Main.hs (7264B)
1 {-# OPTIONS_GHC -fno-warn-incomplete-uni-patterns #-} 2 {-# LANGUAGE BangPatterns #-} 3 {-# LANGUAGE OverloadedStrings #-} 4 5 module Main where 6 7 import qualified Data.ByteString as BS 8 import qualified Data.ByteString.Base16 as B16 9 import Control.DeepSeq 10 import Criterion.Main 11 import qualified Crypto.Curve.Secp256k1 as S 12 13 instance NFData S.Projective 14 instance NFData S.Affine 15 instance NFData S.ECDSA 16 instance NFData S.Context 17 18 main :: IO () 19 main = defaultMain [ 20 parse_point 21 , add 22 , mul 23 , precompute 24 , mul_wnaf 25 , derive_pub 26 , schnorr 27 , ecdsa 28 , ecdh 29 ] 30 31 remQ :: Benchmark 32 remQ = env setup $ \x -> 33 bgroup "remQ (remainder modulo _CURVE_Q)" [ 34 bench "remQ 2 " $ nf S.remQ 2 35 , bench "remQ (2 ^ 255 - 19)" $ nf S.remQ x 36 ] 37 where 38 setup = pure . S.parse_int256 $ B16.decodeLenient 39 "7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed" 40 41 parse_point :: Benchmark 42 parse_point = bgroup "parse_point" [ 43 bench "compressed" $ nf S.parse_point p_bs 44 , bench "uncompressed" $ nf S.parse_point t_bs 45 , bench "bip0340" $ nf S.parse_point (BS.drop 1 p_bs) 46 ] 47 48 parse_integer :: Benchmark 49 parse_integer = env setup $ \ ~(small, big) -> 50 bgroup "parse_int256" [ 51 bench "parse_int256 (small)" $ nf S.parse_int256 small 52 , bench "parse_int256 (big)" $ nf S.parse_int256 big 53 ] 54 where 55 setup = do 56 let small = BS.replicate 32 0x00 57 big = BS.replicate 32 0xFF 58 pure (small, big) 59 60 add :: Benchmark 61 add = bgroup "add" [ 62 bench "2 p (double, trivial projective point)" $ nf (S.add p) p 63 , bench "2 r (double, nontrivial projective point)" $ nf (S.add r) r 64 , bench "p + q (trivial projective points)" $ nf (S.add p) q 65 , bench "p + s (nontrivial mixed points)" $ nf (S.add p) s 66 , bench "s + r (nontrivial projective points)" $ nf (S.add s) r 67 ] 68 69 mul :: Benchmark 70 mul = env setup $ \x -> 71 bgroup "mul" [ 72 bench "2 G" $ nf (S.mul S._CURVE_G) 2 73 , bench "(2 ^ 255 - 19) G" $ nf (S.mul S._CURVE_G) x 74 ] 75 where 76 setup = pure . S.parse_int256 $ B16.decodeLenient 77 "7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed" 78 79 precompute :: Benchmark 80 precompute = bench "precompute" $ nfIO (pure S.precompute) 81 82 mul_wnaf :: Benchmark 83 mul_wnaf = env setup $ \ ~(tex, x) -> 84 bgroup "mul_wnaf" [ 85 bench "2 G" $ nf (S.mul_wnaf tex) 2 86 , bench "(2 ^ 255 - 19) G" $ nf (S.mul_wnaf tex) x 87 ] 88 where 89 setup = do 90 let !tex = S.precompute 91 !int = S.parse_int256 $ B16.decodeLenient 92 "7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed" 93 pure (tex, int) 94 95 derive_pub :: Benchmark 96 derive_pub = env setup $ \ ~(tex, x) -> 97 bgroup "derive_pub" [ 98 bench "sk = 2" $ nf S.derive_pub 2 99 , bench "sk = 2 ^ 255 - 19" $ nf S.derive_pub x 100 , bench "wnaf, sk = 2" $ nf (S.derive_pub' tex) 2 101 , bench "wnaf, sk = 2 ^ 255 - 19" $ nf (S.derive_pub' tex) x 102 ] 103 where 104 setup = do 105 let !tex = S.precompute 106 !int = S.parse_int256 $ B16.decodeLenient 107 "7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed" 108 pure (tex, int) 109 110 schnorr :: Benchmark 111 schnorr = env setup $ \ ~(tex, big) -> 112 bgroup "schnorr" [ 113 bench "sign_schnorr (small)" $ nf (S.sign_schnorr 2 s_msg) s_aux 114 , bench "sign_schnorr (large)" $ nf (S.sign_schnorr big s_msg) s_aux 115 , bench "sign_schnorr' (small)" $ nf (S.sign_schnorr' tex 2 s_msg) s_aux 116 , bench "sign_schnorr' (large)" $ nf (S.sign_schnorr' tex big s_msg) s_aux 117 , bench "verify_schnorr" $ nf (S.verify_schnorr s_msg s_pk) s_sig 118 , bench "verify_schnorr'" $ nf (S.verify_schnorr' tex s_msg s_pk) s_sig 119 ] 120 where 121 setup = do 122 let !tex = S.precompute 123 !int = S.parse_int256 $ B16.decodeLenient 124 "7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed" 125 pure (tex, int) 126 127 ecdsa :: Benchmark 128 ecdsa = env setup $ \ ~(tex, big, pub, msg, sig) -> 129 bgroup "ecdsa" [ 130 bench "sign_ecdsa (small)" $ nf (S.sign_ecdsa 2) s_msg 131 , bench "sign_ecdsa (large)" $ nf (S.sign_ecdsa big) s_msg 132 , bench "sign_ecdsa' (small)" $ nf (S.sign_ecdsa' tex 2) s_msg 133 , bench "sign_ecdsa' (large)" $ nf (S.sign_ecdsa' tex big) s_msg 134 , bench "verify_ecdsa" $ nf (S.verify_ecdsa msg pub) sig 135 , bench "verify_ecdsa'" $ nf (S.verify_ecdsa' tex msg pub) sig 136 ] 137 where 138 setup = do 139 let !tex = S.precompute 140 big = S.parse_int256 $ B16.decodeLenient 141 "7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed" 142 pub = S.derive_pub big 143 msg = "i approve of this message" 144 sig = S.sign_ecdsa big s_msg 145 pure (tex, big, pub, msg, sig) 146 147 ecdh :: Benchmark 148 ecdh = env setup $ \ ~(big, pub) -> 149 bgroup "ecdh" [ 150 bench "ecdh (small)" $ nf (S.ecdh pub) 2 151 , bench "ecdh (large)" $ nf (S.ecdh pub) big 152 ] 153 where 154 setup = do 155 let !big = 156 0x7fffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed 157 !(Just !pub) = S.parse_point . B16.decodeLenient $ 158 "bd02b9dfc8ef760708950bd972f2dc244893b61b6b46c3b19be1b2da7b034ac5" 159 pure (big, pub) 160 161 p_bs :: BS.ByteString 162 p_bs = B16.decodeLenient 163 "0279be667ef9dcbbac55a06295ce870b07029bfcdb2dce28d959f2815b16f81798" 164 165 p :: S.Projective 166 p = case S.parse_point p_bs of 167 Nothing -> error "bang" 168 Just !pt -> pt 169 170 q_bs :: BS.ByteString 171 q_bs = B16.decodeLenient 172 "02f9308a019258c31049344f85f89d5229b531c845836f99b08601f113bce036f9" 173 174 q :: S.Projective 175 q = case S.parse_point q_bs of 176 Nothing -> error "bang" 177 Just !pt -> pt 178 179 r_bs :: BS.ByteString 180 r_bs = B16.decodeLenient 181 "03a2113cf152585d96791a42cdd78782757fbfb5c6b2c11b59857eb4f7fda0b0e8" 182 183 r :: S.Projective 184 r = case S.parse_point r_bs of 185 Nothing -> error "bang" 186 Just !pt -> pt 187 188 s_bs :: BS.ByteString 189 s_bs = B16.decodeLenient 190 "0306413898a49c93cccf3db6e9078c1b6a8e62568e4a4770e0d7d96792d1c580ad" 191 192 s :: S.Projective 193 s = case S.parse_point s_bs of 194 Nothing -> error "bang" 195 Just !pt -> pt 196 197 t_bs :: BS.ByteString 198 t_bs = B16.decodeLenient "04b838ff44e5bc177bf21189d0766082fc9d843226887fc9760371100b7ee20a6ff0c9d75bfba7b31a6bca1974496eeb56de357071955d83c4b1badaa0b21832e9" 199 200 t :: S.Projective 201 t = case S.parse_point t_bs of 202 Nothing -> error "bang" 203 Just !pt -> pt 204 205 s_sk :: Integer 206 s_sk = S.parse_int256 . B16.decodeLenient $ 207 "B7E151628AED2A6ABF7158809CF4F3C762E7160F38B4DA56A784D9045190CFEF" 208 209 s_sig :: BS.ByteString 210 s_sig = B16.decodeLenient "6896BD60EEAE296DB48A229FF71DFE071BDE413E6D43F917DC8DCF8C78DE33418906D11AC976ABCCB20B091292BFF4EA897EFCB639EA871CFA95F6DE339E4B0A" 211 212 s_pk_raw :: BS.ByteString 213 s_pk_raw = B16.decodeLenient 214 "DFF1D77F2A671C5F36183726DB2341BE58FEAE1DA2DECED843240F7B502BA659" 215 216 s_pk :: S.Projective 217 s_pk = case S.parse_point s_pk_raw of 218 Nothing -> error "bang" 219 Just !pt -> pt 220 221 s_msg :: BS.ByteString 222 s_msg = B16.decodeLenient 223 "243F6A8885A308D313198A2E03707344A4093822299F31D0082EFA98EC4E6C89" 224 225 s_aux :: BS.ByteString 226 s_aux = B16.decodeLenient 227 "0000000000000000000000000000000000000000000000000000000000000001" 228 229 -- e_msg = B16.decodeLenient "313233343030" 230 -- e_sig = B16.decodeLenient "3045022100813ef79ccefa9a56f7ba805f0e478584fe5f0dd5f567bc09b5123ccbc983236502206ff18a52dcc0336f7af62400a6dd9b810732baf1ff758000d6f613a556eb31ba" 231