apple
diff --git a/‎Benchmarks/Benchmarks/Benchmarks.swift
+102 b/‎Benchmarks/Benchmarks/Benchmarks.swift
+102
diff --git a/‎Benchmarks/Package.swift
+25 b/‎Benchmarks/Package.swift
+25
diff --git a/‎Sources/CryptoBoringWrapper/EC/EllipticCurve.swift
+9-17 b/‎Sources/CryptoBoringWrapper/EC/EllipticCurve.swift
+9-17
@@ -0,0 +1,102 @@
+//===----------------------------------------------------------------------===//
+//
+// This source file is part of the SwiftCrypto open source project
+//
+// Copyright (c) 2025 Apple Inc. and the SwiftCrypto project authors
+// Licensed under Apache License v2.0
+//
+// See LICENSE.txt for license information
+// See CONTRIBUTORS.txt for the list of SwiftCrypto project authors
+//
+// SPDX-License-Identifier: Apache-2.0
+//
+//===----------------------------------------------------------------------===//
+import Benchmark
+import Crypto
+import Foundation
+import _CryptoExtras
+
+let benchmarks = {
+    let defaultMetrics: [BenchmarkMetric] = [.mallocCountTotal, .cpuTotal]
+
+    Benchmark(
+        "arc-issue-p384",
+        configuration: Benchmark.Configuration(
+            metrics: defaultMetrics,
+            scalingFactor: .kilo,
+            maxDuration: .seconds(10_000_000),
+            maxIterations: 3
+        )
+    ) { benchmark in
+        let privateKey = P384._ARCV1.PrivateKey()
+        let publicKey = privateKey.publicKey
+        let requestContext = Data("shared request context".utf8)
+        let precredential = try publicKey.prepareCredentialRequest(requestContext: requestContext)
+        let credentialRequest = precredential.credentialRequest
+
+        benchmark.startMeasurement()
+
+        for _ in benchmark.scaledIterations {
+            blackHole(try privateKey.issue(credentialRequest))
+        }
+    }
+
+    Benchmark(
+        "arc-verify-p384",
+        configuration: Benchmark.Configuration(
+            metrics: defaultMetrics,
+            scalingFactor: .kilo,
+            maxDuration: .seconds(10_000_000),
+            maxIterations: 10
+        )
+    ) { benchmark in
+        let privateKey = P384._ARCV1.PrivateKey()
+        let publicKey = privateKey.publicKey
+        let requestContext = Data("shared request context".utf8)
+        let (presentationContext, presentationLimit) = (Data("shared presentation context".utf8), 2)
+        let precredential = try publicKey.prepareCredentialRequest(requestContext: requestContext)
+        let credentialRequest = precredential.credentialRequest
+        let credentialResponse = try privateKey.issue(credentialRequest)
+        var credential = try publicKey.finalize(credentialResponse, for: precredential)
+        let (presentation, nonce) = try credential.makePresentation(
+            context: presentationContext,
+            presentationLimit: presentationLimit
+        )
+
+        benchmark.startMeasurement()
+
+        for _ in benchmark.scaledIterations {
+            blackHole(
+                try privateKey.verify(
+                    presentation,
+                    requestContext: requestContext,
+                    presentationContext: presentationContext,
+                    presentationLimit: presentationLimit,
+                    nonce: nonce
+                )
+            )
+        }
+    }
+
+    Benchmark(
+        "voprf-evaluate-p384",
+        configuration: Benchmark.Configuration(
+            metrics: defaultMetrics,
+            scalingFactor: .kilo,
+            maxDuration: .seconds(10_000_000),
+            maxIterations: 3
+        )
+    ) { benchmark in
+        let privateKey = P384._VOPRF.PrivateKey()
+        let publicKey = privateKey.publicKey
+        let privateInput = Data("This is some input data".utf8)
+        let blindedInput = try publicKey.blind(privateInput)
+        let blindedElement = blindedInput.blindedElement
+
+        benchmark.startMeasurement()
+
+        for _ in benchmark.scaledIterations {
+            blackHole(try privateKey.evaluate(blindedElement))
+        }
+    }
+}
@@ -0,0 +1,25 @@
+// swift-tools-version: 5.9
+import PackageDescription
+
+let package = Package(
+    name: "swift-crypto-benchmarks",
+    platforms: [.macOS("14")],
+    dependencies: [
+        .package(name: "swift-crypto", path: "../"),
+        .package(url: "https://github.com/ordo-one/package-benchmark", from: "1.22.0"),
+    ],
+    targets: [
+        .executableTarget(
+            name: "SwiftCryptoBenchmarks",
+            dependencies: [
+                .product(name: "Benchmark", package: "package-benchmark"),
+                .product(name: "Crypto", package: "swift-crypto"),
+                .product(name: "_CryptoExtras", package: "swift-crypto"),
+            ],
+            path: "Benchmarks/",
+            plugins: [
+                .plugin(name: "BenchmarkPlugin", package: "package-benchmark")
+            ]
+        )
+    ]
+)
@@ -20,13 +20,22 @@
 package final class BoringSSLEllipticCurveGroup {
     @usableFromInline var _group: OpaquePointer
 
+    @usableFromInline package let order: ArbitraryPrecisionInteger
+
+    @usableFromInline package let generator: EllipticCurvePoint
+
     @usableFromInline
     package init(_ curve: CurveName) throws {
         guard let group = CCryptoBoringSSL_EC_GROUP_new_by_curve_name(curve.baseNID) else {
             throw CryptoBoringWrapperError.internalBoringSSLError()
         }
 
         self._group = group
+
+        let baseOrder = CCryptoBoringSSL_EC_GROUP_get0_order(self._group)!
+        self.order = try! ArbitraryPrecisionInteger(copying: baseOrder)
+
+        self.generator = try EllipticCurvePoint(_generatorOf: self._group)
     }
 
     deinit {
@@ -68,23 +77,6 @@ extension BoringSSLEllipticCurveGroup {
         try body(self._group)
     }
 
-    @usableFromInline
-    package var order: ArbitraryPrecisionInteger {
-        // Groups must have an order.
-        let baseOrder = CCryptoBoringSSL_EC_GROUP_get0_order(self._group)!
-        return try! ArbitraryPrecisionInteger(copying: baseOrder)
-    }
-
-    @usableFromInline
-    package var generator: EllipticCurvePoint {
-        get throws {
-            guard let generatorPtr = CCryptoBoringSSL_EC_GROUP_get0_generator(self._group) else {
-                throw CryptoBoringWrapperError.internalBoringSSLError()
-            }
-            return try EllipticCurvePoint(copying: generatorPtr, on: self)
-        }
-    }
-
     /// An elliptic curve can be represented in a Weierstrass form: `y² = x³ + ax + b`. This
     /// property provides the values of a and b on the curve.
     @usableFromInline