Implementation notes: amd64, jasper3, crypto_sign/haetae2
Computer: jasper3
Microarchitecture: amd64; Tremont (906c0)
Architecture: amd64
CPU ID: GenuineIntel-000906c0-20-bfebfbff
SUPERCOP version: 20240808
Operation: crypto_sign
Primitive: haetae2
| Time | Object size | Test size | Implementation | Compiler | Benchmark date | SUPERCOP version |
|---|
| 6869517 | 107712 0 0 | 129456 820 1720 | ref | clang_-march=native_-O3_-fwrapv_-Qunused-arguments_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
| 6978526 | 76072 0 0 | 96640 788 1784 | ref | gcc_-march=native_-mtune=native_-O3_-fwrapv_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
| 7015645 | 46761 0 0 | 66160 820 1720 | ref | clang_-march=native_-O2_-fwrapv_-Qunused-arguments_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
| 7054653 | 118931 0 0 | 139528 820 1720 | ref | clang_-mcpu=native_-O3_-fwrapv_-Qunused-arguments_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
| 7174615 | 35192 0 0 | 52774 812 1720 | ref | clang_-march=native_-Os_-fwrapv_-Qunused-arguments_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
| 7275538 | 38743 432 0 | 58216 1228 1784 | ref | gcc_-march=native_-mtune=native_-O2_-fwrapv_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
| 7677140 | 36083 432 0 | 55064 1228 1784 | ref | gcc_-march=native_-mtune=native_-O_-fwrapv_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
| 7876135 | 33053 560 0 | 50472 1348 1752 | ref | gcc_-march=native_-mtune=native_-Os_-fwrapv_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
| 14453060 | 40194 532 0 | 58894 1356 1720 | ref | clang_-march=native_-O_-fwrapv_-Qunused-arguments_-fPIC_-fPIE_-gdwarf-4_-Wall | 20240810 | 20240808 |
Compiler output
fft.c: fft.c:230:52: warning: AVX vector argument of type 'const __m256i' (vector of 4 'long long' values) without 'avx' enabled changes the ABI [-Wpsabi]
fft.c: *res = _mm256_add_epi32(*res, _mm256_add_epi32(_mulrnd16_avx(*real, *real), _mulrnd16_avx(*imag, *imag)));
fft.c: ^
fft.c: fft.c:230:81: warning: AVX vector argument of type 'const __m256i' (vector of 4 'long long' values) without 'avx' enabled changes the ABI [-Wpsabi]
fft.c: *res = _mm256_add_epi32(*res, _mm256_add_epi32(_mulrnd16_avx(*real, *real), _mulrnd16_avx(*imag, *imag)));
fft.c: ^
fft.c: fft.c:230:35: error: always_inline function '_mm256_add_epi32' requires target feature 'avx2', but would be inlined into function 'complex_fp_sqabs_add' that is compiled without support for 'avx2'
fft.c: *res = _mm256_add_epi32(*res, _mm256_add_epi32(_mulrnd16_avx(*real, *real), _mulrnd16_avx(*imag, *imag)));
fft.c: ^
fft.c: fft.c:230:35: error: AVX vector argument of type '__m256i' (vector of 4 'long long' values) without 'avx' enabled changes the ABI
fft.c: fft.c:230:12: error: always_inline function '_mm256_add_epi32' requires target feature 'avx2', but would be inlined into function 'complex_fp_sqabs_add' that is compiled without support for 'avx2'
fft.c: *res = _mm256_add_epi32(*res, _mm256_add_epi32(_mulrnd16_avx(*real, *real), _mulrnd16_avx(*imag, *imag)));
fft.c: ^
fft.c: fft.c:230:12: error: AVX vector argument of type '__m256i' (vector of 4 'long long' values) without 'avx' enabled changes the ABI
fft.c: 2 warnings and 4 errors generated.
