Home Explore Help
Sign In
OWEALs
/
wolfssl
mirror of https://github.com/wolfSSL/wolfssl.git
2
0
Fork 0
Files Issues 8 Wiki
Tree: 749425e1e8
Branches Tags
wolfssl
/
wolfcrypt
/
src
/
fe_x25519_asm.S

fe_x25519_asm.S 403 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706170717081709171017111712171317141715171617171718171917201721172217231724172517261727172817291730173117321733173417351736173717381739174017411742174317441745174617471748174917501751175217531754175517561757175817591760176117621763176417651766176717681769177017711772177317741775177617771778177917801781178217831784178517861787178817891790179117921793179417951796179717981799180018011802180318041805180618071808180918101811181218131814181518161817181818191820182118221823182418251826182718281829183018311832183318341835183618371838183918401841184218431844184518461847184818491850185118521853185418551856185718581859186018611862186318641865186618671868186918701871187218731874187518761877187818791880188118821883188418851886188718881889189018911892189318941895189618971898189919001901190219031904190519061907190819091910191119121913191419151916191719181919192019211922192319241925192619271928192919301931193219331934193519361937193819391940194119421943194419451946194719481949195019511952195319541955195619571958195919601961196219631964196519661967196819691970197119721973197419751976197719781979198019811982198319841985198619871988198919901991199219931994199519961997199819992000200120022003200420052006200720082009201020112012201320142015201620172018201920202021202220232024202520262027202820292030203120322033203420352036203720382039204020412042204320442045204620472048204920502051205220532054205520562057205820592060206120622063206420652066206720682069207020712072207320742075207620772078207920802081208220832084208520862087208820892090209120922093209420952096209720982099210021012102210321042105210621072108210921102111211221132114211521162117211821192120212121222123212421252126212721282129213021312132213321342135213621372138213921402141214221432144214521462147214821492150215121522153215421552156215721582159216021612162216321642165216621672168216921702171217221732174217521762177217821792180218121822183218421852186218721882189219021912192219321942195219621972198219922002201220222032204220522062207220822092210221122122213221422152216221722182219222022212222222322242225222622272228222922302231223222332234223522362237223822392240224122422243224422452246224722482249225022512252225322542255225622572258225922602261226222632264226522662267226822692270227122722273227422752276227722782279228022812282228322842285228622872288228922902291229222932294229522962297229822992300230123022303230423052306230723082309231023112312231323142315231623172318231923202321232223232324232523262327232823292330233123322333233423352336233723382339234023412342234323442345234623472348234923502351235223532354235523562357235823592360236123622363236423652366236723682369237023712372237323742375237623772378237923802381238223832384238523862387238823892390239123922393239423952396239723982399240024012402240324042405240624072408240924102411241224132414241524162417241824192420242124222423242424252426242724282429243024312432243324342435243624372438243924402441244224432444244524462447244824492450245124522453245424552456245724582459246024612462246324642465246624672468246924702471247224732474247524762477247824792480248124822483248424852486248724882489249024912492249324942495249624972498249925002501250225032504250525062507250825092510251125122513251425152516251725182519252025212522252325242525252625272528252925302531253225332534253525362537253825392540254125422543254425452546254725482549255025512552255325542555255625572558255925602561256225632564256525662567256825692570257125722573257425752576257725782579258025812582258325842585258625872588258925902591259225932594259525962597259825992600260126022603260426052606260726082609261026112612261326142615261626172618261926202621262226232624262526262627262826292630263126322633263426352636263726382639264026412642264326442645264626472648264926502651265226532654265526562657265826592660266126622663266426652666266726682669267026712672267326742675267626772678267926802681268226832684268526862687268826892690269126922693269426952696269726982699270027012702270327042705270627072708270927102711271227132714271527162717271827192720272127222723272427252726272727282729273027312732273327342735273627372738273927402741274227432744274527462747274827492750275127522753275427552756275727582759276027612762276327642765276627672768276927702771277227732774277527762777277827792780278127822783278427852786278727882789279027912792279327942795279627972798279928002801280228032804280528062807280828092810281128122813281428152816281728182819282028212822282328242825282628272828282928302831283228332834283528362837283828392840284128422843284428452846284728482849285028512852285328542855285628572858285928602861286228632864286528662867286828692870287128722873287428752876287728782879288028812882288328842885288628872888288928902891289228932894289528962897289828992900290129022903290429052906290729082909291029112912291329142915291629172918291929202921292229232924292529262927292829292930293129322933293429352936293729382939294029412942294329442945294629472948294929502951295229532954295529562957295829592960296129622963296429652966296729682969297029712972297329742975297629772978297929802981298229832984298529862987298829892990299129922993299429952996299729982999300030013002300330043005300630073008300930103011301230133014301530163017301830193020302130223023302430253026302730283029303030313032303330343035303630373038303930403041304230433044304530463047304830493050305130523053305430553056305730583059306030613062306330643065306630673068306930703071307230733074307530763077307830793080308130823083308430853086308730883089309030913092309330943095309630973098309931003101310231033104310531063107310831093110311131123113311431153116311731183119312031213122312331243125312631273128312931303131313231333134313531363137313831393140314131423143314431453146314731483149315031513152315331543155315631573158315931603161316231633164316531663167316831693170317131723173317431753176317731783179318031813182318331843185318631873188318931903191319231933194319531963197319831993200320132023203320432053206320732083209321032113212321332143215321632173218321932203221322232233224322532263227322832293230323132323233323432353236323732383239324032413242324332443245324632473248324932503251325232533254325532563257325832593260326132623263326432653266326732683269327032713272327332743275327632773278327932803281328232833284328532863287328832893290329132923293329432953296329732983299330033013302330333043305330633073308330933103311331233133314331533163317331833193320332133223323332433253326332733283329333033313332333333343335333633373338333933403341334233433344334533463347334833493350335133523353335433553356335733583359336033613362336333643365336633673368336933703371337233733374337533763377337833793380338133823383338433853386338733883389339033913392339333943395339633973398339934003401340234033404340534063407340834093410341134123413341434153416341734183419342034213422342334243425342634273428342934303431343234333434343534363437343834393440344134423443344434453446344734483449345034513452345334543455345634573458345934603461346234633464346534663467346834693470347134723473347434753476347734783479348034813482348334843485348634873488348934903491349234933494349534963497349834993500350135023503350435053506350735083509351035113512351335143515351635173518351935203521352235233524352535263527352835293530353135323533353435353536353735383539354035413542354335443545354635473548354935503551355235533554355535563557355835593560356135623563356435653566356735683569357035713572357335743575357635773578357935803581358235833584358535863587358835893590359135923593359435953596359735983599360036013602360336043605360636073608360936103611361236133614361536163617361836193620362136223623362436253626362736283629363036313632363336343635363636373638363936403641364236433644364536463647364836493650365136523653365436553656365736583659366036613662366336643665366636673668366936703671367236733674367536763677367836793680368136823683368436853686368736883689369036913692369336943695369636973698369937003701370237033704370537063707370837093710371137123713371437153716371737183719372037213722372337243725372637273728372937303731373237333734373537363737373837393740374137423743374437453746374737483749375037513752375337543755375637573758375937603761376237633764376537663767376837693770377137723773377437753776377737783779378037813782378337843785378637873788378937903791379237933794379537963797379837993800380138023803380438053806380738083809381038113812381338143815381638173818381938203821382238233824382538263827382838293830383138323833383438353836383738383839384038413842384338443845384638473848384938503851385238533854385538563857385838593860386138623863386438653866386738683869387038713872387338743875387638773878387938803881388238833884388538863887388838893890389138923893389438953896389738983899390039013902390339043905390639073908390939103911391239133914391539163917391839193920392139223923392439253926392739283929393039313932393339343935393639373938393939403941394239433944394539463947394839493950395139523953395439553956395739583959396039613962396339643965396639673968396939703971397239733974397539763977397839793980398139823983398439853986398739883989399039913992399339943995399639973998399940004001400240034004400540064007400840094010401140124013401440154016401740184019402040214022402340244025402640274028402940304031403240334034403540364037403840394040404140424043404440454046404740484049405040514052405340544055405640574058405940604061406240634064406540664067406840694070407140724073407440754076407740784079408040814082408340844085408640874088408940904091409240934094409540964097409840994100410141024103410441054106410741084109411041114112411341144115411641174118411941204121412241234124412541264127412841294130413141324133413441354136413741384139414041414142414341444145414641474148414941504151415241534154415541564157415841594160416141624163416441654166416741684169417041714172417341744175417641774178417941804181418241834184418541864187418841894190419141924193419441954196419741984199420042014202420342044205420642074208420942104211421242134214421542164217421842194220422142224223422442254226422742284229423042314232423342344235423642374238423942404241424242434244424542464247424842494250425142524253425442554256425742584259426042614262426342644265426642674268426942704271427242734274427542764277427842794280428142824283428442854286428742884289429042914292429342944295429642974298429943004301430243034304430543064307430843094310431143124313431443154316431743184319432043214322432343244325432643274328432943304331433243334334433543364337433843394340434143424343434443454346434743484349435043514352435343544355435643574358435943604361436243634364436543664367436843694370437143724373437443754376437743784379438043814382438343844385438643874388438943904391439243934394439543964397439843994400440144024403440444054406440744084409441044114412441344144415441644174418441944204421442244234424442544264427442844294430443144324433443444354436443744384439444044414442444344444445444644474448444944504451445244534454445544564457445844594460446144624463446444654466446744684469447044714472447344744475447644774478447944804481448244834484448544864487448844894490449144924493449444954496449744984499450045014502450345044505450645074508450945104511451245134514451545164517451845194520452145224523452445254526452745284529453045314532453345344535453645374538453945404541454245434544454545464547454845494550455145524553455445554556455745584559456045614562456345644565456645674568456945704571457245734574457545764577457845794580458145824583458445854586458745884589459045914592459345944595459645974598459946004601460246034604460546064607460846094610461146124613461446154616461746184619462046214622462346244625462646274628462946304631463246334634463546364637463846394640464146424643464446454646464746484649465046514652465346544655465646574658465946604661466246634664466546664667466846694670467146724673467446754676467746784679468046814682468346844685468646874688468946904691469246934694469546964697469846994700470147024703470447054706470747084709471047114712471347144715471647174718471947204721472247234724472547264727472847294730473147324733473447354736473747384739474047414742474347444745474647474748474947504751475247534754475547564757475847594760476147624763476447654766476747684769477047714772477347744775477647774778477947804781478247834784478547864787478847894790479147924793479447954796479747984799480048014802480348044805480648074808480948104811481248134814481548164817481848194820482148224823482448254826482748284829483048314832483348344835483648374838483948404841484248434844484548464847484848494850485148524853485448554856485748584859486048614862486348644865486648674868486948704871487248734874487548764877487848794880488148824883488448854886488748884889489048914892489348944895489648974898489949004901490249034904490549064907490849094910491149124913491449154916491749184919492049214922492349244925492649274928492949304931493249334934493549364937493849394940494149424943494449454946494749484949495049514952495349544955495649574958495949604961496249634964496549664967496849694970497149724973497449754976497749784979498049814982498349844985498649874988498949904991499249934994499549964997499849995000500150025003500450055006500750085009501050115012501350145015501650175018501950205021502250235024502550265027502850295030503150325033503450355036503750385039504050415042504350445045504650475048504950505051505250535054505550565057505850595060506150625063506450655066506750685069507050715072507350745075507650775078507950805081508250835084508550865087508850895090509150925093509450955096509750985099510051015102510351045105510651075108510951105111511251135114511551165117511851195120512151225123512451255126512751285129513051315132513351345135513651375138513951405141514251435144514551465147514851495150515151525153515451555156515751585159516051615162516351645165516651675168516951705171517251735174517551765177517851795180518151825183518451855186518751885189519051915192519351945195519651975198519952005201520252035204520552065207520852095210521152125213521452155216521752185219522052215222522352245225522652275228522952305231523252335234523552365237523852395240524152425243524452455246524752485249525052515252525352545255525652575258525952605261526252635264526552665267526852695270527152725273527452755276527752785279528052815282528352845285528652875288528952905291529252935294529552965297529852995300530153025303530453055306530753085309531053115312531353145315531653175318531953205321532253235324532553265327532853295330533153325333533453355336533753385339534053415342534353445345534653475348534953505351535253535354535553565357535853595360536153625363536453655366536753685369537053715372537353745375537653775378537953805381538253835384538553865387538853895390539153925393539453955396539753985399540054015402540354045405540654075408540954105411541254135414541554165417541854195420542154225423542454255426542754285429543054315432543354345435543654375438543954405441544254435444544554465447544854495450545154525453545454555456545754585459546054615462546354645465546654675468546954705471547254735474547554765477547854795480548154825483548454855486548754885489549054915492549354945495549654975498549955005501550255035504550555065507550855095510551155125513551455155516551755185519552055215522552355245525552655275528552955305531553255335534553555365537553855395540554155425543554455455546554755485549555055515552555355545555555655575558555955605561556255635564556555665567556855695570557155725573557455755576557755785579558055815582558355845585558655875588558955905591559255935594559555965597559855995600560156025603560456055606560756085609561056115612561356145615561656175618561956205621562256235624562556265627562856295630563156325633563456355636563756385639564056415642564356445645564656475648564956505651565256535654565556565657565856595660566156625663566456655666566756685669567056715672567356745675567656775678567956805681568256835684568556865687568856895690569156925693569456955696569756985699570057015702570357045705570657075708570957105711571257135714571557165717571857195720572157225723572457255726572757285729573057315732573357345735573657375738573957405741574257435744574557465747574857495750575157525753575457555756575757585759576057615762576357645765576657675768576957705771577257735774577557765777577857795780578157825783578457855786578757885789579057915792579357945795579657975798579958005801580258035804580558065807580858095810581158125813581458155816581758185819582058215822582358245825582658275828582958305831583258335834583558365837583858395840584158425843584458455846584758485849585058515852585358545855585658575858585958605861586258635864586558665867586858695870587158725873587458755876587758785879588058815882588358845885588658875888588958905891589258935894589558965897589858995900590159025903590459055906590759085909591059115912591359145915591659175918591959205921592259235924592559265927592859295930593159325933593459355936593759385939594059415942594359445945594659475948594959505951595259535954595559565957595859595960596159625963596459655966596759685969597059715972597359745975597659775978597959805981598259835984598559865987598859895990599159925993599459955996599759985999600060016002600360046005600660076008600960106011601260136014601560166017601860196020602160226023602460256026602760286029603060316032603360346035603660376038603960406041604260436044604560466047604860496050605160526053605460556056605760586059606060616062606360646065606660676068606960706071607260736074607560766077607860796080608160826083608460856086608760886089609060916092609360946095609660976098609961006101610261036104610561066107610861096110611161126113611461156116611761186119612061216122612361246125612661276128612961306131613261336134613561366137613861396140614161426143614461456146614761486149615061516152615361546155615661576158615961606161616261636164616561666167616861696170617161726173617461756176617761786179618061816182618361846185618661876188618961906191619261936194619561966197619861996200620162026203620462056206620762086209621062116212621362146215621662176218621962206221622262236224622562266227622862296230623162326233623462356236623762386239624062416242624362446245624662476248624962506251625262536254625562566257625862596260626162626263626462656266626762686269627062716272627362746275627662776278627962806281628262836284628562866287628862896290629162926293629462956296629762986299630063016302630363046305630663076308630963106311631263136314631563166317631863196320632163226323632463256326632763286329633063316332633363346335633663376338633963406341634263436344634563466347634863496350635163526353635463556356635763586359636063616362636363646365636663676368636963706371637263736374637563766377637863796380638163826383638463856386638763886389639063916392639363946395639663976398639964006401640264036404640564066407640864096410641164126413641464156416641764186419642064216422642364246425642664276428642964306431643264336434643564366437643864396440644164426443644464456446644764486449645064516452645364546455645664576458645964606461646264636464646564666467646864696470647164726473647464756476647764786479648064816482648364846485648664876488648964906491649264936494649564966497649864996500650165026503650465056506650765086509651065116512651365146515651665176518651965206521652265236524652565266527652865296530653165326533653465356536653765386539654065416542654365446545654665476548654965506551655265536554655565566557655865596560656165626563656465656566656765686569657065716572657365746575657665776578657965806581658265836584658565866587658865896590659165926593659465956596659765986599660066016602660366046605660666076608660966106611661266136614661566166617661866196620662166226623662466256626662766286629663066316632663366346635663666376638663966406641664266436644664566466647664866496650665166526653665466556656665766586659666066616662666366646665666666676668666966706671667266736674667566766677667866796680668166826683668466856686668766886689669066916692669366946695669666976698669967006701670267036704670567066707670867096710671167126713671467156716671767186719672067216722672367246725672667276728672967306731673267336734673567366737673867396740674167426743674467456746674767486749675067516752675367546755675667576758675967606761676267636764676567666767676867696770677167726773677467756776677767786779678067816782678367846785678667876788678967906791679267936794679567966797679867996800680168026803680468056806680768086809681068116812681368146815681668176818681968206821682268236824682568266827682868296830683168326833683468356836683768386839684068416842684368446845684668476848684968506851685268536854685568566857685868596860686168626863686468656866686768686869687068716872687368746875687668776878687968806881688268836884688568866887688868896890689168926893689468956896689768986899690069016902690369046905690669076908690969106911691269136914691569166917691869196920692169226923692469256926692769286929693069316932693369346935693669376938693969406941694269436944694569466947694869496950695169526953695469556956695769586959696069616962696369646965696669676968696969706971697269736974697569766977697869796980698169826983698469856986698769886989699069916992699369946995699669976998699970007001700270037004700570067007700870097010701170127013701470157016701770187019702070217022702370247025702670277028702970307031703270337034703570367037703870397040704170427043704470457046704770487049705070517052705370547055705670577058705970607061706270637064706570667067706870697070707170727073707470757076707770787079708070817082708370847085708670877088708970907091709270937094709570967097709870997100710171027103710471057106710771087109711071117112711371147115711671177118711971207121712271237124712571267127712871297130713171327133713471357136713771387139714071417142714371447145714671477148714971507151715271537154715571567157715871597160716171627163716471657166716771687169717071717172717371747175717671777178717971807181718271837184718571867187718871897190719171927193719471957196719771987199720072017202720372047205720672077208720972107211721272137214721572167217721872197220722172227223722472257226722772287229723072317232723372347235723672377238723972407241724272437244724572467247724872497250725172527253725472557256725772587259726072617262726372647265726672677268726972707271727272737274727572767277727872797280728172827283728472857286728772887289729072917292729372947295729672977298729973007301730273037304730573067307730873097310731173127313731473157316731773187319732073217322732373247325732673277328732973307331733273337334733573367337733873397340734173427343734473457346734773487349735073517352735373547355735673577358735973607361736273637364736573667367736873697370737173727373737473757376737773787379738073817382738373847385738673877388738973907391739273937394739573967397739873997400740174027403740474057406740774087409741074117412741374147415741674177418741974207421742274237424742574267427742874297430743174327433743474357436743774387439744074417442744374447445744674477448744974507451745274537454745574567457745874597460746174627463746474657466746774687469747074717472747374747475747674777478747974807481748274837484748574867487748874897490749174927493749474957496749774987499750075017502750375047505750675077508750975107511751275137514751575167517751875197520752175227523752475257526752775287529753075317532753375347535753675377538753975407541754275437544754575467547754875497550755175527553755475557556755775587559756075617562756375647565756675677568756975707571757275737574757575767577757875797580758175827583758475857586758775887589759075917592759375947595759675977598759976007601760276037604760576067607760876097610761176127613761476157616761776187619762076217622762376247625762676277628762976307631763276337634763576367637763876397640764176427643764476457646764776487649765076517652765376547655765676577658765976607661766276637664766576667667766876697670767176727673767476757676767776787679768076817682768376847685768676877688768976907691769276937694769576967697769876997700770177027703770477057706770777087709771077117712771377147715771677177718771977207721772277237724772577267727772877297730773177327733773477357736773777387739774077417742774377447745774677477748774977507751775277537754775577567757775877597760776177627763776477657766776777687769777077717772777377747775777677777778777977807781778277837784778577867787778877897790779177927793779477957796779777987799780078017802780378047805780678077808780978107811781278137814781578167817781878197820782178227823782478257826782778287829783078317832783378347835783678377838783978407841784278437844784578467847784878497850785178527853785478557856785778587859786078617862786378647865786678677868786978707871787278737874787578767877787878797880788178827883788478857886788778887889789078917892789378947895789678977898789979007901790279037904790579067907790879097910791179127913791479157916791779187919792079217922792379247925792679277928792979307931793279337934793579367937793879397940794179427943794479457946794779487949795079517952795379547955795679577958795979607961796279637964796579667967796879697970797179727973797479757976797779787979798079817982798379847985798679877988798979907991799279937994799579967997799879998000800180028003800480058006800780088009801080118012801380148015801680178018801980208021802280238024802580268027802880298030803180328033803480358036803780388039804080418042804380448045804680478048804980508051805280538054805580568057805880598060806180628063806480658066806780688069807080718072807380748075807680778078807980808081808280838084808580868087808880898090809180928093809480958096809780988099810081018102810381048105810681078108810981108111811281138114811581168117811881198120812181228123812481258126812781288129813081318132813381348135813681378138813981408141814281438144814581468147814881498150815181528153815481558156815781588159816081618162816381648165816681678168816981708171817281738174817581768177817881798180818181828183818481858186818781888189819081918192819381948195819681978198819982008201820282038204820582068207820882098210821182128213821482158216821782188219822082218222822382248225822682278228822982308231823282338234823582368237823882398240824182428243824482458246824782488249825082518252825382548255825682578258825982608261826282638264826582668267826882698270827182728273827482758276827782788279828082818282828382848285828682878288828982908291829282938294829582968297829882998300830183028303830483058306830783088309831083118312831383148315831683178318831983208321832283238324832583268327832883298330833183328333833483358336833783388339834083418342834383448345834683478348834983508351835283538354835583568357835883598360836183628363836483658366836783688369837083718372837383748375837683778378837983808381838283838384838583868387838883898390839183928393839483958396839783988399840084018402840384048405840684078408840984108411841284138414841584168417841884198420842184228423842484258426842784288429843084318432843384348435843684378438843984408441844284438444844584468447844884498450845184528453845484558456845784588459846084618462846384648465846684678468846984708471847284738474847584768477847884798480848184828483848484858486848784888489849084918492849384948495849684978498849985008501850285038504850585068507850885098510851185128513851485158516851785188519852085218522852385248525852685278528852985308531853285338534853585368537853885398540854185428543854485458546854785488549855085518552855385548555855685578558855985608561856285638564856585668567856885698570857185728573857485758576857785788579858085818582858385848585858685878588858985908591859285938594859585968597859885998600860186028603860486058606860786088609861086118612861386148615861686178618861986208621862286238624862586268627862886298630863186328633863486358636863786388639864086418642864386448645864686478648864986508651865286538654865586568657865886598660866186628663866486658666866786688669867086718672867386748675867686778678867986808681868286838684868586868687868886898690869186928693869486958696869786988699870087018702870387048705870687078708870987108711871287138714871587168717871887198720872187228723872487258726872787288729873087318732873387348735873687378738873987408741874287438744874587468747874887498750875187528753875487558756875787588759876087618762876387648765876687678768876987708771877287738774877587768777877887798780878187828783878487858786878787888789879087918792879387948795879687978798879988008801880288038804880588068807880888098810881188128813881488158816881788188819882088218822882388248825882688278828882988308831883288338834883588368837883888398840884188428843884488458846884788488849885088518852885388548855885688578858885988608861886288638864886588668867886888698870887188728873887488758876887788788879888088818882888388848885888688878888888988908891889288938894889588968897889888998900890189028903890489058906890789088909891089118912891389148915891689178918891989208921892289238924892589268927892889298930893189328933893489358936893789388939894089418942894389448945894689478948894989508951895289538954895589568957895889598960896189628963896489658966896789688969897089718972897389748975897689778978897989808981898289838984898589868987898889898990899189928993899489958996899789988999900090019002900390049005900690079008900990109011901290139014901590169017901890199020902190229023902490259026902790289029903090319032903390349035903690379038903990409041904290439044904590469047904890499050905190529053905490559056905790589059906090619062906390649065906690679068906990709071907290739074907590769077907890799080908190829083908490859086908790889089909090919092909390949095909690979098909991009101910291039104910591069107910891099110911191129113911491159116911791189119912091219122912391249125912691279128912991309131913291339134913591369137913891399140914191429143914491459146914791489149915091519152915391549155915691579158915991609161916291639164916591669167916891699170917191729173917491759176917791789179918091819182918391849185918691879188918991909191919291939194919591969197919891999200920192029203920492059206920792089209921092119212921392149215921692179218921992209221922292239224922592269227922892299230923192329233923492359236923792389239924092419242924392449245924692479248924992509251925292539254925592569257925892599260926192629263926492659266926792689269927092719272927392749275927692779278927992809281928292839284928592869287928892899290929192929293929492959296929792989299930093019302930393049305930693079308930993109311931293139314931593169317931893199320932193229323932493259326932793289329933093319332933393349335933693379338933993409341934293439344934593469347934893499350935193529353935493559356935793589359936093619362936393649365936693679368936993709371937293739374937593769377937893799380938193829383938493859386938793889389939093919392939393949395939693979398939994009401940294039404940594069407940894099410941194129413941494159416941794189419942094219422942394249425942694279428942994309431943294339434943594369437943894399440944194429443944494459446944794489449945094519452945394549455945694579458945994609461946294639464946594669467946894699470947194729473947494759476947794789479948094819482948394849485948694879488948994909491949294939494949594969497949894999500950195029503950495059506950795089509951095119512951395149515951695179518951995209521952295239524952595269527952895299530953195329533953495359536953795389539954095419542954395449545954695479548954995509551955295539554955595569557955895599560956195629563956495659566956795689569957095719572957395749575957695779578957995809581958295839584958595869587958895899590959195929593959495959596959795989599960096019602960396049605960696079608960996109611961296139614961596169617961896199620962196229623962496259626962796289629963096319632963396349635963696379638963996409641964296439644964596469647964896499650965196529653965496559656965796589659966096619662966396649665966696679668966996709671967296739674967596769677967896799680968196829683968496859686968796889689969096919692969396949695969696979698969997009701970297039704970597069707970897099710971197129713971497159716971797189719972097219722972397249725972697279728972997309731973297339734973597369737973897399740974197429743974497459746974797489749975097519752975397549755975697579758975997609761976297639764976597669767976897699770977197729773977497759776977797789779978097819782978397849785978697879788978997909791979297939794979597969797979897999800980198029803980498059806980798089809981098119812981398149815981698179818981998209821982298239824982598269827982898299830983198329833983498359836983798389839984098419842984398449845984698479848984998509851985298539854985598569857985898599860986198629863986498659866986798689869987098719872987398749875987698779878987998809881988298839884988598869887988898899890989198929893989498959896989798989899990099019902990399049905990699079908990999109911991299139914991599169917991899199920992199229923992499259926992799289929993099319932993399349935993699379938993999409941994299439944994599469947994899499950995199529953995499559956995799589959996099619962996399649965996699679968996999709971997299739974997599769977997899799980998199829983998499859986998799889989999099919992999399949995999699979998999910000100011000210003100041000510006100071000810009100101001110012100131001410015100161001710018100191002010021100221002310024100251002610027100281002910030100311003210033100341003510036100371003810039100401004110042100431004410045100461004710048100491005010051100521005310054100551005610057100581005910060100611006210063100641006510066100671006810069100701007110072100731007410075100761007710078100791008010081100821008310084100851008610087100881008910090100911009210093100941009510096100971009810099101001010110102101031010410105101061010710108101091011010111101121011310114101151011610117101181011910120101211012210123101241012510126101271012810129101301013110132101331013410135101361013710138101391014010141101421014310144101451014610147101481014910150101511015210153101541015510156101571015810159101601016110162101631016410165101661016710168101691017010171101721017310174101751017610177101781017910180101811018210183101841018510186101871018810189101901019110192101931019410195101961019710198101991020010201102021020310204102051020610207102081020910210102111021210213102141021510216102171021810219102201022110222102231022410225102261022710228102291023010231102321023310234102351023610237102381023910240102411024210243102441024510246102471024810249102501025110252102531025410255102561025710258102591026010261102621026310264102651026610267102681026910270102711027210273102741027510276102771027810279102801028110282102831028410285102861028710288102891029010291102921029310294102951029610297102981029910300103011030210303103041030510306103071030810309103101031110312103131031410315103161031710318103191032010321103221032310324103251032610327103281032910330103311033210333103341033510336103371033810339103401034110342103431034410345103461034710348103491035010351103521035310354103551035610357103581035910360103611036210363103641036510366103671036810369103701037110372103731037410375103761037710378103791038010381103821038310384103851038610387103881038910390103911039210393103941039510396103971039810399104001040110402104031040410405104061040710408104091041010411104121041310414104151041610417104181041910420104211042210423104241042510426104271042810429104301043110432104331043410435104361043710438104391044010441104421044310444104451044610447104481044910450104511045210453104541045510456104571045810459104601046110462104631046410465104661046710468104691047010471104721047310474104751047610477104781047910480104811048210483104841048510486104871048810489104901049110492104931049410495104961049710498104991050010501105021050310504105051050610507105081050910510105111051210513105141051510516105171051810519105201052110522105231052410525105261052710528105291053010531105321053310534105351053610537105381053910540105411054210543105441054510546105471054810549105501055110552105531055410555105561055710558105591056010561105621056310564105651056610567105681056910570105711057210573105741057510576105771057810579105801058110582105831058410585105861058710588105891059010591105921059310594105951059610597105981059910600106011060210603106041060510606106071060810609106101061110612106131061410615106161061710618106191062010621106221062310624106251062610627106281062910630106311063210633106341063510636106371063810639106401064110642106431064410645106461064710648106491065010651106521065310654106551065610657106581065910660106611066210663106641066510666106671066810669106701067110672106731067410675106761067710678106791068010681106821068310684106851068610687106881068910690106911069210693106941069510696106971069810699107001070110702107031070410705107061070710708107091071010711107121071310714107151071610717107181071910720107211072210723107241072510726107271072810729107301073110732107331073410735107361073710738107391074010741107421074310744107451074610747107481074910750107511075210753107541075510756107571075810759107601076110762107631076410765107661076710768107691077010771107721077310774107751077610777107781077910780107811078210783107841078510786107871078810789107901079110792107931079410795107961079710798107991080010801108021080310804108051080610807108081080910810108111081210813108141081510816108171081810819108201082110822108231082410825108261082710828108291083010831108321083310834108351083610837108381083910840108411084210843108441084510846108471084810849108501085110852108531085410855108561085710858108591086010861108621086310864108651086610867108681086910870108711087210873108741087510876108771087810879108801088110882108831088410885108861088710888108891089010891108921089310894108951089610897108981089910900109011090210903109041090510906109071090810909109101091110912109131091410915109161091710918109191092010921109221092310924109251092610927109281092910930109311093210933109341093510936109371093810939109401094110942109431094410945109461094710948109491095010951109521095310954109551095610957109581095910960109611096210963109641096510966109671096810969109701097110972109731097410975109761097710978109791098010981109821098310984109851098610987109881098910990109911099210993109941099510996109971099810999110001100111002110031100411005110061100711008110091101011011110121101311014110151101611017110181101911020110211102211023110241102511026110271102811029110301103111032110331103411035110361103711038110391104011041110421104311044110451104611047110481104911050110511105211053110541105511056110571105811059110601106111062110631106411065110661106711068110691107011071110721107311074110751107611077110781107911080110811108211083110841108511086110871108811089110901109111092110931109411095110961109711098110991110011101111021110311104111051110611107111081110911110111111111211113111141111511116111171111811119111201112111122111231112411125111261112711128111291113011131111321113311134111351113611137111381113911140111411114211143111441114511146111471114811149111501115111152111531115411155111561115711158111591116011161111621116311164111651116611167111681116911170111711117211173111741117511176111771117811179111801118111182111831118411185111861118711188111891119011191111921119311194111951119611197111981119911200112011120211203112041120511206112071120811209112101121111212112131121411215112161121711218112191122011221112221122311224112251122611227112281122911230112311123211233112341123511236112371123811239112401124111242112431124411245112461124711248112491125011251112521125311254112551125611257112581125911260112611126211263112641126511266112671126811269112701127111272112731127411275112761127711278112791128011281112821128311284112851128611287112881128911290112911129211293112941129511296112971129811299113001130111302113031130411305113061130711308113091131011311113121131311314113151131611317113181131911320113211132211323113241132511326113271132811329113301133111332113331133411335113361133711338113391134011341113421134311344113451134611347113481134911350113511135211353113541135511356113571135811359113601136111362113631136411365113661136711368113691137011371113721137311374113751137611377113781137911380113811138211383113841138511386113871138811389113901139111392113931139411395113961139711398113991140011401114021140311404114051140611407114081140911410114111141211413114141141511416114171141811419114201142111422114231142411425114261142711428114291143011431114321143311434114351143611437114381143911440114411144211443114441144511446114471144811449114501145111452114531145411455114561145711458114591146011461114621146311464114651146611467114681146911470114711147211473114741147511476114771147811479114801148111482114831148411485114861148711488114891149011491114921149311494114951149611497114981149911500115011150211503115041150511506115071150811509115101151111512115131151411515115161151711518115191152011521115221152311524115251152611527115281152911530115311153211533115341153511536115371153811539115401154111542115431154411545115461154711548115491155011551115521155311554115551155611557115581155911560115611156211563115641156511566115671156811569115701157111572115731157411575115761157711578115791158011581115821158311584115851158611587115881158911590115911159211593115941159511596115971159811599116001160111602116031160411605116061160711608116091161011611116121161311614116151161611617116181161911620116211162211623116241162511626116271162811629116301163111632116331163411635116361163711638116391164011641116421164311644116451164611647116481164911650116511165211653116541165511656116571165811659116601166111662116631166411665116661166711668116691167011671116721167311674116751167611677116781167911680116811168211683116841168511686116871168811689116901169111692116931169411695116961169711698116991170011701117021170311704117051170611707117081170911710117111171211713117141171511716117171171811719117201172111722117231172411725117261172711728117291173011731117321173311734117351173611737117381173911740117411174211743117441174511746117471174811749117501175111752117531175411755117561175711758117591176011761117621176311764117651176611767117681176911770117711177211773117741177511776117771177811779117801178111782117831178411785117861178711788117891179011791117921179311794117951179611797117981179911800118011180211803118041180511806118071180811809118101181111812118131181411815118161181711818118191182011821118221182311824118251182611827118281182911830118311183211833118341183511836118371183811839118401184111842118431184411845118461184711848118491185011851118521185311854118551185611857118581185911860118611186211863118641186511866118671186811869118701187111872118731187411875118761187711878118791188011881118821188311884118851188611887118881188911890118911189211893118941189511896118971189811899119001190111902119031190411905119061190711908119091191011911119121191311914119151191611917119181191911920119211192211923119241192511926119271192811929119301193111932119331193411935119361193711938119391194011941119421194311944119451194611947119481194911950119511195211953119541195511956119571195811959119601196111962119631196411965119661196711968119691197011971119721197311974119751197611977119781197911980119811198211983119841198511986119871198811989119901199111992119931199411995119961199711998119991200012001120021200312004120051200612007120081200912010120111201212013120141201512016120171201812019120201202112022120231202412025120261202712028120291203012031120321203312034120351203612037120381203912040120411204212043120441204512046120471204812049120501205112052120531205412055120561205712058120591206012061120621206312064120651206612067120681206912070120711207212073120741207512076120771207812079120801208112082120831208412085120861208712088120891209012091120921209312094120951209612097120981209912100121011210212103121041210512106121071210812109121101211112112121131211412115121161211712118121191212012121121221212312124121251212612127121281212912130121311213212133121341213512136121371213812139121401214112142121431214412145121461214712148121491215012151121521215312154121551215612157121581215912160121611216212163121641216512166121671216812169121701217112172121731217412175121761217712178121791218012181121821218312184121851218612187121881218912190121911219212193121941219512196121971219812199122001220112202122031220412205122061220712208122091221012211122121221312214122151221612217122181221912220122211222212223122241222512226122271222812229122301223112232122331223412235122361223712238122391224012241122421224312244122451224612247122481224912250122511225212253122541225512256122571225812259122601226112262122631226412265122661226712268122691227012271122721227312274122751227612277122781227912280122811228212283122841228512286122871228812289122901229112292122931229412295122961229712298122991230012301123021230312304123051230612307123081230912310123111231212313123141231512316123171231812319123201232112322123231232412325123261232712328123291233012331123321233312334123351233612337123381233912340123411234212343123441234512346123471234812349123501235112352123531235412355123561235712358123591236012361123621236312364123651236612367123681236912370123711237212373123741237512376123771237812379123801238112382123831238412385123861238712388123891239012391123921239312394123951239612397123981239912400124011240212403124041240512406124071240812409124101241112412124131241412415124161241712418124191242012421124221242312424124251242612427124281242912430124311243212433124341243512436124371243812439124401244112442124431244412445124461244712448124491245012451124521245312454124551245612457124581245912460124611246212463124641246512466124671246812469124701247112472124731247412475124761247712478124791248012481124821248312484124851248612487124881248912490124911249212493124941249512496124971249812499125001250112502125031250412505125061250712508125091251012511125121251312514125151251612517125181251912520125211252212523125241252512526125271252812529125301253112532125331253412535125361253712538125391254012541125421254312544125451254612547125481254912550125511255212553125541255512556125571255812559125601256112562125631256412565125661256712568125691257012571125721257312574125751257612577125781257912580125811258212583125841258512586125871258812589125901259112592125931259412595125961259712598125991260012601126021260312604126051260612607126081260912610126111261212613126141261512616126171261812619126201262112622126231262412625126261262712628126291263012631126321263312634126351263612637126381263912640126411264212643126441264512646126471264812649126501265112652126531265412655126561265712658126591266012661126621266312664126651266612667126681266912670126711267212673126741267512676126771267812679126801268112682126831268412685126861268712688126891269012691126921269312694126951269612697126981269912700127011270212703127041270512706127071270812709127101271112712127131271412715127161271712718127191272012721127221272312724127251272612727127281272912730127311273212733127341273512736127371273812739127401274112742127431274412745127461274712748127491275012751127521275312754127551275612757127581275912760127611276212763127641276512766127671276812769127701277112772127731277412775127761277712778127791278012781127821278312784127851278612787127881278912790127911279212793127941279512796127971279812799128001280112802128031280412805128061280712808128091281012811128121281312814128151281612817128181281912820128211282212823128241282512826128271282812829128301283112832128331283412835128361283712838128391284012841128421284312844128451284612847128481284912850128511285212853128541285512856128571285812859128601286112862128631286412865128661286712868128691287012871128721287312874128751287612877128781287912880128811288212883128841288512886128871288812889128901289112892128931289412895128961289712898128991290012901129021290312904129051290612907129081290912910129111291212913129141291512916129171291812919129201292112922129231292412925129261292712928129291293012931129321293312934129351293612937129381293912940129411294212943129441294512946129471294812949129501295112952129531295412955129561295712958129591296012961129621296312964129651296612967129681296912970129711297212973129741297512976129771297812979129801298112982129831298412985129861298712988129891299012991129921299312994129951299612997129981299913000130011300213003130041300513006130071300813009130101301113012130131301413015130161301713018130191302013021130221302313024130251302613027130281302913030130311303213033130341303513036130371303813039130401304113042130431304413045130461304713048130491305013051130521305313054130551305613057130581305913060130611306213063130641306513066130671306813069130701307113072130731307413075130761307713078130791308013081130821308313084130851308613087130881308913090130911309213093130941309513096130971309813099131001310113102131031310413105131061310713108131091311013111131121311313114131151311613117131181311913120131211312213123131241312513126131271312813129131301313113132131331313413135131361313713138131391314013141131421314313144131451314613147131481314913150131511315213153131541315513156131571315813159131601316113162131631316413165131661316713168131691317013171131721317313174131751317613177131781317913180131811318213183131841318513186131871318813189131901319113192131931319413195131961319713198131991320013201132021320313204132051320613207132081320913210132111321213213132141321513216132171321813219132201322113222132231322413225132261322713228132291323013231132321323313234132351323613237132381323913240132411324213243132441324513246132471324813249132501325113252132531325413255132561325713258132591326013261132621326313264132651326613267132681326913270132711327213273132741327513276132771327813279132801328113282132831328413285132861328713288132891329013291132921329313294132951329613297132981329913300133011330213303133041330513306133071330813309133101331113312133131331413315133161331713318133191332013321133221332313324133251332613327133281332913330133311333213333133341333513336133371333813339133401334113342133431334413345133461334713348133491335013351133521335313354133551335613357133581335913360133611336213363133641336513366133671336813369133701337113372133731337413375133761337713378133791338013381133821338313384133851338613387133881338913390133911339213393133941339513396133971339813399134001340113402134031340413405134061340713408134091341013411134121341313414134151341613417134181341913420134211342213423134241342513426134271342813429134301343113432134331343413435134361343713438134391344013441134421344313444134451344613447134481344913450134511345213453134541345513456134571345813459134601346113462134631346413465134661346713468134691347013471134721347313474134751347613477134781347913480134811348213483134841348513486134871348813489134901349113492134931349413495134961349713498134991350013501135021350313504135051350613507135081350913510135111351213513135141351513516135171351813519135201352113522135231352413525135261352713528135291353013531135321353313534135351353613537135381353913540135411354213543135441354513546135471354813549135501355113552135531355413555135561355713558135591356013561135621356313564135651356613567135681356913570135711357213573135741357513576135771357813579135801358113582135831358413585135861358713588135891359013591135921359313594135951359613597135981359913600136011360213603136041360513606136071360813609136101361113612136131361413615136161361713618136191362013621136221362313624136251362613627136281362913630136311363213633136341363513636136371363813639136401364113642136431364413645136461364713648136491365013651136521365313654136551365613657136581365913660136611366213663136641366513666136671366813669136701367113672136731367413675136761367713678136791368013681136821368313684136851368613687136881368913690136911369213693136941369513696136971369813699137001370113702137031370413705137061370713708137091371013711137121371313714137151371613717137181371913720137211372213723137241372513726137271372813729137301373113732137331373413735137361373713738137391374013741137421374313744137451374613747137481374913750137511375213753137541375513756137571375813759137601376113762137631376413765137661376713768137691377013771137721377313774137751377613777137781377913780137811378213783137841378513786137871378813789137901379113792137931379413795137961379713798137991380013801138021380313804138051380613807138081380913810138111381213813138141381513816138171381813819138201382113822138231382413825138261382713828138291383013831138321383313834138351383613837138381383913840138411384213843138441384513846138471384813849138501385113852138531385413855138561385713858138591386013861138621386313864138651386613867138681386913870138711387213873138741387513876138771387813879138801388113882138831388413885138861388713888138891389013891138921389313894138951389613897138981389913900139011390213903139041390513906139071390813909139101391113912139131391413915139161391713918139191392013921139221392313924139251392613927139281392913930139311393213933139341393513936139371393813939139401394113942139431394413945139461394713948139491395013951139521395313954139551395613957139581395913960139611396213963139641396513966139671396813969139701397113972139731397413975139761397713978139791398013981139821398313984139851398613987139881398913990139911399213993139941399513996139971399813999140001400114002140031400414005140061400714008140091401014011140121401314014140151401614017140181401914020140211402214023140241402514026140271402814029140301403114032140331403414035140361403714038140391404014041140421404314044140451404614047140481404914050140511405214053140541405514056140571405814059140601406114062140631406414065140661406714068140691407014071140721407314074140751407614077140781407914080140811408214083140841408514086140871408814089140901409114092140931409414095140961409714098140991410014101141021410314104141051410614107141081410914110141111411214113141141411514116141171411814119141201412114122141231412414125141261412714128141291413014131141321413314134141351413614137141381413914140141411414214143141441414514146141471414814149141501415114152141531415414155141561415714158141591416014161141621416314164141651416614167141681416914170141711417214173141741417514176141771417814179141801418114182141831418414185141861418714188141891419014191141921419314194141951419614197141981419914200142011420214203142041420514206142071420814209142101421114212142131421414215142161421714218142191422014221142221422314224142251422614227142281422914230142311423214233142341423514236142371423814239142401424114242142431424414245142461424714248142491425014251142521425314254142551425614257142581425914260142611426214263142641426514266142671426814269142701427114272142731427414275142761427714278142791428014281142821428314284142851428614287142881428914290142911429214293142941429514296142971429814299143001430114302143031430414305143061430714308143091431014311143121431314314143151431614317143181431914320143211432214323143241432514326143271432814329143301433114332143331433414335143361433714338143391434014341143421434314344143451434614347143481434914350143511435214353143541435514356143571435814359143601436114362143631436414365143661436714368143691437014371143721437314374143751437614377143781437914380143811438214383143841438514386143871438814389143901439114392143931439414395143961439714398143991440014401144021440314404144051440614407144081440914410144111441214413144141441514416144171441814419144201442114422144231442414425144261442714428144291443014431144321443314434144351443614437144381443914440144411444214443144441444514446144471444814449144501445114452144531445414455144561445714458144591446014461144621446314464144651446614467144681446914470144711447214473144741447514476144771447814479144801448114482144831448414485144861448714488144891449014491144921449314494144951449614497144981449914500145011450214503145041450514506145071450814509145101451114512145131451414515145161451714518145191452014521145221452314524145251452614527145281452914530145311453214533145341453514536145371453814539145401454114542145431454414545145461454714548145491455014551145521455314554145551455614557145581455914560145611456214563145641456514566145671456814569145701457114572145731457414575145761457714578145791458014581145821458314584145851458614587145881458914590145911459214593145941459514596145971459814599146001460114602146031460414605146061460714608146091461014611146121461314614146151461614617146181461914620146211462214623146241462514626146271462814629146301463114632146331463414635146361463714638146391464014641146421464314644146451464614647146481464914650146511465214653146541465514656146571465814659146601466114662146631466414665146661466714668146691467014671146721467314674146751467614677146781467914680146811468214683146841468514686146871468814689146901469114692146931469414695146961469714698146991470014701147021470314704147051470614707147081470914710147111471214713147141471514716147171471814719147201472114722147231472414725147261472714728147291473014731147321473314734147351473614737147381473914740147411474214743147441474514746147471474814749147501475114752147531475414755147561475714758147591476014761147621476314764147651476614767147681476914770147711477214773147741477514776147771477814779147801478114782147831478414785147861478714788147891479014791147921479314794147951479614797147981479914800148011480214803148041480514806148071480814809148101481114812148131481414815148161481714818148191482014821148221482314824148251482614827148281482914830148311483214833148341483514836148371483814839148401484114842148431484414845148461484714848148491485014851148521485314854148551485614857148581485914860148611486214863148641486514866148671486814869148701487114872148731487414875148761487714878148791488014881148821488314884148851488614887148881488914890148911489214893148941489514896148971489814899149001490114902149031490414905149061490714908149091491014911149121491314914149151491614917149181491914920149211492214923149241492514926149271492814929149301493114932149331493414935149361493714938149391494014941149421494314944149451494614947149481494914950149511495214953149541495514956149571495814959149601496114962149631496414965149661496714968149691497014971149721497314974149751497614977149781497914980149811498214983149841498514986149871498814989149901499114992149931499414995149961499714998149991500015001150021500315004150051500615007150081500915010150111501215013150141501515016150171501815019150201502115022150231502415025150261502715028150291503015031150321503315034150351503615037150381503915040150411504215043150441504515046150471504815049150501505115052150531505415055150561505715058150591506015061150621506315064150651506615067150681506915070150711507215073150741507515076150771507815079150801508115082150831508415085150861508715088150891509015091150921509315094150951509615097150981509915100151011510215103151041510515106151071510815109151101511115112151131511415115151161511715118151191512015121151221512315124151251512615127151281512915130151311513215133151341513515136151371513815139151401514115142151431514415145151461514715148151491515015151151521515315154151551515615157151581515915160151611516215163151641516515166151671516815169151701517115172151731517415175151761517715178151791518015181151821518315184151851518615187151881518915190151911519215193151941519515196151971519815199152001520115202152031520415205152061520715208152091521015211152121521315214152151521615217152181521915220152211522215223152241522515226152271522815229152301523115232152331523415235152361523715238152391524015241152421524315244152451524615247152481524915250152511525215253152541525515256152571525815259152601526115262152631526415265152661526715268152691527015271152721527315274152751527615277152781527915280152811528215283152841528515286152871528815289152901529115292152931529415295152961529715298152991530015301153021530315304153051530615307153081530915310153111531215313153141531515316153171531815319153201532115322153231532415325153261532715328153291533015331153321533315334153351533615337153381533915340153411534215343153441534515346153471534815349153501535115352153531535415355153561535715358153591536015361153621536315364153651536615367153681536915370153711537215373153741537515376153771537815379153801538115382153831538415385153861538715388153891539015391153921539315394153951539615397153981539915400154011540215403154041540515406154071540815409154101541115412154131541415415154161541715418154191542015421154221542315424154251542615427154281542915430154311543215433154341543515436154371543815439154401544115442154431544415445154461544715448154491545015451154521545315454154551545615457154581545915460154611546215463154641546515466154671546815469154701547115472154731547415475154761547715478154791548015481154821548315484154851548615487154881548915490154911549215493154941549515496154971549815499155001550115502155031550415505155061550715508155091551015511155121551315514155151551615517155181551915520155211552215523155241552515526155271552815529155301553115532155331553415535155361553715538155391554015541155421554315544155451554615547155481554915550155511555215553155541555515556155571555815559155601556115562155631556415565155661556715568155691557015571155721557315574155751557615577155781557915580155811558215583155841558515586155871558815589155901559115592155931559415595155961559715598155991560015601156021560315604156051560615607156081560915610156111561215613156141561515616156171561815619156201562115622156231562415625156261562715628156291563015631156321563315634156351563615637156381563915640156411564215643156441564515646156471564815649156501565115652156531565415655156561565715658156591566015661156621566315664156651566615667156681566915670156711567215673156741567515676156771567815679156801568115682156831568415685156861568715688156891569015691156921569315694156951569615697156981569915700157011570215703157041570515706157071570815709157101571115712157131571415715157161571715718157191572015721157221572315724157251572615727157281572915730157311573215733157341573515736157371573815739157401574115742157431574415745157461574715748157491575015751157521575315754157551575615757157581575915760157611576215763157641576515766157671576815769157701577115772157731577415775157761577715778157791578015781157821578315784157851578615787157881578915790157911579215793157941579515796157971579815799158001580115802158031580415805158061580715808158091581015811158121581315814158151581615817158181581915820158211582215823158241582515826158271582815829158301583115832158331583415835158361583715838158391584015841158421584315844158451584615847158481584915850158511585215853158541585515856158571585815859158601586115862158631586415865158661586715868158691587015871158721587315874158751587615877158781587915880158811588215883158841588515886158871588815889158901589115892158931589415895158961589715898158991590015901159021590315904159051590615907159081590915910159111591215913159141591515916159171591815919159201592115922159231592415925159261592715928159291593015931159321593315934159351593615937159381593915940159411594215943159441594515946159471594815949159501595115952159531595415955159561595715958159591596015961159621596315964159651596615967159681596915970159711597215973159741597515976159771597815979159801598115982159831598415985159861598715988159891599015991159921599315994159951599615997159981599916000160011600216003160041600516006160071600816009160101601116012160131601416015160161601716018160191602016021160221602316024160251602616027160281602916030160311603216033160341603516036160371603816039160401604116042160431604416045160461604716048160491605016051160521605316054160551605616057160581605916060160611606216063160641606516066160671606816069160701607116072160731607416075160761607716078160791608016081160821608316084160851608616087160881608916090160911609216093160941609516096160971609816099161001610116102161031610416105161061610716108161091611016111161121611316114161151611616117161181611916120161211612216123161241612516126161271612816129161301613116132161331613416135161361613716138161391614016141161421614316144161451614616147161481614916150161511615216153161541615516156161571615816159161601616116162161631616416165161661616716168161691617016171161721617316174161751617616177161781617916180161811618216183161841618516186161871618816189161901619116192161931619416195161961619716198161991620016201162021620316204162051620616207162081620916210162111621216213162141621516216162171621816219162201622116222162231622416225162261622716228162291623016231162321623316234162351623616237162381623916240162411624216243162441624516246162471624816249162501625116252162531625416255162561625716258162591626016261162621626316264162651626616267162681626916270162711627216273162741627516276162771627816279162801628116282162831628416285162861628716288162891629016291162921629316294162951629616297162981629916300163011630216303163041630516306163071630816309163101631116312163131631416315163161631716318163191632016321163221632316324163251632616327163281632916330163311633216333163341633516336163371633816339163401634116342163431634416345163461634716348163491635016351163521635316354163551635616357163581635916360163611636216363163641636516366163671636816369163701637116372163731637416375163761637716378163791638016381163821638316384163851638616387163881638916390163911639216393163941639516396163971639816399164001640116402164031640416405164061640716408164091641016411164121641316414164151641616417164181641916420164211642216423164241642516426164271642816429164301643116432164331643416435164361643716438164391644016441164421644316444164451644616447164481644916450164511645216453164541645516456164571645816459164601646116462164631646416465164661646716468164691647016471164721647316474164751647616477164781647916480164811648216483164841648516486164871648816489164901649116492164931649416495164961649716498164991650016501165021650316504165051650616507165081650916510165111651216513165141651516516165171651816519165201652116522165231652416525165261652716528165291653016531165321653316534165351653616537165381653916540165411654216543165441654516546 
  1. /* fe_x25519_asm
    2. 

  2.  *
    3. 

  3.  * Copyright (C) 2006-2020 wolfSSL Inc.
    4. 

  4.  *
    5. 

  5.  * This file is part of wolfSSL.
    6. 

  6.  *
    7. 

  7.  * wolfSSL is free software; you can redistribute it and/or modify
    8. 

  8.  * it under the terms of the GNU General Public License as published by
    9. 

  9.  * the Free Software Foundation; either version 2 of the License, or
    10. 

  10.  * (at your option) any later version.
    11. 

  11.  *
    12. 

  12.  * wolfSSL is distributed in the hope that it will be useful,
    13. 

  13.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    14. 

  14.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    15. 

  15.  * GNU General Public License for more details.
    16. 

  16.  *
    17. 

  17.  * You should have received a copy of the GNU General Public License
    18. 

  18.  * along with this program; if not, write to the Free Software
    19. 

  19.  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
    20. 

  20.  */
    21. 

  21. 

  22. #ifndef HAVE_INTEL_AVX1
    23. 

  23. #define HAVE_INTEL_AVX1
    24. 

  24. #endif /* HAVE_INTEL_AVX1 */
    25. 

  25. #ifndef NO_AVX2_SUPPORT
    26. 

  26. #define HAVE_INTEL_AVX2
    27. 

  27. #endif /* NO_AVX2_SUPPORT */
    28. 

  28. 

  29. #ifndef __APPLE__
    30. 

  30. .text
    31. 

  31. .globl	fe_init
    32. 

  32. .type	fe_init,@function
    33. 

  33. .align	16
    34. 

  34. fe_init:
    35. 

  35. #else
    36. 

  36. .section	__TEXT,__text
    37. 

  37. .globl	_fe_init
    38. 

  38. .p2align	4
    39. 

  39. _fe_init:
    40. 

  40. #endif /* __APPLE__ */
    41. 

  41. #ifdef HAVE_INTEL_AVX2
    42. 

  42. #ifndef __APPLE__
    43. 

  43.         movq	cpuFlagsSet@GOTPCREL(%rip), %rax
    44. 

  44.         movl	(%rax), %eax
    45. 

  45. #else
    46. 

  46.         movl	_cpuFlagsSet(%rip), %eax
    47. 

  47. #endif /* __APPLE__ */
    48. 

  48.         testl	%eax, %eax
    49. 

  49.         je	L_fe_init_get_flags
    50. 

  50.         repz retq
    51. 

  51. L_fe_init_get_flags:
    52. 

  52. #ifndef __APPLE__
    53. 

  53.         callq	cpuid_get_flags@plt
    54. 

  54. #else
    55. 

  55.         callq	_cpuid_get_flags
    56. 

  56. #endif /* __APPLE__ */
    57. 

  57. #ifndef __APPLE__
    58. 

  58.         movq	intelFlags@GOTPCREL(%rip), %rdx
    59. 

  59.         movl	%eax, (%rdx)
    60. 

  60. #else
    61. 

  61.         movl	%eax, _intelFlags(%rip)
    62. 

  62. #endif /* __APPLE__ */
    63. 

  63.         andl	$0x50, %eax
    64. 

  64.         cmpl	$0x50, %eax
    65. 

  65.         jne	L_fe_init_flags_done
    66. 

  66. #ifndef __APPLE__
    67. 

  67.         movq	fe_mul_avx2@GOTPCREL(%rip), %rax
    68. 

  68. #else
    69. 

  69.         leaq	_fe_mul_avx2(%rip), %rax
    70. 

  70. #endif /* __APPLE__ */
    71. 

  71. #ifndef __APPLE__
    72. 

  72.         movq	fe_mul_p@GOTPCREL(%rip), %rdx
    73. 

  73.         movq	%rax, (%rdx)
    74. 

  74. #else
    75. 

  75.         movq	%rax, _fe_mul_p(%rip)
    76. 

  76. #endif /* __APPLE__ */
    77. 

  77. #ifndef __APPLE__
    78. 

  78.         movq	fe_sq_avx2@GOTPCREL(%rip), %rax
    79. 

  79. #else
    80. 

  80.         leaq	_fe_sq_avx2(%rip), %rax
    81. 

  81. #endif /* __APPLE__ */
    82. 

  82. #ifndef __APPLE__
    83. 

  83.         movq	fe_sq_p@GOTPCREL(%rip), %rdx
    84. 

  84.         movq	%rax, (%rdx)
    85. 

  85. #else
    86. 

  86.         movq	%rax, _fe_sq_p(%rip)
    87. 

  87. #endif /* __APPLE__ */
    88. 

  88. #ifndef __APPLE__
    89. 

  89.         movq	fe_mul121666_avx2@GOTPCREL(%rip), %rax
    90. 

  90. #else
    91. 

  91.         leaq	_fe_mul121666_avx2(%rip), %rax
    92. 

  92. #endif /* __APPLE__ */
    93. 

  93. #ifndef __APPLE__
    94. 

  94.         movq	fe_mul121666_p@GOTPCREL(%rip), %rdx
    95. 

  95.         movq	%rax, (%rdx)
    96. 

  96. #else
    97. 

  97.         movq	%rax, _fe_mul121666_p(%rip)
    98. 

  98. #endif /* __APPLE__ */
    99. 

  99. #ifndef __APPLE__
    100. 

  100.         movq	fe_sq2_avx2@GOTPCREL(%rip), %rax
    101. 

  101. #else
    102. 

  102.         leaq	_fe_sq2_avx2(%rip), %rax
    103. 

  103. #endif /* __APPLE__ */
    104. 

  104. #ifndef __APPLE__
    105. 

  105.         movq	fe_sq2_p@GOTPCREL(%rip), %rdx
    106. 

  106.         movq	%rax, (%rdx)
    107. 

  107. #else
    108. 

  108.         movq	%rax, _fe_sq2_p(%rip)
    109. 

  109. #endif /* __APPLE__ */
    110. 

  110. #ifndef __APPLE__
    111. 

  111.         movq	fe_invert_avx2@GOTPCREL(%rip), %rax
    112. 

  112. #else
    113. 

  113.         leaq	_fe_invert_avx2(%rip), %rax
    114. 

  114. #endif /* __APPLE__ */
    115. 

  115. #ifndef __APPLE__
    116. 

  116.         movq	fe_invert_p@GOTPCREL(%rip), %rdx
    117. 

  117.         movq	%rax, (%rdx)
    118. 

  118. #else
    119. 

  119.         movq	%rax, _fe_invert_p(%rip)
    120. 

  120. #endif /* __APPLE__ */
    121. 

  121. #ifndef __APPLE__
    122. 

  122.         movq	curve25519_avx2@GOTPCREL(%rip), %rax
    123. 

  123. #else
    124. 

  124.         leaq	_curve25519_avx2(%rip), %rax
    125. 

  125. #endif /* __APPLE__ */
    126. 

  126. #ifndef __APPLE__
    127. 

  127.         movq	curve25519_p@GOTPCREL(%rip), %rdx
    128. 

  128.         movq	%rax, (%rdx)
    129. 

  129. #else
    130. 

  130.         movq	%rax, _curve25519_p(%rip)
    131. 

  131. #endif /* __APPLE__ */
    132. 

  132. #ifndef __APPLE__
    133. 

  133.         movq	fe_pow22523_avx2@GOTPCREL(%rip), %rax
    134. 

  134. #else
    135. 

  135.         leaq	_fe_pow22523_avx2(%rip), %rax
    136. 

  136. #endif /* __APPLE__ */
    137. 

  137. #ifndef __APPLE__
    138. 

  138.         movq	fe_pow22523_p@GOTPCREL(%rip), %rdx
    139. 

  139.         movq	%rax, (%rdx)
    140. 

  140. #else
    141. 

  141.         movq	%rax, _fe_pow22523_p(%rip)
    142. 

  142. #endif /* __APPLE__ */
    143. 

  143. #ifndef __APPLE__
    144. 

  144.         movq	fe_ge_to_p2_avx2@GOTPCREL(%rip), %rax
    145. 

  145. #else
    146. 

  146.         leaq	_fe_ge_to_p2_avx2(%rip), %rax
    147. 

  147. #endif /* __APPLE__ */
    148. 

  148. #ifndef __APPLE__
    149. 

  149.         movq	fe_ge_to_p2_p@GOTPCREL(%rip), %rdx
    150. 

  150.         movq	%rax, (%rdx)
    151. 

  151. #else
    152. 

  152.         movq	%rax, _fe_ge_to_p2_p(%rip)
    153. 

  153. #endif /* __APPLE__ */
    154. 

  154. #ifndef __APPLE__
    155. 

  155.         movq	fe_ge_to_p3_avx2@GOTPCREL(%rip), %rax
    156. 

  156. #else
    157. 

  157.         leaq	_fe_ge_to_p3_avx2(%rip), %rax
    158. 

  158. #endif /* __APPLE__ */
    159. 

  159. #ifndef __APPLE__
    160. 

  160.         movq	fe_ge_to_p3_p@GOTPCREL(%rip), %rdx
    161. 

  161.         movq	%rax, (%rdx)
    162. 

  162. #else
    163. 

  163.         movq	%rax, _fe_ge_to_p3_p(%rip)
    164. 

  164. #endif /* __APPLE__ */
    165. 

  165. #ifndef __APPLE__
    166. 

  166.         movq	fe_ge_dbl_avx2@GOTPCREL(%rip), %rax
    167. 

  167. #else
    168. 

  168.         leaq	_fe_ge_dbl_avx2(%rip), %rax
    169. 

  169. #endif /* __APPLE__ */
    170. 

  170. #ifndef __APPLE__
    171. 

  171.         movq	fe_ge_dbl_p@GOTPCREL(%rip), %rdx
    172. 

  172.         movq	%rax, (%rdx)
    173. 

  173. #else
    174. 

  174.         movq	%rax, _fe_ge_dbl_p(%rip)
    175. 

  175. #endif /* __APPLE__ */
    176. 

  176. #ifndef __APPLE__
    177. 

  177.         movq	fe_ge_madd_avx2@GOTPCREL(%rip), %rax
    178. 

  178. #else
    179. 

  179.         leaq	_fe_ge_madd_avx2(%rip), %rax
    180. 

  180. #endif /* __APPLE__ */
    181. 

  181. #ifndef __APPLE__
    182. 

  182.         movq	fe_ge_madd_p@GOTPCREL(%rip), %rdx
    183. 

  183.         movq	%rax, (%rdx)
    184. 

  184. #else
    185. 

  185.         movq	%rax, _fe_ge_madd_p(%rip)
    186. 

  186. #endif /* __APPLE__ */
    187. 

  187. #ifndef __APPLE__
    188. 

  188.         movq	fe_ge_msub_avx2@GOTPCREL(%rip), %rax
    189. 

  189. #else
    190. 

  190.         leaq	_fe_ge_msub_avx2(%rip), %rax
    191. 

  191. #endif /* __APPLE__ */
    192. 

  192. #ifndef __APPLE__
    193. 

  193.         movq	fe_ge_msub_p@GOTPCREL(%rip), %rdx
    194. 

  194.         movq	%rax, (%rdx)
    195. 

  195. #else
    196. 

  196.         movq	%rax, _fe_ge_msub_p(%rip)
    197. 

  197. #endif /* __APPLE__ */
    198. 

  198. #ifndef __APPLE__
    199. 

  199.         movq	fe_ge_add_avx2@GOTPCREL(%rip), %rax
    200. 

  200. #else
    201. 

  201.         leaq	_fe_ge_add_avx2(%rip), %rax
    202. 

  202. #endif /* __APPLE__ */
    203. 

  203. #ifndef __APPLE__
    204. 

  204.         movq	fe_ge_add_p@GOTPCREL(%rip), %rdx
    205. 

  205.         movq	%rax, (%rdx)
    206. 

  206. #else
    207. 

  207.         movq	%rax, _fe_ge_add_p(%rip)
    208. 

  208. #endif /* __APPLE__ */
    209. 

  209. #ifndef __APPLE__
    210. 

  210.         movq	fe_ge_sub_avx2@GOTPCREL(%rip), %rax
    211. 

  211. #else
    212. 

  212.         leaq	_fe_ge_sub_avx2(%rip), %rax
    213. 

  213. #endif /* __APPLE__ */
    214. 

  214. #ifndef __APPLE__
    215. 

  215.         movq	fe_ge_sub_p@GOTPCREL(%rip), %rdx
    216. 

  216.         movq	%rax, (%rdx)
    217. 

  217. #else
    218. 

  218.         movq	%rax, _fe_ge_sub_p(%rip)
    219. 

  219. #endif /* __APPLE__ */
    220. 

  220. L_fe_init_flags_done:
    221. 

  221. #ifndef __APPLE__
    222. 

  222.         movq	cpuFlagsSet@GOTPCREL(%rip), %rdx
    223. 

  223.         movl	$0x1, (%rdx)
    224. 

  224. #else
    225. 

  225.         movl	$0x1, _cpuFlagsSet(%rip)
    226. 

  226. #endif /* __APPLE__ */
    227. 

  227. #endif /* HAVE_INTEL_AVX2 */
    228. 

  228.         repz retq
    229. 

  229. #ifndef __APPLE__
    230. 

  230. .size	fe_init,.-fe_init
    231. 

  231. #endif /* __APPLE__ */
    232. 

  232. #ifndef __APPLE__
    233. 

  233. .text
    234. 

  234. .globl	fe_frombytes
    235. 

  235. .type	fe_frombytes,@function
    236. 

  236. .align	16
    237. 

  237. fe_frombytes:
    238. 

  238. #else
    239. 

  239. .section	__TEXT,__text
    240. 

  240. .globl	_fe_frombytes
    241. 

  241. .p2align	4
    242. 

  242. _fe_frombytes:
    243. 

  243. #endif /* __APPLE__ */
    244. 

  244.         movq	$0x7fffffffffffffff, %r9
    245. 

  245.         movq	(%rsi), %rdx
    246. 

  246.         movq	8(%rsi), %rax
    247. 

  247.         movq	16(%rsi), %rcx
    248. 

  248.         movq	24(%rsi), %r8
    249. 

  249.         andq	%r9, %r8
    250. 

  250.         movq	%rdx, (%rdi)
    251. 

  251.         movq	%rax, 8(%rdi)
    252. 

  252.         movq	%rcx, 16(%rdi)
    253. 

  253.         movq	%r8, 24(%rdi)
    254. 

  254.         repz retq
    255. 

  255. #ifndef __APPLE__
    256. 

  256. .size	fe_frombytes,.-fe_frombytes
    257. 

  257. #endif /* __APPLE__ */
    258. 

  258. #ifndef __APPLE__
    259. 

  259. .text
    260. 

  260. .globl	fe_tobytes
    261. 

  261. .type	fe_tobytes,@function
    262. 

  262. .align	16
    263. 

  263. fe_tobytes:
    264. 

  264. #else
    265. 

  265. .section	__TEXT,__text
    266. 

  266. .globl	_fe_tobytes
    267. 

  267. .p2align	4
    268. 

  268. _fe_tobytes:
    269. 

  269. #endif /* __APPLE__ */
    270. 

  270.         movq	$0x7fffffffffffffff, %r10
    271. 

  271.         movq	(%rsi), %rdx
    272. 

  272.         movq	8(%rsi), %rax
    273. 

  273.         movq	16(%rsi), %rcx
    274. 

  274.         movq	24(%rsi), %r8
    275. 

  275.         addq	$19, %rdx
    276. 

  276.         adcq	$0x00, %rax
    277. 

  277.         adcq	$0x00, %rcx
    278. 

  278.         adcq	$0x00, %r8
    279. 

  279.         shrq	$63, %r8
    280. 

  280.         imulq	$19, %r8, %r9
    281. 

  281.         movq	(%rsi), %rdx
    282. 

  282.         movq	8(%rsi), %rax
    283. 

  283.         movq	16(%rsi), %rcx
    284. 

  284.         movq	24(%rsi), %r8
    285. 

  285.         addq	%r9, %rdx
    286. 

  286.         adcq	$0x00, %rax
    287. 

  287.         adcq	$0x00, %rcx
    288. 

  288.         adcq	$0x00, %r8
    289. 

  289.         andq	%r10, %r8
    290. 

  290.         movq	%rdx, (%rdi)
    291. 

  291.         movq	%rax, 8(%rdi)
    292. 

  292.         movq	%rcx, 16(%rdi)
    293. 

  293.         movq	%r8, 24(%rdi)
    294. 

  294.         repz retq
    295. 

  295. #ifndef __APPLE__
    296. 

  296. .size	fe_tobytes,.-fe_tobytes
    297. 

  297. #endif /* __APPLE__ */
    298. 

  298. #ifndef __APPLE__
    299. 

  299. .text
    300. 

  300. .globl	fe_1
    301. 

  301. .type	fe_1,@function
    302. 

  302. .align	16
    303. 

  303. fe_1:
    304. 

  304. #else
    305. 

  305. .section	__TEXT,__text
    306. 

  306. .globl	_fe_1
    307. 

  307. .p2align	4
    308. 

  308. _fe_1:
    309. 

  309. #endif /* __APPLE__ */
    310. 

  310.         # Set one
    311. 

  311.         movq	$0x01, (%rdi)
    312. 

  312.         movq	$0x00, 8(%rdi)
    313. 

  313.         movq	$0x00, 16(%rdi)
    314. 

  314.         movq	$0x00, 24(%rdi)
    315. 

  315.         repz retq
    316. 

  316. #ifndef __APPLE__
    317. 

  317. .size	fe_1,.-fe_1
    318. 

  318. #endif /* __APPLE__ */
    319. 

  319. #ifndef __APPLE__
    320. 

  320. .text
    321. 

  321. .globl	fe_0
    322. 

  322. .type	fe_0,@function
    323. 

  323. .align	16
    324. 

  324. fe_0:
    325. 

  325. #else
    326. 

  326. .section	__TEXT,__text
    327. 

  327. .globl	_fe_0
    328. 

  328. .p2align	4
    329. 

  329. _fe_0:
    330. 

  330. #endif /* __APPLE__ */
    331. 

  331.         # Set zero
    332. 

  332.         movq	$0x00, (%rdi)
    333. 

  333.         movq	$0x00, 8(%rdi)
    334. 

  334.         movq	$0x00, 16(%rdi)
    335. 

  335.         movq	$0x00, 24(%rdi)
    336. 

  336.         repz retq
    337. 

  337. #ifndef __APPLE__
    338. 

  338. .size	fe_0,.-fe_0
    339. 

  339. #endif /* __APPLE__ */
    340. 

  340. #ifndef __APPLE__
    341. 

  341. .text
    342. 

  342. .globl	fe_copy
    343. 

  343. .type	fe_copy,@function
    344. 

  344. .align	16
    345. 

  345. fe_copy:
    346. 

  346. #else
    347. 

  347. .section	__TEXT,__text
    348. 

  348. .globl	_fe_copy
    349. 

  349. .p2align	4
    350. 

  350. _fe_copy:
    351. 

  351. #endif /* __APPLE__ */
    352. 

  352.         # Copy
    353. 

  353.         movq	(%rsi), %rdx
    354. 

  354.         movq	8(%rsi), %rax
    355. 

  355.         movq	16(%rsi), %rcx
    356. 

  356.         movq	24(%rsi), %r8
    357. 

  357.         movq	%rdx, (%rdi)
    358. 

  358.         movq	%rax, 8(%rdi)
    359. 

  359.         movq	%rcx, 16(%rdi)
    360. 

  360.         movq	%r8, 24(%rdi)
    361. 

  361.         repz retq
    362. 

  362. #ifndef __APPLE__
    363. 

  363. .size	fe_copy,.-fe_copy
    364. 

  364. #endif /* __APPLE__ */
    365. 

  365. #ifndef __APPLE__
    366. 

  366. .text
    367. 

  367. .globl	fe_sub
    368. 

  368. .type	fe_sub,@function
    369. 

  369. .align	16
    370. 

  370. fe_sub:
    371. 

  371. #else
    372. 

  372. .section	__TEXT,__text
    373. 

  373. .globl	_fe_sub
    374. 

  374. .p2align	4
    375. 

  375. _fe_sub:
    376. 

  376. #endif /* __APPLE__ */
    377. 

  377.         pushq	%r12
    378. 

  378.         # Sub
    379. 

  379.         movq	(%rsi), %rax
    380. 

  380.         movq	8(%rsi), %rcx
    381. 

  381.         movq	16(%rsi), %r8
    382. 

  382.         movq	24(%rsi), %r9
    383. 

  383.         subq	(%rdx), %rax
    384. 

  384.         movq	$0x00, %r10
    385. 

  385.         sbbq	8(%rdx), %rcx
    386. 

  386.         movq	$-19, %r11
    387. 

  387.         sbbq	16(%rdx), %r8
    388. 

  388.         movq	$0x7fffffffffffffff, %r12
    389. 

  389.         sbbq	24(%rdx), %r9
    390. 

  390.         sbbq	$0x00, %r10
    391. 

  391.         #   Mask the modulus
    392. 

  392.         andq	%r10, %r11
    393. 

  393.         andq	%r10, %r12
    394. 

  394.         #   Add modulus (if underflow)
    395. 

  395.         addq	%r11, %rax
    396. 

  396.         adcq	%r10, %rcx
    397. 

  397.         adcq	%r10, %r8
    398. 

  398.         adcq	%r12, %r9
    399. 

  399.         movq	%rax, (%rdi)
    400. 

  400.         movq	%rcx, 8(%rdi)
    401. 

  401.         movq	%r8, 16(%rdi)
    402. 

  402.         movq	%r9, 24(%rdi)
    403. 

  403.         popq	%r12
    404. 

  404.         repz retq
    405. 

  405. #ifndef __APPLE__
    406. 

  406. .size	fe_sub,.-fe_sub
    407. 

  407. #endif /* __APPLE__ */
    408. 

  408. #ifndef __APPLE__
    409. 

  409. .text
    410. 

  410. .globl	fe_add
    411. 

  411. .type	fe_add,@function
    412. 

  412. .align	16
    413. 

  413. fe_add:
    414. 

  414. #else
    415. 

  415. .section	__TEXT,__text
    416. 

  416. .globl	_fe_add
    417. 

  417. .p2align	4
    418. 

  418. _fe_add:
    419. 

  419. #endif /* __APPLE__ */
    420. 

  420.         pushq	%r12
    421. 

  421.         # Add
    422. 

  422.         movq	(%rsi), %rax
    423. 

  423.         movq	8(%rsi), %rcx
    424. 

  424.         addq	(%rdx), %rax
    425. 

  425.         movq	16(%rsi), %r8
    426. 

  426.         adcq	8(%rdx), %rcx
    427. 

  427.         movq	24(%rsi), %r10
    428. 

  428.         adcq	16(%rdx), %r8
    429. 

  429.         movq	$-19, %r11
    430. 

  430.         adcq	24(%rdx), %r10
    431. 

  431.         movq	$0x7fffffffffffffff, %r12
    432. 

  432.         movq	%r10, %r9
    433. 

  433.         sarq	$63, %r10
    434. 

  434.         #   Mask the modulus
    435. 

  435.         andq	%r10, %r11
    436. 

  436.         andq	%r10, %r12
    437. 

  437.         #   Sub modulus (if overflow)
    438. 

  438.         subq	%r11, %rax
    439. 

  439.         sbbq	%r10, %rcx
    440. 

  440.         sbbq	%r10, %r8
    441. 

  441.         sbbq	%r12, %r9
    442. 

  442.         movq	%rax, (%rdi)
    443. 

  443.         movq	%rcx, 8(%rdi)
    444. 

  444.         movq	%r8, 16(%rdi)
    445. 

  445.         movq	%r9, 24(%rdi)
    446. 

  446.         popq	%r12
    447. 

  447.         repz retq
    448. 

  448. #ifndef __APPLE__
    449. 

  449. .size	fe_add,.-fe_add
    450. 

  450. #endif /* __APPLE__ */
    451. 

  451. #ifndef __APPLE__
    452. 

  452. .text
    453. 

  453. .globl	fe_neg
    454. 

  454. .type	fe_neg,@function
    455. 

  455. .align	16
    456. 

  456. fe_neg:
    457. 

  457. #else
    458. 

  458. .section	__TEXT,__text
    459. 

  459. .globl	_fe_neg
    460. 

  460. .p2align	4
    461. 

  461. _fe_neg:
    462. 

  462. #endif /* __APPLE__ */
    463. 

  463.         movq	$-19, %rdx
    464. 

  464.         movq	$-1, %rax
    465. 

  465.         movq	$-1, %rcx
    466. 

  466.         movq	$0x7fffffffffffffff, %r8
    467. 

  467.         subq	(%rsi), %rdx
    468. 

  468.         sbbq	8(%rsi), %rax
    469. 

  469.         sbbq	16(%rsi), %rcx
    470. 

  470.         sbbq	24(%rsi), %r8
    471. 

  471.         movq	%rdx, (%rdi)
    472. 

  472.         movq	%rax, 8(%rdi)
    473. 

  473.         movq	%rcx, 16(%rdi)
    474. 

  474.         movq	%r8, 24(%rdi)
    475. 

  475.         repz retq
    476. 

  476. #ifndef __APPLE__
    477. 

  477. .size	fe_neg,.-fe_neg
    478. 

  478. #endif /* __APPLE__ */
    479. 

  479. #ifndef __APPLE__
    480. 

  480. .text
    481. 

  481. .globl	fe_cmov
    482. 

  482. .type	fe_cmov,@function
    483. 

  483. .align	16
    484. 

  484. fe_cmov:
    485. 

  485. #else
    486. 

  486. .section	__TEXT,__text
    487. 

  487. .globl	_fe_cmov
    488. 

  488. .p2align	4
    489. 

  489. _fe_cmov:
    490. 

  490. #endif /* __APPLE__ */
    491. 

  491.         cmpl	$0x01, %edx
    492. 

  492.         movq	(%rdi), %rcx
    493. 

  493.         movq	8(%rdi), %r8
    494. 

  494.         movq	16(%rdi), %r9
    495. 

  495.         movq	24(%rdi), %r10
    496. 

  496.         cmoveq	(%rsi), %rcx
    497. 

  497.         cmoveq	8(%rsi), %r8
    498. 

  498.         cmoveq	16(%rsi), %r9
    499. 

  499.         cmoveq	24(%rsi), %r10
    500. 

  500.         movq	%rcx, (%rdi)
    501. 

  501.         movq	%r8, 8(%rdi)
    502. 

  502.         movq	%r9, 16(%rdi)
    503. 

  503.         movq	%r10, 24(%rdi)
    504. 

  504.         repz retq
    505. 

  505. #ifndef __APPLE__
    506. 

  506. .size	fe_cmov,.-fe_cmov
    507. 

  507. #endif /* __APPLE__ */
    508. 

  508. #ifndef __APPLE__
    509. 

  509. .text
    510. 

  510. .globl	fe_isnonzero
    511. 

  511. .type	fe_isnonzero,@function
    512. 

  512. .align	16
    513. 

  513. fe_isnonzero:
    514. 

  514. #else
    515. 

  515. .section	__TEXT,__text
    516. 

  516. .globl	_fe_isnonzero
    517. 

  517. .p2align	4
    518. 

  518. _fe_isnonzero:
    519. 

  519. #endif /* __APPLE__ */
    520. 

  520.         movq	$0x7fffffffffffffff, %r10
    521. 

  521.         movq	(%rdi), %rax
    522. 

  522.         movq	8(%rdi), %rdx
    523. 

  523.         movq	16(%rdi), %rcx
    524. 

  524.         movq	24(%rdi), %r8
    525. 

  525.         addq	$19, %rax
    526. 

  526.         adcq	$0x00, %rdx
    527. 

  527.         adcq	$0x00, %rcx
    528. 

  528.         adcq	$0x00, %r8
    529. 

  529.         shrq	$63, %r8
    530. 

  530.         imulq	$19, %r8, %r9
    531. 

  531.         movq	(%rdi), %rax
    532. 

  532.         movq	8(%rdi), %rdx
    533. 

  533.         movq	16(%rdi), %rcx
    534. 

  534.         movq	24(%rdi), %r8
    535. 

  535.         addq	%r9, %rax
    536. 

  536.         adcq	$0x00, %rdx
    537. 

  537.         adcq	$0x00, %rcx
    538. 

  538.         adcq	$0x00, %r8
    539. 

  539.         andq	%r10, %r8
    540. 

  540.         orq	%rdx, %rax
    541. 

  541.         orq	%rcx, %rax
    542. 

  542.         orq	%r8, %rax
    543. 

  543.         repz retq
    544. 

  544. #ifndef __APPLE__
    545. 

  545. .size	fe_isnonzero,.-fe_isnonzero
    546. 

  546. #endif /* __APPLE__ */
    547. 

  547. #ifndef __APPLE__
    548. 

  548. .text
    549. 

  549. .globl	fe_isnegative
    550. 

  550. .type	fe_isnegative,@function
    551. 

  551. .align	16
    552. 

  552. fe_isnegative:
    553. 

  553. #else
    554. 

  554. .section	__TEXT,__text
    555. 

  555. .globl	_fe_isnegative
    556. 

  556. .p2align	4
    557. 

  557. _fe_isnegative:
    558. 

  558. #endif /* __APPLE__ */
    559. 

  559.         movq	$0x7fffffffffffffff, %r11
    560. 

  560.         movq	(%rdi), %rdx
    561. 

  561.         movq	8(%rdi), %rcx
    562. 

  562.         movq	16(%rdi), %r8
    563. 

  563.         movq	24(%rdi), %r9
    564. 

  564.         movq	%rdx, %rax
    565. 

  565.         addq	$19, %rdx
    566. 

  566.         adcq	$0x00, %rcx
    567. 

  567.         adcq	$0x00, %r8
    568. 

  568.         adcq	$0x00, %r9
    569. 

  569.         shrq	$63, %r9
    570. 

  570.         imulq	$19, %r9, %r10
    571. 

  571.         addq	%r10, %rax
    572. 

  572.         andq	$0x01, %rax
    573. 

  573.         repz retq
    574. 

  574. #ifndef __APPLE__
    575. 

  575. .size	fe_isnegative,.-fe_isnegative
    576. 

  576. #endif /* __APPLE__ */
    577. 

  577. #ifndef __APPLE__
    578. 

  578. .text
    579. 

  579. .globl	fe_cmov_table
    580. 

  580. .type	fe_cmov_table,@function
    581. 

  581. .align	16
    582. 

  582. fe_cmov_table:
    583. 

  583. #else
    584. 

  584. .section	__TEXT,__text
    585. 

  585. .globl	_fe_cmov_table
    586. 

  586. .p2align	4
    587. 

  587. _fe_cmov_table:
    588. 

  588. #endif /* __APPLE__ */
    589. 

  589.         pushq	%r12
    590. 

  590.         pushq	%r13
    591. 

  591.         pushq	%r14
    592. 

  592.         pushq	%r15
    593. 

  593.         movq	%rdx, %rcx
    594. 

  594.         movsbq	%cl, %rax
    595. 

  595.         cdq
    596. 

  596.         xorb	%dl, %al
    597. 

  597.         subb	%dl, %al
    598. 

