crypto: add WebCrypto sync job fast paths by panva · Pull Request #63595 · nodejs/node

panva · 2026-05-27T08:35:24Z

Note

This is a work in progress, i just need a PR to use benchmark-node-micro-benchmarks

TL;DR A WebCrypto sync operation candidate runs synchronously only when it passes its operation-specific limits and no other candidate has used the sync slot since the last microtask checkpoint; otherwise, fanout before the next checkpoint or the async pressure window sends it to the threadpool.

Benchmark

FILTER='--filter webcrypto-sync-fast-path'
RUNS='--runs 10'                                                                                                                                                confidence improvement accuracy (*)     (**)    (***)
                                                                                                                                                confidence improvement accuracy (*)     (**)    (***)
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='decrypt' algorithm='AES-CBC'                                -3.81 %      ±16.73%  ±22.93%  ±31.24%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='decrypt' algorithm='AES-CTR'                                -4.29 %      ±13.06%  ±17.90%  ±24.39%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='decrypt' algorithm='AES-GCM'                                -3.43 %      ±12.78%  ±17.51%  ±23.86%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='decrypt' algorithm='AES-OCB'                               -10.85 %      ±12.58%  ±17.28%  ±23.61%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='decrypt' algorithm='ChaCha20-Poly1305'                      -1.49 %       ±9.69%  ±13.31%  ±18.23%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='encrypt' algorithm='AES-CBC'                                 1.04 %      ±11.39%  ±15.61%  ±21.27%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='encrypt' algorithm='AES-CTR'                               -13.39 %      ±14.50%  ±19.87%  ±27.07%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='encrypt' algorithm='AES-GCM'                                 4.48 %      ±14.99%  ±20.55%  ±28.02%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='encrypt' algorithm='AES-OCB'                                -8.13 %      ±11.86%  ±16.39%  ±22.65%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='after-threshold' operation='encrypt' algorithm='ChaCha20-Poly1305'                       0.64 %      ±10.00%  ±13.71%  ±18.69%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='decrypt' algorithm='AES-CBC'                                    5.90 %      ±15.14%  ±20.76%  ±28.32%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='decrypt' algorithm='AES-CTR'                                   -0.05 %      ±15.62%  ±21.43%  ±29.25%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='decrypt' algorithm='AES-GCM'                                   -5.86 %      ±12.12%  ±16.60%  ±22.62%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='decrypt' algorithm='AES-OCB'                                    1.86 %      ±11.82%  ±16.19%  ±22.06%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='decrypt' algorithm='ChaCha20-Poly1305'                         -2.33 %      ±11.92%  ±16.33%  ±22.26%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='encrypt' algorithm='AES-CBC'                                   -2.84 %      ±16.11%  ±22.07%  ±30.07%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='encrypt' algorithm='AES-CTR'                                    0.16 %      ±15.36%  ±21.07%  ±28.77%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='encrypt' algorithm='AES-GCM'                                   -2.68 %      ±17.22%  ±23.61%  ±32.20%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='encrypt' algorithm='AES-OCB'                                   10.68 %      ±13.88%  ±19.06%  ±26.06%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='at-threshold' operation='encrypt' algorithm='ChaCha20-Poly1305'                          4.33 %      ±15.81%  ±21.68%  ±29.58%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='decrypt' algorithm='AES-CBC'                                         -6.98 %      ±15.91%  ±21.82%  ±29.77%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='decrypt' algorithm='AES-CTR'                                          6.04 %      ±18.55%  ±25.47%  ±34.82%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='decrypt' algorithm='AES-GCM'                                        -11.97 %      ±16.06%  ±22.04%  ±30.10%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='decrypt' algorithm='AES-OCB'                                        -10.27 %      ±14.07%  ±19.29%  ±26.33%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='decrypt' algorithm='ChaCha20-Poly1305'                        **    -16.52 %      ±11.93%  ±16.36%  ±22.32%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='encrypt' algorithm='AES-CBC'                                          5.97 %      ±17.52%  ±24.24%  ±33.55%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='encrypt' algorithm='AES-CTR'                                         14.27 %      ±21.09%  ±29.03%  ±39.85%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='encrypt' algorithm='AES-GCM'                                        -14.03 %      ±15.24%  ±20.89%  ±28.48%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='encrypt' algorithm='AES-OCB'                                          3.71 %      ±16.14%  ±22.15%  ±30.27%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='middle' operation='encrypt' algorithm='ChaCha20-Poly1305'                              -13.51 %      ±15.93%  ±21.94%  ±30.16%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='decrypt' algorithm='AES-CBC'                                        -0.11 %      ±25.53%  ±35.09%  ±48.06%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='decrypt' algorithm='AES-CTR'                                        -3.54 %      ±20.57%  ±28.30%  ±38.81%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='decrypt' algorithm='AES-GCM'                                         5.96 %      ±24.07%  ±32.99%  ±44.97%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='decrypt' algorithm='AES-OCB'                                         2.50 %      ±21.78%  ±29.85%  ±40.70%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='decrypt' algorithm='ChaCha20-Poly1305'                               3.17 %      ±16.45%  ±22.61%  ±30.96%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='encrypt' algorithm='AES-CBC'                                        -0.54 %      ±17.81%  ±24.42%  ±33.30%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='encrypt' algorithm='AES-CTR'                                        -4.27 %      ±21.31%  ±29.20%  ±39.79%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='encrypt' algorithm='AES-GCM'                                       -16.50 %      ±19.22%  ±26.44%  ±36.27%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='encrypt' algorithm='AES-OCB'                                        -2.00 %      ±22.88%  ±31.52%  ±43.32%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='parallel' size='minimal' operation='encrypt' algorithm='ChaCha20-Poly1305'                             -17.84 %      ±17.84%  ±24.58%  ±33.77%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='decrypt' algorithm='AES-CBC'                                  -9.03 %      ±29.32%  ±40.28%  ±55.14%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='decrypt' algorithm='AES-CTR'                                  14.93 %      ±38.30%  ±52.56%  ±71.80%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='decrypt' algorithm='AES-GCM'                                  -4.27 %      ±33.67%  ±46.17%  ±62.99%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='decrypt' algorithm='AES-OCB'                                   2.25 %      ±27.72%  ±38.05%  ±51.99%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='decrypt' algorithm='ChaCha20-Poly1305'                       -17.43 %      ±35.86%  ±49.93%  ±69.81%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='encrypt' algorithm='AES-CBC'                                  21.41 %      ±56.10%  ±77.08% ±105.50%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='encrypt' algorithm='AES-CTR'                                   6.14 %      ±21.17%  ±29.07%  ±39.76%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='encrypt' algorithm='AES-GCM'                                 -10.90 %      ±32.97%  ±45.17%  ±61.55%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='encrypt' algorithm='AES-OCB'                                   1.11 %      ±31.12%  ±42.65%  ±58.13%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='after-threshold' operation='encrypt' algorithm='ChaCha20-Poly1305'                        56.55 %      ±63.35%  ±86.88% ±118.54%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='decrypt' algorithm='AES-CBC'                                    -25.54 %      ±34.02%  ±46.71%  ±63.85%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='decrypt' algorithm='AES-CTR'                             ***     81.75 %      ±20.17%  ±28.69%  ±41.49%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='decrypt' algorithm='AES-GCM'                             ***     65.43 %      ±21.40%  ±30.39%  ±43.90%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='decrypt' algorithm='AES-OCB'                             ***    130.40 %      ±31.67%  ±44.84%  ±64.39%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='decrypt' algorithm='ChaCha20-Poly1305'                   ***    197.77 %      ±23.91%  ±33.99%  ±49.14%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='encrypt' algorithm='AES-CBC'                             ***    126.13 %      ±28.69%  ±40.44%  ±57.68%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='encrypt' algorithm='AES-CTR'                             ***     86.06 %      ±14.87%  ±20.44%  ±28.00%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='encrypt' algorithm='AES-GCM'                             ***    104.56 %      ±31.79%  ±44.99%  ±64.58%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='encrypt' algorithm='AES-OCB'                             ***    101.93 %      ±23.19%  ±32.98%  ±47.71%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='at-threshold' operation='encrypt' algorithm='ChaCha20-Poly1305'                   ***    166.17 %      ±33.96%  ±48.54%  ±70.81%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='decrypt' algorithm='AES-CBC'                                   ***     85.50 %      ±17.77%  ±24.58%  ±34.01%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='decrypt' algorithm='AES-CTR'                                   ***     51.36 %      ±12.20%  ±16.72%  ±22.79%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='decrypt' algorithm='AES-GCM'                                   ***     60.91 %      ±21.75%  ±29.81%  ±40.61%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='decrypt' algorithm='AES-OCB'                                   ***     46.56 %      ±15.58%  ±21.38%  ±29.22%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='decrypt' algorithm='ChaCha20-Poly1305'                         ***    100.38 %      ±34.33%  ±48.37%  ±68.91%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='encrypt' algorithm='AES-CBC'                                   ***     62.30 %      ±21.66%  ±29.84%  ±41.00%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='encrypt' algorithm='AES-CTR'                                   ***     79.34 %      ±19.05%  ±26.31%  ±36.31%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='encrypt' algorithm='AES-GCM'                                   ***     65.24 %      ±16.68%  ±23.12%  ±32.11%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='encrypt' algorithm='AES-OCB'                                   ***     62.40 %      ±16.99%  ±23.42%  ±32.21%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='middle' operation='encrypt' algorithm='ChaCha20-Poly1305'                         ***    113.11 %      ±33.13%  ±47.01%  ±67.77%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='decrypt' algorithm='AES-CBC'                                    *     39.57 %      ±34.63%  ±48.40%  ±68.09%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='decrypt' algorithm='AES-CTR'                                   **     32.77 %      ±19.87%  ±27.25%  ±37.18%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='decrypt' algorithm='AES-GCM'                                  ***     32.42 %      ±15.72%  ±21.54%  ±29.34%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='decrypt' algorithm='AES-OCB'                                  ***     47.34 %      ±20.20%  ±27.86%  ±38.33%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='decrypt' algorithm='ChaCha20-Poly1305'                        ***     47.99 %      ±22.01%  ±30.76%  ±43.26%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='encrypt' algorithm='AES-CBC'                                   **     50.66 %      ±28.07%  ±39.20%  ±55.05%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='encrypt' algorithm='AES-CTR'                                   **     54.53 %      ±28.28%  ±39.29%  ±54.71%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='encrypt' algorithm='AES-GCM'                                   **     46.61 %      ±24.72%  ±34.45%  ±48.25%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='encrypt' algorithm='AES-OCB'                                  ***     49.15 %      ±23.49%  ±32.74%  ±45.84%
crypto/webcrypto-sync-fast-path-cipher.js n=1000 mode='serial' size='minimal' operation='encrypt' algorithm='ChaCha20-Poly1305'                         **     37.56 %      ±22.29%  ±30.75%  ±42.34%
crypto/webcrypto-sync-fast-path-derive.js n=1000 mode='parallel' algorithm='ecdh-p256'                                                                          7.69 %      ±10.47%  ±14.35%  ±19.55%
crypto/webcrypto-sync-fast-path-derive.js n=1000 mode='parallel' algorithm='x25519'                                                                            -3.42 %      ±13.55%  ±18.69%  ±25.76%
crypto/webcrypto-sync-fast-path-derive.js n=1000 mode='parallel' algorithm='x448'                                                                              -0.94 %       ±7.77%  ±10.74%  ±14.85%
crypto/webcrypto-sync-fast-path-derive.js n=1000 mode='serial' algorithm='ecdh-p256'                                                                   ***    180.86 %      ±42.88%  ±61.51%  ±90.27%
crypto/webcrypto-sync-fast-path-derive.js n=1000 mode='serial' algorithm='x25519'                                                                      ***    114.69 %      ±25.19%  ±35.68%  ±51.27%
crypto/webcrypto-sync-fast-path-derive.js n=1000 mode='serial' algorithm='x448'                                                                        ***    226.56 %      ±47.51%  ±68.24% ±100.35%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='cSHAKE128'                                                   1.28 %       ±9.29%  ±12.73%  ±17.35%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='cSHAKE256'                                                  -0.69 %       ±6.66%   ±9.13%  ±12.44%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='KT128'                                                       0.48 %       ±7.64%  ±10.52%  ±14.42%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='KT256'                                                      10.90 %      ±11.16%  ±15.35%  ±21.04%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='SHA-1'                                                       8.02 %      ±13.77%  ±18.96%  ±26.06%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='SHA-256'                                                     4.02 %       ±7.94%  ±11.12%  ±15.73%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='SHA-384'                                                    -6.97 %       ±7.13%   ±9.97%  ±14.01%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='SHA-512'                                                     3.60 %       ±9.78%  ±13.54%  ±18.77%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='SHA3-256'                                                   -1.15 %       ±7.89%  ±10.90%  ±15.07%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='SHA3-384'                                                   -2.71 %       ±6.00%   ±8.40%  ±11.85%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='SHA3-512'                                                   -1.18 %       ±3.28%   ±4.50%   ±6.14%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='TurboSHAKE128'                                               5.16 %       ±9.13%  ±12.56%  ±17.23%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='after-threshold' algorithm='TurboSHAKE256'                                               1.07 %      ±10.76%  ±14.75%  ±20.10%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='cSHAKE128'                                                      8.07 %       ±9.19%  ±12.60%  ±17.18%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='cSHAKE256'                                                     -3.18 %       ±6.26%   ±8.58%  ±11.70%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='KT128'                                                         -0.13 %      ±11.74%  ±16.09%  ±21.93%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='KT256'                                                         -2.19 %      ±10.82%  ±14.83%  ±20.21%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='SHA-1'                                                          1.58 %       ±9.64%  ±13.22%  ±18.03%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='SHA-256'                                                       -8.09 %      ±10.77%  ±14.80%  ±20.28%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='SHA-384'                                                        2.52 %       ±8.06%  ±11.06%  ±15.11%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='SHA-512'                                                        1.32 %       ±7.79%  ±10.70%  ±14.64%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='SHA3-256'                                                      -0.43 %       ±6.12%   ±8.44%  ±11.62%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='SHA3-384'                                                       1.77 %       ±3.74%   ±5.15%   ±7.07%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='SHA3-512'                                                       1.07 %       ±2.97%   ±4.09%   ±5.61%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='TurboSHAKE128'                                                  0.96 %      ±11.53%  ±15.85%  ±21.71%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='at-threshold' algorithm='TurboSHAKE256'                                                  0.12 %      ±10.04%  ±13.76%  ±18.76%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='cSHAKE128'                                                            7.99 %      ±13.05%  ±17.90%  ±24.42%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='cSHAKE256'                                                            4.69 %      ±10.44%  ±14.32%  ±19.56%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='KT128'                                                               -1.29 %      ±11.51%  ±15.82%  ±21.65%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='KT256'                                                                4.65 %      ±15.15%  ±20.94%  ±28.93%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='SHA-1'                                                               -8.93 %      ±14.08%  ±19.33%  ±26.42%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='SHA-256'                                                             -0.70 %      ±15.60%  ±21.41%  ±29.27%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='SHA-384'                                                             -6.99 %      ±10.36%  ±14.44%  ±20.23%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='SHA-512'                                                             -5.64 %       ±8.94%  ±12.25%  ±16.69%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='SHA3-256'                                                      *     -7.86 %       ±7.45%  ±10.21%  ±13.92%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='SHA3-384'                                                             4.08 %       ±5.48%   ±7.55%  ±10.38%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='SHA3-512'                                                            -2.20 %       ±5.04%   ±6.90%   ±9.42%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='TurboSHAKE128'                                                       -0.76 %      ±16.11%  ±22.31%  ±30.94%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='middle' algorithm='TurboSHAKE256'                                                       -0.96 %       ±9.32%  ±12.92%  ±17.92%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='cSHAKE128'                                                          -0.94 %      ±21.77%  ±29.84%  ±40.69%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='cSHAKE256'                                                          10.20 %      ±21.72%  ±29.77%  ±40.58%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='KT128'                                                        *     26.19 %      ±21.77%  ±30.41%  ±42.73%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='KT256'                                                               1.14 %      ±24.63%  ±34.31%  ±48.00%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='SHA-1'                                                              -4.60 %      ±17.82%  ±24.41%  ±33.26%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='SHA-256'                                                      *    -16.53 %      ±14.78%  ±20.28%  ±27.68%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='SHA-384'                                                      *    -14.98 %      ±13.15%  ±18.22%  ±25.26%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='SHA-512'                                                      *    -10.14 %       ±8.55%  ±11.72%  ±15.99%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='SHA3-256'                                                     *    -15.48 %      ±13.23%  ±18.19%  ±24.94%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='SHA3-384'                                                     *    -18.24 %      ±13.86%  ±18.99%  ±25.89%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='SHA3-512'                                                           -5.67 %      ±13.68%  ±18.75%  ±25.56%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='TurboSHAKE128'                                               **     36.79 %      ±22.19%  ±30.95%  ±43.40%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='parallel' size='minimal' algorithm='TurboSHAKE256'                                                      13.71 %      ±24.41%  ±33.68%  ±46.42%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='cSHAKE128'                                                     3.20 %      ±74.67% ±102.41% ±139.76%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='cSHAKE256'                                                   -10.67 %      ±74.86% ±102.71% ±140.25%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='KT128'                                                       -10.99 %      ±57.59%  ±79.02% ±107.90%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='KT256'                                                       -10.35 %      ±58.11%  ±80.13% ±110.28%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='SHA-1'                                                       -15.16 %      ±37.79%  ±52.01%  ±71.36%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='SHA-256'                                                     -22.86 %      ±41.51%  ±57.44%  ±79.51%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='SHA-384'                                                     -14.91 %      ±50.20%  ±70.15%  ±98.65%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='SHA-512'                                                      53.41 %      ±65.49%  ±93.17% ±134.87%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='SHA3-256'                                                     27.45 %      ±77.01% ±105.66% ±144.25%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='SHA3-384'                                                    -13.38 %      ±58.83%  ±80.99% ±111.16%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='SHA3-512'                                                     14.90 %      ±46.56%  ±63.97%  ±87.53%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='TurboSHAKE128'                                                47.44 %      ±73.78% ±102.12% ±141.41%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='after-threshold' algorithm='TurboSHAKE256'                                                 2.94 %      ±67.89%  ±93.02% ±126.73%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='cSHAKE128'                                                      -14.90 %      ±55.85%  ±76.88% ±105.55%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='cSHAKE256'                                                       29.33 %      ±76.83% ±106.18% ±146.69%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='KT128'                                                           61.01 %      ±69.24%  ±96.04% ±133.46%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='KT256'                                                     *    118.97 %      ±98.87% ±141.59% ±207.24%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='SHA-1'                                                   ***    128.93 %      ±27.12%  ±38.91%  ±57.09%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='SHA-256'                                                 ***    104.93 %      ±35.98%  ±51.64%  ±75.87%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='SHA-384'                                                 ***    335.33 %      ±34.93%  ±50.09%  ±73.47%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='SHA-512'                                                 ***    242.99 %      ±48.22%  ±69.24% ±101.79%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='SHA3-256'                                                ***    327.20 %      ±55.96%  ±80.37% ±118.16%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='SHA3-384'                                                ***    264.68 %      ±38.40%  ±55.14%  ±81.05%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='SHA3-512'                                                ***    301.45 %      ±22.57%  ±32.42%  ±47.66%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='TurboSHAKE128'                                                   13.91 %      ±65.65%  ±89.95% ±122.55%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='at-threshold' algorithm='TurboSHAKE256'                                                   -2.43 %      ±57.20%  ±78.39% ±106.83%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='cSHAKE128'                                                     ***    131.66 %      ±35.19%  ±50.35%  ±73.56%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='cSHAKE256'                                                     ***    238.28 %      ±45.22%  ±64.90%  ±95.32%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='KT128'                                                         ***    193.99 %      ±26.36%  ±36.85%  ±51.83%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='KT256'                                                         ***    122.88 %      ±40.03%  ±56.99%  ±82.62%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='SHA-1'                                                         ***    130.61 %      ±21.10%  ±28.96%  ±39.58%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='SHA-256'                                                       ***     66.89 %      ±26.45%  ±37.85%  ±55.34%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='SHA-384'                                                       ***    153.81 %      ±25.82%  ±37.03%  ±54.31%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='SHA-512'                                                       ***    167.45 %      ±36.34%  ±52.11%  ±76.42%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='SHA3-256'                                                      ***    363.76 %      ±20.80%  ±29.57%  ±42.74%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='SHA3-384'                                                      ***    367.04 %      ±23.56%  ±33.69%  ±49.21%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='SHA3-512'                                                      ***    256.95 %      ±44.90%  ±64.48%  ±94.81%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='TurboSHAKE128'                                                 ***    115.53 %      ±34.94%  ±49.60%  ±71.58%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='middle' algorithm='TurboSHAKE256'                                                 ***    219.04 %      ±28.69%  ±40.34%  ±57.30%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='cSHAKE128'                                                     **     