abc/GmSSL
1
0
Fork 0
mirror of https://github.com/guanzhi/GmSSL.git synced 2026-05-06 16:36:16 +08:00
Code Issues Packages Projects Releases Wiki Activity

Add speed tests to sdftest command

Browse Source
This commit is contained in:
Zhi Guan
2024-06-05 12:30:57 +08:00
parent c821bdac01
commit b0348bed8e
1 changed files with 487 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

487
tools/sdftest.c
View File

@@ -12,6 +12,7 @@
#include <string.h>
#include <stdlib.h>
#include <stdint.h>
#include <time.h>
#include <gmssl/hex.h>
#include <gmssl/sm2.h>
#include <gmssl/rand.h>
@@ -1314,6 +1315,481 @@ static int test_SDF_InternalEncrypt_ECC(int key, char *pass)
return 1;
}
static int speed_SDF_Encrypt_SM4_CBC(int kek)
{
void *hDeviceHandle = NULL;
void *hSessionHandle = NULL;
void *hKeyHandle = NULL;
unsigned int uiKeyBits = 128;
unsigned int uiKEKIndex = (unsigned int)kek;
unsigned char ucWrappedKey[64];
unsigned int uiWrappedKeyLength = (unsigned int)sizeof(ucWrappedKey);
unsigned char ucIV[16] = {0};
unsigned char ucData[4096] = {0};
unsigned int uiLength;
int ret;
clock_t begin, end;
double seconds;
size_t i;
ret = SDF_OpenDevice(&hDeviceHandle);
if (ret != SDR_OK) {
error_print();
return -1;
}
ret = SDF_OpenSession(hDeviceHandle, &hSessionHandle);
if (ret != SDR_OK) {
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
ret = SDF_GenerateKeyWithKEK(hSessionHandle, uiKeyBits, SGD_SM4_CBC, uiKEKIndex, ucWrappedKey, &uiWrappedKeyLength, &hKeyHandle);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
begin = clock();
for (i = 0; i < 16; i++) {
ret = SDF_Encrypt(hSessionHandle, hKeyHandle, SGD_SM4_CBC, ucIV, ucData, sizeof(ucData), ucData, &uiLength);
if (ret != SDR_OK) {
(void)SDF_DestroyKey(hSessionHandle, hKeyHandle);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
}
for (i = 0; i < 4096; i++) {
(void)SDF_Encrypt(hSessionHandle, hKeyHandle, SGD_SM4_CBC, ucIV, ucData, sizeof(ucData), ucData, &uiLength);
}
end = clock();
seconds = (double)(end - begin)/ CLOCKS_PER_SEC;
(void)SDF_DestroyKey(hSessionHandle, hKeyHandle);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
printf("%s: %f MiB per second\n", __FUNCTION__, 16/seconds);
return 1;
}
static int speed_SDF_Decrypt_SM4_CBC(int kek)
{
void *hDeviceHandle = NULL;
void *hSessionHandle = NULL;
void *hKeyHandle = NULL;
unsigned int uiKeyBits = 128;
unsigned int uiKEKIndex = (unsigned int)kek;
unsigned char ucWrappedKey[64];
unsigned int uiWrappedKeyLength = (unsigned int)sizeof(ucWrappedKey);
unsigned char ucIV[16] = {0};
unsigned char ucData[4096] = {0};
unsigned int uiLength;
clock_t begin, end;
double seconds;
int i, ret;
ret = SDF_OpenDevice(&hDeviceHandle);
if (ret != SDR_OK) {
error_print();
return -1;
}
ret = SDF_OpenSession(hDeviceHandle, &hSessionHandle);
if (ret != SDR_OK) {
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
ret = SDF_GenerateKeyWithKEK(hSessionHandle, uiKeyBits, SGD_SM4_CBC, uiKEKIndex, ucWrappedKey, &uiWrappedKeyLength, &hKeyHandle);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
begin = clock();
for (i = 0; i < 16; i++) {
