]> git.proxmox.com Git - ceph.git/blob - ceph/src/crypto/isa-l/isa-l_crypto/sha1_mb/sha1_mb_x16_avx512.asm
projects / ceph.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
add subtree-ish sources for 12.0.3
[ceph.git] / ceph / src / crypto / isa-l / isa-l_crypto / sha1_mb / sha1_mb_x16_avx512.asm
1 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
2 ; Copyright(c) 2011-2016 Intel Corporation All rights reserved.
3 ;
4 ; Redistribution and use in source and binary forms, with or without
5 ; modification, are permitted provided that the following conditions
6 ; are met:
7 ; * Redistributions of source code must retain the above copyright
8 ; notice, this list of conditions and the following disclaimer.
9 ; * Redistributions in binary form must reproduce the above copyright
10 ; notice, this list of conditions and the following disclaimer in
11 ; the documentation and/or other materials provided with the
12 ; distribution.
13 ; * Neither the name of Intel Corporation nor the names of its
14 ; contributors may be used to endorse or promote products derived
15 ; from this software without specific prior written permission.
16 ;
17 ; THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
18 ; "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
19 ; LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
20 ; A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
21 ; OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
22 ; SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
23 ; LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
24 ; DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
25 ; THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
26 ; (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
27 ; OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
28 ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
29
30 %include "sha1_mb_mgr_datastruct.asm"
31 %include "reg_sizes.asm"
32
33 %ifdef HAVE_AS_KNOWS_AVX512
34
35 default rel
36
37 ;; code to compute oct SHA1 using AVX-512
38 ;; outer calling routine takes care of save and restore of XMM registers
39
40 ;; Function clobbers: rax, rcx, rdx, rbx, rsi, rdi, r9-r15; zmm0-31
41 ;; Windows clobbers: rax rbx rdx rsi rdi r9 r10 r11 r12 r13 r14 r15
42 ;; Windows preserves: rcx rbp r8
43 ;;
44 ;; Linux clobbers: rax rbx rcx rdx rsi r9 r10 r11 r12 r13 r14 r15
45 ;; Linux preserves: rdi rbp r8
46 ;;
47 ;; clobbers zmm0-31
48
49 %define APPEND(a,b) a %+ b
50
51 %ifidn __OUTPUT_FORMAT__, win64
52 %define arg1 rcx ; arg0 preserved
53 %define arg2 rdx ; arg1
54 %define reg3 r8 ; arg2 preserved
55 %define reg4 r9 ; arg3
56 %define var1 rdi
57 %define var2 rsi
58 %define local_func_decl(func_name) global func_name
59 %else
