Skip to content

Commit

Permalink
Merge pull request #102 from jackctj117/wolfJSSE_Benchmark
Browse files Browse the repository at this point in the history 
JCE: Implements DH key gen and key agreement benchmark
  • Loading branch information
@cconlon
cconlon authored Mar 4, 2025
2 parents 41d9fa2 + bd82709 commit 4bf623a
Showing 1 changed file with 102 additions and 10 deletions.
112 changes: 102 additions & 10 deletions examples/provider/CryptoBenchmark.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,10 @@
import java.security.spec.AlgorithmParameterSpec;
import java.security.KeyPair;
import java.security.KeyPairGenerator;
import javax.crypto.KeyAgreement;
import java.math.BigInteger;
import javax.crypto.interfaces.DHPublicKey;
import javax.crypto.spec.DHParameterSpec;
import java.security.spec.ECGenParameterSpec;
import java.util.*;

Expand All @@ -26,9 +30,11 @@ public class CryptoBenchmark {
private static final int DES3_BLOCK_SIZE = 8;
private static final int GCM_TAG_LENGTH = 128;
private static final int[] RSA_KEY_SIZES = {2048, 3072, 4096};
private static final int RSA_MIN_TIME_SECONDS = 1; /* minimum time to run each test */
private static final int TEST_MIN_TIME_SECONDS = 1; /* minimum time to run each test */
private static final int SMALL_MESSAGE_SIZE = 32; /* small message size for RSA ops */
private static final String[] ECC_CURVES = {"secp256r1"}; /* Can add more curves benchmark.c only uses secp256r1 */
private static final int[] DH_KEY_SIZES = {2048}; /* Can add more key sizes benchmark.c only uses 2048 */
private static final String DH_ALGORITHM = "DiffieHellman";

/* Class to store benchmark results */
private static class BenchmarkResult {
Expand Down Expand Up @@ -351,7 +357,7 @@ private static void runRSABenchmark(String providerName, int keySize) throws Exc
keyGen.generateKeyPair();
keyGenOps++;
elapsedTime = (System.nanoTime() - startTime) / 1_000_000_000.0;
} while (elapsedTime < RSA_MIN_TIME_SECONDS);
} while (elapsedTime < TEST_MIN_TIME_SECONDS);

keyGenOp = String.format("RSA %d key gen", keySize);
printKeyGenResults(keyGenOps, elapsedTime, keyGenOp, providerName, cipherMode);
Expand All @@ -370,7 +376,7 @@ private static void runRSABenchmark(String providerName, int keySize) throws Exc
cipher.doFinal(testData);
publicOps++;
elapsedTime = (System.nanoTime() - startTime) / 1_000_000_000.0;
} while (elapsedTime < RSA_MIN_TIME_SECONDS);
} while (elapsedTime < TEST_MIN_TIME_SECONDS);

printKeyGenResults(publicOps, elapsedTime, "RSA 2048 public", providerName, cipherMode);

Expand All @@ -386,7 +392,7 @@ private static void runRSABenchmark(String providerName, int keySize) throws Exc
cipher.doFinal(encrypted);
privateOps++;
elapsedTime = (System.nanoTime() - startTime) / 1_000_000_000.0;
} while (elapsedTime < RSA_MIN_TIME_SECONDS);
} while (elapsedTime < TEST_MIN_TIME_SECONDS);

printKeyGenResults(privateOps, elapsedTime, "RSA 2048 private", providerName, cipherMode);
}
Expand Down Expand Up @@ -417,7 +423,7 @@ private static void runECCBenchmark(String providerName, String curveName) throw
keyGen.generateKeyPair();
keyGenOps++;
elapsedTime = (System.nanoTime() - startTime) / 1_000_000_000.0;
} while (elapsedTime < RSA_MIN_TIME_SECONDS);
} while (elapsedTime < TEST_MIN_TIME_SECONDS);

String keyGenOp = String.format("ECC %s key gen", curveName);
printKeyGenResults(keyGenOps, elapsedTime, keyGenOp, providerName, "EC");
Expand Down Expand Up @@ -473,6 +479,78 @@ private static void runHmacBenchmark(String algorithm, String providerName) thro
results.add(new BenchmarkResult(providerName, algorithm, throughput));
}

/* Run DH benchmarks for specified provider and key size */
private static void runDHBenchmark(String providerName, int keySize) throws Exception {
/* Variables for benchmark operations */
KeyPairGenerator keyGen;
KeyAgreement keyAgreement;
int keyGenOps;
int agreementOps;
long startTime;
double elapsedTime;
KeyPair keyPair1 = null;
KeyPair keyPair2 = null;

