add -rmd option to set OCSP response signing digest

[openssl.git] / apps / speed.c
diff --git a/apps/speed.c b/apps/speed.c

index 444a0e6361964e3aa47cc6cb71c7dcd88f9db0bd..92324186f42916121dc1e49aa1cbadf45e00462c 100644 (file)
--- a/apps/speed.c
+++ b/apps/speed.c
@@ -108,8 +108,14 @@
  #include <signal.h>
  #endif
  
-#ifdef _WIN32
+#if defined(_WIN32) || defined(__CYGWIN__)
  #include <windows.h>
+# if defined(__CYGWIN__) && !defined(_WIN32)
+  /* <windows.h> should define _WIN32, which normally is mutually
+   * exclusive with __CYGWIN__, but if it didn't... */
+#  define _WIN32
+  /* this is done because Cygwin alarm() fails sometimes. */
+# endif
  #endif
  
  #include <openssl/bn.h>
@@ -183,14 +189,21 @@
  #ifndef OPENSSL_NO_ECDH
  #include <openssl/ecdh.h>
  #endif
+#include <openssl/modes.h>
  
-#if defined(OPENSSL_SYS_VMS) || defined(OPENSSL_SYS_WINDOWS) || defined(OPENSSL_SYS_MACINTOSH_CLASSIC) || defined(OPENSSL_SYS_OS2) || defined(OPENSSL_SYS_NETWARE)
-# define NO_FORK 1
-#elif HAVE_FORK
-# undef NO_FORK
+#ifndef HAVE_FORK
+# if defined(OPENSSL_SYS_VMS) || defined(OPENSSL_SYS_WINDOWS) || defined(OPENSSL_SYS_MACINTOSH_CLASSIC) || defined(OPENSSL_SYS_OS2) || defined(OPENSSL_SYS_NETWARE)
+#  define HAVE_FORK 0
+# else
+#  define HAVE_FORK 1
+# endif
+#endif
+
+#if HAVE_FORK
+#undef NO_FORK
  #else
-# define NO_FORK 1
-#endef
+#define NO_FORK
+#endif
  
  #undef BUFSIZE
  #define BUFSIZE        ((long)1024*8+1)
@@ -208,7 +221,7 @@ static void print_result(int alg,int run_no,int count,double time_used);
  static int do_multi(int multi);
  #endif
  
-#define ALGOR_NUM      29
+#define ALGOR_NUM      30
  #define SIZE_NUM       5
  #define RSA_NUM                4
  #define DSA_NUM                3
@@ -223,11 +236,15 @@ static const char *names[ALGOR_NUM]={
    "aes-128 cbc","aes-192 cbc","aes-256 cbc",
    "camellia-128 cbc","camellia-192 cbc","camellia-256 cbc",
    "evp","sha256","sha512","whirlpool",
-  "aes-128 ige","aes-192 ige","aes-256 ige"};
+  "aes-128 ige","aes-192 ige","aes-256 ige","ghash" };
  static double results[ALGOR_NUM][SIZE_NUM];
  static int lengths[SIZE_NUM]={16,64,256,1024,8*1024};
+#ifndef OPENSSL_NO_RSA
  static double rsa_results[RSA_NUM][2];
+#endif
+#ifndef OPENSSL_NO_DSA
  static double dsa_results[DSA_NUM][2];
+#endif
  #ifndef OPENSSL_NO_ECDSA
  static double ecdsa_results[EC_NUM][2];
  #endif
@@ -263,9 +280,12 @@ static SIGRETTYPE sig_done(int sig)
  
  #if defined(_WIN32)
  
-#define SIGALRM
+#if !defined(SIGALRM)
+# define SIGALRM
+#endif
  static unsigned int lapse,schlock;
-static void alarm(unsigned int secs) { lapse = secs*1000; }
+static void alarm_win32(unsigned int secs) { lapse = secs*1000; }
+#define alarm alarm_win32
  
  static DWORD WINAPI sleepy(VOID *arg)
         {
@@ -277,9 +297,11 @@ static DWORD WINAPI sleepy(VOID *arg)
  
  static double Time_F(int s)
         {
+       double ret;
+       static HANDLE thr;
+
         if (s == START)
                 {
-               HANDLE  thr;
                 schlock = 0;
                 thr = CreateThread(NULL,4096,sleepy,NULL,0,NULL);
                 if (thr==NULL)
@@ -288,17 +310,25 @@ static double Time_F(int s)
                         BIO_printf(bio_err,"unable to CreateThread (%d)",ret);
                         ExitProcess(ret);
                         }
-               CloseHandle(thr);               /* detach the thread    */
                 while (!schlock) Sleep(0);      /* scheduler spinlock   */
+               ret = app_tminterval(s,usertime);
+               }
+       else
+               {
+               ret = app_tminterval(s,usertime);
+               if (run) TerminateThread(thr,0);
+               CloseHandle(thr);
                 }
  
