Fix -pkeyopt and fix error check.

[openssl.git] / apps / speed.c
diff --git a/apps/speed.c b/apps/speed.c

index b4722f1a95b76bf75b22d0ffd66797870d3b451d..97d8e5617f62a772eb65f828b2da17fee21d3da7 100644 (file)
--- a/apps/speed.c
+++ b/apps/speed.c
@@ -94,16 +94,8 @@
  # include <signal.h>
  #endif
  
-#if defined(_WIN32) || defined(__CYGWIN__)
+#if defined(_WIN32)
  # include <windows.h>
-# if defined(__CYGWIN__) && !defined(_WIN32)
-  /*
-   * <windows.h> should define _WIN32, which normally is mutually exclusive
-   * with __CYGWIN__, but if it didn't...
-   */
-#  define _WIN32
-  /* this is done because Cygwin alarm() fails sometimes. */
-# endif
  #endif
  
  #include <openssl/bn.h>
@@ -129,7 +121,6 @@
  # include <openssl/md5.h>
  #endif
  #include <openssl/hmac.h>
-#include <openssl/evp.h>
  #include <openssl/sha.h>
  #ifndef OPENSSL_NO_RMD160
  # include <openssl/ripemd.h>
@@ -168,13 +159,10 @@
  # include "./testdsa.h"
  #endif
  #ifndef OPENSSL_NO_EC
-# include <openssl/ecdsa.h>
-# include <openssl/ecdh.h>
+# include <openssl/ec.h>
  #endif
  #include <openssl/modes.h>
  
-#include <openssl/bn.h>
-
  #ifndef HAVE_FORK
  # if defined(OPENSSL_SYS_VMS) || defined(OPENSSL_SYS_WINDOWS) || defined(OPENSSL_SYS_OS2) || defined(OPENSSL_SYS_NETWARE)
  #  define HAVE_FORK 0
@@ -213,8 +201,8 @@ static int do_multi(int multi);
  #define RSA_NUM         7
  #define DSA_NUM         3
  
-#define EC_NUM       16
-#define MAX_ECDH_SIZE 256
+#define EC_NUM          17
+#define MAX_ECDH_SIZE   256
  #define MISALIGN        64
  
  static const char *names[ALGOR_NUM] = {
@@ -297,9 +285,9 @@ static double Time_F(int s)
          schlock = 0;
          thr = CreateThread(NULL, 4096, sleepy, NULL, 0, NULL);
          if (thr == NULL) {
-            DWORD ret = GetLastError();
-            BIO_printf(bio_err, "unable to CreateThread (%d)", ret);
-            ExitProcess(ret);
+            DWORD err = GetLastError();
+            BIO_printf(bio_err, "unable to CreateThread (%lu)", err);
+            ExitProcess(err);
          }
          while (!schlock)
              Sleep(0);           /* scheduler spinlock */
@@ -405,7 +393,7 @@ OPTIONS speed_options[] = {
  #define D_IGE_192_AES   27
  #define D_IGE_256_AES   28
  #define D_GHASH         29
-OPT_PAIR doit_choices[] = {
+static OPT_PAIR doit_choices[] = {
  #ifndef OPENSSL_NO_MD2
      {"md2", D_MD2},
  #endif
@@ -521,7 +509,8 @@ static OPT_PAIR rsa_choices[] = {
  #define R_EC_B283    13
  #define R_EC_B409    14
  #define R_EC_B571    15
-#ifndef OPENSSL_NO_ECA
+#define R_EC_X25519  16
+#ifndef OPENSSL_NO_EC
  static OPT_PAIR ecdsa_choices[] = {
      {"ecdsap160", R_EC_P160},
      {"ecdsap192", R_EC_P192},
@@ -558,6 +547,7 @@ static OPT_PAIR ecdh_choices[] = {
      {"ecdhb283", R_EC_B283},
      {"ecdhb409", R_EC_B409},
      {"ecdhb571", R_EC_B571},
+    {"ecdhx25519", R_EC_X25519},
      {NULL}
  };
  #endif
@@ -575,7 +565,6 @@ int speed_main(int argc, char **argv)
      long c[ALGOR_NUM][SIZE_NUM], count = 0, save_count = 0;
      unsigned char *buf_malloc = NULL, *buf2_malloc = NULL;
      unsigned char *buf = NULL, *buf2 = NULL;
-    unsigned char *save_buf = NULL, *save_buf2 = NULL;
      unsigned char md[EVP_MAX_MD_SIZE];
  #ifndef NO_FORK
      int multi = 0;
@@ -718,7 +707,9 @@ int speed_main(int argc, char **argv)
          NID_sect163k1, NID_sect233k1, NID_sect283k1,
          NID_sect409k1, NID_sect571k1, NID_sect163r2,
          NID_sect233r1, NID_sect283r1, NID_sect409r1,
-        NID_sect571r1
+        NID_sect571r1,
+        /* Other */
+        NID_X25519
      };
      static const char *test_curves_names[EC_NUM] = {
          /* Prime Curves */
@@ -728,7 +719,9 @@ int speed_main(int argc, char **argv)
          "nistk163", "nistk233", "nistk283",
          "nistk409", "nistk571", "nistb163",
          "nistb233", "nistb283", "nistb409",
-        "nistb571"
+        "nistb571",
+        /* Other */
+        "X25519"
      };
      static int test_curves_bits[EC_NUM] = {
          160, 192, 224,
@@ -736,7 +729,7 @@ int speed_main(int argc, char **argv)
          163, 233, 283,
          409, 571, 163,
          233, 283, 409,
-        571
+        571, 253 /* X25519 */
      };
  #endif
  #ifndef OPENSSL_NO_EC
@@ -851,9 +844,6 @@ int speed_main(int argc, char **argv)
      argc = opt_num_rest();
      argv = opt_rest();
  
