2 # Copyright 1995-2016 The OpenSSL Project Authors. All Rights Reserved.
4 # Licensed under the OpenSSL license (the "License"). You may not use
5 # this file except in compliance with the License. You can obtain a copy
6 # in the file LICENSE in the source distribution or at
7 # https://www.openssl.org/source/license.html
10 $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1;
11 push(@INC,"${dir}","${dir}../../perlasm");
15 open STDOUT,">$output";
17 &asm_init($ARGV[0],$0);
20 for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); }
22 &external_label("OPENSSL_ia32cap_P") if ($sse2);
24 &bn_mul_add_words("bn_mul_add_words");
25 &bn_mul_words("bn_mul_words");
26 &bn_sqr_words("bn_sqr_words");
27 &bn_div_words("bn_div_words");
28 &bn_add_words("bn_add_words");
29 &bn_sub_words("bn_sub_words");
30 &bn_sub_part_words("bn_sub_part_words");
40 &function_begin_B($name,$sse2?"EXTRN\t_OPENSSL_ia32cap_P:DWORD":"");
47 &picmeup("eax","OPENSSL_ia32cap_P");
48 &bt(&DWP(0,"eax"),26);
49 &jnc(&label("maw_non_sse2"));
54 &movd("mm0",&wparam(3)); # mm0 = w
55 &pxor("mm1","mm1"); # mm1 = carry_in
56 &jmp(&label("maw_sse2_entry"));
58 &set_label("maw_sse2_unrolled",16);
59 &movd("mm3",&DWP(0,$r,"",0)); # mm3 = r[0]
60 &paddq("mm1","mm3"); # mm1 = carry_in + r[0]
61 &movd("mm2",&DWP(0,$a,"",0)); # mm2 = a[0]
62 &pmuludq("mm2","mm0"); # mm2 = w*a[0]
63 &movd("mm4",&DWP(4,$a,"",0)); # mm4 = a[1]
64 &pmuludq("mm4","mm0"); # mm4 = w*a[1]
65 &movd("mm6",&DWP(8,$a,"",0)); # mm6 = a[2]
66 &pmuludq("mm6","mm0"); # mm6 = w*a[2]
67 &movd("mm7",&DWP(12,$a,"",0)); # mm7 = a[3]
68 &pmuludq("mm7","mm0"); # mm7 = w*a[3]
69 &paddq("mm1","mm2"); # mm1 = carry_in + r[0] + w*a[0]
70 &movd("mm3",&DWP(4,$r,"",0)); # mm3 = r[1]
71 &paddq("mm3","mm4"); # mm3 = r[1] + w*a[1]
72 &movd("mm5",&DWP(8,$r,"",0)); # mm5 = r[2]
73 &paddq("mm5","mm6"); # mm5 = r[2] + w*a[2]
74 &movd("mm4",&DWP(12,$r,"",0)); # mm4 = r[3]
75 &paddq("mm7","mm4"); # mm7 = r[3] + w*a[3]
76 &movd(&DWP(0,$r,"",0),"mm1");
77 &movd("mm2",&DWP(16,$a,"",0)); # mm2 = a[4]
78 &pmuludq("mm2","mm0"); # mm2 = w*a[4]
79 &psrlq("mm1",32); # mm1 = carry0
80 &movd("mm4",&DWP(20,$a,"",0)); # mm4 = a[5]
81 &pmuludq("mm4","mm0"); # mm4 = w*a[5]
82 &paddq("mm1","mm3"); # mm1 = carry0 + r[1] + w*a[1]
83 &movd("mm6",&DWP(24,$a,"",0)); # mm6 = a[6]
84 &pmuludq("mm6","mm0"); # mm6 = w*a[6]
85 &movd(&DWP(4,$r,"",0),"mm1");
86 &psrlq("mm1",32); # mm1 = carry1
87 &movd("mm3",&DWP(28,$a,"",0)); # mm3 = a[7]
89 &pmuludq("mm3","mm0"); # mm3 = w*a[7]
90 &paddq("mm1","mm5"); # mm1 = carry1 + r[2] + w*a[2]
91 &movd("mm5",&DWP(16,$r,"",0)); # mm5 = r[4]
92 &paddq("mm2","mm5"); # mm2 = r[4] + w*a[4]
93 &movd(&DWP(8,$r,"",0),"mm1");
94 &psrlq("mm1",32); # mm1 = carry2
95 &paddq("mm1","mm7"); # mm1 = carry2 + r[3] + w*a[3]
