bitcoin/doxygen/bench_2chacha__poly__aead_8cpp_source.html

 // Copyright (c) 2019-2022 The Bitcoin Core developers

 // Distributed under the MIT software license, see the accompanying

 // file COPYING or http://www.opensource.org/licenses/mit-license.php.


 #include <bench/bench.h>

 #include <crypto/chacha_poly_aead.h>

 #include <crypto/poly1305.h> // for the POLY1305_TAGLEN constant

 #include <hash.h>


 #include <assert.h>

 #include <limits>


 /* Number of bytes to process per iteration */

 static constexpr uint64_t BUFFER_SIZE_TINY = 64;

 static constexpr uint64_t BUFFER_SIZE_SMALL = 256;

 static constexpr uint64_t BUFFER_SIZE_LARGE = 1024 * 1024;


 static const unsigned char k1[32] = {0};

 static const unsigned char k2[32] = {0};


 static ChaCha20Poly1305AEAD aead(k1, 32, k2, 32);


 static void CHACHA20_POLY1305_AEAD(benchmark::Bench& bench, size_t buffersize, bool include_decryption)

 {

     std::vector<unsigned char> in(buffersize + CHACHA20_POLY1305_AEAD_AAD_LEN + Poly1305::TAGLEN, 0);

     std::vector<unsigned char> out(buffersize + CHACHA20_POLY1305_AEAD_AAD_LEN + Poly1305::TAGLEN, 0);

     uint64_t seqnr_payload = 0;

     uint64_t seqnr_aad = 0;

     int aad_pos = 0;

     uint32_t len = 0;

     bench.batch(buffersize).unit("byte").run([&] {

         // encrypt or decrypt the buffer with a static key

         const bool crypt_ok_1 = aead.Crypt(seqnr_payload, seqnr_aad, aad_pos, out.data(), out.size(), in.data(), buffersize, true);

         assert(crypt_ok_1);


         if (include_decryption) {

             // if we decrypt, include the GetLength

             const bool get_length_ok = aead.GetLength(&len, seqnr_aad, aad_pos, in.data());

             assert(get_length_ok);

             const bool crypt_ok_2 = aead.Crypt(seqnr_payload, seqnr_aad, aad_pos, out.data(), out.size(), in.data(), buffersize, true);

             assert(crypt_ok_2);

         }


         // increase main sequence number

         seqnr_payload++;

         // increase aad position (position in AAD keystream)

         aad_pos += CHACHA20_POLY1305_AEAD_AAD_LEN;

         if (aad_pos + CHACHA20_POLY1305_AEAD_AAD_LEN > CHACHA20_ROUND_OUTPUT) {

             aad_pos = 0;

             seqnr_aad++;

         }

         if (seqnr_payload + 1 == std::numeric_limits<uint64_t>::max()) {

             // reuse of nonce+key is okay while benchmarking.

             seqnr_payload = 0;

             seqnr_aad = 0;

             aad_pos = 0;

         }

     });

 }


 static void CHACHA20_POLY1305_AEAD_64BYTES_ONLY_ENCRYPT(benchmark::Bench& bench)

 {

     CHACHA20_POLY1305_AEAD(bench, BUFFER_SIZE_TINY, false);

 }


 static void CHACHA20_POLY1305_AEAD_256BYTES_ONLY_ENCRYPT(benchmark::Bench& bench)

 {

     CHACHA20_POLY1305_AEAD(bench, BUFFER_SIZE_SMALL, false);

 }


 static void CHACHA20_POLY1305_AEAD_1MB_ONLY_ENCRYPT(benchmark::Bench& bench)

 {

     CHACHA20_POLY1305_AEAD(bench, BUFFER_SIZE_LARGE, false);

 }


 static void CHACHA20_POLY1305_AEAD_64BYTES_ENCRYPT_DECRYPT(benchmark::Bench& bench)

 {

     CHACHA20_POLY1305_AEAD(bench, BUFFER_SIZE_TINY, true);