  598.         movb	%al, %r15b
    599. 

  599.         movq	$0x01, %rax
    600. 

  600.         xorq	%rdx, %rdx
    601. 

  601.         xorq	%r8, %r8
    602. 

  602.         xorq	%r9, %r9
    603. 

  603.         movq	$0x01, %r10
    604. 

  604.         xorq	%r11, %r11
    605. 

  605.         xorq	%r12, %r12
    606. 

  606.         xorq	%r13, %r13
    607. 

  607.         cmpb	$0x01, %r15b
    608. 

  608.         movq	(%rsi), %r14
    609. 

  609.         cmoveq	%r14, %rax
    610. 

  610.         movq	8(%rsi), %r14
    611. 

  611.         cmoveq	%r14, %rdx
    612. 

  612.         movq	16(%rsi), %r14
    613. 

  613.         cmoveq	%r14, %r8
    614. 

  614.         movq	24(%rsi), %r14
    615. 

  615.         cmoveq	%r14, %r9
    616. 

  616.         movq	32(%rsi), %r14
    617. 

  617.         cmoveq	%r14, %r10
    618. 

  618.         movq	40(%rsi), %r14
    619. 

  619.         cmoveq	%r14, %r11
    620. 

  620.         movq	48(%rsi), %r14
    621. 

  621.         cmoveq	%r14, %r12
    622. 

  622.         movq	56(%rsi), %r14
    623. 

  623.         cmoveq	%r14, %r13
    624. 

  624.         cmpb	$2, %r15b
    625. 

  625.         movq	96(%rsi), %r14
    626. 

  626.         cmoveq	%r14, %rax
    627. 

  627.         movq	104(%rsi), %r14
    628. 

  628.         cmoveq	%r14, %rdx
    629. 

  629.         movq	112(%rsi), %r14
    630. 

  630.         cmoveq	%r14, %r8
    631. 

  631.         movq	120(%rsi), %r14
    632. 

  632.         cmoveq	%r14, %r9
    633. 

  633.         movq	128(%rsi), %r14
    634. 

  634.         cmoveq	%r14, %r10
    635. 

  635.         movq	136(%rsi), %r14
    636. 

  636.         cmoveq	%r14, %r11
    637. 

  637.         movq	144(%rsi), %r14
    638. 

  638.         cmoveq	%r14, %r12
    639. 

  639.         movq	152(%rsi), %r14
    640. 

  640.         cmoveq	%r14, %r13
    641. 

  641.         cmpb	$3, %r15b
    642. 

  642.         movq	192(%rsi), %r14
    643. 

  643.         cmoveq	%r14, %rax
    644. 

  644.         movq	200(%rsi), %r14
    645. 

  645.         cmoveq	%r14, %rdx
    646. 

  646.         movq	208(%rsi), %r14
    647. 

  647.         cmoveq	%r14, %r8
    648. 

  648.         movq	216(%rsi), %r14
    649. 

  649.         cmoveq	%r14, %r9
    650. 

  650.         movq	224(%rsi), %r14
    651. 

  651.         cmoveq	%r14, %r10
    652. 

  652.         movq	232(%rsi), %r14
    653. 

  653.         cmoveq	%r14, %r11
    654. 

  654.         movq	240(%rsi), %r14
    655. 

  655.         cmoveq	%r14, %r12
    656. 

  656.         movq	248(%rsi), %r14
    657. 

  657.         cmoveq	%r14, %r13
    658. 

  658.         cmpb	$4, %r15b
    659. 

  659.         movq	288(%rsi), %r14
    660. 

  660.         cmoveq	%r14, %rax
    661. 

  661.         movq	296(%rsi), %r14
    662. 

  662.         cmoveq	%r14, %rdx
    663. 

  663.         movq	304(%rsi), %r14
    664. 

  664.         cmoveq	%r14, %r8
    665. 

  665.         movq	312(%rsi), %r14
    666. 

  666.         cmoveq	%r14, %r9
    667. 

  667.         movq	320(%rsi), %r14
    668. 

  668.         cmoveq	%r14, %r10
    669. 

  669.         movq	328(%rsi), %r14
    670. 

  670.         cmoveq	%r14, %r11
    671. 

  671.         movq	336(%rsi), %r14
    672. 

  672.         cmoveq	%r14, %r12
    673. 

  673.         movq	344(%rsi), %r14
    674. 

  674.         cmoveq	%r14, %r13
    675. 

  675.         cmpb	$5, %r15b
    676. 

  676.         movq	384(%rsi), %r14
    677. 

  677.         cmoveq	%r14, %rax
    678. 

  678.         movq	392(%rsi), %r14
    679. 

  679.         cmoveq	%r14, %rdx
    680. 

  680.         movq	400(%rsi), %r14
    681. 

  681.         cmoveq	%r14, %r8
    682. 

  682.         movq	408(%rsi), %r14
    683. 

  683.         cmoveq	%r14, %r9
    684. 

  684.         movq	416(%rsi), %r14
    685. 

  685.         cmoveq	%r14, %r10
    686. 

  686.         movq	424(%rsi), %r14
    687. 

  687.         cmoveq	%r14, %r11
    688. 

  688.         movq	432(%rsi), %r14
    689. 

  689.         cmoveq	%r14, %r12
    690. 

  690.         movq	440(%rsi), %r14
    691. 

  691.         cmoveq	%r14, %r13
    692. 

  692.         cmpb	$6, %r15b
    693. 

  693.         movq	480(%rsi), %r14
    694. 

  694.         cmoveq	%r14, %rax
    695. 

  695.         movq	488(%rsi), %r14
    696. 

  696.         cmoveq	%r14, %rdx
    697. 

  697.         movq	496(%rsi), %r14
    698. 

  698.         cmoveq	%r14, %r8
    699. 

  699.         movq	504(%rsi), %r14
    700. 

  700.         cmoveq	%r14, %r9
    701. 

  701.         movq	512(%rsi), %r14
    702. 

  702.         cmoveq	%r14, %r10
    703. 

  703.         movq	520(%rsi), %r14
    704. 

  704.         cmoveq	%r14, %r11
    705. 

  705.         movq	528(%rsi), %r14
    706. 

  706.         cmoveq	%r14, %r12
    707. 

  707.         movq	536(%rsi), %r14
    708. 

  708.         cmoveq	%r14, %r13
    709. 

  709.         cmpb	$7, %r15b
    710. 

  710.         movq	576(%rsi), %r14
    711. 

  711.         cmoveq	%r14, %rax
    712. 

  712.         movq	584(%rsi), %r14
    713. 

  713.         cmoveq	%r14, %rdx
    714. 

  714.         movq	592(%rsi), %r14
    715. 

  715.         cmoveq	%r14, %r8
    716. 

  716.         movq	600(%rsi), %r14
    717. 

  717.         cmoveq	%r14, %r9
    718. 

  718.         movq	608(%rsi), %r14
    719. 

  719.         cmoveq	%r14, %r10
    720. 

  720.         movq	616(%rsi), %r14
    721. 

  721.         cmoveq	%r14, %r11
    722. 

  722.         movq	624(%rsi), %r14
    723. 

  723.         cmoveq	%r14, %r12
    724. 

  724.         movq	632(%rsi), %r14
    725. 

  725.         cmoveq	%r14, %r13
    726. 

  726.         cmpb	$8, %r15b
    727. 

  727.         movq	672(%rsi), %r14
    728. 

  728.         cmoveq	%r14, %rax
    729. 

  729.         movq	680(%rsi), %r14
    730. 

  730.         cmoveq	%r14, %rdx
    731. 

  731.         movq	688(%rsi), %r14
    732. 

  732.         cmoveq	%r14, %r8
    733. 

  733.         movq	696(%rsi), %r14
    734. 

  734.         cmoveq	%r14, %r9
    735. 

  735.         movq	704(%rsi), %r14
    736. 

  736.         cmoveq	%r14, %r10
    737. 

  737.         movq	712(%rsi), %r14
    738. 

  738.         cmoveq	%r14, %r11
    739. 

  739.         movq	720(%rsi), %r14
    740. 

  740.         cmoveq	%r14, %r12
    741. 

  741.         movq	728(%rsi), %r14
    742. 

  742.         cmoveq	%r14, %r13
    743. 

  743.         cmpb	$0x00, %cl
    744. 

  744.         movq	%rax, %r14
    745. 

  745.         cmovlq	%r10, %rax
    746. 

  746.         cmovlq	%r14, %r10
    747. 

  747.         movq	%rdx, %r14
    748. 

  748.         cmovlq	%r11, %rdx
    749. 

  749.         cmovlq	%r14, %r11
    750. 

  750.         movq	%r8, %r14
    751. 

  751.         cmovlq	%r12, %r8
    752. 

  752.         cmovlq	%r14, %r12
    753. 

  753.         movq	%r9, %r14
    754. 

  754.         cmovlq	%r13, %r9
    755. 

  755.         cmovlq	%r14, %r13
    756. 

  756.         movq	%rax, (%rdi)
    757. 

  757.         movq	%rdx, 8(%rdi)
    758. 

  758.         movq	%r8, 16(%rdi)
    759. 

  759.         movq	%r9, 24(%rdi)
    760. 

  760.         movq	%r10, 32(%rdi)
    761. 

  761.         movq	%r11, 40(%rdi)
    762. 

  762.         movq	%r12, 48(%rdi)
    763. 

  763.         movq	%r13, 56(%rdi)
    764. 

  764.         xorq	%rax, %rax
    765. 

  765.         xorq	%rdx, %rdx
    766. 

  766.         xorq	%r8, %r8
    767. 

  767.         xorq	%r9, %r9
    768. 

  768.         cmpb	$0x01, %r15b
    769. 

  769.         movq	64(%rsi), %r14
    770. 

  770.         cmoveq	%r14, %rax
    771. 

  771.         movq	72(%rsi), %r14
    772. 

  772.         cmoveq	%r14, %rdx
    773. 

  773.         movq	80(%rsi), %r14
    774. 

  774.         cmoveq	%r14, %r8
    775. 

  775.         movq	88(%rsi), %r14
    776. 

  776.         cmoveq	%r14, %r9
    777. 

  777.         cmpb	$2, %r15b
    778. 

  778.         movq	160(%rsi), %r14
    779. 

  779.         cmoveq	%r14, %rax
    780. 

  780.         movq	168(%rsi), %r14
    781. 

  781.         cmoveq	%r14, %rdx
    782. 

  782.         movq	176(%rsi), %r14
    783. 

  783.         cmoveq	%r14, %r8
    784. 

  784.         movq	184(%rsi), %r14
    785. 

  785.         cmoveq	%r14, %r9
    786. 

  786.         cmpb	$3, %r15b
    787. 

  787.         movq	256(%rsi), %r14
    788. 

  788.         cmoveq	%r14, %rax
    789. 

  789.         movq	264(%rsi), %r14
    790. 

  790.         cmoveq	%r14, %rdx
    791. 

  791.         movq	272(%rsi), %r14
    792. 

  792.         cmoveq	%r14, %r8
    793. 

  793.         movq	280(%rsi), %r14
    794. 

  794.         cmoveq	%r14, %r9
    795. 

  795.         cmpb	$4, %r15b
    796. 

  796.         movq	352(%rsi), %r14
    797. 

  797.         cmoveq	%r14, %rax
    798. 

  798.         movq	360(%rsi), %r14
    799. 

  799.         cmoveq	%r14, %rdx
    800. 

  800.         movq	368(%rsi), %r14
    801. 

  801.         cmoveq	%r14, %r8
    802. 

  802.         movq	376(%rsi), %r14
    803. 

  803.         cmoveq	%r14, %r9
    804. 

  804.         cmpb	$5, %r15b
    805. 

  805.         movq	448(%rsi), %r14
    806. 

  806.         cmoveq	%r14, %rax
    807. 

  807.         movq	456(%rsi), %r14
    808. 

  808.         cmoveq	%r14, %rdx
    809. 

  809.         movq	464(%rsi), %r14
    810. 

  810.         cmoveq	%r14, %r8
    811. 

  811.         movq	472(%rsi), %r14
    812. 

  812.         cmoveq	%r14, %r9
    813. 

  813.         cmpb	$6, %r15b
    814. 

  814.         movq	544(%rsi), %r14
    815. 

  815.         cmoveq	%r14, %rax
    816. 

  816.         movq	552(%rsi), %r14
    817. 

  817.         cmoveq	%r14, %rdx
    818. 

  818.         movq	560(%rsi), %r14
    819. 

  819.         cmoveq	%r14, %r8
    820. 

  820.         movq	568(%rsi), %r14
    821. 

  821.         cmoveq	%r14, %r9
    822. 

  822.         cmpb	$7, %r15b
    823. 

  823.         movq	640(%rsi), %r14
    824. 

  824.         cmoveq	%r14, %rax
    825. 

  825.         movq	648(%rsi), %r14
    826. 

  826.         cmoveq	%r14, %rdx
    827. 

  827.         movq	656(%rsi), %r14
    828. 

  828.         cmoveq	%r14, %r8
    829. 

  829.         movq	664(%rsi), %r14
    830. 

  830.         cmoveq	%r14, %r9
    831. 

  831.         cmpb	$8, %r15b
    832. 

  832.         movq	736(%rsi), %r14
    833. 

  833.         cmoveq	%r14, %rax
    834. 

  834.         movq	744(%rsi), %r14
    835. 

  835.         cmoveq	%r14, %rdx
    836. 

  836.         movq	752(%rsi), %r14
    837. 

  837.         cmoveq	%r14, %r8
    838. 

  838.         movq	760(%rsi), %r14
    839. 

  839.         cmoveq	%r14, %r9
    840. 

  840.         movq	$-19, %r10
    841. 

  841.         movq	$-1, %r11
    842. 

  842.         movq	$-1, %r12
    843. 

  843.         movq	$0x7fffffffffffffff, %r13
    844. 

  844.         subq	%rax, %r10
    845. 

  845.         sbbq	%rdx, %r11
    846. 

  846.         sbbq	%r8, %r12
    847. 

  847.         sbbq	%r9, %r13
    848. 

  848.         cmpb	$0x00, %cl
    849. 

  849.         cmovlq	%r10, %rax
    850. 

  850.         cmovlq	%r11, %rdx
    851. 

  851.         cmovlq	%r12, %r8
    852. 

  852.         cmovlq	%r13, %r9
    853. 

  853.         movq	%rax, 64(%rdi)
    854. 

  854.         movq	%rdx, 72(%rdi)
    855. 

  855.         movq	%r8, 80(%rdi)
    856. 

  856.         movq	%r9, 88(%rdi)
    857. 

  857.         popq	%r15
    858. 

  858.         popq	%r14
    859. 

  859.         popq	%r13
    860. 

  860.         popq	%r12
    861. 

  861.         repz retq
    862. 

  862. #ifndef __APPLE__
    863. 

  863. .size	fe_cmov_table,.-fe_cmov_table
    864. 

  864. #endif /* __APPLE__ */
    865. 

  865. #ifndef __APPLE__
    866. 

  866. .text
    867. 

  867. .globl	fe_mul
    868. 

  868. .type	fe_mul,@function
    869. 

  869. .align	16
    870. 

  870. fe_mul:
    871. 

  871. #else
    872. 

  872. .section	__TEXT,__text
    873. 

  873. .globl	_fe_mul
    874. 

  874. .p2align	4
    875. 

  875. _fe_mul:
    876. 

  876. #endif /* __APPLE__ */
    877. 

  877. #ifndef __APPLE__
    878. 

  878.         jmpq	*fe_mul_p(%rip)
    879. 

  879. #else
    880. 

  880.         jmpq	*_fe_mul_p(%rip)
    881. 

  881. #endif /* __APPLE__ */
    882. 

  882. #ifndef __APPLE__
    883. 

  883. .size	fe_mul,.-fe_mul
    884. 

  884. #endif /* __APPLE__ */
    885. 

  885. #ifndef __APPLE__
    886. 

  886. .text
    887. 

  887. .globl	fe_sq
    888. 

  888. .type	fe_sq,@function
    889. 

  889. .align	16
    890. 

  890. fe_sq:
    891. 

  891. #else
    892. 

  892. .section	__TEXT,__text
    893. 

  893. .globl	_fe_sq
    894. 

  894. .p2align	4
    895. 

  895. _fe_sq:
    896. 

  896. #endif /* __APPLE__ */
    897. 

  897. #ifndef __APPLE__
    898. 

  898.         jmpq	*fe_sq_p(%rip)
    899. 

  899. #else
    900. 

  900.         jmpq	*_fe_sq_p(%rip)
    901. 

  901. #endif /* __APPLE__ */
    902. 

  902. #ifndef __APPLE__
    903. 

  903. .size	fe_sq,.-fe_sq
    904. 

  904. #endif /* __APPLE__ */
    905. 

  905. #ifndef __APPLE__
    906. 

  906. .text
    907. 

  907. .globl	fe_mul121666
    908. 

  908. .type	fe_mul121666,@function
    909. 

  909. .align	16
    910. 

  910. fe_mul121666:
    911. 

  911. #else
    912. 

  912. .section	__TEXT,__text
    913. 

  913. .globl	_fe_mul121666
    914. 

  914. .p2align	4
    915. 

  915. _fe_mul121666:
    916. 

  916. #endif /* __APPLE__ */
    917. 

  917. #ifndef __APPLE__
    918. 

  918.         jmpq	*fe_mul121666_p(%rip)
    919. 

  919. #else
    920. 

  920.         jmpq	*_fe_mul121666_p(%rip)
    921. 

  921. #endif /* __APPLE__ */
    922. 

  922. #ifndef __APPLE__
    923. 

  923. .size	fe_mul121666,.-fe_mul121666
    924. 

  924. #endif /* __APPLE__ */
    925. 

  925. #ifndef __APPLE__
    926. 

  926. .text
    927. 

  927. .globl	fe_sq2
    928. 

  928. .type	fe_sq2,@function
    929. 

  929. .align	16
    930. 

  930. fe_sq2:
    931. 

  931. #else
    932. 

  932. .section	__TEXT,__text
    933. 

  933. .globl	_fe_sq2
    934. 

  934. .p2align	4
    935. 

  935. _fe_sq2:
    936. 

  936. #endif /* __APPLE__ */
    937. 

  937. #ifndef __APPLE__
    938. 

  938.         jmpq	*fe_sq2_p(%rip)
    939. 

  939. #else
    940. 

  940.         jmpq	*_fe_sq2_p(%rip)
    941. 

  941. #endif /* __APPLE__ */
    942. 

  942. #ifndef __APPLE__
    943. 

  943. .size	fe_sq2,.-fe_sq2
    944. 

  944. #endif /* __APPLE__ */
    945. 

  945. #ifndef __APPLE__
    946. 

  946. .text
    947. 

  947. .globl	fe_invert
    948. 

  948. .type	fe_invert,@function
    949. 

  949. .align	16
    950. 

  950. fe_invert:
    951. 

  951. #else
    952. 

  952. .section	__TEXT,__text
    953. 

  953. .globl	_fe_invert
    954. 

  954. .p2align	4
    955. 

  955. _fe_invert:
    956. 

  956. #endif /* __APPLE__ */
    957. 

  957. #ifndef __APPLE__
    958. 

  958.         jmpq	*fe_invert_p(%rip)
    959. 

  959. #else
    960. 

  960.         jmpq	*_fe_invert_p(%rip)
    961. 

  961. #endif /* __APPLE__ */
    962. 

  962. #ifndef __APPLE__
    963. 

  963. .size	fe_invert,.-fe_invert
    964. 

  964. #endif /* __APPLE__ */
    965. 

  965. #ifndef __APPLE__
    966. 

  966. .text
    967. 

  967. .globl	curve25519
    968. 

  968. .type	curve25519,@function
    969. 

  969. .align	16
    970. 

  970. curve25519:
    971. 

  971. #else
    972. 

  972. .section	__TEXT,__text
    973. 

  973. .globl	_curve25519
    974. 

  974. .p2align	4
    975. 

  975. _curve25519:
    976. 

  976. #endif /* __APPLE__ */
    977. 

  977. #ifndef __APPLE__
    978. 

  978.         jmpq	*curve25519_p(%rip)
    979. 

  979. #else
    980. 

  980.         jmpq	*_curve25519_p(%rip)
    981. 

  981. #endif /* __APPLE__ */
    982. 

  982. #ifndef __APPLE__
    983. 

  983. .size	curve25519,.-curve25519
    984. 

  984. #endif /* __APPLE__ */
    985. 

  985. #ifndef __APPLE__
    986. 

  986. .text
    987. 

  987. .globl	fe_pow22523
    988. 

  988. .type	fe_pow22523,@function
    989. 

  989. .align	16
    990. 

  990. fe_pow22523:
    991. 

  991. #else
    992. 

  992. .section	__TEXT,__text
    993. 

  993. .globl	_fe_pow22523
    994. 

  994. .p2align	4
    995. 

  995. _fe_pow22523:
    996. 

  996. #endif /* __APPLE__ */
    997. 

  997. #ifndef __APPLE__
    998. 

  998.         jmpq	*fe_pow22523_p(%rip)
    999. 

  999. #else
    1000. 

  1000.         jmpq	*_fe_pow22523_p(%rip)
    1001. 

  1001. #endif /* __APPLE__ */
    1002. 

  1002. #ifndef __APPLE__
    1003. 

  1003. .size	fe_pow22523,.-fe_pow22523
    1004. 

  1004. #endif /* __APPLE__ */
    1005. 

  1005. #ifndef __APPLE__
    1006. 

  1006. .text
    1007. 

  1007. .globl	fe_ge_to_p2
    1008. 

  1008. .type	fe_ge_to_p2,@function
    1009. 

  1009. .align	16
    1010. 

  1010. fe_ge_to_p2:
    1011. 

  1011. #else
    1012. 

  1012. .section	__TEXT,__text
    1013. 

  1013. .globl	_fe_ge_to_p2
    1014. 

  1014. .p2align	4
    1015. 

  1015. _fe_ge_to_p2:
    1016. 

  1016. #endif /* __APPLE__ */
    1017. 

  1017. #ifndef __APPLE__
    1018. 

  1018.         jmpq	*fe_ge_to_p2_p(%rip)
    1019. 

  1019. #else
    1020. 

  1020.         jmpq	*_fe_ge_to_p2_p(%rip)
    1021. 

  1021. #endif /* __APPLE__ */
    1022. 

  1022. #ifndef __APPLE__
    1023. 

  1023. .size	fe_ge_to_p2,.-fe_ge_to_p2
    1024. 

  1024. #endif /* __APPLE__ */
    1025. 

  1025. #ifndef __APPLE__
    1026. 

  1026. .text
    1027. 

  1027. .globl	fe_ge_to_p3
    1028. 

  1028. .type	fe_ge_to_p3,@function
    1029. 

  1029. .align	16
    1030. 

  1030. fe_ge_to_p3:
    1031. 

  1031. #else
    1032. 

  1032. .section	__TEXT,__text
    1033. 

  1033. .globl	_fe_ge_to_p3
    1034. 

  1034. .p2align	4
    1035. 

  1035. _fe_ge_to_p3:
    1036. 

  1036. #endif /* __APPLE__ */
    1037. 

  1037. #ifndef __APPLE__
    1038. 

  1038.         jmpq	*fe_ge_to_p3_p(%rip)
    1039. 

  1039. #else
    1040. 

  1040.         jmpq	*_fe_ge_to_p3_p(%rip)
    1041. 

  1041. #endif /* __APPLE__ */
    1042. 

  1042. #ifndef __APPLE__
    1043. 

  1043. .size	fe_ge_to_p3,.-fe_ge_to_p3
    1044. 

  1044. #endif /* __APPLE__ */
    1045. 

  1045. #ifndef __APPLE__
    1046. 

  1046. .text
    1047. 

  1047. .globl	fe_ge_dbl
    1048. 

  1048. .type	fe_ge_dbl,@function
    1049. 

  1049. .align	16
    1050. 

  1050. fe_ge_dbl:
    1051. 

  1051. #else
    1052. 

  1052. .section	__TEXT,__text
    1053. 

  1053. .globl	_fe_ge_dbl
    1054. 

  1054. .p2align	4
    1055. 

  1055. _fe_ge_dbl:
    1056. 

  1056. #endif /* __APPLE__ */
    1057. 

  1057. #ifndef __APPLE__
    1058. 

  1058.         jmpq	*fe_ge_dbl_p(%rip)
    1059. 

  1059. #else
    1060. 

  1060.         jmpq	*_fe_ge_dbl_p(%rip)
    1061. 

  1061. #endif /* __APPLE__ */
    1062. 

  1062. #ifndef __APPLE__
    1063. 

  1063. .size	fe_ge_dbl,.-fe_ge_dbl
    1064. 

  1064. #endif /* __APPLE__ */
    1065. 

  1065. #ifndef __APPLE__
    1066. 

  1066. .text
    1067. 

  1067. .globl	fe_ge_madd
    1068. 

  1068. .type	fe_ge_madd,@function
    1069. 

  1069. .align	16
    1070. 

  1070. fe_ge_madd:
    1071. 

  1071. #else
    1072. 

  1072. .section	__TEXT,__text
    1073. 

  1073. .globl	_fe_ge_madd
    1074. 

  1074. .p2align	4
    1075. 

  1075. _fe_ge_madd:
    1076. 

  1076. #endif /* __APPLE__ */
    1077. 

  1077. #ifndef __APPLE__
    1078. 

  1078.         jmpq	*fe_ge_madd_p(%rip)
    1079. 

  1079. #else
    1080. 

  1080.         jmpq	*_fe_ge_madd_p(%rip)
    1081. 

  1081. #endif /* __APPLE__ */
    1082. 

  1082. #ifndef __APPLE__
    1083. 

  1083. .size	fe_ge_madd,.-fe_ge_madd
    1084. 

  1084. #endif /* __APPLE__ */
    1085. 

  1085. #ifndef __APPLE__
    1086. 

  1086. .text
    1087. 

  1087. .globl	fe_ge_msub
    1088. 

  1088. .type	fe_ge_msub,@function
    1089. 

  1089. .align	16
    1090. 

  1090. fe_ge_msub:
    1091. 

  1091. #else
    1092. 

  1092. .section	__TEXT,__text
    1093. 

  1093. .globl	_fe_ge_msub
    1094. 

  1094. .p2align	4
    1095. 

  1095. _fe_ge_msub:
    1096. 

  1096. #endif /* __APPLE__ */
    1097. 

  1097. #ifndef __APPLE__
    1098. 

  1098.         jmpq	*fe_ge_msub_p(%rip)
    1099. 

  1099. #else
    1100. 

  1100.         jmpq	*_fe_ge_msub_p(%rip)
    1101. 

  1101. #endif /* __APPLE__ */
    1102. 

  1102. #ifndef __APPLE__
    1103. 

  1103. .size	fe_ge_msub,.-fe_ge_msub
    1104. 

  1104. #endif /* __APPLE__ */
    1105. 

  1105. #ifndef __APPLE__
    1106. 

  1106. .text
    1107. 

  1107. .globl	fe_ge_add
    1108. 

  1108. .type	fe_ge_add,@function
    1109. 

  1109. .align	16
    1110. 

  1110. fe_ge_add:
    1111. 

  1111. #else
    1112. 

  1112. .section	__TEXT,__text
    1113. 

  1113. .globl	_fe_ge_add
    1114. 

  1114. .p2align	4
    1115. 

  1115. _fe_ge_add:
    1116. 

  1116. #endif /* __APPLE__ */
    1117. 

  1117. #ifndef __APPLE__
    1118. 

  1118.         jmpq	*fe_ge_add_p(%rip)
    1119. 

  1119. #else
    1120. 

  1120.         jmpq	*_fe_ge_add_p(%rip)
    1121. 

  1121. #endif /* __APPLE__ */
    1122. 

  1122. #ifndef __APPLE__
    1123. 

  1123. .size	fe_ge_add,.-fe_ge_add
    1124. 

  1124. #endif /* __APPLE__ */
    1125. 

  1125. #ifndef __APPLE__
    1126. 

  1126. .text
    1127. 

  1127. .globl	fe_ge_sub
    1128. 

  1128. .type	fe_ge_sub,@function
    1129. 

  1129. .align	16
    1130. 

  1130. fe_ge_sub:
    1131. 

  1131. #else
    1132. 

  1132. .section	__TEXT,__text
    1133. 

  1133. .globl	_fe_ge_sub
    1134. 

  1134. .p2align	4
    1135. 

  1135. _fe_ge_sub:
    1136. 

  1136. #endif /* __APPLE__ */
    1137. 

  1137. #ifndef __APPLE__
    1138. 

  1138.         jmpq	*fe_ge_sub_p(%rip)
    1139. 

  1139. #else
    1140. 

  1140.         jmpq	*_fe_ge_sub_p(%rip)
    1141. 

  1141. #endif /* __APPLE__ */
    1142. 

  1142. #ifndef __APPLE__
    1143. 

  1143. .size	fe_ge_sub,.-fe_ge_sub
    1144. 

  1144. #endif /* __APPLE__ */
    1145. 

  1145. #ifndef __APPLE__
    1146. 

  1146. .data
    1147. 

  1147. .type	cpuFlagsSet, @object
    1148. 

  1148. .size	cpuFlagsSet,4
    1149. 

  1149. cpuFlagsSet:
    1150. 

  1150. 	.long	0
    1151. 

  1151. #else
    1152. 

  1152. .section	__DATA,__data
    1153. 

  1153. .p2align	2
    1154. 

  1154. _cpuFlagsSet:
    1155. 

  1155. 	.long	0
    1156. 

  1156. #endif /* __APPLE__ */
    1157. 

  1157. #ifndef __APPLE__
    1158. 

  1158. .data
    1159. 

  1159. .type	intelFlags, @object
    1160. 

  1160. .size	intelFlags,4
    1161. 

  1161. intelFlags:
    1162. 

  1162. 	.long	0
    1163. 

  1163. #else
    1164. 

  1164. .section	__DATA,__data
    1165. 

  1165. .p2align	2
    1166. 

  1166. _intelFlags:
    1167. 

  1167. 	.long	0
    1168. 

  1168. #endif /* __APPLE__ */
    1169. 

  1169. #ifndef __APPLE__
    1170. 

  1170. .data
    1171. 

  1171. .type	fe_mul_p, @object
    1172. 

  1172. .size	fe_mul_p,8
    1173. 

  1173. fe_mul_p:
    1174. 

  1174. 	.quad	fe_mul_x64
    1175. 

  1175. #else
    1176. 

  1176. .section	__DATA,__data
    1177. 

  1177. .p2align	2
    1178. 

  1178. _fe_mul_p:
    1179. 

  1179. 	.quad	_fe_mul_x64
    1180. 

  1180. #endif /* __APPLE__ */
    1181. 

  1181. #ifndef __APPLE__
    1182. 

  1182. .data
    1183. 

  1183. .type	fe_sq_p, @object
    1184. 

  1184. .size	fe_sq_p,8
    1185. 

  1185. fe_sq_p:
    1186. 

  1186. 	.quad	fe_sq_x64
    1187. 

  1187. #else
    1188. 

  1188. .section	__DATA,__data
    1189. 

  1189. .p2align	2
    1190. 

  1190. _fe_sq_p:
    1191. 

  1191. 	.quad	_fe_sq_x64
    1192. 

  1192. #endif /* __APPLE__ */
    1193. 

  1193. #ifndef __APPLE__
    1194. 

  1194. .data
    1195. 

  1195. .type	fe_mul121666_p, @object
    1196. 

  1196. .size	fe_mul121666_p,8
    1197. 

  1197. fe_mul121666_p:
    1198. 

  1198. 	.quad	fe_mul121666_x64
    1199. 

  1199. #else
    1200. 

  1200. .section	__DATA,__data
    1201. 

  1201. .p2align	2
    1202. 

  1202. _fe_mul121666_p:
    1203. 

  1203. 	.quad	_fe_mul121666_x64
    1204. 

  1204. #endif /* __APPLE__ */
    1205. 

  1205. #ifndef __APPLE__
    1206. 

  1206. .data
    1207. 

  1207. .type	fe_sq2_p, @object
    1208. 

  1208. .size	fe_sq2_p,8
    1209. 

  1209. fe_sq2_p:
    1210. 

  1210. 	.quad	fe_sq2_x64
    1211. 

  1211. #else
    1212. 

  1212. .section	__DATA,__data
    1213. 

  1213. .p2align	2
    1214. 

  1214. _fe_sq2_p:
    1215. 

  1215. 	.quad	_fe_sq2_x64
    1216. 

  1216. #endif /* __APPLE__ */
    1217. 

  1217. #ifndef __APPLE__
    1218. 

  1218. .data
    1219. 

  1219. .type	fe_invert_p, @object
    1220. 

  1220. .size	fe_invert_p,8
    1221. 

  1221. fe_invert_p:
    1222. 

  1222. 	.quad	fe_invert_x64
    1223. 

  1223. #else
    1224. 

  1224. .section	__DATA,__data
    1225. 

  1225. .p2align	2
    1226. 

  1226. _fe_invert_p:
    1227. 

  1227. 	.quad	_fe_invert_x64
    1228. 

  1228. #endif /* __APPLE__ */
    1229. 

  1229. #ifndef __APPLE__
    1230. 

  1230. .data
    1231. 

  1231. .type	curve25519_p, @object
    1232. 

  1232. .size	curve25519_p,8
    1233. 

  1233. curve25519_p:
    1234. 

  1234. 	.quad	curve25519_x64
    1235. 

  1235. #else
    1236. 

  1236. .section	__DATA,__data
    1237. 

  1237. .p2align	2
    1238. 

  1238. _curve25519_p:
    1239. 

  1239. 	.quad	_curve25519_x64
    1240. 

  1240. #endif /* __APPLE__ */
    1241. 

  1241. #ifndef __APPLE__
    1242. 

  1242. .data
    1243. 

  1243. .type	fe_pow22523_p, @object
    1244. 

  1244. .size	fe_pow22523_p,8
    1245. 

  1245. fe_pow22523_p:
    1246. 

  1246. 	.quad	fe_pow22523_x64
    1247. 

  1247. #else
    1248. 

  1248. .section	__DATA,__data
    1249. 

  1249. .p2align	2
    1250. 

  1250. _fe_pow22523_p:
    1251. 

  1251. 	.quad	_fe_pow22523_x64
    1252. 

  1252. #endif /* __APPLE__ */
    1253. 

  1253. #ifndef __APPLE__
    1254. 

  1254. .data
    1255. 

  1255. .type	fe_ge_to_p2_p, @object
    1256. 

  1256. .size	fe_ge_to_p2_p,8
    1257. 

  1257. fe_ge_to_p2_p:
    1258. 

  1258. 	.quad	fe_ge_to_p2_x64
    1259. 

  1259. #else
    1260. 

  1260. .section	__DATA,__data
    1261. 

  1261. .p2align	2
    1262. 

  1262. _fe_ge_to_p2_p:
    1263. 

  1263. 	.quad	_fe_ge_to_p2_x64
    1264. 

  1264. #endif /* __APPLE__ */
    1265. 

  1265. #ifndef __APPLE__
    1266. 

  1266. .data
    1267. 

  1267. .type	fe_ge_to_p3_p, @object
    1268. 

  1268. .size	fe_ge_to_p3_p,8
    1269. 

  1269. fe_ge_to_p3_p:
    1270. 

  1270. 	.quad	fe_ge_to_p3_x64
    1271. 

  1271. #else
    1272. 

  1272. .section	__DATA,__data
    1273. 

  1273. .p2align	2
    1274. 

  1274. _fe_ge_to_p3_p:
    1275. 

  1275. 	.quad	_fe_ge_to_p3_x64
    1276. 

  1276. #endif /* __APPLE__ */
    1277. 

  1277. #ifndef __APPLE__
    1278. 

  1278. .data
    1279. 

  1279. .type	fe_ge_dbl_p, @object
    1280. 

  1280. .size	fe_ge_dbl_p,8
    1281. 

  1281. fe_ge_dbl_p:
    1282. 

  1282. 	.quad	fe_ge_dbl_x64
    1283. 

  1283. #else
    1284. 

  1284. .section	__DATA,__data
    1285. 

  1285. .p2align	2
    1286. 

  1286. _fe_ge_dbl_p:
    1287. 

  1287. 	.quad	_fe_ge_dbl_x64
    1288. 

  1288. #endif /* __APPLE__ */
    1289. 

  1289. #ifndef __APPLE__
    1290. 

  1290. .data
    1291. 

  1291. .type	fe_ge_madd_p, @object
    1292. 

  1292. .size	fe_ge_madd_p,8
    1293. 

  1293. fe_ge_madd_p:
    1294. 

  1294. 	.quad	fe_ge_madd_x64
    1295. 

  1295. #else
    1296. 

  1296. .section	__DATA,__data
    1297. 

  1297. .p2align	2
    1298. 

  1298. _fe_ge_madd_p:
    1299. 

  1299. 	.quad	_fe_ge_madd_x64
    1300. 

  1300. #endif /* __APPLE__ */
    1301. 

  1301. #ifndef __APPLE__
    1302. 

  1302. .data
    1303. 

  1303. .type	fe_ge_msub_p, @object
    1304. 

  1304. .size	fe_ge_msub_p,8
    1305. 

  1305. fe_ge_msub_p:
    1306. 

  1306. 	.quad	fe_ge_msub_x64
    1307. 

  1307. #else
    1308. 

  1308. .section	__DATA,__data
    1309. 

  1309. .p2align	2
    1310. 

  1310. _fe_ge_msub_p:
    1311. 

  1311. 	.quad	_fe_ge_msub_x64
    1312. 

  1312. #endif /* __APPLE__ */
    1313. 

  1313. #ifndef __APPLE__
    1314. 

  1314. .data
    1315. 

  1315. .type	fe_ge_add_p, @object
    1316. 

  1316. .size	fe_ge_add_p,8
    1317. 

  1317. fe_ge_add_p:
    1318. 

  1318. 	.quad	fe_ge_add_x64
    1319. 

  1319. #else
    1320. 

  1320. .section	__DATA,__data
    1321. 

  1321. .p2align	2
    1322. 

  1322. _fe_ge_add_p:
    1323. 

  1323. 	.quad	_fe_ge_add_x64
    1324. 

  1324. #endif /* __APPLE__ */
    1325. 

  1325. #ifndef __APPLE__
    1326. 

  1326. .data
    1327. 

  1327. .type	fe_ge_sub_p, @object
    1328. 

  1328. .size	fe_ge_sub_p,8
    1329. 

  1329. fe_ge_sub_p:
    1330. 

  1330. 	.quad	fe_ge_sub_x64
    1331. 

  1331. #else
    1332. 

  1332. .section	__DATA,__data
    1333. 

  1333. .p2align	2
    1334. 

  1334. _fe_ge_sub_p:
    1335. 

  1335. 	.quad	_fe_ge_sub_x64
    1336. 

  1336. #endif /* __APPLE__ */
    1337. 

  1337. #ifndef __APPLE__
    1338. 

  1338. .text
    1339. 

  1339. .globl	fe_mul_x64
    1340. 

  1340. .type	fe_mul_x64,@function
    1341. 

  1341. .align	16
    1342. 

  1342. fe_mul_x64:
    1343. 

  1343. #else
    1344. 

  1344. .section	__TEXT,__text
    1345. 

  1345. .globl	_fe_mul_x64
    1346. 

  1346. .p2align	4
    1347. 

  1347. _fe_mul_x64:
    1348. 

  1348. #endif /* __APPLE__ */
    1349. 

  1349.         pushq	%r12
    1350. 

  1350.         pushq	%r13
    1351. 

  1351.         pushq	%r14
    1352. 

  1352.         pushq	%r15
    1353. 

  1353.         pushq	%rbx
    1354. 

  1354.         movq	%rdx, %rcx
    1355. 

  1355.         # Multiply
    1356. 

  1356.         #  A[0] * B[0]
    1357. 

  1357.         movq	(%rcx), %rax
    1358. 

  1358.         mulq	(%rsi)
    1359. 

  1359.         movq	%rax, %r8
    1360. 

  1360.         movq	%rdx, %r9
    1361. 

  1361.         #  A[0] * B[1]
    1362. 

  1362.         movq	8(%rcx), %rax
    1363. 

  1363.         mulq	(%rsi)
    1364. 

  1364.         xorq	%r10, %r10
    1365. 

  1365.         addq	%rax, %r9
    1366. 

  1366.         adcq	%rdx, %r10
    1367. 

  1367.         #  A[1] * B[0]
    1368. 

  1368.         movq	(%rcx), %rax
    1369. 

  1369.         mulq	8(%rsi)
    1370. 

  1370.         xorq	%r11, %r11
    1371. 

  1371.         addq	%rax, %r9
    1372. 

  1372.         adcq	%rdx, %r10
    1373. 

  1373.         adcq	$0x00, %r11
    1374. 

  1374.         #  A[0] * B[2]
    1375. 

  1375.         movq	16(%rcx), %rax
    1376. 

  1376.         mulq	(%rsi)
    1377. 

  1377.         addq	%rax, %r10
    1378. 

  1378.         adcq	%rdx, %r11
    1379. 

  1379.         #  A[1] * B[1]
    1380. 

  1380.         movq	8(%rcx), %rax
    1381. 

  1381.         mulq	8(%rsi)
    1382. 

  1382.         xorq	%r12, %r12
    1383. 

  1383.         addq	%rax, %r10
    1384. 

  1384.         adcq	%rdx, %r11
    1385. 

  1385.         adcq	$0x00, %r12
    1386. 

  1386.         #  A[2] * B[0]
    1387. 

  1387.         movq	(%rcx), %rax
    1388. 

  1388.         mulq	16(%rsi)
    1389. 

  1389.         addq	%rax, %r10
    1390. 

  1390.         adcq	%rdx, %r11
    1391. 

  1391.         adcq	$0x00, %r12
    1392. 

  1392.         #  A[0] * B[3]
    1393. 

  1393.         movq	24(%rcx), %rax
    1394. 

  1394.         mulq	(%rsi)
    1395. 

  1395.         xorq	%r13, %r13
    1396. 

  1396.         addq	%rax, %r11
    1397. 

  1397.         adcq	%rdx, %r12
    1398. 

  1398.         adcq	$0x00, %r13
    1399. 

  1399.         #  A[1] * B[2]
    1400. 

  1400.         movq	16(%rcx), %rax
    1401. 

  1401.         mulq	8(%rsi)
    1402. 

  1402.         addq	%rax, %r11
    1403. 

  1403.         adcq	%rdx, %r12
    1404. 

  1404.         adcq	$0x00, %r13
    1405. 

  1405.         #  A[2] * B[1]
    1406. 

  1406.         movq	8(%rcx), %rax
    1407. 

  1407.         mulq	16(%rsi)
    1408. 

  1408.         addq	%rax, %r11
    1409. 

  1409.         adcq	%rdx, %r12
    1410. 

  1410.         adcq	$0x00, %r13
    1411. 

  1411.         #  A[3] * B[0]
    1412. 

  1412.         movq	(%rcx), %rax
    1413. 

  1413.         mulq	24(%rsi)
    1414. 

  1414.         addq	%rax, %r11
    1415. 

  1415.         adcq	%rdx, %r12
    1416. 

  1416.         adcq	$0x00, %r13
    1417. 

  1417.         #  A[1] * B[3]
    1418. 

  1418.         movq	24(%rcx), %rax
    1419. 

  1419.         mulq	8(%rsi)
    1420. 

  1420.         xorq	%r14, %r14
    1421. 

  1421.         addq	%rax, %r12
    1422. 

  1422.         adcq	%rdx, %r13
    1423. 

  1423.         adcq	$0x00, %r14
    1424. 

  1424.         #  A[2] * B[2]
    1425. 

  1425.         movq	16(%rcx), %rax
    1426. 

  1426.         mulq	16(%rsi)
    1427. 

  1427.         addq	%rax, %r12
    1428. 

  1428.         adcq	%rdx, %r13
    1429. 

  1429.         adcq	$0x00, %r14
    1430. 

  1430.         #  A[3] * B[1]
    1431. 

  1431.         movq	8(%rcx), %rax
    1432. 

  1432.         mulq	24(%rsi)
    1433. 

  1433.         addq	%rax, %r12
    1434. 

  1434.         adcq	%rdx, %r13
    1435. 

  1435.         adcq	$0x00, %r14
    1436. 

  1436.         #  A[2] * B[3]
    1437. 

  1437.         movq	24(%rcx), %rax
    1438. 

  1438.         mulq	16(%rsi)
    1439. 

  1439.         xorq	%r15, %r15
    1440. 

  1440.         addq	%rax, %r13
    1441. 

  1441.         adcq	%rdx, %r14
    1442. 

  1442.         adcq	$0x00, %r15
    1443. 

  1443.         #  A[3] * B[2]
    1444. 

  1444.         movq	16(%rcx), %rax
    1445. 

  1445.         mulq	24(%rsi)
    1446. 

  1446.         addq	%rax, %r13
    1447. 

  1447.         adcq	%rdx, %r14
    1448. 

  1448.         adcq	$0x00, %r15
    1449. 

  1449.         #  A[3] * B[3]
    1450. 

  1450.         movq	24(%rcx), %rax
    1451. 

  1451.         mulq	24(%rsi)
    1452. 

  1452.         addq	%rax, %r14
    1453. 

  1453.         adcq	%rdx, %r15
    1454. 

  1454.         # Reduce
    1455. 

  1455.         movq	$0x7fffffffffffffff, %rbx
    1456. 

  1456.         #  Move top half into t4-t7 and remove top bit from t3
    1457. 

  1457.         shldq	$0x01, %r14, %r15
    1458. 

  1458.         shldq	$0x01, %r13, %r14
    1459. 

  1459.         shldq	$0x01, %r12, %r13
    1460. 

  1460.         shldq	$0x01, %r11, %r12
    1461. 

  1461.         andq	%rbx, %r11
    1462. 

  1462.         #  Multiply top half by 19
    1463. 

  1463.         movq	$19, %rax
    1464. 

  1464.         mulq	%r12
    1465. 

  1465.         xorq	%r12, %r12
    1466. 

  1466.         addq	%rax, %r8
    1467. 

  1467.         movq	$19, %rax
    1468. 

  1468.         adcq	%rdx, %r12
    1469. 

  1469.         mulq	%r13
    1470. 

  1470.         xorq	%r13, %r13
    1471. 

  1471.         addq	%rax, %r9
    1472. 

  1472.         movq	$19, %rax
    1473. 

  1473.         adcq	%rdx, %r13
    1474. 

  1474.         mulq	%r14
    1475. 

  1475.         xorq	%r14, %r14
    1476. 

  1476.         addq	%rax, %r10
    1477. 

  1477.         movq	$19, %rax
    1478. 

  1478.         adcq	%rdx, %r14
    1479. 

  1479.         mulq	%r15
    1480. 

  1480.         #  Add remaining product results in
    1481. 

  1481.         addq	%r12, %r9
    1482. 

  1482.         adcq	%r13, %r10
    1483. 

  1483.         adcq	%r14, %r11
    1484. 

  1484.         adcq	%rax, %r11
    1485. 

  1485.         adcq	$0x00, %rdx
    1486. 

  1486.         #  Overflow
    1487. 

  1487.         shldq	$0x01, %r11, %rdx
    1488. 

  1488.         imulq	$19, %rdx, %rax
    1489. 

  1489.         andq	%rbx, %r11
    1490. 

  1490.         addq	%rax, %r8
    1491. 

  1491.         adcq	$0x00, %r9
    1492. 

  1492.         adcq	$0x00, %r10
    1493. 

  1493.         adcq	$0x00, %r11
    1494. 

  1494.         # Reduce if top bit set
    1495. 

  1495.         movq	%r11, %rdx
    1496. 

  1496.         shrq	$63, %rdx
    1497. 

  1497.         imulq	$19, %rdx, %rax
    1498. 

  1498.         andq	%rbx, %r11
    1499. 

  1499.         addq	%rax, %r8
    1500. 

  1500.         adcq	$0x00, %r9
    1501. 

  1501.         adcq	$0x00, %r10
    1502. 

  1502.         adcq	$0x00, %r11
    1503. 

  1503.         # Store
    1504. 

  1504.         movq	%r8, (%rdi)
    1505. 

  1505.         movq	%r9, 8(%rdi)
    1506. 

  1506.         movq	%r10, 16(%rdi)
    1507. 

  1507.         movq	%r11, 24(%rdi)
    1508. 

  1508.         popq	%rbx
    1509. 

  1509.         popq	%r15
    1510. 

  1510.         popq	%r14
    1511. 

  1511.         popq	%r13
    1512. 

  1512.         popq	%r12
    1513. 

  1513.         repz retq
    1514. 

  1514. #ifndef __APPLE__
    1515. 

  1515. .size	fe_mul_x64,.-fe_mul_x64
    1516. 

  1516. #endif /* __APPLE__ */
    1517. 

  1517. #ifndef __APPLE__
    1518. 

  1518. .text
    1519. 

  1519. .globl	fe_sq_x64
    1520. 

  1520. .type	fe_sq_x64,@function
    1521. 

  1521. .align	16
    1522. 

  1522. fe_sq_x64:
    1523. 

  1523. #else
    1524. 

  1524. .section	__TEXT,__text
    1525. 

  1525. .globl	_fe_sq_x64
    1526. 

  1526. .p2align	4
    1527. 

  1527. _fe_sq_x64:
    1528. 

  1528. #endif /* __APPLE__ */
    1529. 

  1529.         pushq	%r12
    1530. 

  1530.         pushq	%r13
    1531. 

  1531.         pushq	%r14
    1532. 

  1532.         pushq	%r15
    1533. 

  1533.         # Square
    1534. 

  1534.         #  A[0] * A[1]
    1535. 

  1535.         movq	(%rsi), %rax
    1536. 

  1536.         mulq	8(%rsi)
    1537. 

  1537.         movq	%rax, %r8
    1538. 

  1538.         movq	%rdx, %r9
    1539. 

  1539.         #  A[0] * A[2]
    1540. 

  1540.         movq	(%rsi), %rax
    1541. 

  1541.         mulq	16(%rsi)
    1542. 

  1542.         xorq	%r10, %r10
    1543. 

  1543.         addq	%rax, %r9
    1544. 

  1544.         adcq	%rdx, %r10
    1545. 

  1545.         #  A[0] * A[3]
    1546. 

  1546.         movq	(%rsi), %rax
    1547. 

  1547.         mulq	24(%rsi)
    1548. 

  1548.         xorq	%r11, %r11
    1549. 

  1549.         addq	%rax, %r10
    1550. 

  1550.         adcq	%rdx, %r11
    1551. 

  1551.         #  A[1] * A[2]
    1552. 

  1552.         movq	8(%rsi), %rax
    1553. 

  1553.         mulq	16(%rsi)
    1554. 

  1554.         xorq	%r12, %r12
    1555. 

  1555.         addq	%rax, %r10
    1556. 

  1556.         adcq	%rdx, %r11
    1557. 

  1557.         adcq	$0x00, %r12
    1558. 

  1558.         #  A[1] * A[3]
    1559. 

  1559.         movq	8(%rsi), %rax
    1560. 

  1560.         mulq	24(%rsi)
    1561. 

  1561.         addq	%rax, %r11
    1562. 

  1562.         adcq	%rdx, %r12
    1563. 

  1563.         #  A[2] * A[3]
    1564. 

  1564.         movq	16(%rsi), %rax
    1565. 

  1565.         mulq	24(%rsi)
    1566. 

  1566.         xorq	%r13, %r13
    1567. 

  1567.         addq	%rax, %r12
    1568. 

  1568.         adcq	%rdx, %r13
    1569. 

  1569.         # Double
    1570. 

  1570.         xorq	%r14, %r14
    1571. 

  1571.         addq	%r8, %r8
    1572. 

  1572.         adcq	%r9, %r9
    1573. 

  1573.         adcq	%r10, %r10
    1574. 

  1574.         adcq	%r11, %r11
    1575. 

  1575.         adcq	%r12, %r12
    1576. 

  1576.         adcq	%r13, %r13
    1577. 

  1577.         adcq	$0x00, %r14
    1578. 

  1578.         #  A[0] * A[0]
    1579. 

  1579.         movq	(%rsi), %rax
    1580. 

  1580.         mulq	%rax
    1581. 

  1581.         movq	%rax, %rcx
    1582. 

  1582.         movq	%rdx, %r15
    1583. 

  1583.         #  A[1] * A[1]
    1584. 

  1584.         movq	8(%rsi), %rax
    1585. 

  1585.         mulq	%rax
    1586. 

  1586.         addq	%r15, %r8
    1587. 

  1587.         adcq	%rax, %r9
    1588. 

  1588.         adcq	$0x00, %rdx
    1589. 

  1589.         movq	%rdx, %r15
    1590. 

  1590.         #  A[2] * A[2]
    1591. 

  1591.         movq	16(%rsi), %rax
    1592. 

  1592.         mulq	%rax
    1593. 

  1593.         addq	%r15, %r10
    1594. 

  1594.         adcq	%rax, %r11
    1595. 

  1595.         adcq	$0x00, %rdx
    1596. 

  1596.         movq	%rdx, %r15
    1597. 

  1597.         #  A[3] * A[3]
    1598. 

  1598.         movq	24(%rsi), %rax
    1599. 

  1599.         mulq	%rax
    1600. 

  1600.         addq	%rax, %r13
    1601. 

  1601.         adcq	%rdx, %r14
    1602. 

  1602.         addq	%r15, %r12
    1603. 

  1603.         adcq	$0x00, %r13
    1604. 

  1604.         adcq	$0x00, %r14
    1605. 

  1605.         # Reduce
    1606. 

  1606.         movq	$0x7fffffffffffffff, %r15
    1607. 

  1607.         #  Move top half into t4-t7 and remove top bit from t3
    1608. 

  1608.         shldq	$0x01, %r13, %r14
    1609. 

  1609.         shldq	$0x01, %r12, %r13
    1610. 

  1610.         shldq	$0x01, %r11, %r12
    1611. 

  1611.         shldq	$0x01, %r10, %r11
    1612. 

  1612.         andq	%r15, %r10
    1613. 

  1613.         #  Multiply top half by 19
    1614. 

  1614.         movq	$19, %rax
    1615. 

  1615.         mulq	%r11
    1616. 

  1616.         xorq	%r11, %r11
    1617. 

  1617.         addq	%rax, %rcx
    1618. 

  1618.         movq	$19, %rax
    1619. 

  1619.         adcq	%rdx, %r11
    1620. 

  1620.         mulq	%r12
    1621. 

  1621.         xorq	%r12, %r12
    1622. 

  1622.         addq	%rax, %r8
    1623. 

  1623.         movq	$19, %rax
    1624. 

  1624.         adcq	%rdx, %r12
    1625. 

  1625.         mulq	%r13
    1626. 

  1626.         xorq	%r13, %r13
    1627. 

  1627.         addq	%rax, %r9
    1628. 

  1628.         movq	$19, %rax
    1629. 

  1629.         adcq	%rdx, %r13
    1630. 

  1630.         mulq	%r14
    1631. 

  1631.         #  Add remaining product results in
    1632. 

  1632.         addq	%r11, %r8
    1633. 

  1633.         adcq	%r12, %r9
    1634. 

  1634.         adcq	%r13, %r10
    1635. 

  1635.         adcq	%rax, %r10
    1636. 

  1636.         adcq	$0x00, %rdx
    1637. 

  1637.         #  Overflow
    1638. 

  1638.         shldq	$0x01, %r10, %rdx
    1639. 

  1639.         imulq	$19, %rdx, %rax
    1640. 

  1640.         andq	%r15, %r10
    1641. 

  1641.         addq	%rax, %rcx
    1642. 

  1642.         adcq	$0x00, %r8
    1643. 

  1643.         adcq	$0x00, %r9
    1644. 

  1644.         adcq	$0x00, %r10
    1645. 

  1645.         # Reduce if top bit set
    1646. 

  1646.         movq	%r10, %rdx
    1647. 

  1647.         shrq	$63, %rdx
    1648. 

  1648.         imulq	$19, %rdx, %rax
    1649. 

  1649.         andq	%r15, %r10
    1650. 

  1650.         addq	%rax, %rcx
    1651. 

  1651.         adcq	$0x00, %r8
    1652. 

  1652.         adcq	$0x00, %r9
    1653. 

  1653.         adcq	$0x00, %r10
    1654. 

  1654.         # Store
    1655. 

  1655.         movq	%rcx, (%rdi)
    1656. 

  1656.         movq	%r8, 8(%rdi)
    1657. 

  1657.         movq	%r9, 16(%rdi)
    1658. 

  1658.         movq	%r10, 24(%rdi)
    1659. 

  1659.         popq	%r15
    1660. 

  1660.         popq	%r14
    1661. 

  1661.         popq	%r13
    1662. 

  1662.         popq	%r12
    1663. 

  1663.         repz retq
    1664. 

  1664. #ifndef __APPLE__
    1665. 

  1665. .size	fe_sq_x64,.-fe_sq_x64
    1666. 

  1666. #endif /* __APPLE__ */
    1667. 

  1667. #ifndef __APPLE__
    1668. 

  1668. .text
    1669. 

  1669. .globl	fe_sq_n_x64
    1670. 

  1670. .type	fe_sq_n_x64,@function
    1671. 

  1671. .align	16
    1672. 

  1672. fe_sq_n_x64:
    1673. 

  1673. #else
    1674. 

  1674. .section	__TEXT,__text
    1675. 

  1675. .globl	_fe_sq_n_x64
    1676. 

  1676. .p2align	4
    1677. 

  1677. _fe_sq_n_x64:
    1678. 

  1678. #endif /* __APPLE__ */
    1679. 

  1679.         pushq	%r12
    1680. 

  1680.         pushq	%r13
    1681. 

  1681.         pushq	%r14
    1682. 

  1682.         pushq	%r15
    1683. 

  1683.         pushq	%rbx
    1684. 

  1684.         movq	%rdx, %rcx
    1685. 

  1685. L_fe_sq_n_x64:
    1686. 

  1686.         # Square
    1687. 

  1687.         #  A[0] * A[1]
    1688. 

  1688.         movq	(%rsi), %rax
    1689. 

  1689.         mulq	8(%rsi)
    1690. 

  1690.         movq	%rax, %r9
    1691. 

  1691.         movq	%rdx, %r10
    1692. 

  1692.         #  A[0] * A[2]
    1693. 

  1693.         movq	(%rsi), %rax
    1694. 

  1694.         mulq	16(%rsi)
    1695. 

  1695.         xorq	%r11, %r11
    1696. 

  1696.         addq	%rax, %r10
    1697. 

  1697.         adcq	%rdx, %r11
    1698. 

  1698.         #  A[0] * A[3]
    1699. 

  1699.         movq	(%rsi), %rax
    1700. 

  1700.         mulq	24(%rsi)
    1701. 

  1701.         xorq	%r12, %r12
    1702. 

  1702.         addq	%rax, %r11
    1703. 

  1703.         adcq	%rdx, %r12
    1704. 

  1704.         #  A[1] * A[2]
    1705. 

  1705.         movq	8(%rsi), %rax
    1706. 

  1706.         mulq	16(%rsi)
    1707. 

  1707.         xorq	%r13, %r13
    1708. 

  1708.         addq	%rax, %r11
    1709. 

  1709.         adcq	%rdx, %r12
    1710. 

  1710.         adcq	$0x00, %r13
    1711. 

  1711.         #  A[1] * A[3]
    1712. 

  1712.         movq	8(%rsi), %rax
    1713. 

  1713.         mulq	24(%rsi)
    1714. 

  1714.         addq	%rax, %r12
    1715. 

  1715.         adcq	%rdx, %r13
    1716. 

  1716.         #  A[2] * A[3]
    1717. 

  1717.         movq	16(%rsi), %rax
    1718. 

  1718.         mulq	24(%rsi)
    1719. 

  1719.         xorq	%r14, %r14
    1720. 

  1720.         addq	%rax, %r13
    1721. 

  1721.         adcq	%rdx, %r14
    1722. 

  1722.         # Double
    1723. 

  1723.         xorq	%r15, %r15
    1724. 

  1724.         addq	%r9, %r9
    1725. 

  1725.         adcq	%r10, %r10
    1726. 

  1726.         adcq	%r11, %r11
    1727. 

  1727.         adcq	%r12, %r12
    1728. 

  1728.         adcq	%r13, %r13
    1729. 

  1729.         adcq	%r14, %r14
    1730. 

  1730.         adcq	$0x00, %r15
    1731. 

  1731.         #  A[0] * A[0]
    1732. 

  1732.         movq	(%rsi), %rax
    1733. 

  1733.         mulq	%rax
    1734. 

  1734.         movq	%rax, %r8
    1735. 

  1735.         movq	%rdx, %rbx
    1736. 

  1736.         #  A[1] * A[1]
    1737. 

  1737.         movq	8(%rsi), %rax
    1738. 

  1738.         mulq	%rax
    1739. 

  1739.         addq	%rbx, %r9
    1740. 

  1740.         adcq	%rax, %r10
    1741. 

  1741.         adcq	$0x00, %rdx
    1742. 

  1742.         movq	%rdx, %rbx
    1743. 

  1743.         #  A[2] * A[2]
    1744. 

  1744.         movq	16(%rsi), %rax
    1745. 

  1745.         mulq	%rax
    1746. 

  1746.         addq	%rbx, %r11
    1747. 

  1747.         adcq	%rax, %r12
    1748. 

  1748.         adcq	$0x00, %rdx
    1749. 

  1749.         movq	%rdx, %rbx
    1750. 

  1750.         #  A[3] * A[3]
    1751. 

  1751.         movq	24(%rsi), %rax
    1752. 

  1752.         mulq	%rax
    1753. 

  1753.         addq	%rax, %r14
    1754. 

  1754.         adcq	%rdx, %r15
    1755. 

  1755.         addq	%rbx, %r13
    1756. 

  1756.         adcq	$0x00, %r14
    1757. 

  1757.         adcq	$0x00, %r15
    1758. 

  1758.         # Reduce
    1759. 

  1759.         movq	$0x7fffffffffffffff, %rbx
    1760. 

  1760.         #  Move top half into t4-t7 and remove top bit from t3
    1761. 

  1761.         shldq	$0x01, %r14, %r15
    1762. 

  1762.         shldq	$0x01, %r13, %r14
    1763. 

  1763.         shldq	$0x01, %r12, %r13
    1764. 

  1764.         shldq	$0x01, %r11, %r12
    1765. 

  1765.         andq	%rbx, %r11
    1766. 

  1766.         #  Multiply top half by 19
    1767. 

  1767.         movq	$19, %rax
    1768. 

  1768.         mulq	%r12
    1769. 

  1769.         xorq	%r12, %r12
    1770. 

  1770.         addq	%rax, %r8
    1771. 

  1771.         movq	$19, %rax
    1772. 

  1772.         adcq	%rdx, %r12
    1773. 

  1773.         mulq	%r13
    1774. 

  1774.         xorq	%r13, %r13
    1775. 

  1775.         addq	%rax, %r9
    1776. 

  1776.         movq	$19, %rax
    1777. 

  1777.         adcq	%rdx, %r13
    1778. 

  1778.         mulq	%r14
    1779. 

  1779.         xorq	%r14, %r14
    1780. 

  1780.         addq	%rax, %r10
    1781. 

  1781.         movq	$19, %rax
    1782. 

  1782.         adcq	%rdx, %r14
    1783. 

  1783.         mulq	%r15
    1784. 

  1784.         #  Add remaining product results in
    1785. 

  1785.         addq	%r12, %r9
    1786. 

  1786.         adcq	%r13, %r10
    1787. 

  1787.         adcq	%r14, %r11
    1788. 

  1788.         adcq	%rax, %r11
    1789. 

  1789.         adcq	$0x00, %rdx
    1790. 

  1790.         #  Overflow
    1791. 

  1791.         shldq	$0x01, %r11, %rdx
    1792. 

  1792.         imulq	$19, %rdx, %rax
    1793. 

  1793.         andq	%rbx, %r11
    1794. 

  1794.         addq	%rax, %r8
    1795. 

  1795.         adcq	$0x00, %r9
    1796. 

  1796.         adcq	$0x00, %r10
    1797. 

  1797.         adcq	$0x00, %r11
    1798. 

  1798.         # Reduce if top bit set
    1799. 

  1799.         movq	%r11, %rdx
    1800. 

  1800.         shrq	$63, %rdx
    1801. 

  1801.         imulq	$19, %rdx, %rax
    1802. 

  1802.         andq	%rbx, %r11
    1803. 

  1803.         addq	%rax, %r8
    1804. 

  1804.         adcq	$0x00, %r9
    1805. 

  1805.         adcq	$0x00, %r10
    1806. 

  1806.         adcq	$0x00, %r11
    1807. 

  1807.         # Store
    1808. 

  1808.         movq	%r8, (%rdi)
    1809. 

  1809.         movq	%r9, 8(%rdi)
    1810. 

  1810.         movq	%r10, 16(%rdi)
    1811. 

  1811.         movq	%r11, 24(%rdi)
    1812. 

  1812.         decb	%cl
    1813. 

  1813.         jnz	L_fe_sq_n_x64
    1814. 

  1814.         popq	%rbx
    1815. 

  1815.         popq	%r15
    1816. 

  1816.         popq	%r14
    1817. 

  1817.         popq	%r13
    1818. 

  1818.         popq	%r12
    1819. 

  1819.         repz retq
    1820. 

  1820. #ifndef __APPLE__
    1821. 

  1821. .size	fe_sq_n_x64,.-fe_sq_n_x64
    1822. 

  1822. #endif /* __APPLE__ */
    1823. 

  1823. #ifndef __APPLE__
    1824. 

  1824. .text
    1825. 

  1825. .globl	fe_mul121666_x64
    1826. 

  1826. .type	fe_mul121666_x64,@function
    1827. 

  1827. .align	16
    1828. 

  1828. fe_mul121666_x64:
    1829. 

  1829. #else
    1830. 

  1830. .section	__TEXT,__text
    1831. 

  1831. .globl	_fe_mul121666_x64
    1832. 

  1832. .p2align	4
    1833. 

  1833. _fe_mul121666_x64:
    1834. 

  1834. #endif /* __APPLE__ */
    1835. 

  1835.         pushq	%r12
    1836. 

  1836.         # Multiply by 121666
    1837. 

  1837.         movq	$0x1db42, %rax
    1838. 

  1838.         mulq	(%rsi)
    1839. 

  1839.         xorq	%r10, %r10
    1840. 

  1840.         movq	%rax, %r8
    1841. 

  1841.         movq	%rdx, %r9
    1842. 

  1842.         movq	$0x1db42, %rax
    1843. 

  1843.         mulq	8(%rsi)
    1844. 

  1844.         xorq	%r11, %r11
    1845. 

  1845.         addq	%rax, %r9
    1846. 

  1846.         adcq	%rdx, %r10
    1847. 

  1847.         movq	$0x1db42, %rax
    1848. 

  1848.         mulq	16(%rsi)
    1849. 

  1849.         xorq	%r12, %r12
    1850. 

  1850.         addq	%rax, %r10
    1851. 

  1851.         adcq	%rdx, %r11
    1852. 

  1852.         movq	$0x1db42, %rax
    1853. 

  1853.         mulq	24(%rsi)
    1854. 

  1854.         movq	$0x7fffffffffffffff, %rcx
    1855. 

  1855.         addq	%rax, %r11
    1856. 

  1856.         adcq	%rdx, %r12
    1857. 

  1857.         shldq	$0x01, %r11, %r12
    1858. 

  1858.         andq	%rcx, %r11
    1859. 

  1859.         movq	$19, %rax
    1860. 

  1860.         mulq	%r12
    1861. 

  1861.         addq	%rax, %r8
    1862. 

  1862.         adcq	$0x00, %r9
    1863. 

  1863.         adcq	$0x00, %r10
    1864. 

  1864.         adcq	$0x00, %r11
    1865. 

  1865.         movq	%r8, (%rdi)
    1866. 

  1866.         movq	%r9, 8(%rdi)
    1867. 

  1867.         movq	%r10, 16(%rdi)
    1868. 

  1868.         movq	%r11, 24(%rdi)
    1869. 

  1869.         popq	%r12
    1870. 

  1870.         repz retq
    1871. 

  1871. #ifndef __APPLE__
    1872. 

  1872. .size	fe_mul121666_x64,.-fe_mul121666_x64
    1873. 

  1873. #endif /* __APPLE__ */
    1874. 

  1874. #ifndef __APPLE__
    1875. 

  1875. .text
    1876. 

  1876. .globl	fe_sq2_x64
    1877. 

  1877. .type	fe_sq2_x64,@function
    1878. 

  1878. .align	16
    1879. 

  1879. fe_sq2_x64:
    1880. 

  1880. #else
    1881. 

  1881. .section	__TEXT,__text
    1882. 

  1882. .globl	_fe_sq2_x64
    1883. 

  1883. .p2align	4
    1884. 

  1884. _fe_sq2_x64:
    1885. 

  1885. #endif /* __APPLE__ */
    1886. 

  1886.         pushq	%r12
    1887. 

  1887.         pushq	%r13
    1888. 

  1888.         pushq	%r14
    1889. 

  1889.         pushq	%r15
    1890. 

  1890.         pushq	%rbx
    1891. 

  1891.         # Square * 2
    1892. 

  1892.         #  A[0] * A[1]
    1893. 

  1893.         movq	(%rsi), %rax
    1894. 

  1894.         mulq	8(%rsi)
    1895. 

  1895.         movq	%rax, %r8
    1896. 

  1896.         movq	%rdx, %r9
    1897. 

  1897.         #  A[0] * A[2]
    1898. 

  1898.         movq	(%rsi), %rax
    1899. 

  1899.         mulq	16(%rsi)
    1900. 

  1900.         xorq	%r10, %r10
    1901. 

  1901.         addq	%rax, %r9
    1902. 

  1902.         adcq	%rdx, %r10
    1903. 

  1903.         #  A[0] * A[3]
    1904. 

  1904.         movq	(%rsi), %rax
    1905. 

  1905.         mulq	24(%rsi)
    1906. 

  1906.         xorq	%r11, %r11
    1907. 

  1907.         addq	%rax, %r10
    1908. 

  1908.         adcq	%rdx, %r11
    1909. 

  1909.         #  A[1] * A[2]
    1910. 

  1910.         movq	8(%rsi), %rax
    1911. 

  1911.         mulq	16(%rsi)
    1912. 

  1912.         xorq	%r12, %r12
    1913. 

  1913.         addq	%rax, %r10
    1914. 

  1914.         adcq	%rdx, %r11
    1915. 

  1915.         adcq	$0x00, %r12
    1916. 

  1916.         #  A[1] * A[3]
    1917. 

  1917.         movq	8(%rsi), %rax
    1918. 

  1918.         mulq	24(%rsi)
    1919. 

  1919.         addq	%rax, %r11
    1920. 

  1920.         adcq	%rdx, %r12
    1921. 

  1921.         #  A[2] * A[3]
    1922. 

  1922.         movq	16(%rsi), %rax
    1923. 

  1923.         mulq	24(%rsi)
    1924. 

  1924.         xorq	%r13, %r13
    1925. 

  1925.         addq	%rax, %r12
    1926. 

  1926.         adcq	%rdx, %r13
    1927. 

  1927.         # Double
    1928. 

  1928.         xorq	%r14, %r14
    1929. 

  1929.         addq	%r8, %r8
    1930. 

  1930.         adcq	%r9, %r9
    1931. 

  1931.         adcq	%r10, %r10
    1932. 

  1932.         adcq	%r11, %r11
    1933. 

  1933.         adcq	%r12, %r12
    1934. 

  1934.         adcq	%r13, %r13
    1935. 

  1935.         adcq	$0x00, %r14
    1936. 

  1936.         #  A[0] * A[0]
    1937. 

  1937.         movq	(%rsi), %rax
    1938. 

  1938.         mulq	%rax
    1939. 

  1939.         movq	%rax, %rcx
    1940. 

  1940.         movq	%rdx, %r15
    1941. 

  1941.         #  A[1] * A[1]
    1942. 

  1942.         movq	8(%rsi), %rax
    1943. 

  1943.         mulq	%rax
    1944. 

  1944.         addq	%r15, %r8
    1945. 

  1945.         adcq	%rax, %r9
    1946. 

  1946.         adcq	$0x00, %rdx
    1947. 

  1947.         movq	%rdx, %r15
    1948. 

  1948.         #  A[2] * A[2]
    1949. 

  1949.         movq	16(%rsi), %rax
    1950. 

  1950.         mulq	%rax
    1951. 

  1951.         addq	%r15, %r10
    1952. 

  1952.         adcq	%rax, %r11
    1953. 

  1953.         adcq	$0x00, %rdx
    1954. 

  1954.         movq	%rdx, %r15
    1955. 

  1955.         #  A[3] * A[3]
    1956. 

  1956.         movq	24(%rsi), %rax
    1957. 

  1957.         mulq	%rax
    1958. 

  1958.         addq	%rax, %r13
    1959. 

  1959.         adcq	%rdx, %r14
    1960. 

  1960.         addq	%r15, %r12
    1961. 

  1961.         adcq	$0x00, %r13
    1962. 

  1962.         adcq	$0x00, %r14
    1963. 

  1963.         # Reduce
    1964. 

  1964.         movq	$0x7fffffffffffffff, %rbx
    1965. 

  1965.         xorq	%rax, %rax
    1966. 

  1966.         #  Move top half into t4-t7 and remove top bit from t3
    1967. 

  1967.         shldq	$3, %r14, %rax
    1968. 

  1968.         shldq	$2, %r13, %r14
    1969. 

  1969.         shldq	$2, %r12, %r13
    1970. 

  1970.         shldq	$2, %r11, %r12
    1971. 

  1971.         shldq	$2, %r10, %r11
    1972. 

  1972.         shldq	$0x01, %r9, %r10
    1973. 

  1973.         shldq	$0x01, %r8, %r9
    1974. 

  1974.         shldq	$0x01, %rcx, %r8
    1975. 

  1975.         shlq	$0x01, %rcx
    1976. 

  1976.         andq	%rbx, %r10
    1977. 

  1977.         #  Two out left, one in right
    1978. 

  1978.         andq	%rbx, %r14
    1979. 

  1979.         #  Multiply top bits by 19*19
    1980. 

  1980.         imulq	$0x169, %rax, %r15
    1981. 

  1981.         #  Multiply top half by 19
    1982. 

  1982.         movq	$19, %rax
    1983. 

  1983.         mulq	%r11
    1984. 

  1984.         xorq	%r11, %r11
    1985. 

  1985.         addq	%rax, %rcx
    1986. 

  1986.         movq	$19, %rax
    1987. 

  1987.         adcq	%rdx, %r11
    1988. 

  1988.         mulq	%r12
    1989. 

  1989.         xorq	%r12, %r12
    1990. 

  1990.         addq	%rax, %r8
    1991. 

  1991.         movq	$19, %rax
    1992. 

  1992.         adcq	%rdx, %r12
    1993. 

  1993.         mulq	%r13
    1994. 

  1994.         xorq	%r13, %r13
    1995. 

  1995.         addq	%rax, %r9
    1996. 

  1996.         movq	$19, %rax
    1997. 

  1997.         adcq	%rdx, %r13
    1998. 

  1998.         mulq	%r14
    1999. 

  1999.         #  Add remaining produce results in
    2000. 

  2000.         addq	%r15, %rcx
    2001. 

  2001.         adcq	%r11, %r8
    2002. 

  2002.         adcq	%r12, %r9
    2003. 

  2003.         adcq	%r13, %r10
    2004. 

  2004.         adcq	%rax, %r10
    2005. 

  2005.         adcq	$0x00, %rdx
    2006. 

  2006.         #  Overflow
    2007. 

  2007.         shldq	$0x01, %r10, %rdx
    2008. 

  2008.         imulq	$19, %rdx, %rax
    2009. 

  2009.         andq	%rbx, %r10
    2010. 

  2010.         addq	%rax, %rcx
    2011. 

  2011.         adcq	$0x00, %r8
    2012. 

  2012.         adcq	$0x00, %r9
    2013. 

  2013.         adcq	$0x00, %r10
    2014. 

  2014.         # Reduce if top bit set
    2015. 

  2015.         movq	%r10, %rdx
    2016. 

  2016.         shrq	$63, %rdx
    2017. 

  2017.         imulq	$19, %rdx, %rax
    2018. 

  2018.         andq	%rbx, %r10
    2019. 

  2019.         addq	%rax, %rcx
    2020. 

  2020.         adcq	$0x00, %r8
    2021. 

  2021.         adcq	$0x00, %r9
    2022. 

  2022.         adcq	$0x00, %r10
    2023. 

  2023.         # Store
    2024. 

  2024.         movq	%rcx, (%rdi)
    2025. 

  2025.         movq	%r8, 8(%rdi)
    2026. 

  2026.         movq	%r9, 16(%rdi)
    2027. 

  2027.         movq	%r10, 24(%rdi)
    2028. 

  2028.         popq	%rbx
    2029. 

  2029.         popq	%r15
    2030. 

  2030.         popq	%r14
    2031. 

  2031.         popq	%r13
    2032. 

  2032.         popq	%r12
    2033. 

  2033.         repz retq
    2034. 

  2034. #ifndef __APPLE__
    2035. 

  2035. .size	fe_sq2_x64,.-fe_sq2_x64
    2036. 

  2036. #endif /* __APPLE__ */
    2037. 

  2037. #ifndef __APPLE__
    2038. 

  2038. .text
    2039. 

  2039. .globl	fe_invert_x64
    2040. 

  2040. .type	fe_invert_x64,@function
    2041. 

  2041. .align	16
    2042. 

  2042. fe_invert_x64:
    2043. 

  2043. #else
    2044. 

  2044. .section	__TEXT,__text
    2045. 

  2045. .globl	_fe_invert_x64
    2046. 

  2046. .p2align	4
    2047. 

  2047. _fe_invert_x64:
    2048. 

  2048. #endif /* __APPLE__ */
    2049. 

  2049.         subq	$0x90, %rsp
    2050. 

  2050.         # Invert
    2051. 

  2051.         movq	%rdi, 128(%rsp)
    2052. 

  2052.         movq	%rsi, 136(%rsp)
    2053. 

  2053.         movq	%rsp, %rdi
    2054. 

  2054.         movq	136(%rsp), %rsi
    2055. 

  2055. #ifndef __APPLE__
    2056. 

  2056.         callq	fe_sq_x64@plt
    2057. 

  2057. #else
    2058. 

  2058.         callq	_fe_sq_x64
    2059. 

  2059. #endif /* __APPLE__ */
    2060. 

  2060.         leaq	32(%rsp), %rdi
    2061. 

  2061.         movq	%rsp, %rsi
    2062. 

  2062. #ifndef __APPLE__
    2063. 

  2063.         callq	fe_sq_x64@plt
    2064. 

  2064. #else
    2065. 

  2065.         callq	_fe_sq_x64
    2066. 

  2066. #endif /* __APPLE__ */
    2067. 

  2067.         leaq	32(%rsp), %rdi
    2068. 

  2068.         leaq	32(%rsp), %rsi
    2069. 

  2069. #ifndef __APPLE__
    2070. 

  2070.         callq	fe_sq_x64@plt
    2071. 

  2071. #else
    2072. 

  2072.         callq	_fe_sq_x64
    2073. 

  2073. #endif /* __APPLE__ */
    2074. 

  2074.         leaq	32(%rsp), %rdi
    2075. 

  2075.         movq	136(%rsp), %rsi
    2076. 

  2076.         leaq	32(%rsp), %rdx
    2077. 

  2077. #ifndef __APPLE__
    2078. 

  2078.         callq	fe_mul_x64@plt
    2079. 

  2079. #else
    2080. 

  2080.         callq	_fe_mul_x64
    2081. 

  2081. #endif /* __APPLE__ */
    2082. 

  2082.         movq	%rsp, %rdi
    2083. 

  2083.         movq	%rsp, %rsi
    2084. 

  2084.         leaq	32(%rsp), %rdx
    2085. 

  2085. #ifndef __APPLE__
    2086. 

  2086.         callq	fe_mul_x64@plt
    2087. 

  2087. #else
    2088. 

  2088.         callq	_fe_mul_x64
    2089. 

  2089. #endif /* __APPLE__ */
    2090. 

  2090.         leaq	64(%rsp), %rdi
    2091. 

  2091.         movq	%rsp, %rsi
    2092. 

  2092. #ifndef __APPLE__
    2093. 

  2093.         callq	fe_sq_x64@plt
    2094. 

  2094. #else
    2095. 

  2095.         callq	_fe_sq_x64
    2096. 

  2096. #endif /* __APPLE__ */
    2097. 

  2097.         leaq	32(%rsp), %rdi
    2098. 

  2098.         leaq	32(%rsp), %rsi
    2099. 

  2099.         leaq	64(%rsp), %rdx
    2100. 

  2100. #ifndef __APPLE__
    2101. 

  2101.         callq	fe_mul_x64@plt
    2102. 

  2102. #else
    2103. 

  2103.         callq	_fe_mul_x64
    2104. 

  2104. #endif /* __APPLE__ */
    2105. 

  2105.         leaq	64(%rsp), %rdi
    2106. 

  2106.         leaq	32(%rsp), %rsi
    2107. 

  2107. #ifndef __APPLE__
    2108. 

  2108.         callq	fe_sq_x64@plt
    2109. 

  2109. #else
    2110. 

  2110.         callq	_fe_sq_x64
    2111. 

  2111. #endif /* __APPLE__ */
    2112. 

  2112.         leaq	64(%rsp), %rdi
    2113. 

  2113.         leaq	64(%rsp), %rsi
    2114. 

  2114.         movq	$4, %rdx
    2115. 

  2115. #ifndef __APPLE__
    2116. 

  2116.         callq	fe_sq_n_x64@plt
    2117. 

  2117. #else
    2118. 

  2118.         callq	_fe_sq_n_x64
    2119. 

  2119. #endif /* __APPLE__ */
    2120. 

  2120.         leaq	32(%rsp), %rdi
    2121. 

  2121.         leaq	64(%rsp), %rsi
    2122. 

  2122.         leaq	32(%rsp), %rdx
    2123. 

  2123. #ifndef __APPLE__
    2124. 

  2124.         callq	fe_mul_x64@plt
    2125. 

  2125. #else
    2126. 

  2126.         callq	_fe_mul_x64
    2127. 

  2127. #endif /* __APPLE__ */
    2128. 

  2128.         leaq	64(%rsp), %rdi
    2129. 

  2129.         leaq	32(%rsp), %rsi
    2130. 

  2130. #ifndef __APPLE__
    2131. 

  2131.         callq	fe_sq_x64@plt
    2132. 

  2132. #else
    2133. 

  2133.         callq	_fe_sq_x64
    2134. 

  2134. #endif /* __APPLE__ */
    2135. 

  2135.         leaq	64(%rsp), %rdi
    2136. 

  2136.         leaq	64(%rsp), %rsi
    2137. 

  2137.         movq	$9, %rdx
    2138. 

  2138. #ifndef __APPLE__
    2139. 

  2139.         callq	fe_sq_n_x64@plt
    2140. 

  2140. #else
    2141. 

  2141.         callq	_fe_sq_n_x64
    2142. 

  2142. #endif /* __APPLE__ */
    2143. 

  2143.         leaq	64(%rsp), %rdi
    2144. 

  2144.         leaq	64(%rsp), %rsi
    2145. 

  2145.         leaq	32(%rsp), %rdx
    2146. 

  2146. #ifndef __APPLE__
    2147. 

  2147.         callq	fe_mul_x64@plt
    2148. 

  2148. #else
    2149. 

  2149.         callq	_fe_mul_x64
    2150. 

  2150. #endif /* __APPLE__ */
    2151. 

  2151.         leaq	96(%rsp), %rdi
    2152. 

  2152.         leaq	64(%rsp), %rsi
    2153. 

  2153. #ifndef __APPLE__
    2154. 

  2154.         callq	fe_sq_x64@plt
    2155. 

  2155. #else
    2156. 

  2156.         callq	_fe_sq_x64
    2157. 

  2157. #endif /* __APPLE__ */
    2158. 

  2158.         leaq	96(%rsp), %rdi
    2159. 

  2159.         leaq	96(%rsp), %rsi
    2160. 

  2160.         movq	$19, %rdx
    2161. 

  2161. #ifndef __APPLE__
    2162. 

  2162.         callq	fe_sq_n_x64@plt
    2163. 

  2163. #else
    2164. 

  2164.         callq	_fe_sq_n_x64
    2165. 

  2165. #endif /* __APPLE__ */
    2166. 

