2 * Copyright 1995-2018 The OpenSSL Project Authors. All Rights Reserved.
3 * Copyright (c) 2002, Oracle and/or its affiliates. All rights reserved
5 * Licensed under the OpenSSL license (the "License"). You may not use
6 * this file except in compliance with the License. You can obtain a copy
7 * in the file LICENSE in the source distribution or at
8 * https://www.openssl.org/source/license.html
13 #define RSA_SECONDS 10
14 #define DSA_SECONDS 10
15 #define ECDSA_SECONDS 10
16 #define ECDH_SECONDS 10
24 #include <openssl/crypto.h>
25 #include <openssl/rand.h>
26 #include <openssl/err.h>
27 #include <openssl/evp.h>
28 #include <openssl/objects.h>
29 #include <openssl/async.h>
30 #if !defined(OPENSSL_SYS_MSDOS)
31 # include OPENSSL_UNISTD
38 #include <openssl/bn.h>
39 #ifndef OPENSSL_NO_DES
40 # include <openssl/des.h>
42 #include <openssl/aes.h>
43 #ifndef OPENSSL_NO_CAMELLIA
44 # include <openssl/camellia.h>
46 #ifndef OPENSSL_NO_MD2
47 # include <openssl/md2.h>
49 #ifndef OPENSSL_NO_MDC2
50 # include <openssl/mdc2.h>
52 #ifndef OPENSSL_NO_MD4
53 # include <openssl/md4.h>
55 #ifndef OPENSSL_NO_MD5
56 # include <openssl/md5.h>
58 #include <openssl/hmac.h>
59 #include <openssl/sha.h>
60 #ifndef OPENSSL_NO_RMD160
61 # include <openssl/ripemd.h>
63 #ifndef OPENSSL_NO_WHIRLPOOL
64 # include <openssl/whrlpool.h>
66 #ifndef OPENSSL_NO_RC4
67 # include <openssl/rc4.h>
69 #ifndef OPENSSL_NO_RC5
70 # include <openssl/rc5.h>
72 #ifndef OPENSSL_NO_RC2
73 # include <openssl/rc2.h>
75 #ifndef OPENSSL_NO_IDEA
76 # include <openssl/idea.h>
78 #ifndef OPENSSL_NO_SEED
79 # include <openssl/seed.h>
82 # include <openssl/blowfish.h>
84 #ifndef OPENSSL_NO_CAST
85 # include <openssl/cast.h>
87 #ifndef OPENSSL_NO_RSA
88 # include <openssl/rsa.h>
89 # include "./testrsa.h"
91 #include <openssl/x509.h>
92 #ifndef OPENSSL_NO_DSA
93 # include <openssl/dsa.h>
94 # include "./testdsa.h"
97 # include <openssl/ec.h>
99 #include <openssl/modes.h>
102 # if defined(OPENSSL_SYS_VMS) || defined(OPENSSL_SYS_WINDOWS)
115 #define MAX_MISALIGNMENT 63
122 #define MAX_ECDH_SIZE 256
125 typedef struct openssl_speed_sec_st {
131 } openssl_speed_sec_t;
133 static volatile int run = 0;
136 static int usertime = 1;
138 typedef struct loopargs_st {
139 ASYNC_JOB *inprogress_job;
140 ASYNC_WAIT_CTX *wait_ctx;
143 unsigned char *buf_malloc;
144 unsigned char *buf2_malloc;
147 #ifndef OPENSSL_NO_RSA
148 RSA *rsa_key[RSA_NUM];
150 #ifndef OPENSSL_NO_DSA
151 DSA *dsa_key[DSA_NUM];
153 #ifndef OPENSSL_NO_EC
154 EC_KEY *ecdsa[EC_NUM];
155 EVP_PKEY_CTX *ecdh_ctx[EC_NUM];
156 unsigned char *secret_a;
157 unsigned char *secret_b;
158 size_t outlen[EC_NUM];
162 GCM128_CONTEXT *gcm_ctx;
165 #ifndef OPENSSL_NO_MD2
166 static int EVP_Digest_MD2_loop(void *args);
169 #ifndef OPENSSL_NO_MDC2
170 static int EVP_Digest_MDC2_loop(void *args);
172 #ifndef OPENSSL_NO_MD4
173 static int EVP_Digest_MD4_loop(void *args);
175 #ifndef OPENSSL_NO_MD5
176 static int MD5_loop(void *args);
177 static int HMAC_loop(void *args);
179 static int SHA1_loop(void *args);
180 static int SHA256_loop(void *args);
181 static int SHA512_loop(void *args);
182 #ifndef OPENSSL_NO_WHIRLPOOL
183 static int WHIRLPOOL_loop(void *args);
185 #ifndef OPENSSL_NO_RMD160
186 static int EVP_Digest_RMD160_loop(void *args);
188 #ifndef OPENSSL_NO_RC4
189 static int RC4_loop(void *args);
191 #ifndef OPENSSL_NO_DES
192 static int DES_ncbc_encrypt_loop(void *args);
193 static int DES_ede3_cbc_encrypt_loop(void *args);
195 static int AES_cbc_128_encrypt_loop(void *args);
196 static int AES_cbc_192_encrypt_loop(void *args);
197 static int AES_ige_128_encrypt_loop(void *args);
198 static int AES_cbc_256_encrypt_loop(void *args);
199 static int AES_ige_192_encrypt_loop(void *args);
200 static int AES_ige_256_encrypt_loop(void *args);
201 static int CRYPTO_gcm128_aad_loop(void *args);
202 static int RAND_bytes_loop(void *args);
203 static int EVP_Update_loop(void *args);
204 static int EVP_Update_loop_ccm(void *args);
205 static int EVP_Digest_loop(void *args);
206 #ifndef OPENSSL_NO_RSA
207 static int RSA_sign_loop(void *args);
208 static int RSA_verify_loop(void *args);
210 #ifndef OPENSSL_NO_DSA
211 static int DSA_sign_loop(void *args);
212 static int DSA_verify_loop(void *args);
214 #ifndef OPENSSL_NO_EC
215 static int ECDSA_sign_loop(void *args);
216 static int ECDSA_verify_loop(void *args);
218 static int run_benchmark(int async_jobs, int (*loop_function) (void *),
219 loopargs_t * loopargs);
221 static double Time_F(int s);
222 static void print_message(const char *s, long num, int length, int tm);
223 static void pkey_print_message(const char *str, const char *str2,
224 long num, unsigned int bits, int sec);
225 static void print_result(int alg, int run_no, int count, double time_used);
227 static int do_multi(int multi, int size_num);
230 static const int lengths_list[] = {
231 16, 64, 256, 1024, 8 * 1024, 16 * 1024
233 static int lengths_single = 0;
235 static const int *lengths = lengths_list;
237 static const char *names[ALGOR_NUM] = {
238 "md2", "mdc2", "md4", "md5", "hmac(md5)", "sha1", "rmd160", "rc4",
239 "des cbc", "des ede3", "idea cbc", "seed cbc",
240 "rc2 cbc", "rc5-32/12 cbc", "blowfish cbc", "cast cbc",
241 "aes-128 cbc", "aes-192 cbc", "aes-256 cbc",
242 "camellia-128 cbc", "camellia-192 cbc", "camellia-256 cbc",
243 "evp", "sha256", "sha512", "whirlpool",
244 "aes-128 ige", "aes-192 ige", "aes-256 ige", "ghash",
248 static double results[ALGOR_NUM][OSSL_NELEM(lengths_list)];
250 #ifndef OPENSSL_NO_RSA
251 static double rsa_results[RSA_NUM][2];
253 #ifndef OPENSSL_NO_DSA
254 static double dsa_results[DSA_NUM][2];
256 #ifndef OPENSSL_NO_EC
257 static double ecdsa_results[EC_NUM][2];
258 static double ecdh_results[EC_NUM][1];
262 # if defined(__STDC__) || defined(sgi) || defined(_AIX)
263 # define SIGRETTYPE void
265 # define SIGRETTYPE int
268 static SIGRETTYPE sig_done(int sig);
269 static SIGRETTYPE sig_done(int sig)
271 signal(SIGALRM, sig_done);
281 # if !defined(SIGALRM)
284 static unsigned int lapse;
285 static volatile unsigned int schlock;
286 static void alarm_win32(unsigned int secs)
291 # define alarm alarm_win32
293 static DWORD WINAPI sleepy(VOID * arg)
301 static double Time_F(int s)
308 thr = CreateThread(NULL, 4096, sleepy, NULL, 0, NULL);
310 DWORD err = GetLastError();
311 BIO_printf(bio_err, "unable to CreateThread (%lu)", err);
315 Sleep(0); /* scheduler spinlock */
316 ret = app_tminterval(s, usertime);
318 ret = app_tminterval(s, usertime);
320 TerminateThread(thr, 0);
328 static double Time_F(int s)
330 double ret = app_tminterval(s, usertime);
337 static void multiblock_speed(const EVP_CIPHER *evp_cipher,
338 const openssl_speed_sec_t *seconds);
340 static int found(const char *name, const OPT_PAIR *pairs, int *result)
342 for (; pairs->name; pairs++)
343 if (strcmp(name, pairs->name) == 0) {
344 *result = pairs->retval;
350 typedef enum OPTION_choice {
351 OPT_ERR = -1, OPT_EOF = 0, OPT_HELP,
352 OPT_ELAPSED, OPT_EVP, OPT_DECRYPT, OPT_ENGINE, OPT_MULTI,
353 OPT_MR, OPT_MB, OPT_MISALIGN, OPT_ASYNCJOBS, OPT_R_ENUM,
354 OPT_PRIMES, OPT_SECONDS, OPT_BYTES
357 const OPTIONS speed_options[] = {
358 {OPT_HELP_STR, 1, '-', "Usage: %s [options] ciphers...\n"},
359 {OPT_HELP_STR, 1, '-', "Valid options are:\n"},
360 {"help", OPT_HELP, '-', "Display this summary"},
361 {"evp", OPT_EVP, 's', "Use specified EVP cipher"},
362 {"decrypt", OPT_DECRYPT, '-',
363 "Time decryption instead of encryption (only EVP)"},
364 {"mr", OPT_MR, '-', "Produce machine readable output"},
366 "Enable (tls1.1) multi-block mode on evp_cipher requested with -evp"},
367 {"misalign", OPT_MISALIGN, 'n', "Amount to mis-align buffers"},
368 {"elapsed", OPT_ELAPSED, '-',
369 "Measure time in real time instead of CPU user time"},
371 {"multi", OPT_MULTI, 'p', "Run benchmarks in parallel"},
373 #ifndef OPENSSL_NO_ASYNC
374 {"async_jobs", OPT_ASYNCJOBS, 'p',
375 "Enable async mode and start pnum jobs"},
378 #ifndef OPENSSL_NO_ENGINE
379 {"engine", OPT_ENGINE, 's', "Use engine, possibly a hardware device"},
381 {"primes", OPT_PRIMES, 'p', "Specify number of primes (for RSA only)"},
382 {"seconds", OPT_SECONDS, 'p',
383 "Run benchmarks for pnum seconds"},
384 {"bytes", OPT_BYTES, 'p',
385 "Run cipher, digest and rand benchmarks on pnum bytes"},
399 #define D_CBC_IDEA 10
400 #define D_CBC_SEED 11
404 #define D_CBC_CAST 15
405 #define D_CBC_128_AES 16
406 #define D_CBC_192_AES 17
407 #define D_CBC_256_AES 18
408 #define D_CBC_128_CML 19
409 #define D_CBC_192_CML 20
410 #define D_CBC_256_CML 21
414 #define D_WHIRLPOOL 25
415 #define D_IGE_128_AES 26
416 #define D_IGE_192_AES 27
417 #define D_IGE_256_AES 28
420 static OPT_PAIR doit_choices[] = {
421 #ifndef OPENSSL_NO_MD2
424 #ifndef OPENSSL_NO_MDC2
427 #ifndef OPENSSL_NO_MD4
430 #ifndef OPENSSL_NO_MD5
435 {"sha256", D_SHA256},
436 {"sha512", D_SHA512},
437 #ifndef OPENSSL_NO_WHIRLPOOL
438 {"whirlpool", D_WHIRLPOOL},
440 #ifndef OPENSSL_NO_RMD160
441 {"ripemd", D_RMD160},
442 {"rmd160", D_RMD160},
443 {"ripemd160", D_RMD160},
445 #ifndef OPENSSL_NO_RC4
448 #ifndef OPENSSL_NO_DES
449 {"des-cbc", D_CBC_DES},
450 {"des-ede3", D_EDE3_DES},
452 {"aes-128-cbc", D_CBC_128_AES},
453 {"aes-192-cbc", D_CBC_192_AES},
454 {"aes-256-cbc", D_CBC_256_AES},
455 {"aes-128-ige", D_IGE_128_AES},
456 {"aes-192-ige", D_IGE_192_AES},
457 {"aes-256-ige", D_IGE_256_AES},
458 #ifndef OPENSSL_NO_RC2
459 {"rc2-cbc", D_CBC_RC2},
462 #ifndef OPENSSL_NO_RC5
463 {"rc5-cbc", D_CBC_RC5},
466 #ifndef OPENSSL_NO_IDEA
467 {"idea-cbc", D_CBC_IDEA},
468 {"idea", D_CBC_IDEA},
470 #ifndef OPENSSL_NO_SEED
471 {"seed-cbc", D_CBC_SEED},
472 {"seed", D_CBC_SEED},
474 #ifndef OPENSSL_NO_BF
475 {"bf-cbc", D_CBC_BF},
