Implementation notes: amd64, gcc14, crypto_aead/aes256otrpv3

Computer: gcc14
Architecture: amd64
CPU ID: GenuineIntel-00010676-bfebfbff
SUPERCOP version: 20220506
Operation: crypto_aead
Primitive: aes256otrpv3

Time	Object size	Test size	Implementation	Compiler	Benchmark date	SUPERCOP version
187654	21249 4392 320	37966 5244 1392	`T:ref`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210114	20210114
194914	5899 4400 320	19141 5220 1328	`T:ref`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210114	20210114
203769	17523 4400 320	31980 5236 1328	`T:ref`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210114	20210114
203871	17523 4400 320	31980 5236 1328	`T:ref`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210114	20210114
204206	18163 4400 320	33556 5236 1328	`T:ref`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210114	20210114
207128	6718 4392 320	21501 5236 1392	`T:ref`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210114	20210114
207388	18739 4400 320	33988 5236 1328	`T:ref`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20210114	20210114
215045	5985 4392 320	20533 5236 1392	`T:ref`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210114	20210114
240172	5005 4392 320	18377 5220 1392	`T:ref`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20210114	20210114

Compiler output

Implementation: T:ni_p7m1
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

encrypt.c: encrypt.c:206:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[0] = _mm_aesenc_si128(blks[0], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:207:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[1] = _mm_aesenc_si128(blks[1], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:208:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[2] = _mm_aesenc_si128(blks[2], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:209:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[3] = _mm_aesenc_si128(blks[3], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:211:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[4] = _mm_aesenc_si128(blks[4], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:214:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[5] = _mm_aesenc_si128(blks[5], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:217:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[6] = _mm_aesenc_si128(blks[6], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:223:12: error: always_inline function '_mm_aesenclast_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[0] = _mm_aesenclast_si128(blks[0], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:224:12: error: always_inline function '_mm_aesenclast_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 8, namely:

Compiler	Implementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m1
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m1
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m1
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m1
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m2
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m2
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m2
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m2

Compiler output

Implementation: T:ni_p7m1
Security model: timingleaks
Compiler: clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

encrypt.c: encrypt.c:246:14: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: block tmp = le(dat[0]);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:261:13: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: carry[0] = _mm_shuffle_epi8(up4, sh1);
encrypt.c: ^
encrypt.c: encrypt.c:262:13: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: carry[1] = _mm_shuffle_epi8(up4, sh2);
encrypt.c: ^
encrypt.c: encrypt.c:263:13: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: carry[2] = _mm_shuffle_epi8(up4, sh3);
encrypt.c: ^
encrypt.c: encrypt.c:264:13: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: carry[3] = _mm_shuffle_epi8(up4, sh4);
encrypt.c: ^
encrypt.c: encrypt.c:270:13: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: carry[4] = _mm_shuffle_epi8(up8, sh1);
encrypt.c: ^
encrypt.c: encrypt.c:274:13: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: carry[5] = _mm_shuffle_epi8(up8, sh2);
encrypt.c: ^
encrypt.c: encrypt.c:278:13: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 2, namely:

Compiler	Implementations
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m1 T:ni_p8m1

Compiler output

Implementation: T:ni_p7m1
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE

encrypt.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/6/include/x86intrin.h:45:0,
encrypt.c: from otr.h:30,
encrypt.c: from encrypt.c:33:
encrypt.c: encrypt.c: In function 'AES_256_Key_Expansion':
encrypt.c: /usr/lib/gcc/x86_64-linux-gnu/6/include/wmmintrin.h:87:1: error: inlining failed in call to always_inline '_mm_aeskeygenassist_si128': target specific option mismatch
encrypt.c: _mm_aeskeygenassist_si128 (__m128i __X, const int __C)
encrypt.c: ^~~~~~~~~~~~~~~~~~~~~~~~~
encrypt.c: encrypt.c:55:8: note: called from here
encrypt.c: v2 = _mm_aeskeygenassist_si128(v4,aes_const); \
encrypt.c: ^
encrypt.c: encrypt.c:88:2: note: in expansion of macro 'EXPAND_ASSIST'
encrypt.c: EXPAND_ASSIST(x0, x1, x2, x3, 255, 64); kp[14] = x0;
encrypt.c: ^~~~~~~~~~~~~
encrypt.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/6/include/x86intrin.h:45:0,
encrypt.c: from otr.h:30,
encrypt.c: from encrypt.c:33:
encrypt.c: /usr/lib/gcc/x86_64-linux-gnu/6/include/wmmintrin.h:87:1: error: inlining failed in call to always_inline '_mm_aeskeygenassist_si128': target specific option mismatch
encrypt.c: _mm_aeskeygenassist_si128 (__m128i __X, const int __C)
encrypt.c: ^~~~~~~~~~~~~~~~~~~~~~~~~
encrypt.c: encrypt.c:55:8: note: called from here
encrypt.c: v2 = _mm_aeskeygenassist_si128(v4,aes_const); \
encrypt.c: ^
encrypt.c: encrypt.c:87:2: note: in expansion of macro 'EXPAND_ASSIST'
encrypt.c: EXPAND_ASSIST(x3, x1, x2, x0, 170, 32); kp[13] = x3;
encrypt.c: ^~~~~~~~~~~~~
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 16, namely:

Compiler	Implementations
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p7m1
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p7m1
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p7m1
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p7m1
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p7m2
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p7m2
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p7m2
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p7m2
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p8m1
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p8m1
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p8m1
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p8m1
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p8m2
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p8m2
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p8m2
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ni_p8m2

Compiler output

Implementation: T:ni_p7m2
Security model: timingleaks
Compiler: clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

encrypt.c: encrypt.c:304:18: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: __m128i intmp = le(dat[0]);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:312:11: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: dat[1] = le(intmp);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:319:11: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: dat[2] = le(intmp);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:326:11: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: dat[3] = le(intmp);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:332:11: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 2, namely:

Compiler	Implementations
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p7m2 T:ni_p8m2

Compiler output

Implementation: T:ni_p8m1
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

encrypt.c: encrypt.c:206:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[0] = _mm_aesenc_si128(blks[0], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:207:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[1] = _mm_aesenc_si128(blks[1], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:208:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[2] = _mm_aesenc_si128(blks[2], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:209:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[3] = _mm_aesenc_si128(blks[3], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:211:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[4] = _mm_aesenc_si128(blks[4], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:214:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[5] = _mm_aesenc_si128(blks[5], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:217:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[6] = _mm_aesenc_si128(blks[6], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:220:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[7] = _mm_aesenc_si128(blks[7], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:223:12: error: always_inline function '_mm_aesenclast_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 8, namely:

Compiler	Implementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p8m1
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p8m1
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p8m1
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p8m1
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p8m2
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p8m2
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p8m2
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ni_p8m2

Namespace violations

Implementation: T:ref
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

otr.o AE_Decrypt T
otr.o AE_Encrypt T
otr.o AFunc T
otr.o AFuncS T
otr.o DFunc T
otr.o EFunc T
otr.o L B
otr.o Ls B
otr.o Q B
otr.o Setup T
otr.o TA B
otr.o TE B
otr.o nEnc T
t-aes_enc_only.o Encryption T
t-aes_enc_only.o KeySchedule T
t-aes_enc_only.o RC D
t-aes_enc_only.o S D
t-aes_enc_only.o T0 D
t-aes_enc_only.o T1 D
t-aes_enc_only.o T2 D
t-aes_enc_only.o T3 D

Number of similar (compiler,implementation) pairs: 9, namely:

Compiler	Implementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref