Test results for amd64, h9ivy, crypto_kem/frodokem976aes

[Page version: 20250926 22:04:25]

Measurements for amd64, h9ivy, crypto_kem Test results for amd64, h9ivy, crypto_kem Test results for crypto_kem/frodokem976aes

Computer: h9ivy
Microarchitecture: amd64; Ivy Bridge+AES (306a9)
Architecture: amd64
CPU ID: GenuineIntel-000306a9-bfebfbff
SUPERCOP version: 20250922
Operation: crypto_kem
Primitive: frodokem976aes

Time	Object size	Test size	Implementation	Compiler	Benchmark date	SUPERCOP version
9788297	42720 54 0	61573 924 1768	`T:optimized`	`gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415
10029417	34004 24 0	55039 916 1736	`T:optimized`	`clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415
10072556	31736 24 0	53063 916 1736	`T:optimized`	`clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415
10437733	28117 24 0	51567 916 1736	`T:optimized`	`clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415
12193448	10868 54 0	28437 924 1768	`T:optimized`	`gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415
15722483	10087 24 0	26960 908 1736	`T:optimized`	`clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415
31079355	12907 24 0	30007 916 1736	`T:optimized`	`clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415
48347946	10209 38 0	27725 908 1768	`T:optimized`	`gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415
66653667	8710 38 0	24765 900 1736	`T:optimized`	`gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall`	20250905	20250415

Compiler output

frodo976.c: In file included from frodo976.c:32:
frodo976.c: ./frodo_macrify.inc:112:28: error: always_inline function '_mm256_madd_epi16' requires target feature 'avx2', but would be inlined into function 'frodo_mul_add_sa_plus_e' that is compiled without support for 'avx2'
frodo976.c:   112 |                     a[0] = _mm256_madd_epi16(a[0], b);
frodo976.c:       |                            ^
frodo976.c: ./frodo_macrify.inc:113:30: error: always_inline function '_mm256_add_epi16' requires target feature 'avx2', but would be inlined into function 'frodo_mul_add_sa_plus_e' that is compiled without support for 'avx2'
frodo976.c:   113 |                     acc[0] = _mm256_add_epi16(a[0], acc[0]);
frodo976.c:       |                              ^
frodo976.c: ./frodo_macrify.inc:115:28: error: always_inline function '_mm256_madd_epi16' requires target feature 'avx2', but would be inlined into function 'frodo_mul_add_sa_plus_e' that is compiled without support for 'avx2'
frodo976.c:   115 |                     a[1] = _mm256_madd_epi16(a[1], b);
frodo976.c:       |                            ^
frodo976.c: ./frodo_macrify.inc:116:30: error: always_inline function '_mm256_add_epi16' requires target feature 'avx2', but would be inlined into function 'frodo_mul_add_sa_plus_e' that is compiled without support for 'avx2'
frodo976.c:   116 |                     acc[1] = _mm256_add_epi16(a[1], acc[1]);
frodo976.c:       |                              ^
frodo976.c: ./frodo_macrify.inc:118:28: error: always_inline function '_mm256_madd_epi16' requires target feature 'avx2', but would be inlined into function 'frodo_mul_add_sa_plus_e' that is compiled without support for 'avx2'
frodo976.c:   118 |                     a[2] = _mm256_madd_epi16(a[2], b);
frodo976.c:       |                            ^
frodo976.c: ./frodo_macrify.inc:119:30: error: always_inline function '_mm256_add_epi16' requires target feature 'avx2', but would be inlined into function 'frodo_mul_add_sa_plus_e' that is compiled without support for 'avx2'
frodo976.c:   119 |                     acc[2] = _mm256_add_epi16(a[2], acc[2]);
frodo976.c:       |                              ^
frodo976.c: ./frodo_macrify.inc:121:28: error: always_inline function '_mm256_madd_epi16' requires target feature 'avx2', but would be inlined into function 'frodo_mul_add_sa_plus_e' that is compiled without support for 'avx2'
frodo976.c:   121 |                     a[3] = _mm256_madd_epi16(a[3], b);
frodo976.c:       |                            ^
frodo976.c: ./frodo_macrify.inc:122:30: error: always_inline function '_mm256_add_epi16' requires target feature 'avx2', but would be inlined into function 'frodo_mul_add_sa_plus_e' that is compiled without support for 'avx2'
frodo976.c:   122 |                     acc[3] = _mm256_add_epi16(a[3], acc[3]);
frodo976.c:       |                              ^
frodo976.c: ...

Number of similar (implementation,compiler) pairs: 4, namely:

Implementation	Compiler
`T:x64`	`clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`
`T:x64`	`clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`
`T:x64`	`clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`
`T:x64`	`clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`

