Implementation notes: amd64, bolero, crypto_aead/aegis256

Computer: bolero
Microarchitecture: amd64; Broadwell+AES (406f1)
Architecture: amd64
CPU ID: GenuineIntel-000406f1-1fc9cbf5
SUPERCOP version: 20240107
Operation: crypto_aead
Primitive: aegis256

Time	Object size	Test size	Implementation	Compiler	Benchmark date	SUPERCOP version
3712	4167 32 0	20148 856 856	`jasmin-aesni`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231222	20231222
3720	4167 32 0	21436 856 872	`jasmin-aesni`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231222	20231222
3724	4167 32 0	17628 856 856	`jasmin-aesni`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231222	20231222
3724	4112 32 0	18270 848 920	`jasmin-aesni`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231222	20231222
3724	4200 32 0	16921 792 896	`jasmin-aesni`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231222	20231222
3732	4167 32 0	21748 856 872	`jasmin-aesni`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231222	20231222
3732	4385 32 0	18686 816 928	`jasmin-aesni`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231222	20231222
3732	4385 32 0	20750 816 928	`jasmin-aesni`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231222	20231222
3740	4224 32 0	18189 808 928	`jasmin-aesni`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231222	20231222
3832	3158 0 0	23406 808 920	`sodium-aesni`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3832	4107 0 0	27093 784 928	`sodium-aesni`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
3880	4647 0 0	21852 816 872	`T:aesni`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3884	2660 0 0	16742 808 920	`T:aesni`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3896	2655 0 0	22060 816 856	`sodium-aesni`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3900	3942 0 0	27276 816 872	`sodium-aesni`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3900	3942 0 0	27588 816 872	`sodium-aesni`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3904	3943 0 0	25956 816 856	`sodium-aesni`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3908	4647 0 0	22164 816 872	`T:aesni`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3920	3355 0 0	24309 784 928	`sodium-aesni`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
3924	3772 0 0	20692 792 928	`T:aesni`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
3948	2928 0 0	16324 816 856	`T:aesni`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3992	3125 0 0	18004 792 928	`T:aesni`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
4060	3067 0 0	17579 784 928	`T:aesni`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
5260	3204 0 0	23725 784 928	`sodium-aesni`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
6620	1917 0 0	20744 760 896	`sodium-aesni`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
56900	4675 4096 0	21548 4896 928	`T:ref`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
922816	6877 0 0	30284 816 872	`T:sodium-softaes`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
930528	7389 0 0	29460 816 856	`T:sodium-softaes`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
970415	7373 0 0	31076 816 872	`T:sodium-softaes`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
1050540	6645 0 0	26934 808 920	`T:sodium-softaes`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
1092432	7139 1024 0	28109 1816 928	`T:sodium-softaes`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
1105156	7631 1024 0	28157 1816 928	`T:sodium-softaes`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
1111420	6701 0 0	26204 816 856	`T:sodium-softaes`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
1212356	3950 1024 0	22848 1792 896	`T:sodium-softaes`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
1413456	8924 1024 0	31933 1816 928	`T:sodium-softaes`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212

Compiler output

Implementation: T:aesni
Security model: timingleaks
Compiler: clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

encrypt.c: encrypt.c:42:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: state[5] = _mm_aesenc_si128(state[4],state[5]);
encrypt.c: ^
encrypt.c: encrypt.c:43:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: state[4] = _mm_aesenc_si128(state[3],state[4]);
encrypt.c: ^
encrypt.c: encrypt.c:44:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: state[3] = _mm_aesenc_si128(state[2],state[3]);
encrypt.c: ^
encrypt.c: encrypt.c:45:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: state[2] = _mm_aesenc_si128(state[1],state[2]);
encrypt.c: ^
encrypt.c: encrypt.c:46:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: state[1] = _mm_aesenc_si128(state[0],state[1]);
encrypt.c: ^
encrypt.c: encrypt.c:47:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: state[0] = _mm_aesenc_si128(tmp,state[0]);
encrypt.c: ^
encrypt.c: encrypt.c:56:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: state[5] = _mm_aesenc_si128(state[4],state[5]);
encrypt.c: ^
encrypt.c: encrypt.c:57:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: state[4] = _mm_aesenc_si128(state[3],state[4]);
encrypt.c: ^
encrypt.c: encrypt.c:58:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis256_initialization' that is compiled without support for 'aes'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 1, namely:

Compiler	Implementations
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:aesni

Compiler output

Implementation: T:aesni
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE

try.c: /usr/bin/ld: libcrypto_aead_aegis256.a(encrypt.o): in function `crypto_aead_aegis256_aesni_timingleaks_encrypt':
try.c: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: libcrypto_aead_aegis256.a(encrypt.o): in function `crypto_aead_aegis256_aesni_timingleaks_decrypt':
try.c: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: libcrypto_aead_aegis256.a(encrypt.o):encrypt.c:(.text+0x...): more undefined references to `aegis256_enc_aut_step' follow
try.c: /usr/bin/ld: libcrypto_aead_aegis256.a(encrypt.o): in function `crypto_aead_aegis256_aesni_timingleaks_decrypt':
try.c: encrypt.c:(.text+0x...): undefined reference to `aegis256_dec_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_dec_aut_step'
try.c: collect2: error: ld returned 1 exit status

Number of similar (compiler,implementation) pairs: 1, namely:

Compiler	Implementations
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:aesni

Compiler output

Implementation: T:ref
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

Number of similar (compiler,implementation) pairs: 5, namely:

Compiler	Implementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref

Compiler output

Implementation: T:ref
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE

Number of similar (compiler,implementation) pairs: 2, namely:

Compiler	Implementations
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref

Compiler output

Implementation: T:ref
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE

try.c: /usr/bin/ld: libcrypto_aead_aegis256.a(encrypt.o): in function `crypto_aead_aegis256_ref_timingleaks_encrypt':
try.c: encrypt.c:(.text+0x...): undefined reference to `aegis256_initialization'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: libcrypto_aead_aegis256.a(encrypt.o): in function `crypto_aead_aegis256_ref_timingleaks_decrypt':
try.c: encrypt.c:(.text+0x...): undefined reference to `aegis256_initialization'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_dec_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis256_dec_aut_step'
try.c: collect2: error: ld returned 1 exit status

Number of similar (compiler,implementation) pairs: 1, namely:

Compiler	Implementations
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref