Implementation notes: amd64, h8bobcat, crypto_aead/aes256otrpv3

Computer: h8bobcat
Microarchitecture: amd64; Bobcat (500f10)
Architecture: amd64
CPU ID: AuthenticAMD-00500f20-178bfbff
SUPERCOP version: 20240107
Operation: crypto_aead
Primitive: aes256otrpv3
TimeObject sizeTest sizeImplementationCompilerBenchmark dateSUPERCOP version
24685815528 4400 32031124 5224 1184T:refclang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE2023121620231212
24690515528 4400 32029980 5224 1184T:refclang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE2023121620231212
24774116966 4400 32032884 5224 1184T:refclang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE2023121620231212
2510095912 4400 32018742 5216 1184T:refclang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE2023121620231212
2563767314 4400 32020796 5224 1184T:refclang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE2023121620231212
2632647661 4392 32022477 5184 1264T:refgcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121620231212
2775526572 4392 32020845 5168 1264T:refgcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121620231212
28526123205 4392 32039501 5184 1264T:refgcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121620231212
2969225316 4392 32018353 5152 1232T:refgcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121620231212

Compiler output

Implementation: T:ni_p7m1
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE
encrypt.c: encrypt.c:250:96: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: const block sh1 = _mm_set_epi8(255, 255, 255, 255, 255, 255, 15, 14, 255, 255, 255, 255, 255, 255, 7, 6);
encrypt.c: ~~~~~~~~~~~~ ^~~
encrypt.c: encrypt.c:250:91: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: const block sh1 = _mm_set_epi8(255, 255, 255, 255, 255, 255, 15, 14, 255, 255, 255, 255, 255, 255, 7, 6);
encrypt.c: ~~~~~~~~~~~~ ^~~
encrypt.c: encrypt.c:250:86: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: const block sh1 = _mm_set_epi8(255, 255, 255, 255, 255, 255, 15, 14, 255, 255, 255, 255, 255, 255, 7, 6);
encrypt.c: ~~~~~~~~~~~~ ^~~
encrypt.c: encrypt.c:250:81: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: const block sh1 = _mm_set_epi8(255, 255, 255, 255, 255, 255, 15, 14, 255, 255, 255, 255, 255, 255, 7, 6);
encrypt.c: ~~~~~~~~~~~~ ^~~
encrypt.c: encrypt.c:250:76: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: const block sh1 = _mm_set_epi8(255, 255, 255, 255, 255, 255, 15, 14, 255, 255, 255, 255, 255, 255, 7, 6);
encrypt.c: ~~~~~~~~~~~~ ^~~
encrypt.c: encrypt.c:250:71: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: const block sh1 = _mm_set_epi8(255, 255, 255, 255, 255, 255, 15, 14, 255, 255, 255, 255, 255, 255, 7, 6);
encrypt.c: ~~~~~~~~~~~~ ^~~
encrypt.c: encrypt.c:250:58: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: const block sh1 = _mm_set_epi8(255, 255, 255, 255, 255, 255, 15, 14, 255, 255, 255, 255, 255, 255, 7, 6);
encrypt.c: ~~~~~~~~~~~~ ^~~
encrypt.c: encrypt.c:250:53: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: const block sh1 = _mm_set_epi8(255, 255, 255, 255, 255, 255, 15, 14, 255, 255, 255, 255, 255, 255, 7, 6);
encrypt.c: ~~~~~~~~~~~~ ^~~
encrypt.c: encrypt.c:250:48: warning: implicit conversion from 'int' to 'char' changes value from 255 to -1 [-Wconstant-conversion]
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 10, namely:
CompilerImplementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m1
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m1
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m1
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m1
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m1
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m1
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m1
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m1
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m1
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m1