  2166.         leaq	64(%rsp), %rdi
    2167. 

  2167.         leaq	96(%rsp), %rsi
    2168. 

  2168.         leaq	64(%rsp), %rdx
    2169. 

  2169. #ifndef __APPLE__
    2170. 

  2170.         callq	fe_mul_x64@plt
    2171. 

  2171. #else
    2172. 

  2172.         callq	_fe_mul_x64
    2173. 

  2173. #endif /* __APPLE__ */
    2174. 

  2174.         leaq	64(%rsp), %rdi
    2175. 

  2175.         leaq	64(%rsp), %rsi
    2176. 

  2176. #ifndef __APPLE__
    2177. 

  2177.         callq	fe_sq_x64@plt
    2178. 

  2178. #else
    2179. 

  2179.         callq	_fe_sq_x64
    2180. 

  2180. #endif /* __APPLE__ */
    2181. 

  2181.         leaq	64(%rsp), %rdi
    2182. 

  2182.         leaq	64(%rsp), %rsi
    2183. 

  2183.         movq	$9, %rdx
    2184. 

  2184. #ifndef __APPLE__
    2185. 

  2185.         callq	fe_sq_n_x64@plt
    2186. 

  2186. #else
    2187. 

  2187.         callq	_fe_sq_n_x64
    2188. 

  2188. #endif /* __APPLE__ */
    2189. 

  2189.         leaq	32(%rsp), %rdi
    2190. 

  2190.         leaq	64(%rsp), %rsi
    2191. 

  2191.         leaq	32(%rsp), %rdx
    2192. 

  2192. #ifndef __APPLE__
    2193. 

  2193.         callq	fe_mul_x64@plt
    2194. 

  2194. #else
    2195. 

  2195.         callq	_fe_mul_x64
    2196. 

  2196. #endif /* __APPLE__ */
    2197. 

  2197.         leaq	64(%rsp), %rdi
    2198. 

  2198.         leaq	32(%rsp), %rsi
    2199. 

  2199. #ifndef __APPLE__
    2200. 

  2200.         callq	fe_sq_x64@plt
    2201. 

  2201. #else
    2202. 

  2202.         callq	_fe_sq_x64
    2203. 

  2203. #endif /* __APPLE__ */
    2204. 

  2204.         leaq	64(%rsp), %rdi
    2205. 

  2205.         leaq	64(%rsp), %rsi
    2206. 

  2206.         movq	$49, %rdx
    2207. 

  2207. #ifndef __APPLE__
    2208. 

  2208.         callq	fe_sq_n_x64@plt
    2209. 

  2209. #else
    2210. 

  2210.         callq	_fe_sq_n_x64
    2211. 

  2211. #endif /* __APPLE__ */
    2212. 

  2212.         leaq	64(%rsp), %rdi
    2213. 

  2213.         leaq	64(%rsp), %rsi
    2214. 

  2214.         leaq	32(%rsp), %rdx
    2215. 

  2215. #ifndef __APPLE__
    2216. 

  2216.         callq	fe_mul_x64@plt
    2217. 

  2217. #else
    2218. 

  2218.         callq	_fe_mul_x64
    2219. 

  2219. #endif /* __APPLE__ */
    2220. 

  2220.         leaq	96(%rsp), %rdi
    2221. 

  2221.         leaq	64(%rsp), %rsi
    2222. 

  2222. #ifndef __APPLE__
    2223. 

  2223.         callq	fe_sq_x64@plt
    2224. 

  2224. #else
    2225. 

  2225.         callq	_fe_sq_x64
    2226. 

  2226. #endif /* __APPLE__ */
    2227. 

  2227.         leaq	96(%rsp), %rdi
    2228. 

  2228.         leaq	96(%rsp), %rsi
    2229. 

  2229.         movq	$0x63, %rdx
    2230. 

  2230. #ifndef __APPLE__
    2231. 

  2231.         callq	fe_sq_n_x64@plt
    2232. 

  2232. #else
    2233. 

  2233.         callq	_fe_sq_n_x64
    2234. 

  2234. #endif /* __APPLE__ */
    2235. 

  2235.         leaq	64(%rsp), %rdi
    2236. 

  2236.         leaq	96(%rsp), %rsi
    2237. 

  2237.         leaq	64(%rsp), %rdx
    2238. 

  2238. #ifndef __APPLE__
    2239. 

  2239.         callq	fe_mul_x64@plt
    2240. 

  2240. #else
    2241. 

  2241.         callq	_fe_mul_x64
    2242. 

  2242. #endif /* __APPLE__ */
    2243. 

  2243.         leaq	64(%rsp), %rdi
    2244. 

  2244.         leaq	64(%rsp), %rsi
    2245. 

  2245. #ifndef __APPLE__
    2246. 

  2246.         callq	fe_sq_x64@plt
    2247. 

  2247. #else
    2248. 

  2248.         callq	_fe_sq_x64
    2249. 

  2249. #endif /* __APPLE__ */
    2250. 

  2250.         leaq	64(%rsp), %rdi
    2251. 

  2251.         leaq	64(%rsp), %rsi
    2252. 

  2252.         movq	$49, %rdx
    2253. 

  2253. #ifndef __APPLE__
    2254. 

  2254.         callq	fe_sq_n_x64@plt
    2255. 

  2255. #else
    2256. 

  2256.         callq	_fe_sq_n_x64
    2257. 

  2257. #endif /* __APPLE__ */
    2258. 

  2258.         leaq	32(%rsp), %rdi
    2259. 

  2259.         leaq	64(%rsp), %rsi
    2260. 

  2260.         leaq	32(%rsp), %rdx
    2261. 

  2261. #ifndef __APPLE__
    2262. 

  2262.         callq	fe_mul_x64@plt
    2263. 

  2263. #else
    2264. 

  2264.         callq	_fe_mul_x64
    2265. 

  2265. #endif /* __APPLE__ */
    2266. 

  2266.         leaq	32(%rsp), %rdi
    2267. 

  2267.         leaq	32(%rsp), %rsi
    2268. 

  2268. #ifndef __APPLE__
    2269. 

  2269.         callq	fe_sq_x64@plt
    2270. 

  2270. #else
    2271. 

  2271.         callq	_fe_sq_x64
    2272. 

  2272. #endif /* __APPLE__ */
    2273. 

  2273.         leaq	32(%rsp), %rdi
    2274. 

  2274.         leaq	32(%rsp), %rsi
    2275. 

  2275.         movq	$4, %rdx
    2276. 

  2276. #ifndef __APPLE__
    2277. 

  2277.         callq	fe_sq_n_x64@plt
    2278. 

  2278. #else
    2279. 

  2279.         callq	_fe_sq_n_x64
    2280. 

  2280. #endif /* __APPLE__ */
    2281. 

  2281.         movq	128(%rsp), %rdi
    2282. 

  2282.         leaq	32(%rsp), %rsi
    2283. 

  2283.         movq	%rsp, %rdx
    2284. 

  2284. #ifndef __APPLE__
    2285. 

  2285.         callq	fe_mul_x64@plt
    2286. 

  2286. #else
    2287. 

  2287.         callq	_fe_mul_x64
    2288. 

  2288. #endif /* __APPLE__ */
    2289. 

  2289.         movq	136(%rsp), %rsi
    2290. 

  2290.         movq	128(%rsp), %rdi
    2291. 

  2291.         addq	$0x90, %rsp
    2292. 

  2292.         repz retq
    2293. 

  2293. #ifndef __APPLE__
    2294. 

  2294. .text
    2295. 

  2295. .globl	curve25519_x64
    2296. 

  2296. .type	curve25519_x64,@function
    2297. 

  2297. .align	16
    2298. 

  2298. curve25519_x64:
    2299. 

  2299. #else
    2300. 

  2300. .section	__TEXT,__text
    2301. 

  2301. .globl	_curve25519_x64
    2302. 

  2302. .p2align	4
    2303. 

  2303. _curve25519_x64:
    2304. 

  2304. #endif /* __APPLE__ */
    2305. 

  2305.         pushq	%r12
    2306. 

  2306.         pushq	%r13
    2307. 

  2307.         pushq	%r14
    2308. 

  2308.         pushq	%r15
    2309. 

  2309.         pushq	%rbx
    2310. 

  2310.         pushq	%rbp
    2311. 

  2311.         movq	%rdx, %r8
    2312. 

  2312.         subq	$0xb8, %rsp
    2313. 

  2313.         xorq	%rbx, %rbx
    2314. 

  2314.         movq	%rdi, 176(%rsp)
    2315. 

  2315.         # Set one
    2316. 

  2316.         movq	$0x01, (%rdi)
    2317. 

  2317.         movq	$0x00, 8(%rdi)
    2318. 

  2318.         movq	$0x00, 16(%rdi)
    2319. 

  2319.         movq	$0x00, 24(%rdi)
    2320. 

  2320.         # Set zero
    2321. 

  2321.         movq	$0x00, (%rsp)
    2322. 

  2322.         movq	$0x00, 8(%rsp)
    2323. 

  2323.         movq	$0x00, 16(%rsp)
    2324. 

  2324.         movq	$0x00, 24(%rsp)
    2325. 

  2325.         # Set one
    2326. 

  2326.         movq	$0x01, 32(%rsp)
    2327. 

  2327.         movq	$0x00, 40(%rsp)
    2328. 

  2328.         movq	$0x00, 48(%rsp)
    2329. 

  2329.         movq	$0x00, 56(%rsp)
    2330. 

  2330.         # Copy
    2331. 

  2331.         movq	(%r8), %rcx
    2332. 

  2332.         movq	8(%r8), %r9
    2333. 

  2333.         movq	16(%r8), %r10
    2334. 

  2334.         movq	24(%r8), %r11
    2335. 

  2335.         movq	%rcx, 64(%rsp)
    2336. 

  2336.         movq	%r9, 72(%rsp)
    2337. 

  2337.         movq	%r10, 80(%rsp)
    2338. 

  2338.         movq	%r11, 88(%rsp)
    2339. 

  2339.         movb	$62, 168(%rsp)
    2340. 

  2340.         movq	$3, 160(%rsp)
    2341. 

  2341. L_curve25519_x64_words:
    2342. 

  2342. L_curve25519_x64_bits:
    2343. 

  2343.         movq	160(%rsp), %r9
    2344. 

  2344.         movb	168(%rsp), %cl
    2345. 

  2345.         movq	(%rsi,%r9,8), %rbp
    2346. 

  2346.         shrq	%cl, %rbp
    2347. 

  2347.         andq	$0x01, %rbp
    2348. 

  2348.         xorq	%rbp, %rbx
    2349. 

  2349.         negq	%rbx
    2350. 

  2350.         # Conditional Swap
    2351. 

  2351.         movq	(%rdi), %rcx
    2352. 

  2352.         movq	8(%rdi), %r9
    2353. 

  2353.         movq	16(%rdi), %r10
    2354. 

  2354.         movq	24(%rdi), %r11
    2355. 

  2355.         xorq	64(%rsp), %rcx
    2356. 

  2356.         xorq	72(%rsp), %r9
    2357. 

  2357.         xorq	80(%rsp), %r10
    2358. 

  2358.         xorq	88(%rsp), %r11
    2359. 

  2359.         andq	%rbx, %rcx
    2360. 

  2360.         andq	%rbx, %r9
    2361. 

  2361.         andq	%rbx, %r10
    2362. 

  2362.         andq	%rbx, %r11
    2363. 

  2363.         xorq	%rcx, (%rdi)
    2364. 

  2364.         xorq	%r9, 8(%rdi)
    2365. 

  2365.         xorq	%r10, 16(%rdi)
    2366. 

  2366.         xorq	%r11, 24(%rdi)
    2367. 

  2367.         xorq	%rcx, 64(%rsp)
    2368. 

  2368.         xorq	%r9, 72(%rsp)
    2369. 

  2369.         xorq	%r10, 80(%rsp)
    2370. 

  2370.         xorq	%r11, 88(%rsp)
    2371. 

  2371.         # Conditional Swap
    2372. 

  2372.         movq	(%rsp), %rcx
    2373. 

  2373.         movq	8(%rsp), %r9
    2374. 

  2374.         movq	16(%rsp), %r10
    2375. 

  2375.         movq	24(%rsp), %r11
    2376. 

  2376.         xorq	32(%rsp), %rcx
    2377. 

  2377.         xorq	40(%rsp), %r9
    2378. 

  2378.         xorq	48(%rsp), %r10
    2379. 

  2379.         xorq	56(%rsp), %r11
    2380. 

  2380.         andq	%rbx, %rcx
    2381. 

  2381.         andq	%rbx, %r9
    2382. 

  2382.         andq	%rbx, %r10
    2383. 

  2383.         andq	%rbx, %r11
    2384. 

  2384.         xorq	%rcx, (%rsp)
    2385. 

  2385.         xorq	%r9, 8(%rsp)
    2386. 

  2386.         xorq	%r10, 16(%rsp)
    2387. 

  2387.         xorq	%r11, 24(%rsp)
    2388. 

  2388.         xorq	%rcx, 32(%rsp)
    2389. 

  2389.         xorq	%r9, 40(%rsp)
    2390. 

  2390.         xorq	%r10, 48(%rsp)
    2391. 

  2391.         xorq	%r11, 56(%rsp)
    2392. 

  2392.         movq	%rbp, %rbx
    2393. 

  2393.         # Add
    2394. 

  2394.         movq	(%rdi), %rcx
    2395. 

  2395.         movq	8(%rdi), %r9
    2396. 

  2396.         movq	16(%rdi), %r10
    2397. 

  2397.         movq	24(%rdi), %rbp
    2398. 

  2398.         movq	%rcx, %r12
    2399. 

  2399.         addq	(%rsp), %rcx
    2400. 

  2400.         movq	%r9, %r13
    2401. 

  2401.         adcq	8(%rsp), %r9
    2402. 

  2402.         movq	%r10, %r14
    2403. 

  2403.         adcq	16(%rsp), %r10
    2404. 

  2404.         movq	%rbp, %r15
    2405. 

  2405.         adcq	24(%rsp), %rbp
    2406. 

  2406.         movq	$-19, %rax
    2407. 

  2407.         movq	%rbp, %r11
    2408. 

  2408.         movq	$0x7fffffffffffffff, %rdx
    2409. 

  2409.         sarq	$63, %rbp
    2410. 

  2410.         #   Mask the modulus
    2411. 

  2411.         andq	%rbp, %rax
    2412. 

  2412.         andq	%rbp, %rdx
    2413. 

  2413.         #   Sub modulus (if overflow)
    2414. 

  2414.         subq	%rax, %rcx
    2415. 

  2415.         sbbq	%rbp, %r9
    2416. 

  2416.         sbbq	%rbp, %r10
    2417. 

  2417.         sbbq	%rdx, %r11
    2418. 

  2418.         # Sub
    2419. 

  2419.         subq	(%rsp), %r12
    2420. 

  2420.         movq	$0x00, %rbp
    2421. 

  2421.         sbbq	8(%rsp), %r13
    2422. 

  2422.         movq	$-19, %rax
    2423. 

  2423.         sbbq	16(%rsp), %r14
    2424. 

  2424.         movq	$0x7fffffffffffffff, %rdx
    2425. 

  2425.         sbbq	24(%rsp), %r15
    2426. 

  2426.         sbbq	$0x00, %rbp
    2427. 

  2427.         #   Mask the modulus
    2428. 

  2428.         andq	%rbp, %rax
    2429. 

  2429.         andq	%rbp, %rdx
    2430. 

  2430.         #   Add modulus (if underflow)
    2431. 

  2431.         addq	%rax, %r12
    2432. 

  2432.         adcq	%rbp, %r13
    2433. 

  2433.         adcq	%rbp, %r14
    2434. 

  2434.         adcq	%rdx, %r15
    2435. 

  2435.         movq	%rcx, (%rdi)
    2436. 

  2436.         movq	%r9, 8(%rdi)
    2437. 

  2437.         movq	%r10, 16(%rdi)
    2438. 

  2438.         movq	%r11, 24(%rdi)
    2439. 

  2439.         movq	%r12, 128(%rsp)
    2440. 

  2440.         movq	%r13, 136(%rsp)
    2441. 

  2441.         movq	%r14, 144(%rsp)
    2442. 

  2442.         movq	%r15, 152(%rsp)
    2443. 

  2443.         # Add
    2444. 

  2444.         movq	64(%rsp), %rcx
    2445. 

  2445.         movq	72(%rsp), %r9
    2446. 

  2446.         movq	80(%rsp), %r10
    2447. 

  2447.         movq	88(%rsp), %rbp
    2448. 

  2448.         movq	%rcx, %r12
    2449. 

  2449.         addq	32(%rsp), %rcx
    2450. 

  2450.         movq	%r9, %r13
    2451. 

  2451.         adcq	40(%rsp), %r9
    2452. 

  2452.         movq	%r10, %r14
    2453. 

  2453.         adcq	48(%rsp), %r10
    2454. 

  2454.         movq	%rbp, %r15
    2455. 

  2455.         adcq	56(%rsp), %rbp
    2456. 

  2456.         movq	$-19, %rax
    2457. 

  2457.         movq	%rbp, %r11
    2458. 

  2458.         movq	$0x7fffffffffffffff, %rdx
    2459. 

  2459.         sarq	$63, %rbp
    2460. 

  2460.         #   Mask the modulus
    2461. 

  2461.         andq	%rbp, %rax
    2462. 

  2462.         andq	%rbp, %rdx
    2463. 

  2463.         #   Sub modulus (if overflow)
    2464. 

  2464.         subq	%rax, %rcx
    2465. 

  2465.         sbbq	%rbp, %r9
    2466. 

  2466.         sbbq	%rbp, %r10
    2467. 

  2467.         sbbq	%rdx, %r11
    2468. 

  2468.         # Sub
    2469. 

  2469.         subq	32(%rsp), %r12
    2470. 

  2470.         movq	$0x00, %rbp
    2471. 

  2471.         sbbq	40(%rsp), %r13
    2472. 

  2472.         movq	$-19, %rax
    2473. 

  2473.         sbbq	48(%rsp), %r14
    2474. 

  2474.         movq	$0x7fffffffffffffff, %rdx
    2475. 

  2475.         sbbq	56(%rsp), %r15
    2476. 

  2476.         sbbq	$0x00, %rbp
    2477. 

  2477.         #   Mask the modulus
    2478. 

  2478.         andq	%rbp, %rax
    2479. 

  2479.         andq	%rbp, %rdx
    2480. 

  2480.         #   Add modulus (if underflow)
    2481. 

  2481.         addq	%rax, %r12
    2482. 

  2482.         adcq	%rbp, %r13
    2483. 

  2483.         adcq	%rbp, %r14
    2484. 

  2484.         adcq	%rdx, %r15
    2485. 

  2485.         movq	%rcx, (%rsp)
    2486. 

  2486.         movq	%r9, 8(%rsp)
    2487. 

  2487.         movq	%r10, 16(%rsp)
    2488. 

  2488.         movq	%r11, 24(%rsp)
    2489. 

  2489.         movq	%r12, 96(%rsp)
    2490. 

  2490.         movq	%r13, 104(%rsp)
    2491. 

  2491.         movq	%r14, 112(%rsp)
    2492. 

  2492.         movq	%r15, 120(%rsp)
    2493. 

  2493.         # Multiply
    2494. 

  2494.         #  A[0] * B[0]
    2495. 

  2495.         movq	(%rdi), %rax
    2496. 

  2496.         mulq	96(%rsp)
    2497. 

  2497.         movq	%rax, %rcx
    2498. 

  2498.         movq	%rdx, %r9
    2499. 

  2499.         #  A[0] * B[1]
    2500. 

  2500.         movq	8(%rdi), %rax
    2501. 

  2501.         mulq	96(%rsp)
    2502. 

  2502.         xorq	%r10, %r10
    2503. 

  2503.         addq	%rax, %r9
    2504. 

  2504.         adcq	%rdx, %r10
    2505. 

  2505.         #  A[1] * B[0]
    2506. 

  2506.         movq	(%rdi), %rax
    2507. 

  2507.         mulq	104(%rsp)
    2508. 

  2508.         xorq	%r11, %r11
    2509. 

  2509.         addq	%rax, %r9
    2510. 

  2510.         adcq	%rdx, %r10
    2511. 

  2511.         adcq	$0x00, %r11
    2512. 

  2512.         #  A[0] * B[2]
    2513. 

  2513.         movq	16(%rdi), %rax
    2514. 

  2514.         mulq	96(%rsp)
    2515. 

  2515.         addq	%rax, %r10
    2516. 

  2516.         adcq	%rdx, %r11
    2517. 

  2517.         #  A[1] * B[1]
    2518. 

  2518.         movq	8(%rdi), %rax
    2519. 

  2519.         mulq	104(%rsp)
    2520. 

  2520.         xorq	%r12, %r12
    2521. 

  2521.         addq	%rax, %r10
    2522. 

  2522.         adcq	%rdx, %r11
    2523. 

  2523.         adcq	$0x00, %r12
    2524. 

  2524.         #  A[2] * B[0]
    2525. 

  2525.         movq	(%rdi), %rax
    2526. 

  2526.         mulq	112(%rsp)
    2527. 

  2527.         addq	%rax, %r10
    2528. 

  2528.         adcq	%rdx, %r11
    2529. 

  2529.         adcq	$0x00, %r12
    2530. 

  2530.         #  A[0] * B[3]
    2531. 

  2531.         movq	24(%rdi), %rax
    2532. 

  2532.         mulq	96(%rsp)
    2533. 

  2533.         xorq	%r13, %r13
    2534. 

  2534.         addq	%rax, %r11
    2535. 

  2535.         adcq	%rdx, %r12
    2536. 

  2536.         adcq	$0x00, %r13
    2537. 

  2537.         #  A[1] * B[2]
    2538. 

  2538.         movq	16(%rdi), %rax
    2539. 

  2539.         mulq	104(%rsp)
    2540. 

  2540.         addq	%rax, %r11
    2541. 

  2541.         adcq	%rdx, %r12
    2542. 

  2542.         adcq	$0x00, %r13
    2543. 

  2543.         #  A[2] * B[1]
    2544. 

  2544.         movq	8(%rdi), %rax
    2545. 

  2545.         mulq	112(%rsp)
    2546. 

  2546.         addq	%rax, %r11
    2547. 

  2547.         adcq	%rdx, %r12
    2548. 

  2548.         adcq	$0x00, %r13
    2549. 

  2549.         #  A[3] * B[0]
    2550. 

  2550.         movq	(%rdi), %rax
    2551. 

  2551.         mulq	120(%rsp)
    2552. 

  2552.         addq	%rax, %r11
    2553. 

  2553.         adcq	%rdx, %r12
    2554. 

  2554.         adcq	$0x00, %r13
    2555. 

  2555.         #  A[1] * B[3]
    2556. 

  2556.         movq	24(%rdi), %rax
    2557. 

  2557.         mulq	104(%rsp)
    2558. 

  2558.         xorq	%r14, %r14
    2559. 

  2559.         addq	%rax, %r12
    2560. 

  2560.         adcq	%rdx, %r13
    2561. 

  2561.         adcq	$0x00, %r14
    2562. 

  2562.         #  A[2] * B[2]
    2563. 

  2563.         movq	16(%rdi), %rax
    2564. 

  2564.         mulq	112(%rsp)
    2565. 

  2565.         addq	%rax, %r12
    2566. 

  2566.         adcq	%rdx, %r13
    2567. 

  2567.         adcq	$0x00, %r14
    2568. 

  2568.         #  A[3] * B[1]
    2569. 

  2569.         movq	8(%rdi), %rax
    2570. 

  2570.         mulq	120(%rsp)
    2571. 

  2571.         addq	%rax, %r12
    2572. 

  2572.         adcq	%rdx, %r13
    2573. 

  2573.         adcq	$0x00, %r14
    2574. 

  2574.         #  A[2] * B[3]
    2575. 

  2575.         movq	24(%rdi), %rax
    2576. 

  2576.         mulq	112(%rsp)
    2577. 

  2577.         xorq	%r15, %r15
    2578. 

  2578.         addq	%rax, %r13
    2579. 

  2579.         adcq	%rdx, %r14
    2580. 

  2580.         adcq	$0x00, %r15
    2581. 

  2581.         #  A[3] * B[2]
    2582. 

  2582.         movq	16(%rdi), %rax
    2583. 

  2583.         mulq	120(%rsp)
    2584. 

  2584.         addq	%rax, %r13
    2585. 

  2585.         adcq	%rdx, %r14
    2586. 

  2586.         adcq	$0x00, %r15
    2587. 

  2587.         #  A[3] * B[3]
    2588. 

  2588.         movq	24(%rdi), %rax
    2589. 

  2589.         mulq	120(%rsp)
    2590. 

  2590.         addq	%rax, %r14
    2591. 

  2591.         adcq	%rdx, %r15
    2592. 

  2592.         # Reduce
    2593. 

  2593.         movq	$0x7fffffffffffffff, %rbp
    2594. 

  2594.         #  Move top half into t4-t7 and remove top bit from t3
    2595. 

  2595.         shldq	$0x01, %r14, %r15
    2596. 

  2596.         shldq	$0x01, %r13, %r14
    2597. 

  2597.         shldq	$0x01, %r12, %r13
    2598. 

  2598.         shldq	$0x01, %r11, %r12
    2599. 

  2599.         andq	%rbp, %r11
    2600. 

  2600.         #  Multiply top half by 19
    2601. 

  2601.         movq	$19, %rax
    2602. 

  2602.         mulq	%r12
    2603. 

  2603.         xorq	%r12, %r12
    2604. 

  2604.         addq	%rax, %rcx
    2605. 

  2605.         movq	$19, %rax
    2606. 

  2606.         adcq	%rdx, %r12
    2607. 

  2607.         mulq	%r13
    2608. 

  2608.         xorq	%r13, %r13
    2609. 

  2609.         addq	%rax, %r9
    2610. 

  2610.         movq	$19, %rax
    2611. 

  2611.         adcq	%rdx, %r13
    2612. 

  2612.         mulq	%r14
    2613. 

  2613.         xorq	%r14, %r14
    2614. 

  2614.         addq	%rax, %r10
    2615. 

  2615.         movq	$19, %rax
    2616. 

  2616.         adcq	%rdx, %r14
    2617. 

  2617.         mulq	%r15
    2618. 

  2618.         #  Add remaining product results in
    2619. 

  2619.         addq	%r12, %r9
    2620. 

  2620.         adcq	%r13, %r10
    2621. 

  2621.         adcq	%r14, %r11
    2622. 

  2622.         adcq	%rax, %r11
    2623. 

  2623.         adcq	$0x00, %rdx
    2624. 

  2624.         #  Overflow
    2625. 

  2625.         shldq	$0x01, %r11, %rdx
    2626. 

  2626.         imulq	$19, %rdx, %rax
    2627. 

  2627.         andq	%rbp, %r11
    2628. 

  2628.         addq	%rax, %rcx
    2629. 

  2629.         adcq	$0x00, %r9
    2630. 

  2630.         adcq	$0x00, %r10
    2631. 

  2631.         adcq	$0x00, %r11
    2632. 

  2632.         # Reduce if top bit set
    2633. 

  2633.         movq	%r11, %rdx
    2634. 

  2634.         shrq	$63, %rdx
    2635. 

  2635.         imulq	$19, %rdx, %rax
    2636. 

  2636.         andq	%rbp, %r11
    2637. 

  2637.         addq	%rax, %rcx
    2638. 

  2638.         adcq	$0x00, %r9
    2639. 

  2639.         adcq	$0x00, %r10
    2640. 

  2640.         adcq	$0x00, %r11
    2641. 

  2641.         # Store
    2642. 

  2642.         movq	%rcx, 32(%rsp)
    2643. 

  2643.         movq	%r9, 40(%rsp)
    2644. 

  2644.         movq	%r10, 48(%rsp)
    2645. 

  2645.         movq	%r11, 56(%rsp)
    2646. 

  2646.         # Multiply
    2647. 

  2647.         #  A[0] * B[0]
    2648. 

  2648.         movq	128(%rsp), %rax
    2649. 

  2649.         mulq	(%rsp)
    2650. 

  2650.         movq	%rax, %rcx
    2651. 

  2651.         movq	%rdx, %r9
    2652. 

  2652.         #  A[0] * B[1]
    2653. 

  2653.         movq	136(%rsp), %rax
    2654. 

  2654.         mulq	(%rsp)
    2655. 

  2655.         xorq	%r10, %r10
    2656. 

  2656.         addq	%rax, %r9
    2657. 

  2657.         adcq	%rdx, %r10
    2658. 

  2658.         #  A[1] * B[0]
    2659. 

  2659.         movq	128(%rsp), %rax
    2660. 

  2660.         mulq	8(%rsp)
    2661. 

  2661.         xorq	%r11, %r11
    2662. 

  2662.         addq	%rax, %r9
    2663. 

  2663.         adcq	%rdx, %r10
    2664. 

  2664.         adcq	$0x00, %r11
    2665. 

  2665.         #  A[0] * B[2]
    2666. 

  2666.         movq	144(%rsp), %rax
    2667. 

  2667.         mulq	(%rsp)
    2668. 

  2668.         addq	%rax, %r10
    2669. 

  2669.         adcq	%rdx, %r11
    2670. 

  2670.         #  A[1] * B[1]
    2671. 

  2671.         movq	136(%rsp), %rax
    2672. 

  2672.         mulq	8(%rsp)
    2673. 

  2673.         xorq	%r12, %r12
    2674. 

  2674.         addq	%rax, %r10
    2675. 

  2675.         adcq	%rdx, %r11
    2676. 

  2676.         adcq	$0x00, %r12
    2677. 

  2677.         #  A[2] * B[0]
    2678. 

  2678.         movq	128(%rsp), %rax
    2679. 

  2679.         mulq	16(%rsp)
    2680. 

  2680.         addq	%rax, %r10
    2681. 

  2681.         adcq	%rdx, %r11
    2682. 

  2682.         adcq	$0x00, %r12
    2683. 

  2683.         #  A[0] * B[3]
    2684. 

  2684.         movq	152(%rsp), %rax
    2685. 

  2685.         mulq	(%rsp)
    2686. 

  2686.         xorq	%r13, %r13
    2687. 

  2687.         addq	%rax, %r11
    2688. 

  2688.         adcq	%rdx, %r12
    2689. 

  2689.         adcq	$0x00, %r13
    2690. 

  2690.         #  A[1] * B[2]
    2691. 

  2691.         movq	144(%rsp), %rax
    2692. 

  2692.         mulq	8(%rsp)
    2693. 

  2693.         addq	%rax, %r11
    2694. 

  2694.         adcq	%rdx, %r12
    2695. 

  2695.         adcq	$0x00, %r13
    2696. 

  2696.         #  A[2] * B[1]
    2697. 

  2697.         movq	136(%rsp), %rax
    2698. 

  2698.         mulq	16(%rsp)
    2699. 

  2699.         addq	%rax, %r11
    2700. 

  2700.         adcq	%rdx, %r12
    2701. 

  2701.         adcq	$0x00, %r13
    2702. 

  2702.         #  A[3] * B[0]
    2703. 

  2703.         movq	128(%rsp), %rax
    2704. 

  2704.         mulq	24(%rsp)
    2705. 

  2705.         addq	%rax, %r11
    2706. 

  2706.         adcq	%rdx, %r12
    2707. 

  2707.         adcq	$0x00, %r13
    2708. 

  2708.         #  A[1] * B[3]
    2709. 

  2709.         movq	152(%rsp), %rax
    2710. 

  2710.         mulq	8(%rsp)
    2711. 

  2711.         xorq	%r14, %r14
    2712. 

  2712.         addq	%rax, %r12
    2713. 

  2713.         adcq	%rdx, %r13
    2714. 

  2714.         adcq	$0x00, %r14
    2715. 

  2715.         #  A[2] * B[2]
    2716. 

  2716.         movq	144(%rsp), %rax
    2717. 

  2717.         mulq	16(%rsp)
    2718. 

  2718.         addq	%rax, %r12
    2719. 

  2719.         adcq	%rdx, %r13
    2720. 

  2720.         adcq	$0x00, %r14
    2721. 

  2721.         #  A[3] * B[1]
    2722. 

  2722.         movq	136(%rsp), %rax
    2723. 

  2723.         mulq	24(%rsp)
    2724. 

  2724.         addq	%rax, %r12
    2725. 

  2725.         adcq	%rdx, %r13
    2726. 

  2726.         adcq	$0x00, %r14
    2727. 

  2727.         #  A[2] * B[3]
    2728. 

  2728.         movq	152(%rsp), %rax
    2729. 

  2729.         mulq	16(%rsp)
    2730. 

  2730.         xorq	%r15, %r15
    2731. 

  2731.         addq	%rax, %r13
    2732. 

  2732.         adcq	%rdx, %r14
    2733. 

  2733.         adcq	$0x00, %r15
    2734. 

  2734.         #  A[3] * B[2]
    2735. 

  2735.         movq	144(%rsp), %rax
    2736. 

  2736.         mulq	24(%rsp)
    2737. 

  2737.         addq	%rax, %r13
    2738. 

  2738.         adcq	%rdx, %r14
    2739. 

  2739.         adcq	$0x00, %r15
    2740. 

  2740.         #  A[3] * B[3]
    2741. 

  2741.         movq	152(%rsp), %rax
    2742. 

  2742.         mulq	24(%rsp)
    2743. 

  2743.         addq	%rax, %r14
    2744. 

  2744.         adcq	%rdx, %r15
    2745. 

  2745.         # Reduce
    2746. 

  2746.         movq	$0x7fffffffffffffff, %rbp
    2747. 

  2747.         #  Move top half into t4-t7 and remove top bit from t3
    2748. 

  2748.         shldq	$0x01, %r14, %r15
    2749. 

  2749.         shldq	$0x01, %r13, %r14
    2750. 

  2750.         shldq	$0x01, %r12, %r13
    2751. 

  2751.         shldq	$0x01, %r11, %r12
    2752. 

  2752.         andq	%rbp, %r11
    2753. 

  2753.         #  Multiply top half by 19
    2754. 

  2754.         movq	$19, %rax
    2755. 

  2755.         mulq	%r12
    2756. 

  2756.         xorq	%r12, %r12
    2757. 

  2757.         addq	%rax, %rcx
    2758. 

  2758.         movq	$19, %rax
    2759. 

  2759.         adcq	%rdx, %r12
    2760. 

  2760.         mulq	%r13
    2761. 

  2761.         xorq	%r13, %r13
    2762. 

  2762.         addq	%rax, %r9
    2763. 

  2763.         movq	$19, %rax
    2764. 

  2764.         adcq	%rdx, %r13
    2765. 

  2765.         mulq	%r14
    2766. 

  2766.         xorq	%r14, %r14
    2767. 

  2767.         addq	%rax, %r10
    2768. 

  2768.         movq	$19, %rax
    2769. 

  2769.         adcq	%rdx, %r14
    2770. 

  2770.         mulq	%r15
    2771. 

  2771.         #  Add remaining product results in
    2772. 

  2772.         addq	%r12, %r9
    2773. 

  2773.         adcq	%r13, %r10
    2774. 

  2774.         adcq	%r14, %r11
    2775. 

  2775.         adcq	%rax, %r11
    2776. 

  2776.         adcq	$0x00, %rdx
    2777. 

  2777.         #  Overflow
    2778. 

  2778.         shldq	$0x01, %r11, %rdx
    2779. 

  2779.         imulq	$19, %rdx, %rax
    2780. 

  2780.         andq	%rbp, %r11
    2781. 

  2781.         addq	%rax, %rcx
    2782. 

  2782.         adcq	$0x00, %r9
    2783. 

  2783.         adcq	$0x00, %r10
    2784. 

  2784.         adcq	$0x00, %r11
    2785. 

  2785.         # Reduce if top bit set
    2786. 

  2786.         movq	%r11, %rdx
    2787. 

  2787.         shrq	$63, %rdx
    2788. 

  2788.         imulq	$19, %rdx, %rax
    2789. 

  2789.         andq	%rbp, %r11
    2790. 

  2790.         addq	%rax, %rcx
    2791. 

  2791.         adcq	$0x00, %r9
    2792. 

  2792.         adcq	$0x00, %r10
    2793. 

  2793.         adcq	$0x00, %r11
    2794. 

  2794.         # Store
    2795. 

  2795.         movq	%rcx, (%rsp)
    2796. 

  2796.         movq	%r9, 8(%rsp)
    2797. 

  2797.         movq	%r10, 16(%rsp)
    2798. 

  2798.         movq	%r11, 24(%rsp)
    2799. 

  2799.         # Square
    2800. 

  2800.         #  A[0] * A[1]
    2801. 

  2801.         movq	128(%rsp), %rax
    2802. 

  2802.         mulq	136(%rsp)
    2803. 

  2803.         movq	%rax, %r9
    2804. 

  2804.         movq	%rdx, %r10
    2805. 

  2805.         #  A[0] * A[2]
    2806. 

  2806.         movq	128(%rsp), %rax
    2807. 

  2807.         mulq	144(%rsp)
    2808. 

  2808.         xorq	%r11, %r11
    2809. 

  2809.         addq	%rax, %r10
    2810. 

  2810.         adcq	%rdx, %r11
    2811. 

  2811.         #  A[0] * A[3]
    2812. 

  2812.         movq	128(%rsp), %rax
    2813. 

  2813.         mulq	152(%rsp)
    2814. 

  2814.         xorq	%r12, %r12
    2815. 

  2815.         addq	%rax, %r11
    2816. 

  2816.         adcq	%rdx, %r12
    2817. 

  2817.         #  A[1] * A[2]
    2818. 

  2818.         movq	136(%rsp), %rax
    2819. 

  2819.         mulq	144(%rsp)
    2820. 

  2820.         xorq	%r13, %r13
    2821. 

  2821.         addq	%rax, %r11
    2822. 

  2822.         adcq	%rdx, %r12
    2823. 

  2823.         adcq	$0x00, %r13
    2824. 

  2824.         #  A[1] * A[3]
    2825. 

  2825.         movq	136(%rsp), %rax
    2826. 

  2826.         mulq	152(%rsp)
    2827. 

  2827.         addq	%rax, %r12
    2828. 

  2828.         adcq	%rdx, %r13
    2829. 

  2829.         #  A[2] * A[3]
    2830. 

  2830.         movq	144(%rsp), %rax
    2831. 

  2831.         mulq	152(%rsp)
    2832. 

  2832.         xorq	%r14, %r14
    2833. 

  2833.         addq	%rax, %r13
    2834. 

  2834.         adcq	%rdx, %r14
    2835. 

  2835.         # Double
    2836. 

  2836.         xorq	%r15, %r15
    2837. 

  2837.         addq	%r9, %r9
    2838. 

  2838.         adcq	%r10, %r10
    2839. 

  2839.         adcq	%r11, %r11
    2840. 

  2840.         adcq	%r12, %r12
    2841. 

  2841.         adcq	%r13, %r13
    2842. 

  2842.         adcq	%r14, %r14
    2843. 

  2843.         adcq	$0x00, %r15
    2844. 

  2844.         #  A[0] * A[0]
    2845. 

  2845.         movq	128(%rsp), %rax
    2846. 

  2846.         mulq	%rax
    2847. 

  2847.         movq	%rax, %rcx
    2848. 

  2848.         movq	%rdx, %rbp
    2849. 

  2849.         #  A[1] * A[1]
    2850. 

  2850.         movq	136(%rsp), %rax
    2851. 

  2851.         mulq	%rax
    2852. 

  2852.         addq	%rbp, %r9
    2853. 

  2853.         adcq	%rax, %r10
    2854. 

  2854.         adcq	$0x00, %rdx
    2855. 

  2855.         movq	%rdx, %rbp
    2856. 

  2856.         #  A[2] * A[2]
    2857. 

  2857.         movq	144(%rsp), %rax
    2858. 

  2858.         mulq	%rax
    2859. 

  2859.         addq	%rbp, %r11
    2860. 

  2860.         adcq	%rax, %r12
    2861. 

  2861.         adcq	$0x00, %rdx
    2862. 

  2862.         movq	%rdx, %rbp
    2863. 

  2863.         #  A[3] * A[3]
    2864. 

  2864.         movq	152(%rsp), %rax
    2865. 

  2865.         mulq	%rax
    2866. 

  2866.         addq	%rax, %r14
    2867. 

  2867.         adcq	%rdx, %r15
    2868. 

  2868.         addq	%rbp, %r13
    2869. 

  2869.         adcq	$0x00, %r14
    2870. 

  2870.         adcq	$0x00, %r15
    2871. 

  2871.         # Reduce
    2872. 

  2872.         movq	$0x7fffffffffffffff, %rbp
    2873. 

  2873.         #  Move top half into t4-t7 and remove top bit from t3
    2874. 

  2874.         shldq	$0x01, %r14, %r15
    2875. 

  2875.         shldq	$0x01, %r13, %r14
    2876. 

  2876.         shldq	$0x01, %r12, %r13
    2877. 

  2877.         shldq	$0x01, %r11, %r12
    2878. 

  2878.         andq	%rbp, %r11
    2879. 

  2879.         #  Multiply top half by 19
    2880. 

  2880.         movq	$19, %rax
    2881. 

  2881.         mulq	%r12
    2882. 

  2882.         xorq	%r12, %r12
    2883. 

  2883.         addq	%rax, %rcx
    2884. 

  2884.         movq	$19, %rax
    2885. 

  2885.         adcq	%rdx, %r12
    2886. 

  2886.         mulq	%r13
    2887. 

  2887.         xorq	%r13, %r13
    2888. 

  2888.         addq	%rax, %r9
    2889. 

  2889.         movq	$19, %rax
    2890. 

  2890.         adcq	%rdx, %r13
    2891. 

  2891.         mulq	%r14
    2892. 

  2892.         xorq	%r14, %r14
    2893. 

  2893.         addq	%rax, %r10
    2894. 

  2894.         movq	$19, %rax
    2895. 

  2895.         adcq	%rdx, %r14
    2896. 

  2896.         mulq	%r15
    2897. 

  2897.         #  Add remaining product results in
    2898. 

  2898.         addq	%r12, %r9
    2899. 

  2899.         adcq	%r13, %r10
    2900. 

  2900.         adcq	%r14, %r11
    2901. 

  2901.         adcq	%rax, %r11
    2902. 

  2902.         adcq	$0x00, %rdx
    2903. 

  2903.         #  Overflow
    2904. 

  2904.         shldq	$0x01, %r11, %rdx
    2905. 

  2905.         imulq	$19, %rdx, %rax
    2906. 

  2906.         andq	%rbp, %r11
    2907. 

  2907.         addq	%rax, %rcx
    2908. 

  2908.         adcq	$0x00, %r9
    2909. 

  2909.         adcq	$0x00, %r10
    2910. 

  2910.         adcq	$0x00, %r11
    2911. 

  2911.         # Reduce if top bit set
    2912. 

  2912.         movq	%r11, %rdx
    2913. 

  2913.         shrq	$63, %rdx
    2914. 

  2914.         imulq	$19, %rdx, %rax
    2915. 

  2915.         andq	%rbp, %r11
    2916. 

  2916.         addq	%rax, %rcx
    2917. 

  2917.         adcq	$0x00, %r9
    2918. 

  2918.         adcq	$0x00, %r10
    2919. 

  2919.         adcq	$0x00, %r11
    2920. 

  2920.         # Store
    2921. 

  2921.         movq	%rcx, 96(%rsp)
    2922. 

  2922.         movq	%r9, 104(%rsp)
    2923. 

  2923.         movq	%r10, 112(%rsp)
    2924. 

  2924.         movq	%r11, 120(%rsp)
    2925. 

  2925.         # Square
    2926. 

  2926.         #  A[0] * A[1]
    2927. 

  2927.         movq	(%rdi), %rax
    2928. 

  2928.         mulq	8(%rdi)
    2929. 

  2929.         movq	%rax, %r9
    2930. 

  2930.         movq	%rdx, %r10
    2931. 

  2931.         #  A[0] * A[2]
    2932. 

  2932.         movq	(%rdi), %rax
    2933. 

  2933.         mulq	16(%rdi)
    2934. 

  2934.         xorq	%r11, %r11
    2935. 

  2935.         addq	%rax, %r10
    2936. 

  2936.         adcq	%rdx, %r11
    2937. 

  2937.         #  A[0] * A[3]
    2938. 

  2938.         movq	(%rdi), %rax
    2939. 

  2939.         mulq	24(%rdi)
    2940. 

  2940.         xorq	%r12, %r12
    2941. 

  2941.         addq	%rax, %r11
    2942. 

  2942.         adcq	%rdx, %r12
    2943. 

  2943.         #  A[1] * A[2]
    2944. 

  2944.         movq	8(%rdi), %rax
    2945. 

  2945.         mulq	16(%rdi)
    2946. 

  2946.         xorq	%r13, %r13
    2947. 

  2947.         addq	%rax, %r11
    2948. 

  2948.         adcq	%rdx, %r12
    2949. 

  2949.         adcq	$0x00, %r13
    2950. 

  2950.         #  A[1] * A[3]
    2951. 

  2951.         movq	8(%rdi), %rax
    2952. 

  2952.         mulq	24(%rdi)
    2953. 

  2953.         addq	%rax, %r12
    2954. 

  2954.         adcq	%rdx, %r13
    2955. 

  2955.         #  A[2] * A[3]
    2956. 

  2956.         movq	16(%rdi), %rax
    2957. 

  2957.         mulq	24(%rdi)
    2958. 

  2958.         xorq	%r14, %r14
    2959. 

  2959.         addq	%rax, %r13
    2960. 

  2960.         adcq	%rdx, %r14
    2961. 

  2961.         # Double
    2962. 

  2962.         xorq	%r15, %r15
    2963. 

  2963.         addq	%r9, %r9
    2964. 

  2964.         adcq	%r10, %r10
    2965. 

  2965.         adcq	%r11, %r11
    2966. 

  2966.         adcq	%r12, %r12
    2967. 

  2967.         adcq	%r13, %r13
    2968. 

  2968.         adcq	%r14, %r14
    2969. 

  2969.         adcq	$0x00, %r15
    2970. 

  2970.         #  A[0] * A[0]
    2971. 

  2971.         movq	(%rdi), %rax
    2972. 

  2972.         mulq	%rax
    2973. 

  2973.         movq	%rax, %rcx
    2974. 

  2974.         movq	%rdx, %rbp
    2975. 

  2975.         #  A[1] * A[1]
    2976. 

  2976.         movq	8(%rdi), %rax
    2977. 

  2977.         mulq	%rax
    2978. 

  2978.         addq	%rbp, %r9
    2979. 

  2979.         adcq	%rax, %r10
    2980. 

  2980.         adcq	$0x00, %rdx
    2981. 

  2981.         movq	%rdx, %rbp
    2982. 

  2982.         #  A[2] * A[2]
    2983. 

  2983.         movq	16(%rdi), %rax
    2984. 

  2984.         mulq	%rax
    2985. 

  2985.         addq	%rbp, %r11
    2986. 

  2986.         adcq	%rax, %r12
    2987. 

  2987.         adcq	$0x00, %rdx
    2988. 

  2988.         movq	%rdx, %rbp
    2989. 

  2989.         #  A[3] * A[3]
    2990. 

  2990.         movq	24(%rdi), %rax
    2991. 

  2991.         mulq	%rax
    2992. 

  2992.         addq	%rax, %r14
    2993. 

  2993.         adcq	%rdx, %r15
    2994. 

  2994.         addq	%rbp, %r13
    2995. 

  2995.         adcq	$0x00, %r14
    2996. 

  2996.         adcq	$0x00, %r15
    2997. 

  2997.         # Reduce
    2998. 

  2998.         movq	$0x7fffffffffffffff, %rbp
    2999. 

  2999.         #  Move top half into t4-t7 and remove top bit from t3
    3000. 

  3000.         shldq	$0x01, %r14, %r15
    3001. 

  3001.         shldq	$0x01, %r13, %r14
    3002. 

  3002.         shldq	$0x01, %r12, %r13
    3003. 

  3003.         shldq	$0x01, %r11, %r12
    3004. 

  3004.         andq	%rbp, %r11
    3005. 

  3005.         #  Multiply top half by 19
    3006. 

  3006.         movq	$19, %rax
    3007. 

  3007.         mulq	%r12
    3008. 

  3008.         xorq	%r12, %r12
    3009. 

  3009.         addq	%rax, %rcx
    3010. 

  3010.         movq	$19, %rax
    3011. 

  3011.         adcq	%rdx, %r12
    3012. 

  3012.         mulq	%r13
    3013. 

  3013.         xorq	%r13, %r13
    3014. 

  3014.         addq	%rax, %r9
    3015. 

  3015.         movq	$19, %rax
    3016. 

  3016.         adcq	%rdx, %r13
    3017. 

  3017.         mulq	%r14
    3018. 

  3018.         xorq	%r14, %r14
    3019. 

  3019.         addq	%rax, %r10
    3020. 

  3020.         movq	$19, %rax
    3021. 

  3021.         adcq	%rdx, %r14
    3022. 

  3022.         mulq	%r15
    3023. 

  3023.         #  Add remaining product results in
    3024. 

  3024.         addq	%r12, %r9
    3025. 

  3025.         adcq	%r13, %r10
    3026. 

  3026.         adcq	%r14, %r11
    3027. 

  3027.         adcq	%rax, %r11
    3028. 

  3028.         adcq	$0x00, %rdx
    3029. 

  3029.         #  Overflow
    3030. 

  3030.         shldq	$0x01, %r11, %rdx
    3031. 

  3031.         imulq	$19, %rdx, %rax
    3032. 

  3032.         andq	%rbp, %r11
    3033. 

  3033.         addq	%rax, %rcx
    3034. 

  3034.         adcq	$0x00, %r9
    3035. 

  3035.         adcq	$0x00, %r10
    3036. 

  3036.         adcq	$0x00, %r11
    3037. 

  3037.         # Reduce if top bit set
    3038. 

  3038.         movq	%r11, %rdx
    3039. 

  3039.         shrq	$63, %rdx
    3040. 

  3040.         imulq	$19, %rdx, %rax
    3041. 

  3041.         andq	%rbp, %r11
    3042. 

  3042.         addq	%rax, %rcx
    3043. 

  3043.         adcq	$0x00, %r9
    3044. 

  3044.         adcq	$0x00, %r10
    3045. 

  3045.         adcq	$0x00, %r11
    3046. 

  3046.         # Store
    3047. 

  3047.         movq	%rcx, 128(%rsp)
    3048. 

  3048.         movq	%r9, 136(%rsp)
    3049. 

  3049.         movq	%r10, 144(%rsp)
    3050. 

  3050.         movq	%r11, 152(%rsp)
    3051. 

  3051.         # Add
    3052. 

  3052.         movq	32(%rsp), %rcx
    3053. 

  3053.         movq	40(%rsp), %r9
    3054. 

  3054.         movq	48(%rsp), %r10
    3055. 

  3055.         movq	56(%rsp), %rbp
    3056. 

  3056.         movq	%rcx, %r12
    3057. 

  3057.         addq	(%rsp), %rcx
    3058. 

  3058.         movq	%r9, %r13
    3059. 

  3059.         adcq	8(%rsp), %r9
    3060. 

  3060.         movq	%r10, %r14
    3061. 

  3061.         adcq	16(%rsp), %r10
    3062. 

  3062.         movq	%rbp, %r15
    3063. 

  3063.         adcq	24(%rsp), %rbp
    3064. 

  3064.         movq	$-19, %rax
    3065. 

  3065.         movq	%rbp, %r11
    3066. 

  3066.         movq	$0x7fffffffffffffff, %rdx
    3067. 

  3067.         sarq	$63, %rbp
    3068. 

  3068.         #   Mask the modulus
    3069. 

  3069.         andq	%rbp, %rax
    3070. 

  3070.         andq	%rbp, %rdx
    3071. 

  3071.         #   Sub modulus (if overflow)
    3072. 

  3072.         subq	%rax, %rcx
    3073. 

  3073.         sbbq	%rbp, %r9
    3074. 

  3074.         sbbq	%rbp, %r10
    3075. 

  3075.         sbbq	%rdx, %r11
    3076. 

  3076.         # Sub
    3077. 

  3077.         subq	(%rsp), %r12
    3078. 

  3078.         movq	$0x00, %rbp
    3079. 

  3079.         sbbq	8(%rsp), %r13
    3080. 

  3080.         movq	$-19, %rax
    3081. 

  3081.         sbbq	16(%rsp), %r14
    3082. 

  3082.         movq	$0x7fffffffffffffff, %rdx
    3083. 

  3083.         sbbq	24(%rsp), %r15
    3084. 

  3084.         sbbq	$0x00, %rbp
    3085. 

  3085.         #   Mask the modulus
    3086. 

  3086.         andq	%rbp, %rax
    3087. 

  3087.         andq	%rbp, %rdx
    3088. 

  3088.         #   Add modulus (if underflow)
    3089. 

  3089.         addq	%rax, %r12
    3090. 

  3090.         adcq	%rbp, %r13
    3091. 

  3091.         adcq	%rbp, %r14
    3092. 

  3092.         adcq	%rdx, %r15
    3093. 

  3093.         movq	%rcx, 64(%rsp)
    3094. 

  3094.         movq	%r9, 72(%rsp)
    3095. 

  3095.         movq	%r10, 80(%rsp)
    3096. 

  3096.         movq	%r11, 88(%rsp)
    3097. 

  3097.         movq	%r12, (%rsp)
    3098. 

  3098.         movq	%r13, 8(%rsp)
    3099. 

  3099.         movq	%r14, 16(%rsp)
    3100. 

  3100.         movq	%r15, 24(%rsp)
    3101. 

  3101.         # Multiply
    3102. 

  3102.         #  A[0] * B[0]
    3103. 

  3103.         movq	96(%rsp), %rax
    3104. 

  3104.         mulq	128(%rsp)
    3105. 

  3105.         movq	%rax, %rcx
    3106. 

  3106.         movq	%rdx, %r9
    3107. 

  3107.         #  A[0] * B[1]
    3108. 

  3108.         movq	104(%rsp), %rax
    3109. 

  3109.         mulq	128(%rsp)
    3110. 

  3110.         xorq	%r10, %r10
    3111. 

  3111.         addq	%rax, %r9
    3112. 

  3112.         adcq	%rdx, %r10
    3113. 

  3113.         #  A[1] * B[0]
    3114. 

  3114.         movq	96(%rsp), %rax
    3115. 

  3115.         mulq	136(%rsp)
    3116. 

  3116.         xorq	%r11, %r11
    3117. 

  3117.         addq	%rax, %r9
    3118. 

  3118.         adcq	%rdx, %r10
    3119. 

  3119.         adcq	$0x00, %r11
    3120. 

  3120.         #  A[0] * B[2]
    3121. 

  3121.         movq	112(%rsp), %rax
    3122. 

  3122.         mulq	128(%rsp)
    3123. 

  3123.         addq	%rax, %r10
    3124. 

  3124.         adcq	%rdx, %r11
    3125. 

  3125.         #  A[1] * B[1]
    3126. 

  3126.         movq	104(%rsp), %rax
    3127. 

  3127.         mulq	136(%rsp)
    3128. 

  3128.         xorq	%r12, %r12
    3129. 

  3129.         addq	%rax, %r10
    3130. 

  3130.         adcq	%rdx, %r11
    3131. 

  3131.         adcq	$0x00, %r12
    3132. 

  3132.         #  A[2] * B[0]
    3133. 

  3133.         movq	96(%rsp), %rax
    3134. 

  3134.         mulq	144(%rsp)
    3135. 

  3135.         addq	%rax, %r10
    3136. 

  3136.         adcq	%rdx, %r11
    3137. 

  3137.         adcq	$0x00, %r12
    3138. 

  3138.         #  A[0] * B[3]
    3139. 

  3139.         movq	120(%rsp), %rax
    3140. 

  3140.         mulq	128(%rsp)
    3141. 

  3141.         xorq	%r13, %r13
    3142. 

  3142.         addq	%rax, %r11
    3143. 

  3143.         adcq	%rdx, %r12
    3144. 

  3144.         adcq	$0x00, %r13
    3145. 

  3145.         #  A[1] * B[2]
    3146. 

  3146.         movq	112(%rsp), %rax
    3147. 

  3147.         mulq	136(%rsp)
    3148. 

  3148.         addq	%rax, %r11
    3149. 

  3149.         adcq	%rdx, %r12
    3150. 

  3150.         adcq	$0x00, %r13
    3151. 

  3151.         #  A[2] * B[1]
    3152. 

  3152.         movq	104(%rsp), %rax
    3153. 

  3153.         mulq	144(%rsp)
    3154. 

  3154.         addq	%rax, %r11
    3155. 

  3155.         adcq	%rdx, %r12
    3156. 

  3156.         adcq	$0x00, %r13
    3157. 

  3157.         #  A[3] * B[0]
    3158. 

  3158.         movq	96(%rsp), %rax
    3159. 

  3159.         mulq	152(%rsp)
    3160. 

  3160.         addq	%rax, %r11
    3161. 

  3161.         adcq	%rdx, %r12
    3162. 

  3162.         adcq	$0x00, %r13
    3163. 

  3163.         #  A[1] * B[3]
    3164. 

  3164.         movq	120(%rsp), %rax
    3165. 

  3165.         mulq	136(%rsp)
    3166. 

  3166.         xorq	%r14, %r14
    3167. 

  3167.         addq	%rax, %r12
    3168. 

  3168.         adcq	%rdx, %r13
    3169. 

  3169.         adcq	$0x00, %r14
    3170. 

  3170.         #  A[2] * B[2]
    3171. 

  3171.         movq	112(%rsp), %rax
    3172. 

  3172.         mulq	144(%rsp)
    3173. 

  3173.         addq	%rax, %r12
    3174. 

  3174.         adcq	%rdx, %r13
    3175. 

  3175.         adcq	$0x00, %r14
    3176. 

  3176.         #  A[3] * B[1]
    3177. 

  3177.         movq	104(%rsp), %rax
    3178. 

  3178.         mulq	152(%rsp)
    3179. 

  3179.         addq	%rax, %r12
    3180. 

  3180.         adcq	%rdx, %r13
    3181. 

  3181.         adcq	$0x00, %r14
    3182. 

  3182.         #  A[2] * B[3]
    3183. 

  3183.         movq	120(%rsp), %rax
    3184. 

  3184.         mulq	144(%rsp)
    3185. 

  3185.         xorq	%r15, %r15
    3186. 

  3186.         addq	%rax, %r13
    3187. 

  3187.         adcq	%rdx, %r14
    3188. 

  3188.         adcq	$0x00, %r15
    3189. 

  3189.         #  A[3] * B[2]
    3190. 

  3190.         movq	112(%rsp), %rax
    3191. 

  3191.         mulq	152(%rsp)
    3192. 

  3192.         addq	%rax, %r13
    3193. 

  3193.         adcq	%rdx, %r14
    3194. 

  3194.         adcq	$0x00, %r15
    3195. 

  3195.         #  A[3] * B[3]
    3196. 

  3196.         movq	120(%rsp), %rax
    3197. 

  3197.         mulq	152(%rsp)
    3198. 

  3198.         addq	%rax, %r14
    3199. 

  3199.         adcq	%rdx, %r15
    3200. 

  3200.         # Reduce
    3201. 

  3201.         movq	$0x7fffffffffffffff, %rbp
    3202. 

  3202.         #  Move top half into t4-t7 and remove top bit from t3
    3203. 

  3203.         shldq	$0x01, %r14, %r15
    3204. 

  3204.         shldq	$0x01, %r13, %r14
    3205. 

  3205.         shldq	$0x01, %r12, %r13
    3206. 

  3206.         shldq	$0x01, %r11, %r12
    3207. 

  3207.         andq	%rbp, %r11
    3208. 

  3208.         #  Multiply top half by 19
    3209. 

  3209.         movq	$19, %rax
    3210. 

  3210.         mulq	%r12
    3211. 

  3211.         xorq	%r12, %r12
    3212. 

  3212.         addq	%rax, %rcx
    3213. 

  3213.         movq	$19, %rax
    3214. 

  3214.         adcq	%rdx, %r12
    3215. 

  3215.         mulq	%r13
    3216. 

  3216.         xorq	%r13, %r13
    3217. 

  3217.         addq	%rax, %r9
    3218. 

  3218.         movq	$19, %rax
    3219. 

  3219.         adcq	%rdx, %r13
    3220. 

  3220.         mulq	%r14
    3221. 

  3221.         xorq	%r14, %r14
    3222. 

  3222.         addq	%rax, %r10
    3223. 

  3223.         movq	$19, %rax
    3224. 

  3224.         adcq	%rdx, %r14
    3225. 

  3225.         mulq	%r15
    3226. 

  3226.         #  Add remaining product results in
    3227. 

  3227.         addq	%r12, %r9
    3228. 

  3228.         adcq	%r13, %r10
    3229. 

  3229.         adcq	%r14, %r11
    3230. 

  3230.         adcq	%rax, %r11
    3231. 

  3231.         adcq	$0x00, %rdx
    3232. 

  3232.         #  Overflow
    3233. 

  3233.         shldq	$0x01, %r11, %rdx
    3234. 

  3234.         imulq	$19, %rdx, %rax
    3235. 

  3235.         andq	%rbp, %r11
    3236. 

  3236.         addq	%rax, %rcx
    3237. 

  3237.         adcq	$0x00, %r9
    3238. 

  3238.         adcq	$0x00, %r10
    3239. 

  3239.         adcq	$0x00, %r11
    3240. 

  3240.         # Reduce if top bit set
    3241. 

  3241.         movq	%r11, %rdx
    3242. 

  3242.         shrq	$63, %rdx
    3243. 

  3243.         imulq	$19, %rdx, %rax
    3244. 

  3244.         andq	%rbp, %r11
    3245. 

  3245.         addq	%rax, %rcx
    3246. 

  3246.         adcq	$0x00, %r9
    3247. 

  3247.         adcq	$0x00, %r10
    3248. 

  3248.         adcq	$0x00, %r11
    3249. 

  3249.         # Store
    3250. 

  3250.         movq	%rcx, (%rdi)
    3251. 

  3251.         movq	%r9, 8(%rdi)
    3252. 

  3252.         movq	%r10, 16(%rdi)
    3253. 

  3253.         movq	%r11, 24(%rdi)
    3254. 

  3254.         # Sub
    3255. 

  3255.         movq	128(%rsp), %rcx
    3256. 

  3256.         movq	136(%rsp), %r9
    3257. 

  3257.         movq	144(%rsp), %r10
    3258. 

  3258.         movq	152(%rsp), %r11
    3259. 

  3259.         subq	96(%rsp), %rcx
    3260. 

  3260.         movq	$0x00, %rbp
    3261. 

  3261.         sbbq	104(%rsp), %r9
    3262. 

  3262.         movq	$-19, %rax
    3263. 

  3263.         sbbq	112(%rsp), %r10
    3264. 

  3264.         movq	$0x7fffffffffffffff, %rdx
    3265. 

  3265.         sbbq	120(%rsp), %r11
    3266. 

  3266.         sbbq	$0x00, %rbp
    3267. 

  3267.         #   Mask the modulus
    3268. 

  3268.         andq	%rbp, %rax
    3269. 

  3269.         andq	%rbp, %rdx
    3270. 

  3270.         #   Add modulus (if underflow)
    3271. 

  3271.         addq	%rax, %rcx
    3272. 

  3272.         adcq	%rbp, %r9
    3273. 

  3273.         adcq	%rbp, %r10
    3274. 

  3274.         adcq	%rdx, %r11
    3275. 

  3275.         movq	%rcx, 128(%rsp)
    3276. 

  3276.         movq	%r9, 136(%rsp)
    3277. 

  3277.         movq	%r10, 144(%rsp)
    3278. 

  3278.         movq	%r11, 152(%rsp)
    3279. 

  3279.         # Square
    3280. 

  3280.         #  A[0] * A[1]
    3281. 

  3281.         movq	(%rsp), %rax
    3282. 

  3282.         mulq	8(%rsp)
    3283. 

  3283.         movq	%rax, %r9
    3284. 

  3284.         movq	%rdx, %r10
    3285. 

  3285.         #  A[0] * A[2]
    3286. 

  3286.         movq	(%rsp), %rax
    3287. 

  3287.         mulq	16(%rsp)
    3288. 

  3288.         xorq	%r11, %r11
    3289. 

  3289.         addq	%rax, %r10
    3290. 

  3290.         adcq	%rdx, %r11
    3291. 

  3291.         #  A[0] * A[3]
    3292. 

  3292.         movq	(%rsp), %rax
    3293. 

  3293.         mulq	24(%rsp)
    3294. 

  3294.         xorq	%r12, %r12
    3295. 

  3295.         addq	%rax, %r11
    3296. 

  3296.         adcq	%rdx, %r12
    3297. 

  3297.         #  A[1] * A[2]
    3298. 

  3298.         movq	8(%rsp), %rax
    3299. 

  3299.         mulq	16(%rsp)
    3300. 

  3300.         xorq	%r13, %r13
    3301. 

  3301.         addq	%rax, %r11
    3302. 

  3302.         adcq	%rdx, %r12
    3303. 

  3303.         adcq	$0x00, %r13
    3304. 

  3304.         #  A[1] * A[3]
    3305. 

  3305.         movq	8(%rsp), %rax
    3306. 

  3306.         mulq	24(%rsp)
    3307. 

  3307.         addq	%rax, %r12
    3308. 

  3308.         adcq	%rdx, %r13
    3309. 

  3309.         #  A[2] * A[3]
    3310. 

  3310.         movq	16(%rsp), %rax
    3311. 

  3311.         mulq	24(%rsp)
    3312. 

  3312.         xorq	%r14, %r14
    3313. 

  3313.         addq	%rax, %r13
    3314. 

  3314.         adcq	%rdx, %r14
    3315. 

  3315.         # Double
    3316. 

  3316.         xorq	%r15, %r15
    3317. 

  3317.         addq	%r9, %r9
    3318. 

  3318.         adcq	%r10, %r10
    3319. 

  3319.         adcq	%r11, %r11
    3320. 

  3320.         adcq	%r12, %r12
    3321. 

  3321.         adcq	%r13, %r13
    3322. 

  3322.         adcq	%r14, %r14
    3323. 

  3323.         adcq	$0x00, %r15
    3324. 

  3324.         #  A[0] * A[0]
    3325. 

  3325.         movq	(%rsp), %rax
    3326. 

  3326.         mulq	%rax
    3327. 

  3327.         movq	%rax, %rcx
    3328. 

  3328.         movq	%rdx, %rbp
    3329. 

  3329.         #  A[1] * A[1]
    3330. 

  3330.         movq	8(%rsp), %rax
    3331. 

  3331.         mulq	%rax
    3332. 

  3332.         addq	%rbp, %r9
    3333. 

  3333.         adcq	%rax, %r10
    3334. 

  3334.         adcq	$0x00, %rdx
    3335. 

  3335.         movq	%rdx, %rbp
    3336. 

  3336.         #  A[2] * A[2]
    3337. 

  3337.         movq	16(%rsp), %rax
    3338. 

  3338.         mulq	%rax
    3339. 

  3339.         addq	%rbp, %r11
    3340. 

  3340.         adcq	%rax, %r12
    3341. 

  3341.         adcq	$0x00, %rdx
    3342. 

  3342.         movq	%rdx, %rbp
    3343. 

  3343.         #  A[3] * A[3]
    3344. 

  3344.         movq	24(%rsp), %rax
    3345. 

  3345.         mulq	%rax
    3346. 

  3346.         addq	%rax, %r14
    3347. 

  3347.         adcq	%rdx, %r15
    3348. 

  3348.         addq	%rbp, %r13
    3349. 

  3349.         adcq	$0x00, %r14
    3350. 

  3350.         adcq	$0x00, %r15
    3351. 

  3351.         # Reduce
    3352. 

  3352.         movq	$0x7fffffffffffffff, %rbp
    3353. 

  3353.         #  Move top half into t4-t7 and remove top bit from t3
    3354. 

  3354.         shldq	$0x01, %r14, %r15
    3355. 

  3355.         shldq	$0x01, %r13, %r14
    3356. 

  3356.         shldq	$0x01, %r12, %r13
    3357. 

  3357.         shldq	$0x01, %r11, %r12
    3358. 

  3358.         andq	%rbp, %r11
    3359. 

  3359.         #  Multiply top half by 19
    3360. 

  3360.         movq	$19, %rax
    3361. 

  3361.         mulq	%r12
    3362. 

  3362.         xorq	%r12, %r12
    3363. 

  3363.         addq	%rax, %rcx
    3364. 

  3364.         movq	$19, %rax
    3365. 

  3365.         adcq	%rdx, %r12
    3366. 

  3366.         mulq	%r13
    3367. 

  3367.         xorq	%r13, %r13
    3368. 

  3368.         addq	%rax, %r9
    3369. 

  3369.         movq	$19, %rax
    3370. 

  3370.         adcq	%rdx, %r13
    3371. 

  3371.         mulq	%r14
    3372. 

  3372.         xorq	%r14, %r14
    3373. 

  3373.         addq	%rax, %r10
    3374. 

  3374.         movq	$19, %rax
    3375. 

  3375.         adcq	%rdx, %r14
    3376. 

  3376.         mulq	%r15
    3377. 

  3377.         #  Add remaining product results in
    3378. 

  3378.         addq	%r12, %r9
    3379. 

  3379.         adcq	%r13, %r10
    3380. 

  3380.         adcq	%r14, %r11
    3381. 

  3381.         adcq	%rax, %r11
    3382. 

  3382.         adcq	$0x00, %rdx
    3383. 

  3383.         #  Overflow
    3384. 

  3384.         shldq	$0x01, %r11, %rdx
    3385. 

  3385.         imulq	$19, %rdx, %rax
    3386. 

  3386.         andq	%rbp, %r11
    3387. 

  3387.         addq	%rax, %rcx
    3388. 

  3388.         adcq	$0x00, %r9
    3389. 

  3389.         adcq	$0x00, %r10
    3390. 

  3390.         adcq	$0x00, %r11
    3391. 

  3391.         # Reduce if top bit set
    3392. 

  3392.         movq	%r11, %rdx
    3393. 

  3393.         shrq	$63, %rdx
    3394. 

  3394.         imulq	$19, %rdx, %rax
    3395. 

  3395.         andq	%rbp, %r11
    3396. 

  3396.         addq	%rax, %rcx
    3397. 

  3397.         adcq	$0x00, %r9
    3398. 

  3398.         adcq	$0x00, %r10
    3399. 

  3399.         adcq	$0x00, %r11
    3400. 

  3400.         # Store
    3401. 

  3401.         movq	%rcx, (%rsp)
    3402. 

  3402.         movq	%r9, 8(%rsp)
    3403. 

  3403.         movq	%r10, 16(%rsp)
    3404. 

  3404.         movq	%r11, 24(%rsp)
    3405. 

  3405.         # Multiply by 121666
    3406. 

  3406.         movq	$0x1db42, %rax
    3407. 

  3407.         mulq	128(%rsp)
    3408. 

  3408.         xorq	%r10, %r10
    3409. 

  3409.         movq	%rax, %rcx
    3410. 

  3410.         movq	%rdx, %r9
    3411. 

  3411.         movq	$0x1db42, %rax
    3412. 

  3412.         mulq	136(%rsp)
    3413. 

  3413.         xorq	%r11, %r11
    3414. 

  3414.         addq	%rax, %r9
    3415. 

  3415.         adcq	%rdx, %r10
    3416. 

  3416.         movq	$0x1db42, %rax
    3417. 

  3417.         mulq	144(%rsp)
    3418. 

  3418.         xorq	%r13, %r13
    3419. 

  3419.         addq	%rax, %r10
    3420. 

  3420.         adcq	%rdx, %r11
    3421. 

  3421.         movq	$0x1db42, %rax
    3422. 

  3422.         mulq	152(%rsp)
    3423. 

  3423.         movq	$0x7fffffffffffffff, %r12
    3424. 

  3424.         addq	%rax, %r11
    3425. 

  3425.         adcq	%rdx, %r13
    3426. 

  3426.         shldq	$0x01, %r11, %r13
    3427. 

  3427.         andq	%r12, %r11
    3428. 

  3428.         movq	$19, %rax
    3429. 

  3429.         mulq	%r13
    3430. 

  3430.         addq	%rax, %rcx
    3431. 

  3431.         adcq	$0x00, %r9
    3432. 

  3432.         adcq	$0x00, %r10
    3433. 

  3433.         adcq	$0x00, %r11
    3434. 

  3434.         movq	%rcx, 32(%rsp)
    3435. 

  3435.         movq	%r9, 40(%rsp)
    3436. 

  3436.         movq	%r10, 48(%rsp)
    3437. 

  3437.         movq	%r11, 56(%rsp)
    3438. 

  3438.         # Square
    3439. 

  3439.         #  A[0] * A[1]
    3440. 

  3440.         movq	64(%rsp), %rax
    3441. 

  3441.         mulq	72(%rsp)
    3442. 

  3442.         movq	%rax, %r9
    3443. 

  3443.         movq	%rdx, %r10
    3444. 

  3444.         #  A[0] * A[2]
    3445. 

  3445.         movq	64(%rsp), %rax
    3446. 

  3446.         mulq	80(%rsp)
    3447. 

  3447.         xorq	%r11, %r11
    3448. 

  3448.         addq	%rax, %r10
    3449. 

  3449.         adcq	%rdx, %r11
    3450. 

  3450.         #  A[0] * A[3]
    3451. 

  3451.         movq	64(%rsp), %rax
    3452. 

  3452.         mulq	88(%rsp)
    3453. 

  3453.         xorq	%r12, %r12
    3454. 

  3454.         addq	%rax, %r11
    3455. 

  3455.         adcq	%rdx, %r12
    3456. 

  3456.         #  A[1] * A[2]
    3457. 

  3457.         movq	72(%rsp), %rax
    3458. 

  3458.         mulq	80(%rsp)
    3459. 

  3459.         xorq	%r13, %r13
    3460. 

  3460.         addq	%rax, %r11
    3461. 

  3461.         adcq	%rdx, %r12
    3462. 

  3462.         adcq	$0x00, %r13
    3463. 

  3463.         #  A[1] * A[3]
    3464. 

  3464.         movq	72(%rsp), %rax
    3465. 

  3465.         mulq	88(%rsp)
    3466. 

  3466.         addq	%rax, %r12
    3467. 

  3467.         adcq	%rdx, %r13
    3468. 

  3468.         #  A[2] * A[3]
    3469. 

  3469.         movq	80(%rsp), %rax
    3470. 

  3470.         mulq	88(%rsp)
    3471. 

  3471.         xorq	%r14, %r14
    3472. 

  3472.         addq	%rax, %r13
    3473. 

  3473.         adcq	%rdx, %r14
    3474. 

  3474.         # Double
    3475. 

  3475.         xorq	%r15, %r15
    3476. 

  3476.         addq	%r9, %r9
    3477. 

  3477.         adcq	%r10, %r10
    3478. 

  3478.         adcq	%r11, %r11
    3479. 

  3479.         adcq	%r12, %r12
    3480. 

  3480.         adcq	%r13, %r13
    3481. 

  3481.         adcq	%r14, %r14
    3482. 

  3482.         adcq	$0x00, %r15
    3483. 

  3483.         #  A[0] * A[0]
    3484. 

  3484.         movq	64(%rsp), %rax
    3485. 

  3485.         mulq	%rax
    3486. 

  3486.         movq	%rax, %rcx
    3487. 

  3487.         movq	%rdx, %rbp
    3488. 

  3488.         #  A[1] * A[1]
    3489. 

  3489.         movq	72(%rsp), %rax
    3490. 

  3490.         mulq	%rax
    3491. 

  3491.         addq	%rbp, %r9
    3492. 

  3492.         adcq	%rax, %r10
    3493. 

  3493.         adcq	$0x00, %rdx
    3494. 

  3494.         movq	%rdx, %rbp
    3495. 

  3495.         #  A[2] * A[2]
    3496. 

  3496.         movq	80(%rsp), %rax
    3497. 

  3497.         mulq	%rax
    3498. 

  3498.         addq	%rbp, %r11
    3499. 

  3499.         adcq	%rax, %r12
    3500. 

  3500.         adcq	$0x00, %rdx
    3501. 

  3501.         movq	%rdx, %rbp
    3502. 

  3502.         #  A[3] * A[3]
    3503. 

  3503.         movq	88(%rsp), %rax
    3504. 

  3504.         mulq	%rax
    3505. 

  3505.         addq	%rax, %r14
    3506. 

  3506.         adcq	%rdx, %r15
    3507. 

  3507.         addq	%rbp, %r13
    3508. 

  3508.         adcq	$0x00, %r14
    3509. 

  3509.         adcq	$0x00, %r15
    3510. 

  3510.         # Reduce
    3511. 

  3511.         movq	$0x7fffffffffffffff, %rbp
    3512. 

  3512.         #  Move top half into t4-t7 and remove top bit from t3
    3513. 

  3513.         shldq	$0x01, %r14, %r15
    3514. 

  3514.         shldq	$0x01, %r13, %r14
    3515. 

  3515.         shldq	$0x01, %r12, %r13
    3516. 

  3516.         shldq	$0x01, %r11, %r12
    3517. 

  3517.         andq	%rbp, %r11
    3518. 

  3518.         #  Multiply top half by 19
    3519. 

  3519.         movq	$19, %rax
    3520. 

  3520.         mulq	%r12
    3521. 

  3521.         xorq	%r12, %r12
    3522. 

  3522.         addq	%rax, %rcx
    3523. 

  3523.         movq	$19, %rax
    3524. 

  3524.         adcq	%rdx, %r12
    3525. 

  3525.         mulq	%r13
    3526. 

  3526.         xorq	%r13, %r13
    3527. 

  3527.         addq	%rax, %r9
    3528. 

  3528.         movq	$19, %rax
    3529. 

  3529.         adcq	%rdx, %r13
    3530. 

  3530.         mulq	%r14
    3531. 

  3531.         xorq	%r14, %r14
    3532. 

  3532.         addq	%rax, %r10
    3533. 

  3533.         movq	$19, %rax
    3534. 

  3534.         adcq	%rdx, %r14
    3535. 

  3535.         mulq	%r15
    3536. 

  3536.         #  Add remaining product results in
    3537. 

  3537.         addq	%r12, %r9
    3538. 

  3538.         adcq	%r13, %r10
    3539. 

  3539.         adcq	%r14, %r11
    3540. 

  3540.         adcq	%rax, %r11
    3541. 

  3541.         adcq	$0x00, %rdx
    3542. 

  3542.         #  Overflow
    3543. 

  3543.         shldq	$0x01, %r11, %rdx
    3544. 

  3544.         imulq	$19, %rdx, %rax
    3545. 

  3545.         andq	%rbp, %r11
    3546. 

  3546.         addq	%rax, %rcx
    3547. 

  3547.         adcq	$0x00, %r9
    3548. 

  3548.         adcq	$0x00, %r10
    3549. 

  3549.         adcq	$0x00, %r11
    3550. 

  3550.         # Reduce if top bit set
    3551. 

  3551.         movq	%r11, %rdx
    3552. 

  3552.         shrq	$63, %rdx
    3553. 

  3553.         imulq	$19, %rdx, %rax
    3554. 

  3554.         andq	%rbp, %r11
    3555. 

  3555.         addq	%rax, %rcx
    3556. 

  3556.         adcq	$0x00, %r9
    3557. 

  3557.         adcq	$0x00, %r10
    3558. 

  3558.         adcq	$0x00, %r11
    3559. 

  3559.         # Store
    3560. 

  3560.         movq	%rcx, 64(%rsp)
    3561. 

  3561.         movq	%r9, 72(%rsp)
    3562. 

  3562.         movq	%r10, 80(%rsp)
    3563. 

  3563.         movq	%r11, 88(%rsp)
    3564. 

  3564.         # Add
    3565. 

  3565.         movq	96(%rsp), %rcx
    3566. 

  3566.         movq	104(%rsp), %r9
    3567. 

  3567.         addq	32(%rsp), %rcx
    3568. 

  3568.         movq	112(%rsp), %r10
    3569. 

  3569.         adcq	40(%rsp), %r9
    3570. 

  3570.         movq	120(%rsp), %rbp
    3571. 

  3571.         adcq	48(%rsp), %r10
    3572. 

  3572.         movq	$-19, %rax
    3573. 

  3573.         adcq	56(%rsp), %rbp
    3574. 

  3574.         movq	$0x7fffffffffffffff, %rdx
    3575. 

  3575.         movq	%rbp, %r11
    3576. 

  3576.         sarq	$63, %rbp
    3577. 

  3577.         #   Mask the modulus
    3578. 

  3578.         andq	%rbp, %rax
    3579. 

  3579.         andq	%rbp, %rdx
    3580. 

  3580.         #   Sub modulus (if overflow)
    3581. 

  3581.         subq	%rax, %rcx
    3582. 

  3582.         sbbq	%rbp, %r9
    3583. 

  3583.         sbbq	%rbp, %r10
    3584. 

  3584.         sbbq	%rdx, %r11
    3585. 

  3585.         movq	%rcx, 96(%rsp)
    3586. 

  3586.         movq	%r9, 104(%rsp)
    3587. 

  3587.         movq	%r10, 112(%rsp)
    3588. 

  3588.         movq	%r11, 120(%rsp)
    3589. 

  3589.         # Multiply
    3590. 

  3590.         #  A[0] * B[0]
    3591. 

  3591.         movq	(%rsp), %rax
    3592. 

  3592.         mulq	(%r8)
    3593. 

  3593.         movq	%rax, %rcx
    3594. 

  3594.         movq	%rdx, %r9
    3595. 

  3595.         #  A[0] * B[1]
    3596. 

  3596.         movq	8(%rsp), %rax
    3597. 

  3597.         mulq	(%r8)
    3598. 

  3598.         xorq	%r10, %r10
    3599. 

  3599.         addq	%rax, %r9
    3600. 

  3600.         adcq	%rdx, %r10
    3601. 

  3601.         #  A[1] * B[0]
    3602. 

  3602.         movq	(%rsp), %rax
    3603. 

  3603.         mulq	8(%r8)
    3604. 

  3604.         xorq	%r11, %r11
    3605. 

  3605.         addq	%rax, %r9
    3606. 

  3606.         adcq	%rdx, %r10
    3607. 

  3607.         adcq	$0x00, %r11
    3608. 

  3608.         #  A[0] * B[2]
    3609. 

  3609.         movq	16(%rsp), %rax
    3610. 

  3610.         mulq	(%r8)
    3611. 

  3611.         addq	%rax, %r10
    3612. 

  3612.         adcq	%rdx, %r11
    3613. 

  3613.         #  A[1] * B[1]
    3614. 

  3614.         movq	8(%rsp), %rax
    3615. 

  3615.         mulq	8(%r8)
    3616. 

  3616.         xorq	%r12, %r12
    3617. 

  3617.         addq	%rax, %r10
    3618. 

  3618.         adcq	%rdx, %r11
    3619. 

  3619.         adcq	$0x00, %r12
    3620. 

  3620.         #  A[2] * B[0]
    3621. 

  3621.         movq	(%rsp), %rax
    3622. 

  3622.         mulq	16(%r8)
    3623. 

  3623.         addq	%rax, %r10
    3624. 

  3624.         adcq	%rdx, %r11
    3625. 

  3625.         adcq	$0x00, %r12
    3626. 

  3626.         #  A[0] * B[3]
    3627. 

  3627.         movq	24(%rsp), %rax
    3628. 

  3628.         mulq	(%r8)
    3629. 

  3629.         xorq	%r13, %r13
    3630. 

  3630.         addq	%rax, %r11
    3631. 

  3631.         adcq	%rdx, %r12
    3632. 

  3632.         adcq	$0x00, %r13
    3633. 

  3633.         #  A[1] * B[2]
    3634. 

  3634.         movq	16(%rsp), %rax
    3635. 

  3635.         mulq	8(%r8)
    3636. 

  3636.         addq	%rax, %r11
    3637. 

  3637.         adcq	%rdx, %r12
    3638. 

  3638.         adcq	$0x00, %r13
    3639. 

  3639.         #  A[2] * B[1]
    3640. 

  3640.         movq	8(%rsp), %rax
    3641. 

  3641.         mulq	16(%r8)
    3642. 

  3642.         addq	%rax, %r11
    3643. 

  3643.         adcq	%rdx, %r12
    3644. 

  3644.         adcq	$0x00, %r13
    3645. 

  3645.         #  A[3] * B[0]
    3646. 

