Sync from monorepo · anil.recoil.org/ocaml-crypto@6f0c77a

+10 -12

README.md

··· 1 - # mirage-crypto - Cryptographic primitives for MirageOS 1 + # crypto - Cryptographic primitives for OCaml 2 2 3 - %%VERSION%% 3 + > **Warning**: This is an experimental fork of [mirage-crypto](https://github.com/mirage/mirage-crypto). 4 + > Do not use in production. Use [mirage-crypto](https://github.com/mirage/mirage-crypto) instead. 5 + 6 + This fork renames the packages and removes Lwt/Miou dependencies, keeping only 7 + Eio-compatible code. It is intended for experimentation only. 8 + 9 + ## Original mirage-crypto 4 10 5 11 mirage-crypto is a small cryptographic library that puts emphasis on the 6 12 applicative style and ease of use. It includes basic ciphers (AES, 3DES, RC4, ··· 13 19 14 20 Mirage-crypto is a fork of the 15 21 [ocaml-nocrypto](https://github.com/mirleft/ocaml-nocrypto) written by David 16 - Kaloper. It was forked with the permission of the original author in order to 22 + Kaloper. It was forked with the permission of the original author in order to 17 23 facilitate changes (e.g. build system) required by Mirage that the upstream 18 24 didn't have time to keep up with. 19 - 20 - Mirage-crypto-rng embeds the former mirage-entropy opam package, which 21 - implements various entropy sources: 22 - - non-deterministic execution time (used at initial seeding, see the [whirlwind RNG paper](https://www.ieee-security.org/TC/SP2014/papers/Not-So-RandomNumbersinVirtualizedLinuxandtheWhirlwindRNG.pdf)) 23 - - a hook into the Lwt event loop that collects a timestamp of each event 24 - - rdseed and rdrand (x86/x86-64 only) 25 - 26 - [API documentation online](https://mirage.github.io/mirage-crypto/doc) 27 25 28 26 ## Build 29 27 ··· 40 38 seed it. 41 39 42 40 ```OCaml 43 - let () = Mirage_crypto_rng_unix.use_default () 41 + let () = Crypto_rng_unix.use_default () 44 42 ```

+1 -9

bench/dune

··· 1 1 (executables 2 2 (names speed) 3 3 (modules speed) 4 - (libraries mirage-crypto mirage-crypto-rng mirage-crypto-rng.unix 5 - mirage-crypto-pk mirage-crypto-ec)) 6 - 7 - ; marking as "(optional)" leads to OCaml-CI failures 8 - ; marking with "(package mirage-crypto-rng-miou-unix)" only has an effect with a "public_name" 9 - ;(executables 10 - ; (names miou) 11 - ; (modules miou) 12 - ; (libraries mirage-crypto-rng-miou-unix)) 4 + (libraries crypto crypto-rng crypto-rng.unix crypto-pk crypto-ec))

-91

bench/miou.ml

··· 1 - open Mirage_crypto 2 - 3 - module Time = struct 4 - 5 - let time ~n f a = 6 - let t1 = Sys.time () in 7 - for _ = 1 to n do ignore (f a) done ; 8 - let t2 = Sys.time () in 9 - (t2 -. t1) 10 - 11 - let warmup () = 12 - let x = ref 0 in 13 - let rec go start = 14 - if Sys.time () -. start < 1. then begin 15 - for i = 0 to 10000 do x := !x + i done ; 16 - go start 17 - end in 18 - go (Sys.time ()) 19 - 20 - end 21 - 22 - let burn_period = 2.0 23 - 24 - let sizes = [16; 64; 256; 1024; 8192] 25 - (* let sizes = [16] *) 26 - 27 - let burn f n = 28 - let buf = Mirage_crypto_rng.generate n in 29 - let (t1, i1) = 30 - let rec loop it = 31 - let t = Time.time ~n:it f buf in 32 - if t > 0.2 then (t, it) else loop (it * 10) in 33 - loop 10 in 34 - let iters = int_of_float (float i1 *. burn_period /. t1) in 35 - let time = Time.time ~n:iters f buf in 36 - (iters, time, float (n * iters) /. time) 37 - 38 - let mb = 1024. *. 1024. 39 - 40 - let throughput title f = 41 - Printf.printf "\n* [%s]\n%!" title ; 42 - sizes |> List.iter @@ fun size -> 43 - Gc.full_major () ; 44 - let (iters, time, bw) = burn f size in 45 - Printf.printf " % 5d: %04f MB/s (%d iters in %.03f s)\n%!" 46 - size (bw /. mb) iters time 47 - 48 - let bm name f = (name, fun () -> f name) 49 - 50 - let benchmarks = [ 51 - bm "pfortuna" (fun name -> 52 - let open Mirage_crypto_rng_miou_unix.Pfortuna in 53 - Miou_unix.run ~domains:2 @@ fun () -> 54 - let rng = Mirage_crypto_rng_miou_unix.(initialize (module Pfortuna)) in 55 - let g = create () in 56 - reseed ~g "abcd" ; 57 - throughput name (fun buf -> 58 - let buf = Bytes.unsafe_of_string buf in 59 - generate_into ~g buf ~off:0 (Bytes.length buf)); 60 - Mirage_crypto_rng_miou_unix.kill rng) ; 61 - ] 62 - 63 - let help () = 64 - Printf.printf "available benchmarks:\n "; 65 - List.iter (fun (n, _) -> Printf.printf "%s " n) benchmarks ; 66 - Printf.printf "\n%!" 67 - 68 - let runv fs = 69 - Format.printf "accel: %a\n%!" 70 - (fun ppf -> List.iter @@ fun x -> 71 - Format.fprintf ppf "%s " @@ 72 - match x with `XOR -> "XOR" | `AES -> "AES" | `GHASH -> "GHASH") 73 - accelerated; 74 - Time.warmup () ; 75 - List.iter (fun f -> f ()) fs 76 - 77 - 78 - let () = 79 - let seed = "abcd" in 80 - let g = Mirage_crypto_rng.(create ~seed (module Fortuna)) in 81 - Mirage_crypto_rng.set_default_generator g; 82 - match Array.to_list Sys.argv with 83 - | _::(_::_ as args) -> begin 84 - try 85 - let fs = 86 - args |> List.map @@ fun n -> 87 - snd (benchmarks |> List.find @@ fun (n1, _) -> n = n1) in 88 - runv fs 89 - with Not_found -> help () 90 - end 91 - | _ -> help ()

