RubyGems - pq_crypto - Versions diffs - 0.4.2 → 0.5.1 - Mend

pq_crypto 0.4.2 → 0.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (410) hide show

data/ext/pqcrypto/vendor/mlkem-native/mlkem/src/native/x86_64/src/poly_compress_d5.S ADDED Viewed

@@ -0,0 +1,220 @@
+/*
+ * Copyright (c) The mlkem-native project authors
+ * SPDX-License-Identifier: Apache-2.0 OR ISC OR MIT
+ */
+/* References
+ * ==========
+ *
+ * - [REF_AVX2]
+ *   CRYSTALS-Kyber optimized AVX2 implementation
+ *   Bos, Ducas, Kiltz, Lepoint, Lyubashevsky, Schanck, Schwabe, Seiler, Stehlé
+ *   https://github.com/pq-crystals/kyber/tree/main/avx2
+ */
+/*
+ * This file is derived from the public domain
+ * AVX2 Kyber implementation @[REF_AVX2].
+ */
+/*************************************************
+ * Name:        mlk_poly_compress_d5_avx2
+ *
+ * Description: Compression of a polynomial to 5 bits per coefficient.
+ *
+ * Arguments:   - uint8_t *r:       pointer to output byte array
+ *                                  (of length MLKEM_POLYCOMPRESSEDBYTES_D5)
+ *              - const int16_t *a: pointer to input polynomial
+ *              - const uint8_t *data: pointer to shufbidx constant
+ **************************************************/
+#include "../../../common.h"
+#if defined(MLK_ARITH_BACKEND_X86_64_DEFAULT) && \
+    !defined(MLK_CONFIG_MULTILEVEL_NO_SHARED) && \
+    (defined(MLK_CONFIG_MULTILEVEL_WITH_SHARED) || MLKEM_K == 4)
+/*
+ * WARNING: This file is auto-derived from the mlkem-native source file
+ *   dev/x86_64/src/poly_compress_d5.S using scripts/simpasm. Do not modify it directly.
+ */
+#if defined(__ELF__)
+.section .note.GNU-stack,"",@progbits
+#endif
+.text
+.balign 4
+.global MLK_ASM_NAMESPACE(poly_compress_d5_avx2)
+MLK_ASM_FN_SYMBOL(poly_compress_d5_avx2)
+        .cfi_startproc
+        movl $0x4ebf4ebf, %eax       # imm = 0x4EBF4EBF
+        vmovd %eax, %xmm0
+        vpbroadcastd %xmm0, %ymm0
+        movl $0x4000400, %eax        # imm = 0x4000400
+        vmovd %eax, %xmm1
+        vpbroadcastd %xmm1, %ymm1
+        movl $0x1f001f, %eax         # imm = 0x1F001F
+        vmovd %eax, %xmm2
+        vpbroadcastd %xmm2, %ymm2
+        movl $0x20012001, %eax       # imm = 0x20012001
+        vmovd %eax, %xmm3
+        vpbroadcastd %xmm3, %ymm3
+        movl $0x4000001, %eax        # imm = 0x4000001
+        vmovd %eax, %xmm4
+        vpbroadcastd %xmm4, %ymm4
+        movl $0xc, %eax
+        vmovq %rax, %xmm5
+        vpbroadcastq %xmm5, %ymm5
+        vmovdqa (%rdx), %ymm6
+        vmovdqa (%rsi), %ymm7
+        vmovdqa 0x20(%rsi), %ymm8
+        vpmulhw %ymm0, %ymm7, %ymm7
+        vpmulhw %ymm0, %ymm8, %ymm8
+        vpmulhrsw %ymm1, %ymm7, %ymm7
+        vpmulhrsw %ymm1, %ymm8, %ymm8
+        vpand %ymm2, %ymm7, %ymm7
+        vpand %ymm2, %ymm8, %ymm8
+        vpackuswb %ymm8, %ymm7, %ymm7
+        vpmaddubsw %ymm3, %ymm7, %ymm7
+        vpmaddwd %ymm4, %ymm7, %ymm7