56.91 %      ±30.17%  ±42.14%  ±59.18%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='cSHAKE256'                                                    ***     65.43 %      ±29.69%  ±41.52%  ±58.44%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='KT128'                                                         **     45.30 %      ±24.92%  ±34.47%  ±47.67%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='KT256'                                                         **     38.21 %      ±25.98%  ±35.96%  ±49.80%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='SHA-1'                                                        ***    107.69 %      ±28.18%  ±39.16%  ±54.59%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='SHA-256'                                                      ***     88.61 %      ±24.46%  ±34.00%  ±47.38%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='SHA-384'                                                      ***    103.23 %      ±14.57%  ±19.96%  ±27.20%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='SHA-512'                                                      ***     90.16 %      ±19.65%  ±27.44%  ±38.53%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='SHA3-256'                                                     ***     91.90 %      ±12.65%  ±17.37%  ±23.74%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='SHA3-384'                                                     ***     91.62 %      ±20.94%  ±28.90%  ±39.82%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='SHA3-512'                                                     ***     80.88 %       ±3.79%   ±5.29%   ±7.42%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='TurboSHAKE128'                                                 **     56.40 %      ±33.53%  ±47.18%  ±67.09%
crypto/webcrypto-sync-fast-path-digest.js n=1000 mode='serial' size='minimal' algorithm='TurboSHAKE256'                                                  *     46.55 %      ±34.85%  ±48.96%  ±69.46%
crypto/webcrypto-sync-fast-path-kdf.js n=1000 mode='parallel' size='after-threshold' algorithm='HKDF'                                                          -0.95 %      ±14.42%  ±19.81%  ±27.09%
crypto/webcrypto-sync-fast-path-kdf.js n=1000 mode='parallel' size='at-threshold' algorithm='HKDF'                                                            -10.95 %      ±11.01%  ±15.22%  ±21.03%
crypto/webcrypto-sync-fast-path-kdf.js n=1000 mode='parallel' size='middle' algorithm='HKDF'                                                             *    -20.99 %      ±18.56%  ±26.03%  ±36.80%
crypto/webcrypto-sync-fast-path-kdf.js n=1000 mode='parallel' size='minimal' algorithm='HKDF'                                                                  -4.34 %      ±22.48%  ±30.81%  ±42.02%
crypto/webcrypto-sync-fast-path-kdf.js n=1000 mode='serial' size='after-threshold' algorithm='HKDF'                                                           -11.42 %      ±18.55%  ±25.43%  ±34.68%
crypto/webcrypto-sync-fast-path-kdf.js n=1000 mode='serial' size='at-threshold' algorithm='HKDF'                                                       ***     42.61 %      ±16.16%  ±22.46%  ±31.33%
crypto/webcrypto-sync-fast-path-kdf.js n=1000 mode='serial' size='middle' algorithm='HKDF'                                                             ***     52.21 %      ±18.78%  ±25.76%  ±35.17%
crypto/webcrypto-sync-fast-path-kdf.js n=1000 mode='serial' size='minimal' algorithm='HKDF'                                                            ***     46.45 %      ±19.52%  ±27.03%  ±37.45%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='parallel' operation='decapsulateBits' algorithm='ml-kem-1024'                                              -1.60 %      ±10.57%  ±14.48%  ±19.73%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='parallel' operation='decapsulateBits' algorithm='ml-kem-512'                                               -1.75 %      ±16.32%  ±22.36%  ±30.47%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='parallel' operation='decapsulateBits' algorithm='ml-kem-768'                                         *     -7.50 %       ±7.16%   ±9.90%  ±13.71%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='parallel' operation='encapsulateBits' algorithm='ml-kem-1024'                                        *     -9.30 %       ±7.45%  ±10.37%  ±14.49%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='parallel' operation='encapsulateBits' algorithm='ml-kem-512'                                               -2.48 %      ±12.25%  ±16.85%  ±23.10%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='parallel' operation='encapsulateBits' algorithm='ml-kem-768'                                                1.14 %      ±11.74%  ±16.34%  ±22.84%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='serial' operation='decapsulateBits' algorithm='ml-kem-1024'                                        ***    241.37 %      ±14.93%  ±21.39%  ±31.34%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='serial' operation='decapsulateBits' algorithm='ml-kem-512'                                         ***     42.64 %      ±10.27%  ±14.75%  ±21.68%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='serial' operation='decapsulateBits' algorithm='ml-kem-768'                                         ***     86.19 %      ±20.91%  ±29.82%  ±43.35%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='serial' operation='encapsulateBits' algorithm='ml-kem-1024'                                        ***     48.17 %       ±8.16%  ±11.29%  ±15.65%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='serial' operation='encapsulateBits' algorithm='ml-kem-512'                                          **     30.55 %      ±17.08%  ±24.53%  ±36.08%
crypto/webcrypto-sync-fast-path-kem.js n=1000 mode='serial' operation='encapsulateBits' algorithm='ml-kem-768'                                         ***     22.90 %       ±4.80%   ±6.57%   ±8.95%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='aes-cbc-128'                                                                       18.40 %      ±23.85%  ±32.84%  ±45.10%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='aes-ctr-128'                                                                       -9.27 %      ±20.53%  ±28.13%  ±38.34%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='aes-gcm-128'                                                                       -3.19 %      ±22.77%  ±31.21%  ±42.56%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='aes-kw-128'                                                                        -7.80 %      ±21.17%  ±29.03%  ±39.60%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='aes-ocb-128'                                                                       -7.06 %      ±16.03%  ±22.44%  ±31.66%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='chacha20-poly1305'                                                                 -5.81 %      ±13.57%  ±18.60%  ±25.36%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ecdh-p256'                                                                         -3.46 %      ±15.52%  ±21.31%  ±29.16%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ecdh-p384'                                                                         -0.84 %       ±1.93%   ±2.68%   ±3.74%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ecdh-p521'                                                                         -0.17 %       ±0.79%   ±1.08%   ±1.47%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ecdsa-p256'                                                                        11.00 %      ±13.07%  ±18.14%  ±25.22%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ecdsa-p384'                                                                         1.20 %       ±2.09%   ±2.92%   ±4.10%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ecdsa-p521'                                                                        -0.35 %       ±0.62%   ±0.86%   ±1.19%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ed25519'                                                                            4.01 %      ±14.54%  ±20.03%  ±27.55%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ed448'                                                                             -5.18 %      ±10.25%  ±14.07%  ±19.22%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='hmac'                                                                               7.86 %      ±17.48%  ±24.19%  ±33.47%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='kmac128'                                                                          -13.77 %      ±14.09%  ±19.53%  ±27.13%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='kmac256'                                                                           -1.62 %      ±21.98%  ±30.11%  ±41.02%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ml-dsa-44'                                                                         -7.20 %       ±9.89%  ±13.82%  ±19.43%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ml-dsa-65'                                                                          2.70 %       ±4.31%   ±5.90%   ±8.04%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ml-dsa-87'                                                                          1.64 %       ±4.20%   ±5.76%   ±7.86%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ml-kem-1024'                                                                       -3.68 %       ±7.55%  ±10.38%  ±14.23%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ml-kem-512'                                                                        -3.28 %      ±14.98%  ±20.69%  ±28.57%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='ml-kem-768'                                                                        -8.58 %       ±9.52%  ±13.09%  ±17.93%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='x25519'                                                                             2.60 %       ±9.56%  ±13.10%  ±17.85%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='parallel' algorithm='x448'                                                                               2.33 %       ±9.79%  ±13.43%  ±18.33%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='aes-cbc-128'                                                                  **     35.93 %      ±19.96%  ±27.55%  ±38.00%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='aes-ctr-128'                                                                  **     45.37 %      ±26.82%  ±37.26%  ±51.93%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='aes-gcm-128'                                                                 ***     75.38 %      ±21.20%  ±29.67%  ±41.80%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='aes-kw-128'                                                                  ***     66.93 %      ±25.69%  ±35.92%  ±50.54%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='aes-ocb-128'                                                                 ***     57.50 %      ±27.95%  ±39.28%  ±55.75%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='chacha20-poly1305'                                                           ***     44.75 %      ±16.15%  ±22.52%  ±31.56%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ecdh-p256'                                                                   ***     57.72 %      ±22.18%  ±31.29%  ±44.69%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ecdh-p384'                                                                   ***    242.79 %      ±51.79%  ±74.40% ±109.43%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ecdh-p521'                                                                   ***    128.53 %      ±27.93%  ±40.12%  ±59.02%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ecdsa-p256'                                                                  ***     70.60 %      ±30.92%  ±43.09%  ±60.32%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ecdsa-p384'                                                                  ***    140.74 %      ±33.34%  ±47.89%  ±70.45%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ecdsa-p521'                                                                  ***    104.44 %      ±38.94%  ±55.94%  ±82.30%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ed25519'                                                                     ***    126.96 %      ±34.39%  ±49.24%  ±72.02%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ed448'                                                                       ***    182.02 %      ±33.99%  ±48.81%  ±71.77%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='hmac'                                                                         **     44.85 %      ±26.46%  ±36.88%  ±51.67%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='kmac128'                                                                     ***     56.87 %      ±27.02%  ±37.75%  ±53.07%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='kmac256'                                                                     ***     66.14 %      ±28.69%  ±40.27%  ±57.02%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ml-dsa-44'                                                                   ***    217.23 %      ±45.94%  ±65.89%  ±96.64%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ml-dsa-65'                                                                   ***    260.86 %      ±38.62%  ±55.45%  ±81.51%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ml-dsa-87'                                                                   ***    463.09 %       ±8.57%  ±12.29%  ±18.01%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ml-kem-1024'                                                                 ***    171.74 %      ±35.50%  ±50.97%  ±74.93%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ml-kem-512'                                                                  ***     62.34 %      ±25.31%  ±36.15%  ±52.67%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='ml-kem-768'                                                                  ***    181.54 %      ±35.00%  ±49.93%  ±72.64%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='x25519'                                                                      ***    138.77 %      ±33.33%  ±47.83%  ±70.24%
crypto/webcrypto-sync-fast-path-keygen.js n=1000 mode='serial' algorithm='x448'                                                                        ***    163.32 %      ±37.45%  ±53.78%  ±79.05%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='after-threshold' operation='sign' algorithm='HMAC'                                         -4.13 %       ±9.13%  ±12.52%  ±17.07%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='after-threshold' operation='sign' algorithm='KMAC128'                                      -6.86 %      ±13.49%  ±18.52%  ±25.30%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='after-threshold' operation='sign' algorithm='KMAC256'                                      -8.42 %      ±14.84%  ±20.34%  ±27.72%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='after-threshold' operation='verify' algorithm='HMAC'                                        1.68 %       ±9.58%  ±13.16%  ±18.02%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='after-threshold' operation='verify' algorithm='KMAC128'                                     4.78 %      ±17.76%  ±24.39%  ±33.33%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='after-threshold' operation='verify' algorithm='KMAC256'                                    -3.57 %      ±16.61%  ±22.82%  ±31.24%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='at-threshold' operation='sign' algorithm='HMAC'                                             3.86 %      ±11.80%  ±16.17%  ±22.04%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='at-threshold' operation='sign' algorithm='KMAC128'                                         -7.44 %      ±15.47%  ±21.24%  ±29.04%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='at-threshold' operation='sign' algorithm='KMAC256'                                         -9.45 %      ±11.73%  ±16.09%  ±21.96%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='at-threshold' operation='verify' algorithm='HMAC'                                         -11.29 %      ±14.95%  ±20.51%  ±28.00%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='at-threshold' operation='verify' algorithm='KMAC128'                                       -6.70 %      ±14.79%  ±20.42%  ±28.17%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='at-threshold' operation='verify' algorithm='KMAC256'                                        3.49 %      ±14.76%  ±20.22%  ±27.55%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='middle' operation='sign' algorithm='HMAC'                                                  -0.64 %      ±13.89%  ±19.05%  ±25.97%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='middle' operation='sign' algorithm='KMAC128'                                                0.88 %      ±23.02%  ±31.55%  ±43.00%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='middle' operation='sign' algorithm='KMAC256'                                               -1.39 %      ±17.00%  ±23.55%  ±32.66%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='middle' operation='verify' algorithm='HMAC'                                                -9.18 %      ±15.80%  ±21.73%  ±29.77%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='middle' operation='verify' algorithm='KMAC128'                                             17.63 %      ±27.33%  ±38.63%  ±55.34%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='middle' operation='verify' algorithm='KMAC256'                                             -7.77 %      ±16.93%  ±23.38%  ±32.28%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='minimal' operation='sign' algorithm='HMAC'                                                  2.52 %      ±15.78%  ±21.73%  ±29.87%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='minimal' operation='sign' algorithm='KMAC128'                                               6.80 %      ±15.12%  ±21.06%  ±29.47%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='minimal' operation='sign' algorithm='KMAC256'                                              -8.69 %      ±19.49%  ±26.71%  ±36.39%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='minimal' operation='verify' algorithm='HMAC'                                                0.88 %      ±18.23%  ±24.99%  ±34.07%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='minimal' operation='verify' algorithm='KMAC128'                                            25.79 %      ±28.82%  ±40.87%  ±58.85%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='parallel' size='minimal' operation='verify' algorithm='KMAC256'                                             6.34 %      ±28.14%  ±38.55%  ±52.53%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='after-threshold' operation='sign' algorithm='HMAC'                                          -31.92 %      ±41.02%  ±57.60%  ±81.61%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='after-threshold' operation='sign' algorithm='KMAC128'                                       -11.75 %      ±37.20%  ±50.99%  ±69.52%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='after-threshold' operation='sign' algorithm='KMAC256'                                        34.91 %      ±50.41%  ±69.07%  ±94.12%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='after-threshold' operation='verify' algorithm='HMAC'                                          7.35 %      ±49.47%  ±67.97%  ±93.04%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='after-threshold' operation='verify' algorithm='KMAC128'                                      11.54 %      ±49.70%  ±68.13%  ±92.91%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='after-threshold' operation='verify' algorithm='KMAC256'                                      25.66 %      ±53.01%  ±74.20% ±104.61%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='at-threshold' operation='sign' algorithm='HMAC'                                      ***    208.53 %      ±40.06%  ±57.46%  ±84.31%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='at-threshold' operation='sign' algorithm='KMAC128'                                   ***     95.63 %      ±32.55%  ±46.46%  ±67.62%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='at-threshold' operation='sign' algorithm='KMAC256'                                   ***    145.71 %      ±21.33%  ±30.07%  ±42.91%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='at-threshold' operation='verify' algorithm='HMAC'                                    ***    155.19 %      ±44.04%  ±63.20%  ±92.80%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='at-threshold' operation='verify' algorithm='KMAC128'                                 ***    139.22 %      ±35.00%  ±49.52%  ±71.05%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='at-threshold' operation='verify' algorithm='KMAC256'                                 ***    148.99 %      ±40.07%  ±57.04%  ±82.66%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='middle' operation='sign' algorithm='HMAC'                                            ***     88.87 %      ±29.23%  ±41.64%  ±60.41%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='middle' operation='sign' algorithm='KMAC128'                                         ***    111.55 %      ±30.12%  ±41.52%  ±57.14%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='middle' operation='sign' algorithm='KMAC256'                                         ***     74.84 %      ±31.25%  ±43.88%  ±62.21%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='middle' operation='verify' algorithm='HMAC'                                          ***    109.23 %      ±28.81%  ±41.01%  ±59.44%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='middle' operation='verify' algorithm='KMAC128'                                       ***    130.98 %      ±21.88%  ±30.00%  ±40.93%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='middle' operation='verify' algorithm='KMAC256'                                       ***     92.61 %      ±33.29%  ±45.89%  ±63.15%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='minimal' operation='sign' algorithm='HMAC'                                           ***     82.55 %      ±11.58%  ±16.10%  ±22.47%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='minimal' operation='sign' algorithm='KMAC128'                                         **     45.28 %      ±26.91%  ±37.34%  ±51.93%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='minimal' operation='sign' algorithm='KMAC256'                                         **     36.43 %      ±24.31%  ±33.39%  ±45.69%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='minimal' operation='verify' algorithm='HMAC'                                         ***     94.89 %       ±9.44%  ±12.97%  ±17.77%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='minimal' operation='verify' algorithm='KMAC128'                                       **     53.37 %      ±27.85%  ±39.03%  ±55.15%
crypto/webcrypto-sync-fast-path-mac.js n=1000 mode='serial' size='minimal' operation='verify' algorithm='KMAC256'                                       **     42.09 %      ±26.67%  ±36.95%  ±51.25%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='after-threshold' keySize='fixture-2048' operation='rsa-pss-verify'                           9.01 %      ±19.00%  ±26.05%  ±35.54%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='after-threshold' keySize='fixture-2048' operation='rsassa-pkcs1-v1_5-verify'                 1.44 %      ±10.26%  ±14.07%  ±19.20%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='after-threshold' keySize='fixture-4096' operation='rsa-pss-verify'                          -2.59 %      ±16.29%  ±22.55%  ±31.23%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='after-threshold' keySize='fixture-4096' operation='rsassa-pkcs1-v1_5-verify'                 2.25 %      ±14.33%  ±19.68%  ±26.92%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='at-threshold' keySize='fixture-2048' operation='rsa-pss-verify'                       *    -18.31 %      ±15.65%  ±21.55%  ±29.60%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='at-threshold' keySize='fixture-2048' operation='rsassa-pkcs1-v1_5-verify'                    0.02 %      ±20.73%  ±28.42%  ±38.77%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='at-threshold' keySize='fixture-4096' operation='rsa-pss-verify'                              9.83 %      ±12.46%  ±17.19%  ±23.68%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='at-threshold' keySize='fixture-4096' operation='rsassa-pkcs1-v1_5-verify'                    6.08 %      ±13.60%  ±18.65%  ±25.46%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='middle' keySize='fixture-2048' operation='rsa-pss-verify'                                   -6.70 %      ±17.06%  ±23.58%  ±32.58%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='middle' keySize='fixture-2048' operation='rsassa-pkcs1-v1_5-verify'                          1.06 %      ±14.54%  ±19.99%  ±27.37%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='middle' keySize='fixture-4096' operation='rsa-pss-verify'                            **    -19.18 %      ±13.38%  ±18.62%  ±26.04%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='middle' keySize='fixture-4096' operation='rsassa-pkcs1-v1_5-verify'                          1.87 %      ±15.38%  ±21.09%  ±28.77%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='minimal' keySize='fixture-2048' operation='rsa-oaep-decrypt'                                 4.22 %      ±57.90%  ±79.40% ±108.36%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='minimal' keySize='fixture-2048' operation='rsa-oaep-encrypt'                                -1.78 %      ±22.74%  ±31.27%  ±42.86%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='minimal' keySize='fixture-2048' operation='rsa-pss-verify'                                 -19.14 %      ±25.20%  ±34.55%  ±47.12%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='minimal' keySize='fixture-2048' operation='rsassa-pkcs1-v1_5-verify'                        -7.58 %      ±15.84%  ±21.71%  ±29.58%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='minimal' keySize='fixture-4096' operation='rsa-oaep-decrypt'                               -11.03 %      ±53.13%  ±72.79%  ±99.17%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='minimal' keySize='fixture-4096' operation='rsa-oaep-encrypt'                                23.69 %      ±38.74%  ±53.07%  ±72.31%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='minimal' keySize='fixture-4096' operation='rsa-pss-verify'                                  -9.09 %      ±18.67%  ±25.58%  ±34.86%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='parallel' size='minimal' keySize='fixture-4096' operation='rsassa-pkcs1-v1_5-verify'                       -10.44 %      ±12.75%  ±17.91%  ±25.38%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='after-threshold' keySize='fixture-2048' operation='rsa-pss-verify'                            16.18 %      ±30.20%  ±41.86%  ±58.10%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='after-threshold' keySize='fixture-2048' operation='rsassa-pkcs1-v1_5-verify'                  19.97 %      ±61.02%  ±84.61% ±117.51%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='after-threshold' keySize='fixture-4096' operation='rsa-pss-verify'                           -14.03 %      ±50.99%  ±70.00%  ±95.66%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='after-threshold' keySize='fixture-4096' operation='rsassa-pkcs1-v1_5-verify'                   1.72 %      ±52.32%  ±72.55% ±100.76%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='at-threshold' keySize='fixture-2048' operation='rsa-pss-verify'                       ***    257.19 %      ±26.92%  ±37.53%  ±52.56%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='at-threshold' keySize='fixture-2048' operation='rsassa-pkcs1-v1_5-verify'             ***    295.59 %      ±19.23%  ±26.63%  ±36.90%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='at-threshold' keySize='fixture-4096' operation='rsa-pss-verify'                       ***    196.17 %      ±41.74%  ±59.54%  ±86.59%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='at-threshold' keySize='fixture-4096' operation='rsassa-pkcs1-v1_5-verify'             ***    338.23 %      ±38.21%  ±54.07%  ±77.62%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='middle' keySize='fixture-2048' operation='rsa-pss-verify'                             ***     84.75 %      ±28.21%  ±40.09%  ±57.91%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='middle' keySize='fixture-2048' operation='rsassa-pkcs1-v1_5-verify'                   ***    138.09 %      ±37.29%  ±52.79%  ±75.82%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='middle' keySize='fixture-4096' operation='rsa-pss-verify'                             ***    329.50 %      ±21.85%  ±29.95%  ±40.83%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='middle' keySize='fixture-4096' operation='rsassa-pkcs1-v1_5-verify'                   ***    216.95 %      ±42.70%  ±60.70%  ±87.75%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='minimal' keySize='fixture-2048' operation='rsa-oaep-decrypt'                                 -29.50 %      ±43.52%  ±60.20%  ±83.25%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='minimal' keySize='fixture-2048' operation='rsa-oaep-encrypt'                           **     34.57 %      ±19.33%  ±26.55%  ±36.30%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='minimal' keySize='fixture-2048' operation='rsa-pss-verify'                            ***     53.05 %      ±21.47%  ±29.65%  ±40.93%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='minimal' keySize='fixture-2048' operation='rsassa-pkcs1-v1_5-verify'                  ***     82.15 %      ±32.49%  ±45.12%  ±62.81%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='minimal' keySize='fixture-4096' operation='rsa-oaep-decrypt'                                   9.35 %      ±42.22%  ±57.87%  ±78.92%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='minimal' keySize='fixture-4096' operation='rsa-oaep-encrypt'                          ***    187.18 %      ±28.07%  ±38.74%  ±53.39%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='minimal' keySize='fixture-4096' operation='rsa-pss-verify'                            ***    211.12 %      ±51.21%  ±72.80% ±105.28%