+113 -113

bench/speed.ml

··· 1 - open Mirage_crypto 1 + open Crypto 2 2 3 3 module Time = struct 4 4 ··· 25 25 (* let sizes = [16] *) 26 26 27 27 let burn f n = 28 - let buf = Mirage_crypto_rng.generate n in 28 + let buf = Crypto_rng.generate n in 29 29 let (t1, i1) = 30 30 let rec loop it = 31 31 let t = Time.time ~n:it f buf in ··· 78 78 let msg_str_48 = String.sub msg_str 0 48 79 79 let msg_str_65 = String.sub msg_str 0 65 80 80 81 - module PSS = Mirage_crypto_pk.Rsa.PSS(Digestif.SHA256) 81 + module PSS = Crypto_pk.Rsa.PSS(Digestif.SHA256) 82 82 83 83 let rsa_1024 = 84 84 let p = Z.of_string "10798561676627454710140432432014696449593673631094049392368450463276546091610832740190717321579865870896133380991892468262437092547408603618427685009427773" 85 85 and q = Z.of_string "10400664760062606994038747844895625872750212488858602663971334563613232045185857177383833781411830934303117994128623611996670112272953487791473086751129863" 86 86 and e = Z.of_string "65537" 87 87 in 88 - match Mirage_crypto_pk.Rsa.priv_of_primes ~e ~p ~q with Ok r -> r | _ -> assert false 88 + match Crypto_pk.Rsa.priv_of_primes ~e ~p ~q with Ok r -> r | _ -> assert false 89 89 90 - let enc_1024 = Mirage_crypto_pk.Rsa.(encrypt ~key:(pub_of_priv rsa_1024) msg_str) 90 + let enc_1024 = Crypto_pk.Rsa.(encrypt ~key:(pub_of_priv rsa_1024) msg_str) 91 91 92 92 let pkcs1_sig_1024 () = 93 - Mirage_crypto_pk.Rsa.PKCS1.sign ~hash:`SHA256 ~key:rsa_1024 (`Message msg_str) 93 + Crypto_pk.Rsa.PKCS1.sign ~hash:`SHA256 ~key:rsa_1024 (`Message msg_str) 94 94 95 95 let pkcs1_enc_1024 () = 96 - Mirage_crypto_pk.Rsa.(PKCS1.encrypt ~key:(pub_of_priv rsa_1024) msg_str) 96 + Crypto_pk.Rsa.(PKCS1.encrypt ~key:(pub_of_priv rsa_1024) msg_str) 97 97 98 98 let pss_sig_1024 () = PSS.sign ~key:rsa_1024 (`Message msg_str) 99 99 ··· 102 102 and q = Z.of_string "146461957885839900502732892013745315236120923895767594427579857452138451155393985820080680192640369593315439290134409437965406213465262989382655388410330601076036910359057156988645246773259111682038096388585157599977808854893528900530706460128823381760931962351810679571404043148961709991714582814015259432029" 103 103 and e = Z.of_string "65537" 104 104 in 105 - match Mirage_crypto_pk.Rsa.priv_of_primes ~e ~p ~q with Ok r -> r | _ -> assert false 105 + match Crypto_pk.Rsa.priv_of_primes ~e ~p ~q with Ok r -> r | _ -> assert false 106 106 107 - let enc_2048 = Mirage_crypto_pk.Rsa.(encrypt ~key:(pub_of_priv rsa_2048) msg_str) 107 + let enc_2048 = Crypto_pk.Rsa.(encrypt ~key:(pub_of_priv rsa_2048) msg_str) 108 108 109 109 let pkcs1_sig_2048 () = 110 - Mirage_crypto_pk.Rsa.PKCS1.sign ~hash:`SHA256 ~key:rsa_2048 (`Message msg_str) 110 + Crypto_pk.Rsa.PKCS1.sign ~hash:`SHA256 ~key:rsa_2048 (`Message msg_str) 111 111 112 112 let pkcs1_enc_2048 () = 113 - Mirage_crypto_pk.Rsa.(PKCS1.encrypt ~key:(pub_of_priv rsa_2048) msg_str) 113 + Crypto_pk.Rsa.(PKCS1.encrypt ~key:(pub_of_priv rsa_2048) msg_str) 114 114 115 115 let pss_sig_2048 () = PSS.sign ~key:rsa_2048 (`Message msg_str) 116 116 ··· 119 119 and q = Z.of_string "25905916162566396401205858643227945415345838368190515936191926936462899261314859092468495558719305083654714669527919862817831941531613073577910643681172802147392797914485263753968375221243705167910636382434485717071007054833155618588980128488599406663210791261135710551020276087851551652652612955553056226986980360600996201307035494196112173475664509878923172924086102889718336621725968169373963280305056864698229857913526607314633711315503607289470716733189135747457446349029256257187264165837635026903463931381823712962360342258652047970731347111703873301687821992467888598546386551115261010493902143134851640738743" 120 120 and e = Z.of_string "65537" 121 121 in 122 - match Mirage_crypto_pk.Rsa.priv_of_primes ~e ~p ~q with Ok r -> r | _ -> assert false 122 + match Crypto_pk.Rsa.priv_of_primes ~e ~p ~q with Ok r -> r | _ -> assert false 123 123 124 - let enc_4096 = Mirage_crypto_pk.Rsa.(encrypt ~key:(pub_of_priv rsa_4096) msg_str) 124 + let enc_4096 = Crypto_pk.Rsa.(encrypt ~key:(pub_of_priv rsa_4096) msg_str) 125 125 126 126 let pkcs1_sig_4096 () = 127 - Mirage_crypto_pk.Rsa.PKCS1.sign ~hash:`SHA256 ~key:rsa_4096 (`Message msg_str) 127 + Crypto_pk.Rsa.PKCS1.sign ~hash:`SHA256 ~key:rsa_4096 (`Message msg_str) 128 128 129 129 let pkcs1_enc_4096 () = 130 - Mirage_crypto_pk.Rsa.(PKCS1.encrypt ~key:(pub_of_priv rsa_4096) msg_str) 130 + Crypto_pk.Rsa.(PKCS1.encrypt ~key:(pub_of_priv rsa_4096) msg_str) 131 131 132 132 let pss_sig_4096 () = PSS.sign ~key:rsa_4096 (`Message msg_str) 133 133 ··· 138 138 and x = Z.of_string "33269272469299670210735451373406214067383586377" 139 139 and y = Z.of_string "43917635707590891841908570055721669604556135044554274942460553515946670787931699807386932177837523342760860376770220825997328312057886461226985675983491441562087492365801663397409369541614646669226917344513472367438132106373179011858311945451923744651780314133078253880297369792145807736223662521868826642853" 140 140 in 141 - match Mirage_crypto_pk.Dsa.priv ~fips:true ~p ~q ~gg ~x ~y () with Ok p -> p | _ -> assert false 141 + match Crypto_pk.Dsa.priv ~fips:true ~p ~q ~gg ~x ~y () with Ok p -> p | _ -> assert false 142 142 143 - let dsa_sig_1024 () = Mirage_crypto_pk.Dsa.sign ~key:dsa_1024 msg_str 143 + let dsa_sig_1024 () = Crypto_pk.Dsa.sign ~key:dsa_1024 msg_str 144 144 145 145 let dsa_2048 = 146 146 let p = Z.of_string "27787495469795504213817302334103600594688179071059183073859876165757248559489321478170600304273914000462158587756787453177210321379060448141559798652196363556897576291878245650614903612762833777567911000834171168229784178643222849655095281437320492725855855778320111645629834980350492228611813830302209080760811887894272862901026864911346096471199762409562102789142939773632891860019140618313962854554152891445175391927591825205548689170996430765723064763763481336517107917261869303217480777161449935319930795628114622197586510378927239068257979584784079128534248603619156372913573809491691986354447396965646770535701" ··· 149 149 and x = Z.of_string "52860861934156228997899838985740859941028688506510055821449681896336427977580" 150 150 and y = Z.of_string "16697822339875604612001674517725789858937385326266245308648897963274039128000291572870559603618903431422492771498840266582664620626826186158140214481920146230768719356298465470274085841064126012204317638870338958089054809559680905413861272320951150917299685355736888023985398767858005440235842845908452598291689850063919053521400020402671375982259094019780813889586357332424647365679629398571364161673401249910198031061651183589601097975488702613291524957230624044246866866974886847601585171352897595544769649242723658395277456627024303041369757410970512818793143517329469213213147704583953410882515213978051041273924" 