Quantcast
Channel: Raspberry Pi Forums
Viewing all articles
Browse latest Browse all 3552

SDK • Slow TLS (server) handshake (~3 seconds) normal?

January 6, 2024, 7:58 pm
$
0
0
I was testing enabling TLS support on Pico HTTP server (using mbedtls_config.h from pico-examples), and noticed about 3 second delay during TLS handshake on incoming connections. Is this to be expected or is there perhaps some tricks that could be used to speed up the TLS handshake?

Code: 

    1 0.000000000  192.168.1.40 → 192.168.4.221 TCP 74 45296 → 443 [SYN] Seq=0 Win=64240 Len=0 MSS=1460 SACK_PERM TSval=1271741520 TSecr=0 WS=128    2 0.105772747 192.168.4.221 → 192.168.1.40  TCP 60 443 → 45296 [SYN, ACK] Seq=0 Ack=1 Win=17520 Len=0 MSS=1460    3 0.105825030  192.168.1.40 → 192.168.4.221 TCP 54 45296 → 443 [ACK] Seq=1 Ack=1 Win=64240 Len=0    4 0.109828290  192.168.1.40 → 192.168.4.221 TLSv1 571 Client Hello    5 0.120327558 192.168.4.221 → 192.168.1.40  TLSv1.2 1201 Server Hello, Certificate, Certificate Request, Server Hello Done    6 0.120389604  192.168.1.40 → 192.168.4.221 TCP 54 45296 → 443 [ACK] Seq=518 Ack=1148 Win=63093 Len=0    7 0.122103775  192.168.1.40 → 192.168.4.221 TLSv1.2 384 Certificate, Client Key Exchange, Change Cipher Spec, Encrypted Handshake Message    8 0.450569223  192.168.1.40 → 192.168.4.221 TCP 384 [TCP Retransmission] 45296 → 443 [PSH, ACK] Seq=518 Ack=1148 Win=63093 Len=330    9 1.090563129  192.168.1.40 → 192.168.4.221 TCP 384 [TCP Retransmission] 45296 → 443 [PSH, ACK] Seq=518 Ack=1148 Win=63093 Len=330   10 2.370580702  192.168.1.40 → 192.168.4.221 TCP 384 [TCP Retransmission] 45296 → 443 [PSH, ACK] Seq=518 Ack=1148 Win=63093 Len=330   11 3.223508406 192.168.4.221 → 192.168.1.40  TLSv1.2 105 Change Cipher Spec, Encrypted Handshake Message   12 3.223704998 192.168.4.221 → 192.168.1.40  TCP 60 [TCP Dup ACK 11#1] 443 → 45296 [ACK] Seq=1199 Ack=848 Win=16673 Len=0   13 3.224003885 192.168.4.221 → 192.168.1.40  TCP 60 [TCP Dup ACK 11#2] 443 → 45296 [ACK] Seq=1199 Ack=848 Win=16673 Len=0   14 3.224215422  192.168.1.40 → 192.168.4.221 TLSv1.2 159 Application Data

I noticed that curl was complaining about server not supporting ALPN, so I tried enabling that, but it didn't seem to have any effect on the TLS handshake speed...

Code: 

#define MBEDTLS_SSL_ALPN

Statistics: Posted by vadelma-pi — Sun Jan 07, 2024 3:58 am

Search
Viewing all articles
Browse latest Browse all 3552

Trending Articles

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

Raghunatha Palle Mandal Sarpanch Wardmumber Mobile Numbers List Warangal...

May 20, 2017, 5:00 am

Bureau of Internal Revenue: Regional Offices (Directory)

January 9, 2014, 11:06 pm

Girls WhatsApp Numbers Collection For Friendship

January 20, 2021, 5:55 pm

RX62T Position Control of Permanent Magnet Synchronous Motors (PMSM) with...

December 2, 2014, 1:00 am

Robert H. Suchora

January 3, 2021, 2:53 pm

Jadie Graham

May 28, 2024, 6:46 pm

SANIDAPA LIVE IN HALDADUWANA 2005-06-26

September 5, 2021, 5:34 pm

Controlled Drugs and Substances Act search warrant executed, Silverstone...

March 15, 2018, 11:17 am

After removing a managed system i get errors in sm21

January 24, 2014, 12:25 am

Solegi au voli

May 14, 2016, 1:04 pm

Critically analysing the themes of Matthew Arnold's "To Marguerite --...

August 12, 2012, 7:13 am

Re: Connection to SAP via VBA - Runtime Error 614

September 22, 2015, 12:13 am

The Shaukeens [2014 – FLAC]

February 7, 2018, 4:00 pm

ESXi 6.7 vSAN host experiences a purple diagnostic screen at...

September 25, 2020, 8:48 pm

Windows Update / Microsoft Update の接続先 URL について

February 27, 2017, 12:32 am

Forum Post: "App for Outlook is the App Module for Dynamics 365 App for...

July 31, 2019, 9:17 am

Bhuvaneswari-Aunty-Hot-Navel-Pictures/

May 13, 2016, 8:58 am

Failed Application Installs During TS error 0x87d00269

December 23, 2013, 2:49 am

To Trigger FPM Event dynamically from Code - WDEVENT set value Parameter

September 9, 2014, 1:20 am
More Pages to Explore .....
Search