  3646.         movq	(%rsp), %rax
    3647. 

  3647.         mulq	24(%r8)
    3648. 

  3648.         addq	%rax, %r11
    3649. 

  3649.         adcq	%rdx, %r12
    3650. 

  3650.         adcq	$0x00, %r13
    3651. 

  3651.         #  A[1] * B[3]
    3652. 

  3652.         movq	24(%rsp), %rax
    3653. 

  3653.         mulq	8(%r8)
    3654. 

  3654.         xorq	%r14, %r14
    3655. 

  3655.         addq	%rax, %r12
    3656. 

  3656.         adcq	%rdx, %r13
    3657. 

  3657.         adcq	$0x00, %r14
    3658. 

  3658.         #  A[2] * B[2]
    3659. 

  3659.         movq	16(%rsp), %rax
    3660. 

  3660.         mulq	16(%r8)
    3661. 

  3661.         addq	%rax, %r12
    3662. 

  3662.         adcq	%rdx, %r13
    3663. 

  3663.         adcq	$0x00, %r14
    3664. 

  3664.         #  A[3] * B[1]
    3665. 

  3665.         movq	8(%rsp), %rax
    3666. 

  3666.         mulq	24(%r8)
    3667. 

  3667.         addq	%rax, %r12
    3668. 

  3668.         adcq	%rdx, %r13
    3669. 

  3669.         adcq	$0x00, %r14
    3670. 

  3670.         #  A[2] * B[3]
    3671. 

  3671.         movq	24(%rsp), %rax
    3672. 

  3672.         mulq	16(%r8)
    3673. 

  3673.         xorq	%r15, %r15
    3674. 

  3674.         addq	%rax, %r13
    3675. 

  3675.         adcq	%rdx, %r14
    3676. 

  3676.         adcq	$0x00, %r15
    3677. 

  3677.         #  A[3] * B[2]
    3678. 

  3678.         movq	16(%rsp), %rax
    3679. 

  3679.         mulq	24(%r8)
    3680. 

  3680.         addq	%rax, %r13
    3681. 

  3681.         adcq	%rdx, %r14
    3682. 

  3682.         adcq	$0x00, %r15
    3683. 

  3683.         #  A[3] * B[3]
    3684. 

  3684.         movq	24(%rsp), %rax
    3685. 

  3685.         mulq	24(%r8)
    3686. 

  3686.         addq	%rax, %r14
    3687. 

  3687.         adcq	%rdx, %r15
    3688. 

  3688.         # Reduce
    3689. 

  3689.         movq	$0x7fffffffffffffff, %rbp
    3690. 

  3690.         #  Move top half into t4-t7 and remove top bit from t3
    3691. 

  3691.         shldq	$0x01, %r14, %r15
    3692. 

  3692.         shldq	$0x01, %r13, %r14
    3693. 

  3693.         shldq	$0x01, %r12, %r13
    3694. 

  3694.         shldq	$0x01, %r11, %r12
    3695. 

  3695.         andq	%rbp, %r11
    3696. 

  3696.         #  Multiply top half by 19
    3697. 

  3697.         movq	$19, %rax
    3698. 

  3698.         mulq	%r12
    3699. 

  3699.         xorq	%r12, %r12
    3700. 

  3700.         addq	%rax, %rcx
    3701. 

  3701.         movq	$19, %rax
    3702. 

  3702.         adcq	%rdx, %r12
    3703. 

  3703.         mulq	%r13
    3704. 

  3704.         xorq	%r13, %r13
    3705. 

  3705.         addq	%rax, %r9
    3706. 

  3706.         movq	$19, %rax
    3707. 

  3707.         adcq	%rdx, %r13
    3708. 

  3708.         mulq	%r14
    3709. 

  3709.         xorq	%r14, %r14
    3710. 

  3710.         addq	%rax, %r10
    3711. 

  3711.         movq	$19, %rax
    3712. 

  3712.         adcq	%rdx, %r14
    3713. 

  3713.         mulq	%r15
    3714. 

  3714.         #  Add remaining product results in
    3715. 

  3715.         addq	%r12, %r9
    3716. 

  3716.         adcq	%r13, %r10
    3717. 

  3717.         adcq	%r14, %r11
    3718. 

  3718.         adcq	%rax, %r11
    3719. 

  3719.         adcq	$0x00, %rdx
    3720. 

  3720.         #  Overflow
    3721. 

  3721.         shldq	$0x01, %r11, %rdx
    3722. 

  3722.         imulq	$19, %rdx, %rax
    3723. 

  3723.         andq	%rbp, %r11
    3724. 

  3724.         addq	%rax, %rcx
    3725. 

  3725.         adcq	$0x00, %r9
    3726. 

  3726.         adcq	$0x00, %r10
    3727. 

  3727.         adcq	$0x00, %r11
    3728. 

  3728.         # Reduce if top bit set
    3729. 

  3729.         movq	%r11, %rdx
    3730. 

  3730.         shrq	$63, %rdx
    3731. 

  3731.         imulq	$19, %rdx, %rax
    3732. 

  3732.         andq	%rbp, %r11
    3733. 

  3733.         addq	%rax, %rcx
    3734. 

  3734.         adcq	$0x00, %r9
    3735. 

  3735.         adcq	$0x00, %r10
    3736. 

  3736.         adcq	$0x00, %r11
    3737. 

  3737.         # Store
    3738. 

  3738.         movq	%rcx, 32(%rsp)
    3739. 

  3739.         movq	%r9, 40(%rsp)
    3740. 

  3740.         movq	%r10, 48(%rsp)
    3741. 

  3741.         movq	%r11, 56(%rsp)
    3742. 

  3742.         # Multiply
    3743. 

  3743.         #  A[0] * B[0]
    3744. 

  3744.         movq	96(%rsp), %rax
    3745. 

  3745.         mulq	128(%rsp)
    3746. 

  3746.         movq	%rax, %rcx
    3747. 

  3747.         movq	%rdx, %r9
    3748. 

  3748.         #  A[0] * B[1]
    3749. 

  3749.         movq	104(%rsp), %rax
    3750. 

  3750.         mulq	128(%rsp)
    3751. 

  3751.         xorq	%r10, %r10
    3752. 

  3752.         addq	%rax, %r9
    3753. 

  3753.         adcq	%rdx, %r10
    3754. 

  3754.         #  A[1] * B[0]
    3755. 

  3755.         movq	96(%rsp), %rax
    3756. 

  3756.         mulq	136(%rsp)
    3757. 

  3757.         xorq	%r11, %r11
    3758. 

  3758.         addq	%rax, %r9
    3759. 

  3759.         adcq	%rdx, %r10
    3760. 

  3760.         adcq	$0x00, %r11
    3761. 

  3761.         #  A[0] * B[2]
    3762. 

  3762.         movq	112(%rsp), %rax
    3763. 

  3763.         mulq	128(%rsp)
    3764. 

  3764.         addq	%rax, %r10
    3765. 

  3765.         adcq	%rdx, %r11
    3766. 

  3766.         #  A[1] * B[1]
    3767. 

  3767.         movq	104(%rsp), %rax
    3768. 

  3768.         mulq	136(%rsp)
    3769. 

  3769.         xorq	%r12, %r12
    3770. 

  3770.         addq	%rax, %r10
    3771. 

  3771.         adcq	%rdx, %r11
    3772. 

  3772.         adcq	$0x00, %r12
    3773. 

  3773.         #  A[2] * B[0]
    3774. 

  3774.         movq	96(%rsp), %rax
    3775. 

  3775.         mulq	144(%rsp)
    3776. 

  3776.         addq	%rax, %r10
    3777. 

  3777.         adcq	%rdx, %r11
    3778. 

  3778.         adcq	$0x00, %r12
    3779. 

  3779.         #  A[0] * B[3]
    3780. 

  3780.         movq	120(%rsp), %rax
    3781. 

  3781.         mulq	128(%rsp)
    3782. 

  3782.         xorq	%r13, %r13
    3783. 

  3783.         addq	%rax, %r11
    3784. 

  3784.         adcq	%rdx, %r12
    3785. 

  3785.         adcq	$0x00, %r13
    3786. 

  3786.         #  A[1] * B[2]
    3787. 

  3787.         movq	112(%rsp), %rax
    3788. 

  3788.         mulq	136(%rsp)
    3789. 

  3789.         addq	%rax, %r11
    3790. 

  3790.         adcq	%rdx, %r12
    3791. 

  3791.         adcq	$0x00, %r13
    3792. 

  3792.         #  A[2] * B[1]
    3793. 

  3793.         movq	104(%rsp), %rax
    3794. 

  3794.         mulq	144(%rsp)
    3795. 

  3795.         addq	%rax, %r11
    3796. 

  3796.         adcq	%rdx, %r12
    3797. 

  3797.         adcq	$0x00, %r13
    3798. 

  3798.         #  A[3] * B[0]
    3799. 

  3799.         movq	96(%rsp), %rax
    3800. 

  3800.         mulq	152(%rsp)
    3801. 

  3801.         addq	%rax, %r11
    3802. 

  3802.         adcq	%rdx, %r12
    3803. 

  3803.         adcq	$0x00, %r13
    3804. 

  3804.         #  A[1] * B[3]
    3805. 

  3805.         movq	120(%rsp), %rax
    3806. 

  3806.         mulq	136(%rsp)
    3807. 

  3807.         xorq	%r14, %r14
    3808. 

  3808.         addq	%rax, %r12
    3809. 

  3809.         adcq	%rdx, %r13
    3810. 

  3810.         adcq	$0x00, %r14
    3811. 

  3811.         #  A[2] * B[2]
    3812. 

  3812.         movq	112(%rsp), %rax
    3813. 

  3813.         mulq	144(%rsp)
    3814. 

  3814.         addq	%rax, %r12
    3815. 

  3815.         adcq	%rdx, %r13
    3816. 

  3816.         adcq	$0x00, %r14
    3817. 

  3817.         #  A[3] * B[1]
    3818. 

  3818.         movq	104(%rsp), %rax
    3819. 

  3819.         mulq	152(%rsp)
    3820. 

  3820.         addq	%rax, %r12
    3821. 

  3821.         adcq	%rdx, %r13
    3822. 

  3822.         adcq	$0x00, %r14
    3823. 

  3823.         #  A[2] * B[3]
    3824. 

  3824.         movq	120(%rsp), %rax
    3825. 

  3825.         mulq	144(%rsp)
    3826. 

  3826.         xorq	%r15, %r15
    3827. 

  3827.         addq	%rax, %r13
    3828. 

  3828.         adcq	%rdx, %r14
    3829. 

  3829.         adcq	$0x00, %r15
    3830. 

  3830.         #  A[3] * B[2]
    3831. 

  3831.         movq	112(%rsp), %rax
    3832. 

  3832.         mulq	152(%rsp)
    3833. 

  3833.         addq	%rax, %r13
    3834. 

  3834.         adcq	%rdx, %r14
    3835. 

  3835.         adcq	$0x00, %r15
    3836. 

  3836.         #  A[3] * B[3]
    3837. 

  3837.         movq	120(%rsp), %rax
    3838. 

  3838.         mulq	152(%rsp)
    3839. 

  3839.         addq	%rax, %r14
    3840. 

  3840.         adcq	%rdx, %r15
    3841. 

  3841.         # Reduce
    3842. 

  3842.         movq	$0x7fffffffffffffff, %rbp
    3843. 

  3843.         #  Move top half into t4-t7 and remove top bit from t3
    3844. 

  3844.         shldq	$0x01, %r14, %r15
    3845. 

  3845.         shldq	$0x01, %r13, %r14
    3846. 

  3846.         shldq	$0x01, %r12, %r13
    3847. 

  3847.         shldq	$0x01, %r11, %r12
    3848. 

  3848.         andq	%rbp, %r11
    3849. 

  3849.         #  Multiply top half by 19
    3850. 

  3850.         movq	$19, %rax
    3851. 

  3851.         mulq	%r12
    3852. 

  3852.         xorq	%r12, %r12
    3853. 

  3853.         addq	%rax, %rcx
    3854. 

  3854.         movq	$19, %rax
    3855. 

  3855.         adcq	%rdx, %r12
    3856. 

  3856.         mulq	%r13
    3857. 

  3857.         xorq	%r13, %r13
    3858. 

  3858.         addq	%rax, %r9
    3859. 

  3859.         movq	$19, %rax
    3860. 

  3860.         adcq	%rdx, %r13
    3861. 

  3861.         mulq	%r14
    3862. 

  3862.         xorq	%r14, %r14
    3863. 

  3863.         addq	%rax, %r10
    3864. 

  3864.         movq	$19, %rax
    3865. 

  3865.         adcq	%rdx, %r14
    3866. 

  3866.         mulq	%r15
    3867. 

  3867.         #  Add remaining product results in
    3868. 

  3868.         addq	%r12, %r9
    3869. 

  3869.         adcq	%r13, %r10
    3870. 

  3870.         adcq	%r14, %r11
    3871. 

  3871.         adcq	%rax, %r11
    3872. 

  3872.         adcq	$0x00, %rdx
    3873. 

  3873.         #  Overflow
    3874. 

  3874.         shldq	$0x01, %r11, %rdx
    3875. 

  3875.         imulq	$19, %rdx, %rax
    3876. 

  3876.         andq	%rbp, %r11
    3877. 

  3877.         addq	%rax, %rcx
    3878. 

  3878.         adcq	$0x00, %r9
    3879. 

  3879.         adcq	$0x00, %r10
    3880. 

  3880.         adcq	$0x00, %r11
    3881. 

  3881.         # Reduce if top bit set
    3882. 

  3882.         movq	%r11, %rdx
    3883. 

  3883.         shrq	$63, %rdx
    3884. 

  3884.         imulq	$19, %rdx, %rax
    3885. 

  3885.         andq	%rbp, %r11
    3886. 

  3886.         addq	%rax, %rcx
    3887. 

  3887.         adcq	$0x00, %r9
    3888. 

  3888.         adcq	$0x00, %r10
    3889. 

  3889.         adcq	$0x00, %r11
    3890. 

  3890.         # Store
    3891. 

  3891.         movq	%rcx, (%rsp)
    3892. 

  3892.         movq	%r9, 8(%rsp)
    3893. 

  3893.         movq	%r10, 16(%rsp)
    3894. 

  3894.         movq	%r11, 24(%rsp)
    3895. 

  3895.         decb	168(%rsp)
    3896. 

  3896.         jge	L_curve25519_x64_bits
    3897. 

  3897.         movq	$63, 168(%rsp)
    3898. 

  3898.         decb	160(%rsp)
    3899. 

  3899.         jge	L_curve25519_x64_words
    3900. 

  3900.         # Invert
    3901. 

  3901.         leaq	32(%rsp), %rdi
    3902. 

  3902.         movq	%rsp, %rsi
    3903. 

  3903. #ifndef __APPLE__
    3904. 

  3904.         callq	fe_sq_x64@plt
    3905. 

  3905. #else
    3906. 

  3906.         callq	_fe_sq_x64
    3907. 

  3907. #endif /* __APPLE__ */
    3908. 

  3908.         leaq	64(%rsp), %rdi
    3909. 

  3909.         leaq	32(%rsp), %rsi
    3910. 

  3910. #ifndef __APPLE__
    3911. 

  3911.         callq	fe_sq_x64@plt
    3912. 

  3912. #else
    3913. 

  3913.         callq	_fe_sq_x64
    3914. 

  3914. #endif /* __APPLE__ */
    3915. 

  3915.         leaq	64(%rsp), %rdi
    3916. 

  3916.         leaq	64(%rsp), %rsi
    3917. 

  3917. #ifndef __APPLE__
    3918. 

  3918.         callq	fe_sq_x64@plt
    3919. 

  3919. #else
    3920. 

  3920.         callq	_fe_sq_x64
    3921. 

  3921. #endif /* __APPLE__ */
    3922. 

  3922.         leaq	64(%rsp), %rdi
    3923. 

  3923.         movq	%rsp, %rsi
    3924. 

  3924.         leaq	64(%rsp), %rdx
    3925. 

  3925. #ifndef __APPLE__
    3926. 

  3926.         callq	fe_mul_x64@plt
    3927. 

  3927. #else
    3928. 

  3928.         callq	_fe_mul_x64
    3929. 

  3929. #endif /* __APPLE__ */
    3930. 

  3930.         leaq	32(%rsp), %rdi
    3931. 

  3931.         leaq	32(%rsp), %rsi
    3932. 

  3932.         leaq	64(%rsp), %rdx
    3933. 

  3933. #ifndef __APPLE__
    3934. 

  3934.         callq	fe_mul_x64@plt
    3935. 

  3935. #else
    3936. 

  3936.         callq	_fe_mul_x64
    3937. 

  3937. #endif /* __APPLE__ */
    3938. 

  3938.         leaq	96(%rsp), %rdi
    3939. 

  3939.         leaq	32(%rsp), %rsi
    3940. 

  3940. #ifndef __APPLE__
    3941. 

  3941.         callq	fe_sq_x64@plt
    3942. 

  3942. #else
    3943. 

  3943.         callq	_fe_sq_x64
    3944. 

  3944. #endif /* __APPLE__ */
    3945. 

  3945.         leaq	64(%rsp), %rdi
    3946. 

  3946.         leaq	64(%rsp), %rsi
    3947. 

  3947.         leaq	96(%rsp), %rdx
    3948. 

  3948. #ifndef __APPLE__
    3949. 

  3949.         callq	fe_mul_x64@plt
    3950. 

  3950. #else
    3951. 

  3951.         callq	_fe_mul_x64
    3952. 

  3952. #endif /* __APPLE__ */
    3953. 

  3953.         leaq	96(%rsp), %rdi
    3954. 

  3954.         leaq	64(%rsp), %rsi
    3955. 

  3955. #ifndef __APPLE__
    3956. 

  3956.         callq	fe_sq_x64@plt
    3957. 

  3957. #else
    3958. 

  3958.         callq	_fe_sq_x64
    3959. 

  3959. #endif /* __APPLE__ */
    3960. 

  3960.         leaq	96(%rsp), %rdi
    3961. 

  3961.         leaq	96(%rsp), %rsi
    3962. 

  3962.         movq	$4, %rdx
    3963. 

  3963. #ifndef __APPLE__
    3964. 

  3964.         callq	fe_sq_n_x64@plt
    3965. 

  3965. #else
    3966. 

  3966.         callq	_fe_sq_n_x64
    3967. 

  3967. #endif /* __APPLE__ */
    3968. 

  3968.         leaq	64(%rsp), %rdi
    3969. 

  3969.         leaq	96(%rsp), %rsi
    3970. 

  3970.         leaq	64(%rsp), %rdx
    3971. 

  3971. #ifndef __APPLE__
    3972. 

  3972.         callq	fe_mul_x64@plt
    3973. 

  3973. #else
    3974. 

  3974.         callq	_fe_mul_x64
    3975. 

  3975. #endif /* __APPLE__ */
    3976. 

  3976.         leaq	96(%rsp), %rdi
    3977. 

  3977.         leaq	64(%rsp), %rsi
    3978. 

  3978. #ifndef __APPLE__
    3979. 

  3979.         callq	fe_sq_x64@plt
    3980. 

  3980. #else
    3981. 

  3981.         callq	_fe_sq_x64
    3982. 

  3982. #endif /* __APPLE__ */
    3983. 

  3983.         leaq	96(%rsp), %rdi
    3984. 

  3984.         leaq	96(%rsp), %rsi
    3985. 

  3985.         movq	$9, %rdx
    3986. 

  3986. #ifndef __APPLE__
    3987. 

  3987.         callq	fe_sq_n_x64@plt
    3988. 

  3988. #else
    3989. 

  3989.         callq	_fe_sq_n_x64
    3990. 

  3990. #endif /* __APPLE__ */
    3991. 

  3991.         leaq	96(%rsp), %rdi
    3992. 

  3992.         leaq	96(%rsp), %rsi
    3993. 

  3993.         leaq	64(%rsp), %rdx
    3994. 

  3994. #ifndef __APPLE__
    3995. 

  3995.         callq	fe_mul_x64@plt
    3996. 

  3996. #else
    3997. 

  3997.         callq	_fe_mul_x64
    3998. 

  3998. #endif /* __APPLE__ */
    3999. 

  3999.         leaq	128(%rsp), %rdi
    4000. 

  4000.         leaq	96(%rsp), %rsi
    4001. 

  4001. #ifndef __APPLE__
    4002. 

  4002.         callq	fe_sq_x64@plt
    4003. 

  4003. #else
    4004. 

  4004.         callq	_fe_sq_x64
    4005. 

  4005. #endif /* __APPLE__ */
    4006. 

  4006.         leaq	128(%rsp), %rdi
    4007. 

  4007.         leaq	128(%rsp), %rsi
    4008. 

  4008.         movq	$19, %rdx
    4009. 

  4009. #ifndef __APPLE__
    4010. 

  4010.         callq	fe_sq_n_x64@plt
    4011. 

  4011. #else
    4012. 

  4012.         callq	_fe_sq_n_x64
    4013. 

  4013. #endif /* __APPLE__ */
    4014. 

  4014.         leaq	96(%rsp), %rdi
    4015. 

  4015.         leaq	128(%rsp), %rsi
    4016. 

  4016.         leaq	96(%rsp), %rdx
    4017. 

  4017. #ifndef __APPLE__
    4018. 

  4018.         callq	fe_mul_x64@plt
    4019. 

  4019. #else
    4020. 

  4020.         callq	_fe_mul_x64
    4021. 

  4021. #endif /* __APPLE__ */
    4022. 

  4022.         leaq	96(%rsp), %rdi
    4023. 

  4023.         leaq	96(%rsp), %rsi
    4024. 

  4024. #ifndef __APPLE__
    4025. 

  4025.         callq	fe_sq_x64@plt
    4026. 

  4026. #else
    4027. 

  4027.         callq	_fe_sq_x64
    4028. 

  4028. #endif /* __APPLE__ */
    4029. 

  4029.         leaq	96(%rsp), %rdi
    4030. 

  4030.         leaq	96(%rsp), %rsi
    4031. 

  4031.         movq	$9, %rdx
    4032. 

  4032. #ifndef __APPLE__
    4033. 

  4033.         callq	fe_sq_n_x64@plt
    4034. 

  4034. #else
    4035. 

  4035.         callq	_fe_sq_n_x64
    4036. 

  4036. #endif /* __APPLE__ */
    4037. 

  4037.         leaq	64(%rsp), %rdi
    4038. 

  4038.         leaq	96(%rsp), %rsi
    4039. 

  4039.         leaq	64(%rsp), %rdx
    4040. 

  4040. #ifndef __APPLE__
    4041. 

  4041.         callq	fe_mul_x64@plt
    4042. 

  4042. #else
    4043. 

  4043.         callq	_fe_mul_x64
    4044. 

  4044. #endif /* __APPLE__ */
    4045. 

  4045.         leaq	96(%rsp), %rdi
    4046. 

  4046.         leaq	64(%rsp), %rsi
    4047. 

  4047. #ifndef __APPLE__
    4048. 

  4048.         callq	fe_sq_x64@plt
    4049. 

  4049. #else
    4050. 

  4050.         callq	_fe_sq_x64
    4051. 

  4051. #endif /* __APPLE__ */
    4052. 

  4052.         leaq	96(%rsp), %rdi
    4053. 

  4053.         leaq	96(%rsp), %rsi
    4054. 

  4054.         movq	$49, %rdx
    4055. 

  4055. #ifndef __APPLE__
    4056. 

  4056.         callq	fe_sq_n_x64@plt
    4057. 

  4057. #else
    4058. 

  4058.         callq	_fe_sq_n_x64
    4059. 

  4059. #endif /* __APPLE__ */
    4060. 

  4060.         leaq	96(%rsp), %rdi
    4061. 

  4061.         leaq	96(%rsp), %rsi
    4062. 

  4062.         leaq	64(%rsp), %rdx
    4063. 

  4063. #ifndef __APPLE__
    4064. 

  4064.         callq	fe_mul_x64@plt
    4065. 

  4065. #else
    4066. 

  4066.         callq	_fe_mul_x64
    4067. 

  4067. #endif /* __APPLE__ */
    4068. 

  4068.         leaq	128(%rsp), %rdi
    4069. 

  4069.         leaq	96(%rsp), %rsi
    4070. 

  4070. #ifndef __APPLE__
    4071. 

  4071.         callq	fe_sq_x64@plt
    4072. 

  4072. #else
    4073. 

  4073.         callq	_fe_sq_x64
    4074. 

  4074. #endif /* __APPLE__ */
    4075. 

  4075.         leaq	128(%rsp), %rdi
    4076. 

  4076.         leaq	128(%rsp), %rsi
    4077. 

  4077.         movq	$0x63, %rdx
    4078. 

  4078. #ifndef __APPLE__
    4079. 

  4079.         callq	fe_sq_n_x64@plt
    4080. 

  4080. #else
    4081. 

  4081.         callq	_fe_sq_n_x64
    4082. 

  4082. #endif /* __APPLE__ */
    4083. 

  4083.         leaq	96(%rsp), %rdi
    4084. 

  4084.         leaq	128(%rsp), %rsi
    4085. 

  4085.         leaq	96(%rsp), %rdx
    4086. 

  4086. #ifndef __APPLE__
    4087. 

  4087.         callq	fe_mul_x64@plt
    4088. 

  4088. #else
    4089. 

  4089.         callq	_fe_mul_x64
    4090. 

  4090. #endif /* __APPLE__ */
    4091. 

  4091.         leaq	96(%rsp), %rdi
    4092. 

  4092.         leaq	96(%rsp), %rsi
    4093. 

  4093. #ifndef __APPLE__
    4094. 

  4094.         callq	fe_sq_x64@plt
    4095. 

  4095. #else
    4096. 

  4096.         callq	_fe_sq_x64
    4097. 

  4097. #endif /* __APPLE__ */
    4098. 

  4098.         leaq	96(%rsp), %rdi
    4099. 

  4099.         leaq	96(%rsp), %rsi
    4100. 

  4100.         movq	$49, %rdx
    4101. 

  4101. #ifndef __APPLE__
    4102. 

  4102.         callq	fe_sq_n_x64@plt
    4103. 

  4103. #else
    4104. 

  4104.         callq	_fe_sq_n_x64
    4105. 

  4105. #endif /* __APPLE__ */
    4106. 

  4106.         leaq	64(%rsp), %rdi
    4107. 

  4107.         leaq	96(%rsp), %rsi
    4108. 

  4108.         leaq	64(%rsp), %rdx
    4109. 

  4109. #ifndef __APPLE__
    4110. 

  4110.         callq	fe_mul_x64@plt
    4111. 

  4111. #else
    4112. 

  4112.         callq	_fe_mul_x64
    4113. 

  4113. #endif /* __APPLE__ */
    4114. 

  4114.         leaq	64(%rsp), %rdi
    4115. 

  4115.         leaq	64(%rsp), %rsi
    4116. 

  4116. #ifndef __APPLE__
    4117. 

  4117.         callq	fe_sq_x64@plt
    4118. 

  4118. #else
    4119. 

  4119.         callq	_fe_sq_x64
    4120. 

  4120. #endif /* __APPLE__ */
    4121. 

  4121.         leaq	64(%rsp), %rdi
    4122. 

  4122.         leaq	64(%rsp), %rsi
    4123. 

  4123.         movq	$4, %rdx
    4124. 

  4124. #ifndef __APPLE__
    4125. 

  4125.         callq	fe_sq_n_x64@plt
    4126. 

  4126. #else
    4127. 

  4127.         callq	_fe_sq_n_x64
    4128. 

  4128. #endif /* __APPLE__ */
    4129. 

  4129.         movq	%rsp, %rdi
    4130. 

  4130.         leaq	64(%rsp), %rsi
    4131. 

  4131.         leaq	32(%rsp), %rdx
    4132. 

  4132. #ifndef __APPLE__
    4133. 

  4133.         callq	fe_mul_x64@plt
    4134. 

  4134. #else
    4135. 

  4135.         callq	_fe_mul_x64
    4136. 

  4136. #endif /* __APPLE__ */
    4137. 

  4137.         movq	176(%rsp), %rdi
    4138. 

  4138.         # Multiply
    4139. 

  4139.         #  A[0] * B[0]
    4140. 

  4140.         movq	(%rsp), %rax
    4141. 

  4141.         mulq	(%rdi)
    4142. 

  4142.         movq	%rax, %rcx
    4143. 

  4143.         movq	%rdx, %r9
    4144. 

  4144.         #  A[0] * B[1]
    4145. 

  4145.         movq	8(%rsp), %rax
    4146. 

  4146.         mulq	(%rdi)
    4147. 

  4147.         xorq	%r10, %r10
    4148. 

  4148.         addq	%rax, %r9
    4149. 

  4149.         adcq	%rdx, %r10
    4150. 

  4150.         #  A[1] * B[0]
    4151. 

  4151.         movq	(%rsp), %rax
    4152. 

  4152.         mulq	8(%rdi)
    4153. 

  4153.         xorq	%r11, %r11
    4154. 

  4154.         addq	%rax, %r9
    4155. 

  4155.         adcq	%rdx, %r10
    4156. 

  4156.         adcq	$0x00, %r11
    4157. 

  4157.         #  A[0] * B[2]
    4158. 

  4158.         movq	16(%rsp), %rax
    4159. 

  4159.         mulq	(%rdi)
    4160. 

  4160.         addq	%rax, %r10
    4161. 

  4161.         adcq	%rdx, %r11
    4162. 

  4162.         #  A[1] * B[1]
    4163. 

  4163.         movq	8(%rsp), %rax
    4164. 

  4164.         mulq	8(%rdi)
    4165. 

  4165.         xorq	%r12, %r12
    4166. 

  4166.         addq	%rax, %r10
    4167. 

  4167.         adcq	%rdx, %r11
    4168. 

  4168.         adcq	$0x00, %r12
    4169. 

  4169.         #  A[2] * B[0]
    4170. 

  4170.         movq	(%rsp), %rax
    4171. 

  4171.         mulq	16(%rdi)
    4172. 

  4172.         addq	%rax, %r10
    4173. 

  4173.         adcq	%rdx, %r11
    4174. 

  4174.         adcq	$0x00, %r12
    4175. 

  4175.         #  A[0] * B[3]
    4176. 

  4176.         movq	24(%rsp), %rax
    4177. 

  4177.         mulq	(%rdi)
    4178. 

  4178.         xorq	%r13, %r13
    4179. 

  4179.         addq	%rax, %r11
    4180. 

  4180.         adcq	%rdx, %r12
    4181. 

  4181.         adcq	$0x00, %r13
    4182. 

  4182.         #  A[1] * B[2]
    4183. 

  4183.         movq	16(%rsp), %rax
    4184. 

  4184.         mulq	8(%rdi)
    4185. 

  4185.         addq	%rax, %r11
    4186. 

  4186.         adcq	%rdx, %r12
    4187. 

  4187.         adcq	$0x00, %r13
    4188. 

  4188.         #  A[2] * B[1]
    4189. 

  4189.         movq	8(%rsp), %rax
    4190. 

  4190.         mulq	16(%rdi)
    4191. 

  4191.         addq	%rax, %r11
    4192. 

  4192.         adcq	%rdx, %r12
    4193. 

  4193.         adcq	$0x00, %r13
    4194. 

  4194.         #  A[3] * B[0]
    4195. 

  4195.         movq	(%rsp), %rax
    4196. 

  4196.         mulq	24(%rdi)
    4197. 

  4197.         addq	%rax, %r11
    4198. 

  4198.         adcq	%rdx, %r12
    4199. 

  4199.         adcq	$0x00, %r13
    4200. 

  4200.         #  A[1] * B[3]
    4201. 

  4201.         movq	24(%rsp), %rax
    4202. 

  4202.         mulq	8(%rdi)
    4203. 

  4203.         xorq	%r14, %r14
    4204. 

  4204.         addq	%rax, %r12
    4205. 

  4205.         adcq	%rdx, %r13
    4206. 

  4206.         adcq	$0x00, %r14
    4207. 

  4207.         #  A[2] * B[2]
    4208. 

  4208.         movq	16(%rsp), %rax
    4209. 

  4209.         mulq	16(%rdi)
    4210. 

  4210.         addq	%rax, %r12
    4211. 

  4211.         adcq	%rdx, %r13
    4212. 

  4212.         adcq	$0x00, %r14
    4213. 

  4213.         #  A[3] * B[1]
    4214. 

  4214.         movq	8(%rsp), %rax
    4215. 

  4215.         mulq	24(%rdi)
    4216. 

  4216.         addq	%rax, %r12
    4217. 

  4217.         adcq	%rdx, %r13
    4218. 

  4218.         adcq	$0x00, %r14
    4219. 

  4219.         #  A[2] * B[3]
    4220. 

  4220.         movq	24(%rsp), %rax
    4221. 

  4221.         mulq	16(%rdi)
    4222. 

  4222.         xorq	%r15, %r15
    4223. 

  4223.         addq	%rax, %r13
    4224. 

  4224.         adcq	%rdx, %r14
    4225. 

  4225.         adcq	$0x00, %r15
    4226. 

  4226.         #  A[3] * B[2]
    4227. 

  4227.         movq	16(%rsp), %rax
    4228. 

  4228.         mulq	24(%rdi)
    4229. 

  4229.         addq	%rax, %r13
    4230. 

  4230.         adcq	%rdx, %r14
    4231. 

  4231.         adcq	$0x00, %r15
    4232. 

  4232.         #  A[3] * B[3]
    4233. 

  4233.         movq	24(%rsp), %rax
    4234. 

  4234.         mulq	24(%rdi)
    4235. 

  4235.         addq	%rax, %r14
    4236. 

  4236.         adcq	%rdx, %r15
    4237. 

  4237.         # Reduce
    4238. 

  4238.         movq	$0x7fffffffffffffff, %rbp
    4239. 

  4239.         #  Move top half into t4-t7 and remove top bit from t3
    4240. 

  4240.         shldq	$0x01, %r14, %r15
    4241. 

  4241.         shldq	$0x01, %r13, %r14
    4242. 

  4242.         shldq	$0x01, %r12, %r13
    4243. 

  4243.         shldq	$0x01, %r11, %r12
    4244. 

  4244.         andq	%rbp, %r11
    4245. 

  4245.         #  Multiply top half by 19
    4246. 

  4246.         movq	$19, %rax
    4247. 

  4247.         mulq	%r12
    4248. 

  4248.         xorq	%r12, %r12
    4249. 

  4249.         addq	%rax, %rcx
    4250. 

  4250.         movq	$19, %rax
    4251. 

  4251.         adcq	%rdx, %r12
    4252. 

  4252.         mulq	%r13
    4253. 

  4253.         xorq	%r13, %r13
    4254. 

  4254.         addq	%rax, %r9
    4255. 

  4255.         movq	$19, %rax
    4256. 

  4256.         adcq	%rdx, %r13
    4257. 

  4257.         mulq	%r14
    4258. 

  4258.         xorq	%r14, %r14
    4259. 

  4259.         addq	%rax, %r10
    4260. 

  4260.         movq	$19, %rax
    4261. 

  4261.         adcq	%rdx, %r14
    4262. 

  4262.         mulq	%r15
    4263. 

  4263.         #  Add remaining product results in
    4264. 

  4264.         addq	%r12, %r9
    4265. 

  4265.         adcq	%r13, %r10
    4266. 

  4266.         adcq	%r14, %r11
    4267. 

  4267.         adcq	%rax, %r11
    4268. 

  4268.         adcq	$0x00, %rdx
    4269. 

  4269.         #  Overflow
    4270. 

  4270.         shldq	$0x01, %r11, %rdx
    4271. 

  4271.         imulq	$19, %rdx, %rax
    4272. 

  4272.         andq	%rbp, %r11
    4273. 

  4273.         addq	%rax, %rcx
    4274. 

  4274.         adcq	$0x00, %r9
    4275. 

  4275.         adcq	$0x00, %r10
    4276. 

  4276.         adcq	$0x00, %r11
    4277. 

  4277.         # Reduce if top bit set
    4278. 

  4278.         movq	%r11, %rdx
    4279. 

  4279.         shrq	$63, %rdx
    4280. 

  4280.         imulq	$19, %rdx, %rax
    4281. 

  4281.         andq	%rbp, %r11
    4282. 

  4282.         addq	%rax, %rcx
    4283. 

  4283.         adcq	$0x00, %r9
    4284. 

  4284.         adcq	$0x00, %r10
    4285. 

  4285.         adcq	$0x00, %r11
    4286. 

  4286.         # Store
    4287. 

  4287.         movq	%rcx, (%rdi)
    4288. 

  4288.         movq	%r9, 8(%rdi)
    4289. 

  4289.         movq	%r10, 16(%rdi)
    4290. 

  4290.         movq	%r11, 24(%rdi)
    4291. 

  4291.         xorq	%rax, %rax
    4292. 

  4292.         addq	$0xb8, %rsp
    4293. 

  4293.         popq	%rbp
    4294. 

  4294.         popq	%rbx
    4295. 

  4295.         popq	%r15
    4296. 

  4296.         popq	%r14
    4297. 

  4297.         popq	%r13
    4298. 

  4298.         popq	%r12
    4299. 

  4299.         repz retq
    4300. 

  4300. #ifndef __APPLE__
    4301. 

  4301. .size	curve25519_x64,.-curve25519_x64
    4302. 

  4302. #endif /* __APPLE__ */
    4303. 

  4303. #ifndef __APPLE__
    4304. 

  4304. .text
    4305. 

  4305. .globl	fe_pow22523_x64
    4306. 

  4306. .type	fe_pow22523_x64,@function
    4307. 

  4307. .align	16
    4308. 

  4308. fe_pow22523_x64:
    4309. 

  4309. #else
    4310. 

  4310. .section	__TEXT,__text
    4311. 

  4311. .globl	_fe_pow22523_x64
    4312. 

  4312. .p2align	4
    4313. 

  4313. _fe_pow22523_x64:
    4314. 

  4314. #endif /* __APPLE__ */
    4315. 

  4315.         subq	$0x70, %rsp
    4316. 

  4316.         # pow22523
    4317. 

  4317.         movq	%rdi, 96(%rsp)
    4318. 

  4318.         movq	%rsi, 104(%rsp)
    4319. 

  4319.         movq	%rsp, %rdi
    4320. 

  4320.         movq	104(%rsp), %rsi
    4321. 

  4321. #ifndef __APPLE__
    4322. 

  4322.         callq	fe_sq_x64@plt
    4323. 

  4323. #else
    4324. 

  4324.         callq	_fe_sq_x64
    4325. 

  4325. #endif /* __APPLE__ */
    4326. 

  4326.         leaq	32(%rsp), %rdi
    4327. 

  4327.         movq	%rsp, %rsi
    4328. 

  4328. #ifndef __APPLE__
    4329. 

  4329.         callq	fe_sq_x64@plt
    4330. 

  4330. #else
    4331. 

  4331.         callq	_fe_sq_x64
    4332. 

  4332. #endif /* __APPLE__ */
    4333. 

  4333.         leaq	32(%rsp), %rdi
    4334. 

  4334.         leaq	32(%rsp), %rsi
    4335. 

  4335. #ifndef __APPLE__
    4336. 

  4336.         callq	fe_sq_x64@plt
    4337. 

  4337. #else
    4338. 

  4338.         callq	_fe_sq_x64
    4339. 

  4339. #endif /* __APPLE__ */
    4340. 

  4340.         leaq	32(%rsp), %rdi
    4341. 

  4341.         movq	104(%rsp), %rsi
    4342. 

  4342.         leaq	32(%rsp), %rdx
    4343. 

  4343. #ifndef __APPLE__
    4344. 

  4344.         callq	fe_mul_x64@plt
    4345. 

  4345. #else
    4346. 

  4346.         callq	_fe_mul_x64
    4347. 

  4347. #endif /* __APPLE__ */
    4348. 

  4348.         movq	%rsp, %rdi
    4349. 

  4349.         movq	%rsp, %rsi
    4350. 

  4350.         leaq	32(%rsp), %rdx
    4351. 

  4351. #ifndef __APPLE__
    4352. 

  4352.         callq	fe_mul_x64@plt
    4353. 

  4353. #else
    4354. 

  4354.         callq	_fe_mul_x64
    4355. 

  4355. #endif /* __APPLE__ */
    4356. 

  4356.         movq	%rsp, %rdi
    4357. 

  4357.         movq	%rsp, %rsi
    4358. 

  4358. #ifndef __APPLE__
    4359. 

  4359.         callq	fe_sq_x64@plt
    4360. 

  4360. #else
    4361. 

  4361.         callq	_fe_sq_x64
    4362. 

  4362. #endif /* __APPLE__ */
    4363. 

  4363.         movq	%rsp, %rdi
    4364. 

  4364.         leaq	32(%rsp), %rsi
    4365. 

  4365.         movq	%rsp, %rdx
    4366. 

  4366. #ifndef __APPLE__
    4367. 

  4367.         callq	fe_mul_x64@plt
    4368. 

  4368. #else
    4369. 

  4369.         callq	_fe_mul_x64
    4370. 

  4370. #endif /* __APPLE__ */
    4371. 

  4371.         leaq	32(%rsp), %rdi
    4372. 

  4372.         movq	%rsp, %rsi
    4373. 

  4373. #ifndef __APPLE__
    4374. 

  4374.         callq	fe_sq_x64@plt
    4375. 

  4375. #else
    4376. 

  4376.         callq	_fe_sq_x64
    4377. 

  4377. #endif /* __APPLE__ */
    4378. 

  4378.         leaq	32(%rsp), %rdi
    4379. 

  4379.         leaq	32(%rsp), %rsi
    4380. 

  4380.         movq	$4, %rdx
    4381. 

  4381. #ifndef __APPLE__
    4382. 

  4382.         callq	fe_sq_n_x64@plt
    4383. 

  4383. #else
    4384. 

  4384.         callq	_fe_sq_n_x64
    4385. 

  4385. #endif /* __APPLE__ */
    4386. 

  4386.         movq	%rsp, %rdi
    4387. 

  4387.         leaq	32(%rsp), %rsi
    4388. 

  4388.         movq	%rsp, %rdx
    4389. 

  4389. #ifndef __APPLE__
    4390. 

  4390.         callq	fe_mul_x64@plt
    4391. 

  4391. #else
    4392. 

  4392.         callq	_fe_mul_x64
    4393. 

  4393. #endif /* __APPLE__ */
    4394. 

  4394.         leaq	32(%rsp), %rdi
    4395. 

  4395.         movq	%rsp, %rsi
    4396. 

  4396. #ifndef __APPLE__
    4397. 

  4397.         callq	fe_sq_x64@plt
    4398. 

  4398. #else
    4399. 

  4399.         callq	_fe_sq_x64
    4400. 

  4400. #endif /* __APPLE__ */
    4401. 

  4401.         leaq	32(%rsp), %rdi
    4402. 

  4402.         leaq	32(%rsp), %rsi
    4403. 

  4403.         movq	$9, %rdx
    4404. 

  4404. #ifndef __APPLE__
    4405. 

  4405.         callq	fe_sq_n_x64@plt
    4406. 

  4406. #else
    4407. 

  4407.         callq	_fe_sq_n_x64
    4408. 

  4408. #endif /* __APPLE__ */
    4409. 

  4409.         leaq	32(%rsp), %rdi
    4410. 

  4410.         leaq	32(%rsp), %rsi
    4411. 

  4411.         movq	%rsp, %rdx
    4412. 

  4412. #ifndef __APPLE__
    4413. 

  4413.         callq	fe_mul_x64@plt
    4414. 

  4414. #else
    4415. 

  4415.         callq	_fe_mul_x64
    4416. 

  4416. #endif /* __APPLE__ */
    4417. 

  4417.         leaq	64(%rsp), %rdi
    4418. 

  4418.         leaq	32(%rsp), %rsi
    4419. 

  4419. #ifndef __APPLE__
    4420. 

  4420.         callq	fe_sq_x64@plt
    4421. 

  4421. #else
    4422. 

  4422.         callq	_fe_sq_x64
    4423. 

  4423. #endif /* __APPLE__ */
    4424. 

  4424.         leaq	64(%rsp), %rdi
    4425. 

  4425.         leaq	64(%rsp), %rsi
    4426. 

  4426.         movq	$19, %rdx
    4427. 

  4427. #ifndef __APPLE__
    4428. 

  4428.         callq	fe_sq_n_x64@plt
    4429. 

  4429. #else
    4430. 

  4430.         callq	_fe_sq_n_x64
    4431. 

  4431. #endif /* __APPLE__ */
    4432. 

  4432.         leaq	32(%rsp), %rdi
    4433. 

  4433.         leaq	64(%rsp), %rsi
    4434. 

  4434.         leaq	32(%rsp), %rdx
    4435. 

  4435. #ifndef __APPLE__
    4436. 

  4436.         callq	fe_mul_x64@plt
    4437. 

  4437. #else
    4438. 

  4438.         callq	_fe_mul_x64
    4439. 

  4439. #endif /* __APPLE__ */
    4440. 

  4440.         leaq	32(%rsp), %rdi
    4441. 

  4441.         leaq	32(%rsp), %rsi
    4442. 

  4442. #ifndef __APPLE__
    4443. 

  4443.         callq	fe_sq_x64@plt
    4444. 

  4444. #else
    4445. 

  4445.         callq	_fe_sq_x64
    4446. 

  4446. #endif /* __APPLE__ */
    4447. 

  4447.         leaq	32(%rsp), %rdi
    4448. 

  4448.         leaq	32(%rsp), %rsi
    4449. 

  4449.         movq	$9, %rdx
    4450. 

  4450. #ifndef __APPLE__
    4451. 

  4451.         callq	fe_sq_n_x64@plt
    4452. 

  4452. #else
    4453. 

  4453.         callq	_fe_sq_n_x64
    4454. 

  4454. #endif /* __APPLE__ */
    4455. 

  4455.         movq	%rsp, %rdi
    4456. 

  4456.         leaq	32(%rsp), %rsi
    4457. 

  4457.         movq	%rsp, %rdx
    4458. 

  4458. #ifndef __APPLE__
    4459. 

  4459.         callq	fe_mul_x64@plt
    4460. 

  4460. #else
    4461. 

  4461.         callq	_fe_mul_x64
    4462. 

  4462. #endif /* __APPLE__ */
    4463. 

  4463.         leaq	32(%rsp), %rdi
    4464. 

  4464.         movq	%rsp, %rsi
    4465. 

  4465. #ifndef __APPLE__
    4466. 

  4466.         callq	fe_sq_x64@plt
    4467. 

  4467. #else
    4468. 

  4468.         callq	_fe_sq_x64
    4469. 

  4469. #endif /* __APPLE__ */
    4470. 

  4470.         leaq	32(%rsp), %rdi
    4471. 

  4471.         leaq	32(%rsp), %rsi
    4472. 

  4472.         movq	$49, %rdx
    4473. 

  4473. #ifndef __APPLE__
    4474. 

  4474.         callq	fe_sq_n_x64@plt
    4475. 

  4475. #else
    4476. 

  4476.         callq	_fe_sq_n_x64
    4477. 

  4477. #endif /* __APPLE__ */
    4478. 

  4478.         leaq	32(%rsp), %rdi
    4479. 

  4479.         leaq	32(%rsp), %rsi
    4480. 

  4480.         movq	%rsp, %rdx
    4481. 

  4481. #ifndef __APPLE__
    4482. 

  4482.         callq	fe_mul_x64@plt
    4483. 

  4483. #else
    4484. 

  4484.         callq	_fe_mul_x64
    4485. 

  4485. #endif /* __APPLE__ */
    4486. 

  4486.         leaq	64(%rsp), %rdi
    4487. 

  4487.         leaq	32(%rsp), %rsi
    4488. 

  4488. #ifndef __APPLE__
    4489. 

  4489.         callq	fe_sq_x64@plt
    4490. 

  4490. #else
    4491. 

  4491.         callq	_fe_sq_x64
    4492. 

  4492. #endif /* __APPLE__ */
    4493. 

  4493.         leaq	64(%rsp), %rdi
    4494. 

  4494.         leaq	64(%rsp), %rsi
    4495. 

  4495.         movq	$0x63, %rdx
    4496. 

  4496. #ifndef __APPLE__
    4497. 

  4497.         callq	fe_sq_n_x64@plt
    4498. 

  4498. #else
    4499. 

  4499.         callq	_fe_sq_n_x64
    4500. 

  4500. #endif /* __APPLE__ */
    4501. 

  4501.         leaq	32(%rsp), %rdi
    4502. 

  4502.         leaq	64(%rsp), %rsi
    4503. 

  4503.         leaq	32(%rsp), %rdx
    4504. 

  4504. #ifndef __APPLE__
    4505. 

  4505.         callq	fe_mul_x64@plt
    4506. 

  4506. #else
    4507. 

  4507.         callq	_fe_mul_x64
    4508. 

  4508. #endif /* __APPLE__ */
    4509. 

  4509.         leaq	32(%rsp), %rdi
    4510. 

  4510.         leaq	32(%rsp), %rsi
    4511. 

  4511. #ifndef __APPLE__
    4512. 

  4512.         callq	fe_sq_x64@plt
    4513. 

  4513. #else
    4514. 

  4514.         callq	_fe_sq_x64
    4515. 

  4515. #endif /* __APPLE__ */
    4516. 

  4516.         leaq	32(%rsp), %rdi
    4517. 

  4517.         leaq	32(%rsp), %rsi
    4518. 

  4518.         movq	$49, %rdx
    4519. 

  4519. #ifndef __APPLE__
    4520. 

  4520.         callq	fe_sq_n_x64@plt
    4521. 

  4521. #else
    4522. 

  4522.         callq	_fe_sq_n_x64
    4523. 

  4523. #endif /* __APPLE__ */
    4524. 

  4524.         movq	%rsp, %rdi
    4525. 

  4525.         leaq	32(%rsp), %rsi
    4526. 

  4526.         movq	%rsp, %rdx
    4527. 

  4527. #ifndef __APPLE__
    4528. 

  4528.         callq	fe_mul_x64@plt
    4529. 

  4529. #else
    4530. 

  4530.         callq	_fe_mul_x64
    4531. 

  4531. #endif /* __APPLE__ */
    4532. 

  4532.         movq	%rsp, %rdi
    4533. 

  4533.         movq	%rsp, %rsi
    4534. 

  4534. #ifndef __APPLE__
    4535. 

  4535.         callq	fe_sq_x64@plt
    4536. 

  4536. #else
    4537. 

  4537.         callq	_fe_sq_x64
    4538. 

  4538. #endif /* __APPLE__ */
    4539. 

  4539.         movq	%rsp, %rdi
    4540. 

  4540.         movq	%rsp, %rsi
    4541. 

  4541. #ifndef __APPLE__
    4542. 

  4542.         callq	fe_sq_x64@plt
    4543. 

  4543. #else
    4544. 

  4544.         callq	_fe_sq_x64
    4545. 

  4545. #endif /* __APPLE__ */
    4546. 

  4546.         movq	96(%rsp), %rdi
    4547. 

  4547.         movq	%rsp, %rsi
    4548. 

  4548.         movq	104(%rsp), %rdx
    4549. 

  4549. #ifndef __APPLE__
    4550. 

  4550.         callq	fe_mul_x64@plt
    4551. 

  4551. #else
    4552. 

  4552.         callq	_fe_mul_x64
    4553. 

  4553. #endif /* __APPLE__ */
    4554. 

  4554.         movq	104(%rsp), %rsi
    4555. 

  4555.         movq	96(%rsp), %rdi
    4556. 

  4556.         addq	$0x70, %rsp
    4557. 

  4557.         repz retq
    4558. 

  4558. #ifndef __APPLE__
    4559. 

  4559. .text
    4560. 

  4560. .globl	fe_ge_to_p2_x64
    4561. 

  4561. .type	fe_ge_to_p2_x64,@function
    4562. 

  4562. .align	16
    4563. 

  4563. fe_ge_to_p2_x64:
    4564. 

  4564. #else
    4565. 

  4565. .section	__TEXT,__text
    4566. 

  4566. .globl	_fe_ge_to_p2_x64
    4567. 

  4567. .p2align	4
    4568. 

  4568. _fe_ge_to_p2_x64:
    4569. 

  4569. #endif /* __APPLE__ */
    4570. 

  4570.         pushq	%rbx
    4571. 

  4571.         pushq	%r12
    4572. 

  4572.         pushq	%r13
    4573. 

  4573.         pushq	%r14
    4574. 

  4574.         pushq	%r15
    4575. 

  4575.         subq	$40, %rsp
    4576. 

  4576.         movq	%rsi, (%rsp)
    4577. 

  4577.         movq	%rdx, 8(%rsp)
    4578. 

  4578.         movq	%rcx, 16(%rsp)
    4579. 

  4579.         movq	%r8, 24(%rsp)
    4580. 

  4580.         movq	%r9, 32(%rsp)
    4581. 

  4581.         movq	16(%rsp), %rsi
    4582. 

  4582.         movq	88(%rsp), %rbx
    4583. 

  4583.         # Multiply
    4584. 

  4584.         #  A[0] * B[0]
    4585. 

  4585.         movq	(%rbx), %rax
    4586. 

  4586.         mulq	(%rsi)
    4587. 

  4587.         movq	%rax, %r8
    4588. 

  4588.         movq	%rdx, %r9
    4589. 

  4589.         #  A[0] * B[1]
    4590. 

  4590.         movq	8(%rbx), %rax
    4591. 

  4591.         mulq	(%rsi)
    4592. 

  4592.         xorq	%r10, %r10
    4593. 

  4593.         addq	%rax, %r9
    4594. 

  4594.         adcq	%rdx, %r10
    4595. 

  4595.         #  A[1] * B[0]
    4596. 

  4596.         movq	(%rbx), %rax
    4597. 

  4597.         mulq	8(%rsi)
    4598. 

  4598.         xorq	%r11, %r11
    4599. 

  4599.         addq	%rax, %r9
    4600. 

  4600.         adcq	%rdx, %r10
    4601. 

  4601.         adcq	$0x00, %r11
    4602. 

  4602.         #  A[0] * B[2]
    4603. 

  4603.         movq	16(%rbx), %rax
    4604. 

  4604.         mulq	(%rsi)
    4605. 

  4605.         addq	%rax, %r10
    4606. 

  4606.         adcq	%rdx, %r11
    4607. 

  4607.         #  A[1] * B[1]
    4608. 

  4608.         movq	8(%rbx), %rax
    4609. 

  4609.         mulq	8(%rsi)
    4610. 

  4610.         xorq	%r12, %r12
    4611. 

  4611.         addq	%rax, %r10
    4612. 

  4612.         adcq	%rdx, %r11
    4613. 

  4613.         adcq	$0x00, %r12
    4614. 

  4614.         #  A[2] * B[0]
    4615. 

  4615.         movq	(%rbx), %rax
    4616. 

  4616.         mulq	16(%rsi)
    4617. 

  4617.         addq	%rax, %r10
    4618. 

  4618.         adcq	%rdx, %r11
    4619. 

  4619.         adcq	$0x00, %r12
    4620. 

  4620.         #  A[0] * B[3]
    4621. 

  4621.         movq	24(%rbx), %rax
    4622. 

  4622.         mulq	(%rsi)
    4623. 

  4623.         xorq	%r13, %r13
    4624. 

  4624.         addq	%rax, %r11
    4625. 

  4625.         adcq	%rdx, %r12
    4626. 

  4626.         adcq	$0x00, %r13
    4627. 

  4627.         #  A[1] * B[2]
    4628. 

  4628.         movq	16(%rbx), %rax
    4629. 

  4629.         mulq	8(%rsi)
    4630. 

  4630.         addq	%rax, %r11
    4631. 

  4631.         adcq	%rdx, %r12
    4632. 

  4632.         adcq	$0x00, %r13
    4633. 

  4633.         #  A[2] * B[1]
    4634. 

  4634.         movq	8(%rbx), %rax
    4635. 

  4635.         mulq	16(%rsi)
    4636. 

  4636.         addq	%rax, %r11
    4637. 

  4637.         adcq	%rdx, %r12
    4638. 

  4638.         adcq	$0x00, %r13
    4639. 

  4639.         #  A[3] * B[0]
    4640. 

  4640.         movq	(%rbx), %rax
    4641. 

  4641.         mulq	24(%rsi)
    4642. 

  4642.         addq	%rax, %r11
    4643. 

  4643.         adcq	%rdx, %r12
    4644. 

  4644.         adcq	$0x00, %r13
    4645. 

  4645.         #  A[1] * B[3]
    4646. 

  4646.         movq	24(%rbx), %rax
    4647. 

  4647.         mulq	8(%rsi)
    4648. 

  4648.         xorq	%r14, %r14
    4649. 

  4649.         addq	%rax, %r12
    4650. 

  4650.         adcq	%rdx, %r13
    4651. 

  4651.         adcq	$0x00, %r14
    4652. 

  4652.         #  A[2] * B[2]
    4653. 

  4653.         movq	16(%rbx), %rax
    4654. 

  4654.         mulq	16(%rsi)
    4655. 

  4655.         addq	%rax, %r12
    4656. 

  4656.         adcq	%rdx, %r13
    4657. 

  4657.         adcq	$0x00, %r14
    4658. 

  4658.         #  A[3] * B[1]
    4659. 

  4659.         movq	8(%rbx), %rax
    4660. 

  4660.         mulq	24(%rsi)
    4661. 

  4661.         addq	%rax, %r12
    4662. 

  4662.         adcq	%rdx, %r13
    4663. 

  4663.         adcq	$0x00, %r14
    4664. 

  4664.         #  A[2] * B[3]
    4665. 

  4665.         movq	24(%rbx), %rax
    4666. 

  4666.         mulq	16(%rsi)
    4667. 

  4667.         xorq	%r15, %r15
    4668. 

  4668.         addq	%rax, %r13
    4669. 

  4669.         adcq	%rdx, %r14
    4670. 

  4670.         adcq	$0x00, %r15
    4671. 

  4671.         #  A[3] * B[2]
    4672. 

  4672.         movq	16(%rbx), %rax
    4673. 

  4673.         mulq	24(%rsi)
    4674. 

  4674.         addq	%rax, %r13
    4675. 

  4675.         adcq	%rdx, %r14
    4676. 

  4676.         adcq	$0x00, %r15
    4677. 

  4677.         #  A[3] * B[3]
    4678. 

  4678.         movq	24(%rbx), %rax
    4679. 

  4679.         mulq	24(%rsi)
    4680. 

  4680.         addq	%rax, %r14
    4681. 

  4681.         adcq	%rdx, %r15
    4682. 

  4682.         # Reduce
    4683. 

  4683.         movq	$0x7fffffffffffffff, %rcx
    4684. 

  4684.         #  Move top half into t4-t7 and remove top bit from t3
    4685. 

  4685.         shldq	$0x01, %r14, %r15
    4686. 

  4686.         shldq	$0x01, %r13, %r14
    4687. 

  4687.         shldq	$0x01, %r12, %r13
    4688. 

  4688.         shldq	$0x01, %r11, %r12
    4689. 

  4689.         andq	%rcx, %r11
    4690. 

  4690.         #  Multiply top half by 19
    4691. 

  4691.         movq	$19, %rax
    4692. 

  4692.         mulq	%r12
    4693. 

  4693.         xorq	%r12, %r12
    4694. 

  4694.         addq	%rax, %r8
    4695. 

  4695.         movq	$19, %rax
    4696. 

  4696.         adcq	%rdx, %r12
    4697. 

  4697.         mulq	%r13
    4698. 

  4698.         xorq	%r13, %r13
    4699. 

  4699.         addq	%rax, %r9
    4700. 

  4700.         movq	$19, %rax
    4701. 

  4701.         adcq	%rdx, %r13
    4702. 

  4702.         mulq	%r14
    4703. 

  4703.         xorq	%r14, %r14
    4704. 

  4704.         addq	%rax, %r10
    4705. 

  4705.         movq	$19, %rax
    4706. 

  4706.         adcq	%rdx, %r14
    4707. 

  4707.         mulq	%r15
    4708. 

  4708.         #  Add remaining product results in
    4709. 

  4709.         addq	%r12, %r9
    4710. 

  4710.         adcq	%r13, %r10
    4711. 

  4711.         adcq	%r14, %r11
    4712. 

  4712.         adcq	%rax, %r11
    4713. 

  4713.         adcq	$0x00, %rdx
    4714. 

  4714.         #  Overflow
    4715. 

  4715.         shldq	$0x01, %r11, %rdx
    4716. 

  4716.         imulq	$19, %rdx, %rax
    4717. 

  4717.         andq	%rcx, %r11
    4718. 

  4718.         addq	%rax, %r8
    4719. 

  4719.         adcq	$0x00, %r9
    4720. 

  4720.         adcq	$0x00, %r10
    4721. 

  4721.         adcq	$0x00, %r11
    4722. 

  4722.         # Reduce if top bit set
    4723. 

  4723.         movq	%r11, %rdx
    4724. 

  4724.         shrq	$63, %rdx
    4725. 

  4725.         imulq	$19, %rdx, %rax
    4726. 

  4726.         andq	%rcx, %r11
    4727. 

  4727.         addq	%rax, %r8
    4728. 

  4728.         adcq	$0x00, %r9
    4729. 

  4729.         adcq	$0x00, %r10
    4730. 

  4730.         adcq	$0x00, %r11
    4731. 

  4731.         # Store
    4732. 

  4732.         movq	%r8, (%rdi)
    4733. 

  4733.         movq	%r9, 8(%rdi)
    4734. 

  4734.         movq	%r10, 16(%rdi)
    4735. 

  4735.         movq	%r11, 24(%rdi)
    4736. 

  4736.         movq	(%rsp), %rdi
    4737. 

  4737.         movq	24(%rsp), %rsi
    4738. 

  4738.         movq	32(%rsp), %rbx
    4739. 

  4739.         # Multiply
    4740. 

  4740.         #  A[0] * B[0]
    4741. 

  4741.         movq	(%rbx), %rax
    4742. 

  4742.         mulq	(%rsi)
    4743. 

  4743.         movq	%rax, %r8
    4744. 

  4744.         movq	%rdx, %r9
    4745. 

  4745.         #  A[0] * B[1]
    4746. 

  4746.         movq	8(%rbx), %rax
    4747. 

  4747.         mulq	(%rsi)
    4748. 

  4748.         xorq	%r10, %r10
    4749. 

  4749.         addq	%rax, %r9
    4750. 

  4750.         adcq	%rdx, %r10
    4751. 

  4751.         #  A[1] * B[0]
    4752. 

  4752.         movq	(%rbx), %rax
    4753. 

  4753.         mulq	8(%rsi)
    4754. 

  4754.         xorq	%r11, %r11
    4755. 

  4755.         addq	%rax, %r9
    4756. 

  4756.         adcq	%rdx, %r10
    4757. 

  4757.         adcq	$0x00, %r11
    4758. 

  4758.         #  A[0] * B[2]
    4759. 

  4759.         movq	16(%rbx), %rax
    4760. 

  4760.         mulq	(%rsi)
    4761. 

  4761.         addq	%rax, %r10
    4762. 

  4762.         adcq	%rdx, %r11
    4763. 

  4763.         #  A[1] * B[1]
    4764. 

  4764.         movq	8(%rbx), %rax
    4765. 

  4765.         mulq	8(%rsi)
    4766. 

  4766.         xorq	%r12, %r12
    4767. 

  4767.         addq	%rax, %r10
    4768. 

  4768.         adcq	%rdx, %r11
    4769. 

  4769.         adcq	$0x00, %r12
    4770. 

  4770.         #  A[2] * B[0]
    4771. 

  4771.         movq	(%rbx), %rax
    4772. 

  4772.         mulq	16(%rsi)
    4773. 

  4773.         addq	%rax, %r10
    4774. 

  4774.         adcq	%rdx, %r11
    4775. 

  4775.         adcq	$0x00, %r12
    4776. 

  4776.         #  A[0] * B[3]
    4777. 

  4777.         movq	24(%rbx), %rax
    4778. 

  4778.         mulq	(%rsi)
    4779. 

  4779.         xorq	%r13, %r13
    4780. 

  4780.         addq	%rax, %r11
    4781. 

  4781.         adcq	%rdx, %r12
    4782. 

  4782.         adcq	$0x00, %r13
    4783. 

  4783.         #  A[1] * B[2]
    4784. 

  4784.         movq	16(%rbx), %rax
    4785. 

  4785.         mulq	8(%rsi)
    4786. 

  4786.         addq	%rax, %r11
    4787. 

  4787.         adcq	%rdx, %r12
    4788. 

  4788.         adcq	$0x00, %r13
    4789. 

  4789.         #  A[2] * B[1]
    4790. 

  4790.         movq	8(%rbx), %rax
    4791. 

  4791.         mulq	16(%rsi)
    4792. 

  4792.         addq	%rax, %r11
    4793. 

  4793.         adcq	%rdx, %r12
    4794. 

  4794.         adcq	$0x00, %r13
    4795. 

  4795.         #  A[3] * B[0]
    4796. 

  4796.         movq	(%rbx), %rax
    4797. 

  4797.         mulq	24(%rsi)
    4798. 

  4798.         addq	%rax, %r11
    4799. 

  4799.         adcq	%rdx, %r12
    4800. 

  4800.         adcq	$0x00, %r13
    4801. 

  4801.         #  A[1] * B[3]
    4802. 

  4802.         movq	24(%rbx), %rax
    4803. 

  4803.         mulq	8(%rsi)
    4804. 

  4804.         xorq	%r14, %r14
    4805. 

  4805.         addq	%rax, %r12
    4806. 

  4806.         adcq	%rdx, %r13
    4807. 

  4807.         adcq	$0x00, %r14
    4808. 

  4808.         #  A[2] * B[2]
    4809. 

  4809.         movq	16(%rbx), %rax
    4810. 

  4810.         mulq	16(%rsi)
    4811. 

  4811.         addq	%rax, %r12
    4812. 

  4812.         adcq	%rdx, %r13
    4813. 

  4813.         adcq	$0x00, %r14
    4814. 

  4814.         #  A[3] * B[1]
    4815. 

  4815.         movq	8(%rbx), %rax
    4816. 

  4816.         mulq	24(%rsi)
    4817. 

  4817.         addq	%rax, %r12
    4818. 

  4818.         adcq	%rdx, %r13
    4819. 

  4819.         adcq	$0x00, %r14
    4820. 

  4820.         #  A[2] * B[3]
    4821. 

  4821.         movq	24(%rbx), %rax
    4822. 

  4822.         mulq	16(%rsi)
    4823. 

  4823.         xorq	%r15, %r15
    4824. 

  4824.         addq	%rax, %r13
    4825. 

  4825.         adcq	%rdx, %r14
    4826. 

  4826.         adcq	$0x00, %r15
    4827. 

  4827.         #  A[3] * B[2]
    4828. 

  4828.         movq	16(%rbx), %rax
    4829. 

  4829.         mulq	24(%rsi)
    4830. 

  4830.         addq	%rax, %r13
    4831. 

  4831.         adcq	%rdx, %r14
    4832. 

  4832.         adcq	$0x00, %r15
    4833. 

  4833.         #  A[3] * B[3]
    4834. 

  4834.         movq	24(%rbx), %rax
    4835. 

  4835.         mulq	24(%rsi)
    4836. 

  4836.         addq	%rax, %r14
    4837. 

  4837.         adcq	%rdx, %r15
    4838. 

  4838.         # Reduce
    4839. 

  4839.         movq	$0x7fffffffffffffff, %rcx
    4840. 

  4840.         #  Move top half into t4-t7 and remove top bit from t3
    4841. 

  4841.         shldq	$0x01, %r14, %r15
    4842. 

  4842.         shldq	$0x01, %r13, %r14
    4843. 

  4843.         shldq	$0x01, %r12, %r13
    4844. 

  4844.         shldq	$0x01, %r11, %r12
    4845. 

  4845.         andq	%rcx, %r11
    4846. 

  4846.         #  Multiply top half by 19
    4847. 

  4847.         movq	$19, %rax
    4848. 

  4848.         mulq	%r12
    4849. 

  4849.         xorq	%r12, %r12
    4850. 

  4850.         addq	%rax, %r8
    4851. 

  4851.         movq	$19, %rax
    4852. 

  4852.         adcq	%rdx, %r12
    4853. 

  4853.         mulq	%r13
    4854. 

  4854.         xorq	%r13, %r13
    4855. 

  4855.         addq	%rax, %r9
    4856. 

  4856.         movq	$19, %rax
    4857. 

  4857.         adcq	%rdx, %r13
    4858. 

  4858.         mulq	%r14
    4859. 

  4859.         xorq	%r14, %r14
    4860. 

  4860.         addq	%rax, %r10
    4861. 

  4861.         movq	$19, %rax
    4862. 

  4862.         adcq	%rdx, %r14
    4863. 

  4863.         mulq	%r15
    4864. 

  4864.         #  Add remaining product results in
    4865. 

  4865.         addq	%r12, %r9
    4866. 

  4866.         adcq	%r13, %r10
    4867. 

  4867.         adcq	%r14, %r11
    4868. 

  4868.         adcq	%rax, %r11
    4869. 

  4869.         adcq	$0x00, %rdx
    4870. 

  4870.         #  Overflow
    4871. 

  4871.         shldq	$0x01, %r11, %rdx
    4872. 

  4872.         imulq	$19, %rdx, %rax
    4873. 

  4873.         andq	%rcx, %r11
    4874. 

  4874.         addq	%rax, %r8
    4875. 

  4875.         adcq	$0x00, %r9
    4876. 

  4876.         adcq	$0x00, %r10
    4877. 

  4877.         adcq	$0x00, %r11
    4878. 

  4878.         # Reduce if top bit set
    4879. 

  4879.         movq	%r11, %rdx
    4880. 

  4880.         shrq	$63, %rdx
    4881. 

  4881.         imulq	$19, %rdx, %rax
    4882. 

  4882.         andq	%rcx, %r11
    4883. 

  4883.         addq	%rax, %r8
    4884. 

  4884.         adcq	$0x00, %r9
    4885. 

  4885.         adcq	$0x00, %r10
    4886. 

  4886.         adcq	$0x00, %r11
    4887. 

  4887.         # Store
    4888. 

  4888.         movq	%r8, (%rdi)
    4889. 

  4889.         movq	%r9, 8(%rdi)
    4890. 

  4890.         movq	%r10, 16(%rdi)
    4891. 

  4891.         movq	%r11, 24(%rdi)
    4892. 

  4892.         movq	8(%rsp), %rdi
    4893. 

  4893.         movq	32(%rsp), %rsi
    4894. 

  4894.         movq	88(%rsp), %rbx
    4895. 

  4895.         # Multiply
    4896. 

  4896.         #  A[0] * B[0]
    4897. 

  4897.         movq	(%rbx), %rax
    4898. 

  4898.         mulq	(%rsi)
    4899. 

  4899.         movq	%rax, %r8
    4900. 

  4900.         movq	%rdx, %r9
    4901. 

  4901.         #  A[0] * B[1]
    4902. 

  4902.         movq	8(%rbx), %rax
    4903. 

  4903.         mulq	(%rsi)
    4904. 

  4904.         xorq	%r10, %r10
    4905. 

  4905.         addq	%rax, %r9
    4906. 

  4906.         adcq	%rdx, %r10
    4907. 

  4907.         #  A[1] * B[0]
    4908. 

  4908.         movq	(%rbx), %rax
    4909. 

  4909.         mulq	8(%rsi)
    4910. 

  4910.         xorq	%r11, %r11
    4911. 

  4911.         addq	%rax, %r9
    4912. 

  4912.         adcq	%rdx, %r10
    4913. 

  4913.         adcq	$0x00, %r11
    4914. 

  4914.         #  A[0] * B[2]
    4915. 

  4915.         movq	16(%rbx), %rax
    4916. 

  4916.         mulq	(%rsi)
    4917. 

  4917.         addq	%rax, %r10
    4918. 

  4918.         adcq	%rdx, %r11
    4919. 

  4919.         #  A[1] * B[1]
    4920. 

  4920.         movq	8(%rbx), %rax
    4921. 

  4921.         mulq	8(%rsi)
    4922. 

  4922.         xorq	%r12, %r12
    4923. 

  4923.         addq	%rax, %r10
    4924. 

  4924.         adcq	%rdx, %r11
    4925. 

  4925.         adcq	$0x00, %r12
    4926. 

  4926.         #  A[2] * B[0]
    4927. 

  4927.         movq	(%rbx), %rax
    4928. 

  4928.         mulq	16(%rsi)
    4929. 

  4929.         addq	%rax, %r10
    4930. 

  4930.         adcq	%rdx, %r11
    4931. 

  4931.         adcq	$0x00, %r12
    4932. 

  4932.         #  A[0] * B[3]
    4933. 

  4933.         movq	24(%rbx), %rax
    4934. 

  4934.         mulq	(%rsi)
    4935. 

  4935.         xorq	%r13, %r13
    4936. 

  4936.         addq	%rax, %r11
    4937. 

  4937.         adcq	%rdx, %r12
    4938. 

  4938.         adcq	$0x00, %r13
    4939. 

  4939.         #  A[1] * B[2]
    4940. 

  4940.         movq	16(%rbx), %rax
    4941. 

  4941.         mulq	8(%rsi)
    4942. 

  4942.         addq	%rax, %r11
    4943. 

  4943.         adcq	%rdx, %r12
    4944. 

  4944.         adcq	$0x00, %r13
    4945. 

  4945.         #  A[2] * B[1]
    4946. 

  4946.         movq	8(%rbx), %rax
    4947. 

  4947.         mulq	16(%rsi)
    4948. 

  4948.         addq	%rax, %r11
    4949. 

  4949.         adcq	%rdx, %r12
    4950. 

  4950.         adcq	$0x00, %r13
    4951. 

  4951.         #  A[3] * B[0]
    4952. 

  4952.         movq	(%rbx), %rax
    4953. 

  4953.         mulq	24(%rsi)
    4954. 

  4954.         addq	%rax, %r11
    4955. 

  4955.         adcq	%rdx, %r12
    4956. 

  4956.         adcq	$0x00, %r13
    4957. 

  4957.         #  A[1] * B[3]
    4958. 

  4958.         movq	24(%rbx), %rax
    4959. 

  4959.         mulq	8(%rsi)
    4960. 

  4960.         xorq	%r14, %r14
    4961. 

  4961.         addq	%rax, %r12
    4962. 

  4962.         adcq	%rdx, %r13
    4963. 

  4963.         adcq	$0x00, %r14
    4964. 

  4964.         #  A[2] * B[2]
    4965. 

  4965.         movq	16(%rbx), %rax
    4966. 

  4966.         mulq	16(%rsi)
    4967. 

  4967.         addq	%rax, %r12
    4968. 

  4968.         adcq	%rdx, %r13
    4969. 

  4969.         adcq	$0x00, %r14
    4970. 

  4970.         #  A[3] * B[1]
    4971. 

  4971.         movq	8(%rbx), %rax
    4972. 

  4972.         mulq	24(%rsi)
    4973. 

  4973.         addq	%rax, %r12
    4974. 

  4974.         adcq	%rdx, %r13
    4975. 

  4975.         adcq	$0x00, %r14
    4976. 

  4976.         #  A[2] * B[3]
    4977. 

  4977.         movq	24(%rbx), %rax
    4978. 

  4978.         mulq	16(%rsi)
    4979. 

  4979.         xorq	%r15, %r15
    4980. 

  4980.         addq	%rax, %r13
    4981. 

  4981.         adcq	%rdx, %r14
    4982. 

  4982.         adcq	$0x00, %r15
    4983. 

  4983.         #  A[3] * B[2]
    4984. 

  4984.         movq	16(%rbx), %rax
    4985. 

  4985.         mulq	24(%rsi)
    4986. 

  4986.         addq	%rax, %r13
    4987. 

  4987.         adcq	%rdx, %r14
    4988. 

  4988.         adcq	$0x00, %r15
    4989. 

  4989.         #  A[3] * B[3]
    4990. 

  4990.         movq	24(%rbx), %rax
    4991. 

  4991.         mulq	24(%rsi)
    4992. 

  4992.         addq	%rax, %r14
    4993. 

  4993.         adcq	%rdx, %r15
    4994. 

  4994.         # Reduce
    4995. 

  4995.         movq	$0x7fffffffffffffff, %rcx
    4996. 

  4996.         #  Move top half into t4-t7 and remove top bit from t3
    4997. 

  4997.         shldq	$0x01, %r14, %r15
    4998. 

  4998.         shldq	$0x01, %r13, %r14
    4999. 

  4999.         shldq	$0x01, %r12, %r13
    5000. 

  5000.         shldq	$0x01, %r11, %r12
    5001. 

  5001.         andq	%rcx, %r11
    5002. 

  5002.         #  Multiply top half by 19
    5003. 

  5003.         movq	$19, %rax
    5004. 

  5004.         mulq	%r12
    5005. 

  5005.         xorq	%r12, %r12
    5006. 

  5006.         addq	%rax, %r8
    5007. 

  5007.         movq	$19, %rax
    5008. 

  5008.         adcq	%rdx, %r12
    5009. 

  5009.         mulq	%r13
    5010. 

  5010.         xorq	%r13, %r13
    5011. 

  5011.         addq	%rax, %r9
    5012. 

  5012.         movq	$19, %rax
    5013. 

  5013.         adcq	%rdx, %r13
    5014. 

  5014.         mulq	%r14
    5015. 

  5015.         xorq	%r14, %r14
    5016. 

  5016.         addq	%rax, %r10
    5017. 

  5017.         movq	$19, %rax
    5018. 

  5018.         adcq	%rdx, %r14
    5019. 

  5019.         mulq	%r15
    5020. 

  5020.         #  Add remaining product results in
    5021. 

  5021.         addq	%r12, %r9
    5022. 

  5022.         adcq	%r13, %r10
    5023. 

  5023.         adcq	%r14, %r11
    5024. 

  5024.         adcq	%rax, %r11
    5025. 

  5025.         adcq	$0x00, %rdx
    5026. 

  5026.         #  Overflow
    5027. 

  5027.         shldq	$0x01, %r11, %rdx
    5028. 

  5028.         imulq	$19, %rdx, %rax
    5029. 

  5029.         andq	%rcx, %r11
    5030. 

  5030.         addq	%rax, %r8
    5031. 

  5031.         adcq	$0x00, %r9
    5032. 

  5032.         adcq	$0x00, %r10
    5033. 

  5033.         adcq	$0x00, %r11
    5034. 

  5034.         # Reduce if top bit set
    5035. 

  5035.         movq	%r11, %rdx
    5036. 

  5036.         shrq	$63, %rdx
    5037. 

  5037.         imulq	$19, %rdx, %rax
    5038. 

  5038.         andq	%rcx, %r11
    5039. 

  5039.         addq	%rax, %r8
    5040. 

  5040.         adcq	$0x00, %r9
    5041. 

  5041.         adcq	$0x00, %r10
    5042. 

  5042.         adcq	$0x00, %r11
    5043. 

  5043.         # Store
    5044. 

  5044.         movq	%r8, (%rdi)
    5045. 

  5045.         movq	%r9, 8(%rdi)
    5046. 

  5046.         movq	%r10, 16(%rdi)
    5047. 

  5047.         movq	%r11, 24(%rdi)
    5048. 

  5048.         addq	$40, %rsp
    5049. 

  5049.         popq	%r15
    5050. 

  5050.         popq	%r14
    5051. 

  5051.         popq	%r13
    5052. 

  5052.         popq	%r12
    5053. 

  5053.         popq	%rbx
    5054. 

  5054.         repz retq
    5055. 

  5055. #ifndef __APPLE__
    5056. 

  5056. .size	fe_ge_to_p2_x64,.-fe_ge_to_p2_x64
    5057. 

  5057. #endif /* __APPLE__ */
    5058. 

  5058. #ifndef __APPLE__
    5059. 

  5059. .text
    5060. 

  5060. .globl	fe_ge_to_p3_x64
    5061. 

  5061. .type	fe_ge_to_p3_x64,@function
    5062. 

  5062. .align	16
    5063. 

  5063. fe_ge_to_p3_x64:
    5064. 

  5064. #else
    5065. 

  5065. .section	__TEXT,__text
    5066. 

  5066. .globl	_fe_ge_to_p3_x64
    5067. 

  5067. .p2align	4
    5068. 

  5068. _fe_ge_to_p3_x64:
    5069. 

  5069. #endif /* __APPLE__ */
    5070. 

  5070.         pushq	%rbx
    5071. 

  5071.         pushq	%r12
    5072. 

  5072.         pushq	%r13
    5073. 

  5073.         pushq	%r14
    5074. 

  5074.         pushq	%r15
    5075. 

  5075.         subq	$40, %rsp
    5076. 

  5076.         movq	%rsi, (%rsp)
    5077. 

  5077.         movq	%rdx, 8(%rsp)
    5078. 

  5078.         movq	%rcx, 16(%rsp)
    5079. 

  5079.         movq	%r8, 24(%rsp)
    5080. 

  5080.         movq	%r9, 32(%rsp)
    5081. 

  5081.         movq	24(%rsp), %rsi
    5082. 

  5082.         movq	96(%rsp), %rbx
    5083. 

  5083.         # Multiply
    5084. 

  5084.         #  A[0] * B[0]
    5085. 

  5085.         movq	(%rbx), %rax
    5086. 

  5086.         mulq	(%rsi)
    5087. 

  5087.         movq	%rax, %r8
    5088. 

  5088.         movq	%rdx, %r9
    5089. 

  5089.         #  A[0] * B[1]
    5090. 

  5090.         movq	8(%rbx), %rax
    5091. 

  5091.         mulq	(%rsi)
    5092. 

  5092.         xorq	%r10, %r10
    5093. 

  5093.         addq	%rax, %r9
    5094. 

  5094.         adcq	%rdx, %r10
    5095. 

  5095.         #  A[1] * B[0]
    5096. 

  5096.         movq	(%rbx), %rax
    5097. 

  5097.         mulq	8(%rsi)
    5098. 

  5098.         xorq	%r11, %r11
    5099. 

  5099.         addq	%rax, %r9
    5100. 

  5100.         adcq	%rdx, %r10
    5101. 

  5101.         adcq	$0x00, %r11
    5102. 

  5102.         #  A[0] * B[2]
    5103. 

  5103.         movq	16(%rbx), %rax
    5104. 

  5104.         mulq	(%rsi)
    5105. 

  5105.         addq	%rax, %r10
    5106. 

  5106.         adcq	%rdx, %r11
    5107. 

  5107.         #  A[1] * B[1]
    5108. 

  5108.         movq	8(%rbx), %rax
    5109. 

  5109.         mulq	8(%rsi)
    5110. 

  5110.         xorq	%r12, %r12
    5111. 

  5111.         addq	%rax, %r10
    5112. 

  5112.         adcq	%rdx, %r11
    5113. 

  5113.         adcq	$0x00, %r12
    5114. 

  5114.         #  A[2] * B[0]
    5115. 

  5115.         movq	(%rbx), %rax
    5116. 

  5116.         mulq	16(%rsi)
    5117. 

  5117.         addq	%rax, %r10
    5118. 

  5118.         adcq	%rdx, %r11
    5119. 

  5119.         adcq	$0x00, %r12
    5120. 

  5120.         #  A[0] * B[3]
    5121. 

  5121.         movq	24(%rbx), %rax
    5122. 

  5122.         mulq	(%rsi)
    5123. 

  5123.         xorq	%r13, %r13
    5124. 

  5124.         addq	%rax, %r11
    5125. 

  5125.         adcq	%rdx, %r12
    5126. 

  5126.         adcq	$0x00, %r13
    5127. 

  5127.         #  A[1] * B[2]
    5128. 

  5128.         movq	16(%rbx), %rax
    5129. 

  5129.         mulq	8(%rsi)
    5130. 

  5130.         addq	%rax, %r11
    5131. 

  5131.         adcq	%rdx, %r12
    5132. 

  5132.         adcq	$0x00, %r13
    5133. 

  5133.         #  A[2] * B[1]
    5134. 

  5134.         movq	8(%rbx), %rax
    5135. 

  5135.         mulq	16(%rsi)
    5136. 

  5136.         addq	%rax, %r11
    5137. 

  5137.         adcq	%rdx, %r12
    5138. 

  5138.         adcq	$0x00, %r13
    5139. 

  5139.         #  A[3] * B[0]
    5140. 

  5140.         movq	(%rbx), %rax
    5141. 

  5141.         mulq	24(%rsi)
    5142. 

  5142.         addq	%rax, %r11
    5143. 

  5143.         adcq	%rdx, %r12
    5144. 