60 %define arg1 rdi ; arg0
61 %define arg2 rsi ; arg1
62 %define var1 rdx ; arg2
63 %define var2 rcx ; arg3
64 %define local_func_decl(func_name) global func_name:function internal
65 %endif
66
67 %define state arg1
68 %define num_blks arg2
69
70 %define IN (state + _data_ptr)
71 %define DIGEST state
72 %define SIZE num_blks
73
74 %define IDX var1
75
76 %define A zmm0
77 %define B zmm1
78 %define C zmm2
79 %define D zmm3
80 %define E zmm4
81 %define KT zmm5
82 %define AA zmm6
83 %define BB zmm7
84 %define CC zmm8
85 %define DD zmm9
86 %define EE zmm10
87 %define TMP0 zmm11
88 %define TMP1 zmm12
89 %define TMP2 zmm13
90
91 %define W0 zmm16
92 %define W1 zmm17
93 %define W2 zmm18
94 %define W3 zmm19
95 %define W4 zmm20
96 %define W5 zmm21
97 %define W6 zmm22
98 %define W7 zmm23
99 %define W8 zmm24
100 %define W9 zmm25
101 %define W10 zmm26
102 %define W11 zmm27
103 %define W12 zmm28
104 %define W13 zmm29
105 %define W14 zmm30
106 %define W15 zmm31
107
108 %define inp0 r9
109 %define inp1 r10
110 %define inp2 r11
111 %define inp3 r12
112 %define inp4 r13
113 %define inp5 r14
114 %define inp6 r15
115 %define inp7 rax
116
117 %macro TRANSPOSE16 18
118 %define %%r0 %1
119 %define %%r1 %2
120 %define %%r2 %3
121 %define %%r3 %4
122 %define %%r4 %5
123 %define %%r5 %6
124 %define %%r6 %7
125 %define %%r7 %8
126 %define %%r8 %9
127 %define %%r9 %10
128 %define %%r10 %11
129 %define %%r11 %12
130 %define %%r12 %13
131 %define %%r13 %14
132 %define %%r14 %15
133 %define %%r15 %16
134 %define %%t0 %17
135 %define %%t1 %18
136
137 ; r0 = {a15 a14 a13 a12 a11 a10 a9 a8 a7 a6 a5 a4 a3 a2 a1 a0}
138 ; r1 = {b15 b14 b13 b12 b11 b10 b9 b8 b7 b6 b5 b4 b3 b2 b1 b0}
139 ; r2 = {c15 c14 c13 c12 c11 c10 c9 c8 c7 c6 c5 c4 c3 c2 c1 c0}
140 ; r3 = {d15 d14 d13 d12 d11 d10 d9 d8 d7 d6 d5 d4 d3 d2 d1 d0}
141 ; r4 = {e15 e14 e13 e12 e11 e10 e9 e8 e7 e6 e5 e4 e3 e2 e1 e0}
142 ; r5 = {f15 f14 f13 f12 f11 f10 f9 f8 f7 f6 f5 f4 f3 f2 f1 f0}
143 ; r6 = {g15 g14 g13 g12 g11 g10 g9 g8 g7 g6 g5 g4 g3 g2 g1 g0}
144 ; r7 = {h15 h14 h13 h12 h11 h10 h9 h8 h7 h6 h5 h4 h3 h2 h1 h0}
145 ; r8 = {i15 i14 i13 i12 i11 i10 i9 i8 i7 i6 i5 i4 i3 i2 i1 i0}
146 ; r9 = {j15 j14 j13 j12 j11 j10 j9 j8 j7 j6 j5 j4 j3 j2 j1 j0}
147 ; r10 = {k15 k14 k13 k12 k11 k10 k9 k8 k7 k6 k5 k4 k3 k2 k1 k0}
148 ; r11 = {l15 l14 l13 l12 l11 l10 l9 l8 l7 l6 l5 l4 l3 l2 l1 l0}
149 ; r12 = {m15 m14 m13 m12 m11 m10 m9 m8 m7 m6 m5 m4 m3 m2 m1 m0}
150 ; r13 = {n15 n14 n13 n12 n11 n10 n9 n8 n7 n6 n5 n4 n3 n2 n1 n0}
151 ; r14 = {o15 o14 o13 o12 o11 o10 o9 o8 o7 o6 o5 o4 o3 o2 o1 o0}
152 ; r15 = {p15 p14 p13 p12 p11 p10 p9 p8 p7 p6 p5 p4 p3 p2 p1 p0}
153
154 ; r0 = {p0 o0 n0 m0 l0 k0 j0 i0 h0 g0 f0 e0 d0 c0 b0 a0}
155 ; r1 = {p1 o1 n1 m1 l1 k1 j1 i1 h1 g1 f1 e1 d1 c1 b1 a1}
