| /* |
| * Benchmark demonstration program |
| * |
| * Copyright (C) 2006-2013, ARM Limited, All Rights Reserved |
| * |
| * This file is part of mbed TLS (https://tls.mbed.org) |
| * |
| * This program is free software; you can redistribute it and/or modify |
| * it under the terms of the GNU General Public License as published by |
| * the Free Software Foundation; either version 2 of the License, or |
| * (at your option) any later version. |
| * |
| * This program is distributed in the hope that it will be useful, |
| * but WITHOUT ANY WARRANTY; without even the implied warranty of |
| * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| * GNU General Public License for more details. |
| * |
| * You should have received a copy of the GNU General Public License along |
| * with this program; if not, write to the Free Software Foundation, Inc., |
| * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. |
| */ |
| |
| #if !defined(POLARSSL_CONFIG_FILE) |
| #include "mbedtls/config.h" |
| #else |
| #include POLARSSL_CONFIG_FILE |
| #endif |
| |
| #if defined(POLARSSL_PLATFORM_C) |
| #include "mbedtls/platform.h" |
| #else |
| #include <stdio.h> |
| #define polarssl_exit exit |
| #define polarssl_printf printf |
| #define polarssl_snprintf snprintf |
| #define polarssl_free free |
| #endif |
| |
| #if !defined(POLARSSL_TIMING_C) |
| int main( void ) |
| { |
| polarssl_printf("POLARSSL_TIMING_C not defined.\n"); |
| return( 0 ); |
| } |
| #else |
| |
| #include <string.h> |
| |
| #include "mbedtls/timing.h" |
| |
| #include "mbedtls/md4.h" |
| #include "mbedtls/md5.h" |
| #include "mbedtls/ripemd160.h" |
| #include "mbedtls/sha1.h" |
| #include "mbedtls/sha256.h" |
| #include "mbedtls/sha512.h" |
| #include "mbedtls/arc4.h" |
| #include "mbedtls/des.h" |
| #include "mbedtls/aes.h" |
| #include "mbedtls/blowfish.h" |
| #include "mbedtls/camellia.h" |
| #include "mbedtls/gcm.h" |
| #include "mbedtls/ccm.h" |
| #include "mbedtls/havege.h" |
| #include "mbedtls/ctr_drbg.h" |
| #include "mbedtls/hmac_drbg.h" |
| #include "mbedtls/rsa.h" |
| #include "mbedtls/dhm.h" |
| #include "mbedtls/ecdsa.h" |
| #include "mbedtls/ecdh.h" |
| #include "mbedtls/error.h" |
| |
| #if defined(POLARSSL_MEMORY_BUFFER_ALLOC_C) |
| #include "mbedtls/memory_buffer_alloc.h" |
| #endif |
| |
| #if defined _MSC_VER && !defined snprintf |
| #define snprintf _snprintf |
| #endif |
| |
| /* |
| * For heap usage estimates, we need an estimate of the overhead per allocated |
| * block. ptmalloc2/3 (used in gnu libc for instance) uses 2 size_t per block, |
| * so use that as our baseline. |
| */ |
| #define MEM_BLOCK_OVERHEAD ( 2 * sizeof( size_t ) ) |
| |
| /* |
| * Size to use for the malloc buffer if MEMORY_BUFFER_ALLOC_C is defined. |
| */ |
| #define HEAP_SIZE (1u << 16) // 64k |
| |