ret = SDF_Decrypt(hSessionHandle, hKeyHandle, SGD_SM4_CBC, ucIV, ucData, sizeof(ucData), ucData, &uiLength);
if (ret != SDR_OK) {
(void)SDF_DestroyKey(hSessionHandle, hKeyHandle);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
}
for (i = 16; i < 4096; i++) {
(void)SDF_Decrypt(hSessionHandle, hKeyHandle, SGD_SM4_CBC, ucIV, ucData, sizeof(ucData), ucData, &uiLength);
}
end = clock();
seconds = (double)(end - begin)/ CLOCKS_PER_SEC;
(void)SDF_DestroyKey(hSessionHandle, hKeyHandle);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
printf("%s: %f MiB per second\n", __FUNCTION__, 16/seconds);
return 1;
}
static int speed_SDF_Hash(void)
{
void *hDeviceHandle = NULL;
void *hSessionHandle = NULL;
unsigned char ucData[4096] = {0};
unsigned int uiDataLength = (unsigned int)sizeof(ucData);
unsigned char ucHash[32];
unsigned int uiHashLength;
clock_t begin, end;
double seconds;
int i, ret;
ret = SDF_OpenDevice(&hDeviceHandle);
if (ret != SDR_OK) {
error_print();
return -1;
}
ret = SDF_OpenSession(hDeviceHandle, &hSessionHandle);
if (ret != SDR_OK) {
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
begin = clock();
ret = SDF_HashInit(hSessionHandle, SGD_SM3, NULL, NULL, 0);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
for (i = 0; i < 16; i++) {
ret = SDF_HashUpdate(hSessionHandle, ucData, uiDataLength);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
}
for (i = 16; i < 4096; i++) {
(void)SDF_HashUpdate(hSessionHandle, ucData, uiDataLength);
}
end = clock();
seconds = (double)(end - begin)/ CLOCKS_PER_SEC;
(void)SDF_HashFinal(hSessionHandle, ucHash, &uiHashLength);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
printf("%s: %f MiB per second\n", __FUNCTION__, 16/seconds);
return 1;
}
static int speed_SDF_GenerateKeyPair_ECC(void)
{
void *hDeviceHandle = NULL;
void *hSessionHandle = NULL;
ECCrefPublicKey eccPublicKey;
ECCrefPrivateKey eccPrivateKey;
clock_t begin, end;
double seconds;
int i, ret;
ret = SDF_OpenDevice(&hDeviceHandle);
if (ret != SDR_OK) {
error_print();
return -1;
}
ret = SDF_OpenSession(hDeviceHandle, &hSessionHandle);
if (ret != SDR_OK) {
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
begin = clock();
for (i = 0; i < 16; i++) {
ret = SDF_GenerateKeyPair_ECC(hSessionHandle, SGD_SM2_1, 256, &eccPublicKey, &eccPrivateKey);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
}
for (i = 0; i < 4096; i++) {
(void)SDF_GenerateKeyPair_ECC(hSessionHandle, SGD_SM2_1, 256, &eccPublicKey, &eccPrivateKey);
}
end = clock();
seconds = (double)(end - begin)/ CLOCKS_PER_SEC;
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
printf("%s: %f keypairs generated per second\n", __FUNCTION__, 4096/seconds);
return 1;
}
static int speed_SDF_InternalSign_ECC(int key, char *pass)
{
void *hDeviceHandle = NULL;
void *hSessionHandle = NULL;
unsigned int uiIPKIndex = (unsigned int)key;
unsigned char *ucPassword = (unsigned char *)pass;
unsigned int uiPwdLength = (unsigned int)strlen(pass);
unsigned char ucData[32] = { 1,2,3,4 };
unsigned int uiDataLength = 32;
ECCSignature eccSignature;
clock_t begin, end;
double seconds;
int i, ret;
ret = SDF_OpenDevice(&hDeviceHandle);
if (ret != SDR_OK) {
