projects / BearSSL / blob
? search:


fccb5eb94f52057f5e8bdaf45327e3facc8765fd
[BearSSL] / test / test_speed.c
1 /*
2 * Copyright (c) 2016 Thomas Pornin <pornin@bolet.org>
3 *
4 * Permission is hereby granted, free of charge, to any person obtaining
5 * a copy of this software and associated documentation files (the
6 * "Software"), to deal in the Software without restriction, including
7 * without limitation the rights to use, copy, modify, merge, publish,
8 * distribute, sublicense, and/or sell copies of the Software, and to
9 * permit persons to whom the Software is furnished to do so, subject to
10 * the following conditions:
11 *
12 * The above copyright notice and this permission notice shall be
13 * included in all copies or substantial portions of the Software.
14 *
15 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
16 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
17 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
18 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
19 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
20 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
21 * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
22 * SOFTWARE.
23 */
24
25 #include <stdio.h>
26 #include <stdlib.h>
27 #include <string.h>
28 #include <time.h>
29 #include "inner.h"
30
31 #define HASH_SIZE(cname) br_ ## cname ## _SIZE
32
33 #define SPEED_HASH(Name, cname) \
34 static void \
35 test_speed_ ## cname(void) \
36 { \
37 unsigned char buf[8192]; \
38 unsigned char tmp[HASH_SIZE(cname)]; \
39 br_ ## cname ## _context mc; \
40 int i; \
41 long num; \
42 \
43 memset(buf, 'T', sizeof buf); \
44 for (i = 0; i < 10; i ++) { \
45 br_ ## cname ## _init(&mc); \
46 br_ ## cname ## _update(&mc, buf, sizeof buf); \
47 br_ ## cname ## _out(&mc, tmp); \
48 } \
49 num = 10; \
50 for (;;) { \
51 clock_t begin, end; \
52 double tt; \
53 long k; \
54 \
55 br_ ## cname ## _init(&mc); \
56 begin = clock(); \
57 for (k = num; k > 0; k --) { \
58 br_ ## cname ## _update(&mc, buf, sizeof buf); \
59 } \
60 end = clock(); \
61 br_ ## cname ## _out(&mc, tmp); \
62 tt = (double)(end - begin) / CLOCKS_PER_SEC; \
63 if (tt >= 2.0) { \
64 printf("%-30s %8.2f MB/s\n", #Name, \
65 ((double)sizeof buf) * (double)num \
66 / (tt * 1000000.0)); \
67 fflush(stdout); \
68 return; \
69 } \
70 num <<= 1; \
71 } \
72 }
73
74 #define BLOCK_SIZE(cname) br_ ## cname ## _BLOCK_SIZE
75
76 #define SPEED_BLOCKCIPHER_CBC(Name, fname, cname, klen, dir) \
77 static void \
78 test_speed_ ## fname(void) \
79 { \
80 unsigned char key[klen]; \
81 unsigned char buf[8192 - (8192 % BLOCK_SIZE(cname))]; \
82 unsigned char iv[BLOCK_SIZE(cname)]; \
83 const br_block_cbc ## dir ## _class *vt; \
84 br_ ## cname ## _cbc ## dir ## _keys ec; \
85 int i; \
86 long num; \
87 \
88 memset(key, 'T', sizeof key); \
89 memset(buf, 'P', sizeof buf); \
90 memset(iv, 'X', sizeof iv); \
91 vt = &br_ ## cname ## _cbc ## dir ## _vtable; \
92 for (i = 0; i < 10; i ++) { \
93 vt->init(&ec.vtable, key, sizeof key); \
94 vt->run(&ec.vtable, iv, buf, sizeof buf); \
95 } \
96 num = 10; \
97 for (;;) { \
98 clock_t begin, end; \
99 double tt; \
100 long k; \
101 \
102 vt->init(&ec.vtable, key, sizeof key); \
103 begin = clock(); \
104 for (k = num; k > 0; k --) { \
105 vt->run(&ec.vtable, iv, buf, sizeof buf); \
106 } \
107 end = clock(); \
108 tt = (double)(end - begin) / CLOCKS_PER_SEC; \
109 if (tt >= 2.0) { \
110 printf("%-30s %8.2f MB/s\n", #Name, \
111 ((double)sizeof buf) * (double)num \
112 / (tt * 1000000.0)); \
113 fflush(stdout); \
114 return; \
115 } \
116 num <<= 1; \
117 } \
118 }
119
120 #define SPEED_BLOCKCIPHER_CTR(Name, fname, cname, klen) \
121 static void \
122 test_speed_ ## fname(void) \
123 { \
124 unsigned char key[klen]; \
125 unsigned char buf[8192 - (8192 % BLOCK_SIZE(cname))]; \
126 unsigned char iv[BLOCK_SIZE(cname) - 4]; \
127 const br_block_ctr_class *vt; \
128 br_ ## cname ## _ctr_keys ec; \
129 int i; \
130 long num; \
131 \
132 memset(key, 'T', sizeof key); \
133 memset(buf, 'P', sizeof buf); \
134 memset(iv, 'X', sizeof iv); \
135 vt = &br_ ## cname ## _ctr_vtable; \
136 for (i = 0; i < 10; i ++) { \
137 vt->init(&ec.vtable, key, sizeof key); \
138 vt->run(&ec.vtable, iv, 1, buf, sizeof buf); \
139 } \
140 num = 10; \
141 for (;;) { \
142 clock_t begin, end; \
143 double tt; \
144 long k; \
145 \
146 vt->init(&ec.vtable, key, sizeof key); \
147 begin = clock(); \
148 for (k = num; k > 0; k --) { \
