Home Explore Help
Sign In
OWEALs
/
openssl
mirror of git://git.openssl.org/openssl.git
2
0
Fork 0
Files Issues 1 Wiki
Branch: OpenSSL-fips-2_0-stable
Branches Tags
openssl
/
crypto
/
aes
/
asm
/
aes-c64xplus.pl

aes-c64xplus.pl 42 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329 
  1. #!/usr/bin/env perl
    2. 

  2. #
    3. 

  3. # ====================================================================
    4. 

  4. # Written by Andy Polyakov <appro@openssl.org> for the OpenSSL
    5. 

  5. # project. The module is, however, dual licensed under OpenSSL and
    6. 

  6. # CRYPTOGAMS licenses depending on where you obtain it. For further
    7. 

  7. # details see http://www.openssl.org/~appro/cryptogams/.
    8. 

  8. # ====================================================================
    9. 

  9. #
    10. 

  10. # [Endian-neutral] AES for C64x+.
    11. 

  11. #
    12. 

  12. # Even though SPLOOPs are scheduled for 13 cycles, and thus expected
    13. 

  13. # performance is ~8.5 cycles per byte processed with 128-bit key,
    14. 

  14. # measured performance turned to be ~10 cycles per byte. Discrepancy
    15. 

  15. # must be caused by limitations of L1D memory banking(*), see SPRU871
    16. 

  16. # TI publication for further details. If any consolation it's still
    17. 

  17. # ~20% faster than TI's linear assembly module anyway... Compared to
    18. 

  18. # aes_core.c compiled with cl6x 6.0 with -mv6400+ -o2 options this
    19. 

  19. # code is 3.75x faster and almost 3x smaller (tables included).
    20. 

  20. #
    21. 

  21. # (*)	This means that there might be subtle correlation between data
    22. 

  22. #	and timing and one can wonder if it can be ... attacked:-(
    23. 

  23. #	On the other hand this also means that *if* one chooses to
    24. 

  24. #	implement *4* T-tables variant [instead of 1 T-table as in
    25. 

  25. #	this implementation, or in addition to], then one ought to
    26. 

  26. #	*interleave* them. Even though it complicates addressing,
    27. 

  27. #	references to interleaved tables would be guaranteed not to
    28. 

  28. #	clash. I reckon that it should be possible to break 8 cycles
    29. 

  29. #	per byte "barrier," i.e. improve by ~20%, naturally at the
    30. 

  30. #	cost of 8x increased pressure on L1D. 8x because you'd have
    31. 

  31. #	to interleave both Te and Td tables...
    32. 

  32. 

  33. while (($output=shift) && ($output!~/\w[\w\-]*\.\w+$/)) {}
    34. 

  34. open STDOUT,">$output";
    35. 

  35. 

  36. ($TEA,$TEB)=("A5","B5");
    37. 

  37. ($KPA,$KPB)=("A3","B1");
    38. 

  38. @K=("A6","B6","A7","B7");
    39. 

  39. @s=("A8","B8","A9","B9");
    40. 

  40. @Te0=@Td0=("A16","B16","A17","B17");
    41. 

  41. @Te1=@Td1=("A18","B18","A19","B19");
    42. 

  42. @Te2=@Td2=("A20","B20","A21","B21");
    43. 

  43. @Te3=@Td3=("A22","B22","A23","B23");
    44. 

  44. 

  45. $code=<<___;
    46. 

  46. 	.text
    47. 

  47. 

  48. 	.asg	B3,RA
    49. 

  49. 	.asg	A4,INP
    50. 

  50. 	.asg	B4,OUT
    51. 

  51. 	.asg	A6,KEY
    52. 

  52. 	.asg	A4,RET
    53. 

  53. 	.asg	B15,SP
    54. 

  54. 

  55. 	.eval	24,EXT0
    56. 

  56. 	.eval	16,EXT1
    57. 

  57. 	.eval	8,EXT2
    58. 

  58. 	.eval	0,EXT3
    59. 

  59. 	.eval	8,TBL1
    60. 

  60. 	.eval	16,TBL2
    61. 

  61. 	.eval	24,TBL3
    62. 

  62. 

  63. 	.if	.BIG_ENDIAN
    64. 

  64. 	.eval	24-EXT0,EXT0
    65. 

  65. 	.eval	24-EXT1,EXT1
    66. 

  66. 	.eval	24-EXT2,EXT2
    67. 

  67. 	.eval	24-EXT3,EXT3
    68. 

  68. 	.eval	32-TBL1,TBL1
    69. 

  69. 	.eval	32-TBL2,TBL2
    70. 

  70. 	.eval	32-TBL3,TBL3
    71. 

  71. 	.endif
    72. 

  72. 

  73. 	.global	_AES_encrypt
    74. 

  74. _AES_encrypt:
    75. 

  75. 	.asmfunc
    76. 

  76. 	MVK	1,B2
    77. 

  77. __encrypt:
    78. 

  78.    [B2]	LDNDW	*INP++,A9:A8			; load input
    79. 

  79. ||	MVKL	(AES_Te-_AES_encrypt),$TEA
    80. 

  80. ||	ADDKPC	_AES_encrypt,B0
    81. 

  81.    [B2]	LDNDW	*INP++,B9:B8
    82. 

  82. ||	MVKH	(AES_Te-_AES_encrypt),$TEA
    83. 

  83. ||	ADD	0,KEY,$KPA
    84. 

  84. ||	ADD	4,KEY,$KPB
    85. 

  85. 	LDW	*$KPA++[2],$Te0[0]		; zero round key
    86. 

  86. ||	LDW	*$KPB++[2],$Te0[1]
    87. 

  87. ||	MVK	60,A0
    88. 

  88. ||	ADD	B0,$TEA,$TEA			; AES_Te
    89. 

  89. 	LDW	*KEY[A0],B0			; rounds
    90. 

  90. ||	MVK	1024,A0				; sizeof(AES_Te)
    91. 

  91. 	LDW	*$KPA++[2],$Te0[2]
    92. 

  92. ||	LDW	*$KPB++[2],$Te0[3]
    93. 

  93. ||	MV	$TEA,$TEB
    94. 

  94. 	NOP
    95. 

  95. 	.if	.BIG_ENDIAN
    96. 

  96. 	MV	A9,$s[0]
    97. 

  97. ||	MV	A8,$s[1]
    98. 

  98. ||	MV	B9,$s[2]
    99. 

  99. ||	MV	B8,$s[3]
    100. 

  100. 	.else
    101. 

  101. 	MV	A8,$s[0]
    102. 

  102. ||	MV	A9,$s[1]
    103. 

  103. ||	MV	B8,$s[2]
    104. 

  104. ||	MV	B9,$s[3]
    105. 

  105. 	.endif
    106. 

  106. 	XOR	$Te0[0],$s[0],$s[0]
    107. 

  107. ||	XOR	$Te0[1],$s[1],$s[1]
    108. 

  108. ||	LDW	*$KPA++[2],$K[0]		; 1st round key
    109. 

  109. ||	LDW	*$KPB++[2],$K[1]
    110. 

  110. 	SUB	B0,2,B0
    111. 

  111. 

  112. 	SPLOOPD	13
    113. 

  113. ||	MVC	B0,ILC
    114. 

  114. ||	LDW	*$KPA++[2],$K[2]
    115. 

  115. ||	LDW	*$KPB++[2],$K[3]
    116. 

  116. ;;====================================================================
    117. 

  117. 	EXTU	$s[1],EXT1,24,$Te1[1]
    118. 

  118. ||	EXTU	$s[0],EXT3,24,$Te3[0]
    119. 

  119. 	LDW	*${TEB}[$Te1[1]],$Te1[1]	; Te1[s1>>8],	t0
    120. 

  120. ||	LDW	*${TEA}[$Te3[0]],$Te3[0]	; Te3[s0>>24],	t1
    121. 

  121. ||	XOR	$s[2],$Te0[2],$s[2]		; modulo-scheduled
    122. 

  122. ||	XOR	$s[3],$Te0[3],$s[3]		; modulo-scheduled
    123. 

  123. ||	EXTU	$s[1],EXT3,24,$Te3[1]
    124. 

  124. ||	EXTU	$s[0],EXT1,24,$Te1[0]
    125. 

  125. 	LDW	*${TEB}[$Te3[1]],$Te3[1]	; Te3[s1>>24],	t2
    126. 

  126. ||	LDW	*${TEA}[$Te1[0]],$Te1[0]	; Te1[s0>>8],	t3
    127. 

  127. ||	EXTU	$s[2],EXT2,24,$Te2[2]
    128. 

  128. ||	EXTU	$s[3],EXT2,24,$Te2[3]
    129. 

  129. 	LDW	*${TEA}[$Te2[2]],$Te2[2]	; Te2[s2>>16],	t0
    130. 

  130. ||	LDW	*${TEB}[$Te2[3]],$Te2[3]	; Te2[s3>>16],	t1
    131. 

  131. ||	EXTU	$s[3],EXT3,24,$Te3[3]
    132. 

  132. ||	EXTU	$s[2],EXT1,24,$Te1[2]
    133. 

  133. 	LDW	*${TEB}[$Te3[3]],$Te3[3]	; Te3[s3>>24],	t0
    134. 

  134. ||	LDW	*${TEA}[$Te1[2]],$Te1[2]	; Te1[s2>>8],	t1
    135. 

  135. ||	EXTU	$s[0],EXT2,24,$Te2[0]
    136. 

  136. ||	EXTU	$s[1],EXT2,24,$Te2[1]
    137. 

  137. 	LDW	*${TEA}[$Te2[0]],$Te2[0]	; Te2[s0>>16],	t2
    138. 

  138. ||	LDW	*${TEB}[$Te2[1]],$Te2[1]	; Te2[s1>>16],	t3
    139. 

  139. ||	EXTU	$s[3],EXT1,24,$Te1[3]
    140. 

  140. ||	EXTU	$s[2],EXT3,24,$Te3[2]
    141. 

  141. 	LDW	*${TEB}[$Te1[3]],$Te1[3]	; Te1[s3>>8],	t2
    142. 

  142. ||	LDW	*${TEA}[$Te3[2]],$Te3[2]	; Te3[s2>>24],	t3
    143. 

  143. ||	ROTL	$Te1[1],TBL1,$Te3[0]		; t0
    144. 

  144. ||	ROTL	$Te3[0],TBL3,$Te1[1]		; t1
    145. 

  145. ||	EXTU	$s[0],EXT0,24,$Te0[0]
    146. 

  146. ||	EXTU	$s[1],EXT0,24,$Te0[1]
    147. 

  147. 	LDW	*${TEA}[$Te0[0]],$Te0[0]	; Te0[s0],	t0
    148. 

  148. ||	LDW	*${TEB}[$Te0[1]],$Te0[1]	; Te0[s1],	t1
    149. 

  149. ||	ROTL	$Te3[1],TBL3,$Te1[0]		; t2
    150. 

  150. ||	ROTL	$Te1[0],TBL1,$Te3[1]		; t3
    151. 

  151. ||	EXTU	$s[2],EXT0,24,$Te0[2]
    152. 

  152. ||	EXTU	$s[3],EXT0,24,$Te0[3]
    153. 

  153. 	LDW	*${TEA}[$Te0[2]],$Te0[2]	; Te0[s2],	t2
    154. 

  154. ||	LDW	*${TEB}[$Te0[3]],$Te0[3]	; Te0[s3],	t3
    155. 

  155. ||	ROTL	$Te2[2],TBL2,$Te2[2]		; t0
    156. 

  156. ||	ROTL	$Te2[3],TBL2,$Te2[3]		; t1
    157. 

  157. ||	XOR	$K[0],$Te3[0],$s[0]
    158. 

  158. ||	XOR	$K[1],$Te1[1],$s[1]
    159. 

  159. 	ROTL	$Te3[3],TBL3,$Te1[2]		; t0
    160. 

  160. ||	ROTL	$Te1[2],TBL1,$Te3[3]		; t1
    161. 

  161. ||	XOR	$K[2],$Te1[0],$s[2]
    162. 

  162. ||	XOR	$K[3],$Te3[1],$s[3]
    163. 

  163. ||	LDW	*$KPA++[2],$K[0]		; next round key
    164. 

  164. ||	LDW	*$KPB++[2],$K[1]
    165. 

  165. 	ROTL	$Te2[0],TBL2,$Te2[0]		; t2
    166. 

  166. ||	ROTL	$Te2[1],TBL2,$Te2[1]		; t3
    167. 

  167. ||	XOR	$s[0],$Te2[2],$s[0]
    168. 

  168. ||	XOR	$s[1],$Te2[3],$s[1]
    169. 

  169. ||	LDW	*$KPA++[2],$K[2]
    170. 

  170. ||	LDW	*$KPB++[2],$K[3]
    171. 

  171. 	ROTL	$Te1[3],TBL1,$Te3[2]		; t2
    172. 

  172. ||	ROTL	$Te3[2],TBL3,$Te1[3]		; t3
    173. 

  173. ||	XOR	$s[0],$Te1[2],$s[0]
    174. 

  174. ||	XOR	$s[1],$Te3[3],$s[1]
    175. 

  175. 	XOR	$s[2],$Te2[0],$s[2]
    176. 

  176. ||	XOR	$s[3],$Te2[1],$s[3]
    177. 

  177. ||	XOR	$s[0],$Te0[0],$s[0]
    178. 

  178. ||	XOR	$s[1],$Te0[1],$s[1]
    179. 

  179. 	SPKERNEL
    180. 

  180. ||	XOR.L	$s[2],$Te3[2],$s[2]
    181. 

  181. ||	XOR.L	$s[3],$Te1[3],$s[3]
    182. 

  182. ;;====================================================================
    183. 

  183. 	ADD.D	${TEA},A0,${TEA}		; point to Te4
    184. 

  184. ||	ADD.D	${TEB},A0,${TEB}
    185. 

  185. ||	EXTU	$s[1],EXT1,24,$Te1[1]
    186. 

  186. ||	EXTU	$s[0],EXT3,24,$Te3[0]
    187. 

  187. 	LDBU	*${TEB}[$Te1[1]],$Te1[1]	; Te1[s1>>8],	t0
    188. 

  188. ||	LDBU	*${TEA}[$Te3[0]],$Te3[0]	; Te3[s0>>24],	t1
    189. 

  189. ||	XOR	$s[2],$Te0[2],$s[2]		; modulo-scheduled
    190. 

  190. ||	XOR	$s[3],$Te0[3],$s[3]		; modulo-scheduled
    191. 