| #define BUFSIZE 1024 |
| #define HEADER_FORMAT " %-24s : " |
| #define TITLE_LEN 25 |
| |
| #define DHM_SIZES 3 |
| |
| #define OPTIONS \ |
| "md4, md5, ripemd160, sha1, sha256, sha512,\n" \ |
| "arc4, des3, des, aes_cbc, aes_gcm, aes_ccm, camellia, blowfish,\n" \ |
| "havege, ctr_drbg, hmac_drbg\n" \ |
| "rsa, dhm, ecdsa, ecdh.\n" |
| |
| #if defined(POLARSSL_ERROR_C) |
| #define PRINT_ERROR \ |
| polarssl_strerror( ret, ( char * )tmp, sizeof( tmp ) ); \ |
| polarssl_printf( "FAILED: %s\n", tmp ); |
| #else |
| #define PRINT_ERROR \ |
| polarssl_printf( "FAILED: -0x%04x\n", -ret ); |
| #endif |
| |
| #define TIME_AND_TSC( TITLE, CODE ) \ |
| do { \ |
| unsigned long i, j, tsc; \ |
| \ |
| polarssl_printf( HEADER_FORMAT, TITLE ); \ |
| fflush( stdout ); \ |
| \ |
| set_alarm( 1 ); \ |
| for( i = 1; ! alarmed; i++ ) \ |
| { \ |
| CODE; \ |
| } \ |
| \ |
| tsc = hardclock(); \ |
| for( j = 0; j < 1024; j++ ) \ |
| { \ |
| CODE; \ |
| } \ |
| \ |
| polarssl_printf( "%9lu Kb/s, %9lu cycles/byte\n", \ |
| i * BUFSIZE / 1024, \ |
| ( hardclock() - tsc ) / ( j * BUFSIZE ) ); \ |
| } while( 0 ) |
| |
| #if defined(POLARSSL_ERROR_C) |
| #define PRINT_ERROR \ |
| polarssl_strerror( ret, ( char * )tmp, sizeof( tmp ) ); \ |
| polarssl_printf( "FAILED: %s\n", tmp ); |
| #else |
| #define PRINT_ERROR \ |
| polarssl_printf( "FAILED: -0x%04x\n", -ret ); |
| #endif |
| |
| #if defined(POLARSSL_MEMORY_BUFFER_ALLOC_C) && defined(POLARSSL_MEMORY_DEBUG) |
| |
| #define MEMORY_MEASURE_INIT \ |
| size_t max_used, max_blocks, max_bytes; \ |
| size_t prv_used, prv_blocks; \ |
| memory_buffer_alloc_cur_get( &prv_used, &prv_blocks ); \ |
| memory_buffer_alloc_max_reset( ); |
| |
| #define MEMORY_MEASURE_PRINT( title_len ) \ |
| memory_buffer_alloc_max_get( &max_used, &max_blocks ); \ |
| for( i = 12 - title_len; i != 0; i-- ) polarssl_printf( " " ); \ |
| max_used -= prv_used; \ |
| max_blocks -= prv_blocks; \ |
| max_bytes = max_used + MEM_BLOCK_OVERHEAD * max_blocks; \ |
| polarssl_printf( "%6u heap bytes", (unsigned) max_bytes ); |
| |
| #else |
| #define MEMORY_MEASURE_INIT |
| #define MEMORY_MEASURE_PRINT( title_len ) |
| #endif |
| |
| #define TIME_PUBLIC( TITLE, TYPE, CODE ) \ |
| do { \ |
| unsigned long i; \ |
| int ret; \ |
| MEMORY_MEASURE_INIT; \ |
| \ |
| polarssl_printf( HEADER_FORMAT, TITLE ); \ |
| fflush( stdout ); \ |
| set_alarm( 3 ); \ |
| \ |
| ret = 0; \ |
| for( i = 1; ! alarmed && ! ret ; i++ ) \ |
| { \ |
| CODE; \ |
| } \ |
| \ |
| if( ret != 0 ) \ |
| { \ |
| PRINT_ERROR; \ |
| } \ |
| else \ |
| { \ |
| polarssl_printf( "%6lu " TYPE "/s", i / 3 ); \ |
| MEMORY_MEASURE_PRINT( sizeof( TYPE ) + 1 ); \ |
| polarssl_printf( "\n" ); \ |
| } \ |
| } while( 0 ) |
| |
| static int myrand( void *rng_state, unsigned char *output, size_t len ) |
| { |
| size_t use_len; |