96 &movd("mm5",&DWP(20,$r,"",0)); # mm5 = r[5]
97 &paddq("mm4","mm5"); # mm4 = r[5] + w*a[5]
98 &movd(&DWP(12,$r,"",0),"mm1");
99 &psrlq("mm1",32); # mm1 = carry3
100 &paddq("mm1","mm2"); # mm1 = carry3 + r[4] + w*a[4]
101 &movd("mm5",&DWP(24,$r,"",0)); # mm5 = r[6]
102 &paddq("mm6","mm5"); # mm6 = r[6] + w*a[6]
103 &movd(&DWP(16,$r,"",0),"mm1");
104 &psrlq("mm1",32); # mm1 = carry4
105 &paddq("mm1","mm4"); # mm1 = carry4 + r[5] + w*a[5]
106 &movd("mm5",&DWP(28,$r,"",0)); # mm5 = r[7]
107 &paddq("mm3","mm5"); # mm3 = r[7] + w*a[7]
108 &movd(&DWP(20,$r,"",0),"mm1");
109 &psrlq("mm1",32); # mm1 = carry5
110 &paddq("mm1","mm6"); # mm1 = carry5 + r[6] + w*a[6]
111 &movd(&DWP(24,$r,"",0),"mm1");
112 &psrlq("mm1",32); # mm1 = carry6
113 &paddq("mm1","mm3"); # mm1 = carry6 + r[7] + w*a[7]
114 &movd(&DWP(28,$r,"",0),"mm1");
115 &lea($r,&DWP(32,$r));
116 &psrlq("mm1",32); # mm1 = carry_out
119 &jz(&label("maw_sse2_exit"));
120 &set_label("maw_sse2_entry");
121 &test($c,0xfffffff8);
122 &jnz(&label("maw_sse2_unrolled"));
124 &set_label("maw_sse2_loop",4);
125 &movd("mm2",&DWP(0,$a)); # mm2 = a[i]
126 &movd("mm3",&DWP(0,$r)); # mm3 = r[i]
127 &pmuludq("mm2","mm0"); # a[i] *= w
129 &paddq("mm1","mm3"); # carry += r[i]
130 &paddq("mm1","mm2"); # carry += a[i]*w
131 &movd(&DWP(0,$r),"mm1"); # r[i] = carry_low
133 &psrlq("mm1",32); # carry = carry_high
135 &jnz(&label("maw_sse2_loop"));
136 &set_label("maw_sse2_exit");
137 &movd("eax","mm1"); # c = carry_out
141 &set_label("maw_non_sse2",16);
144 # function_begin prologue
158 &xor($c,$c); # clear carry
159 &mov($r,&wparam(0)); #
161 &mov("ecx",&wparam(2)); #
162 &mov($a,&wparam(1)); #
164 &and("ecx",0xfffffff8); # num / 8
165 &mov($w,&wparam(3)); #
167 &push("ecx"); # Up the stack for a tmp variable
169 &jz(&label("maw_finish"));
171 &set_label("maw_loop",16);
173 for ($i=0; $i<32; $i+=4)
175 &comment("Round $i");
177 &mov("eax",&DWP($i,$a)); # *a
179 &add("eax",$c); # L(t)+= c
180 &adc("edx",0); # H(t)+=carry
181 &add("eax",&DWP($i,$r)); # L(t)+= *r
182 &adc("edx",0); # H(t)+=carry
183 &mov(&DWP($i,$r),"eax"); # *r= L(t);
184 &mov($c,"edx"); # c= H(t);
189 &lea($a,&DWP(32,$a));
190 &lea($r,&DWP(32,$r));
191 &jnz(&label("maw_loop"));
193 &set_label("maw_finish",0);
194 &mov("ecx",&wparam(2)); # get num
196 &jnz(&label("maw_finish2")); # helps branch prediction
197 &jmp(&label("maw_end"));
199 &set_label("maw_finish2",1);
200 for ($i=0; $i<7; $i++)
202 &comment("Tail Round $i");
203 &mov("eax",&DWP($i*4,$a)); # *a
205 &add("eax",$c); # L(t)+=c
206 &adc("edx",0); # H(t)+=carry
207 &add("eax",&DWP($i*4,$r)); # L(t)+= *r
208 &adc("edx",0); # H(t)+=carry
209 &dec("ecx") if ($i != 7-1);
210 &mov(&DWP($i*4,$r),"eax"); # *r= L(t);
211 &mov($c,"edx"); # c= H(t);
212 &jz(&label("maw_end")) if ($i != 7-1);
214 &set_label("maw_end",0);