156 ; r2 = {p2 o2 n2 m2 l2 k2 j2 i2 h2 g2 f2 e2 d2 c2 b2 a2}
157 ; r3 = {p3 o3 n3 m3 l3 k3 j3 i3 h3 g3 f3 e3 d3 c3 b3 a3}
158 ; r4 = {p4 o4 n4 m4 l4 k4 j4 i4 h4 g4 f4 e4 d4 c4 b4 a4}
159 ; r5 = {p5 o5 n5 m5 l5 k5 j5 i5 h5 g5 f5 e5 d5 c5 b5 a5}
160 ; r6 = {p6 o6 n6 m6 l6 k6 j6 i6 h6 g6 f6 e6 d6 c6 b6 a6}
161 ; r7 = {p7 o7 n7 m7 l7 k7 j7 i7 h7 g7 f7 e7 d7 c7 b7 a7}
162 ; r8 = {p8 o8 n8 m8 l8 k8 j8 i8 h8 g8 f8 e8 d8 c8 b8 a8}
163 ; r9 = {p9 o9 n9 m9 l9 k9 j9 i9 h9 g9 f9 e9 d9 c9 b9 a9}
164 ; r10 = {p10 o10 n10 m10 l10 k10 j10 i10 h10 g10 f10 e10 d10 c10 b10 a10}
165 ; r11 = {p11 o11 n11 m11 l11 k11 j11 i11 h11 g11 f11 e11 d11 c11 b11 a11}
166 ; r12 = {p12 o12 n12 m12 l12 k12 j12 i12 h12 g12 f12 e12 d12 c12 b12 a12}
167 ; r13 = {p13 o13 n13 m13 l13 k13 j13 i13 h13 g13 f13 e13 d13 c13 b13 a13}
168 ; r14 = {p14 o14 n14 m14 l14 k14 j14 i14 h14 g14 f14 e14 d14 c14 b14 a14}
169 ; r15 = {p15 o15 n15 m15 l15 k15 j15 i15 h15 g15 f15 e15 d15 c15 b15 a15}
170
171
172 ; process top half (r0..r3) {a...d}
173 vshufps %%t0, %%r0, %%r1, 0x44 ; t0 = {b13 b12 a13 a12 b9 b8 a9 a8 b5 b4 a5 a4 b1 b0 a1 a0}
174 vshufps %%r0, %%r0, %%r1, 0xEE ; r0 = {b15 b14 a15 a14 b11 b10 a11 a10 b7 b6 a7 a6 b3 b2 a3 a2}
175 vshufps %%t1, %%r2, %%r3, 0x44 ; t1 = {d13 d12 c13 c12 d9 d8 c9 c8 d5 d4 c5 c4 d1 d0 c1 c0}
176 vshufps %%r2, %%r2, %%r3, 0xEE ; r2 = {d15 d14 c15 c14 d11 d10 c11 c10 d7 d6 c7 c6 d3 d2 c3 c2}
177
178 vshufps %%r3, %%t0, %%t1, 0xDD ; r3 = {d13 c13 b13 a13 d9 c9 b9 a9 d5 c5 b5 a5 d1 c1 b1 a1}
179 vshufps %%r1, %%r0, %%r2, 0x88 ; r1 = {d14 c14 b14 a14 d10 c10 b10 a10 d6 c6 b6 a6 d2 c2 b2 a2}
180 vshufps %%r0, %%r0, %%r2, 0xDD ; r0 = {d15 c15 b15 a15 d11 c11 b11 a11 d7 c7 b7 a7 d3 c3 b3 a3}
181 vshufps %%t0, %%t0, %%t1, 0x88 ; t0 = {d12 c12 b12 a12 d8 c8 b8 a8 d4 c4 b4 a4 d0 c0 b0 a0}
182
183 ; use r2 in place of t0
184 vshufps %%r2, %%r4, %%r5, 0x44 ; r2 = {f13 f12 e13 e12 f9 f8 e9 e8 f5 f4 e5 e4 f1 f0 e1 e0}
185 vshufps %%r4, %%r4, %%r5, 0xEE ; r4 = {f15 f14 e15 e14 f11 f10 e11 e10 f7 f6 e7 e6 f3 f2 e3 e2}
186 vshufps %%t1, %%r6, %%r7, 0x44 ; t1 = {h13 h12 g13 g12 h9 h8 g9 g8 h5 h4 g5 g4 h1 h0 g1 g0}
187 vshufps %%r6, %%r6, %%r7, 0xEE ; r6 = {h15 h14 g15 g14 h11 h10 g11 g10 h7 h6 g7 g6 h3 h2 g3 g2}
188
189 vshufps %%r7, %%r2, %%t1, 0xDD ; r7 = {h13 g13 f13 e13 h9 g9 f9 e9 h5 g5 f5 e5 h1 g1 f1 e1}
190 vshufps %%r5, %%r4, %%r6, 0x88 ; r5 = {h14 g14 f14 e14 h10 g10 f10 e10 h6 g6 f6 e6 h2 g2 f2 e2}
191 vshufps %%r4, %%r4, %%r6, 0xDD ; r4 = {h15 g15 f15 e15 h11 g11 f11 e11 h7 g7 f7 e7 h3 g3 f3 e3}
192 vshufps %%r2, %%r2, %%t1, 0x88 ; r2 = {h12 g12 f12 e12 h8 g8 f8 e8 h4 g4 f4 e4 h0 g0 f0 e0}
193
194 ; use r6 in place of t0
195 vshufps %%r6, %%r8, %%r9, 0x44 ; r6 = {j13 j12 i13 i12 j9 j8 i9 i8 j5 j4 i5 i4 j1 j0 i1 i0}
