一、简介
s_time是openss提供的SSL/TLS性能测试工具,用于测试SSL/TSL服务
二、语法
openssl s_time [-connect host:port] [-www page] [-cert filename] [-key filename] [-CApath directory]
[-CAfile filename] [-reuse] [-new] [-verify depth] [-nbio] [-time seconds] [-ssl2] [-ssl3] [-bugs]
[-cipher cipherlist]
选项
-connect host:port - host:port to connect to (default is localhost:)
-nbio - Run with non-blocking IO
-ssl2 - Just use SSLv2
-ssl3 - Just use SSLv3
-bugs - Turn on SSL bug compatibility
-new - Just time new connections
-reuse - Just time connection reuse
-www page - Retrieve 'page' from the site
-time arg - max number of seconds to collect data, default
-verify arg - turn on peer certificate verification, arg == depth
-cert arg - certificate file to use, PEM format assumed
-key arg - RSA file to use, PEM format assumed, key is in cert file
file if not specified by this option
-CApath arg - PEM format directory of CA's
-CAfile arg - PEM format file of CA's
-trusted_first - Use trusted CA's first when building the trust chain
-cipher - preferred cipher to use, play with 'openssl ciphers'
三、实例
连接一个SSL HTTP服务器并获取默认页
openssl s_time -connect localhost:2009 -key clientprikey.pem -cert client.pem -ssl3 -cipher EXP-KRB5-RC4-MD5