Compiler output

Implementation: T:ni_p7m1
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE
encrypt.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/11/include/immintrin.h:41,
encrypt.c: from /usr/lib/gcc/x86_64-linux-gnu/11/include/x86intrin.h:32,
encrypt.c: from otr.h:30,
encrypt.c: from encrypt.c:33:
encrypt.c: encrypt.c: In function 'AES_256_Key_Expansion':
encrypt.c: /usr/lib/gcc/x86_64-linux-gnu/11/include/wmmintrin.h:87:1: error: inlining failed in call to 'always_inline' '_mm_aeskeygenassist_si128': target specific option mismatch
encrypt.c: 87 | _mm_aeskeygenassist_si128 (__m128i __X, const int __C)
encrypt.c: | ^~~~~~~~~~~~~~~~~~~~~~~~~
encrypt.c: encrypt.c:55:10: note: called from here
encrypt.c: 55 | v2 = _mm_aeskeygenassist_si128(v4,aes_const); \
encrypt.c: | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
encrypt.c: encrypt.c:88:9: note: in expansion of macro 'EXPAND_ASSIST'
encrypt.c: 88 | EXPAND_ASSIST(x0, x1, x2, x3, 255, 64); kp[14] = x0;
encrypt.c: | ^~~~~~~~~~~~~
encrypt.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/11/include/immintrin.h:41,
encrypt.c: from /usr/lib/gcc/x86_64-linux-gnu/11/include/x86intrin.h:32,
encrypt.c: from otr.h:30,
encrypt.c: from encrypt.c:33:
encrypt.c: /usr/lib/gcc/x86_64-linux-gnu/11/include/wmmintrin.h:87:1: error: inlining failed in call to 'always_inline' '_mm_aeskeygenassist_si128': target specific option mismatch
encrypt.c: 87 | _mm_aeskeygenassist_si128 (__m128i __X, const int __C)
encrypt.c: | ^~~~~~~~~~~~~~~~~~~~~~~~~
encrypt.c: encrypt.c:55:10: note: called from here
encrypt.c: 55 | v2 = _mm_aeskeygenassist_si128(v4,aes_const); \
encrypt.c: | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
encrypt.c: encrypt.c:87:9: note: in expansion of macro 'EXPAND_ASSIST'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 16, namely:
CompilerImplementations
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p7m1
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p7m1
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p7m1
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p7m1
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p7m2
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p7m2
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p7m2
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p7m2
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p8m1
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p8m1
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p8m1
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p8m1
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p8m2
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p8m2
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p8m2
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ni_p8m2

Compiler output

Implementation: T:ni_p7m2
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE
encrypt.c: encrypt.c:206:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[0] = _mm_aesenc_si128(blks[0], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:207:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[1] = _mm_aesenc_si128(blks[1], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:208:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[2] = _mm_aesenc_si128(blks[2], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:209:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[3] = _mm_aesenc_si128(blks[3], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:211:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[4] = _mm_aesenc_si128(blks[4], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:214:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[5] = _mm_aesenc_si128(blks[5], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:217:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[6] = _mm_aesenc_si128(blks[6], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:223:12: error: always_inline function '_mm_aesenclast_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[0] = _mm_aesenclast_si128(blks[0], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:224:12: error: always_inline function '_mm_aesenclast_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 4, namely:
CompilerImplementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m2
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m2
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m2
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m2

Compiler output

Implementation: T:ni_p7m2
Security model: timingleaks
Compiler: clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE
encrypt.c: encrypt.c:304:18: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: __m128i intmp = le(dat[0]);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:312:11: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: dat[1] = le(intmp);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:319:11: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: dat[2] = le(intmp);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:326:11: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: dat[3] = le(intmp);
encrypt.c: ^
encrypt.c: encrypt.c:42:15: note: expanded from macro 'le'
encrypt.c: #define le(b) _mm_shuffle_epi8(b,_mm_set_epi8(0,1,2,3,4,5,6,7,8,9,10,11,12,13,14,15)) /*Byte order conversion*/
encrypt.c: ^
encrypt.c: encrypt.c:332:11: error: always_inline function '_mm_shuffle_epi8' requires target feature 'ssse3', but would be inlined into function 'mul2_PIPE' that is compiled without support for 'ssse3'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 2, namely:
CompilerImplementations
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p7m2 T:ni_p8m2

Compiler output

Implementation: T:ni_p8m2
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE
encrypt.c: encrypt.c:206:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[0] = _mm_aesenc_si128(blks[0], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:207:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[1] = _mm_aesenc_si128(blks[1], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:208:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[2] = _mm_aesenc_si128(blks[2], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:209:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[3] = _mm_aesenc_si128(blks[3], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:211:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[4] = _mm_aesenc_si128(blks[4], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:214:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[5] = _mm_aesenc_si128(blks[5], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:217:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[6] = _mm_aesenc_si128(blks[6], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:220:13: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: blks[7] = _mm_aesenc_si128(blks[7], key[j]);
encrypt.c: ^
encrypt.c: encrypt.c:223:12: error: always_inline function '_mm_aesenclast_si128' requires target feature 'aes', but would be inlined into function 'AES_ecb_encrypt_PIPE' that is compiled without support for 'aes'
encrypt.c: ...

Number of similar (compiler,implementation) pairs: 4, namely:
CompilerImplementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m2
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m2
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m2
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE T:ni_p8m2