error_print();
return -1;
}
ret = SDF_OpenSession(hDeviceHandle, &hSessionHandle);
if (ret != SDR_OK) {
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
ret = SDF_GetPrivateKeyAccessRight(hSessionHandle, uiIPKIndex, ucPassword, uiPwdLength);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
begin = clock();
for (i = 0; i < 16; i++) {
ret = SDF_InternalSign_ECC(hSessionHandle, uiIPKIndex, ucData, uiDataLength, &eccSignature);
if (ret != SDR_OK) {
(void)SDF_ReleasePrivateKeyAccessRight(hSessionHandle, uiIPKIndex);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
}
for (i = 16; i < 4096; i++) {
(void)SDF_InternalSign_ECC(hSessionHandle, uiIPKIndex, ucData, uiDataLength, &eccSignature);
}
end = clock();
seconds = (double)(end - begin)/ CLOCKS_PER_SEC;
(void)SDF_ReleasePrivateKeyAccessRight(hSessionHandle, uiIPKIndex);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
printf("%s: %f signs per second\n", __FUNCTION__, 4096/seconds);
return 1;
}
static int speed_SDF_InternalVerify_ECC(int key, char *pass)
{
void *hDeviceHandle = NULL;
void *hSessionHandle = NULL;
unsigned int uiIPKIndex = (unsigned int)key;
unsigned char *ucPassword = (unsigned char *)pass;
unsigned int uiPwdLength = (unsigned int)strlen(pass);
unsigned char ucData[32] = { 1,2,3,4 };
unsigned int uiDataLength = 32;
ECCSignature eccSignature;
clock_t begin, end;
double seconds;
int i, ret;
ret = SDF_OpenDevice(&hDeviceHandle);
if (ret != SDR_OK) {
error_print();
return -1;
}
ret = SDF_OpenSession(hDeviceHandle, &hSessionHandle);
if (ret != SDR_OK) {
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
ret = SDF_GetPrivateKeyAccessRight(hSessionHandle, uiIPKIndex, ucPassword, uiPwdLength);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
ret = SDF_InternalSign_ECC(hSessionHandle, uiIPKIndex, ucData, uiDataLength, &eccSignature);
if (ret != SDR_OK) {
(void)SDF_ReleasePrivateKeyAccessRight(hSessionHandle, uiIPKIndex);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
//(void)SDF_ReleasePrivateKeyAccessRight(hSessionHandle, uiIPKIndex); // FIXME: error on calling this
begin = clock();
for (i = 0; i < 16; i++) {
ret = SDF_InternalVerify_ECC(hSessionHandle, uiIPKIndex, ucData, uiDataLength, &eccSignature);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
}
for (i = 16; i < 4096; i++) {
(void)SDF_InternalVerify_ECC(hSessionHandle, uiIPKIndex, ucData, uiDataLength, &eccSignature);
}
end = clock();
seconds = (double)(end - begin)/ CLOCKS_PER_SEC;
(void)SDF_ReleasePrivateKeyAccessRight(hSessionHandle, uiIPKIndex);
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
printf("%s: %f verifications per second\n", __FUNCTION__, 4096/seconds);
return 1;
}
static int speed_SDF_InternalEncrypt_ECC(int key)
{
void *hDeviceHandle = NULL;
void *hSessionHandle = NULL;
unsigned int uiIPKIndex = (unsigned int)key;
unsigned char ucData[48] = { 1,2,3,4 };
unsigned int uiDataLength = (unsigned int)sizeof(ucData);
ECCCipher eccCipher;
unsigned char ucDecData[256];
unsigned int uiDecDataLength;
clock_t begin, end;
double seconds;
int i, ret;
ret = SDF_OpenDevice(&hDeviceHandle);
if (ret != SDR_OK) {
