Implementation notes: amd64, hydra7, crypto_aead/norx6461v1

Computer: hydra7
Microarchitecture: amd64; Sandy Bridge+AES (206a7)
Architecture: amd64
CPU ID: GenuineIntel-000206a7-bfebfbff
SUPERCOP version: 20240107
Operation: crypto_aead
Primitive: norx6461v1
TimeObject sizeTest sizeImplementationCompilerBenchmark dateSUPERCOP version
3506910050 0 032893 804 1088T:xmmgcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121320231212
3510010050 0 031661 804 1088T:xmmgcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121320231212
352539819 0 029248 780 1056T:xmmgcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121320231212
3858012446 0 033556 796 1088T:xmmgcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121320231212
626173966 8 023505 788 1056T:refgcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121320231212
655715202 8 026972 820 1088T:refgcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121320231212
7015010893 8 033876 820 1088T:refgcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121320231212
708754319 8 025580 812 1088T:refgcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE2023121320231212

Compiler output

Implementation: T:ref
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE
norx.c: In function 'norx_decrypt_lastblock',
norx.c: inlined from 'norx_decrypt_msg' at norx.c:502:9,
norx.c: inlined from 'norx_decrypt_msg' at norx.c:490:6:
norx.c: norx.c:313:16: warning: writing 1 byte into a region of size 0 [-Wstringop-overflow=]
norx.c: 313 | b[j] = c;
norx.c: | ~~~~~~~^~~
norx.c: norx.c: In function 'norx_decrypt_msg':
norx.c: norx.c:287:13: note: at offset 8 into destination object 'b' of size 8
norx.c: 287 | uint8_t b[BYTES(NORX_W)];
norx.c: | ^
norx.c: In function 'norx_decrypt_lastblock',
norx.c: inlined from 'norx_decrypt_msg' at norx.c:502:9,
norx.c: inlined from 'norx_decrypt_msg' at norx.c:490:6,
norx.c: inlined from 'norx_aead_decrypt' at norx.c:688:5:
norx.c: norx.c:313:16: warning: writing 1 byte into a region of size 0 [-Wstringop-overflow=]
norx.c: 313 | b[j] = c;
norx.c: | ~~~~~~~^~~
norx.c: norx.c: In function 'norx_aead_decrypt':
norx.c: norx.c:287:13: note: at offset 8 into destination object 'b' of size 8
norx.c: 287 | uint8_t b[BYTES(NORX_W)];
norx.c: | ^
Number of similar (compiler,implementation) pairs: 1, namely:
CompilerImplementations
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ref

Compiler output

Implementation: T:ymm
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE
norx.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/11/include/immintrin.h:47,
norx.c: from /usr/lib/gcc/x86_64-linux-gnu/11/include/x86intrin.h:32,
norx.c: from norx.c:26:
norx.c: norx.c: In function 'crypto_aead_norx6461v1_ymm_timingleaks_encrypt':
norx.c: /usr/lib/gcc/x86_64-linux-gnu/11/include/avx2intrin.h:913:1: error: inlining failed in call to 'always_inline' '_mm256_xor_si256': target specific option mismatch
norx.c: 913 | _mm256_xor_si256 (__m256i __A, __m256i __B)
norx.c: | ^~~~~~~~~~~~~~~~
norx.c: norx.c:66:19: note: called from here
norx.c: 66 | #define XOR(A, B) _mm256_xor_si256((A), (B))
norx.c: | ^~~~~~~~~~~~~~~~~~~~~~~~~~
norx.c: norx.c:276:9: note: in expansion of macro 'XOR'
norx.c: 276 | D = XOR(D, _mm256_set_epi64x(0, NORX_PARAMETER, 0, 0)); \
norx.c: | ^~~
norx.c: norx.c:355:5: note: in expansion of macro 'INITIALIZE'
norx.c: 355 | INITIALIZE(A, B, C, D, N, K);
norx.c: | ^~~~~~~~~~
norx.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/11/include/immintrin.h:47,
norx.c: from /usr/lib/gcc/x86_64-linux-gnu/11/include/x86intrin.h:32,
norx.c: from norx.c:26:
norx.c: /usr/lib/gcc/x86_64-linux-gnu/11/include/avx2intrin.h:1071:1: error: inlining failed in call to 'always_inline' '_mm256_permute4x64_epi64': target specific option mismatch
norx.c: 1071 | _mm256_permute4x64_epi64 (__m256i __X, const int __M)
norx.c: | ^~~~~~~~~~~~~~~~~~~~~~~~
norx.c: norx.c:272:9: note: called from here
norx.c: 272 | A = _mm256_permute4x64_epi64(A, _MM_SHUFFLE(3, 1, 0, 2)); \
norx.c: | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
norx.c: ...
Number of similar (compiler,implementation) pairs: 4, namely:
CompilerImplementations
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ymm
gcc -march=native -mtune=native -O3 -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ymm
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ymm
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE T:ymm