196 vshufps %%r8, %%r8, %%r9, 0xEE ; r8 = {j15 j14 i15 i14 j11 j10 i11 i10 j7 j6 i7 i6 j3 j2 i3 i2}
197 vshufps %%t1, %%r10, %%r11, 0x44 ; t1 = {l13 l12 k13 k12 l9 l8 k9 k8 l5 l4 k5 k4 l1 l0 k1 k0}
198 vshufps %%r10, %%r10, %%r11, 0xEE ; r10 = {l15 l14 k15 k14 l11 l10 k11 k10 l7 l6 k7 k6 l3 l2 k3 k2}
199
200 vshufps %%r11, %%r6, %%t1, 0xDD ; r11 = {l13 k13 j13 113 l9 k9 j9 i9 l5 k5 j5 i5 l1 k1 j1 i1}
201 vshufps %%r9, %%r8, %%r10, 0x88 ; r9 = {l14 k14 j14 114 l10 k10 j10 i10 l6 k6 j6 i6 l2 k2 j2 i2}
202 vshufps %%r8, %%r8, %%r10, 0xDD ; r8 = {l15 k15 j15 115 l11 k11 j11 i11 l7 k7 j7 i7 l3 k3 j3 i3}
203 vshufps %%r6, %%r6, %%t1, 0x88 ; r6 = {l12 k12 j12 112 l8 k8 j8 i8 l4 k4 j4 i4 l0 k0 j0 i0}
204
205 ; use r10 in place of t0
206 vshufps %%r10, %%r12, %%r13, 0x44 ; r10 = {n13 n12 m13 m12 n9 n8 m9 m8 n5 n4 m5 m4 n1 n0 a1 m0}
207 vshufps %%r12, %%r12, %%r13, 0xEE ; r12 = {n15 n14 m15 m14 n11 n10 m11 m10 n7 n6 m7 m6 n3 n2 a3 m2}
208 vshufps %%t1, %%r14, %%r15, 0x44 ; t1 = {p13 p12 013 012 p9 p8 09 08 p5 p4 05 04 p1 p0 01 00}
209 vshufps %%r14, %%r14, %%r15, 0xEE ; r14 = {p15 p14 015 014 p11 p10 011 010 p7 p6 07 06 p3 p2 03 02}
210
211 vshufps %%r15, %%r10, %%t1, 0xDD ; r15 = {p13 013 n13 m13 p9 09 n9 m9 p5 05 n5 m5 p1 01 n1 m1}
212 vshufps %%r13, %%r12, %%r14, 0x88 ; r13 = {p14 014 n14 m14 p10 010 n10 m10 p6 06 n6 m6 p2 02 n2 m2}
213 vshufps %%r12, %%r12, %%r14, 0xDD ; r12 = {p15 015 n15 m15 p11 011 n11 m11 p7 07 n7 m7 p3 03 n3 m3}
214 vshufps %%r10, %%r10, %%t1, 0x88 ; r10 = {p12 012 n12 m12 p8 08 n8 m8 p4 04 n4 m4 p0 00 n0 m0}
215
216 ;; At this point, the registers that contain interesting data are:
217 ;; t0, r3, r1, r0, r2, r7, r5, r4, r6, r11, r9, r8, r10, r15, r13, r12
218 ;; Can use t1 and r14 as scratch registers
219
220 vmovdqa32 %%r14, [PSHUFFLE_TRANSPOSE16_MASK1]
221 vpermi2q %%r14, %%t0, %%r2 ; r14 = {h8 g8 f8 e8 d8 c8 b8 a8 h0 g0 f0 e0 d0 c0 b0 a0}
222 vmovdqa32 %%t1, [PSHUFFLE_TRANSPOSE16_MASK2]
223 vpermi2q %%t1, %%t0, %%r2 ; t1 = {h12 g12 f12 e12 d12 c12 b12 a12 h4 g4 f4 e4 d4 c4 b4 a4}
224
225 vmovdqa32 %%r2, [PSHUFFLE_TRANSPOSE16_MASK1]
226 vpermi2q %%r2, %%r3, %%r7 ; r2 = {h9 g9 f9 e9 d9 c9 b9 a9 h1 g1 f1 e1 d1 c1 b1 a1}
227 vmovdqa32 %%t0, [PSHUFFLE_TRANSPOSE16_MASK2]
228 vpermi2q %%t0, %%r3, %%r7 ; t0 = {h13 g13 f13 e13 d13 c13 b13 a13 h5 g5 f5 e5 d5 c5 b5 a5}
229
230 vmovdqa32 %%r3, [PSHUFFLE_TRANSPOSE16_MASK1]
231 vpermi2q %%r3, %%r1, %%r5 ; r3 = {h10 g10 f10 e10 d10 c10 b10 a10 h2 g2 f2 e2 d2 c2 b2 a2}
232 vmovdqa32 %%r7, [PSHUFFLE_TRANSPOSE16_MASK2]
233 vpermi2q %%r7, %%r1, %%r5 ; r7 = {h14 g14 f14 e14 d14 c14 b14 a14 h6 g6 f6 e6 d6 c6 b6 a6}
234
235 vmovdqa32 %%r1, [PSHUFFLE_TRANSPOSE16_MASK1]