149 vt->run(&ec.vtable, iv, 1, buf, sizeof buf); \
150 } \
151 end = clock(); \
152 tt = (double)(end - begin) / CLOCKS_PER_SEC; \
153 if (tt >= 2.0) { \
154 printf("%-30s %8.2f MB/s\n", #Name, \
155 ((double)sizeof buf) * (double)num \
156 / (tt * 1000000.0)); \
157 fflush(stdout); \
158 return; \
159 } \
160 num <<= 1; \
161 } \
162 }
163
164 #define SPEED_CHACHA20(Name, fname) \
165 static void \
166 test_speed_ ## fname(void) \
167 { \
168 unsigned char key[32]; \
169 unsigned char buf[8192]; \
170 unsigned char iv[12]; \
171 int i; \
172 long num; \
173 \
174 memset(key, 'T', sizeof key); \
175 memset(buf, 'P', sizeof buf); \
176 memset(iv, 'X', sizeof iv); \
177 for (i = 0; i < 10; i ++) { \
178 br_ ## fname ## _run(key, iv, i, buf, sizeof buf); \
179 } \
180 num = 10; \
181 for (;;) { \
182 clock_t begin, end; \
183 double tt; \
184 long k; \
185 \
186 begin = clock(); \
187 for (k = num; k > 0; k --) { \
188 br_ ## fname ## _run(key, iv, \
189 (uint32_t)k, buf, sizeof buf); \
190 } \
191 end = clock(); \
192 tt = (double)(end - begin) / CLOCKS_PER_SEC; \
193 if (tt >= 2.0) { \
194 printf("%-30s %8.2f MB/s\n", #Name, \
195 ((double)sizeof buf) * (double)num \
196 / (tt * 1000000.0)); \
197 fflush(stdout); \
198 return; \
199 } \
200 num <<= 1; \
201 } \
202 }
203
204 SPEED_HASH(MD5, md5)
205 SPEED_HASH(SHA-1, sha1)
206 SPEED_HASH(SHA-256, sha256)
207 SPEED_HASH(SHA-512, sha512)
208
209 #define SPEED_AES(iname) \
210 SPEED_BLOCKCIPHER_CBC(AES-128 CBC encrypt (iname), aes128_ ## iname ## _cbcenc, aes_ ## iname, 16, enc) \
211 SPEED_BLOCKCIPHER_CBC(AES-128 CBC decrypt (iname), aes128_ ## iname ## _cbcdec, aes_ ## iname, 16, dec) \
212 SPEED_BLOCKCIPHER_CBC(AES-192 CBC encrypt (iname), aes192_ ## iname ## _cbcenc, aes_ ## iname, 24, enc) \
213 SPEED_BLOCKCIPHER_CBC(AES-192 CBC decrypt (iname), aes192_ ## iname ## _cbcdec, aes_ ## iname, 24, dec) \
214 SPEED_BLOCKCIPHER_CBC(AES-256 CBC encrypt (iname), aes256_ ## iname ## _cbcenc, aes_ ## iname, 32, enc) \
215 SPEED_BLOCKCIPHER_CBC(AES-256 CBC decrypt (iname), aes256_ ## iname ## _cbcdec, aes_ ## iname, 32, dec) \
216 SPEED_BLOCKCIPHER_CTR(AES-128 CTR (iname), aes128_ ## iname ## _ctr, aes_ ## iname, 16) \
217 SPEED_BLOCKCIPHER_CTR(AES-192 CTR (iname), aes192_ ## iname ## _ctr, aes_ ## iname, 24) \
218 SPEED_BLOCKCIPHER_CTR(AES-256 CTR (iname), aes256_ ## iname ## _ctr, aes_ ## iname, 32)
219
220 SPEED_AES(big)
221 SPEED_AES(small)
222 SPEED_AES(ct)
223 SPEED_AES(ct64)
224
225 #define SPEED_DES(iname) \
226 SPEED_BLOCKCIPHER_CBC(DES CBC encrypt (iname), des_ ## iname ## _cbcenc, des_ ## iname, 8, enc) \
227 SPEED_BLOCKCIPHER_CBC(DES CBC decrypt (iname), des_ ## iname ## _cbcdec, des_ ## iname, 8, dec) \
228 SPEED_BLOCKCIPHER_CBC(3DES CBC encrypt (iname), 3des_ ## iname ## _cbcenc, des_ ## iname, 24, enc) \
229 SPEED_BLOCKCIPHER_CBC(3DES CBC decrypt (iname), 3des_ ## iname ## _cbcdec, des_ ## iname, 24, dec)
230
231 SPEED_DES(tab)
232 SPEED_DES(ct)
233
234 SPEED_CHACHA20(ChaCha20, chacha20_ct)
235
236 static void
237 test_speed_ghash_inner(char *name, br_ghash gh)
238 {
239 unsigned char buf[8192], h[16], y[16];
240 int i;
241 long num;
242
243 memset(buf, 'T', sizeof buf);
244 memset(h, 'P', sizeof h);
245 memset(y, 0, sizeof y);
246 for (i = 0; i < 10; i ++) {
247 gh(y, h, buf, sizeof buf);
248 }
249 num = 10;
250 for (;;) {
251 clock_t begin, end;
252 double tt;
253 long k;
254
255 begin = clock();
256 for (k = num; k > 0; k --) {
257 gh(y, h, buf, sizeof buf);
258 }
259 end = clock();
260 tt = (double)(end - begin) / CLOCKS_PER_SEC;
261 if (tt >= 2.0) {
262 printf("%-30s %8.2f MB/s\n", name,
263 ((double)sizeof buf) * (double)num
264 / (tt * 1000000.0));
265 fflush(stdout);
266 return;
267 }
268 num <<= 1;
269 }
270 }
271
272 static void
273 test_speed_ghash_ctmul(void)
274 {
275 test_speed_ghash_inner("GHASH (ctmul)", &br_ghash_ctmul);
276 }
277
278 static void
279 test_speed_ghash_ctmul32(void)
280 {
281 test_speed_ghash_inner("GHASH (ctmul32)", &br_ghash_ctmul32);
282 }
283
284 static void
285 test_speed_ghash_ctmul64(void)
286 {
287 test_speed_ghash_inner("GHASH (ctmul64)", &br_ghash_ctmul64);
288 }
289
290 static uint32_t
291 fake_chacha20(const void *key, const void *iv,
292 uint32_t cc, void *data, size_t len)
293 {
294 (void)key;
295 (void)iv;
296 (void)data;
297 (void)len;
298 return cc + (uint32_t)((len + 63) >> 6);
299 }
300
301 /*
302 * To speed-test Poly1305, we run it with a do-nothing stub instead of
303 * ChaCha20.