-    if (!app_load_modules(NULL))
-        goto end;
-
      /* Remaining arguments are algorithms. */
      for ( ; *argv; argv++) {
          if (found(*argv, doit_choices, &i)) {
@@ -873,7 +863,7 @@ int speed_main(int argc, char **argv)
  #ifndef OPENSSL_NO_RSA
  # ifndef RSA_NULL
          if (strcmp(*argv, "openssl") == 0) {
-            RSA_set_default_method(RSA_PKCS1_SSLeay());
+            RSA_set_default_method(RSA_PKCS1_OpenSSL());
              continue;
          }
  # endif
@@ -1087,6 +1077,7 @@ int speed_main(int argc, char **argv)
          c[D_SHA256][i] = c[D_SHA256][0] * 4 * l0 / l1;
          c[D_SHA512][i] = c[D_SHA512][0] * 4 * l0 / l1;
          c[D_WHIRLPOOL][i] = c[D_WHIRLPOOL][0] * 4 * l0 / l1;
+        c[D_GHASH][i] = c[D_GHASH][0] * 4 * l0 / l1;
  
          l0 = (long)lengths[i - 1];
  
@@ -1302,24 +1293,28 @@ int speed_main(int argc, char **argv)
  
  #if !defined(OPENSSL_NO_MD5)
      if (doit[D_HMAC]) {
-        HMAC_CTX hctx;
+        HMAC_CTX *hctx = NULL;
  
-        HMAC_CTX_init(&hctx);
-        HMAC_Init_ex(&hctx, (unsigned char *)"This is a key...",
+        hctx = HMAC_CTX_new();
+        if (hctx == NULL) {
+            BIO_printf(bio_err, "HMAC malloc failure, exiting...");
+            exit(1);
+        }
+        HMAC_Init_ex(hctx, (unsigned char *)"This is a key...",
                       16, EVP_md5(), NULL);
  
          for (j = 0; j < SIZE_NUM; j++) {
              print_message(names[D_HMAC], c[D_HMAC][j], lengths[j]);
              Time_F(START);
              for (count = 0, run = 1; COND(c[D_HMAC][j]); count++) {
-                HMAC_Init_ex(&hctx, NULL, 0, NULL, NULL);
-                HMAC_Update(&hctx, buf, lengths[j]);
-                HMAC_Final(&hctx, &(hmac[0]), NULL);
+                HMAC_Init_ex(hctx, NULL, 0, NULL, NULL);
+                HMAC_Update(hctx, buf, lengths[j]);
+                HMAC_Final(hctx, &(hmac[0]), NULL);
              }
              d = Time_F(STOP);
              print_result(D_HMAC, j, count, d);
          }
-        HMAC_CTX_cleanup(&hctx);
+        HMAC_CTX_free(hctx);
      }
  #endif
      if (doit[D_SHA1]) {
@@ -1645,7 +1640,7 @@ int speed_main(int argc, char **argv)
                  (EVP_CIPHER_flags(evp_cipher) &
                   EVP_CIPH_FLAG_TLS1_1_MULTIBLOCK)) {
                  BIO_printf(bio_err, "%s is not multi-block capable\n",
-                        OBJ_nid2ln(evp_cipher->nid));
+                           OBJ_nid2ln(EVP_CIPHER_nid(evp_cipher)));
                  goto end;
              }
              multiblock_speed(evp_cipher);
@@ -1655,43 +1650,43 @@ int speed_main(int argc, char **argv)
  #endif
          for (j = 0; j < SIZE_NUM; j++) {
              if (evp_cipher) {
-                EVP_CIPHER_CTX ctx;
+                EVP_CIPHER_CTX *ctx;
                  int outl;
  
