tem_ruby 0.14.0 → 0.14.1

data/CHANGELOG

@@ -1,3 +1,5 @@
+v0.14.1. Benchmarks for symmetric encryption.
+
 v0.14.0. Finalized symmetric encryption (fw 1.14).
 
 v0.13.0. Public bits in TEM buffer stats (fw 1.13).

data/lib/tem/benchmarks/benchmarks.rb

@@ -16,6 +16,8 @@ require 'tem/benchmarks/vm_perf_bound.rb'
 
 
 class Tem::Benchmarks
+  attr_reader :timing
+  
   def setup
     @tem = Tem.auto_tem
     
@@ -43,13 +45,19 @@ class Tem::Benchmarks
       end
       avg_time = timings.inject { |a,v| a + v } / timings.length
       max_diff = timings.map { |t| (t - avg_time).abs }.max
-      uncertainty = 100 * max_diff / avg_time
+      uncertainty = max_diff / avg_time
       print "%8d: %3.8fs per run, %3.8fs uncertainty (%2.5f%%)\n" %
           [n, avg_time / n, max_diff / n, 100 * uncertainty]
       
-      return avg_time / n unless max_diff / avg_time >= 0.01
-      n *= 2
+      if max_diff / avg_time >= 0.01
+        n *= 2
+        next
+      end
+      
+      @timing = avg_time / n
+      break
     end
+    @timing
   end
   
   def self.all_benchmarks
@@ -58,7 +66,8 @@ class Tem::Benchmarks
     t.setup
     t.methods.select { |m| m =~ /time_/ }.each do |m|
       print "Timing: #{m[5..-1]}...\n"
-      benchmarks[m] = t.send m.to_sym
+      t.send m.to_sym
+      benchmarks[m] = t.timing
     end
     t.teardown
     benchmarks

data/lib/tem/benchmarks/blank_bound_secpack.rb

@@ -9,20 +9,27 @@
 
 # :nodoc:
 class Tem::Benchmarks
-  def time_blank_bound_secpack
-    secpack = @tem.assemble { |s|
-      s.ldbc 0
-      s.outnew
-      s.halt
-      s.label :secret
-      s.zeros :tem_ubyte, 50
-      s.label :plain
-      s.zeros :tem_ubyte, 220
-      s.stack 1
-    }
+  def time_blank_bound_secpack_rsa
+    secpack = blank_seclosure
     secpack.bind @tem.pubek, :secret, :plain
-
-    print "SECpack has #{secpack.body.length} bytes, runs 3 instructions and produces 0 bytes\n"
+    print "RSA-bound SECpack has #{secpack.body.length} bytes, " +
+          "executes #{blank_seclosure_opcount} instructions and produces " +
+          "#{blank_seclosure_outcount} bytes\n"
     do_timing { @tem.execute secpack }
   end
+  
+  def time_blank_bound_secpack_3des
+    key = Tem::Keys::Symmetric.generate
+    authz = [1] * 20
+    key_id = @tem.tk_post_key key, authz
+    
+    secpack = blank_seclosure
+    secpack.bind key, :secret, :plain
+    print "3DES-bound SECpack has #{secpack.body.length} bytes, " +
+          "executes #{blank_seclosure_opcount} instructions and produces " +
+          "#{blank_seclosure_outcount} bytes\n"
+    do_timing { @tem.execute secpack, key_id }
+
+    @tem.tk_delete_key key_id, authz
+  end  
 end

data/lib/tem/benchmarks/blank_sec.rb

@@ -13,16 +13,35 @@
 
 # :nodoc:
 class Tem::Benchmarks
-  def time_blank_sec
-    secpack = @tem.assemble { |s|
+  # The SEClosure used in the blank benchmark.
+  def blank_seclosure
+    @tem.assemble { |s|
       s.ldbc 0
       s.outnew
       s.halt
-      s.zeros :tem_ubyte, 70
+      s.label :secret
+      s.zeros :tem_ubyte, 50
+      s.label :plain
+      s.zeros :tem_ubyte, 220
       s.stack 1
     }
-
-    print "SECpack has #{secpack.body.length} bytes, runs 3 instructions and produces 0 bytes\n"
+  end
+  
+  # Number of opcodes executed by the blank SEClosure.
+  def blank_seclosure_opcount
+    3
+  end
+  
+  # Number of bytes output by the blank SEClosure.
+  def blank_seclosure_outcount
+    0
+  end
+  
+  def time_blank_sec
+    secpack = blank_seclosure
+    print "SECpack has #{secpack.body.length} bytes, " +
+          "executes #{blank_seclosure_opcount} instructions and produces " +
+          "#{blank_seclosure_outcount} bytes\n"
     do_timing { @tem.execute secpack }
   end
 end