304 */
305 static void
306 test_speed_poly1305_inner(char *name, br_poly1305_run pl)
307 {
308 unsigned char buf[8192], key[32], iv[12], aad[13], tag[16];
309 int i;
310 long num;
311
312 memset(key, 'K', sizeof key);
313 memset(iv, 'I', sizeof iv);
314 memset(aad, 'A', sizeof aad);
315 memset(buf, 'T', sizeof buf);
316 for (i = 0; i < 10; i ++) {
317 pl(key, iv, buf, sizeof buf,
318 aad, sizeof aad, tag, &fake_chacha20, 0);
319 }
320 num = 10;
321 for (;;) {
322 clock_t begin, end;
323 double tt;
324 long k;
325
326 begin = clock();
327 for (k = num; k > 0; k --) {
328 pl(key, iv, buf, sizeof buf,
329 aad, sizeof aad, tag, &fake_chacha20, 0);
330 }
331 end = clock();
332 tt = (double)(end - begin) / CLOCKS_PER_SEC;
333 if (tt >= 2.0) {
334 printf("%-30s %8.2f MB/s\n", name,
335 ((double)sizeof buf) * (double)num
336 / (tt * 1000000.0));
337 fflush(stdout);
338 return;
339 }
340 num <<= 1;
341 }
342 }
343
344 static void
345 test_speed_poly1305_ctmul(void)
346 {
347 test_speed_poly1305_inner("Poly1305 (ctmul)", &br_poly1305_ctmul_run);
348 }
349
350 static const unsigned char RSA_N[] = {
351 0xE9, 0xF2, 0x4A, 0x2F, 0x96, 0xDF, 0x0A, 0x23,
352 0x01, 0x85, 0xF1, 0x2C, 0xB2, 0xA8, 0xEF, 0x23,
353 0xCE, 0x2E, 0xB0, 0x4E, 0x18, 0x31, 0x95, 0x5B,
354 0x98, 0x2D, 0x9B, 0x8C, 0xE3, 0x1A, 0x2B, 0x96,
355 0xB5, 0xC7, 0xEE, 0xED, 0x72, 0x43, 0x2D, 0xFE,
356 0x7F, 0x61, 0x33, 0xEA, 0x14, 0xFC, 0xDE, 0x80,
357 0x17, 0x42, 0xF0, 0xF3, 0xC3, 0xC7, 0x89, 0x47,
358 0x76, 0x5B, 0xFA, 0x33, 0xC4, 0x8C, 0x94, 0xDE,
359 0x6A, 0x75, 0xD8, 0x1A, 0xF4, 0x49, 0xBC, 0xF3,
360 0xB7, 0x9E, 0x2C, 0x8D, 0xEC, 0x5A, 0xEE, 0xBF,
361 0x4B, 0x5A, 0x7F, 0xEF, 0x21, 0x39, 0xDB, 0x1D,
362 0x83, 0x5E, 0x7E, 0x2F, 0xAA, 0x5E, 0xBA, 0x28,
363 0xC3, 0xA2, 0x53, 0x19, 0xFB, 0x2F, 0x78, 0x6B,
364 0x14, 0x60, 0x49, 0x3C, 0xCC, 0x1B, 0xE9, 0x1E,
365 0x3D, 0x10, 0xA4, 0xEB, 0x7F, 0x66, 0x98, 0xF6,
366 0xC3, 0xAC, 0x35, 0xF5, 0x01, 0x84, 0xFF, 0x7D,
367 0x1F, 0x72, 0xBE, 0xB4, 0xD1, 0x89, 0xC8, 0xDD,
368 0x44, 0xE7, 0xB5, 0x2E, 0x2C, 0xE1, 0x85, 0xF5,
369 0x15, 0x50, 0xA9, 0x08, 0xC7, 0x67, 0xD9, 0x2B,
370 0x6C, 0x11, 0xB3, 0xEB, 0x28, 0x8D, 0xF4, 0xCC,
371 0xE3, 0xC3, 0xC5, 0x04, 0x0E, 0x7C, 0x8D, 0xDB,
372 0x39, 0x06, 0x6A, 0x74, 0x75, 0xDF, 0xA8, 0x0F,
373 0xDA, 0x67, 0x5A, 0x73, 0x1E, 0xFD, 0x8E, 0x4C,
374 0xEE, 0x17, 0xEE, 0x1E, 0x67, 0xDB, 0x98, 0x70,
375 0x60, 0xF7, 0xB9, 0xB5, 0x1F, 0x19, 0x93, 0xD6,
376 0x3F, 0x2F, 0x1F, 0xB6, 0x5B, 0x59, 0xAA, 0x85,
377 0xBB, 0x25, 0xE4, 0x13, 0xEF, 0xE7, 0xB9, 0x87,
378 0x9C, 0x3F, 0x5E, 0xE4, 0x08, 0xA3, 0x51, 0xCF,
379 0x8B, 0xAD, 0xF4, 0xE6, 0x1A, 0x5F, 0x51, 0xDD,
380 0xA8, 0xBE, 0xE8, 0xD1, 0x20, 0x19, 0x61, 0x6C,
381 0x18, 0xAB, 0xCA, 0x0A, 0xD9, 0x82, 0xA6, 0x94,
382 0xD5, 0x69, 0x2A, 0xF6, 0x43, 0x66, 0x31, 0x09
383 };
384
385 static const unsigned char RSA_E[] = {
386 0x01, 0x00, 0x01
387 };
388
389 static const unsigned char RSA_P[] = {
390 0xFD, 0x39, 0x40, 0x56, 0x20, 0x80, 0xC5, 0x81,
391 0x4C, 0x5F, 0x0C, 0x1A, 0x52, 0x84, 0x03, 0x2F,
392 0xCE, 0x82, 0xB0, 0xD8, 0x30, 0x23, 0x7F, 0x77,
393 0x45, 0xC2, 0x01, 0xC4, 0x68, 0x96, 0x0D, 0xA7,
394 0x22, 0xA9, 0x6C, 0xA9, 0x1A, 0x33, 0xE5, 0x2F,
395 0xB5, 0x07, 0x9A, 0xF9, 0xEA, 0x33, 0xA5, 0xC8,
396 0x96, 0x60, 0x6A, 0xCA, 0xEB, 0xE5, 0x6E, 0x09,
397 0x46, 0x7E, 0x2D, 0xEF, 0x93, 0x7D, 0x56, 0xED,
398 0x75, 0x70, 0x3B, 0x96, 0xC4, 0xD5, 0xDB, 0x0B,
399 0x3F, 0x69, 0xDF, 0x06, 0x18, 0x76, 0xF4, 0xCF,
400 0xF8, 0x84, 0x22, 0xDF, 0xBD, 0x71, 0x62, 0x7B,
401 0x67, 0x99, 0xBC, 0x09, 0x95, 0x54, 0xA4, 0x98,
402 0x83, 0xF5, 0xA9, 0xCF, 0x09, 0xA5, 0x1F, 0x61,
403 0x25, 0xB4, 0x70, 0x6C, 0x91, 0xB8, 0xB3, 0xD0,
404 0xCE, 0x9C, 0x45, 0x65, 0x9B, 0xEF, 0xD4, 0x70,
405 0xBE, 0x86, 0xD2, 0x98, 0x5D, 0xEB, 0xE3, 0xFF
406 };
407
408 static const unsigned char RSA_Q[] = {
409 0xEC, 0x82, 0xEE, 0x63, 0x5F, 0x40, 0x52, 0xDB,
410 0x38, 0x7A, 0x37, 0x6A, 0x54, 0x5B, 0xD9, 0xA0,
411 0x73, 0xB4, 0xBB, 0x52, 0xB2, 0x84, 0x07, 0xD0,
412 0xCC, 0x82, 0x0D, 0x20, 0xB3, 0xFA, 0xD5, 0xB6,
413 0x25, 0x92, 0x35, 0x4D, 0xB4, 0xC7, 0x36, 0x48,
414 0xCE, 0x5E, 0x21, 0x4A, 0xA6, 0x74, 0x65, 0xF4,
415 0x7D, 0x1D, 0xBC, 0x3B, 0xE2, 0xF4, 0x3E, 0x11,
