mirrors/utls
1
0
Fork 0
mirror of https://github.com/refraction-networking/utls.git synced 2025-04-03 03:57:36 +03:00
Code Issues Projects Releases Packages Wiki Activity
utls/testdata
History
Filippo Valsorda 5661b3ddeb crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 
Ignoring custom curves, this makes the whole package constant-time.
There is a slight loss in performance for P-384 and P-521 because bigmod
is slower than math/big (but P-256 has an assembly scalar field
inversion, so doesn't use bigmod for anything big).

name                old time/op    new time/op    delta
Sign/P256-8           19.2µs ± 2%    19.1µs ± 2%     ~     (p=0.268 n=9+10)
Sign/P384-8            166µs ± 3%     188µs ± 2%  +13.52%  (p=0.000 n=10+10)
Sign/P521-8            337µs ± 2%     359µs ± 2%   +6.46%  (p=0.000 n=10+10)
Verify/P256-8         58.1µs ± 2%    58.1µs ± 2%     ~     (p=0.971 n=10+10)
Verify/P384-8          484µs ± 2%     569µs ±12%  +17.65%  (p=0.000 n=10+10)
Verify/P521-8         1.03ms ± 4%    1.14ms ± 2%  +11.02%  (p=0.000 n=10+10)
GenerateKey/P256-8    12.4µs ±12%    12.0µs ± 2%     ~     (p=0.063 n=10+10)
GenerateKey/P384-8     129µs ±18%     119µs ± 2%     ~     (p=0.190 n=10+10)
GenerateKey/P521-8     241µs ± 2%     240µs ± 2%     ~     (p=0.436 n=10+10)

name                old alloc/op   new alloc/op   delta
Sign/P256-8           3.08kB ± 0%    2.47kB ± 0%  -19.77%  (p=0.000 n=10+10)
Sign/P384-8           6.16kB ± 0%    2.64kB ± 0%  -57.16%  (p=0.000 n=10+10)
Sign/P521-8           7.87kB ± 0%    3.01kB ± 0%  -61.80%  (p=0.000 n=10+10)
Verify/P256-8         1.29kB ± 1%    0.48kB ± 0%  -62.69%  (p=0.000 n=10+10)
Verify/P384-8         2.49kB ± 1%    0.64kB ± 0%  -74.25%  (p=0.000 n=10+10)
Verify/P521-8         3.31kB ± 0%    0.96kB ± 0%  -71.02%  (p=0.000 n=7+10)
GenerateKey/P256-8      720B ± 0%      920B ± 0%  +27.78%  (p=0.000 n=10+10)
GenerateKey/P384-8      921B ± 0%     1120B ± 0%  +21.61%  (p=0.000 n=9+10)
GenerateKey/P521-8    1.30kB ± 0%    1.44kB ± 0%  +10.45%  (p=0.000 n=10+10)

name                old allocs/op  new allocs/op  delta
Sign/P256-8             45.0 ± 0%      33.0 ± 0%  -26.67%  (p=0.000 n=10+10)
Sign/P384-8             69.0 ± 0%      34.0 ± 0%  -50.72%  (p=0.000 n=10+10)
Sign/P521-8             71.0 ± 0%      35.0 ± 0%  -50.70%  (p=0.000 n=10+10)
Verify/P256-8           23.0 ± 0%      10.0 ± 0%  -56.52%  (p=0.000 n=10+10)
Verify/P384-8           43.0 ± 0%      14.0 ± 0%  -67.44%  (p=0.000 n=10+10)
Verify/P521-8           45.0 ± 0%      14.0 ± 0%  -68.89%  (p=0.000 n=7+10)
GenerateKey/P256-8      13.0 ± 0%      14.0 ± 0%   +7.69%  (p=0.000 n=10+10)
GenerateKey/P384-8      16.0 ± 0%      17.0 ± 0%   +6.25%  (p=0.000 n=10+10)
GenerateKey/P521-8      16.5 ± 3%      17.0 ± 0%   +3.03%  (p=0.033 n=10+10)

Change-Id: I4e074ef039b0f7ffbc436a4cdbe4ef90c647018d
Reviewed-on: https://go-review.googlesource.com/c/go/+/353849
Auto-Submit: Filippo Valsorda <filippo@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Than McIntosh <thanm@google.com>
Reviewed-by: David Chase <drchase@google.com>
Run-TryBot: Filippo Valsorda <filippo@golang.org>
Reviewed-by: Roland Shoemaker <roland@golang.org>
2022-11-21 16:19:34 +00:00
..