151 151 in 152 - match Mirage_crypto_pk.Dsa.priv ~fips:true ~p ~q ~gg ~x ~y () with Ok p -> p | _ -> assert false 152 + match Crypto_pk.Dsa.priv ~fips:true ~p ~q ~gg ~x ~y () with Ok p -> p | _ -> assert false 153 153 154 - let dsa_sig_2048 () = Mirage_crypto_pk.Dsa.sign ~key:dsa_2048 msg_str 154 + let dsa_sig_2048 () = Crypto_pk.Dsa.sign ~key:dsa_2048 msg_str 155 155 156 156 let dsa_3072 = 157 157 let p = Z.of_string "4944862491052787177238323499959371418651354629231656321315236369672827559263545931134286049323485061071828187289578269594065783019111035804017538871324004047710342711620233110167493989997579634523303899794913823240058891327833786211541568251787338957336540247816021098378292806006955851897646808403078979142749428669072523191276645021175423303816467433407072660616741824124536840773744646488191896772232795413707995397140064396495425700133866462410490239713815308709711960470201906326732033816522202617817869465691798938486540955726912350768931476362143768721380759395525951947017232778140349423557015356082357043807910825817719748257213281893007933859227824276579765323175836008193865064772817200047353825332039369252224256435661514851653526942065285711420907389170574343434449883875510985495078384130667046036846831401643151166834922210257258578675547742596423035828159461629721005113634334227074529533688136165903014911127" ··· 160 160 and x = Z.of_string "57079433780483458942713357293831115449694380253611914431677328021806898761674" 161 161 and y = Z.of_string "2872172233173100601346399502391482510148300641600207189246652621232656647081281141886455256814187251102030580186748870087277263359506423691023579912476503628426574690699263443704236625550832436226673947182294798279064154375422081421444400893924415563728656687773617245084962617886701420982288621397340217078717788290878177343138178149109067141997920049624616209300715994802074480057682676445987819355778630849636079364539062466859717465892222793824712941403252645431023939220711618233660062829520555618350855085688062241702521140104357981881833598269736147371800258828202964600523335598361833482597511071900975835195171061421945579132277176597724513608746614358311884564512362186106480065540201711903122228315570389409204443391052987813355120223856839756971514334338065850104261467285471383663470187296456006848469765768400814476981451863643010333596484259098557995874127140419649424228480234701334240448168704764430867915060" 162 162 in 163 - match Mirage_crypto_pk.Dsa.priv ~fips:true ~p ~q ~gg ~x ~y () with Ok p -> p | _ -> assert false 163 + match Crypto_pk.Dsa.priv ~fips:true ~p ~q ~gg ~x ~y () with Ok p -> p | _ -> assert false 164 164 165 - let dsa_sig_3072 () = Mirage_crypto_pk.Dsa.sign ~key:dsa_3072 msg_str 165 + let dsa_sig_3072 () = Crypto_pk.Dsa.sign ~key:dsa_3072 msg_str 166 166 167 167 let dh_groups = 168 - ["oakley5 (1536)",Mirage_crypto_pk.Dh.Group.oakley_5; 169 - "oakley14 (2048)",Mirage_crypto_pk.Dh.Group.oakley_14; 170 - "ffdhe2048",Mirage_crypto_pk.Dh.Group.ffdhe2048; 171 - "ffdhe3072",Mirage_crypto_pk.Dh.Group.ffdhe3072; 172 - "ffdhe4096",Mirage_crypto_pk.Dh.Group.ffdhe4096; 173 - "ffdhe6144",Mirage_crypto_pk.Dh.Group.ffdhe6144] 168 + ["oakley5 (1536)",Crypto_pk.Dh.Group.oakley_5; 169 + "oakley14 (2048)",Crypto_pk.Dh.Group.oakley_14; 170 + "ffdhe2048",Crypto_pk.Dh.Group.ffdhe2048; 171 + "ffdhe3072",Crypto_pk.Dh.Group.ffdhe3072; 172 + "ffdhe4096",Crypto_pk.Dh.Group.ffdhe4096; 173 + "ffdhe6144",Crypto_pk.Dh.Group.ffdhe6144] 174 174 175 175 let dh_secrets = 176 176 List.map2 (fun (n, group) s -> 177 - (n, group), Mirage_crypto_pk.Dh.key_of_secret group ~s) 177 + (n, group), Crypto_pk.Dh.key_of_secret group ~s) 178 178 dh_groups 179 - (List.map (fun s -> Z.of_string s |> Mirage_crypto_pk.Z_extra.to_octets_be) 179 + (List.map (fun s -> Z.of_string s |> Crypto_pk.Z_extra.to_octets_be) 180 180 [ 181 181 "31271182055444024732867835946284871743952969208281694762833912267184" ; 182 182 "27594341083884344999714422172371027333192426063917478556668524561591" ; ··· 188 188 189 189 let ecdsa_p256 = 190 190 Result.get_ok 191 - (Mirage_crypto_ec.P256.Dsa.priv_of_octets 191 + (Crypto_ec.P256.Dsa.priv_of_octets 192 192 "\x08\x9f\x4f\xfc\xcc\xf9\xba\x13\xfe\xdd\x09\x42\xef\x08\xcf\x2d\x90\x9f\x32\xe2\x93\x4a\xb5\xc9\x3b\x6c\x99\xbe\x5a\x9f\xf5\x27") 193 193 194 - let ecdsa_p256_sig () = Mirage_crypto_ec.P256.Dsa.sign ~key:ecdsa_p256 msg_str_32 194 + let ecdsa_p256_sig () = Crypto_ec.P256.Dsa.sign ~key:ecdsa_p256 msg_str_32 195 195 196 196 let ecdsa_p384 = 197 197 Result.get_ok 198 - (Mirage_crypto_ec.P384.Dsa.priv_of_octets 198 + (Crypto_ec.P384.Dsa.priv_of_octets 199 199 "\xf5\xc0\xc9\xfb\x95\x17\x86\x41\xaf\x76\xf3\x83\x1f\x41\xe2\xd3\x7c\xfa\xaf\xff\xc7\xe6\x01\x72\xcf\xb0\x89\xfe\x60\x4b\x56\xa6\x1c\x7c\x31\xa6\x90\x4b\x3b\x5d\x08\x20\x7a\x4b\x81\xe2\x5e\xa5") 200 200 201 - let ecdsa_p384_sig () = Mirage_crypto_ec.P384.Dsa.sign ~key:ecdsa_p384 msg_str_48 201 + let ecdsa_p384_sig () = Crypto_ec.P384.Dsa.sign ~key:ecdsa_p384 msg_str_48 202 202 203 203 let ecdsa_p521 = 204 204 Result.get_ok 205 - (Mirage_crypto_ec.P521.Dsa.priv_of_octets 205 + (Crypto_ec.P521.Dsa.priv_of_octets 206 206 "\x00\xb1\x8f\x60\xc0\x35\x2a\xd8\xe3\xef\x98\x2f\x1d\xdf\xcf\x6e\xec\x7f\xa6\xca\xf0\xe6\xf3\x68\x35\x4a\x8b\x02\xb2\xd8\xac\x1e\x05\x9e\x30\x98\x91\xe2\xbf\xa8\x57\x91\xa5\xe7\x1b\x40\xbd\xec\xbf\x90\x2b\xf2\x43\xdc\x3b\x00\x80\x49\x5c\xf4\xd9\x1c\x78\x72\x8b\xd5") 207 207 208 - let ecdsa_p521_sig () = Mirage_crypto_ec.P521.Dsa.sign ~key:ecdsa_p521 msg_str_65 208 + let ecdsa_p521_sig () = Crypto_ec.P521.Dsa.sign ~key:ecdsa_p521 msg_str_65 209 209 210 210 let ed25519 = 211 - Result.get_ok (Mirage_crypto_ec.Ed25519.priv_of_octets 211 + Result.get_ok (Crypto_ec.Ed25519.priv_of_octets 212 212 "\x3e\x0a\xb6\x82\x17\x12\x75\xc5\x69\xfc\xe9\xca\x8b\xcc\xd2\xd2\x77\x14\x54\xa2\x30\x0c\x35\x29\xf7\xa4\xd8\x0b\x84\x38\x83\xbc") 213 213 214 - let ed25519_sig () = Mirage_crypto_ec.Ed25519.sign ~key:ed25519 msg_str 214 + let ed25519_sig () = Crypto_ec.Ed25519.sign ~key:ed25519 msg_str 215 215 216 216 let ecdsas = [ 217 217 ("P256", `P256 (ecdsa_p256, ecdsa_p256_sig ())); ··· 222 222 223 223 let ecdh_shares = 224 224 [ 225 - ("P256", `P256 (Mirage_crypto_ec.P256.Dh.secret_of_octets "\x47\x0d\x57\x70\x6c\x77\x06\xb6\x8a\x3f\x42\x3a\xea\xf4\xff\x7f\xdd\x02\x49\x4a\x10\xd3\xe3\x81\xc3\xc1\x1f\x72\x76\x80\x2c\xdc" |> Result.get_ok |> fst, 225 + ("P256", `P256 (Crypto_ec.P256.Dh.secret_of_octets "\x47\x0d\x57\x70\x6c\x77\x06\xb6\x8a\x3f\x42\x3a\xea\xf4\xff\x7f\xdd\x02\x49\x4a\x10\xd3\xe3\x81\xc3\xc1\x1f\x72\x76\x80\x2c\xdc" |> Result.get_ok |> fst, 226 226 "\x04\x11\xb3\xfc\x82\x72\x1c\x26\x9a\x19\x90\x9a\x3b\x2f\xc2\x6d\x98\x95\x82\x6d\x0c\xfc\xbc\x1f\x76\x26\xe4\x88\xf0\x1f\x4c\xa6\xb5\xc5\xed\x76\xad\xee\x7a\xf8\x1b\xb2\x0b\x17\xcf\x23\x1c\xbf\x0c\x67\xdb\x02\x95\xd6\x8d\x1d\x92\xc2\xd2\xa5\xa8\x06\x38\xd7\x8d")); 