|
|
|
@@ -425,3 +425,16 @@ typically timeout before TCP even gets a chance to retransmit (the |
|
|
|
initial retransmission timeout is on the order of 3 seconds). This is |
|
|
|
usually OK, except that one should keep in mind that it has the effect |
|
|
|
of truncating the connection life time distribution. |
|
|
|
|
|
|
|
|
|
|
|
## Testing post-quantum cryptography |
|
|
|
|
|
|
|
Following command line can be used to test TLS handshake with post quantum |
|
|
|
cryptography. |
|
|
|
|
|
|
|
``` |
|
|
|
./src/httperf --server cloudflare.com --ssl --periodic-stats --burst-length 1000 --ssl-groups CECPQ2b:CECPQ2 --ssl-protocol TLSv1.3 |
|
|
|
``` |
|
|
|
|
|
|
|
This command will trigger BoringSSL to generate client hello with public keys |
|
|
|
for SIKE and HRSS. |
