; Copyright(c) 2011-2016 Intel Corporation All rights reserved.
;
; Redistribution and use in source and binary forms, with or without
-; modification, are permitted provided that the following conditions
+; modification, are permitted provided that the following conditions
; are met:
; * Redistributions of source code must retain the above copyright
; notice, this list of conditions and the following disclaimer.
%include "sha512_mb_mgr_datastruct.asm"
%include "reg_sizes.asm"
+
+[bits 64]
default rel
+section .text
;; code to compute quad SHA512 using AVX2
;; use YMMs to tackle the larger digest size
;; Function clobbers: rax, rcx, rdx, rbx, rsi, rdi, r9-r15; ymm0-15
;; Stack must be aligned to 32 bytes before call
-;; Windows clobbers: rax rbx rdx r8 r9 r10 r11 r12
+;; Windows clobbers: rax rbx rdx r8 r9 r10 r11 r12
;; Windows preserves: rcx rsi rdi rbp r13 r14 r15
;;
-;; Linux clobbers: rax rbx rcx rsi r8 r9 r10 r11 r12
+;; Linux clobbers: rax rbx rcx rsi r8 r9 r10 r11 r12
;; Linux preserves: rcx rdx rdi rbp r13 r14 r15
;;
;; clobbers ymm0-15
; r1 = {d3 d2 c3 c2 b3 b2 a3 a2}
; r0 = {d5 d4 c5 c4 b5 b4 a5 a4}
; r3 = {d7 d6 c7 c6 b7 b6 a7 a6}
-;
+;
%macro TRANSPOSE 6
%define %%r0 %1
%define %%r1 %2
vperm2f128 %%r3, %%r0, %%r2, 0x31; r3 = {d7 d6 c7 c6 b7 b6 a7 a6}
vperm2f128 %%r0, %%t0, %%t1, 0x31; r0 = {d5 d4 c5 c4 b5 b4 a5 a4}
-
+
; now ok to clobber t0
vperm2f128 %%t0, %%t0, %%t1, 0x20; t0 = {d1 d0 c1 c0 b1 b0 a1 a0}
-%endmacro
+%endmacro
%macro ROTATE_ARGS 0
vpaddq h, h, a1 ; h = h + ch + W + K + maj
vpaddq h, h, a2 ; h = h + ch + W + K + maj + sigma0
ROTATE_ARGS
-
+
%endm
;; void sha512_mb_x4_avx2(SHA512_MB_ARGS_X4 *STATE, const int INP_SIZE)
;; arg 1 : STATE : pointer to input data
;; arg 2 : INP_SIZE : size of data in blocks (assumed >= 1)
-global sha512_mb_x4_avx2:function internal
+mk_global sha512_mb_x4_avx2, function, internal
align 32
sha512_mb_x4_avx2:
+ endbranch
; general registers preserved in outer calling routine
; outer calling routine saves all the XMM registers
sub rsp, stack_frame_size
- ;; Load the pre-transposed incoming digest.
+ ;; Load the pre-transposed incoming digest.
vmovdqu a, [STATE+ 0*SHA512_DIGEST_ROW_SIZE]
vmovdqu b, [STATE+ 1*SHA512_DIGEST_ROW_SIZE]
- vmovdqu c, [STATE+ 2*SHA512_DIGEST_ROW_SIZE]
- vmovdqu d, [STATE+ 3*SHA512_DIGEST_ROW_SIZE]
- vmovdqu e, [STATE+ 4*SHA512_DIGEST_ROW_SIZE]
- vmovdqu f, [STATE+ 5*SHA512_DIGEST_ROW_SIZE]
- vmovdqu g, [STATE+ 6*SHA512_DIGEST_ROW_SIZE]
- vmovdqu h, [STATE+ 7*SHA512_DIGEST_ROW_SIZE]
+ vmovdqu c, [STATE+ 2*SHA512_DIGEST_ROW_SIZE]
+ vmovdqu d, [STATE+ 3*SHA512_DIGEST_ROW_SIZE]
+ vmovdqu e, [STATE+ 4*SHA512_DIGEST_ROW_SIZE]
+ vmovdqu f, [STATE+ 5*SHA512_DIGEST_ROW_SIZE]
+ vmovdqu g, [STATE+ 6*SHA512_DIGEST_ROW_SIZE]
+ vmovdqu h, [STATE+ 7*SHA512_DIGEST_ROW_SIZE]
lea TBL,[K512_4_MB]
-
+
;; load the address of each of the MAX_LANES (4) message lanes
;; getting ready to transpose input onto stack
mov inp0,[STATE + _data_ptr_sha512 + 0*PTR_SZ]
%assign i 0
%rep 4
;; load up the shuffler for little-endian to big-endian format
- vmovdqa TMP, [PSHUFFLE_BYTE_FLIP_MASK]
+ vmovdqa TMP, [PSHUFFLE_BYTE_FLIP_MASK]
VMOVPD TT2,[inp0+IDX+i*32]
VMOVPD TT1,[inp1+IDX+i*32]
VMOVPD TT4,[inp2+IDX+i*32]
VMOVPD TT3,[inp3+IDX+i*32]
TRANSPOSE TT2, TT1, TT4, TT3, TT0, TT5
- vpshufb TT0, TT0, TMP
+ vpshufb TT0, TT0, TMP
vpshufb TT1, TT1, TMP
vpshufb TT2, TT2, TMP
vpshufb TT3, TT3, TMP
- ROUND_00_15 TT0,(i*4+0)
- ROUND_00_15 TT1,(i*4+1)
- ROUND_00_15 TT2,(i*4+2)
- ROUND_00_15 TT3,(i*4+3)
+ ROUND_00_15 TT0,(i*4+0)
+ ROUND_00_15 TT1,(i*4+1)
+ ROUND_00_15 TT2,(i*4+2)
+ ROUND_00_15 TT3,(i*4+3)
%assign i (i+1)
%endrep
;; Increment IDX by message block size == 8 (loop) * 16 (XMM width in bytes)
add IDX, 4 * 32
-
+
%assign i (i*4)
jmp Lrounds_16_xx
cmp ROUND,ROUNDS
jb Lrounds_16_xx
-
+
;; add old digest
vpaddq a, a, [rsp + _DIGEST + 0*SZ4]
vpaddq b, b, [rsp + _DIGEST + 1*SZ4]
vpaddq f, f, [rsp + _DIGEST + 5*SZ4]
vpaddq g, g, [rsp + _DIGEST + 6*SZ4]
vpaddq h, h, [rsp + _DIGEST + 7*SZ4]
-
- sub INP_SIZE, 1 ;; consumed one message block
+
+ sub INP_SIZE, 1 ;; consumed one message block
jne lloop
; write back to memory (state object) the transposed digest
vmovdqu [STATE+ 5*SHA512_DIGEST_ROW_SIZE ],f
vmovdqu [STATE+ 6*SHA512_DIGEST_ROW_SIZE ],g
vmovdqu [STATE+ 7*SHA512_DIGEST_ROW_SIZE ],h
-
+
;; update input data pointers
add inp0, IDX
mov [STATE + _data_ptr_sha512 + 0*PTR_SZ], inp0
projects / ceph.git / blobdiff