data/lib/tem/benchmarks/devchip_decrypt.rb

@@ -11,11 +11,33 @@
 
 # :nodoc:
 class Tem::Benchmarks
-  def time_devchip_decrypt
+  def time_devchip_decrypt_rsa_long
     pubek = @tem.pubek
     data = (1...120).map { |i| (i * i * 217 + i * 661 + 393) % 256 }
     encrypted_data = pubek.encrypt data
-    print "Encrypted blob has #{encrypted_data.length} bytes\n"
+    print "RSA-encrypted blob has #{encrypted_data.length} bytes\n"
     do_timing { @tem.devchip_decrypt encrypted_data, 0 }
   end
+
+  def time_devchip_decrypt_3des
+    key = Tem::Keys::Symmetric.generate
+    authz = [1] * 20
+    key_id = @tem.tk_post_key key, authz
+    data = (1...23).map { |i| (i * i * 217 + i * 661 + 393) % 256 }
+    encrypted_data = key.encrypt data
+    print "3DES-encrypted blob has #{encrypted_data.length} bytes\n"
+    do_timing { @tem.devchip_decrypt encrypted_data, key_id }
+    @tem.tk_delete_key key_id, authz
+  end
+
+  def time_devchip_decrypt_3des_long
+    key = Tem::Keys::Symmetric.generate
+    authz = [1] * 20
+    key_id = @tem.tk_post_key key, authz
+    data = (1...120).map { |i| (i * i * 217 + i * 661 + 393) % 256 }
+    encrypted_data = key.encrypt data
+    print "3DES-encrypted blob has #{encrypted_data.length} bytes\n"
+    do_timing { @tem.devchip_decrypt encrypted_data, key_id }
+    @tem.tk_delete_key key_id, authz
+  end
 end

data/lib/tem/benchmarks/simple_apdu.rb

@@ -11,6 +11,6 @@
 # :nodoc:
 class Tem::Benchmarks
   def time_simple_apdu
-    do_timing { @tem.get_tag_length }
+    do_timing { @tem.fw_version }
   end
 end

data/lib/tem/benchmarks/vm_perf.rb

@@ -10,8 +10,9 @@
 
 # :nodoc:
 class Tem::Benchmarks
-  def time_vm_perf
-    secpack = @tem.assemble { |s|
+  # The SEClosure used in the vm_perf benchmark.
+  def vm_perf_seclosure
+    @tem.assemble { |s|
       s.ldwc 48 * 10
       s.outnew
 
@@ -145,7 +146,23 @@ class Tem::Benchmarks
       s.label :stack
       s.stack 12
     }
-    print "SECpack has #{secpack.body.length} bytes, runs 1020 instructions and produces 470 bytes\n"
+  end
+  
+  # Number of opcodes executed by the vm_perf SEClosure.
+  def vm_perf_seclosure_opcount
+    1020
+  end
+  
+  # Number of bytes output by the vm_perf SEClosure.
+  def vm_perf_seclosure_outcount
+    470
+  end
+  
+  def time_vm_perf
+    secpack = vm_perf_seclosure
+    print "SECpack has #{secpack.body.length} bytes, " +
+          "executes #{vm_perf_seclosure_opcount} instructions and produces " +
+          "#{vm_perf_seclosure_outcount} bytes\n"
     do_timing { @tem.execute secpack }
-  end  
+  end
 end

