Skip to content

Commit

Permalink
perf(AES): use DataView for better performance
Browse files Browse the repository at this point in the history
  • Loading branch information
@aykxt
aykxt committed Mar 16, 2021
1 parent d74ae74 commit 0c20792
Show file tree
Hide file tree
Showing 4 changed files with 221 additions and 199 deletions.
4 changes: 2 additions & 2 deletions benchmarks/aes.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -78,7 +78,7 @@ bench({
});

bench({
name: "AES-128-CFB 2MiB Encrypt",
name: "AES-128-OFB 2MiB Encrypt",
runs,
func(b) {
const cipher = new AesOfb(key, iv);
Expand All @@ -89,7 +89,7 @@ bench({
});

bench({
name: "AES-128-CFB 2MiB Decrypt",
name: "AES-128-OFB 2MiB Decrypt",
runs,
func(b) {
const cipher = new AesOfb(key, iv);
Expand Down
204 changes: 71 additions & 133 deletions src/aes/aes.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,11 +12,9 @@ export class AES {
}

const tk = new Uint32Array(key.length / 4);
const keyView = new DataView(key.buffer);
for (let i = 0; i < key.length; i += 4) {
tk[i / 4] = (key[i] << 24) |
(key[i + 1] << 16) |
(key[i + 2] << 8) |
key[i + 3];
tk[i / 4] = keyView.getUint32(i);
}

const rkc = key.length + 28;
Expand All @@ -28,7 +26,6 @@ export class AES {
this.#ke.set(tk);

let rcon = 1;

for (let i = tk.length; i < rkc; i++) {
let tmp = this.#ke[i - 1];

Expand Down Expand Up @@ -60,149 +57,90 @@ export class AES {
}
}

encrypt(data: Uint8Array) {
let t0 = ((data[0] << 24) |
(data[1] << 16) |
(data[2] << 8) |
data[3]) ^ this.#ke[0];
let t1 = ((data[4] << 24) |
(data[5] << 16) |
(data[6] << 8) |
data[7]) ^ this.#ke[1];
let t2 = ((data[8] << 24) |
(data[9] << 16) |
(data[10] << 8) |
data[11]) ^ this.#ke[2];
let t3 = ((data[12] << 24) |
(data[13] << 16) |
(data[14] << 8) |
data[15]) ^ this.#ke[3];
encrypt(data: DataView, offset: number) {
let t0 = data.getUint32(offset) ^ this.#ke[0];
let t1 = data.getUint32(offset + 4) ^ this.#ke[1];
let t2 = data.getUint32(offset + 8) ^ this.#ke[2];
let t3 = data.getUint32(offset + 12) ^ this.#ke[3];

for (let r = 1; r < this.#nr; r++) {
const a0 = T1[t0 >>> 24] ^
T2[(t1 >> 16) & 0xff] ^
T3[(t2 >> 8) & 0xff] ^
T4[t3 & 0xff] ^
this.#ke[4 * r];

const a1 = T1[t1 >>> 24] ^
T2[(t2 >> 16) & 0xff] ^
T3[(t3 >> 8) & 0xff] ^
T4[t0 & 0xff] ^
this.#ke[4 * r + 1];

const a2 = T1[t2 >>> 24] ^
T2[(t3 >> 16) & 0xff] ^
T3[(t0 >> 8) & 0xff] ^
T4[t1 & 0xff] ^
this.#ke[4 * r + 2];

const a3 = T1[t3 >>> 24] ^
T2[(t0 >> 16) & 0xff] ^
T3[(t1 >> 8) & 0xff] ^
T4[t2 & 0xff] ^
this.#ke[4 * r + 3];
const a0 = T1[t0 >>> 24] ^ T2[(t1 >> 16) & 0xff] ^ T3[(t2 >> 8) & 0xff] ^
T4[t3 & 0xff] ^ this.#ke[4 * r];
const a1 = T1[t1 >>> 24] ^ T2[(t2 >> 16) & 0xff] ^ T3[(t3 >> 8) & 0xff] ^
T4[t0 & 0xff] ^ this.#ke[4 * r + 1];
const a2 = T1[t2 >>> 24] ^ T2[(t3 >> 16) & 0xff] ^ T3[(t0 >> 8) & 0xff] ^
T4[t1 & 0xff] ^ this.#ke[4 * r + 2];
t3 = T1[t3 >>> 24] ^ T2[(t0 >> 16) & 0xff] ^ T3[(t1 >> 8) & 0xff] ^
T4[t2 & 0xff] ^ this.#ke[4 * r + 3];
t0 = a0;
t1 = a1;
t2 = a2;
t3 = a3;
}