227 - ("P384", `P384 (Mirage_crypto_ec.P384.Dh.secret_of_octets "\xee\x55\xe2\x9b\x61\x75\x2d\x5a\x3e\x52\x56\x56\xdb\x8b\xd8\xfe\x6f\x94\xfa\xb8\xaa\xcc\x9e\x92\xac\xff\x4c\x48\x12\xbf\x7a\x61\x87\xab\xa4\x6c\xc6\x0a\xb8\xf0\x8e\xfc\xf2\xd5\x74\x58\x4b\x74" |> Result.get_ok |> fst, 227 + ("P384", `P384 (Crypto_ec.P384.Dh.secret_of_octets "\xee\x55\xe2\x9b\x61\x75\x2d\x5a\x3e\x52\x56\x56\xdb\x8b\xd8\xfe\x6f\x94\xfa\xb8\xaa\xcc\x9e\x92\xac\xff\x4c\x48\x12\xbf\x7a\x61\x87\xab\xa4\x6c\xc6\x0a\xb8\xf0\x8e\xfc\xf2\xd5\x74\x58\x4b\x74" |> Result.get_ok |> fst, 228 228 "\x04\x04\x89\xcf\x24\xbc\x80\xbf\x89\xfd\xfe\x9c\x05\xec\xc3\x9f\x69\x16\xad\x45\x09\xd9\x39\x85\x97\x95\x0d\x3d\x24\xe8\x28\xf6\xbf\x56\xba\x4a\xd6\xd2\x1e\xd7\x86\x3b\xed\x68\xe4\x13\x36\x4b\xd4\xc7\xb1\xe9\x04\x7d\x36\x12\x4c\x69\x53\xbe\x7c\x61\x20\x9c\xb3\xfc\x56\x45\x2f\x73\x05\x29\x37\x83\xc7\xc0\xed\x92\x9d\x6c\x98\xc7\xbc\x97\xf6\x0a\x72\xed\x22\x69\xa8\xeb\x19\xbb\x7e\xe1\x31")); 229 - ("P521", `P521 (Mirage_crypto_ec.P521.Dh.secret_of_octets "\x00\xaa\x47\x0b\xa1\xcc\x84\x3b\xa3\x14\x82\x1e\x72\xde\x4c\xd2\x99\xae\xc1\xf2\x6e\x9d\x64\xa0\xd8\x7d\xb1\x8a\x3d\xa9\xf6\x5c\x45\xec\xfc\xc5\x61\x7f\xf0\xd7\x3b\x2e\x0e\x1c\xdf\xf8\x04\x8e\x01\xbe\x5e\x20\x14\x94\x12\xe7\xdb\xfa\xb7\xfe\xae\x24\x9b\x1b\xfa\x4d" |> Result.get_ok |> fst, 229 + ("P521", `P521 (Crypto_ec.P521.Dh.secret_of_octets "\x00\xaa\x47\x0b\xa1\xcc\x84\x3b\xa3\x14\x82\x1e\x72\xde\x4c\xd2\x99\xae\xc1\xf2\x6e\x9d\x64\xa0\xd8\x7d\xb1\x8a\x3d\xa9\xf6\x5c\x45\xec\xfc\xc5\x61\x7f\xf0\xd7\x3b\x2e\x0e\x1c\xdf\xf8\x04\x8e\x01\xbe\x5e\x20\x14\x94\x12\xe7\xdb\xfa\xb7\xfe\xae\x24\x9b\x1b\xfa\x4d" |> Result.get_ok |> fst, 230 230 "\x04\x00\x1d\x16\x29\xee\xb1\xc4\x25\xf9\x04\xd7\x55\x33\x00\x79\xd1\x3c\x77\xda\x92\x1e\x01\xcf\x50\xd7\x17\xe0\xd6\x85\x0a\x81\xa3\x90\x2b\xb9\x2a\x03\xfa\xea\xcb\xd6\x28\x9c\x15\x90\x68\x5a\x60\x44\xb5\xe9\x4d\xcf\xc4\x1d\xeb\x6a\x88\xdb\x62\xa8\x91\xb0\xb8\x93\xbb\x00\xe4\x2a\x66\xb2\xf0\x13\xbd\xd0\xd2\x7d\x8e\x07\xcb\x35\xfc\x3e\x2c\x2b\x22\xf9\x3e\xcf\xd5\xea\xb7\x88\x61\x97\xca\x07\x3c\x2c\x5e\x68\x31\xd6\x5e\x2d\x0b\x8a\xa4\x08\x43\x8e\x49\x54\x2f\x05\xf4\x1c\x57\x6d\xf7\x0e\x3c\xaf\x5b\xb8\x22\x7d\x48\x30\x94\xae\x58")); 231 - ("X25519", `X25519 (Mirage_crypto_ec.X25519.secret_of_octets "\x4c\x6d\xb7\xcf\x93\x5b\xcf\x84\x02\x61\x78\xd4\x0c\x95\x6a\xf0\x9d\x8e\x36\x32\x03\x49\x0d\x2c\x41\x62\x5a\xcb\x68\xb9\x31\xa4" |> Result.get_ok |> fst, 231 + ("X25519", `X25519 (Crypto_ec.X25519.secret_of_octets "\x4c\x6d\xb7\xcf\x93\x5b\xcf\x84\x02\x61\x78\xd4\x0c\x95\x6a\xf0\x9d\x8e\x36\x32\x03\x49\x0d\x2c\x41\x62\x5a\xcb\x68\xb9\x31\xa4" |> Result.get_ok |> fst, 232 232 "\xca\x19\x19\x3c\xf5\xc0\xb3\x8c\x61\xaa\x01\xc1\x72\xb2\xe9\x3d\x16\xf7\x50\xd0\x84\x62\x77\xad\x32\x2d\xe5\xe4\xfb\x33\x24\x29")); 233 233 ] 234 234 ··· 237 237 let benchmarks = [ 238 238 239 239 bm "rsa-generate" (fun name -> 240 - count name (fun bits -> Mirage_crypto_pk.Rsa.generate ~bits ()) 240 + count name (fun bits -> Crypto_pk.Rsa.generate ~bits ()) 241 241 string_of_int [1024;2048;4096]) ; 242 242 243 243 bm "rsa-encrypt" (fun name -> 244 - count name (fun key -> Mirage_crypto_pk.Rsa.(encrypt ~key:(pub_of_priv key) msg_str)) 245 - (fun k -> string_of_int (Mirage_crypto_pk.Rsa.priv_bits k)) 244 + count name (fun key -> Crypto_pk.Rsa.(encrypt ~key:(pub_of_priv key) msg_str)) 245 + (fun k -> string_of_int (Crypto_pk.Rsa.priv_bits k)) 246 246 [rsa_1024;rsa_2048;rsa_4096]) ; 247 247 248 248 bm "rsa-decrypt" (fun name -> 249 - count name (fun (key, msg) -> Mirage_crypto_pk.Rsa.(decrypt ~key msg)) 250 - (fun (k, _) -> string_of_int (Mirage_crypto_pk.Rsa.priv_bits k)) 249 + count name (fun (key, msg) -> Crypto_pk.Rsa.(decrypt ~key msg)) 250 + (fun (k, _) -> string_of_int (Crypto_pk.Rsa.priv_bits k)) 251 251 [rsa_1024,enc_1024 ; rsa_2048,enc_2048 ; rsa_4096,enc_4096]) ; 252 252 253 253 bm "rsa-pkcs1-encrypt" (fun name -> 254 - count name (fun key -> Mirage_crypto_pk.Rsa.(PKCS1.encrypt ~key:(pub_of_priv key) msg_str)) 255 - (fun k -> string_of_int (Mirage_crypto_pk.Rsa.priv_bits k)) 254 + count name (fun key -> Crypto_pk.Rsa.(PKCS1.encrypt ~key:(pub_of_priv key) msg_str)) 255 + (fun k -> string_of_int (Crypto_pk.Rsa.priv_bits k)) 256 256 [rsa_1024;rsa_2048;rsa_4096]) ; 257 257 258 258 bm "rsa-pkcs1-decrypt" (fun name -> 259 - count name (fun (key, msg) -> Mirage_crypto_pk.Rsa.(PKCS1.decrypt ~key msg)) 260 - (fun (k, _) -> string_of_int (Mirage_crypto_pk.Rsa.priv_bits k)) 259 + count name (fun (key, msg) -> Crypto_pk.Rsa.(PKCS1.decrypt ~key msg)) 260 + (fun (k, _) -> string_of_int (Crypto_pk.Rsa.priv_bits k)) 261 261 [rsa_1024,pkcs1_enc_1024 () ; rsa_2048,pkcs1_enc_2048 () ; rsa_4096,pkcs1_enc_4096 ()]) ; 262 262 263 263 bm "rsa-pkcs1-sign" (fun name -> 264 - count name (fun key -> Mirage_crypto_pk.Rsa.PKCS1.sign ~hash:`SHA256 ~key (`Message msg_str)) 265 - (fun k -> string_of_int (Mirage_crypto_pk.Rsa.priv_bits k)) 264 + count name (fun key -> Crypto_pk.Rsa.PKCS1.sign ~hash:`SHA256 ~key (`Message msg_str)) 265 + (fun k -> string_of_int (Crypto_pk.Rsa.priv_bits k)) 266 266 [rsa_1024;rsa_2048;rsa_4096]) ; 267 267 268 268 bm "rsa-pkcs1-verify" (fun name -> 269 269 count name (fun (key, signature) -> 270 - Mirage_crypto_pk.Rsa.(PKCS1.verify ~hashp:(fun _ -> true) ~key:(pub_of_priv key) ~signature (`Message msg_str))) 271 - (fun (k, _) -> string_of_int (Mirage_crypto_pk.Rsa.priv_bits k)) 270 + Crypto_pk.Rsa.(PKCS1.verify ~hashp:(fun _ -> true) ~key:(pub_of_priv key) ~signature (`Message msg_str))) 271 + (fun (k, _) -> string_of_int (Crypto_pk.Rsa.priv_bits k)) 272 272 [rsa_1024,pkcs1_sig_1024 () ; rsa_2048,pkcs1_sig_2048 () ; rsa_4096,pkcs1_sig_4096 ()]) ; 273 273 274 274 bm "rsa-pss-sign" (fun name -> 275 275 count name (fun key -> PSS.sign ~key (`Message msg_str)) 276 - (fun k -> string_of_int (Mirage_crypto_pk.Rsa.priv_bits k)) 276 + (fun k -> string_of_int (Crypto_pk.Rsa.priv_bits k)) 277 277 [rsa_1024;rsa_2048;rsa_4096]) ; 278 278 279 279 bm "rsa-pss-verify" (fun name -> 280 280 count name (fun (key, signature) -> 281 - PSS.verify ~key:(Mirage_crypto_pk.Rsa.pub_of_priv key) ~signature (`Message msg_str)) 282 - (fun (k, _) -> string_of_int (Mirage_crypto_pk.Rsa.priv_bits k)) 281 + PSS.verify ~key:(Crypto_pk.Rsa.pub_of_priv key) ~signature (`Message msg_str)) 282 + (fun (k, _) -> string_of_int (Crypto_pk.Rsa.priv_bits k)) 283 283 [rsa_1024,pss_sig_1024 () ; rsa_2048,pss_sig_2048 () ; rsa_4096,pss_sig_4096 ()]) ; 284 284 285 285 bm "dsa-generate" (fun name -> 286 - count name (fun ks -> Mirage_crypto_pk.Dsa.generate ks) 286 + count name (fun ks -> Crypto_pk.Dsa.generate ks) 287 287 (function `Fips1024 -> "1024" | `Fips2048 -> "2048" | `Fips3072 -> "3072" | `Exactly (l, _) -> string_of_int l) 288 288 [`Fips1024;`Fips2048;`Fips3072]); 289 289 290 290 bm "dsa-sign" (fun name -> 291 - count name (fun key -> Mirage_crypto_pk.Dsa.sign ~key msg_str) 291 + count name (fun key -> Crypto_pk.Dsa.sign ~key msg_str) 292 292 (fun k -> string_of_int (Z.numbits k.p)) 293 293 [dsa_1024;dsa_2048;dsa_3072]); 294 294 295 295 bm "dsa-verify" (fun name -> 296 296 count name (fun (key, signature) -> 297 - Mirage_crypto_pk.Dsa.