236 vpermi2q %%r1, %%r0, %%r4 ; r1 = {h11 g11 f11 e11 d11 c11 b11 a11 h3 g3 f3 e3 d3 c3 b3 a3}
237 vmovdqa32 %%r5, [PSHUFFLE_TRANSPOSE16_MASK2]
238 vpermi2q %%r5, %%r0, %%r4 ; r5 = {h15 g15 f15 e15 d15 c15 b15 a15 h7 g7 f7 e7 d7 c7 b7 a7}
239
240 vmovdqa32 %%r0, [PSHUFFLE_TRANSPOSE16_MASK1]
241 vpermi2q %%r0, %%r6, %%r10 ; r0 = {p8 o8 n8 m8 l8 k8 j8 i8 p0 o0 n0 m0 l0 k0 j0 i0}
242 vmovdqa32 %%r4, [PSHUFFLE_TRANSPOSE16_MASK2]
243 vpermi2q %%r4, %%r6, %%r10 ; r4 = {p12 o12 n12 m12 l12 k12 j12 i12 p4 o4 n4 m4 l4 k4 j4 i4}
244
245 vmovdqa32 %%r6, [PSHUFFLE_TRANSPOSE16_MASK1]
246 vpermi2q %%r6, %%r11, %%r15 ; r6 = {p9 o9 n9 m9 l9 k9 j9 i9 p1 o1 n1 m1 l1 k1 j1 i1}
247 vmovdqa32 %%r10, [PSHUFFLE_TRANSPOSE16_MASK2]
248 vpermi2q %%r10, %%r11, %%r15 ; r10 = {p13 o13 n13 m13 l13 k13 j13 i13 p5 o5 n5 m5 l5 k5 j5 i5}
249
250 vmovdqa32 %%r11, [PSHUFFLE_TRANSPOSE16_MASK1]
251 vpermi2q %%r11, %%r9, %%r13 ; r11 = {p10 o10 n10 m10 l10 k10 j10 i10 p2 o2 n2 m2 l2 k2 j2 i2}
252 vmovdqa32 %%r15, [PSHUFFLE_TRANSPOSE16_MASK2]
253 vpermi2q %%r15, %%r9, %%r13 ; r15 = {p14 o14 n14 m14 l14 k14 j14 i14 p6 o6 n6 m6 l6 k6 j6 i6}
254
255 vmovdqa32 %%r9, [PSHUFFLE_TRANSPOSE16_MASK1]
256 vpermi2q %%r9, %%r8, %%r12 ; r9 = {p11 o11 n11 m11 l11 k11 j11 i11 p3 o3 n3 m3 l3 k3 j3 i3}
257 vmovdqa32 %%r13, [PSHUFFLE_TRANSPOSE16_MASK2]
258 vpermi2q %%r13, %%r8, %%r12 ; r13 = {p15 o15 n15 m15 l15 k15 j15 i15 p7 o7 n7 m7 l7 k7 j7 i7}
259
260 ;; At this point r8 and r12 can be used as scratch registers
261
262 vshuff64x2 %%r8, %%r14, %%r0, 0xEE ; r8 = {p8 o8 n8 m8 l8 k8 j8 i8 h8 g8 f8 e8 d8 c8 b8 a8}
263 vshuff64x2 %%r0, %%r14, %%r0, 0x44 ; r0 = {p0 o0 n0 m0 l0 k0 j0 i0 h0 g0 f0 e0 d0 c0 b0 a0}
264
265 vshuff64x2 %%r12, %%t1, %%r4, 0xEE ; r12 = {p12 o12 n12 m12 l12 k12 j12 i12 h12 g12 f12 e12 d12 c12 b12 a12}
266 vshuff64x2 %%r4, %%t1, %%r4, 0x44 ; r4 = {p4 o4 n4 m4 l4 k4 j4 i4 h4 g4 f4 e4 d4 c4 b4 a4}
267
268 vshuff64x2 %%r14, %%r7, %%r15, 0xEE ; r14 = {p14 o14 n14 m14 l14 k14 j14 i14 h14 g14 f14 e14 d14 c14 b14 a14}
269 vshuff64x2 %%t1, %%r7, %%r15, 0x44 ; t1 = {p6 o6 n6 m6 l6 k6 j6 i6 h6 g6 f6 e6 d6 c6 b6 a6}
270
271 vshuff64x2 %%r15, %%r5, %%r13, 0xEE ; r15 = {p15 o15 n15 m15 l15 k15 j15 i15 h15 g15 f15 e15 d15 c15 b15 a15}
272 vshuff64x2 %%r7, %%r5, %%r13, 0x44 ; r7 = {p7 o7 n7 m7 l7 k7 j7 i7 h7 g7 f7 e7 d7 c7 b7 a7}
273
274 vshuff64x2 %%r13, %%t0, %%r10, 0xEE ; r13 = {p13 o13 n13 m13 l13 k13 j13 i13 h13 g13 f13 e13 d13 c13 b13 a13}
275 vshuff64x2 %%r5, %%t0, %%r10, 0x44 ; r5 = {p5 o5 n5 m5 l5 k5 j5 i5 h5 g5 f5 e5 d5 c5 b5 a5}
276
277 vshuff64x2 %%r10, %%r3, %%r11, 0xEE ; r10 = {p10 o10 n10 m10 l10 k10 j10 i10 h10 g10 f10 e10 d10 c10 b10 a10}
278 vshuff64x2 %%t0, %%r3, %%r11, 0x44 ; t0 = {p2 o2 n2 m2 l2 k2 j2 i2 h2 g2 f2 e2 d2 c2 b2 a2}
279