+        vpsllvd %ymm5, %ymm7, %ymm7
+        vpsrlvq %ymm5, %ymm7, %ymm7
+        vpshufb %ymm6, %ymm7, %ymm7
+        vextracti128 $0x1, %ymm7, %xmm8
+        vpblendvb %xmm6, %xmm8, %xmm7, %xmm7
+        vmovdqu %xmm7, (%rdi)
+        vmovd %xmm8, 0x10(%rdi)
+        vmovdqa 0x40(%rsi), %ymm7
+        vmovdqa 0x60(%rsi), %ymm8
+        vpmulhw %ymm0, %ymm7, %ymm7
+        vpmulhw %ymm0, %ymm8, %ymm8
+        vpmulhrsw %ymm1, %ymm7, %ymm7
+        vpmulhrsw %ymm1, %ymm8, %ymm8
+        vpand %ymm2, %ymm7, %ymm7
+        vpand %ymm2, %ymm8, %ymm8
+        vpackuswb %ymm8, %ymm7, %ymm7
+        vpmaddubsw %ymm3, %ymm7, %ymm7
+        vpmaddwd %ymm4, %ymm7, %ymm7
+        vpsllvd %ymm5, %ymm7, %ymm7
+        vpsrlvq %ymm5, %ymm7, %ymm7
+        vpshufb %ymm6, %ymm7, %ymm7
+        vextracti128 $0x1, %ymm7, %xmm8
+        vpblendvb %xmm6, %xmm8, %xmm7, %xmm7
+        vmovdqu %xmm7, 0x14(%rdi)
+        vmovd %xmm8, 0x24(%rdi)
+        vmovdqa 0x80(%rsi), %ymm7
+        vmovdqa 0xa0(%rsi), %ymm8
+        vpmulhw %ymm0, %ymm7, %ymm7
+        vpmulhw %ymm0, %ymm8, %ymm8
+        vpmulhrsw %ymm1, %ymm7, %ymm7
+        vpmulhrsw %ymm1, %ymm8, %ymm8
+        vpand %ymm2, %ymm7, %ymm7
+        vpand %ymm2, %ymm8, %ymm8
+        vpackuswb %ymm8, %ymm7, %ymm7
+        vpmaddubsw %ymm3, %ymm7, %ymm7
+        vpmaddwd %ymm4, %ymm7, %ymm7
+        vpsllvd %ymm5, %ymm7, %ymm7
+        vpsrlvq %ymm5, %ymm7, %ymm7
+        vpshufb %ymm6, %ymm7, %ymm7
+        vextracti128 $0x1, %ymm7, %xmm8
+        vpblendvb %xmm6, %xmm8, %xmm7, %xmm7
+        vmovdqu %xmm7, 0x28(%rdi)
+        vmovd %xmm8, 0x38(%rdi)
+        vmovdqa 0xc0(%rsi), %ymm7
+        vmovdqa 0xe0(%rsi), %ymm8
+        vpmulhw %ymm0, %ymm7, %ymm7
+        vpmulhw %ymm0, %ymm8, %ymm8
+        vpmulhrsw %ymm1, %ymm7, %ymm7
+        vpmulhrsw %ymm1, %ymm8, %ymm8
+        vpand %ymm2, %ymm7, %ymm7
+        vpand %ymm2, %ymm8, %ymm8
+        vpackuswb %ymm8, %ymm7, %ymm7
+        vpmaddubsw %ymm3, %ymm7, %ymm7
+        vpmaddwd %ymm4, %ymm7, %ymm7
+        vpsllvd %ymm5, %ymm7, %ymm7
+        vpsrlvq %ymm5, %ymm7, %ymm7
+        vpshufb %ymm6, %ymm7, %ymm7
+        vextracti128 $0x1, %ymm7, %xmm8
+        vpblendvb %xmm6, %xmm8, %xmm7, %xmm7
+        vmovdqu %xmm7, 0x3c(%rdi)
+        vmovd %xmm8, 0x4c(%rdi)
+        vmovdqa 0x100(%rsi), %ymm7
+        vmovdqa 0x120(%rsi), %ymm8
+        vpmulhw %ymm0, %ymm7, %ymm7
+        vpmulhw %ymm0, %ymm8, %ymm8
+        vpmulhrsw %ymm1, %ymm7, %ymm7
+        vpmulhrsw %ymm1, %ymm8, %ymm8
+        vpand %ymm2, %ymm7, %ymm7
+        vpand %ymm2, %ymm8, %ymm8
+        vpackuswb %ymm8, %ymm7, %ymm7
+        vpmaddubsw %ymm3, %ymm7, %ymm7
+        vpmaddwd %ymm4, %ymm7, %ymm7
+        vpsllvd %ymm5, %ymm7, %ymm7
+        vpsrlvq %ymm5, %ymm7, %ymm7
+        vpshufb %ymm6, %ymm7, %ymm7
+        vextracti128 $0x1, %ymm7, %xmm8
+        vpblendvb %xmm6, %xmm8, %xmm7, %xmm7