217 &pop("ecx"); # clear variable from
219 &function_end($name);
226 &function_begin_B($name,$sse2?"EXTRN\t_OPENSSL_ia32cap_P:DWORD":"");
233 &picmeup("eax","OPENSSL_ia32cap_P");
234 &bt(&DWP(0,"eax"),26);
235 &jnc(&label("mw_non_sse2"));
240 &movd("mm0",&wparam(3)); # mm0 = w
241 &pxor("mm1","mm1"); # mm1 = carry = 0
243 &set_label("mw_sse2_loop",16);
244 &movd("mm2",&DWP(0,$a)); # mm2 = a[i]
245 &pmuludq("mm2","mm0"); # a[i] *= w
247 &paddq("mm1","mm2"); # carry += a[i]*w
248 &movd(&DWP(0,$r),"mm1"); # r[i] = carry_low
250 &psrlq("mm1",32); # carry = carry_high
252 &jnz(&label("mw_sse2_loop"));
254 &movd("eax","mm1"); # return carry
257 &set_label("mw_non_sse2",16);
260 # function_begin prologue
275 &xor($c,$c); # clear carry
276 &mov($r,&wparam(0)); #
277 &mov($a,&wparam(1)); #
278 &mov($num,&wparam(2)); #
279 &mov($w,&wparam(3)); #
281 &and($num,0xfffffff8); # num / 8
282 &jz(&label("mw_finish"));
284 &set_label("mw_loop",0);
285 for ($i=0; $i<32; $i+=4)
287 &comment("Round $i");
289 &mov("eax",&DWP($i,$a,"",0)); # *a
291 &add("eax",$c); # L(t)+=c
294 &adc("edx",0); # H(t)+=carry
295 &mov(&DWP($i,$r,"",0),"eax"); # *r= L(t);
297 &mov($c,"edx"); # c= H(t);
304 &jz(&label("mw_finish"));
305 &jmp(&label("mw_loop"));
307 &set_label("mw_finish",0);
308 &mov($num,&wparam(2)); # get num
310 &jnz(&label("mw_finish2"));
311 &jmp(&label("mw_end"));
313 &set_label("mw_finish2",1);
314 for ($i=0; $i<7; $i++)
316 &comment("Tail Round $i");
317 &mov("eax",&DWP($i*4,$a,"",0));# *a
319 &add("eax",$c); # L(t)+=c
321 &adc("edx",0); # H(t)+=carry
322 &mov(&DWP($i*4,$r,"",0),"eax");# *r= L(t);
323 &mov($c,"edx"); # c= H(t);
324 &dec($num) if ($i != 7-1);
325 &jz(&label("mw_end")) if ($i != 7-1);
327 &set_label("mw_end",0);
330 &function_end($name);
337 &function_begin_B($name,$sse2?"EXTRN\t_OPENSSL_ia32cap_P:DWORD":"");
344 &picmeup("eax","OPENSSL_ia32cap_P");
345 &bt(&DWP(0,"eax"),26);
346 &jnc(&label("sqr_non_sse2"));
352 &set_label("sqr_sse2_loop",16);
353 &movd("mm0",&DWP(0,$a)); # mm0 = a[i]
354 &pmuludq("mm0","mm0"); # a[i] *= a[i]
355 &lea($a,&DWP(4,$a)); # a++
356 &movq(&QWP(0,$r),"mm0"); # r[i] = a[i]*a[i]
358 &lea($r,&DWP(8,$r)); # r += 2
359 &jnz(&label("sqr_sse2_loop"));
363 &set_label("sqr_non_sse2",16);
366 # function_begin prologue
377 &mov($r,&wparam(0)); #
378 &mov($a,&wparam(1)); #
379 &mov($num,&wparam(2)); #
381 &and($num,0xfffffff8); # num / 8
382 &jz(&label("sw_finish"));
384 &set_label("sw_loop",0);
385 for ($i=0; $i<32; $i+=4)
387 &comment("Round $i");
388 &mov("eax",&DWP($i,$a,"",0)); # *a
390 &mul("eax"); # *a * *a
391 &mov(&DWP($i*2,$r,"",0),"eax"); #
392 &mov(&DWP($i*2+4,$r,"",0),"edx");#
399 &jnz(&label("sw_loop"));
401 &set_label("sw_finish",0);
402 &mov($num,&wparam(2)); # get num
404 &jz(&label("sw_end"));