416 0x58, 0x10, 0x6C, 0x04, 0x46, 0x9E, 0x8D, 0x57,
417 0xE0, 0x04, 0xE2, 0xEC, 0x47, 0xCF, 0xB3, 0x2A,
418 0xFD, 0x4C, 0x55, 0x18, 0xDB, 0xDE, 0x3B, 0xDC,
419 0xF4, 0x5B, 0xDA, 0xF3, 0x1A, 0xC8, 0x41, 0x6F,
420 0x73, 0x3B, 0xFE, 0x3C, 0xA0, 0xDB, 0xBA, 0x6E,
421 0x65, 0xA5, 0xE8, 0x02, 0xA5, 0x6C, 0xEA, 0x03,
422 0xF6, 0x99, 0xF7, 0xCB, 0x4B, 0xB7, 0x11, 0x51,
423 0x93, 0x88, 0x3F, 0xF9, 0x06, 0x85, 0xA9, 0x1E,
424 0xCA, 0x64, 0xF8, 0x11, 0xA5, 0x1A, 0xCA, 0xF7
425 };
426
427 static const unsigned char RSA_DP[] = {
428 0x77, 0x95, 0xE0, 0x02, 0x4C, 0x9B, 0x43, 0xAA,
429 0xCA, 0x4C, 0x60, 0xC4, 0xD5, 0x8F, 0x2E, 0x8A,
430 0x17, 0x36, 0xB5, 0x19, 0x83, 0xB2, 0x5F, 0xF2,
431 0x0D, 0xE9, 0x8F, 0x38, 0x18, 0x44, 0x34, 0xF2,
432 0x67, 0x76, 0x27, 0xB0, 0xBC, 0x85, 0x21, 0x89,
433 0x24, 0x2F, 0x11, 0x4B, 0x51, 0x05, 0x4F, 0x17,
434 0xA9, 0x9C, 0xA3, 0x12, 0x6D, 0xD1, 0x0D, 0xE4,
435 0x27, 0x7C, 0x53, 0x69, 0x3E, 0xF8, 0x04, 0x63,
436 0x64, 0x00, 0xBA, 0xC3, 0x7A, 0xF5, 0x9B, 0xDA,
437 0x75, 0xFA, 0x23, 0xAF, 0x17, 0x42, 0xA6, 0x5E,
438 0xC8, 0xF8, 0x6E, 0x17, 0xC7, 0xB9, 0x92, 0x4E,
439 0xC1, 0x20, 0x63, 0x23, 0x0B, 0x78, 0xCB, 0xBA,
440 0x93, 0x27, 0x23, 0x28, 0x79, 0x5F, 0x97, 0xB0,
441 0x23, 0x44, 0x51, 0x8B, 0x94, 0x4D, 0xEB, 0xED,
442 0x82, 0x85, 0x5E, 0x68, 0x9B, 0xF9, 0xE9, 0x13,
443 0xCD, 0x86, 0x92, 0x52, 0x0E, 0x98, 0xE6, 0x35
444 };
445
446 static const unsigned char RSA_DQ[] = {
447 0xD8, 0xDD, 0x71, 0xB3, 0x62, 0xBA, 0xBB, 0x7E,
448 0xD1, 0xF9, 0x96, 0xE8, 0x83, 0xB3, 0xB9, 0x08,
449 0x9C, 0x30, 0x03, 0x77, 0xDF, 0xC2, 0x9A, 0xDC,
450 0x05, 0x39, 0xD6, 0xC9, 0xBE, 0xDE, 0x68, 0xA9,
451 0xDD, 0x27, 0x84, 0x82, 0xDD, 0x19, 0xB1, 0x97,
452 0xEE, 0xCA, 0x77, 0x22, 0x59, 0x20, 0xEF, 0xFF,
453 0xCF, 0xDD, 0xBD, 0x24, 0xF8, 0x84, 0xD6, 0x88,
454 0xD6, 0xC4, 0x30, 0x17, 0x77, 0x9D, 0x98, 0xA3,
455 0x14, 0x01, 0xC7, 0x05, 0xBB, 0x0F, 0x23, 0x0D,
456 0x6F, 0x37, 0x57, 0xEC, 0x34, 0x67, 0x41, 0x62,
457 0xE8, 0x19, 0x75, 0xD9, 0x66, 0x1C, 0x6B, 0x8B,
458 0xC3, 0x11, 0x26, 0x9C, 0xF7, 0x2E, 0xA3, 0x72,
459 0xE8, 0xF7, 0xC8, 0x96, 0xEC, 0x92, 0xC2, 0xBD,
460 0xA1, 0x98, 0x2A, 0x93, 0x99, 0xB8, 0xA2, 0x43,
461 0xB7, 0xD0, 0xBE, 0x40, 0x1C, 0x8F, 0xE0, 0xB4,
462 0x20, 0x07, 0x97, 0x43, 0xAE, 0xAD, 0xB3, 0x9F
463 };
464
465 static const unsigned char RSA_IQ[] = {
466 0xB7, 0xE2, 0x60, 0xA9, 0x62, 0xEC, 0xEC, 0x0B,
467 0x57, 0x02, 0x96, 0xF9, 0x36, 0x35, 0x2C, 0x37,
468 0xAF, 0xC2, 0xEE, 0x71, 0x49, 0x26, 0x8E, 0x0F,
469 0x27, 0xB1, 0xFA, 0x0F, 0xEA, 0xDC, 0xF0, 0x8B,
470 0x53, 0x6C, 0xB2, 0x46, 0x27, 0xCD, 0x29, 0xA2,
471 0x35, 0x0F, 0x5D, 0x8A, 0x3F, 0x20, 0x8C, 0x13,
472 0x3D, 0xA1, 0xFF, 0x85, 0x91, 0x99, 0xE8, 0x50,
473 0xED, 0xF1, 0x29, 0x00, 0xEE, 0x24, 0x90, 0xB5,
474 0x5F, 0x3A, 0x74, 0x26, 0xD7, 0xA2, 0x24, 0x8D,
475 0x89, 0x88, 0xD8, 0x35, 0x22, 0x22, 0x8A, 0x66,
476 0x5D, 0x5C, 0xDE, 0x83, 0x8C, 0xFA, 0x27, 0xE6,
477 0xB9, 0xEB, 0x72, 0x08, 0xCD, 0x53, 0x4B, 0x93,
478 0x0F, 0xAD, 0xC3, 0xF8, 0x7C, 0xFE, 0x84, 0xD7,
479 0x08, 0xF3, 0xBE, 0x3D, 0x60, 0x1E, 0x95, 0x8D,
480 0x44, 0x5B, 0x65, 0x7E, 0xC1, 0x30, 0xC3, 0x84,
481 0xC0, 0xB0, 0xFE, 0xBF, 0x28, 0x54, 0x1E, 0xC4
482 };
483
484 static const br_rsa_public_key RSA_PK = {
485 (void *)RSA_N, sizeof RSA_N,
486 (void *)RSA_E, sizeof RSA_E
487 };
488
489 static const br_rsa_private_key RSA_SK = {
490 2048,
491 (void *)RSA_P, sizeof RSA_P,
492 (void *)RSA_Q, sizeof RSA_Q,
493 (void *)RSA_DP, sizeof RSA_DP,
494 (void *)RSA_DQ, sizeof RSA_DQ,
495 (void *)RSA_IQ, sizeof RSA_IQ
496 };
497
498 static void
499 test_speed_rsa_inner(char *name,
500 br_rsa_public fpub, br_rsa_private fpriv)
501 {
502 unsigned char tmp[sizeof RSA_N];
503 int i;
504 long num;
505
506 memset(tmp, 'R', sizeof tmp);
507 tmp[0] = 0;
508 for (i = 0; i < 10; i ++) {
509 if (!fpriv(tmp, &RSA_SK)) {
510 abort();
511 }
512 }
513 num = 10;
514 for (;;) {
515 clock_t begin, end;
516 double tt;
517 long k;
518
519 begin = clock();
520 for (k = num; k > 0; k --) {
521 fpriv(tmp, &RSA_SK);
522 }
523 end = clock();
524 tt = (double)(end - begin) / CLOCKS_PER_SEC;
525 if (tt >= 2.0) {
526 printf("%-30s %8.2f priv/s\n", name,
527 (double)num / tt);
528 fflush(stdout);
529 break;
530 }
531 num <<= 1;