+        vmovdqu %xmm7, 0x50(%rdi)
+        vmovd %xmm8, 0x60(%rdi)
+        vmovdqa 0x140(%rsi), %ymm7
+        vmovdqa 0x160(%rsi), %ymm8
+        vpmulhw %ymm0, %ymm7, %ymm7
+        vpmulhw %ymm0, %ymm8, %ymm8
+        vpmulhrsw %ymm1, %ymm7, %ymm7
+        vpmulhrsw %ymm1, %ymm8, %ymm8
+        vpand %ymm2, %ymm7, %ymm7
+        vpand %ymm2, %ymm8, %ymm8
+        vpackuswb %ymm8, %ymm7, %ymm7
+        vpmaddubsw %ymm3, %ymm7, %ymm7
+        vpmaddwd %ymm4, %ymm7, %ymm7
+        vpsllvd %ymm5, %ymm7, %ymm7
+        vpsrlvq %ymm5, %ymm7, %ymm7
+        vpshufb %ymm6, %ymm7, %ymm7
+        vextracti128 $0x1, %ymm7, %xmm8
+        vpblendvb %xmm6, %xmm8, %xmm7, %xmm7
+        vmovdqu %xmm7, 0x64(%rdi)
+        vmovd %xmm8, 0x74(%rdi)
+        vmovdqa 0x180(%rsi), %ymm7
+        vmovdqa 0x1a0(%rsi), %ymm8
+        vpmulhw %ymm0, %ymm7, %ymm7
+        vpmulhw %ymm0, %ymm8, %ymm8
+        vpmulhrsw %ymm1, %ymm7, %ymm7
+        vpmulhrsw %ymm1, %ymm8, %ymm8
+        vpand %ymm2, %ymm7, %ymm7
+        vpand %ymm2, %ymm8, %ymm8
+        vpackuswb %ymm8, %ymm7, %ymm7
+        vpmaddubsw %ymm3, %ymm7, %ymm7
+        vpmaddwd %ymm4, %ymm7, %ymm7
+        vpsllvd %ymm5, %ymm7, %ymm7
+        vpsrlvq %ymm5, %ymm7, %ymm7
+        vpshufb %ymm6, %ymm7, %ymm7
+        vextracti128 $0x1, %ymm7, %xmm8
+        vpblendvb %xmm6, %xmm8, %xmm7, %xmm7
+        vmovdqu %xmm7, 0x78(%rdi)
+        vmovd %xmm8, 0x88(%rdi)
+        vmovdqa 0x1c0(%rsi), %ymm7
+        vmovdqa 0x1e0(%rsi), %ymm8
+        vpmulhw %ymm0, %ymm7, %ymm7
+        vpmulhw %ymm0, %ymm8, %ymm8
+        vpmulhrsw %ymm1, %ymm7, %ymm7
+        vpmulhrsw %ymm1, %ymm8, %ymm8
+        vpand %ymm2, %ymm7, %ymm7
+        vpand %ymm2, %ymm8, %ymm8
+        vpackuswb %ymm8, %ymm7, %ymm7
+        vpmaddubsw %ymm3, %ymm7, %ymm7
+        vpmaddwd %ymm4, %ymm7, %ymm7
+        vpsllvd %ymm5, %ymm7, %ymm7
+        vpsrlvq %ymm5, %ymm7, %ymm7
+        vpshufb %ymm6, %ymm7, %ymm7
+        vextracti128 $0x1, %ymm7, %xmm8
+        vpblendvb %xmm6, %xmm8, %xmm7, %xmm7
+        vmovdqu %xmm7, 0x8c(%rdi)
+        vmovd %xmm8, 0x9c(%rdi)
+        retq
+        .cfi_endproc
+MLK_ASM_FN_SIZE(poly_compress_d5_avx2)
+#endif /* MLK_ARITH_BACKEND_X86_64_DEFAULT && !MLK_CONFIG_MULTILEVEL_NO_SHARED \
+          && (MLK_CONFIG_MULTILEVEL_WITH_SHARED || MLKEM_K == 4) */

data/ext/pqcrypto/vendor/mlkem-native/mlkem/src/native/x86_64/src/poly_decompress_d10.S ADDED Viewed

@@ -0,0 +1,228 @@
+/*
+ * Copyright (c) The mlkem-native project authors
+ * SPDX-License-Identifier: Apache-2.0 OR ISC OR MIT
+ */
+/* References
+ * ==========
+ *
+ * - [REF_AVX2]
+ *   CRYSTALS-Kyber optimized AVX2 implementation
+ *   Bos, Ducas, Kiltz, Lepoint, Lyubashevsky, Schanck, Schwabe, Seiler, Stehlé
+ *   https://github.com/pq-crystals/kyber/tree/main/avx2
+ */
+/*
+ * This file is derived from the public domain
+ * AVX2 Kyber implementation @[REF_AVX2].