280 vshuff64x2 %%r11, %%r1, %%r9, 0xEE ; r11 = {p11 o11 n11 m11 l11 k11 j11 i11 h11 g11 f11 e11 d11 c11 b11 a11}
281 vshuff64x2 %%r3, %%r1, %%r9, 0x44 ; r3 = {p3 o3 n3 m3 l3 k3 j3 i3 h3 g3 f3 e3 d3 c3 b3 a3}
282
283 vshuff64x2 %%r9, %%r2, %%r6, 0xEE ; r9 = {p9 o9 n9 m9 l9 k9 j9 i9 h9 g9 f9 e9 d9 c9 b9 a9}
284 vshuff64x2 %%r1, %%r2, %%r6, 0x44 ; r1 = {p1 o1 n1 m1 l1 k1 j1 i1 h1 g1 f1 e1 d1 c1 b1 a1}
285
286 vmovdqa32 %%r2, %%t0 ; r2 = {p2 o2 n2 m2 l2 k2 j2 i2 h2 g2 f2 e2 d2 c2 b2 a2}
287 vmovdqa32 %%r6, %%t1 ; r6 = {p6 o6 n6 m6 l6 k6 j6 i6 h6 g6 f6 e6 d6 c6 b6 a6}
288
289 %endmacro
290
291 %macro ROTATE_ARGS 0
292 %xdefine TMP_ E
293 %xdefine E D
294 %xdefine D C
295 %xdefine C B
296 %xdefine B A
297 %xdefine A TMP_
298 %endm
299
300 %macro PROCESS_LOOP 2
301 %define %%WT %1
302 %define %%F_IMMED %2
303
304 ; T = ROTL_5(A) + Ft(B,C,D) + E + Kt + Wt
305 ; E=D, D=C, C=ROTL_30(B), B=A, A=T
306
307 ; Ft
308 ; 0-19 Ch(B,C,D) = (B&C) ^ (~B&D)
309 ; 20-39, 60-79 Parity(B,C,D) = B ^ C ^ D
310 ; 40-59 Maj(B,C,D) = (B&C) ^ (B&D) ^ (C&D)
311
312 vmovdqa32 TMP1, B ; Copy B
313 vpaddd E, E, %%WT ; E = E + Wt
314 vpternlogd TMP1, C, D, %%F_IMMED ; TMP1 = Ft(B,C,D)
315 vpaddd E, E, KT ; E = E + Wt + Kt
316 vprold TMP0, A, 5 ; TMP0 = ROTL_5(A)
317 vpaddd E, E, TMP1 ; E = Ft(B,C,D) + E + Kt + Wt
318 vprold B, B, 30 ; B = ROTL_30(B)
319 vpaddd E, E, TMP0 ; E = T
320
321 ROTATE_ARGS
322 %endmacro
323
324 %macro MSG_SCHED_ROUND_16_79 4
325 %define %%WT %1
326 %define %%WTp2 %2
327 %define %%WTp8 %3
328 %define %%WTp13 %4
329 ; Wt = ROTL_1(Wt-3 ^ Wt-8 ^ Wt-14 ^ Wt-16)
330 ; Wt+16 = ROTL_1(Wt+13 ^ Wt+8 ^ Wt+2 ^ Wt)
331 vpternlogd %%WT, %%WTp2, %%WTp8, 0x96
332 vpxord %%WT, %%WT, %%WTp13
333 vprold %%WT, %%WT, 1
334 %endmacro
335
336 ; Note this is reading in a block of data for one lane
337 ; When all 16 are read, the data must be transposed to build msg schedule
338 %macro MSG_SCHED_ROUND_00_15 2
339 %define %%WT %1
340 %define %%OFFSET %2
341 mov inp0, [IN + (%%OFFSET*8)]
342 vmovups %%WT, [inp0+IDX]
343 %endmacro
344
345 align 64
346
347 ; void sha1_mb_x16_avx512(SHA1_MB_ARGS_X16, uint32_t size)
348 ; arg 1 : pointer to input data
349 ; arg 2 : size (in blocks) ;; assumed to be >= 1
350 local_func_decl(sha1_mb_x16_avx512)
351 sha1_mb_x16_avx512:
352 ;; Initialize digests
353 vmovups A, [DIGEST + 0*64]
354 vmovups B, [DIGEST + 1*64]
355 vmovups C, [DIGEST + 2*64]
356 vmovups D, [DIGEST + 3*64]
357 vmovups E, [DIGEST + 4*64]
358
359 xor IDX, IDX
360
361 ;; transpose input onto stack
362 mov inp0, [IN + 0*8]
363 mov inp1, [IN + 1*8]
364 mov inp2, [IN + 2*8]
365 mov inp3, [IN + 3*8]
366 mov inp4, [IN + 4*8]
367 mov inp5, [IN + 5*8]
368 mov inp6, [IN + 6*8]
369 mov inp7, [IN + 7*8]
370
371 vmovups W0,[inp0+IDX]
372 vmovups W1,[inp1+IDX]