476 {"blowfish", D_CBC_BF},
479 #ifndef OPENSSL_NO_CAST
480 {"cast-cbc", D_CBC_CAST},
481 {"cast", D_CBC_CAST},
482 {"cast5", D_CBC_CAST},
489 #ifndef OPENSSL_NO_DSA
491 # define R_DSA_1024 1
492 # define R_DSA_2048 2
493 static OPT_PAIR dsa_choices[] = {
494 {"dsa512", R_DSA_512},
495 {"dsa1024", R_DSA_1024},
496 {"dsa2048", R_DSA_2048},
507 #define R_RSA_15360 6
508 static OPT_PAIR rsa_choices[] = {
509 {"rsa512", R_RSA_512},
510 {"rsa1024", R_RSA_1024},
511 {"rsa2048", R_RSA_2048},
512 {"rsa3072", R_RSA_3072},
513 {"rsa4096", R_RSA_4096},
514 {"rsa7680", R_RSA_7680},
515 {"rsa15360", R_RSA_15360},
535 #define R_EC_X25519 16
537 #ifndef OPENSSL_NO_EC
538 static OPT_PAIR ecdsa_choices[] = {
539 {"ecdsap160", R_EC_P160},
540 {"ecdsap192", R_EC_P192},
541 {"ecdsap224", R_EC_P224},
542 {"ecdsap256", R_EC_P256},
543 {"ecdsap384", R_EC_P384},
544 {"ecdsap521", R_EC_P521},
545 {"ecdsak163", R_EC_K163},
546 {"ecdsak233", R_EC_K233},
547 {"ecdsak283", R_EC_K283},
548 {"ecdsak409", R_EC_K409},
549 {"ecdsak571", R_EC_K571},
550 {"ecdsab163", R_EC_B163},
551 {"ecdsab233", R_EC_B233},
552 {"ecdsab283", R_EC_B283},
553 {"ecdsab409", R_EC_B409},
554 {"ecdsab571", R_EC_B571},
558 static OPT_PAIR ecdh_choices[] = {
559 {"ecdhp160", R_EC_P160},
560 {"ecdhp192", R_EC_P192},
561 {"ecdhp224", R_EC_P224},
562 {"ecdhp256", R_EC_P256},
563 {"ecdhp384", R_EC_P384},
564 {"ecdhp521", R_EC_P521},
565 {"ecdhk163", R_EC_K163},
566 {"ecdhk233", R_EC_K233},
567 {"ecdhk283", R_EC_K283},
568 {"ecdhk409", R_EC_K409},
569 {"ecdhk571", R_EC_K571},
570 {"ecdhb163", R_EC_B163},
571 {"ecdhb233", R_EC_B233},
572 {"ecdhb283", R_EC_B283},
573 {"ecdhb409", R_EC_B409},
574 {"ecdhb571", R_EC_B571},
575 {"ecdhx25519", R_EC_X25519},
576 {"ecdhx448", R_EC_X448},
582 # define COND(d) (count < (d))
583 # define COUNT(d) (d)
585 # define COND(unused_cond) (run && count<0x7fffffff)
586 # define COUNT(d) (count)
591 /* Nb of iterations to do per algorithm and key-size */
592 static long c[ALGOR_NUM][OSSL_NELEM(lengths_list)];
594 #ifndef OPENSSL_NO_MD2
595 static int EVP_Digest_MD2_loop(void *args)
597 loopargs_t *tempargs = *(loopargs_t **) args;
598 unsigned char *buf = tempargs->buf;
599 unsigned char md2[MD2_DIGEST_LENGTH];
602 for (count = 0; COND(c[D_MD2][testnum]); count++) {
603 if (!EVP_Digest(buf, (size_t)lengths[testnum], md2, NULL, EVP_md2(),
611 #ifndef OPENSSL_NO_MDC2
612 static int EVP_Digest_MDC2_loop(void *args)
614 loopargs_t *tempargs = *(loopargs_t **) args;
615 unsigned char *buf = tempargs->buf;
616 unsigned char mdc2[MDC2_DIGEST_LENGTH];
619 for (count = 0; COND(c[D_MDC2][testnum]); count++) {
620 if (!EVP_Digest(buf, (size_t)lengths[testnum], mdc2, NULL, EVP_mdc2(),
628 #ifndef OPENSSL_NO_MD4
629 static int EVP_Digest_MD4_loop(void *args)
631 loopargs_t *tempargs = *(loopargs_t **) args;
632 unsigned char *buf = tempargs->buf;
633 unsigned char md4[MD4_DIGEST_LENGTH];
636 for (count = 0; COND(c[D_MD4][testnum]); count++) {
637 if (!EVP_Digest(buf, (size_t)lengths[testnum], md4, NULL, EVP_md4(),
645 #ifndef OPENSSL_NO_MD5
646 static int MD5_loop(void *args)
648 loopargs_t *tempargs = *(loopargs_t **) args;
649 unsigned char *buf = tempargs->buf;
650 unsigned char md5[MD5_DIGEST_LENGTH];
652 for (count = 0; COND(c[D_MD5][testnum]); count++)
653 MD5(buf, lengths[testnum], md5);
657 static int HMAC_loop(void *args)
659 loopargs_t *tempargs = *(loopargs_t **) args;
660 unsigned char *buf = tempargs->buf;
661 HMAC_CTX *hctx = tempargs->hctx;
662 unsigned char hmac[MD5_DIGEST_LENGTH];
665 for (count = 0; COND(c[D_HMAC][testnum]); count++) {
666 HMAC_Init_ex(hctx, NULL, 0, NULL, NULL);
667 HMAC_Update(hctx, buf, lengths[testnum]);
668 HMAC_Final(hctx, hmac, NULL);
674 static int SHA1_loop(void *args)
676 loopargs_t *tempargs = *(loopargs_t **) args;
677 unsigned char *buf = tempargs->buf;
678 unsigned char sha[SHA_DIGEST_LENGTH];
680 for (count = 0; COND(c[D_SHA1][testnum]); count++)
681 SHA1(buf, lengths[testnum], sha);
685 static int SHA256_loop(void *args)
687 loopargs_t *tempargs = *(loopargs_t **) args;
688 unsigned char *buf = tempargs->buf;
689 unsigned char sha256[SHA256_DIGEST_LENGTH];
691 for (count = 0; COND(c[D_SHA256][testnum]); count++)
692 SHA256(buf, lengths[testnum], sha256);
696 static int SHA512_loop(void *args)
698 loopargs_t *tempargs = *(loopargs_t **) args;
699 unsigned char *buf = tempargs->buf;
700 unsigned char sha512[SHA512_DIGEST_LENGTH];
702 for (count = 0; COND(c[D_SHA512][testnum]); count++)
703 SHA512(buf, lengths[testnum], sha512);
707 #ifndef OPENSSL_NO_WHIRLPOOL
708 static int WHIRLPOOL_loop(void *args)
710 loopargs_t *tempargs = *(loopargs_t **) args;
711 unsigned char *buf = tempargs->buf;
712 unsigned char whirlpool[WHIRLPOOL_DIGEST_LENGTH];
714 for (count = 0; COND(c[D_WHIRLPOOL][testnum]); count++)
715 WHIRLPOOL(buf, lengths[testnum], whirlpool);
720 #ifndef OPENSSL_NO_RMD160
721 static int EVP_Digest_RMD160_loop(void *args)
723 loopargs_t *tempargs = *(loopargs_t **) args;
724 unsigned char *buf = tempargs->buf;
725 unsigned char rmd160[RIPEMD160_DIGEST_LENGTH];
727 for (count = 0; COND(c[D_RMD160][testnum]); count++) {
728 if (!EVP_Digest(buf, (size_t)lengths[testnum], &(rmd160[0]),
729 NULL, EVP_ripemd160(), NULL))
736 #ifndef OPENSSL_NO_RC4
737 static RC4_KEY rc4_ks;
738 static int RC4_loop(void *args)
740 loopargs_t *tempargs = *(loopargs_t **) args;
741 unsigned char *buf = tempargs->buf;
743 for (count = 0; COND(c[D_RC4][testnum]); count++)
744 RC4(&rc4_ks, (size_t)lengths[testnum], buf, buf);
749 #ifndef OPENSSL_NO_DES
750 static unsigned char DES_iv[8];
751 static DES_key_schedule sch;
752 static DES_key_schedule sch2;
753 static DES_key_schedule sch3;
754 static int DES_ncbc_encrypt_loop(void *args)
756 loopargs_t *tempargs = *(loopargs_t **) args;
757 unsigned char *buf = tempargs->buf;
759 for (count = 0; COND(c[D_CBC_DES][testnum]); count++)
760 DES_ncbc_encrypt(buf, buf, lengths[testnum], &sch,
761 &DES_iv, DES_ENCRYPT);
765 static int DES_ede3_cbc_encrypt_loop(void *args)
767 loopargs_t *tempargs = *(loopargs_t **) args;
768 unsigned char *buf = tempargs->buf;
770 for (count = 0; COND(c[D_EDE3_DES][testnum]); count++)
771 DES_ede3_cbc_encrypt(buf, buf, lengths[testnum],
772 &sch, &sch2, &sch3, &DES_iv, DES_ENCRYPT);
777 #define MAX_BLOCK_SIZE 128
779 static unsigned char iv[2 * MAX_BLOCK_SIZE / 8];
780 static AES_KEY aes_ks1, aes_ks2, aes_ks3;
781 static int AES_cbc_128_encrypt_loop(void *args)
783 loopargs_t *tempargs = *(loopargs_t **) args;
784 unsigned char *buf = tempargs->buf;
786 for (count = 0; COND(c[D_CBC_128_AES][testnum]); count++)
787 AES_cbc_encrypt(buf, buf,
788 (size_t)lengths[testnum], &aes_ks1, iv, AES_ENCRYPT);
792 static int AES_cbc_192_encrypt_loop(void *args)
794 loopargs_t *tempargs = *(loopargs_t **) args;
795 unsigned char *buf = tempargs->buf;
797 for (count = 0; COND(c[D_CBC_192_AES][testnum]); count++)
798 AES_cbc_encrypt(buf, buf,
799 (size_t)lengths[testnum], &aes_ks2, iv, AES_ENCRYPT);
803 static int AES_cbc_256_encrypt_loop(void *args)
805 loopargs_t *tempargs = *(loopargs_t **) args;
806 unsigned char *buf = tempargs->buf;
808 for (count = 0; COND(c[D_CBC_256_AES][testnum]); count++)
809 AES_cbc_encrypt(buf, buf,
810 (size_t)lengths[testnum], &aes_ks3, iv, AES_ENCRYPT);
814 static int AES_ige_128_encrypt_loop(void *args)
816 loopargs_t *tempargs = *(loopargs_t **) args;
817 unsigned char *buf = tempargs->buf;
818 unsigned char *buf2 = tempargs->buf2;
820 for (count = 0; COND(c[D_IGE_128_AES][testnum]); count++)
821 AES_ige_encrypt(buf, buf2,
822 (size_t)lengths[testnum], &aes_ks1, iv, AES_ENCRYPT);
826 static int AES_ige_192_encrypt_loop(void *args)
828 loopargs_t *tempargs = *(loopargs_t **) args;
829 unsigned char *buf = tempargs->buf;
830 unsigned char *buf2 = tempargs->buf2;
832 for (count = 0; COND(c[D_IGE_192_AES][testnum]); count++)
833 AES_ige_encrypt(buf, buf2,
834 (size_t)lengths[testnum], &aes_ks2, iv, AES_ENCRYPT);
838 static int AES_ige_256_encrypt_loop(void *args)
840 loopargs_t *tempargs = *(loopargs_t **) args;
841 unsigned char *buf = tempargs->buf;
842 unsigned char *buf2 = tempargs->buf2;
844 for (count = 0; COND(c[D_IGE_256_AES][testnum]); count++)
845 AES_ige_encrypt(buf, buf2,
846 (size_t)lengths[testnum], &aes_ks3, iv, AES_ENCRYPT);
850 static int CRYPTO_gcm128_aad_loop(void *args)
852 loopargs_t *tempargs = *(loopargs_t **) args;
853 unsigned char *buf = tempargs->buf;
854 GCM128_CONTEXT *gcm_ctx = tempargs->gcm_ctx;
856 for (count = 0; COND(c[D_GHASH][testnum]); count++)
857 CRYPTO_gcm128_aad(gcm_ctx, buf, lengths[testnum]);
861 static int RAND_bytes_loop(void *args)
863 loopargs_t *tempargs = *(loopargs_t **) args;
864 unsigned char *buf = tempargs->buf;
867 for (count = 0; COND(c[D_RAND][testnum]); count++)
868 RAND_bytes(buf, lengths[testnum]);
872 static long save_count = 0;
873 static int decrypt = 0;
874 static int EVP_Update_loop(void *args)
876 loopargs_t *tempargs = *(loopargs_t **) args;
877 unsigned char *buf = tempargs->buf;
878 EVP_CIPHER_CTX *ctx = tempargs->ctx;
881 int nb_iter = save_count * 4 * lengths[0] / lengths[testnum];
884 for (count = 0; COND(nb_iter); count++) {
885 rc = EVP_DecryptUpdate(ctx, buf, &outl, buf, lengths[testnum]);
887 EVP_CipherInit_ex(ctx, NULL, NULL, NULL, iv, -1);
890 for (count = 0; COND(nb_iter); count++) {
891 rc = EVP_EncryptUpdate(ctx, buf, &outl, buf, lengths[testnum]);
893 EVP_CipherInit_ex(ctx, NULL, NULL, NULL, iv, -1);
897 EVP_DecryptFinal_ex(ctx, buf, &outl);
899 EVP_EncryptFinal_ex(ctx, buf, &outl);
903 * CCM does not support streaming. For the purpose of performance measurement,
904 * each message is encrypted using the same (key,iv)-pair. Do not use this
905 * code in your application.
