Implementation notes: amd64, saber214, crypto_aead/aegis128l

Computer: saber214
Microarchitecture: amd64; Bulldozer (600f20)
Architecture: amd64
CPU ID: AuthenticAMD-00600f20-1789c3f5
SUPERCOP version: 20240107
Operation: crypto_aead
Primitive: aegis128l

Time	Object size	Test size	Implementation	Compiler	Benchmark date	SUPERCOP version
2651	9050 0 0	26084 816 872	`T:aesnic`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2659	9050 0 0	23692 816 856	`T:aesnic`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2659	4483 0 0	17430 808 856	`T:aesnic`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2667	5754 0 0	22756 816 872	`T:aesnib`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2672	5754 0 0	20364 816 856	`T:aesnib`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2692	3007 0 0	22340 816 856	`sodium-aesni`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2693	4585 0 0	27676 816 872	`sodium-aesni`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2696	4585 0 0	25284 816 856	`sodium-aesni`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2697	7446 0 0	23708 792 928	`T:aesnic`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
2703	5203 0 0	27445 784 928	`sodium-aesni`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
2711	4607 0 0	26524 816 856	`sodium-aesni`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2730	3236 0 0	22246 808 856	`sodium-aesni`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2737	6918 0 0	20300 816 856	`T:aesnic`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2773	4308 32 0	27332 856 872	`jasmin-aesni`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231229	20231222
2781	4344 32 0	22865 792 896	`jasmin-aesni`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231229	20231222
2784	4513 32 0	25126 816 928	`jasmin-aesni`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231229	20231222
2784	4513 32 0	26590 816 928	`jasmin-aesni`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231229	20231222
2792	3851 0 0	17220 816 856	`T:aesnib`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2792	5425 0 0	20244 792 928	`T:aesnic`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
2798	4368 32 0	24493 808 928	`jasmin-aesni`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231229	20231222
2799	3674 0 0	16598 808 856	`T:aesnib`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2808	4308 32 0	24940 856 856	`jasmin-aesni`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231229	20231222
2808	4253 32 0	23214 848 856	`jasmin-aesni`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231229	20231222
2814	4308 32 0	23596 856 856	`jasmin-aesni`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231229	20231222
2866	4824 0 0	19323 784 928	`T:aesnic`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
2866	4157 0 0	17431 768 896	`T:aesnic`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
2869	4311 32 0	26180 856 856	`jasmin-aesni`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231229	20231222
2886	3796 0 0	24597 784 928	`sodium-aesni`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
2916	6351 0 0	22588 792 928	`T:aesnib`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
2930	6000 0 0	22228 792 928	`T:aesnia`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
2990	3352 0 0	16270 808 856	`T:aesnia`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
2991	4042 0 0	18828 792 928	`T:aesnia`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
3016	3393 0 0	18196 792 928	`T:aesnib`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
3062	2750 0 0	15991 768 896	`T:aesnib`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
3129	4078 0 0	18539 784 928	`T:aesnia`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
3165	3482 0 0	17971 784 928	`T:aesnib`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
3313	3619 0 0	16972 816 856	`T:aesnia`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3397	5483 0 0	22476 816 872	`T:aesnia`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
3428	5467 0 0	20068 816 856	`T:aesnia`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
4217	3512 0 0	23909 784 928	`sodium-aesni`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
5510	2143 0 0	20864 760 896	`sodium-aesni`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
60133	6480 4096 0	22724 4896 928	`T:ref`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
872912	8337 0 0	31500 816 872	`T:sodium-softaes`	`clang_-march=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
873024	8337 0 0	29108 816 856	`T:sodium-softaes`	`clang_-march=native_-O2_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
885866	8321 0 0	30316 816 856	`T:sodium-softaes`	`clang_-mcpu=native_-O3_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
1082531	9707 1024 0	31989 1816 928	`T:sodium-softaes`	`gcc_-march=native_-mtune=native_-O3_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
1107711	9898 0 0	29308 816 856	`T:sodium-softaes`	`clang_-march=native_-O_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
1170272	8155 1024 0	28981 1816 928	`T:sodium-softaes`	`gcc_-march=native_-mtune=native_-O2_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
1176644	6119 0 0	25238 808 856	`T:sodium-softaes`	`clang_-march=native_-Os_-fomit-frame-pointer_-fwrapv_-Qunused-arguments_-fPIC_-fPIE`	20231213	20231212
1187493	9049 1024 0	29453 1816 928	`T:sodium-softaes`	`gcc_-march=native_-mtune=native_-O_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212
1263412	4532 1024 0	23320 1792 896	`T:sodium-softaes`	`gcc_-march=native_-mtune=native_-Os_-fomit-frame-pointer_-fwrapv_-fPIC_-fPIE`	20231213	20231212