(verify ~key:(pub_of_priv key) signature msg_str)) 297 + Crypto_pk.Dsa.(verify ~key:(pub_of_priv key) signature msg_str)) 298 298 (fun (k, _) -> string_of_int (Z.numbits k.p)) 299 299 [dsa_1024,dsa_sig_1024 () ; dsa_2048,dsa_sig_2048 () ; dsa_3072,dsa_sig_3072 ()]); 300 300 301 301 bm "ecdsa-generate" (fun name -> 302 - let open Mirage_crypto_ec in 302 + let open Crypto_ec in 303 303 count name 304 304 (fun (_, x) -> match x with 305 305 | `P256 _ -> P256.Dsa.generate () |> ignore ··· 310 310 fst ecdsas); 311 311 312 312 bm "ecdsa-sign" (fun name -> 313 - let open Mirage_crypto_ec in 313 + let open Crypto_ec in 314 314 count name (fun (_, x) -> match x with 315 315 | `P256 (key, _) -> P256.Dsa.sign ~key msg_str_32 316 316 | `P384 (key, _) -> P384.Dsa.sign ~key msg_str_48 ··· 320 320 fst ecdsas); 321 321 322 322 bm "ecdsa-verify" (fun name -> 323 - let open Mirage_crypto_ec in 323 + let open Crypto_ec in 324 324 count name (fun (_, x) -> match x with 325 325 | `P256 (key, signature) -> P256.Dsa.(verify ~key:(pub_of_priv key) signature msg_str_32) 326 326 | `P384 (key, signature) -> P384.Dsa.(verify ~key:(pub_of_priv key) signature msg_str_48) ··· 329 329 ) fst ecdsas); 330 330 331 331 bm "dh-secret" (fun name -> 332 - count name (fun (_, group) -> Mirage_crypto_pk.Dh.gen_key group) 332 + count name (fun (_, group) -> Crypto_pk.Dh.gen_key group) 333 333 fst dh_groups); 334 334 335 335 bm "dh-share" (fun name -> 336 336 count name (fun (_, (sec, share)) -> 337 - Mirage_crypto_pk.Dh.shared sec share) 337 + Crypto_pk.Dh.shared sec share) 338 338 (fun ((g, _), _) -> g) dh_secrets); 339 339 340 340 bm "ecdh-secret" (fun name -> 341 - let open Mirage_crypto_ec in 341 + let open Crypto_ec in 342 342 count name (fun (_, x) -> match x with 343 343 | `P256 _ -> P256.Dh.gen_key () |> ignore 344 344 | `P384 _ -> P384.Dh.gen_key () |> ignore ··· 347 347 fst ecdh_shares); 348 348 349 349 bm "ecdh-share" (fun name -> 350 - let open Mirage_crypto_ec in 350 + let open Crypto_ec in 351 351 count name (fun (_, x) -> match x with 352 352 | `P256 (sec, share) -> P256.Dh.key_exchange sec share |> Result.get_ok |> ignore 353 353 | `P384 (sec, share) -> P384.Dh.key_exchange sec share |> Result.get_ok |> ignore ··· 356 356 fst ecdh_shares); 357 357 358 358 bm "chacha20-poly1305" (fun name -> 359 - let key = Chacha20.of_secret (Mirage_crypto_rng.generate 32) 360 - and nonce = Mirage_crypto_rng.generate 8 in 359 + let key = Chacha20.of_secret (Crypto_rng.generate 32) 360 + and nonce = Crypto_rng.generate 8 in 361 361 throughput_into ~add:Chacha20.tag_size name 362 362 (fun dst cs -> Chacha20.authenticate_encrypt_into ~key ~nonce cs ~src_off:0 dst ~dst_off:0 ~tag_off:(String.length cs) (String.length cs))) ; 363 363 364 364 bm "chacha20-poly1305-unsafe" (fun name -> 365 - let key = Chacha20.of_secret (Mirage_crypto_rng.generate 32) 366 - and nonce = Mirage_crypto_rng.generate 8 in 365 + let key = Chacha20.of_secret (Crypto_rng.generate 32) 366 + and nonce = Crypto_rng.generate 8 in 367 367 throughput_into ~add:Chacha20.tag_size name 368 368 (fun dst cs -> Chacha20.unsafe_authenticate_encrypt_into ~key ~nonce cs ~src_off:0 dst ~dst_off:0 ~tag_off:(String.length cs) (String.length cs))) ; 369 369 370 370 bm "aes-128-ecb" (fun name -> 371 - let key = AES.ECB.of_secret (Mirage_crypto_rng.generate 16) in 371 + let key = AES.ECB.of_secret (Crypto_rng.generate 16) in 372 372 throughput_into name 373 373 (fun dst cs -> AES.ECB.encrypt_into ~key cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 374 374 375 375 bm "aes-192-ecb" (fun name -> 376 - let key = AES.ECB.of_secret (Mirage_crypto_rng.generate 24) in 376 + let key = AES.ECB.of_secret (Crypto_rng.generate 24) in 377 377 throughput_into name (fun dst cs -> AES.ECB.encrypt_into ~key cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 378 378 379 379 bm "aes-192-ecb-unsafe" (fun name -> 380 - let key = AES.ECB.of_secret (Mirage_crypto_rng.generate 24) in 380 + let key = AES.ECB.of_secret (Crypto_rng.generate 24) in 381 381 throughput_into name (fun dst cs -> AES.ECB.unsafe_encrypt_into ~key cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 382 382 383 383 bm "aes-256-ecb" (fun name -> 384 - let key = AES.ECB.of_secret (Mirage_crypto_rng.generate 32) in 384 + let key = AES.ECB.of_secret (Crypto_rng.generate 32) in 385 385 throughput_into name (fun dst cs -> AES.ECB.encrypt_into ~key cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 386 386 387 387 bm "aes-256-ecb-unsafe" (fun name -> 388 - let key = AES.ECB.of_secret (Mirage_crypto_rng.generate 32) in 388 + let key = AES.ECB.of_secret (Crypto_rng.generate 32) in 389 389 throughput_into name (fun dst cs -> AES.ECB.unsafe_encrypt_into ~key cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 390 390 391 391 bm "aes-128-ecb-unsafe" (fun name -> 392 - let key = AES.ECB.of_secret (Mirage_crypto_rng.generate 16) in 392 + let key = AES.ECB.of_secret (Crypto_rng.generate 16) in 393 393 throughput_into name 394 394 (fun dst cs -> AES.ECB.unsafe_encrypt_into ~key cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 395 395 396 396 bm "aes-128-cbc-e" (fun name -> 397 - let key = AES.CBC.of_secret (Mirage_crypto_rng.generate 16) 398 - and iv = Mirage_crypto_rng.generate 16 in 397 + let key = AES.CBC.of_secret (Crypto_rng.generate 16) 398 + and iv = Crypto_rng.generate 16 in 399 399 throughput_into name 400 400 (fun dst cs -> AES.CBC.encrypt_into ~key ~iv cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 401 401 402 402 bm "aes-128-cbc-e-unsafe" (fun name -> 403 - let key = AES.CBC.of_secret (Mirage_crypto_rng.generate 16) 404 - and iv = Mirage_crypto_rng.generate 16 in 403 + let key = AES.CBC.of_secret (Crypto_rng.generate 16) 404 + and iv = Crypto_rng.generate 16 in 405 405 throughput_into name 406 406 (fun dst cs -> AES.CBC.unsafe_encrypt_into ~key ~iv cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 407 407 408 408 bm "aes-128-cbc-e-unsafe-inplace" (fun name -> 409 - let key = AES.CBC.of_secret (Mirage_crypto_rng.generate 16) 410 - and iv = Mirage_crypto_rng.generate 16 in 409 + let key = AES.CBC.of_secret (Crypto_rng.generate 16) 410 + and iv = Crypto_rng.generate 16 in 411 411 throughput name 412 412 (fun cs -> 413 413 let b = Bytes.unsafe_of_string cs in 414 414 