Implementation notes: amd64, gcc14, crypto_kem/lac128

Computer: gcc14
Architecture: amd64
CPU ID: GenuineIntel-00010676-bfebfbff
SUPERCOP version: 20220506
Operation: crypto_kem
Primitive: lac128

Time	Object size	Test size	Implementation	Compiler	Benchmark date	SUPERCOP version
1439335	21359 39080 0	36435 39980 2280	`T:opt`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
1445414	21359 39080 0	36435 39980 2280	`T:opt`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
1455506	23564 39080 0	39531 39980 2280	`T:opt`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
1496069	18659 39104 0	33686 40028 2376	`T:opt`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210118	20210114
1502405	23873 39080 0	39915 39980 2280	`T:opt`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
1542680	27164 39104 0	44030 40028 2376	`T:opt`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210118	20210114
1561916	16942 39080 0	31597 39972 2280	`T:opt`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
1948198	14874 39104 0	29742 40020 2344	`T:opt`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210118	20210114
5426745	22882 0 0	38859 892 1720	`T:ref`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
5778531	20616 0 0	35651 892 1720	`T:ref`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
5781311	20616 0 0	35651 892 1720	`T:ref`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
5821450	16099 0 0	30741 884 1720	`T:ref`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
6185447	28780 0 0	45438 916 1752	`T:ref`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210118	20210114
6553471	18065 0 0	33470 916 1752	`T:ref`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210118	20210114
6816677	23293 0 0	39227 892 1720	`T:ref`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210118	20210114
7507087	17552 0 0	32406 916 1752	`T:ref`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210118	20210114
7986644	13923 0 0	28590 908 1720	`T:ref`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210118	20210114

Checksum failure

Implementation: T:opt
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE

3de6b7a3a0a5a07ba36ec9e2518a4a08cd769b175879a11c56f12b19cfac1e6d

Number of similar (compiler,implementation) pairs: 1, namely:

Compiler	Implementations
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:opt

Compiler output

Implementation: T:avx2
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

bin-lwe.c: bin-lwe.c:91:10: error: always_inline function '_mm256_set_epi16' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: tmp_one=_mm256_set_epi16(1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1);
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:103:9: error: always_inline function '_mm256_setzero_si256' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: tmp2 =_mm256_setzero_si256();
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:106:11: error: always_inline function '_mm256_loadu_si256' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: tmp0 = _mm256_loadu_si256((__m256i *)(v_p+j));
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:107:11: error: always_inline function '_mm256_loadu_si256' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: tmp1 = _mm256_loadu_si256((__m256i *)(s+j));
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:108:11: error: always_inline function '_mm256_maddubs_epi16' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: tmp0 = _mm256_maddubs_epi16(tmp0, tmp1);
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:109:11: error: always_inline function '_mm256_add_epi16' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: tmp2 = _mm256_add_epi16(tmp2, tmp0);
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:111:11: error: always_inline function '_mm256_loadu_si256' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: tmp0 = _mm256_loadu_si256((__m256i *)(v_p+j+32));
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:112:11: error: always_inline function '_mm256_loadu_si256' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: tmp1 = _mm256_loadu_si256((__m256i *)(s+j+32));
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:113:11: error: always_inline function '_mm256_maddubs_epi16' requires target feature 'xsave', but would be inlined into function 'poly_mul' that is compiled without support for 'xsave'
bin-lwe.c: ...

Number of similar (compiler,implementation) pairs: 4, namely:

Compiler	Implementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:avx2
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:avx2
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:avx2
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:avx2

Compiler output

Implementation: T:avx2
Security model: timingleaks
Compiler: clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

bin-lwe.c: bin-lwe.c:91:10: error: always_inline function '_mm256_set_epi16' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: tmp_one=_mm256_set_epi16(1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1);
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:103:9: error: always_inline function '_mm256_setzero_si256' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: tmp2 =_mm256_setzero_si256();
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:106:11: error: always_inline function '_mm256_loadu_si256' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: tmp0 = _mm256_loadu_si256((__m256i *)(v_p+j));
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:107:11: error: always_inline function '_mm256_loadu_si256' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: tmp1 = _mm256_loadu_si256((__m256i *)(s+j));
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:108:11: error: always_inline function '_mm256_maddubs_epi16' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: tmp0 = _mm256_maddubs_epi16(tmp0, tmp1);
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:109:11: error: always_inline function '_mm256_add_epi16' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: tmp2 = _mm256_add_epi16(tmp2, tmp0);
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:111:11: error: always_inline function '_mm256_loadu_si256' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: tmp0 = _mm256_loadu_si256((__m256i *)(v_p+j+32));
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:112:11: error: always_inline function '_mm256_loadu_si256' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: tmp1 = _mm256_loadu_si256((__m256i *)(s+j+32));
bin-lwe.c: ^
bin-lwe.c: bin-lwe.c:113:11: error: always_inline function '_mm256_maddubs_epi16' requires target feature 'sse4.2', but would be inlined into function 'poly_mul' that is compiled without support for 'sse4.2'
bin-lwe.c: ...