  191. ||	EXTU	$s[0],EXT0,24,$Te0[0]
    192. 

  192. ||	EXTU	$s[1],EXT0,24,$Te0[1]
    193. 

  193. 	LDBU	*${TEA}[$Te0[0]],$Te0[0]	; Te0[s0],	t0
    194. 

  194. ||	LDBU	*${TEB}[$Te0[1]],$Te0[1]	; Te0[s1],	t1
    195. 

  195. ||	EXTU	$s[3],EXT3,24,$Te3[3]
    196. 

  196. ||	EXTU	$s[2],EXT1,24,$Te1[2]
    197. 

  197. 	LDBU	*${TEB}[$Te3[3]],$Te3[3]	; Te3[s3>>24],	t0
    198. 

  198. ||	LDBU	*${TEA}[$Te1[2]],$Te1[2]	; Te1[s2>>8],	t1
    199. 

  199. ||	EXTU	$s[2],EXT2,24,$Te2[2]
    200. 

  200. ||	EXTU	$s[3],EXT2,24,$Te2[3]
    201. 

  201. 	LDBU	*${TEA}[$Te2[2]],$Te2[2]	; Te2[s2>>16],	t0
    202. 

  202. ||	LDBU	*${TEB}[$Te2[3]],$Te2[3]	; Te2[s3>>16],	t1
    203. 

  203. ||	EXTU	$s[1],EXT3,24,$Te3[1]
    204. 

  204. ||	EXTU	$s[0],EXT1,24,$Te1[0]
    205. 

  205. 	LDBU	*${TEB}[$Te3[1]],$Te3[1]	; Te3[s1>>24],	t2
    206. 

  206. ||	LDBU	*${TEA}[$Te1[0]],$Te1[0]	; Te1[s0>>8],	t3
    207. 

  207. ||	EXTU	$s[3],EXT1,24,$Te1[3]
    208. 

  208. ||	EXTU	$s[2],EXT3,24,$Te3[2]
    209. 

  209. 	LDBU	*${TEB}[$Te1[3]],$Te1[3]	; Te1[s3>>8],	t2
    210. 

  210. ||	LDBU	*${TEA}[$Te3[2]],$Te3[2]	; Te3[s2>>24],	t3
    211. 

  211. ||	EXTU	$s[2],EXT0,24,$Te0[2]
    212. 

  212. ||	EXTU	$s[3],EXT0,24,$Te0[3]
    213. 

  213. 	LDBU	*${TEA}[$Te0[2]],$Te0[2]	; Te0[s2],	t2
    214. 

  214. ||	LDBU	*${TEB}[$Te0[3]],$Te0[3]	; Te0[s3],	t3
    215. 

  215. ||	EXTU	$s[0],EXT2,24,$Te2[0]
    216. 

  216. ||	EXTU	$s[1],EXT2,24,$Te2[1]
    217. 

  217. 	LDBU	*${TEA}[$Te2[0]],$Te2[0]	; Te2[s0>>16],	t2
    218. 

  218. ||	LDBU	*${TEB}[$Te2[1]],$Te2[1]	; Te2[s1>>16],	t3
    219. 

  219. 

  220. 	.if	.BIG_ENDIAN
    221. 

  221. 	PACK2	$Te0[0],$Te1[1],$Te0[0]
    222. 

  222. ||	PACK2	$Te0[1],$Te1[2],$Te0[1]
    223. 

  223. 	PACK2	$Te2[2],$Te3[3],$Te2[2]
    224. 

  224. ||	PACK2	$Te2[3],$Te3[0],$Te2[3]
    225. 

  225. 	PACKL4	$Te0[0],$Te2[2],$Te0[0]
    226. 

  226. ||	PACKL4	$Te0[1],$Te2[3],$Te0[1]
    227. 

  227. 	XOR	$K[0],$Te0[0],$Te0[0]		; s[0]
    228. 

  228. ||	XOR	$K[1],$Te0[1],$Te0[1]		; s[1]
    229. 

  229. 

  230. 	PACK2	$Te0[2],$Te1[3],$Te0[2]
    231. 

  231. ||	PACK2	$Te0[3],$Te1[0],$Te0[3]
    232. 

  232. 	PACK2	$Te2[0],$Te3[1],$Te2[0]
    233. 

  233. ||	PACK2	$Te2[1],$Te3[2],$Te2[1]
    234. 

  234. ||	BNOP	RA
    235. 

  235. 	PACKL4	$Te0[2],$Te2[0],$Te0[2]
    236. 

  236. ||	PACKL4	$Te0[3],$Te2[1],$Te0[3]
    237. 

  237. 	XOR	$K[2],$Te0[2],$Te0[2]		; s[2]
    238. 

  238. ||	XOR	$K[3],$Te0[3],$Te0[3]		; s[3]
    239. 

  239. 

  240. 	MV	$Te0[0],A9
    241. 

  241. ||	MV	$Te0[1],A8
    242. 

  242. 	MV	$Te0[2],B9
    243. 

  243. ||	MV	$Te0[3],B8
    244. 

  244. || [B2]	STNDW	A9:A8,*OUT++
    245. 

  245.    [B2]	STNDW	B9:B8,*OUT++
    246. 

  246. 	.else
    247. 

  247. 	PACK2	$Te1[1],$Te0[0],$Te1[1]
    248. 

  248. ||	PACK2	$Te1[2],$Te0[1],$Te1[2]
    249. 

  249. 	PACK2	$Te3[3],$Te2[2],$Te3[3]
    250. 

  250. ||	PACK2	$Te3[0],$Te2[3],$Te3[0]
    251. 

  251. 	PACKL4	$Te3[3],$Te1[1],$Te1[1]
    252. 

  252. ||	PACKL4	$Te3[0],$Te1[2],$Te1[2]
    253. 

  253. 	XOR	$K[0],$Te1[1],$Te1[1]		; s[0]
    254. 

  254. ||	XOR	$K[1],$Te1[2],$Te1[2]		; s[1]
    255. 

  255. 

  256. 	PACK2	$Te1[3],$Te0[2],$Te1[3]
    257. 

  257. ||	PACK2	$Te1[0],$Te0[3],$Te1[0]
    258. 

  258. 	PACK2	$Te3[1],$Te2[0],$Te3[1]
    259. 

  259. ||	PACK2	$Te3[2],$Te2[1],$Te3[2]
    260. 

  260. ||	BNOP	RA
    261. 

  261. 	PACKL4	$Te3[1],$Te1[3],$Te1[3]
    262. 

  262. ||	PACKL4	$Te3[2],$Te1[0],$Te1[0]
    263. 

  263. 	XOR	$K[2],$Te1[3],$Te1[3]		; s[2]
    264. 

  264. ||	XOR	$K[3],$Te1[0],$Te1[0]		; s[3]
    265. 

  265. 

  266. 	MV	$Te1[1],A8
    267. 

  267. ||	MV	$Te1[2],A9
    268. 

  268. 	MV	$Te1[3],B8
    269. 

  269. ||	MV	$Te1[0],B9
    270. 

  270. || [B2]	STNDW	A9:A8,*OUT++
    271. 

  271.    [B2]	STNDW	B9:B8,*OUT++
    272. 

  272. 	.endif
    273. 

  273. 	.endasmfunc
    274. 

  274. 

  275. 	.global	_AES_decrypt
    276. 

  276. _AES_decrypt:
    277. 

  277. 	.asmfunc
    278. 

  278. 	MVK	1,B2
    279. 

  279. __decrypt:
    280. 

  280.    [B2]	LDNDW	*INP++,A9:A8			; load input
    281. 

  281. ||	MVKL	(AES_Td-_AES_decrypt),$TEA
    282. 

  282. ||	ADDKPC	_AES_decrypt,B0
    283. 

  283.    [B2]	LDNDW	*INP++,B9:B8
    284. 

  284. ||	MVKH	(AES_Td-_AES_decrypt),$TEA
    285. 

  285. ||	ADD	0,KEY,$KPA
    286. 

  286. ||	ADD	4,KEY,$KPB
    287. 

  287. 	LDW	*$KPA++[2],$Td0[0]		; zero round key
    288. 

  288. ||	LDW	*$KPB++[2],$Td0[1]
    289. 

  289. ||	MVK	60,A0
    290. 

  290. ||	ADD	B0,$TEA,$TEA			; AES_Td
    291. 

  291. 	LDW	*KEY[A0],B0			; rounds
    292. 

  292. ||	MVK	1024,A0				; sizeof(AES_Td)
    293. 

  293. 	LDW	*$KPA++[2],$Td0[2]
    294. 

  294. ||	LDW	*$KPB++[2],$Td0[3]
    295. 

  295. ||	MV	$TEA,$TEB
    296. 

  296. 	NOP
    297. 

  297. 	.if	.BIG_ENDIAN
    298. 

  298. 	MV	A9,$s[0]
    299. 

  299. ||	MV	A8,$s[1]
    300. 

  300. ||	MV	B9,$s[2]
    301. 

  301. ||	MV	B8,$s[3]
    302. 

  302. 	.else
    303. 

  303. 	MV	A8,$s[0]
    304. 

  304. ||	MV	A9,$s[1]
    305. 

  305. ||	MV	B8,$s[2]
    306. 

  306. ||	MV	B9,$s[3]
    307. 

  307. 	.endif
    308. 

  308. 	XOR	$Td0[0],$s[0],$s[0]
    309. 

  309. ||	XOR	$Td0[1],$s[1],$s[1]
    310. 

  310. ||	LDW	*$KPA++[2],$K[0]		; 1st round key
    311. 

  311. ||	LDW	*$KPB++[2],$K[1]
    312. 

  312. 	SUB	B0,2,B0
    313. 

  313. 

  314. 	SPLOOPD	13
    315. 

  315. ||	MVC	B0,ILC
    316. 

  316. ||	LDW	*$KPA++[2],$K[2]
    317. 

  317. ||	LDW	*$KPB++[2],$K[3]
    318. 

  318. ;;====================================================================
    319. 

  319. 	EXTU	$s[1],EXT3,24,$Td3[1]
    320. 

  320. ||	EXTU	$s[0],EXT1,24,$Td1[0]
    321. 

  321. 	LDW	*${TEB}[$Td3[1]],$Td3[1]	; Td3[s1>>24],	t0
    322. 

  322. ||	LDW	*${TEA}[$Td1[0]],$Td1[0]	; Td1[s0>>8],	t1
    323. 

  323. ||	XOR	$s[2],$Td0[2],$s[2]		; modulo-scheduled
    324. 

  324. ||	XOR	$s[3],$Td0[3],$s[3]		; modulo-scheduled
    325. 

  325. ||	EXTU	$s[1],EXT1,24,$Td1[1]
    326. 

  326. ||	EXTU	$s[0],EXT3,24,$Td3[0]
    327. 

  327. 	LDW	*${TEB}[$Td1[1]],$Td1[1]	; Td1[s1>>8],	t2
    328. 

  328. ||	LDW	*${TEA}[$Td3[0]],$Td3[0]	; Td3[s0>>24],	t3
    329. 

  329. ||	EXTU	$s[2],EXT2,24,$Td2[2]
    330. 

  330. ||	EXTU	$s[3],EXT2,24,$Td2[3]
    331. 

  331. 	LDW	*${TEA}[$Td2[2]],$Td2[2]	; Td2[s2>>16],	t0
    332. 

  332. ||	LDW	*${TEB}[$Td2[3]],$Td2[3]	; Td2[s3>>16],	t1
    333. 

  333. ||	EXTU	$s[3],EXT1,24,$Td1[3]
    334. 

  334. ||	EXTU	$s[2],EXT3,24,$Td3[2]
    335. 

  335. 	LDW	*${TEB}[$Td1[3]],$Td1[3]	; Td1[s3>>8],	t0
    336. 

  336. ||	LDW	*${TEA}[$Td3[2]],$Td3[2]	; Td3[s2>>24],	t1
    337. 

  337. ||	EXTU	$s[0],EXT2,24,$Td2[0]
    338. 

  338. ||	EXTU	$s[1],EXT2,24,$Td2[1]
    339. 

  339. 	LDW	*${TEA}[$Td2[0]],$Td2[0]	; Td2[s0>>16],	t2
    340. 

  340. ||	LDW	*${TEB}[$Td2[1]],$Td2[1]	; Td2[s1>>16],	t3
    341. 

  341. ||	EXTU	$s[3],EXT3,24,$Td3[3]
    342. 

  342. ||	EXTU	$s[2],EXT1,24,$Td1[2]
    343. 

  343. 	LDW	*${TEB}[$Td3[3]],$Td3[3]	; Td3[s3>>24],	t2
    344. 

  344. ||	LDW	*${TEA}[$Td1[2]],$Td1[2]	; Td1[s2>>8],	t3
    345. 

  345. ||	ROTL	$Td3[1],TBL3,$Td1[0]		; t0
    346. 

  346. ||	ROTL	$Td1[0],TBL1,$Td3[1]		; t1
    347. 

  347. ||	EXTU	$s[0],EXT0,24,$Td0[0]
    348. 

  348. ||	EXTU	$s[1],EXT0,24,$Td0[1]
    349. 

  349. 	LDW	*${TEA}[$Td0[0]],$Td0[0]	; Td0[s0],	t0
    350. 

  350. ||	LDW	*${TEB}[$Td0[1]],$Td0[1]	; Td0[s1],	t1
    351. 

  351. ||	ROTL	$Td1[1],TBL1,$Td3[0]		; t2
    352. 

  352. ||	ROTL	$Td3[0],TBL3,$Td1[1]		; t3
    353. 

  353. ||	EXTU	$s[2],EXT0,24,$Td0[2]
    354. 

  354. ||	EXTU	$s[3],EXT0,24,$Td0[3]
    355. 

  355. 	LDW	*${TEA}[$Td0[2]],$Td0[2]	; Td0[s2],	t2
    356. 

  356. ||	LDW	*${TEB}[$Td0[3]],$Td0[3]	; Td0[s3],	t3
    357. 

  357. ||	ROTL	$Td2[2],TBL2,$Td2[2]		; t0
    358. 

  358. ||	ROTL	$Td2[3],TBL2,$Td2[3]		; t1
    359. 

  359. ||	XOR	$K[0],$Td1[0],$s[0]
    360. 

  360. ||	XOR	$K[1],$Td3[1],$s[1]
    361. 

  361. 	ROTL	$Td1[3],TBL1,$Td3[2]		; t0
    362. 

  362. ||	ROTL	$Td3[2],TBL3,$Td1[3]		; t1
    363. 

