Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

optimize server-side full handshakes for TLS 1.2 and 1.3 #1830

Open
bdaehlie opened this issue Mar 1, 2024 · 1 comment
Open

optimize server-side full handshakes for TLS 1.2 and 1.3 #1830

bdaehlie opened this issue Mar 1, 2024 · 1 comment
Labels
performance_enhancement Pull requests that should improve performance

Comments

@bdaehlie
Copy link
Contributor

bdaehlie commented Mar 1, 2024

We ran the Rustls benchmarking tool with the Rustls v0.23 release and Rustls appears to be a bit slower than OpenSSL 3.2.0 on server-side full handshakes for TLS 1.2 and 1.3. We should optimize until we are faster than OpenSSL.
@bdaehlie bdaehlie added the performance_enhancement Pull requests that should improve performance label Mar 1, 2024
@ctz
Copy link
Member

ctz commented Mar 1, 2024

Possible investigation ideas:

  • add ECDSA or ED25519 support to the openssl-bench tool, and use that to see if it boils down to RSA signing performance, or something else.
  • compare using rustls-libcrypto (a rustls CryptoProvider on top of OpenSSL libcrypto) to control for crypto library (nb. does not exist at the time of writing)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
performance_enhancement Pull requests that should improve performance
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@bdaehlie @ctz