Disabled use of sha3-permute.asm

aec8a13d · Niels Möller · d7522caf · aec8a13d · aec8a13d · aec8a13d
Commit aec8a13d authored Dec 30, 2012 by Niels Möller
Hide whitespace changes
Inline Side-by-side

Showing with 11 additions and 1 deletion

ChangeLog ChangeLog +4 -0

configure.ac configure.ac +1 -1

x86_64/sha3-permute.asm x86_64/sha3-permute.asm +6 -0

No files found.
--- a/ChangeLog
+++ b/ChangeLog
+2012-12-30  Niels Möller  <nisse@lysator.liu.se>
+
+	* configure.ac: Disabled use of sha3-permute.asm.
+
 2012-12-20  Niels Möller  <nisse@lysator.liu.se>

 	From Tim Rühsen:

--- a/configure.ac
+++ b/configure.ac
@@ -245,7 +245,7 @@ if test "x$enable_assembler" = xyes ; then
 		 md5-compress.asm memxor.asm \
 		 salsa20-crypt.asm salsa20-core-internal.asm \
 		 serpent-encrypt.asm serpent-decrypt.asm \
-		 sha1-compress.asm sha3-permute.asm machine.m4; do
+		 sha1-compress.asm machine.m4; do
 #       echo "Looking for $srcdir/$asm_path/$tmp_f"
      if test -f "$srcdir/$asm_path/$tmp_f"; then
 #        echo found

--- a/x86_64/sha3-permute.asm
+++ b/x86_64/sha3-permute.asm
@@ -17,6 +17,12 @@ C along with the nettle library; see the file COPYING.LIB.  If not, write to
 C the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
 C MA 02111-1301, USA.

+C NOTE: This code is currently unused. It gives a modest speedup on
+C Intel processors, running at roughly two instructions per cycle, and
+C a large slowdown on AMD processors, running at only a single
+C instruction per cycle. Maybe it can be rewritten to not move data
+C back and forth between xmm registers and regular 64-bit registers.
+
 define(<CTX>, <%rdi>)		C 25 64-bit values, 200 bytes.
 define(<COUNT>, <%r8>)		C Avoid clobbering %rsi, for W64.