  363. ||	XOR	$K[2],$Td3[0],$s[2]
    364. 

  364. ||	XOR	$K[3],$Td1[1],$s[3]
    365. 

  365. ||	LDW	*$KPA++[2],$K[0]		; next round key
    366. 

  366. ||	LDW	*$KPB++[2],$K[1]
    367. 

  367. 	ROTL	$Td2[0],TBL2,$Td2[0]		; t2
    368. 

  368. ||	ROTL	$Td2[1],TBL2,$Td2[1]		; t3
    369. 

  369. ||	XOR	$s[0],$Td2[2],$s[0]
    370. 

  370. ||	XOR	$s[1],$Td2[3],$s[1]
    371. 

  371. ||	LDW	*$KPA++[2],$K[2]
    372. 

  372. ||	LDW	*$KPB++[2],$K[3]
    373. 

  373. 	ROTL	$Td3[3],TBL3,$Td1[2]		; t2
    374. 

  374. ||	ROTL	$Td1[2],TBL1,$Td3[3]		; t3
    375. 

  375. ||	XOR	$s[0],$Td3[2],$s[0]
    376. 

  376. ||	XOR	$s[1],$Td1[3],$s[1]
    377. 

  377. 	XOR	$s[2],$Td2[0],$s[2]
    378. 

  378. ||	XOR	$s[3],$Td2[1],$s[3]
    379. 

  379. ||	XOR	$s[0],$Td0[0],$s[0]
    380. 

  380. ||	XOR	$s[1],$Td0[1],$s[1]
    381. 

  381. 	SPKERNEL
    382. 

  382. ||	XOR.L	$s[2],$Td1[2],$s[2]
    383. 

  383. ||	XOR.L	$s[3],$Td3[3],$s[3]
    384. 

  384. ;;====================================================================
    385. 

  385. 	ADD.D	${TEA},A0,${TEA}		; point to Td4
    386. 

  386. ||	ADD.D	${TEB},A0,${TEB}
    387. 

  387. ||	EXTU	$s[1],EXT3,24,$Td3[1]
    388. 

  388. ||	EXTU	$s[0],EXT1,24,$Td1[0]
    389. 

  389. 	LDBU	*${TEB}[$Td3[1]],$Td3[1]	; Td3[s1>>24],	t0
    390. 

  390. ||	LDBU	*${TEA}[$Td1[0]],$Td1[0]	; Td1[s0>>8],	t1
    391. 

  391. ||	XOR	$s[2],$Td0[2],$s[2]		; modulo-scheduled
    392. 

  392. ||	XOR	$s[3],$Td0[3],$s[3]		; modulo-scheduled
    393. 

  393. ||	EXTU	$s[0],EXT0,24,$Td0[0]
    394. 

  394. ||	EXTU	$s[1],EXT0,24,$Td0[1]
    395. 

  395. 	LDBU	*${TEA}[$Td0[0]],$Td0[0]	; Td0[s0],	t0
    396. 

  396. ||	LDBU	*${TEB}[$Td0[1]],$Td0[1]	; Td0[s1],	t1
    397. 

  397. ||	EXTU	$s[2],EXT2,24,$Td2[2]
    398. 

  398. ||	EXTU	$s[3],EXT2,24,$Td2[3]
    399. 

  399. 	LDBU	*${TEA}[$Td2[2]],$Td2[2]	; Td2[s2>>16],	t0
    400. 

  400. ||	LDBU	*${TEB}[$Td2[3]],$Td2[3]	; Td2[s3>>16],	t1
    401. 

  401. ||	EXTU	$s[3],EXT1,24,$Td1[3]
    402. 

  402. ||	EXTU	$s[2],EXT3,24,$Td3[2]
    403. 

  403. 	LDBU	*${TEB}[$Td1[3]],$Td1[3]	; Td1[s3>>8],	t0
    404. 

  404. ||	LDBU	*${TEA}[$Td3[2]],$Td3[2]	; Td3[s2>>24],	t1
    405. 

  405. ||	EXTU	$s[1],EXT1,24,$Td1[1]
    406. 

  406. ||	EXTU	$s[0],EXT3,24,$Td3[0]
    407. 

  407. 	LDBU	*${TEB}[$Td1[1]],$Td1[1]	; Td1[s1>>8],	t2
    408. 

  408. ||	LDBU	*${TEA}[$Td3[0]],$Td3[0]	; Td3[s0>>24],	t3
    409. 

  409. ||	EXTU	$s[0],EXT2,24,$Td2[0]
    410. 

  410. ||	EXTU	$s[1],EXT2,24,$Td2[1]
    411. 

  411. 	LDBU	*${TEA}[$Td2[0]],$Td2[0]	; Td2[s0>>16],	t2
    412. 

  412. ||	LDBU	*${TEB}[$Td2[1]],$Td2[1]	; Td2[s1>>16],	t3
    413. 

  413. ||	EXTU	$s[3],EXT3,24,$Td3[3]
    414. 

  414. ||	EXTU	$s[2],EXT1,24,$Td1[2]
    415. 

  415. 	LDBU	*${TEB}[$Td3[3]],$Td3[3]	; Td3[s3>>24],	t2
    416. 

  416. ||	LDBU	*${TEA}[$Td1[2]],$Td1[2]	; Td1[s2>>8],	t3
    417. 

  417. ||	EXTU	$s[2],EXT0,24,$Td0[2]
    418. 

  418. ||	EXTU	$s[3],EXT0,24,$Td0[3]
    419. 

  419. 	LDBU	*${TEA}[$Td0[2]],$Td0[2]	; Td0[s2],	t2
    420. 

  420. ||	LDBU	*${TEB}[$Td0[3]],$Td0[3]	; Td0[s3],	t3
    421. 

  421. 

  422. 	.if	.BIG_ENDIAN
    423. 

  423. 	PACK2	$Td0[0],$Td1[3],$Td0[0]
    424. 

  424. ||	PACK2	$Td0[1],$Td1[0],$Td0[1]
    425. 

  425. 	PACK2	$Td2[2],$Td3[1],$Td2[2]
    426. 

  426. ||	PACK2	$Td2[3],$Td3[2],$Td2[3]
    427. 

  427. 	PACKL4	$Td0[0],$Td2[2],$Td0[0]
    428. 

  428. ||	PACKL4	$Td0[1],$Td2[3],$Td0[1]
    429. 

  429. 	XOR	$K[0],$Td0[0],$Td0[0]		; s[0]
    430. 

  430. ||	XOR	$K[1],$Td0[1],$Td0[1]		; s[1]
    431. 

  431. 

  432. 	PACK2	$Td0[2],$Td1[1],$Td0[2]
    433. 

  433. ||	PACK2	$Td0[3],$Td1[2],$Td0[3]
    434. 

  434. 	PACK2	$Td2[0],$Td3[3],$Td2[0]
    435. 

  435. ||	PACK2	$Td2[1],$Td3[0],$Td2[1]
    436. 

  436. ||	BNOP	RA
    437. 

  437. 	PACKL4	$Td0[2],$Td2[0],$Td0[2]
    438. 

  438. ||	PACKL4	$Td0[3],$Td2[1],$Td0[3]
    439. 

  439. 	XOR	$K[2],$Td0[2],$Td0[2]		; s[2]
    440. 

  440. ||	XOR	$K[3],$Td0[3],$Td0[3]		; s[3]
    441. 

  441. 

  442. 	MV	$Td0[0],A9
    443. 

  443. ||	MV	$Td0[1],A8
    444. 

  444. 	MV	$Td0[2],B9
    445. 

  445. ||	MV	$Td0[3],B8
    446. 

  446. || [B2]	STNDW	A9:A8,*OUT++
    447. 

  447.    [B2]	STNDW	B9:B8,*OUT++
    448. 

  448. 	.else
    449. 

  449. 	PACK2	$Td1[3],$Td0[0],$Td1[3]
    450. 

  450. ||	PACK2	$Td1[0],$Td0[1],$Td1[0]
    451. 

  451. 	PACK2	$Td3[1],$Td2[2],$Td3[1]
    452. 

  452. ||	PACK2	$Td3[2],$Td2[3],$Td3[2]
    453. 

  453. 	PACKL4	$Td3[1],$Td1[3],$Td1[3]
    454. 

  454. ||	PACKL4	$Td3[2],$Td1[0],$Td1[0]
    455. 

  455. 	XOR	$K[0],$Td1[3],$Td1[3]		; s[0]
    456. 

  456. ||	XOR	$K[1],$Td1[0],$Td1[0]		; s[1]
    457. 

  457. 

  458. 	PACK2	$Td1[1],$Td0[2],$Td1[1]
    459. 

  459. ||	PACK2	$Td1[2],$Td0[3],$Td1[2]
    460. 

  460. 	PACK2	$Td3[3],$Td2[0],$Td3[3]
    461. 

  461. ||	PACK2	$Td3[0],$Td2[1],$Td3[0]
    462. 

  462. ||	BNOP	RA
    463. 

  463. 	PACKL4	$Td3[3],$Td1[1],$Td1[1]
    464. 

  464. ||	PACKL4	$Td3[0],$Td1[2],$Td1[2]
    465. 

  465. 	XOR	$K[2],$Td1[1],$Td1[1]		; s[2]
    466. 

  466. ||	XOR	$K[3],$Td1[2],$Td1[2]		; s[3]
    467. 

  467. 

  468. 	MV	$Td1[3],A8
    469. 

  469. ||	MV	$Td1[0],A9
    470. 

  470. 	MV	$Td1[1],B8
    471. 

  471. ||	MV	$Td1[2],B9
    472. 

  472. || [B2]	STNDW	A9:A8,*OUT++
    473. 

  473.    [B2]	STNDW	B9:B8,*OUT++
    474. 

  474. 	.endif
    475. 

  475. 	.endasmfunc
    476. 

  476. ___
    477. 

  477. {
    478. 

  478. my @K=(@K,@s);			# extended key
    479. 

  479. my @Te4=map("B$_",(16..19));
    480. 

  480. 

  481. my @Kx9=@Te0;			# used in AES_set_decrypt_key
    482. 

  482. my @KxB=@Te1;
    483. 

  483. my @KxD=@Te2;
    484. 

  484. my @KxE=@Te3;
    485. 

  485. 

  486. $code.=<<___;
    487. 

  487. 	.asg	OUT,BITS
    488. 

  488. 

  489. 	.global	_AES_set_encrypt_key
    490. 

  490. _AES_set_encrypt_key:
    491. 

  491. __set_encrypt_key:
    492. 

  492. 	.asmfunc
    493. 

  493. 	MV	INP,A0
    494. 

  494. ||	SHRU	BITS,5,BITS			; 128-192-256 -> 4-6-8
    495. 

  495. ||	MV	KEY,A1
    496. 

  496.   [!A0]	B	RA
    497. 

  497. ||[!A0]	MVK	-1,RET
    498. 

  498. ||[!A0]	MVK	1,A1				; only one B RA
    499. 

  499.   [!A1]	B	RA
    500. 

  500. ||[!A1]	MVK	-1,RET
    501. 

  501. ||[!A1]	MVK	0,A0
    502. 

  502. ||	MVK	0,B0
    503. 

  503. ||	MVK	0,A1
    504. 

  504.    [A0]	LDNDW	*INP++,A9:A8
    505. 

  505. || [A0]	CMPEQ	4,BITS,B0
    506. 

  506. || [A0]	CMPLT	3,BITS,A1
    507. 

  507.    [B0]	B	key128?
    508. 

  508. || [A1]	LDNDW	*INP++,B9:B8
    509. 

  509. || [A0]	CMPEQ	6,BITS,B0
    510. 

  510. || [A0]	CMPLT	5,BITS,A1
    511. 

  511.    [B0]	B	key192?
    512. 

  512. || [A1]	LDNDW	*INP++,B17:B16
    513. 

  513. || [A0]	CMPEQ	8,BITS,B0
    514. 

  514. || [A0]	CMPLT	7,BITS,A1
    515. 

  515.    [B0]	B	key256?
    516. 

  516. || [A1]	LDNDW	*INP++,B19:B18
    517. 

  517. 

  518.    [A0]	ADD	0,KEY,$KPA
    519. 

  519. || [A0]	ADD	4,KEY,$KPB
    520. 

  520. || [A0]	MVKL	(AES_Te4-_AES_set_encrypt_key),$TEA
    521. 

  521. || [A0]	ADDKPC	_AES_set_encrypt_key,B6
    522. 

  522.    [A0]	MVKH	(AES_Te4-_AES_set_encrypt_key),$TEA
    523. 

  523.    [A0]	ADD	B6,$TEA,$TEA			; AES_Te4
    524. 

  524. 	NOP
    525. 

  525. 	NOP
    526. 

  526. 

  527. 	BNOP	RA,5
    528. 

  528. ||	MVK	-2,RET				; unknown bit lenght
    529. 

  529. ||	MVK	0,B0				; redundant
    530. 

  530. ;;====================================================================
    531. 

  531. ;;====================================================================
    532. 

  532. key128?:
    533. 

  533. 	.if	.BIG_ENDIAN
    534. 

  534. 	MV	A9,$K[0]
    535. 

  535. ||	MV	A8,$K[1]
    536. 

  536. ||	MV	B9,$Te4[2]
    537. 

  537. ||	MV	B8,$K[3]
    538. 

  538. 	.else
    539. 

  539. 	MV	A8,$K[0]
    540. 

  540. ||	MV	A9,$K[1]
    541. 

  541. ||	MV	B8,$Te4[2]
    542. 

  542. ||	MV	B9,$K[3]
    543. 

  543. 	.endif
    544. 

  544. 

  545. 	MVK	256,A0
    546. 

  546. ||	MVK	9,B0
    547. 

  547. 

  548. 	SPLOOPD	14
    549. 

  549. ||	MVC	B0,ILC
    550. 

  550. ||	MV	$TEA,$TEB
    551. 

  551. ||	ADD	$TEA,A0,A30			; rcon
    552. 

  552. ;;====================================================================
    553. 

  553. 	LDW	*A30++[1],A31			; rcon[i]
    554. 

  554. ||	MV	$Te4[2],$K[2]
    555. 

  555. ||	EXTU	$K[3],EXT1,24,$Te4[0]
    556. 

  556. 	LDBU	*${TEB}[$Te4[0]],$Te4[0]
    557. 

  557. ||	MV	$K[3],A0
    558. 

  558. ||	EXTU	$K[3],EXT2,24,$Te4[1]
    559. 

  559. 	LDBU	*${TEB}[$Te4[1]],$Te4[1]
    560. 

  560. ||	EXTU	A0,EXT3,24,A0
    561. 