907 static int EVP_Update_loop_ccm(void *args)
909 loopargs_t *tempargs = *(loopargs_t **) args;
910 unsigned char *buf = tempargs->buf;
911 EVP_CIPHER_CTX *ctx = tempargs->ctx;
913 unsigned char tag[12];
915 int nb_iter = save_count * 4 * lengths[0] / lengths[testnum];
918 for (count = 0; COND(nb_iter); count++) {
919 EVP_DecryptInit_ex(ctx, NULL, NULL, NULL, iv);
920 EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, sizeof(tag), tag);
921 EVP_DecryptUpdate(ctx, NULL, &outl, NULL, lengths[testnum]);
922 EVP_DecryptUpdate(ctx, buf, &outl, buf, lengths[testnum]);
923 EVP_DecryptFinal_ex(ctx, buf, &outl);
926 for (count = 0; COND(nb_iter); count++) {
927 EVP_EncryptInit_ex(ctx, NULL, NULL, NULL, iv);
928 EVP_EncryptUpdate(ctx, NULL, &outl, NULL, lengths[testnum]);
929 EVP_EncryptUpdate(ctx, buf, &outl, buf, lengths[testnum]);
930 EVP_EncryptFinal_ex(ctx, buf, &outl);
936 static const EVP_MD *evp_md = NULL;
937 static int EVP_Digest_loop(void *args)
939 loopargs_t *tempargs = *(loopargs_t **) args;
940 unsigned char *buf = tempargs->buf;
941 unsigned char md[EVP_MAX_MD_SIZE];
944 int nb_iter = save_count * 4 * lengths[0] / lengths[testnum];
947 for (count = 0; COND(nb_iter); count++) {
948 if (!EVP_Digest(buf, lengths[testnum], md, NULL, evp_md, NULL))
954 #ifndef OPENSSL_NO_RSA
955 static long rsa_c[RSA_NUM][2]; /* # RSA iteration test */
957 static int RSA_sign_loop(void *args)
959 loopargs_t *tempargs = *(loopargs_t **) args;
960 unsigned char *buf = tempargs->buf;
961 unsigned char *buf2 = tempargs->buf2;
962 unsigned int *rsa_num = &tempargs->siglen;
963 RSA **rsa_key = tempargs->rsa_key;
965 for (count = 0; COND(rsa_c[testnum][0]); count++) {
966 ret = RSA_sign(NID_md5_sha1, buf, 36, buf2, rsa_num, rsa_key[testnum]);
968 BIO_printf(bio_err, "RSA sign failure\n");
969 ERR_print_errors(bio_err);
977 static int RSA_verify_loop(void *args)
979 loopargs_t *tempargs = *(loopargs_t **) args;
980 unsigned char *buf = tempargs->buf;
981 unsigned char *buf2 = tempargs->buf2;
982 unsigned int rsa_num = tempargs->siglen;
983 RSA **rsa_key = tempargs->rsa_key;
985 for (count = 0; COND(rsa_c[testnum][1]); count++) {
987 RSA_verify(NID_md5_sha1, buf, 36, buf2, rsa_num, rsa_key[testnum]);
989 BIO_printf(bio_err, "RSA verify failure\n");
990 ERR_print_errors(bio_err);
999 #ifndef OPENSSL_NO_DSA
1000 static long dsa_c[DSA_NUM][2];
1001 static int DSA_sign_loop(void *args)
1003 loopargs_t *tempargs = *(loopargs_t **) args;
1004 unsigned char *buf = tempargs->buf;
1005 unsigned char *buf2 = tempargs->buf2;
1006 DSA **dsa_key = tempargs->dsa_key;
1007 unsigned int *siglen = &tempargs->siglen;
1009 for (count = 0; COND(dsa_c[testnum][0]); count++) {
1010 ret = DSA_sign(0, buf, 20, buf2, siglen, dsa_key[testnum]);
1012 BIO_printf(bio_err, "DSA sign failure\n");
1013 ERR_print_errors(bio_err);
1021 static int DSA_verify_loop(void *args)
1023 loopargs_t *tempargs = *(loopargs_t **) args;
1024 unsigned char *buf = tempargs->buf;
1025 unsigned char *buf2 = tempargs->buf2;
1026 DSA **dsa_key = tempargs->dsa_key;
1027 unsigned int siglen = tempargs->siglen;
1029 for (count = 0; COND(dsa_c[testnum][1]); count++) {
1030 ret = DSA_verify(0, buf, 20, buf2, siglen, dsa_key[testnum]);
1032 BIO_printf(bio_err, "DSA verify failure\n");
1033 ERR_print_errors(bio_err);
1042 #ifndef OPENSSL_NO_EC
1043 static long ecdsa_c[EC_NUM][2];
1044 static int ECDSA_sign_loop(void *args)
1046 loopargs_t *tempargs = *(loopargs_t **) args;
1047 unsigned char *buf = tempargs->buf;
1048 EC_KEY **ecdsa = tempargs->ecdsa;
1049 unsigned char *ecdsasig = tempargs->buf2;
1050 unsigned int *ecdsasiglen = &tempargs->siglen;
1052 for (count = 0; COND(ecdsa_c[testnum][0]); count++) {
1053 ret = ECDSA_sign(0, buf, 20, ecdsasig, ecdsasiglen, ecdsa[testnum]);
1055 BIO_printf(bio_err, "ECDSA sign failure\n");
1056 ERR_print_errors(bio_err);
1064 static int ECDSA_verify_loop(void *args)
1066 loopargs_t *tempargs = *(loopargs_t **) args;
1067 unsigned char *buf = tempargs->buf;
1068 EC_KEY **ecdsa = tempargs->ecdsa;
1069 unsigned char *ecdsasig = tempargs->buf2;
1070 unsigned int ecdsasiglen = tempargs->siglen;
1072 for (count = 0; COND(ecdsa_c[testnum][1]); count++) {
1073 ret = ECDSA_verify(0, buf, 20, ecdsasig, ecdsasiglen, ecdsa[testnum]);
1075 BIO_printf(bio_err, "ECDSA verify failure\n");
1076 ERR_print_errors(bio_err);
1084 /* ******************************************************************** */
1085 static long ecdh_c[EC_NUM][1];
1087 static int ECDH_EVP_derive_key_loop(void *args)
1089 loopargs_t *tempargs = *(loopargs_t **) args;
1090 EVP_PKEY_CTX *ctx = tempargs->ecdh_ctx[testnum];
1091 unsigned char *derived_secret = tempargs->secret_a;
1093 size_t *outlen = &(tempargs->outlen[testnum]);
1095 for (count = 0; COND(ecdh_c[testnum][0]); count++)
1096 EVP_PKEY_derive(ctx, derived_secret, outlen);
1101 #endif /* OPENSSL_NO_EC */
1103 static int run_benchmark(int async_jobs,
1104 int (*loop_function) (void *), loopargs_t * loopargs)
1106 int job_op_count = 0;
1107 int total_op_count = 0;
1108 int num_inprogress = 0;
1109 int error = 0, i = 0, ret = 0;
1110 OSSL_ASYNC_FD job_fd = 0;
1111 size_t num_job_fds = 0;
1115 if (async_jobs == 0) {
1116 return loop_function((void *)&loopargs);
1119 for (i = 0; i < async_jobs && !error; i++) {
1120 loopargs_t *looparg_item = loopargs + i;
1122 /* Copy pointer content (looparg_t item address) into async context */
1123 ret = ASYNC_start_job(&loopargs[i].inprogress_job, loopargs[i].wait_ctx,
1124 &job_op_count, loop_function,
1125 (void *)&looparg_item, sizeof(looparg_item));
1131 if (job_op_count == -1) {
1134 total_op_count += job_op_count;
1139 BIO_printf(bio_err, "Failure in the job\n");
1140 ERR_print_errors(bio_err);
1146 while (num_inprogress > 0) {
1147 #if defined(OPENSSL_SYS_WINDOWS)
1149 #elif defined(OPENSSL_SYS_UNIX)
1150 int select_result = 0;
1151 OSSL_ASYNC_FD max_fd = 0;
1154 FD_ZERO(&waitfdset);
1156 for (i = 0; i < async_jobs && num_inprogress > 0; i++) {
1157 if (loopargs[i].inprogress_job == NULL)
1160 if (!ASYNC_WAIT_CTX_get_all_fds
1161 (loopargs[i].wait_ctx, NULL, &num_job_fds)
1162 || num_job_fds > 1) {
1163 BIO_printf(bio_err, "Too many fds in ASYNC_WAIT_CTX\n");
1164 ERR_print_errors(bio_err);
1168 ASYNC_WAIT_CTX_get_all_fds(loopargs[i].wait_ctx, &job_fd,
1170 FD_SET(job_fd, &waitfdset);
1171 if (job_fd > max_fd)
1175 if (max_fd >= (OSSL_ASYNC_FD)FD_SETSIZE) {
1177 "Error: max_fd (%d) must be smaller than FD_SETSIZE (%d). "
1178 "Decrease the value of async_jobs\n",
1179 max_fd, FD_SETSIZE);
1180 ERR_print_errors(bio_err);
1185 select_result = select(max_fd + 1, &waitfdset, NULL, NULL, NULL);
1186 if (select_result == -1 && errno == EINTR)
1189 if (select_result == -1) {
1190 BIO_printf(bio_err, "Failure in the select\n");
1191 ERR_print_errors(bio_err);
1196 if (select_result == 0)
1200 for (i = 0; i < async_jobs; i++) {
1201 if (loopargs[i].inprogress_job == NULL)
1204 if (!ASYNC_WAIT_CTX_get_all_fds
1205 (loopargs[i].wait_ctx, NULL, &num_job_fds)
1206 || num_job_fds > 1) {
1207 BIO_printf(bio_err, "Too many fds in ASYNC_WAIT_CTX\n");
1208 ERR_print_errors(bio_err);
1212 ASYNC_WAIT_CTX_get_all_fds(loopargs[i].wait_ctx, &job_fd,
1215 #if defined(OPENSSL_SYS_UNIX)
1216 if (num_job_fds == 1 && !FD_ISSET(job_fd, &waitfdset))
1218 #elif defined(OPENSSL_SYS_WINDOWS)
1219 if (num_job_fds == 1
1220 && !PeekNamedPipe(job_fd, NULL, 0, NULL, &avail, NULL)
1225 ret = ASYNC_start_job(&loopargs[i].inprogress_job,
1226 loopargs[i].wait_ctx, &job_op_count,
1227 loop_function, (void *)(loopargs + i),
1228 sizeof(loopargs_t));
1233 if (job_op_count == -1) {
1236 total_op_count += job_op_count;
1239 loopargs[i].inprogress_job = NULL;
1244 loopargs[i].inprogress_job = NULL;
1245 BIO_printf(bio_err, "Failure in the job\n");
1246 ERR_print_errors(bio_err);
1253 return error ? -1 : total_op_count;
1256 int speed_main(int argc, char **argv)
1259 int (*loopfunc)(void *args);
1260 loopargs_t *loopargs = NULL;
1262 int loopargs_len = 0;
1264 const char *engine_id = NULL;
1265 const EVP_CIPHER *evp_cipher = NULL;
1268 int multiblock = 0, pr_header = 0;
1269 int doit[ALGOR_NUM] = { 0 };
1270 int ret = 1, i, k, misalign = 0;
1272 int size_num = OSSL_NELEM(lengths_list);
1278 unsigned int async_jobs = 0;
1279 #if !defined(OPENSSL_NO_RSA) || !defined(OPENSSL_NO_DSA) \
1280 || !defined(OPENSSL_NO_EC)
1283 #ifndef OPENSSL_NO_EC
1287 /* What follows are the buffers and key material. */
1288 #ifndef OPENSSL_NO_RC5
1291 #ifndef OPENSSL_NO_RC2
1294 #ifndef OPENSSL_NO_IDEA
1295 IDEA_KEY_SCHEDULE idea_ks;
1297 #ifndef OPENSSL_NO_SEED
1298 SEED_KEY_SCHEDULE seed_ks;
1300 #ifndef OPENSSL_NO_BF
1303 #ifndef OPENSSL_NO_CAST
1306 static const unsigned char key16[16] = {
1307 0x12, 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0,
1308 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12
1310 static const unsigned char key24[24] = {
1311 0x12, 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0,
1312 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12,
1313 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12, 0x34
1315 static const unsigned char key32[32] = {
1316 0x12, 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0,
1317 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12,
1318 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12, 0x34,
1319 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12, 0x34, 0x56
1321 #ifndef OPENSSL_NO_CAMELLIA
1322 static const unsigned char ckey24[24] = {
1323 0x12, 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0,
1324 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12,
1325 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12, 0x34
1327 static const unsigned char ckey32[32] = {
1328 0x12, 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0,
1329 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12,
1330 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12, 0x34,
1331 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12, 0x34, 0x56
1333 CAMELLIA_KEY camellia_ks1, camellia_ks2, camellia_ks3;
1335 #ifndef OPENSSL_NO_DES
1336 static DES_cblock key = {
1337 0x12, 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0
1339 static DES_cblock key2 = {
1340 0x34, 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12
1342 static DES_cblock key3 = {
1343 0x56, 0x78, 0x9a, 0xbc, 0xde, 0xf0, 0x12, 0x34
1346 #ifndef OPENSSL_NO_RSA
1347 static const unsigned int rsa_bits[RSA_NUM] = {
1348 512, 1024, 2048, 3072, 4096, 7680, 15360
1350 static const unsigned char *rsa_data[RSA_NUM] = {
1351 test512, test1024, test2048, test3072, test4096, test7680, test15360
1353 static const int rsa_data_length[RSA_NUM] = {
1354 sizeof(test512), sizeof(test1024),
1355 sizeof(test2048), sizeof(test3072),
1356 sizeof(test4096), sizeof(test7680),
1359 int rsa_doit[RSA_NUM] = { 0 };
1360 int primes = RSA_DEFAULT_PRIME_NUM;
1362 #ifndef OPENSSL_NO_DSA
1363 static const unsigned int dsa_bits[DSA_NUM] = { 512, 1024, 2048 };
1364 int dsa_doit[DSA_NUM] = { 0 };
1366 #ifndef OPENSSL_NO_EC
1368 * We only test over the following curves as they are representative, To
1369 * add tests over more curves, simply add the curve NID and curve name to
1370 * the following arrays and increase the EC_NUM value accordingly.