crypto/webcrypto-sync-fast-path-rsa.js n=500 mode='serial' size='minimal' keySize='fixture-4096' operation='rsassa-pkcs1-v1_5-verify'                  ***    247.03 %      ±29.56%  ±40.82%  ±56.32%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='after-threshold' operation='sign' algorithm='ecdsa-p256'                            3.76 %       ±9.97%  ±13.65%  ±18.60%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='after-threshold' operation='sign' algorithm='ed25519'                               1.92 %       ±4.86%   ±6.74%   ±9.38%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='after-threshold' operation='sign' algorithm='ed448'                                 1.02 %       ±3.64%   ±5.06%   ±7.05%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='after-threshold' operation='verify' algorithm='ecdsa-p256'                         -1.94 %       ±9.11%  ±12.52%  ±17.13%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='after-threshold' operation='verify' algorithm='ed25519'                             5.12 %       ±5.71%   ±7.94%  ±11.08%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='after-threshold' operation='verify' algorithm='ed448'                               0.87 %       ±3.56%   ±4.89%   ±6.68%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='at-threshold' operation='sign' algorithm='ecdsa-p256'                        *     12.19 %       ±9.56%  ±13.11%  ±17.87%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='at-threshold' operation='sign' algorithm='ed25519'                                 -0.03 %       ±4.54%   ±6.22%   ±8.49%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='at-threshold' operation='sign' algorithm='ed448'                                    0.15 %       ±2.56%   ±3.51%   ±4.79%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='at-threshold' operation='verify' algorithm='ecdsa-p256'                            -3.54 %       ±7.05%   ±9.77%  ±13.54%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='at-threshold' operation='verify' algorithm='ed25519'                               -0.84 %       ±4.09%   ±5.61%   ±7.67%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='at-threshold' operation='verify' algorithm='ed448'                                  0.71 %       ±3.51%   ±4.82%   ±6.62%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='middle' operation='sign' algorithm='ecdsa-p256'                                     3.17 %      ±14.99%  ±20.61%  ±28.22%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='middle' operation='sign' algorithm='ed25519'                                       -0.95 %       ±6.37%   ±8.82%  ±12.23%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='middle' operation='sign' algorithm='ed448'                                         -0.82 %       ±5.32%   ±7.28%   ±9.92%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='middle' operation='verify' algorithm='ecdsa-p256'                                  -2.48 %       ±7.67%  ±10.53%  ±14.40%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='middle' operation='verify' algorithm='ed25519'                                      0.49 %       ±7.25%  ±10.04%  ±13.93%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='middle' operation='verify' algorithm='ed448'                                        0.55 %       ±5.22%   ±7.18%   ±9.85%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='minimal' operation='sign' algorithm='ecdsa-p256'                                   -0.76 %      ±19.26%  ±26.39%  ±35.96%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='minimal' operation='sign' algorithm='ed25519'                                      -4.96 %      ±14.88%  ±20.42%  ±27.90%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='minimal' operation='sign' algorithm='ed448'                                        -7.33 %      ±16.82%  ±23.05%  ±31.44%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='minimal' operation='verify' algorithm='ecdsa-p256'                                 -0.28 %      ±12.79%  ±17.52%  ±23.88%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='minimal' operation='verify' algorithm='ed25519'                                     0.68 %       ±8.36%  ±11.51%  ±15.81%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='parallel' size='minimal' operation='verify' algorithm='ed448'                                      -5.39 %       ±6.89%   ±9.43%  ±12.85%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='after-threshold' operation='sign' algorithm='ecdsa-p256'                              4.90 %      ±62.53%  ±85.81% ±117.21%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='after-threshold' operation='sign' algorithm='ed25519'                                23.89 %      ±81.40% ±111.54% ±151.99%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='after-threshold' operation='sign' algorithm='ed448'                                  24.52 %      ±38.65%  ±53.54%  ±74.24%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='after-threshold' operation='verify' algorithm='ecdsa-p256'                           56.44 %      ±77.22% ±110.78% ±162.59%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='after-threshold' operation='verify' algorithm='ed25519'                               8.32 %      ±31.19%  ±42.99%  ±59.15%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='after-threshold' operation='verify' algorithm='ed448'                                28.74 %      ±80.39% ±110.99% ±153.06%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='at-threshold' operation='sign' algorithm='ecdsa-p256'                        ***    189.29 %      ±38.92%  ±55.87%  ±82.10%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='at-threshold' operation='sign' algorithm='ed25519'                           ***    460.91 %      ±19.09%  ±27.38%  ±40.14%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='at-threshold' operation='sign' algorithm='ed448'                             ***    280.43 %      ±23.76%  ±34.11%  ±50.12%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='at-threshold' operation='verify' algorithm='ecdsa-p256'                      ***    290.94 %      ±51.76%  ±74.27% ±109.01%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='at-threshold' operation='verify' algorithm='ed25519'                         ***    273.55 %      ±54.77%  ±78.68% ±115.74%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='at-threshold' operation='verify' algorithm='ed448'                           ***    304.89 %      ±24.28%  ±34.85%  ±51.19%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='middle' operation='sign' algorithm='ecdsa-p256'                              ***    202.76 %      ±35.36%  ±50.56%  ±73.79%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='middle' operation='sign' algorithm='ed25519'                                 ***    238.69 %      ±63.24%  ±90.82% ±133.54%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='middle' operation='sign' algorithm='ed448'                                   ***    434.42 %      ±13.38%  ±19.01%  ±27.44%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='middle' operation='verify' algorithm='ecdsa-p256'                            ***    282.00 %      ±40.19%  ±57.61%  ±84.44%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='middle' operation='verify' algorithm='ed25519'                               ***    283.47 %      ±42.60%  ±61.18%  ±89.98%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='middle' operation='verify' algorithm='ed448'                                 ***    253.78 %      ±35.17%  ±50.50%  ±74.20%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='minimal' operation='sign' algorithm='ecdsa-p256'                             ***    104.55 %      ±34.38%  ±48.65%  ±69.81%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='minimal' operation='sign' algorithm='ed25519'                                ***    138.15 %      ±29.21%  ±41.96%  ±61.70%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='minimal' operation='sign' algorithm='ed448'                                  ***    191.58 %      ±29.96%  ±42.59%  ±61.59%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='minimal' operation='verify' algorithm='ecdsa-p256'                           ***    242.45 %      ±57.14%  ±81.94% ±120.16%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='minimal' operation='verify' algorithm='ed25519'                              ***    266.59 %      ±30.83%  ±44.26%  ±65.04%
crypto/webcrypto-sync-fast-path-sign-verify.js n=1000 mode='serial' size='minimal' operation='verify' algorithm='ed448'                                ***    234.28 %      ±48.08%  ±69.01% ±101.37%