let tt = this.#ke[4 * this.#nr];
data[0] = S[t0 >>> 24] ^ (tt >>> 24);
data[1] = (S[(t1 >> 16) & 0xff] ^ (tt >> 16)) & 0xff;
data[2] = (S[(t2 >> 8) & 0xff] ^ (tt >> 8)) & 0xff;
data[3] = (S[t3 & 0xff] ^ tt) & 0xff;

tt = this.#ke[4 * this.#nr + 1];
data[4] = S[t1 >>> 24] ^ (tt >>> 24);
data[5] = (S[(t2 >> 16) & 0xff] ^ (tt >> 16)) & 0xff;
data[6] = (S[(t3 >> 8) & 0xff] ^ (tt >> 8)) & 0xff;
data[7] = (S[t0 & 0xff] ^ tt) & 0xff;

tt = this.#ke[4 * this.#nr + 2];
data[8] = S[t2 >>> 24] ^ (tt >>> 24);
data[9] = (S[(t3 >> 16) & 0xff] ^ (tt >> 16)) & 0xff;
data[10] = (S[(t0 >> 8) & 0xff] ^ (tt >> 8)) & 0xff;
data[11] = (S[t1 & 0xff] ^ tt) & 0xff;

tt = this.#ke[4 * this.#nr + 3];
data[12] = S[t3 >>> 24] ^ (tt >>> 24);
data[13] = (S[(t0 >> 16) & 0xff] ^ (tt >> 16)) & 0xff;
data[14] = (S[(t1 >> 8) & 0xff] ^ (tt >> 8)) & 0xff;
data[15] = (S[t2 & 0xff] ^ tt) & 0xff;
data.setUint32(
offset,
S[t0 >>> 24] << 24 ^ S[(t1 >> 16) & 0xff] << 16 ^
S[(t2 >> 8) & 0xff] << 8 ^ S[t3 & 0xff] ^ this.#ke[4 * this.#nr],
);
data.setUint32(
offset + 4,
S[t1 >>> 24] << 24 ^ S[(t2 >> 16) & 0xff] << 16 ^
S[(t3 >> 8) & 0xff] << 8 ^ S[t0 & 0xff] ^ this.#ke[4 * this.#nr + 1],
);
data.setUint32(
offset + 8,
S[t2 >>> 24] << 24 ^ S[(t3 >> 16) & 0xff] << 16 ^
S[(t0 >> 8) & 0xff] << 8 ^ S[t1 & 0xff] ^ this.#ke[4 * this.#nr + 2],
);
data.setUint32(
offset + 12,
S[t3 >>> 24] << 24 ^ S[(t0 >> 16) & 0xff] << 16 ^
S[(t1 >> 8) & 0xff] << 8 ^ S[t2 & 0xff] ^ this.#ke[4 * this.#nr + 3],
);
}

decrypt(data: Uint8Array) {
let t0 = ((data[0] << 24) |
(data[1] << 16) |
(data[2] << 8) |
data[3]) ^ this.#kd[0];
let t1 = ((data[4] << 24) |
(data[5] << 16) |
(data[6] << 8) |
data[7]) ^ this.#kd[3];
let t2 = ((data[8] << 24) |
(data[9] << 16) |
(data[10] << 8) |
data[11]) ^ this.#kd[2];
let t3 = ((data[12] << 24) |
(data[13] << 16) |
(data[14] << 8) |
data[15]) ^ this.#kd[1];
decrypt(data: DataView, offset: number) {
let t0 = data.getUint32(offset) ^ this.#kd[0];
let t1 = data.getUint32(offset + 4) ^ this.#kd[3];
let t2 = data.getUint32(offset + 8) ^ this.#kd[2];
let t3 = data.getUint32(offset + 12) ^ this.#kd[1];

for (let r = 1; r < this.#nr; r++) {
const a0 = T5[t0 >>> 24] ^
T6[(t3 >> 16) & 0xff] ^
T7[(t2 >> 8) & 0xff] ^
T8[t1 & 0xff] ^
this.#kd[4 * r];

const a1 = T5[t1 >>> 24] ^
T6[(t0 >> 16) & 0xff] ^
T7[(t3 >> 8) & 0xff] ^
T8[t2 & 0xff] ^
this.#kd[4 * r + 3];