532 }
533 for (i = 0; i < 10; i ++) {
534 if (!fpub(tmp, sizeof tmp, &RSA_PK)) {
535 abort();
536 }
537 }
538 num = 10;
539 for (;;) {
540 clock_t begin, end;
541 double tt;
542 long k;
543
544 begin = clock();
545 for (k = num; k > 0; k --) {
546 fpub(tmp, sizeof tmp, &RSA_PK);
547 }
548 end = clock();
549 tt = (double)(end - begin) / CLOCKS_PER_SEC;
550 if (tt >= 2.0) {
551 printf("%-30s %8.2f pub/s\n", name,
552 (double)num / tt);
553 fflush(stdout);
554 break;
555 }
556 num <<= 1;
557 }
558 }
559
560 static void
561 test_speed_rsa_i31(void)
562 {
563 test_speed_rsa_inner("RSA i31",
564 &br_rsa_i31_public, &br_rsa_i31_private);
565 }
566
567 static void
568 test_speed_rsa_i32(void)
569 {
570 test_speed_rsa_inner("RSA i32",
571 &br_rsa_i32_public, &br_rsa_i32_private);
572 }
573
574 static void
575 test_speed_ec_inner(const char *name,
576 const br_ec_impl *impl, const br_ec_curve_def *cd)
577 {
578 unsigned char bx[80], U[160];
579 uint32_t x[22], n[22];
580 size_t nlen, ulen;
581 int i;
582 long num;
583
584 nlen = cd->order_len;
585 br_i31_decode(n, cd->order, nlen);
586 memset(bx, 'T', sizeof bx);
587 br_i31_decode_reduce(x, bx, sizeof bx, n);
588 br_i31_encode(bx, nlen, x);
589 ulen = cd->generator_len;
590 memcpy(U, cd->generator, ulen);
591 for (i = 0; i < 10; i ++) {
592 impl->mul(U, ulen, bx, nlen, cd->curve);
593 }
594 num = 10;
595 for (;;) {
596 clock_t begin, end;
597 double tt;
598 long k;
599
600 begin = clock();
601 for (k = num; k > 0; k --) {
602 impl->mul(U, ulen, bx, nlen, cd->curve);
603 }
604 end = clock();
605 tt = (double)(end - begin) / CLOCKS_PER_SEC;
606 if (tt >= 2.0) {
607 printf("%-30s %8.2f mul/s\n", name,
608 (double)num / tt);
609 fflush(stdout);
610 break;
611 }
612 num <<= 1;
613 }
614 }
615
616 static void
617 test_speed_ec_p256_i15(void)
618 {
619 test_speed_ec_inner("EC i15 P-256", &br_ec_p256_i15, &br_secp256r1);
620 }
621
622 static void
623 test_speed_ec_prime_i31(void)
624 {
625 test_speed_ec_inner("EC i31 P-256", &br_ec_prime_i31, &br_secp256r1);
626 test_speed_ec_inner("EC i31 P-384", &br_ec_prime_i31, &br_secp384r1);
627 test_speed_ec_inner("EC i31 P-521", &br_ec_prime_i31, &br_secp521r1);
628 }
629
630 static void
631 test_speed_ecdsa_inner(const char *name,
632 const br_ec_impl *impl, const br_ec_curve_def *cd,
633 br_ecdsa_sign sign, br_ecdsa_vrfy vrfy)
634 {
635 unsigned char bx[80], U[160], hv[32], sig[160];
636 uint32_t x[22], n[22];
637 size_t nlen, ulen, sig_len;
638 int i;
639 long num;
640 br_ec_private_key sk;
641 br_ec_public_key pk;
642
643 nlen = cd->order_len;
644 br_i31_decode(n, cd->order, nlen);
645 memset(bx, 'T', sizeof bx);
646 br_i31_decode_reduce(x, bx, sizeof bx, n);
647 br_i31_encode(bx, nlen, x);
648 ulen = cd->generator_len;
649 memcpy(U, cd->generator, ulen);
650 impl->mul(U, ulen, bx, nlen, cd->curve);
651 sk.curve = cd->curve;
652 sk.x = bx;
653 sk.xlen = nlen;
654 pk.curve = cd->curve;
655 pk.q = U;
656 pk.qlen = ulen;
657
658 memset(hv, 'H', sizeof hv);
659 sig_len = sign(impl, &br_sha256_vtable, hv, &sk, sig);
660 if (vrfy(impl, hv, sizeof hv, &pk, sig, sig_len) != 1) {
661 fprintf(stderr, "self-test sign/verify failed\n");
662 exit(EXIT_FAILURE);
663 }
664
665 for (i = 0; i < 10; i ++) {
666 hv[1] ++;
667 sign(impl, &br_sha256_vtable, hv, &sk, sig);
668 vrfy(impl, hv, sizeof hv, &pk, sig, sig_len);
669 }
670
671 num = 10;
672 for (;;) {
673 clock_t begin, end;
674 double tt;
675 long k;
676
677 begin = clock();
678 for (k = num; k > 0; k --) {
679 hv[1] ++;
680 sig_len = sign(impl, &br_sha256_vtable, hv, &sk, sig);
681 }
682 end = clock();
683 tt = (double)(end - begin) / CLOCKS_PER_SEC;
684 if (tt >= 2.0) {
685 printf("%-30s %8.2f sign/s\n", name,
686 (double)num / tt);
687 fflush(stdout);
688 break;
689 }
690 num <<= 1;
691 }
692
693 num = 10;
694 for (;;) {
695 clock_t begin, end;
696 double tt;
697 long k;
698
699 begin = clock();
700 for (k = num; k > 0; k --) {
701 vrfy(impl, hv, sizeof hv, &pk, sig, sig_len);
702 }
703 end = clock();
704 tt = (double)(end - begin) / CLOCKS_PER_SEC;
705 if (tt >= 2.0) {
706 printf("%-30s %8.2f verify/s\n", name,
707 (double)num / tt);
708 fflush(stdout);
709 break;