| int rnd; |
| |
| if( rng_state != NULL ) |
| rng_state = NULL; |
| |
| while( len > 0 ) |
| { |
| use_len = len; |
| if( use_len > sizeof(int) ) |
| use_len = sizeof(int); |
| |
| rnd = rand(); |
| memcpy( output, &rnd, use_len ); |
| output += use_len; |
| len -= use_len; |
| } |
| |
| return( 0 ); |
| } |
| |
| /* |
| * Clear some memory that was used to prepare the context |
| */ |
| #if defined(POLARSSL_ECP_C) |
| void ecp_clear_precomputed( ecp_group *grp ) |
| { |
| if( grp->T != NULL ) |
| { |
| size_t i; |
| for( i = 0; i < grp->T_size; i++ ) |
| ecp_point_free( &grp->T[i] ); |
| polarssl_free( grp->T ); |
| } |
| grp->T = NULL; |
| grp->T_size = 0; |
| } |
| #else |
| #define ecp_clear_precomputed( g ) |
| #endif |
| |
| unsigned char buf[BUFSIZE]; |
| |
| typedef struct { |
| char md4, md5, ripemd160, sha1, sha256, sha512, |
| arc4, des3, des, aes_cbc, aes_gcm, aes_ccm, camellia, blowfish, |
| havege, ctr_drbg, hmac_drbg, |
| rsa, dhm, ecdsa, ecdh; |
| } todo_list; |
| |
| int main( int argc, char *argv[] ) |
| { |
| int i; |
| unsigned char tmp[200]; |
| char title[TITLE_LEN]; |
| todo_list todo; |
| #if defined(POLARSSL_MEMORY_BUFFER_ALLOC_C) |
| unsigned char malloc_buf[HEAP_SIZE] = { 0 }; |
| #endif |
| |
| if( argc <= 1 ) |
| { |
| memset( &todo, 1, sizeof( todo ) ); |
| } |
| else |
| { |
| memset( &todo, 0, sizeof( todo ) ); |
| |
| for( i = 1; i < argc; i++ ) |
| { |
| if( strcmp( argv[i], "md4" ) == 0 ) |
| todo.md4 = 1; |
| else if( strcmp( argv[i], "md5" ) == 0 ) |
| todo.md5 = 1; |
| else if( strcmp( argv[i], "ripemd160" ) == 0 ) |
| todo.ripemd160 = 1; |
| else if( strcmp( argv[i], "sha1" ) == 0 ) |
| todo.sha1 = 1; |
| else if( strcmp( argv[i], "sha256" ) == 0 ) |
| todo.sha256 = 1; |
| else if( strcmp( argv[i], "sha512" ) == 0 ) |
| todo.sha512 = 1; |
| else if( strcmp( argv[i], "arc4" ) == 0 ) |
| todo.arc4 = 1; |
| else if( strcmp( argv[i], "des3" ) == 0 ) |
| todo.des3 = 1; |
| else if( strcmp( argv[i], "des" ) == 0 ) |
| todo.des = 1; |
| else if( strcmp( argv[i], "aes_cbc" ) == 0 ) |
| todo.aes_cbc = 1; |
| else if( strcmp( argv[i], "aes_gcm" ) == 0 ) |
| todo.aes_gcm = 1; |
| else if( strcmp( argv[i], "aes_ccm" ) == 0 ) |
| todo.aes_ccm = 1; |
| else if( strcmp( argv[i], "camellia" ) == 0 ) |
| todo.camellia = 1; |
| else if( strcmp( argv[i], "blowfish" ) == 0 ) |
| todo.blowfish = 1; |
| else if( strcmp( argv[i], "havege" ) == 0 ) |
| todo.havege = 1; |
| else if( strcmp( argv[i], "ctr_drbg" ) == 0 ) |
| todo.ctr_drbg = 1; |
| else if( strcmp( argv[i], "hmac_drbg" ) == 0 ) |
| todo.hmac_drbg = 1; |
| else if( strcmp( argv[i], "rsa" ) == 0 ) |
| todo.rsa = 1; |
| else if( strcmp( argv[i], "dhm" ) == 0 ) |
| todo.dhm = 1; |
| else if( strcmp( argv[i], "ecdsa" ) == 0 ) |
| todo.ecdsa = 1; |
| else if( strcmp( argv[i], "ecdh" ) == 0 ) |