  5144.         adcq	$0x00, %r13
    5145. 

  5145.         #  A[1] * B[3]
    5146. 

  5146.         movq	24(%rbx), %rax
    5147. 

  5147.         mulq	8(%rsi)
    5148. 

  5148.         xorq	%r14, %r14
    5149. 

  5149.         addq	%rax, %r12
    5150. 

  5150.         adcq	%rdx, %r13
    5151. 

  5151.         adcq	$0x00, %r14
    5152. 

  5152.         #  A[2] * B[2]
    5153. 

  5153.         movq	16(%rbx), %rax
    5154. 

  5154.         mulq	16(%rsi)
    5155. 

  5155.         addq	%rax, %r12
    5156. 

  5156.         adcq	%rdx, %r13
    5157. 

  5157.         adcq	$0x00, %r14
    5158. 

  5158.         #  A[3] * B[1]
    5159. 

  5159.         movq	8(%rbx), %rax
    5160. 

  5160.         mulq	24(%rsi)
    5161. 

  5161.         addq	%rax, %r12
    5162. 

  5162.         adcq	%rdx, %r13
    5163. 

  5163.         adcq	$0x00, %r14
    5164. 

  5164.         #  A[2] * B[3]
    5165. 

  5165.         movq	24(%rbx), %rax
    5166. 

  5166.         mulq	16(%rsi)
    5167. 

  5167.         xorq	%r15, %r15
    5168. 

  5168.         addq	%rax, %r13
    5169. 

  5169.         adcq	%rdx, %r14
    5170. 

  5170.         adcq	$0x00, %r15
    5171. 

  5171.         #  A[3] * B[2]
    5172. 

  5172.         movq	16(%rbx), %rax
    5173. 

  5173.         mulq	24(%rsi)
    5174. 

  5174.         addq	%rax, %r13
    5175. 

  5175.         adcq	%rdx, %r14
    5176. 

  5176.         adcq	$0x00, %r15
    5177. 

  5177.         #  A[3] * B[3]
    5178. 

  5178.         movq	24(%rbx), %rax
    5179. 

  5179.         mulq	24(%rsi)
    5180. 

  5180.         addq	%rax, %r14
    5181. 

  5181.         adcq	%rdx, %r15
    5182. 

  5182.         # Reduce
    5183. 

  5183.         movq	$0x7fffffffffffffff, %rcx
    5184. 

  5184.         #  Move top half into t4-t7 and remove top bit from t3
    5185. 

  5185.         shldq	$0x01, %r14, %r15
    5186. 

  5186.         shldq	$0x01, %r13, %r14
    5187. 

  5187.         shldq	$0x01, %r12, %r13
    5188. 

  5188.         shldq	$0x01, %r11, %r12
    5189. 

  5189.         andq	%rcx, %r11
    5190. 

  5190.         #  Multiply top half by 19
    5191. 

  5191.         movq	$19, %rax
    5192. 

  5192.         mulq	%r12
    5193. 

  5193.         xorq	%r12, %r12
    5194. 

  5194.         addq	%rax, %r8
    5195. 

  5195.         movq	$19, %rax
    5196. 

  5196.         adcq	%rdx, %r12
    5197. 

  5197.         mulq	%r13
    5198. 

  5198.         xorq	%r13, %r13
    5199. 

  5199.         addq	%rax, %r9
    5200. 

  5200.         movq	$19, %rax
    5201. 

  5201.         adcq	%rdx, %r13
    5202. 

  5202.         mulq	%r14
    5203. 

  5203.         xorq	%r14, %r14
    5204. 

  5204.         addq	%rax, %r10
    5205. 

  5205.         movq	$19, %rax
    5206. 

  5206.         adcq	%rdx, %r14
    5207. 

  5207.         mulq	%r15
    5208. 

  5208.         #  Add remaining product results in
    5209. 

  5209.         addq	%r12, %r9
    5210. 

  5210.         adcq	%r13, %r10
    5211. 

  5211.         adcq	%r14, %r11
    5212. 

  5212.         adcq	%rax, %r11
    5213. 

  5213.         adcq	$0x00, %rdx
    5214. 

  5214.         #  Overflow
    5215. 

  5215.         shldq	$0x01, %r11, %rdx
    5216. 

  5216.         imulq	$19, %rdx, %rax
    5217. 

  5217.         andq	%rcx, %r11
    5218. 

  5218.         addq	%rax, %r8
    5219. 

  5219.         adcq	$0x00, %r9
    5220. 

  5220.         adcq	$0x00, %r10
    5221. 

  5221.         adcq	$0x00, %r11
    5222. 

  5222.         # Reduce if top bit set
    5223. 

  5223.         movq	%r11, %rdx
    5224. 

  5224.         shrq	$63, %rdx
    5225. 

  5225.         imulq	$19, %rdx, %rax
    5226. 

  5226.         andq	%rcx, %r11
    5227. 

  5227.         addq	%rax, %r8
    5228. 

  5228.         adcq	$0x00, %r9
    5229. 

  5229.         adcq	$0x00, %r10
    5230. 

  5230.         adcq	$0x00, %r11
    5231. 

  5231.         # Store
    5232. 

  5232.         movq	%r8, (%rdi)
    5233. 

  5233.         movq	%r9, 8(%rdi)
    5234. 

  5234.         movq	%r10, 16(%rdi)
    5235. 

  5235.         movq	%r11, 24(%rdi)
    5236. 

  5236.         movq	(%rsp), %rdi
    5237. 

  5237.         movq	32(%rsp), %rsi
    5238. 

  5238.         movq	88(%rsp), %rbx
    5239. 

  5239.         # Multiply
    5240. 

  5240.         #  A[0] * B[0]
    5241. 

  5241.         movq	(%rbx), %rax
    5242. 

  5242.         mulq	(%rsi)
    5243. 

  5243.         movq	%rax, %r8
    5244. 

  5244.         movq	%rdx, %r9
    5245. 

  5245.         #  A[0] * B[1]
    5246. 

  5246.         movq	8(%rbx), %rax
    5247. 

  5247.         mulq	(%rsi)
    5248. 

  5248.         xorq	%r10, %r10
    5249. 

  5249.         addq	%rax, %r9
    5250. 

  5250.         adcq	%rdx, %r10
    5251. 

  5251.         #  A[1] * B[0]
    5252. 

  5252.         movq	(%rbx), %rax
    5253. 

  5253.         mulq	8(%rsi)
    5254. 

  5254.         xorq	%r11, %r11
    5255. 

  5255.         addq	%rax, %r9
    5256. 

  5256.         adcq	%rdx, %r10
    5257. 

  5257.         adcq	$0x00, %r11
    5258. 

  5258.         #  A[0] * B[2]
    5259. 

  5259.         movq	16(%rbx), %rax
    5260. 

  5260.         mulq	(%rsi)
    5261. 

  5261.         addq	%rax, %r10
    5262. 

  5262.         adcq	%rdx, %r11
    5263. 

  5263.         #  A[1] * B[1]
    5264. 

  5264.         movq	8(%rbx), %rax
    5265. 

  5265.         mulq	8(%rsi)
    5266. 

  5266.         xorq	%r12, %r12
    5267. 

  5267.         addq	%rax, %r10
    5268. 

  5268.         adcq	%rdx, %r11
    5269. 

  5269.         adcq	$0x00, %r12
    5270. 

  5270.         #  A[2] * B[0]
    5271. 

  5271.         movq	(%rbx), %rax
    5272. 

  5272.         mulq	16(%rsi)
    5273. 

  5273.         addq	%rax, %r10
    5274. 

  5274.         adcq	%rdx, %r11
    5275. 

  5275.         adcq	$0x00, %r12
    5276. 

  5276.         #  A[0] * B[3]
    5277. 

  5277.         movq	24(%rbx), %rax
    5278. 

  5278.         mulq	(%rsi)
    5279. 

  5279.         xorq	%r13, %r13
    5280. 

  5280.         addq	%rax, %r11
    5281. 

  5281.         adcq	%rdx, %r12
    5282. 

  5282.         adcq	$0x00, %r13
    5283. 

  5283.         #  A[1] * B[2]
    5284. 

  5284.         movq	16(%rbx), %rax
    5285. 

  5285.         mulq	8(%rsi)
    5286. 

  5286.         addq	%rax, %r11
    5287. 

  5287.         adcq	%rdx, %r12
    5288. 

  5288.         adcq	$0x00, %r13
    5289. 

  5289.         #  A[2] * B[1]
    5290. 

  5290.         movq	8(%rbx), %rax
    5291. 

  5291.         mulq	16(%rsi)
    5292. 

  5292.         addq	%rax, %r11
    5293. 

  5293.         adcq	%rdx, %r12
    5294. 

  5294.         adcq	$0x00, %r13
    5295. 

  5295.         #  A[3] * B[0]
    5296. 

  5296.         movq	(%rbx), %rax
    5297. 

  5297.         mulq	24(%rsi)
    5298. 

  5298.         addq	%rax, %r11
    5299. 

  5299.         adcq	%rdx, %r12
    5300. 

  5300.         adcq	$0x00, %r13
    5301. 

  5301.         #  A[1] * B[3]
    5302. 

  5302.         movq	24(%rbx), %rax
    5303. 

  5303.         mulq	8(%rsi)
    5304. 

  5304.         xorq	%r14, %r14
    5305. 

  5305.         addq	%rax, %r12
    5306. 

  5306.         adcq	%rdx, %r13
    5307. 

  5307.         adcq	$0x00, %r14
    5308. 

  5308.         #  A[2] * B[2]
    5309. 

  5309.         movq	16(%rbx), %rax
    5310. 

  5310.         mulq	16(%rsi)
    5311. 

  5311.         addq	%rax, %r12
    5312. 

  5312.         adcq	%rdx, %r13
    5313. 

  5313.         adcq	$0x00, %r14
    5314. 

  5314.         #  A[3] * B[1]
    5315. 

  5315.         movq	8(%rbx), %rax
    5316. 

  5316.         mulq	24(%rsi)
    5317. 

  5317.         addq	%rax, %r12
    5318. 

  5318.         adcq	%rdx, %r13
    5319. 

  5319.         adcq	$0x00, %r14
    5320. 

  5320.         #  A[2] * B[3]
    5321. 

  5321.         movq	24(%rbx), %rax
    5322. 

  5322.         mulq	16(%rsi)
    5323. 

  5323.         xorq	%r15, %r15
    5324. 

  5324.         addq	%rax, %r13
    5325. 

  5325.         adcq	%rdx, %r14
    5326. 

  5326.         adcq	$0x00, %r15
    5327. 

  5327.         #  A[3] * B[2]
    5328. 

  5328.         movq	16(%rbx), %rax
    5329. 

  5329.         mulq	24(%rsi)
    5330. 

  5330.         addq	%rax, %r13
    5331. 

  5331.         adcq	%rdx, %r14
    5332. 

  5332.         adcq	$0x00, %r15
    5333. 

  5333.         #  A[3] * B[3]
    5334. 

  5334.         movq	24(%rbx), %rax
    5335. 

  5335.         mulq	24(%rsi)
    5336. 

  5336.         addq	%rax, %r14
    5337. 

  5337.         adcq	%rdx, %r15
    5338. 

  5338.         # Reduce
    5339. 

  5339.         movq	$0x7fffffffffffffff, %rcx
    5340. 

  5340.         #  Move top half into t4-t7 and remove top bit from t3
    5341. 

  5341.         shldq	$0x01, %r14, %r15
    5342. 

  5342.         shldq	$0x01, %r13, %r14
    5343. 

  5343.         shldq	$0x01, %r12, %r13
    5344. 

  5344.         shldq	$0x01, %r11, %r12
    5345. 

  5345.         andq	%rcx, %r11
    5346. 

  5346.         #  Multiply top half by 19
    5347. 

  5347.         movq	$19, %rax
    5348. 

  5348.         mulq	%r12
    5349. 

  5349.         xorq	%r12, %r12
    5350. 

  5350.         addq	%rax, %r8
    5351. 

  5351.         movq	$19, %rax
    5352. 

  5352.         adcq	%rdx, %r12
    5353. 

  5353.         mulq	%r13
    5354. 

  5354.         xorq	%r13, %r13
    5355. 

  5355.         addq	%rax, %r9
    5356. 

  5356.         movq	$19, %rax
    5357. 

  5357.         adcq	%rdx, %r13
    5358. 

  5358.         mulq	%r14
    5359. 

  5359.         xorq	%r14, %r14
    5360. 

  5360.         addq	%rax, %r10
    5361. 

  5361.         movq	$19, %rax
    5362. 

  5362.         adcq	%rdx, %r14
    5363. 

  5363.         mulq	%r15
    5364. 

  5364.         #  Add remaining product results in
    5365. 

  5365.         addq	%r12, %r9
    5366. 

  5366.         adcq	%r13, %r10
    5367. 

  5367.         adcq	%r14, %r11
    5368. 

  5368.         adcq	%rax, %r11
    5369. 

  5369.         adcq	$0x00, %rdx
    5370. 

  5370.         #  Overflow
    5371. 

  5371.         shldq	$0x01, %r11, %rdx
    5372. 

  5372.         imulq	$19, %rdx, %rax
    5373. 

  5373.         andq	%rcx, %r11
    5374. 

  5374.         addq	%rax, %r8
    5375. 

  5375.         adcq	$0x00, %r9
    5376. 

  5376.         adcq	$0x00, %r10
    5377. 

  5377.         adcq	$0x00, %r11
    5378. 

  5378.         # Reduce if top bit set
    5379. 

  5379.         movq	%r11, %rdx
    5380. 

  5380.         shrq	$63, %rdx
    5381. 

  5381.         imulq	$19, %rdx, %rax
    5382. 

  5382.         andq	%rcx, %r11
    5383. 

  5383.         addq	%rax, %r8
    5384. 

  5384.         adcq	$0x00, %r9
    5385. 

  5385.         adcq	$0x00, %r10
    5386. 

  5386.         adcq	$0x00, %r11
    5387. 

  5387.         # Store
    5388. 

  5388.         movq	%r8, (%rdi)
    5389. 

  5389.         movq	%r9, 8(%rdi)
    5390. 

  5390.         movq	%r10, 16(%rdi)
    5391. 

  5391.         movq	%r11, 24(%rdi)
    5392. 

  5392.         movq	8(%rsp), %rdi
    5393. 

  5393.         movq	88(%rsp), %rsi
    5394. 

  5394.         movq	96(%rsp), %rbx
    5395. 

  5395.         # Multiply
    5396. 

  5396.         #  A[0] * B[0]
    5397. 

  5397.         movq	(%rbx), %rax
    5398. 

  5398.         mulq	(%rsi)
    5399. 

  5399.         movq	%rax, %r8
    5400. 

  5400.         movq	%rdx, %r9
    5401. 

  5401.         #  A[0] * B[1]
    5402. 

  5402.         movq	8(%rbx), %rax
    5403. 

  5403.         mulq	(%rsi)
    5404. 

  5404.         xorq	%r10, %r10
    5405. 

  5405.         addq	%rax, %r9
    5406. 

  5406.         adcq	%rdx, %r10
    5407. 

  5407.         #  A[1] * B[0]
    5408. 

  5408.         movq	(%rbx), %rax
    5409. 

  5409.         mulq	8(%rsi)
    5410. 

  5410.         xorq	%r11, %r11
    5411. 

  5411.         addq	%rax, %r9
    5412. 

  5412.         adcq	%rdx, %r10
    5413. 

  5413.         adcq	$0x00, %r11
    5414. 

  5414.         #  A[0] * B[2]
    5415. 

  5415.         movq	16(%rbx), %rax
    5416. 

  5416.         mulq	(%rsi)
    5417. 

  5417.         addq	%rax, %r10
    5418. 

  5418.         adcq	%rdx, %r11
    5419. 

  5419.         #  A[1] * B[1]
    5420. 

  5420.         movq	8(%rbx), %rax
    5421. 

  5421.         mulq	8(%rsi)
    5422. 

  5422.         xorq	%r12, %r12
    5423. 

  5423.         addq	%rax, %r10
    5424. 

  5424.         adcq	%rdx, %r11
    5425. 

  5425.         adcq	$0x00, %r12
    5426. 

  5426.         #  A[2] * B[0]
    5427. 

  5427.         movq	(%rbx), %rax
    5428. 

  5428.         mulq	16(%rsi)
    5429. 

  5429.         addq	%rax, %r10
    5430. 

  5430.         adcq	%rdx, %r11
    5431. 

  5431.         adcq	$0x00, %r12
    5432. 

  5432.         #  A[0] * B[3]
    5433. 

  5433.         movq	24(%rbx), %rax
    5434. 

  5434.         mulq	(%rsi)
    5435. 

  5435.         xorq	%r13, %r13
    5436. 

  5436.         addq	%rax, %r11
    5437. 

  5437.         adcq	%rdx, %r12
    5438. 

  5438.         adcq	$0x00, %r13
    5439. 

  5439.         #  A[1] * B[2]
    5440. 

  5440.         movq	16(%rbx), %rax
    5441. 

  5441.         mulq	8(%rsi)
    5442. 

  5442.         addq	%rax, %r11
    5443. 

  5443.         adcq	%rdx, %r12
    5444. 

  5444.         adcq	$0x00, %r13
    5445. 

  5445.         #  A[2] * B[1]
    5446. 

  5446.         movq	8(%rbx), %rax
    5447. 

  5447.         mulq	16(%rsi)
    5448. 

  5448.         addq	%rax, %r11
    5449. 

  5449.         adcq	%rdx, %r12
    5450. 

  5450.         adcq	$0x00, %r13
    5451. 

  5451.         #  A[3] * B[0]
    5452. 

  5452.         movq	(%rbx), %rax
    5453. 

  5453.         mulq	24(%rsi)
    5454. 

  5454.         addq	%rax, %r11
    5455. 

  5455.         adcq	%rdx, %r12
    5456. 

  5456.         adcq	$0x00, %r13
    5457. 

  5457.         #  A[1] * B[3]
    5458. 

  5458.         movq	24(%rbx), %rax
    5459. 

  5459.         mulq	8(%rsi)
    5460. 

  5460.         xorq	%r14, %r14
    5461. 

  5461.         addq	%rax, %r12
    5462. 

  5462.         adcq	%rdx, %r13
    5463. 

  5463.         adcq	$0x00, %r14
    5464. 

  5464.         #  A[2] * B[2]
    5465. 

  5465.         movq	16(%rbx), %rax
    5466. 

  5466.         mulq	16(%rsi)
    5467. 

  5467.         addq	%rax, %r12
    5468. 

  5468.         adcq	%rdx, %r13
    5469. 

  5469.         adcq	$0x00, %r14
    5470. 

  5470.         #  A[3] * B[1]
    5471. 

  5471.         movq	8(%rbx), %rax
    5472. 

  5472.         mulq	24(%rsi)
    5473. 

  5473.         addq	%rax, %r12
    5474. 

  5474.         adcq	%rdx, %r13
    5475. 

  5475.         adcq	$0x00, %r14
    5476. 

  5476.         #  A[2] * B[3]
    5477. 

  5477.         movq	24(%rbx), %rax
    5478. 

  5478.         mulq	16(%rsi)
    5479. 

  5479.         xorq	%r15, %r15
    5480. 

  5480.         addq	%rax, %r13
    5481. 

  5481.         adcq	%rdx, %r14
    5482. 

  5482.         adcq	$0x00, %r15
    5483. 

  5483.         #  A[3] * B[2]
    5484. 

  5484.         movq	16(%rbx), %rax
    5485. 

  5485.         mulq	24(%rsi)
    5486. 

  5486.         addq	%rax, %r13
    5487. 

  5487.         adcq	%rdx, %r14
    5488. 

  5488.         adcq	$0x00, %r15
    5489. 

  5489.         #  A[3] * B[3]
    5490. 

  5490.         movq	24(%rbx), %rax
    5491. 

  5491.         mulq	24(%rsi)
    5492. 

  5492.         addq	%rax, %r14
    5493. 

  5493.         adcq	%rdx, %r15
    5494. 

  5494.         # Reduce
    5495. 

  5495.         movq	$0x7fffffffffffffff, %rcx
    5496. 

  5496.         #  Move top half into t4-t7 and remove top bit from t3
    5497. 

  5497.         shldq	$0x01, %r14, %r15
    5498. 

  5498.         shldq	$0x01, %r13, %r14
    5499. 

  5499.         shldq	$0x01, %r12, %r13
    5500. 

  5500.         shldq	$0x01, %r11, %r12
    5501. 

  5501.         andq	%rcx, %r11
    5502. 

  5502.         #  Multiply top half by 19
    5503. 

  5503.         movq	$19, %rax
    5504. 

  5504.         mulq	%r12
    5505. 

  5505.         xorq	%r12, %r12
    5506. 

  5506.         addq	%rax, %r8
    5507. 

  5507.         movq	$19, %rax
    5508. 

  5508.         adcq	%rdx, %r12
    5509. 

  5509.         mulq	%r13
    5510. 

  5510.         xorq	%r13, %r13
    5511. 

  5511.         addq	%rax, %r9
    5512. 

  5512.         movq	$19, %rax
    5513. 

  5513.         adcq	%rdx, %r13
    5514. 

  5514.         mulq	%r14
    5515. 

  5515.         xorq	%r14, %r14
    5516. 

  5516.         addq	%rax, %r10
    5517. 

  5517.         movq	$19, %rax
    5518. 

  5518.         adcq	%rdx, %r14
    5519. 

  5519.         mulq	%r15
    5520. 

  5520.         #  Add remaining product results in
    5521. 

  5521.         addq	%r12, %r9
    5522. 

  5522.         adcq	%r13, %r10
    5523. 

  5523.         adcq	%r14, %r11
    5524. 

  5524.         adcq	%rax, %r11
    5525. 

  5525.         adcq	$0x00, %rdx
    5526. 

  5526.         #  Overflow
    5527. 

  5527.         shldq	$0x01, %r11, %rdx
    5528. 

  5528.         imulq	$19, %rdx, %rax
    5529. 

  5529.         andq	%rcx, %r11
    5530. 

  5530.         addq	%rax, %r8
    5531. 

  5531.         adcq	$0x00, %r9
    5532. 

  5532.         adcq	$0x00, %r10
    5533. 

  5533.         adcq	$0x00, %r11
    5534. 

  5534.         # Reduce if top bit set
    5535. 

  5535.         movq	%r11, %rdx
    5536. 

  5536.         shrq	$63, %rdx
    5537. 

  5537.         imulq	$19, %rdx, %rax
    5538. 

  5538.         andq	%rcx, %r11
    5539. 

  5539.         addq	%rax, %r8
    5540. 

  5540.         adcq	$0x00, %r9
    5541. 

  5541.         adcq	$0x00, %r10
    5542. 

  5542.         adcq	$0x00, %r11
    5543. 

  5543.         # Store
    5544. 

  5544.         movq	%r8, (%rdi)
    5545. 

  5545.         movq	%r9, 8(%rdi)
    5546. 

  5546.         movq	%r10, 16(%rdi)
    5547. 

  5547.         movq	%r11, 24(%rdi)
    5548. 

  5548.         movq	16(%rsp), %rdi
    5549. 

  5549.         movq	24(%rsp), %rsi
    5550. 

  5550.         movq	32(%rsp), %rbx
    5551. 

  5551.         # Multiply
    5552. 

  5552.         #  A[0] * B[0]
    5553. 

  5553.         movq	(%rbx), %rax
    5554. 

  5554.         mulq	(%rsi)
    5555. 

  5555.         movq	%rax, %r8
    5556. 

  5556.         movq	%rdx, %r9
    5557. 

  5557.         #  A[0] * B[1]
    5558. 

  5558.         movq	8(%rbx), %rax
    5559. 

  5559.         mulq	(%rsi)
    5560. 

  5560.         xorq	%r10, %r10
    5561. 

  5561.         addq	%rax, %r9
    5562. 

  5562.         adcq	%rdx, %r10
    5563. 

  5563.         #  A[1] * B[0]
    5564. 

  5564.         movq	(%rbx), %rax
    5565. 

  5565.         mulq	8(%rsi)
    5566. 

  5566.         xorq	%r11, %r11
    5567. 

  5567.         addq	%rax, %r9
    5568. 

  5568.         adcq	%rdx, %r10
    5569. 

  5569.         adcq	$0x00, %r11
    5570. 

  5570.         #  A[0] * B[2]
    5571. 

  5571.         movq	16(%rbx), %rax
    5572. 

  5572.         mulq	(%rsi)
    5573. 

  5573.         addq	%rax, %r10
    5574. 

  5574.         adcq	%rdx, %r11
    5575. 

  5575.         #  A[1] * B[1]
    5576. 

  5576.         movq	8(%rbx), %rax
    5577. 

  5577.         mulq	8(%rsi)
    5578. 

  5578.         xorq	%r12, %r12
    5579. 

  5579.         addq	%rax, %r10
    5580. 

  5580.         adcq	%rdx, %r11
    5581. 

  5581.         adcq	$0x00, %r12
    5582. 

  5582.         #  A[2] * B[0]
    5583. 

  5583.         movq	(%rbx), %rax
    5584. 

  5584.         mulq	16(%rsi)
    5585. 

  5585.         addq	%rax, %r10
    5586. 

  5586.         adcq	%rdx, %r11
    5587. 

  5587.         adcq	$0x00, %r12
    5588. 

  5588.         #  A[0] * B[3]
    5589. 

  5589.         movq	24(%rbx), %rax
    5590. 

  5590.         mulq	(%rsi)
    5591. 

  5591.         xorq	%r13, %r13
    5592. 

  5592.         addq	%rax, %r11
    5593. 

  5593.         adcq	%rdx, %r12
    5594. 

  5594.         adcq	$0x00, %r13
    5595. 

  5595.         #  A[1] * B[2]
    5596. 

  5596.         movq	16(%rbx), %rax
    5597. 

  5597.         mulq	8(%rsi)
    5598. 

  5598.         addq	%rax, %r11
    5599. 

  5599.         adcq	%rdx, %r12
    5600. 

  5600.         adcq	$0x00, %r13
    5601. 

  5601.         #  A[2] * B[1]
    5602. 

  5602.         movq	8(%rbx), %rax
    5603. 

  5603.         mulq	16(%rsi)
    5604. 

  5604.         addq	%rax, %r11
    5605. 

  5605.         adcq	%rdx, %r12
    5606. 

  5606.         adcq	$0x00, %r13
    5607. 

  5607.         #  A[3] * B[0]
    5608. 

  5608.         movq	(%rbx), %rax
    5609. 

  5609.         mulq	24(%rsi)
    5610. 

  5610.         addq	%rax, %r11
    5611. 

  5611.         adcq	%rdx, %r12
    5612. 

  5612.         adcq	$0x00, %r13
    5613. 

  5613.         #  A[1] * B[3]
    5614. 

  5614.         movq	24(%rbx), %rax
    5615. 

  5615.         mulq	8(%rsi)
    5616. 

  5616.         xorq	%r14, %r14
    5617. 

  5617.         addq	%rax, %r12
    5618. 

  5618.         adcq	%rdx, %r13
    5619. 

  5619.         adcq	$0x00, %r14
    5620. 

  5620.         #  A[2] * B[2]
    5621. 

  5621.         movq	16(%rbx), %rax
    5622. 

  5622.         mulq	16(%rsi)
    5623. 

  5623.         addq	%rax, %r12
    5624. 

  5624.         adcq	%rdx, %r13
    5625. 

  5625.         adcq	$0x00, %r14
    5626. 

  5626.         #  A[3] * B[1]
    5627. 

  5627.         movq	8(%rbx), %rax
    5628. 

  5628.         mulq	24(%rsi)
    5629. 

  5629.         addq	%rax, %r12
    5630. 

  5630.         adcq	%rdx, %r13
    5631. 

  5631.         adcq	$0x00, %r14
    5632. 

  5632.         #  A[2] * B[3]
    5633. 

  5633.         movq	24(%rbx), %rax
    5634. 

  5634.         mulq	16(%rsi)
    5635. 

  5635.         xorq	%r15, %r15
    5636. 

  5636.         addq	%rax, %r13
    5637. 

  5637.         adcq	%rdx, %r14
    5638. 

  5638.         adcq	$0x00, %r15
    5639. 

  5639.         #  A[3] * B[2]
    5640. 

  5640.         movq	16(%rbx), %rax
    5641. 

  5641.         mulq	24(%rsi)
    5642. 

  5642.         addq	%rax, %r13
    5643. 

  5643.         adcq	%rdx, %r14
    5644. 

  5644.         adcq	$0x00, %r15
    5645. 

  5645.         #  A[3] * B[3]
    5646. 

  5646.         movq	24(%rbx), %rax
    5647. 

  5647.         mulq	24(%rsi)
    5648. 

  5648.         addq	%rax, %r14
    5649. 

  5649.         adcq	%rdx, %r15
    5650. 

  5650.         # Reduce
    5651. 

  5651.         movq	$0x7fffffffffffffff, %rcx
    5652. 

  5652.         #  Move top half into t4-t7 and remove top bit from t3
    5653. 

  5653.         shldq	$0x01, %r14, %r15
    5654. 

  5654.         shldq	$0x01, %r13, %r14
    5655. 

  5655.         shldq	$0x01, %r12, %r13
    5656. 

  5656.         shldq	$0x01, %r11, %r12
    5657. 

  5657.         andq	%rcx, %r11
    5658. 

  5658.         #  Multiply top half by 19
    5659. 

  5659.         movq	$19, %rax
    5660. 

  5660.         mulq	%r12
    5661. 

  5661.         xorq	%r12, %r12
    5662. 

  5662.         addq	%rax, %r8
    5663. 

  5663.         movq	$19, %rax
    5664. 

  5664.         adcq	%rdx, %r12
    5665. 

  5665.         mulq	%r13
    5666. 

  5666.         xorq	%r13, %r13
    5667. 

  5667.         addq	%rax, %r9
    5668. 

  5668.         movq	$19, %rax
    5669. 

  5669.         adcq	%rdx, %r13
    5670. 

  5670.         mulq	%r14
    5671. 

  5671.         xorq	%r14, %r14
    5672. 

  5672.         addq	%rax, %r10
    5673. 

  5673.         movq	$19, %rax
    5674. 

  5674.         adcq	%rdx, %r14
    5675. 

  5675.         mulq	%r15
    5676. 

  5676.         #  Add remaining product results in
    5677. 

  5677.         addq	%r12, %r9
    5678. 

  5678.         adcq	%r13, %r10
    5679. 

  5679.         adcq	%r14, %r11
    5680. 

  5680.         adcq	%rax, %r11
    5681. 

  5681.         adcq	$0x00, %rdx
    5682. 

  5682.         #  Overflow
    5683. 

  5683.         shldq	$0x01, %r11, %rdx
    5684. 

  5684.         imulq	$19, %rdx, %rax
    5685. 

  5685.         andq	%rcx, %r11
    5686. 

  5686.         addq	%rax, %r8
    5687. 

  5687.         adcq	$0x00, %r9
    5688. 

  5688.         adcq	$0x00, %r10
    5689. 

  5689.         adcq	$0x00, %r11
    5690. 

  5690.         # Reduce if top bit set
    5691. 

  5691.         movq	%r11, %rdx
    5692. 

  5692.         shrq	$63, %rdx
    5693. 

  5693.         imulq	$19, %rdx, %rax
    5694. 

  5694.         andq	%rcx, %r11
    5695. 

  5695.         addq	%rax, %r8
    5696. 

  5696.         adcq	$0x00, %r9
    5697. 

  5697.         adcq	$0x00, %r10
    5698. 

  5698.         adcq	$0x00, %r11
    5699. 

  5699.         # Store
    5700. 

  5700.         movq	%r8, (%rdi)
    5701. 

  5701.         movq	%r9, 8(%rdi)
    5702. 

  5702.         movq	%r10, 16(%rdi)
    5703. 

  5703.         movq	%r11, 24(%rdi)
    5704. 

  5704.         addq	$40, %rsp
    5705. 

  5705.         popq	%r15
    5706. 

  5706.         popq	%r14
    5707. 

  5707.         popq	%r13
    5708. 

  5708.         popq	%r12
    5709. 

  5709.         popq	%rbx
    5710. 

  5710.         repz retq
    5711. 

  5711. #ifndef __APPLE__
    5712. 

  5712. .size	fe_ge_to_p3_x64,.-fe_ge_to_p3_x64
    5713. 

  5713. #endif /* __APPLE__ */
    5714. 

  5714. #ifndef __APPLE__
    5715. 

  5715. .text
    5716. 

  5716. .globl	fe_ge_dbl_x64
    5717. 

  5717. .type	fe_ge_dbl_x64,@function
    5718. 

  5718. .align	16
    5719. 

  5719. fe_ge_dbl_x64:
    5720. 

  5720. #else
    5721. 

  5721. .section	__TEXT,__text
    5722. 

  5722. .globl	_fe_ge_dbl_x64
    5723. 

  5723. .p2align	4
    5724. 

  5724. _fe_ge_dbl_x64:
    5725. 

  5725. #endif /* __APPLE__ */
    5726. 

  5726.         pushq	%rbx
    5727. 

  5727.         pushq	%r12
    5728. 

  5728.         pushq	%r13
    5729. 

  5729.         pushq	%r14
    5730. 

  5730.         pushq	%r15
    5731. 

  5731.         subq	$0x50, %rsp
    5732. 

  5732.         movq	%rdi, (%rsp)
    5733. 

  5733.         movq	%rsi, 8(%rsp)
    5734. 

  5734.         movq	%rdx, 16(%rsp)
    5735. 

  5735.         movq	%rcx, 24(%rsp)
    5736. 

  5736.         movq	%r8, 32(%rsp)
    5737. 

  5737.         movq	%r9, 40(%rsp)
    5738. 

  5738.         movq	(%rsp), %rdi
    5739. 

  5739.         movq	32(%rsp), %rsi
    5740. 

  5740.         # Square
    5741. 

  5741.         #  A[0] * A[1]
    5742. 

  5742.         movq	(%rsi), %rax
    5743. 

  5743.         mulq	8(%rsi)
    5744. 

  5744.         movq	%rax, %r9
    5745. 

  5745.         movq	%rdx, %r10
    5746. 

  5746.         #  A[0] * A[2]
    5747. 

  5747.         movq	(%rsi), %rax
    5748. 

  5748.         mulq	16(%rsi)
    5749. 

  5749.         xorq	%r11, %r11
    5750. 

  5750.         addq	%rax, %r10
    5751. 

  5751.         adcq	%rdx, %r11
    5752. 

  5752.         #  A[0] * A[3]
    5753. 

  5753.         movq	(%rsi), %rax
    5754. 

  5754.         mulq	24(%rsi)
    5755. 

  5755.         xorq	%r12, %r12
    5756. 

  5756.         addq	%rax, %r11
    5757. 

  5757.         adcq	%rdx, %r12
    5758. 

  5758.         #  A[1] * A[2]
    5759. 

  5759.         movq	8(%rsi), %rax
    5760. 

  5760.         mulq	16(%rsi)
    5761. 

  5761.         xorq	%r13, %r13
    5762. 

  5762.         addq	%rax, %r11
    5763. 

  5763.         adcq	%rdx, %r12
    5764. 

  5764.         adcq	$0x00, %r13
    5765. 

  5765.         #  A[1] * A[3]
    5766. 

  5766.         movq	8(%rsi), %rax
    5767. 

  5767.         mulq	24(%rsi)
    5768. 

  5768.         addq	%rax, %r12
    5769. 

  5769.         adcq	%rdx, %r13
    5770. 

  5770.         #  A[2] * A[3]
    5771. 

  5771.         movq	16(%rsi), %rax
    5772. 

  5772.         mulq	24(%rsi)
    5773. 

  5773.         xorq	%r14, %r14
    5774. 

  5774.         addq	%rax, %r13
    5775. 

  5775.         adcq	%rdx, %r14
    5776. 

  5776.         # Double
    5777. 

  5777.         xorq	%r15, %r15
    5778. 

  5778.         addq	%r9, %r9
    5779. 

  5779.         adcq	%r10, %r10
    5780. 

  5780.         adcq	%r11, %r11
    5781. 

  5781.         adcq	%r12, %r12
    5782. 

  5782.         adcq	%r13, %r13
    5783. 

  5783.         adcq	%r14, %r14
    5784. 

  5784.         adcq	$0x00, %r15
    5785. 

  5785.         #  A[0] * A[0]
    5786. 

  5786.         movq	(%rsi), %rax
    5787. 

  5787.         mulq	%rax
    5788. 

  5788.         movq	%rax, %r8
    5789. 

  5789.         movq	%rdx, %rcx
    5790. 

  5790.         #  A[1] * A[1]
    5791. 

  5791.         movq	8(%rsi), %rax
    5792. 

  5792.         mulq	%rax
    5793. 

  5793.         addq	%rcx, %r9
    5794. 

  5794.         adcq	%rax, %r10
    5795. 

  5795.         adcq	$0x00, %rdx
    5796. 

  5796.         movq	%rdx, %rcx
    5797. 

  5797.         #  A[2] * A[2]
    5798. 

  5798.         movq	16(%rsi), %rax
    5799. 

  5799.         mulq	%rax
    5800. 

  5800.         addq	%rcx, %r11
    5801. 

  5801.         adcq	%rax, %r12
    5802. 

  5802.         adcq	$0x00, %rdx
    5803. 

  5803.         movq	%rdx, %rcx
    5804. 

  5804.         #  A[3] * A[3]
    5805. 

  5805.         movq	24(%rsi), %rax
    5806. 

  5806.         mulq	%rax
    5807. 

  5807.         addq	%rax, %r14
    5808. 

  5808.         adcq	%rdx, %r15
    5809. 

  5809.         addq	%rcx, %r13
    5810. 

  5810.         adcq	$0x00, %r14
    5811. 

  5811.         adcq	$0x00, %r15
    5812. 

  5812.         # Reduce
    5813. 

  5813.         movq	$0x7fffffffffffffff, %rcx
    5814. 

  5814.         #  Move top half into t4-t7 and remove top bit from t3
    5815. 

  5815.         shldq	$0x01, %r14, %r15
    5816. 

  5816.         shldq	$0x01, %r13, %r14
    5817. 

  5817.         shldq	$0x01, %r12, %r13
    5818. 

  5818.         shldq	$0x01, %r11, %r12
    5819. 

  5819.         andq	%rcx, %r11
    5820. 

  5820.         #  Multiply top half by 19
    5821. 

  5821.         movq	$19, %rax
    5822. 

  5822.         mulq	%r12
    5823. 

  5823.         xorq	%r12, %r12
    5824. 

  5824.         addq	%rax, %r8
    5825. 

  5825.         movq	$19, %rax
    5826. 

  5826.         adcq	%rdx, %r12
    5827. 

  5827.         mulq	%r13
    5828. 

  5828.         xorq	%r13, %r13
    5829. 

  5829.         addq	%rax, %r9
    5830. 

  5830.         movq	$19, %rax
    5831. 

  5831.         adcq	%rdx, %r13
    5832. 

  5832.         mulq	%r14
    5833. 

  5833.         xorq	%r14, %r14
    5834. 

  5834.         addq	%rax, %r10
    5835. 

  5835.         movq	$19, %rax
    5836. 

  5836.         adcq	%rdx, %r14
    5837. 

  5837.         mulq	%r15
    5838. 

  5838.         #  Add remaining product results in
    5839. 

  5839.         addq	%r12, %r9
    5840. 

  5840.         adcq	%r13, %r10
    5841. 

  5841.         adcq	%r14, %r11
    5842. 

  5842.         adcq	%rax, %r11
    5843. 

  5843.         adcq	$0x00, %rdx
    5844. 

  5844.         #  Overflow
    5845. 

  5845.         shldq	$0x01, %r11, %rdx
    5846. 

  5846.         imulq	$19, %rdx, %rax
    5847. 

  5847.         andq	%rcx, %r11
    5848. 

  5848.         addq	%rax, %r8
    5849. 

  5849.         adcq	$0x00, %r9
    5850. 

  5850.         adcq	$0x00, %r10
    5851. 

  5851.         adcq	$0x00, %r11
    5852. 

  5852.         # Reduce if top bit set
    5853. 

  5853.         movq	%r11, %rdx
    5854. 

  5854.         shrq	$63, %rdx
    5855. 

  5855.         imulq	$19, %rdx, %rax
    5856. 

  5856.         andq	%rcx, %r11
    5857. 

  5857.         addq	%rax, %r8
    5858. 

  5858.         adcq	$0x00, %r9
    5859. 

  5859.         adcq	$0x00, %r10
    5860. 

  5860.         adcq	$0x00, %r11
    5861. 

  5861.         # Store
    5862. 

  5862.         movq	%r8, (%rdi)
    5863. 

  5863.         movq	%r9, 8(%rdi)
    5864. 

  5864.         movq	%r10, 16(%rdi)
    5865. 

  5865.         movq	%r11, 24(%rdi)
    5866. 

  5866.         movq	16(%rsp), %rdi
    5867. 

  5867.         movq	40(%rsp), %rsi
    5868. 

  5868.         # Square
    5869. 

  5869.         #  A[0] * A[1]
    5870. 

  5870.         movq	(%rsi), %rax
    5871. 

  5871.         mulq	8(%rsi)
    5872. 

  5872.         movq	%rax, %r9
    5873. 

  5873.         movq	%rdx, %r10
    5874. 

  5874.         #  A[0] * A[2]
    5875. 

  5875.         movq	(%rsi), %rax
    5876. 

  5876.         mulq	16(%rsi)
    5877. 

  5877.         xorq	%r11, %r11
    5878. 

  5878.         addq	%rax, %r10
    5879. 

  5879.         adcq	%rdx, %r11
    5880. 

  5880.         #  A[0] * A[3]
    5881. 

  5881.         movq	(%rsi), %rax
    5882. 

  5882.         mulq	24(%rsi)
    5883. 

  5883.         xorq	%r12, %r12
    5884. 

  5884.         addq	%rax, %r11
    5885. 

  5885.         adcq	%rdx, %r12
    5886. 

  5886.         #  A[1] * A[2]
    5887. 

  5887.         movq	8(%rsi), %rax
    5888. 

  5888.         mulq	16(%rsi)
    5889. 

  5889.         xorq	%r13, %r13
    5890. 

  5890.         addq	%rax, %r11
    5891. 

  5891.         adcq	%rdx, %r12
    5892. 

  5892.         adcq	$0x00, %r13
    5893. 

  5893.         #  A[1] * A[3]
    5894. 

  5894.         movq	8(%rsi), %rax
    5895. 

  5895.         mulq	24(%rsi)
    5896. 

  5896.         addq	%rax, %r12
    5897. 

  5897.         adcq	%rdx, %r13
    5898. 

  5898.         #  A[2] * A[3]
    5899. 

  5899.         movq	16(%rsi), %rax
    5900. 

  5900.         mulq	24(%rsi)
    5901. 

  5901.         xorq	%r14, %r14
    5902. 

  5902.         addq	%rax, %r13
    5903. 

  5903.         adcq	%rdx, %r14
    5904. 

  5904.         # Double
    5905. 

  5905.         xorq	%r15, %r15
    5906. 

  5906.         addq	%r9, %r9
    5907. 

  5907.         adcq	%r10, %r10
    5908. 

  5908.         adcq	%r11, %r11
    5909. 

  5909.         adcq	%r12, %r12
    5910. 

  5910.         adcq	%r13, %r13
    5911. 

  5911.         adcq	%r14, %r14
    5912. 

  5912.         adcq	$0x00, %r15
    5913. 

  5913.         #  A[0] * A[0]
    5914. 

  5914.         movq	(%rsi), %rax
    5915. 

  5915.         mulq	%rax
    5916. 

  5916.         movq	%rax, %r8
    5917. 

  5917.         movq	%rdx, %rcx
    5918. 

  5918.         #  A[1] * A[1]
    5919. 

  5919.         movq	8(%rsi), %rax
    5920. 

  5920.         mulq	%rax
    5921. 

  5921.         addq	%rcx, %r9
    5922. 

  5922.         adcq	%rax, %r10
    5923. 

  5923.         adcq	$0x00, %rdx
    5924. 

  5924.         movq	%rdx, %rcx
    5925. 

  5925.         #  A[2] * A[2]
    5926. 

  5926.         movq	16(%rsi), %rax
    5927. 

  5927.         mulq	%rax
    5928. 

  5928.         addq	%rcx, %r11
    5929. 

  5929.         adcq	%rax, %r12
    5930. 

  5930.         adcq	$0x00, %rdx
    5931. 

  5931.         movq	%rdx, %rcx
    5932. 

  5932.         #  A[3] * A[3]
    5933. 

  5933.         movq	24(%rsi), %rax
    5934. 

  5934.         mulq	%rax
    5935. 

  5935.         addq	%rax, %r14
    5936. 

  5936.         adcq	%rdx, %r15
    5937. 

  5937.         addq	%rcx, %r13
    5938. 

  5938.         adcq	$0x00, %r14
    5939. 

  5939.         adcq	$0x00, %r15
    5940. 

  5940.         # Reduce
    5941. 

  5941.         movq	$0x7fffffffffffffff, %rcx
    5942. 

  5942.         #  Move top half into t4-t7 and remove top bit from t3
    5943. 

  5943.         shldq	$0x01, %r14, %r15
    5944. 

  5944.         shldq	$0x01, %r13, %r14
    5945. 

  5945.         shldq	$0x01, %r12, %r13
    5946. 

  5946.         shldq	$0x01, %r11, %r12
    5947. 

  5947.         andq	%rcx, %r11
    5948. 

  5948.         #  Multiply top half by 19
    5949. 

  5949.         movq	$19, %rax
    5950. 

  5950.         mulq	%r12
    5951. 

  5951.         xorq	%r12, %r12
    5952. 

  5952.         addq	%rax, %r8
    5953. 

  5953.         movq	$19, %rax
    5954. 

  5954.         adcq	%rdx, %r12
    5955. 

  5955.         mulq	%r13
    5956. 

  5956.         xorq	%r13, %r13
    5957. 

  5957.         addq	%rax, %r9
    5958. 

  5958.         movq	$19, %rax
    5959. 

  5959.         adcq	%rdx, %r13
    5960. 

  5960.         mulq	%r14
    5961. 

  5961.         xorq	%r14, %r14
    5962. 

  5962.         addq	%rax, %r10
    5963. 

  5963.         movq	$19, %rax
    5964. 

  5964.         adcq	%rdx, %r14
    5965. 

  5965.         mulq	%r15
    5966. 

  5966.         #  Add remaining product results in
    5967. 

  5967.         addq	%r12, %r9
    5968. 

  5968.         adcq	%r13, %r10
    5969. 

  5969.         adcq	%r14, %r11
    5970. 

  5970.         adcq	%rax, %r11
    5971. 

  5971.         adcq	$0x00, %rdx
    5972. 

  5972.         #  Overflow
    5973. 

  5973.         shldq	$0x01, %r11, %rdx
    5974. 

  5974.         imulq	$19, %rdx, %rax
    5975. 

  5975.         andq	%rcx, %r11
    5976. 

  5976.         addq	%rax, %r8
    5977. 

  5977.         adcq	$0x00, %r9
    5978. 

  5978.         adcq	$0x00, %r10
    5979. 

  5979.         adcq	$0x00, %r11
    5980. 

  5980.         # Reduce if top bit set
    5981. 

  5981.         movq	%r11, %rdx
    5982. 

  5982.         shrq	$63, %rdx
    5983. 

  5983.         imulq	$19, %rdx, %rax
    5984. 

  5984.         andq	%rcx, %r11
    5985. 

  5985.         addq	%rax, %r8
    5986. 

  5986.         adcq	$0x00, %r9
    5987. 

  5987.         adcq	$0x00, %r10
    5988. 

  5988.         adcq	$0x00, %r11
    5989. 

  5989.         # Store
    5990. 

  5990.         movq	%r8, (%rdi)
    5991. 

  5991.         movq	%r9, 8(%rdi)
    5992. 

  5992.         movq	%r10, 16(%rdi)
    5993. 

  5993.         movq	%r11, 24(%rdi)
    5994. 

  5994.         movq	24(%rsp), %rdi
    5995. 

  5995.         movq	128(%rsp), %rsi
    5996. 

  5996.         # Square * 2
    5997. 

  5997.         #  A[0] * A[1]
    5998. 

  5998.         movq	(%rsi), %rax
    5999. 

  5999.         mulq	8(%rsi)
    6000. 

  6000.         movq	%rax, %r9
    6001. 

  6001.         movq	%rdx, %r10
    6002. 

  6002.         #  A[0] * A[2]
    6003. 

  6003.         movq	(%rsi), %rax
    6004. 

  6004.         mulq	16(%rsi)
    6005. 

  6005.         xorq	%r11, %r11
    6006. 

  6006.         addq	%rax, %r10
    6007. 

  6007.         adcq	%rdx, %r11
    6008. 

  6008.         #  A[0] * A[3]
    6009. 

  6009.         movq	(%rsi), %rax
    6010. 

  6010.         mulq	24(%rsi)
    6011. 

  6011.         xorq	%r12, %r12
    6012. 

  6012.         addq	%rax, %r11
    6013. 

  6013.         adcq	%rdx, %r12
    6014. 

  6014.         #  A[1] * A[2]
    6015. 

  6015.         movq	8(%rsi), %rax
    6016. 

  6016.         mulq	16(%rsi)
    6017. 

  6017.         xorq	%r13, %r13
    6018. 

  6018.         addq	%rax, %r11
    6019. 

  6019.         adcq	%rdx, %r12
    6020. 

  6020.         adcq	$0x00, %r13
    6021. 

  6021.         #  A[1] * A[3]
    6022. 

  6022.         movq	8(%rsi), %rax
    6023. 

  6023.         mulq	24(%rsi)
    6024. 

  6024.         addq	%rax, %r12
    6025. 

  6025.         adcq	%rdx, %r13
    6026. 

  6026.         #  A[2] * A[3]
    6027. 

  6027.         movq	16(%rsi), %rax
    6028. 

  6028.         mulq	24(%rsi)
    6029. 

  6029.         xorq	%r14, %r14
    6030. 

  6030.         addq	%rax, %r13
    6031. 

  6031.         adcq	%rdx, %r14
    6032. 

  6032.         # Double
    6033. 

  6033.         xorq	%r15, %r15
    6034. 

  6034.         addq	%r9, %r9
    6035. 

  6035.         adcq	%r10, %r10
    6036. 

  6036.         adcq	%r11, %r11
    6037. 

  6037.         adcq	%r12, %r12
    6038. 

  6038.         adcq	%r13, %r13
    6039. 

  6039.         adcq	%r14, %r14
    6040. 

  6040.         adcq	$0x00, %r15
    6041. 

  6041.         #  A[0] * A[0]
    6042. 

  6042.         movq	(%rsi), %rax
    6043. 

  6043.         mulq	%rax
    6044. 

  6044.         movq	%rax, %r8
    6045. 

  6045.         movq	%rdx, %rcx
    6046. 

  6046.         #  A[1] * A[1]
    6047. 

  6047.         movq	8(%rsi), %rax
    6048. 

  6048.         mulq	%rax
    6049. 

  6049.         addq	%rcx, %r9
    6050. 

  6050.         adcq	%rax, %r10
    6051. 

  6051.         adcq	$0x00, %rdx
    6052. 

  6052.         movq	%rdx, %rcx
    6053. 

  6053.         #  A[2] * A[2]
    6054. 

  6054.         movq	16(%rsi), %rax
    6055. 

  6055.         mulq	%rax
    6056. 

  6056.         addq	%rcx, %r11
    6057. 

  6057.         adcq	%rax, %r12
    6058. 

  6058.         adcq	$0x00, %rdx
    6059. 

  6059.         movq	%rdx, %rcx
    6060. 

  6060.         #  A[3] * A[3]
    6061. 

  6061.         movq	24(%rsi), %rax
    6062. 

  6062.         mulq	%rax
    6063. 

  6063.         addq	%rax, %r14
    6064. 

  6064.         adcq	%rdx, %r15
    6065. 

  6065.         addq	%rcx, %r13
    6066. 

  6066.         adcq	$0x00, %r14
    6067. 

  6067.         adcq	$0x00, %r15
    6068. 

  6068.         # Reduce
    6069. 

  6069.         movq	$0x7fffffffffffffff, %rbx
    6070. 

  6070.         xorq	%rax, %rax
    6071. 

  6071.         #  Move top half into t4-t7 and remove top bit from t3
    6072. 

  6072.         shldq	$3, %r15, %rax
    6073. 

  6073.         shldq	$2, %r14, %r15
    6074. 

  6074.         shldq	$2, %r13, %r14
    6075. 

  6075.         shldq	$2, %r12, %r13
    6076. 

  6076.         shldq	$2, %r11, %r12
    6077. 

  6077.         shldq	$0x01, %r10, %r11
    6078. 

  6078.         shldq	$0x01, %r9, %r10
    6079. 

  6079.         shldq	$0x01, %r8, %r9
    6080. 

  6080.         shlq	$0x01, %r8
    6081. 

  6081.         andq	%rbx, %r11
    6082. 

  6082.         #  Two out left, one in right
    6083. 

  6083.         andq	%rbx, %r15
    6084. 

  6084.         #  Multiply top bits by 19*19
    6085. 

  6085.         imulq	$0x169, %rax, %rcx
    6086. 

  6086.         #  Multiply top half by 19
    6087. 

  6087.         movq	$19, %rax
    6088. 

  6088.         mulq	%r12
    6089. 

  6089.         xorq	%r12, %r12
    6090. 

  6090.         addq	%rax, %r8
    6091. 

  6091.         movq	$19, %rax
    6092. 

  6092.         adcq	%rdx, %r12
    6093. 

  6093.         mulq	%r13
    6094. 

  6094.         xorq	%r13, %r13
    6095. 

  6095.         addq	%rax, %r9
    6096. 

  6096.         movq	$19, %rax
    6097. 

  6097.         adcq	%rdx, %r13
    6098. 

  6098.         mulq	%r14
    6099. 

  6099.         xorq	%r14, %r14
    6100. 

  6100.         addq	%rax, %r10
    6101. 

  6101.         movq	$19, %rax
    6102. 

  6102.         adcq	%rdx, %r14
    6103. 

  6103.         mulq	%r15
    6104. 

  6104.         #  Add remaining produce results in
    6105. 

  6105.         addq	%rcx, %r8
    6106. 

  6106.         adcq	%r12, %r9
    6107. 

  6107.         adcq	%r13, %r10
    6108. 

  6108.         adcq	%r14, %r11
    6109. 

  6109.         adcq	%rax, %r11
    6110. 

  6110.         adcq	$0x00, %rdx
    6111. 

  6111.         #  Overflow
    6112. 

  6112.         shldq	$0x01, %r11, %rdx
    6113. 

  6113.         imulq	$19, %rdx, %rax
    6114. 

  6114.         andq	%rbx, %r11
    6115. 

  6115.         addq	%rax, %r8
    6116. 

  6116.         adcq	$0x00, %r9
    6117. 

  6117.         adcq	$0x00, %r10
    6118. 

  6118.         adcq	$0x00, %r11
    6119. 

  6119.         # Reduce if top bit set
    6120. 

  6120.         movq	%r11, %rdx
    6121. 

  6121.         shrq	$63, %rdx
    6122. 

  6122.         imulq	$19, %rdx, %rax
    6123. 

  6123.         andq	%rbx, %r11
    6124. 

  6124.         addq	%rax, %r8
    6125. 

  6125.         adcq	$0x00, %r9
    6126. 

  6126.         adcq	$0x00, %r10
    6127. 

  6127.         adcq	$0x00, %r11
    6128. 

  6128.         # Store
    6129. 

  6129.         movq	%r8, (%rdi)
    6130. 

  6130.         movq	%r9, 8(%rdi)
    6131. 

  6131.         movq	%r10, 16(%rdi)
    6132. 

  6132.         movq	%r11, 24(%rdi)
    6133. 

  6133.         movq	8(%rsp), %rdi
    6134. 

  6134.         movq	32(%rsp), %rsi
    6135. 

  6135.         movq	40(%rsp), %rbx
    6136. 

  6136.         # Add
    6137. 

  6137.         movq	(%rsi), %r8
    6138. 

  6138.         movq	8(%rsi), %r9
    6139. 

  6139.         addq	(%rbx), %r8
    6140. 

  6140.         movq	16(%rsi), %r10
    6141. 

  6141.         adcq	8(%rbx), %r9
    6142. 

  6142.         movq	24(%rsi), %rcx
    6143. 

  6143.         adcq	16(%rbx), %r10
    6144. 

  6144.         movq	$-19, %rax
    6145. 

  6145.         adcq	24(%rbx), %rcx
    6146. 

  6146.         movq	$0x7fffffffffffffff, %rdx
    6147. 

  6147.         movq	%rcx, %r11
    6148. 

  6148.         sarq	$63, %rcx
    6149. 

  6149.         #   Mask the modulus
    6150. 

  6150.         andq	%rcx, %rax
    6151. 

  6151.         andq	%rcx, %rdx
    6152. 

  6152.         #   Sub modulus (if overflow)
    6153. 

  6153.         subq	%rax, %r8
    6154. 

  6154.         sbbq	%rcx, %r9
    6155. 

  6155.         sbbq	%rcx, %r10
    6156. 

  6156.         sbbq	%rdx, %r11
    6157. 

  6157.         movq	%r8, (%rdi)
    6158. 

  6158.         movq	%r9, 8(%rdi)
    6159. 

  6159.         movq	%r10, 16(%rdi)
    6160. 

  6160.         movq	%r11, 24(%rdi)
    6161. 

  6161.         leaq	48(%rsp), %rdi
    6162. 

  6162.         movq	8(%rsp), %rsi
    6163. 

  6163.         # Square
    6164. 

  6164.         #  A[0] * A[1]
    6165. 

  6165.         movq	(%rsi), %rax
    6166. 

  6166.         mulq	8(%rsi)
    6167. 

  6167.         movq	%rax, %r9
    6168. 

  6168.         movq	%rdx, %r10
    6169. 

  6169.         #  A[0] * A[2]
    6170. 

  6170.         movq	(%rsi), %rax
    6171. 

  6171.         mulq	16(%rsi)
    6172. 

  6172.         xorq	%r11, %r11
    6173. 

  6173.         addq	%rax, %r10
    6174. 

  6174.         adcq	%rdx, %r11
    6175. 

  6175.         #  A[0] * A[3]
    6176. 

  6176.         movq	(%rsi), %rax
    6177. 

  6177.         mulq	24(%rsi)
    6178. 

  6178.         xorq	%r12, %r12
    6179. 

  6179.         addq	%rax, %r11
    6180. 

  6180.         adcq	%rdx, %r12
    6181. 

  6181.         #  A[1] * A[2]
    6182. 

  6182.         movq	8(%rsi), %rax
    6183. 

  6183.         mulq	16(%rsi)
    6184. 

  6184.         xorq	%r13, %r13
    6185. 

  6185.         addq	%rax, %r11
    6186. 

  6186.         adcq	%rdx, %r12
    6187. 

  6187.         adcq	$0x00, %r13
    6188. 

  6188.         #  A[1] * A[3]
    6189. 

  6189.         movq	8(%rsi), %rax
    6190. 

  6190.         mulq	24(%rsi)
    6191. 

  6191.         addq	%rax, %r12
    6192. 

  6192.         adcq	%rdx, %r13
    6193. 

  6193.         #  A[2] * A[3]
    6194. 

  6194.         movq	16(%rsi), %rax
    6195. 

  6195.         mulq	24(%rsi)
    6196. 

  6196.         xorq	%r14, %r14
    6197. 

  6197.         addq	%rax, %r13
    6198. 

  6198.         adcq	%rdx, %r14
    6199. 

  6199.         # Double
    6200. 

  6200.         xorq	%r15, %r15
    6201. 

  6201.         addq	%r9, %r9
    6202. 

  6202.         adcq	%r10, %r10
    6203. 

  6203.         adcq	%r11, %r11
    6204. 

  6204.         adcq	%r12, %r12
    6205. 

  6205.         adcq	%r13, %r13
    6206. 

  6206.         adcq	%r14, %r14
    6207. 

  6207.         adcq	$0x00, %r15
    6208. 

  6208.         #  A[0] * A[0]
    6209. 

  6209.         movq	(%rsi), %rax
    6210. 

  6210.         mulq	%rax
    6211. 

  6211.         movq	%rax, %r8
    6212. 

  6212.         movq	%rdx, %rcx
    6213. 

  6213.         #  A[1] * A[1]
    6214. 

  6214.         movq	8(%rsi), %rax
    6215. 

  6215.         mulq	%rax
    6216. 

  6216.         addq	%rcx, %r9
    6217. 

  6217.         adcq	%rax, %r10
    6218. 

  6218.         adcq	$0x00, %rdx
    6219. 

  6219.         movq	%rdx, %rcx
    6220. 

  6220.         #  A[2] * A[2]
    6221. 

  6221.         movq	16(%rsi), %rax
    6222. 

  6222.         mulq	%rax
    6223. 

  6223.         addq	%rcx, %r11
    6224. 

  6224.         adcq	%rax, %r12
    6225. 

  6225.         adcq	$0x00, %rdx
    6226. 

  6226.         movq	%rdx, %rcx
    6227. 

  6227.         #  A[3] * A[3]
    6228. 

  6228.         movq	24(%rsi), %rax
    6229. 

  6229.         mulq	%rax
    6230. 

  6230.         addq	%rax, %r14
    6231. 

  6231.         adcq	%rdx, %r15
    6232. 

  6232.         addq	%rcx, %r13
    6233. 

  6233.         adcq	$0x00, %r14
    6234. 

  6234.         adcq	$0x00, %r15
    6235. 

  6235.         # Reduce
    6236. 

  6236.         movq	$0x7fffffffffffffff, %rcx
    6237. 

  6237.         #  Move top half into t4-t7 and remove top bit from t3
    6238. 

  6238.         shldq	$0x01, %r14, %r15
    6239. 

  6239.         shldq	$0x01, %r13, %r14
    6240. 

  6240.         shldq	$0x01, %r12, %r13
    6241. 

  6241.         shldq	$0x01, %r11, %r12
    6242. 

  6242.         andq	%rcx, %r11
    6243. 

  6243.         #  Multiply top half by 19
    6244. 

  6244.         movq	$19, %rax
    6245. 

  6245.         mulq	%r12
    6246. 

  6246.         xorq	%r12, %r12
    6247. 

  6247.         addq	%rax, %r8
    6248. 

  6248.         movq	$19, %rax
    6249. 

  6249.         adcq	%rdx, %r12
    6250. 

  6250.         mulq	%r13
    6251. 

  6251.         xorq	%r13, %r13
    6252. 

  6252.         addq	%rax, %r9
    6253. 

  6253.         movq	$19, %rax
    6254. 

  6254.         adcq	%rdx, %r13
    6255. 

  6255.         mulq	%r14
    6256. 

  6256.         xorq	%r14, %r14
    6257. 

  6257.         addq	%rax, %r10
    6258. 

  6258.         movq	$19, %rax
    6259. 

  6259.         adcq	%rdx, %r14
    6260. 

  6260.         mulq	%r15
    6261. 

  6261.         #  Add remaining product results in
    6262. 

  6262.         addq	%r12, %r9
    6263. 

  6263.         adcq	%r13, %r10
    6264. 

  6264.         adcq	%r14, %r11
    6265. 

  6265.         adcq	%rax, %r11
    6266. 

  6266.         adcq	$0x00, %rdx
    6267. 

  6267.         #  Overflow
    6268. 

  6268.         shldq	$0x01, %r11, %rdx
    6269. 

  6269.         imulq	$19, %rdx, %rax
    6270. 

  6270.         andq	%rcx, %r11
    6271. 

  6271.         addq	%rax, %r8
    6272. 

  6272.         adcq	$0x00, %r9
    6273. 

  6273.         adcq	$0x00, %r10
    6274. 

  6274.         adcq	$0x00, %r11
    6275. 

  6275.         # Reduce if top bit set
    6276. 

  6276.         movq	%r11, %rdx
    6277. 

  6277.         shrq	$63, %rdx
    6278. 

  6278.         imulq	$19, %rdx, %rax
    6279. 

  6279.         andq	%rcx, %r11
    6280. 

  6280.         addq	%rax, %r8
    6281. 

  6281.         adcq	$0x00, %r9
    6282. 

  6282.         adcq	$0x00, %r10
    6283. 

  6283.         adcq	$0x00, %r11
    6284. 

  6284.         # Store
    6285. 

  6285.         movq	%r8, (%rdi)
    6286. 

  6286.         movq	%r9, 8(%rdi)
    6287. 

  6287.         movq	%r10, 16(%rdi)
    6288. 

  6288.         movq	%r11, 24(%rdi)
    6289. 

  6289.         movq	8(%rsp), %rdi
    6290. 

  6290.         movq	16(%rsp), %rsi
    6291. 

  6291.         movq	(%rsp), %rbx
    6292. 

  6292.         # Add
    6293. 

  6293.         movq	(%rsi), %r8
    6294. 

  6294.         movq	8(%rsi), %r9
    6295. 

  6295.         addq	(%rbx), %r8
    6296. 

  6296.         movq	16(%rsi), %r10
    6297. 

  6297.         adcq	8(%rbx), %r9
    6298. 

  6298.         movq	24(%rsi), %rcx
    6299. 

  6299.         adcq	16(%rbx), %r10
    6300. 

  6300.         movq	$-19, %rax
    6301. 

  6301.         adcq	24(%rbx), %rcx
    6302. 

  6302.         movq	$0x7fffffffffffffff, %rdx
    6303. 

  6303.         movq	%rcx, %r11
    6304. 

  6304.         sarq	$63, %rcx
    6305. 

  6305.         #   Mask the modulus
    6306. 

  6306.         andq	%rcx, %rax
    6307. 

  6307.         andq	%rcx, %rdx
    6308. 

  6308.         #   Sub modulus (if overflow)
    6309. 

  6309.         subq	%rax, %r8
    6310. 

  6310.         sbbq	%rcx, %r9
    6311. 

  6311.         sbbq	%rcx, %r10
    6312. 

  6312.         sbbq	%rdx, %r11
    6313. 

  6313.         movq	%r8, (%rdi)
    6314. 

  6314.         movq	%r9, 8(%rdi)
    6315. 

  6315.         movq	%r10, 16(%rdi)
    6316. 

  6316.         movq	%r11, 24(%rdi)
    6317. 

  6317.         movq	16(%rsp), %rdi
    6318. 

  6318.         movq	16(%rsp), %rsi
    6319. 

  6319.         movq	(%rsp), %rbx
    6320. 

  6320.         # Sub
    6321. 

  6321.         movq	(%rsi), %r8
    6322. 

  6322.         movq	8(%rsi), %r9
    6323. 

  6323.         movq	16(%rsi), %r10
    6324. 

  6324.         movq	24(%rsi), %r11
    6325. 

  6325.         subq	(%rbx), %r8
    6326. 

  6326.         movq	$0x00, %rcx
    6327. 

  6327.         sbbq	8(%rbx), %r9
    6328. 

  6328.         movq	$-19, %rax
    6329. 

  6329.         sbbq	16(%rbx), %r10
    6330. 

  6330.         movq	$0x7fffffffffffffff, %rdx
    6331. 

  6331.         sbbq	24(%rbx), %r11
    6332. 

  6332.         sbbq	$0x00, %rcx
    6333. 

  6333.         #   Mask the modulus
    6334. 

  6334.         andq	%rcx, %rax
    6335. 

  6335.         andq	%rcx, %rdx
    6336. 

  6336.         #   Add modulus (if underflow)
    6337. 

  6337.         addq	%rax, %r8
    6338. 

  6338.         adcq	%rcx, %r9
    6339. 

  6339.         adcq	%rcx, %r10
    6340. 

  6340.         adcq	%rdx, %r11
    6341. 

  6341.         movq	%r8, (%rdi)
    6342. 

  6342.         movq	%r9, 8(%rdi)
    6343. 

  6343.         movq	%r10, 16(%rdi)
    6344. 

  6344.         movq	%r11, 24(%rdi)
    6345. 

  6345.         movq	(%rsp), %rdi
    6346. 

  6346.         leaq	48(%rsp), %rsi
    6347. 

  6347.         movq	8(%rsp), %rbx
    6348. 

  6348.         # Sub
    6349. 

  6349.         movq	(%rsi), %r8
    6350. 

  6350.         movq	8(%rsi), %r9
    6351. 

  6351.         movq	16(%rsi), %r10
    6352. 

  6352.         movq	24(%rsi), %r11
    6353. 

  6353.         subq	(%rbx), %r8
    6354. 

  6354.         movq	$0x00, %rcx
    6355. 

  6355.         sbbq	8(%rbx), %r9
    6356. 

  6356.         movq	$-19, %rax
    6357. 

  6357.         sbbq	16(%rbx), %r10
    6358. 

  6358.         movq	$0x7fffffffffffffff, %rdx
    6359. 

  6359.         sbbq	24(%rbx), %r11
    6360. 

  6360.         sbbq	$0x00, %rcx
    6361. 

  6361.         #   Mask the modulus
    6362. 

  6362.         andq	%rcx, %rax
    6363. 

  6363.         andq	%rcx, %rdx
    6364. 

  6364.         #   Add modulus (if underflow)
    6365. 

  6365.         addq	%rax, %r8
    6366. 

  6366.         adcq	%rcx, %r9
    6367. 

  6367.         adcq	%rcx, %r10
    6368. 

  6368.         adcq	%rdx, %r11
    6369. 

  6369.         movq	%r8, (%rdi)
    6370. 

  6370.         movq	%r9, 8(%rdi)
    6371. 

  6371.         movq	%r10, 16(%rdi)
    6372. 

  6372.         movq	%r11, 24(%rdi)
    6373. 

  6373.         movq	24(%rsp), %rdi
    6374. 

  6374.         movq	24(%rsp), %rsi
    6375. 

  6375.         movq	16(%rsp), %rbx
    6376. 

  6376.         # Sub
    6377. 

  6377.         movq	(%rsi), %r8
    6378. 

  6378.         movq	8(%rsi), %r9
    6379. 

  6379.         movq	16(%rsi), %r10
    6380. 

  6380.         movq	24(%rsi), %r11
    6381. 

  6381.         subq	(%rbx), %r8
    6382. 

  6382.         movq	$0x00, %rcx
    6383. 

  6383.         sbbq	8(%rbx), %r9
    6384. 

  6384.         movq	$-19, %rax
    6385. 

  6385.         sbbq	16(%rbx), %r10
    6386. 

  6386.         movq	$0x7fffffffffffffff, %rdx
    6387. 

  6387.         sbbq	24(%rbx), %r11
    6388. 

  6388.         sbbq	$0x00, %rcx
    6389. 

  6389.         #   Mask the modulus
    6390. 

  6390.         andq	%rcx, %rax
    6391. 

  6391.         andq	%rcx, %rdx
    6392. 

  6392.         #   Add modulus (if underflow)
    6393. 

  6393.         addq	%rax, %r8
    6394. 

  6394.         adcq	%rcx, %r9
    6395. 

  6395.         adcq	%rcx, %r10
    6396. 

  6396.         adcq	%rdx, %r11
    6397. 

  6397.         movq	%r8, (%rdi)
    6398. 

  6398.         movq	%r9, 8(%rdi)
    6399. 

  6399.         movq	%r10, 16(%rdi)
    6400. 

  6400.         movq	%r11, 24(%rdi)
    6401. 

  6401.         addq	$0x50, %rsp
    6402. 

  6402.         popq	%r15
    6403. 

  6403.         popq	%r14
    6404. 

  6404.         popq	%r13
    6405. 

  6405.         popq	%r12
    6406. 

  6406.         popq	%rbx
    6407. 

  6407.         repz retq
    6408. 

  6408. #ifndef __APPLE__
    6409. 

  6409. .size	fe_ge_dbl_x64,.-fe_ge_dbl_x64
    6410. 

  6410. #endif /* __APPLE__ */
    6411. 

  6411. #ifndef __APPLE__
    6412. 

  6412. .text
    6413. 

  6413. .globl	fe_ge_madd_x64
    6414. 

  6414. .type	fe_ge_madd_x64,@function
    6415. 

  6415. .align	16
    6416. 

  6416. fe_ge_madd_x64:
    6417. 

  6417. #else
    6418. 

  6418. .section	__TEXT,__text
    6419. 

  6419. .globl	_fe_ge_madd_x64
    6420. 

  6420. .p2align	4
    6421. 

  6421. _fe_ge_madd_x64:
    6422. 

  6422. #endif /* __APPLE__ */
    6423. 

  6423.         pushq	%rbx
    6424. 

  6424.         pushq	%r12
    6425. 

  6425.         pushq	%r13
    6426. 

  6426.         pushq	%r14
    6427. 

  6427.         pushq	%r15
    6428. 

  6428.         subq	$0x50, %rsp
    6429. 

  6429.         movq	%rdi, (%rsp)
    6430. 

  6430.         movq	%rsi, 8(%rsp)
    6431. 

  6431.         movq	%rdx, 16(%rsp)
    6432. 

  6432.         movq	%rcx, 24(%rsp)
    6433. 

  6433.         movq	%r8, 32(%rsp)
    6434. 

  6434.         movq	%r9, 40(%rsp)
    6435. 

  6435.         movq	(%rsp), %rdi
    6436. 

  6436.         movq	40(%rsp), %rsi
    6437. 

  6437.         movq	32(%rsp), %rbx
    6438. 

  6438.         # Add
    6439. 

  6439.         movq	(%rsi), %r8
    6440. 

  6440.         movq	8(%rsi), %r9
    6441. 

  6441.         addq	(%rbx), %r8
    6442. 

  6442.         movq	16(%rsi), %r10
    6443. 

  6443.         adcq	8(%rbx), %r9
    6444. 

  6444.         movq	24(%rsi), %rcx
    6445. 

  6445.         adcq	16(%rbx), %r10
    6446. 

  6446.         movq	$-19, %rax
    6447. 

  6447.         adcq	24(%rbx), %rcx
    6448. 

  6448.         movq	$0x7fffffffffffffff, %rdx
    6449. 

  6449.         movq	%rcx, %r11
    6450. 

  6450.         sarq	$63, %rcx
    6451. 

  6451.         #   Mask the modulus
    6452. 

  6452.         andq	%rcx, %rax
    6453. 

  6453.         andq	%rcx, %rdx
    6454. 

  6454.         #   Sub modulus (if overflow)
    6455. 

  6455.         subq	%rax, %r8
    6456. 

  6456.         sbbq	%rcx, %r9
    6457. 

  6457.         sbbq	%rcx, %r10
    6458. 

  6458.         sbbq	%rdx, %r11
    6459. 

  6459.         movq	%r8, (%rdi)
    6460. 

  6460.         movq	%r9, 8(%rdi)
    6461. 

  6461.         movq	%r10, 16(%rdi)
    6462. 

  6462.         movq	%r11, 24(%rdi)
    6463. 

  6463.         movq	8(%rsp), %rdi
    6464. 

  6464.         movq	40(%rsp), %rsi
    6465. 

  6465.         movq	32(%rsp), %rbx
    6466. 

  6466.         # Sub
    6467. 

  6467.         movq	(%rsi), %r8
    6468. 

  6468.         movq	8(%rsi), %r9
    6469. 

  6469.         movq	16(%rsi), %r10
    6470. 

  6470.         movq	24(%rsi), %r11
    6471. 

  6471.         subq	(%rbx), %r8
    6472. 

  6472.         movq	$0x00, %rcx
    6473. 

  6473.         sbbq	8(%rbx), %r9
    6474. 

  6474.         movq	$-19, %rax
    6475. 

  6475.         sbbq	16(%rbx), %r10
    6476. 

  6476.         movq	$0x7fffffffffffffff, %rdx
    6477. 

  6477.         sbbq	24(%rbx), %r11
    6478. 

  6478.         sbbq	$0x00, %rcx
    6479. 

  6479.         #   Mask the modulus
    6480. 

  6480.         andq	%rcx, %rax
    6481. 

  6481.         andq	%rcx, %rdx
    6482. 

  6482.         #   Add modulus (if underflow)
    6483. 

  6483.         addq	%rax, %r8
    6484. 

  6484.         adcq	%rcx, %r9
    6485. 

  6485.         adcq	%rcx, %r10
    6486. 

  6486.         adcq	%rdx, %r11
    6487. 

  6487.         movq	%r8, (%rdi)
    6488. 

  6488.         movq	%r9, 8(%rdi)
    6489. 

  6489.         movq	%r10, 16(%rdi)
    6490. 

  6490.         movq	%r11, 24(%rdi)
    6491. 

  6491.         movq	16(%rsp), %rdi
    6492. 

  6492.         movq	(%rsp), %rsi
    6493. 

  6493.         movq	152(%rsp), %rbx
    6494. 

  6494.         # Multiply
    6495. 

  6495.         #  A[0] * B[0]
    6496. 

  6496.         movq	(%rbx), %rax
    6497. 

  6497.         mulq	(%rsi)
    6498. 

  6498.         movq	%rax, %r8
    6499. 

  6499.         movq	%rdx, %r9
    6500. 

  6500.         #  A[0] * B[1]
    6501. 

  6501.         movq	8(%rbx), %rax
    6502. 

  6502.         mulq	(%rsi)
    6503. 

  6503.         xorq	%r10, %r10
    6504. 

  6504.         addq	%rax, %r9
    6505. 

  6505.         adcq	%rdx, %r10
    6506. 

  6506.         #  A[1] * B[0]
    6507. 

  6507.         movq	(%rbx), %rax
    6508. 

  6508.         mulq	8(%rsi)
    6509. 

  6509.         xorq	%r11, %r11
    6510. 

  6510.         addq	%rax, %r9
    6511. 

  6511.         adcq	%rdx, %r10
    6512. 

  6512.         adcq	$0x00, %r11
    6513. 

  6513.         #  A[0] * B[2]
    6514. 

  6514.         movq	16(%rbx), %rax
    6515. 

  6515.         mulq	(%rsi)
    6516. 

  6516.         addq	%rax, %r10
    6517. 

  6517.         adcq	%rdx, %r11
    6518. 

  6518.         #  A[1] * B[1]
    6519. 

  6519.         movq	8(%rbx), %rax
    6520. 

  6520.         mulq	8(%rsi)
    6521. 

  6521.         xorq	%r12, %r12
    6522. 

  6522.         addq	%rax, %r10
    6523. 

  6523.         adcq	%rdx, %r11
    6524. 

  6524.         adcq	$0x00, %r12
    6525. 

  6525.         #  A[2] * B[0]
    6526. 

  6526.         movq	(%rbx), %rax
    6527. 

  6527.         mulq	16(%rsi)
    6528. 

  6528.         addq	%rax, %r10
    6529. 

  6529.         adcq	%rdx, %r11
    6530. 

  6530.         adcq	$0x00, %r12
    6531. 

  6531.         #  A[0] * B[3]
    6532. 

  6532.         movq	24(%rbx), %rax
    6533. 

  6533.         mulq	(%rsi)
    6534. 

  6534.         xorq	%r13, %r13
    6535. 

  6535.         addq	%rax, %r11
    6536. 

  6536.         adcq	%rdx, %r12
    6537. 

  6537.         adcq	$0x00, %r13
    6538. 

  6538.         #  A[1] * B[2]
    6539. 

  6539.         movq	16(%rbx), %rax
    6540. 

  6540.         mulq	8(%rsi)
    6541. 

  6541.         addq	%rax, %r11
    6542. 

  6542.         adcq	%rdx, %r12
    6543. 

  6543.         adcq	$0x00, %r13
    6544. 

  6544.         #  A[2] * B[1]
    6545. 

  6545.         movq	8(%rbx), %rax
    6546. 

  6546.         mulq	16(%rsi)
    6547. 

  6547.         addq	%rax, %r11
    6548. 

  6548.         adcq	%rdx, %r12
    6549. 

  6549.         adcq	$0x00, %r13
    6550. 

  6550.         #  A[3] * B[0]
    6551. 

  6551.         movq	(%rbx), %rax
    6552. 

  6552.         mulq	24(%rsi)
    6553. 

  6553.         addq	%rax, %r11
    6554. 

  6554.         adcq	%rdx, %r12
    6555. 

  6555.         adcq	$0x00, %r13
    6556. 

  6556.         #  A[1] * B[3]
    6557. 

  6557.         movq	24(%rbx), %rax
    6558. 

  6558.         mulq	8(%rsi)
    6559. 

  6559.         xorq	%r14, %r14
    6560. 

  6560.         addq	%rax, %r12
    6561. 

  6561.         adcq	%rdx, %r13
    6562. 

  6562.         adcq	$0x00, %r14
    6563. 

  6563.         #  A[2] * B[2]
    6564. 

  6564.         movq	16(%rbx), %rax
    6565. 

  6565.         mulq	16(%rsi)
    6566. 

  6566.         addq	%rax, %r12
    6567. 

  6567.         adcq	%rdx, %r13
    6568. 

  6568.         adcq	$0x00, %r14
    6569. 

  6569.         #  A[3] * B[1]
    6570. 

  6570.         movq	8(%rbx), %rax
    6571. 

  6571.         mulq	24(%rsi)
    6572. 

  6572.         addq	%rax, %r12
    6573. 

  6573.         adcq	%rdx, %r13
    6574. 

  6574.         adcq	$0x00, %r14
    6575. 

  6575.         #  A[2] * B[3]
    6576. 

  6576.         movq	24(%rbx), %rax
    6577. 

  6577.         mulq	16(%rsi)
    6578. 

  6578.         xorq	%r15, %r15
    6579. 

  6579.         addq	%rax, %r13
    6580. 

  6580.         adcq	%rdx, %r14
    6581. 

  6581.         adcq	$0x00, %r15
    6582. 

  6582.         #  A[3] * B[2]
    6583. 

  6583.         movq	16(%rbx), %rax
    6584. 

  6584.         mulq	24(%rsi)
    6585. 

  6585.         addq	%rax, %r13
    6586. 

  6586.         adcq	%rdx, %r14
    6587. 

  6587.         adcq	$0x00, %r15
    6588. 

  6588.         #  A[3] * B[3]
    6589. 

  6589.         movq	24(%rbx), %rax
    6590. 

  6590.         mulq	24(%rsi)
    6591. 

  6591.         addq	%rax, %r14
    6592. 

  6592.         adcq	%rdx, %r15
    6593. 

  6593.         # Reduce
    6594. 

  6594.         movq	$0x7fffffffffffffff, %rcx
    6595. 

  6595.         #  Move top half into t4-t7 and remove top bit from t3
    6596. 

  6596.         shldq	$0x01, %r14, %r15
    6597. 

  6597.         shldq	$0x01, %r13, %r14
    6598. 

  6598.         shldq	$0x01, %r12, %r13
    6599. 

  6599.         shldq	$0x01, %r11, %r12
    6600. 

  6600.         andq	%rcx, %r11
    6601. 

  6601.         #  Multiply top half by 19
    6602. 

  6602.         movq	$19, %rax
    6603. 

  6603.         mulq	%r12
    6604. 

  6604.         xorq	%r12, %r12
    6605. 

  6605.         addq	%rax, %r8
    6606. 

  6606.         movq	$19, %rax
    6607. 

  6607.         adcq	%rdx, %r12
    6608. 

  6608.         mulq	%r13
    6609. 

  6609.         xorq	%r13, %r13
    6610. 

  6610.         addq	%rax, %r9
    6611. 

  6611.         movq	$19, %rax
    6612. 

  6612.         adcq	%rdx, %r13
    6613. 

  6613.         mulq	%r14
    6614. 

  6614.         xorq	%r14, %r14
    6615. 

  6615.         addq	%rax, %r10
    6616. 

  6616.         movq	$19, %rax
    6617. 

  6617.         adcq	%rdx, %r14
    6618. 

  6618.         mulq	%r15
    6619. 

  6619.         #  Add remaining product results in
    6620. 

  6620.         addq	%r12, %r9
    6621. 

  6621.         adcq	%r13, %r10
    6622. 

  6622.         adcq	%r14, %r11
    6623. 

  6623.         adcq	%rax, %r11
    6624. 

  6624.         adcq	$0x00, %rdx
    6625. 

  6625.         #  Overflow
    6626. 

  6626.         shldq	$0x01, %r11, %rdx
    6627. 

  6627.         imulq	$19, %rdx, %rax
    6628. 

  6628.         andq	%rcx, %r11
    6629. 

  6629.         addq	%rax, %r8
    6630. 

  6630.         adcq	$0x00, %r9
    6631. 

  6631.         adcq	$0x00, %r10
    6632. 

