Test results for amd64, phoenix, crypto_sign/dilithium3aes
[Page version: 20251223 03:47:22]
Measurements for amd64, phoenix, crypto_sign
Test results for amd64, phoenix, crypto_sign
Test results for crypto_sign/dilithium3aes
Computer: phoenix
Microarchitecture: amd64; Zen 4 (a70f41)
Architecture: amd64
CPU ID: AuthenticAMD-00a70f41-178bfbff
SUPERCOP version: 20251222
Operation: crypto_sign
Primitive: dilithium3aes
| Time | Object size | Test size | Implementation | Compiler | Benchmark date | SUPERCOP version |
|---|
| 162238 | 86955 0 0 | 111484 828 1832 | avx2 | clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 162454 | 78679 0 0 | 103228 828 1832 | avx2 | clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 172728 | 56174 0 0 | 77158 820 1832 | avx2 | clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 177146 | 77360 0 0 | 100156 788 1928 | avx2 | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 180184 | 52908 0 0 | 73956 788 1928 | avx2 | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 182637 | 54339 0 0 | 74268 828 1768 | avx2 | clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 186463 | 48042 0 0 | 67372 780 1800 | avx2 | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 233415 | 51124 0 0 | 71948 788 1832 | avx2 | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 2287341 | 39688 0 0 | 66501 828 1768 | ref | clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 2385579 | 52376 0 0 | 75140 788 1928 | ref | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 2514207 | 61656 0 0 | 86212 828 1832 | ref | clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 2535577 | 25912 0 0 | 46189 828 1768 | ref | clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 2568002 | 25436 0 0 | 46516 788 1928 | ref | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 2621101 | 51683 0 0 | 76164 828 1832 | ref | clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 2652817 | 23513 0 0 | 44942 820 1832 | ref | clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 2657224 | 21574 0 0 | 41028 780 1800 | ref | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
| 3605902 | 24070 0 0 | 44964 788 1832 | ref | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall | 20251222 | 20251222 |
Compiler output
poly.c: poly.c:1057:52: warning: argument 'a' of type 'const uint8_t[652]' (aka 'const unsigned char[652]') with mismatched bound [-Warray-parameter]
poly.c: 1057 | void polyz_unpack(poly * restrict r, const uint8_t a[POLYZ_PACKEDBYTES+12]) {
poly.c: | ^
poly.c: ./poly.h:111:42: note: previously declared as 'const uint8_t[654]' (aka 'const unsigned char[654]') here
poly.c: 111 | void polyz_unpack(poly *r, const uint8_t a[POLYZ_PACKEDBYTES+14]);
poly.c: | ^
poly.c: poly.c:1123:26: warning: argument 'r' of type 'uint8_t[128]' (aka 'unsigned char[128]') with mismatched bound [-Warray-parameter]
poly.c: 1123 | void polyw1_pack(uint8_t r[POLYW1_PACKEDBYTES], const poly * restrict a) {
poly.c: | ^
poly.c: ./poly.h:114:26: note: previously declared as 'uint8_t[136]' (aka 'unsigned char[136]') here
poly.c: 114 | void polyw1_pack(uint8_t r[POLYW1_PACKEDBYTES+8], const poly *a);
poly.c: | ^
poly.c: 2 warnings generated.
rejsample.c: rejsample.c:408:62: warning: argument 'buf' of type 'const uint8_t[256]' (aka 'const unsigned char[256]') with mismatched bound [-Warray-parameter]
rejsample.c: 408 | unsigned int rej_eta_avx(int32_t * restrict r, const uint8_t buf[REJ_UNIFORM_ETA_BUFLEN]) {
rejsample.c: | ^
rejsample.c: ./rejsample.h:25:52: note: previously declared as 'const uint8_t[768]' (aka 'const unsigned char[768]') here
rejsample.c: 25 | unsigned int rej_eta_avx(int32_t *r, const uint8_t buf[REJ_UNIFORM_BUFLEN]);
rejsample.c: | ^
rejsample.c: 1 warning generated.
