AVX-512 AES-XTS improvements #1550
Conversation
|
Looks like some of those failures are on old versions of clang/gcc. I'll put the bytecode gen stuff back in :/ |
While this may be the case, the failure at hand was a FIPS/delocate parsing error. I'll wait and see how far this FIPS fix gets us. |
|
@pittma, would you mind please rebasing this work so we can see if the errors persist. Sorry for the delay in following up. |
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## main #1550 +/- ##
==========================================
- Coverage 79.04% 78.76% -0.28%
==========================================
Files 612 620 +8
Lines 106631 107864 +1233
Branches 15098 15319 +221
==========================================
+ Hits 84285 84962 +677
- Misses 21692 22248 +556
Partials 654 654 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
| @@ -3126,125 +3038,6 @@ | |||
| ___ | |||
| } | |||
|
|
|||
| # Bits 7 & 4 contain the src1 register's MSB in inverted form | |||
There was a problem hiding this comment.
Why was this perl handling removed? I believe that the replacement of the .byte instructions with vaesenc|dec|enclast|declast| and vpclmulqdq in the Perl output is causing the failures in gcc 7 and below.
There was a problem hiding this comment.
Yeah, I was hoping this was vestigial! Before I removed the copy code I did a bunch of clean up, for this bit I was really just crossing my fingers that it wasn't needed. I'll add it back in shortly.
There was a problem hiding this comment.
@pittma , you're still planning on adding it in, right?
|
Happy Monday @nebeid! I've got some Monday vibes for you this morning!
Yes, BUT— We may need to hold off on this patch for now, but I don't want to close it until I know definitively. I suspect we know now why this implementation (which was ported to perlasm from Intel's ISA-L crypto library before I joined this team) did this copy to the stack. I've been working intermittently to port this patch to OpenSSL as well, and OpenSSL tests 64-byte block sizes which were not included in the speed tests we did with AWS-LC. With the heap-based implementation, we see a throughput regression with those block sizes but none of the others. What's different: The Next Steps: I'm still collecting data on this, and it may all be specious anyway because some XTS tests are failing on the OpenSSL patch currently, but as soon as I know more I'll update this PR with the specifics and we can decide together what we want to do. |
|
Hi all, it's been a while! The refactored version of this implementation was merged into OpenSSL this morning. There are a number of fixes that I'd like to bring over—including what I mentioned in this comment[1] as well as enabling AVX-512 support for XTS on Windows if that's something y'all are interested in. I'll be working on bringing those changes over in the next week or two.
|
|
I don't think those two failures are related to these changes… |
pittma
changed the title
Changes found in this PR:
[encrypt|decrypt]_by_fourimplementation to replace bothencrypt_initialandinitialize.By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license and the ISC license.