-       return app_tminterval(s,usertime);
+       return ret;
         }
  #else
  
  static double Time_F(int s)
         {
-       return app_tminterval(s,usertime);
+       double ret = app_tminterval(s,usertime);
+       if (s == STOP) alarm(0);
+       return ret;
         }
  #endif
  
@@ -324,9 +354,6 @@ int MAIN(int, char **);
  
  int MAIN(int argc, char **argv)
         {
-#ifndef OPENSSL_NO_ENGINE
-       ENGINE *e = NULL;
-#endif
         unsigned char *buf=NULL,*buf2=NULL;
         int mret=1;
         long count=0,save_count=0;
@@ -420,7 +447,6 @@ int MAIN(int argc, char **argv)
         unsigned char DES_iv[8];
         unsigned char iv[2*MAX_BLOCK_SIZE/8];
  #ifndef OPENSSL_NO_DES
-       DES_cblock *buf_as_des_cblock = NULL;
         static DES_cblock key ={0x12,0x34,0x56,0x78,0x9a,0xbc,0xde,0xf0};
         static DES_cblock key2={0x34,0x56,0x78,0x9a,0xbc,0xde,0xf0,0x12};
         static DES_cblock key3={0x56,0x78,0x9a,0xbc,0xde,0xf0,0x12,0x34};
@@ -463,6 +489,7 @@ int MAIN(int argc, char **argv)
  #define D_IGE_128_AES   26
  #define D_IGE_192_AES   27
  #define D_IGE_256_AES   28
+#define D_GHASH                29
         double d=0.0;
         long c[ALGOR_NUM][SIZE_NUM];
  #define        R_DSA_512       0
@@ -634,9 +661,6 @@ int MAIN(int argc, char **argv)
                 BIO_printf(bio_err,"out of memory\n");
                 goto end;
                 }
-#ifndef OPENSSL_NO_DES
-       buf_as_des_cblock = (DES_cblock *)buf;
-#endif
         if ((buf2=(unsigned char *)OPENSSL_malloc((int)BUFSIZE)) == NULL)
                 {
                 BIO_printf(bio_err,"out of memory\n");
@@ -711,7 +735,7 @@ int MAIN(int argc, char **argv)
                                 BIO_printf(bio_err,"no engine given\n");
                                 goto end;
                                 }
-                        e = setup_engine(bio_err, *argv, 0);
+                        setup_engine(bio_err, *argv, 0);
                         /* j will be increased again further down.  We just
                            don't want speed to confuse an engine with an
                            algorithm, especially when none is given (which
@@ -891,6 +915,10 @@ int MAIN(int argc, char **argv)
                         doit[D_CBC_192_AES]=1;
                         doit[D_CBC_256_AES]=1;
                         }
+               else if (strcmp(*argv,"ghash") == 0)
+                       {
+                       doit[D_GHASH]=1;
+                       }
                 else
  #endif
  #ifndef OPENSSL_NO_CAMELLIA
@@ -1227,7 +1255,8 @@ int MAIN(int argc, char **argv)
                 count*=2;
                 Time_F(START);
                 for (it=count; it; it--)
-                       DES_ecb_encrypt(buf_as_des_cblock,buf_as_des_cblock,
+                       DES_ecb_encrypt((DES_cblock *)buf,
+                               (DES_cblock *)buf,
                                 &sch,DES_ENCRYPT);
                 d=Time_F(STOP);
                 } while (d <3);
@@ -1260,6 +1289,7 @@ int MAIN(int argc, char **argv)
         c[D_IGE_128_AES][0]=count;
         c[D_IGE_192_AES][0]=count;
         c[D_IGE_256_AES][0]=count;
+       c[D_GHASH][0]=count;
  