Be aware that when doing many comparisons the risk of a false-positive
result increases. In this case, there are 396 comparisons, you can thus
expect the following amount of false-positive results:
  19.80 false positives, when considering a   5% risk acceptance (*, **, ***),
  3.96 false positives, when considering a   1% risk acceptance (**, ***),
  0.40 false positives, when considering a 0.1% risk acceptance (***)

This adds a WebCrypto-specific synchronous CryptoJob fast path for selected low-cost operations while preserving Promise-based WebCrypto semantics.

The existing WebCrypto implementation always dispatched these jobs to the libuv threadpool. For small inputs and low-cost key operations, the threadpool orchestration cost can dominate the native crypto work. This change adds kCryptoJobSyncWebCrypto, which performs the native work on the current thread while still resolving or rejecting the returned Promise using WebCrypto result and error semantics.

The JavaScript WebCrypto layer now chooses between async and sync WebCrypto job modes before constructing the native job. The selection is limited to explicit sync candidates and is guarded by operation-specific thresholds, RSA modulus limits, and a small per-turn sync budget. This lets sequential await usage take the fast path while same-turn fanout falls back to async jobs for parallel throughput.

Sync candidates include selected small-input digest, cipher, MAC, HKDF, RSA verify, ECDSA, and EdDSA operations, selected ECDH operations, ML-KEM encapsulation/decapsulation, and WebCrypto symmetric and non-RSA asymmetric key generation. No WebCrypto operation is unconditionally sync; the sync path is always a candidate path and can still fall back to async mode.

Signed-off-by: Filip Skokan <panva.ip@gmail.com>

mcollina · 2026-05-28T08:02:09Z

Code is ok.

I'm somewhat concerned by this change, and I think it needs to be validated a bit more.
Let's imagine a small HTTP server that performs a small crypto operation: before this change, this would "fill" the thread pool of small jobs, adding latency but ultimately keeping the server responsive. With this change, the server event loop would start blocking.

I don't know if there is a best choice for this. If the resources are constrained, sync is inherently better (as it prevents the queue from growing), but I can see I might want to tune this behavior to my application.

panva · 2026-05-28T08:34:51Z

Code is ok.

I'm somewhat concerned by this change, and I think it needs to be validated a bit more. Let's imagine a small HTTP server that performs a small crypto operation: before this change, this would "fill" the thread pool of small jobs, adding latency but ultimately keeping the server responsive. With this change, the server event loop would start blocking.

I don't know if there is a best choice for this. If the resources are constrained, sync is inherently better (as it prevents the queue from growing), but I can see I might want to tune this behavior to my application.

I checked. Results are not good as you suspected.

Factoring in http-server responsiveness severly limits what we could mark as a sync candidate, what remains is non-rsa keygen and symmetric ops (hmac, encrypt/decrypt) but with threshold below 4kB, sometimes 8kB, rather than 64kB.

So it's sort of pointless to continue with this spike, too big of a churn and maintenance burden over too small an impact.

crypto: add WebCrypto sync job fast paths

f20bba3

Signed-off-by: Filip Skokan <panva.ip@gmail.com>

panva added the wip Issues and PRs that are still a work in progress. label May 27, 2026

panva added 3 commits May 27, 2026 11:14

wip

27d6d3f

wip

78c1a36

wip

ac28e2b

panva force-pushed the fast-webcrypto branch from 28c9c79 to ac28e2b Compare May 27, 2026 13:18

panva closed this May 28, 2026

panva removed the wip Issues and PRs that are still a work in progress. label May 28, 2026

panva deleted the fast-webcrypto branch May 28, 2026 11:04

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

crypto: add WebCrypto sync job fast paths#63595

crypto: add WebCrypto sync job fast paths#63595
panva wants to merge 4 commits into
nodejs:mainfrom
panva:fast-webcrypto

panva commented May 27, 2026 •

edited

Loading

Uh oh!

mcollina commented May 28, 2026

Uh oh!

panva commented May 28, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

Conversation

panva commented May 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

mcollina commented May 28, 2026

Uh oh!

panva commented May 28, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

panva commented May 27, 2026 •

edited

Loading

panva commented May 28, 2026 •

edited

Loading