Number of similar (implementation,compiler) pairs: 4, namely:
| Implementation | Compiler |
| avx2 | clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
| avx2 | clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
| avx2 | clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
| avx2 | clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
Compiler output
aes256ctr.c: aes256ctr.c:90:3: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes256ctr.c: 90 | BLOCK1(0x01);
aes256ctr.c: | ^
aes256ctr.c: aes256ctr.c:71:11: note: expanded from macro 'BLOCK1'
aes256ctr.c: 71 | temp1 = _mm_aeskeygenassist_si128(temp2, IMM); \
aes256ctr.c: | ^
aes256ctr.c: /usr/lib/llvm-19/lib/clang/19/include/__wmmintrin_aes.h:136:13: note: expanded from macro '_mm_aeskeygenassist_si128'
aes256ctr.c: 136 | ((__m128i)__builtin_ia32_aeskeygenassist128((__v2di)(__m128i)(C), (int)(R)))
aes256ctr.c: | ^
aes256ctr.c: aes256ctr.c:91:3: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes256ctr.c: 91 | BLOCK2(0x01);
aes256ctr.c: | ^
aes256ctr.c: aes256ctr.c:81:11: note: expanded from macro 'BLOCK2'
aes256ctr.c: 81 | temp1 = _mm_aeskeygenassist_si128(temp0, IMM); \
aes256ctr.c: | ^
aes256ctr.c: /usr/lib/llvm-19/lib/clang/19/include/__wmmintrin_aes.h:136:13: note: expanded from macro '_mm_aeskeygenassist_si128'
aes256ctr.c: 136 | ((__m128i)__builtin_ia32_aeskeygenassist128((__v2di)(__m128i)(C), (int)(R)))
aes256ctr.c: | ^
aes256ctr.c: aes256ctr.c:93:3: error: '__builtin_ia32_aeskeygenassist128' needs target feature aes
aes256ctr.c: 93 | BLOCK1(0x02);
aes256ctr.c: | ^
aes256ctr.c: aes256ctr.c:71:11: note: expanded from macro 'BLOCK1'
aes256ctr.c: 71 | temp1 = _mm_aeskeygenassist_si128(temp2, IMM); \
aes256ctr.c: | ^
aes256ctr.c: /usr/lib/llvm-19/lib/clang/19/include/__wmmintrin_aes.h:136:13: note: expanded from macro '_mm_aeskeygenassist_si128'
aes256ctr.c: ...
Number of similar (implementation,compiler) pairs: 1, namely:
| Implementation | Compiler |
| avx2 | clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
Compiler output
poly.c: poly.c:1057:52: warning: argument 2 of type 'const uint8_t[652]' {aka 'const unsigned char[652]'} with mismatched bound [-Warray-parameter=]
poly.c: 1057 | void polyz_unpack(poly * restrict r, const uint8_t a[POLYZ_PACKEDBYTES+12]) {
poly.c: | ~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~
poly.c: In file included from poly.c:8:
poly.c: poly.h:111:42: note: previously declared as 'const uint8_t[654]' {aka 'const unsigned char[654]'}
poly.c: 111 | void polyz_unpack(poly *r, const uint8_t a[POLYZ_PACKEDBYTES+14]);
poly.c: | ~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~
poly.c: poly.c:1123:26: warning: argument 1 of type 'uint8_t[128]' {aka 'unsigned char[128]'} with mismatched bound [-Warray-parameter=]
poly.c: 1123 | void polyw1_pack(uint8_t r[POLYW1_PACKEDBYTES], const poly * restrict a) {
poly.c: | ~~~~~~~~^~~~~~~~~~~~~~~~~~~~~
poly.c: poly.h:114:26: note: previously declared as 'uint8_t[136]' {aka 'unsigned char[136]'}
poly.c: 114 | void polyw1_pack(uint8_t r[POLYW1_PACKEDBYTES+8], const poly *a);
poly.c: | ~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~
polyvec.c: polyvec.c: In function 'crypto_sign_dilithium3aes_avx2_constbranchindex_polyvecl_uniform_gamma1':
polyvec.c: <command-line>: warning: 'crypto_sign_dilithium3aes_avx2_constbranchindex_poly_uniform_gamma1' reading 48 bytes from a region of size 32 [-Wstringop-overread]
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: poly.h:55:29: note: in expansion of macro 'DILITHIUM_NAMESPACE'
polyvec.c: 55 | #define poly_uniform_gamma1 DILITHIUM_NAMESPACE(poly_uniform_gamma1)
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: polyvec.c:279:5: note: in expansion of macro 'poly_uniform_gamma1'
polyvec.c: 279 | poly_uniform_gamma1(&v->vec[i], seed, L*nonce + i);
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: <command-line>: note: referencing argument 2 of type 'const uint8_t[48]' {aka 'const unsigned char[48]'}
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: poly.h:55:29: note: in expansion of macro 'DILITHIUM_NAMESPACE'
polyvec.c: 55 | #define poly_uniform_gamma1 DILITHIUM_NAMESPACE(poly_uniform_gamma1)
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: polyvec.c:279:5: note: in expansion of macro 'poly_uniform_gamma1'
polyvec.c: 279 | poly_uniform_gamma1(&v->vec[i], seed, L*nonce + i);
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: <command-line>: note: in a call to function 'crypto_sign_dilithium3aes_avx2_constbranchindex_poly_uniform_gamma1'
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: ...