Number of similar (implementation,compiler) pairs: 4, namely:
| Implementation | Compiler |
| avx2 | clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| avx2 | clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| avx2 | clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| avx2 | clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
Compiler output
aes256ctr.c: aes256ctr.c:91:3: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes256ctr.c: BLOCK1(0x01);
aes256ctr.c: ^
aes256ctr.c: aes256ctr.c:72:11: note: expanded from macro 'BLOCK1'
aes256ctr.c: temp1 = _mm_aeskeygenassist_si128(temp2, IMM); \
aes256ctr.c: ^
aes256ctr.c: /usr/lib/llvm-11/lib/clang/11.0.1/include/__wmmintrin_aes.h:136:12: note: expanded from macro '_mm_aeskeygenassist_si128'
aes256ctr.c: (__m128i)__builtin_ia32_aeskeygenassist128((__v2di)(__m128i)(C), (int)(R))
aes256ctr.c: ^
aes256ctr.c: aes256ctr.c:92:3: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes256ctr.c: BLOCK2(0x01);
aes256ctr.c: ^
aes256ctr.c: aes256ctr.c:82:11: note: expanded from macro 'BLOCK2'
aes256ctr.c: temp1 = _mm_aeskeygenassist_si128(temp0, IMM); \
aes256ctr.c: ^
aes256ctr.c: /usr/lib/llvm-11/lib/clang/11.0.1/include/__wmmintrin_aes.h:136:12: note: expanded from macro '_mm_aeskeygenassist_si128'
aes256ctr.c: (__m128i)__builtin_ia32_aeskeygenassist128((__v2di)(__m128i)(C), (int)(R))
aes256ctr.c: ^
aes256ctr.c: aes256ctr.c:94:3: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes256ctr.c: BLOCK1(0x02);
aes256ctr.c: ^
aes256ctr.c: aes256ctr.c:72:11: note: expanded from macro 'BLOCK1'
aes256ctr.c: temp1 = _mm_aeskeygenassist_si128(temp2, IMM); \
aes256ctr.c: ^
aes256ctr.c: /usr/lib/llvm-11/lib/clang/11.0.1/include/__wmmintrin_aes.h:136:12: note: expanded from macro '_mm_aeskeygenassist_si128'
aes256ctr.c: ...
Number of similar (implementation,compiler) pairs: 1, namely:
| Implementation | Compiler |
| avx2 | clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
Compiler output
fft.c: fft.c: In function '_mulrnd16_avx':
fft.c: fft.c:159:1: warning: AVX vector return without AVX enabled changes the ABI [-Wpsabi]
fft.c: 159 | static inline __m256i _mulrnd16_avx(const __m256i x, const __m256i y) {
fft.c: | ^~~~~~
fft.c: fft.c:159:23: note: the ABI for passing parameters with 32-byte alignment has changed in GCC 4.6
fft.c: 159 | static inline __m256i _mulrnd16_avx(const __m256i x, const __m256i y) {
fft.c: | ^~~~~~~~~~~~~
fft.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/10/include/immintrin.h:53,
fft.c: from align.h:5,
fft.c: from poly.h:6,
fft.c: from fft.h:4,
fft.c: from fft.c:1:
fft.c: /usr/lib/gcc/x86_64-linux-gnu/10/include/avx2intrin.h:971:1: error: inlining failed in call to 'always_inline' '_mm256_blend_epi32': target specific option mismatch
fft.c: 971 | _mm256_blend_epi32 (__m256i __X, __m256i __Y, const int __M)
fft.c: | ^~~~~~~~~~~~~~~~~~
fft.c: fft.c:168:10: note: called from here
fft.c: 168 | rl = _mm256_blend_epi32(rl, rh, 0xaa);
fft.c: | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
fft.c: In file included from /usr/lib/gcc/x86_64-linux-gnu/10/include/immintrin.h:53,
fft.c: from align.h:5,
fft.c: from poly.h:6,
fft.c: from fft.h:4,
fft.c: from fft.c:1:
fft.c: /usr/lib/gcc/x86_64-linux-gnu/10/include/avx2intrin.h:696:1: error: inlining failed in call to 'always_inline' '_mm256_slli_epi64': target specific option mismatch
fft.c: 696 | _mm256_slli_epi64 (__m256i __A, int __B)
fft.c: ...