data/lib/tem/benchmarks/vm_perf_bound.rb

@@ -11,143 +11,27 @@
 
 # :nodoc:
 class Tem::Benchmarks
-  def time_vm_perf_bound
-    secpack = @tem.assemble { |s|
-      s.ldwc 48 * 10
-      s.outnew
-
-      s.ldwc 10 # number of times to loop (4 instructions in loop)
-      s.label :main_loop      
-
-      # arithmetic (18 instructions, 10 bytes out)
-      s.ldwc 0x1234
-      s.ldwc 0x5678
-      s.dupn :n => 2
-      s.add
-      s.outw
-      s.sub
-      s.outw
-      s.ldwc 0x0155
-      s.ldwc 0x02AA
-      s.mul
-      s.outw
-      s.ldwc 0x390C
-      s.ldwc 0x00AA
-      s.dupn :n => 2
-      s.div
-      s.outw
-      s.mod
-      s.outw
-      
-      # memory (28 instructions, 16 bytes out)
-      s.ldwc 0x55AA
-      s.stw :clobber
-      s.ldb :clobber
-      s.outw
-      s.ldw :clobber
-      s.outw
-      s.ldbc 0xA5 - (1 << 8)
-      s.stb :clobber
-      s.ldw :clobber
-      s.outw
-      s.ldwc :clobber2
-      s.dupn :n => 1
-      s.dupn :n => 2
-      s.ldwc 0x9966 - (1 << 16)
-      s.stwv
-      s.ldbv
-      s.outw
-      s.ldbc 0x98 - (1 << 8)
-      s.stbv
-      s.ldwv
-      s.outw
-      s.ldwc 0x1122
-      s.ldwc 0x3344
-      s.ldwc 0x5566
-      s.flipn :n => 3
-      s.outw
-      s.outw
-      s.outw
-      
-      # memory comparisons (22 instructions, 16 bytes out)
-      s.ldwc :const => 6
-      s.ldwc :cmp_med
-      s.ldwc :cmp_lo
-      s.mcmpvb
-      s.outw
-      s.mcmpfxb :size => 6, :op1 => :cmp_med, :op2 => :cmp_hi
-      s.outw
-      s.ldwc :const => 4
-      s.ldwc :cmp_lo
-      s.ldwc :cmp_med
-      s.mcmpvb
-      s.outw            
-      s.mcfxb :size => 6, :from => :cmp_hi, :to => :copy_buf
-      s.pop
-      s.outfxb :size => 6, :from => :copy_buf      
-      s.ldwc :const => 4
-      s.ldwc :cmp_hi
-      s.ldwc :copy_buf2
-      s.mcvb
-      s.pop
-      s.outfxb :size => 4, :from => :copy_buf2            
-      
-      # jumps (30 instructions, 6 bytes) from 6 * (5 instructions, 1 byte)
-      failed = 0xFA - (1 << 8)
-      [
-        [:ja,  [1, 1, failed]],
-        [:jae, [1, 4, failed]], 
-        [:jb,  [1, failed, 7]],
-        [:jbe, [1, failed, 10]],
-        [:jz,  [1, failed, 13]],
-        [:jne, [1, 16, failed]], 
-      ].each do |op_line|
-        op = op_line.shift
-        op_line.each_index do |i|
-          then_label = "#{op}_l#{i}_t".to_sym
-          out_label  = "#{op}_l#{i}_o".to_sym
-          
-          s.ldbc op_line[i][0]        
-          s.send op, :to => then_label
-          s.ldbc op_line[i][2]
-          s.jmp :to => out_label
-          s.label then_label
-          s.ldbc op_line[i][1]
-          s.label out_label
-          s.outb          
-        end
-      end
-
-      # loop back
-      s.ldbc 1
-      s.sub
-      s.dupn :n => 1
-      s.ja :to => :main_loop
-      
-      s.label :done
-      s.halt
-      
-      s.label :cmp_lo
-      s.data :tem_ubyte, [0xA3, 0x2C, 0x51, 0x63, 0x2C, 0x12]
-      s.label :cmp_med
-      s.data :tem_ubyte, [0xA3, 0x2C, 0x51, 0x63, 0x2D, 0x11]
-      s.label :cmp_hi
-      s.data :tem_ubyte, [0xA3, 0x2C, 0x51, 0x63, 0x2E, 0x10]
-      s.label :cmp_hi2
-      s.data :tem_ubyte, [0xA3, 0x2C, 0x51, 0x63, 0x2E, 0x10]
-      s.label :copy_buf
-      s.zeros :tem_ubyte, 6
-      s.label :copy_buf2
-      s.zeros :tem_ubyte, 4      
-      s.label :clobber
-      s.zeros :tem_ubyte, 2
-      s.label :clobber2
-      s.zeros :tem_ubyte, 2
-      s.label :stack
-      s.stack 12
-    }
+  def time_vm_perf_bound_rsa
+    secpack = vm_perf_seclosure
     secpack.bind @tem.pubek, :done, :stack
-    print "SECpack has #{secpack.body.length} bytes, runs 1020 instructions and produces 470 bytes\n"
+    print "RSA-bound SECpack has #{secpack.body.length} bytes, " +
+          "executes #{vm_perf_seclosure_opcount} instructions and produces " +
+          "#{vm_perf_seclosure_outcount} bytes\n"
     do_timing { @tem.execute secpack }
-  end  
-end
+  end
+  
+  def time_vm_perf_bound_3des
+    key = Tem::Keys::Symmetric.generate
+    authz = [1] * 20
+    key_id = @tem.tk_post_key key, authz
+    
+    secpack = vm_perf_seclosure
+    secpack.bind key, :done, :stack
+    print "3DES-bound SECpack has #{secpack.body.length} bytes, " +
+          "executes #{vm_perf_seclosure_opcount} instructions and produces " +
+          "#{vm_perf_seclosure_outcount} bytes\n"
+    do_timing { @tem.execute secpack, key_id }
+
+    @tem.tk_delete_key key_id, authz    
+  end
+end

data/tem_ruby.gemspec

@@ -2,11 +2,11 @@
 
 Gem::Specification.new do |s|
   s.name = %q{tem_ruby}
-  s.version = "0.14.0"
+  s.version = "0.14.1"
 
