TLS session resumption

duarnad · June 24, 2020, 9:17pm

Hello,

I’m trying to do a load test with client using https. To be closer to real clients I’d like to see what is the impact of having tls session resumption used. However, I don’t see any way to configure that with k6 : noConnectionReuse and noVUConnectionReuse seems to only create completely new sessions with a full handshake.

Regards,
Arnaud

mstoykov · June 25, 2020, 6:56am

Hi @duarnad,

I needed to read up on it somewhat, but unfortunately don’t have time to completely understand everything.

The tl;dr is that this is not supported(at least not in full), because:

we need to change the http/tls code in k6 to cache the session ticket … which we apparently don’t, but I managed to get something working with 1 line … it just will probably require more for an actual PR.
golang (the language that k6 is written in) apparently doesn’t support session ID resumption

And because we are still pushing PR 1007 out, I propose you make an issue to implement this in the future .

duarnad · June 25, 2020, 1:38pm

Thank you ! Ok. In the mean time I have also looked at the go level and I was surprised they don’t support session ids. At least for tls 1.2 session tickets are often disabled server side for security reasons. I’ll create an issue as you suggest : this would help to have a more realistic load as no keep alive without session resumptions quickly kills the performance.
I had not seen this PR and this is really promising !

Regards,
Arnaud

Topic		Replies	Views
Does K6 provide tls session resumption OSS Support	2	141	April 18, 2023
Kerberos authentication OSS Support	3	1064	November 8, 2022
Twirp RPC Support OSS Support	2	321	June 15, 2022
Multiple Client Certificates OSS Support	7	1119	April 21, 2022
Issues with selecting Cipher Suite with K6 and TLS 1.3 OSS Support	1	419	March 25, 2021

TLS session resumption

Related topics