710 }
711 num <<= 1;
712 }
713 }
714
715 static void
716 test_speed_ecdsa_i31(void)
717 {
718 test_speed_ecdsa_inner("ECDSA i31 P-256",
719 &br_ec_prime_i31, &br_secp256r1,
720 &br_ecdsa_i31_sign_asn1,
721 &br_ecdsa_i31_vrfy_asn1);
722 test_speed_ecdsa_inner("ECDSA i31 P-384",
723 &br_ec_prime_i31, &br_secp384r1,
724 &br_ecdsa_i31_sign_asn1,
725 &br_ecdsa_i31_vrfy_asn1);
726 test_speed_ecdsa_inner("ECDSA i31 P-521",
727 &br_ec_prime_i31, &br_secp521r1,
728 &br_ecdsa_i31_sign_asn1,
729 &br_ecdsa_i31_vrfy_asn1);
730 }
731
732 #if 0
733 /* obsolete */
734 static void
735 test_speed_ec_prime_i31_inner(const char *name,
736 const unsigned char *bg, const br_ec_prime_i31_curve *cc)
737 {
738 unsigned char bx[80], point[160];
739 uint32_t x[BR_EC_I31_LEN];
740 br_ec_prime_i31_jacobian P;
741 uint32_t xbl;
742 size_t plen;
743 int i;
744 long num;
745
746 xbl = cc->p[0];
747 xbl -= (xbl >> 5);
748 plen = (xbl + 7) >> 3;
749 memset(bx, 'T', sizeof bx);
750 br_i31_decode_reduce(x, bx, sizeof bx, cc->p);
751 br_i31_encode(bx, plen, x);
752 br_ec_prime_i31_decode(&P, bg, 1 + (plen << 1), cc);
753 for (i = 0; i < 10; i ++) {
754 br_ec_prime_i31_mul(&P, bx, plen, cc);
755 br_ec_prime_i31_encode(point, &P, cc);
756 }
757 num = 10;
758 for (;;) {
759 clock_t begin, end;
760 double tt;
761 long k;
762
763 begin = clock();
764 for (k = num; k > 0; k --) {
765 br_ec_prime_i31_mul(&P, bx, plen, cc);
766 br_ec_prime_i31_encode(point, &P, cc);
767 }
768 end = clock();
769 tt = (double)(end - begin) / CLOCKS_PER_SEC;
770 if (tt >= 2.0) {
771 printf("%-30s %8.2f mul/s\n", name,
772 (double)num / tt);
773 fflush(stdout);
774 break;
775 }
776 num <<= 1;
777 }
778 }
779
780 static void
781 test_speed_ec_prime_i31(void)
782 {
783 test_speed_ec_prime_i31_inner("EC i31 P-256",
784 br_g_secp256r1, &br_ec_prime_i31_secp256r1);
785 test_speed_ec_prime_i31_inner("EC i31 P-384",
786 br_g_secp384r1, &br_ec_prime_i31_secp384r1);
787 test_speed_ec_prime_i31_inner("EC i31 P-521",
788 br_g_secp521r1, &br_ec_prime_i31_secp521r1);
789 }
790
791 static void
792 test_speed_ec_prime_i32_inner(const char *name,
793 const unsigned char *bg, const br_ec_prime_i32_curve *cc)
794 {
795 unsigned char bx[80], point[160];
796 uint32_t x[BR_EC_I32_LEN];
797 br_ec_prime_i32_jacobian P;
798 size_t plen;
799 int i;
800 long num;
801
802 plen = (cc->p[0] + 7) >> 3;
803 memset(bx, 'T', sizeof bx);
804 br_i32_decode_reduce(x, bx, sizeof bx, cc->p);
805 br_i32_encode(bx, plen, x);
806 br_ec_prime_i32_decode(&P, bg, 1 + (plen << 1), cc);
807 for (i = 0; i < 10; i ++) {
808 br_ec_prime_i32_mul(&P, bx, plen, cc);
809 br_ec_prime_i32_encode(point, &P, cc);
810 }
811 num = 10;
812 for (;;) {
813 clock_t begin, end;
814 double tt;
815 long k;
816
817 begin = clock();
818 for (k = num; k > 0; k --) {
819 br_ec_prime_i32_mul(&P, bx, plen, cc);
820 br_ec_prime_i32_encode(point, &P, cc);
821 }
822 end = clock();
823 tt = (double)(end - begin) / CLOCKS_PER_SEC;
824 if (tt >= 2.0) {
825 printf("%-30s %8.2f mul/s\n", name,
826 (double)num / tt);
827 fflush(stdout);
828 break;
829 }
830 num <<= 1;
831 }
832 }
833
834 static void
835 test_speed_ec_prime_i32(void)
836 {
837 test_speed_ec_prime_i32_inner("EC i32 P-256",
838 br_g_secp256r1, &br_ec_prime_i32_secp256r1);
839 test_speed_ec_prime_i32_inner("EC i32 P-384",
840 br_g_secp384r1, &br_ec_prime_i32_secp384r1);
841 test_speed_ec_prime_i32_inner("EC i32 P-521",
842 br_g_secp521r1, &br_ec_prime_i32_secp521r1);
843 }
844 #endif
845
846 static void
847 test_speed_i31(void)
848 {
849 static const unsigned char bp[] = {
850 0xFF, 0xFF, 0xFF, 0xFF, 0x00, 0x00, 0x00, 0x00,
851 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
852 0xBC, 0xE6, 0xFA, 0xAD, 0xA7, 0x17, 0x9E, 0x84,
853 0xF3, 0xB9, 0xCA, 0xC2, 0xFC, 0x63, 0x25, 0x51
854 };
855
856 unsigned char tmp[60 + sizeof bp];
857 uint32_t p[10], x[10], y[10], z[10], p0i;
858 int i;
859 long num;
860
861 br_i31_decode(p, bp, sizeof bp);
862 p0i = br_i31_ninv31(p[1]);
863 memset(tmp, 'T', sizeof tmp);
864 br_i31_decode_reduce(x, tmp, sizeof tmp, p);
865 memset(tmp, 'U', sizeof tmp);
866 br_i31_decode_reduce(y, tmp, sizeof tmp, p);
867
868 for (i = 0; i < 10; i ++) {