/* Standard DH parameters for 2048-bit key from RFC 3526 */
BigInteger p = new BigInteger(
"FFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD1" +
"29024E088A67CC74020BBEA63B139B22514A08798E3404DD" +
"EF9519B3CD3A431B302B0A6DF25F14374FE1356D6D51C245" +
"E485B576625E7EC6F44C42E9A637ED6B0BFF5CB6F406B7ED" +
"EE386BFB5A899FA5AE9F24117C4B1FE649286651ECE45B3D" +
"C2007CB8A163BF0598DA48361C55D39A69163FA8FD24CF5F" +
"83655D23DCA3AD961C62F356208552BB9ED529077096966D" +
"670C354E4ABC9804F1746C08CA18217C32905E462E36CE3B" +
"E39E772C180E86039B2783A2EC07A28FB5C55DF06F4C52C9" +
"DE2BCBF6955817183995497CEA956AE515D2261898FA0510" +
"15728E5A8AACAA68FFFFFFFFFFFFFFFF", 16);
BigInteger g = BigInteger.valueOf(2);
DHParameterSpec dhParams = new DHParameterSpec(p, g);

/* Get KeyPairGenerator for DH */
keyGen = KeyPairGenerator.getInstance("DH", providerName);

/* Initialize with parameters */
keyGen.initialize(dhParams);

/* Key Generation benchmark */
keyGenOps = 0;
startTime = System.nanoTime();
elapsedTime = 0;

/* Run key generation benchmark */
do {
keyGen.generateKeyPair();
keyGenOps++;
elapsedTime = (System.nanoTime() - startTime) / 1_000_000_000.0;
} while (elapsedTime < TEST_MIN_TIME_SECONDS);

String keyGenOp = String.format("DH %d key gen", keySize);
printKeyGenResults(keyGenOps, elapsedTime, keyGenOp, providerName, DH_ALGORITHM);

/* Generate key pairs for agreement operations */
keyPair1 = keyGen.generateKeyPair();
keyPair2 = keyGen.generateKeyPair();

/* Key Agreement benchmark */
keyAgreement = KeyAgreement.getInstance("DH", providerName);
agreementOps = 0;
startTime = System.nanoTime();
elapsedTime = 0;

/* Run key agreement benchmark */
do {
keyAgreement.init(keyPair1.getPrivate());
keyAgreement.doPhase(keyPair2.getPublic(), true);
keyAgreement.generateSecret();
agreementOps++;
elapsedTime = (System.nanoTime() - startTime) / 1_000_000_000.0;
} while (elapsedTime < TEST_MIN_TIME_SECONDS);

String agreementOp = String.format("DH %d agree", keySize);
printKeyGenResults(agreementOps, elapsedTime, agreementOp, providerName, DH_ALGORITHM);
}

public static void main(String[] args) {
try {
/* Check if Bouncy Castle is available */
Expand Down Expand Up @@ -524,11 +602,8 @@ public static void main(String[] args) {
if (FeatureDetect.Des3Enabled()) {
runEncDecBenchmark("DESede", "CBC", "NoPadding", providerNames[i]);
}

Security.removeProvider(providers[i].getName());
}


/* Run RSA benchmarks */
System.out.println("\n-----------------------------------------------------------------------------");
System.out.println("RSA Benchmark Results");
Expand Down Expand Up @@ -561,7 +636,6 @@ public static void main(String[] args) {
curve, provider.getName(), e.getMessage());
}
}
Security.removeProvider(provider.getName());
}

System.out.println("\n-----------------------------------------------------------------------------");
Expand All @@ -586,8 +660,26 @@ public static void main(String[] args) {
if (FeatureDetect.HmacSha512Enabled()) {
runHmacBenchmark("HmacSHA512", providerNames[i]);
}
}

System.out.println("\n-----------------------------------------------------------------------------");
System.out.println("DH Benchmark Results");
System.out.println("-----------------------------------------------------------------------------");

Security.removeProvider(providers[i].getName());
for (Provider provider : providers) {
if (provider instanceof WolfCryptProvider && !FeatureDetect.DhEnabled()) {
continue;
}
Security.insertProviderAt(provider, 1);
System.out.println("\n" + provider.getName() + ":");
for (int keySize : DH_KEY_SIZES) {
try {
runDHBenchmark(provider.getName(), keySize);
} catch (Exception e) {
System.out.printf("Failed to benchmark DH %d with provider %s: %s%n",
keySize, provider.getName(), e.getMessage());
}
}
}

System.out.println("-----------------------------------------------------------------------------\n");
Expand Down

0 comments on commit 4bf623a

Please sign in to comment.