<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Tue, May 23, 2017 at 1:54 AM, Glyph <span dir="ltr"><<a href="mailto:glyph@twistedmatrix.com" target="_blank">glyph@twistedmatrix.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span class="gmail-"><br>
> On May 22, 2017, at 5:38 PM, Jason Litzinger <<a href="mailto:jlitzingerdev@gmail.com">jlitzingerdev@gmail.com</a>> wrote:<br>
><br>
>> Thanks for spotting it - please submit a PR to fix it :)<br>
> Copy that, was planning on it, though originally the context was in<br>
> comparison to an existing benchmark.<br>
><br>
> I assume the process/coding policies match submissions for Twisted<br>
> Proper? I briefly searched for docs specific to benchmark updates but<br>
> didn't see anything glaring.<br>
<br>
</span>It's a bit less formal, but largely similar. The main difference is that you should just file a Github issue rather than a Trac ticket.<br>
<span class="gmail-"><br>
> I'm sure I'll need some guidance as to the best way to do this in a<br>
> fully isolated environment. For example, the host cert is somewhat<br>
> tricky. The simplest thing would be to serve up a self-signed cert, but<br>
> I think a realistic benchmark needs to validate a full chain and do<br>
> hostname verification. Is a PR discussion the best place for these<br>
> questions?<br>
<br>
</span>You can keep asking questions here.<br>
<br>
The benchmark could use the Cryptography x509 layer to do setup for a custom CA cert, similar to the way many unit tests in Twisted already do...<br></blockquote><div><br></div><div>The cryptography APIs for making certs are pretty straightforward and well documented. But if another example helps, here's some code that creates a self-signed ca cert and a client cert with an intermediate cert in between:</div><div><br></div><div> <a href="https://github.com/LeastAuthority/txkube/blob/faa0374fcef6d089af39a98310f1bd798eb54b08/src/txkube/test/test_authentication.py#L17-L29">https://github.com/LeastAuthority/txkube/blob/faa0374fcef6d089af39a98310f1bd798eb54b08/src/txkube/test/test_authentication.py#L17-L29</a><br></div><div> <a href="https://github.com/LeastAuthority/txkube/blob/faa0374fcef6d089af39a98310f1bd798eb54b08/src/txkube/test/test_authentication.py#L276-L309">https://github.com/LeastAuthority/txkube/blob/faa0374fcef6d089af39a98310f1bd798eb54b08/src/txkube/test/test_authentication.py#L276-L309</a><br></div><div><br></div><div>Jean-Paul</div><div><br></div></div></div></div>