1372 static const struct {
1378 {"secp160r1", NID_secp160r1, 160},
1379 {"nistp192", NID_X9_62_prime192v1, 192},
1380 {"nistp224", NID_secp224r1, 224},
1381 {"nistp256", NID_X9_62_prime256v1, 256},
1382 {"nistp384", NID_secp384r1, 384},
1383 {"nistp521", NID_secp521r1, 521},
1385 {"nistk163", NID_sect163k1, 163},
1386 {"nistk233", NID_sect233k1, 233},
1387 {"nistk283", NID_sect283k1, 283},
1388 {"nistk409", NID_sect409k1, 409},
1389 {"nistk571", NID_sect571k1, 571},
1390 {"nistb163", NID_sect163r2, 163},
1391 {"nistb233", NID_sect233r1, 233},
1392 {"nistb283", NID_sect283r1, 283},
1393 {"nistb409", NID_sect409r1, 409},
1394 {"nistb571", NID_sect571r1, 571},
1396 {"X25519", NID_X25519, 253},
1397 {"X448", NID_X448, 448}
1399 int ecdsa_doit[EC_NUM] = { 0 };
1400 int ecdh_doit[EC_NUM] = { 0 };
1401 #endif /* ndef OPENSSL_NO_EC */
1403 openssl_speed_sec_t seconds = { SECONDS, RSA_SECONDS, DSA_SECONDS,
1404 ECDSA_SECONDS, ECDH_SECONDS };
1406 prog = opt_init(argc, argv, speed_options);
1407 while ((o = opt_next()) != OPT_EOF) {
1412 BIO_printf(bio_err, "%s: Use -help for summary.\n", prog);
1415 opt_help(speed_options);
1423 evp_cipher = EVP_get_cipherbyname(opt_arg());
1424 if (evp_cipher == NULL)
1425 evp_md = EVP_get_digestbyname(opt_arg());
1426 if (evp_cipher == NULL && evp_md == NULL) {
1428 "%s: %s is an unknown cipher or digest\n",
1439 * In a forked execution, an engine might need to be
1440 * initialised by each child process, not by the parent.
1441 * So store the name here and run setup_engine() later on.
1443 engine_id = opt_arg();
1447 multi = atoi(opt_arg());
1451 #ifndef OPENSSL_NO_ASYNC
1452 async_jobs = atoi(opt_arg());
1453 if (!ASYNC_is_capable()) {
1455 "%s: async_jobs specified but async not supported\n",
1459 if (async_jobs > 99999) {
1461 "%s: too many async_jobs\n",
1468 if (!opt_int(opt_arg(), &misalign))
1470 if (misalign > MISALIGN) {
1472 "%s: Maximum offset is %d\n", prog, MISALIGN);
1481 #ifdef OPENSSL_NO_MULTIBLOCK
1483 "%s: -mb specified but multi-block support is disabled\n",
1493 if (!opt_int(opt_arg(), &primes))
1497 seconds.sym = seconds.rsa = seconds.dsa = seconds.ecdsa
1498 = seconds.ecdh = atoi(opt_arg());
1501 lengths_single = atoi(opt_arg());
1502 lengths = &lengths_single;
1507 argc = opt_num_rest();
1510 /* Remaining arguments are algorithms. */
1511 for (; *argv; argv++) {
1512 if (found(*argv, doit_choices, &i)) {
1516 #ifndef OPENSSL_NO_DES
1517 if (strcmp(*argv, "des") == 0) {
1518 doit[D_CBC_DES] = doit[D_EDE3_DES] = 1;
1522 if (strcmp(*argv, "sha") == 0) {
1523 doit[D_SHA1] = doit[D_SHA256] = doit[D_SHA512] = 1;
1526 #ifndef OPENSSL_NO_RSA
1527 if (strcmp(*argv, "openssl") == 0)
1529 if (strcmp(*argv, "rsa") == 0) {
1530 rsa_doit[R_RSA_512] = rsa_doit[R_RSA_1024] =
1531 rsa_doit[R_RSA_2048] = rsa_doit[R_RSA_3072] =
1532 rsa_doit[R_RSA_4096] = rsa_doit[R_RSA_7680] =
1533 rsa_doit[R_RSA_15360] = 1;
1536 if (found(*argv, rsa_choices, &i)) {
1541 #ifndef OPENSSL_NO_DSA
1542 if (strcmp(*argv, "dsa") == 0) {
1543 dsa_doit[R_DSA_512] = dsa_doit[R_DSA_1024] =
1544 dsa_doit[R_DSA_2048] = 1;
1547 if (found(*argv, dsa_choices, &i)) {
1552 if (strcmp(*argv, "aes") == 0) {
1553 doit[D_CBC_128_AES] = doit[D_CBC_192_AES] = doit[D_CBC_256_AES] = 1;
1556 #ifndef OPENSSL_NO_CAMELLIA
1557 if (strcmp(*argv, "camellia") == 0) {
1558 doit[D_CBC_128_CML] = doit[D_CBC_192_CML] = doit[D_CBC_256_CML] = 1;
1562 #ifndef OPENSSL_NO_EC
1563 if (strcmp(*argv, "ecdsa") == 0) {
1564 for (loop = 0; loop < OSSL_NELEM(ecdsa_choices); loop++)
1565 ecdsa_doit[ecdsa_choices[loop].retval] = 1;
1568 if (found(*argv, ecdsa_choices, &i)) {
1572 if (strcmp(*argv, "ecdh") == 0) {
1573 for (loop = 0; loop < OSSL_NELEM(ecdh_choices); loop++)
1574 ecdh_doit[ecdh_choices[loop].retval] = 1;
1577 if (found(*argv, ecdh_choices, &i)) {
1582 BIO_printf(bio_err, "%s: Unknown algorithm %s\n", prog, *argv);
1586 /* Initialize the job pool if async mode is enabled */
1587 if (async_jobs > 0) {
1588 async_init = ASYNC_init_thread(async_jobs, async_jobs);
1590 BIO_printf(bio_err, "Error creating the ASYNC job pool\n");
1595 loopargs_len = (async_jobs == 0 ? 1 : async_jobs);
1597 app_malloc(loopargs_len * sizeof(loopargs_t), "array of loopargs");
1598 memset(loopargs, 0, loopargs_len * sizeof(loopargs_t));
1600 for (i = 0; i < loopargs_len; i++) {
1601 if (async_jobs > 0) {
1602 loopargs[i].wait_ctx = ASYNC_WAIT_CTX_new();
1603 if (loopargs[i].wait_ctx == NULL) {
1604 BIO_printf(bio_err, "Error creating the ASYNC_WAIT_CTX\n");
1609 buflen = lengths[size_num - 1] + MAX_MISALIGNMENT + 1;
1610 loopargs[i].buf_malloc = app_malloc(buflen, "input buffer");
1611 loopargs[i].buf2_malloc = app_malloc(buflen, "input buffer");
1612 memset(loopargs[i].buf_malloc, 0, buflen);
1613 memset(loopargs[i].buf2_malloc, 0, buflen);
1615 /* Align the start of buffers on a 64 byte boundary */
1616 loopargs[i].buf = loopargs[i].buf_malloc + misalign;
1617 loopargs[i].buf2 = loopargs[i].buf2_malloc + misalign;
1618 #ifndef OPENSSL_NO_EC
1619 loopargs[i].secret_a = app_malloc(MAX_ECDH_SIZE, "ECDH secret a");
1620 loopargs[i].secret_b = app_malloc(MAX_ECDH_SIZE, "ECDH secret b");
1625 if (multi && do_multi(multi, size_num))
1629 /* Initialize the engine after the fork */
1630 e = setup_engine(engine_id, 0);
1632 /* No parameters; turn on everything. */
1633 if ((argc == 0) && !doit[D_EVP]) {
1634 for (i = 0; i < ALGOR_NUM; i++)
1637 #ifndef OPENSSL_NO_RSA
1638 for (i = 0; i < RSA_NUM; i++)
1641 #ifndef OPENSSL_NO_DSA
1642 for (i = 0; i < DSA_NUM; i++)
1645 #ifndef OPENSSL_NO_EC
1646 for (loop = 0; loop < OSSL_NELEM(ecdsa_choices); loop++)
1647 ecdsa_doit[ecdsa_choices[loop].retval] = 1;
1648 for (loop = 0; loop < OSSL_NELEM(ecdh_choices); loop++)
1649 ecdh_doit[ecdh_choices[loop].retval] = 1;
1652 for (i = 0; i < ALGOR_NUM; i++)
1656 if (usertime == 0 && !mr)
1658 "You have chosen to measure elapsed time "
1659 "instead of user CPU time.\n");
1661 #ifndef OPENSSL_NO_RSA
1662 for (i = 0; i < loopargs_len; i++) {
1663 if (primes > RSA_DEFAULT_PRIME_NUM) {
1664 /* for multi-prime RSA, skip this */
1667 for (k = 0; k < RSA_NUM; k++) {
1668 const unsigned char *p;
1671 loopargs[i].rsa_key[k] =
1672 d2i_RSAPrivateKey(NULL, &p, rsa_data_length[k]);
1673 if (loopargs[i].rsa_key[k] == NULL) {
1675 "internal error loading RSA key number %d\n", k);
1681 #ifndef OPENSSL_NO_DSA
1682 for (i = 0; i < loopargs_len; i++) {
1683 loopargs[i].dsa_key[0] = get_dsa(512);
1684 loopargs[i].dsa_key[1] = get_dsa(1024);
1685 loopargs[i].dsa_key[2] = get_dsa(2048);
1688 #ifndef OPENSSL_NO_DES
1689 DES_set_key_unchecked(&key, &sch);
1690 DES_set_key_unchecked(&key2, &sch2);
1691 DES_set_key_unchecked(&key3, &sch3);
1693 AES_set_encrypt_key(key16, 128, &aes_ks1);
1694 AES_set_encrypt_key(key24, 192, &aes_ks2);
1695 AES_set_encrypt_key(key32, 256, &aes_ks3);
1696 #ifndef OPENSSL_NO_CAMELLIA
1697 Camellia_set_key(key16, 128, &camellia_ks1);
1698 Camellia_set_key(ckey24, 192, &camellia_ks2);
1699 Camellia_set_key(ckey32, 256, &camellia_ks3);
1701 #ifndef OPENSSL_NO_IDEA
1702 IDEA_set_encrypt_key(key16, &idea_ks);
1704 #ifndef OPENSSL_NO_SEED
1705 SEED_set_key(key16, &seed_ks);
1707 #ifndef OPENSSL_NO_RC4
1708 RC4_set_key(&rc4_ks, 16, key16);
1710 #ifndef OPENSSL_NO_RC2
1711 RC2_set_key(&rc2_ks, 16, key16, 128);
1713 #ifndef OPENSSL_NO_RC5
1714 RC5_32_set_key(&rc5_ks, 16, key16, 12);
1716 #ifndef OPENSSL_NO_BF
1717 BF_set_key(&bf_ks, 16, key16);
1719 #ifndef OPENSSL_NO_CAST
1720 CAST_set_key(&cast_ks, 16, key16);
1723 # ifndef OPENSSL_NO_DES
1724 BIO_printf(bio_err, "First we calculate the approximate speed ...\n");
1730 for (it = count; it; it--)
1731 DES_ecb_encrypt((DES_cblock *)loopargs[0].buf,
1732 (DES_cblock *)loopargs[0].buf, &sch, DES_ENCRYPT);
1736 c[D_MD2][0] = count / 10;
1737 c[D_MDC2][0] = count / 10;
1738 c[D_MD4][0] = count;
1739 c[D_MD5][0] = count;
1740 c[D_HMAC][0] = count;
1741 c[D_SHA1][0] = count;
1742 c[D_RMD160][0] = count;
1743 c[D_RC4][0] = count * 5;
1744 c[D_CBC_DES][0] = count;
1745 c[D_EDE3_DES][0] = count / 3;
1746 c[D_CBC_IDEA][0] = count;
1747 c[D_CBC_SEED][0] = count;
1748 c[D_CBC_RC2][0] = count;
1749 c[D_CBC_RC5][0] = count;
1750 c[D_CBC_BF][0] = count;
1751 c[D_CBC_CAST][0] = count;
1752 c[D_CBC_128_AES][0] = count;
1753 c[D_CBC_192_AES][0] = count;
1754 c[D_CBC_256_AES][0] = count;
1755 c[D_CBC_128_CML][0] = count;
1756 c[D_CBC_192_CML][0] = count;
1757 c[D_CBC_256_CML][0] = count;
1758 c[D_SHA256][0] = count;
1759 c[D_SHA512][0] = count;
1760 c[D_WHIRLPOOL][0] = count;
1761 c[D_IGE_128_AES][0] = count;
1762 c[D_IGE_192_AES][0] = count;