  561. ||	EXTU	$K[3],EXT0,24,$Te4[3]
    562. 

  562. 	.if	.BIG_ENDIAN
    563. 

  563. 	LDBU	*${TEA}[A0],$Te4[3]
    564. 

  564. ||	LDBU	*${TEB}[$Te4[3]],A0
    565. 

  565. 	.else
    566. 

  566. 	LDBU	*${TEA}[A0],A0
    567. 

  567. ||	LDBU	*${TEB}[$Te4[3]],$Te4[3]
    568. 

  568. 	.endif
    569. 

  569. 

  570. 	STW	$K[0],*$KPA++[2]
    571. 

  571. ||	STW	$K[1],*$KPB++[2]
    572. 

  572. 	STW	$K[2],*$KPA++[2]
    573. 

  573. ||	STW	$K[3],*$KPB++[2]
    574. 

  574. 

  575. 	XOR	A31,$K[0],$K[0]			; ^=rcon[i]
    576. 

  576. 	.if	.BIG_ENDIAN
    577. 

  577. 	PACK2	$Te4[0],$Te4[1],$Te4[1]
    578. 

  578. 	PACK2	$Te4[3],A0,$Te4[3]
    579. 

  579. 	PACKL4	$Te4[1],$Te4[3],$Te4[3]
    580. 

  580. 	.else
    581. 

  581. 	PACK2	$Te4[1],$Te4[0],$Te4[1]
    582. 

  582. 	PACK2	$Te4[3],A0,$Te4[3]
    583. 

  583. 	PACKL4	$Te4[3],$Te4[1],$Te4[3]
    584. 

  584. 	.endif
    585. 

  585. 	XOR	$Te4[3],$K[0],$Te4[0]		; K[0]
    586. 

  586. 	XOR	$Te4[0],$K[1],$K[1]		; K[1]
    587. 

  587. 	MV	$Te4[0],$K[0]
    588. 

  588. ||	XOR	$K[1],$K[2],$Te4[2]		; K[2]
    589. 

  589. 	XOR	$Te4[2],$K[3],$K[3]		; K[3]
    590. 

  590. 	SPKERNEL
    591. 

  591. ;;====================================================================
    592. 

  592. 	BNOP	RA
    593. 

  593. 	MV	$Te4[2],$K[2]
    594. 

  594. ||	STW	$K[0],*$KPA++[2]
    595. 

  595. ||	STW	$K[1],*$KPB++[2]
    596. 

  596. 	STW	$K[2],*$KPA++[2]
    597. 

  597. ||	STW	$K[3],*$KPB++[2]
    598. 

  598. 	MVK	10,B0				; rounds
    599. 

  599. 	STW	B0,*++${KPB}[15]
    600. 

  600. 	MVK	0,RET
    601. 

  601. ;;====================================================================
    602. 

  602. ;;====================================================================
    603. 

  603. key192?:
    604. 

  604. 	.if	.BIG_ENDIAN
    605. 

  605. 	MV	A9,$K[0]
    606. 

  606. ||	MV	A8,$K[1]
    607. 

  607. ||	MV	B9,$K[2]
    608. 

  608. ||	MV	B8,$K[3]
    609. 

  609. 	MV	B17,$Te4[2]
    610. 

  610. ||	MV	B16,$K[5]
    611. 

  611. 	.else
    612. 

  612. 	MV	A8,$K[0]
    613. 

  613. ||	MV	A9,$K[1]
    614. 

  614. ||	MV	B8,$K[2]
    615. 

  615. ||	MV	B9,$K[3]
    616. 

  616. 	MV	B16,$Te4[2]
    617. 

  617. ||	MV	B17,$K[5]
    618. 

  618. 	.endif
    619. 

  619. 

  620. 	MVK	256,A0
    621. 

  621. ||	MVK	6,B0
    622. 

  622. 	MV	$TEA,$TEB
    623. 

  623. ||	ADD	$TEA,A0,A30			; rcon
    624. 

  624. ;;====================================================================
    625. 

  625. loop192?:
    626. 

  626. 	LDW	*A30++[1],A31			; rcon[i]
    627. 

  627. ||	MV	$Te4[2],$K[4]
    628. 

  628. ||	EXTU	$K[5],EXT1,24,$Te4[0]
    629. 

  629. 	LDBU	*${TEB}[$Te4[0]],$Te4[0]
    630. 

  630. ||	MV	$K[5],A0
    631. 

  631. ||	EXTU	$K[5],EXT2,24,$Te4[1]
    632. 

  632. 	LDBU	*${TEB}[$Te4[1]],$Te4[1]
    633. 

  633. ||	EXTU	A0,EXT3,24,A0
    634. 

  634. ||	EXTU	$K[5],EXT0,24,$Te4[3]
    635. 

  635. 	.if	.BIG_ENDIAN
    636. 

  636. 	LDBU	*${TEA}[A0],$Te4[3]
    637. 

  637. ||	LDBU	*${TEB}[$Te4[3]],A0
    638. 

  638. 	.else
    639. 

  639. 	LDBU	*${TEA}[A0],A0
    640. 

  640. ||	LDBU	*${TEB}[$Te4[3]],$Te4[3]
    641. 

  641. 	.endif
    642. 

  642. 

  643. 	STW	$K[0],*$KPA++[2]
    644. 

  644. ||	STW	$K[1],*$KPB++[2]
    645. 

  645. 	STW	$K[2],*$KPA++[2]
    646. 

  646. ||	STW	$K[3],*$KPB++[2]
    647. 

  647. 	STW	$K[4],*$KPA++[2]
    648. 

  648. ||	STW	$K[5],*$KPB++[2]
    649. 

  649. 

  650. 	XOR	A31,$K[0],$K[0]			; ^=rcon[i]
    651. 

  651. 	.if	.BIG_ENDIAN
    652. 

  652. 	PACK2	$Te4[0],$Te4[1],$Te4[1]
    653. 

  653. ||	PACK2	$Te4[3],A0,$Te4[3]
    654. 

  654. 	PACKL4	$Te4[1],$Te4[3],$Te4[3]
    655. 

  655. 	.else
    656. 

  656. 	PACK2	$Te4[1],$Te4[0],$Te4[1]
    657. 

  657. ||	PACK2	$Te4[3],A0,$Te4[3]
    658. 

  658. 	PACKL4	$Te4[3],$Te4[1],$Te4[3]
    659. 

  659. 	.endif
    660. 

  660. 	BDEC	loop192?,B0
    661. 

  661. ||	XOR	$Te4[3],$K[0],$Te4[0]		; K[0]
    662. 

  662. 	XOR	$Te4[0],$K[1],$K[1]		; K[1]
    663. 

  663. 	MV	$Te4[0],$K[0]
    664. 

  664. ||	XOR	$K[1],$K[2],$Te4[2]		; K[2]
    665. 

  665. 	XOR	$Te4[2],$K[3],$K[3]		; K[3]
    666. 

  666. 	MV	$Te4[2],$K[2]
    667. 

  667. ||	XOR	$K[3],$K[4],$Te4[2]		; K[4]
    668. 

  668. 	XOR	$Te4[2],$K[5],$K[5]		; K[5]
    669. 

  669. ;;====================================================================
    670. 

  670. 	BNOP	RA
    671. 

  671. 	STW	$K[0],*$KPA++[2]
    672. 

  672. ||	STW	$K[1],*$KPB++[2]
    673. 

  673. 	STW	$K[2],*$KPA++[2]
    674. 

  674. ||	STW	$K[3],*$KPB++[2]
    675. 

  675. 	MVK	12,B0				; rounds
    676. 

  676. 	STW	B0,*++${KPB}[7]
    677. 

  677. 	MVK	0,RET
    678. 

  678. ;;====================================================================
    679. 

  679. ;;====================================================================
    680. 

  680. key256?:
    681. 

  681. 	.if	.BIG_ENDIAN
    682. 

  682. 	MV	A9,$K[0]
    683. 

  683. ||	MV	A8,$K[1]
    684. 

  684. ||	MV	B9,$K[2]
    685. 

  685. ||	MV	B8,$K[3]
    686. 

  686. 	MV	B17,$K[4]
    687. 

  687. ||	MV	B16,$K[5]
    688. 

  688. ||	MV	B19,$Te4[2]
    689. 

  689. ||	MV	B18,$K[7]
    690. 

  690. 	.else
    691. 

  691. 	MV	A8,$K[0]
    692. 

  692. ||	MV	A9,$K[1]
    693. 

  693. ||	MV	B8,$K[2]
    694. 

  694. ||	MV	B9,$K[3]
    695. 

  695. 	MV	B16,$K[4]
    696. 

  696. ||	MV	B17,$K[5]
    697. 

  697. ||	MV	B18,$Te4[2]
    698. 

  698. ||	MV	B19,$K[7]
    699. 

  699. 	.endif
    700. 

  700. 

  701. 	MVK	256,A0
    702. 

  702. ||	MVK	6,B0
    703. 

  703. 	MV	$TEA,$TEB
    704. 

  704. ||	ADD	$TEA,A0,A30			; rcon
    705. 

  705. ;;====================================================================
    706. 

  706. loop256?:
    707. 

  707. 	LDW	*A30++[1],A31			; rcon[i]
    708. 

  708. ||	MV	$Te4[2],$K[6]
    709. 

  709. ||	EXTU	$K[7],EXT1,24,$Te4[0]
    710. 

  710. 	LDBU	*${TEB}[$Te4[0]],$Te4[0]
    711. 

  711. ||	MV	$K[7],A0
    712. 

  712. ||	EXTU	$K[7],EXT2,24,$Te4[1]
    713. 

  713. 	LDBU	*${TEB}[$Te4[1]],$Te4[1]
    714. 

  714. ||	EXTU	A0,EXT3,24,A0
    715. 

  715. ||	EXTU	$K[7],EXT0,24,$Te4[3]
    716. 

  716. 	.if	.BIG_ENDIAN
    717. 

  717. 	LDBU	*${TEA}[A0],$Te4[3]
    718. 

  718. ||	LDBU	*${TEB}[$Te4[3]],A0
    719. 

  719. 	.else
    720. 

  720. 	LDBU	*${TEA}[A0],A0
    721. 

  721. ||	LDBU	*${TEB}[$Te4[3]],$Te4[3]
    722. 

  722. 	.endif
    723. 

  723. 

  724. 	STW	$K[0],*$KPA++[2]
    725. 

  725. ||	STW	$K[1],*$KPB++[2]
    726. 

  726. 	STW	$K[2],*$KPA++[2]
    727. 

  727. ||	STW	$K[3],*$KPB++[2]
    728. 

  728. 	STW	$K[4],*$KPA++[2]
    729. 

  729. ||	STW	$K[5],*$KPB++[2]
    730. 

  730. 	STW	$K[6],*$KPA++[2]
    731. 

  731. ||	STW	$K[7],*$KPB++[2]
    732. 

  732. ||	XOR	A31,$K[0],$K[0]			; ^=rcon[i]
    733. 

  733. 	.if	.BIG_ENDIAN
    734. 

  734. 	PACK2	$Te4[0],$Te4[1],$Te4[1]
    735. 

  735. ||	PACK2	$Te4[3],A0,$Te4[3]
    736. 

  736. 	PACKL4	$Te4[1],$Te4[3],$Te4[3]
    737. 

  737. ||[!B0]	B	done256?
    738. 

  738. 	.else
    739. 

  739. 	PACK2	$Te4[1],$Te4[0],$Te4[1]
    740. 

  740. ||	PACK2	$Te4[3],A0,$Te4[3]
    741. 

  741. 	PACKL4	$Te4[3],$Te4[1],$Te4[3]
    742. 

  742. ||[!B0]	B	done256?
    743. 

  743. 	.endif
    744. 

  744. 	XOR	$Te4[3],$K[0],$Te4[0]		; K[0]
    745. 

  745. 	XOR	$Te4[0],$K[1],$K[1]		; K[1]
    746. 

  746. 	MV	$Te4[0],$K[0]
    747. 

  747. ||	XOR	$K[1],$K[2],$Te4[2]		; K[2]
    748. 

  748. 	XOR	$Te4[2],$K[3],$K[3]		; K[3]
    749. 

  749. 

  750. 	MV	$Te4[2],$K[2]
    751. 

  751. || [B0]	EXTU	$K[3],EXT0,24,$Te4[0]
    752. 

  752. || [B0]	SUB	B0,1,B0
    753. 

  753. 	LDBU	*${TEB}[$Te4[0]],$Te4[0]
    754. 

  754. ||	MV	$K[3],A0
    755. 

  755. ||	EXTU	$K[3],EXT1,24,$Te4[1]
    756. 

  756. 	LDBU	*${TEB}[$Te4[1]],$Te4[1]
    757. 

  757. ||	EXTU	A0,EXT2,24,A0
    758. 

  758. ||	EXTU	$K[3],EXT3,24,$Te4[3]
    759. 

  759. 

  760. 	.if	.BIG_ENDIAN
    761. 

  761. 	LDBU	*${TEA}[A0],$Te4[3]
    762. 

  762. ||	LDBU	*${TEB}[$Te4[3]],A0
    763. 

  763. 	NOP	3
    764. 

  764. 	PACK2	$Te4[0],$Te4[1],$Te4[1]
    765. 

  765. 	PACK2	$Te4[3],A0,$Te4[3]
    766. 

  766. ||	B	loop256?
    767. 

  767. 	PACKL4	$Te4[1],$Te4[3],$Te4[3]
    768. 

  768. 	.else
    769. 

  769. 	LDBU	*${TEA}[A0],A0
    770. 

  770. ||	LDBU	*${TEB}[$Te4[3]],$Te4[3]
    771. 

  771. 	NOP	3
    772. 

  772. 	PACK2	$Te4[1],$Te4[0],$Te4[1]
    773. 

  773. 	PACK2	$Te4[3],A0,$Te4[3]
    774. 

  774. ||	B	loop256?
    775. 

  775. 	PACKL4	$Te4[3],$Te4[1],$Te4[3]
    776. 

  776. 	.endif
    777. 

  777. 

  778. 	XOR	$Te4[3],$K[4],$Te4[0]		; K[4]
    779. 

  779. 	XOR	$Te4[0],$K[5],$K[5]		; K[5]
    780. 

  780. 	MV	$Te4[0],$K[4]
    781. 

  781. ||	XOR	$K[5],$K[6],$Te4[2]		; K[6]
    782. 

  782. 	XOR	$Te4[2],$K[7],$K[7]		; K[7]
    783. 

  783. ;;====================================================================
    784. 