Compiler output

Implementation: T:aesnia
Security model: timingleaks
Compiler: clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

encrypt.c: encrypt.c:34:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis128L_initialization' that is compiled without support for 'aes'
encrypt.c: state[7] = _mm_aesenc_si128(state[6],state[7]);
encrypt.c: ^
encrypt.c: encrypt.c:35:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis128L_initialization' that is compiled without support for 'aes'
encrypt.c: state[6] = _mm_aesenc_si128(state[5],state[6]);
encrypt.c: ^
encrypt.c: encrypt.c:36:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis128L_initialization' that is compiled without support for 'aes'
encrypt.c: state[5] = _mm_aesenc_si128(state[4],state[5]);
encrypt.c: ^
encrypt.c: encrypt.c:37:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis128L_initialization' that is compiled without support for 'aes'
encrypt.c: state[4] = _mm_aesenc_si128(state[3],state[4]);
encrypt.c: ^
encrypt.c: encrypt.c:38:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis128L_initialization' that is compiled without support for 'aes'
encrypt.c: state[3] = _mm_aesenc_si128(state[2],state[3]);
encrypt.c: ^
encrypt.c: encrypt.c:39:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis128L_initialization' that is compiled without support for 'aes'
encrypt.c: state[2] = _mm_aesenc_si128(state[1],state[2]);
encrypt.c: ^
encrypt.c: encrypt.c:40:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis128L_initialization' that is compiled without support for 'aes'
encrypt.c: state[1] = _mm_aesenc_si128(state[0],state[1]);
encrypt.c: ^
encrypt.c: encrypt.c:41:25: error: always_inline function '_mm_aesenc_si128' requires target feature 'aes', but would be inlined into function 'aegis128L_initialization' that is compiled without support for 'aes'
encrypt.c: state[0] = _mm_aesenc_si128(tmp,state[0]);
encrypt.c: ^
encrypt.c: 8 errors generated.

Number of similar (compiler,implementation) pairs: 3, namely:

Compiler	Implementations
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:aesnia T:aesnib T:aesnic

Compiler output

Implementation: T:aesnia
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE

try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(encrypt.o): in function `crypto_aead_aegis128l_aesnia_timingleaks_encrypt':
try.c: encrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(encrypt.o): in function `crypto_aead_aegis128l_aesnia_timingleaks_decrypt':
try.c: encrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(encrypt.o):encrypt.c:(.text+0x...): more undefined references to `aegis128L_enc_aut_step' follow
try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(encrypt.o): in function `crypto_aead_aegis128l_aesnia_timingleaks_decrypt':
try.c: encrypt.c:(.text+0x...): undefined reference to `aegis128L_dec_aut_step'
try.c: /usr/bin/ld: encrypt.c:(.text+0x...): undefined reference to `aegis128L_dec_aut_step'
try.c: collect2: error: ld returned 1 exit status

Number of similar (compiler,implementation) pairs: 1, namely:

Compiler	Implementations
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:aesnia

Compiler output

Implementation: T:ref
Security model: timingleaks
Compiler: clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE

try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(ecrypt.o): in function `crypto_aead_aegis128l_ref_timingleaks_encrypt':
try.c: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(ecrypt.o): in function `crypto_aead_aegis128l_ref_timingleaks_decrypt':
try.c: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(ecrypt.o):ecrypt.c:(.text+0x...): more undefined references to `aegis128L_enc_aut_step' follow
try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(ecrypt.o): in function `crypto_aead_aegis128l_ref_timingleaks_decrypt':
try.c: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_dec_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_dec_aut_step'
try.c: clang: error: linker command failed with exit code 1 (use -v to see invocation)

Number of similar (compiler,implementation) pairs: 5, namely:

Compiler	Implementations
clang -march=native -O2 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -O -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -march=native -Os -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref
clang -mcpu=native -O3 -fomit-frame-pointer -fwrapv -Qunused-arguments -fPIC -fPIE	T:ref

Compiler output

Implementation: T:ref
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE

try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(ecrypt.o): in function `crypto_aead_aegis128l_ref_timingleaks_encrypt':
try.c: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: libcrypto_aead_aegis128l.a(ecrypt.o): in function `crypto_aead_aegis128l_ref_timingleaks_decrypt':
try.c: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_dec_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_enc_aut_step'
try.c: /usr/bin/ld: ecrypt.c:(.text+0x...): undefined reference to `aegis128L_dec_aut_step'
try.c: collect2: error: ld returned 1 exit status

Number of similar (compiler,implementation) pairs: 2, namely:

Compiler	Implementations
gcc -march=native -mtune=native -O2 -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref
gcc -march=native -mtune=native -O -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref

Compiler output

Implementation: T:ref
Security model: timingleaks
Compiler: gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE

Number of similar (compiler,implementation) pairs: 1, namely:

Compiler	Implementations
gcc -march=native -mtune=native -Os -fomit-frame-pointer -fwrapv -fPIC -fPIE	T:ref