+ */
+/*************************************************
+ * Name:        mlk_poly_decompress_d10_avx2
+ *
+ * Description: Decompression of a polynomial from 10 bits per coefficient.
+ *
+ * Arguments:   - int16_t *r:       pointer to output polynomial
+ *              - const uint8_t *a: pointer to input byte array
+ *                                  (of length MLKEM_POLYCOMPRESSEDBYTES_D10)
+ *              - const uint8_t *data: pointer to shufbidx constant
+ **************************************************/
+#include "../../../common.h"
+#if defined(MLK_ARITH_BACKEND_X86_64_DEFAULT) && \
+    !defined(MLK_CONFIG_MULTILEVEL_NO_SHARED) && \
+    (defined(MLK_CONFIG_MULTILEVEL_WITH_SHARED) || MLKEM_K == 2 || MLKEM_K == 3)
+/*
+ * WARNING: This file is auto-derived from the mlkem-native source file
+ *   dev/x86_64/src/poly_decompress_d10.S using scripts/simpasm. Do not modify it directly.
+ */
+#if defined(__ELF__)
+.section .note.GNU-stack,"",@progbits
+#endif
+.text
+.balign 4
+.global MLK_ASM_NAMESPACE(poly_decompress_d10_avx2)
+MLK_ASM_FN_SYMBOL(poly_decompress_d10_avx2)
+        .cfi_startproc
+        movl $0xd013404, %eax        # imm = 0xD013404
+        vmovd %eax, %xmm0
+        vpbroadcastd %xmm0, %ymm0
+        movl $0x4, %eax
+        vmovq %rax, %xmm1
+        vpbroadcastq %xmm1, %ymm1
+        movl $0x7fe01ff8, %eax       # imm = 0x7FE01FF8
+        vmovd %eax, %xmm2
+        vpbroadcastd %xmm2, %ymm2
+        vmovdqa (%rdx), %ymm3
+        vmovdqu (%rsi), %xmm4
+        vmovd 0x10(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, (%rdi)
+        vmovdqu 0x14(%rsi), %xmm4
+        vmovd 0x24(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x20(%rdi)
+        vmovdqu 0x28(%rsi), %xmm4
+        vmovd 0x38(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x40(%rdi)
+        vmovdqu 0x3c(%rsi), %xmm4
+        vmovd 0x4c(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x60(%rdi)
+        vmovdqu 0x50(%rsi), %xmm4
+        vmovd 0x60(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x80(%rdi)
+        vmovdqu 0x64(%rsi), %xmm4
+        vmovd 0x74(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0xa0(%rdi)
+        vmovdqu 0x78(%rsi), %xmm4
+        vmovd 0x88(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0xc0(%rdi)
+        vmovdqu 0x8c(%rsi), %xmm4
+        vmovd 0x9c(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0xe0(%rdi)
+        vmovdqu 0xa0(%rsi), %xmm4
+        vmovd 0xb0(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x100(%rdi)
+        vmovdqu 0xb4(%rsi), %xmm4
+        vmovd 0xc4(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x120(%rdi)
+        vmovdqu 0xc8(%rsi), %xmm4
+        vmovd 0xd8(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x140(%rdi)
+        vmovdqu 0xdc(%rsi), %xmm4
+        vmovd 0xec(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x160(%rdi)
+        vmovdqu 0xf0(%rsi), %xmm4
+        vmovd 0x100(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x180(%rdi)
+        vmovdqu 0x104(%rsi), %xmm4
+        vmovd 0x114(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x1a0(%rdi)
+        vmovdqu 0x118(%rsi), %xmm4
+        vmovd 0x128(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x1c0(%rdi)
+        vmovdqu 0x12c(%rsi), %xmm4
+        vmovd 0x13c(%rsi), %xmm5
+        vinserti128 $0x1, %xmm5, %ymm4, %ymm4
+        vpermq $0x94, %ymm4, %ymm4     # ymm4 = ymm4[0,1,1,2]
+        vpshufb %ymm3, %ymm4, %ymm4
+        vpsllvd %ymm1, %ymm4, %ymm4
+        vpsrlw $0x1, %ymm4, %ymm4
+        vpand %ymm2, %ymm4, %ymm4
+        vpmulhrsw %ymm0, %ymm4, %ymm4
+        vmovdqu %ymm4, 0x1e0(%rdi)
+        retq
+        .cfi_endproc
+MLK_ASM_FN_SIZE(poly_decompress_d10_avx2)
+#endif /* MLK_ARITH_BACKEND_X86_64_DEFAULT && !MLK_CONFIG_MULTILEVEL_NO_SHARED \
+          && (MLK_CONFIG_MULTILEVEL_WITH_SHARED || MLKEM_K == 2 || MLKEM_K == \
+          3) */