rejsample.c: rejsample.c:408:62: warning: argument 2 of type 'const uint8_t[256]' {aka 'const unsigned char[256]'} with mismatched bound [-Warray-parameter=]
rejsample.c: 408 | unsigned int rej_eta_avx(int32_t * restrict r, const uint8_t buf[REJ_UNIFORM_ETA_BUFLEN]) {
rejsample.c: | ~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~
rejsample.c: In file included from rejsample.c:4:
rejsample.c: rejsample.h:25:52: note: previously declared as 'const uint8_t[768]' {aka 'const unsigned char[768]'}
rejsample.c: 25 | unsigned int rej_eta_avx(int32_t *r, const uint8_t buf[REJ_UNIFORM_BUFLEN]);
rejsample.c: | ~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~
Number of similar (implementation,compiler) pairs: 4, namely:
| Implementation | Compiler |
| avx2 | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
| avx2 | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
| avx2 | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
| avx2 | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
Compiler output
aes256ctr.c: aes256ctr.c:557:64: warning: argument 3 of type 'const uint8_t *' {aka 'const unsigned char *'} declared as a pointer [-Warray-parameter=]
aes256ctr.c: 557 | void aes256ctr_prf(uint8_t *out, size_t outlen, const uint8_t *key, const uint8_t *nonce)
aes256ctr.c: | ~~~~~~~~~~~~~~~^~~
aes256ctr.c: In file included from aes256ctr.c:27:
aes256ctr.c: aes256ctr.h:21:34: note: previously declared as an array 'const uint8_t[32]' {aka 'const unsigned char[32]'}
aes256ctr.c: 21 | const uint8_t key[32],
aes256ctr.c: | ~~~~~~~~~~~~~~^~~~~~~
aes256ctr.c: aes256ctr.c:557:84: warning: argument 4 of type 'const uint8_t *' {aka 'const unsigned char *'} declared as a pointer [-Warray-parameter=]
aes256ctr.c: 557 | void aes256ctr_prf(uint8_t *out, size_t outlen, const uint8_t *key, const uint8_t *nonce)
aes256ctr.c: | ~~~~~~~~~~~~~~~^~~~~
aes256ctr.c: aes256ctr.h:22:34: note: previously declared as an array 'const uint8_t[12]' {aka 'const unsigned char[12]'}
aes256ctr.c: 22 | const uint8_t nonce[12]);
aes256ctr.c: | ~~~~~~~~~~~~~~^~~~~~~~~
aes256ctr.c: aes256ctr.c:565:54: warning: argument 2 of type 'const uint8_t *' {aka 'const unsigned char *'} declared as a pointer [-Warray-parameter=]
aes256ctr.c: 565 | void aes256ctr_init(aes256ctr_ctx *s, const uint8_t *key, const uint8_t *nonce)
aes256ctr.c: | ~~~~~~~~~~~~~~~^~~
aes256ctr.c: aes256ctr.h:26:35: note: previously declared as an array 'const uint8_t[32]' {aka 'const unsigned char[32]'}
aes256ctr.c: 26 | const uint8_t key[32],
aes256ctr.c: | ~~~~~~~~~~~~~~^~~~~~~
aes256ctr.c: aes256ctr.c:565:74: warning: argument 3 of type 'const uint8_t *' {aka 'const unsigned char *'} declared as a pointer [-Warray-parameter=]
aes256ctr.c: 565 | void aes256ctr_init(aes256ctr_ctx *s, const uint8_t *key, const uint8_t *nonce)
aes256ctr.c: | ~~~~~~~~~~~~~~~^~~~~
aes256ctr.c: aes256ctr.h:27:35: note: previously declared as an array 'const uint8_t[12]' {aka 'const unsigned char[12]'}
aes256ctr.c: 27 | const uint8_t nonce[12]);
aes256ctr.c: | ~~~~~~~~~~~~~~^~~~~~~~~
aes256ctr.c: ...
