Implementation notes: amd64, alder, crypto_aead/kiasuneq128v1

Compiler output

kiasu.c: kiasu.c:74:26: warning: unused function 'bswap64' [-Wunused-function]
kiasu.c:          static inline uint64_t bswap64(uint64_t x) {
kiasu.c:                                 ^
kiasu.c: 1 warning generated.

Compiler output

try.c: /usr/bin/ld: libcrypto_aead_kiasuneq128v1.a(aes_tweaked.o): relocation R_X86_64_32S against symbol `M0' can not be used when making a PIE object; recompile with -fPIE
try.c: collect2: error: ld returned 1 exit status

Compiler output

encrypt.c: encrypt.c:70:12: warning: unused variable 'outlen' [-Wunused-variable]
encrypt.c:     size_t outlen = 0;
encrypt.c:            ^
encrypt.c: 1 warning generated.
kiasu.c: kiasu.c:91:50: warning: implicit conversion from 'int' to 'char' changes value from 192 to -64 [-Wconstant-conversion]
kiasu.c:     const __m128i MSB_AD_LAST           = constant8( (0x6<<5),0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00 );
kiasu.c:                                           ~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kiasu.c: ./aes_ni.macros:13:171: note: expanded from macro 'constant8'
kiasu.c: #define constant8(b15,b14,b13,b12,b11,b10,b9,b8,b7,b6,b5,b4,b3,b2,b1,b0)   _mm_set_epi8 ((b0),(b1),(b2),(b3),(b4),(b5),(b6),(b7),(b8),(b9),(b10),(b11),(b12),(b13),(b14),(b15))
kiasu.c:                                                                            ~~~~~~~~~~~~                                                                                   ^~~
kiasu.c: kiasu.c:94:56: warning: implicit conversion from 'int' to 'char' changes value from 128 to -128 [-Wconstant-conversion]
kiasu.c:     const __m128i MSB_M_LAST_NONZERO    = constant8( (0x4<<5),0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00 );
kiasu.c:                                           ~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kiasu.c: ./aes_ni.macros:13:171: note: expanded from macro 'constant8'
kiasu.c: #define constant8(b15,b14,b13,b12,b11,b10,b9,b8,b7,b6,b5,b4,b3,b2,b1,b0)   _mm_set_epi8 ((b0),(b1),(b2),(b3),(b4),(b5),(b6),(b7),(b8),(b9),(b10),(b11),(b12),(b13),(b14),(b15))
kiasu.c:                                                                            ~~~~~~~~~~~~                                                                                   ^~~
kiasu.c: kiasu.c:95:49: warning: implicit conversion from 'int' to 'char' changes value from 160 to -96 [-Wconstant-conversion]
kiasu.c:     const __m128i MSB_CHKSUM            = constant8( (0x5<<5),0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00 );
kiasu.c:                                           ~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kiasu.c: ./aes_ni.macros:13:171: note: expanded from macro 'constant8'
kiasu.c: #define constant8(b15,b14,b13,b12,b11,b10,b9,b8,b7,b6,b5,b4,b3,b2,b1,b0)   _mm_set_epi8 ((b0),(b1),(b2),(b3),(b4),(b5),(b6),(b7),(b8),(b9),(b10),(b11),(b12),(b13),(b14),(b15))
kiasu.c:                                                                            ~~~~~~~~~~~~                                                                                   ^~~
kiasu.c: kiasu.c:331:50: warning: implicit conversion from 'int' to 'char' changes value from 192 to -64 [-Wconstant-conversion]
kiasu.c:     const __m128i MSB_AD_LAST           = constant8( (0x6<<5),0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00 );
kiasu.c:                                           ~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kiasu.c: ./aes_ni.macros:13:171: note: expanded from macro 'constant8'
kiasu.c: #define constant8(b15,b14,b13,b12,b11,b10,b9,b8,b7,b6,b5,b4,b3,b2,b1,b0)   _mm_set_epi8 ((b0),(b1),(b2),(b3),(b4),(b5),(b6),(b7),(b8),(b9),(b10),(b11),(b12),(b13),(b14),(b15))
kiasu.c:                                                                            ~~~~~~~~~~~~                                                                                   ^~~
kiasu.c: kiasu.c:334:56: warning: implicit conversion from 'int' to 'char' changes value from 128 to -128 [-Wconstant-conversion]
kiasu.c: ...