869 br_i31_to_monty(x, p);
870 }
871 num = 10;
872 for (;;) {
873 clock_t begin, end;
874 double tt;
875 long k;
876
877 begin = clock();
878 for (k = num; k > 0; k --) {
879 br_i31_to_monty(x, p);
880 }
881 end = clock();
882 tt = (double)(end - begin) / CLOCKS_PER_SEC;
883 if (tt >= 2.0) {
884 printf("%-30s %8.2f ops/s\n", "i31 to_monty",
885 (double)num / tt);
886 fflush(stdout);
887 break;
888 }
889 num <<= 1;
890 }
891
892 for (i = 0; i < 10; i ++) {
893 br_i31_from_monty(x, p, p0i);
894 }
895 num = 10;
896 for (;;) {
897 clock_t begin, end;
898 double tt;
899 long k;
900
901 begin = clock();
902 for (k = num; k > 0; k --) {
903 br_i31_from_monty(x, p, p0i);
904 }
905 end = clock();
906 tt = (double)(end - begin) / CLOCKS_PER_SEC;
907 if (tt >= 2.0) {
908 printf("%-30s %8.2f ops/s\n", "i31 from_monty",
909 (double)num / tt);
910 fflush(stdout);
911 break;
912 }
913 num <<= 1;
914 }
915
916 for (i = 0; i < 10; i ++) {
917 br_i31_montymul(z, x, y, p, p0i);
918 }
919 num = 10;
920 for (;;) {
921 clock_t begin, end;
922 double tt;
923 long k;
924
925 begin = clock();
926 for (k = num; k > 0; k --) {
927 br_i31_montymul(z, x, y, p, p0i);
928 }
929 end = clock();
930 tt = (double)(end - begin) / CLOCKS_PER_SEC;
931 if (tt >= 2.0) {
932 printf("%-30s %8.2f ops/s\n", "i31 montymul",
933 (double)num / tt);
934 fflush(stdout);
935 break;
936 }
937 num <<= 1;
938 }
939 }
940
941 #if 0
942
943 static unsigned char P2048[] = {
944 0xFD, 0xB6, 0xE0, 0x3E, 0x00, 0x49, 0x4C, 0xF0, 0x69, 0x3A, 0xDD, 0x7D,
945 0xF8, 0xA2, 0x41, 0xB0, 0x6C, 0x67, 0xC5, 0xBA, 0xB8, 0x46, 0x80, 0xF5,
946 0xBF, 0xAB, 0x98, 0xFC, 0x84, 0x73, 0xA5, 0x63, 0xC9, 0x52, 0x12, 0xDA,
947 0x4C, 0xC1, 0x5B, 0x9D, 0x8D, 0xDF, 0xCD, 0xFE, 0xC5, 0xAD, 0x5A, 0x6F,
948 0xDD, 0x02, 0xD9, 0xEC, 0x71, 0xEF, 0xEB, 0xB6, 0x95, 0xED, 0x94, 0x25,
949 0x0E, 0x63, 0xDD, 0x6A, 0x52, 0xC7, 0x93, 0xAF, 0x85, 0x9D, 0x2C, 0xBE,
950 0x5C, 0xBE, 0x35, 0xD8, 0xDD, 0x39, 0xEF, 0x1B, 0xB1, 0x49, 0x67, 0xB2,
951 0x33, 0xC9, 0x7C, 0xE1, 0x51, 0x79, 0x51, 0x59, 0xCA, 0x6E, 0x2A, 0xDF,
952 0x0D, 0x76, 0x1C, 0xE7, 0xA5, 0xC0, 0x1E, 0x6C, 0x56, 0x3A, 0x32, 0xE5,
953 0xB5, 0xC5, 0xD4, 0xDB, 0xFE, 0xFF, 0xF8, 0xF2, 0x96, 0xA9, 0xC9, 0x65,
954 0x59, 0x9E, 0x01, 0x79, 0x9D, 0x38, 0x68, 0x0F, 0xAD, 0x43, 0x3A, 0xD6,
955 0x84, 0x0A, 0xE2, 0xEF, 0x96, 0xC1, 0x6D, 0x89, 0x74, 0x19, 0x63, 0x82,
956 0x3B, 0xA0, 0x9C, 0xBA, 0x78, 0xDE, 0xDC, 0xC2, 0xE7, 0xD4, 0xFA, 0xD6,
957 0x19, 0x21, 0x29, 0xAE, 0x5E, 0xF4, 0x38, 0x81, 0xC6, 0x9E, 0x0E, 0x3C,
958 0xCD, 0xC0, 0xDC, 0x93, 0x5D, 0xFD, 0x9A, 0x5C, 0xAB, 0x54, 0x1F, 0xFF,
959 0x9C, 0x12, 0x1B, 0x4C, 0xDF, 0x2D, 0x9C, 0x85, 0xF9, 0x68, 0x15, 0x89,
960 0x42, 0x9B, 0x6C, 0x45, 0x89, 0x3A, 0xBC, 0xE9, 0x19, 0x91, 0xBE, 0x0C,
961 0xEF, 0x90, 0xCC, 0xF6, 0xD6, 0xF0, 0x3D, 0x5C, 0xF5, 0xE5, 0x0F, 0x2F,
962 0x02, 0x8A, 0x83, 0x4B, 0x93, 0x2F, 0x14, 0x12, 0x1F, 0x56, 0x9A, 0x12,
963 0x58, 0x88, 0xAE, 0x60, 0xB8, 0x5A, 0xE4, 0xA1, 0xBF, 0x4A, 0x81, 0x84,
964 0xAB, 0xBB, 0xE4, 0xD0, 0x1D, 0x41, 0xD9, 0x0A, 0xAB, 0x1E, 0x47, 0x5B,
965 0x31, 0xAC, 0x2B, 0x73
966 };
967
968 static unsigned char G2048[] = {
969 0x02
970 };
971
972 static void
973 test_speed_modpow(void)
974 {
975 uint32_t mx[65], mp[65], me[65], t1[65], t2[65], len;
976 unsigned char e[64];
977 int i;
978 long num;
979
980 len = br_int_decode(mp, sizeof mp / sizeof mp[0],
981 P2048, sizeof P2048);
982 if (len != 65) {
983 abort();
984 }
985 memset(e, 'P', sizeof e);
986 if (!br_int_decode(me, sizeof me / sizeof me[0], e, sizeof e)) {
987 abort();
988 }
989 if (!br_modint_decode(mx, mp, G2048, sizeof G2048)) {
990 abort();
991 }
992 for (i = 0; i < 10; i ++) {
993 br_modint_to_monty(mx, mp);
994 br_modint_montypow(mx, me, mp, t1, t2);
995 br_modint_from_monty(mx, mp);
996 }
997 num = 10;
998 for (;;) {
999 clock_t begin, end;
1000 double tt;
1001 long k;
1002
1003 begin = clock();
1004 for (k = num; k > 0; k --) {
1005 br_modint_to_monty(mx, mp);
1006 br_modint_montypow(mx, me, mp, t1, t2);
1007 br_modint_from_monty(mx, mp);
1008 }
1009 end = clock();
1010 tt = (double)(end - begin) / CLOCKS_PER_SEC;
1011 if (tt >= 2.0) {
1012 printf("%-30s %8.2f exp/s\n", "pow[2048:256]",
