1OPENSSL-SPEED(1ossl) OpenSSL OPENSSL-SPEED(1ossl)
2
3
4
6 openssl-speed - test library performance
7
9 openssl speed [-help] [-config filename] [-elapsed] [-evp algo] [-hmac
10 algo] [-cmac algo] [-mb] [-aead] [-multi num] [-async_jobs num]
11 [-misalign num] [-decrypt] [-primes num] [-seconds num] [-bytes num]
12 [-mr] [-mlock] [-rand files] [-writerand file] [-engine id] [-provider
13 name] [-provider-path path] [-propquery propq] [algorithm ...]
14
16 This command is used to test the performance of cryptographic
17 algorithms.
18
20 -help
21 Print out a usage message.
22
23 -config filename
24 Specifies the configuration file to use. Optional; for a
25 description of the default value, see "COMMAND SUMMARY" in
26 openssl(1).
27
28 -elapsed
29 When calculating operations- or bytes-per-second, use wall-clock
30 time instead of CPU user time as divisor. It can be useful when
31 testing speed of hardware engines.
32
33 -evp algo
34 Use the specified cipher or message digest algorithm via the EVP
35 interface. If algo is an AEAD cipher, then you can pass -aead to
36 benchmark a TLS-like sequence. And if algo is a multi-buffer
37 capable cipher, e.g. aes-128-cbc-hmac-sha1, then -mb will time
38 multi-buffer operation.
39
40 To see the algorithms supported with this option, use "openssl list
41 -digest-algorithms" or "openssl list -cipher-algorithms" command.
42
43 -multi num
44 Run multiple operations in parallel.
45
46 -async_jobs num
47 Enable async mode and start specified number of jobs.
48
49 -misalign num
50 Misalign the buffers by the specified number of bytes.
51
52 -hmac digest
53 Time the HMAC algorithm using the specified message digest.
54
55 -cmac cipher
56 Time the CMAC algorithm using the specified cipher e.g. "openssl
57 speed -cmac aes128".
58
59 -decrypt
60 Time the decryption instead of encryption. Affects only the EVP
61 testing.
62
63 -mb Enable multi-block mode on EVP-named cipher.
64
65 -aead
66 Benchmark EVP-named AEAD cipher in TLS-like sequence.
67
68 -primes num
69 Generate a num-prime RSA key and use it to run the benchmarks. This
70 option is only effective if RSA algorithm is specified to test.
71
72 -seconds num
73 Run benchmarks for num seconds.
74
75 -bytes num
76 Run benchmarks on num-byte buffers. Affects ciphers, digests and
77 the CSPRNG. The limit on the size of the buffer is INT_MAX - 64
78 bytes, which for a 32-bit int would be 2147483583 bytes.
79
80 -mr Produce the summary in a mechanical, machine-readable, format.
81
82 -mlock
83 Lock memory into RAM for more deterministic measurements.
84
85 -rand files, -writerand file
86 See "Random State Options" in openssl(1) for details.
87
88 -engine id
89 See "Engine Options" in openssl(1). This option is deprecated.
90
91 -provider name
92 -provider-path path
93 -propquery propq
94 See "Provider Options" in openssl(1), provider(7), and property(7).
95
96 algorithm ...
97 If any algorithm is given, then those algorithms are tested,
98 otherwise a pre-compiled grand selection is tested.
99
101 The algorithm can be selected only from a pre-compiled subset of things
102 that the "openssl speed" command knows about. To test any additional
103 digest or cipher algorithm supported by OpenSSL use the "-evp" option.
104
105 There is no way to test the speed of any additional public key
106 algorithms supported by third party providers with the "openssl speed"
107 command.
108
110 The -engine option was deprecated in OpenSSL 3.0.
111
113 Copyright 2000-2022 The OpenSSL Project Authors. All Rights Reserved.
114
115 Licensed under the Apache License 2.0 (the "License"). You may not use
116 this file except in compliance with the License. You can obtain a copy
117 in the file LICENSE in the source distribution or at
118 <https://www.openssl.org/source/license.html>.
119
120
121
1223.1.1 2023-08-31 OPENSSL-SPEED(1ossl)