  784. done256?:
    785. 

  785. 	BNOP	RA
    786. 

  786. 	STW	$K[0],*$KPA++[2]
    787. 

  787. ||	STW	$K[1],*$KPB++[2]
    788. 

  788. 	STW	$K[2],*$KPA++[2]
    789. 

  789. ||	STW	$K[3],*$KPB++[2]
    790. 

  790. 	MVK	14,B0				; rounds
    791. 

  791. 	STW	B0,*--${KPB}[1]
    792. 

  792. 	MVK	0,RET
    793. 

  793. 	.endasmfunc
    794. 

  794. 

  795. 	.global	_AES_set_decrypt_key
    796. 

  796. _AES_set_decrypt_key:
    797. 

  797. 	.asmfunc
    798. 

  798. 	B	__set_encrypt_key		; guarantee local call
    799. 

  799. 	MV	KEY,B30				; B30 is not modified
    800. 

  800. 	MV	RA, B31				; B31 is not modified
    801. 

  801. 	ADDKPC	ret?,RA,2
    802. 

  802. ret?:						; B0 holds rounds or zero
    803. 

  803.   [!B0]	BNOP	B31				; return if zero
    804. 

  804.    [B0]	SHL	B0,4,A0				; offset to last round key
    805. 

  805.    [B0]	SHRU	B0,1,B1
    806. 

  806.    [B0]	SUB	B1,1,B1
    807. 

  807.    [B0]	MVK	0x0000001B,B3			; AES polynomial
    808. 

  808.    [B0]	MVKH	0x07000000,B3
    809. 

  809. 

  810. 	SPLOOPD	9				; flip round keys
    811. 

  811. ||	MVC	B1,ILC
    812. 

  812. ||	MV	B30,$KPA
    813. 

  813. ||	ADD	B30,A0,$KPB
    814. 

  814. ||	MVK	16,A0				; sizeof(round key)
    815. 

  815. ;;====================================================================
    816. 

  816. 	LDW	*${KPA}[0],A16
    817. 

  817. ||	LDW	*${KPB}[0],B16
    818. 

  818. 	LDW	*${KPA}[1],A17
    819. 

  819. ||	LDW	*${KPB}[1],B17
    820. 

  820. 	LDW	*${KPA}[2],A18
    821. 

  821. ||	LDW	*${KPB}[2],B18
    822. 

  822. 	LDW	*${KPA}[3],A19
    823. 

  823. ||	ADD	$KPA,A0,$KPA
    824. 

  824. ||	LDW	*${KPB}[3],B19
    825. 

  825. ||	SUB	$KPB,A0,$KPB
    826. 

  826. 	NOP
    827. 

  827. 	STW	B16,*${KPA}[-4]
    828. 

  828. ||	STW	A16,*${KPB}[4]
    829. 

  829. 	STW	B17,*${KPA}[-3]
    830. 

  830. ||	STW	A17,*${KPB}[5]
    831. 

  831. 	STW	B18,*${KPA}[-2]
    832. 

  832. ||	STW	A18,*${KPB}[6]
    833. 

  833. 	STW	B19,*${KPA}[-1]
    834. 

  834. ||	STW	A19,*${KPB}[7]
    835. 

  835. 	SPKERNEL
    836. 

  836. ;;====================================================================
    837. 

  837. 	SUB	B0,1,B0				; skip last round
    838. 

  838. ||	ADD	B30,A0,$KPA			; skip first round
    839. 

  839. ||	ADD	B30,A0,$KPB
    840. 

  840. ||	MVC	GFPGFR,B30			; save GFPGFR
    841. 

  841. 	LDW	*${KPA}[0],$K[0]
    842. 

  842. ||	LDW	*${KPB}[1],$K[1]
    843. 

  843. ||	MVC	B3,GFPGFR
    844. 

  844. 	LDW	*${KPA}[2],$K[2]
    845. 

  845. ||	LDW	*${KPB}[3],$K[3]
    846. 

  846. 	MVK	0x00000909,A24
    847. 

  847. ||	MVK	0x00000B0B,B24
    848. 

  848. 	MVKH	0x09090000,A24
    849. 

  849. ||	MVKH	0x0B0B0000,B24
    850. 

  850. 	MVC	B0,ILC
    851. 

  851. ||	SUB	B0,1,B0
    852. 

  852. 

  853. 	GMPY4	$K[0],A24,$Kx9[0]		; ·0x09
    854. 

  854. ||	GMPY4	$K[1],A24,$Kx9[1]
    855. 

  855. ||	MVK	0x00000D0D,A25
    856. 

  856. ||	MVK	0x00000E0E,B25
    857. 

  857. 	GMPY4	$K[2],A24,$Kx9[2]
    858. 

  858. ||	GMPY4	$K[3],A24,$Kx9[3]
    859. 

  859. ||	MVKH	0x0D0D0000,A25
    860. 

  860. ||	MVKH	0x0E0E0000,B25
    861. 

  861. 

  862. 	GMPY4	$K[0],B24,$KxB[0]		; ·0x0B
    863. 

  863. ||	GMPY4	$K[1],B24,$KxB[1]
    864. 

  864. 	GMPY4	$K[2],B24,$KxB[2]
    865. 

  865. ||	GMPY4	$K[3],B24,$KxB[3]
    866. 

  866. 

  867. 	SPLOOP	11				; InvMixColumns
    868. 

  868. ;;====================================================================
    869. 

  869. 	GMPY4	$K[0],A25,$KxD[0]		; ·0x0D
    870. 

  870. ||	GMPY4	$K[1],A25,$KxD[1]
    871. 

  871. ||	SWAP2	$Kx9[0],$Kx9[0]			; rotate by 16
    872. 

  872. ||	SWAP2	$Kx9[1],$Kx9[1]
    873. 

  873. ||	MV	$K[0],$s[0]			; this or DINT
    874. 

  874. ||	MV	$K[1],$s[1]
    875. 

  875. || [B0]	LDW	*${KPA}[4],$K[0]
    876. 

  876. || [B0]	LDW	*${KPB}[5],$K[1]
    877. 

  877. 	GMPY4	$K[2],A25,$KxD[2]
    878. 

  878. ||	GMPY4	$K[3],A25,$KxD[3]
    879. 

  879. ||	SWAP2	$Kx9[2],$Kx9[2]
    880. 

  880. ||	SWAP2	$Kx9[3],$Kx9[3]
    881. 

  881. ||	MV	$K[2],$s[2]
    882. 

  882. ||	MV	$K[3],$s[3]
    883. 

  883. || [B0]	LDW	*${KPA}[6],$K[2]
    884. 

  884. || [B0]	LDW	*${KPB}[7],$K[3]
    885. 

  885. 

  886. 	GMPY4	$s[0],B25,$KxE[0]		; ·0x0E
    887. 

  887. ||	GMPY4	$s[1],B25,$KxE[1]
    888. 

  888. ||	XOR	$Kx9[0],$KxB[0],$KxB[0]
    889. 

  889. ||	XOR	$Kx9[1],$KxB[1],$KxB[1]
    890. 

  890. 	GMPY4	$s[2],B25,$KxE[2]
    891. 

  891. ||	GMPY4	$s[3],B25,$KxE[3]
    892. 

  892. ||	XOR	$Kx9[2],$KxB[2],$KxB[2]
    893. 

  893. ||	XOR	$Kx9[3],$KxB[3],$KxB[3]
    894. 

  894. 

  895. 	ROTL	$KxB[0],TBL3,$KxB[0]
    896. 

  896. ||	ROTL	$KxB[1],TBL3,$KxB[1]
    897. 

  897. ||	SWAP2	$KxD[0],$KxD[0]			; rotate by 16
    898. 

  898. ||	SWAP2	$KxD[1],$KxD[1]
    899. 

  899. 	ROTL	$KxB[2],TBL3,$KxB[2]
    900. 

  900. ||	ROTL	$KxB[3],TBL3,$KxB[3]
    901. 

  901. ||	SWAP2	$KxD[2],$KxD[2]
    902. 

  902. ||	SWAP2	$KxD[3],$KxD[3]
    903. 

  903. 

  904. 	XOR	$KxE[0],$KxD[0],$KxE[0]
    905. 

  905. ||	XOR	$KxE[1],$KxD[1],$KxE[1]
    906. 

  906. || [B0]	GMPY4	$K[0],A24,$Kx9[0]		; ·0x09
    907. 

  907. || [B0]	GMPY4	$K[1],A24,$Kx9[1]
    908. 

  908. ||	ADDAW	$KPA,4,$KPA
    909. 

  909. 	XOR	$KxE[2],$KxD[2],$KxE[2]
    910. 

  910. ||	XOR	$KxE[3],$KxD[3],$KxE[3]
    911. 

  911. || [B0]	GMPY4	$K[2],A24,$Kx9[2]
    912. 

  912. || [B0]	GMPY4	$K[3],A24,$Kx9[3]
    913. 

  913. ||	ADDAW	$KPB,4,$KPB
    914. 

  914. 

  915. 	XOR	$KxB[0],$KxE[0],$KxE[0]
    916. 

  916. ||	XOR	$KxB[1],$KxE[1],$KxE[1]
    917. 

  917. || [B0]	GMPY4	$K[0],B24,$KxB[0]		; ·0x0B
    918. 

  918. || [B0]	GMPY4	$K[1],B24,$KxB[1]
    919. 

  919. 	XOR	$KxB[2],$KxE[2],$KxE[2]
    920. 

  920. ||	XOR	$KxB[3],$KxE[3],$KxE[3]
    921. 

  921. || [B0]	GMPY4	$K[2],B24,$KxB[2]
    922. 

  922. || [B0]	GMPY4	$K[3],B24,$KxB[3]
    923. 

  923. ||	STW	$KxE[0],*${KPA}[-4]
    924. 

  924. ||	STW	$KxE[1],*${KPB}[-3]
    925. 

  925. 	STW	$KxE[2],*${KPA}[-2]
    926. 

  926. ||	STW	$KxE[3],*${KPB}[-1]
    927. 

  927. || [B0]	SUB	B0,1,B0
    928. 

  928. 	SPKERNEL
    929. 

  929. ;;====================================================================
    930. 

  930. 	BNOP	B31,3
    931. 

  931. 	MVC	B30,GFPGFR			; restore GFPGFR(*)
    932. 

  932. 	MVK	0,RET
    933. 

  933. 	.endasmfunc
    934. 

  934. ___
    935. 

  935. # (*)	Even though ABI doesn't specify GFPGFR as non-volatile, there
    936. 

  936. #	are code samples out there that *assume* its default value.
    937. 

  937. }
    938. 

  938. {
    939. 

  939. my ($inp,$out,$blocks,$key,$ivp)=("A4","B4","A6","B6","A8");
    940. 

  940. $code.=<<___;
    941. 

  941. 	.global	_AES_ctr32_encrypt
    942. 

  942. _AES_ctr32_encrypt:
    943. 

  943. 	.asmfunc
    944. 

  944. 	LDNDW	*${ivp}[0],A31:A30	; load counter value
    945. 

  945. ||	MV	$blocks,A2		; reassign $blocks
    946. 

  946. ||	DMV	RA,$key,B27:B26		; reassign RA and $key
    947. 

  947. 	LDNDW	*${ivp}[1],B31:B30
    948. 

  948. ||	MVK	0,B2			; don't let __encrypt load input
    949. 

  949. ||	MVK	0,A1			; and postpone writing output
    950. 

  950. 	.if	.BIG_ENDIAN
    951. 

  951. 	NOP
    952. 

  952. 	.else
    953. 

  953. 	NOP	4
    954. 

  954. 	SWAP2	B31,B31			; keep least significant 32 bits
    955. 

  955. 	SWAP4	B31,B31			; in host byte order
    956. 

  956. 	.endif
    957. 

  957. ctr32_loop?:
    958. 

  958.    [A2]	BNOP	__encrypt
    959. 

  959. || [A1]	XOR	A29,A9,A9		; input^Ek(counter)
    960. 

  960. || [A1]	XOR	A28,A8,A8
    961. 

  961. || [A2]	LDNDW	*INP++,A29:A28		; load input
    962. 

  962.   [!A2]	BNOP	B27			; return
    963. 

  963. || [A1]	XOR	B29,B9,B9
    964. 

  964. || [A1]	XOR	B28,B8,B8
    965. 

  965. || [A2]	LDNDW	*INP++,B29:B28
    966. 

  966. 	.if	.BIG_ENDIAN
    967. 

  967.    [A1]	STNDW	A9:A8,*OUT++		; save output
    968. 

  968. || [A2]	DMV	A31,A30,A9:A8		; pass counter value to __encrypt
    969. 

  969.    [A1]	STNDW	B9:B8,*OUT++
    970. 

  970. || [A2]	DMV	B31,B30,B9:B8
    971. 

  971. || [A2]	ADD	B30,1,B30		; counter++
    972. 

  972. 	.else
    973. 

  973.    [A1]	STNDW	A9:A8,*OUT++		; save output
    974. 

  974. || [A2]	DMV	A31,A30,A9:A8
    975. 

  975. || [A2]	SWAP2	B31,B0
    976. 

  976. || [A2]	ADD	B31,1,B31		; counter++
    977. 

  977.    [A1]	STNDW	B9:B8,*OUT++
    978. 

  978. || [A2]	MV	B30,B8
    979. 

  979. || [A2]	SWAP4	B0,B9
    980. 

  980. 	.endif
    981. 

  981.    [A2]	ADDKPC	ctr32_loop?,RA		; return to ctr32_loop?
    982. 

  982. || [A2]	MV	B26,KEY			; pass $key
    983. 

  983. || [A2]	SUB	A2,1,A2			; $blocks--
    984. 

  984. ||[!A1]	MVK	1,A1
    985. 

  985. 	NOP
    986. 

  986. 	NOP
    987. 

  987. 	.endasmfunc
    988. 

  988. ___
    989. 

  989. }
    990. 

  990. # Tables are kept in endian-neutral manner
    991. 

  991. $code.=<<___;
    992. 

  992. 	.sect	".const:aes_asm"
    993. 

  993. 	.align	128
    994. 

  994. AES_Te:
    995. 

  995. 	.byte	0xc6,0x63,0x63,0xa5,	0xf8,0x7c,0x7c,0x84
    996. 

  996. 	.byte	0xee,0x77,0x77,0x99,	0xf6,0x7b,0x7b,0x8d
    997. 

  997. 	.byte	0xff,0xf2,0xf2,0x0d,	0xd6,0x6b,0x6b,0xbd
    998. 