1763 c[D_IGE_256_AES][0] = count;
1764 c[D_GHASH][0] = count;
1765 c[D_RAND][0] = count;
1767 for (i = 1; i < size_num; i++) {
1770 l0 = (long)lengths[0];
1771 l1 = (long)lengths[i];
1773 c[D_MD2][i] = c[D_MD2][0] * 4 * l0 / l1;
1774 c[D_MDC2][i] = c[D_MDC2][0] * 4 * l0 / l1;
1775 c[D_MD4][i] = c[D_MD4][0] * 4 * l0 / l1;
1776 c[D_MD5][i] = c[D_MD5][0] * 4 * l0 / l1;
1777 c[D_HMAC][i] = c[D_HMAC][0] * 4 * l0 / l1;
1778 c[D_SHA1][i] = c[D_SHA1][0] * 4 * l0 / l1;
1779 c[D_RMD160][i] = c[D_RMD160][0] * 4 * l0 / l1;
1780 c[D_SHA256][i] = c[D_SHA256][0] * 4 * l0 / l1;
1781 c[D_SHA512][i] = c[D_SHA512][0] * 4 * l0 / l1;
1782 c[D_WHIRLPOOL][i] = c[D_WHIRLPOOL][0] * 4 * l0 / l1;
1783 c[D_GHASH][i] = c[D_GHASH][0] * 4 * l0 / l1;
1784 c[D_RAND][i] = c[D_RAND][0] * 4 * l0 / l1;
1786 l0 = (long)lengths[i - 1];
1788 c[D_RC4][i] = c[D_RC4][i - 1] * l0 / l1;
1789 c[D_CBC_DES][i] = c[D_CBC_DES][i - 1] * l0 / l1;
1790 c[D_EDE3_DES][i] = c[D_EDE3_DES][i - 1] * l0 / l1;
1791 c[D_CBC_IDEA][i] = c[D_CBC_IDEA][i - 1] * l0 / l1;
1792 c[D_CBC_SEED][i] = c[D_CBC_SEED][i - 1] * l0 / l1;
1793 c[D_CBC_RC2][i] = c[D_CBC_RC2][i - 1] * l0 / l1;
1794 c[D_CBC_RC5][i] = c[D_CBC_RC5][i - 1] * l0 / l1;
1795 c[D_CBC_BF][i] = c[D_CBC_BF][i - 1] * l0 / l1;
1796 c[D_CBC_CAST][i] = c[D_CBC_CAST][i - 1] * l0 / l1;
1797 c[D_CBC_128_AES][i] = c[D_CBC_128_AES][i - 1] * l0 / l1;
1798 c[D_CBC_192_AES][i] = c[D_CBC_192_AES][i - 1] * l0 / l1;
1799 c[D_CBC_256_AES][i] = c[D_CBC_256_AES][i - 1] * l0 / l1;
1800 c[D_CBC_128_CML][i] = c[D_CBC_128_CML][i - 1] * l0 / l1;
1801 c[D_CBC_192_CML][i] = c[D_CBC_192_CML][i - 1] * l0 / l1;
1802 c[D_CBC_256_CML][i] = c[D_CBC_256_CML][i - 1] * l0 / l1;
1803 c[D_IGE_128_AES][i] = c[D_IGE_128_AES][i - 1] * l0 / l1;
1804 c[D_IGE_192_AES][i] = c[D_IGE_192_AES][i - 1] * l0 / l1;
1805 c[D_IGE_256_AES][i] = c[D_IGE_256_AES][i - 1] * l0 / l1;
1808 # ifndef OPENSSL_NO_RSA
1809 rsa_c[R_RSA_512][0] = count / 2000;
1810 rsa_c[R_RSA_512][1] = count / 400;
1811 for (i = 1; i < RSA_NUM; i++) {
1812 rsa_c[i][0] = rsa_c[i - 1][0] / 8;
1813 rsa_c[i][1] = rsa_c[i - 1][1] / 4;
1814 if (rsa_doit[i] <= 1 && rsa_c[i][0] == 0)
1817 if (rsa_c[i][0] == 0) {
1818 rsa_c[i][0] = 1; /* Set minimum iteration Nb to 1. */
1825 # ifndef OPENSSL_NO_DSA
1826 dsa_c[R_DSA_512][0] = count / 1000;
1827 dsa_c[R_DSA_512][1] = count / 1000 / 2;
1828 for (i = 1; i < DSA_NUM; i++) {
1829 dsa_c[i][0] = dsa_c[i - 1][0] / 4;
1830 dsa_c[i][1] = dsa_c[i - 1][1] / 4;
1831 if (dsa_doit[i] <= 1 && dsa_c[i][0] == 0)
1834 if (dsa_c[i][0] == 0) {
1835 dsa_c[i][0] = 1; /* Set minimum iteration Nb to 1. */
1842 # ifndef OPENSSL_NO_EC
1843 ecdsa_c[R_EC_P160][0] = count / 1000;
1844 ecdsa_c[R_EC_P160][1] = count / 1000 / 2;
1845 for (i = R_EC_P192; i <= R_EC_P521; i++) {
1846 ecdsa_c[i][0] = ecdsa_c[i - 1][0] / 2;
1847 ecdsa_c[i][1] = ecdsa_c[i - 1][1] / 2;
1848 if (ecdsa_doit[i] <= 1 && ecdsa_c[i][0] == 0)
1851 if (ecdsa_c[i][0] == 0) {
1857 ecdsa_c[R_EC_K163][0] = count / 1000;
1858 ecdsa_c[R_EC_K163][1] = count / 1000 / 2;
1859 for (i = R_EC_K233; i <= R_EC_K571; i++) {
1860 ecdsa_c[i][0] = ecdsa_c[i - 1][0] / 2;
1861 ecdsa_c[i][1] = ecdsa_c[i - 1][1] / 2;
1862 if (ecdsa_doit[i] <= 1 && ecdsa_c[i][0] == 0)
1865 if (ecdsa_c[i][0] == 0) {
1871 ecdsa_c[R_EC_B163][0] = count / 1000;
1872 ecdsa_c[R_EC_B163][1] = count / 1000 / 2;
1873 for (i = R_EC_B233; i <= R_EC_B571; i++) {
1874 ecdsa_c[i][0] = ecdsa_c[i - 1][0] / 2;
1875 ecdsa_c[i][1] = ecdsa_c[i - 1][1] / 2;
1876 if (ecdsa_doit[i] <= 1 && ecdsa_c[i][0] == 0)
1879 if (ecdsa_c[i][0] == 0) {
1886 ecdh_c[R_EC_P160][0] = count / 1000;
1887 for (i = R_EC_P192; i <= R_EC_P521; i++) {
1888 ecdh_c[i][0] = ecdh_c[i - 1][0] / 2;
1889 if (ecdh_doit[i] <= 1 && ecdh_c[i][0] == 0)
1892 if (ecdh_c[i][0] == 0) {
1897 ecdh_c[R_EC_K163][0] = count / 1000;
1898 for (i = R_EC_K233; i <= R_EC_K571; i++) {
1899 ecdh_c[i][0] = ecdh_c[i - 1][0] / 2;
1900 if (ecdh_doit[i] <= 1 && ecdh_c[i][0] == 0)
1903 if (ecdh_c[i][0] == 0) {
1908 ecdh_c[R_EC_B163][0] = count / 1000;
1909 for (i = R_EC_B233; i <= R_EC_B571; i++) {
1910 ecdh_c[i][0] = ecdh_c[i - 1][0] / 2;
1911 if (ecdh_doit[i] <= 1 && ecdh_c[i][0] == 0)
1914 if (ecdh_c[i][0] == 0) {
1922 /* not worth fixing */
1923 # error "You cannot disable DES on systems without SIGALRM."
1924 # endif /* OPENSSL_NO_DES */
1927 signal(SIGALRM, sig_done);
1929 #endif /* SIGALRM */
1931 #ifndef OPENSSL_NO_MD2
1933 for (testnum = 0; testnum < size_num; testnum++) {
1934 print_message(names[D_MD2], c[D_MD2][testnum], lengths[testnum],
1937 count = run_benchmark(async_jobs, EVP_Digest_MD2_loop, loopargs);
1939 print_result(D_MD2, testnum, count, d);
1943 #ifndef OPENSSL_NO_MDC2
1945 for (testnum = 0; testnum < size_num; testnum++) {
1946 print_message(names[D_MDC2], c[D_MDC2][testnum], lengths[testnum],
1949 count = run_benchmark(async_jobs, EVP_Digest_MDC2_loop, loopargs);
1951 print_result(D_MDC2, testnum, count, d);
1956 #ifndef OPENSSL_NO_MD4
1958 for (testnum = 0; testnum < size_num; testnum++) {
1959 print_message(names[D_MD4], c[D_MD4][testnum], lengths[testnum],
1962 count = run_benchmark(async_jobs, EVP_Digest_MD4_loop, loopargs);
1964 print_result(D_MD4, testnum, count, d);
1969 #ifndef OPENSSL_NO_MD5
1971 for (testnum = 0; testnum < size_num; testnum++) {
1972 print_message(names[D_MD5], c[D_MD5][testnum], lengths[testnum],
1975 count = run_benchmark(async_jobs, MD5_loop, loopargs);
1977 print_result(D_MD5, testnum, count, d);
1982 static const char hmac_key[] = "This is a key...";
1983 int len = strlen(hmac_key);
1985 for (i = 0; i < loopargs_len; i++) {
1986 loopargs[i].hctx = HMAC_CTX_new();
1987 if (loopargs[i].hctx == NULL) {
1988 BIO_printf(bio_err, "HMAC malloc failure, exiting...");
1992 HMAC_Init_ex(loopargs[i].hctx, hmac_key, len, EVP_md5(), NULL);
1994 for (testnum = 0; testnum < size_num; testnum++) {
1995 print_message(names[D_HMAC], c[D_HMAC][testnum], lengths[testnum],
1998 count = run_benchmark(async_jobs, HMAC_loop, loopargs);
2000 print_result(D_HMAC, testnum, count, d);
2002 for (i = 0; i < loopargs_len; i++) {
2003 HMAC_CTX_free(loopargs[i].hctx);
2008 for (testnum = 0; testnum < size_num; testnum++) {
2009 print_message(names[D_SHA1], c[D_SHA1][testnum], lengths[testnum],
2012 count = run_benchmark(async_jobs, SHA1_loop, loopargs);
2014 print_result(D_SHA1, testnum, count, d);
2017 if (doit[D_SHA256]) {
2018 for (testnum = 0; testnum < size_num; testnum++) {
2019 print_message(names[D_SHA256], c[D_SHA256][testnum],
2020 lengths[testnum], seconds.sym);
2022 count = run_benchmark(async_jobs, SHA256_loop, loopargs);
2024 print_result(D_SHA256, testnum, count, d);
2027 if (doit[D_SHA512]) {
2028 for (testnum = 0; testnum < size_num; testnum++) {
2029 print_message(names[D_SHA512], c[D_SHA512][testnum],
2030 lengths[testnum], seconds.sym);
2032 count = run_benchmark(async_jobs, SHA512_loop, loopargs);
2034 print_result(D_SHA512, testnum, count, d);
2037 #ifndef OPENSSL_NO_WHIRLPOOL
2038 if (doit[D_WHIRLPOOL]) {
2039 for (testnum = 0; testnum < size_num; testnum++) {
2040 print_message(names[D_WHIRLPOOL], c[D_WHIRLPOOL][testnum],
2041 lengths[testnum], seconds.sym);
2043 count = run_benchmark(async_jobs, WHIRLPOOL_loop, loopargs);
2045 print_result(D_WHIRLPOOL, testnum, count, d);
2050 #ifndef OPENSSL_NO_RMD160
2051 if (doit[D_RMD160]) {
2052 for (testnum = 0; testnum < size_num; testnum++) {
2053 print_message(names[D_RMD160], c[D_RMD160][testnum],
2054 lengths[testnum], seconds.sym);
2056 count = run_benchmark(async_jobs, EVP_Digest_RMD160_loop, loopargs);
2058 print_result(D_RMD160, testnum, count, d);
2062 #ifndef OPENSSL_NO_RC4
2064 for (testnum = 0; testnum < size_num; testnum++) {
2065 print_message(names[D_RC4], c[D_RC4][testnum], lengths[testnum],
2068 count = run_benchmark(async_jobs, RC4_loop, loopargs);
2070 print_result(D_RC4, testnum, count, d);
2074 #ifndef OPENSSL_NO_DES
2075 if (doit[D_CBC_DES]) {
2076 for (testnum = 0; testnum < size_num; testnum++) {
2077 print_message(names[D_CBC_DES], c[D_CBC_DES][testnum],
2078 lengths[testnum], seconds.sym);
2080 count = run_benchmark(async_jobs, DES_ncbc_encrypt_loop, loopargs);
2082 print_result(D_CBC_DES, testnum, count, d);
2086 if (doit[D_EDE3_DES]) {
2087 for (testnum = 0; testnum < size_num; testnum++) {
2088 print_message(names[D_EDE3_DES], c[D_EDE3_DES][testnum],
2089 lengths[testnum], seconds.sym);
2092 run_benchmark(async_jobs, DES_ede3_cbc_encrypt_loop, loopargs);
2094 print_result(D_EDE3_DES, testnum, count, d);
2099 if (doit[D_CBC_128_AES]) {
2100 for (testnum = 0; testnum < size_num; testnum++) {
