diff options
| author | Jack Lloyd <[email protected]> | 2018-12-02 16:14:48 -0500 |
|---|---|---|
| committer | Jack Lloyd <[email protected]> | 2018-12-02 16:14:48 -0500 |
| commit | cc5ca964d2b05d055e698bd109db5fa0ada33b2b (patch) | |
| tree | 5f99dfd0e6fa0d9d2d569bb1581eb3edb95d9e41 /src/cli/speed.cpp | |
| parent | 7bc0745c3ff2824f9a3607db19e7e1a3e563c5bc (diff) | |
Add a const-time division algorithm
It is stupid and slow (~50-100x slower than variable time version) but
still useful for protecting critical algorithms.
Not currently used, waiting for OSS-Fuzz to test it for a while before
we commit to it.
Diffstat (limited to 'src/cli/speed.cpp')
| -rw-r--r-- | src/cli/speed.cpp | 45 |
1 files changed, 45 insertions, 0 deletions
diff --git a/src/cli/speed.cpp b/src/cli/speed.cpp index ec6db5c86..59771fb65 100644 --- a/src/cli/speed.cpp +++ b/src/cli/speed.cpp @@ -26,6 +26,7 @@ #if defined(BOTAN_HAS_BIGINT) #include <botan/bigint.h> + #include <botan/divide.h> #endif #if defined(BOTAN_HAS_BLOCK_CIPHER) @@ -653,6 +654,10 @@ class Speed final : public Command { bench_mp_mul(msec); } + else if(algo == "mp_div") + { + bench_mp_div(msec); + } #endif #if defined(BOTAN_HAS_NUMBERTHEORY) @@ -1263,6 +1268,46 @@ class Speed final : public Command } + void bench_mp_div(const std::chrono::milliseconds runtime) + { + std::chrono::milliseconds runtime_per_size = runtime; + + for(size_t n_bits : { 256, 384, 512, 768, 1024, 1536, 2048, 3072, 4096 }) + { + const size_t q_bits = n_bits / 2; + const std::string bit_descr = std::to_string(n_bits) + "/" + std::to_string(q_bits); + + std::unique_ptr<Timer> div_timer = make_timer("BigInt div " + bit_descr); + std::unique_ptr<Timer> ct_div_timer = make_timer("BigInt ct_div " + bit_descr); + + Botan::BigInt y; + Botan::BigInt x; + Botan::secure_vector<Botan::word> ws; + + Botan::BigInt q1, r1, q2, r2; + + while(ct_div_timer->under(runtime_per_size)) + { + x.randomize(rng(), n_bits); + y.randomize(rng(), q_bits); + + div_timer->start(); + Botan::divide(x, y, q1, r1); + div_timer->stop(); + + ct_div_timer->start(); + Botan::ct_divide(x, y, q2, r2); + ct_div_timer->stop(); + + BOTAN_ASSERT_EQUAL(q1, q2, "Quotient ok"); + BOTAN_ASSERT_EQUAL(r1, r2, "Remainder ok"); + } + + record_result(div_timer); + record_result(ct_div_timer); + } + } + #endif #if defined(BOTAN_HAS_DL_GROUP) |