Client-TLSv10-ClientCert-ECDSA-ECDSA crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 2022-11-21 16:19:34 +00:00
Client-TLSv10-ClientCert-ECDSA-RSA crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 2022-11-21 16:19:34 +00:00
Client-TLSv10-ClientCert-Ed25519 crypto/tls: add support for Ed25519 certificates in TLS 1.2 and 1.3 2019-05-17 16:13:45 +00:00
Client-TLSv10-ClientCert-RSA-ECDSA crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv10-ClientCert-RSA-RSA crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv10-ECDHE-ECDSA-AES crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv10-ECDHE-RSA-AES crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv10-Ed25519 crypto/tls: add support for Ed25519 certificates in TLS 1.2 and 1.3 2019-05-17 16:13:45 +00:00
Client-TLSv10-ExportKeyingMaterial crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv10-RSA-RC4 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv11-ECDHE-ECDSA-AES crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv11-ECDHE-RSA-AES crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv11-Ed25519 crypto/tls: add support for Ed25519 certificates in TLS 1.2 and 1.3 2019-05-17 16:13:45 +00:00
Client-TLSv11-RSA-RC4 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-AES128-GCM-SHA256 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-AES128-SHA256 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-AES256-GCM-SHA384 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ALPN crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ALPN-NoMatch crypto/tls: support AES-128-CBC cipher suites with SHA-256. 2016-08-18 21:46:46 +00:00
Client-TLSv12-ClientCert-ECDSA-ECDSA crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 2022-11-21 16:19:34 +00:00
Client-TLSv12-ClientCert-ECDSA-RSA crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 2022-11-21 16:19:34 +00:00
Client-TLSv12-ClientCert-Ed25519 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ClientCert-RSA-AES256-GCM-SHA384 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ClientCert-RSA-ECDSA crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ClientCert-RSA-RSA crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ClientCert-RSA-RSAPKCS1v15 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ClientCert-RSA-RSAPSS crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ECDHE-ECDSA-AES crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ECDHE-ECDSA-AES-GCM crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ECDHE-ECDSA-AES128-SHA256 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ECDHE-ECDSA-AES256-GCM-SHA384 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ECDHE-ECDSA-CHACHA20-POLY1305 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ECDHE-RSA-AES crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ECDHE-RSA-AES128-SHA256 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ECDHE-RSA-CHACHA20-POLY1305 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-Ed25519 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-ExportKeyingMaterial crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-P256-ECDHE crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-RenegotiateOnce crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-RenegotiateTwice crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-RenegotiateTwiceRejected crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-RenegotiationRejected crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-RSA-RC4 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-SCT crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv12-X25519-ECDHE crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-AES128-SHA256 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-AES256-SHA384 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-ALPN crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-CHACHA20-SHA256 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-ClientCert-ECDSA-RSA crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 2022-11-21 16:19:34 +00:00
Client-TLSv13-ClientCert-Ed25519 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-ClientCert-RSA-ECDSA crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-ClientCert-RSA-RSAPSS crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-ECDSA crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-Ed25519 crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-ExportKeyingMaterial crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-HelloRetryRequest crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-KeyUpdate crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-P256-ECDHE crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Client-TLSv13-X25519-ECDHE crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
example-cert.pem crypto/tls: add examples for [Load]X509KeyPair 2018-04-30 17:25:27 +00:00
example-key.pem crypto/tls: add examples for [Load]X509KeyPair 2018-04-30 17:25:27 +00:00
Server-TLSv10-ECDHE-ECDSA-AES crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 2022-11-21 16:19:34 +00:00