| todo.ecdh = 1; |
| else |
| { |
| polarssl_printf( "Unrecognized option: %s\n", argv[i] ); |
| polarssl_printf( "Available options: " OPTIONS ); |
| } |
| } |
| } |
| |
| polarssl_printf( "\n" ); |
| |
| #if defined(POLARSSL_MEMORY_BUFFER_ALLOC_C) |
| memory_buffer_alloc_init( malloc_buf, sizeof( malloc_buf ) ); |
| #endif |
| memset( buf, 0xAA, sizeof( buf ) ); |
| memset( tmp, 0xBB, sizeof( tmp ) ); |
| |
| #if defined(POLARSSL_MD4_C) |
| if( todo.md4 ) |
| TIME_AND_TSC( "MD4", md4( buf, BUFSIZE, tmp ) ); |
| #endif |
| |
| #if defined(POLARSSL_MD5_C) |
| if( todo.md5 ) |
| TIME_AND_TSC( "MD5", md5( buf, BUFSIZE, tmp ) ); |
| #endif |
| |
| #if defined(POLARSSL_RIPEMD160_C) |
| if( todo.ripemd160 ) |
| TIME_AND_TSC( "RIPEMD160", ripemd160( buf, BUFSIZE, tmp ) ); |
| #endif |
| |
| #if defined(POLARSSL_SHA1_C) |
| if( todo.sha1 ) |
| TIME_AND_TSC( "SHA-1", sha1( buf, BUFSIZE, tmp ) ); |
| #endif |
| |
| #if defined(POLARSSL_SHA256_C) |
| if( todo.sha256 ) |
| TIME_AND_TSC( "SHA-256", sha256( buf, BUFSIZE, tmp, 0 ) ); |
| #endif |
| |
| #if defined(POLARSSL_SHA512_C) |
| if( todo.sha512 ) |
| TIME_AND_TSC( "SHA-512", sha512( buf, BUFSIZE, tmp, 0 ) ); |
| #endif |
| |
| #if defined(POLARSSL_ARC4_C) |
| if( todo.arc4 ) |
| { |
| arc4_context arc4; |
| arc4_init( &arc4 ); |
| arc4_setup( &arc4, tmp, 32 ); |
| TIME_AND_TSC( "ARC4", arc4_crypt( &arc4, BUFSIZE, buf, buf ) ); |
| arc4_free( &arc4 ); |
| } |
| #endif |
| |
| #if defined(POLARSSL_DES_C) && defined(POLARSSL_CIPHER_MODE_CBC) |
| if( todo.des3 ) |
| { |
| des3_context des3; |
| des3_init( &des3 ); |
| des3_set3key_enc( &des3, tmp ); |
| TIME_AND_TSC( "3DES", |
| des3_crypt_cbc( &des3, DES_ENCRYPT, BUFSIZE, tmp, buf, buf ) ); |
| des3_free( &des3 ); |
| } |
| |
| if( todo.des ) |
| { |
| des_context des; |
| des_init( &des ); |
| des_setkey_enc( &des, tmp ); |
| TIME_AND_TSC( "DES", |
| des_crypt_cbc( &des, DES_ENCRYPT, BUFSIZE, tmp, buf, buf ) ); |
| des_free( &des ); |
| } |
| #endif |
| |
| #if defined(POLARSSL_AES_C) |
| #if defined(POLARSSL_CIPHER_MODE_CBC) |
| if( todo.aes_cbc ) |
| { |
| int keysize; |
| aes_context aes; |
| aes_init( &aes ); |
| for( keysize = 128; keysize <= 256; keysize += 64 ) |
| { |
| polarssl_snprintf( title, sizeof( title ), "AES-CBC-%d", keysize ); |
| |
| memset( buf, 0, sizeof( buf ) ); |
| memset( tmp, 0, sizeof( tmp ) ); |
| aes_setkey_enc( &aes, tmp, keysize ); |
| |
| TIME_AND_TSC( title, |
| aes_crypt_cbc( &aes, AES_ENCRYPT, BUFSIZE, tmp, buf, buf ) ); |
| } |
| aes_free( &aes ); |
| } |
| #endif |
| #if defined(POLARSSL_GCM_C) |
| if( todo.aes_gcm ) |
| { |
| int keysize; |
| gcm_context gcm; |
| for( keysize = 128; keysize <= 256; keysize += 64 ) |
| { |
| polarssl_snprintf( title, sizeof( title ), "AES-GCM-%d", keysize ); |
| |
| memset( buf, 0, sizeof( buf ) ); |