  998. 	.byte	0xde,0x6f,0x6f,0xb1,	0x91,0xc5,0xc5,0x54
    999. 

  999. 	.byte	0x60,0x30,0x30,0x50,	0x02,0x01,0x01,0x03
    1000. 

  1000. 	.byte	0xce,0x67,0x67,0xa9,	0x56,0x2b,0x2b,0x7d
    1001. 

  1001. 	.byte	0xe7,0xfe,0xfe,0x19,	0xb5,0xd7,0xd7,0x62
    1002. 

  1002. 	.byte	0x4d,0xab,0xab,0xe6,	0xec,0x76,0x76,0x9a
    1003. 

  1003. 	.byte	0x8f,0xca,0xca,0x45,	0x1f,0x82,0x82,0x9d
    1004. 

  1004. 	.byte	0x89,0xc9,0xc9,0x40,	0xfa,0x7d,0x7d,0x87
    1005. 

  1005. 	.byte	0xef,0xfa,0xfa,0x15,	0xb2,0x59,0x59,0xeb
    1006. 

  1006. 	.byte	0x8e,0x47,0x47,0xc9,	0xfb,0xf0,0xf0,0x0b
    1007. 

  1007. 	.byte	0x41,0xad,0xad,0xec,	0xb3,0xd4,0xd4,0x67
    1008. 

  1008. 	.byte	0x5f,0xa2,0xa2,0xfd,	0x45,0xaf,0xaf,0xea
    1009. 

  1009. 	.byte	0x23,0x9c,0x9c,0xbf,	0x53,0xa4,0xa4,0xf7
    1010. 

  1010. 	.byte	0xe4,0x72,0x72,0x96,	0x9b,0xc0,0xc0,0x5b
    1011. 

  1011. 	.byte	0x75,0xb7,0xb7,0xc2,	0xe1,0xfd,0xfd,0x1c
    1012. 

  1012. 	.byte	0x3d,0x93,0x93,0xae,	0x4c,0x26,0x26,0x6a
    1013. 

  1013. 	.byte	0x6c,0x36,0x36,0x5a,	0x7e,0x3f,0x3f,0x41
    1014. 

  1014. 	.byte	0xf5,0xf7,0xf7,0x02,	0x83,0xcc,0xcc,0x4f
    1015. 

  1015. 	.byte	0x68,0x34,0x34,0x5c,	0x51,0xa5,0xa5,0xf4
    1016. 

  1016. 	.byte	0xd1,0xe5,0xe5,0x34,	0xf9,0xf1,0xf1,0x08
    1017. 

  1017. 	.byte	0xe2,0x71,0x71,0x93,	0xab,0xd8,0xd8,0x73
    1018. 

  1018. 	.byte	0x62,0x31,0x31,0x53,	0x2a,0x15,0x15,0x3f
    1019. 

  1019. 	.byte	0x08,0x04,0x04,0x0c,	0x95,0xc7,0xc7,0x52
    1020. 

  1020. 	.byte	0x46,0x23,0x23,0x65,	0x9d,0xc3,0xc3,0x5e
    1021. 

  1021. 	.byte	0x30,0x18,0x18,0x28,	0x37,0x96,0x96,0xa1
    1022. 

  1022. 	.byte	0x0a,0x05,0x05,0x0f,	0x2f,0x9a,0x9a,0xb5
    1023. 

  1023. 	.byte	0x0e,0x07,0x07,0x09,	0x24,0x12,0x12,0x36
    1024. 

  1024. 	.byte	0x1b,0x80,0x80,0x9b,	0xdf,0xe2,0xe2,0x3d
    1025. 

  1025. 	.byte	0xcd,0xeb,0xeb,0x26,	0x4e,0x27,0x27,0x69
    1026. 

  1026. 	.byte	0x7f,0xb2,0xb2,0xcd,	0xea,0x75,0x75,0x9f
    1027. 

  1027. 	.byte	0x12,0x09,0x09,0x1b,	0x1d,0x83,0x83,0x9e
    1028. 

  1028. 	.byte	0x58,0x2c,0x2c,0x74,	0x34,0x1a,0x1a,0x2e
    1029. 

  1029. 	.byte	0x36,0x1b,0x1b,0x2d,	0xdc,0x6e,0x6e,0xb2
    1030. 

  1030. 	.byte	0xb4,0x5a,0x5a,0xee,	0x5b,0xa0,0xa0,0xfb
    1031. 

  1031. 	.byte	0xa4,0x52,0x52,0xf6,	0x76,0x3b,0x3b,0x4d
    1032. 

  1032. 	.byte	0xb7,0xd6,0xd6,0x61,	0x7d,0xb3,0xb3,0xce
    1033. 

  1033. 	.byte	0x52,0x29,0x29,0x7b,	0xdd,0xe3,0xe3,0x3e
    1034. 

  1034. 	.byte	0x5e,0x2f,0x2f,0x71,	0x13,0x84,0x84,0x97
    1035. 

  1035. 	.byte	0xa6,0x53,0x53,0xf5,	0xb9,0xd1,0xd1,0x68
    1036. 

  1036. 	.byte	0x00,0x00,0x00,0x00,	0xc1,0xed,0xed,0x2c
    1037. 

  1037. 	.byte	0x40,0x20,0x20,0x60,	0xe3,0xfc,0xfc,0x1f
    1038. 

  1038. 	.byte	0x79,0xb1,0xb1,0xc8,	0xb6,0x5b,0x5b,0xed
    1039. 

  1039. 	.byte	0xd4,0x6a,0x6a,0xbe,	0x8d,0xcb,0xcb,0x46
    1040. 

  1040. 	.byte	0x67,0xbe,0xbe,0xd9,	0x72,0x39,0x39,0x4b
    1041. 

  1041. 	.byte	0x94,0x4a,0x4a,0xde,	0x98,0x4c,0x4c,0xd4
    1042. 

  1042. 	.byte	0xb0,0x58,0x58,0xe8,	0x85,0xcf,0xcf,0x4a
    1043. 

  1043. 	.byte	0xbb,0xd0,0xd0,0x6b,	0xc5,0xef,0xef,0x2a
    1044. 

  1044. 	.byte	0x4f,0xaa,0xaa,0xe5,	0xed,0xfb,0xfb,0x16
    1045. 

  1045. 	.byte	0x86,0x43,0x43,0xc5,	0x9a,0x4d,0x4d,0xd7
    1046. 

  1046. 	.byte	0x66,0x33,0x33,0x55,	0x11,0x85,0x85,0x94
    1047. 

  1047. 	.byte	0x8a,0x45,0x45,0xcf,	0xe9,0xf9,0xf9,0x10
    1048. 

  1048. 	.byte	0x04,0x02,0x02,0x06,	0xfe,0x7f,0x7f,0x81
    1049. 

  1049. 	.byte	0xa0,0x50,0x50,0xf0,	0x78,0x3c,0x3c,0x44
    1050. 

  1050. 	.byte	0x25,0x9f,0x9f,0xba,	0x4b,0xa8,0xa8,0xe3
    1051. 

  1051. 	.byte	0xa2,0x51,0x51,0xf3,	0x5d,0xa3,0xa3,0xfe
    1052. 

  1052. 	.byte	0x80,0x40,0x40,0xc0,	0x05,0x8f,0x8f,0x8a
    1053. 

  1053. 	.byte	0x3f,0x92,0x92,0xad,	0x21,0x9d,0x9d,0xbc
    1054. 

  1054. 	.byte	0x70,0x38,0x38,0x48,	0xf1,0xf5,0xf5,0x04
    1055. 

  1055. 	.byte	0x63,0xbc,0xbc,0xdf,	0x77,0xb6,0xb6,0xc1
    1056. 

  1056. 	.byte	0xaf,0xda,0xda,0x75,	0x42,0x21,0x21,0x63
    1057. 

  1057. 	.byte	0x20,0x10,0x10,0x30,	0xe5,0xff,0xff,0x1a
    1058. 

  1058. 	.byte	0xfd,0xf3,0xf3,0x0e,	0xbf,0xd2,0xd2,0x6d
    1059. 

  1059. 	.byte	0x81,0xcd,0xcd,0x4c,	0x18,0x0c,0x0c,0x14
    1060. 

  1060. 	.byte	0x26,0x13,0x13,0x35,	0xc3,0xec,0xec,0x2f
    1061. 

  1061. 	.byte	0xbe,0x5f,0x5f,0xe1,	0x35,0x97,0x97,0xa2
    1062. 

  1062. 	.byte	0x88,0x44,0x44,0xcc,	0x2e,0x17,0x17,0x39
    1063. 

  1063. 	.byte	0x93,0xc4,0xc4,0x57,	0x55,0xa7,0xa7,0xf2
    1064. 

  1064. 	.byte	0xfc,0x7e,0x7e,0x82,	0x7a,0x3d,0x3d,0x47
    1065. 

  1065. 	.byte	0xc8,0x64,0x64,0xac,	0xba,0x5d,0x5d,0xe7
    1066. 

  1066. 	.byte	0x32,0x19,0x19,0x2b,	0xe6,0x73,0x73,0x95
    1067. 

  1067. 	.byte	0xc0,0x60,0x60,0xa0,	0x19,0x81,0x81,0x98
    1068. 

  1068. 	.byte	0x9e,0x4f,0x4f,0xd1,	0xa3,0xdc,0xdc,0x7f
    1069. 

  1069. 	.byte	0x44,0x22,0x22,0x66,	0x54,0x2a,0x2a,0x7e
    1070. 

  1070. 	.byte	0x3b,0x90,0x90,0xab,	0x0b,0x88,0x88,0x83
    1071. 

  1071. 	.byte	0x8c,0x46,0x46,0xca,	0xc7,0xee,0xee,0x29
    1072. 

  1072. 	.byte	0x6b,0xb8,0xb8,0xd3,	0x28,0x14,0x14,0x3c
    1073. 

  1073. 	.byte	0xa7,0xde,0xde,0x79,	0xbc,0x5e,0x5e,0xe2
    1074. 

  1074. 	.byte	0x16,0x0b,0x0b,0x1d,	0xad,0xdb,0xdb,0x76
    1075. 

  1075. 	.byte	0xdb,0xe0,0xe0,0x3b,	0x64,0x32,0x32,0x56
    1076. 

  1076. 	.byte	0x74,0x3a,0x3a,0x4e,	0x14,0x0a,0x0a,0x1e
    1077. 

  1077. 	.byte	0x92,0x49,0x49,0xdb,	0x0c,0x06,0x06,0x0a
    1078. 

  1078. 	.byte	0x48,0x24,0x24,0x6c,	0xb8,0x5c,0x5c,0xe4
    1079. 

  1079. 	.byte	0x9f,0xc2,0xc2,0x5d,	0xbd,0xd3,0xd3,0x6e
    1080. 

  1080. 	.byte	0x43,0xac,0xac,0xef,	0xc4,0x62,0x62,0xa6
    1081. 

  1081. 	.byte	0x39,0x91,0x91,0xa8,	0x31,0x95,0x95,0xa4
    1082. 

  1082. 	.byte	0xd3,0xe4,0xe4,0x37,	0xf2,0x79,0x79,0x8b
    1083. 

  1083. 	.byte	0xd5,0xe7,0xe7,0x32,	0x8b,0xc8,0xc8,0x43
    1084. 

  1084. 	.byte	0x6e,0x37,0x37,0x59,	0xda,0x6d,0x6d,0xb7
    1085. 

  1085. 	.byte	0x01,0x8d,0x8d,0x8c,	0xb1,0xd5,0xd5,0x64
    1086. 

  1086. 	.byte	0x9c,0x4e,0x4e,0xd2,	0x49,0xa9,0xa9,0xe0
    1087. 

  1087. 	.byte	0xd8,0x6c,0x6c,0xb4,	0xac,0x56,0x56,0xfa
    1088. 

  1088. 	.byte	0xf3,0xf4,0xf4,0x07,	0xcf,0xea,0xea,0x25
    1089. 

  1089. 	.byte	0xca,0x65,0x65,0xaf,	0xf4,0x7a,0x7a,0x8e
    1090. 

  1090. 	.byte	0x47,0xae,0xae,0xe9,	0x10,0x08,0x08,0x18
    1091. 

  1091. 	.byte	0x6f,0xba,0xba,0xd5,	0xf0,0x78,0x78,0x88
    1092. 

  1092. 	.byte	0x4a,0x25,0x25,0x6f,	0x5c,0x2e,0x2e,0x72
    1093. 

  1093. 	.byte	0x38,0x1c,0x1c,0x24,	0x57,0xa6,0xa6,0xf1
    1094. 

  1094. 	.byte	0x73,0xb4,0xb4,0xc7,	0x97,0xc6,0xc6,0x51
    1095. 

  1095. 	.byte	0xcb,0xe8,0xe8,0x23,	0xa1,0xdd,0xdd,0x7c
    1096. 

  1096. 	.byte	0xe8,0x74,0x74,0x9c,	0x3e,0x1f,0x1f,0x21
    1097. 

  1097. 	.byte	0x96,0x4b,0x4b,0xdd,	0x61,0xbd,0xbd,0xdc
    1098. 

  1098. 	.byte	0x0d,0x8b,0x8b,0x86,	0x0f,0x8a,0x8a,0x85
    1099. 

  1099. 	.byte	0xe0,0x70,0x70,0x90,	0x7c,0x3e,0x3e,0x42
    1100. 

  1100. 	.byte	0x71,0xb5,0xb5,0xc4,	0xcc,0x66,0x66,0xaa
    1101. 

  1101. 	.byte	0x90,0x48,0x48,0xd8,	0x06,0x03,0x03,0x05
    1102. 

  1102. 	.byte	0xf7,0xf6,0xf6,0x01,	0x1c,0x0e,0x0e,0x12
    1103. 

  1103. 	.byte	0xc2,0x61,0x61,0xa3,	0x6a,0x35,0x35,0x5f
    1104. 

  1104. 	.byte	0xae,0x57,0x57,0xf9,	0x69,0xb9,0xb9,0xd0
    1105. 

  1105. 	.byte	0x17,0x86,0x86,0x91,	0x99,0xc1,0xc1,0x58
    1106. 

  1106. 	.byte	0x3a,0x1d,0x1d,0x27,	0x27,0x9e,0x9e,0xb9
    1107. 

  1107. 	.byte	0xd9,0xe1,0xe1,0x38,	0xeb,0xf8,0xf8,0x13
    1108. 

  1108. 	.byte	0x2b,0x98,0x98,0xb3,	0x22,0x11,0x11,0x33
    1109. 