2101 print_message(names[D_CBC_128_AES], c[D_CBC_128_AES][testnum],
2102 lengths[testnum], seconds.sym);
2105 run_benchmark(async_jobs, AES_cbc_128_encrypt_loop, loopargs);
2107 print_result(D_CBC_128_AES, testnum, count, d);
2110 if (doit[D_CBC_192_AES]) {
2111 for (testnum = 0; testnum < size_num; testnum++) {
2112 print_message(names[D_CBC_192_AES], c[D_CBC_192_AES][testnum],
2113 lengths[testnum], seconds.sym);
2116 run_benchmark(async_jobs, AES_cbc_192_encrypt_loop, loopargs);
2118 print_result(D_CBC_192_AES, testnum, count, d);
2121 if (doit[D_CBC_256_AES]) {
2122 for (testnum = 0; testnum < size_num; testnum++) {
2123 print_message(names[D_CBC_256_AES], c[D_CBC_256_AES][testnum],
2124 lengths[testnum], seconds.sym);
2127 run_benchmark(async_jobs, AES_cbc_256_encrypt_loop, loopargs);
2129 print_result(D_CBC_256_AES, testnum, count, d);
2133 if (doit[D_IGE_128_AES]) {
2134 for (testnum = 0; testnum < size_num; testnum++) {
2135 print_message(names[D_IGE_128_AES], c[D_IGE_128_AES][testnum],
2136 lengths[testnum], seconds.sym);
2139 run_benchmark(async_jobs, AES_ige_128_encrypt_loop, loopargs);
2141 print_result(D_IGE_128_AES, testnum, count, d);
2144 if (doit[D_IGE_192_AES]) {
2145 for (testnum = 0; testnum < size_num; testnum++) {
2146 print_message(names[D_IGE_192_AES], c[D_IGE_192_AES][testnum],
2147 lengths[testnum], seconds.sym);
2150 run_benchmark(async_jobs, AES_ige_192_encrypt_loop, loopargs);
2152 print_result(D_IGE_192_AES, testnum, count, d);
2155 if (doit[D_IGE_256_AES]) {
2156 for (testnum = 0; testnum < size_num; testnum++) {
2157 print_message(names[D_IGE_256_AES], c[D_IGE_256_AES][testnum],
2158 lengths[testnum], seconds.sym);
2161 run_benchmark(async_jobs, AES_ige_256_encrypt_loop, loopargs);
2163 print_result(D_IGE_256_AES, testnum, count, d);
2166 if (doit[D_GHASH]) {
2167 for (i = 0; i < loopargs_len; i++) {
2168 loopargs[i].gcm_ctx =
2169 CRYPTO_gcm128_new(&aes_ks1, (block128_f) AES_encrypt);
2170 CRYPTO_gcm128_setiv(loopargs[i].gcm_ctx,
2171 (unsigned char *)"0123456789ab", 12);
2174 for (testnum = 0; testnum < size_num; testnum++) {
2175 print_message(names[D_GHASH], c[D_GHASH][testnum],
2176 lengths[testnum], seconds.sym);
2178 count = run_benchmark(async_jobs, CRYPTO_gcm128_aad_loop, loopargs);
2180 print_result(D_GHASH, testnum, count, d);
2182 for (i = 0; i < loopargs_len; i++)
2183 CRYPTO_gcm128_release(loopargs[i].gcm_ctx);
2185 #ifndef OPENSSL_NO_CAMELLIA
2186 if (doit[D_CBC_128_CML]) {
2187 if (async_jobs > 0) {
2188 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2189 names[D_CBC_128_CML]);
2190 doit[D_CBC_128_CML] = 0;
2192 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2193 print_message(names[D_CBC_128_CML], c[D_CBC_128_CML][testnum],
2194 lengths[testnum], seconds.sym);
2196 for (count = 0, run = 1; COND(c[D_CBC_128_CML][testnum]); count++)
2197 Camellia_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2198 (size_t)lengths[testnum], &camellia_ks1,
2199 iv, CAMELLIA_ENCRYPT);
2201 print_result(D_CBC_128_CML, testnum, count, d);
2204 if (doit[D_CBC_192_CML]) {
2205 if (async_jobs > 0) {
2206 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2207 names[D_CBC_192_CML]);
2208 doit[D_CBC_192_CML] = 0;
2210 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2211 print_message(names[D_CBC_192_CML], c[D_CBC_192_CML][testnum],
2212 lengths[testnum], seconds.sym);
2213 if (async_jobs > 0) {
2214 BIO_printf(bio_err, "Async mode is not supported, exiting...");
2218 for (count = 0, run = 1; COND(c[D_CBC_192_CML][testnum]); count++)
2219 Camellia_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2220 (size_t)lengths[testnum], &camellia_ks2,
2221 iv, CAMELLIA_ENCRYPT);
2223 print_result(D_CBC_192_CML, testnum, count, d);
2226 if (doit[D_CBC_256_CML]) {
2227 if (async_jobs > 0) {
2228 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2229 names[D_CBC_256_CML]);
2230 doit[D_CBC_256_CML] = 0;
2232 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2233 print_message(names[D_CBC_256_CML], c[D_CBC_256_CML][testnum],
2234 lengths[testnum], seconds.sym);
2236 for (count = 0, run = 1; COND(c[D_CBC_256_CML][testnum]); count++)
2237 Camellia_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2238 (size_t)lengths[testnum], &camellia_ks3,
2239 iv, CAMELLIA_ENCRYPT);
2241 print_result(D_CBC_256_CML, testnum, count, d);
2245 #ifndef OPENSSL_NO_IDEA
2246 if (doit[D_CBC_IDEA]) {
2247 if (async_jobs > 0) {
2248 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2250 doit[D_CBC_IDEA] = 0;
2252 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2253 print_message(names[D_CBC_IDEA], c[D_CBC_IDEA][testnum],
2254 lengths[testnum], seconds.sym);
2256 for (count = 0, run = 1; COND(c[D_CBC_IDEA][testnum]); count++)
2257 IDEA_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2258 (size_t)lengths[testnum], &idea_ks,
2261 print_result(D_CBC_IDEA, testnum, count, d);
2265 #ifndef OPENSSL_NO_SEED
2266 if (doit[D_CBC_SEED]) {
2267 if (async_jobs > 0) {
2268 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2270 doit[D_CBC_SEED] = 0;
2272 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2273 print_message(names[D_CBC_SEED], c[D_CBC_SEED][testnum],
2274 lengths[testnum], seconds.sym);
2276 for (count = 0, run = 1; COND(c[D_CBC_SEED][testnum]); count++)
2277 SEED_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2278 (size_t)lengths[testnum], &seed_ks, iv, 1);
2280 print_result(D_CBC_SEED, testnum, count, d);
2284 #ifndef OPENSSL_NO_RC2
2285 if (doit[D_CBC_RC2]) {
2286 if (async_jobs > 0) {
2287 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2289 doit[D_CBC_RC2] = 0;
2291 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2292 print_message(names[D_CBC_RC2], c[D_CBC_RC2][testnum],
2293 lengths[testnum], seconds.sym);
2294 if (async_jobs > 0) {
2295 BIO_printf(bio_err, "Async mode is not supported, exiting...");
2299 for (count = 0, run = 1; COND(c[D_CBC_RC2][testnum]); count++)
2300 RC2_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2301 (size_t)lengths[testnum], &rc2_ks,
2304 print_result(D_CBC_RC2, testnum, count, d);
2308 #ifndef OPENSSL_NO_RC5
2309 if (doit[D_CBC_RC5]) {
2310 if (async_jobs > 0) {
2311 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2313 doit[D_CBC_RC5] = 0;
2315 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2316 print_message(names[D_CBC_RC5], c[D_CBC_RC5][testnum],
2317 lengths[testnum], seconds.sym);
2318 if (async_jobs > 0) {
2319 BIO_printf(bio_err, "Async mode is not supported, exiting...");
2323 for (count = 0, run = 1; COND(c[D_CBC_RC5][testnum]); count++)
2324 RC5_32_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2325 (size_t)lengths[testnum], &rc5_ks,
2328 print_result(D_CBC_RC5, testnum, count, d);
2332 #ifndef OPENSSL_NO_BF
2333 if (doit[D_CBC_BF]) {
2334 if (async_jobs > 0) {
2335 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2339 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2340 print_message(names[D_CBC_BF], c[D_CBC_BF][testnum],
2341 lengths[testnum], seconds.sym);
2343 for (count = 0, run = 1; COND(c[D_CBC_BF][testnum]); count++)
2344 BF_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2345 (size_t)lengths[testnum], &bf_ks,
2348 print_result(D_CBC_BF, testnum, count, d);
2352 #ifndef OPENSSL_NO_CAST
2353 if (doit[D_CBC_CAST]) {
2354 if (async_jobs > 0) {
2355 BIO_printf(bio_err, "Async mode is not supported with %s\n",
2357 doit[D_CBC_CAST] = 0;
2359 for (testnum = 0; testnum < size_num && async_init == 0; testnum++) {
2360 print_message(names[D_CBC_CAST], c[D_CBC_CAST][testnum],
2361 lengths[testnum], seconds.sym);
2363 for (count = 0, run = 1; COND(c[D_CBC_CAST][testnum]); count++)
2364 CAST_cbc_encrypt(loopargs[0].buf, loopargs[0].buf,
2365 (size_t)lengths[testnum], &cast_ks,
2368 print_result(D_CBC_CAST, testnum, count, d);
2373 for (testnum = 0; testnum < size_num; testnum++) {
2374 print_message(names[D_RAND], c[D_RAND][testnum], lengths[testnum],
2377 count = run_benchmark(async_jobs, RAND_bytes_loop, loopargs);
2379 print_result(D_RAND, testnum, count, d);
2384 if (multiblock && evp_cipher) {
2386 (EVP_CIPHER_flags(evp_cipher) &
2387 EVP_CIPH_FLAG_TLS1_1_MULTIBLOCK)) {
2388 BIO_printf(bio_err, "%s is not multi-block capable\n",
2389 OBJ_nid2ln(EVP_CIPHER_nid(evp_cipher)));
2392 if (async_jobs > 0) {
2393 BIO_printf(bio_err, "Async mode is not supported, exiting...");
2396 multiblock_speed(evp_cipher, &seconds);
2400 for (testnum = 0; testnum < size_num; testnum++) {
2403 names[D_EVP] = OBJ_nid2ln(EVP_CIPHER_nid(evp_cipher));
2405 * -O3 -fschedule-insns messes up an optimization here!