-                names[D_EVP] = OBJ_nid2ln(evp_cipher->nid);
+                names[D_EVP] = OBJ_nid2ln(EVP_CIPHER_nid(evp_cipher));
                  /*
                   * -O3 -fschedule-insns messes up an optimization here!
                   * names[D_EVP] somehow becomes NULL
                   */
                  print_message(names[D_EVP], save_count, lengths[j]);
  
-                EVP_CIPHER_CTX_init(&ctx);
+                ctx = EVP_CIPHER_CTX_new();
                  if (decrypt)
-                    EVP_DecryptInit_ex(&ctx, evp_cipher, NULL, key16, iv);
+                    EVP_DecryptInit_ex(ctx, evp_cipher, NULL, key16, iv);
                  else
-                    EVP_EncryptInit_ex(&ctx, evp_cipher, NULL, key16, iv);
-                EVP_CIPHER_CTX_set_padding(&ctx, 0);
+                    EVP_EncryptInit_ex(ctx, evp_cipher, NULL, key16, iv);
+                EVP_CIPHER_CTX_set_padding(ctx, 0);
  
                  Time_F(START);
                  if (decrypt)
                      for (count = 0, run = 1;
                           COND(save_count * 4 * lengths[0] / lengths[j]);
                           count++)
-                        EVP_DecryptUpdate(&ctx, buf, &outl, buf, lengths[j]);
+                        EVP_DecryptUpdate(ctx, buf, &outl, buf, lengths[j]);
                  else
                      for (count = 0, run = 1;
                           COND(save_count * 4 * lengths[0] / lengths[j]);
                           count++)
-                        EVP_EncryptUpdate(&ctx, buf, &outl, buf, lengths[j]);
+                        EVP_EncryptUpdate(ctx, buf, &outl, buf, lengths[j]);
                  if (decrypt)
-                    EVP_DecryptFinal_ex(&ctx, buf, &outl);
+                    EVP_DecryptFinal_ex(ctx, buf, &outl);
                  else
-                    EVP_EncryptFinal_ex(&ctx, buf, &outl);
+                    EVP_EncryptFinal_ex(ctx, buf, &outl);
                  d = Time_F(STOP);
-                EVP_CIPHER_CTX_cleanup(&ctx);
+                EVP_CIPHER_CTX_free(ctx);
              }
              if (evp_md) {
-                names[D_EVP] = OBJ_nid2ln(evp_md->type);
+                names[D_EVP] = OBJ_nid2ln(EVP_MD_type(evp_md));
                  print_message(names[D_EVP], save_count, lengths[j]);
  
                  Time_F(START);
@@ -1792,7 +1787,7 @@ int speed_main(int argc, char **argv)
  
          /* DSA_generate_key(dsa_key[j]); */
          /* DSA_sign_setup(dsa_key[j],NULL); */
-        st = DSA_sign(EVP_PKEY_DSA, buf, 20, buf2, &kk, dsa_key[j]);
+        st = DSA_sign(0, buf, 20, buf2, &kk, dsa_key[j]);
          if (st == 0) {
              BIO_printf(bio_err,
                         "DSA sign failure.  No DSA sign will be done.\n");
@@ -1803,7 +1798,7 @@ int speed_main(int argc, char **argv)
                                 dsa_c[j][0], dsa_bits[j], DSA_SECONDS);
              Time_F(START);
              for (count = 0, run = 1; COND(dsa_c[j][0]); count++) {
-                st = DSA_sign(EVP_PKEY_DSA, buf, 20, buf2, &kk, dsa_key[j]);
+                st = DSA_sign(0, buf, 20, buf2, &kk, dsa_key[j]);
                  if (st == 0) {
                      BIO_printf(bio_err, "DSA sign failure\n");
                      ERR_print_errors(bio_err);
@@ -1820,7 +1815,7 @@ int speed_main(int argc, char **argv)
              rsa_count = count;
          }
  
-        st = DSA_verify(EVP_PKEY_DSA, buf, 20, buf2, kk, dsa_key[j]);
+        st = DSA_verify(0, buf, 20, buf2, kk, dsa_key[j]);
          if (st <= 0) {
              BIO_printf(bio_err,
                         "DSA verify failure.  No DSA verify will be done.\n");
@@ -1831,7 +1826,7 @@ int speed_main(int argc, char **argv)
                                 dsa_c[j][1], dsa_bits[j], DSA_SECONDS);
              Time_F(START);
              for (count = 0, run = 1; COND(dsa_c[j][1]); count++) {
-                st = DSA_verify(EVP_PKEY_DSA, buf, 20, buf2, kk, dsa_key[j]);
+                st = DSA_verify(0, buf, 20, buf2, kk, dsa_key[j]);
                  if (st <= 0) {
                      BIO_printf(bio_err, "DSA verify failure\n");
                      ERR_print_errors(bio_err);
@@ -2045,8 +2040,8 @@ int speed_main(int argc, char **argv)
   show_res:
  #endif
      if (!mr) {
-        printf("%s\n", SSLeay_version(SSLEAY_VERSION));
-        printf("%s\n", SSLeay_version(SSLEAY_BUILT_ON));
+        printf("%s\n", OpenSSL_version(OPENSSL_VERSION));
+        printf("%s\n", OpenSSL_version(OPENSSL_BUILT_ON));
          printf("options:");
          printf("%s ", BN_options());
  #ifndef OPENSSL_NO_MD2
@@ -2067,7 +2062,7 @@ int speed_main(int argc, char **argv)
  #ifndef OPENSSL_NO_BF
          printf("%s ", BF_options());
  #endif
-        printf("\n%s\n", SSLeay_version(SSLEAY_CFLAGS));
+        printf("\n%s\n", OpenSSL_version(OPENSSL_CFLAGS));
      }
  