         for (i=1; i<SIZE_NUM; i++)
                 {
@@ -1454,7 +1484,7 @@ int MAIN(int argc, char **argv)
  # error "You cannot disable DES on systems without SIGALRM."
  #endif /* OPENSSL_NO_DES */
  #else
-#define COND(c)        (run)
+#define COND(c)        (run && count<0x7fffffff)
  #define COUNT(d) (count)
  #ifndef _WIN32
         signal(SIGALRM,sig_done);
@@ -1513,7 +1543,7 @@ int MAIN(int argc, char **argv)
                         print_message(names[D_MD5],c[D_MD5][j],lengths[j]);
                         Time_F(START);
                         for (count=0,run=1; COND(c[D_MD5][j]); count++)
-                               EVP_Digest(&(buf[0]),(unsigned long)lengths[j],&(md5[0]),NULL,EVP_get_digestbyname("md5"),NULL);
+                               MD5(buf,lengths[j],md5);
                         d=Time_F(STOP);
                         print_result(D_MD5,j,count,d);
                         }
@@ -1553,7 +1583,11 @@ int MAIN(int argc, char **argv)
                         print_message(names[D_SHA1],c[D_SHA1][j],lengths[j]);
                         Time_F(START);
                         for (count=0,run=1; COND(c[D_SHA1][j]); count++)
+#if 0
                                 EVP_Digest(buf,(unsigned long)lengths[j],&(sha[0]),NULL,EVP_sha1(),NULL);
+#else
+                               SHA1(buf,lengths[j],sha);
+#endif
                         d=Time_F(STOP);
                         print_result(D_SHA1,j,count,d);
                         }
@@ -1750,7 +1784,22 @@ int MAIN(int argc, char **argv)
                         print_result(D_IGE_256_AES,j,count,d);
                         }
                 }
+       if (doit[D_GHASH])
+               {
+               GCM128_CONTEXT *ctx = CRYPTO_gcm128_new(&aes_ks1,(block128_f)AES_encrypt);
+               CRYPTO_gcm128_setiv (ctx,(unsigned char *)"0123456789ab",12);
  
+               for (j=0; j<SIZE_NUM; j++)
+                       {
+                       print_message(names[D_GHASH],c[D_GHASH][j],lengths[j]);
+                       Time_F(START);
+                       for (count=0,run=1; COND(c[D_GHASH][j]); count++)
+                               CRYPTO_gcm128_aad(ctx,buf,lengths[j]);
+                       d=Time_F(STOP);
+                       print_result(D_GHASH,j,count,d);
+                       }
+               CRYPTO_gcm128_release(ctx);
+               }
  
  #endif
  #ifndef OPENSSL_NO_CAMELLIA
@@ -2544,7 +2593,7 @@ static void pkey_print_message(const char *str, const char *str2, long num,
         BIO_printf(bio_err,mr ? "+DTP:%d:%s:%s:%d\n"
                            : "Doing %d bit %s %s's for %ds: ",bits,str,str2,tm);
         (void)BIO_flush(bio_err);
-       alarm(RSA_SECONDS);
+       alarm(tm);
  #else
         BIO_printf(bio_err,mr ? "+DNP:%ld:%d:%s:%s\n"
                            : "Doing %ld %d bit %s %s's: ",num,bits,str,str2);
@@ -2604,7 +2653,11 @@ static int do_multi(int multi)
         fds=malloc(multi*sizeof *fds);
         for(n=0 ; n < multi ; ++n)
                 {
-               pipe(fd);
+               if (pipe(fd) == -1)
+                       {
+                       fprintf(stderr, "pipe failure\n");
+                       exit(1);
+                       }
                 fflush(stdout);
                 fflush(stderr);
                 if(fork())
@@ -2616,7 +2669,11 @@ static int do_multi(int multi)
                         {
                         close(fd[0]);
                         close(1);
-                       dup(fd[1]);
+                       if (dup(fd[1]) == -1)
+                               {
+                               fprintf(stderr, "dup failed\n");
+                               exit(1);
+                               }
                         close(fd[1]);
                         mr=1;
                         usertime=0;
@@ -2699,6 +2756,7 @@ static int do_multi(int multi)
                                 else
                                         rsa_results[k][1]=d;
                                 }
+#ifndef OPENSSL_NO_DSA
                         else if(!strncmp(buf,"+F3:",4))
                                 {
                                 int k;
@@ -2720,6 +2778,7 @@ static int do_multi(int multi)
                                 else
                                         dsa_results[k][1]=d;
                                 }
+#endif
  #ifndef OPENSSL_NO_ECDSA
                         else if(!strncmp(buf,"+F4:",4))
                                 {