Number of similar (implementation,compiler) pairs: 4, namely:
| Implementation | Compiler |
| avx2 | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| avx2 | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| avx2 | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| avx2 | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
Namespace violations
decompose.o cryptolab_haetae2_decompose_hint T
decompose.o cryptolab_haetae2_decompose_vk T
decompose.o cryptolab_haetae2_decompose_z1 T
encoding.o cryptolab_haetae2_decode_h T
encoding.o cryptolab_haetae2_decode_hb_z1 T
encoding.o cryptolab_haetae2_encode_h T
encoding.o cryptolab_haetae2_encode_hb_z1 T
fft.o brv8 R
fft.o complex_fp_sqabs T
fft.o fft T
fft.o fft_init_and_bitrev T
fips202.o haetae_fips202_KeccakF_RoundConstants R
fips202.o haetae_fips202_sha3_256 T
fips202.o haetae_fips202_sha3_512 T
fips202.o haetae_fips202_shake128 T
fips202.o haetae_fips202_shake128_absorb T
fips202.o haetae_fips202_shake128_absorb_once T
fips202.o haetae_fips202_shake128_finalize T
fips202.o haetae_fips202_shake128_init T
fips202.o haetae_fips202_shake128_squeeze T
fips202.o haetae_fips202_shake128_squeezeblocks T
fips202.o haetae_fips202_shake256 T
fips202.o haetae_fips202_shake256_absorb T
fips202.o haetae_fips202_shake256_absorb_once T
fips202.o haetae_fips202_shake256_finalize T
fips202.o haetae_fips202_shake256_init T
fips202.o haetae_fips202_shake256_squeeze T
fips202.o haetae_fips202_shake256_squeezeblocks T
fixpoint.o cryptolab_haetae2_fixpoint_add T
fixpoint.o cryptolab_haetae2_fixpoint_mul_rnd13 T
fixpoint.o cryptolab_haetae2_fixpoint_newton_invsqrt T
fixpoint.o cryptolab_haetae2_fixpoint_square T
fixpoint.o start_cube R
fixpoint.o start_times_threehalves R
ntt.o cryptolab_haetae2_invntt_tomont T
ntt.o cryptolab_haetae2_ntt T
packing.o cryptolab_haetae2_pack_pk T
packing.o cryptolab_haetae2_pack_sig T
packing.o cryptolab_haetae2_pack_sk T
packing.o cryptolab_haetae2_unpack_pk T
packing.o cryptolab_haetae2_unpack_sig T
packing.o cryptolab_haetae2_unpack_sk T
poly.o cryptolab_haetae2_poly2eta_pack T
poly.o cryptolab_haetae2_poly2eta_unpack T
poly.o cryptolab_haetae2_poly_add T
poly.o cryptolab_haetae2_poly_challenge T
poly.o cryptolab_haetae2_poly_compose T
poly.o cryptolab_haetae2_poly_decomposed_pack T
poly.o cryptolab_haetae2_poly_decomposed_unpack T
poly.o cryptolab_haetae2_poly_freeze T
poly.o cryptolab_haetae2_poly_freeze2q T
poly.o cryptolab_haetae2_poly_fromcrt T
poly.o cryptolab_haetae2_poly_fromcrt0 T
poly.o cryptolab_haetae2_poly_highbits T
poly.o cryptolab_haetae2_poly_invntt_tomont T
poly.o cryptolab_haetae2_poly_lowbits T
poly.o cryptolab_haetae2_poly_lsb T
poly.o cryptolab_haetae2_poly_ntt T
poly.o cryptolab_haetae2_poly_pack_highbits T
poly.o cryptolab_haetae2_poly_pack_lsb T
poly.o cryptolab_haetae2_poly_pointwise_montgomery T
poly.o cryptolab_haetae2_poly_reduce2q T
poly.o cryptolab_haetae2_poly_sub T
poly.o cryptolab_haetae2_poly_uniform T
poly.o cryptolab_haetae2_poly_uniform_eta T
poly.o cryptolab_haetae2_polyeta_pack T
poly.o cryptolab_haetae2_polyeta_unpack T
poly.o cryptolab_haetae2_polyq_pack T
poly.o cryptolab_haetae2_polyq_unpack T
poly.o hammingWeight_8 T
polyfix.o cryptolab_haetae2_polyfix_add T
polyfix.o cryptolab_haetae2_polyfix_round T
polyfix.o cryptolab_haetae2_polyfixfixveck_sub T
polyfix.o cryptolab_haetae2_polyfixfixvecl_sub T
polyfix.o cryptolab_haetae2_polyfixveck_add T
polyfix.o cryptolab_haetae2_polyfixveck_double T
polyfix.o cryptolab_haetae2_polyfixveck_round T
polyfix.o cryptolab_haetae2_polyfixvecl_add T