| memset( tmp, 0, sizeof( tmp ) ); |
| gcm_init( &gcm, POLARSSL_CIPHER_ID_AES, tmp, keysize ); |
| |
| TIME_AND_TSC( title, |
| gcm_crypt_and_tag( &gcm, GCM_ENCRYPT, BUFSIZE, tmp, |
| 12, NULL, 0, buf, buf, 16, tmp ) ); |
| |
| gcm_free( &gcm ); |
| } |
| } |
| #endif |
| #if defined(POLARSSL_CCM_C) |
| if( todo.aes_ccm ) |
| { |
| int keysize; |
| ccm_context ccm; |
| for( keysize = 128; keysize <= 256; keysize += 64 ) |
| { |
| polarssl_snprintf( title, sizeof( title ), "AES-CCM-%d", keysize ); |
| |
| memset( buf, 0, sizeof( buf ) ); |
| memset( tmp, 0, sizeof( tmp ) ); |
| ccm_init( &ccm, POLARSSL_CIPHER_ID_AES, tmp, keysize ); |
| |
| TIME_AND_TSC( title, |
| ccm_encrypt_and_tag( &ccm, BUFSIZE, tmp, |
| 12, NULL, 0, buf, buf, tmp, 16 ) ); |
| |
| ccm_free( &ccm ); |
| } |
| } |
| #endif |
| #endif |
| |
| #if defined(POLARSSL_CAMELLIA_C) && defined(POLARSSL_CIPHER_MODE_CBC) |
| if( todo.camellia ) |
| { |
| int keysize; |
| camellia_context camellia; |
| camellia_init( &camellia ); |
| for( keysize = 128; keysize <= 256; keysize += 64 ) |
| { |
| polarssl_snprintf( title, sizeof( title ), "CAMELLIA-CBC-%d", keysize ); |
| |
| memset( buf, 0, sizeof( buf ) ); |
| memset( tmp, 0, sizeof( tmp ) ); |
| camellia_setkey_enc( &camellia, tmp, keysize ); |
| |
| TIME_AND_TSC( title, |
| camellia_crypt_cbc( &camellia, CAMELLIA_ENCRYPT, |
| BUFSIZE, tmp, buf, buf ) ); |
| } |
| camellia_free( &camellia ); |
| } |
| #endif |
| |
| #if defined(POLARSSL_BLOWFISH_C) && defined(POLARSSL_CIPHER_MODE_CBC) |
| if( todo.blowfish ) |
| { |
| int keysize; |
| blowfish_context blowfish; |
| blowfish_init( &blowfish ); |
| |
| for( keysize = 128; keysize <= 256; keysize += 64 ) |
| { |
| polarssl_snprintf( title, sizeof( title ), "BLOWFISH-CBC-%d", keysize ); |
| |
| memset( buf, 0, sizeof( buf ) ); |
| memset( tmp, 0, sizeof( tmp ) ); |
| blowfish_setkey( &blowfish, tmp, keysize ); |
| |
| TIME_AND_TSC( title, |
| blowfish_crypt_cbc( &blowfish, BLOWFISH_ENCRYPT, BUFSIZE, |
| tmp, buf, buf ) ); |
| } |
| |
| blowfish_free( &blowfish ); |
| } |
| #endif |
| |
| #if defined(POLARSSL_HAVEGE_C) |
| if( todo.havege ) |
| { |
| havege_state hs; |
| havege_init( &hs ); |
| TIME_AND_TSC( "HAVEGE", havege_random( &hs, buf, BUFSIZE ) ); |
| havege_free( &hs ); |
| } |
| #endif |
| |
| #if defined(POLARSSL_CTR_DRBG_C) |
| if( todo.ctr_drbg ) |
| { |
| ctr_drbg_context ctr_drbg; |
| |
| if( ctr_drbg_init( &ctr_drbg, myrand, NULL, NULL, 0 ) != 0 ) |
| polarssl_exit(1); |
| TIME_AND_TSC( "CTR_DRBG (NOPR)", |
| if( ctr_drbg_random( &ctr_drbg, buf, BUFSIZE ) != 0 ) |
| polarssl_exit(1) ); |
| |
| if( ctr_drbg_init( &ctr_drbg, myrand, NULL, NULL, 0 ) != 0 ) |
| polarssl_exit(1); |
| ctr_drbg_set_prediction_resistance( &ctr_drbg, CTR_DRBG_PR_ON ); |
| TIME_AND_TSC( "CTR_DRBG (PR)", |