polyvec.c: polyvec.c: In function 'crypto_sign_dilithium3aes_ref_constbranchindex_polyvecl_uniform_gamma1':
polyvec.c: <command-line>: warning: 'crypto_sign_dilithium3aes_ref_constbranchindex_poly_uniform_gamma1' reading 48 bytes from a region of size 32 [-Wstringop-overread]
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: poly.h:51:29: note: in expansion of macro 'DILITHIUM_NAMESPACE'
polyvec.c: 51 | #define poly_uniform_gamma1 DILITHIUM_NAMESPACE(poly_uniform_gamma1)
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: polyvec.c:47:5: note: in expansion of macro 'poly_uniform_gamma1'
polyvec.c: 47 | poly_uniform_gamma1(&v->vec[i], seed, L*nonce + i);
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: <command-line>: note: referencing argument 2 of type 'const uint8_t[48]' {aka 'const unsigned char[48]'}
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: poly.h:51:29: note: in expansion of macro 'DILITHIUM_NAMESPACE'
polyvec.c: 51 | #define poly_uniform_gamma1 DILITHIUM_NAMESPACE(poly_uniform_gamma1)
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: polyvec.c:47:5: note: in expansion of macro 'poly_uniform_gamma1'
polyvec.c: 47 | poly_uniform_gamma1(&v->vec[i], seed, L*nonce + i);
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: <command-line>: note: in a call to function 'crypto_sign_dilithium3aes_ref_constbranchindex_poly_uniform_gamma1'
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: ...
Number of similar (implementation,compiler) pairs: 3, namely:
| Implementation | Compiler |
| ref | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
| ref | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
| ref | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
Compiler output
aes256ctr.c: aes256ctr.c:557:64: warning: argument 3 of type 'const uint8_t *' {aka 'const unsigned char *'} declared as a pointer [-Warray-parameter=]
aes256ctr.c: 557 | void aes256ctr_prf(uint8_t *out, size_t outlen, const uint8_t *key, const uint8_t *nonce)
aes256ctr.c: | ~~~~~~~~~~~~~~~^~~
aes256ctr.c: In file included from aes256ctr.c:27:
aes256ctr.c: aes256ctr.h:21:34: note: previously declared as an array 'const uint8_t[32]' {aka 'const unsigned char[32]'}
aes256ctr.c: 21 | const uint8_t key[32],
aes256ctr.c: | ~~~~~~~~~~~~~~^~~~~~~
aes256ctr.c: aes256ctr.c:557:84: warning: argument 4 of type 'const uint8_t *' {aka 'const unsigned char *'} declared as a pointer [-Warray-parameter=]
aes256ctr.c: 557 | void aes256ctr_prf(uint8_t *out, size_t outlen, const uint8_t *key, const uint8_t *nonce)
aes256ctr.c: | ~~~~~~~~~~~~~~~^~~~~
aes256ctr.c: aes256ctr.h:22:34: note: previously declared as an array 'const uint8_t[12]' {aka 'const unsigned char[12]'}
aes256ctr.c: 22 | const uint8_t nonce[12]);
aes256ctr.c: | ~~~~~~~~~~~~~~^~~~~~~~~
aes256ctr.c: aes256ctr.c:565:54: warning: argument 2 of type 'const uint8_t *' {aka 'const unsigned char *'} declared as a pointer [-Warray-parameter=]
aes256ctr.c: 565 | void aes256ctr_init(aes256ctr_ctx *s, const uint8_t *key, const uint8_t *nonce)
aes256ctr.c: | ~~~~~~~~~~~~~~~^~~
aes256ctr.c: aes256ctr.h:26:35: note: previously declared as an array 'const uint8_t[32]' {aka 'const unsigned char[32]'}
aes256ctr.c: 26 | const uint8_t key[32],
aes256ctr.c: | ~~~~~~~~~~~~~~^~~~~~~
aes256ctr.c: aes256ctr.c:565:74: warning: argument 3 of type 'const uint8_t *' {aka 'const unsigned char *'} declared as a pointer [-Warray-parameter=]
aes256ctr.c: 565 | void aes256ctr_init(aes256ctr_ctx *s, const uint8_t *key, const uint8_t *nonce)
aes256ctr.c: | ~~~~~~~~~~~~~~~^~~~~
aes256ctr.c: aes256ctr.h:27:35: note: previously declared as an array 'const uint8_t[12]' {aka 'const unsigned char[12]'}