  6632.         adcq	$0x00, %r11
    6633. 

  6633.         # Reduce if top bit set
    6634. 

  6634.         movq	%r11, %rdx
    6635. 

  6635.         shrq	$63, %rdx
    6636. 

  6636.         imulq	$19, %rdx, %rax
    6637. 

  6637.         andq	%rcx, %r11
    6638. 

  6638.         addq	%rax, %r8
    6639. 

  6639.         adcq	$0x00, %r9
    6640. 

  6640.         adcq	$0x00, %r10
    6641. 

  6641.         adcq	$0x00, %r11
    6642. 

  6642.         # Store
    6643. 

  6643.         movq	%r8, (%rdi)
    6644. 

  6644.         movq	%r9, 8(%rdi)
    6645. 

  6645.         movq	%r10, 16(%rdi)
    6646. 

  6646.         movq	%r11, 24(%rdi)
    6647. 

  6647.         movq	8(%rsp), %rdi
    6648. 

  6648.         movq	8(%rsp), %rsi
    6649. 

  6649.         movq	160(%rsp), %rbx
    6650. 

  6650.         # Multiply
    6651. 

  6651.         #  A[0] * B[0]
    6652. 

  6652.         movq	(%rbx), %rax
    6653. 

  6653.         mulq	(%rsi)
    6654. 

  6654.         movq	%rax, %r8
    6655. 

  6655.         movq	%rdx, %r9
    6656. 

  6656.         #  A[0] * B[1]
    6657. 

  6657.         movq	8(%rbx), %rax
    6658. 

  6658.         mulq	(%rsi)
    6659. 

  6659.         xorq	%r10, %r10
    6660. 

  6660.         addq	%rax, %r9
    6661. 

  6661.         adcq	%rdx, %r10
    6662. 

  6662.         #  A[1] * B[0]
    6663. 

  6663.         movq	(%rbx), %rax
    6664. 

  6664.         mulq	8(%rsi)
    6665. 

  6665.         xorq	%r11, %r11
    6666. 

  6666.         addq	%rax, %r9
    6667. 

  6667.         adcq	%rdx, %r10
    6668. 

  6668.         adcq	$0x00, %r11
    6669. 

  6669.         #  A[0] * B[2]
    6670. 

  6670.         movq	16(%rbx), %rax
    6671. 

  6671.         mulq	(%rsi)
    6672. 

  6672.         addq	%rax, %r10
    6673. 

  6673.         adcq	%rdx, %r11
    6674. 

  6674.         #  A[1] * B[1]
    6675. 

  6675.         movq	8(%rbx), %rax
    6676. 

  6676.         mulq	8(%rsi)
    6677. 

  6677.         xorq	%r12, %r12
    6678. 

  6678.         addq	%rax, %r10
    6679. 

  6679.         adcq	%rdx, %r11
    6680. 

  6680.         adcq	$0x00, %r12
    6681. 

  6681.         #  A[2] * B[0]
    6682. 

  6682.         movq	(%rbx), %rax
    6683. 

  6683.         mulq	16(%rsi)
    6684. 

  6684.         addq	%rax, %r10
    6685. 

  6685.         adcq	%rdx, %r11
    6686. 

  6686.         adcq	$0x00, %r12
    6687. 

  6687.         #  A[0] * B[3]
    6688. 

  6688.         movq	24(%rbx), %rax
    6689. 

  6689.         mulq	(%rsi)
    6690. 

  6690.         xorq	%r13, %r13
    6691. 

  6691.         addq	%rax, %r11
    6692. 

  6692.         adcq	%rdx, %r12
    6693. 

  6693.         adcq	$0x00, %r13
    6694. 

  6694.         #  A[1] * B[2]
    6695. 

  6695.         movq	16(%rbx), %rax
    6696. 

  6696.         mulq	8(%rsi)
    6697. 

  6697.         addq	%rax, %r11
    6698. 

  6698.         adcq	%rdx, %r12
    6699. 

  6699.         adcq	$0x00, %r13
    6700. 

  6700.         #  A[2] * B[1]
    6701. 

  6701.         movq	8(%rbx), %rax
    6702. 

  6702.         mulq	16(%rsi)
    6703. 

  6703.         addq	%rax, %r11
    6704. 

  6704.         adcq	%rdx, %r12
    6705. 

  6705.         adcq	$0x00, %r13
    6706. 

  6706.         #  A[3] * B[0]
    6707. 

  6707.         movq	(%rbx), %rax
    6708. 

  6708.         mulq	24(%rsi)
    6709. 

  6709.         addq	%rax, %r11
    6710. 

  6710.         adcq	%rdx, %r12
    6711. 

  6711.         adcq	$0x00, %r13
    6712. 

  6712.         #  A[1] * B[3]
    6713. 

  6713.         movq	24(%rbx), %rax
    6714. 

  6714.         mulq	8(%rsi)
    6715. 

  6715.         xorq	%r14, %r14
    6716. 

  6716.         addq	%rax, %r12
    6717. 

  6717.         adcq	%rdx, %r13
    6718. 

  6718.         adcq	$0x00, %r14
    6719. 

  6719.         #  A[2] * B[2]
    6720. 

  6720.         movq	16(%rbx), %rax
    6721. 

  6721.         mulq	16(%rsi)
    6722. 

  6722.         addq	%rax, %r12
    6723. 

  6723.         adcq	%rdx, %r13
    6724. 

  6724.         adcq	$0x00, %r14
    6725. 

  6725.         #  A[3] * B[1]
    6726. 

  6726.         movq	8(%rbx), %rax
    6727. 

  6727.         mulq	24(%rsi)
    6728. 

  6728.         addq	%rax, %r12
    6729. 

  6729.         adcq	%rdx, %r13
    6730. 

  6730.         adcq	$0x00, %r14
    6731. 

  6731.         #  A[2] * B[3]
    6732. 

  6732.         movq	24(%rbx), %rax
    6733. 

  6733.         mulq	16(%rsi)
    6734. 

  6734.         xorq	%r15, %r15
    6735. 

  6735.         addq	%rax, %r13
    6736. 

  6736.         adcq	%rdx, %r14
    6737. 

  6737.         adcq	$0x00, %r15
    6738. 

  6738.         #  A[3] * B[2]
    6739. 

  6739.         movq	16(%rbx), %rax
    6740. 

  6740.         mulq	24(%rsi)
    6741. 

  6741.         addq	%rax, %r13
    6742. 

  6742.         adcq	%rdx, %r14
    6743. 

  6743.         adcq	$0x00, %r15
    6744. 

  6744.         #  A[3] * B[3]
    6745. 

  6745.         movq	24(%rbx), %rax
    6746. 

  6746.         mulq	24(%rsi)
    6747. 

  6747.         addq	%rax, %r14
    6748. 

  6748.         adcq	%rdx, %r15
    6749. 

  6749.         # Reduce
    6750. 

  6750.         movq	$0x7fffffffffffffff, %rcx
    6751. 

  6751.         #  Move top half into t4-t7 and remove top bit from t3
    6752. 

  6752.         shldq	$0x01, %r14, %r15
    6753. 

  6753.         shldq	$0x01, %r13, %r14
    6754. 

  6754.         shldq	$0x01, %r12, %r13
    6755. 

  6755.         shldq	$0x01, %r11, %r12
    6756. 

  6756.         andq	%rcx, %r11
    6757. 

  6757.         #  Multiply top half by 19
    6758. 

  6758.         movq	$19, %rax
    6759. 

  6759.         mulq	%r12
    6760. 

  6760.         xorq	%r12, %r12
    6761. 

  6761.         addq	%rax, %r8
    6762. 

  6762.         movq	$19, %rax
    6763. 

  6763.         adcq	%rdx, %r12
    6764. 

  6764.         mulq	%r13
    6765. 

  6765.         xorq	%r13, %r13
    6766. 

  6766.         addq	%rax, %r9
    6767. 

  6767.         movq	$19, %rax
    6768. 

  6768.         adcq	%rdx, %r13
    6769. 

  6769.         mulq	%r14
    6770. 

  6770.         xorq	%r14, %r14
    6771. 

  6771.         addq	%rax, %r10
    6772. 

  6772.         movq	$19, %rax
    6773. 

  6773.         adcq	%rdx, %r14
    6774. 

  6774.         mulq	%r15
    6775. 

  6775.         #  Add remaining product results in
    6776. 

  6776.         addq	%r12, %r9
    6777. 

  6777.         adcq	%r13, %r10
    6778. 

  6778.         adcq	%r14, %r11
    6779. 

  6779.         adcq	%rax, %r11
    6780. 

  6780.         adcq	$0x00, %rdx
    6781. 

  6781.         #  Overflow
    6782. 

  6782.         shldq	$0x01, %r11, %rdx
    6783. 

  6783.         imulq	$19, %rdx, %rax
    6784. 

  6784.         andq	%rcx, %r11
    6785. 

  6785.         addq	%rax, %r8
    6786. 

  6786.         adcq	$0x00, %r9
    6787. 

  6787.         adcq	$0x00, %r10
    6788. 

  6788.         adcq	$0x00, %r11
    6789. 

  6789.         # Reduce if top bit set
    6790. 

  6790.         movq	%r11, %rdx
    6791. 

  6791.         shrq	$63, %rdx
    6792. 

  6792.         imulq	$19, %rdx, %rax
    6793. 

  6793.         andq	%rcx, %r11
    6794. 

  6794.         addq	%rax, %r8
    6795. 

  6795.         adcq	$0x00, %r9
    6796. 

  6796.         adcq	$0x00, %r10
    6797. 

  6797.         adcq	$0x00, %r11
    6798. 

  6798.         # Store
    6799. 

  6799.         movq	%r8, (%rdi)
    6800. 

  6800.         movq	%r9, 8(%rdi)
    6801. 

  6801.         movq	%r10, 16(%rdi)
    6802. 

  6802.         movq	%r11, 24(%rdi)
    6803. 

  6803.         movq	24(%rsp), %rdi
    6804. 

  6804.         movq	144(%rsp), %rsi
    6805. 

  6805.         movq	136(%rsp), %rbx
    6806. 

  6806.         # Multiply
    6807. 

  6807.         #  A[0] * B[0]
    6808. 

  6808.         movq	(%rbx), %rax
    6809. 

  6809.         mulq	(%rsi)
    6810. 

  6810.         movq	%rax, %r8
    6811. 

  6811.         movq	%rdx, %r9
    6812. 

  6812.         #  A[0] * B[1]
    6813. 

  6813.         movq	8(%rbx), %rax
    6814. 

  6814.         mulq	(%rsi)
    6815. 

  6815.         xorq	%r10, %r10
    6816. 

  6816.         addq	%rax, %r9
    6817. 

  6817.         adcq	%rdx, %r10
    6818. 

  6818.         #  A[1] * B[0]
    6819. 

  6819.         movq	(%rbx), %rax
    6820. 

  6820.         mulq	8(%rsi)
    6821. 

  6821.         xorq	%r11, %r11
    6822. 

  6822.         addq	%rax, %r9
    6823. 

  6823.         adcq	%rdx, %r10
    6824. 

  6824.         adcq	$0x00, %r11
    6825. 

  6825.         #  A[0] * B[2]
    6826. 

  6826.         movq	16(%rbx), %rax
    6827. 

  6827.         mulq	(%rsi)
    6828. 

  6828.         addq	%rax, %r10
    6829. 

  6829.         adcq	%rdx, %r11
    6830. 

  6830.         #  A[1] * B[1]
    6831. 

  6831.         movq	8(%rbx), %rax
    6832. 

  6832.         mulq	8(%rsi)
    6833. 

  6833.         xorq	%r12, %r12
    6834. 

  6834.         addq	%rax, %r10
    6835. 

  6835.         adcq	%rdx, %r11
    6836. 

  6836.         adcq	$0x00, %r12
    6837. 

  6837.         #  A[2] * B[0]
    6838. 

  6838.         movq	(%rbx), %rax
    6839. 

  6839.         mulq	16(%rsi)
    6840. 

  6840.         addq	%rax, %r10
    6841. 

  6841.         adcq	%rdx, %r11
    6842. 

  6842.         adcq	$0x00, %r12
    6843. 

  6843.         #  A[0] * B[3]
    6844. 

  6844.         movq	24(%rbx), %rax
    6845. 

  6845.         mulq	(%rsi)
    6846. 

  6846.         xorq	%r13, %r13
    6847. 

  6847.         addq	%rax, %r11
    6848. 

  6848.         adcq	%rdx, %r12
    6849. 

  6849.         adcq	$0x00, %r13
    6850. 

  6850.         #  A[1] * B[2]
    6851. 

  6851.         movq	16(%rbx), %rax
    6852. 

  6852.         mulq	8(%rsi)
    6853. 

  6853.         addq	%rax, %r11
    6854. 

  6854.         adcq	%rdx, %r12
    6855. 

  6855.         adcq	$0x00, %r13
    6856. 

  6856.         #  A[2] * B[1]
    6857. 

  6857.         movq	8(%rbx), %rax
    6858. 

  6858.         mulq	16(%rsi)
    6859. 

  6859.         addq	%rax, %r11
    6860. 

  6860.         adcq	%rdx, %r12
    6861. 

  6861.         adcq	$0x00, %r13
    6862. 

  6862.         #  A[3] * B[0]
    6863. 

  6863.         movq	(%rbx), %rax
    6864. 

  6864.         mulq	24(%rsi)
    6865. 

  6865.         addq	%rax, %r11
    6866. 

  6866.         adcq	%rdx, %r12
    6867. 

  6867.         adcq	$0x00, %r13
    6868. 

  6868.         #  A[1] * B[3]
    6869. 

  6869.         movq	24(%rbx), %rax
    6870. 

  6870.         mulq	8(%rsi)
    6871. 

  6871.         xorq	%r14, %r14
    6872. 

  6872.         addq	%rax, %r12
    6873. 

  6873.         adcq	%rdx, %r13
    6874. 

  6874.         adcq	$0x00, %r14
    6875. 

  6875.         #  A[2] * B[2]
    6876. 

  6876.         movq	16(%rbx), %rax
    6877. 

  6877.         mulq	16(%rsi)
    6878. 

  6878.         addq	%rax, %r12
    6879. 

  6879.         adcq	%rdx, %r13
    6880. 

  6880.         adcq	$0x00, %r14
    6881. 

  6881.         #  A[3] * B[1]
    6882. 

  6882.         movq	8(%rbx), %rax
    6883. 

  6883.         mulq	24(%rsi)
    6884. 

  6884.         addq	%rax, %r12
    6885. 

  6885.         adcq	%rdx, %r13
    6886. 

  6886.         adcq	$0x00, %r14
    6887. 

  6887.         #  A[2] * B[3]
    6888. 

  6888.         movq	24(%rbx), %rax
    6889. 

  6889.         mulq	16(%rsi)
    6890. 

  6890.         xorq	%r15, %r15
    6891. 

  6891.         addq	%rax, %r13
    6892. 

  6892.         adcq	%rdx, %r14
    6893. 

  6893.         adcq	$0x00, %r15
    6894. 

  6894.         #  A[3] * B[2]
    6895. 

  6895.         movq	16(%rbx), %rax
    6896. 

  6896.         mulq	24(%rsi)
    6897. 

  6897.         addq	%rax, %r13
    6898. 

  6898.         adcq	%rdx, %r14
    6899. 

  6899.         adcq	$0x00, %r15
    6900. 

  6900.         #  A[3] * B[3]
    6901. 

  6901.         movq	24(%rbx), %rax
    6902. 

  6902.         mulq	24(%rsi)
    6903. 

  6903.         addq	%rax, %r14
    6904. 

  6904.         adcq	%rdx, %r15
    6905. 

  6905.         # Reduce
    6906. 

  6906.         movq	$0x7fffffffffffffff, %rcx
    6907. 

  6907.         #  Move top half into t4-t7 and remove top bit from t3
    6908. 

  6908.         shldq	$0x01, %r14, %r15
    6909. 

  6909.         shldq	$0x01, %r13, %r14
    6910. 

  6910.         shldq	$0x01, %r12, %r13
    6911. 

  6911.         shldq	$0x01, %r11, %r12
    6912. 

  6912.         andq	%rcx, %r11
    6913. 

  6913.         #  Multiply top half by 19
    6914. 

  6914.         movq	$19, %rax
    6915. 

  6915.         mulq	%r12
    6916. 

  6916.         xorq	%r12, %r12
    6917. 

  6917.         addq	%rax, %r8
    6918. 

  6918.         movq	$19, %rax
    6919. 

  6919.         adcq	%rdx, %r12
    6920. 

  6920.         mulq	%r13
    6921. 

  6921.         xorq	%r13, %r13
    6922. 

  6922.         addq	%rax, %r9
    6923. 

  6923.         movq	$19, %rax
    6924. 

  6924.         adcq	%rdx, %r13
    6925. 

  6925.         mulq	%r14
    6926. 

  6926.         xorq	%r14, %r14
    6927. 

  6927.         addq	%rax, %r10
    6928. 

  6928.         movq	$19, %rax
    6929. 

  6929.         adcq	%rdx, %r14
    6930. 

  6930.         mulq	%r15
    6931. 

  6931.         #  Add remaining product results in
    6932. 

  6932.         addq	%r12, %r9
    6933. 

  6933.         adcq	%r13, %r10
    6934. 

  6934.         adcq	%r14, %r11
    6935. 

  6935.         adcq	%rax, %r11
    6936. 

  6936.         adcq	$0x00, %rdx
    6937. 

  6937.         #  Overflow
    6938. 

  6938.         shldq	$0x01, %r11, %rdx
    6939. 

  6939.         imulq	$19, %rdx, %rax
    6940. 

  6940.         andq	%rcx, %r11
    6941. 

  6941.         addq	%rax, %r8
    6942. 

  6942.         adcq	$0x00, %r9
    6943. 

  6943.         adcq	$0x00, %r10
    6944. 

  6944.         adcq	$0x00, %r11
    6945. 

  6945.         # Reduce if top bit set
    6946. 

  6946.         movq	%r11, %rdx
    6947. 

  6947.         shrq	$63, %rdx
    6948. 

  6948.         imulq	$19, %rdx, %rax
    6949. 

  6949.         andq	%rcx, %r11
    6950. 

  6950.         addq	%rax, %r8
    6951. 

  6951.         adcq	$0x00, %r9
    6952. 

  6952.         adcq	$0x00, %r10
    6953. 

  6953.         adcq	$0x00, %r11
    6954. 

  6954.         # Store
    6955. 

  6955.         movq	%r8, (%rdi)
    6956. 

  6956.         movq	%r9, 8(%rdi)
    6957. 

  6957.         movq	%r10, 16(%rdi)
    6958. 

  6958.         movq	%r11, 24(%rdi)
    6959. 

  6959.         leaq	48(%rsp), %rdi
    6960. 

  6960.         movq	128(%rsp), %rsi
    6961. 

  6961.         movq	128(%rsp), %rbx
    6962. 

  6962.         # Add
    6963. 

  6963.         movq	(%rsi), %r8
    6964. 

  6964.         movq	8(%rsi), %r9
    6965. 

  6965.         addq	(%rbx), %r8
    6966. 

  6966.         movq	16(%rsi), %r10
    6967. 

  6967.         adcq	8(%rbx), %r9
    6968. 

  6968.         movq	24(%rsi), %rcx
    6969. 

  6969.         adcq	16(%rbx), %r10
    6970. 

  6970.         movq	$-19, %rax
    6971. 

  6971.         adcq	24(%rbx), %rcx
    6972. 

  6972.         movq	$0x7fffffffffffffff, %rdx
    6973. 

  6973.         movq	%rcx, %r11
    6974. 

  6974.         sarq	$63, %rcx
    6975. 

  6975.         #   Mask the modulus
    6976. 

  6976.         andq	%rcx, %rax
    6977. 

  6977.         andq	%rcx, %rdx
    6978. 

  6978.         #   Sub modulus (if overflow)
    6979. 

  6979.         subq	%rax, %r8
    6980. 

  6980.         sbbq	%rcx, %r9
    6981. 

  6981.         sbbq	%rcx, %r10
    6982. 

  6982.         sbbq	%rdx, %r11
    6983. 

  6983.         movq	%r8, (%rdi)
    6984. 

  6984.         movq	%r9, 8(%rdi)
    6985. 

  6985.         movq	%r10, 16(%rdi)
    6986. 

  6986.         movq	%r11, 24(%rdi)
    6987. 

  6987.         movq	(%rsp), %rdi
    6988. 

  6988.         movq	16(%rsp), %rsi
    6989. 

  6989.         movq	8(%rsp), %rbx
    6990. 

  6990.         # Sub
    6991. 

  6991.         movq	(%rsi), %r8
    6992. 

  6992.         movq	8(%rsi), %r9
    6993. 

  6993.         movq	16(%rsi), %r10
    6994. 

  6994.         movq	24(%rsi), %r11
    6995. 

  6995.         subq	(%rbx), %r8
    6996. 

  6996.         movq	$0x00, %rcx
    6997. 

  6997.         sbbq	8(%rbx), %r9
    6998. 

  6998.         movq	$-19, %rax
    6999. 

  6999.         sbbq	16(%rbx), %r10
    7000. 

  7000.         movq	$0x7fffffffffffffff, %rdx
    7001. 

  7001.         sbbq	24(%rbx), %r11
    7002. 

  7002.         sbbq	$0x00, %rcx
    7003. 

  7003.         #   Mask the modulus
    7004. 

  7004.         andq	%rcx, %rax
    7005. 

  7005.         andq	%rcx, %rdx
    7006. 

  7006.         #   Add modulus (if underflow)
    7007. 

  7007.         addq	%rax, %r8
    7008. 

  7008.         adcq	%rcx, %r9
    7009. 

  7009.         adcq	%rcx, %r10
    7010. 

  7010.         adcq	%rdx, %r11
    7011. 

  7011.         movq	%r8, (%rdi)
    7012. 

  7012.         movq	%r9, 8(%rdi)
    7013. 

  7013.         movq	%r10, 16(%rdi)
    7014. 

  7014.         movq	%r11, 24(%rdi)
    7015. 

  7015.         movq	8(%rsp), %rdi
    7016. 

  7016.         movq	16(%rsp), %rsi
    7017. 

  7017.         movq	8(%rsp), %rbx
    7018. 

  7018.         # Add
    7019. 

  7019.         movq	(%rsi), %r8
    7020. 

  7020.         movq	8(%rsi), %r9
    7021. 

  7021.         addq	(%rbx), %r8
    7022. 

  7022.         movq	16(%rsi), %r10
    7023. 

  7023.         adcq	8(%rbx), %r9
    7024. 

  7024.         movq	24(%rsi), %rcx
    7025. 

  7025.         adcq	16(%rbx), %r10
    7026. 

  7026.         movq	$-19, %rax
    7027. 

  7027.         adcq	24(%rbx), %rcx
    7028. 

  7028.         movq	$0x7fffffffffffffff, %rdx
    7029. 

  7029.         movq	%rcx, %r11
    7030. 

  7030.         sarq	$63, %rcx
    7031. 

  7031.         #   Mask the modulus
    7032. 

  7032.         andq	%rcx, %rax
    7033. 

  7033.         andq	%rcx, %rdx
    7034. 

  7034.         #   Sub modulus (if overflow)
    7035. 

  7035.         subq	%rax, %r8
    7036. 

  7036.         sbbq	%rcx, %r9
    7037. 

  7037.         sbbq	%rcx, %r10
    7038. 

  7038.         sbbq	%rdx, %r11
    7039. 

  7039.         movq	%r8, (%rdi)
    7040. 

  7040.         movq	%r9, 8(%rdi)
    7041. 

  7041.         movq	%r10, 16(%rdi)
    7042. 

  7042.         movq	%r11, 24(%rdi)
    7043. 

  7043.         movq	16(%rsp), %rdi
    7044. 

  7044.         leaq	48(%rsp), %rsi
    7045. 

  7045.         movq	24(%rsp), %rbx
    7046. 

  7046.         # Add
    7047. 

  7047.         movq	(%rsi), %r8
    7048. 

  7048.         movq	8(%rsi), %r9
    7049. 

  7049.         addq	(%rbx), %r8
    7050. 

  7050.         movq	16(%rsi), %r10
    7051. 

  7051.         adcq	8(%rbx), %r9
    7052. 

  7052.         movq	24(%rsi), %rcx
    7053. 

  7053.         adcq	16(%rbx), %r10
    7054. 

  7054.         movq	$-19, %rax
    7055. 

  7055.         adcq	24(%rbx), %rcx
    7056. 

  7056.         movq	$0x7fffffffffffffff, %rdx
    7057. 

  7057.         movq	%rcx, %r11
    7058. 

  7058.         sarq	$63, %rcx
    7059. 

  7059.         #   Mask the modulus
    7060. 

  7060.         andq	%rcx, %rax
    7061. 

  7061.         andq	%rcx, %rdx
    7062. 

  7062.         #   Sub modulus (if overflow)
    7063. 

  7063.         subq	%rax, %r8
    7064. 

  7064.         sbbq	%rcx, %r9
    7065. 

  7065.         sbbq	%rcx, %r10
    7066. 

  7066.         sbbq	%rdx, %r11
    7067. 

  7067.         movq	%r8, (%rdi)
    7068. 

  7068.         movq	%r9, 8(%rdi)
    7069. 

  7069.         movq	%r10, 16(%rdi)
    7070. 

  7070.         movq	%r11, 24(%rdi)
    7071. 

  7071.         movq	24(%rsp), %rdi
    7072. 

  7072.         leaq	48(%rsp), %rsi
    7073. 

  7073.         movq	24(%rsp), %rbx
    7074. 

  7074.         # Sub
    7075. 

  7075.         movq	(%rsi), %r8
    7076. 

  7076.         movq	8(%rsi), %r9
    7077. 

  7077.         movq	16(%rsi), %r10
    7078. 

  7078.         movq	24(%rsi), %r11
    7079. 

  7079.         subq	(%rbx), %r8
    7080. 

  7080.         movq	$0x00, %rcx
    7081. 

  7081.         sbbq	8(%rbx), %r9
    7082. 

  7082.         movq	$-19, %rax
    7083. 

  7083.         sbbq	16(%rbx), %r10
    7084. 

  7084.         movq	$0x7fffffffffffffff, %rdx
    7085. 

  7085.         sbbq	24(%rbx), %r11
    7086. 

  7086.         sbbq	$0x00, %rcx
    7087. 

  7087.         #   Mask the modulus
    7088. 

  7088.         andq	%rcx, %rax
    7089. 

  7089.         andq	%rcx, %rdx
    7090. 

  7090.         #   Add modulus (if underflow)
    7091. 

  7091.         addq	%rax, %r8
    7092. 

  7092.         adcq	%rcx, %r9
    7093. 

  7093.         adcq	%rcx, %r10
    7094. 

  7094.         adcq	%rdx, %r11
    7095. 

  7095.         movq	%r8, (%rdi)
    7096. 

  7096.         movq	%r9, 8(%rdi)
    7097. 

  7097.         movq	%r10, 16(%rdi)
    7098. 

  7098.         movq	%r11, 24(%rdi)
    7099. 

  7099.         addq	$0x50, %rsp
    7100. 

  7100.         popq	%r15
    7101. 

  7101.         popq	%r14
    7102. 

  7102.         popq	%r13
    7103. 

  7103.         popq	%r12
    7104. 

  7104.         popq	%rbx
    7105. 

  7105.         repz retq
    7106. 

  7106. #ifndef __APPLE__
    7107. 

  7107. .size	fe_ge_madd_x64,.-fe_ge_madd_x64
    7108. 

  7108. #endif /* __APPLE__ */
    7109. 

  7109. #ifndef __APPLE__
    7110. 

  7110. .text
    7111. 

  7111. .globl	fe_ge_msub_x64
    7112. 

  7112. .type	fe_ge_msub_x64,@function
    7113. 

  7113. .align	16
    7114. 

  7114. fe_ge_msub_x64:
    7115. 

  7115. #else
    7116. 

  7116. .section	__TEXT,__text
    7117. 

  7117. .globl	_fe_ge_msub_x64
    7118. 

  7118. .p2align	4
    7119. 

  7119. _fe_ge_msub_x64:
    7120. 

  7120. #endif /* __APPLE__ */
    7121. 

  7121.         pushq	%rbx
    7122. 

  7122.         pushq	%r12
    7123. 

  7123.         pushq	%r13
    7124. 

  7124.         pushq	%r14
    7125. 

  7125.         pushq	%r15
    7126. 

  7126.         subq	$0x50, %rsp
    7127. 

  7127.         movq	%rdi, (%rsp)
    7128. 

  7128.         movq	%rsi, 8(%rsp)
    7129. 

  7129.         movq	%rdx, 16(%rsp)
    7130. 

  7130.         movq	%rcx, 24(%rsp)
    7131. 

  7131.         movq	%r8, 32(%rsp)
    7132. 

  7132.         movq	%r9, 40(%rsp)
    7133. 

  7133.         movq	(%rsp), %rdi
    7134. 

  7134.         movq	40(%rsp), %rsi
    7135. 

  7135.         movq	32(%rsp), %rbx
    7136. 

  7136.         # Add
    7137. 

  7137.         movq	(%rsi), %r8
    7138. 

  7138.         movq	8(%rsi), %r9
    7139. 

  7139.         addq	(%rbx), %r8
    7140. 

  7140.         movq	16(%rsi), %r10
    7141. 

  7141.         adcq	8(%rbx), %r9
    7142. 

  7142.         movq	24(%rsi), %rcx
    7143. 

  7143.         adcq	16(%rbx), %r10
    7144. 

  7144.         movq	$-19, %rax
    7145. 

  7145.         adcq	24(%rbx), %rcx
    7146. 

  7146.         movq	$0x7fffffffffffffff, %rdx
    7147. 

  7147.         movq	%rcx, %r11
    7148. 

  7148.         sarq	$63, %rcx
    7149. 

  7149.         #   Mask the modulus
    7150. 

  7150.         andq	%rcx, %rax
    7151. 

  7151.         andq	%rcx, %rdx
    7152. 

  7152.         #   Sub modulus (if overflow)
    7153. 

  7153.         subq	%rax, %r8
    7154. 

  7154.         sbbq	%rcx, %r9
    7155. 

  7155.         sbbq	%rcx, %r10
    7156. 

  7156.         sbbq	%rdx, %r11
    7157. 

  7157.         movq	%r8, (%rdi)
    7158. 

  7158.         movq	%r9, 8(%rdi)
    7159. 

  7159.         movq	%r10, 16(%rdi)
    7160. 

  7160.         movq	%r11, 24(%rdi)
    7161. 

  7161.         movq	8(%rsp), %rdi
    7162. 

  7162.         movq	40(%rsp), %rsi
    7163. 

  7163.         movq	32(%rsp), %rbx
    7164. 

  7164.         # Sub
    7165. 

  7165.         movq	(%rsi), %r8
    7166. 

  7166.         movq	8(%rsi), %r9
    7167. 

  7167.         movq	16(%rsi), %r10
    7168. 

  7168.         movq	24(%rsi), %r11
    7169. 

  7169.         subq	(%rbx), %r8
    7170. 

  7170.         movq	$0x00, %rcx
    7171. 

  7171.         sbbq	8(%rbx), %r9
    7172. 

  7172.         movq	$-19, %rax
    7173. 

  7173.         sbbq	16(%rbx), %r10
    7174. 

  7174.         movq	$0x7fffffffffffffff, %rdx
    7175. 

  7175.         sbbq	24(%rbx), %r11
    7176. 

  7176.         sbbq	$0x00, %rcx
    7177. 

  7177.         #   Mask the modulus
    7178. 

  7178.         andq	%rcx, %rax
    7179. 

  7179.         andq	%rcx, %rdx
    7180. 

  7180.         #   Add modulus (if underflow)
    7181. 

  7181.         addq	%rax, %r8
    7182. 

  7182.         adcq	%rcx, %r9
    7183. 

  7183.         adcq	%rcx, %r10
    7184. 

  7184.         adcq	%rdx, %r11
    7185. 

  7185.         movq	%r8, (%rdi)
    7186. 

  7186.         movq	%r9, 8(%rdi)
    7187. 

  7187.         movq	%r10, 16(%rdi)
    7188. 

  7188.         movq	%r11, 24(%rdi)
    7189. 

  7189.         movq	16(%rsp), %rdi
    7190. 

  7190.         movq	(%rsp), %rsi
    7191. 

  7191.         movq	160(%rsp), %rbx
    7192. 

  7192.         # Multiply
    7193. 

  7193.         #  A[0] * B[0]
    7194. 

  7194.         movq	(%rbx), %rax
    7195. 

  7195.         mulq	(%rsi)
    7196. 

  7196.         movq	%rax, %r8
    7197. 

  7197.         movq	%rdx, %r9
    7198. 

  7198.         #  A[0] * B[1]
    7199. 

  7199.         movq	8(%rbx), %rax
    7200. 

  7200.         mulq	(%rsi)
    7201. 

  7201.         xorq	%r10, %r10
    7202. 

  7202.         addq	%rax, %r9
    7203. 

  7203.         adcq	%rdx, %r10
    7204. 

  7204.         #  A[1] * B[0]
    7205. 

  7205.         movq	(%rbx), %rax
    7206. 

  7206.         mulq	8(%rsi)
    7207. 

  7207.         xorq	%r11, %r11
    7208. 

  7208.         addq	%rax, %r9
    7209. 

  7209.         adcq	%rdx, %r10
    7210. 

  7210.         adcq	$0x00, %r11
    7211. 

  7211.         #  A[0] * B[2]
    7212. 

  7212.         movq	16(%rbx), %rax
    7213. 

  7213.         mulq	(%rsi)
    7214. 

  7214.         addq	%rax, %r10
    7215. 

  7215.         adcq	%rdx, %r11
    7216. 

  7216.         #  A[1] * B[1]
    7217. 

  7217.         movq	8(%rbx), %rax
    7218. 

  7218.         mulq	8(%rsi)
    7219. 

  7219.         xorq	%r12, %r12
    7220. 

  7220.         addq	%rax, %r10
    7221. 

  7221.         adcq	%rdx, %r11
    7222. 

  7222.         adcq	$0x00, %r12
    7223. 

  7223.         #  A[2] * B[0]
    7224. 

  7224.         movq	(%rbx), %rax
    7225. 

  7225.         mulq	16(%rsi)
    7226. 

  7226.         addq	%rax, %r10
    7227. 

  7227.         adcq	%rdx, %r11
    7228. 

  7228.         adcq	$0x00, %r12
    7229. 

  7229.         #  A[0] * B[3]
    7230. 

  7230.         movq	24(%rbx), %rax
    7231. 

  7231.         mulq	(%rsi)
    7232. 

  7232.         xorq	%r13, %r13
    7233. 

  7233.         addq	%rax, %r11
    7234. 

  7234.         adcq	%rdx, %r12
    7235. 

  7235.         adcq	$0x00, %r13
    7236. 

  7236.         #  A[1] * B[2]
    7237. 

  7237.         movq	16(%rbx), %rax
    7238. 

  7238.         mulq	8(%rsi)
    7239. 

  7239.         addq	%rax, %r11
    7240. 

  7240.         adcq	%rdx, %r12
    7241. 

  7241.         adcq	$0x00, %r13
    7242. 

  7242.         #  A[2] * B[1]
    7243. 

  7243.         movq	8(%rbx), %rax
    7244. 

  7244.         mulq	16(%rsi)
    7245. 

  7245.         addq	%rax, %r11
    7246. 

  7246.         adcq	%rdx, %r12
    7247. 

  7247.         adcq	$0x00, %r13
    7248. 

  7248.         #  A[3] * B[0]
    7249. 

  7249.         movq	(%rbx), %rax
    7250. 

  7250.         mulq	24(%rsi)
    7251. 

  7251.         addq	%rax, %r11
    7252. 

  7252.         adcq	%rdx, %r12
    7253. 

  7253.         adcq	$0x00, %r13
    7254. 

  7254.         #  A[1] * B[3]
    7255. 

  7255.         movq	24(%rbx), %rax
    7256. 

  7256.         mulq	8(%rsi)
    7257. 

  7257.         xorq	%r14, %r14
    7258. 

  7258.         addq	%rax, %r12
    7259. 

  7259.         adcq	%rdx, %r13
    7260. 

  7260.         adcq	$0x00, %r14
    7261. 

  7261.         #  A[2] * B[2]
    7262. 

  7262.         movq	16(%rbx), %rax
    7263. 

  7263.         mulq	16(%rsi)
    7264. 

  7264.         addq	%rax, %r12
    7265. 

  7265.         adcq	%rdx, %r13
    7266. 

  7266.         adcq	$0x00, %r14
    7267. 

  7267.         #  A[3] * B[1]
    7268. 

  7268.         movq	8(%rbx), %rax
    7269. 

  7269.         mulq	24(%rsi)
    7270. 

  7270.         addq	%rax, %r12
    7271. 

  7271.         adcq	%rdx, %r13
    7272. 

  7272.         adcq	$0x00, %r14
    7273. 

  7273.         #  A[2] * B[3]
    7274. 

  7274.         movq	24(%rbx), %rax
    7275. 

  7275.         mulq	16(%rsi)
    7276. 

  7276.         xorq	%r15, %r15
    7277. 

  7277.         addq	%rax, %r13
    7278. 

  7278.         adcq	%rdx, %r14
    7279. 

  7279.         adcq	$0x00, %r15
    7280. 

  7280.         #  A[3] * B[2]
    7281. 

  7281.         movq	16(%rbx), %rax
    7282. 

  7282.         mulq	24(%rsi)
    7283. 

  7283.         addq	%rax, %r13
    7284. 

  7284.         adcq	%rdx, %r14
    7285. 

  7285.         adcq	$0x00, %r15
    7286. 

  7286.         #  A[3] * B[3]
    7287. 

  7287.         movq	24(%rbx), %rax
    7288. 

  7288.         mulq	24(%rsi)
    7289. 

  7289.         addq	%rax, %r14
    7290. 

  7290.         adcq	%rdx, %r15
    7291. 

  7291.         # Reduce
    7292. 

  7292.         movq	$0x7fffffffffffffff, %rcx
    7293. 

  7293.         #  Move top half into t4-t7 and remove top bit from t3
    7294. 

  7294.         shldq	$0x01, %r14, %r15
    7295. 

  7295.         shldq	$0x01, %r13, %r14
    7296. 

  7296.         shldq	$0x01, %r12, %r13
    7297. 

  7297.         shldq	$0x01, %r11, %r12
    7298. 

  7298.         andq	%rcx, %r11
    7299. 

  7299.         #  Multiply top half by 19
    7300. 

  7300.         movq	$19, %rax
    7301. 

  7301.         mulq	%r12
    7302. 

  7302.         xorq	%r12, %r12
    7303. 

  7303.         addq	%rax, %r8
    7304. 

  7304.         movq	$19, %rax
    7305. 

  7305.         adcq	%rdx, %r12
    7306. 

  7306.         mulq	%r13
    7307. 

  7307.         xorq	%r13, %r13
    7308. 

  7308.         addq	%rax, %r9
    7309. 

  7309.         movq	$19, %rax
    7310. 

  7310.         adcq	%rdx, %r13
    7311. 

  7311.         mulq	%r14
    7312. 

  7312.         xorq	%r14, %r14
    7313. 

  7313.         addq	%rax, %r10
    7314. 

  7314.         movq	$19, %rax
    7315. 

  7315.         adcq	%rdx, %r14
    7316. 

  7316.         mulq	%r15
    7317. 

  7317.         #  Add remaining product results in
    7318. 

  7318.         addq	%r12, %r9
    7319. 

  7319.         adcq	%r13, %r10
    7320. 

  7320.         adcq	%r14, %r11
    7321. 

  7321.         adcq	%rax, %r11
    7322. 

  7322.         adcq	$0x00, %rdx
    7323. 

  7323.         #  Overflow
    7324. 

  7324.         shldq	$0x01, %r11, %rdx
    7325. 

  7325.         imulq	$19, %rdx, %rax
    7326. 

  7326.         andq	%rcx, %r11
    7327. 

  7327.         addq	%rax, %r8
    7328. 

  7328.         adcq	$0x00, %r9
    7329. 

  7329.         adcq	$0x00, %r10
    7330. 

  7330.         adcq	$0x00, %r11
    7331. 

  7331.         # Reduce if top bit set
    7332. 

  7332.         movq	%r11, %rdx
    7333. 

  7333.         shrq	$63, %rdx
    7334. 

  7334.         imulq	$19, %rdx, %rax
    7335. 

  7335.         andq	%rcx, %r11
    7336. 

  7336.         addq	%rax, %r8
    7337. 

  7337.         adcq	$0x00, %r9
    7338. 

  7338.         adcq	$0x00, %r10
    7339. 

  7339.         adcq	$0x00, %r11
    7340. 

  7340.         # Store
    7341. 

  7341.         movq	%r8, (%rdi)
    7342. 

  7342.         movq	%r9, 8(%rdi)
    7343. 

  7343.         movq	%r10, 16(%rdi)
    7344. 

  7344.         movq	%r11, 24(%rdi)
    7345. 

  7345.         movq	8(%rsp), %rdi
    7346. 

  7346.         movq	8(%rsp), %rsi
    7347. 

  7347.         movq	152(%rsp), %rbx
    7348. 

  7348.         # Multiply
    7349. 

  7349.         #  A[0] * B[0]
    7350. 

  7350.         movq	(%rbx), %rax
    7351. 

  7351.         mulq	(%rsi)
    7352. 

  7352.         movq	%rax, %r8
    7353. 

  7353.         movq	%rdx, %r9
    7354. 

  7354.         #  A[0] * B[1]
    7355. 

  7355.         movq	8(%rbx), %rax
    7356. 

  7356.         mulq	(%rsi)
    7357. 

  7357.         xorq	%r10, %r10
    7358. 

  7358.         addq	%rax, %r9
    7359. 

  7359.         adcq	%rdx, %r10
    7360. 

  7360.         #  A[1] * B[0]
    7361. 

  7361.         movq	(%rbx), %rax
    7362. 

  7362.         mulq	8(%rsi)
    7363. 

  7363.         xorq	%r11, %r11
    7364. 

  7364.         addq	%rax, %r9
    7365. 

  7365.         adcq	%rdx, %r10
    7366. 

  7366.         adcq	$0x00, %r11
    7367. 

  7367.         #  A[0] * B[2]
    7368. 

  7368.         movq	16(%rbx), %rax
    7369. 

  7369.         mulq	(%rsi)
    7370. 

  7370.         addq	%rax, %r10
    7371. 

  7371.         adcq	%rdx, %r11
    7372. 

  7372.         #  A[1] * B[1]
    7373. 

  7373.         movq	8(%rbx), %rax
    7374. 

  7374.         mulq	8(%rsi)
    7375. 

  7375.         xorq	%r12, %r12
    7376. 

  7376.         addq	%rax, %r10
    7377. 

  7377.         adcq	%rdx, %r11
    7378. 

  7378.         adcq	$0x00, %r12
    7379. 

  7379.         #  A[2] * B[0]
    7380. 

  7380.         movq	(%rbx), %rax
    7381. 

  7381.         mulq	16(%rsi)
    7382. 

  7382.         addq	%rax, %r10
    7383. 

  7383.         adcq	%rdx, %r11
    7384. 

  7384.         adcq	$0x00, %r12
    7385. 

  7385.         #  A[0] * B[3]
    7386. 

  7386.         movq	24(%rbx), %rax
    7387. 

  7387.         mulq	(%rsi)
    7388. 

  7388.         xorq	%r13, %r13
    7389. 

  7389.         addq	%rax, %r11
    7390. 

  7390.         adcq	%rdx, %r12
    7391. 

  7391.         adcq	$0x00, %r13
    7392. 

  7392.         #  A[1] * B[2]
    7393. 

  7393.         movq	16(%rbx), %rax
    7394. 

  7394.         mulq	8(%rsi)
    7395. 

  7395.         addq	%rax, %r11
    7396. 

  7396.         adcq	%rdx, %r12
    7397. 

  7397.         adcq	$0x00, %r13
    7398. 

  7398.         #  A[2] * B[1]
    7399. 

  7399.         movq	8(%rbx), %rax
    7400. 

  7400.         mulq	16(%rsi)
    7401. 

  7401.         addq	%rax, %r11
    7402. 

  7402.         adcq	%rdx, %r12
    7403. 

  7403.         adcq	$0x00, %r13
    7404. 

  7404.         #  A[3] * B[0]
    7405. 

  7405.         movq	(%rbx), %rax
    7406. 

  7406.         mulq	24(%rsi)
    7407. 

  7407.         addq	%rax, %r11
    7408. 

  7408.         adcq	%rdx, %r12
    7409. 

  7409.         adcq	$0x00, %r13
    7410. 

  7410.         #  A[1] * B[3]
    7411. 

  7411.         movq	24(%rbx), %rax
    7412. 

  7412.         mulq	8(%rsi)
    7413. 

  7413.         xorq	%r14, %r14
    7414. 

  7414.         addq	%rax, %r12
    7415. 

  7415.         adcq	%rdx, %r13
    7416. 

  7416.         adcq	$0x00, %r14
    7417. 

  7417.         #  A[2] * B[2]
    7418. 

  7418.         movq	16(%rbx), %rax
    7419. 

  7419.         mulq	16(%rsi)
    7420. 

  7420.         addq	%rax, %r12
    7421. 

  7421.         adcq	%rdx, %r13
    7422. 

  7422.         adcq	$0x00, %r14
    7423. 

  7423.         #  A[3] * B[1]
    7424. 

  7424.         movq	8(%rbx), %rax
    7425. 

  7425.         mulq	24(%rsi)
    7426. 

  7426.         addq	%rax, %r12
    7427. 

  7427.         adcq	%rdx, %r13
    7428. 

  7428.         adcq	$0x00, %r14
    7429. 

  7429.         #  A[2] * B[3]
    7430. 

  7430.         movq	24(%rbx), %rax
    7431. 

  7431.         mulq	16(%rsi)
    7432. 

  7432.         xorq	%r15, %r15
    7433. 

  7433.         addq	%rax, %r13
    7434. 

  7434.         adcq	%rdx, %r14
    7435. 

  7435.         adcq	$0x00, %r15
    7436. 

  7436.         #  A[3] * B[2]
    7437. 

  7437.         movq	16(%rbx), %rax
    7438. 

  7438.         mulq	24(%rsi)
    7439. 

  7439.         addq	%rax, %r13
    7440. 

  7440.         adcq	%rdx, %r14
    7441. 

  7441.         adcq	$0x00, %r15
    7442. 

  7442.         #  A[3] * B[3]
    7443. 

  7443.         movq	24(%rbx), %rax
    7444. 

  7444.         mulq	24(%rsi)
    7445. 

  7445.         addq	%rax, %r14
    7446. 

  7446.         adcq	%rdx, %r15
    7447. 

  7447.         # Reduce
    7448. 

  7448.         movq	$0x7fffffffffffffff, %rcx
    7449. 

  7449.         #  Move top half into t4-t7 and remove top bit from t3
    7450. 

  7450.         shldq	$0x01, %r14, %r15
    7451. 

  7451.         shldq	$0x01, %r13, %r14
    7452. 

  7452.         shldq	$0x01, %r12, %r13
    7453. 

  7453.         shldq	$0x01, %r11, %r12
    7454. 

  7454.         andq	%rcx, %r11
    7455. 

  7455.         #  Multiply top half by 19
    7456. 

  7456.         movq	$19, %rax
    7457. 

  7457.         mulq	%r12
    7458. 

  7458.         xorq	%r12, %r12
    7459. 

  7459.         addq	%rax, %r8
    7460. 

  7460.         movq	$19, %rax
    7461. 

  7461.         adcq	%rdx, %r12
    7462. 

  7462.         mulq	%r13
    7463. 

  7463.         xorq	%r13, %r13
    7464. 

  7464.         addq	%rax, %r9
    7465. 

  7465.         movq	$19, %rax
    7466. 

  7466.         adcq	%rdx, %r13
    7467. 

  7467.         mulq	%r14
    7468. 

  7468.         xorq	%r14, %r14
    7469. 

  7469.         addq	%rax, %r10
    7470. 

  7470.         movq	$19, %rax
    7471. 

  7471.         adcq	%rdx, %r14
    7472. 

  7472.         mulq	%r15
    7473. 

  7473.         #  Add remaining product results in
    7474. 

  7474.         addq	%r12, %r9
    7475. 

  7475.         adcq	%r13, %r10
    7476. 

  7476.         adcq	%r14, %r11
    7477. 

  7477.         adcq	%rax, %r11
    7478. 

  7478.         adcq	$0x00, %rdx
    7479. 

  7479.         #  Overflow
    7480. 

  7480.         shldq	$0x01, %r11, %rdx
    7481. 

  7481.         imulq	$19, %rdx, %rax
    7482. 

  7482.         andq	%rcx, %r11
    7483. 

  7483.         addq	%rax, %r8
    7484. 

  7484.         adcq	$0x00, %r9
    7485. 

  7485.         adcq	$0x00, %r10
    7486. 

  7486.         adcq	$0x00, %r11
    7487. 

  7487.         # Reduce if top bit set
    7488. 

  7488.         movq	%r11, %rdx
    7489. 

  7489.         shrq	$63, %rdx
    7490. 

  7490.         imulq	$19, %rdx, %rax
    7491. 

  7491.         andq	%rcx, %r11
    7492. 

  7492.         addq	%rax, %r8
    7493. 

  7493.         adcq	$0x00, %r9
    7494. 

  7494.         adcq	$0x00, %r10
    7495. 

  7495.         adcq	$0x00, %r11
    7496. 

  7496.         # Store
    7497. 

  7497.         movq	%r8, (%rdi)
    7498. 

  7498.         movq	%r9, 8(%rdi)
    7499. 

  7499.         movq	%r10, 16(%rdi)
    7500. 

  7500.         movq	%r11, 24(%rdi)
    7501. 

  7501.         movq	24(%rsp), %rdi
    7502. 

  7502.         movq	144(%rsp), %rsi
    7503. 

  7503.         movq	136(%rsp), %rbx
    7504. 

  7504.         # Multiply
    7505. 

  7505.         #  A[0] * B[0]
    7506. 

  7506.         movq	(%rbx), %rax
    7507. 

  7507.         mulq	(%rsi)
    7508. 

  7508.         movq	%rax, %r8
    7509. 

  7509.         movq	%rdx, %r9
    7510. 

  7510.         #  A[0] * B[1]
    7511. 

  7511.         movq	8(%rbx), %rax
    7512. 

  7512.         mulq	(%rsi)
    7513. 

  7513.         xorq	%r10, %r10
    7514. 

  7514.         addq	%rax, %r9
    7515. 

  7515.         adcq	%rdx, %r10
    7516. 

  7516.         #  A[1] * B[0]
    7517. 

  7517.         movq	(%rbx), %rax
    7518. 

  7518.         mulq	8(%rsi)
    7519. 

  7519.         xorq	%r11, %r11
    7520. 

  7520.         addq	%rax, %r9
    7521. 

  7521.         adcq	%rdx, %r10
    7522. 

  7522.         adcq	$0x00, %r11
    7523. 

  7523.         #  A[0] * B[2]
    7524. 

  7524.         movq	16(%rbx), %rax
    7525. 

  7525.         mulq	(%rsi)
    7526. 

  7526.         addq	%rax, %r10
    7527. 

  7527.         adcq	%rdx, %r11
    7528. 

  7528.         #  A[1] * B[1]
    7529. 

  7529.         movq	8(%rbx), %rax
    7530. 

  7530.         mulq	8(%rsi)
    7531. 

  7531.         xorq	%r12, %r12
    7532. 

  7532.         addq	%rax, %r10
    7533. 

  7533.         adcq	%rdx, %r11
    7534. 

  7534.         adcq	$0x00, %r12
    7535. 

  7535.         #  A[2] * B[0]
    7536. 

  7536.         movq	(%rbx), %rax
    7537. 

  7537.         mulq	16(%rsi)
    7538. 

  7538.         addq	%rax, %r10
    7539. 

  7539.         adcq	%rdx, %r11
    7540. 

  7540.         adcq	$0x00, %r12
    7541. 

  7541.         #  A[0] * B[3]
    7542. 

  7542.         movq	24(%rbx), %rax
    7543. 

  7543.         mulq	(%rsi)
    7544. 

  7544.         xorq	%r13, %r13
    7545. 

  7545.         addq	%rax, %r11
    7546. 

  7546.         adcq	%rdx, %r12
    7547. 

  7547.         adcq	$0x00, %r13
    7548. 

  7548.         #  A[1] * B[2]
    7549. 

  7549.         movq	16(%rbx), %rax
    7550. 

  7550.         mulq	8(%rsi)
    7551. 

  7551.         addq	%rax, %r11
    7552. 

  7552.         adcq	%rdx, %r12
    7553. 

  7553.         adcq	$0x00, %r13
    7554. 

  7554.         #  A[2] * B[1]
    7555. 

  7555.         movq	8(%rbx), %rax
    7556. 

  7556.         mulq	16(%rsi)
    7557. 

  7557.         addq	%rax, %r11
    7558. 

  7558.         adcq	%rdx, %r12
    7559. 

  7559.         adcq	$0x00, %r13
    7560. 

  7560.         #  A[3] * B[0]
    7561. 

  7561.         movq	(%rbx), %rax
    7562. 

  7562.         mulq	24(%rsi)
    7563. 

  7563.         addq	%rax, %r11
    7564. 

  7564.         adcq	%rdx, %r12
    7565. 

  7565.         adcq	$0x00, %r13
    7566. 

  7566.         #  A[1] * B[3]
    7567. 

  7567.         movq	24(%rbx), %rax
    7568. 

  7568.         mulq	8(%rsi)
    7569. 

  7569.         xorq	%r14, %r14
    7570. 

  7570.         addq	%rax, %r12
    7571. 

  7571.         adcq	%rdx, %r13
    7572. 

  7572.         adcq	$0x00, %r14
    7573. 

  7573.         #  A[2] * B[2]
    7574. 

  7574.         movq	16(%rbx), %rax
    7575. 

  7575.         mulq	16(%rsi)
    7576. 

  7576.         addq	%rax, %r12
    7577. 

  7577.         adcq	%rdx, %r13
    7578. 

  7578.         adcq	$0x00, %r14
    7579. 

  7579.         #  A[3] * B[1]
    7580. 

  7580.         movq	8(%rbx), %rax
    7581. 

  7581.         mulq	24(%rsi)
    7582. 

  7582.         addq	%rax, %r12
    7583. 

  7583.         adcq	%rdx, %r13
    7584. 

  7584.         adcq	$0x00, %r14
    7585. 

  7585.         #  A[2] * B[3]
    7586. 

  7586.         movq	24(%rbx), %rax
    7587. 

  7587.         mulq	16(%rsi)
    7588. 

  7588.         xorq	%r15, %r15
    7589. 

  7589.         addq	%rax, %r13
    7590. 

  7590.         adcq	%rdx, %r14
    7591. 

  7591.         adcq	$0x00, %r15
    7592. 

  7592.         #  A[3] * B[2]
    7593. 

  7593.         movq	16(%rbx), %rax
    7594. 

  7594.         mulq	24(%rsi)
    7595. 

  7595.         addq	%rax, %r13
    7596. 

  7596.         adcq	%rdx, %r14
    7597. 

  7597.         adcq	$0x00, %r15
    7598. 

  7598.         #  A[3] * B[3]
    7599. 

  7599.         movq	24(%rbx), %rax
    7600. 

  7600.         mulq	24(%rsi)
    7601. 

  7601.         addq	%rax, %r14
    7602. 

  7602.         adcq	%rdx, %r15
    7603. 

  7603.         # Reduce
    7604. 

  7604.         movq	$0x7fffffffffffffff, %rcx
    7605. 

  7605.         #  Move top half into t4-t7 and remove top bit from t3
    7606. 

  7606.         shldq	$0x01, %r14, %r15
    7607. 

  7607.         shldq	$0x01, %r13, %r14
    7608. 

  7608.         shldq	$0x01, %r12, %r13
    7609. 

  7609.         shldq	$0x01, %r11, %r12
    7610. 

  7610.         andq	%rcx, %r11
    7611. 

  7611.         #  Multiply top half by 19
    7612. 

  7612.         movq	$19, %rax
    7613. 

  7613.         mulq	%r12
    7614. 

  7614.         xorq	%r12, %r12
    7615. 

  7615.         addq	%rax, %r8
    7616. 

  7616.         movq	$19, %rax
    7617. 

  7617.         adcq	%rdx, %r12
    7618. 

  7618.         mulq	%r13
    7619. 

  7619.         xorq	%r13, %r13
    7620. 

  7620.         addq	%rax, %r9
    7621. 

  7621.         movq	$19, %rax
    7622. 

  7622.         adcq	%rdx, %r13
    7623. 

  7623.         mulq	%r14
    7624. 

  7624.         xorq	%r14, %r14
    7625. 

  7625.         addq	%rax, %r10
    7626. 

  7626.         movq	$19, %rax
    7627. 

  7627.         adcq	%rdx, %r14
    7628. 

  7628.         mulq	%r15
    7629. 

  7629.         #  Add remaining product results in
    7630. 

  7630.         addq	%r12, %r9
    7631. 

  7631.         adcq	%r13, %r10
    7632. 

  7632.         adcq	%r14, %r11
    7633. 

  7633.         adcq	%rax, %r11
    7634. 

  7634.         adcq	$0x00, %rdx
    7635. 

  7635.         #  Overflow
    7636. 

  7636.         shldq	$0x01, %r11, %rdx
    7637. 

  7637.         imulq	$19, %rdx, %rax
    7638. 

  7638.         andq	%rcx, %r11
    7639. 

  7639.         addq	%rax, %r8
    7640. 

  7640.         adcq	$0x00, %r9
    7641. 

  7641.         adcq	$0x00, %r10
    7642. 

  7642.         adcq	$0x00, %r11
    7643. 

  7643.         # Reduce if top bit set
    7644. 

  7644.         movq	%r11, %rdx
    7645. 

  7645.         shrq	$63, %rdx
    7646. 

  7646.         imulq	$19, %rdx, %rax
    7647. 

  7647.         andq	%rcx, %r11
    7648. 

  7648.         addq	%rax, %r8
    7649. 

  7649.         adcq	$0x00, %r9
    7650. 

  7650.         adcq	$0x00, %r10
    7651. 

  7651.         adcq	$0x00, %r11
    7652. 

  7652.         # Store
    7653. 

  7653.         movq	%r8, (%rdi)
    7654. 

  7654.         movq	%r9, 8(%rdi)
    7655. 

  7655.         movq	%r10, 16(%rdi)
    7656. 

  7656.         movq	%r11, 24(%rdi)
    7657. 

  7657.         leaq	48(%rsp), %rdi
    7658. 

  7658.         movq	128(%rsp), %rsi
    7659. 

  7659.         movq	128(%rsp), %rbx
    7660. 

  7660.         # Add
    7661. 

  7661.         movq	(%rsi), %r8
    7662. 

  7662.         movq	8(%rsi), %r9
    7663. 

  7663.         addq	(%rbx), %r8
    7664. 

  7664.         movq	16(%rsi), %r10
    7665. 

  7665.         adcq	8(%rbx), %r9
    7666. 

  7666.         movq	24(%rsi), %rcx
    7667. 

  7667.         adcq	16(%rbx), %r10
    7668. 

  7668.         movq	$-19, %rax
    7669. 

  7669.         adcq	24(%rbx), %rcx
    7670. 

  7670.         movq	$0x7fffffffffffffff, %rdx
    7671. 

  7671.         movq	%rcx, %r11
    7672. 

  7672.         sarq	$63, %rcx
    7673. 

  7673.         #   Mask the modulus
    7674. 

  7674.         andq	%rcx, %rax
    7675. 

  7675.         andq	%rcx, %rdx
    7676. 

  7676.         #   Sub modulus (if overflow)
    7677. 

  7677.         subq	%rax, %r8
    7678. 

  7678.         sbbq	%rcx, %r9
    7679. 

  7679.         sbbq	%rcx, %r10
    7680. 

  7680.         sbbq	%rdx, %r11
    7681. 

  7681.         movq	%r8, (%rdi)
    7682. 

  7682.         movq	%r9, 8(%rdi)
    7683. 

  7683.         movq	%r10, 16(%rdi)
    7684. 

  7684.         movq	%r11, 24(%rdi)
    7685. 

  7685.         movq	(%rsp), %rdi
    7686. 

  7686.         movq	16(%rsp), %rsi
    7687. 

  7687.         movq	8(%rsp), %rbx
    7688. 

  7688.         # Sub
    7689. 

  7689.         movq	(%rsi), %r8
    7690. 

  7690.         movq	8(%rsi), %r9
    7691. 

  7691.         movq	16(%rsi), %r10
    7692. 

  7692.         movq	24(%rsi), %r11
    7693. 

  7693.         subq	(%rbx), %r8
    7694. 

  7694.         movq	$0x00, %rcx
    7695. 

  7695.         sbbq	8(%rbx), %r9
    7696. 

  7696.         movq	$-19, %rax
    7697. 

  7697.         sbbq	16(%rbx), %r10
    7698. 

  7698.         movq	$0x7fffffffffffffff, %rdx
    7699. 

  7699.         sbbq	24(%rbx), %r11
    7700. 

  7700.         sbbq	$0x00, %rcx
    7701. 

  7701.         #   Mask the modulus
    7702. 

  7702.         andq	%rcx, %rax
    7703. 

  7703.         andq	%rcx, %rdx
    7704. 

  7704.         #   Add modulus (if underflow)
    7705. 

  7705.         addq	%rax, %r8
    7706. 

  7706.         adcq	%rcx, %r9
    7707. 

  7707.         adcq	%rcx, %r10
    7708. 

  7708.         adcq	%rdx, %r11
    7709. 

  7709.         movq	%r8, (%rdi)
    7710. 

  7710.         movq	%r9, 8(%rdi)
    7711. 

  7711.         movq	%r10, 16(%rdi)
    7712. 

  7712.         movq	%r11, 24(%rdi)
    7713. 

  7713.         movq	8(%rsp), %rdi
    7714. 

  7714.         movq	16(%rsp), %rsi
    7715. 

  7715.         movq	8(%rsp), %rbx
    7716. 

  7716.         # Add
    7717. 

  7717.         movq	(%rsi), %r8
    7718. 

  7718.         movq	8(%rsi), %r9
    7719. 

  7719.         addq	(%rbx), %r8
    7720. 

  7720.         movq	16(%rsi), %r10
    7721. 

  7721.         adcq	8(%rbx), %r9
    7722. 

  7722.         movq	24(%rsi), %rcx
    7723. 

  7723.         adcq	16(%rbx), %r10
    7724. 

  7724.         movq	$-19, %rax
    7725. 

  7725.         adcq	24(%rbx), %rcx
    7726. 

  7726.         movq	$0x7fffffffffffffff, %rdx
    7727. 

  7727.         movq	%rcx, %r11
    7728. 

  7728.         sarq	$63, %rcx
    7729. 

  7729.         #   Mask the modulus
    7730. 

  7730.         andq	%rcx, %rax
    7731. 

  7731.         andq	%rcx, %rdx
    7732. 

  7732.         #   Sub modulus (if overflow)
    7733. 

  7733.         subq	%rax, %r8
    7734. 

  7734.         sbbq	%rcx, %r9
    7735. 

  7735.         sbbq	%rcx, %r10
    7736. 

  7736.         sbbq	%rdx, %r11
    7737. 

  7737.         movq	%r8, (%rdi)
    7738. 

  7738.         movq	%r9, 8(%rdi)
    7739. 

  7739.         movq	%r10, 16(%rdi)
    7740. 

  7740.         movq	%r11, 24(%rdi)
    7741. 

  7741.         movq	16(%rsp), %rdi
    7742. 

  7742.         leaq	48(%rsp), %rsi
    7743. 

  7743.         movq	24(%rsp), %rbx
    7744. 

  7744.         # Sub
    7745. 

  7745.         movq	(%rsi), %r8
    7746. 

  7746.         movq	8(%rsi), %r9
    7747. 

  7747.         movq	16(%rsi), %r10
    7748. 

  7748.         movq	24(%rsi), %r11
    7749. 

  7749.         subq	(%rbx), %r8
    7750. 

  7750.         movq	$0x00, %rcx
    7751. 

  7751.         sbbq	8(%rbx), %r9
    7752. 

  7752.         movq	$-19, %rax
    7753. 

  7753.         sbbq	16(%rbx), %r10
    7754. 

  7754.         movq	$0x7fffffffffffffff, %rdx
    7755. 

  7755.         sbbq	24(%rbx), %r11
    7756. 

  7756.         sbbq	$0x00, %rcx
    7757. 

  7757.         #   Mask the modulus
    7758. 

  7758.         andq	%rcx, %rax
    7759. 

  7759.         andq	%rcx, %rdx
    7760. 

  7760.         #   Add modulus (if underflow)
    7761. 

  7761.         addq	%rax, %r8
    7762. 

  7762.         adcq	%rcx, %r9
    7763. 

  7763.         adcq	%rcx, %r10
    7764. 

  7764.         adcq	%rdx, %r11
    7765. 

  7765.         movq	%r8, (%rdi)
    7766. 

  7766.         movq	%r9, 8(%rdi)
    7767. 

  7767.         movq	%r10, 16(%rdi)
    7768. 

  7768.         movq	%r11, 24(%rdi)
    7769. 

  7769.         movq	24(%rsp), %rdi
    7770. 

  7770.         leaq	48(%rsp), %rsi
    7771. 

  7771.         movq	24(%rsp), %rbx
    7772. 

  7772.         # Add
    7773. 

  7773.         movq	(%rsi), %r8
    7774. 

  7774.         movq	8(%rsi), %r9
    7775. 

  7775.         addq	(%rbx), %r8
    7776. 

  7776.         movq	16(%rsi), %r10
    7777. 

  7777.         adcq	8(%rbx), %r9
    7778. 

  7778.         movq	24(%rsi), %rcx
    7779. 

  7779.         adcq	16(%rbx), %r10
    7780. 

  7780.         movq	$-19, %rax
    7781. 

  7781.         adcq	24(%rbx), %rcx
    7782. 

  7782.         movq	$0x7fffffffffffffff, %rdx
    7783. 

  7783.         movq	%rcx, %r11
    7784. 

  7784.         sarq	$63, %rcx
    7785. 

  7785.         #   Mask the modulus
    7786. 

  7786.         andq	%rcx, %rax
    7787. 

  7787.         andq	%rcx, %rdx
    7788. 

  7788.         #   Sub modulus (if overflow)
    7789. 

  7789.         subq	%rax, %r8
    7790. 

  7790.         sbbq	%rcx, %r9
    7791. 

  7791.         sbbq	%rcx, %r10
    7792. 

  7792.         sbbq	%rdx, %r11
    7793. 

  7793.         movq	%r8, (%rdi)
    7794. 

  7794.         movq	%r9, 8(%rdi)
    7795. 

  7795.         movq	%r10, 16(%rdi)
    7796. 

  7796.         movq	%r11, 24(%rdi)
    7797. 

  7797.         addq	$0x50, %rsp
    7798. 

  7798.         popq	%r15
    7799. 

  7799.         popq	%r14
    7800. 

  7800.         popq	%r13
    7801. 

  7801.         popq	%r12
    7802. 

  7802.         popq	%rbx
    7803. 

  7803.         repz retq
    7804. 

  7804. #ifndef __APPLE__
    7805. 

  7805. .size	fe_ge_msub_x64,.-fe_ge_msub_x64
    7806. 

  7806. #endif /* __APPLE__ */
    7807. 

  7807. #ifndef __APPLE__
    7808. 

  7808. .text
    7809. 

  7809. .globl	fe_ge_add_x64
    7810. 

  7810. .type	fe_ge_add_x64,@function
    7811. 

  7811. .align	16
    7812. 

  7812. fe_ge_add_x64:
    7813. 

  7813. #else
    7814. 

  7814. .section	__TEXT,__text
    7815. 

  7815. .globl	_fe_ge_add_x64
    7816. 

  7816. .p2align	4
    7817. 

  7817. _fe_ge_add_x64:
    7818. 

  7818. #endif /* __APPLE__ */
    7819. 

  7819.         pushq	%rbx
    7820. 

  7820.         pushq	%r12
    7821. 

  7821.         pushq	%r13
    7822. 

  7822.         pushq	%r14
    7823. 

  7823.         pushq	%r15
    7824. 

  7824.         subq	$0x50, %rsp
    7825. 

  7825.         movq	%rdi, (%rsp)
    7826. 

  7826.         movq	%rsi, 8(%rsp)
    7827. 

  7827.         movq	%rdx, 16(%rsp)
    7828. 

  7828.         movq	%rcx, 24(%rsp)
    7829. 

  7829.         movq	%r8, 32(%rsp)
    7830. 

  7830.         movq	%r9, 40(%rsp)
    7831. 

  7831.         movq	(%rsp), %rdi
    7832. 

  7832.         movq	40(%rsp), %rsi
    7833. 

  7833.         movq	32(%rsp), %rbx
    7834. 

  7834.         # Add
    7835. 

  7835.         movq	(%rsi), %r8
    7836. 

  7836.         movq	8(%rsi), %r9
    7837. 

  7837.         addq	(%rbx), %r8
    7838. 

  7838.         movq	16(%rsi), %r10
    7839. 

  7839.         adcq	8(%rbx), %r9
    7840. 

  7840.         movq	24(%rsi), %rcx
    7841. 

  7841.         adcq	16(%rbx), %r10
    7842. 

  7842.         movq	$-19, %rax
    7843. 

  7843.         adcq	24(%rbx), %rcx
    7844. 

  7844.         movq	$0x7fffffffffffffff, %rdx
    7845. 

  7845.         movq	%rcx, %r11
    7846. 

  7846.         sarq	$63, %rcx
    7847. 

  7847.         #   Mask the modulus
    7848. 

  7848.         andq	%rcx, %rax
    7849. 

  7849.         andq	%rcx, %rdx
    7850. 

  7850.         #   Sub modulus (if overflow)
    7851. 

  7851.         subq	%rax, %r8
    7852. 

  7852.         sbbq	%rcx, %r9
    7853. 

  7853.         sbbq	%rcx, %r10
    7854. 

  7854.         sbbq	%rdx, %r11
    7855. 

  7855.         movq	%r8, (%rdi)
    7856. 

  7856.         movq	%r9, 8(%rdi)
    7857. 

  7857.         movq	%r10, 16(%rdi)
    7858. 

  7858.         movq	%r11, 24(%rdi)
    7859. 

  7859.         movq	8(%rsp), %rdi
    7860. 

  7860.         movq	40(%rsp), %rsi
    7861. 

  7861.         movq	32(%rsp), %rbx
    7862. 

  7862.         # Sub
    7863. 

  7863.         movq	(%rsi), %r8
    7864. 

  7864.         movq	8(%rsi), %r9
    7865. 

  7865.         movq	16(%rsi), %r10
    7866. 

  7866.         movq	24(%rsi), %r11
    7867. 

  7867.         subq	(%rbx), %r8
    7868. 

  7868.         movq	$0x00, %rcx
    7869. 

  7869.         sbbq	8(%rbx), %r9
    7870. 

  7870.         movq	$-19, %rax
    7871. 

  7871.         sbbq	16(%rbx), %r10
    7872. 

  7872.         movq	$0x7fffffffffffffff, %rdx
    7873. 

  7873.         sbbq	24(%rbx), %r11
    7874. 

  7874.         sbbq	$0x00, %rcx
    7875. 

  7875.         #   Mask the modulus
    7876. 

  7876.         andq	%rcx, %rax
    7877. 

  7877.         andq	%rcx, %rdx
    7878. 

  7878.         #   Add modulus (if underflow)
    7879. 

  7879.         addq	%rax, %r8
    7880. 

  7880.         adcq	%rcx, %r9
    7881. 

  7881.         adcq	%rcx, %r10
    7882. 

  7882.         adcq	%rdx, %r11
    7883. 

  7883.         movq	%r8, (%rdi)
    7884. 

  7884.         movq	%r9, 8(%rdi)
    7885. 

  7885.         movq	%r10, 16(%rdi)
    7886. 

  7886.         movq	%r11, 24(%rdi)
    7887. 

  7887.         movq	16(%rsp), %rdi
    7888. 

  7888.         movq	(%rsp), %rsi
    7889. 

  7889.         movq	160(%rsp), %rbx
    7890. 

  7890.         # Multiply
    7891. 

  7891.         #  A[0] * B[0]
    7892. 

  7892.         movq	(%rbx), %rax
    7893. 

  7893.         mulq	(%rsi)
    7894. 

  7894.         movq	%rax, %r8
    7895. 

  7895.         movq	%rdx, %r9
    7896. 

  7896.         #  A[0] * B[1]
    7897. 

  7897.         movq	8(%rbx), %rax
    7898. 

  7898.         mulq	(%rsi)
    7899. 

  7899.         xorq	%r10, %r10
    7900. 

  7900.         addq	%rax, %r9
    7901. 

  7901.         adcq	%rdx, %r10
    7902. 

  7902.         #  A[1] * B[0]
    7903. 

  7903.         movq	(%rbx), %rax
    7904. 

  7904.         mulq	8(%rsi)
    7905. 

  7905.         xorq	%r11, %r11
    7906. 

  7906.         addq	%rax, %r9
    7907. 

  7907.         adcq	%rdx, %r10
    7908. 

  7908.         adcq	$0x00, %r11
    7909. 

  7909.         #  A[0] * B[2]
    7910. 

  7910.         movq	16(%rbx), %rax
    7911. 

  7911.         mulq	(%rsi)
    7912. 

  7912.         addq	%rax, %r10
    7913. 

  7913.         adcq	%rdx, %r11
    7914. 

  7914.         #  A[1] * B[1]
    7915. 

  7915.         movq	8(%rbx), %rax
    7916. 

  7916.         mulq	8(%rsi)
    7917. 

  7917.         xorq	%r12, %r12
    7918. 

  7918.         addq	%rax, %r10
    7919. 

  7919.         adcq	%rdx, %r11
    7920. 

  7920.         adcq	$0x00, %r12
    7921. 

  7921.         #  A[2] * B[0]
    7922. 

  7922.         movq	(%rbx), %rax
    7923. 

  7923.         mulq	16(%rsi)
    7924. 

  7924.         addq	%rax, %r10
    7925. 

  7925.         adcq	%rdx, %r11
    7926. 

  7926.         adcq	$0x00, %r12
    7927. 

  7927.         #  A[0] * B[3]
    7928. 

  7928.         movq	24(%rbx), %rax
    7929. 

  7929.         mulq	(%rsi)
    7930. 

  7930.         xorq	%r13, %r13
    7931. 

  7931.         addq	%rax, %r11
    7932. 

  7932.         adcq	%rdx, %r12
    7933. 

  7933.         adcq	$0x00, %r13
    7934. 

  7934.         #  A[1] * B[2]
    7935. 

  7935.         movq	16(%rbx), %rax
    7936. 

  7936.         mulq	8(%rsi)
    7937. 

  7937.         addq	%rax, %r11
    7938. 

  7938.         adcq	%rdx, %r12
    7939. 

  7939.         adcq	$0x00, %r13
    7940. 

  7940.         #  A[2] * B[1]
    7941. 

  7941.         movq	8(%rbx), %rax
    7942. 

  7942.         mulq	16(%rsi)
    7943. 

  7943.         addq	%rax, %r11
    7944. 

  7944.         adcq	%rdx, %r12
    7945. 

  7945.         adcq	$0x00, %r13
    7946. 

  7946.         #  A[3] * B[0]
    7947. 

  7947.         movq	(%rbx), %rax
    7948. 

  7948.         mulq	24(%rsi)
    7949. 

  7949.         addq	%rax, %r11
    7950. 

  7950.         adcq	%rdx, %r12
    7951. 

  7951.         adcq	$0x00, %r13
    7952. 

  7952.         #  A[1] * B[3]
    7953. 

  7953.         movq	24(%rbx), %rax
    7954. 

  7954.         mulq	8(%rsi)
    7955. 

  7955.         xorq	%r14, %r14
    7956. 

  7956.         addq	%rax, %r12
    7957. 

  7957.         adcq	%rdx, %r13
    7958. 

  7958.         adcq	$0x00, %r14
    7959. 

  7959.         #  A[2] * B[2]
    7960. 

  7960.         movq	16(%rbx), %rax
    7961. 

  7961.         mulq	16(%rsi)
    7962. 

  7962.         addq	%rax, %r12
    7963. 

  7963.         adcq	%rdx, %r13
    7964. 

  7964.         adcq	$0x00, %r14
    7965. 

  7965.         #  A[3] * B[1]
    7966. 

  7966.         movq	8(%rbx), %rax
    7967. 

  7967.         mulq	24(%rsi)
    7968. 

  7968.         addq	%rax, %r12
    7969. 

  7969.         adcq	%rdx, %r13
    7970. 

  7970.         adcq	$0x00, %r14
    7971. 

  7971.         #  A[2] * B[3]
    7972. 

  7972.         movq	24(%rbx), %rax
    7973. 

  7973.         mulq	16(%rsi)
    7974. 

  7974.         xorq	%r15, %r15
    7975. 

  7975.         addq	%rax, %r13
    7976. 

  7976.         adcq	%rdx, %r14
    7977. 

  7977.         adcq	$0x00, %r15
    7978. 

  7978.         #  A[3] * B[2]
    7979. 

  7979.         movq	16(%rbx), %rax
    7980. 

  7980.         mulq	24(%rsi)
    7981. 

  7981.         addq	%rax, %r13
    7982. 

  7982.         adcq	%rdx, %r14
    7983. 

  7983.         adcq	$0x00, %r15
    7984. 

  7984.         #  A[3] * B[3]
    7985. 

  7985.         movq	24(%rbx), %rax
    7986. 

  7986.         mulq	24(%rsi)
    7987. 

  7987.         addq	%rax, %r14
    7988. 

  7988.         adcq	%rdx, %r15
    7989. 

  7989.         # Reduce
    7990. 

  7990.         movq	$0x7fffffffffffffff, %rcx
    7991. 

  7991.         #  Move top half into t4-t7 and remove top bit from t3
    7992. 

  7992.         shldq	$0x01, %r14, %r15
    7993. 

  7993.         shldq	$0x01, %r13, %r14
    7994. 

  7994.         shldq	$0x01, %r12, %r13
    7995. 

  7995.         shldq	$0x01, %r11, %r12
    7996. 

  7996.         andq	%rcx, %r11
    7997. 

  7997.         #  Multiply top half by 19
    7998. 

  7998.         movq	$19, %rax
    7999. 

  7999.         mulq	%r12
    8000. 

  8000.         xorq	%r12, %r12
    8001. 

  8001.         addq	%rax, %r8
    8002. 

  8002.         movq	$19, %rax
    8003. 

  8003.         adcq	%rdx, %r12
    8004. 

  8004.         mulq	%r13
    8005. 

  8005.         xorq	%r13, %r13
    8006. 

  8006.         addq	%rax, %r9
    8007. 

  8007.         movq	$19, %rax
    8008. 

  8008.         adcq	%rdx, %r13
    8009. 

  8009.         mulq	%r14
    8010. 

  8010.         xorq	%r14, %r14
    8011. 

  8011.         addq	%rax, %r10
    8012. 

  8012.         movq	$19, %rax
    8013. 

  8013.         adcq	%rdx, %r14
    8014. 

  8014.         mulq	%r15
    8015. 

  8015.         #  Add remaining product results in
    8016. 

  8016.         addq	%r12, %r9
    8017. 

  8017.         adcq	%r13, %r10
    8018. 

  8018.         adcq	%r14, %r11
    8019. 

  8019.         adcq	%rax, %r11
    8020. 

  8020.         adcq	$0x00, %rdx
    8021. 

  8021.         #  Overflow
    8022. 

  8022.         shldq	$0x01, %r11, %rdx
    8023. 

  8023.         imulq	$19, %rdx, %rax
    8024. 

  8024.         andq	%rcx, %r11
    8025. 

  8025.         addq	%rax, %r8
    8026. 

  8026.         adcq	$0x00, %r9
    8027. 

  8027.         adcq	$0x00, %r10
    8028. 

  8028.         adcq	$0x00, %r11
    8029. 

  8029.         # Reduce if top bit set
    8030. 

  8030.         movq	%r11, %rdx
    8031. 

  8031.         shrq	$63, %rdx
    8032. 

  8032.         imulq	$19, %rdx, %rax
    8033. 

  8033.         andq	%rcx, %r11
    8034. 

  8034.         addq	%rax, %r8
    8035. 

  8035.         adcq	$0x00, %r9
    8036. 

  8036.         adcq	$0x00, %r10
    8037. 

  8037.         adcq	$0x00, %r11
    8038. 

  8038.         # Store
    8039. 

  8039.         movq	%r8, (%rdi)
    8040. 

  8040.         movq	%r9, 8(%rdi)
    8041. 

  8041.         movq	%r10, 16(%rdi)
    8042. 

  8042.         movq	%r11, 24(%rdi)
    8043. 

  8043.         movq	8(%rsp), %rdi
    8044. 

  8044.         movq	8(%rsp), %rsi
    8045. 

  8045.         movq	168(%rsp), %rbx
    8046. 

  8046.         # Multiply
    8047. 

  8047.         #  A[0] * B[0]
    8048. 

  8048.         movq	(%rbx), %rax
    8049. 

  8049.         mulq	(%rsi)
    8050. 

  8050.         movq	%rax, %r8
    8051. 

  8051.         movq	%rdx, %r9
    8052. 

  8052.         #  A[0] * B[1]
    8053. 

  8053.         movq	8(%rbx), %rax
    8054. 

  8054.         mulq	(%rsi)
    8055. 

  8055.         xorq	%r10, %r10
    8056. 

  8056.         addq	%rax, %r9
    8057. 

  8057.         adcq	%rdx, %r10
    8058. 

  8058.         #  A[1] * B[0]
    8059. 

  8059.         movq	(%rbx), %rax
    8060. 

  8060.         mulq	8(%rsi)
    8061. 

  8061.         xorq	%r11, %r11
    8062. 

  8062.         addq	%rax, %r9
    8063. 

  8063.         adcq	%rdx, %r10
    8064. 

  8064.         adcq	$0x00, %r11
    8065. 

  8065.         #  A[0] * B[2]
    8066. 

  8066.         movq	16(%rbx), %rax
    8067. 

  8067.         mulq	(%rsi)
    8068. 

  8068.         addq	%rax, %r10
    8069. 

  8069.         adcq	%rdx, %r11
    8070. 

  8070.         #  A[1] * B[1]
    8071. 

  8071.         movq	8(%rbx), %rax
    8072. 

  8072.         mulq	8(%rsi)
    8073. 

  8073.         xorq	%r12, %r12
    8074. 

  8074.         addq	%rax, %r10
    8075. 

  8075.         adcq	%rdx, %r11
    8076. 

  8076.         adcq	$0x00, %r12
    8077. 

  8077.         #  A[2] * B[0]
    8078. 

  8078.         movq	(%rbx), %rax
    8079. 

  8079.         mulq	16(%rsi)
    8080. 

  8080.         addq	%rax, %r10
    8081. 

  8081.         adcq	%rdx, %r11
    8082. 

  8082.         adcq	$0x00, %r12
    8083. 

  8083.         #  A[0] * B[3]
    8084. 

  8084.         movq	24(%rbx), %rax
    8085. 

  8085.         mulq	(%rsi)
    8086. 

  8086.         xorq	%r13, %r13
    8087. 

  8087.         addq	%rax, %r11
    8088. 

  8088.         adcq	%rdx, %r12
    8089. 

  8089.         adcq	$0x00, %r13
    8090. 

  8090.         #  A[1] * B[2]
    8091. 

  8091.         movq	16(%rbx), %rax
    8092. 

  8092.         mulq	8(%rsi)
    8093. 

  8093.         addq	%rax, %r11
    8094. 

  8094.         adcq	%rdx, %r12
    8095. 

  8095.         adcq	$0x00, %r13
    8096. 

  8096.         #  A[2] * B[1]
    8097. 

  8097.         movq	8(%rbx), %rax
    8098. 

  8098.         mulq	16(%rsi)
    8099. 

  8099.         addq	%rax, %r11
    8100. 

  8100.         adcq	%rdx, %r12
    8101. 

  8101.         adcq	$0x00, %r13
    8102. 

  8102.         #  A[3] * B[0]
    8103. 

  8103.         movq	(%rbx), %rax
    8104. 

  8104.         mulq	24(%rsi)
    8105. 