| if( ctr_drbg_random( &ctr_drbg, buf, BUFSIZE ) != 0 ) |
| polarssl_exit(1) ); |
| ctr_drbg_free( &ctr_drbg ); |
| } |
| #endif |
| |
| #if defined(POLARSSL_HMAC_DRBG_C) |
| if( todo.hmac_drbg ) |
| { |
| hmac_drbg_context hmac_drbg; |
| const md_info_t *md_info; |
| |
| #if defined(POLARSSL_SHA1_C) |
| if( ( md_info = md_info_from_type( POLARSSL_MD_SHA1 ) ) == NULL ) |
| polarssl_exit(1); |
| |
| if( hmac_drbg_init( &hmac_drbg, md_info, myrand, NULL, NULL, 0 ) != 0 ) |
| polarssl_exit(1); |
| TIME_AND_TSC( "HMAC_DRBG SHA-1 (NOPR)", |
| if( hmac_drbg_random( &hmac_drbg, buf, BUFSIZE ) != 0 ) |
| polarssl_exit(1) ); |
| hmac_drbg_free( &hmac_drbg ); |
| |
| if( hmac_drbg_init( &hmac_drbg, md_info, myrand, NULL, NULL, 0 ) != 0 ) |
| polarssl_exit(1); |
| hmac_drbg_set_prediction_resistance( &hmac_drbg, |
| POLARSSL_HMAC_DRBG_PR_ON ); |
| TIME_AND_TSC( "HMAC_DRBG SHA-1 (PR)", |
| if( hmac_drbg_random( &hmac_drbg, buf, BUFSIZE ) != 0 ) |
| polarssl_exit(1) ); |
| hmac_drbg_free( &hmac_drbg ); |
| #endif |
| |
| #if defined(POLARSSL_SHA256_C) |
| if( ( md_info = md_info_from_type( POLARSSL_MD_SHA256 ) ) == NULL ) |
| polarssl_exit(1); |
| |
| if( hmac_drbg_init( &hmac_drbg, md_info, myrand, NULL, NULL, 0 ) != 0 ) |
| polarssl_exit(1); |
| TIME_AND_TSC( "HMAC_DRBG SHA-256 (NOPR)", |
| if( hmac_drbg_random( &hmac_drbg, buf, BUFSIZE ) != 0 ) |
| polarssl_exit(1) ); |
| hmac_drbg_free( &hmac_drbg ); |
| |
| if( hmac_drbg_init( &hmac_drbg, md_info, myrand, NULL, NULL, 0 ) != 0 ) |
| polarssl_exit(1); |
| hmac_drbg_set_prediction_resistance( &hmac_drbg, |
| POLARSSL_HMAC_DRBG_PR_ON ); |
| TIME_AND_TSC( "HMAC_DRBG SHA-256 (PR)", |
| if( hmac_drbg_random( &hmac_drbg, buf, BUFSIZE ) != 0 ) |
| polarssl_exit(1) ); |
| hmac_drbg_free( &hmac_drbg ); |
| #endif |
| } |
| #endif |
| |
| #if defined(POLARSSL_RSA_C) && defined(POLARSSL_GENPRIME) |
| if( todo.rsa ) |
| { |
| int keysize; |
| rsa_context rsa; |
| for( keysize = 1024; keysize <= 4096; keysize *= 2 ) |
| { |
| polarssl_snprintf( title, sizeof( title ), "RSA-%d", keysize ); |
| |
| rsa_init( &rsa, RSA_PKCS_V15, 0 ); |
| rsa_gen_key( &rsa, myrand, NULL, keysize, 65537 ); |
| |
| TIME_PUBLIC( title, " public", |
| buf[0] = 0; |
| ret = rsa_public( &rsa, buf, buf ) ); |
| |
| TIME_PUBLIC( title, "private", |
| buf[0] = 0; |
| ret = rsa_private( &rsa, myrand, NULL, buf, buf ) ); |
| |
| rsa_free( &rsa ); |
| } |
| } |
| #endif |
| |
| #if defined(POLARSSL_DHM_C) && defined(POLARSSL_BIGNUM_C) |
| if( todo.dhm ) |
| { |
| int dhm_sizes[DHM_SIZES] = { 1024, 2048, 3072 }; |
| const char *dhm_P[DHM_SIZES] = { |
| POLARSSL_DHM_RFC5114_MODP_1024_P, |
| POLARSSL_DHM_RFC3526_MODP_2048_P, |
| POLARSSL_DHM_RFC3526_MODP_3072_P, |
| }; |
| const char *dhm_G[DHM_SIZES] = { |
| POLARSSL_DHM_RFC5114_MODP_1024_G, |
| POLARSSL_DHM_RFC3526_MODP_2048_G, |