aes256ctr.c: 27 | const uint8_t nonce[12]);
aes256ctr.c: | ~~~~~~~~~~~~~~^~~~~~~~~
polyvec.c: polyvec.c: In function 'crypto_sign_dilithium3aes_ref_constbranchindex_polyvecl_uniform_gamma1':
polyvec.c: <command-line>: warning: 'crypto_sign_dilithium3aes_ref_constbranchindex_poly_uniform_gamma1' reading 48 bytes from a region of size 32 [-Wstringop-overread]
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: poly.h:51:29: note: in expansion of macro 'DILITHIUM_NAMESPACE'
polyvec.c: 51 | #define poly_uniform_gamma1 DILITHIUM_NAMESPACE(poly_uniform_gamma1)
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: polyvec.c:47:5: note: in expansion of macro 'poly_uniform_gamma1'
polyvec.c: 47 | poly_uniform_gamma1(&v->vec[i], seed, L*nonce + i);
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: <command-line>: note: referencing argument 2 of type 'const uint8_t[48]' {aka 'const unsigned char[48]'}
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: poly.h:51:29: note: in expansion of macro 'DILITHIUM_NAMESPACE'
polyvec.c: 51 | #define poly_uniform_gamma1 DILITHIUM_NAMESPACE(poly_uniform_gamma1)
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: polyvec.c:47:5: note: in expansion of macro 'poly_uniform_gamma1'
polyvec.c: 47 | poly_uniform_gamma1(&v->vec[i], seed, L*nonce + i);
polyvec.c: | ^~~~~~~~~~~~~~~~~~~
polyvec.c: <command-line>: note: in a call to function 'crypto_sign_dilithium3aes_ref_constbranchindex_poly_uniform_gamma1'
polyvec.c: config.h:4:32: note: in expansion of macro 'CRYPTO_NAMESPACE'
polyvec.c: 4 | #define DILITHIUM_NAMESPACE(s) CRYPTO_NAMESPACE(s)
polyvec.c: | ^~~~~~~~~~~~~~~~
polyvec.c: ...
Number of similar (implementation,compiler) pairs: 1, namely:
| Implementation | Compiler |
| ref | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x10A9AA
at 0x...: core (try-anything.c:61)
by 0x...: salsa20 (try-anything.c:101)
by 0x...: testvector (try-anything.c:124)
by 0x...: myrandom (try-anything.c:132)
by 0x...: test (try.c:124)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 2, namely:
| Implementation | Compiler |
| avx2 | clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
| ref | clang -march=native -O2 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x10B484
at 0x...: salsa20 (try-anything.c:90)
by 0x...: canary (try-anything.c:148)
by 0x...: output_prepare (try-anything.c:178)
by 0x...: test (try.c:126)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 2, namely:
| Implementation | Compiler |
| avx2 | clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
| ref | clang -march=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x10A393
at 0x...: core (try-anything.c:64)
by 0x...: salsa20 (try-anything.c:101)
by 0x...: testvector (try-anything.c:124)
by 0x...: myrandom (try-anything.c:132)
by 0x...: test (try.c:124)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 2, namely:
| Implementation | Compiler |
| avx2 | clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
| ref | clang -march=native -O -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x10A20E
at 0x...: core (try-anything.c:64)
by 0x...: salsa20 (try-anything.c:101)
by 0x...: testvector (try-anything.c:124)
by 0x...: myrandom (try-anything.c:132)
by 0x...: test (try.c:124)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 2, namely:
| Implementation | Compiler |
| avx2 | clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
| ref | clang -march=native -Os -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x10A204
at 0x...: core (try-anything.c:64)
by 0x...: salsa20.part.0 (try-anything.c:101)