AES.CBC.unsafe_encrypt_into_inplace ~key ~iv b ~dst_off:0 (String.length cs))) ; 415 415 416 416 bm "aes-128-cbc-d" (fun name -> 417 - let key = AES.CBC.of_secret (Mirage_crypto_rng.generate 16) 418 - and iv = Mirage_crypto_rng.generate 16 in 417 + let key = AES.CBC.of_secret (Crypto_rng.generate 16) 418 + and iv = Crypto_rng.generate 16 in 419 419 throughput_into name 420 420 (fun dst cs -> AES.CBC.decrypt_into ~key ~iv cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 421 421 422 422 bm "aes-128-cbc-d-unsafe" (fun name -> 423 - let key = AES.CBC.of_secret (Mirage_crypto_rng.generate 16) 424 - and iv = Mirage_crypto_rng.generate 16 in 423 + let key = AES.CBC.of_secret (Crypto_rng.generate 16) 424 + and iv = Crypto_rng.generate 16 in 425 425 throughput_into name 426 426 (fun dst cs -> AES.CBC.unsafe_decrypt_into ~key ~iv cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 427 427 428 428 bm "aes-128-ctr" (fun name -> 429 - let key = Mirage_crypto_rng.generate 16 |> AES.CTR.of_secret 430 - and ctr = Mirage_crypto_rng.generate 16 |> AES.CTR.ctr_of_octets in 429 + let key = Crypto_rng.generate 16 |> AES.CTR.of_secret 430 + and ctr = Crypto_rng.generate 16 |> AES.CTR.ctr_of_octets in 431 431 throughput_into name (fun dst cs -> AES.CTR.encrypt_into ~key ~ctr cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 432 432 433 433 bm "aes-128-ctr-unsafe" (fun name -> 434 - let key = Mirage_crypto_rng.generate 16 |> AES.CTR.of_secret 435 - and ctr = Mirage_crypto_rng.generate 16 |> AES.CTR.ctr_of_octets in 434 + let key = Crypto_rng.generate 16 |> AES.CTR.of_secret 435 + and ctr = Crypto_rng.generate 16 |> AES.CTR.ctr_of_octets in 436 436 throughput_into name (fun dst cs -> AES.CTR.unsafe_encrypt_into ~key ~ctr cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 437 437 438 438 bm "aes-128-gcm" (fun name -> 439 - let key = AES.GCM.of_secret (Mirage_crypto_rng.generate 16) 440 - and nonce = Mirage_crypto_rng.generate 12 in 439 + let key = AES.GCM.of_secret (Crypto_rng.generate 16) 440 + and nonce = Crypto_rng.generate 12 in 441 441 throughput_into ~add:AES.GCM.tag_size name 442 442 (fun dst cs -> AES.GCM.authenticate_encrypt_into ~key ~nonce cs ~src_off:0 dst ~dst_off:0 ~tag_off:(String.length cs) (String.length cs))); 443 443 444 444 bm "aes-128-gcm-unsafe" (fun name -> 445 - let key = AES.GCM.of_secret (Mirage_crypto_rng.generate 16) 446 - and nonce = Mirage_crypto_rng.generate 12 in 445 + let key = AES.GCM.of_secret (Crypto_rng.generate 16) 446 + and nonce = Crypto_rng.generate 12 in 447 447 throughput_into ~add:AES.GCM.tag_size name 448 448 (fun dst cs -> AES.GCM.unsafe_authenticate_encrypt_into ~key ~nonce cs ~src_off:0 dst ~dst_off:0 ~tag_off:(String.length cs) (String.length cs))); 449 449 450 450 bm "aes-128-ghash" (fun name -> 451 - let key = AES.GCM.of_secret (Mirage_crypto_rng.generate 16) 452 - and nonce = Mirage_crypto_rng.generate 12 in 451 + let key = AES.GCM.of_secret (Crypto_rng.generate 16) 452 + and nonce = Crypto_rng.generate 12 in 453 453 throughput_into ~add:AES.GCM.tag_size name 454 454 (fun dst cs -> AES.GCM.authenticate_encrypt_into ~key ~nonce ~adata:cs "" ~src_off:0 dst ~dst_off:0 ~tag_off:0 0)); 455 455 456 456 bm "aes-128-ghash-unsafe" (fun name -> 457 - let key = AES.GCM.of_secret (Mirage_crypto_rng.generate 16) 458 - and nonce = Mirage_crypto_rng.generate 12 in 457 + let key = AES.GCM.of_secret (Crypto_rng.generate 16) 458 + and nonce = Crypto_rng.generate 12 in 459 459 throughput_into ~add:AES.GCM.tag_size name 460 460 (fun dst cs -> AES.GCM.unsafe_authenticate_encrypt_into ~key ~nonce ~adata:cs "" ~src_off:0 dst ~dst_off:0 ~tag_off:0 0)); 461 461 462 462 bm "aes-128-ccm" (fun name -> 463 - let key = AES.CCM16.of_secret (Mirage_crypto_rng.generate 16) 464 - and nonce = Mirage_crypto_rng.generate 10 in 463 + let key = AES.CCM16.of_secret (Crypto_rng.generate 16) 464 + and nonce = Crypto_rng.generate 10 in 465 465 throughput_into ~add:AES.CCM16.tag_size name 466 466 (fun dst cs -> AES.CCM16.authenticate_encrypt_into ~key ~nonce cs ~src_off:0 dst ~dst_off:0 ~tag_off:(String.length cs) (String.length cs))); 467 467 468 468 bm "aes-128-ccm-unsafe" (fun name -> 469 - let key = AES.CCM16.of_secret (Mirage_crypto_rng.generate 16) 470 - and nonce = Mirage_crypto_rng.generate 10 in 469 + let key = AES.CCM16.of_secret (Crypto_rng.generate 16) 470 + and nonce = Crypto_rng.generate 10 in 471 471 throughput_into ~add:AES.CCM16.tag_size name 472 472 (fun dst cs -> AES.CCM16.unsafe_authenticate_encrypt_into ~key ~nonce cs ~src_off:0 dst ~dst_off:0 ~tag_off:(String.length cs) (String.length cs))); 473 473 474 474 bm "d3des-ecb" (fun name -> 475 - let key = DES.ECB.of_secret (Mirage_crypto_rng.generate 24) in 475 + let key = DES.ECB.of_secret (Crypto_rng.generate 24) in 476 476 throughput_into name (fun dst cs -> DES.ECB.encrypt_into ~key cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 477 477 478 478 bm "d3des-ecb-unsafe" (fun name -> 479 - let key = DES.ECB.of_secret (Mirage_crypto_rng.generate 24) in 479 + let key = DES.ECB.of_secret (Crypto_rng.generate 24) in 480 480 throughput_into name (fun dst cs -> DES.ECB.unsafe_encrypt_into ~key cs ~src_off:0 dst ~dst_off:0 (String.length cs))) ; 481 481 482 482 bm "fortuna" (fun name -> 483 483 begin[@alert "-deprecated"] 484 - Mirage_crypto_rng_unix.initialize (module Mirage_crypto_rng.Fortuna); 484 + Crypto_rng_unix.initialize (module Crypto_rng.Fortuna); 485 485 throughput name (fun buf -> 486 486 let buf = Bytes.unsafe_of_string buf in 487 - Mirage_crypto_rng.generate_into buf ~off:0 (Bytes.length buf)) 487 + Crypto_rng.generate_into buf ~off:0 (Bytes.length buf)) 488 488 end); 489 489 490 490 bm "getentropy" (fun name -> 491 - Mirage_crypto_rng_unix.use_getentropy (); 491 + Crypto_rng_unix.use_getentropy (); 492 492 throughput name (fun buf -> 493 493 let buf = Bytes.unsafe_of_string buf in 494 - Mirage_crypto_rng.generate_into buf ~off:0 (Bytes.length buf))) ; 494 + Crypto_rng.generate_into buf ~off:0 (Bytes.length buf))) ; 495 495 496 496 bm "urandom" (fun name -> 497 - Mirage_crypto_rng_unix.use_dev_urandom (); 497 + Crypto_rng_unix.use_dev_urandom (); 498 498 throughput name (fun buf -> 499 499 let buf = Bytes.unsafe_of_string buf in 500 - Mirage_crypto_rng.generate_into buf ~off:0 (Bytes.length buf))) ; 500 + Crypto_rng.generate_into buf ~off:0 (Bytes.length buf))) ; 501 501 ] 502 502 503 503 let help () = ··· 517 517 518 518 let () = 519 519 let seed = "abcd" in 520 - let g = Mirage_crypto_rng.(create ~seed (module Fortuna)) in 521 - Mirage_crypto_rng.set_default_generator g; 520 + let g = Crypto_rng.(create ~seed (module Fortuna)) in 521 + Crypto_rng.set_default_generator g; 522 522 match Array.to_list Sys.argv with 523 523 | _::(_::_ as args) -> begin 524 524 try