 }


 static void CHACHA20_POLY1305_AEAD_256BYTES_ENCRYPT_DECRYPT(benchmark::Bench& bench)

 {

     CHACHA20_POLY1305_AEAD(bench, BUFFER_SIZE_SMALL, true);

 }


 static void CHACHA20_POLY1305_AEAD_1MB_ENCRYPT_DECRYPT(benchmark::Bench& bench)

 {

     CHACHA20_POLY1305_AEAD(bench, BUFFER_SIZE_LARGE, true);

 }


 // Add Hash() (dbl-sha256) bench for comparison


 static void HASH(benchmark::Bench& bench, size_t buffersize)

 {

     uint8_t hash[CHash256::OUTPUT_SIZE];

     std::vector<uint8_t> in(buffersize,0);

     bench.batch(in.size()).unit("byte").run([&] {

         CHash256().Write(in).Finalize(hash);

     });

 }


 static void HASH_64BYTES(benchmark::Bench& bench)

 {

     HASH(bench, BUFFER_SIZE_TINY);

 }


 static void HASH_256BYTES(benchmark::Bench& bench)

 {

     HASH(bench, BUFFER_SIZE_SMALL);

 }


 static void HASH_1MB(benchmark::Bench& bench)

 {

     HASH(bench, BUFFER_SIZE_LARGE);

 }


 BENCHMARK(CHACHA20_POLY1305_AEAD_64BYTES_ONLY_ENCRYPT, benchmark::PriorityLevel::HIGH);

 BENCHMARK(CHACHA20_POLY1305_AEAD_256BYTES_ONLY_ENCRYPT, benchmark::PriorityLevel::HIGH);

 BENCHMARK(CHACHA20_POLY1305_AEAD_1MB_ONLY_ENCRYPT, benchmark::PriorityLevel::HIGH);

 BENCHMARK(CHACHA20_POLY1305_AEAD_64BYTES_ENCRYPT_DECRYPT, benchmark::PriorityLevel::HIGH);

 BENCHMARK(CHACHA20_POLY1305_AEAD_256BYTES_ENCRYPT_DECRYPT, benchmark::PriorityLevel::HIGH);

 BENCHMARK(CHACHA20_POLY1305_AEAD_1MB_ENCRYPT_DECRYPT, benchmark::PriorityLevel::HIGH);

 BENCHMARK(HASH_64BYTES, benchmark::PriorityLevel::HIGH);

 BENCHMARK(HASH_256BYTES, benchmark::PriorityLevel::HIGH);

 BENCHMARK(HASH_1MB, benchmark::PriorityLevel::HIGH);

bench.h

CHACHA20_POLY1305_AEAD_256BYTES_ENCRYPT_DECRYPT
static void CHACHA20_POLY1305_AEAD_256BYTES_ENCRYPT_DECRYPT(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:82

BUFFER_SIZE_LARGE
static constexpr uint64_t BUFFER_SIZE_LARGE
Definition: chacha_poly_aead.cpp:17

BENCHMARK
BENCHMARK(CHACHA20_POLY1305_AEAD_64BYTES_ONLY_ENCRYPT, benchmark::PriorityLevel::HIGH)

HASH_1MB
static void HASH_1MB(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:113

CHACHA20_POLY1305_AEAD_1MB_ENCRYPT_DECRYPT
static void CHACHA20_POLY1305_AEAD_1MB_ENCRYPT_DECRYPT(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:87

CHACHA20_POLY1305_AEAD_256BYTES_ONLY_ENCRYPT
static void CHACHA20_POLY1305_AEAD_256BYTES_ONLY_ENCRYPT(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:67

CHACHA20_POLY1305_AEAD_64BYTES_ENCRYPT_DECRYPT
static void CHACHA20_POLY1305_AEAD_64BYTES_ENCRYPT_DECRYPT(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:77

HASH_256BYTES
static void HASH_256BYTES(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:108