| POLARSSL_DHM_RFC3526_MODP_3072_G, |
| }; |
| |
| dhm_context dhm; |
| size_t olen; |
| for( i = 0; i < DHM_SIZES; i++ ) |
| { |
| dhm_init( &dhm ); |
| |
| if( mpi_read_string( &dhm.P, 16, dhm_P[i] ) != 0 || |
| mpi_read_string( &dhm.G, 16, dhm_G[i] ) != 0 ) |
| { |
| polarssl_exit( 1 ); |
| } |
| |
| dhm.len = mpi_size( &dhm.P ); |
| dhm_make_public( &dhm, (int) dhm.len, buf, dhm.len, myrand, NULL ); |
| if( mpi_copy( &dhm.GY, &dhm.GX ) != 0 ) |
| polarssl_exit( 1 ); |
| |
| polarssl_snprintf( title, sizeof( title ), "DHE-%d", dhm_sizes[i] ); |
| TIME_PUBLIC( title, "handshake", |
| olen = sizeof( buf ); |
| ret |= dhm_make_public( &dhm, (int) dhm.len, buf, dhm.len, |
| myrand, NULL ); |
| ret |= dhm_calc_secret( &dhm, buf, &olen, myrand, NULL ) ); |
| |
| polarssl_snprintf( title, sizeof( title ), "DH-%d", dhm_sizes[i] ); |
| TIME_PUBLIC( title, "handshake", |
| olen = sizeof( buf ); |
| ret |= dhm_calc_secret( &dhm, buf, &olen, myrand, NULL ) ); |
| |
| dhm_free( &dhm ); |
| } |
| } |
| #endif |
| |
| #if defined(POLARSSL_ECDSA_C) |
| if( todo.ecdsa ) |
| { |
| ecdsa_context ecdsa; |
| const ecp_curve_info *curve_info; |
| size_t sig_len; |
| |
| memset( buf, 0x2A, sizeof( buf ) ); |
| |
| for( curve_info = ecp_curve_list(); |
| curve_info->grp_id != POLARSSL_ECP_DP_NONE; |
| curve_info++ ) |
| { |
| ecdsa_init( &ecdsa ); |
| |
| if( ecdsa_genkey( &ecdsa, curve_info->grp_id, myrand, NULL ) != 0 ) |
| polarssl_exit( 1 ); |
| ecp_clear_precomputed( &ecdsa.grp ); |
| |
| polarssl_snprintf( title, sizeof( title ), "ECDSA-%s", |
| curve_info->name ); |
| TIME_PUBLIC( title, "sign", |
| ret = ecdsa_write_signature( &ecdsa, buf, curve_info->size, |
| tmp, &sig_len, myrand, NULL ) ); |
| |
| ecdsa_free( &ecdsa ); |
| } |
| |
| for( curve_info = ecp_curve_list(); |
| curve_info->grp_id != POLARSSL_ECP_DP_NONE; |
| curve_info++ ) |
| { |
| ecdsa_init( &ecdsa ); |
| |
| if( ecdsa_genkey( &ecdsa, curve_info->grp_id, myrand, NULL ) != 0 || |
| ecdsa_write_signature( &ecdsa, buf, curve_info->size, |
| tmp, &sig_len, myrand, NULL ) != 0 ) |
| { |
| polarssl_exit( 1 ); |
| } |
| ecp_clear_precomputed( &ecdsa.grp ); |
| |
| polarssl_snprintf( title, sizeof( title ), "ECDSA-%s", |
| curve_info->name ); |
| TIME_PUBLIC( title, "verify", |
| ret = ecdsa_read_signature( &ecdsa, buf, curve_info->size, |
| tmp, sig_len ) ); |
| |
| ecdsa_free( &ecdsa ); |
| } |
| } |
| #endif |
| |
| #if defined(POLARSSL_ECDH_C) |
| if( todo.ecdh ) |
| { |
| ecdh_context ecdh; |
| #if defined(POLARSSL_ECP_DP_M255_ENABLED) |
| mpi z; |
| #endif |
| const ecp_curve_info *curve_info; |
| size_t olen; |
| |
| for( curve_info = ecp_curve_list(); |
| curve_info->grp_id != POLARSSL_ECP_DP_NONE; |
| curve_info++ ) |
| { |
| ecdh_init( &ecdh ); |
| |
| if( ecp_use_known_dp( &ecdh.grp, curve_info->grp_id ) != 0 || |