406 for ($i=0; $i<7; $i++)
408 &comment("Tail Round $i");
409 &mov("eax",&DWP($i*4,$a,"",0)); # *a
411 &mul("eax"); # *a * *a
412 &mov(&DWP($i*8,$r,"",0),"eax"); #
413 &dec($num) if ($i != 7-1);
414 &mov(&DWP($i*8+4,$r,"",0),"edx");
415 &jz(&label("sw_end")) if ($i != 7-1);
417 &set_label("sw_end",0);
419 &function_end($name);
426 &function_begin_B($name,"");
427 &mov("edx",&wparam(0)); #
428 &mov("eax",&wparam(1)); #
429 &mov("ecx",&wparam(2)); #
432 &function_end_B($name);
439 &function_begin($name,"");
450 &mov($r,&wparam(0)); # get r
451 &mov($a,&wparam(1)); # get a
452 &mov($b,&wparam(2)); # get b
453 &mov($num,&wparam(3)); # get num
454 &xor($c,$c); # clear carry
455 &and($num,0xfffffff8); # num / 8
457 &jz(&label("aw_finish"));
459 &set_label("aw_loop",0);
460 for ($i=0; $i<8; $i++)
462 &comment("Round $i");
464 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
465 &mov($tmp2,&DWP($i*4,$b,"",0)); # *b
471 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
479 &jnz(&label("aw_loop"));
481 &set_label("aw_finish",0);
482 &mov($num,&wparam(3)); # get num
484 &jz(&label("aw_end"));
486 for ($i=0; $i<7; $i++)
488 &comment("Tail Round $i");
489 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
490 &mov($tmp2,&DWP($i*4,$b,"",0));# *b
496 &dec($num) if ($i != 6);
497 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
498 &jz(&label("aw_end")) if ($i != 6);
500 &set_label("aw_end",0);
502 # &mov("eax",$c); # $c is "eax"
504 &function_end($name);
511 &function_begin($name,"");
522 &mov($r,&wparam(0)); # get r
523 &mov($a,&wparam(1)); # get a
524 &mov($b,&wparam(2)); # get b
525 &mov($num,&wparam(3)); # get num
526 &xor($c,$c); # clear carry
527 &and($num,0xfffffff8); # num / 8
529 &jz(&label("aw_finish"));
531 &set_label("aw_loop",0);
532 for ($i=0; $i<8; $i++)
534 &comment("Round $i");
536 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
537 &mov($tmp2,&DWP($i*4,$b,"",0)); # *b
543 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
551 &jnz(&label("aw_loop"));
553 &set_label("aw_finish",0);
554 &mov($num,&wparam(3)); # get num
556 &jz(&label("aw_end"));
558 for ($i=0; $i<7; $i++)
560 &comment("Tail Round $i");
561 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
562 &mov($tmp2,&DWP($i*4,$b,"",0));# *b
568 &dec($num) if ($i != 6);
569 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
570 &jz(&label("aw_end")) if ($i != 6);
572 &set_label("aw_end",0);
574 # &mov("eax",$c); # $c is "eax"
576 &function_end($name);
579 sub bn_sub_part_words
583 &function_begin($name,"");
594 &mov($r,&wparam(0)); # get r
595 &mov($a,&wparam(1)); # get a
596 &mov($b,&wparam(2)); # get b
597 &mov($num,&wparam(3)); # get num
598 &xor($c,$c); # clear carry
599 &and($num,0xfffffff8); # num / 8
601 &jz(&label("aw_finish"));
603 &set_label("aw_loop",0);