  8105.         addq	%rax, %r11
    8106. 

  8106.         adcq	%rdx, %r12
    8107. 

  8107.         adcq	$0x00, %r13
    8108. 

  8108.         #  A[1] * B[3]
    8109. 

  8109.         movq	24(%rbx), %rax
    8110. 

  8110.         mulq	8(%rsi)
    8111. 

  8111.         xorq	%r14, %r14
    8112. 

  8112.         addq	%rax, %r12
    8113. 

  8113.         adcq	%rdx, %r13
    8114. 

  8114.         adcq	$0x00, %r14
    8115. 

  8115.         #  A[2] * B[2]
    8116. 

  8116.         movq	16(%rbx), %rax
    8117. 

  8117.         mulq	16(%rsi)
    8118. 

  8118.         addq	%rax, %r12
    8119. 

  8119.         adcq	%rdx, %r13
    8120. 

  8120.         adcq	$0x00, %r14
    8121. 

  8121.         #  A[3] * B[1]
    8122. 

  8122.         movq	8(%rbx), %rax
    8123. 

  8123.         mulq	24(%rsi)
    8124. 

  8124.         addq	%rax, %r12
    8125. 

  8125.         adcq	%rdx, %r13
    8126. 

  8126.         adcq	$0x00, %r14
    8127. 

  8127.         #  A[2] * B[3]
    8128. 

  8128.         movq	24(%rbx), %rax
    8129. 

  8129.         mulq	16(%rsi)
    8130. 

  8130.         xorq	%r15, %r15
    8131. 

  8131.         addq	%rax, %r13
    8132. 

  8132.         adcq	%rdx, %r14
    8133. 

  8133.         adcq	$0x00, %r15
    8134. 

  8134.         #  A[3] * B[2]
    8135. 

  8135.         movq	16(%rbx), %rax
    8136. 

  8136.         mulq	24(%rsi)
    8137. 

  8137.         addq	%rax, %r13
    8138. 

  8138.         adcq	%rdx, %r14
    8139. 

  8139.         adcq	$0x00, %r15
    8140. 

  8140.         #  A[3] * B[3]
    8141. 

  8141.         movq	24(%rbx), %rax
    8142. 

  8142.         mulq	24(%rsi)
    8143. 

  8143.         addq	%rax, %r14
    8144. 

  8144.         adcq	%rdx, %r15
    8145. 

  8145.         # Reduce
    8146. 

  8146.         movq	$0x7fffffffffffffff, %rcx
    8147. 

  8147.         #  Move top half into t4-t7 and remove top bit from t3
    8148. 

  8148.         shldq	$0x01, %r14, %r15
    8149. 

  8149.         shldq	$0x01, %r13, %r14
    8150. 

  8150.         shldq	$0x01, %r12, %r13
    8151. 

  8151.         shldq	$0x01, %r11, %r12
    8152. 

  8152.         andq	%rcx, %r11
    8153. 

  8153.         #  Multiply top half by 19
    8154. 

  8154.         movq	$19, %rax
    8155. 

  8155.         mulq	%r12
    8156. 

  8156.         xorq	%r12, %r12
    8157. 

  8157.         addq	%rax, %r8
    8158. 

  8158.         movq	$19, %rax
    8159. 

  8159.         adcq	%rdx, %r12
    8160. 

  8160.         mulq	%r13
    8161. 

  8161.         xorq	%r13, %r13
    8162. 

  8162.         addq	%rax, %r9
    8163. 

  8163.         movq	$19, %rax
    8164. 

  8164.         adcq	%rdx, %r13
    8165. 

  8165.         mulq	%r14
    8166. 

  8166.         xorq	%r14, %r14
    8167. 

  8167.         addq	%rax, %r10
    8168. 

  8168.         movq	$19, %rax
    8169. 

  8169.         adcq	%rdx, %r14
    8170. 

  8170.         mulq	%r15
    8171. 

  8171.         #  Add remaining product results in
    8172. 

  8172.         addq	%r12, %r9
    8173. 

  8173.         adcq	%r13, %r10
    8174. 

  8174.         adcq	%r14, %r11
    8175. 

  8175.         adcq	%rax, %r11
    8176. 

  8176.         adcq	$0x00, %rdx
    8177. 

  8177.         #  Overflow
    8178. 

  8178.         shldq	$0x01, %r11, %rdx
    8179. 

  8179.         imulq	$19, %rdx, %rax
    8180. 

  8180.         andq	%rcx, %r11
    8181. 

  8181.         addq	%rax, %r8
    8182. 

  8182.         adcq	$0x00, %r9
    8183. 

  8183.         adcq	$0x00, %r10
    8184. 

  8184.         adcq	$0x00, %r11
    8185. 

  8185.         # Reduce if top bit set
    8186. 

  8186.         movq	%r11, %rdx
    8187. 

  8187.         shrq	$63, %rdx
    8188. 

  8188.         imulq	$19, %rdx, %rax
    8189. 

  8189.         andq	%rcx, %r11
    8190. 

  8190.         addq	%rax, %r8
    8191. 

  8191.         adcq	$0x00, %r9
    8192. 

  8192.         adcq	$0x00, %r10
    8193. 

  8193.         adcq	$0x00, %r11
    8194. 

  8194.         # Store
    8195. 

  8195.         movq	%r8, (%rdi)
    8196. 

  8196.         movq	%r9, 8(%rdi)
    8197. 

  8197.         movq	%r10, 16(%rdi)
    8198. 

  8198.         movq	%r11, 24(%rdi)
    8199. 

  8199.         movq	24(%rsp), %rdi
    8200. 

  8200.         movq	152(%rsp), %rsi
    8201. 

  8201.         movq	136(%rsp), %rbx
    8202. 

  8202.         # Multiply
    8203. 

  8203.         #  A[0] * B[0]
    8204. 

  8204.         movq	(%rbx), %rax
    8205. 

  8205.         mulq	(%rsi)
    8206. 

  8206.         movq	%rax, %r8
    8207. 

  8207.         movq	%rdx, %r9
    8208. 

  8208.         #  A[0] * B[1]
    8209. 

  8209.         movq	8(%rbx), %rax
    8210. 

  8210.         mulq	(%rsi)
    8211. 

  8211.         xorq	%r10, %r10
    8212. 

  8212.         addq	%rax, %r9
    8213. 

  8213.         adcq	%rdx, %r10
    8214. 

  8214.         #  A[1] * B[0]
    8215. 

  8215.         movq	(%rbx), %rax
    8216. 

  8216.         mulq	8(%rsi)
    8217. 

  8217.         xorq	%r11, %r11
    8218. 

  8218.         addq	%rax, %r9
    8219. 

  8219.         adcq	%rdx, %r10
    8220. 

  8220.         adcq	$0x00, %r11
    8221. 

  8221.         #  A[0] * B[2]
    8222. 

  8222.         movq	16(%rbx), %rax
    8223. 

  8223.         mulq	(%rsi)
    8224. 

  8224.         addq	%rax, %r10
    8225. 

  8225.         adcq	%rdx, %r11
    8226. 

  8226.         #  A[1] * B[1]
    8227. 

  8227.         movq	8(%rbx), %rax
    8228. 

  8228.         mulq	8(%rsi)
    8229. 

  8229.         xorq	%r12, %r12
    8230. 

  8230.         addq	%rax, %r10
    8231. 

  8231.         adcq	%rdx, %r11
    8232. 

  8232.         adcq	$0x00, %r12
    8233. 

  8233.         #  A[2] * B[0]
    8234. 

  8234.         movq	(%rbx), %rax
    8235. 

  8235.         mulq	16(%rsi)
    8236. 

  8236.         addq	%rax, %r10
    8237. 

  8237.         adcq	%rdx, %r11
    8238. 

  8238.         adcq	$0x00, %r12
    8239. 

  8239.         #  A[0] * B[3]
    8240. 

  8240.         movq	24(%rbx), %rax
    8241. 

  8241.         mulq	(%rsi)
    8242. 

  8242.         xorq	%r13, %r13
    8243. 

  8243.         addq	%rax, %r11
    8244. 

  8244.         adcq	%rdx, %r12
    8245. 

  8245.         adcq	$0x00, %r13
    8246. 

  8246.         #  A[1] * B[2]
    8247. 

  8247.         movq	16(%rbx), %rax
    8248. 

  8248.         mulq	8(%rsi)
    8249. 

  8249.         addq	%rax, %r11
    8250. 

  8250.         adcq	%rdx, %r12
    8251. 

  8251.         adcq	$0x00, %r13
    8252. 

  8252.         #  A[2] * B[1]
    8253. 

  8253.         movq	8(%rbx), %rax
    8254. 

  8254.         mulq	16(%rsi)
    8255. 

  8255.         addq	%rax, %r11
    8256. 

  8256.         adcq	%rdx, %r12
    8257. 

  8257.         adcq	$0x00, %r13
    8258. 

  8258.         #  A[3] * B[0]
    8259. 

  8259.         movq	(%rbx), %rax
    8260. 

  8260.         mulq	24(%rsi)
    8261. 

  8261.         addq	%rax, %r11
    8262. 

  8262.         adcq	%rdx, %r12
    8263. 

  8263.         adcq	$0x00, %r13
    8264. 

  8264.         #  A[1] * B[3]
    8265. 

  8265.         movq	24(%rbx), %rax
    8266. 

  8266.         mulq	8(%rsi)
    8267. 

  8267.         xorq	%r14, %r14
    8268. 

  8268.         addq	%rax, %r12
    8269. 

  8269.         adcq	%rdx, %r13
    8270. 

  8270.         adcq	$0x00, %r14
    8271. 

  8271.         #  A[2] * B[2]
    8272. 

  8272.         movq	16(%rbx), %rax
    8273. 

  8273.         mulq	16(%rsi)
    8274. 

  8274.         addq	%rax, %r12
    8275. 

  8275.         adcq	%rdx, %r13
    8276. 

  8276.         adcq	$0x00, %r14
    8277. 

  8277.         #  A[3] * B[1]
    8278. 

  8278.         movq	8(%rbx), %rax
    8279. 

  8279.         mulq	24(%rsi)
    8280. 

  8280.         addq	%rax, %r12
    8281. 

  8281.         adcq	%rdx, %r13
    8282. 

  8282.         adcq	$0x00, %r14
    8283. 

  8283.         #  A[2] * B[3]
    8284. 

  8284.         movq	24(%rbx), %rax
    8285. 

  8285.         mulq	16(%rsi)
    8286. 

  8286.         xorq	%r15, %r15
    8287. 

  8287.         addq	%rax, %r13
    8288. 

  8288.         adcq	%rdx, %r14
    8289. 

  8289.         adcq	$0x00, %r15
    8290. 

  8290.         #  A[3] * B[2]
    8291. 

  8291.         movq	16(%rbx), %rax
    8292. 

  8292.         mulq	24(%rsi)
    8293. 

  8293.         addq	%rax, %r13
    8294. 

  8294.         adcq	%rdx, %r14
    8295. 

  8295.         adcq	$0x00, %r15
    8296. 

  8296.         #  A[3] * B[3]
    8297. 

  8297.         movq	24(%rbx), %rax
    8298. 

  8298.         mulq	24(%rsi)
    8299. 

  8299.         addq	%rax, %r14
    8300. 

  8300.         adcq	%rdx, %r15
    8301. 

  8301.         # Reduce
    8302. 

  8302.         movq	$0x7fffffffffffffff, %rcx
    8303. 

  8303.         #  Move top half into t4-t7 and remove top bit from t3
    8304. 

  8304.         shldq	$0x01, %r14, %r15
    8305. 

  8305.         shldq	$0x01, %r13, %r14
    8306. 

  8306.         shldq	$0x01, %r12, %r13
    8307. 

  8307.         shldq	$0x01, %r11, %r12
    8308. 

  8308.         andq	%rcx, %r11
    8309. 

  8309.         #  Multiply top half by 19
    8310. 

  8310.         movq	$19, %rax
    8311. 

  8311.         mulq	%r12
    8312. 

  8312.         xorq	%r12, %r12
    8313. 

  8313.         addq	%rax, %r8
    8314. 

  8314.         movq	$19, %rax
    8315. 

  8315.         adcq	%rdx, %r12
    8316. 

  8316.         mulq	%r13
    8317. 

  8317.         xorq	%r13, %r13
    8318. 

  8318.         addq	%rax, %r9
    8319. 

  8319.         movq	$19, %rax
    8320. 

  8320.         adcq	%rdx, %r13
    8321. 

  8321.         mulq	%r14
    8322. 

  8322.         xorq	%r14, %r14
    8323. 

  8323.         addq	%rax, %r10
    8324. 

  8324.         movq	$19, %rax
    8325. 

  8325.         adcq	%rdx, %r14
    8326. 

  8326.         mulq	%r15
    8327. 

  8327.         #  Add remaining product results in
    8328. 

  8328.         addq	%r12, %r9
    8329. 

  8329.         adcq	%r13, %r10
    8330. 

  8330.         adcq	%r14, %r11
    8331. 

  8331.         adcq	%rax, %r11
    8332. 

  8332.         adcq	$0x00, %rdx
    8333. 

  8333.         #  Overflow
    8334. 

  8334.         shldq	$0x01, %r11, %rdx
    8335. 

  8335.         imulq	$19, %rdx, %rax
    8336. 

  8336.         andq	%rcx, %r11
    8337. 

  8337.         addq	%rax, %r8
    8338. 

  8338.         adcq	$0x00, %r9
    8339. 

  8339.         adcq	$0x00, %r10
    8340. 

  8340.         adcq	$0x00, %r11
    8341. 

  8341.         # Reduce if top bit set
    8342. 

  8342.         movq	%r11, %rdx
    8343. 

  8343.         shrq	$63, %rdx
    8344. 

  8344.         imulq	$19, %rdx, %rax
    8345. 

  8345.         andq	%rcx, %r11
    8346. 

  8346.         addq	%rax, %r8
    8347. 

  8347.         adcq	$0x00, %r9
    8348. 

  8348.         adcq	$0x00, %r10
    8349. 

  8349.         adcq	$0x00, %r11
    8350. 

  8350.         # Store
    8351. 

  8351.         movq	%r8, (%rdi)
    8352. 

  8352.         movq	%r9, 8(%rdi)
    8353. 

  8353.         movq	%r10, 16(%rdi)
    8354. 

  8354.         movq	%r11, 24(%rdi)
    8355. 

  8355.         movq	(%rsp), %rdi
    8356. 

  8356.         movq	128(%rsp), %rsi
    8357. 

  8357.         movq	144(%rsp), %rbx
    8358. 

  8358.         # Multiply
    8359. 

  8359.         #  A[0] * B[0]
    8360. 

  8360.         movq	(%rbx), %rax
    8361. 

  8361.         mulq	(%rsi)
    8362. 

  8362.         movq	%rax, %r8
    8363. 

  8363.         movq	%rdx, %r9
    8364. 

  8364.         #  A[0] * B[1]
    8365. 

  8365.         movq	8(%rbx), %rax
    8366. 

  8366.         mulq	(%rsi)
    8367. 

  8367.         xorq	%r10, %r10
    8368. 

  8368.         addq	%rax, %r9
    8369. 

  8369.         adcq	%rdx, %r10
    8370. 

  8370.         #  A[1] * B[0]
    8371. 

  8371.         movq	(%rbx), %rax
    8372. 

  8372.         mulq	8(%rsi)
    8373. 

  8373.         xorq	%r11, %r11
    8374. 

  8374.         addq	%rax, %r9
    8375. 

  8375.         adcq	%rdx, %r10
    8376. 

  8376.         adcq	$0x00, %r11
    8377. 

  8377.         #  A[0] * B[2]
    8378. 

  8378.         movq	16(%rbx), %rax
    8379. 

  8379.         mulq	(%rsi)
    8380. 

  8380.         addq	%rax, %r10
    8381. 

  8381.         adcq	%rdx, %r11
    8382. 

  8382.         #  A[1] * B[1]
    8383. 

  8383.         movq	8(%rbx), %rax
    8384. 

  8384.         mulq	8(%rsi)
    8385. 

  8385.         xorq	%r12, %r12
    8386. 

  8386.         addq	%rax, %r10
    8387. 

  8387.         adcq	%rdx, %r11
    8388. 

  8388.         adcq	$0x00, %r12
    8389. 

  8389.         #  A[2] * B[0]
    8390. 

  8390.         movq	(%rbx), %rax
    8391. 

  8391.         mulq	16(%rsi)
    8392. 

  8392.         addq	%rax, %r10
    8393. 

  8393.         adcq	%rdx, %r11
    8394. 

  8394.         adcq	$0x00, %r12
    8395. 

  8395.         #  A[0] * B[3]
    8396. 

  8396.         movq	24(%rbx), %rax
    8397. 

  8397.         mulq	(%rsi)
    8398. 

  8398.         xorq	%r13, %r13
    8399. 

  8399.         addq	%rax, %r11
    8400. 

  8400.         adcq	%rdx, %r12
    8401. 

  8401.         adcq	$0x00, %r13
    8402. 

  8402.         #  A[1] * B[2]
    8403. 

  8403.         movq	16(%rbx), %rax
    8404. 

  8404.         mulq	8(%rsi)
    8405. 

  8405.         addq	%rax, %r11
    8406. 

  8406.         adcq	%rdx, %r12
    8407. 

  8407.         adcq	$0x00, %r13
    8408. 

  8408.         #  A[2] * B[1]
    8409. 

  8409.         movq	8(%rbx), %rax
    8410. 

  8410.         mulq	16(%rsi)
    8411. 

  8411.         addq	%rax, %r11
    8412. 

  8412.         adcq	%rdx, %r12
    8413. 

  8413.         adcq	$0x00, %r13
    8414. 

  8414.         #  A[3] * B[0]
    8415. 

  8415.         movq	(%rbx), %rax
    8416. 

  8416.         mulq	24(%rsi)
    8417. 

  8417.         addq	%rax, %r11
    8418. 

  8418.         adcq	%rdx, %r12
    8419. 

  8419.         adcq	$0x00, %r13
    8420. 

  8420.         #  A[1] * B[3]
    8421. 

  8421.         movq	24(%rbx), %rax
    8422. 

  8422.         mulq	8(%rsi)
    8423. 

  8423.         xorq	%r14, %r14
    8424. 

  8424.         addq	%rax, %r12
    8425. 

  8425.         adcq	%rdx, %r13
    8426. 

  8426.         adcq	$0x00, %r14
    8427. 

  8427.         #  A[2] * B[2]
    8428. 

  8428.         movq	16(%rbx), %rax
    8429. 

  8429.         mulq	16(%rsi)
    8430. 

  8430.         addq	%rax, %r12
    8431. 

  8431.         adcq	%rdx, %r13
    8432. 

  8432.         adcq	$0x00, %r14
    8433. 

  8433.         #  A[3] * B[1]
    8434. 

  8434.         movq	8(%rbx), %rax
    8435. 

  8435.         mulq	24(%rsi)
    8436. 

  8436.         addq	%rax, %r12
    8437. 

  8437.         adcq	%rdx, %r13
    8438. 

  8438.         adcq	$0x00, %r14
    8439. 

  8439.         #  A[2] * B[3]
    8440. 

  8440.         movq	24(%rbx), %rax
    8441. 

  8441.         mulq	16(%rsi)
    8442. 

  8442.         xorq	%r15, %r15
    8443. 

  8443.         addq	%rax, %r13
    8444. 

  8444.         adcq	%rdx, %r14
    8445. 

  8445.         adcq	$0x00, %r15
    8446. 

  8446.         #  A[3] * B[2]
    8447. 

  8447.         movq	16(%rbx), %rax
    8448. 

  8448.         mulq	24(%rsi)
    8449. 

  8449.         addq	%rax, %r13
    8450. 

  8450.         adcq	%rdx, %r14
    8451. 

  8451.         adcq	$0x00, %r15
    8452. 

  8452.         #  A[3] * B[3]
    8453. 

  8453.         movq	24(%rbx), %rax
    8454. 

  8454.         mulq	24(%rsi)
    8455. 

  8455.         addq	%rax, %r14
    8456. 

  8456.         adcq	%rdx, %r15
    8457. 

  8457.         # Reduce
    8458. 

  8458.         movq	$0x7fffffffffffffff, %rcx
    8459. 

  8459.         #  Move top half into t4-t7 and remove top bit from t3
    8460. 

  8460.         shldq	$0x01, %r14, %r15
    8461. 

  8461.         shldq	$0x01, %r13, %r14
    8462. 

  8462.         shldq	$0x01, %r12, %r13
    8463. 

  8463.         shldq	$0x01, %r11, %r12
    8464. 

  8464.         andq	%rcx, %r11
    8465. 

  8465.         #  Multiply top half by 19
    8466. 

  8466.         movq	$19, %rax
    8467. 

  8467.         mulq	%r12
    8468. 

  8468.         xorq	%r12, %r12
    8469. 

  8469.         addq	%rax, %r8
    8470. 

  8470.         movq	$19, %rax
    8471. 

  8471.         adcq	%rdx, %r12
    8472. 

  8472.         mulq	%r13
    8473. 

  8473.         xorq	%r13, %r13
    8474. 

  8474.         addq	%rax, %r9
    8475. 

  8475.         movq	$19, %rax
    8476. 

  8476.         adcq	%rdx, %r13
    8477. 

  8477.         mulq	%r14
    8478. 

  8478.         xorq	%r14, %r14
    8479. 

  8479.         addq	%rax, %r10
    8480. 

  8480.         movq	$19, %rax
    8481. 

  8481.         adcq	%rdx, %r14
    8482. 

  8482.         mulq	%r15
    8483. 

  8483.         #  Add remaining product results in
    8484. 

  8484.         addq	%r12, %r9
    8485. 

  8485.         adcq	%r13, %r10
    8486. 

  8486.         adcq	%r14, %r11
    8487. 

  8487.         adcq	%rax, %r11
    8488. 

  8488.         adcq	$0x00, %rdx
    8489. 

  8489.         #  Overflow
    8490. 

  8490.         shldq	$0x01, %r11, %rdx
    8491. 

  8491.         imulq	$19, %rdx, %rax
    8492. 

  8492.         andq	%rcx, %r11
    8493. 

  8493.         addq	%rax, %r8
    8494. 

  8494.         adcq	$0x00, %r9
    8495. 

  8495.         adcq	$0x00, %r10
    8496. 

  8496.         adcq	$0x00, %r11
    8497. 

  8497.         # Reduce if top bit set
    8498. 

  8498.         movq	%r11, %rdx
    8499. 

  8499.         shrq	$63, %rdx
    8500. 

  8500.         imulq	$19, %rdx, %rax
    8501. 

  8501.         andq	%rcx, %r11
    8502. 

  8502.         addq	%rax, %r8
    8503. 

  8503.         adcq	$0x00, %r9
    8504. 

  8504.         adcq	$0x00, %r10
    8505. 

  8505.         adcq	$0x00, %r11
    8506. 

  8506.         # Store
    8507. 

  8507.         movq	%r8, (%rdi)
    8508. 

  8508.         movq	%r9, 8(%rdi)
    8509. 

  8509.         movq	%r10, 16(%rdi)
    8510. 

  8510.         movq	%r11, 24(%rdi)
    8511. 

  8511.         leaq	48(%rsp), %rdi
    8512. 

  8512.         movq	(%rsp), %rsi
    8513. 

  8513.         movq	(%rsp), %rbx
    8514. 

  8514.         # Add
    8515. 

  8515.         movq	(%rsi), %r8
    8516. 

  8516.         movq	8(%rsi), %r9
    8517. 

  8517.         addq	(%rbx), %r8
    8518. 

  8518.         movq	16(%rsi), %r10
    8519. 

  8519.         adcq	8(%rbx), %r9
    8520. 

  8520.         movq	24(%rsi), %rcx
    8521. 

  8521.         adcq	16(%rbx), %r10
    8522. 

  8522.         movq	$-19, %rax
    8523. 

  8523.         adcq	24(%rbx), %rcx
    8524. 

  8524.         movq	$0x7fffffffffffffff, %rdx
    8525. 

  8525.         movq	%rcx, %r11
    8526. 

  8526.         sarq	$63, %rcx
    8527. 

  8527.         #   Mask the modulus
    8528. 

  8528.         andq	%rcx, %rax
    8529. 

  8529.         andq	%rcx, %rdx
    8530. 

  8530.         #   Sub modulus (if overflow)
    8531. 

  8531.         subq	%rax, %r8
    8532. 

  8532.         sbbq	%rcx, %r9
    8533. 

  8533.         sbbq	%rcx, %r10
    8534. 

  8534.         sbbq	%rdx, %r11
    8535. 

  8535.         movq	%r8, (%rdi)
    8536. 

  8536.         movq	%r9, 8(%rdi)
    8537. 

  8537.         movq	%r10, 16(%rdi)
    8538. 

  8538.         movq	%r11, 24(%rdi)
    8539. 

  8539.         movq	(%rsp), %rdi
    8540. 

  8540.         movq	16(%rsp), %rsi
    8541. 

  8541.         movq	8(%rsp), %rbx
    8542. 

  8542.         # Sub
    8543. 

  8543.         movq	(%rsi), %r8
    8544. 

  8544.         movq	8(%rsi), %r9
    8545. 

  8545.         movq	16(%rsi), %r10
    8546. 

  8546.         movq	24(%rsi), %r11
    8547. 

  8547.         subq	(%rbx), %r8
    8548. 

  8548.         movq	$0x00, %rcx
    8549. 

  8549.         sbbq	8(%rbx), %r9
    8550. 

  8550.         movq	$-19, %rax
    8551. 

  8551.         sbbq	16(%rbx), %r10
    8552. 

  8552.         movq	$0x7fffffffffffffff, %rdx
    8553. 

  8553.         sbbq	24(%rbx), %r11
    8554. 

  8554.         sbbq	$0x00, %rcx
    8555. 

  8555.         #   Mask the modulus
    8556. 

  8556.         andq	%rcx, %rax
    8557. 

  8557.         andq	%rcx, %rdx
    8558. 

  8558.         #   Add modulus (if underflow)
    8559. 

  8559.         addq	%rax, %r8
    8560. 

  8560.         adcq	%rcx, %r9
    8561. 

  8561.         adcq	%rcx, %r10
    8562. 

  8562.         adcq	%rdx, %r11
    8563. 

  8563.         movq	%r8, (%rdi)
    8564. 

  8564.         movq	%r9, 8(%rdi)
    8565. 

  8565.         movq	%r10, 16(%rdi)
    8566. 

  8566.         movq	%r11, 24(%rdi)
    8567. 

  8567.         movq	8(%rsp), %rdi
    8568. 

  8568.         movq	16(%rsp), %rsi
    8569. 

  8569.         movq	8(%rsp), %rbx
    8570. 

  8570.         # Add
    8571. 

  8571.         movq	(%rsi), %r8
    8572. 

  8572.         movq	8(%rsi), %r9
    8573. 

  8573.         addq	(%rbx), %r8
    8574. 

  8574.         movq	16(%rsi), %r10
    8575. 

  8575.         adcq	8(%rbx), %r9
    8576. 

  8576.         movq	24(%rsi), %rcx
    8577. 

  8577.         adcq	16(%rbx), %r10
    8578. 

  8578.         movq	$-19, %rax
    8579. 

  8579.         adcq	24(%rbx), %rcx
    8580. 

  8580.         movq	$0x7fffffffffffffff, %rdx
    8581. 

  8581.         movq	%rcx, %r11
    8582. 

  8582.         sarq	$63, %rcx
    8583. 

  8583.         #   Mask the modulus
    8584. 

  8584.         andq	%rcx, %rax
    8585. 

  8585.         andq	%rcx, %rdx
    8586. 

  8586.         #   Sub modulus (if overflow)
    8587. 

  8587.         subq	%rax, %r8
    8588. 

  8588.         sbbq	%rcx, %r9
    8589. 

  8589.         sbbq	%rcx, %r10
    8590. 

  8590.         sbbq	%rdx, %r11
    8591. 

  8591.         movq	%r8, (%rdi)
    8592. 

  8592.         movq	%r9, 8(%rdi)
    8593. 

  8593.         movq	%r10, 16(%rdi)
    8594. 

  8594.         movq	%r11, 24(%rdi)
    8595. 

  8595.         movq	16(%rsp), %rdi
    8596. 

  8596.         leaq	48(%rsp), %rsi
    8597. 

  8597.         movq	24(%rsp), %rbx
    8598. 

  8598.         # Add
    8599. 

  8599.         movq	(%rsi), %r8
    8600. 

  8600.         movq	8(%rsi), %r9
    8601. 

  8601.         addq	(%rbx), %r8
    8602. 

  8602.         movq	16(%rsi), %r10
    8603. 

  8603.         adcq	8(%rbx), %r9
    8604. 

  8604.         movq	24(%rsi), %rcx
    8605. 

  8605.         adcq	16(%rbx), %r10
    8606. 

  8606.         movq	$-19, %rax
    8607. 

  8607.         adcq	24(%rbx), %rcx
    8608. 

  8608.         movq	$0x7fffffffffffffff, %rdx
    8609. 

  8609.         movq	%rcx, %r11
    8610. 

  8610.         sarq	$63, %rcx
    8611. 

  8611.         #   Mask the modulus
    8612. 

  8612.         andq	%rcx, %rax
    8613. 

  8613.         andq	%rcx, %rdx
    8614. 

  8614.         #   Sub modulus (if overflow)
    8615. 

  8615.         subq	%rax, %r8
    8616. 

  8616.         sbbq	%rcx, %r9
    8617. 

  8617.         sbbq	%rcx, %r10
    8618. 

  8618.         sbbq	%rdx, %r11
    8619. 

  8619.         movq	%r8, (%rdi)
    8620. 

  8620.         movq	%r9, 8(%rdi)
    8621. 

  8621.         movq	%r10, 16(%rdi)
    8622. 

  8622.         movq	%r11, 24(%rdi)
    8623. 

  8623.         movq	24(%rsp), %rdi
    8624. 

  8624.         leaq	48(%rsp), %rsi
    8625. 

  8625.         movq	24(%rsp), %rbx
    8626. 

  8626.         # Sub
    8627. 

  8627.         movq	(%rsi), %r8
    8628. 

  8628.         movq	8(%rsi), %r9
    8629. 

  8629.         movq	16(%rsi), %r10
    8630. 

  8630.         movq	24(%rsi), %r11
    8631. 

  8631.         subq	(%rbx), %r8
    8632. 

  8632.         movq	$0x00, %rcx
    8633. 

  8633.         sbbq	8(%rbx), %r9
    8634. 

  8634.         movq	$-19, %rax
    8635. 

  8635.         sbbq	16(%rbx), %r10
    8636. 

  8636.         movq	$0x7fffffffffffffff, %rdx
    8637. 

  8637.         sbbq	24(%rbx), %r11
    8638. 

  8638.         sbbq	$0x00, %rcx
    8639. 

  8639.         #   Mask the modulus
    8640. 

  8640.         andq	%rcx, %rax
    8641. 

  8641.         andq	%rcx, %rdx
    8642. 

  8642.         #   Add modulus (if underflow)
    8643. 

  8643.         addq	%rax, %r8
    8644. 

  8644.         adcq	%rcx, %r9
    8645. 

  8645.         adcq	%rcx, %r10
    8646. 

  8646.         adcq	%rdx, %r11
    8647. 

  8647.         movq	%r8, (%rdi)
    8648. 

  8648.         movq	%r9, 8(%rdi)
    8649. 

  8649.         movq	%r10, 16(%rdi)
    8650. 

  8650.         movq	%r11, 24(%rdi)
    8651. 

  8651.         addq	$0x50, %rsp
    8652. 

  8652.         popq	%r15
    8653. 

  8653.         popq	%r14
    8654. 

  8654.         popq	%r13
    8655. 

  8655.         popq	%r12
    8656. 

  8656.         popq	%rbx
    8657. 

  8657.         repz retq
    8658. 

  8658. #ifndef __APPLE__
    8659. 

  8659. .size	fe_ge_add_x64,.-fe_ge_add_x64
    8660. 

  8660. #endif /* __APPLE__ */
    8661. 

  8661. #ifndef __APPLE__
    8662. 

  8662. .text
    8663. 

  8663. .globl	fe_ge_sub_x64
    8664. 

  8664. .type	fe_ge_sub_x64,@function
    8665. 

  8665. .align	16
    8666. 

  8666. fe_ge_sub_x64:
    8667. 

  8667. #else
    8668. 

  8668. .section	__TEXT,__text
    8669. 

  8669. .globl	_fe_ge_sub_x64
    8670. 

  8670. .p2align	4
    8671. 

  8671. _fe_ge_sub_x64:
    8672. 

  8672. #endif /* __APPLE__ */
    8673. 

  8673.         pushq	%rbx
    8674. 

  8674.         pushq	%r12
    8675. 

  8675.         pushq	%r13
    8676. 

  8676.         pushq	%r14
    8677. 

  8677.         pushq	%r15
    8678. 

  8678.         subq	$0x50, %rsp
    8679. 

  8679.         movq	%rdi, (%rsp)
    8680. 

  8680.         movq	%rsi, 8(%rsp)
    8681. 

  8681.         movq	%rdx, 16(%rsp)
    8682. 

  8682.         movq	%rcx, 24(%rsp)
    8683. 

  8683.         movq	%r8, 32(%rsp)
    8684. 

  8684.         movq	%r9, 40(%rsp)
    8685. 

  8685.         movq	(%rsp), %rdi
    8686. 

  8686.         movq	40(%rsp), %rsi
    8687. 

  8687.         movq	32(%rsp), %rbx
    8688. 

  8688.         # Add
    8689. 

  8689.         movq	(%rsi), %r8
    8690. 

  8690.         movq	8(%rsi), %r9
    8691. 

  8691.         addq	(%rbx), %r8
    8692. 

  8692.         movq	16(%rsi), %r10
    8693. 

  8693.         adcq	8(%rbx), %r9
    8694. 

  8694.         movq	24(%rsi), %rcx
    8695. 

  8695.         adcq	16(%rbx), %r10
    8696. 

  8696.         movq	$-19, %rax
    8697. 

  8697.         adcq	24(%rbx), %rcx
    8698. 

  8698.         movq	$0x7fffffffffffffff, %rdx
    8699. 

  8699.         movq	%rcx, %r11
    8700. 

  8700.         sarq	$63, %rcx
    8701. 

  8701.         #   Mask the modulus
    8702. 

  8702.         andq	%rcx, %rax
    8703. 

  8703.         andq	%rcx, %rdx
    8704. 

  8704.         #   Sub modulus (if overflow)
    8705. 

  8705.         subq	%rax, %r8
    8706. 

  8706.         sbbq	%rcx, %r9
    8707. 

  8707.         sbbq	%rcx, %r10
    8708. 

  8708.         sbbq	%rdx, %r11
    8709. 

  8709.         movq	%r8, (%rdi)
    8710. 

  8710.         movq	%r9, 8(%rdi)
    8711. 

  8711.         movq	%r10, 16(%rdi)
    8712. 

  8712.         movq	%r11, 24(%rdi)
    8713. 

  8713.         movq	8(%rsp), %rdi
    8714. 

  8714.         movq	40(%rsp), %rsi
    8715. 

  8715.         movq	32(%rsp), %rbx
    8716. 

  8716.         # Sub
    8717. 

  8717.         movq	(%rsi), %r8
    8718. 

  8718.         movq	8(%rsi), %r9
    8719. 

  8719.         movq	16(%rsi), %r10
    8720. 

  8720.         movq	24(%rsi), %r11
    8721. 

  8721.         subq	(%rbx), %r8
    8722. 

  8722.         movq	$0x00, %rcx
    8723. 

  8723.         sbbq	8(%rbx), %r9
    8724. 

  8724.         movq	$-19, %rax
    8725. 

  8725.         sbbq	16(%rbx), %r10
    8726. 

  8726.         movq	$0x7fffffffffffffff, %rdx
    8727. 

  8727.         sbbq	24(%rbx), %r11
    8728. 

  8728.         sbbq	$0x00, %rcx
    8729. 

  8729.         #   Mask the modulus
    8730. 

  8730.         andq	%rcx, %rax
    8731. 

  8731.         andq	%rcx, %rdx
    8732. 

  8732.         #   Add modulus (if underflow)
    8733. 

  8733.         addq	%rax, %r8
    8734. 

  8734.         adcq	%rcx, %r9
    8735. 

  8735.         adcq	%rcx, %r10
    8736. 

  8736.         adcq	%rdx, %r11
    8737. 

  8737.         movq	%r8, (%rdi)
    8738. 

  8738.         movq	%r9, 8(%rdi)
    8739. 

  8739.         movq	%r10, 16(%rdi)
    8740. 

  8740.         movq	%r11, 24(%rdi)
    8741. 

  8741.         movq	16(%rsp), %rdi
    8742. 

  8742.         movq	(%rsp), %rsi
    8743. 

  8743.         movq	168(%rsp), %rbx
    8744. 

  8744.         # Multiply
    8745. 

  8745.         #  A[0] * B[0]
    8746. 

  8746.         movq	(%rbx), %rax
    8747. 

  8747.         mulq	(%rsi)
    8748. 

  8748.         movq	%rax, %r8
    8749. 

  8749.         movq	%rdx, %r9
    8750. 

  8750.         #  A[0] * B[1]
    8751. 

  8751.         movq	8(%rbx), %rax
    8752. 

  8752.         mulq	(%rsi)
    8753. 

  8753.         xorq	%r10, %r10
    8754. 

  8754.         addq	%rax, %r9
    8755. 

  8755.         adcq	%rdx, %r10
    8756. 

  8756.         #  A[1] * B[0]
    8757. 

  8757.         movq	(%rbx), %rax
    8758. 

  8758.         mulq	8(%rsi)
    8759. 

  8759.         xorq	%r11, %r11
    8760. 

  8760.         addq	%rax, %r9
    8761. 

  8761.         adcq	%rdx, %r10
    8762. 

  8762.         adcq	$0x00, %r11
    8763. 

  8763.         #  A[0] * B[2]
    8764. 

  8764.         movq	16(%rbx), %rax
    8765. 

  8765.         mulq	(%rsi)
    8766. 

  8766.         addq	%rax, %r10
    8767. 

  8767.         adcq	%rdx, %r11
    8768. 

  8768.         #  A[1] * B[1]
    8769. 

  8769.         movq	8(%rbx), %rax
    8770. 

  8770.         mulq	8(%rsi)
    8771. 

  8771.         xorq	%r12, %r12
    8772. 

  8772.         addq	%rax, %r10
    8773. 

  8773.         adcq	%rdx, %r11
    8774. 

  8774.         adcq	$0x00, %r12
    8775. 

  8775.         #  A[2] * B[0]
    8776. 

  8776.         movq	(%rbx), %rax
    8777. 

  8777.         mulq	16(%rsi)
    8778. 

  8778.         addq	%rax, %r10
    8779. 

  8779.         adcq	%rdx, %r11
    8780. 

  8780.         adcq	$0x00, %r12
    8781. 

  8781.         #  A[0] * B[3]
    8782. 

  8782.         movq	24(%rbx), %rax
    8783. 

  8783.         mulq	(%rsi)
    8784. 

  8784.         xorq	%r13, %r13
    8785. 

  8785.         addq	%rax, %r11
    8786. 

  8786.         adcq	%rdx, %r12
    8787. 

  8787.         adcq	$0x00, %r13
    8788. 

  8788.         #  A[1] * B[2]
    8789. 

  8789.         movq	16(%rbx), %rax
    8790. 

  8790.         mulq	8(%rsi)
    8791. 

  8791.         addq	%rax, %r11
    8792. 

  8792.         adcq	%rdx, %r12
    8793. 

  8793.         adcq	$0x00, %r13
    8794. 

  8794.         #  A[2] * B[1]
    8795. 

  8795.         movq	8(%rbx), %rax
    8796. 

  8796.         mulq	16(%rsi)
    8797. 

  8797.         addq	%rax, %r11
    8798. 

  8798.         adcq	%rdx, %r12
    8799. 

  8799.         adcq	$0x00, %r13
    8800. 

  8800.         #  A[3] * B[0]
    8801. 

  8801.         movq	(%rbx), %rax
    8802. 

  8802.         mulq	24(%rsi)
    8803. 

  8803.         addq	%rax, %r11
    8804. 

  8804.         adcq	%rdx, %r12
    8805. 

  8805.         adcq	$0x00, %r13
    8806. 

  8806.         #  A[1] * B[3]
    8807. 

  8807.         movq	24(%rbx), %rax
    8808. 

  8808.         mulq	8(%rsi)
    8809. 

  8809.         xorq	%r14, %r14
    8810. 

  8810.         addq	%rax, %r12
    8811. 

  8811.         adcq	%rdx, %r13
    8812. 

  8812.         adcq	$0x00, %r14
    8813. 

  8813.         #  A[2] * B[2]
    8814. 

  8814.         movq	16(%rbx), %rax
    8815. 

  8815.         mulq	16(%rsi)
    8816. 

  8816.         addq	%rax, %r12
    8817. 

  8817.         adcq	%rdx, %r13
    8818. 

  8818.         adcq	$0x00, %r14
    8819. 

  8819.         #  A[3] * B[1]
    8820. 

  8820.         movq	8(%rbx), %rax
    8821. 

  8821.         mulq	24(%rsi)
    8822. 

  8822.         addq	%rax, %r12
    8823. 

  8823.         adcq	%rdx, %r13
    8824. 

  8824.         adcq	$0x00, %r14
    8825. 

  8825.         #  A[2] * B[3]
    8826. 

  8826.         movq	24(%rbx), %rax
    8827. 

  8827.         mulq	16(%rsi)
    8828. 

  8828.         xorq	%r15, %r15
    8829. 

  8829.         addq	%rax, %r13
    8830. 

  8830.         adcq	%rdx, %r14
    8831. 

  8831.         adcq	$0x00, %r15
    8832. 

  8832.         #  A[3] * B[2]
    8833. 

  8833.         movq	16(%rbx), %rax
    8834. 

  8834.         mulq	24(%rsi)
    8835. 

  8835.         addq	%rax, %r13
    8836. 

  8836.         adcq	%rdx, %r14
    8837. 

  8837.         adcq	$0x00, %r15
    8838. 

  8838.         #  A[3] * B[3]
    8839. 

  8839.         movq	24(%rbx), %rax
    8840. 

  8840.         mulq	24(%rsi)
    8841. 

  8841.         addq	%rax, %r14
    8842. 

  8842.         adcq	%rdx, %r15
    8843. 

  8843.         # Reduce
    8844. 

  8844.         movq	$0x7fffffffffffffff, %rcx
    8845. 

  8845.         #  Move top half into t4-t7 and remove top bit from t3
    8846. 

  8846.         shldq	$0x01, %r14, %r15
    8847. 

  8847.         shldq	$0x01, %r13, %r14
    8848. 

  8848.         shldq	$0x01, %r12, %r13
    8849. 

  8849.         shldq	$0x01, %r11, %r12
    8850. 

  8850.         andq	%rcx, %r11
    8851. 

  8851.         #  Multiply top half by 19
    8852. 

  8852.         movq	$19, %rax
    8853. 

  8853.         mulq	%r12
    8854. 

  8854.         xorq	%r12, %r12
    8855. 

  8855.         addq	%rax, %r8
    8856. 

  8856.         movq	$19, %rax
    8857. 

  8857.         adcq	%rdx, %r12
    8858. 

  8858.         mulq	%r13
    8859. 

  8859.         xorq	%r13, %r13
    8860. 

  8860.         addq	%rax, %r9
    8861. 

  8861.         movq	$19, %rax
    8862. 

  8862.         adcq	%rdx, %r13
    8863. 

  8863.         mulq	%r14
    8864. 

  8864.         xorq	%r14, %r14
    8865. 

  8865.         addq	%rax, %r10
    8866. 

  8866.         movq	$19, %rax
    8867. 

  8867.         adcq	%rdx, %r14
    8868. 

  8868.         mulq	%r15
    8869. 

  8869.         #  Add remaining product results in
    8870. 

  8870.         addq	%r12, %r9
    8871. 

  8871.         adcq	%r13, %r10
    8872. 

  8872.         adcq	%r14, %r11
    8873. 

  8873.         adcq	%rax, %r11
    8874. 

  8874.         adcq	$0x00, %rdx
    8875. 

  8875.         #  Overflow
    8876. 

  8876.         shldq	$0x01, %r11, %rdx
    8877. 

  8877.         imulq	$19, %rdx, %rax
    8878. 

  8878.         andq	%rcx, %r11
    8879. 

  8879.         addq	%rax, %r8
    8880. 

  8880.         adcq	$0x00, %r9
    8881. 

  8881.         adcq	$0x00, %r10
    8882. 

  8882.         adcq	$0x00, %r11
    8883. 

  8883.         # Reduce if top bit set
    8884. 

  8884.         movq	%r11, %rdx
    8885. 

  8885.         shrq	$63, %rdx
    8886. 

  8886.         imulq	$19, %rdx, %rax
    8887. 

  8887.         andq	%rcx, %r11
    8888. 

  8888.         addq	%rax, %r8
    8889. 

  8889.         adcq	$0x00, %r9
    8890. 

  8890.         adcq	$0x00, %r10
    8891. 

  8891.         adcq	$0x00, %r11
    8892. 

  8892.         # Store
    8893. 

  8893.         movq	%r8, (%rdi)
    8894. 

  8894.         movq	%r9, 8(%rdi)
    8895. 

  8895.         movq	%r10, 16(%rdi)
    8896. 

  8896.         movq	%r11, 24(%rdi)
    8897. 

  8897.         movq	8(%rsp), %rdi
    8898. 

  8898.         movq	8(%rsp), %rsi
    8899. 

  8899.         movq	160(%rsp), %rbx
    8900. 

  8900.         # Multiply
    8901. 

  8901.         #  A[0] * B[0]
    8902. 

  8902.         movq	(%rbx), %rax
    8903. 

  8903.         mulq	(%rsi)
    8904. 

  8904.         movq	%rax, %r8
    8905. 

  8905.         movq	%rdx, %r9
    8906. 

  8906.         #  A[0] * B[1]
    8907. 

  8907.         movq	8(%rbx), %rax
    8908. 

  8908.         mulq	(%rsi)
    8909. 

  8909.         xorq	%r10, %r10
    8910. 

  8910.         addq	%rax, %r9
    8911. 

  8911.         adcq	%rdx, %r10
    8912. 

  8912.         #  A[1] * B[0]
    8913. 

  8913.         movq	(%rbx), %rax
    8914. 

  8914.         mulq	8(%rsi)
    8915. 

  8915.         xorq	%r11, %r11
    8916. 

  8916.         addq	%rax, %r9
    8917. 

  8917.         adcq	%rdx, %r10
    8918. 

  8918.         adcq	$0x00, %r11
    8919. 

  8919.         #  A[0] * B[2]
    8920. 

  8920.         movq	16(%rbx), %rax
    8921. 

  8921.         mulq	(%rsi)
    8922. 

  8922.         addq	%rax, %r10
    8923. 

  8923.         adcq	%rdx, %r11
    8924. 

  8924.         #  A[1] * B[1]
    8925. 

  8925.         movq	8(%rbx), %rax
    8926. 

  8926.         mulq	8(%rsi)
    8927. 

  8927.         xorq	%r12, %r12
    8928. 

  8928.         addq	%rax, %r10
    8929. 

  8929.         adcq	%rdx, %r11
    8930. 

  8930.         adcq	$0x00, %r12
    8931. 

  8931.         #  A[2] * B[0]
    8932. 

  8932.         movq	(%rbx), %rax
    8933. 

  8933.         mulq	16(%rsi)
    8934. 

  8934.         addq	%rax, %r10
    8935. 

  8935.         adcq	%rdx, %r11
    8936. 

  8936.         adcq	$0x00, %r12
    8937. 

  8937.         #  A[0] * B[3]
    8938. 

  8938.         movq	24(%rbx), %rax
    8939. 

  8939.         mulq	(%rsi)
    8940. 

  8940.         xorq	%r13, %r13
    8941. 

  8941.         addq	%rax, %r11
    8942. 

  8942.         adcq	%rdx, %r12
    8943. 

  8943.         adcq	$0x00, %r13
    8944. 

  8944.         #  A[1] * B[2]
    8945. 

  8945.         movq	16(%rbx), %rax
    8946. 

  8946.         mulq	8(%rsi)
    8947. 

  8947.         addq	%rax, %r11
    8948. 

  8948.         adcq	%rdx, %r12
    8949. 

  8949.         adcq	$0x00, %r13
    8950. 

  8950.         #  A[2] * B[1]
    8951. 

  8951.         movq	8(%rbx), %rax
    8952. 

  8952.         mulq	16(%rsi)
    8953. 

  8953.         addq	%rax, %r11
    8954. 

  8954.         adcq	%rdx, %r12
    8955. 

  8955.         adcq	$0x00, %r13
    8956. 

  8956.         #  A[3] * B[0]
    8957. 

  8957.         movq	(%rbx), %rax
    8958. 

  8958.         mulq	24(%rsi)
    8959. 

  8959.         addq	%rax, %r11
    8960. 

  8960.         adcq	%rdx, %r12
    8961. 

  8961.         adcq	$0x00, %r13
    8962. 

  8962.         #  A[1] * B[3]
    8963. 

  8963.         movq	24(%rbx), %rax
    8964. 

  8964.         mulq	8(%rsi)
    8965. 

  8965.         xorq	%r14, %r14
    8966. 

  8966.         addq	%rax, %r12
    8967. 

  8967.         adcq	%rdx, %r13
    8968. 

  8968.         adcq	$0x00, %r14
    8969. 

  8969.         #  A[2] * B[2]
    8970. 

  8970.         movq	16(%rbx), %rax
    8971. 

  8971.         mulq	16(%rsi)
    8972. 

  8972.         addq	%rax, %r12
    8973. 

  8973.         adcq	%rdx, %r13
    8974. 

  8974.         adcq	$0x00, %r14
    8975. 

  8975.         #  A[3] * B[1]
    8976. 

  8976.         movq	8(%rbx), %rax
    8977. 

  8977.         mulq	24(%rsi)
    8978. 

  8978.         addq	%rax, %r12
    8979. 

  8979.         adcq	%rdx, %r13
    8980. 

  8980.         adcq	$0x00, %r14
    8981. 

  8981.         #  A[2] * B[3]
    8982. 

  8982.         movq	24(%rbx), %rax
    8983. 

  8983.         mulq	16(%rsi)
    8984. 

  8984.         xorq	%r15, %r15
    8985. 

  8985.         addq	%rax, %r13
    8986. 

  8986.         adcq	%rdx, %r14
    8987. 

  8987.         adcq	$0x00, %r15
    8988. 

  8988.         #  A[3] * B[2]
    8989. 

  8989.         movq	16(%rbx), %rax
    8990. 

  8990.         mulq	24(%rsi)
    8991. 

  8991.         addq	%rax, %r13
    8992. 

  8992.         adcq	%rdx, %r14
    8993. 

  8993.         adcq	$0x00, %r15
    8994. 

  8994.         #  A[3] * B[3]
    8995. 

  8995.         movq	24(%rbx), %rax
    8996. 

  8996.         mulq	24(%rsi)
    8997. 

  8997.         addq	%rax, %r14
    8998. 

  8998.         adcq	%rdx, %r15
    8999. 

  8999.         # Reduce
    9000. 

  9000.         movq	$0x7fffffffffffffff, %rcx
    9001. 

  9001.         #  Move top half into t4-t7 and remove top bit from t3
    9002. 

  9002.         shldq	$0x01, %r14, %r15
    9003. 

  9003.         shldq	$0x01, %r13, %r14
    9004. 

  9004.         shldq	$0x01, %r12, %r13
    9005. 

  9005.         shldq	$0x01, %r11, %r12
    9006. 

  9006.         andq	%rcx, %r11
    9007. 

  9007.         #  Multiply top half by 19
    9008. 

  9008.         movq	$19, %rax
    9009. 

  9009.         mulq	%r12
    9010. 

  9010.         xorq	%r12, %r12
    9011. 

  9011.         addq	%rax, %r8
    9012. 

  9012.         movq	$19, %rax
    9013. 

  9013.         adcq	%rdx, %r12
    9014. 

  9014.         mulq	%r13
    9015. 

  9015.         xorq	%r13, %r13
    9016. 

  9016.         addq	%rax, %r9
    9017. 

  9017.         movq	$19, %rax
    9018. 

  9018.         adcq	%rdx, %r13
    9019. 

  9019.         mulq	%r14
    9020. 

  9020.         xorq	%r14, %r14
    9021. 

  9021.         addq	%rax, %r10
    9022. 

  9022.         movq	$19, %rax
    9023. 

  9023.         adcq	%rdx, %r14
    9024. 

  9024.         mulq	%r15
    9025. 

  9025.         #  Add remaining product results in
    9026. 

  9026.         addq	%r12, %r9
    9027. 

  9027.         adcq	%r13, %r10
    9028. 

  9028.         adcq	%r14, %r11
    9029. 

  9029.         adcq	%rax, %r11
    9030. 

  9030.         adcq	$0x00, %rdx
    9031. 

  9031.         #  Overflow
    9032. 

  9032.         shldq	$0x01, %r11, %rdx
    9033. 

  9033.         imulq	$19, %rdx, %rax
    9034. 

  9034.         andq	%rcx, %r11
    9035. 

  9035.         addq	%rax, %r8
    9036. 

  9036.         adcq	$0x00, %r9
    9037. 

  9037.         adcq	$0x00, %r10
    9038. 

  9038.         adcq	$0x00, %r11
    9039. 

  9039.         # Reduce if top bit set
    9040. 

  9040.         movq	%r11, %rdx
    9041. 

  9041.         shrq	$63, %rdx
    9042. 

  9042.         imulq	$19, %rdx, %rax
    9043. 

  9043.         andq	%rcx, %r11
    9044. 

  9044.         addq	%rax, %r8
    9045. 

  9045.         adcq	$0x00, %r9
    9046. 

  9046.         adcq	$0x00, %r10
    9047. 

  9047.         adcq	$0x00, %r11
    9048. 

  9048.         # Store
    9049. 

  9049.         movq	%r8, (%rdi)
    9050. 

  9050.         movq	%r9, 8(%rdi)
    9051. 

  9051.         movq	%r10, 16(%rdi)
    9052. 

  9052.         movq	%r11, 24(%rdi)
    9053. 

  9053.         movq	24(%rsp), %rdi
    9054. 

  9054.         movq	152(%rsp), %rsi
    9055. 

  9055.         movq	136(%rsp), %rbx
    9056. 

  9056.         # Multiply
    9057. 

  9057.         #  A[0] * B[0]
    9058. 

  9058.         movq	(%rbx), %rax
    9059. 

  9059.         mulq	(%rsi)
    9060. 

  9060.         movq	%rax, %r8
    9061. 

  9061.         movq	%rdx, %r9
    9062. 

  9062.         #  A[0] * B[1]
    9063. 

  9063.         movq	8(%rbx), %rax
    9064. 

  9064.         mulq	(%rsi)
    9065. 

  9065.         xorq	%r10, %r10
    9066. 

  9066.         addq	%rax, %r9
    9067. 

  9067.         adcq	%rdx, %r10
    9068. 

  9068.         #  A[1] * B[0]
    9069. 

  9069.         movq	(%rbx), %rax
    9070. 

  9070.         mulq	8(%rsi)
    9071. 

  9071.         xorq	%r11, %r11
    9072. 

  9072.         addq	%rax, %r9
    9073. 

  9073.         adcq	%rdx, %r10
    9074. 

  9074.         adcq	$0x00, %r11
    9075. 

  9075.         #  A[0] * B[2]
    9076. 

  9076.         movq	16(%rbx), %rax
    9077. 

  9077.         mulq	(%rsi)
    9078. 

  9078.         addq	%rax, %r10
    9079. 

  9079.         adcq	%rdx, %r11
    9080. 

  9080.         #  A[1] * B[1]
    9081. 

  9081.         movq	8(%rbx), %rax
    9082. 

  9082.         mulq	8(%rsi)
    9083. 

  9083.         xorq	%r12, %r12
    9084. 

  9084.         addq	%rax, %r10
    9085. 

  9085.         adcq	%rdx, %r11
    9086. 

  9086.         adcq	$0x00, %r12
    9087. 

  9087.         #  A[2] * B[0]
    9088. 

  9088.         movq	(%rbx), %rax
    9089. 

  9089.         mulq	16(%rsi)
    9090. 

  9090.         addq	%rax, %r10
    9091. 

  9091.         adcq	%rdx, %r11
    9092. 

  9092.         adcq	$0x00, %r12
    9093. 

  9093.         #  A[0] * B[3]
    9094. 

  9094.         movq	24(%rbx), %rax
    9095. 

  9095.         mulq	(%rsi)
    9096. 

  9096.         xorq	%r13, %r13
    9097. 

  9097.         addq	%rax, %r11
    9098. 

  9098.         adcq	%rdx, %r12
    9099. 

  9099.         adcq	$0x00, %r13
    9100. 

  9100.         #  A[1] * B[2]
    9101. 

  9101.         movq	16(%rbx), %rax
    9102. 

  9102.         mulq	8(%rsi)
    9103. 

  9103.         addq	%rax, %r11
    9104. 

  9104.         adcq	%rdx, %r12
    9105. 

  9105.         adcq	$0x00, %r13
    9106. 

  9106.         #  A[2] * B[1]
    9107. 

  9107.         movq	8(%rbx), %rax
    9108. 

  9108.         mulq	16(%rsi)
    9109. 

  9109.         addq	%rax, %r11
    9110. 

  9110.         adcq	%rdx, %r12
    9111. 

  9111.         adcq	$0x00, %r13
    9112. 

  9112.         #  A[3] * B[0]
    9113. 

  9113.         movq	(%rbx), %rax
    9114. 

  9114.         mulq	24(%rsi)
    9115. 

  9115.         addq	%rax, %r11
    9116. 

  9116.         adcq	%rdx, %r12
    9117. 

  9117.         adcq	$0x00, %r13
    9118. 

  9118.         #  A[1] * B[3]
    9119. 

  9119.         movq	24(%rbx), %rax
    9120. 

  9120.         mulq	8(%rsi)
    9121. 

  9121.         xorq	%r14, %r14
    9122. 

  9122.         addq	%rax, %r12
    9123. 

  9123.         adcq	%rdx, %r13
    9124. 

  9124.         adcq	$0x00, %r14
    9125. 

  9125.         #  A[2] * B[2]
    9126. 

  9126.         movq	16(%rbx), %rax
    9127. 

  9127.         mulq	16(%rsi)
    9128. 

  9128.         addq	%rax, %r12
    9129. 

  9129.         adcq	%rdx, %r13
    9130. 

  9130.         adcq	$0x00, %r14
    9131. 

  9131.         #  A[3] * B[1]
    9132. 

  9132.         movq	8(%rbx), %rax
    9133. 

  9133.         mulq	24(%rsi)
    9134. 

  9134.         addq	%rax, %r12
    9135. 

  9135.         adcq	%rdx, %r13
    9136. 

  9136.         adcq	$0x00, %r14
    9137. 

  9137.         #  A[2] * B[3]
    9138. 

  9138.         movq	24(%rbx), %rax
    9139. 

  9139.         mulq	16(%rsi)
    9140. 

  9140.         xorq	%r15, %r15
    9141. 

  9141.         addq	%rax, %r13
    9142. 

  9142.         adcq	%rdx, %r14
    9143. 

  9143.         adcq	$0x00, %r15
    9144. 

  9144.         #  A[3] * B[2]
    9145. 

  9145.         movq	16(%rbx), %rax
    9146. 

  9146.         mulq	24(%rsi)
    9147. 

  9147.         addq	%rax, %r13
    9148. 

  9148.         adcq	%rdx, %r14
    9149. 

  9149.         adcq	$0x00, %r15
    9150. 

  9150.         #  A[3] * B[3]
    9151. 

  9151.         movq	24(%rbx), %rax
    9152. 

  9152.         mulq	24(%rsi)
    9153. 

  9153.         addq	%rax, %r14
    9154. 

  9154.         adcq	%rdx, %r15
    9155. 

  9155.         # Reduce
    9156. 

  9156.         movq	$0x7fffffffffffffff, %rcx
    9157. 

  9157.         #  Move top half into t4-t7 and remove top bit from t3
    9158. 

  9158.         shldq	$0x01, %r14, %r15
    9159. 

  9159.         shldq	$0x01, %r13, %r14
    9160. 

  9160.         shldq	$0x01, %r12, %r13
    9161. 

  9161.         shldq	$0x01, %r11, %r12
    9162. 

  9162.         andq	%rcx, %r11
    9163. 

  9163.         #  Multiply top half by 19
    9164. 

  9164.         movq	$19, %rax
    9165. 

  9165.         mulq	%r12
    9166. 

  9166.         xorq	%r12, %r12
    9167. 

  9167.         addq	%rax, %r8
    9168. 

  9168.         movq	$19, %rax
    9169. 

  9169.         adcq	%rdx, %r12
    9170. 

  9170.         mulq	%r13
    9171. 

  9171.         xorq	%r13, %r13
    9172. 

  9172.         addq	%rax, %r9
    9173. 

  9173.         movq	$19, %rax
    9174. 

  9174.         adcq	%rdx, %r13
    9175. 

  9175.         mulq	%r14
    9176. 

  9176.         xorq	%r14, %r14
    9177. 

  9177.         addq	%rax, %r10
    9178. 

  9178.         movq	$19, %rax
    9179. 

  9179.         adcq	%rdx, %r14
    9180. 

  9180.         mulq	%r15
    9181. 

  9181.         #  Add remaining product results in
    9182. 

  9182.         addq	%r12, %r9
    9183. 

  9183.         adcq	%r13, %r10
    9184. 

  9184.         adcq	%r14, %r11
    9185. 

  9185.         adcq	%rax, %r11
    9186. 

  9186.         adcq	$0x00, %rdx
    9187. 

  9187.         #  Overflow
    9188. 

  9188.         shldq	$0x01, %r11, %rdx
    9189. 

  9189.         imulq	$19, %rdx, %rax
    9190. 

  9190.         andq	%rcx, %r11
    9191. 

  9191.         addq	%rax, %r8
    9192. 

  9192.         adcq	$0x00, %r9
    9193. 

  9193.         adcq	$0x00, %r10
    9194. 

  9194.         adcq	$0x00, %r11
    9195. 

  9195.         # Reduce if top bit set
    9196. 

  9196.         movq	%r11, %rdx
    9197. 

  9197.         shrq	$63, %rdx
    9198. 

  9198.         imulq	$19, %rdx, %rax
    9199. 

  9199.         andq	%rcx, %r11
    9200. 

  9200.         addq	%rax, %r8
    9201. 

  9201.         adcq	$0x00, %r9
    9202. 

  9202.         adcq	$0x00, %r10
    9203. 

  9203.         adcq	$0x00, %r11
    9204. 

  9204.         # Store
    9205. 

  9205.         movq	%r8, (%rdi)
    9206. 

  9206.         movq	%r9, 8(%rdi)
    9207. 

  9207.         movq	%r10, 16(%rdi)
    9208. 

  9208.         movq	%r11, 24(%rdi)
    9209. 

  9209.         movq	(%rsp), %rdi
    9210. 

  9210.         movq	128(%rsp), %rsi
    9211. 

  9211.         movq	144(%rsp), %rbx
    9212. 

  9212.         # Multiply
    9213. 

  9213.         #  A[0] * B[0]
    9214. 

  9214.         movq	(%rbx), %rax
    9215. 

  9215.         mulq	(%rsi)
    9216. 

  9216.         movq	%rax, %r8
    9217. 

  9217.         movq	%rdx, %r9
    9218. 

  9218.         #  A[0] * B[1]
    9219. 

  9219.         movq	8(%rbx), %rax
    9220. 

  9220.         mulq	(%rsi)
    9221. 

  9221.         xorq	%r10, %r10
    9222. 

  9222.         addq	%rax, %r9
    9223. 

  9223.         adcq	%rdx, %r10
    9224. 

  9224.         #  A[1] * B[0]
    9225. 

  9225.         movq	(%rbx), %rax
    9226. 

  9226.         mulq	8(%rsi)
    9227. 

  9227.         xorq	%r11, %r11
    9228. 

  9228.         addq	%rax, %r9
    9229. 

  9229.         adcq	%rdx, %r10
    9230. 

  9230.         adcq	$0x00, %r11
    9231. 

  9231.         #  A[0] * B[2]
    9232. 

  9232.         movq	16(%rbx), %rax
    9233. 

  9233.         mulq	(%rsi)
    9234. 

  9234.         addq	%rax, %r10
    9235. 

  9235.         adcq	%rdx, %r11
    9236. 

  9236.         #  A[1] * B[1]
    9237. 

  9237.         movq	8(%rbx), %rax
    9238. 

  9238.         mulq	8(%rsi)
    9239. 

  9239.         xorq	%r12, %r12
    9240. 

  9240.         addq	%rax, %r10
    9241. 

  9241.         adcq	%rdx, %r11
    9242. 

  9242.         adcq	$0x00, %r12
    9243. 

  9243.         #  A[2] * B[0]
    9244. 

  9244.         movq	(%rbx), %rax
    9245. 

  9245.         mulq	16(%rsi)
    9246. 

  9246.         addq	%rax, %r10
    9247. 

  9247.         adcq	%rdx, %r11
    9248. 

  9248.         adcq	$0x00, %r12
    9249. 

  9249.         #  A[0] * B[3]
    9250. 

  9250.         movq	24(%rbx), %rax
    9251. 

  9251.         mulq	(%rsi)
    9252. 

  9252.         xorq	%r13, %r13
    9253. 

  9253.         addq	%rax, %r11
    9254. 

  9254.         adcq	%rdx, %r12
    9255. 

  9255.         adcq	$0x00, %r13
    9256. 

  9256.         #  A[1] * B[2]
    9257. 

  9257.         movq	16(%rbx), %rax
    9258. 

  9258.         mulq	8(%rsi)
    9259. 

  9259.         addq	%rax, %r11
    9260. 

  9260.         adcq	%rdx, %r12
    9261. 

  9261.         adcq	$0x00, %r13
    9262. 

  9262.         #  A[2] * B[1]
    9263. 

  9263.         movq	8(%rbx), %rax
    9264. 

  9264.         mulq	16(%rsi)
    9265. 

  9265.         addq	%rax, %r11
    9266. 

  9266.         adcq	%rdx, %r12
    9267. 

  9267.         adcq	$0x00, %r13
    9268. 

  9268.         #  A[3] * B[0]
    9269. 

  9269.         movq	(%rbx), %rax
    9270. 

  9270.         mulq	24(%rsi)
    9271. 

  9271.         addq	%rax, %r11
    9272. 

  9272.         adcq	%rdx, %r12
    9273. 

  9273.         adcq	$0x00, %r13
    9274. 

  9274.         #  A[1] * B[3]
    9275. 

  9275.         movq	24(%rbx), %rax
    9276. 

  9276.         mulq	8(%rsi)
    9277. 

  9277.         xorq	%r14, %r14
    9278. 

  9278.         addq	%rax, %r12
    9279. 

  9279.         adcq	%rdx, %r13
    9280. 

  9280.         adcq	$0x00, %r14
    9281. 

  9281.         #  A[2] * B[2]
    9282. 

  9282.         movq	16(%rbx), %rax
    9283. 

  9283.         mulq	16(%rsi)
    9284. 

  9284.         addq	%rax, %r12
    9285. 

  9285.         adcq	%rdx, %r13
    9286. 

  9286.         adcq	$0x00, %r14
    9287. 

  9287.         #  A[3] * B[1]
    9288. 

  9288.         movq	8(%rbx), %rax
    9289. 

  9289.         mulq	24(%rsi)
    9290. 

  9290.         addq	%rax, %r12
    9291. 

  9291.         adcq	%rdx, %r13
    9292. 

  9292.         adcq	$0x00, %r14
    9293. 

  9293.         #  A[2] * B[3]
    9294. 

  9294.         movq	24(%rbx), %rax
    9295. 

  9295.         mulq	16(%rsi)
    9296. 

  9296.         xorq	%r15, %r15
    9297. 

  9297.         addq	%rax, %r13
    9298. 

  9298.         adcq	%rdx, %r14
    9299. 

  9299.         adcq	$0x00, %r15
    9300. 

  9300.         #  A[3] * B[2]
    9301. 

  9301.         movq	16(%rbx), %rax
    9302. 

  9302.         mulq	24(%rsi)
    9303. 

  9303.         addq	%rax, %r13
    9304. 

  9304.         adcq	%rdx, %r14
    9305. 

  9305.         adcq	$0x00, %r15
    9306. 

  9306.         #  A[3] * B[3]
    9307. 

  9307.         movq	24(%rbx), %rax
    9308. 

  9308.         mulq	24(%rsi)
    9309. 

  9309.         addq	%rax, %r14
    9310. 

  9310.         adcq	%rdx, %r15
    9311. 

  9311.         # Reduce
    9312. 

  9312.         movq	$0x7fffffffffffffff, %rcx
    9313. 

  9313.         #  Move top half into t4-t7 and remove top bit from t3
    9314. 

  9314.         shldq	$0x01, %r14, %r15
    9315. 

  9315.         shldq	$0x01, %r13, %r14
    9316. 

  9316.         shldq	$0x01, %r12, %r13
    9317. 

  9317.         shldq	$0x01, %r11, %r12
    9318. 

  9318.         andq	%rcx, %r11
    9319. 

  9319.         #  Multiply top half by 19
    9320. 

  9320.         movq	$19, %rax
    9321. 

  9321.         mulq	%r12
    9322. 

  9322.         xorq	%r12, %r12
    9323. 

  9323.         addq	%rax, %r8
    9324. 

  9324.         movq	$19, %rax
    9325. 

  9325.         adcq	%rdx, %r12
    9326. 

  9326.         mulq	%r13
    9327. 

  9327.         xorq	%r13, %r13
    9328. 

  9328.         addq	%rax, %r9
    9329. 

  9329.         movq	$19, %rax
    9330. 

  9330.         adcq	%rdx, %r13
    9331. 

  9331.         mulq	%r14
    9332. 

  9332.         xorq	%r14, %r14
    9333. 

  9333.         addq	%rax, %r10
    9334. 

  9334.         movq	$19, %rax
    9335. 

  9335.         adcq	%rdx, %r14
    9336. 

  9336.         mulq	%r15
    9337. 

  9337.         #  Add remaining product results in
    9338. 

  9338.         addq	%r12, %r9
    9339. 

  9339.         adcq	%r13, %r10
    9340. 

  9340.         adcq	%r14, %r11
    9341. 

  9341.         adcq	%rax, %r11
    9342. 

  9342.         adcq	$0x00, %rdx
    9343. 

  9343.         #  Overflow
    9344. 

  9344.         shldq	$0x01, %r11, %rdx
    9345. 

  9345.         imulq	$19, %rdx, %rax
    9346. 

  9346.         andq	%rcx, %r11
    9347. 

  9347.         addq	%rax, %r8
    9348. 

  9348.         adcq	$0x00, %r9
    9349. 

  9349.         adcq	$0x00, %r10
    9350. 

  9350.         adcq	$0x00, %r11
    9351. 

  9351.         # Reduce if top bit set
    9352. 

  9352.         movq	%r11, %rdx
    9353. 

  9353.         shrq	$63, %rdx
    9354. 

  9354.         imulq	$19, %rdx, %rax
    9355. 

  9355.         andq	%rcx, %r11
    9356. 

  9356.         addq	%rax, %r8
    9357. 

  9357.         adcq	$0x00, %r9
    9358. 

  9358.         adcq	$0x00, %r10
    9359. 

  9359.         adcq	$0x00, %r11
    9360. 

  9360.         # Store
    9361. 

  9361.         movq	%r8, (%rdi)
    9362. 

  9362.         movq	%r9, 8(%rdi)
    9363. 

  9363.         movq	%r10, 16(%rdi)
    9364. 

  9364.         movq	%r11, 24(%rdi)
    9365. 

  9365.         leaq	48(%rsp), %rdi
    9366. 

  9366.         movq	(%rsp), %rsi
    9367. 

  9367.         movq	(%rsp), %rbx
    9368. 

  9368.         # Add
    9369. 

  9369.         movq	(%rsi), %r8
    9370. 

  9370.         movq	8(%rsi), %r9
    9371. 

  9371.         addq	(%rbx), %r8
    9372. 

  9372.         movq	16(%rsi), %r10
    9373. 

  9373.         adcq	8(%rbx), %r9
    9374. 

  9374.         movq	24(%rsi), %rcx
    9375. 

  9375.         adcq	16(%rbx), %r10
    9376. 

  9376.         movq	$-19, %rax
    9377. 

  9377.         adcq	24(%rbx), %rcx
    9378. 

  9378.         movq	$0x7fffffffffffffff, %rdx
    9379. 

  9379.         movq	%rcx, %r11
    9380. 

  9380.         sarq	$63, %rcx
    9381. 

  9381.         #   Mask the modulus
    9382. 

  9382.         andq	%rcx, %rax
    9383. 

  9383.         andq	%rcx, %rdx
    9384. 

  9384.         #   Sub modulus (if overflow)
    9385. 

  9385.         subq	%rax, %r8
    9386. 

  9386.         sbbq	%rcx, %r9
    9387. 

  9387.         sbbq	%rcx, %r10
    9388. 

  9388.         sbbq	%rdx, %r11
    9389. 

  9389.         movq	%r8, (%rdi)
    9390. 

  9390.         movq	%r9, 8(%rdi)
    9391. 

  9391.         movq	%r10, 16(%rdi)
    9392. 

  9392.         movq	%r11, 24(%rdi)
    9393. 

  9393.         movq	(%rsp), %rdi
    9394. 

  9394.         movq	16(%rsp), %rsi
    9395. 

  9395.         movq	8(%rsp), %rbx
    9396. 

  9396.         # Sub
    9397. 

  9397.         movq	(%rsi), %r8
    9398. 

  9398.         movq	8(%rsi), %r9
    9399. 

  9399.         movq	16(%rsi), %r10
    9400. 

  9400.         movq	24(%rsi), %r11
    9401. 

  9401.         subq	(%rbx), %r8
    9402. 

  9402.         movq	$0x00, %rcx
    9403. 

  9403.         sbbq	8(%rbx), %r9
    9404. 

  9404.         movq	$-19, %rax
    9405. 

  9405.         sbbq	16(%rbx), %r10
    9406. 

  9406.         movq	$0x7fffffffffffffff, %rdx
    9407. 

  9407.         sbbq	24(%rbx), %r11
    9408. 

  9408.         sbbq	$0x00, %rcx
    9409. 

  9409.         #   Mask the modulus
    9410. 

  9410.         andq	%rcx, %rax
    9411. 

  9411.         andq	%rcx, %rdx
    9412. 

  9412.         #   Add modulus (if underflow)
    9413. 

  9413.         addq	%rax, %r8
    9414. 

  9414.         adcq	%rcx, %r9
    9415. 

  9415.         adcq	%rcx, %r10
    9416. 

  9416.         adcq	%rdx, %r11
    9417. 

  9417.         movq	%r8, (%rdi)
    9418. 

  9418.         movq	%r9, 8(%rdi)
    9419. 

  9419.         movq	%r10, 16(%rdi)
    9420. 

  9420.         movq	%r11, 24(%rdi)
    9421. 

  9421.         movq	8(%rsp), %rdi
    9422. 

  9422.         movq	16(%rsp), %rsi
    9423. 

  9423.         movq	8(%rsp), %rbx
    9424. 

  9424.         # Add
    9425. 

  9425.         movq	(%rsi), %r8
    9426. 

  9426.         movq	8(%rsi), %r9
    9427. 

  9427.         addq	(%rbx), %r8
    9428. 

  9428.         movq	16(%rsi), %r10
    9429. 

  9429.         adcq	8(%rbx), %r9
    9430. 

  9430.         movq	24(%rsi), %rcx
    9431. 

  9431.         adcq	16(%rbx), %r10
    9432. 

  9432.         movq	$-19, %rax
    9433. 

  9433.         adcq	24(%rbx), %rcx
    9434. 

  9434.         movq	$0x7fffffffffffffff, %rdx
    9435. 

  9435.         movq	%rcx, %r11
    9436. 

  9436.         sarq	$63, %rcx
    9437. 

  9437.         #   Mask the modulus
    9438. 

  9438.         andq	%rcx, %rax
    9439. 

  9439.         andq	%rcx, %rdx
    9440. 

  9440.         #   Sub modulus (if overflow)
    9441. 

  9441.         subq	%rax, %r8
    9442. 

  9442.         sbbq	%rcx, %r9
    9443. 

  9443.         sbbq	%rcx, %r10
    9444. 

  9444.         sbbq	%rdx, %r11
    9445. 

  9445.         movq	%r8, (%rdi)
    9446. 

  9446.         movq	%r9, 8(%rdi)
    9447. 

  9447.         movq	%r10, 16(%rdi)
    9448. 

  9448.         movq	%r11, 24(%rdi)
    9449. 

  9449.         movq	16(%rsp), %rdi
    9450. 

  9450.         leaq	48(%rsp), %rsi
    9451. 

  9451.         movq	24(%rsp), %rbx
    9452. 

  9452.         # Sub
    9453. 

  9453.         movq	(%rsi), %r8
    9454. 

  9454.         movq	8(%rsi), %r9
    9455. 

  9455.         movq	16(%rsi), %r10
    9456. 

  9456.         movq	24(%rsi), %r11
    9457. 

  9457.         subq	(%rbx), %r8
    9458. 

  9458.         movq	$0x00, %rcx
    9459. 

  9459.         sbbq	8(%rbx), %r9
    9460. 

  9460.         movq	$-19, %rax
    9461. 

  9461.         sbbq	16(%rbx), %r10
    9462. 

  9462.         movq	$0x7fffffffffffffff, %rdx
    9463. 

  9463.         sbbq	24(%rbx), %r11
    9464. 

  9464.         sbbq	$0x00, %rcx
    9465. 

  9465.         #   Mask the modulus
    9466. 

  9466.         andq	%rcx, %rax
    9467. 

  9467.         andq	%rcx, %rdx
    9468. 

  9468.         #   Add modulus (if underflow)
    9469. 

  9469.         addq	%rax, %r8
    9470. 

  9470.         adcq	%rcx, %r9
    9471. 

  9471.         adcq	%rcx, %r10
    9472. 

  9472.         adcq	%rdx, %r11
    9473. 

  9473.         movq	%r8, (%rdi)
    9474. 

  9474.         movq	%r9, 8(%rdi)
    9475. 

  9475.         movq	%r10, 16(%rdi)
    9476. 

  9476.         movq	%r11, 24(%rdi)
    9477. 

  9477.         movq	24(%rsp), %rdi
    9478. 

  9478.         leaq	48(%rsp), %rsi
    9479. 

  9479.         movq	24(%rsp), %rbx
    9480. 

  9480.         # Add
    9481. 

  9481.         movq	(%rsi), %r8
    9482. 

  9482.         movq	8(%rsi), %r9
    9483. 

  9483.         addq	(%rbx), %r8
    9484. 

  9484.         movq	16(%rsi), %r10
    9485. 

  9485.         adcq	8(%rbx), %r9
    9486. 

  9486.         movq	24(%rsi), %rcx
    9487. 

  9487.         adcq	16(%rbx), %r10
    9488. 

  9488.         movq	$-19, %rax
    9489. 

  9489.         adcq	24(%rbx), %rcx
    9490. 

  9490.         movq	$0x7fffffffffffffff, %rdx
    9491. 

  9491.         movq	%rcx, %r11
    9492. 

  9492.         sarq	$63, %rcx
    9493. 

  9493.         #   Mask the modulus
    9494. 

  9494.         andq	%rcx, %rax
    9495. 

  9495.         andq	%rcx, %rdx
    9496. 

  9496.         #   Sub modulus (if overflow)
    9497. 

  9497.         subq	%rax, %r8
    9498. 

  9498.         sbbq	%rcx, %r9
    9499. 

  9499.         sbbq	%rcx, %r10
    9500. 

  9500.         sbbq	%rdx, %r11
    9501. 

  9501.         movq	%r8, (%rdi)
    9502. 

  9502.         movq	%r9, 8(%rdi)
    9503. 

  9503.         movq	%r10, 16(%rdi)
    9504. 

  9504.         movq	%r11, 24(%rdi)
    9505. 

  9505.         addq	$0x50, %rsp
    9506. 

  9506.         popq	%r15
    9507. 

  9507.         popq	%r14
    9508. 

  9508.         popq	%r13
    9509. 

  9509.         popq	%r12
    9510. 

  9510.         popq	%rbx
    9511. 

  9511.         repz retq
    9512. 

  9512. #ifndef __APPLE__
    9513. 

  9513. .size	fe_ge_sub_x64,.-fe_ge_sub_x64
    9514. 

  9514. #endif /* __APPLE__ */
    9515. 

  9515. #ifdef HAVE_INTEL_AVX2
    9516. 

  9516. #ifndef __APPLE__
    9517. 

  9517. .text
    9518. 

  9518. .globl	fe_mul_avx2
    9519. 

  9519. .type	fe_mul_avx2,@function
    9520. 

  9520. .align	16
    9521. 

  9521. fe_mul_avx2:
    9522. 

  9522. #else
    9523. 

  9523. .section	__TEXT,__text
    9524. 

  9524. .globl	_fe_mul_avx2
    9525. 

  9525. .p2align	4
    9526. 

  9526. _fe_mul_avx2:
    9527. 

  9527. #endif /* __APPLE__ */
    9528. 

  9528.         pushq	%r12
    9529. 

  9529.         pushq	%r13
    9530. 

  9530.         pushq	%r14
    9531. 

  9531.         pushq	%r15
    9532. 

  9532.         pushq	%rbx
    9533. 

  9533.         movq	%rdx, %rbx
    9534. 

  9534.         # Multiply
    9535. 

  9535.         # A[0] * B[0]
    9536. 

  9536.         movq	(%rbx), %rdx
    9537. 

  9537.         mulxq	(%rsi), %r8, %r9
    9538. 

  9538.         # A[2] * B[0]
    9539. 

  9539.         mulxq	16(%rsi), %r10, %r11
    9540. 

  9540.         # A[1] * B[0]
    9541. 

  9541.         mulxq	8(%rsi), %rax, %rcx
    9542. 

  9542.         xorq	%r15, %r15
    9543. 

  9543.         adcxq	%rax, %r9
    9544. 

  9544.         # A[1] * B[3]
    9545. 

  9545.         movq	24(%rbx), %rdx
    9546. 

  9546.         mulxq	8(%rsi), %r12, %r13
    9547. 

  9547.         adcxq	%rcx, %r10
    9548. 

  9548.         # A[0] * B[1]
    9549. 

  9549.         movq	8(%rbx), %rdx
    9550. 

  9550.         mulxq	(%rsi), %rax, %rcx
    9551. 

  9551.         adoxq	%rax, %r9
    9552. 

  9552.         # A[2] * B[1]
    9553. 

  9553.         mulxq	16(%rsi), %rax, %r14
    9554. 

  9554.         adoxq	%rcx, %r10
    9555. 

  9555.         adcxq	%rax, %r11
    9556. 

  9556.         # A[1] * B[2]
    9557. 

  9557.         movq	16(%rbx), %rdx
    9558. 

  9558.         mulxq	8(%rsi), %rax, %rcx
    9559. 

  9559.         adcxq	%r14, %r12
    9560. 

  9560.         adoxq	%rax, %r11
    9561. 

  9561.         adcxq	%r15, %r13
    9562. 

  9562.         adoxq	%rcx, %r12
    9563. 

  9563.         # A[0] * B[2]
    9564. 

  9564.         mulxq	(%rsi), %rax, %rcx
    9565. 

  9565.         adoxq	%r15, %r13
    9566. 

  9566.         xorq	%r14, %r14
    9567. 

  9567.         adcxq	%rax, %r10
    9568. 

  9568.         # A[1] * B[1]
    9569. 

  9569.         movq	8(%rbx), %rdx
    9570. 

  9570.         mulxq	8(%rsi), %rdx, %rax
    9571. 

  9571.         adcxq	%rcx, %r11
    9572. 

  9572.         adoxq	%rdx, %r10
    9573. 

  9573.         # A[3] * B[1]
    9574. 

  9574.         movq	8(%rbx), %rdx
    9575. 

  9575.         adoxq	%rax, %r11
    9576. 

  9576.         mulxq	24(%rsi), %rax, %rcx
    9577. 

  9577.         adcxq	%rax, %r12
    9578. 

  9578.         # A[2] * B[2]
    9579. 