const a2 = T5[t2 >>> 24] ^
T6[(t1 >> 16) & 0xff] ^
T7[(t0 >> 8) & 0xff] ^
T8[t3 & 0xff] ^
this.#kd[4 * r + 2];

const a3 = T5[t3 >>> 24] ^
T6[(t2 >> 16) & 0xff] ^
T7[(t1 >> 8) & 0xff] ^
T8[t0 & 0xff] ^
this.#kd[4 * r + 1];
const a0 = T5[t0 >>> 24] ^ T6[(t3 >> 16) & 0xff] ^ T7[(t2 >> 8) & 0xff] ^
T8[t1 & 0xff] ^ this.#kd[4 * r];

const a1 = T5[t1 >>> 24] ^ T6[(t0 >> 16) & 0xff] ^ T7[(t3 >> 8) & 0xff] ^
T8[t2 & 0xff] ^ this.#kd[4 * r + 3];

const a2 = T5[t2 >>> 24] ^ T6[(t1 >> 16) & 0xff] ^ T7[(t0 >> 8) & 0xff] ^
T8[t3 & 0xff] ^ this.#kd[4 * r + 2];

t3 = T5[t3 >>> 24] ^ T6[(t2 >> 16) & 0xff] ^ T7[(t1 >> 8) & 0xff] ^
T8[t0 & 0xff] ^ this.#kd[4 * r + 1];
t0 = a0;
t1 = a1;
t2 = a2;
t3 = a3;
}

let tt = this.#kd[4 * this.#nr];
data[0] = SI[t0 >>> 24] ^ (tt >>> 24);
data[1] = (SI[(t3 >> 16) & 0xff] ^ (tt >> 16)) & 0xff;
data[2] = (SI[(t2 >> 8) & 0xff] ^ (tt >> 8)) & 0xff;
data[3] = (SI[t1 & 0xff] ^ tt) & 0xff;

tt = this.#kd[4 * this.#nr + 3];
data[4] = SI[t1 >>> 24] ^ (tt >>> 24);
data[5] = (SI[(t0 >> 16) & 0xff] ^ (tt >> 16)) & 0xff;
data[6] = (SI[(t3 >> 8) & 0xff] ^ (tt >> 8)) & 0xff;
data[7] = (SI[t2 & 0xff] ^ tt) & 0xff;

tt = this.#kd[4 * this.#nr + 2];
data[8] = SI[t2 >>> 24] ^ tt >>> 24;
data[9] = (SI[(t1 >> 16) & 0xff] ^ (tt >> 16)) & 0xff;
data[10] = (SI[(t0 >> 8) & 0xff] ^ (tt >> 8)) & 0xff;
data[11] = (SI[t3 & 0xff] ^ tt) & 0xff;

tt = this.#kd[4 * this.#nr + 1];
data[12] = SI[t3 >>> 24] ^ (tt >> 24);
data[13] = (SI[(t2 >> 16) & 0xff] ^ (tt >> 16)) & 0xff;
data[14] = (SI[(t1 >> 8) & 0xff] ^ (tt >> 8)) & 0xff;
data[15] = (SI[t0 & 0xff] ^ tt) & 0xff;
data.setUint32(
offset,
SI[t0 >>> 24] << 24 ^ SI[(t3 >> 16) & 0xff] << 16 ^
SI[(t2 >> 8) & 0xff] << 8 ^ SI[t1 & 0xff] ^ this.#kd[4 * this.#nr],
);
data.setUint32(
offset + 4,
SI[t1 >>> 24] << 24 ^ SI[(t0 >> 16) & 0xff] << 16 ^
SI[(t3 >> 8) & 0xff] << 8 ^ SI[t2 & 0xff] ^ this.#kd[4 * this.#nr + 3],
);
data.setUint32(
offset + 8,
SI[t2 >>> 24] << 24 ^ SI[(t1 >> 16) & 0xff] << 16 ^
SI[(t0 >> 8) & 0xff] << 8 ^ SI[t3 & 0xff] ^ this.#kd[4 * this.#nr + 2],
);
data.setUint32(
offset + 12,
SI[t3 >>> 24] << 24 ^ SI[(t2 >> 16) & 0xff] << 16 ^
SI[(t1 >> 8) & 0xff] << 8 ^ SI[t0 & 0xff] ^ this.#kd[4 * this.#nr + 1],
);
}
}
Loading

0 comments on commit 0c20792

Please sign in to comment.