Eliminate caddq intrinsics

This commit replace the eurrently caddq AVX2 implementation to x86_64
assembly code.

Signed-off-by: willieyz <[email protected]>

Author: willieyz

BIBLIOGRAPHY.md

@@ -219,7 +219,7 @@ source code and documentation.
   - [dev/x86_64/src/pointwise_acc_l4.S](dev/x86_64/src/pointwise_acc_l4.S)
   - [dev/x86_64/src/pointwise_acc_l5.S](dev/x86_64/src/pointwise_acc_l5.S)
   - [dev/x86_64/src/pointwise_acc_l7.S](dev/x86_64/src/pointwise_acc_l7.S)
-  - [dev/x86_64/src/poly_caddq_avx2.c](dev/x86_64/src/poly_caddq_avx2.c)
+  - [dev/x86_64/src/poly_caddq_avx2.S](dev/x86_64/src/poly_caddq_avx2.S)
   - [dev/x86_64/src/poly_chknorm_avx2.c](dev/x86_64/src/poly_chknorm_avx2.c)
   - [dev/x86_64/src/poly_decompose_32_avx2.c](dev/x86_64/src/poly_decompose_32_avx2.c)
   - [dev/x86_64/src/poly_decompose_88_avx2.c](dev/x86_64/src/poly_decompose_88_avx2.c)
@@ -237,7 +237,7 @@ source code and documentation.
   - [mldsa/src/native/x86_64/src/pointwise_acc_l4.S](mldsa/src/native/x86_64/src/pointwise_acc_l4.S)
   - [mldsa/src/native/x86_64/src/pointwise_acc_l5.S](mldsa/src/native/x86_64/src/pointwise_acc_l5.S)
   - [mldsa/src/native/x86_64/src/pointwise_acc_l7.S](mldsa/src/native/x86_64/src/pointwise_acc_l7.S)
-  - [mldsa/src/native/x86_64/src/poly_caddq_avx2.c](mldsa/src/native/x86_64/src/poly_caddq_avx2.c)
+  - [mldsa/src/native/x86_64/src/poly_caddq_avx2.S](mldsa/src/native/x86_64/src/poly_caddq_avx2.S)
   - [mldsa/src/native/x86_64/src/poly_chknorm_avx2.c](mldsa/src/native/x86_64/src/poly_chknorm_avx2.c)
   - [mldsa/src/native/x86_64/src/poly_decompose_32_avx2.c](mldsa/src/native/x86_64/src/poly_decompose_32_avx2.c)
   - [mldsa/src/native/x86_64/src/poly_decompose_88_avx2.c](mldsa/src/native/x86_64/src/poly_decompose_88_avx2.c)

dev/x86_64/src/poly_caddq_avx2.c dev/x86_64/src/poly_caddq_avx2.Sdev/x86_64/src/poly_caddq_avx2.c renamed to dev/x86_64/src/poly_caddq_avx2.S

@@ -17,14 +17,6 @@
  * AVX2 Dilithium implementation @[REF_AVX2].
  */
 
-#include "../../../common.h"
-
-#if defined(MLD_ARITH_BACKEND_X86_64_DEFAULT) && \
-    !defined(MLD_CONFIG_MULTILEVEL_NO_SHARED)
-
-#include <immintrin.h>
-#include "arith_native_x86_64.h"
-#include "consts.h"
 
 /*************************************************
  * Name:        mld_poly_caddq_avx2
@@ -34,28 +26,41 @@
  *
  * Arguments:   - int32_t *r: pointer to input/output polynomial
  **************************************************/
-void mld_poly_caddq_avx2(int32_t *r)
-{
-  unsigned int i;
-  __m256i f, g;
-  const __m256i q = _mm256_set1_epi32(MLDSA_Q);
-  const __m256i zero = _mm256_setzero_si256();
-  __m256i *rr = (__m256i *)r;
-
-  for (i = 0; i < MLDSA_N / 8; i++)
-  {
-    f = _mm256_load_si256(&rr[i]);
-    g = _mm256_cmpgt_epi32(zero, f);
-    g = _mm256_and_si256(g, q);
-    f = _mm256_add_epi32(f, g);
-    _mm256_store_si256(&rr[i], f);
-  }
-}
-
-#else /* MLD_ARITH_BACKEND_X86_64_DEFAULT && !MLD_CONFIG_MULTILEVEL_NO_SHARED \
-       */
-
-MLD_EMPTY_CU(avx2_reduce)
-
-#endif /* !(MLD_ARITH_BACKEND_X86_64_DEFAULT && \
-          !MLD_CONFIG_MULTILEVEL_NO_SHARED) */
+
+#include "../../../common.h"
+
+#if defined(MLD_ARITH_BACKEND_X86_64_DEFAULT) && \
+    !defined(MLD_CONFIG_MULTILEVEL_NO_SHARED)
+
+/* simpasm: header-end */
+
+.text
+.global	MLD_ASM_NAMESPACE(poly_caddq_avx2)
+.balign 16
+MLD_ASM_FN_SYMBOL(poly_caddq_avx2)
+
+movl	$8380417, %eax
+leaq	1024(%rdi), %rdx
+vpxor	%xmm3, %xmm3, %xmm3
+vmovd	%eax, %xmm2
+vpbroadcastd	%xmm2, %ymm2
+
+poly_caddq_avx2_loop:
+vmovdqa	(%rdi), %ymm1
+addq	$32, %rdi
+vpcmpgtd	%ymm1, %ymm3, %ymm0
+vpand	%ymm2, %ymm0, %ymm0
+vpaddd	%ymm1, %ymm0, %ymm0
+vmovdqa	%ymm0, -32(%rdi)
+cmpq	%rdi, %rdx
+jne	poly_caddq_avx2_loop
+vzeroupper
+xorl	%eax, %eax
+xorl	%edx, %edx
+xorl	%edi, %edi
+ret
+
+/* simpasm: footer-start */
+
+#endif /* MLD_ARITH_BACKEND_X86_64_DEFAULT && !MLD_CONFIG_MULTILEVEL_NO_SHARED \
+        */