Server-TLSv10-ExportKeyingMaterial crypto/tls: make cipher suite preference ordering automatic 2021-05-08 05:15:48 +00:00
Server-TLSv10-RSA-3DES crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv10-RSA-AES crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv10-RSA-RC4 crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv11-FallbackSCSV crypto/tls: enable TLS 1.3 and update tests 2018-11-12 20:44:39 +00:00
Server-TLSv11-RSA-RC4 crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv12-ALPN crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-ALPN-Fallback crypto/tls: let HTTP/1.1 clients connect to servers with NextProtos "h2" 2021-06-10 12:41:37 +00:00
Server-TLSv12-ALPN-NoMatch crypto/tls: enforce ALPN overlap when negotiated on both sides 2021-05-06 18:57:43 +00:00
Server-TLSv12-ALPN-NotConfigured crypto/tls: enforce ALPN overlap when negotiated on both sides 2021-05-06 18:57:43 +00:00
Server-TLSv12-ClientAuthRequestedAndECDSAGiven crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-ClientAuthRequestedAndEd25519Given crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-ClientAuthRequestedAndGiven crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-ClientAuthRequestedAndPKCS1v15Given crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-ClientAuthRequestedNotGiven crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-ECDHE-ECDSA-AES crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 2022-11-21 16:19:34 +00:00
Server-TLSv12-Ed25519 crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-ExportKeyingMaterial crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-IssueTicket crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-IssueTicketPreDisable crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-P256 crypto/tls: re-enable RSA-PSS in TLS 1.2 again 2019-11-12 01:09:15 +00:00
Server-TLSv12-Resume crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-ResumeDisabled crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-RSA-3DES crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv12-RSA-AES crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv12-RSA-AES-GCM crypto/tls: re-enable RSA-PSS in TLS 1.2 again 2019-11-12 01:09:15 +00:00
Server-TLSv12-RSA-AES256-GCM-SHA384 crypto/tls: re-enable RSA-PSS in TLS 1.2 again 2019-11-12 01:09:15 +00:00
Server-TLSv12-RSA-RC4 crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv12-RSA-RSAPKCS1v15 crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-RSA-RSAPSS crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv12-SNI crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv12-SNI-GetCertificate crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv12-SNI-GetCertificateNotFound crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv12-X25519 crypto/tls: re-enable RSA-PSS in TLS 1.2 again 2019-11-12 01:09:15 +00:00
Server-TLSv13-AES128-SHA256 crypto/tls: send ec_points_format extension in ServerHello 2019-10-31 15:14:45 +00:00
Server-TLSv13-AES256-SHA384 crypto/tls: implement TLS 1.3 PSK authentication (server side) 2018-11-12 20:43:35 +00:00
Server-TLSv13-ALPN crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-ALPN-Fallback crypto/tls: let HTTP/1.1 clients connect to servers with NextProtos "h2" 2021-06-10 12:41:37 +00:00
Server-TLSv13-ALPN-NoMatch crypto/tls: enforce ALPN overlap when negotiated on both sides 2021-05-06 18:57:43 +00:00
Server-TLSv13-ALPN-NotConfigured crypto/tls: enforce ALPN overlap when negotiated on both sides 2021-05-06 18:57:43 +00:00
Server-TLSv13-CHACHA20-SHA256 crypto/tls: implement TLS 1.3 PSK authentication (server side) 2018-11-12 20:43:35 +00:00
Server-TLSv13-ClientAuthRequestedAndECDSAGiven crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-ClientAuthRequestedAndEd25519Given crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-ClientAuthRequestedAndGiven crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-ClientAuthRequestedNotGiven crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-ECDHE-ECDSA-AES crypto/ecdsa: use bigmod and nistec instead of math/big and crypto/elliptic 2022-11-21 16:19:34 +00:00
Server-TLSv13-Ed25519 crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-ExportKeyingMaterial crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-HelloRetryRequest crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-IssueTicket crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-IssueTicketPreDisable crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-P256 crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-Resume crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-Resume-HelloRetryRequest crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-ResumeDisabled crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-RSA-RSAPSS crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-RSA-RSAPSS-TooSmall crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00
Server-TLSv13-X25519 crypto/tls: de-prioritize AES-GCM ciphers when lacking hardware support 2020-11-10 01:40:27 +00:00