Compiler output

aes_ni.c: aes_ni.c:35:16: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes_ni.c:    35 |         schedule[1] = key_exp(schedule[0], 0x01);
aes_ni.c:       |                       ^
aes_ni.c: aes_ni.c:28:40: note: expanded from macro 'key_exp'
aes_ni.c:    28 | #define key_exp(k, rcon) key_expand(k, _mm_aeskeygenassist_si128(k, rcon))
aes_ni.c:       |                                        ^
aes_ni.c: /usr/lib/llvm-19/lib/clang/19/include/__wmmintrin_aes.h:136:13: note: expanded from macro '_mm_aeskeygenassist_si128'
aes_ni.c:   136 |   ((__m128i)__builtin_ia32_aeskeygenassist128((__v2di)(__m128i)(C), (int)(R)))
aes_ni.c:       |             ^
aes_ni.c: aes_ni.c:36:16: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes_ni.c:    36 |         schedule[2] = key_exp(schedule[1], 0x02);
aes_ni.c:       |                       ^
aes_ni.c: aes_ni.c:28:40: note: expanded from macro 'key_exp'
aes_ni.c:    28 | #define key_exp(k, rcon) key_expand(k, _mm_aeskeygenassist_si128(k, rcon))
aes_ni.c:       |                                        ^
aes_ni.c: /usr/lib/llvm-19/lib/clang/19/include/__wmmintrin_aes.h:136:13: note: expanded from macro '_mm_aeskeygenassist_si128'
aes_ni.c:   136 |   ((__m128i)__builtin_ia32_aeskeygenassist128((__v2di)(__m128i)(C), (int)(R)))
aes_ni.c:       |             ^
aes_ni.c: aes_ni.c:37:16: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes_ni.c:    37 |         schedule[3] = key_exp(schedule[2], 0x04);
aes_ni.c:       |                       ^
aes_ni.c: aes_ni.c:28:40: note: expanded from macro 'key_exp'
aes_ni.c:    28 | #define key_exp(k, rcon) key_expand(k, _mm_aeskeygenassist_si128(k, rcon))
aes_ni.c:       |                                        ^
aes_ni.c: /usr/lib/llvm-19/lib/clang/19/include/__wmmintrin_aes.h:136:13: note: expanded from macro '_mm_aeskeygenassist_si128'
aes_ni.c: ...

Number of similar (implementation,compiler) pairs: 1, namely:

Implementation	Compiler
`T:x64`	`clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`

Compiler output

frodo976.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/14/include/immintrin.h:53,
frodo976.c:                  from frodo_macrify.inc:8,
frodo976.c:                  from frodo976.c:32:
frodo976.c: /usr/lib/gcc/x86_64-linux-gnu/14/include/avx2intrin.h: In function 'frodo_mul_add_sa_plus_e':
frodo976.c: /usr/lib/gcc/x86_64-linux-gnu/14/include/avx2intrin.h:112:1: error: inlining failed in call to 'always_inline' '_mm256_add_epi16': target specific option mismatch
frodo976.c:   112 | _mm256_add_epi16 (__m256i __A, __m256i __B)
frodo976.c:       | ^~~~~~~~~~~~~~~~
frodo976.c: frodo_macrify.inc:122:30: note: called from here
frodo976.c:   122 |                     acc[3] = _mm256_add_epi16(a[3], acc[3]);
frodo976.c:       |                              ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
frodo976.c: /usr/lib/gcc/x86_64-linux-gnu/14/include/avx2intrin.h:341:1: error: inlining failed in call to 'always_inline' '_mm256_madd_epi16': target specific option mismatch
frodo976.c:   341 | _mm256_madd_epi16 (__m256i __A, __m256i __B)
frodo976.c:       | ^~~~~~~~~~~~~~~~~
frodo976.c: frodo_macrify.inc:121:28: note: called from here
frodo976.c:   121 |                     a[3] = _mm256_madd_epi16(a[3], b);
frodo976.c:       |                            ^~~~~~~~~~~~~~~~~~~~~~~~~~
frodo976.c: /usr/lib/gcc/x86_64-linux-gnu/14/include/avx2intrin.h:112:1: error: inlining failed in call to 'always_inline' '_mm256_add_epi16': target specific option mismatch
frodo976.c:   112 | _mm256_add_epi16 (__m256i __A, __m256i __B)
frodo976.c:       | ^~~~~~~~~~~~~~~~
frodo976.c: frodo_macrify.inc:119:30: note: called from here
frodo976.c:   119 |                     acc[2] = _mm256_add_epi16(a[2], acc[2]);
frodo976.c:       |                              ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
frodo976.c: /usr/lib/gcc/x86_64-linux-gnu/14/include/avx2intrin.h:341:1: error: inlining failed in call to 'always_inline' '_mm256_madd_epi16': target specific option mismatch
frodo976.c:   341 | _mm256_madd_epi16 (__m256i __A, __m256i __B)
frodo976.c:       | ^~~~~~~~~~~~~~~~~
frodo976.c: ...

Number of similar (implementation,compiler) pairs: 4, namely:

Implementation	Compiler
`T:x64`	`gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0)`
`T:x64`	`gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0)`
`T:x64`	`gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0)`
`T:x64`	`gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0)`

Namespace violations

aes.o AES128_free_schedule T
aes.o AES256_free_schedule T
aes.o handleErrors T
fips202.o KeccakF1600_StatePermute T
fips202.o shake128 T
fips202.o shake128_absorb T
fips202.o shake128_squeezeblocks T
fips202.o shake256 T
fips202.o shake256_absorb T
fips202.o shake256_squeezeblocks T
frodo976.o CDF_TABLE D
frodo976.o CDF_TABLE_LEN D
frodo976.o frodo_add T
frodo976.o frodo_key_decode T
frodo976.o frodo_key_encode T
frodo976.o frodo_mul_add_as_plus_e T
frodo976.o frodo_mul_add_sa_plus_e T
frodo976.o frodo_mul_add_sb_plus_e T
frodo976.o frodo_mul_bs T
frodo976.o frodo_sample_n T
frodo976.o frodo_sub T
util.o clear_bytes T
util.o frodo_pack T
util.o frodo_unpack T

Number of similar (implementation,compiler) pairs: 9, namely:

Implementation	Compiler
`T:optimized`	`clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`
`T:optimized`	`clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`
`T:optimized`	`clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`
`T:optimized`	`clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`
`T:optimized`	`clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1))`
`T:optimized`	`gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0)`
`T:optimized`	`gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0)`
`T:optimized`	`gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0)`
`T:optimized`	`gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0)`