polyfix.o cryptolab_haetae2_polyfixvecl_double T
polyfix.o cryptolab_haetae2_polyfixvecl_round T
polyfix.o cryptolab_haetae2_polyfixveclk_sample_hyperball T
polyfix.o cryptolab_haetae2_polyfixveclk_sqnorm2 T
polyfix.o fix_round T
polyfix.o polyfixfix_sub T
polymat.o cryptolab_haetae2_polymatkl_double T
polymat.o cryptolab_haetae2_polymatkl_expand T
polymat.o cryptolab_haetae2_polymatkl_pointwise_montgomery T
polymat.o cryptolab_haetae2_polymatkm_expand T
polymat.o cryptolab_haetae2_polymatkm_pointwise_montgomery T
polyvec.o cryptolab_haetae2_polyveck_add T
polyvec.o cryptolab_haetae2_polyveck_caddDQ2ALPHA T
polyvec.o cryptolab_haetae2_polyveck_caddq T
polyvec.o cryptolab_haetae2_polyveck_cneg T
polyvec.o cryptolab_haetae2_polyveck_csubDQ2ALPHA T
polyvec.o cryptolab_haetae2_polyveck_decompose_vk T
polyvec.o cryptolab_haetae2_polyveck_div2 T
polyvec.o cryptolab_haetae2_polyveck_double T
polyvec.o cryptolab_haetae2_polyveck_double_negate T
polyvec.o cryptolab_haetae2_polyveck_expand T
polyvec.o cryptolab_haetae2_polyveck_freeze T
polyvec.o cryptolab_haetae2_polyveck_freeze2q T
polyvec.o cryptolab_haetae2_polyveck_frommont T
polyvec.o cryptolab_haetae2_polyveck_highbits_hint T
polyvec.o cryptolab_haetae2_polyveck_invntt_tomont T
polyvec.o cryptolab_haetae2_polyveck_mul_alpha T
polyvec.o cryptolab_haetae2_polyveck_ntt T
polyvec.o cryptolab_haetae2_polyveck_pack_highbits T
polyvec.o cryptolab_haetae2_polyveck_poly_fromcrt T
polyvec.o cryptolab_haetae2_polyveck_poly_pointwise_montgomery T
polyvec.o cryptolab_haetae2_polyveck_reduce2q T
polyvec.o cryptolab_haetae2_polyveck_sqnorm2 T
polyvec.o cryptolab_haetae2_polyveck_sub T
polyvec.o cryptolab_haetae2_polyvecl_cneg T
polyvec.o cryptolab_haetae2_polyvecl_highbits T
polyvec.o cryptolab_haetae2_polyvecl_lowbits T
polyvec.o cryptolab_haetae2_polyvecl_ntt T
polyvec.o cryptolab_haetae2_polyvecl_pointwise_acc_montgomery T
polyvec.o cryptolab_haetae2_polyvecl_sqnorm2 T
polyvec.o cryptolab_haetae2_polyvecm_ntt T
polyvec.o cryptolab_haetae2_polyvecm_pointwise_acc_montgomery T
polyvec.o cryptolab_haetae2_polyvecmk_sqsing_value T
polyvec.o cryptolab_haetae2_polyvecmk_uniform_eta T
reduce.o cryptolab_haetae2_caddq T
reduce.o cryptolab_haetae2_freeze T
reduce.o cryptolab_haetae2_freeze2q T
reduce.o cryptolab_haetae2_montgomery_reduce T
reduce.o cryptolab_haetae2_reduce32_2q T
sampler.o cryptolab_haetae2_rej_eta T
sampler.o cryptolab_haetae2_rej_uniform T
sampler.o cryptolab_haetae2_sample_gauss_N T
sampler.o sample_gauss T
sign.o cryptolab_haetae2_signature T
sign.o cryptolab_haetae2_verify T
symmetric-shake.o cryptolab_haetae2_haetae_shake128_stream_init T
symmetric-shake.o cryptolab_haetae2_haetae_shake256_absorb_twice T
symmetric-shake.o cryptolab_haetae2_haetae_shake256_stream_init T
Number of similar (implementation,compiler) pairs: 9, namely:
| Implementation | Compiler |
| ref | clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| ref | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| ref | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| ref | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
Passed TIMECOP
TIMECOP iterations: 10
Number of similar (implementation,compiler) pairs: 9, namely:
| Implementation | Compiler |
| ref | clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_11.0.1) |
| ref | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| ref | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| ref | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |
| ref | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (10.2.1_20210110) |