   s.required_rubygems_version = Gem::Requirement.new(">= 1.2") if s.respond_to? :required_rubygems_version=
   s.authors = ["Victor Costan"]
-  s.date = %q{2009-11-12}
+  s.date = %q{2009-11-16}
   s.description = %q{TEM (Trusted Execution Module) driver, written in and for ruby.}
   s.email = %q{victor@costan.us}
   s.executables = ["tem_bench", "tem_ca", "tem_irb", "tem_proxy", "tem_stat", "tem_upload_fw"]
@@ -18,7 +18,7 @@ Gem::Specification.new do |s|
   s.rubyforge_project = %q{tem}
   s.rubygems_version = %q{1.3.5}
   s.summary = %q{TEM (Trusted Execution Module) driver, written in and for ruby.}
-  s.test_files = ["test/builders/test_abi_builder.rb", "test/firmware/test_uploader.rb", "test/tem_unit/test_tem_alu.rb", "test/tem_unit/test_tem_bound_secpack.rb", "test/tem_unit/test_tem_branching.rb", "test/tem_unit/test_tem_crypto_hash.rb", "test/tem_unit/test_tem_crypto_keys.rb", "test/tem_unit/test_tem_crypto_pstore.rb", "test/tem_unit/test_tem_crypto_random.rb", "test/tem_unit/test_tem_emit.rb", "test/tem_unit/test_tem_memory.rb", "test/tem_unit/test_tem_memory_compare.rb", "test/tem_unit/test_tem_output.rb", "test/tem_unit/test_tem_yaml_secpack.rb", "test/test_auto_conf.rb", "test/test_crypto_engine.rb", "test/test_driver.rb", "test/test_exceptions.rb"]
+  s.test_files = ["test/test_driver.rb", "test/firmware/test_uploader.rb", "test/test_auto_conf.rb", "test/builders/test_abi_builder.rb", "test/tem_unit/test_tem_emit.rb", "test/tem_unit/test_tem_crypto_keys.rb", "test/tem_unit/test_tem_yaml_secpack.rb", "test/tem_unit/test_tem_alu.rb", "test/tem_unit/test_tem_crypto_hash.rb", "test/tem_unit/test_tem_bound_secpack.rb", "test/tem_unit/test_tem_memory_compare.rb", "test/tem_unit/test_tem_output.rb", "test/tem_unit/test_tem_crypto_random.rb", "test/tem_unit/test_tem_memory.rb", "test/tem_unit/test_tem_branching.rb", "test/tem_unit/test_tem_crypto_pstore.rb", "test/test_exceptions.rb", "test/test_crypto_engine.rb"]
 
   if s.respond_to? :specification_version then
     current_version = Gem::Specification::CURRENT_SPECIFICATION_VERSION

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification 
 name: tem_ruby
 version: !ruby/object:Gem::Version 
-  version: 0.14.0
+  version: 0.14.1
 platform: ruby
 authors: 
 - Victor Costan
@@ -9,7 +9,7 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2009-11-12 00:00:00 -05:00
+date: 2009-11-16 00:00:00 -05:00
 default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
@@ -204,21 +204,21 @@ signing_key:
 specification_version: 3
 summary: TEM (Trusted Execution Module) driver, written in and for ruby.
 test_files: 
-- test/builders/test_abi_builder.rb
+- test/test_driver.rb
 - test/firmware/test_uploader.rb
+- test/test_auto_conf.rb
+- test/builders/test_abi_builder.rb
+- test/tem_unit/test_tem_emit.rb
+- test/tem_unit/test_tem_crypto_keys.rb
+- test/tem_unit/test_tem_yaml_secpack.rb
 - test/tem_unit/test_tem_alu.rb
-- test/tem_unit/test_tem_bound_secpack.rb
-- test/tem_unit/test_tem_branching.rb
 - test/tem_unit/test_tem_crypto_hash.rb
-- test/tem_unit/test_tem_crypto_keys.rb
-- test/tem_unit/test_tem_crypto_pstore.rb
-- test/tem_unit/test_tem_crypto_random.rb
-- test/tem_unit/test_tem_emit.rb
-- test/tem_unit/test_tem_memory.rb
+- test/tem_unit/test_tem_bound_secpack.rb
 - test/tem_unit/test_tem_memory_compare.rb
 - test/tem_unit/test_tem_output.rb
-- test/tem_unit/test_tem_yaml_secpack.rb
-- test/test_auto_conf.rb
-- test/test_crypto_engine.rb
-- test/test_driver.rb
+- test/tem_unit/test_tem_crypto_random.rb
+- test/tem_unit/test_tem_memory.rb
+- test/tem_unit/test_tem_branching.rb
+- test/tem_unit/test_tem_crypto_pstore.rb
 - test/test_exceptions.rb
+- test/test_crypto_engine.rb