Number of similar (compiler,implementation) pairs: 1, namely:

Compiler	Implementations
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:avx2

Compiler output

Implementation: T:avx2
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE

bin-lwe.c: bin-lwe.c: In function 'poly_mul':
bin-lwe.c: bin-lwe.c:91:9: warning: AVX vector return without AVX enabled changes the ABI [-Wpsabi]
bin-lwe.c: tmp_one=_mm256_set_epi16(1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1);
bin-lwe.c: ~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
bin-lwe.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/6/include/immintrin.h:41:0,
bin-lwe.c: from bin-lwe.c:1:
bin-lwe.c: /usr/lib/gcc/x86_64-linux-gnu/6/include/avxintrin.h:1240:1: error: inlining failed in call to always_inline '_mm256_set_epi16': target specific option mismatch
bin-lwe.c: _mm256_set_epi16 (short __q15, short __q14, short __q13, short __q12,
bin-lwe.c: ^~~~~~~~~~~~~~~~
bin-lwe.c: bin-lwe.c:91:9: note: called from here
bin-lwe.c: tmp_one=_mm256_set_epi16(1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1);
bin-lwe.c: ~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
bin-lwe.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/6/include/immintrin.h:41:0,
bin-lwe.c: from bin-lwe.c:1:
bin-lwe.c: /usr/lib/gcc/x86_64-linux-gnu/6/include/avxintrin.h:1209:1: error: inlining failed in call to always_inline '_mm256_setzero_si256': target specific option mismatch
bin-lwe.c: _mm256_setzero_si256 (void)
bin-lwe.c: ^~~~~~~~~~~~~~~~~~~~
bin-lwe.c: bin-lwe.c:103:8: note: called from here
bin-lwe.c: tmp2 =_mm256_setzero_si256();
bin-lwe.c: ~~~~~^~~~~~~~~~~~~~~~~~~~~~~
bin-lwe.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/6/include/immintrin.h:43:0,
bin-lwe.c: from bin-lwe.c:1:
bin-lwe.c: /usr/lib/gcc/x86_64-linux-gnu/6/include/avx2intrin.h:112:1: error: inlining failed in call to always_inline '_mm256_add_epi16': target specific option mismatch
bin-lwe.c: _mm256_add_epi16 (__m256i __A, __m256i __B)
bin-lwe.c: ^~~~~~~~~~~~~~~~
bin-lwe.c: ...

Number of similar (compiler,implementation) pairs: 4, namely:

Compiler	Implementations
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:avx2
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:avx2
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:avx2
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:avx2

Namespace violations

Implementation: T:opt
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

ake.o crypto_ake_alice_receive T
ake.o crypto_ake_alice_send T
ake.o crypto_ake_bob_receive T
bch.o compute_even_syndromes T
bch.o decode_bch T
bch.o encode_bch T
bch.o free_bch T
bch.o init_bch T
bin-lwe.o gen_a T
bin-lwe.o gen_psi T
bin-lwe.o poly_aff T
bin-lwe.o poly_mul T
ecc.o a_log_tab D
ecc.o a_pow_tab D
ecc.o cache C
ecc.o ecc_bch D
ecc.o ecc_buf C
ecc.o ecc_buf2 C
ecc.o ecc_dec T
ecc.o ecc_enc T
ecc.o ecc_free T
ecc.o ecc_init T
ecc.o mod8_tab D
ecc.o syn C
ecc.o xi_tab D
encrypt.o crypto_encrypt T
encrypt.o crypto_encrypt_keypair T
encrypt.o crypto_encrypt_open T
encrypt.o kg T
encrypt.o kg_seed T
encrypt.o pke_dec T
encrypt.o pke_enc T
encrypt.o pke_enc_seed T
ke.o crypto_ke_alice_receive T
ke.o crypto_ke_alice_send T
ke.o crypto_ke_bob_receive T
kem.o kem_dec_fo T
kem.o kem_enc_fo T
kem.o kem_enc_fo_seed T
rand.o gen_seed T
rand.o hash T
rand.o pseudo_random_bytes T
rand.o random_bytes T
rng.o AES256_CTR_DRBG_Update T
rng.o AES256_ECB T
rng.o DRBG_ctx C
rng.o handleErrors T
rng.o seedexpander T
rng.o seedexpander_init T

Number of similar (compiler,implementation) pairs: 8, namely:

Compiler	Implementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:opt
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:opt
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:opt
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:opt
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:opt
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:opt
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:opt
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:opt

Namespace violations

Implementation: T:ref
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

ake.o crypto_ake_alice_receive T
ake.o crypto_ake_alice_send T
ake.o crypto_ake_bob_receive T
bch.o compute_even_syndromes T
bch.o decode_bch T
bch.o encode_bch T
bch.o free_bch T
bch.o init_bch T
bin-lwe.o gen_a T
bin-lwe.o gen_psi T
bin-lwe.o poly_aff T
bin-lwe.o poly_mul T
ecc.o ecc_bch C
ecc.o ecc_dec T
ecc.o ecc_enc T
encrypt.o crypto_encrypt T
encrypt.o crypto_encrypt_keypair T
encrypt.o crypto_encrypt_open T
encrypt.o kg T
encrypt.o kg_seed T
encrypt.o pke_dec T
encrypt.o pke_enc T
encrypt.o pke_enc_seed T
ke.o crypto_ke_alice_receive T
ke.o crypto_ke_alice_send T
ke.o crypto_ke_bob_receive T
kem.o kem_dec_fo T
kem.o kem_enc_fo T
kem.o kem_enc_fo_seed T
rand.o gen_seed T
rand.o hash T
rand.o pseudo_random_bytes T
rand.o random_bytes T
rng.o AES256_CTR_DRBG_Update T
rng.o AES256_ECB T
rng.o DRBG_ctx C
rng.o handleErrors T
rng.o seedexpander T
rng.o seedexpander_init T

Number of similar (compiler,implementation) pairs: 9, namely:

Compiler	Implementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref