Merge pull request #89 from jackctj117/wolfJSSE_Benchmark

Adds AES-GCM to benchmark
wolfSSL · Jan 6, 2025 · 6ffb703 · 6ffb703
2 parents d34bea0 + 8ddb01f
commit 6ffb703
Showing 1 changed file with 86 additions and 70 deletions.
diff --git a/examples/provider/CryptoBenchmark.java b/examples/provider/CryptoBenchmark.java
@@ -1,45 +1,61 @@
 import javax.crypto.Cipher;
 import javax.crypto.KeyGenerator;
 import javax.crypto.SecretKey;
+import javax.crypto.spec.GCMParameterSpec;
 import javax.crypto.spec.IvParameterSpec;
+import javax.crypto.spec.SecretKeySpec;
 import java.security.Provider;
 import java.security.SecureRandom;
 import java.security.Security;
+import java.security.spec.AlgorithmParameterSpec;
 import java.util.Arrays;
 
 import com.wolfssl.provider.jce.WolfCryptProvider;
 
 public class CryptoBenchmark {
     /* Constants for benchmark configuration */
-    private static final int WARMUP_ITERATIONS = 1000;
-    private static final int TEST_ITERATIONS = 10000;
-    private static final int DATA_SIZE = 16384; /* 16KB of data */
+    private static final int WARMUP_ITERATIONS = 5;
+    private static final int TEST_ITERATIONS = 5;      /* Number of iterations */
+    private static final int DATA_SIZE = 1024 * 1024;
     private static final int AES_BLOCK_SIZE = 16;
+    private static final int GCM_TAG_LENGTH = 128;     /* GCM auth tag length in bits */
     private static final int AES_KEY_SIZE = 256;
 
-    private static byte[] generateRandomData(int size) {
-        byte[] data = new byte[size];
-        new SecureRandom().nextBytes(data);
-        return data;
+    /* Static key and IV buffers */
+    private static final byte[] STATIC_KEY = new byte[] {
+        (byte)0x01, (byte)0x23, (byte)0x45, (byte)0x67,
+        (byte)0x89, (byte)0xab, (byte)0xcd, (byte)0xef,
+        (byte)0xfe, (byte)0xde, (byte)0xba, (byte)0x98,
+        (byte)0x76, (byte)0x54, (byte)0x32, (byte)0x10,
+        (byte)0x89, (byte)0xab, (byte)0xcd, (byte)0xef,
+        (byte)0x01, (byte)0x23, (byte)0x45, (byte)0x67,
+        (byte)0xf0, (byte)0xf1, (byte)0xf2, (byte)0xf3,
+        (byte)0xf4, (byte)0xf5, (byte)0xf6, (byte)0xf7
+    };
+
+    private static final byte[] STATIC_IV = new byte[] {
+        (byte)0x12, (byte)0x34, (byte)0x56, (byte)0x78,
+        (byte)0x90, (byte)0xab, (byte)0xcd, (byte)0xef,
+        (byte)0x01, (byte)0x01, (byte)0x01, (byte)0x01,
+        (byte)0x01, (byte)0x01, (byte)0x01, (byte)0x01
+    };
+
+    private static byte[] generateTestData(int size) {
+        return new byte[size]; /* Creates array initialized with zeros */
     }
 
-    /* 
-     * Benchmarks Cipher class operations using AES-CBC 
-     * Returns array containing encrypt and decrypt times in nanoseconds
-     */
-    private static void benchmarkCipher() throws Exception {
+    private static void runBenchmark(String algorithm, String mode) throws Exception {
         /* Key generation variables */
-        KeyGenerator keyGen;
         SecretKey key;
 
-        /* IV generation variables */
+        /* IV/Nonce generation variables */
         byte[] ivBytes;
-        IvParameterSpec iv;
-
+        /* Using specific type instead of Object */
+        AlgorithmParameterSpec params;
         /* Test data variables */
         byte[] testData;
-        byte[] encryptedData;
-        byte[] encrypted;
+        byte[] encryptedData = null;
+        double dataSizeMiB;
 
         /* Cipher variables */
         Cipher cipher;
@@ -51,90 +67,90 @@ private static void benchmarkCipher() throws Exception {
         long decryptTime;
         double encryptThroughput;
         double decryptThroughput;
-
-        /* Provider info */
-        Provider provider;
+        double encryptTimeMS;
+        double decryptTimeMS;
 
-        /* Generate a random key and IV */
-        keyGen = KeyGenerator.getInstance("AES");
-        keyGen.init(AES_KEY_SIZE);
-        key = keyGen.generateKey();
+        /* Use static pre-made key */
+        key = new SecretKeySpec(STATIC_KEY, "AES");
 
-        ivBytes = new byte[AES_BLOCK_SIZE];
-        new SecureRandom().nextBytes(ivBytes);
-        iv = new IvParameterSpec(ivBytes);
+        /* Use static pre-made IV */
+        ivBytes = STATIC_IV;
+        if (mode.equals("GCM")) {
+            params = new GCMParameterSpec(GCM_TAG_LENGTH, ivBytes);
+        } else {
+            params = new IvParameterSpec(ivBytes);
+        }
 
-        /* Generate random test data */
-        testData = generateRandomData(DATA_SIZE);
+        /* Generate test data filled with zeros */
+        testData = generateTestData(DATA_SIZE);
 
-        /* Initialize cipher for warmup */
-        cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
+        /* Initialize cipher */
+        cipher = Cipher.getInstance(algorithm);
 
         /* Warm up phase */
-        System.out.println("Warming up...");
         for (int i = 0; i < WARMUP_ITERATIONS; i++) {
-            cipher.init(Cipher.ENCRYPT_MODE, key, iv);
-            encrypted = cipher.doFinal(testData);
+            cipher.init(Cipher.ENCRYPT_MODE, key, params);
+            encryptedData = cipher.doFinal(testData);
 
-            cipher.init(Cipher.DECRYPT_MODE, key, iv);
-            cipher.doFinal(encrypted);
+            cipher.init(Cipher.DECRYPT_MODE, key, params);
+            cipher.doFinal(encryptedData);
         }
 
-        System.out.println("\nBenchmarking AES-CBC (" + AES_KEY_SIZE + "-bit key) with " + 
-                DATA_SIZE + " bytes:");
-        System.out.println("Iterations per test: " + TEST_ITERATIONS);
-
         /* Benchmark encryption */
         startTime = System.nanoTime();
         for (int i = 0; i < TEST_ITERATIONS; i++) {
-            cipher.init(Cipher.ENCRYPT_MODE, key, iv);
-            cipher.doFinal(testData);
+            cipher.init(Cipher.ENCRYPT_MODE, key, params);
+            encryptedData = cipher.doFinal(testData);
         }
         endTime = System.nanoTime();
         encryptTime = (endTime - startTime) / TEST_ITERATIONS;
 
-        /* Benchmark decryption */
-        cipher.init(Cipher.ENCRYPT_MODE, key, iv);
-        encryptedData = cipher.doFinal(testData);
-
+        /* Calculate data size in MiB */
+        dataSizeMiB = (DATA_SIZE * TEST_ITERATIONS) / (1024.0 * 1024.0);
+
+        /* Calculate time in milliseconds */
+        encryptTimeMS = encryptTime / 1000000.0;
+
+        /* Calculate throughput using seconds for MiB/s */
+        encryptThroughput = (DATA_SIZE / (encryptTime / 1000000000.0)) / (1024.0 * 1024.0);
+
+        /* Print encryption results immediately */
+        String testName = "AES-256-" + mode;
+        System.out.printf("%s-enc      %4.2f MiB took %1.3f ms, %8.3f MiB/s%n",
+            testName, dataSizeMiB, encryptTimeMS, encryptThroughput);
+
+        /* Benchmark decryption using the encrypted data from encryption benchmark */
         startTime = System.nanoTime();
         for (int i = 0; i < TEST_ITERATIONS; i++) {
-            cipher.init(Cipher.DECRYPT_MODE, key, iv);
+            cipher.init(Cipher.DECRYPT_MODE, key, params);
             cipher.doFinal(encryptedData);
         }
         endTime = System.nanoTime();
         decryptTime = (endTime - startTime) / TEST_ITERATIONS;
 
-        /* Print results */
-        System.out.println("\nResults (average time per operation):");
-        System.out.println("  Encryption: " + encryptTime + " ns (" + 
-                String.format("%.2f", encryptTime/1000000.0) + " ms)");
-        System.out.println("  Decryption: " + decryptTime + " ns (" + 
-                String.format("%.2f", decryptTime/1000000.0) + " ms)");
+        /* Calculate time in milliseconds */
+        decryptTimeMS = decryptTime / 1000000.0;
 
-        /* Calculate and print throughput */
-        encryptThroughput = (DATA_SIZE / (encryptTime / 1000000000.0)) / (1024 * 1024);
-        decryptThroughput = (DATA_SIZE / (decryptTime / 1000000000.0)) / (1024 * 1024);
-
-        System.out.println("\nThroughput:");
-        System.out.println("  Encryption: " + String.format("%.2f", encryptThroughput) + " MB/s");
-        System.out.println("  Decryption: " + String.format("%.2f", decryptThroughput) + " MB/s");
-
-        /* Print provider information */
-        provider = Security.getProvider(cipher.getProvider().getName());
-        System.out.println("\nProvider Information:");
-        System.out.println("  Name: " + provider.getName());
-        System.out.println("  Version: " + provider.getVersion());
-        System.out.println("  Info: " + provider.getInfo());
+        /* Calculate throughput using seconds for MiB/s */
+        decryptThroughput = (DATA_SIZE / (decryptTime / 1000000000.0)) / (1024.0 * 1024.0);
+
+        /* Print decryption results immediately */
+        System.out.printf("%s-dec      %4.2f MiB took %1.3f ms, %8.3f MiB/s%n",
+            testName, dataSizeMiB, decryptTimeMS, decryptThroughput);
     }
 
     public static void main(String[] args) {
         try {
             /* Register wolfJCE as the default provider */
             Security.insertProviderAt(new WolfCryptProvider(), 1);
 
-            /* Run Cipher benchmark */
-            benchmarkCipher();
+            System.out.println("------------------------------------------------------------------------------");
+            System.out.println(" JCE Crypto Benchmark");
+            System.out.println("------------------------------------------------------------------------------");
+
+            /* Run benchmarks for different algorithms */
+            runBenchmark("AES/CBC/PKCS5Padding", "CBC");
+            runBenchmark("AES/GCM/NoPadding", "GCM");
 
         } catch (Exception e) {
             System.err.println("Benchmark failed: " + e.getMessage());