373 vmovups W2,[inp2+IDX]
374 vmovups W3,[inp3+IDX]
375 vmovups W4,[inp4+IDX]
376 vmovups W5,[inp5+IDX]
377 vmovups W6,[inp6+IDX]
378 vmovups W7,[inp7+IDX]
379
380 mov inp0, [IN + 8*8]
381 mov inp1, [IN + 9*8]
382 mov inp2, [IN +10*8]
383 mov inp3, [IN +11*8]
384 mov inp4, [IN +12*8]
385 mov inp5, [IN +13*8]
386 mov inp6, [IN +14*8]
387 mov inp7, [IN +15*8]
388
389 vmovups W8, [inp0+IDX]
390 vmovups W9, [inp1+IDX]
391 vmovups W10,[inp2+IDX]
392 vmovups W11,[inp3+IDX]
393 vmovups W12,[inp4+IDX]
394 vmovups W13,[inp5+IDX]
395 vmovups W14,[inp6+IDX]
396 vmovups W15,[inp7+IDX]
397
398 lloop:
399 vmovdqa32 TMP2, [PSHUFFLE_BYTE_FLIP_MASK]
400
401 add IDX, 64
402
403 TRANSPOSE16 W0, W1, W2, W3, W4, W5, W6, W7, W8, W9, W10, W11, W12, W13, W14, W15, TMP0, TMP1
404
405 %assign I 0
406 %rep 16
407 vpshufb APPEND(W,I), APPEND(W,I), TMP2
408 %assign I (I+1)
409 %endrep
410
411 ; Save digests for later addition
412 vmovdqa32 AA, A
413 vmovdqa32 BB, B
414 vmovdqa32 CC, C
415 vmovdqa32 DD, D
416 vmovdqa32 EE, E
417
418 vmovdqa32 KT, [K00_19]
419 %assign I 0xCA
420 %assign J 0
421 %assign K 2
422 %assign L 8
423 %assign M 13
424 %assign N 0
425 %rep 64
426 PROCESS_LOOP APPEND(W,J), I
427 MSG_SCHED_ROUND_16_79 APPEND(W,J), APPEND(W,K), APPEND(W,L), APPEND(W,M)
428 %if N = 19
429 vmovdqa32 KT, [K20_39]
430 %assign I 0x96
431 %elif N = 39
432 vmovdqa32 KT, [K40_59]
433 %assign I 0xE8
434 %elif N = 59
435 vmovdqa32 KT, [K60_79]
436 %assign I 0x96
437 %endif
438 %assign J ((J+1)% 16)
439 %assign K ((K+1)% 16)
440 %assign L ((L+1)% 16)
441 %assign M ((M+1)% 16)
442 %assign N (N+1)
443 %endrep
444
445 ; Check if this is the last block
446 sub SIZE, 1
447 je lastLoop
448
449 %assign I 0x96
450 %assign J 0
451 %rep 16
452 PROCESS_LOOP APPEND(W,J), I
453 MSG_SCHED_ROUND_00_15 APPEND(W,J), J
454 %assign J (J+1)
455 %endrep
456
457 ; Add old digest
458 vpaddd A,A,AA
459 vpaddd B,B,BB
460 vpaddd C,C,CC
461 vpaddd D,D,DD
462 vpaddd E,E,EE
463
464 jmp lloop
465
466 lastLoop:
467 ; Need to reset argument rotation values to Round 64 values
468 %xdefine TMP_ A
469 %xdefine A B
470 %xdefine B C
471 %xdefine C D
472 %xdefine D E
473 %xdefine E TMP_
474
475 ; Process last 16 rounds
476 %assign I 0x96
477 %assign J 0
478 %rep 16
479 PROCESS_LOOP APPEND(W,J), I
480 %assign J (J+1)
481 %endrep
482
483 ; Add old digest
484 vpaddd A,A,AA
485 vpaddd B,B,BB
486 vpaddd C,C,CC
487 vpaddd D,D,DD
488 vpaddd E,E,EE
489
490 ;; update into data pointers
491 %assign I 0
492 %rep 8
493 mov inp0, [IN + (2*I)*8]
494 mov inp1, [IN + (2*I +1)*8]
495 add inp0, IDX
496 add inp1, IDX
497 mov [IN + (2*I)*8], inp0
498 mov [IN + (2*I+1)*8], inp1
499 %assign I (I+1)
500 %endrep
501
502 ; Write out digest
503 ; Do we need to untranspose digests???