  1109. 	.byte	0xd2,0x69,0x69,0xbb,	0xa9,0xd9,0xd9,0x70
    1110. 

  1110. 	.byte	0x07,0x8e,0x8e,0x89,	0x33,0x94,0x94,0xa7
    1111. 

  1111. 	.byte	0x2d,0x9b,0x9b,0xb6,	0x3c,0x1e,0x1e,0x22
    1112. 

  1112. 	.byte	0x15,0x87,0x87,0x92,	0xc9,0xe9,0xe9,0x20
    1113. 

  1113. 	.byte	0x87,0xce,0xce,0x49,	0xaa,0x55,0x55,0xff
    1114. 

  1114. 	.byte	0x50,0x28,0x28,0x78,	0xa5,0xdf,0xdf,0x7a
    1115. 

  1115. 	.byte	0x03,0x8c,0x8c,0x8f,	0x59,0xa1,0xa1,0xf8
    1116. 

  1116. 	.byte	0x09,0x89,0x89,0x80,	0x1a,0x0d,0x0d,0x17
    1117. 

  1117. 	.byte	0x65,0xbf,0xbf,0xda,	0xd7,0xe6,0xe6,0x31
    1118. 

  1118. 	.byte	0x84,0x42,0x42,0xc6,	0xd0,0x68,0x68,0xb8
    1119. 

  1119. 	.byte	0x82,0x41,0x41,0xc3,	0x29,0x99,0x99,0xb0
    1120. 

  1120. 	.byte	0x5a,0x2d,0x2d,0x77,	0x1e,0x0f,0x0f,0x11
    1121. 

  1121. 	.byte	0x7b,0xb0,0xb0,0xcb,	0xa8,0x54,0x54,0xfc
    1122. 

  1122. 	.byte	0x6d,0xbb,0xbb,0xd6,	0x2c,0x16,0x16,0x3a
    1123. 

  1123. AES_Te4:
    1124. 

  1124. 	.byte	0x63, 0x7c, 0x77, 0x7b, 0xf2, 0x6b, 0x6f, 0xc5
    1125. 

  1125. 	.byte	0x30, 0x01, 0x67, 0x2b, 0xfe, 0xd7, 0xab, 0x76
    1126. 

  1126. 	.byte	0xca, 0x82, 0xc9, 0x7d, 0xfa, 0x59, 0x47, 0xf0
    1127. 

  1127. 	.byte	0xad, 0xd4, 0xa2, 0xaf, 0x9c, 0xa4, 0x72, 0xc0
    1128. 

  1128. 	.byte	0xb7, 0xfd, 0x93, 0x26, 0x36, 0x3f, 0xf7, 0xcc
    1129. 

  1129. 	.byte	0x34, 0xa5, 0xe5, 0xf1, 0x71, 0xd8, 0x31, 0x15
    1130. 

  1130. 	.byte	0x04, 0xc7, 0x23, 0xc3, 0x18, 0x96, 0x05, 0x9a
    1131. 

  1131. 	.byte	0x07, 0x12, 0x80, 0xe2, 0xeb, 0x27, 0xb2, 0x75
    1132. 

  1132. 	.byte	0x09, 0x83, 0x2c, 0x1a, 0x1b, 0x6e, 0x5a, 0xa0
    1133. 

  1133. 	.byte	0x52, 0x3b, 0xd6, 0xb3, 0x29, 0xe3, 0x2f, 0x84
    1134. 

  1134. 	.byte	0x53, 0xd1, 0x00, 0xed, 0x20, 0xfc, 0xb1, 0x5b
    1135. 

  1135. 	.byte	0x6a, 0xcb, 0xbe, 0x39, 0x4a, 0x4c, 0x58, 0xcf
    1136. 

  1136. 	.byte	0xd0, 0xef, 0xaa, 0xfb, 0x43, 0x4d, 0x33, 0x85
    1137. 

  1137. 	.byte	0x45, 0xf9, 0x02, 0x7f, 0x50, 0x3c, 0x9f, 0xa8
    1138. 

  1138. 	.byte	0x51, 0xa3, 0x40, 0x8f, 0x92, 0x9d, 0x38, 0xf5
    1139. 

  1139. 	.byte	0xbc, 0xb6, 0xda, 0x21, 0x10, 0xff, 0xf3, 0xd2
    1140. 

  1140. 	.byte	0xcd, 0x0c, 0x13, 0xec, 0x5f, 0x97, 0x44, 0x17
    1141. 

  1141. 	.byte	0xc4, 0xa7, 0x7e, 0x3d, 0x64, 0x5d, 0x19, 0x73
    1142. 

  1142. 	.byte	0x60, 0x81, 0x4f, 0xdc, 0x22, 0x2a, 0x90, 0x88
    1143. 

  1143. 	.byte	0x46, 0xee, 0xb8, 0x14, 0xde, 0x5e, 0x0b, 0xdb
    1144. 

  1144. 	.byte	0xe0, 0x32, 0x3a, 0x0a, 0x49, 0x06, 0x24, 0x5c
    1145. 

  1145. 	.byte	0xc2, 0xd3, 0xac, 0x62, 0x91, 0x95, 0xe4, 0x79
    1146. 

  1146. 	.byte	0xe7, 0xc8, 0x37, 0x6d, 0x8d, 0xd5, 0x4e, 0xa9
    1147. 

  1147. 	.byte	0x6c, 0x56, 0xf4, 0xea, 0x65, 0x7a, 0xae, 0x08
    1148. 

  1148. 	.byte	0xba, 0x78, 0x25, 0x2e, 0x1c, 0xa6, 0xb4, 0xc6
    1149. 

  1149. 	.byte	0xe8, 0xdd, 0x74, 0x1f, 0x4b, 0xbd, 0x8b, 0x8a
    1150. 

  1150. 	.byte	0x70, 0x3e, 0xb5, 0x66, 0x48, 0x03, 0xf6, 0x0e
    1151. 

  1151. 	.byte	0x61, 0x35, 0x57, 0xb9, 0x86, 0xc1, 0x1d, 0x9e
    1152. 

  1152. 	.byte	0xe1, 0xf8, 0x98, 0x11, 0x69, 0xd9, 0x8e, 0x94
    1153. 

  1153. 	.byte	0x9b, 0x1e, 0x87, 0xe9, 0xce, 0x55, 0x28, 0xdf
    1154. 

  1154. 	.byte	0x8c, 0xa1, 0x89, 0x0d, 0xbf, 0xe6, 0x42, 0x68
    1155. 

  1155. 	.byte	0x41, 0x99, 0x2d, 0x0f, 0xb0, 0x54, 0xbb, 0x16
    1156. 

  1156. rcon:
    1157. 

  1157. 	.byte	0x01,0x00,0x00,0x00,	0x02,0x00,0x00,0x00
    1158. 

  1158. 	.byte	0x04,0x00,0x00,0x00,	0x08,0x00,0x00,0x00
    1159. 

  1159. 	.byte	0x10,0x00,0x00,0x00,	0x20,0x00,0x00,0x00
    1160. 

  1160. 	.byte	0x40,0x00,0x00,0x00,	0x80,0x00,0x00,0x00
    1161. 

  1161. 	.byte	0x1B,0x00,0x00,0x00,	0x36,0x00,0x00,0x00
    1162. 

  1162. 	.align	128
    1163. 

  1163. AES_Td:
    1164. 

  1164. 	.byte	0x51,0xf4,0xa7,0x50,	0x7e,0x41,0x65,0x53
    1165. 

  1165. 	.byte	0x1a,0x17,0xa4,0xc3,	0x3a,0x27,0x5e,0x96
    1166. 

  1166. 	.byte	0x3b,0xab,0x6b,0xcb,	0x1f,0x9d,0x45,0xf1
    1167. 

  1167. 	.byte	0xac,0xfa,0x58,0xab,	0x4b,0xe3,0x03,0x93
    1168. 

  1168. 	.byte	0x20,0x30,0xfa,0x55,	0xad,0x76,0x6d,0xf6
    1169. 

  1169. 	.byte	0x88,0xcc,0x76,0x91,	0xf5,0x02,0x4c,0x25
    1170. 

  1170. 	.byte	0x4f,0xe5,0xd7,0xfc,	0xc5,0x2a,0xcb,0xd7
    1171. 

  1171. 	.byte	0x26,0x35,0x44,0x80,	0xb5,0x62,0xa3,0x8f
    1172. 

  1172. 	.byte	0xde,0xb1,0x5a,0x49,	0x25,0xba,0x1b,0x67
    1173. 

  1173. 	.byte	0x45,0xea,0x0e,0x98,	0x5d,0xfe,0xc0,0xe1
    1174. 

  1174. 	.byte	0xc3,0x2f,0x75,0x02,	0x81,0x4c,0xf0,0x12
    1175. 

  1175. 	.byte	0x8d,0x46,0x97,0xa3,	0x6b,0xd3,0xf9,0xc6
    1176. 

  1176. 	.byte	0x03,0x8f,0x5f,0xe7,	0x15,0x92,0x9c,0x95
    1177. 

  1177. 	.byte	0xbf,0x6d,0x7a,0xeb,	0x95,0x52,0x59,0xda
    1178. 

  1178. 	.byte	0xd4,0xbe,0x83,0x2d,	0x58,0x74,0x21,0xd3
    1179. 

  1179. 	.byte	0x49,0xe0,0x69,0x29,	0x8e,0xc9,0xc8,0x44
    1180. 

  1180. 	.byte	0x75,0xc2,0x89,0x6a,	0xf4,0x8e,0x79,0x78
    1181. 

  1181. 	.byte	0x99,0x58,0x3e,0x6b,	0x27,0xb9,0x71,0xdd
    1182. 

  1182. 	.byte	0xbe,0xe1,0x4f,0xb6,	0xf0,0x88,0xad,0x17
    1183. 

  1183. 	.byte	0xc9,0x20,0xac,0x66,	0x7d,0xce,0x3a,0xb4
    1184. 

  1184. 	.byte	0x63,0xdf,0x4a,0x18,	0xe5,0x1a,0x31,0x82
    1185. 

  1185. 	.byte	0x97,0x51,0x33,0x60,	0x62,0x53,0x7f,0x45
    1186. 

  1186. 	.byte	0xb1,0x64,0x77,0xe0,	0xbb,0x6b,0xae,0x84
    1187. 

  1187. 	.byte	0xfe,0x81,0xa0,0x1c,	0xf9,0x08,0x2b,0x94
    1188. 

  1188. 	.byte	0x70,0x48,0x68,0x58,	0x8f,0x45,0xfd,0x19
    1189. 

  1189. 	.byte	0x94,0xde,0x6c,0x87,	0x52,0x7b,0xf8,0xb7
    1190. 

  1190. 	.byte	0xab,0x73,0xd3,0x23,	0x72,0x4b,0x02,0xe2
    1191. 

  1191. 	.byte	0xe3,0x1f,0x8f,0x57,	0x66,0x55,0xab,0x2a
    1192. 

  1192. 	.byte	0xb2,0xeb,0x28,0x07,	0x2f,0xb5,0xc2,0x03
    1193. 

  1193. 	.byte	0x86,0xc5,0x7b,0x9a,	0xd3,0x37,0x08,0xa5
    1194. 

  1194. 	.byte	0x30,0x28,0x87,0xf2,	0x23,0xbf,0xa5,0xb2
    1195. 

  1195. 	.byte	0x02,0x03,0x6a,0xba,	0xed,0x16,0x82,0x5c
    1196. 

  1196. 	.byte	0x8a,0xcf,0x1c,0x2b,	0xa7,0x79,0xb4,0x92
    1197. 

  1197. 	.byte	0xf3,0x07,0xf2,0xf0,	0x4e,0x69,0xe2,0xa1
    1198. 

  1198. 	.byte	0x65,0xda,0xf4,0xcd,	0x06,0x05,0xbe,0xd5
    1199. 

  1199. 	.byte	0xd1,0x34,0x62,0x1f,	0xc4,0xa6,0xfe,0x8a
    1200. 

  1200. 	.byte	0x34,0x2e,0x53,0x9d,	0xa2,0xf3,0x55,0xa0
    1201. 

  1201. 	.byte	0x05,0x8a,0xe1,0x32,	0xa4,0xf6,0xeb,0x75
    1202. 

  1202. 	.byte	0x0b,0x83,0xec,0x39,	0x40,0x60,0xef,0xaa
    1203. 

  1203. 	.byte	0x5e,0x71,0x9f,0x06,	0xbd,0x6e,0x10,0x51
    1204. 

  1204. 	.byte	0x3e,0x21,0x8a,0xf9,	0x96,0xdd,0x06,0x3d
    1205. 

  1205. 	.byte	0xdd,0x3e,0x05,0xae,	0x4d,0xe6,0xbd,0x46
    1206. 

  1206. 	.byte	0x91,0x54,0x8d,0xb5,	0x71,0xc4,0x5d,0x05
    1207. 

  1207. 	.byte	0x04,0x06,0xd4,0x6f,	0x60,0x50,0x15,0xff
    1208. 

  1208. 	.byte	0x19,0x98,0xfb,0x24,	0xd6,0xbd,0xe9,0x97
    1209. 

  1209. 	.byte	0x89,0x40,0x43,0xcc,	0x67,0xd9,0x9e,0x77
    1210. 

  1210. 	.byte	0xb0,0xe8,0x42,0xbd,	0x07,0x89,0x8b,0x88
    1211. 

  1211. 	.byte	0xe7,0x19,0x5b,0x38,	0x79,0xc8,0xee,0xdb
    1212. 

  1212. 	.byte	0xa1,0x7c,0x0a,0x47,	0x7c,0x42,0x0f,0xe9
    1213. 

  1213. 	.byte	0xf8,0x84,0x1e,0xc9,	0x00,0x00,0x00,0x00
    1214. 

  1214. 	.byte	0x09,0x80,0x86,0x83,	0x32,0x2b,0xed,0x48
    1215. 

  1215. 	.byte	0x1e,0x11,0x70,0xac,	0x6c,0x5a,0x72,0x4e
    1216. 

  1216. 	.byte	0xfd,0x0e,0xff,0xfb,	0x0f,0x85,0x38,0x56
    1217. 

  1217. 	.byte	0x3d,0xae,0xd5,0x1e,	0x36,0x2d,0x39,0x27
    1218. 

  1218. 	.byte	0x0a,0x0f,0xd9,0x64,	0x68,0x5c,0xa6,0x21
    1219. 