BUFFER_SIZE_TINY
static constexpr uint64_t BUFFER_SIZE_TINY
Definition: chacha_poly_aead.cpp:15

BUFFER_SIZE_SMALL
static constexpr uint64_t BUFFER_SIZE_SMALL
Definition: chacha_poly_aead.cpp:16

k1
static const unsigned char k1[32]
Definition: chacha_poly_aead.cpp:19

CHACHA20_POLY1305_AEAD
static void CHACHA20_POLY1305_AEAD(benchmark::Bench &bench, size_t buffersize, bool include_decryption)
Definition: chacha_poly_aead.cpp:24

aead
static ChaCha20Poly1305AEAD aead(k1, 32, k2, 32)

CHACHA20_POLY1305_AEAD_64BYTES_ONLY_ENCRYPT
static void CHACHA20_POLY1305_AEAD_64BYTES_ONLY_ENCRYPT(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:62

HASH
static void HASH(benchmark::Bench &bench, size_t buffersize)
Definition: chacha_poly_aead.cpp:94

CHACHA20_POLY1305_AEAD_1MB_ONLY_ENCRYPT
static void CHACHA20_POLY1305_AEAD_1MB_ONLY_ENCRYPT(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:72

k2
static const unsigned char k2[32]
Definition: chacha_poly_aead.cpp:20

HASH_64BYTES
static void HASH_64BYTES(benchmark::Bench &bench)
Definition: chacha_poly_aead.cpp:103

chacha_poly_aead.h

CHACHA20_POLY1305_AEAD_AAD_LEN
static constexpr int CHACHA20_POLY1305_AEAD_AAD_LEN
Definition: chacha_poly_aead.h:13

CHACHA20_ROUND_OUTPUT
static constexpr int CHACHA20_ROUND_OUTPUT
Definition: chacha_poly_aead.h:14

CHash256
A hasher class for Bitcoin's 256-bit hash (double SHA-256).
Definition: hash.h:25

CHash256::Write
CHash256 & Write(Span< const unsigned char > input)
Definition: hash.h:38

CHash256::Finalize
void Finalize(Span< unsigned char > output)
Definition: hash.h:31

CHash256::OUTPUT_SIZE
static const size_t OUTPUT_SIZE
Definition: hash.h:29

ChaCha20Poly1305AEAD
Definition: chacha_poly_aead.h:118

ChaCha20Poly1305AEAD::Crypt
bool Crypt(uint64_t seqnr_payload, uint64_t seqnr_aad, int aad_pos, unsigned char *dest, size_t dest_len, const unsigned char *src, size_t src_len, bool is_encrypt)
Encrypts/decrypts a packet seqnr_payload, the message sequence number seqnr_aad, the messages AAD seq...
Definition: chacha_poly_aead.cpp:48

ChaCha20Poly1305AEAD::GetLength
bool GetLength(uint32_t *len24_out, uint64_t seqnr_aad, int aad_pos, const uint8_t *ciphertext)
decrypts the 3 bytes AAD data and decodes it into a uint32_t field
Definition: chacha_poly_aead.cpp:114

Poly1305::TAGLEN
static constexpr unsigned TAGLEN
Length of the output produced by Finalize().
Definition: poly1305.h:43

ankerl::nanobench::Bench
Main entry point to nanobench's benchmarking facility.
Definition: nanobench.h:623

ankerl::nanobench::Bench::run
Bench & run(char const *benchmarkName, Op &&op)
Repeatedly calls op() based on the configuration, and performs measurements.
Definition: nanobench.h:1230

ankerl::nanobench::Bench::batch
Bench & batch(T b) noexcept
Sets the batch size.
Definition: nanobench.h:1254

ankerl::nanobench::Bench::unit
Bench & unit(char const *unit)
Sets the operation unit.

benchmark::HIGH
@ HIGH
Definition: bench.h:47

tests_wycheproof_generate.out
string out
Definition: tests_wycheproof_generate.py:28

poly1305.h

assert
assert(!tx.IsCoinBase())