2406 * names[D_EVP] somehow becomes NULL
2408 print_message(names[D_EVP], save_count, lengths[testnum],
2411 for (k = 0; k < loopargs_len; k++) {
2412 loopargs[k].ctx = EVP_CIPHER_CTX_new();
2413 EVP_CipherInit_ex(loopargs[k].ctx, evp_cipher, NULL, NULL,
2414 iv, decrypt ? 0 : 1);
2416 EVP_CIPHER_CTX_set_padding(loopargs[k].ctx, 0);
2418 keylen = EVP_CIPHER_CTX_key_length(loopargs[k].ctx);
2419 loopargs[k].key = app_malloc(keylen, "evp_cipher key");
2420 EVP_CIPHER_CTX_rand_key(loopargs[k].ctx, loopargs[k].key);
2421 EVP_CipherInit_ex(loopargs[k].ctx, NULL, NULL,
2422 loopargs[k].key, NULL, -1);
2423 OPENSSL_clear_free(loopargs[k].key, keylen);
2425 switch (EVP_CIPHER_mode(evp_cipher)) {
2426 case EVP_CIPH_CCM_MODE:
2427 loopfunc = EVP_Update_loop_ccm;
2430 loopfunc = EVP_Update_loop;
2434 count = run_benchmark(async_jobs, loopfunc, loopargs);
2436 for (k = 0; k < loopargs_len; k++) {
2437 EVP_CIPHER_CTX_free(loopargs[k].ctx);
2441 names[D_EVP] = OBJ_nid2ln(EVP_MD_type(evp_md));
2442 print_message(names[D_EVP], save_count, lengths[testnum],
2445 count = run_benchmark(async_jobs, EVP_Digest_loop, loopargs);
2448 print_result(D_EVP, testnum, count, d);
2452 for (i = 0; i < loopargs_len; i++)
2453 RAND_bytes(loopargs[i].buf, 36);
2455 #ifndef OPENSSL_NO_RSA
2456 for (testnum = 0; testnum < RSA_NUM; testnum++) {
2458 if (!rsa_doit[testnum])
2460 for (i = 0; i < loopargs_len; i++) {
2462 /* we haven't set keys yet, generate multi-prime RSA keys */
2463 BIGNUM *bn = BN_new();
2467 if (!BN_set_word(bn, RSA_F4)) {
2472 BIO_printf(bio_err, "Generate multi-prime RSA key for %s\n",
2473 rsa_choices[testnum].name);
2475 loopargs[i].rsa_key[testnum] = RSA_new();
2476 if (loopargs[i].rsa_key[testnum] == NULL) {
2481 if (!RSA_generate_multi_prime_key(loopargs[i].rsa_key[testnum],
2483 primes, bn, NULL)) {
2489 st = RSA_sign(NID_md5_sha1, loopargs[i].buf, 36, loopargs[i].buf2,
2490 &loopargs[i].siglen, loopargs[i].rsa_key[testnum]);
2496 "RSA sign failure. No RSA sign will be done.\n");
2497 ERR_print_errors(bio_err);
2500 pkey_print_message("private", "rsa",
2501 rsa_c[testnum][0], rsa_bits[testnum],
2503 /* RSA_blinding_on(rsa_key[testnum],NULL); */
2505 count = run_benchmark(async_jobs, RSA_sign_loop, loopargs);
2508 mr ? "+R1:%ld:%d:%.2f\n"
2509 : "%ld %u bits private RSA's in %.2fs\n",
2510 count, rsa_bits[testnum], d);
2511 rsa_results[testnum][0] = (double)count / d;
2515 for (i = 0; i < loopargs_len; i++) {
2516 st = RSA_verify(NID_md5_sha1, loopargs[i].buf, 36, loopargs[i].buf2,
2517 loopargs[i].siglen, loopargs[i].rsa_key[testnum]);
2523 "RSA verify failure. No RSA verify will be done.\n");
2524 ERR_print_errors(bio_err);
2525 rsa_doit[testnum] = 0;
2527 pkey_print_message("public", "rsa",
2528 rsa_c[testnum][1], rsa_bits[testnum],
2531 count = run_benchmark(async_jobs, RSA_verify_loop, loopargs);
2534 mr ? "+R2:%ld:%d:%.2f\n"
2535 : "%ld %u bits public RSA's in %.2fs\n",
2536 count, rsa_bits[testnum], d);
2537 rsa_results[testnum][1] = (double)count / d;
2540 if (rsa_count <= 1) {
2541 /* if longer than 10s, don't do any more */
2542 for (testnum++; testnum < RSA_NUM; testnum++)
2543 rsa_doit[testnum] = 0;
2546 #endif /* OPENSSL_NO_RSA */
2548 for (i = 0; i < loopargs_len; i++)
2549 RAND_bytes(loopargs[i].buf, 36);
2551 #ifndef OPENSSL_NO_DSA
2552 for (testnum = 0; testnum < DSA_NUM; testnum++) {
2554 if (!dsa_doit[testnum])
2557 /* DSA_generate_key(dsa_key[testnum]); */
2558 /* DSA_sign_setup(dsa_key[testnum],NULL); */
2559 for (i = 0; i < loopargs_len; i++) {
2560 st = DSA_sign(0, loopargs[i].buf, 20, loopargs[i].buf2,
2561 &loopargs[i].siglen, loopargs[i].dsa_key[testnum]);
2567 "DSA sign failure. No DSA sign will be done.\n");
2568 ERR_print_errors(bio_err);
2571 pkey_print_message("sign", "dsa",
2572 dsa_c[testnum][0], dsa_bits[testnum],
2575 count = run_benchmark(async_jobs, DSA_sign_loop, loopargs);
2578 mr ? "+R3:%ld:%u:%.2f\n"
2579 : "%ld %u bits DSA signs in %.2fs\n",
2580 count, dsa_bits[testnum], d);
2581 dsa_results[testnum][0] = (double)count / d;
2585 for (i = 0; i < loopargs_len; i++) {
2586 st = DSA_verify(0, loopargs[i].buf, 20, loopargs[i].buf2,
2587 loopargs[i].siglen, loopargs[i].dsa_key[testnum]);
2593 "DSA verify failure. No DSA verify will be done.\n");
2594 ERR_print_errors(bio_err);
2595 dsa_doit[testnum] = 0;
2597 pkey_print_message("verify", "dsa",
2598 dsa_c[testnum][1], dsa_bits[testnum],
2601 count = run_benchmark(async_jobs, DSA_verify_loop, loopargs);
2604 mr ? "+R4:%ld:%u:%.2f\n"
2605 : "%ld %u bits DSA verify in %.2fs\n",
2606 count, dsa_bits[testnum], d);
2607 dsa_results[testnum][1] = (double)count / d;
2610 if (rsa_count <= 1) {
2611 /* if longer than 10s, don't do any more */
2612 for (testnum++; testnum < DSA_NUM; testnum++)
2613 dsa_doit[testnum] = 0;
2616 #endif /* OPENSSL_NO_DSA */
2618 #ifndef OPENSSL_NO_EC
2619 OPENSSL_assert(OSSL_NELEM(test_curves) >= EC_NUM);
2620 for (testnum = 0; testnum < EC_NUM; testnum++) {
2623 if (!ecdsa_doit[testnum])
2624 continue; /* Ignore Curve */
2625 for (i = 0; i < loopargs_len; i++) {
2626 loopargs[i].ecdsa[testnum] =
2627 EC_KEY_new_by_curve_name(test_curves[testnum].nid);
2628 if (loopargs[i].ecdsa[testnum] == NULL) {
2634 BIO_printf(bio_err, "ECDSA failure.\n");
2635 ERR_print_errors(bio_err);
2638 for (i = 0; i < loopargs_len; i++) {
2639 EC_KEY_precompute_mult(loopargs[i].ecdsa[testnum], NULL);
2640 /* Perform ECDSA signature test */
2641 EC_KEY_generate_key(loopargs[i].ecdsa[testnum]);
2642 st = ECDSA_sign(0, loopargs[i].buf, 20, loopargs[i].buf2,
2643 &loopargs[i].siglen,
2644 loopargs[i].ecdsa[testnum]);
2650 "ECDSA sign failure. No ECDSA sign will be done.\n");
2651 ERR_print_errors(bio_err);
2654 pkey_print_message("sign", "ecdsa",
2655 ecdsa_c[testnum][0],
2656 test_curves[testnum].bits, seconds.ecdsa);
2658 count = run_benchmark(async_jobs, ECDSA_sign_loop, loopargs);
2662 mr ? "+R5:%ld:%u:%.2f\n" :
2663 "%ld %u bits ECDSA signs in %.2fs \n",
2664 count, test_curves[testnum].bits, d);
2665 ecdsa_results[testnum][0] = (double)count / d;
2669 /* Perform ECDSA verification test */
2670 for (i = 0; i < loopargs_len; i++) {
2671 st = ECDSA_verify(0, loopargs[i].buf, 20, loopargs[i].buf2,
2673 loopargs[i].ecdsa[testnum]);
2679 "ECDSA verify failure. No ECDSA verify will be done.\n");
2680 ERR_print_errors(bio_err);
2681 ecdsa_doit[testnum] = 0;
2683 pkey_print_message("verify", "ecdsa",
2684 ecdsa_c[testnum][1],
2685 test_curves[testnum].bits, seconds.ecdsa);
2687 count = run_benchmark(async_jobs, ECDSA_verify_loop, loopargs);
2690 mr ? "+R6:%ld:%u:%.2f\n"
2691 : "%ld %u bits ECDSA verify in %.2fs\n",
2692 count, test_curves[testnum].bits, d);
2693 ecdsa_results[testnum][1] = (double)count / d;
2696 if (rsa_count <= 1) {
2697 /* if longer than 10s, don't do any more */
2698 for (testnum++; testnum < EC_NUM; testnum++)
2699 ecdsa_doit[testnum] = 0;
2704 for (testnum = 0; testnum < EC_NUM; testnum++) {
2705 int ecdh_checks = 1;
2707 if (!ecdh_doit[testnum])
2710 for (i = 0; i < loopargs_len; i++) {
2711 EVP_PKEY_CTX *kctx = NULL;
2712 EVP_PKEY_CTX *test_ctx = NULL;
2713 EVP_PKEY_CTX *ctx = NULL;
2714 EVP_PKEY *key_A = NULL;
2715 EVP_PKEY *key_B = NULL;
2719 /* Ensure that the error queue is empty */
2720 if (ERR_peek_error()) {
2722 "WARNING: the error queue contains previous unhandled errors.\n");
2723 ERR_print_errors(bio_err);
2726 /* Let's try to create a ctx directly from the NID: this works for
2727 * curves like Curve25519 that are not implemented through the low
2728 * level EC interface.
2729 * If this fails we try creating a EVP_PKEY_EC generic param ctx,
2730 * then we set the curve by NID before deriving the actual keygen
2731 * ctx for that specific curve. */
2732 kctx = EVP_PKEY_CTX_new_id(test_curves[testnum].nid, NULL); /* keygen ctx from NID */
2734 EVP_PKEY_CTX *pctx = NULL;
2735 EVP_PKEY *params = NULL;
2737 /* If we reach this code EVP_PKEY_CTX_new_id() failed and a
2738 * "int_ctx_new:unsupported algorithm" error was added to the
2740 * We remove it from the error queue as we are handling it. */
2741 unsigned long error = ERR_peek_error(); /* peek the latest error in the queue */
2742 if (error == ERR_peek_last_error() && /* oldest and latest errors match */
2743 /* check that the error origin matches */
2744 ERR_GET_LIB(error) == ERR_LIB_EVP &&
2745 ERR_GET_FUNC(error) == EVP_F_INT_CTX_NEW &&
2746 ERR_GET_REASON(error) == EVP_R_UNSUPPORTED_ALGORITHM)
2747 ERR_get_error(); /* pop error from queue */
2748 if (ERR_peek_error()) {
2750 "Unhandled error in the error queue during ECDH init.\n");
2751 ERR_print_errors(bio_err);
2756 if ( /* Create the context for parameter generation */
2757 !(pctx = EVP_PKEY_CTX_new_id(EVP_PKEY_EC, NULL)) ||
2758 /* Initialise the parameter generation */
2759 !EVP_PKEY_paramgen_init(pctx) ||
2760 /* Set the curve by NID */
2761 !EVP_PKEY_CTX_set_ec_paramgen_curve_nid(pctx,
2764 /* Create the parameter object params */
2765 !EVP_PKEY_paramgen(pctx, ¶ms)) {
2767 BIO_printf(bio_err, "ECDH EC params init failure.\n");
2768 ERR_print_errors(bio_err);
2772 /* Create the context for the key generation */
2773 kctx = EVP_PKEY_CTX_new(params, NULL);
2775 EVP_PKEY_free(params);
2777 EVP_PKEY_CTX_free(pctx);
2780 if (kctx == NULL || /* keygen ctx is not null */
2781 !EVP_PKEY_keygen_init(kctx) /* init keygen ctx */ ) {
2783 BIO_printf(bio_err, "ECDH keygen failure.\n");
2784 ERR_print_errors(bio_err);
2789 if (!EVP_PKEY_keygen(kctx, &key_A) || /* generate secret key A */
2790 !EVP_PKEY_keygen(kctx, &key_B) || /* generate secret key B */
2791 !(ctx = EVP_PKEY_CTX_new(key_A, NULL)) || /* derivation ctx from skeyA */
2792 !EVP_PKEY_derive_init(ctx) || /* init derivation ctx */
2793 !EVP_PKEY_derive_set_peer(ctx, key_B) || /* set peer pubkey in ctx */
2794 !EVP_PKEY_derive(ctx, NULL, &outlen) || /* determine max length */
2795 outlen == 0 || /* ensure outlen is a valid size */
2796 outlen > MAX_ECDH_SIZE /* avoid buffer overflow */ ) {
2798 BIO_printf(bio_err, "ECDH key generation failure.\n");
2799 ERR_print_errors(bio_err);
2804 /* Here we perform a test run, comparing the output of a*B and b*A;
2805 * we try this here and assume that further EVP_PKEY_derive calls
2806 * never fail, so we can skip checks in the actually benchmarked
2807 * code, for maximum performance. */
2808 if (!(test_ctx = EVP_PKEY_CTX_new(key_B, NULL)) || /* test ctx from skeyB */
2809 !EVP_PKEY_derive_init(test_ctx) || /* init derivation test_ctx */
2810 !EVP_PKEY_derive_set_peer(test_ctx, key_A) || /* set peer pubkey in test_ctx */
2811 !EVP_PKEY_derive(test_ctx, NULL, &test_outlen) || /* determine max length */
2812 !EVP_PKEY_derive(ctx, loopargs[i].secret_a, &outlen) || /* compute a*B */
