Andreas Schwab <[email protected]> writes: > Thorsten Glaser <[email protected]> writes: > >> Dixi quod… >> >>>‣‣‣ wget 1.14-1 (gnutls26) >>>libgnutls26_2.12.7-4 ⇒ 45s (via LD_PRELOAD) >>>ii libgnutls26:m68k 2.12.20-2 ⇒ 64s >>>‣‣‣ wget 1.12-5 (openssl) >>>ii libssl1.0.0:m68k 1.0.1c-4 ⇒ 1s >>> >>>Now that is a *noticeable* difference, even, granted, when the two >>>servers (https://www.mirbsd.org/ and https://evolvis.evolvis.org/) >>>have both 4096-bit RSA certificates. >> >> Hi again, any idea how this can be debugged? > > Perhaps gnutls is just using different (more expensive) defaults?
Can you try using gnutls-cli to see if the slowness is in the handshake or the transfer or something else? Most benchmarks I've done and read indicate GnuTLS is comparable to OpenSSL in speed -- there are no dramatic differences, and each have better performance in some areas. The reason for a 64-time slowdown is likely a non-crypto bug somewhere. /Simon -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
