Skip to content

Add intrinsic support for the SVE multi-vector Advanced Encryption Standard (AES) instructions #411

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Add intrinsic support for the SVE multi-vector Advanced Encryption Standard (AES) instructions #411

wants to merge 6 commits into from

Conversation

@amilendra
Copy link
Contributor

@amilendra amilendra commented Sep 15, 2025
edited
Loading

name: Pull request
about: Technical issues, document format problems, bugs in scripts or feature proposal.

Thank you for submitting a pull request!

If this PR is about a bugfix:

Please use the bugfix label and make sure to go through the checklist below.

If this PR is about a proposal:

We are looking forward to evaluate your proposal, and if possible to
make it part of the Arm C Language Extension (ACLE) specifications.

We would like to encourage you reading through the contribution
guidelines, in particular the section on submitting
a proposal.

Please use the proposal label.

As for any pull request, please make sure to go through the below
checklist.

Checklist: (mark with X those which apply)

  • If an issue reporting the bug exists, I have mentioned it in the
    PR (do not bother creating the issue if all you want to do is
    fixing the bug yourself).
  • I have added/updated the SPDX-FileCopyrightText lines on top
    of any file I have edited. Format is SPDX-FileCopyrightText: Copyright {year} {entity or name} <{contact informations}>
    (Please update existing copyright lines if applicable. You can
    specify year ranges with hyphen , as in 2017-2019, and use
    commas to separate gaps, as in 2018-2020, 2022).
  • I have updated the Copyright section of the sources of the
    specification I have edited (this will show up in the text
    rendered in the PDF and other output format supported). The
    format is the same described in the previous item.
  • I have run the CI scripts (if applicable, as they might be
    tricky to set up on non-*nix machines). The sequence can be
    found in the contribution
    guidelines    . Don't
    worry if you cannot run these scripts on your machine, your
    patch will be automatically checked in the Actions of the pull
    request.
  • I have added an item that describes the changes I have
    introduced in this PR in the section Changes for next
    release     of the section Change Control/Document history
    of the document. Create Changes for next release if it does
    not exist. Notice that changes that are not modifying the
    content and rendering of the specifications (both HTML and PDF)
    do not need to be listed.
  • When modifying content and/or its rendering, I have checked the
    correctness of the result in the PDF output (please refer to the
    instructions on how to build the PDFs
    locally    ).
  • The variable draftversion is set to true in the YAML header
    of the sources of the specifications I have modified.
  • Please DO NOT add my GitHub profile to the list of contributors
    in the README page of the project.

georges-arm
georges-arm reviewed Sep 15, 2025
View reviewed changes
georges-arm
georges-arm reviewed Sep 17, 2025
View reviewed changes
main/acle.md Outdated
svuint8x2_t svaesemc[_u8_x2] (svuint8x2_t op1, svuint64_t op2, uint64_t index);
svuint8x4_t svaesemc[_u8_x4] (svuint8x4_t op1, svuint64_t op2, uint64_t index);
svuint8x2_t svaesdimc[_u8_x2] (svuint8x2_t op1, svuint64_t op2, uint64_t index);
svuint8x4_t svaesdimc[_u8_x4] (svuint8x4_t op1, svuint64_t op2, uint64_t index);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

All of these instructions are destructive encodings (the output register is also an input register), so we should have an additional parameter for all of these?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not sure I understand what you mean about one more parameter:
NAME: Zd, Zd, Zm[index]
Zd = op1
Zm = op2
index=index.
Op1 is input and output.

AESE: https://developer.arm.com/documentation/ddi0602/2025-06/SVE-Instructions/AESE--indexed---Multi-vector-AES-single-round-encryption-
AESD: https://developer.arm.com/documentation/ddi0602/2025-06/SVE-Instructions/AESD--indexed---Multi-vector-AES-single-round-decryption-
AESEMC: https://developer.arm.com/documentation/ddi0602/2025-06/SVE-Instructions/AESEMC--Multi-vector-AES-single-round-encryption-and-mix-columns-
AESDIMC: https://developer.arm.com/documentation/ddi0602/2025-06/SVE-Instructions/AESDIMC--Multi-vector-AES-single-round-decryption-and-inverse-mix-columns-

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nevermind, I had misread that the Zdn register parameters were duplicated!

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there anything I should do for this or can this be resolved?

AlfieRichardsArm
AlfieRichardsArm reviewed Sep 18, 2025
View reviewed changes
Copy link
Contributor

@AlfieRichardsArm AlfieRichardsArm left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this should use SSVE_AES instead of SSVE_AES2

I believe the two FEATs here are FEAT_SSVE_AES and FEAT_SVE_AES2. FEAT_SSVE_AES2 doesn't exist from what I can see.