2813 !EVP_PKEY_derive(test_ctx, loopargs[i].secret_b, &test_outlen) || /* compute b*A */
2814 test_outlen != outlen /* compare output length */ ) {
2816 BIO_printf(bio_err, "ECDH computation failure.\n");
2817 ERR_print_errors(bio_err);
2822 /* Compare the computation results: CRYPTO_memcmp() returns 0 if equal */
2823 if (CRYPTO_memcmp(loopargs[i].secret_a,
2824 loopargs[i].secret_b, outlen)) {
2826 BIO_printf(bio_err, "ECDH computations don't match.\n");
2827 ERR_print_errors(bio_err);
2832 loopargs[i].ecdh_ctx[testnum] = ctx;
2833 loopargs[i].outlen[testnum] = outlen;
2835 EVP_PKEY_free(key_A);
2836 EVP_PKEY_free(key_B);
2837 EVP_PKEY_CTX_free(kctx);
2839 EVP_PKEY_CTX_free(test_ctx);
2842 if (ecdh_checks != 0) {
2843 pkey_print_message("", "ecdh",
2845 test_curves[testnum].bits, seconds.ecdh);
2848 run_benchmark(async_jobs, ECDH_EVP_derive_key_loop, loopargs);
2851 mr ? "+R7:%ld:%d:%.2f\n" :
2852 "%ld %u-bits ECDH ops in %.2fs\n", count,
2853 test_curves[testnum].bits, d);
2854 ecdh_results[testnum][0] = (double)count / d;
2858 if (rsa_count <= 1) {
2859 /* if longer than 10s, don't do any more */
2860 for (testnum++; testnum < EC_NUM; testnum++)
2861 ecdh_doit[testnum] = 0;
2864 #endif /* OPENSSL_NO_EC */
2869 printf("%s\n", OpenSSL_version(OPENSSL_VERSION));
2870 printf("%s\n", OpenSSL_version(OPENSSL_BUILT_ON));
2872 printf("%s ", BN_options());
2873 #ifndef OPENSSL_NO_MD2
2874 printf("%s ", MD2_options());
2876 #ifndef OPENSSL_NO_RC4
2877 printf("%s ", RC4_options());
2879 #ifndef OPENSSL_NO_DES
2880 printf("%s ", DES_options());
2882 printf("%s ", AES_options());
2883 #ifndef OPENSSL_NO_IDEA
2884 printf("%s ", IDEA_options());
2886 #ifndef OPENSSL_NO_BF
2887 printf("%s ", BF_options());
2889 printf("\n%s\n", OpenSSL_version(OPENSSL_CFLAGS));
2897 ("The 'numbers' are in 1000s of bytes per second processed.\n");
2900 for (testnum = 0; testnum < size_num; testnum++)
2901 printf(mr ? ":%d" : "%7d bytes", lengths[testnum]);
2905 for (k = 0; k < ALGOR_NUM; k++) {
2909 printf("+F:%d:%s", k, names[k]);
2911 printf("%-13s", names[k]);
2912 for (testnum = 0; testnum < size_num; testnum++) {
2913 if (results[k][testnum] > 10000 && !mr)
2914 printf(" %11.2fk", results[k][testnum] / 1e3);
2916 printf(mr ? ":%.2f" : " %11.2f ", results[k][testnum]);
2920 #ifndef OPENSSL_NO_RSA
2922 for (k = 0; k < RSA_NUM; k++) {
2925 if (testnum && !mr) {
2926 printf("%18ssign verify sign/s verify/s\n", " ");
2930 printf("+F2:%u:%u:%f:%f\n",
2931 k, rsa_bits[k], rsa_results[k][0], rsa_results[k][1]);
2933 printf("rsa %4u bits %8.6fs %8.6fs %8.1f %8.1f\n",
2934 rsa_bits[k], 1.0 / rsa_results[k][0], 1.0 / rsa_results[k][1],
2935 rsa_results[k][0], rsa_results[k][1]);
2938 #ifndef OPENSSL_NO_DSA
2940 for (k = 0; k < DSA_NUM; k++) {
2943 if (testnum && !mr) {
2944 printf("%18ssign verify sign/s verify/s\n", " ");
2948 printf("+F3:%u:%u:%f:%f\n",
2949 k, dsa_bits[k], dsa_results[k][0], dsa_results[k][1]);
2951 printf("dsa %4u bits %8.6fs %8.6fs %8.1f %8.1f\n",
2952 dsa_bits[k], 1.0 / dsa_results[k][0], 1.0 / dsa_results[k][1],
2953 dsa_results[k][0], dsa_results[k][1]);
2956 #ifndef OPENSSL_NO_EC
2958 for (k = 0; k < EC_NUM; k++) {
2961 if (testnum && !mr) {
2962 printf("%30ssign verify sign/s verify/s\n", " ");
2967 printf("+F4:%u:%u:%f:%f\n",
2968 k, test_curves[k].bits,
2969 ecdsa_results[k][0], ecdsa_results[k][1]);
2971 printf("%4u bits ecdsa (%s) %8.4fs %8.4fs %8.1f %8.1f\n",
2972 test_curves[k].bits, test_curves[k].name,
2973 1.0 / ecdsa_results[k][0], 1.0 / ecdsa_results[k][1],
2974 ecdsa_results[k][0], ecdsa_results[k][1]);
2978 for (k = 0; k < EC_NUM; k++) {
2981 if (testnum && !mr) {
2982 printf("%30sop op/s\n", " ");
2986 printf("+F5:%u:%u:%f:%f\n",
2987 k, test_curves[k].bits,
2988 ecdh_results[k][0], 1.0 / ecdh_results[k][0]);
2991 printf("%4u bits ecdh (%s) %8.4fs %8.1f\n",
2992 test_curves[k].bits, test_curves[k].name,
2993 1.0 / ecdh_results[k][0], ecdh_results[k][0]);
3000 ERR_print_errors(bio_err);
3001 for (i = 0; i < loopargs_len; i++) {
3002 OPENSSL_free(loopargs[i].buf_malloc);
3003 OPENSSL_free(loopargs[i].buf2_malloc);
3005 #ifndef OPENSSL_NO_RSA
3006 for (k = 0; k < RSA_NUM; k++)
3007 RSA_free(loopargs[i].rsa_key[k]);
3009 #ifndef OPENSSL_NO_DSA
3010 for (k = 0; k < DSA_NUM; k++)
3011 DSA_free(loopargs[i].dsa_key[k]);
3013 #ifndef OPENSSL_NO_EC
3014 for (k = 0; k < EC_NUM; k++) {
3015 EC_KEY_free(loopargs[i].ecdsa[k]);
3016 EVP_PKEY_CTX_free(loopargs[i].ecdh_ctx[k]);
3018 OPENSSL_free(loopargs[i].secret_a);
3019 OPENSSL_free(loopargs[i].secret_b);
3023 if (async_jobs > 0) {
3024 for (i = 0; i < loopargs_len; i++)
3025 ASYNC_WAIT_CTX_free(loopargs[i].wait_ctx);
3029 ASYNC_cleanup_thread();
3031 OPENSSL_free(loopargs);
3036 static void print_message(const char *s, long num, int length, int tm)
3040 mr ? "+DT:%s:%d:%d\n"
3041 : "Doing %s for %ds on %d size blocks: ", s, tm, length);
3042 (void)BIO_flush(bio_err);
3046 mr ? "+DN:%s:%ld:%d\n"
3047 : "Doing %s %ld times on %d size blocks: ", s, num, length);
3048 (void)BIO_flush(bio_err);
3052 static void pkey_print_message(const char *str, const char *str2, long num,
3053 unsigned int bits, int tm)
3057 mr ? "+DTP:%d:%s:%s:%d\n"
3058 : "Doing %u bits %s %s's for %ds: ", bits, str, str2, tm);
3059 (void)BIO_flush(bio_err);
3063 mr ? "+DNP:%ld:%d:%s:%s\n"
3064 : "Doing %ld %u bits %s %s's: ", num, bits, str, str2);
3065 (void)BIO_flush(bio_err);
3069 static void print_result(int alg, int run_no, int count, double time_used)
3072 BIO_puts(bio_err, "EVP error!\n");
3076 mr ? "+R:%d:%s:%f\n"
3077 : "%d %s's in %.2fs\n", count, names[alg], time_used);
3078 results[alg][run_no] = ((double)count) / time_used * lengths[run_no];
3082 static char *sstrsep(char **string, const char *delim)
3085 char *token = *string;
3090 memset(isdelim, 0, sizeof(isdelim));
3094 isdelim[(unsigned char)(*delim)] = 1;
3098 while (!isdelim[(unsigned char)(**string)]) {
3110 static int do_multi(int multi, int size_num)
3115 static char sep[] = ":";
3117 fds = malloc(sizeof(*fds) * multi);
3118 for (n = 0; n < multi; ++n) {
3119 if (pipe(fd) == -1) {
3120 BIO_printf(bio_err, "pipe failure\n");
3124 (void)BIO_flush(bio_err);
3131 if (dup(fd[1]) == -1) {
3132 BIO_printf(bio_err, "dup failed\n");
3141 printf("Forked child %d\n", n);
3144 /* for now, assume the pipe is long enough to take all the output */
3145 for (n = 0; n < multi; ++n) {
3150 f = fdopen(fds[n], "r");
3151 while (fgets(buf, sizeof(buf), f)) {
3152 p = strchr(buf, '\n');
3155 if (buf[0] != '+') {
3157 "Don't understand line '%s' from child %d\n", buf,
3161 printf("Got: %s from %d\n", buf, n);
3162 if (strncmp(buf, "+F:", 3) == 0) {
3167 alg = atoi(sstrsep(&p, sep));
3169 for (j = 0; j < size_num; ++j)
3170 results[alg][j] += atof(sstrsep(&p, sep));
3171 } else if (strncmp(buf, "+F2:", 4) == 0) {
3176 k = atoi(sstrsep(&p, sep));
3179 d = atof(sstrsep(&p, sep));
3180 rsa_results[k][0] += d;
3182 d = atof(sstrsep(&p, sep));
3183 rsa_results[k][1] += d;
3185 # ifndef OPENSSL_NO_DSA
3186 else if (strncmp(buf, "+F3:", 4) == 0) {
3191 k = atoi(sstrsep(&p, sep));
3194 d = atof(sstrsep(&p, sep));
3195 dsa_results[k][0] += d;
3197 d = atof(sstrsep(&p, sep));
3198 dsa_results[k][1] += d;
3201 # ifndef OPENSSL_NO_EC
3202 else if (strncmp(buf, "+F4:", 4) == 0) {
3207 k = atoi(sstrsep(&p, sep));
3210 d = atof(sstrsep(&p, sep));
3211 ecdsa_results[k][0] += d;
3213 d = atof(sstrsep(&p, sep));
3214 ecdsa_results[k][1] += d;
3215 } else if (strncmp(buf, "+F5:", 4) == 0) {
3220 k = atoi(sstrsep(&p, sep));
3223 d = atof(sstrsep(&p, sep));
3224 ecdh_results[k][0] += d;
3228 else if (strncmp(buf, "+H:", 3) == 0) {
3231 BIO_printf(bio_err, "Unknown type '%s' from child %d\n", buf,
3242 static void multiblock_speed(const EVP_CIPHER *evp_cipher,
3243 const openssl_speed_sec_t *seconds)
3245 static const int mblengths_list[] =
3246 { 8 * 1024, 2 * 8 * 1024, 4 * 8 * 1024, 8 * 8 * 1024, 8 * 16 * 1024 };
3247 const int *mblengths = mblengths_list;
3248 int j, count, keylen, num = OSSL_NELEM(mblengths_list);
3249 const char *alg_name;
3250 unsigned char *inp, *out, *key, no_key[32], no_iv[16];
3251 EVP_CIPHER_CTX *ctx;
3254 if (lengths_single) {
3255 mblengths = &lengths_single;
3259 inp = app_malloc(mblengths[num - 1], "multiblock input buffer");
3260 out = app_malloc(mblengths[num - 1] + 1024, "multiblock output buffer");
3261 ctx = EVP_CIPHER_CTX_new();
3262 EVP_EncryptInit_ex(ctx, evp_cipher, NULL, NULL, no_iv);
3264 keylen = EVP_CIPHER_CTX_key_length(ctx);
3265 key = app_malloc(keylen, "evp_cipher key");
3266 EVP_CIPHER_CTX_rand_key(ctx, key);
3267 EVP_EncryptInit_ex(ctx, NULL, NULL, key, NULL);
3268 OPENSSL_clear_free(key, keylen);
3270 EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_MAC_KEY, sizeof(no_key), no_key);
3271 alg_name = OBJ_nid2ln(EVP_CIPHER_nid(evp_cipher));
3273 for (j = 0; j < num; j++) {
3274 print_message(alg_name, 0, mblengths[j], seconds->sym);
3276 for (count = 0, run = 1; run && count < 0x7fffffff; count++) {
3277 unsigned char aad[EVP_AEAD_TLS1_AAD_LEN];
3278 EVP_CTRL_TLS1_1_MULTIBLOCK_PARAM mb_param;
3279 size_t len = mblengths[j];
3282 memset(aad, 0, 8); /* avoid uninitialized values */
3283 aad[8] = 23; /* SSL3_RT_APPLICATION_DATA */
3284 aad[9] = 3; /* version */
3286 aad[11] = 0; /* length */
3288 mb_param.out = NULL;
3291 mb_param.interleave = 8;
3293 packlen = EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_TLS1_1_MULTIBLOCK_AAD,
3294 sizeof(mb_param), &mb_param);
3300 EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_TLS1_1_MULTIBLOCK_ENCRYPT,
3301 sizeof(mb_param), &mb_param);
3305 RAND_bytes(out, 16);
3307 aad[11] = (unsigned char)(len >> 8);
3308 aad[12] = (unsigned char)(len);
3309 pad = EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_TLS1_AAD,
3310 EVP_AEAD_TLS1_AAD_LEN, aad);
3311 EVP_Cipher(ctx, out, inp, len + pad);
3315 BIO_printf(bio_err, mr ? "+R:%d:%s:%f\n"
3316 : "%d %s's in %.2fs\n", count, "evp", d);
3317 results[D_EVP][j] = ((double)count) / d * mblengths[j];
3321 fprintf(stdout, "+H");
3322 for (j = 0; j < num; j++)
3323 fprintf(stdout, ":%d", mblengths[j]);
3324 fprintf(stdout, "\n");
3325 fprintf(stdout, "+F:%d:%s", D_EVP, alg_name);
3326 for (j = 0; j < num; j++)
3327 fprintf(stdout, ":%.2f", results[D_EVP][j]);
3328 fprintf(stdout, "\n");
3331 "The 'numbers' are in 1000s of bytes per second processed.\n");
3332 fprintf(stdout, "type ");
3333 for (j = 0; j < num; j++)
3334 fprintf(stdout, "%7d bytes", mblengths[j]);
3335 fprintf(stdout, "\n");
3336 fprintf(stdout, "%-24s", alg_name);
3338 for (j = 0; j < num; j++) {
3339 if (results[D_EVP][j] > 10000)
3340 fprintf(stdout, " %11.2fk", results[D_EVP][j] / 1e3);
3342 fprintf(stdout, " %11.2f ", results[D_EVP][j]);
3344 fprintf(stdout, "\n");
3349 EVP_CIPHER_CTX_free(ctx);