by 0x...: salsa20 (try-anything.c:85)
by 0x...: testvector (try-anything.c:124)
by 0x...: myrandom (try-anything.c:132)
by 0x...: test (try.c:124)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 2, namely:
| Implementation | Compiler |
| avx2 | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
| ref | gcc -march=native -mtune=native -O2 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x10A42A
at 0x...: st32 (try-anything.c:47)
by 0x...: core (try-anything.c:78)
by 0x...: salsa20 (try-anything.c:101)
by 0x...: salsa20 (try-anything.c:81)
by 0x...: testvector (try-anything.c:124)
by 0x...: myrandom (try-anything.c:132)
by 0x...: test (try.c:124)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 2, namely:
| Implementation | Compiler |
| avx2 | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
| ref | gcc -march=native -mtune=native -O3 -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x1159B0
at 0x...: crypto_stream_chacha20_dolbeau_amd64_avx2_constbranchindex_ECRYPT_encrypt_bytes (u16mask.h:114)
by 0x...: crypto_stream_chacha20_dolbeau_amd64_avx2_constbranchindex (include/estream-convert-api.h:83)
by 0x...: crypto_rng_chacha20_ref_constbranchindex (rng.c:23)
by 0x...: randombytes_internal (knownrandombytes.c:37)
by 0x...: randombytes (knownrandombytes.c:56)
by 0x...: crypto_sign_dilithium3aes_avx2_constbranchindex_keypair (sign.c:87)
by 0x...: test (try.c:128)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 1, namely:
| Implementation | Compiler |
| avx2 | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x109FE6
at 0x...: core (try-anything.c:64)
by 0x...: salsa20.part.0 (try-anything.c:101)
by 0x...: salsa20 (try-anything.c:85)
by 0x...: testvector (try-anything.c:124)
by 0x...: myrandom (try-anything.c:132)
by 0x...: test (try.c:124)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 2, namely:
| Implementation | Compiler |
| avx2 | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
| ref | gcc -march=native -mtune=native -Os -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x113F80
at 0x...: crypto_stream_chacha20_dolbeau_amd64_avx2_constbranchindex_ECRYPT_encrypt_bytes (u16mask.h:114)
by 0x...: crypto_stream_chacha20_dolbeau_amd64_avx2_constbranchindex (include/estream-convert-api.h:83)
by 0x...: crypto_rng_chacha20_ref_constbranchindex (rng.c:23)
by 0x...: randombytes_internal (knownrandombytes.c:37)
by 0x...: randombytes (knownrandombytes.c:56)
by 0x...: crypto_sign_dilithium3aes_ref_constbranchindex_keypair (sign.c:32)
by 0x...: test (try.c:128)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 1, namely:
| Implementation | Compiler |
| ref | clang -mcpu=native -O3 -fwrapv -Qunused-arguments -fPIC -fPIE -gdwarf-4 -Wall (Debian_Clang_19.1.7_(3+b1)) |
TIMECOP error (can be valgrind bug)
error 132
Process terminating with default action of signal 4 (SIGILL)
Illegal opcode at address 0x10FAF0
at 0x...: crypto_stream_chacha20_dolbeau_amd64_avx2_constbranchindex_ECRYPT_encrypt_bytes (u16mask.h:114)
by 0x...: crypto_stream_chacha20_dolbeau_amd64_avx2_constbranchindex (include/estream-convert-api.h:83)
by 0x...: crypto_rng_chacha20_ref_constbranchindex (rng.c:23)
by 0x...: randombytes_internal (knownrandombytes.c:37)
by 0x...: randombytes (knownrandombytes.c:56)
by 0x...: crypto_sign_dilithium3aes_ref_constbranchindex_keypair (sign.c:32)
by 0x...: test (try.c:128)
by 0x...: main (try-anything.c:345)
Illegal instruction
Number of similar (implementation,compiler) pairs: 1, namely:
| Implementation | Compiler |
| ref | gcc -march=native -mtune=native -O -fwrapv -fPIC -fPIE -gdwarf-4 -Wall (14.2.0) |