mldsa/mldsa_native.S

@@ -86,6 +86,7 @@
 #include "src/native/x86_64/src/pointwise_acc_l4.S"
 #include "src/native/x86_64/src/pointwise_acc_l5.S"
 #include "src/native/x86_64/src/pointwise_acc_l7.S"
+#include "src/native/x86_64/src/poly_caddq_avx2.S"
 #endif /* MLD_SYS_X86_64 */
 #endif /* MLD_CONFIG_USE_NATIVE_BACKEND_ARITH */
 

mldsa/mldsa_native.c

@@ -82,7 +82,6 @@
 #endif /* MLD_SYS_AARCH64 */
 #if defined(MLD_SYS_X86_64)
 #include "src/native/x86_64/src/consts.c"
-#include "src/native/x86_64/src/poly_caddq_avx2.c"
 #include "src/native/x86_64/src/poly_chknorm_avx2.c"
 #include "src/native/x86_64/src/poly_decompose_32_avx2.c"
 #include "src/native/x86_64/src/poly_decompose_88_avx2.c"

mldsa/src/native/x86_64/src/poly_caddq_avx2.S

@@ -0,0 +1,75 @@
+/*
+ * Copyright (c) The mldsa-native project authors
+ * SPDX-License-Identifier: Apache-2.0 OR ISC OR MIT
+ */
+
+/* References
+ * ==========
+ *
+ * - [REF_AVX2]
+ *   CRYSTALS-Dilithium optimized AVX2 implementation
+ *   Bai, Ducas, Kiltz, Lepoint, Lyubashevsky, Schwabe, Seiler, Stehlé
+ *   https://github.com/pq-crystals/dilithium/tree/master/avx2
+ */
+
+/*
+ * This file is derived from the public domain
+ * AVX2 Dilithium implementation @[REF_AVX2].
+ */
+
+
+/*************************************************
+ * Name:        mld_poly_caddq_avx2
+ *
+ * Description: For all coefficients of in/out polynomial add Q if
+ *              coefficient is negative.
+ *
+ * Arguments:   - int32_t *r: pointer to input/output polynomial
+ **************************************************/
+
+#include "../../../common.h"
+
+#if defined(MLD_ARITH_BACKEND_X86_64_DEFAULT) && \
+    !defined(MLD_CONFIG_MULTILEVEL_NO_SHARED)
+
+
+/*
+ * WARNING: This file is auto-derived from the mldsa-native source file
+ *   dev/x86_64/src/poly_caddq_avx2.S using scripts/simpasm. Do not modify it directly.
+ */
+
+#if defined(__ELF__)
+.section .note.GNU-stack,"",@progbits
+#endif
+
+.text
+.balign 4
+.global MLD_ASM_NAMESPACE(poly_caddq_avx2)
+MLD_ASM_FN_SYMBOL(poly_caddq_avx2)
+
+        .cfi_startproc
+        movl	$0x7fe001, %eax         # imm = 0x7FE001
+        leaq	0x400(%rdi), %rdx
+        vpxor	%xmm3, %xmm3, %xmm3
+        vmovd	%eax, %xmm2
+        vpbroadcastd	%xmm2, %ymm2
+
+Lpoly_caddq_avx2_loop:
+        vmovdqa	(%rdi), %ymm1
+        addq	$0x20, %rdi
+        vpcmpgtd	%ymm1, %ymm3, %ymm0
+        vpand	%ymm2, %ymm0, %ymm0
+        vpaddd	%ymm1, %ymm0, %ymm0
+        vmovdqa	%ymm0, -0x20(%rdi)
+        cmpq	%rdi, %rdx
+        jne	Lpoly_caddq_avx2_loop
+        vzeroupper
+        xorl	%eax, %eax
+        xorl	%edx, %edx
+        xorl	%edi, %edi
+        retq
+        .cfi_endproc
+
+
+#endif /* MLD_ARITH_BACKEND_X86_64_DEFAULT && !MLD_CONFIG_MULTILEVEL_NO_SHARED \
+        */