      if (pr_header) {
@@ -2183,8 +2178,8 @@ int speed_main(int argc, char **argv)
  
   end:
      ERR_print_errors(bio_err);
-    OPENSSL_free(save_buf);
-    OPENSSL_free(save_buf2);
+    OPENSSL_free(buf_malloc);
+    OPENSSL_free(buf2_malloc);
  #ifndef OPENSSL_NO_RSA
      for (i = 0; i < RSA_NUM; i++)
          RSA_free(rsa_key[i]);
@@ -2201,7 +2196,6 @@ int speed_main(int argc, char **argv)
          EC_KEY_free(ecdh_b[i]);
      }
  #endif
-
      return (ret);
  }
  
@@ -2440,16 +2434,16 @@ static void multiblock_speed(const EVP_CIPHER *evp_cipher)
      int j, count, num = OSSL_NELEM(lengths);
      const char *alg_name;
      unsigned char *inp, *out, no_key[32], no_iv[16];
-    EVP_CIPHER_CTX ctx;
+    EVP_CIPHER_CTX *ctx;
      double d = 0.0;
  
      inp = app_malloc(mblengths[num - 1], "multiblock input buffer");
      out = app_malloc(mblengths[num - 1] + 1024, "multiblock output buffer");
-    EVP_CIPHER_CTX_init(&ctx);
-    EVP_EncryptInit_ex(&ctx, evp_cipher, NULL, no_key, no_iv);
-    EVP_CIPHER_CTX_ctrl(&ctx, EVP_CTRL_AEAD_SET_MAC_KEY, sizeof(no_key),
+    ctx = EVP_CIPHER_CTX_new();
+    EVP_EncryptInit_ex(ctx, evp_cipher, NULL, no_key, no_iv);
+    EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_MAC_KEY, sizeof(no_key),
                          no_key);
-    alg_name = OBJ_nid2ln(evp_cipher->nid);
+    alg_name = OBJ_nid2ln(EVP_CIPHER_nid(evp_cipher));
  
      for (j = 0; j < num; j++) {
          print_message(alg_name, 0, mblengths[j]);
@@ -2471,16 +2465,14 @@ static void multiblock_speed(const EVP_CIPHER *evp_cipher)
              mb_param.len = len;
              mb_param.interleave = 8;
  
-            packlen = EVP_CIPHER_CTX_ctrl(&ctx,
-                                          EVP_CTRL_TLS1_1_MULTIBLOCK_AAD,
+            packlen = EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_TLS1_1_MULTIBLOCK_AAD,
                                            sizeof(mb_param), &mb_param);
  
              if (packlen > 0) {
                  mb_param.out = out;
                  mb_param.inp = inp;
                  mb_param.len = len;
-                EVP_CIPHER_CTX_ctrl(&ctx,
-                                    EVP_CTRL_TLS1_1_MULTIBLOCK_ENCRYPT,
+                EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_TLS1_1_MULTIBLOCK_ENCRYPT,
                                      sizeof(mb_param), &mb_param);
              } else {
                  int pad;
@@ -2489,10 +2481,9 @@ static void multiblock_speed(const EVP_CIPHER *evp_cipher)
                  len += 16;
                  aad[11] = len >> 8;
                  aad[12] = len;
-                pad = EVP_CIPHER_CTX_ctrl(&ctx,
-                                          EVP_CTRL_AEAD_TLS1_AAD,
+                pad = EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_TLS1_AAD,
                                            EVP_AEAD_TLS1_AAD_LEN, aad);
-                EVP_Cipher(&ctx, out, inp, len + pad);
+                EVP_Cipher(ctx, out, inp, len + pad);
              }
          }
          d = Time_F(STOP);
@@ -2530,4 +2521,5 @@ static void multiblock_speed(const EVP_CIPHER *evp_cipher)
  
      OPENSSL_free(inp);
      OPENSSL_free(out);
+    EVP_CIPHER_CTX_free(ctx);
  }