604 for ($i=0; $i<8; $i++)
606 &comment("Round $i");
608 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
609 &mov($tmp2,&DWP($i*4,$b,"",0)); # *b
615 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
623 &jnz(&label("aw_loop"));
625 &set_label("aw_finish",0);
626 &mov($num,&wparam(3)); # get num
628 &jz(&label("aw_end"));
630 for ($i=0; $i<7; $i++)
632 &comment("Tail Round $i");
633 &mov($tmp1,&DWP(0,$a,"",0)); # *a
634 &mov($tmp2,&DWP(0,$b,"",0));# *b
640 &mov(&DWP(0,$r,"",0),$tmp1); # *r
644 &dec($num) if ($i != 6);
645 &jz(&label("aw_end")) if ($i != 6);
647 &set_label("aw_end",0);
650 &je(&label("pw_end"));
652 &mov($num,&wparam(4)); # get dl
654 &je(&label("pw_end"));
655 &jge(&label("pw_pos"));
661 &and($num,0xfffffff8); # num / 8
662 &jz(&label("pw_neg_finish"));
664 &set_label("pw_neg_loop",0);
665 for ($i=0; $i<8; $i++)
667 &comment("dl<0 Round $i");
670 &mov($tmp2,&DWP($i*4,$b,"",0)); # *b
676 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
683 &jnz(&label("pw_neg_loop"));
685 &set_label("pw_neg_finish",0);
686 &mov($tmp2,&wparam(4)); # get dl
690 &jz(&label("pw_end"));
692 for ($i=0; $i<7; $i++)
694 &comment("dl<0 Tail Round $i");
696 &mov($tmp2,&DWP($i*4,$b,"",0));# *b
702 &dec($num) if ($i != 6);
703 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
704 &jz(&label("pw_end")) if ($i != 6);
707 &jmp(&label("pw_end"));
709 &set_label("pw_pos",0);
711 &and($num,0xfffffff8); # num / 8
712 &jz(&label("pw_pos_finish"));
714 &set_label("pw_pos_loop",0);
716 for ($i=0; $i<8; $i++)
718 &comment("dl>0 Round $i");
720 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
722 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
723 &jnc(&label("pw_nc".$i));
730 &jnz(&label("pw_pos_loop"));
732 &set_label("pw_pos_finish",0);
733 &mov($num,&wparam(4)); # get dl
735 &jz(&label("pw_end"));
737 for ($i=0; $i<7; $i++)
739 &comment("dl>0 Tail Round $i");
740 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
742 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
743 &jnc(&label("pw_tail_nc".$i));
744 &dec($num) if ($i != 6);
745 &jz(&label("pw_end")) if ($i != 6);
748 &jmp(&label("pw_end"));
750 &set_label("pw_nc_loop",0);
751 for ($i=0; $i<8; $i++)
753 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
754 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
755 &set_label("pw_nc".$i,0);
762 &jnz(&label("pw_nc_loop"));
764 &mov($num,&wparam(4)); # get dl
766 &jz(&label("pw_nc_end"));
768 for ($i=0; $i<7; $i++)
770 &mov($tmp1,&DWP($i*4,$a,"",0)); # *a
771 &mov(&DWP($i*4,$r,"",0),$tmp1); # *r
772 &set_label("pw_tail_nc".$i,0);
773 &dec($num) if ($i != 6);
774 &jz(&label("pw_nc_end")) if ($i != 6);
777 &set_label("pw_nc_end",0);
780 &set_label("pw_end",0);
782 # &mov("eax",$c); # $c is "eax"
784 &function_end($name);