CarolineConcatto
CarolineConcatto reviewed Sep 22, 2025
View reviewed changes
main/acle.md Outdated
svuint8x2_t svaesemc[_u8_x2] (svuint8x2_t op1, svuint64_t op2, uint64_t index);
svuint8x4_t svaesemc[_u8_x4] (svuint8x4_t op1, svuint64_t op2, uint64_t index);
svuint8x2_t svaesdimc[_u8_x2] (svuint8x2_t op1, svuint64_t op2, uint64_t index);
svuint8x4_t svaesdimc[_u8_x4] (svuint8x4_t op1, svuint64_t op2, uint64_t index);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not sure I understand what you mean about one more parameter:
NAME: Zd, Zd, Zm[index]
Zd = op1
Zm = op2
index=index.
Op1 is input and output.

AESE: https://developer.arm.com/documentation/ddi0602/2025-06/SVE-Instructions/AESE--indexed---Multi-vector-AES-single-round-encryption-
AESD: https://developer.arm.com/documentation/ddi0602/2025-06/SVE-Instructions/AESD--indexed---Multi-vector-AES-single-round-decryption-
AESEMC: https://developer.arm.com/documentation/ddi0602/2025-06/SVE-Instructions/AESEMC--Multi-vector-AES-single-round-encryption-and-mix-columns-
AESDIMC: https://developer.arm.com/documentation/ddi0602/2025-06/SVE-Instructions/AESDIMC--Multi-vector-AES-single-round-decryption-and-inverse-mix-columns-

@amilendra amilendra force-pushed the 2025-acle-sve-aes2 branch 3 times, most recently from dca98df to 83378b8 Compare October 1, 2025 14:15
@amilendra
Add intrinsics for the FEAT_SVE_AES2 feature introduced by the 2024 d…
e8fb4e7 
…pISA

FEAT_SVE_AES2 adds

1) SVE multi-vector Advanced Encryption Standard (AES) instructions
Instructions added: AESE, AESD, AESEMC and AESDIMC
For each instruction there are two variants
  a) Two registers variant
  b) Four registers variant

2) SVE multi-vector 128-bit polynomial multiply long instructions
Instructions added: PMULL and PMLAL

FEAT_SSVE_AES implements the same instructions but when in streaming mode.
@amilendra
Fix the AES2 review comments.
4505e29 
1.__ARM_FEATURE_SSVE_AES2 -> __ARM_FEATURE_SSVE_AES
2. Move the intrinsics to their own section under SVE2
CarolineConcatto
CarolineConcatto reviewed Oct 10, 2025
View reviewed changes
Lukacma
Lukacma reviewed Oct 13, 2025
View reviewed changes
Lukacma
Lukacma reviewed Oct 13, 2025
View reviewed changes
@amilendra
Address further AES2 review comments
3909c74 
- __ARM_FEATURE_SVE2_AES2 -> __ARM_FEATURE_SVE_AES2
- Add _lane prefix
CarolineConcatto
CarolineConcatto reviewed Oct 16, 2025
View reviewed changes
main/acle.md Outdated
and `__ARM_FEATURE_SVE2` are both nonzero.

In addition, `__ARM_FEATURE_SVE_AES2` is defined to `1` if there is hardware
support for the SVE2 AES2 (FEAT_SVE_AES2) instructions and if the associated
Copy link
Contributor

@CarolineConcatto CarolineConcatto Oct 16, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why are you saying it is support for SVE2?
I believe it should be SVE AES2.
The description for the instruction does not have sve2, does it?
https://developer.arm.com/documentation/ddi0602/2025-09/SVE-Instructions/AESD--indexed---Multi-vector-AES-single-round-decryption-?lang=en

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Typos. Fixed here and some other places as well. Thanks.

kmclaughlin-arm
kmclaughlin-arm reviewed Oct 23, 2025
View reviewed changes
main/acle.md
svuint8x2_t svaesemc_lane[_u8_x2] (svuint8x2_t op1, svuint64_t op2, uint64_t index);
svuint8x4_t svaesemc_lane[_u8_x4] (svuint8x4_t op1, svuint64_t op2, uint64_t index);
svuint8x2_t svaesdimc_lane[_u8_x2] (svuint8x2_t op1, svuint64_t op2, uint64_t index);
svuint8x4_t svaesdimc_lane[_u8_x4] (svuint8x4_t op1, svuint64_t op2, uint64_t index);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should the parameter names match the symbol names? e.g.

svuint8x4_t svaesdimc_lane[_u8_x4] (svuint8x4_t zdn, svuint64_t zm, uint64_t index);

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think that would make it easier to map the parameters to the respective register names in the ISA doc. However existing AES intrinsics follow the current convention.
https://developer.arm.com/architectures/instruction-sets/intrinsics/#q=aes
@CarolineConcatto , @Lukacma what do you think?

This was referenced Oct 27, 2025
Closed
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@CarolineConcatto CarolineConcatto CarolineConcatto left review comments

@kmclaughlin-arm kmclaughlin-arm kmclaughlin-arm left review comments

+3 more reviewers

@Lukacma Lukacma Lukacma left review comments

@georges-arm georges-arm georges-arm left review comments

@AlfieRichardsArm AlfieRichardsArm AlfieRichardsArm left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@amilendra @Lukacma @CarolineConcatto @kmclaughlin-arm @georges-arm @AlfieRichardsArm