1013 (double)num / tt);
1014 fflush(stdout);
1015 return;
1016 }
1017 num <<= 1;
1018 }
1019 }
1020
1021 static void
1022 test_speed_moddiv(void)
1023 {
1024 uint32_t mx[65], my[65], mp[65], t1[65], t2[65], t3[65], len;
1025 unsigned char x[255], y[255];
1026 int i;
1027 long num;
1028
1029 len = br_int_decode(mp, sizeof mp / sizeof mp[0],
1030 P2048, sizeof P2048);
1031 if (len != 65) {
1032 abort();
1033 }
1034 memset(x, 'T', sizeof x);
1035 memset(y, 'P', sizeof y);
1036 if (!br_modint_decode(mx, mp, x, sizeof x)) {
1037 abort();
1038 }
1039 if (!br_modint_decode(my, mp, y, sizeof y)) {
1040 abort();
1041 }
1042 for (i = 0; i < 10; i ++) {
1043 br_modint_div(mx, my, mp, t1, t2, t3);
1044 }
1045 num = 10;
1046 for (;;) {
1047 clock_t begin, end;
1048 double tt;
1049 long k;
1050
1051 begin = clock();
1052 for (k = num; k > 0; k --) {
1053 br_modint_div(mx, my, mp, t1, t2, t3);
1054 }
1055 end = clock();
1056 tt = (double)(end - begin) / CLOCKS_PER_SEC;
1057 if (tt >= 2.0) {
1058 printf("%-30s %8.2f div/s\n", "div[2048]",
1059 (double)num / tt);
1060 fflush(stdout);
1061 return;
1062 }
1063 num <<= 1;
1064 }
1065 }
1066 #endif
1067
1068 #define STU(x) { test_speed_ ## x, #x }
1069
1070 static const struct {
1071 void (*fn)(void);
1072 char *name;
1073 } tfns[] = {
1074 STU(md5),
1075 STU(sha1),
1076 STU(sha256),
1077 STU(sha512),
1078
1079 STU(aes128_big_cbcenc),
1080 STU(aes128_big_cbcdec),
1081 STU(aes192_big_cbcenc),
1082 STU(aes192_big_cbcdec),
1083 STU(aes256_big_cbcenc),
1084 STU(aes256_big_cbcdec),
1085 STU(aes128_big_ctr),
1086 STU(aes192_big_ctr),
1087 STU(aes256_big_ctr),
1088
1089 STU(aes128_small_cbcenc),
1090 STU(aes128_small_cbcdec),
1091 STU(aes192_small_cbcenc),
1092 STU(aes192_small_cbcdec),
1093 STU(aes256_small_cbcenc),
1094 STU(aes256_small_cbcdec),
1095 STU(aes128_small_ctr),
1096 STU(aes192_small_ctr),
1097 STU(aes256_small_ctr),
1098
1099 STU(aes128_ct_cbcenc),
1100 STU(aes128_ct_cbcdec),
1101 STU(aes192_ct_cbcenc),
1102 STU(aes192_ct_cbcdec),
1103 STU(aes256_ct_cbcenc),
1104 STU(aes256_ct_cbcdec),
1105 STU(aes128_ct_ctr),
1106 STU(aes192_ct_ctr),
1107 STU(aes256_ct_ctr),
1108
1109 STU(aes128_ct64_cbcenc),
1110 STU(aes128_ct64_cbcdec),
1111 STU(aes192_ct64_cbcenc),
1112 STU(aes192_ct64_cbcdec),
1113 STU(aes256_ct64_cbcenc),
1114 STU(aes256_ct64_cbcdec),
1115 STU(aes128_ct64_ctr),
1116 STU(aes192_ct64_ctr),
1117 STU(aes256_ct64_ctr),
1118
1119 STU(des_tab_cbcenc),
1120 STU(des_tab_cbcdec),
1121 STU(3des_tab_cbcenc),
1122 STU(3des_tab_cbcdec),
1123
1124 STU(des_ct_cbcenc),
1125 STU(des_ct_cbcdec),
1126 STU(3des_ct_cbcenc),
1127 STU(3des_ct_cbcdec),
1128
1129 STU(chacha20_ct),
1130
1131 STU(ghash_ctmul),
1132 STU(ghash_ctmul32),
1133 STU(ghash_ctmul64),
1134
1135 STU(poly1305_ctmul),
1136
1137 STU(rsa_i31),
1138 STU(rsa_i32),
1139 STU(ec_p256_i15),
1140 STU(ec_prime_i31),
1141 STU(ecdsa_i31),
1142
1143 STU(i31)
1144 };
1145
1146 static int
1147 eq_name(const char *s1, const char *s2)
1148 {
1149 for (;;) {
1150 int c1, c2;
1151
1152 for (;;) {
1153 c1 = *s1 ++;
1154 if (c1 >= 'A' && c1 <= 'Z') {
1155 c1 += 'a' - 'A';
1156 } else {
1157 switch (c1) {
1158 case '-': case '_': case '.': case ' ':
1159 continue;
1160 }
1161 }
1162 break;
1163 }
1164 for (;;) {
1165 c2 = *s2 ++;
1166 if (c2 >= 'A' && c2 <= 'Z') {
1167 c2 += 'a' - 'A';
1168 } else {
1169 switch (c2) {
1170 case '-': case '_': case '.': case ' ':
1171 continue;
1172 }
1173 }
1174 break;
1175 }
1176 if (c1 != c2) {
1177 return 0;
1178 }
1179 if (c1 == 0) {
1180 return 1;
1181 }
1182 }
1183 }
1184
1185 int
1186 main(int argc, char *argv[])
1187 {
1188 size_t u;
1189
1190 if (argc <= 1) {
1191 printf("usage: testspeed all | name...\n");
1192 printf("individual test names:\n");
1193 for (u = 0; u < (sizeof tfns) / (sizeof tfns[0]); u ++) {
1194 printf(" %s\n", tfns[u].name);
1195 }
1196 } else {
1197 for (u = 0; u < (sizeof tfns) / (sizeof tfns[0]); u ++) {
1198 int i;
1199
1200 for (i = 1; i < argc; i ++) {
1201 if (eq_name(argv[i], tfns[u].name)
1202 || eq_name(argv[i], "all"))
1203 {
1204 tfns[u].fn();
1205 break;
1206 }
1207 }
1208 }
1209 }
1210 return 0;
1211 }
The BearSSL library and tools.