+36

crypto-pk.opam

··· 1 + opam-version: "2.0" 2 + homepage: "https://git.recoil.org/gazagnaire.org/ocaml-crypto" 3 + dev-repo: "git+ssh://git@git.recoil.org/gazagnaire.org/ocaml-crypto.git" 4 + bug-reports: "https://git.recoil.org/gazagnaire.org/ocaml-crypto/issues" 5 + authors: ["David Kaloper <dk505@cam.ac.uk>" "Hannes Mehnert <hannes@mehnert.org>" ] 6 + maintainer: "Thomas Gazagnaire <thomas@gazagnaire.org>" 7 + license: "ISC" 8 + synopsis: "Simple public-key cryptography (fork of mirage-crypto-pk)" 9 + 10 + build: [ ["dune" "subst"] {dev} 11 + ["dune" "build" "-p" name "-j" jobs ] 12 + ["dune" "runtest" "-p" name "-j" jobs] {with-test} ] 13 + 14 + depends: [ 15 + "conf-gmp-powm-sec" {build} 16 + "ocaml" {>= "4.13.0"} 17 + "dune" {>= "2.7"} 18 + "ounit2" {with-test} 19 + "randomconv" {with-test & >= "0.2.0"} 20 + "ohex" {with-test & >= "0.2.0"} 21 + "crypto" {=version} 22 + "crypto-rng" {=version} 23 + "digestif" {>= "1.2.0"} 24 + "zarith" {>= "1.13"} 25 + "eqaf" {>= "0.8"} 26 + ] 27 + conflicts: [ 28 + "ocaml-freestanding" 29 + ] 30 + description: """ 31 + WARNING: This is an experimental fork of mirage-crypto-pk. Do not use in production. 32 + Use mirage-crypto-pk instead: https://github.com/mirage/mirage-crypto 33 + 34 + Crypto-pk provides public-key cryptography (RSA, DSA, DH). 35 + """ 36 + x-maintenance-intent: [ "(latest)" ]

+35

crypto-rng.opam

··· 1 + opam-version: "2.0" 2 + homepage: "https://git.recoil.org/gazagnaire.org/ocaml-crypto" 3 + dev-repo: "git+ssh://git@git.recoil.org/gazagnaire.org/ocaml-crypto.git" 4 + bug-reports: "https://git.recoil.org/gazagnaire.org/ocaml-crypto/issues" 5 + authors: ["David Kaloper <dk505@cam.ac.uk>" "Hannes Mehnert <hannes@mehnert.org>" ] 6 + maintainer: "Thomas Gazagnaire <thomas@gazagnaire.org>" 7 + license: "ISC" 8 + synopsis: "A cryptographically secure PRNG (fork of mirage-crypto-rng)" 9 + 10 + build: [ ["dune" "subst"] {dev} 11 + ["dune" "build" "-p" name "-j" jobs ] 12 + ["dune" "runtest" "-p" name "-j" jobs] {with-test} ] 13 + 14 + depends: [ 15 + "ocaml" {>= "4.14.0"} 16 + "dune" {>= "2.7"} 17 + "dune-configurator" {>= "2.0.0"} 18 + "duration" 19 + "logs" 20 + "crypto" {=version} 21 + "digestif" {>= "1.1.4"} 22 + "ounit2" {with-test} 23 + "randomconv" {with-test & >= "0.2.0"} 24 + "ohex" {with-test & >= "0.2.0"} 25 + ] 26 + conflicts: [ "mirage-runtime" {< "3.8.0"} ] 27 + description: """ 28 + WARNING: This is an experimental fork of mirage-crypto-rng. Do not use in production. 29 + Use mirage-crypto-rng instead: https://github.com/mirage/mirage-crypto 30 + 31 + Crypto-rng provides a random number generator interface, and 32 + implementations: Fortuna, HMAC-DRBG, getrandom/getentropy based (in the unix 33 + sublibrary) 34 + """ 35 + x-maintenance-intent: [ "(latest)" ]