Compiler output

encrypt.c: encrypt.c:70:12: warning: unused variable 'outlen' [-Wunused-variable]
encrypt.c:     size_t outlen = 0;
encrypt.c:            ^
encrypt.c: 1 warning generated.
kiasu.c: kiasu.c:91:50: warning: implicit conversion from 'int' to 'char' changes value from 192 to -64 [-Wconstant-conversion]
kiasu.c:     const __m128i MSB_AD_LAST           = constant8( (0x6<<5),0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00 );
kiasu.c:                                           ~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kiasu.c: ./aes_ni.macros:13:171: note: expanded from macro 'constant8'
kiasu.c: #define constant8(b15,b14,b13,b12,b11,b10,b9,b8,b7,b6,b5,b4,b3,b2,b1,b0)   _mm_set_epi8 ((b0),(b1),(b2),(b3),(b4),(b5),(b6),(b7),(b8),(b9),(b10),(b11),(b12),(b13),(b14),(b15))
kiasu.c:                                                                            ~~~~~~~~~~~~                                                                                   ^~~
kiasu.c: kiasu.c:94:56: warning: implicit conversion from 'int' to 'char' changes value from 128 to -128 [-Wconstant-conversion]
kiasu.c:     const __m128i MSB_M_LAST_NONZERO    = constant8( (0x4<<5),0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00 );
kiasu.c:                                           ~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kiasu.c: ./aes_ni.macros:13:171: note: expanded from macro 'constant8'
kiasu.c: #define constant8(b15,b14,b13,b12,b11,b10,b9,b8,b7,b6,b5,b4,b3,b2,b1,b0)   _mm_set_epi8 ((b0),(b1),(b2),(b3),(b4),(b5),(b6),(b7),(b8),(b9),(b10),(b11),(b12),(b13),(b14),(b15))
kiasu.c:                                                                            ~~~~~~~~~~~~                                                                                   ^~~
kiasu.c: kiasu.c:95:49: warning: implicit conversion from 'int' to 'char' changes value from 160 to -96 [-Wconstant-conversion]
kiasu.c:     const __m128i MSB_CHKSUM            = constant8( (0x5<<5),0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00, 0x00,0x00,0x00,0x00 );
kiasu.c:                                           ~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kiasu.c: ./aes_ni.macros:13:171: note: expanded from macro 'constant8'
kiasu.c: #define constant8(b15,b14,b13,b12,b11,b10,b9,b8,b7,b6,b5,b4,b3,b2,b1,b0)   _mm_set_epi8 ((b0),(b1),(b2),(b3),(b4),(b5),(b6),(b7),(b8),(b9),(b10),(b11),(b12),(b13),(b14),(b15))
kiasu.c:                                                                            ~~~~~~~~~~~~                                                                                   ^~~
kiasu.c: kiasu.c:130:4: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'kiasu_aead_encrypt' that is compiled without support for 'aes'
kiasu.c:           AES( State, subkeys, Tweak );
kiasu.c:           ^
kiasu.c: ./aes_ni.macros:21:5: note: expanded from macro 'AES'
kiasu.c: s = enc( s , xor( subkeys[1] , tw ) );\
kiasu.c:     ^
kiasu.c: ./aes_ni.macros:1:18: note: expanded from macro 'enc'
kiasu.c: ...

Compiler output

encrypt.c: encrypt.c: In function 'crypto_aead_kiasuneq128v1_opt_timingleaks_decrypt':
encrypt.c: encrypt.c:70:12: warning: unused variable 'outlen' [-Wunused-variable]
encrypt.c:    70 |     size_t outlen = 0;
encrypt.c:       |            ^~~~~~

Compiler output

kiasu.c: kiasu.c: In function 'kiasu_aead_decrypt':
kiasu.c: kiasu.c:53:21: warning: 'tweak' is used uninitialized in this function [-Wuninitialized]
kiasu.c:    53 |     tweak[0]= (tweak[0]&0xe0)  ^ (nonce[0] >> 3);
kiasu.c:       |                ~~~~~^~~

Namespace violations

aes_tweaked.o BS0 D
aes_tweaked.o BS1 D
aes_tweaked.o BS2 D
aes_tweaked.o CSTTWA D
aes_tweaked.o CSTTWB D
aes_tweaked.o CSTTWC D
aes_tweaked.o CTRINC1 D
aes_tweaked.o CTRINC2 D
aes_tweaked.o CTRINC3 D
aes_tweaked.o CTRINC4 D
aes_tweaked.o CTRINC5 D
aes_tweaked.o CTRINC6 D
aes_tweaked.o CTRINC7 D
aes_tweaked.o EXPB0 D
aes_tweaked.o ISR D
aes_tweaked.o ISRM0 D
aes_tweaked.o M0 D
aes_tweaked.o ONE D
aes_tweaked.o RCON D
aes_tweaked.o ROTB D
aes_tweaked.o SR D
aes_tweaked.o SRM0 D
aes_tweaked.o jean_ecb_decrypt T
aes_tweaked.o jean_tweaksetup T
aes_tweaked.o kasper_ecb_encrypt T
aes_tweaked.o kasper_keysetup T
kiasu.o AES_set_encrypt_key T
kiasu.o AES_set_tweak T
kiasu.o kiasu_aead_decrypt T
kiasu.o kiasu_aead_encrypt T

Namespace violations

kiasu.o kiasu_aead_decrypt T
kiasu.o kiasu_aead_encrypt T

Namespace violations

kiasu.o kiasu_aead_decrypt T
kiasu.o kiasu_aead_encrypt T
tweakable_aes.o aesTweakDecrypt T
tweakable_aes.o aesTweakEncrypt T