504 vmovups [DIGEST + 0*64], A
505 vmovups [DIGEST + 1*64], B
506 vmovups [DIGEST + 2*64], C
507 vmovups [DIGEST + 3*64], D
508 vmovups [DIGEST + 4*64], E
509
510 ret
511
512 section .data
513 align 64
514 K00_19: dq 0x5A8279995A827999, 0x5A8279995A827999
515 dq 0x5A8279995A827999, 0x5A8279995A827999
516 dq 0x5A8279995A827999, 0x5A8279995A827999
517 dq 0x5A8279995A827999, 0x5A8279995A827999
518 K20_39: dq 0x6ED9EBA16ED9EBA1, 0x6ED9EBA16ED9EBA1
519 dq 0x6ED9EBA16ED9EBA1, 0x6ED9EBA16ED9EBA1
520 dq 0x6ED9EBA16ED9EBA1, 0x6ED9EBA16ED9EBA1
521 dq 0x6ED9EBA16ED9EBA1, 0x6ED9EBA16ED9EBA1
522 K40_59: dq 0x8F1BBCDC8F1BBCDC, 0x8F1BBCDC8F1BBCDC
523 dq 0x8F1BBCDC8F1BBCDC, 0x8F1BBCDC8F1BBCDC
524 dq 0x8F1BBCDC8F1BBCDC, 0x8F1BBCDC8F1BBCDC
525 dq 0x8F1BBCDC8F1BBCDC, 0x8F1BBCDC8F1BBCDC
526 K60_79: dq 0xCA62C1D6CA62C1D6, 0xCA62C1D6CA62C1D6
527 dq 0xCA62C1D6CA62C1D6, 0xCA62C1D6CA62C1D6
528 dq 0xCA62C1D6CA62C1D6, 0xCA62C1D6CA62C1D6
529 dq 0xCA62C1D6CA62C1D6, 0xCA62C1D6CA62C1D6
530
531 PSHUFFLE_BYTE_FLIP_MASK: dq 0x0405060700010203, 0x0c0d0e0f08090a0b
532 dq 0x0405060700010203, 0x0c0d0e0f08090a0b
533 dq 0x0405060700010203, 0x0c0d0e0f08090a0b
534 dq 0x0405060700010203, 0x0c0d0e0f08090a0b
535
536 PSHUFFLE_TRANSPOSE16_MASK1: dq 0x0000000000000000
537 dq 0x0000000000000001
538 dq 0x0000000000000008
539 dq 0x0000000000000009
540 dq 0x0000000000000004
541 dq 0x0000000000000005
542 dq 0x000000000000000C
543 dq 0x000000000000000D
544
545 PSHUFFLE_TRANSPOSE16_MASK2: dq 0x0000000000000002
546 dq 0x0000000000000003
547 dq 0x000000000000000A
548 dq 0x000000000000000B
549 dq 0x0000000000000006
550 dq 0x0000000000000007
551 dq 0x000000000000000E
552 dq 0x000000000000000F
553
554 %else
555 %ifidn __OUTPUT_FORMAT__, win64
556 global no_sha1_mb_x16_avx512
557 no_sha1_mb_x16_avx512:
558 %endif
559 %endif ; HAVE_AS_KNOWS_AVX512
Ceph