| ecdh_make_public( &ecdh, &olen, buf, sizeof( buf), |
| myrand, NULL ) != 0 || |
| ecp_copy( &ecdh.Qp, &ecdh.Q ) != 0 ) |
| { |
| polarssl_exit( 1 ); |
| } |
| ecp_clear_precomputed( &ecdh.grp ); |
| |
| polarssl_snprintf( title, sizeof( title ), "ECDHE-%s", |
| curve_info->name ); |
| TIME_PUBLIC( title, "handshake", |
| ret |= ecdh_make_public( &ecdh, &olen, buf, sizeof( buf), |
| myrand, NULL ); |
| ret |= ecdh_calc_secret( &ecdh, &olen, buf, sizeof( buf ), |
| myrand, NULL ) ); |
| ecdh_free( &ecdh ); |
| } |
| |
| /* Curve25519 needs to be handled separately */ |
| #if defined(POLARSSL_ECP_DP_M255_ENABLED) |
| ecdh_init( &ecdh ); |
| mpi_init( &z ); |
| |
| if( ecp_use_known_dp( &ecdh.grp, POLARSSL_ECP_DP_M255 ) != 0 || |
| ecdh_gen_public( &ecdh.grp, &ecdh.d, &ecdh.Qp, myrand, NULL ) != 0 ) |
| { |
| polarssl_exit( 1 ); |
| } |
| |
| TIME_PUBLIC( "ECDHE-Curve25519", "handshake", |
| ret |= ecdh_gen_public( &ecdh.grp, &ecdh.d, &ecdh.Q, |
| myrand, NULL ); |
| ret |= ecdh_compute_shared( &ecdh.grp, &z, &ecdh.Qp, &ecdh.d, |
| myrand, NULL ) ); |
| |
| ecdh_free( &ecdh ); |
| mpi_free( &z ); |
| #endif |
| |
| for( curve_info = ecp_curve_list(); |
| curve_info->grp_id != POLARSSL_ECP_DP_NONE; |
| curve_info++ ) |
| { |
| ecdh_init( &ecdh ); |
| |
| if( ecp_use_known_dp( &ecdh.grp, curve_info->grp_id ) != 0 || |
| ecdh_make_public( &ecdh, &olen, buf, sizeof( buf), |
| myrand, NULL ) != 0 || |
| ecp_copy( &ecdh.Qp, &ecdh.Q ) != 0 || |
| ecdh_make_public( &ecdh, &olen, buf, sizeof( buf), |
| myrand, NULL ) != 0 ) |
| { |
| polarssl_exit( 1 ); |
| } |
| ecp_clear_precomputed( &ecdh.grp ); |
| |
| polarssl_snprintf( title, sizeof( title ), "ECDH-%s", |
| curve_info->name ); |
| TIME_PUBLIC( title, "handshake", |
| ret |= ecdh_calc_secret( &ecdh, &olen, buf, sizeof( buf ), |
| myrand, NULL ) ); |
| ecdh_free( &ecdh ); |
| } |
| |
| /* Curve25519 needs to be handled separately */ |
| #if defined(POLARSSL_ECP_DP_M255_ENABLED) |
| ecdh_init( &ecdh ); |
| mpi_init( &z ); |
| |
| if( ecp_use_known_dp( &ecdh.grp, POLARSSL_ECP_DP_M255 ) != 0 || |
| ecdh_gen_public( &ecdh.grp, &ecdh.d, &ecdh.Qp, |
| myrand, NULL ) != 0 || |
| ecdh_gen_public( &ecdh.grp, &ecdh.d, &ecdh.Q, myrand, NULL ) != 0 ) |
| { |
| polarssl_exit( 1 ); |
| } |
| |
| TIME_PUBLIC( "ECDH-Curve25519", "handshake", |
| ret |= ecdh_compute_shared( &ecdh.grp, &z, &ecdh.Qp, &ecdh.d, |
| myrand, NULL ) ); |
| |
| ecdh_free( &ecdh ); |
| mpi_free( &z ); |
| #endif |
| } |
| #endif |
| |
| polarssl_printf( "\n" ); |
| |
| #if defined(POLARSSL_MEMORY_BUFFER_ALLOC_C) |
| memory_buffer_alloc_free(); |
| #endif |
| |
| #if defined(_WIN32) |
| polarssl_printf( " Press Enter to exit this program.\n" ); |
| fflush( stdout ); getchar(); |
| #endif |
| |
| return( 0 ); |
| } |
| |
| #endif /* POLARSSL_TIMING_C */ |