1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
|
# Trillian Feature/Implementation Matrix
- [Overview](#overview)
- [Functionality](#functionality)
- [Log v1](#trillian-log-v1)
- [Log v2](#trillian-log-v2-skylog)
- [Concrete implementations](#concrete-implementations)
- [Storage](#storage)
- [Monitoring](#monitoring)
- [Master election](#master-election)
- [Quota](#quota)
## Overview
This page summarises the various features which are present in Trillian, and
their implementation status.
The status of features is listed as one of:
* Not Implemented (NI)
* In Development
* Partial
* Alpha
* Beta
* General Availability (GA)
* Deprecated (⚠)
## Functionality
| | Status | Deployed in production | Notes |
|:--- | :---: | :---: |:--- |
| Log V1 | GA | ✓ | |
### Trillian Log V1
This is feature complete, and is actively used in production by multiple CT log operators, including Google.
### Trillian Log V2 (Skylog)
Skylog is an append-only log with considerably higher throughput and lower integration latency than the v1 log.
It currently exists as internal prototype.
## Concrete implementations
This section lists the status of implementations for the _pluggable_ subsystems which Trillian supports.
[Build tags](/storage/README.md#build-tags) can be used to control which [storage](#storage) and
[quota](#quota) implementations are compiled in to Trillian binaries.
### Storage
Trillian supports "pluggable" storage implementations for durable storage of the merkle tree data.
The state and characteristics of these implementations are detailed below.
#### V1 log storage
The Log storage implementations supporting the original Trillian log.
| Storage | Status | Deployed in prod | Notes |
|:--- | :---: | :---: |:--- |
| Spanner | GA | ✓ | Google internal-only, see CloudSpanner for external use. |
| CloudSpanner | Beta | | Google maintains continuous-integration environment based on CloudSpanner. |
| MySQL | GA | ✓ | |
| CockroachDB | Alpha | | Supported by [Equinix Metal](https://deploy.equinix.com/). |
| PostgreSQL | Beta | | Supported by [Rob Stradling](https://github.com/robstradling) at [Sectigo](https://github.com/sectigo). |
##### Spanner
This is a Google-internal implementation, and is used by all of Google's current Trillian deployments.
##### CloudSpanner
This implementation uses the Google CloudSpanner APIs in GCE.
It's been tested to tens of billions of entries and tens of log tenants.
Performance largely depends on the number of CloudSpanner servers allocated,
but write throughput of 1000+ entries/s has been observed.
[Issue #1681](https://github.com/google/trillian/issues/1681) tracks this becoming ready for GA.
##### MySQL
This implementation has been tested with MySQL 5.7.
It's currently in production use by at least one CT log operator.
Write throughput of 4-500 entries/s has been observed.
##### CockroachDB
This implementation has been tested with CockroachDB 22.1.10.
It's currently in alpha mode and is not yet in production use.
##### PostgreSQL
This implementation has been tested with PostgreSQL 17.0 and 13.20.
It's currently in beta mode, and is used by some of Sectigo's current Trillian deployments.
### Monitoring
Supported monitoring frameworks, allowing for production monitoring and alerting.
| Monitoring | Status | Deployed in prod | Notes |
|:--- | :---: | :---: |:--- |
| Prometheus | GA | ✓ | |
| OpenCensus | Partial | | Currently, only support for Tracing is implemented. |
### Master election
Supported frameworks for providing Master Election.
| Election | Status | Deployed in prod | Notes |
|:---------|:------:|:----------------:|:---------------------------------------------------------------------------------------|
| Chubby | GA | ✓ | Google internal-only. |
| etcd | GA | ✓ | |
| k8s | Alpha | | Supported by [Tomas Turek](https://github.com/osmman) at [Red Hat](https://redhat.com) |
### Quota
Supported frameworks for quota management.
| Implementation | Status | Deployed in prod | Notes |
|:--- | :---: | :---: |:--- |
| Google internal | GA | ✓ | |
| etcd | GA | ✓ | |
| MySQL | Beta | ? | |
| Redis | Alpha | ✓ | |
| CockroachDB | Alpha | | Supported by [Equinix Metal](https://deploy.equinix.com/). |
| PostgreSQL | Beta | | Supported by [Rob Stradling](https://github.com/robstradling) at [Sectigo](https://github.com/sectigo). |
### Key management
Supported frameworks for key management and signing.
| Election | Status | Deployed in prod | Notes |
|:--- | :---: | :---: |:--- |
| Google internal | GA | ✓ | |
| golang stdlib | GA | | i.e PEM files, etc. |
| PKCS#11 | GA | ? | |
|
