Rémy,
On 2/14/16 5:36 PM, Rémy Maucherat wrote:
> 2016-02-14 22:45 GMT+01:00 Mark Thomas :
>
>> All,
>>
>> In preparation for the connector selection webinar next week, I just did
>> a quick test of NIO + JSSE and NIO + OpenSSL.
>>
>> I was working with 9.0.x trunk including my JASPIC patch
>>
>>
2016-02-15 19:47 GMT+01:00 Mark Thomas :
> I tested ECDHE-RSA-AES128-GCM-SHA256 which is Mozilla's recommended
> cipher for 'modern' httpd configurations.
>
> I saw a 20% improvement with NIO+OpenSSL compared to NIO+JSSE on windows.
>
> The figures are going to vary with OS, test client, target re
On 15/02/2016 16:47, Rémy Maucherat wrote:
> 2016-02-15 14:57 GMT+01:00 jean-frederic clere :
>
>> Using a cipher that allow HTTP/2 to work with the standard browsers
>> (like firefox and chrome) make sense otherwise we would be benching an
>> old "unsafe" cipher.
>>
>> I can't rerun my apache con
2016-02-15 14:57 GMT+01:00 jean-frederic clere :
> Using a cipher that allow HTTP/2 to work with the standard browsers
> (like firefox and chrome) make sense otherwise we would be benching an
> old "unsafe" cipher.
>
> I can't rerun my apache con tests right now but that time
> AES128-GCM-SHA256 w
On 02/15/2016 11:30 AM, Rémy Maucherat wrote:
> 2016-02-15 10:45 GMT+01:00 Mark Thomas :
>
>> Looks like such a claim is indeed over simplified.
>>
>> Having tweaking the test so the same cipher is used, NIO+JSSE is about
>> 10% faster than NIO+OpenSSL :(
>>
>> Enabling direct buffers didn't seem
2016-02-15 10:45 GMT+01:00 Mark Thomas :
> Looks like such a claim is indeed over simplified.
>
> Having tweaking the test so the same cipher is used, NIO+JSSE is about
> 10% faster than NIO+OpenSSL :(
>
> Enabling direct buffers didn't seem to help.
>
Well, you're probably using an unoptimized c
On 15/02/2016 08:11, Mark Thomas wrote:
> On 14/02/2016 22:36, Rémy Maucherat wrote:
>> SSL tests are difficult however, what do you use ?
>
> The same test as I was using for JASPIC.
>
>> Direct buffers help
>> OpenSSL a lot for example (socket.directBuffer and socket.directSslBuffer
>> to tru
2016-02-15 9:11 GMT+01:00 Mark Thomas :
> > Direct buffers help
> > OpenSSL a lot for example (socket.directBuffer and socket.directSslBuffer
> > to true). Also one important item is to make sure the tests all use the
> > same cipher, especially with ab (JSSE might not use the same cipher as
> > O
On 14/02/2016 22:36, Rémy Maucherat wrote:
> 2016-02-14 22:45 GMT+01:00 Mark Thomas :
>
>> All,
>>
>> In preparation for the connector selection webinar next week, I just did
>> a quick test of NIO + JSSE and NIO + OpenSSL.
>>
>> I was working with 9.0.x trunk including my JASPIC patch
>>
>> NIO +
2016-02-14 22:45 GMT+01:00 Mark Thomas :
> All,
>
> In preparation for the connector selection webinar next week, I just did
> a quick test of NIO + JSSE and NIO + OpenSSL.
>
> I was working with 9.0.x trunk including my JASPIC patch
>
> NIO + JSSE ~8200 requests/second
>
> Add the native lib to $
All,
In preparation for the connector selection webinar next week, I just did
a quick test of NIO + JSSE and NIO + OpenSSL.
I was working with 9.0.x trunk including my JASPIC patch
NIO + JSSE ~8200 requests/second
Add the native lib to $CATALINA_BASE/bin and restart.
No other changes at all.
N
11 matches
Mail list logo