  1219. 	.byte	0x9b,0x5b,0x54,0xd1,	0x24,0x36,0x2e,0x3a
    1220. 

  1220. 	.byte	0x0c,0x0a,0x67,0xb1,	0x93,0x57,0xe7,0x0f
    1221. 

  1221. 	.byte	0xb4,0xee,0x96,0xd2,	0x1b,0x9b,0x91,0x9e
    1222. 

  1222. 	.byte	0x80,0xc0,0xc5,0x4f,	0x61,0xdc,0x20,0xa2
    1223. 

  1223. 	.byte	0x5a,0x77,0x4b,0x69,	0x1c,0x12,0x1a,0x16
    1224. 

  1224. 	.byte	0xe2,0x93,0xba,0x0a,	0xc0,0xa0,0x2a,0xe5
    1225. 

  1225. 	.byte	0x3c,0x22,0xe0,0x43,	0x12,0x1b,0x17,0x1d
    1226. 

  1226. 	.byte	0x0e,0x09,0x0d,0x0b,	0xf2,0x8b,0xc7,0xad
    1227. 

  1227. 	.byte	0x2d,0xb6,0xa8,0xb9,	0x14,0x1e,0xa9,0xc8
    1228. 

  1228. 	.byte	0x57,0xf1,0x19,0x85,	0xaf,0x75,0x07,0x4c
    1229. 

  1229. 	.byte	0xee,0x99,0xdd,0xbb,	0xa3,0x7f,0x60,0xfd
    1230. 

  1230. 	.byte	0xf7,0x01,0x26,0x9f,	0x5c,0x72,0xf5,0xbc
    1231. 

  1231. 	.byte	0x44,0x66,0x3b,0xc5,	0x5b,0xfb,0x7e,0x34
    1232. 

  1232. 	.byte	0x8b,0x43,0x29,0x76,	0xcb,0x23,0xc6,0xdc
    1233. 

  1233. 	.byte	0xb6,0xed,0xfc,0x68,	0xb8,0xe4,0xf1,0x63
    1234. 

  1234. 	.byte	0xd7,0x31,0xdc,0xca,	0x42,0x63,0x85,0x10
    1235. 

  1235. 	.byte	0x13,0x97,0x22,0x40,	0x84,0xc6,0x11,0x20
    1236. 

  1236. 	.byte	0x85,0x4a,0x24,0x7d,	0xd2,0xbb,0x3d,0xf8
    1237. 

  1237. 	.byte	0xae,0xf9,0x32,0x11,	0xc7,0x29,0xa1,0x6d
    1238. 

  1238. 	.byte	0x1d,0x9e,0x2f,0x4b,	0xdc,0xb2,0x30,0xf3
    1239. 

  1239. 	.byte	0x0d,0x86,0x52,0xec,	0x77,0xc1,0xe3,0xd0
    1240. 

  1240. 	.byte	0x2b,0xb3,0x16,0x6c,	0xa9,0x70,0xb9,0x99
    1241. 

  1241. 	.byte	0x11,0x94,0x48,0xfa,	0x47,0xe9,0x64,0x22
    1242. 

  1242. 	.byte	0xa8,0xfc,0x8c,0xc4,	0xa0,0xf0,0x3f,0x1a
    1243. 

  1243. 	.byte	0x56,0x7d,0x2c,0xd8,	0x22,0x33,0x90,0xef
    1244. 

  1244. 	.byte	0x87,0x49,0x4e,0xc7,	0xd9,0x38,0xd1,0xc1
    1245. 

  1245. 	.byte	0x8c,0xca,0xa2,0xfe,	0x98,0xd4,0x0b,0x36
    1246. 

  1246. 	.byte	0xa6,0xf5,0x81,0xcf,	0xa5,0x7a,0xde,0x28
    1247. 

  1247. 	.byte	0xda,0xb7,0x8e,0x26,	0x3f,0xad,0xbf,0xa4
    1248. 

  1248. 	.byte	0x2c,0x3a,0x9d,0xe4,	0x50,0x78,0x92,0x0d
    1249. 

  1249. 	.byte	0x6a,0x5f,0xcc,0x9b,	0x54,0x7e,0x46,0x62
    1250. 

  1250. 	.byte	0xf6,0x8d,0x13,0xc2,	0x90,0xd8,0xb8,0xe8
    1251. 

  1251. 	.byte	0x2e,0x39,0xf7,0x5e,	0x82,0xc3,0xaf,0xf5
    1252. 

  1252. 	.byte	0x9f,0x5d,0x80,0xbe,	0x69,0xd0,0x93,0x7c
    1253. 

  1253. 	.byte	0x6f,0xd5,0x2d,0xa9,	0xcf,0x25,0x12,0xb3
    1254. 

  1254. 	.byte	0xc8,0xac,0x99,0x3b,	0x10,0x18,0x7d,0xa7
    1255. 

  1255. 	.byte	0xe8,0x9c,0x63,0x6e,	0xdb,0x3b,0xbb,0x7b
    1256. 

  1256. 	.byte	0xcd,0x26,0x78,0x09,	0x6e,0x59,0x18,0xf4
    1257. 

  1257. 	.byte	0xec,0x9a,0xb7,0x01,	0x83,0x4f,0x9a,0xa8
    1258. 

  1258. 	.byte	0xe6,0x95,0x6e,0x65,	0xaa,0xff,0xe6,0x7e
    1259. 

  1259. 	.byte	0x21,0xbc,0xcf,0x08,	0xef,0x15,0xe8,0xe6
    1260. 

  1260. 	.byte	0xba,0xe7,0x9b,0xd9,	0x4a,0x6f,0x36,0xce
    1261. 

  1261. 	.byte	0xea,0x9f,0x09,0xd4,	0x29,0xb0,0x7c,0xd6
    1262. 

  1262. 	.byte	0x31,0xa4,0xb2,0xaf,	0x2a,0x3f,0x23,0x31
    1263. 

  1263. 	.byte	0xc6,0xa5,0x94,0x30,	0x35,0xa2,0x66,0xc0
    1264. 

  1264. 	.byte	0x74,0x4e,0xbc,0x37,	0xfc,0x82,0xca,0xa6
    1265. 

  1265. 	.byte	0xe0,0x90,0xd0,0xb0,	0x33,0xa7,0xd8,0x15
    1266. 

  1266. 	.byte	0xf1,0x04,0x98,0x4a,	0x41,0xec,0xda,0xf7
    1267. 

  1267. 	.byte	0x7f,0xcd,0x50,0x0e,	0x17,0x91,0xf6,0x2f
    1268. 

  1268. 	.byte	0x76,0x4d,0xd6,0x8d,	0x43,0xef,0xb0,0x4d
    1269. 

  1269. 	.byte	0xcc,0xaa,0x4d,0x54,	0xe4,0x96,0x04,0xdf
    1270. 

  1270. 	.byte	0x9e,0xd1,0xb5,0xe3,	0x4c,0x6a,0x88,0x1b
    1271. 

  1271. 	.byte	0xc1,0x2c,0x1f,0xb8,	0x46,0x65,0x51,0x7f
    1272. 

  1272. 	.byte	0x9d,0x5e,0xea,0x04,	0x01,0x8c,0x35,0x5d
    1273. 

  1273. 	.byte	0xfa,0x87,0x74,0x73,	0xfb,0x0b,0x41,0x2e
    1274. 

  1274. 	.byte	0xb3,0x67,0x1d,0x5a,	0x92,0xdb,0xd2,0x52
    1275. 

  1275. 	.byte	0xe9,0x10,0x56,0x33,	0x6d,0xd6,0x47,0x13
    1276. 

  1276. 	.byte	0x9a,0xd7,0x61,0x8c,	0x37,0xa1,0x0c,0x7a
    1277. 

  1277. 	.byte	0x59,0xf8,0x14,0x8e,	0xeb,0x13,0x3c,0x89
    1278. 

  1278. 	.byte	0xce,0xa9,0x27,0xee,	0xb7,0x61,0xc9,0x35
    1279. 

  1279. 	.byte	0xe1,0x1c,0xe5,0xed,	0x7a,0x47,0xb1,0x3c
    1280. 

  1280. 	.byte	0x9c,0xd2,0xdf,0x59,	0x55,0xf2,0x73,0x3f
    1281. 

  1281. 	.byte	0x18,0x14,0xce,0x79,	0x73,0xc7,0x37,0xbf
    1282. 

  1282. 	.byte	0x53,0xf7,0xcd,0xea,	0x5f,0xfd,0xaa,0x5b
    1283. 

  1283. 	.byte	0xdf,0x3d,0x6f,0x14,	0x78,0x44,0xdb,0x86
    1284. 

  1284. 	.byte	0xca,0xaf,0xf3,0x81,	0xb9,0x68,0xc4,0x3e
    1285. 

  1285. 	.byte	0x38,0x24,0x34,0x2c,	0xc2,0xa3,0x40,0x5f
    1286. 

  1286. 	.byte	0x16,0x1d,0xc3,0x72,	0xbc,0xe2,0x25,0x0c
    1287. 

  1287. 	.byte	0x28,0x3c,0x49,0x8b,	0xff,0x0d,0x95,0x41
    1288. 

  1288. 	.byte	0x39,0xa8,0x01,0x71,	0x08,0x0c,0xb3,0xde
    1289. 

  1289. 	.byte	0xd8,0xb4,0xe4,0x9c,	0x64,0x56,0xc1,0x90
    1290. 

  1290. 	.byte	0x7b,0xcb,0x84,0x61,	0xd5,0x32,0xb6,0x70
    1291. 

  1291. 	.byte	0x48,0x6c,0x5c,0x74,	0xd0,0xb8,0x57,0x42
    1292. 

  1292. AES_Td4:
    1293. 

  1293. 	.byte	0x52, 0x09, 0x6a, 0xd5, 0x30, 0x36, 0xa5, 0x38
    1294. 

  1294. 	.byte	0xbf, 0x40, 0xa3, 0x9e, 0x81, 0xf3, 0xd7, 0xfb
    1295. 

  1295. 	.byte	0x7c, 0xe3, 0x39, 0x82, 0x9b, 0x2f, 0xff, 0x87
    1296. 

  1296. 	.byte	0x34, 0x8e, 0x43, 0x44, 0xc4, 0xde, 0xe9, 0xcb
    1297. 

  1297. 	.byte	0x54, 0x7b, 0x94, 0x32, 0xa6, 0xc2, 0x23, 0x3d
    1298. 

  1298. 	.byte	0xee, 0x4c, 0x95, 0x0b, 0x42, 0xfa, 0xc3, 0x4e
    1299. 

  1299. 	.byte	0x08, 0x2e, 0xa1, 0x66, 0x28, 0xd9, 0x24, 0xb2
    1300. 

  1300. 	.byte	0x76, 0x5b, 0xa2, 0x49, 0x6d, 0x8b, 0xd1, 0x25
    1301. 

  1301. 	.byte	0x72, 0xf8, 0xf6, 0x64, 0x86, 0x68, 0x98, 0x16
    1302. 

  1302. 	.byte	0xd4, 0xa4, 0x5c, 0xcc, 0x5d, 0x65, 0xb6, 0x92
    1303. 

  1303. 	.byte	0x6c, 0x70, 0x48, 0x50, 0xfd, 0xed, 0xb9, 0xda
    1304. 

  1304. 	.byte	0x5e, 0x15, 0x46, 0x57, 0xa7, 0x8d, 0x9d, 0x84
    1305. 

  1305. 	.byte	0x90, 0xd8, 0xab, 0x00, 0x8c, 0xbc, 0xd3, 0x0a
    1306. 

  1306. 	.byte	0xf7, 0xe4, 0x58, 0x05, 0xb8, 0xb3, 0x45, 0x06
    1307. 

  1307. 	.byte	0xd0, 0x2c, 0x1e, 0x8f, 0xca, 0x3f, 0x0f, 0x02
    1308. 

  1308. 	.byte	0xc1, 0xaf, 0xbd, 0x03, 0x01, 0x13, 0x8a, 0x6b
    1309. 

  1309. 	.byte	0x3a, 0x91, 0x11, 0x41, 0x4f, 0x67, 0xdc, 0xea
    1310. 

  1310. 	.byte	0x97, 0xf2, 0xcf, 0xce, 0xf0, 0xb4, 0xe6, 0x73
    1311. 

  1311. 	.byte	0x96, 0xac, 0x74, 0x22, 0xe7, 0xad, 0x35, 0x85
    1312. 

  1312. 	.byte	0xe2, 0xf9, 0x37, 0xe8, 0x1c, 0x75, 0xdf, 0x6e
    1313. 

  1313. 	.byte	0x47, 0xf1, 0x1a, 0x71, 0x1d, 0x29, 0xc5, 0x89
    1314. 

  1314. 	.byte	0x6f, 0xb7, 0x62, 0x0e, 0xaa, 0x18, 0xbe, 0x1b
    1315. 

  1315. 	.byte	0xfc, 0x56, 0x3e, 0x4b, 0xc6, 0xd2, 0x79, 0x20
    1316. 

  1316. 	.byte	0x9a, 0xdb, 0xc0, 0xfe, 0x78, 0xcd, 0x5a, 0xf4
    1317. 

  1317. 	.byte	0x1f, 0xdd, 0xa8, 0x33, 0x88, 0x07, 0xc7, 0x31
    1318. 

  1318. 	.byte	0xb1, 0x12, 0x10, 0x59, 0x27, 0x80, 0xec, 0x5f
    1319. 

  1319. 	.byte	0x60, 0x51, 0x7f, 0xa9, 0x19, 0xb5, 0x4a, 0x0d
    1320. 

  1320. 	.byte	0x2d, 0xe5, 0x7a, 0x9f, 0x93, 0xc9, 0x9c, 0xef
    1321. 

  1321. 	.byte	0xa0, 0xe0, 0x3b, 0x4d, 0xae, 0x2a, 0xf5, 0xb0
    1322. 

  1322. 	.byte	0xc8, 0xeb, 0xbb, 0x3c, 0x83, 0x53, 0x99, 0x61
    1323. 

  1323. 	.byte	0x17, 0x2b, 0x04, 0x7e, 0xba, 0x77, 0xd6, 0x26
    1324. 

  1324. 	.byte	0xe1, 0x69, 0x14, 0x63, 0x55, 0x21, 0x0c, 0x7d
    1325. 

  1325. 	.cstring "AES for C64x+, CRYPTOGAMS by <appro\@openssl.org>"
    1326. 

  1326. 	.align	4
    1327. 

  1327. ___
    1328. 

  1328. 

  1329. print $code;
    1330.