+32

crypto.opam

··· 1 + opam-version: "2.0" 2 + homepage: "https://git.recoil.org/gazagnaire.org/ocaml-crypto" 3 + dev-repo: "git+ssh://git@git.recoil.org/gazagnaire.org/ocaml-crypto.git" 4 + bug-reports: "https://git.recoil.org/gazagnaire.org/ocaml-crypto/issues" 5 + authors: ["David Kaloper <dk505@cam.ac.uk>" "Hannes Mehnert <hannes@mehnert.org>" ] 6 + maintainer: "Thomas Gazagnaire <thomas@gazagnaire.org>" 7 + license: "ISC" 8 + synopsis: "Simple symmetric cryptography (fork of mirage-crypto)" 9 + 10 + build: [ ["dune" "subst"] {dev} 11 + ["dune" "build" "-p" name "-j" jobs ] 12 + ["dune" "runtest" "-p" name "-j" jobs] {with-test} ] 13 + 14 + depends: [ 15 + "ocaml" {>= "4.13.0"} 16 + "dune" {>= "2.7"} 17 + "dune-configurator" {>= "2.0.0"} 18 + "ounit2" {with-test} 19 + "ohex" {with-test & >= "0.2.0"} 20 + "eqaf" {>= "0.8"} 21 + ] 22 + conflicts: [ 23 + "ocaml-freestanding" 24 + "result" {< "1.5"} 25 + ] 26 + description: """ 27 + WARNING: This is an experimental fork of mirage-crypto. Do not use in production. 28 + Use mirage-crypto instead: https://github.com/mirage/mirage-crypto 29 + 30 + Crypto provides symmetric ciphers (DES, AES, RC4, ChaCha20/Poly1305). 31 + """ 32 + x-maintenance-intent: [ "(latest)" ]

+1 -2

dune-project

··· 1 1 (lang dune 2.7) 2 - (name mirage-crypto) 3 - (formatting disabled) 2 + (name crypto)

+5 -4

ec/dune

··· 1 1 (library 2 - (name mirage_crypto_ec) 3 - (public_name mirage-crypto-ec) 4 - (libraries eqaf mirage-crypto-rng digestif) 2 + (name crypto_ec) 3 + (public_name crypto-ec) 4 + (libraries eqaf crypto-rng digestif) 5 5 (foreign_stubs 6 6 (language c) 7 7 (names p256_stubs np256_stubs p384_stubs np384_stubs p521_stubs np521_stubs ··· 13 13 14 14 (env 15 15 (dev 16 - (c_flags (:include cflags_warn.sexp)))) 16 + (c_flags 17 + (:include cflags_warn.sexp)))) 17 18 18 19 (include_subdirs unqualified) 19 20

+3 -2

ec/gen_tables/dune

··· 1 1 (include_subdirs no) 2 + 2 3 (executable 3 - (name gen_tables) 4 - (libraries mirage_crypto_ec)) 4 + (name gen_tables) 5 + (libraries crypto_ec))

+2 -2

ec/gen_tables/gen_tables.ml

··· 64 64 std_formatter tables; 65 65 printf "@];@," 66 66 67 - let print_toplevel name wordsize (module P : Mirage_crypto_ec.Dh_dsa) = 67 + let print_toplevel name wordsize (module P : Crypto_ec.Dh_dsa) = 68 68 let tables = P.Dsa.Precompute.generator_tables () in 69 69 assert (wordsize = Sys.word_size); 70 70 check_shape tables; ··· 84 84 print_tables ~wordsize tables 85 85 86 86 let curves = 87 - Mirage_crypto_ec. 87 + Crypto_ec. 88 88 [ 89 89 ("p256", (module P256 : Dh_dsa)); 90 90 ("p384", (module P384));

+11 -11

ec/mirage_crypto_ec.ml ec/crypto_ec.ml

··· 39 39 val secret_of_octets : ?compress:bool -> string -> 40 40 (secret * string, error) result 41 41 val secret_to_octets : secret -> string 42 - val gen_key : ?compress:bool -> ?g:Mirage_crypto_rng.g -> unit -> 42 + val gen_key : ?compress:bool -> ?g:Crypto_rng.g -> unit -> 43 43 secret * string 44 44 val key_exchange : secret -> string -> (string, error) result 45 45 end ··· 54 54 val pub_of_octets : string -> (pub, error) result 55 55 val pub_to_octets : ?compress:bool -> pub -> string 56 56 val pub_of_priv : priv -> pub 57 - val generate : ?g:Mirage_crypto_rng.g -> unit -> priv * pub 57 + val generate : ?g:Crypto_rng.g -> unit -> priv * pub 58 58 val sign : key:priv -> ?k:string -> string -> string * string 59 59 val verify : key:pub -> string * string -> string -> bool 60 60 module K_gen (H : Digestif.S) : sig ··· 523 523 S.to_octets s 524 524 525 525 let rec generate_private_key ?g () = 526 - let candidate = Mirage_crypto_rng.generate ?g Param.byte_length in 526 + let candidate = Crypto_rng.generate ?g Param.byte_length in 527 527 match S.of_octets candidate with 528 528 | Ok secret -> secret 529 529 | Error _ -> generate_private_key ?g () ··· 640 640 641 641 (* RFC 6979: compute a deterministic k *) 642 642 module K_gen (H : Digestif.S) = struct 643 - let drbg : 'a Mirage_crypto_rng.generator = 644 - let module M = Mirage_crypto_rng.Hmac_drbg (H) in (module M) 643 + let drbg : 'a Crypto_rng.generator = 644 + let module M = Crypto_rng.Hmac_drbg (H) in (module M) 645 645 646 646 let g ~key msg = 647 - let g = Mirage_crypto_rng.create ~strict:true drbg in 648 - Mirage_crypto_rng.reseed ~g (S.to_octets key ^ msg); 647 + let g = Crypto_rng.create ~strict:true drbg in 648 + Crypto_rng.reseed ~g (S.to_octets key ^ msg); 649 649 g 650 650 651 651 (* Defined in RFC 6979 sec 2.3.2 with ··· 672 672 let gen g = 673 673 let rec go () = 674 674 let b = Bytes.create Param.byte_length in 675 - Mirage_crypto_rng.generate_into ~g b Param.byte_length; 675 + Crypto_rng.generate_into ~g b Param.byte_length; 676 676 (* truncate to the desired number of bits *) 677 677 let r = bits2int b in 678 678 if S.is_in_range r then r else go () ··· 694 694 (* FIPS 186-4 B 4.2 *) 695 695 let d = 696 696 let rec one () = 697 - match S.of_octets (Mirage_crypto_rng.generate ?g Param.byte_length) with 697 + match S.of_octets (Crypto_rng.generate ?g Param.byte_length) with 698 698 | Ok x -> x 699 699 | Error _ -> one () 700 700 in ··· 978 978 let public priv = scalar_mult priv basepoint 979 979 980 980 let gen_key ?compress:_ ?g () = 981 - let secret = Mirage_crypto_rng.generate ?g key_len in 981 + let secret = Crypto_rng.generate ?g key_len in 982 982 secret, public secret 983 983 984 984 let secret_of_octets ?compress:_ s = ··· 1072 1072 let pub_to_octets pub = pub 1073 1073 1074 1074 let generate ?g () = 1075 - let secret = Mirage_crypto_rng.generate ?g key_len in 1075 + let secret = Crypto_rng.generate ?g key_len in 1076 1076 secret, pub_of_priv secret 1077 1077 1078 1078 let sign ~key msg =

+3 -3

ec/mirage_crypto_ec.mli ec/crypto_ec.mli

··· 42 42 (** [secret_to_octets secret] encodes the provided secret into a freshly 43 43 allocated buffer. *) 44 44 45 - val gen_key : ?compress:bool -> ?g:Mirage_crypto_rng.g -> unit -> 45 + val gen_key : ?compress:bool -> ?g:Crypto_rng.g -> unit -> 46 46 secret * string 47 47 (** [gen_key ~compress ~g ()] generates a private and a public key for 48 48 Ephemeral Diffie-Hellman. If [compress] is provided and [true] (defaults ··· 107 107 108 108 (** {2 Key generation} *) 109 109 110 - val generate : ?g:Mirage_crypto_rng.g -> unit -> priv * pub 110 + val generate : ?g:Crypto_rng.g -> unit -> priv * pub 111 111 (** [generate ~g ()] generates a key pair. *) 112 112 113 113 (** {2 Cryptographic operations} *) ··· 245 245 246 246 (** {2 Key generation} *) 247 247 248 - val generate : ?g:Mirage_crypto_rng.g -> unit -> priv * pub 248 + val generate : ?g:Crypto_rng.g -> unit -> priv * pub 249 249 (** [generate ~g ()] generates a key pair. *) 250 250 251 251 (** {2 Cryptographic operations} *)

+1 -1

ec/native/curve25519_stubs.c