
dkostic reviewed Dec 22, 2022
View reviewed changes
@samuel40791765 samuel40791765 merged commit fc60976 into aws:main Jan 4, 2023
@samuel40791765 samuel40791765 deleted the ssl-counters branch January 4, 2023 00:20
R3hankhan123 pushed a commit to R3hankhan123/aws-lc that referenced this pull request Aug 29, 2025
@justsmth
Bump aws-lc-fips-sys to v0.13.4 (aws#731)
f7d299c 
* Bump aws-lc-fips-sys to v0.13.4

* Symbols from macos-14-xlarge

* Symbols from ubuntu-latest

* Symbols from macos-13

* Symbols for aarch64-unknown-linux-musl

* Symbols for aarch64-unknown-linux-gnu

* Symbols for x86_64-unknown-linux-musl

* Generated headers

* Generated bindings from macos-14-xlarge

* Generated bindings from ubuntu-latest

* Generated bindings for aarch64-unknown-linux-musl

* Generated bindings for aarch64-unknown-linux-gnu

* Generated bindings from macos-13

* Generated bindings for x86_64-unknown-linux-musl

---------

Co-authored-by: aws-lc-fips-sys-bindings-generator <aws-lc-github-bot@amazon.com>
@wtarreau wtarreau mentioned this pull request Oct 29, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dkostic dkostic dkostic approved these changes

+1 more reviewer

@andrewhop andrewhop andrewhop approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@samuel40791765 @torben-hansen @dkostic @andrewhop