error_print();
return -1;
}
ret = SDF_OpenSession(hDeviceHandle, &hSessionHandle);
if (ret != SDR_OK) {
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
begin = clock();
for (i = 0; i < 16; i++) {
ret = SDF_InternalEncrypt_ECC(hSessionHandle, uiIPKIndex, SGD_SM2_3, ucData, uiDataLength, &eccCipher);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
}
for (i = 16; i < 4096; i++) {
(void)SDF_InternalEncrypt_ECC(hSessionHandle, uiIPKIndex, SGD_SM2_3, ucData, uiDataLength, &eccCipher);
}
end = clock();
seconds = (double)(end - begin)/ CLOCKS_PER_SEC;
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
printf("%s: %f encryptions per second\n", __FUNCTION__, 4096/seconds);
return 1;
}
static int speed_SDF_InternalDecrypt_ECC(int key, char *pass)
{
void *hDeviceHandle = NULL;
void *hSessionHandle = NULL;
unsigned int uiIPKIndex = (unsigned int)key;
unsigned char *ucPassword = (unsigned char *)pass;
unsigned int uiPwdLength = (unsigned int)strlen(pass);
unsigned char ucData[48] = { 1,2,3,4 };
unsigned int uiDataLength = (unsigned int)sizeof(ucData);
ECCCipher eccCipher;
unsigned char ucDecData[256];
unsigned int uiDecDataLength;
clock_t begin, end;
double seconds;
int i, ret;
ret = SDF_OpenDevice(&hDeviceHandle);
if (ret != SDR_OK) {
error_print();
return -1;
}
ret = SDF_OpenSession(hDeviceHandle, &hSessionHandle);
if (ret != SDR_OK) {
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
ret = SDF_InternalEncrypt_ECC(hSessionHandle, uiIPKIndex, SGD_SM2_3, ucData, uiDataLength, &eccCipher);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
ret = SDF_GetPrivateKeyAccessRight(hSessionHandle, uiIPKIndex, ucPassword, uiPwdLength);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
begin = clock();
for (i = 0; i < 16; i++) {
ret = SDF_InternalDecrypt_ECC(hSessionHandle, uiIPKIndex, SGD_SM2_3, &eccCipher, ucDecData, &uiDecDataLength);
if (ret != SDR_OK) {
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
error_print();
return -1;
}
}
for (i = 16; i < 4096; i++) {
(void)SDF_InternalDecrypt_ECC(hSessionHandle, uiIPKIndex, SGD_SM2_3, &eccCipher, ucDecData, &uiDecDataLength);
}
end = clock();
seconds = (double)(end - begin)/ CLOCKS_PER_SEC;
(void)SDF_CloseSession(hSessionHandle);
(void)SDF_CloseDevice(hDeviceHandle);
printf("%s: %f decryptions per second\n", __FUNCTION__, 4096/seconds);
return 1;
}
int sdftest_main(int argc, char **argv)
{
int ret = 1;
@@ -1400,6 +1876,17 @@ bad:
if (test_SDF_InternalSign_ECC(key, pass) != 1) goto err;
if (test_SDF_InternalEncrypt_ECC(key, pass) != 1) goto err;
#if ENABLE_TEST_SPEED
if (speed_SDF_Hash() != 1) goto err;
if (speed_SDF_Encrypt_SM4_CBC(kek) != 1) goto err;
//if (speed_SDF_Decrypt_SM4_CBC(kek) != 1) goto err; // FIXME: should implement CBC without padding in SoftSDF
if (speed_SDF_GenerateKeyPair_ECC() != 1) goto err;
if (speed_SDF_InternalSign_ECC(key, pass) != 1) goto err;
if (speed_SDF_InternalVerify_ECC(key, pass) != 1) goto err;
if (speed_SDF_InternalEncrypt_ECC(key) != 1) goto err;
if (speed_SDF_InternalDecrypt_ECC(key, pass) != 1) goto err;
#endif
printf("%s all tests passed\n", __FILE__);
return 0;