  9579.         movq	16(%rbx), %rdx
    9580. 

  9580.         mulxq	16(%rsi), %rdx, %rax
    9581. 

  9581.         adcxq	%rcx, %r13
    9582. 

  9582.         adoxq	%rdx, %r12
    9583. 

  9583.         # A[3] * B[3]
    9584. 

  9584.         movq	24(%rbx), %rdx
    9585. 

  9585.         adoxq	%rax, %r13
    9586. 

  9586.         mulxq	24(%rsi), %rax, %rcx
    9587. 

  9587.         adoxq	%r15, %r14
    9588. 

  9588.         adcxq	%rax, %r14
    9589. 

  9589.         # A[0] * B[3]
    9590. 

  9590.         mulxq	(%rsi), %rdx, %rax
    9591. 

  9591.         adcxq	%rcx, %r15
    9592. 

  9592.         xorq	%rcx, %rcx
    9593. 

  9593.         adcxq	%rdx, %r11
    9594. 

  9594.         # A[3] * B[0]
    9595. 

  9595.         movq	(%rbx), %rdx
    9596. 

  9596.         adcxq	%rax, %r12
    9597. 

  9597.         mulxq	24(%rsi), %rdx, %rax
    9598. 

  9598.         adoxq	%rdx, %r11
    9599. 

  9599.         adoxq	%rax, %r12
    9600. 

  9600.         # A[2] * B[3]
    9601. 

  9601.         movq	24(%rbx), %rdx
    9602. 

  9602.         mulxq	16(%rsi), %rdx, %rax
    9603. 

  9603.         adcxq	%rdx, %r13
    9604. 

  9604.         # A[3] * B[2]
    9605. 

  9605.         movq	16(%rbx), %rdx
    9606. 

  9606.         adcxq	%rax, %r14
    9607. 

  9607.         mulxq	24(%rsi), %rax, %rdx
    9608. 

  9608.         adcxq	%rcx, %r15
    9609. 

  9609.         adoxq	%rax, %r13
    9610. 

  9610.         adoxq	%rdx, %r14
    9611. 

  9611.         adoxq	%rcx, %r15
    9612. 

  9612.         # Reduce
    9613. 

  9613.         movq	$0x7fffffffffffffff, %rcx
    9614. 

  9614.         #  Move top half into t4-t7 and remove top bit from t3
    9615. 

  9615.         shldq	$0x01, %r14, %r15
    9616. 

  9616.         shldq	$0x01, %r13, %r14
    9617. 

  9617.         shldq	$0x01, %r12, %r13
    9618. 

  9618.         shldq	$0x01, %r11, %r12
    9619. 

  9619.         andq	%rcx, %r11
    9620. 

  9620.         #  Multiply top half by 19
    9621. 

  9621.         movq	$19, %rdx
    9622. 

  9622.         xorq	%rcx, %rcx
    9623. 

  9623.         mulxq	%r12, %rax, %r12
    9624. 

  9624.         adcxq	%rax, %r8
    9625. 

  9625.         adoxq	%r12, %r9
    9626. 

  9626.         mulxq	%r13, %rax, %r13
    9627. 

  9627.         adcxq	%rax, %r9
    9628. 

  9628.         adoxq	%r13, %r10
    9629. 

  9629.         mulxq	%r14, %rax, %r14
    9630. 

  9630.         adcxq	%rax, %r10
    9631. 

  9631.         adoxq	%r14, %r11
    9632. 

  9632.         mulxq	%r15, %r15, %rdx
    9633. 

  9633.         adcxq	%r15, %r11
    9634. 

  9634.         adoxq	%rcx, %rdx
    9635. 

  9635.         adcxq	%rcx, %rdx
    9636. 

  9636.         #  Overflow
    9637. 

  9637.         shldq	$0x01, %r11, %rdx
    9638. 

  9638.         movq	$0x7fffffffffffffff, %rcx
    9639. 

  9639.         imulq	$19, %rdx, %rax
    9640. 

  9640.         andq	%rcx, %r11
    9641. 

  9641.         addq	%rax, %r8
    9642. 

  9642.         adcq	$0x00, %r9
    9643. 

  9643.         adcq	$0x00, %r10
    9644. 

  9644.         adcq	$0x00, %r11
    9645. 

  9645.         # Reduce if top bit set
    9646. 

  9646.         movq	%r11, %rdx
    9647. 

  9647.         shrq	$63, %rdx
    9648. 

  9648.         imulq	$19, %rdx, %rax
    9649. 

  9649.         andq	%rcx, %r11
    9650. 

  9650.         addq	%rax, %r8
    9651. 

  9651.         adcq	$0x00, %r9
    9652. 

  9652.         adcq	$0x00, %r10
    9653. 

  9653.         adcq	$0x00, %r11
    9654. 

  9654.         # Store
    9655. 

  9655.         movq	%r8, (%rdi)
    9656. 

  9656.         movq	%r9, 8(%rdi)
    9657. 

  9657.         movq	%r10, 16(%rdi)
    9658. 

  9658.         movq	%r11, 24(%rdi)
    9659. 

  9659.         popq	%rbx
    9660. 

  9660.         popq	%r15
    9661. 

  9661.         popq	%r14
    9662. 

  9662.         popq	%r13
    9663. 

  9663.         popq	%r12
    9664. 

  9664.         repz retq
    9665. 

  9665. #ifndef __APPLE__
    9666. 

  9666. .size	fe_mul_avx2,.-fe_mul_avx2
    9667. 

  9667. #endif /* __APPLE__ */
    9668. 

  9668. #ifndef __APPLE__
    9669. 

  9669. .text
    9670. 

  9670. .globl	fe_sq_avx2
    9671. 

  9671. .type	fe_sq_avx2,@function
    9672. 

  9672. .align	16
    9673. 

  9673. fe_sq_avx2:
    9674. 

  9674. #else
    9675. 

  9675. .section	__TEXT,__text
    9676. 

  9676. .globl	_fe_sq_avx2
    9677. 

  9677. .p2align	4
    9678. 

  9678. _fe_sq_avx2:
    9679. 

  9679. #endif /* __APPLE__ */
    9680. 

  9680.         pushq	%rbx
    9681. 

  9681.         pushq	%r12
    9682. 

  9682.         pushq	%r13
    9683. 

  9683.         pushq	%r14
    9684. 

  9684.         pushq	%r15
    9685. 

  9685.         # Square
    9686. 

  9686.         # A[0] * A[1]
    9687. 

  9687.         movq	(%rsi), %rdx
    9688. 

  9688.         mulxq	8(%rsi), %r9, %r10
    9689. 

  9689.         # A[0] * A[3]
    9690. 

  9690.         mulxq	24(%rsi), %r11, %r12
    9691. 

  9691.         # A[2] * A[1]
    9692. 

  9692.         movq	16(%rsi), %rdx
    9693. 

  9693.         mulxq	8(%rsi), %rcx, %rbx
    9694. 

  9694.         xorq	%r15, %r15
    9695. 

  9695.         adoxq	%rcx, %r11
    9696. 

  9696.         # A[2] * A[3]
    9697. 

  9697.         mulxq	24(%rsi), %r13, %r14
    9698. 

  9698.         adoxq	%rbx, %r12
    9699. 

  9699.         # A[2] * A[0]
    9700. 

  9700.         mulxq	(%rsi), %rcx, %rbx
    9701. 

  9701.         adoxq	%r15, %r13
    9702. 

  9702.         adcxq	%rcx, %r10
    9703. 

  9703.         adoxq	%r15, %r14
    9704. 

  9704.         # A[1] * A[3]
    9705. 

  9705.         movq	8(%rsi), %rdx
    9706. 

  9706.         mulxq	24(%rsi), %rax, %r8
    9707. 

  9707.         adcxq	%rbx, %r11
    9708. 

  9708.         adcxq	%rax, %r12
    9709. 

  9709.         adcxq	%r8, %r13
    9710. 

  9710.         adcxq	%r15, %r14
    9711. 

  9711.         # Double with Carry Flag
    9712. 

  9712.         xorq	%r15, %r15
    9713. 

  9713.         # A[0] * A[0]
    9714. 

  9714.         movq	(%rsi), %rdx
    9715. 

  9715.         mulxq	%rdx, %r8, %rax
    9716. 

  9716.         adcxq	%r9, %r9
    9717. 

  9717.         # A[1] * A[1]
    9718. 

  9718.         movq	8(%rsi), %rdx
    9719. 

  9719.         mulxq	%rdx, %rcx, %rbx
    9720. 

  9720.         adcxq	%r10, %r10
    9721. 

  9721.         adoxq	%rax, %r9
    9722. 

  9722.         adcxq	%r11, %r11
    9723. 

  9723.         adoxq	%rcx, %r10
    9724. 

  9724.         # A[2] * A[2]
    9725. 

  9725.         movq	16(%rsi), %rdx
    9726. 

  9726.         mulxq	%rdx, %rax, %rcx
    9727. 

  9727.         adcxq	%r12, %r12
    9728. 

  9728.         adoxq	%rbx, %r11
    9729. 

  9729.         adcxq	%r13, %r13
    9730. 

  9730.         adoxq	%rax, %r12
    9731. 

  9731.         # A[3] * A[3]
    9732. 

  9732.         movq	24(%rsi), %rdx
    9733. 

  9733.         mulxq	%rdx, %rax, %rbx
    9734. 

  9734.         adcxq	%r14, %r14
    9735. 

  9735.         adoxq	%rcx, %r13
    9736. 

  9736.         adcxq	%r15, %r15
    9737. 

  9737.         adoxq	%rax, %r14
    9738. 

  9738.         adoxq	%rbx, %r15
    9739. 

  9739.         # Reduce
    9740. 

  9740.         movq	$0x7fffffffffffffff, %rcx
    9741. 

  9741.         #  Move top half into t4-t7 and remove top bit from t3
    9742. 

  9742.         shldq	$0x01, %r14, %r15
    9743. 

  9743.         shldq	$0x01, %r13, %r14
    9744. 

  9744.         shldq	$0x01, %r12, %r13
    9745. 

  9745.         shldq	$0x01, %r11, %r12
    9746. 

  9746.         andq	%rcx, %r11
    9747. 

  9747.         #  Multiply top half by 19
    9748. 

  9748.         movq	$19, %rdx
    9749. 

  9749.         xorq	%rcx, %rcx
    9750. 

  9750.         mulxq	%r12, %rax, %r12
    9751. 

  9751.         adcxq	%rax, %r8
    9752. 

  9752.         adoxq	%r12, %r9
    9753. 

  9753.         mulxq	%r13, %rax, %r13
    9754. 

  9754.         adcxq	%rax, %r9
    9755. 

  9755.         adoxq	%r13, %r10
    9756. 

  9756.         mulxq	%r14, %rax, %r14
    9757. 

  9757.         adcxq	%rax, %r10
    9758. 

  9758.         adoxq	%r14, %r11
    9759. 

  9759.         mulxq	%r15, %r15, %rdx
    9760. 

  9760.         adcxq	%r15, %r11
    9761. 

  9761.         adoxq	%rcx, %rdx
    9762. 

  9762.         adcxq	%rcx, %rdx
    9763. 

  9763.         #  Overflow
    9764. 

  9764.         shldq	$0x01, %r11, %rdx
    9765. 

  9765.         movq	$0x7fffffffffffffff, %rcx
    9766. 

  9766.         imulq	$19, %rdx, %rax
    9767. 

  9767.         andq	%rcx, %r11
    9768. 

  9768.         addq	%rax, %r8
    9769. 

  9769.         adcq	$0x00, %r9
    9770. 

  9770.         adcq	$0x00, %r10
    9771. 

  9771.         adcq	$0x00, %r11
    9772. 

  9772.         # Reduce if top bit set
    9773. 

  9773.         movq	%r11, %rdx
    9774. 

  9774.         shrq	$63, %rdx
    9775. 

  9775.         imulq	$19, %rdx, %rax
    9776. 

  9776.         andq	%rcx, %r11
    9777. 

  9777.         addq	%rax, %r8
    9778. 

  9778.         adcq	$0x00, %r9
    9779. 

  9779.         adcq	$0x00, %r10
    9780. 

  9780.         adcq	$0x00, %r11
    9781. 

  9781.         # Store
    9782. 

  9782.         movq	%r8, (%rdi)
    9783. 

  9783.         movq	%r9, 8(%rdi)
    9784. 

  9784.         movq	%r10, 16(%rdi)
    9785. 

  9785.         movq	%r11, 24(%rdi)
    9786. 

  9786.         popq	%r15
    9787. 

  9787.         popq	%r14
    9788. 

  9788.         popq	%r13
    9789. 

  9789.         popq	%r12
    9790. 

  9790.         popq	%rbx
    9791. 

  9791.         repz retq
    9792. 

  9792. #ifndef __APPLE__
    9793. 

  9793. .size	fe_sq_avx2,.-fe_sq_avx2
    9794. 

  9794. #endif /* __APPLE__ */
    9795. 

  9795. #ifndef __APPLE__
    9796. 

  9796. .text
    9797. 

  9797. .globl	fe_sq_n_avx2
    9798. 

  9798. .type	fe_sq_n_avx2,@function
    9799. 

  9799. .align	16
    9800. 

  9800. fe_sq_n_avx2:
    9801. 

  9801. #else
    9802. 

  9802. .section	__TEXT,__text
    9803. 

  9803. .globl	_fe_sq_n_avx2
    9804. 

  9804. .p2align	4
    9805. 

  9805. _fe_sq_n_avx2:
    9806. 

  9806. #endif /* __APPLE__ */
    9807. 

  9807.         pushq	%rbx
    9808. 

  9808.         pushq	%r12
    9809. 

  9809.         pushq	%r13
    9810. 

  9810.         pushq	%r14
    9811. 

  9811.         pushq	%r15
    9812. 

  9812.         pushq	%rbp
    9813. 

  9813.         movq	%rdx, %rbp
    9814. 

  9814. L_fe_sq_n_avx2:
    9815. 

  9815.         # Square
    9816. 

  9816.         # A[0] * A[1]
    9817. 

  9817.         movq	(%rsi), %rdx
    9818. 

  9818.         mulxq	8(%rsi), %r9, %r10
    9819. 

  9819.         # A[0] * A[3]
    9820. 

  9820.         mulxq	24(%rsi), %r11, %r12
    9821. 

  9821.         # A[2] * A[1]
    9822. 

  9822.         movq	16(%rsi), %rdx
    9823. 

  9823.         mulxq	8(%rsi), %rcx, %rbx
    9824. 

  9824.         xorq	%r15, %r15
    9825. 

  9825.         adoxq	%rcx, %r11
    9826. 

  9826.         # A[2] * A[3]
    9827. 

  9827.         mulxq	24(%rsi), %r13, %r14
    9828. 

  9828.         adoxq	%rbx, %r12
    9829. 

  9829.         # A[2] * A[0]
    9830. 

  9830.         mulxq	(%rsi), %rcx, %rbx
    9831. 

  9831.         adoxq	%r15, %r13
    9832. 

  9832.         adcxq	%rcx, %r10
    9833. 

  9833.         adoxq	%r15, %r14
    9834. 

  9834.         # A[1] * A[3]
    9835. 

  9835.         movq	8(%rsi), %rdx
    9836. 

  9836.         mulxq	24(%rsi), %rax, %r8
    9837. 

  9837.         adcxq	%rbx, %r11
    9838. 

  9838.         adcxq	%rax, %r12
    9839. 

  9839.         adcxq	%r8, %r13
    9840. 

  9840.         adcxq	%r15, %r14
    9841. 

  9841.         # Double with Carry Flag
    9842. 

  9842.         xorq	%r15, %r15
    9843. 

  9843.         # A[0] * A[0]
    9844. 

  9844.         movq	(%rsi), %rdx
    9845. 

  9845.         mulxq	%rdx, %r8, %rax
    9846. 

  9846.         adcxq	%r9, %r9
    9847. 

  9847.         # A[1] * A[1]
    9848. 

  9848.         movq	8(%rsi), %rdx
    9849. 

  9849.         mulxq	%rdx, %rcx, %rbx
    9850. 

  9850.         adcxq	%r10, %r10
    9851. 

  9851.         adoxq	%rax, %r9
    9852. 

  9852.         adcxq	%r11, %r11
    9853. 

  9853.         adoxq	%rcx, %r10
    9854. 

  9854.         # A[2] * A[2]
    9855. 

  9855.         movq	16(%rsi), %rdx
    9856. 

  9856.         mulxq	%rdx, %rax, %rcx
    9857. 

  9857.         adcxq	%r12, %r12
    9858. 

  9858.         adoxq	%rbx, %r11
    9859. 

  9859.         adcxq	%r13, %r13
    9860. 

  9860.         adoxq	%rax, %r12
    9861. 

  9861.         # A[3] * A[3]
    9862. 

  9862.         movq	24(%rsi), %rdx
    9863. 

  9863.         mulxq	%rdx, %rax, %rbx
    9864. 

  9864.         adcxq	%r14, %r14
    9865. 

  9865.         adoxq	%rcx, %r13
    9866. 

  9866.         adcxq	%r15, %r15
    9867. 

  9867.         adoxq	%rax, %r14
    9868. 

  9868.         adoxq	%rbx, %r15
    9869. 

  9869.         # Reduce
    9870. 

  9870.         movq	$0x7fffffffffffffff, %rcx
    9871. 

  9871.         #  Move top half into t4-t7 and remove top bit from t3
    9872. 

  9872.         shldq	$0x01, %r14, %r15
    9873. 

  9873.         shldq	$0x01, %r13, %r14
    9874. 

  9874.         shldq	$0x01, %r12, %r13
    9875. 

  9875.         shldq	$0x01, %r11, %r12
    9876. 

  9876.         andq	%rcx, %r11
    9877. 

  9877.         #  Multiply top half by 19
    9878. 

  9878.         movq	$19, %rdx
    9879. 

  9879.         xorq	%rcx, %rcx
    9880. 

  9880.         mulxq	%r12, %rax, %r12
    9881. 

  9881.         adcxq	%rax, %r8
    9882. 

  9882.         adoxq	%r12, %r9
    9883. 

  9883.         mulxq	%r13, %rax, %r13
    9884. 

  9884.         adcxq	%rax, %r9
    9885. 

  9885.         adoxq	%r13, %r10
    9886. 

  9886.         mulxq	%r14, %rax, %r14
    9887. 

  9887.         adcxq	%rax, %r10
    9888. 

  9888.         adoxq	%r14, %r11
    9889. 

  9889.         mulxq	%r15, %r15, %rdx
    9890. 

  9890.         adcxq	%r15, %r11
    9891. 

  9891.         adoxq	%rcx, %rdx
    9892. 

  9892.         adcxq	%rcx, %rdx
    9893. 

  9893.         #  Overflow
    9894. 

  9894.         shldq	$0x01, %r11, %rdx
    9895. 

  9895.         movq	$0x7fffffffffffffff, %rcx
    9896. 

  9896.         imulq	$19, %rdx, %rax
    9897. 

  9897.         andq	%rcx, %r11
    9898. 

  9898.         addq	%rax, %r8
    9899. 

  9899.         adcq	$0x00, %r9
    9900. 

  9900.         adcq	$0x00, %r10
    9901. 

  9901.         adcq	$0x00, %r11
    9902. 

  9902.         # Reduce if top bit set
    9903. 

  9903.         movq	%r11, %rdx
    9904. 

  9904.         shrq	$63, %rdx
    9905. 

  9905.         imulq	$19, %rdx, %rax
    9906. 

  9906.         andq	%rcx, %r11
    9907. 

  9907.         addq	%rax, %r8
    9908. 

  9908.         adcq	$0x00, %r9
    9909. 

  9909.         adcq	$0x00, %r10
    9910. 

  9910.         adcq	$0x00, %r11
    9911. 

  9911.         # Store
    9912. 

  9912.         movq	%r8, (%rdi)
    9913. 

  9913.         movq	%r9, 8(%rdi)
    9914. 

  9914.         movq	%r10, 16(%rdi)
    9915. 

  9915.         movq	%r11, 24(%rdi)
    9916. 

  9916.         decb	%bpl
    9917. 

  9917.         jnz	L_fe_sq_n_avx2
    9918. 

  9918.         popq	%rbp
    9919. 

  9919.         popq	%r15
    9920. 

  9920.         popq	%r14
    9921. 

  9921.         popq	%r13
    9922. 

  9922.         popq	%r12
    9923. 

  9923.         popq	%rbx
    9924. 

  9924.         repz retq
    9925. 

  9925. #ifndef __APPLE__
    9926. 

  9926. .size	fe_sq_n_avx2,.-fe_sq_n_avx2
    9927. 

  9927. #endif /* __APPLE__ */
    9928. 

  9928. #ifndef __APPLE__
    9929. 

  9929. .text
    9930. 

  9930. .globl	fe_mul121666_avx2
    9931. 

  9931. .type	fe_mul121666_avx2,@function
    9932. 

  9932. .align	16
    9933. 

  9933. fe_mul121666_avx2:
    9934. 

  9934. #else
    9935. 

  9935. .section	__TEXT,__text
    9936. 

  9936. .globl	_fe_mul121666_avx2
    9937. 

  9937. .p2align	4
    9938. 

  9938. _fe_mul121666_avx2:
    9939. 

  9939. #endif /* __APPLE__ */
    9940. 

  9940.         pushq	%r12
    9941. 

  9941.         pushq	%r13
    9942. 

  9942.         movq	$0x1db42, %rdx
    9943. 

  9943.         mulxq	(%rsi), %rax, %r13
    9944. 

  9944.         mulxq	8(%rsi), %rcx, %r12
    9945. 

  9945.         mulxq	16(%rsi), %r8, %r11
    9946. 

  9946.         mulxq	24(%rsi), %r9, %r10
    9947. 

  9947.         addq	%r13, %rcx
    9948. 

  9948.         adcq	%r12, %r8
    9949. 

  9949.         adcq	%r11, %r9
    9950. 

  9950.         adcq	$0x00, %r10
    9951. 

  9951.         movq	$0x7fffffffffffffff, %r13
    9952. 

  9952.         shldq	$0x01, %r9, %r10
    9953. 

  9953.         andq	%r13, %r9
    9954. 

  9954.         imulq	$19, %r10, %r10
    9955. 

  9955.         addq	%r10, %rax
    9956. 

  9956.         adcq	$0x00, %rcx
    9957. 

  9957.         adcq	$0x00, %r8
    9958. 

  9958.         adcq	$0x00, %r9
    9959. 

  9959.         movq	%rax, (%rdi)
    9960. 

  9960.         movq	%rcx, 8(%rdi)
    9961. 

  9961.         movq	%r8, 16(%rdi)
    9962. 

  9962.         movq	%r9, 24(%rdi)
    9963. 

  9963.         popq	%r13
    9964. 

  9964.         popq	%r12
    9965. 

  9965.         repz retq
    9966. 

  9966. #ifndef __APPLE__
    9967. 

  9967. .size	fe_mul121666_avx2,.-fe_mul121666_avx2
    9968. 

  9968. #endif /* __APPLE__ */
    9969. 

  9969. #ifndef __APPLE__
    9970. 

  9970. .text
    9971. 

  9971. .globl	fe_sq2_avx2
    9972. 

  9972. .type	fe_sq2_avx2,@function
    9973. 

  9973. .align	16
    9974. 

  9974. fe_sq2_avx2:
    9975. 

  9975. #else
    9976. 

  9976. .section	__TEXT,__text
    9977. 

  9977. .globl	_fe_sq2_avx2
    9978. 

  9978. .p2align	4
    9979. 

  9979. _fe_sq2_avx2:
    9980. 

  9980. #endif /* __APPLE__ */
    9981. 

  9981.         pushq	%rbx
    9982. 

  9982.         pushq	%r12
    9983. 

  9983.         pushq	%r13
    9984. 

  9984.         pushq	%r14
    9985. 

  9985.         pushq	%r15
    9986. 

  9986.         # Square * 2
    9987. 

  9987.         # A[0] * A[1]
    9988. 

  9988.         movq	(%rsi), %rdx
    9989. 

  9989.         mulxq	8(%rsi), %r9, %r10
    9990. 

  9990.         # A[0] * A[3]
    9991. 

  9991.         mulxq	24(%rsi), %r11, %r12
    9992. 

  9992.         # A[2] * A[1]
    9993. 

  9993.         movq	16(%rsi), %rdx
    9994. 

  9994.         mulxq	8(%rsi), %rcx, %rbx
    9995. 

  9995.         xorq	%r15, %r15
    9996. 

  9996.         adoxq	%rcx, %r11
    9997. 

  9997.         # A[2] * A[3]
    9998. 

  9998.         mulxq	24(%rsi), %r13, %r14
    9999. 

  9999.         adoxq	%rbx, %r12
    10000. 

  10000.         # A[2] * A[0]
    10001. 

  10001.         mulxq	(%rsi), %rcx, %rbx
    10002. 

  10002.         adoxq	%r15, %r13
    10003. 

  10003.         adcxq	%rcx, %r10
    10004. 

  10004.         adoxq	%r15, %r14
    10005. 

  10005.         # A[1] * A[3]
    10006. 

  10006.         movq	8(%rsi), %rdx
    10007. 

  10007.         mulxq	24(%rsi), %rax, %r8
    10008. 

  10008.         adcxq	%rbx, %r11
    10009. 

  10009.         adcxq	%rax, %r12
    10010. 

  10010.         adcxq	%r8, %r13
    10011. 

  10011.         adcxq	%r15, %r14
    10012. 

  10012.         # Double with Carry Flag
    10013. 

  10013.         xorq	%r15, %r15
    10014. 

  10014.         # A[0] * A[0]
    10015. 

  10015.         movq	(%rsi), %rdx
    10016. 

  10016.         mulxq	%rdx, %r8, %rax
    10017. 

  10017.         adcxq	%r9, %r9
    10018. 

  10018.         # A[1] * A[1]
    10019. 

  10019.         movq	8(%rsi), %rdx
    10020. 

  10020.         mulxq	%rdx, %rcx, %rbx
    10021. 

  10021.         adcxq	%r10, %r10
    10022. 

  10022.         adoxq	%rax, %r9
    10023. 

  10023.         adcxq	%r11, %r11
    10024. 

  10024.         adoxq	%rcx, %r10
    10025. 

  10025.         # A[2] * A[2]
    10026. 

  10026.         movq	16(%rsi), %rdx
    10027. 

  10027.         mulxq	%rdx, %rax, %rcx
    10028. 

  10028.         adcxq	%r12, %r12
    10029. 

  10029.         adoxq	%rbx, %r11
    10030. 

  10030.         adcxq	%r13, %r13
    10031. 

  10031.         adoxq	%rax, %r12
    10032. 

  10032.         # A[3] * A[3]
    10033. 

  10033.         movq	24(%rsi), %rdx
    10034. 

  10034.         mulxq	%rdx, %rax, %rbx
    10035. 

  10035.         adcxq	%r14, %r14
    10036. 

  10036.         adoxq	%rcx, %r13
    10037. 

  10037.         adcxq	%r15, %r15
    10038. 

  10038.         adoxq	%rax, %r14
    10039. 

  10039.         adoxq	%rbx, %r15
    10040. 

  10040.         # Reduce
    10041. 

  10041.         movq	$0x7fffffffffffffff, %rbx
    10042. 

  10042.         xorq	%rax, %rax
    10043. 

  10043.         #  Move top half into t4-t7 and remove top bit from t3 and double
    10044. 

  10044.         shldq	$3, %r15, %rax
    10045. 

  10045.         shldq	$2, %r14, %r15
    10046. 

  10046.         shldq	$2, %r13, %r14
    10047. 

  10047.         shldq	$2, %r12, %r13
    10048. 

  10048.         shldq	$2, %r11, %r12
    10049. 

  10049.         shldq	$0x01, %r10, %r11
    10050. 

  10050.         shldq	$0x01, %r9, %r10
    10051. 

  10051.         shldq	$0x01, %r8, %r9
    10052. 

  10052.         shlq	$0x01, %r8
    10053. 

  10053.         andq	%rbx, %r11
    10054. 

  10054.         #  Two out left, one in right
    10055. 

  10055.         andq	%rbx, %r15
    10056. 

  10056.         #  Multiply top bits by 19*19
    10057. 

  10057.         imulq	$0x169, %rax, %rcx
    10058. 

  10058.         xorq	%rbx, %rbx
    10059. 

  10059.         #  Multiply top half by 19
    10060. 

  10060.         movq	$19, %rdx
    10061. 

  10061.         adoxq	%rcx, %r8
    10062. 

  10062.         mulxq	%r12, %rax, %r12
    10063. 

  10063.         adcxq	%rax, %r8
    10064. 

  10064.         adoxq	%r12, %r9
    10065. 

  10065.         mulxq	%r13, %rax, %r13
    10066. 

  10066.         adcxq	%rax, %r9
    10067. 

  10067.         adoxq	%r13, %r10
    10068. 

  10068.         mulxq	%r14, %rax, %r14
    10069. 

  10069.         adcxq	%rax, %r10
    10070. 

  10070.         adoxq	%r14, %r11
    10071. 

  10071.         mulxq	%r15, %r15, %rdx
    10072. 

  10072.         adcxq	%r15, %r11
    10073. 

  10073.         adoxq	%rbx, %rdx
    10074. 

  10074.         adcxq	%rbx, %rdx
    10075. 

  10075.         #  Overflow
    10076. 

  10076.         shldq	$0x01, %r11, %rdx
    10077. 

  10077.         movq	$0x7fffffffffffffff, %rbx
    10078. 

  10078.         imulq	$19, %rdx, %rax
    10079. 

  10079.         andq	%rbx, %r11
    10080. 

  10080.         addq	%rax, %r8
    10081. 

  10081.         adcq	$0x00, %r9
    10082. 

  10082.         adcq	$0x00, %r10
    10083. 

  10083.         adcq	$0x00, %r11
    10084. 

  10084.         # Reduce if top bit set
    10085. 

  10085.         movq	%r11, %rdx
    10086. 

  10086.         shrq	$63, %rdx
    10087. 

  10087.         imulq	$19, %rdx, %rax
    10088. 

  10088.         andq	%rbx, %r11
    10089. 

  10089.         addq	%rax, %r8
    10090. 

  10090.         adcq	$0x00, %r9
    10091. 

  10091.         adcq	$0x00, %r10
    10092. 

  10092.         adcq	$0x00, %r11
    10093. 

  10093.         # Store
    10094. 

  10094.         movq	%r8, (%rdi)
    10095. 

  10095.         movq	%r9, 8(%rdi)
    10096. 

  10096.         movq	%r10, 16(%rdi)
    10097. 

  10097.         movq	%r11, 24(%rdi)
    10098. 

  10098.         popq	%r15
    10099. 

  10099.         popq	%r14
    10100. 

  10100.         popq	%r13
    10101. 

  10101.         popq	%r12
    10102. 

  10102.         popq	%rbx
    10103. 

  10103.         repz retq
    10104. 

  10104. #ifndef __APPLE__
    10105. 

  10105. .size	fe_sq2_avx2,.-fe_sq2_avx2
    10106. 

  10106. #endif /* __APPLE__ */
    10107. 

  10107. #ifndef __APPLE__
    10108. 

  10108. .text
    10109. 

  10109. .globl	fe_invert_avx2
    10110. 

  10110. .type	fe_invert_avx2,@function
    10111. 

  10111. .align	16
    10112. 

  10112. fe_invert_avx2:
    10113. 

  10113. #else
    10114. 

  10114. .section	__TEXT,__text
    10115. 

  10115. .globl	_fe_invert_avx2
    10116. 

  10116. .p2align	4
    10117. 

  10117. _fe_invert_avx2:
    10118. 

  10118. #endif /* __APPLE__ */
    10119. 

  10119.         subq	$0x90, %rsp
    10120. 

  10120.         # Invert
    10121. 

  10121.         movq	%rdi, 128(%rsp)
    10122. 

  10122.         movq	%rsi, 136(%rsp)
    10123. 

  10123.         movq	%rsp, %rdi
    10124. 

  10124.         movq	136(%rsp), %rsi
    10125. 

  10125. #ifndef __APPLE__
    10126. 

  10126.         callq	fe_sq_avx2@plt
    10127. 

  10127. #else
    10128. 

  10128.         callq	_fe_sq_avx2
    10129. 

  10129. #endif /* __APPLE__ */
    10130. 

  10130.         leaq	32(%rsp), %rdi
    10131. 

  10131.         movq	%rsp, %rsi
    10132. 

  10132. #ifndef __APPLE__
    10133. 

  10133.         callq	fe_sq_avx2@plt
    10134. 

  10134. #else
    10135. 

  10135.         callq	_fe_sq_avx2
    10136. 

  10136. #endif /* __APPLE__ */
    10137. 

  10137.         leaq	32(%rsp), %rdi
    10138. 

  10138.         leaq	32(%rsp), %rsi
    10139. 

  10139. #ifndef __APPLE__
    10140. 

  10140.         callq	fe_sq_avx2@plt
    10141. 

  10141. #else
    10142. 

  10142.         callq	_fe_sq_avx2
    10143. 

  10143. #endif /* __APPLE__ */
    10144. 

  10144.         leaq	32(%rsp), %rdi
    10145. 

  10145.         movq	136(%rsp), %rsi
    10146. 

  10146.         leaq	32(%rsp), %rdx
    10147. 

  10147. #ifndef __APPLE__
    10148. 

  10148.         callq	fe_mul_avx2@plt
    10149. 

  10149. #else
    10150. 

  10150.         callq	_fe_mul_avx2
    10151. 

  10151. #endif /* __APPLE__ */
    10152. 

  10152.         movq	%rsp, %rdi
    10153. 

  10153.         movq	%rsp, %rsi
    10154. 

  10154.         leaq	32(%rsp), %rdx
    10155. 

  10155. #ifndef __APPLE__
    10156. 

  10156.         callq	fe_mul_avx2@plt
    10157. 

  10157. #else
    10158. 

  10158.         callq	_fe_mul_avx2
    10159. 

  10159. #endif /* __APPLE__ */
    10160. 

  10160.         leaq	64(%rsp), %rdi
    10161. 

  10161.         movq	%rsp, %rsi
    10162. 

  10162. #ifndef __APPLE__
    10163. 

  10163.         callq	fe_sq_avx2@plt
    10164. 

  10164. #else
    10165. 

  10165.         callq	_fe_sq_avx2
    10166. 

  10166. #endif /* __APPLE__ */
    10167. 

  10167.         leaq	32(%rsp), %rdi
    10168. 

  10168.         leaq	32(%rsp), %rsi
    10169. 

  10169.         leaq	64(%rsp), %rdx
    10170. 

  10170. #ifndef __APPLE__
    10171. 

  10171.         callq	fe_mul_avx2@plt
    10172. 

  10172. #else
    10173. 

  10173.         callq	_fe_mul_avx2
    10174. 

  10174. #endif /* __APPLE__ */
    10175. 

  10175.         leaq	64(%rsp), %rdi
    10176. 

  10176.         leaq	32(%rsp), %rsi
    10177. 

  10177. #ifndef __APPLE__
    10178. 

  10178.         callq	fe_sq_avx2@plt
    10179. 

  10179. #else
    10180. 

  10180.         callq	_fe_sq_avx2
    10181. 

  10181. #endif /* __APPLE__ */
    10182. 

  10182.         leaq	64(%rsp), %rdi
    10183. 

  10183.         leaq	64(%rsp), %rsi
    10184. 

  10184.         movq	$4, %rdx
    10185. 

  10185. #ifndef __APPLE__
    10186. 

  10186.         callq	fe_sq_n_avx2@plt
    10187. 

  10187. #else
    10188. 

  10188.         callq	_fe_sq_n_avx2
    10189. 

  10189. #endif /* __APPLE__ */
    10190. 

  10190.         leaq	32(%rsp), %rdi
    10191. 

  10191.         leaq	64(%rsp), %rsi
    10192. 

  10192.         leaq	32(%rsp), %rdx
    10193. 

  10193. #ifndef __APPLE__
    10194. 

  10194.         callq	fe_mul_avx2@plt
    10195. 

  10195. #else
    10196. 

  10196.         callq	_fe_mul_avx2
    10197. 

  10197. #endif /* __APPLE__ */
    10198. 

  10198.         leaq	64(%rsp), %rdi
    10199. 

  10199.         leaq	32(%rsp), %rsi
    10200. 

  10200. #ifndef __APPLE__
    10201. 

  10201.         callq	fe_sq_avx2@plt
    10202. 

  10202. #else
    10203. 

  10203.         callq	_fe_sq_avx2
    10204. 

  10204. #endif /* __APPLE__ */
    10205. 

  10205.         leaq	64(%rsp), %rdi
    10206. 

  10206.         leaq	64(%rsp), %rsi
    10207. 

  10207.         movq	$9, %rdx
    10208. 

  10208. #ifndef __APPLE__
    10209. 

  10209.         callq	fe_sq_n_avx2@plt
    10210. 

  10210. #else
    10211. 

  10211.         callq	_fe_sq_n_avx2
    10212. 

  10212. #endif /* __APPLE__ */
    10213. 

  10213.         leaq	64(%rsp), %rdi
    10214. 

  10214.         leaq	64(%rsp), %rsi
    10215. 

  10215.         leaq	32(%rsp), %rdx
    10216. 

  10216. #ifndef __APPLE__
    10217. 

  10217.         callq	fe_mul_avx2@plt
    10218. 

  10218. #else
    10219. 

  10219.         callq	_fe_mul_avx2
    10220. 

  10220. #endif /* __APPLE__ */
    10221. 

  10221.         leaq	96(%rsp), %rdi
    10222. 

  10222.         leaq	64(%rsp), %rsi
    10223. 

  10223. #ifndef __APPLE__
    10224. 

  10224.         callq	fe_sq_avx2@plt
    10225. 

  10225. #else
    10226. 

  10226.         callq	_fe_sq_avx2
    10227. 

  10227. #endif /* __APPLE__ */
    10228. 

  10228.         leaq	96(%rsp), %rdi
    10229. 

  10229.         leaq	96(%rsp), %rsi
    10230. 

  10230.         movq	$19, %rdx
    10231. 

  10231. #ifndef __APPLE__
    10232. 

  10232.         callq	fe_sq_n_avx2@plt
    10233. 

  10233. #else
    10234. 

  10234.         callq	_fe_sq_n_avx2
    10235. 

  10235. #endif /* __APPLE__ */
    10236. 

  10236.         leaq	64(%rsp), %rdi
    10237. 

  10237.         leaq	96(%rsp), %rsi
    10238. 

  10238.         leaq	64(%rsp), %rdx
    10239. 

  10239. #ifndef __APPLE__
    10240. 

  10240.         callq	fe_mul_avx2@plt
    10241. 

  10241. #else
    10242. 

  10242.         callq	_fe_mul_avx2
    10243. 

  10243. #endif /* __APPLE__ */
    10244. 

  10244.         leaq	64(%rsp), %rdi
    10245. 

  10245.         leaq	64(%rsp), %rsi
    10246. 

  10246. #ifndef __APPLE__
    10247. 

  10247.         callq	fe_sq_avx2@plt
    10248. 

  10248. #else
    10249. 

  10249.         callq	_fe_sq_avx2
    10250. 

  10250. #endif /* __APPLE__ */
    10251. 

  10251.         leaq	64(%rsp), %rdi
    10252. 

  10252.         leaq	64(%rsp), %rsi
    10253. 

  10253.         movq	$9, %rdx
    10254. 

  10254. #ifndef __APPLE__
    10255. 

  10255.         callq	fe_sq_n_avx2@plt
    10256. 

  10256. #else
    10257. 

  10257.         callq	_fe_sq_n_avx2
    10258. 

  10258. #endif /* __APPLE__ */
    10259. 

  10259.         leaq	32(%rsp), %rdi
    10260. 

  10260.         leaq	64(%rsp), %rsi
    10261. 

  10261.         leaq	32(%rsp), %rdx
    10262. 

  10262. #ifndef __APPLE__
    10263. 

  10263.         callq	fe_mul_avx2@plt
    10264. 

  10264. #else
    10265. 

  10265.         callq	_fe_mul_avx2
    10266. 

  10266. #endif /* __APPLE__ */
    10267. 

  10267.         leaq	64(%rsp), %rdi
    10268. 

  10268.         leaq	32(%rsp), %rsi
    10269. 

  10269. #ifndef __APPLE__
    10270. 

  10270.         callq	fe_sq_avx2@plt
    10271. 

  10271. #else
    10272. 

  10272.         callq	_fe_sq_avx2
    10273. 

  10273. #endif /* __APPLE__ */
    10274. 

  10274.         leaq	64(%rsp), %rdi
    10275. 

  10275.         leaq	64(%rsp), %rsi
    10276. 

  10276.         movq	$49, %rdx
    10277. 

  10277. #ifndef __APPLE__
    10278. 

  10278.         callq	fe_sq_n_avx2@plt
    10279. 

  10279. #else
    10280. 

  10280.         callq	_fe_sq_n_avx2
    10281. 

  10281. #endif /* __APPLE__ */
    10282. 

  10282.         leaq	64(%rsp), %rdi
    10283. 

  10283.         leaq	64(%rsp), %rsi
    10284. 

  10284.         leaq	32(%rsp), %rdx
    10285. 

  10285. #ifndef __APPLE__
    10286. 

  10286.         callq	fe_mul_avx2@plt
    10287. 

  10287. #else
    10288. 

  10288.         callq	_fe_mul_avx2
    10289. 

  10289. #endif /* __APPLE__ */
    10290. 

  10290.         leaq	96(%rsp), %rdi
    10291. 

  10291.         leaq	64(%rsp), %rsi
    10292. 

  10292. #ifndef __APPLE__
    10293. 

  10293.         callq	fe_sq_avx2@plt
    10294. 

  10294. #else
    10295. 

  10295.         callq	_fe_sq_avx2
    10296. 

  10296. #endif /* __APPLE__ */
    10297. 

  10297.         leaq	96(%rsp), %rdi
    10298. 

  10298.         leaq	96(%rsp), %rsi
    10299. 

  10299.         movq	$0x63, %rdx
    10300. 

  10300. #ifndef __APPLE__
    10301. 

  10301.         callq	fe_sq_n_avx2@plt
    10302. 

  10302. #else
    10303. 

  10303.         callq	_fe_sq_n_avx2
    10304. 

  10304. #endif /* __APPLE__ */
    10305. 

  10305.         leaq	64(%rsp), %rdi
    10306. 

  10306.         leaq	96(%rsp), %rsi
    10307. 

  10307.         leaq	64(%rsp), %rdx
    10308. 

  10308. #ifndef __APPLE__
    10309. 

  10309.         callq	fe_mul_avx2@plt
    10310. 

  10310. #else
    10311. 

  10311.         callq	_fe_mul_avx2
    10312. 

  10312. #endif /* __APPLE__ */
    10313. 

  10313.         leaq	64(%rsp), %rdi
    10314. 

  10314.         leaq	64(%rsp), %rsi
    10315. 

  10315. #ifndef __APPLE__
    10316. 

  10316.         callq	fe_sq_avx2@plt
    10317. 

  10317. #else
    10318. 

  10318.         callq	_fe_sq_avx2
    10319. 

  10319. #endif /* __APPLE__ */
    10320. 

  10320.         leaq	64(%rsp), %rdi
    10321. 

  10321.         leaq	64(%rsp), %rsi
    10322. 

  10322.         movq	$49, %rdx
    10323. 

  10323. #ifndef __APPLE__
    10324. 

  10324.         callq	fe_sq_n_avx2@plt
    10325. 

  10325. #else
    10326. 

  10326.         callq	_fe_sq_n_avx2
    10327. 

  10327. #endif /* __APPLE__ */
    10328. 

  10328.         leaq	32(%rsp), %rdi
    10329. 

  10329.         leaq	64(%rsp), %rsi
    10330. 

  10330.         leaq	32(%rsp), %rdx
    10331. 

  10331. #ifndef __APPLE__
    10332. 

  10332.         callq	fe_mul_avx2@plt
    10333. 

  10333. #else
    10334. 

  10334.         callq	_fe_mul_avx2
    10335. 

  10335. #endif /* __APPLE__ */
    10336. 

  10336.         leaq	32(%rsp), %rdi
    10337. 

  10337.         leaq	32(%rsp), %rsi
    10338. 

  10338. #ifndef __APPLE__
    10339. 

  10339.         callq	fe_sq_avx2@plt
    10340. 

  10340. #else
    10341. 

  10341.         callq	_fe_sq_avx2
    10342. 

  10342. #endif /* __APPLE__ */
    10343. 

  10343.         leaq	32(%rsp), %rdi
    10344. 

  10344.         leaq	32(%rsp), %rsi
    10345. 

  10345.         movq	$4, %rdx
    10346. 

  10346. #ifndef __APPLE__
    10347. 

  10347.         callq	fe_sq_n_avx2@plt
    10348. 

  10348. #else
    10349. 

  10349.         callq	_fe_sq_n_avx2
    10350. 

  10350. #endif /* __APPLE__ */
    10351. 

  10351.         movq	128(%rsp), %rdi
    10352. 

  10352.         leaq	32(%rsp), %rsi
    10353. 

  10353.         movq	%rsp, %rdx
    10354. 

  10354. #ifndef __APPLE__
    10355. 

  10355.         callq	fe_mul_avx2@plt
    10356. 

  10356. #else
    10357. 

  10357.         callq	_fe_mul_avx2
    10358. 

  10358. #endif /* __APPLE__ */
    10359. 

  10359.         movq	136(%rsp), %rsi
    10360. 

  10360.         movq	128(%rsp), %rdi
    10361. 

  10361.         addq	$0x90, %rsp
    10362. 

  10362.         repz retq
    10363. 

  10363. #ifndef __APPLE__
    10364. 

  10364. .text
    10365. 

  10365. .globl	curve25519_avx2
    10366. 

  10366. .type	curve25519_avx2,@function
    10367. 

  10367. .align	16
    10368. 

  10368. curve25519_avx2:
    10369. 

  10369. #else
    10370. 

  10370. .section	__TEXT,__text
    10371. 

  10371. .globl	_curve25519_avx2
    10372. 

  10372. .p2align	4
    10373. 

  10373. _curve25519_avx2:
    10374. 

  10374. #endif /* __APPLE__ */
    10375. 

  10375.         pushq	%rbx
    10376. 

  10376.         pushq	%r12
    10377. 

  10377.         pushq	%r13
    10378. 

  10378.         pushq	%r14
    10379. 

  10379.         pushq	%r15
    10380. 

  10380.         pushq	%rbp
    10381. 

  10381.         movq	%rdx, %r8
    10382. 

  10382.         subq	$0xc0, %rsp
    10383. 

  10383.         movq	$0x00, 184(%rsp)
    10384. 

  10384.         movq	%rdi, 176(%rsp)
    10385. 

  10385.         # Set one
    10386. 

  10386.         movq	$0x01, (%rdi)
    10387. 

  10387.         movq	$0x00, 8(%rdi)
    10388. 

  10388.         movq	$0x00, 16(%rdi)
    10389. 

  10389.         movq	$0x00, 24(%rdi)
    10390. 

  10390.         # Set zero
    10391. 

  10391.         movq	$0x00, (%rsp)
    10392. 

  10392.         movq	$0x00, 8(%rsp)
    10393. 

  10393.         movq	$0x00, 16(%rsp)
    10394. 

  10394.         movq	$0x00, 24(%rsp)
    10395. 

  10395.         # Set one
    10396. 

  10396.         movq	$0x01, 32(%rsp)
    10397. 

  10397.         movq	$0x00, 40(%rsp)
    10398. 

  10398.         movq	$0x00, 48(%rsp)
    10399. 

  10399.         movq	$0x00, 56(%rsp)
    10400. 

  10400.         # Copy
    10401. 

  10401.         movq	(%r8), %r9
    10402. 

  10402.         movq	8(%r8), %r10
    10403. 

  10403.         movq	16(%r8), %r11
    10404. 

  10404.         movq	24(%r8), %r12
    10405. 

  10405.         movq	%r9, 64(%rsp)
    10406. 

  10406.         movq	%r10, 72(%rsp)
    10407. 

  10407.         movq	%r11, 80(%rsp)
    10408. 

  10408.         movq	%r12, 88(%rsp)
    10409. 

  10409.         movb	$62, 168(%rsp)
    10410. 

  10410.         movq	$3, 160(%rsp)
    10411. 

  10411. L_curve25519_avx2_words:
    10412. 

  10412. L_curve25519_avx2_bits:
    10413. 

  10413.         movq	184(%rsp), %rbx
    10414. 

  10414.         movq	160(%rsp), %r9
    10415. 

  10415.         movb	168(%rsp), %cl
    10416. 

  10416.         movq	(%rsi,%r9,8), %rax
    10417. 

  10417.         shrq	%cl, %rax
    10418. 

  10418.         andq	$0x01, %rax
    10419. 

  10419.         xorq	%rax, %rbx
    10420. 

  10420.         negq	%rbx
    10421. 

  10421.         # Conditional Swap
    10422. 

  10422.         movq	(%rdi), %r9
    10423. 

  10423.         movq	8(%rdi), %r10
    10424. 

  10424.         movq	16(%rdi), %r11
    10425. 

  10425.         movq	24(%rdi), %r12
    10426. 

  10426.         xorq	64(%rsp), %r9
    10427. 

  10427.         xorq	72(%rsp), %r10
    10428. 

  10428.         xorq	80(%rsp), %r11
    10429. 

  10429.         xorq	88(%rsp), %r12
    10430. 

  10430.         andq	%rbx, %r9
    10431. 

  10431.         andq	%rbx, %r10
    10432. 

  10432.         andq	%rbx, %r11
    10433. 

  10433.         andq	%rbx, %r12
    10434. 

  10434.         xorq	%r9, (%rdi)
    10435. 

  10435.         xorq	%r10, 8(%rdi)
    10436. 

  10436.         xorq	%r11, 16(%rdi)
    10437. 

  10437.         xorq	%r12, 24(%rdi)
    10438. 

  10438.         xorq	%r9, 64(%rsp)
    10439. 

  10439.         xorq	%r10, 72(%rsp)
    10440. 

  10440.         xorq	%r11, 80(%rsp)
    10441. 

  10441.         xorq	%r12, 88(%rsp)
    10442. 

  10442.         # Conditional Swap
    10443. 

  10443.         movq	(%rsp), %r9
    10444. 

  10444.         movq	8(%rsp), %r10
    10445. 

  10445.         movq	16(%rsp), %r11
    10446. 

  10446.         movq	24(%rsp), %r12
    10447. 

  10447.         xorq	32(%rsp), %r9
    10448. 

  10448.         xorq	40(%rsp), %r10
    10449. 

  10449.         xorq	48(%rsp), %r11
    10450. 

  10450.         xorq	56(%rsp), %r12
    10451. 

  10451.         andq	%rbx, %r9
    10452. 

  10452.         andq	%rbx, %r10
    10453. 

  10453.         andq	%rbx, %r11
    10454. 

  10454.         andq	%rbx, %r12
    10455. 

  10455.         xorq	%r9, (%rsp)
    10456. 

  10456.         xorq	%r10, 8(%rsp)
    10457. 

  10457.         xorq	%r11, 16(%rsp)
    10458. 

  10458.         xorq	%r12, 24(%rsp)
    10459. 

  10459.         xorq	%r9, 32(%rsp)
    10460. 

  10460.         xorq	%r10, 40(%rsp)
    10461. 

  10461.         xorq	%r11, 48(%rsp)
    10462. 

  10462.         xorq	%r12, 56(%rsp)
    10463. 

  10463.         movq	%rax, 184(%rsp)
    10464. 

  10464.         # Add
    10465. 

  10465.         movq	(%rdi), %r9
    10466. 

  10466.         movq	8(%rdi), %r10
    10467. 

  10467.         movq	16(%rdi), %r11
    10468. 

  10468.         movq	24(%rdi), %rax
    10469. 

  10469.         movq	%r9, %r13
    10470. 

  10470.         addq	(%rsp), %r9
    10471. 

  10471.         movq	%r10, %r14
    10472. 

  10472.         adcq	8(%rsp), %r10
    10473. 

  10473.         movq	%r11, %r15
    10474. 

  10474.         adcq	16(%rsp), %r11
    10475. 

  10475.         movq	%rax, %rbp
    10476. 

  10476.         adcq	24(%rsp), %rax
    10477. 

  10477.         movq	$-19, %rcx
    10478. 

  10478.         movq	%rax, %r12
    10479. 

  10479.         movq	$0x7fffffffffffffff, %rbx
    10480. 

  10480.         sarq	$63, %rax
    10481. 

  10481.         #   Mask the modulus
    10482. 

  10482.         andq	%rax, %rcx
    10483. 

  10483.         andq	%rax, %rbx
    10484. 

  10484.         #   Sub modulus (if overflow)
    10485. 

  10485.         subq	%rcx, %r9
    10486. 

  10486.         sbbq	%rax, %r10
    10487. 

  10487.         sbbq	%rax, %r11
    10488. 

  10488.         sbbq	%rbx, %r12
    10489. 

  10489.         # Sub
    10490. 

  10490.         subq	(%rsp), %r13
    10491. 

  10491.         movq	$0x00, %rax
    10492. 

  10492.         sbbq	8(%rsp), %r14
    10493. 

  10493.         movq	$-19, %rcx
    10494. 

  10494.         sbbq	16(%rsp), %r15
    10495. 

  10495.         movq	$0x7fffffffffffffff, %rbx
    10496. 

  10496.         sbbq	24(%rsp), %rbp
    10497. 

  10497.         sbbq	$0x00, %rax
    10498. 

  10498.         #   Mask the modulus
    10499. 

  10499.         andq	%rax, %rcx
    10500. 

  10500.         andq	%rax, %rbx
    10501. 

  10501.         #   Add modulus (if underflow)
    10502. 

  10502.         addq	%rcx, %r13
    10503. 

  10503.         adcq	%rax, %r14
    10504. 

  10504.         adcq	%rax, %r15
    10505. 

  10505.         adcq	%rbx, %rbp
    10506. 

  10506.         movq	%r9, (%rdi)
    10507. 

  10507.         movq	%r10, 8(%rdi)
    10508. 

  10508.         movq	%r11, 16(%rdi)
    10509. 

  10509.         movq	%r12, 24(%rdi)
    10510. 

  10510.         movq	%r13, 128(%rsp)
    10511. 

  10511.         movq	%r14, 136(%rsp)
    10512. 

  10512.         movq	%r15, 144(%rsp)
    10513. 

  10513.         movq	%rbp, 152(%rsp)
    10514. 

  10514.         # Add
    10515. 

  10515.         movq	64(%rsp), %r9
    10516. 

  10516.         movq	72(%rsp), %r10
    10517. 

  10517.         movq	80(%rsp), %r11
    10518. 

  10518.         movq	88(%rsp), %rax
    10519. 

  10519.         movq	%r9, %r13
    10520. 

  10520.         addq	32(%rsp), %r9
    10521. 

  10521.         movq	%r10, %r14
    10522. 

  10522.         adcq	40(%rsp), %r10
    10523. 

  10523.         movq	%r11, %r15
    10524. 

  10524.         adcq	48(%rsp), %r11
    10525. 

  10525.         movq	%rax, %rbp
    10526. 

  10526.         adcq	56(%rsp), %rax
    10527. 

  10527.         movq	$-19, %rcx
    10528. 

  10528.         movq	%rax, %r12
    10529. 

  10529.         movq	$0x7fffffffffffffff, %rbx
    10530. 

  10530.         sarq	$63, %rax
    10531. 

  10531.         #   Mask the modulus
    10532. 

  10532.         andq	%rax, %rcx
    10533. 

  10533.         andq	%rax, %rbx
    10534. 

  10534.         #   Sub modulus (if overflow)
    10535. 

  10535.         subq	%rcx, %r9
    10536. 

  10536.         sbbq	%rax, %r10
    10537. 

  10537.         sbbq	%rax, %r11
    10538. 

  10538.         sbbq	%rbx, %r12
    10539. 

  10539.         # Sub
    10540. 

  10540.         subq	32(%rsp), %r13
    10541. 

  10541.         movq	$0x00, %rax
    10542. 

  10542.         sbbq	40(%rsp), %r14
    10543. 

  10543.         movq	$-19, %rcx
    10544. 

  10544.         sbbq	48(%rsp), %r15
    10545. 

  10545.         movq	$0x7fffffffffffffff, %rbx
    10546. 

  10546.         sbbq	56(%rsp), %rbp
    10547. 

  10547.         sbbq	$0x00, %rax
    10548. 

  10548.         #   Mask the modulus
    10549. 

  10549.         andq	%rax, %rcx
    10550. 

  10550.         andq	%rax, %rbx
    10551. 

  10551.         #   Add modulus (if underflow)
    10552. 

  10552.         addq	%rcx, %r13
    10553. 

  10553.         adcq	%rax, %r14
    10554. 

  10554.         adcq	%rax, %r15
    10555. 

  10555.         adcq	%rbx, %rbp
    10556. 

  10556.         movq	%r9, (%rsp)
    10557. 

  10557.         movq	%r10, 8(%rsp)
    10558. 

  10558.         movq	%r11, 16(%rsp)
    10559. 

  10559.         movq	%r12, 24(%rsp)
    10560. 

  10560.         movq	%r13, 96(%rsp)
    10561. 

  10561.         movq	%r14, 104(%rsp)
    10562. 

  10562.         movq	%r15, 112(%rsp)
    10563. 

  10563.         movq	%rbp, 120(%rsp)
    10564. 

  10564.         # Multiply
    10565. 

  10565.         # A[0] * B[0]
    10566. 

  10566.         movq	(%rdi), %rdx
    10567. 

  10567.         mulxq	96(%rsp), %r9, %r10
    10568. 

  10568.         # A[2] * B[0]
    10569. 

  10569.         mulxq	112(%rsp), %r11, %r12
    10570. 

  10570.         # A[1] * B[0]
    10571. 

  10571.         mulxq	104(%rsp), %rcx, %rbx
    10572. 

  10572.         xorq	%rbp, %rbp
    10573. 

  10573.         adcxq	%rcx, %r10
    10574. 

  10574.         # A[1] * B[3]
    10575. 

  10575.         movq	24(%rdi), %rdx
    10576. 

  10576.         mulxq	104(%rsp), %r13, %r14
    10577. 

  10577.         adcxq	%rbx, %r11
    10578. 

  10578.         # A[0] * B[1]
    10579. 

  10579.         movq	8(%rdi), %rdx
    10580. 

  10580.         mulxq	96(%rsp), %rcx, %rbx
    10581. 

  10581.         adoxq	%rcx, %r10
    10582. 

  10582.         # A[2] * B[1]
    10583. 

  10583.         mulxq	112(%rsp), %rcx, %r15
    10584. 

  10584.         adoxq	%rbx, %r11
    10585. 

  10585.         adcxq	%rcx, %r12
    10586. 

  10586.         # A[1] * B[2]
    10587. 

  10587.         movq	16(%rdi), %rdx
    10588. 

  10588.         mulxq	104(%rsp), %rcx, %rbx
    10589. 

  10589.         adcxq	%r15, %r13
    10590. 

  10590.         adoxq	%rcx, %r12
    10591. 

  10591.         adcxq	%rbp, %r14
    10592. 

  10592.         adoxq	%rbx, %r13
    10593. 

  10593.         # A[0] * B[2]
    10594. 

  10594.         mulxq	96(%rsp), %rcx, %rbx
    10595. 

  10595.         adoxq	%rbp, %r14
    10596. 

  10596.         xorq	%r15, %r15
    10597. 

  10597.         adcxq	%rcx, %r11
    10598. 

  10598.         # A[1] * B[1]
    10599. 

  10599.         movq	8(%rdi), %rdx
    10600. 

  10600.         mulxq	104(%rsp), %rdx, %rcx
    10601. 

  10601.         adcxq	%rbx, %r12
    10602. 

  10602.         adoxq	%rdx, %r11
    10603. 

  10603.         # A[3] * B[1]
    10604. 

  10604.         movq	8(%rdi), %rdx
    10605. 

  10605.         adoxq	%rcx, %r12
    10606. 

  10606.         mulxq	120(%rsp), %rcx, %rbx
    10607. 

  10607.         adcxq	%rcx, %r13
    10608. 

  10608.         # A[2] * B[2]
    10609. 

  10609.         movq	16(%rdi), %rdx
    10610. 

  10610.         mulxq	112(%rsp), %rdx, %rcx
    10611. 

  10611.         adcxq	%rbx, %r14
    10612. 

  10612.         adoxq	%rdx, %r13
    10613. 

  10613.         # A[3] * B[3]
    10614. 

  10614.         movq	24(%rdi), %rdx
    10615. 

  10615.         adoxq	%rcx, %r14
    10616. 

  10616.         mulxq	120(%rsp), %rcx, %rbx
    10617. 

  10617.         adoxq	%rbp, %r15
    10618. 

  10618.         adcxq	%rcx, %r15
    10619. 

  10619.         # A[0] * B[3]
    10620. 

  10620.         mulxq	96(%rsp), %rdx, %rcx
    10621. 

  10621.         adcxq	%rbx, %rbp
    10622. 

  10622.         xorq	%rbx, %rbx
    10623. 

  10623.         adcxq	%rdx, %r12
    10624. 

  10624.         # A[3] * B[0]
    10625. 

  10625.         movq	(%rdi), %rdx
    10626. 

  10626.         adcxq	%rcx, %r13
    10627. 

  10627.         mulxq	120(%rsp), %rdx, %rcx
    10628. 

  10628.         adoxq	%rdx, %r12
    10629. 

  10629.         adoxq	%rcx, %r13
    10630. 

  10630.         # A[2] * B[3]
    10631. 

  10631.         movq	24(%rdi), %rdx
    10632. 

  10632.         mulxq	112(%rsp), %rdx, %rcx
    10633. 

  10633.         adcxq	%rdx, %r14
    10634. 

  10634.         # A[3] * B[2]
    10635. 

  10635.         movq	16(%rdi), %rdx
    10636. 

  10636.         adcxq	%rcx, %r15
    10637. 

  10637.         mulxq	120(%rsp), %rcx, %rdx
    10638. 

  10638.         adcxq	%rbx, %rbp
    10639. 

  10639.         adoxq	%rcx, %r14
    10640. 

  10640.         adoxq	%rdx, %r15
    10641. 

  10641.         adoxq	%rbx, %rbp
    10642. 

  10642.         # Reduce
    10643. 

  10643.         movq	$0x7fffffffffffffff, %rbx
    10644. 

  10644.         #  Move top half into t4-t7 and remove top bit from t3
    10645. 

  10645.         shldq	$0x01, %r15, %rbp
    10646. 

  10646.         shldq	$0x01, %r14, %r15
    10647. 

  10647.         shldq	$0x01, %r13, %r14
    10648. 

  10648.         shldq	$0x01, %r12, %r13
    10649. 

  10649.         andq	%rbx, %r12
    10650. 

  10650.         #  Multiply top half by 19
    10651. 

  10651.         movq	$19, %rdx
    10652. 

  10652.         xorq	%rbx, %rbx
    10653. 

  10653.         mulxq	%r13, %rcx, %r13
    10654. 

  10654.         adcxq	%rcx, %r9
    10655. 

  10655.         adoxq	%r13, %r10
    10656. 

  10656.         mulxq	%r14, %rcx, %r14
    10657. 

  10657.         adcxq	%rcx, %r10
    10658. 

  10658.         adoxq	%r14, %r11
    10659. 

  10659.         mulxq	%r15, %rcx, %r15
    10660. 

  10660.         adcxq	%rcx, %r11
    10661. 

  10661.         adoxq	%r15, %r12
    10662. 

  10662.         mulxq	%rbp, %rbp, %rdx
    10663. 

  10663.         adcxq	%rbp, %r12
    10664. 

  10664.         adoxq	%rbx, %rdx
    10665. 

  10665.         adcxq	%rbx, %rdx
    10666. 

  10666.         #  Overflow
    10667. 

  10667.         shldq	$0x01, %r12, %rdx
    10668. 

  10668.         movq	$0x7fffffffffffffff, %rbx
    10669. 

  10669.         imulq	$19, %rdx, %rcx
    10670. 

  10670.         andq	%rbx, %r12
    10671. 

  10671.         addq	%rcx, %r9
    10672. 

  10672.         adcq	$0x00, %r10
    10673. 

  10673.         adcq	$0x00, %r11
    10674. 

  10674.         adcq	$0x00, %r12
    10675. 

  10675.         # Reduce if top bit set
    10676. 

  10676.         movq	%r12, %rdx
    10677. 

  10677.         shrq	$63, %rdx
    10678. 

  10678.         imulq	$19, %rdx, %rcx
    10679. 

  10679.         andq	%rbx, %r12
    10680. 

  10680.         addq	%rcx, %r9
    10681. 

  10681.         adcq	$0x00, %r10
    10682. 

  10682.         adcq	$0x00, %r11
    10683. 

  10683.         adcq	$0x00, %r12
    10684. 

  10684.         # Store
    10685. 

  10685.         movq	%r9, 32(%rsp)
    10686. 

  10686.         movq	%r10, 40(%rsp)
    10687. 

  10687.         movq	%r11, 48(%rsp)
    10688. 

  10688.         movq	%r12, 56(%rsp)
    10689. 

  10689.         # Multiply
    10690. 

  10690.         # A[0] * B[0]
    10691. 

  10691.         movq	128(%rsp), %rdx
    10692. 

  10692.         mulxq	(%rsp), %r9, %r10
    10693. 

  10693.         # A[2] * B[0]
    10694. 

  10694.         mulxq	16(%rsp), %r11, %r12
    10695. 

  10695.         # A[1] * B[0]
    10696. 

  10696.         mulxq	8(%rsp), %rcx, %rbx
    10697. 

  10697.         xorq	%rbp, %rbp
    10698. 

  10698.         adcxq	%rcx, %r10
    10699. 

  10699.         # A[1] * B[3]
    10700. 

  10700.         movq	152(%rsp), %rdx
    10701. 

  10701.         mulxq	8(%rsp), %r13, %r14
    10702. 

  10702.         adcxq	%rbx, %r11
    10703. 

  10703.         # A[0] * B[1]
    10704. 

  10704.         movq	136(%rsp), %rdx
    10705. 

  10705.         mulxq	(%rsp), %rcx, %rbx
    10706. 

  10706.         adoxq	%rcx, %r10
    10707. 

  10707.         # A[2] * B[1]
    10708. 

  10708.         mulxq	16(%rsp), %rcx, %r15
    10709. 

  10709.         adoxq	%rbx, %r11
    10710. 

  10710.         adcxq	%rcx, %r12
    10711. 

  10711.         # A[1] * B[2]
    10712. 

  10712.         movq	144(%rsp), %rdx
    10713. 

  10713.         mulxq	8(%rsp), %rcx, %rbx
    10714. 

  10714.         adcxq	%r15, %r13
    10715. 

  10715.         adoxq	%rcx, %r12
    10716. 

  10716.         adcxq	%rbp, %r14
    10717. 

  10717.         adoxq	%rbx, %r13
    10718. 

  10718.         # A[0] * B[2]
    10719. 

  10719.         mulxq	(%rsp), %rcx, %rbx
    10720. 

  10720.         adoxq	%rbp, %r14
    10721. 

  10721.         xorq	%r15, %r15
    10722. 

  10722.         adcxq	%rcx, %r11
    10723. 

  10723.         # A[1] * B[1]
    10724. 

  10724.         movq	136(%rsp), %rdx
    10725. 

  10725.         mulxq	8(%rsp), %rdx, %rcx
    10726. 

  10726.         adcxq	%rbx, %r12
    10727. 

  10727.         adoxq	%rdx, %r11
    10728. 

  10728.         # A[3] * B[1]
    10729. 

  10729.         movq	136(%rsp), %rdx
    10730. 

  10730.         adoxq	%rcx, %r12
    10731. 

  10731.         mulxq	24(%rsp), %rcx, %rbx
    10732. 

  10732.         adcxq	%rcx, %r13
    10733. 

  10733.         # A[2] * B[2]
    10734. 

  10734.         movq	144(%rsp), %rdx
    10735. 

  10735.         mulxq	16(%rsp), %rdx, %rcx
    10736. 

  10736.         adcxq	%rbx, %r14
    10737. 

  10737.         adoxq	%rdx, %r13
    10738. 

  10738.         # A[3] * B[3]
    10739. 

  10739.         movq	152(%rsp), %rdx
    10740. 

  10740.         adoxq	%rcx, %r14
    10741. 

  10741.         mulxq	24(%rsp), %rcx, %rbx
    10742. 

  10742.         adoxq	%rbp, %r15
    10743. 

  10743.         adcxq	%rcx, %r15
    10744. 

  10744.         # A[0] * B[3]
    10745. 

  10745.         mulxq	(%rsp), %rdx, %rcx
    10746. 

  10746.         adcxq	%rbx, %rbp
    10747. 

  10747.         xorq	%rbx, %rbx
    10748. 

  10748.         adcxq	%rdx, %r12
    10749. 

  10749.         # A[3] * B[0]
    10750. 

  10750.         movq	128(%rsp), %rdx
    10751. 

  10751.         adcxq	%rcx, %r13
    10752. 

  10752.         mulxq	24(%rsp), %rdx, %rcx
    10753. 

  10753.         adoxq	%rdx, %r12
    10754. 

  10754.         adoxq	%rcx, %r13
    10755. 

  10755.         # A[2] * B[3]
    10756. 

  10756.         movq	152(%rsp), %rdx
    10757. 

  10757.         mulxq	16(%rsp), %rdx, %rcx
    10758. 

  10758.         adcxq	%rdx, %r14
    10759. 

  10759.         # A[3] * B[2]
    10760. 

  10760.         movq	144(%rsp), %rdx
    10761. 

  10761.         adcxq	%rcx, %r15
    10762. 

  10762.         mulxq	24(%rsp), %rcx, %rdx
    10763. 

  10763.         adcxq	%rbx, %rbp
    10764. 

  10764.         adoxq	%rcx, %r14
    10765. 

  10765.         adoxq	%rdx, %r15
    10766. 

  10766.         adoxq	%rbx, %rbp
    10767. 

  10767.         # Reduce
    10768. 

  10768.         movq	$0x7fffffffffffffff, %rbx
    10769. 

  10769.         #  Move top half into t4-t7 and remove top bit from t3
    10770. 

  10770.         shldq	$0x01, %r15, %rbp
    10771. 

  10771.         shldq	$0x01, %r14, %r15
    10772. 

  10772.         shldq	$0x01, %r13, %r14
    10773. 

  10773.         shldq	$0x01, %r12, %r13
    10774. 

  10774.         andq	%rbx, %r12
    10775. 

  10775.         #  Multiply top half by 19
    10776. 

  10776.         movq	$19, %rdx
    10777. 

  10777.         xorq	%rbx, %rbx
    10778. 

  10778.         mulxq	%r13, %rcx, %r13
    10779. 

  10779.         adcxq	%rcx, %r9
    10780. 

  10780.         adoxq	%r13, %r10
    10781. 

  10781.         mulxq	%r14, %rcx, %r14
    10782. 

  10782.         adcxq	%rcx, %r10
    10783. 

  10783.         adoxq	%r14, %r11
    10784. 

  10784.         mulxq	%r15, %rcx, %r15
    10785. 

  10785.         adcxq	%rcx, %r11
    10786. 

  10786.         adoxq	%r15, %r12
    10787. 

  10787.         mulxq	%rbp, %rbp, %rdx
    10788. 

  10788.         adcxq	%rbp, %r12
    10789. 

  10789.         adoxq	%rbx, %rdx
    10790. 

  10790.         adcxq	%rbx, %rdx
    10791. 

  10791.         #  Overflow
    10792. 

  10792.         shldq	$0x01, %r12, %rdx
    10793. 

  10793.         movq	$0x7fffffffffffffff, %rbx
    10794. 

  10794.         imulq	$19, %rdx, %rcx
    10795. 

  10795.         andq	%rbx, %r12
    10796. 

  10796.         addq	%rcx, %r9
    10797. 

  10797.         adcq	$0x00, %r10
    10798. 

  10798.         adcq	$0x00, %r11
    10799. 

  10799.         adcq	$0x00, %r12
    10800. 

  10800.         # Reduce if top bit set
    10801. 

  10801.         movq	%r12, %rdx
    10802. 

  10802.         shrq	$63, %rdx
    10803. 

  10803.         imulq	$19, %rdx, %rcx
    10804. 

  10804.         andq	%rbx, %r12
    10805. 

  10805.         addq	%rcx, %r9
    10806. 

  10806.         adcq	$0x00, %r10
    10807. 

  10807.         adcq	$0x00, %r11
    10808. 

  10808.         adcq	$0x00, %r12
    10809. 

  10809.         # Store
    10810. 

  10810.         movq	%r9, (%rsp)
    10811. 

  10811.         movq	%r10, 8(%rsp)
    10812. 

  10812.         movq	%r11, 16(%rsp)
    10813. 

  10813.         movq	%r12, 24(%rsp)
    10814. 

  10814.         # Square
    10815. 

  10815.         # A[0] * A[1]
    10816. 

  10816.         movq	128(%rsp), %rdx
    10817. 

  10817.         mulxq	136(%rsp), %r10, %r11
    10818. 

  10818.         # A[0] * A[3]
    10819. 

  10819.         mulxq	152(%rsp), %r12, %r13
    10820. 

  10820.         # A[2] * A[1]
    10821. 

  10821.         movq	144(%rsp), %rdx
    10822. 

  10822.         mulxq	136(%rsp), %rcx, %rbx
    10823. 

  10823.         xorq	%rbp, %rbp
    10824. 

  10824.         adoxq	%rcx, %r12
    10825. 

  10825.         # A[2] * A[3]
    10826. 

  10826.         mulxq	152(%rsp), %r14, %r15
    10827. 

  10827.         adoxq	%rbx, %r13
    10828. 

  10828.         # A[2] * A[0]
    10829. 

  10829.         mulxq	128(%rsp), %rcx, %rbx
    10830. 

  10830.         adoxq	%rbp, %r14
    10831. 

  10831.         adcxq	%rcx, %r11
    10832. 

  10832.         adoxq	%rbp, %r15
    10833. 

  10833.         # A[1] * A[3]
    10834. 

  10834.         movq	136(%rsp), %rdx
    10835. 

  10835.         mulxq	152(%rsp), %rax, %r9
    10836. 

  10836.         adcxq	%rbx, %r12
    10837. 

  10837.         adcxq	%rax, %r13
    10838. 

  10838.         adcxq	%r9, %r14
    10839. 

  10839.         adcxq	%rbp, %r15
    10840. 

  10840.         # Double with Carry Flag
    10841. 

  10841.         xorq	%rbp, %rbp
    10842. 

  10842.         # A[0] * A[0]
    10843. 

  10843.         movq	128(%rsp), %rdx
    10844. 

  10844.         mulxq	%rdx, %r9, %rax
    10845. 

  10845.         adcxq	%r10, %r10
    10846. 

  10846.         # A[1] * A[1]
    10847. 

  10847.         movq	136(%rsp), %rdx
    10848. 

  10848.         mulxq	%rdx, %rcx, %rbx
    10849. 

  10849.         adcxq	%r11, %r11
    10850. 

  10850.         adoxq	%rax, %r10
    10851. 

  10851.         adcxq	%r12, %r12
    10852. 

  10852.         adoxq	%rcx, %r11
    10853. 

  10853.         # A[2] * A[2]
    10854. 

  10854.         movq	144(%rsp), %rdx
    10855. 

  10855.         mulxq	%rdx, %rax, %rcx
    10856. 

  10856.         adcxq	%r13, %r13
    10857. 

  10857.         adoxq	%rbx, %r12
    10858. 

  10858.         adcxq	%r14, %r14
    10859. 

  10859.         adoxq	%rax, %r13
    10860. 

  10860.         # A[3] * A[3]
    10861. 

  10861.         movq	152(%rsp), %rdx
    10862. 

  10862.         mulxq	%rdx, %rax, %rbx
    10863. 

  10863.         adcxq	%r15, %r15
    10864. 

  10864.         adoxq	%rcx, %r14
    10865. 

  10865.         adcxq	%rbp, %rbp
    10866. 

  10866.         adoxq	%rax, %r15
    10867. 

  10867.         adoxq	%rbx, %rbp
    10868. 

  10868.         # Reduce
    10869. 

  10869.         movq	$0x7fffffffffffffff, %rcx
    10870. 

  10870.         #  Move top half into t4-t7 and remove top bit from t3
    10871. 

  10871.         shldq	$0x01, %r15, %rbp
    10872. 

  10872.         shldq	$0x01, %r14, %r15
    10873. 

  10873.         shldq	$0x01, %r13, %r14
    10874. 

  10874.         shldq	$0x01, %r12, %r13
    10875. 

  10875.         andq	%rcx, %r12
    10876. 

  10876.         #  Multiply top half by 19
    10877. 

  10877.         movq	$19, %rdx
    10878. 

  10878.         xorq	%rcx, %rcx
    10879. 

  10879.         mulxq	%r13, %rax, %r13
    10880. 

  10880.         adcxq	%rax, %r9
    10881. 

  10881.         adoxq	%r13, %r10
    10882. 

  10882.         mulxq	%r14, %rax, %r14
    10883. 

  10883.         adcxq	%rax, %r10
    10884. 

  10884.         adoxq	%r14, %r11
    10885. 

  10885.         mulxq	%r15, %rax, %r15
    10886. 

  10886.         adcxq	%rax, %r11
    10887. 

  10887.         adoxq	%r15, %r12
    10888. 

  10888.         mulxq	%rbp, %rbp, %rdx
    10889. 

  10889.         adcxq	%rbp, %r12
    10890. 

  10890.         adoxq	%rcx, %rdx
    10891. 

  10891.         adcxq	%rcx, %rdx
    10892. 

  10892.         #  Overflow
    10893. 

  10893.         shldq	$0x01, %r12, %rdx
    10894. 

  10894.         movq	$0x7fffffffffffffff, %rcx
    10895. 

  10895.         imulq	$19, %rdx, %rax
    10896. 

  10896.         andq	%rcx, %r12
    10897. 

  10897.         addq	%rax, %r9
    10898. 

  10898.         adcq	$0x00, %r10
    10899. 

  10899.         adcq	$0x00, %r11
    10900. 

  10900.         adcq	$0x00, %r12
    10901. 

  10901.         # Reduce if top bit set
    10902. 

  10902.         movq	%r12, %rdx
    10903. 

  10903.         shrq	$63, %rdx
    10904. 

  10904.         imulq	$19, %rdx, %rax
    10905. 

  10905.         andq	%rcx, %r12
    10906. 

  10906.         addq	%rax, %r9
    10907. 

  10907.         adcq	$0x00, %r10
    10908. 

  10908.         adcq	$0x00, %r11
    10909. 

  10909.         adcq	$0x00, %r12
    10910. 

  10910.         # Store
    10911. 

  10911.         movq	%r9, 96(%rsp)
    10912. 

  10912.         movq	%r10, 104(%rsp)
    10913. 

  10913.         movq	%r11, 112(%rsp)
    10914. 

  10914.         movq	%r12, 120(%rsp)
    10915. 

  10915.         # Square
    10916. 

  10916.         # A[0] * A[1]
    10917. 

  10917.         movq	(%rdi), %rdx
    10918. 

  10918.         mulxq	8(%rdi), %r10, %r11
    10919. 

  10919.         # A[0] * A[3]
    10920. 

  10920.         mulxq	24(%rdi), %r12, %r13
    10921. 

  10921.         # A[2] * A[1]
    10922. 

  10922.         movq	16(%rdi), %rdx
    10923. 

  10923.         mulxq	8(%rdi), %rcx, %rbx
    10924. 

  10924.         xorq	%rbp, %rbp
    10925. 

  10925.         adoxq	%rcx, %r12
    10926. 

  10926.         # A[2] * A[3]
    10927. 

  10927.         mulxq	24(%rdi), %r14, %r15
    10928. 

  10928.         adoxq	%rbx, %r13
    10929. 

  10929.         # A[2] * A[0]
    10930. 

  10930.         mulxq	(%rdi), %rcx, %rbx
    10931. 

  10931.         adoxq	%rbp, %r14
    10932. 

  10932.         adcxq	%rcx, %r11
    10933. 

  10933.         adoxq	%rbp, %r15
    10934. 

  10934.         # A[1] * A[3]
    10935. 

  10935.         movq	8(%rdi), %rdx
    10936. 

  10936.         mulxq	24(%rdi), %rax, %r9
    10937. 

  10937.         adcxq	%rbx, %r12
    10938. 

  10938.         adcxq	%rax, %r13
    10939. 

  10939.         adcxq	%r9, %r14
    10940. 

  10940.         adcxq	%rbp, %r15
    10941. 

  10941.         # Double with Carry Flag
    10942. 

  10942.         xorq	%rbp, %rbp
    10943. 

  10943.         # A[0] * A[0]
    10944. 

  10944.         movq	(%rdi), %rdx
    10945. 

  10945.         mulxq	%rdx, %r9, %rax
    10946. 

  10946.         adcxq	%r10, %r10
    10947. 

  10947.         # A[1] * A[1]
    10948. 

  10948.         movq	8(%rdi), %rdx
    10949. 

  10949.         mulxq	%rdx, %rcx, %rbx
    10950. 

  10950.         adcxq	%r11, %r11
    10951. 

  10951.         adoxq	%rax, %r10
    10952. 

  10952.         adcxq	%r12, %r12
    10953. 

  10953.         adoxq	%rcx, %r11
    10954. 

  10954.         # A[2] * A[2]
    10955. 

  10955.         movq	16(%rdi), %rdx
    10956. 

  10956.         mulxq	%rdx, %rax, %rcx
    10957. 

  10957.         adcxq	%r13, %r13
    10958. 

  10958.         adoxq	%rbx, %r12
    10959. 

  10959.         adcxq	%r14, %r14
    10960. 

  10960.         adoxq	%rax, %r13
    10961. 

  10961.         # A[3] * A[3]
    10962. 

  10962.         movq	24(%rdi), %rdx
    10963. 

  10963.         mulxq	%rdx, %rax, %rbx
    10964. 

  10964.         adcxq	%r15, %r15
    10965. 

  10965.         adoxq	%rcx, %r14
    10966. 

  10966.         adcxq	%rbp, %rbp
    10967. 

  10967.         adoxq	%rax, %r15
    10968. 

  10968.         adoxq	%rbx, %rbp
    10969. 

  10969.         # Reduce
    10970. 

  10970.         movq	$0x7fffffffffffffff, %rcx
    10971. 

  10971.         #  Move top half into t4-t7 and remove top bit from t3
    10972. 

  10972.         shldq	$0x01, %r15, %rbp
    10973. 

  10973.         shldq	$0x01, %r14, %r15
    10974. 

  10974.         shldq	$0x01, %r13, %r14
    10975. 

  10975.         shldq	$0x01, %r12, %r13
    10976. 

  10976.         andq	%rcx, %r12
    10977. 

  10977.         #  Multiply top half by 19
    10978. 

  10978.         movq	$19, %rdx
    10979. 

  10979.         xorq	%rcx, %rcx
    10980. 

  10980.         mulxq	%r13, %rax, %r13
    10981. 

  10981.         adcxq	%rax, %r9
    10982. 

  10982.         adoxq	%r13, %r10
    10983. 

  10983.         mulxq	%r14, %rax, %r14
    10984. 

  10984.         adcxq	%rax, %r10
    10985. 

  10985.         adoxq	%r14, %r11
    10986. 

  10986.         mulxq	%r15, %rax, %r15
    10987. 

  10987.         adcxq	%rax, %r11
    10988. 

  10988.         adoxq	%r15, %r12
    10989. 

  10989.         mulxq	%rbp, %rbp, %rdx
    10990. 

  10990.         adcxq	%rbp, %r12
    10991. 

  10991.         adoxq	%rcx, %rdx
    10992. 

  10992.         adcxq	%rcx, %rdx
    10993. 

  10993.         #  Overflow
    10994. 

  10994.         shldq	$0x01, %r12, %rdx
    10995. 

  10995.         movq	$0x7fffffffffffffff, %rcx
    10996. 

  10996.         imulq	$19, %rdx, %rax
    10997. 

  10997.         andq	%rcx, %r12
    10998. 

  10998.         addq	%rax, %r9
    10999. 

  10999.         adcq	$0x00, %r10
    11000. 

  11000.         adcq	$0x00, %r11
    11001. 

  11001.         adcq	$0x00, %r12
    11002. 

  11002.         # Reduce if top bit set
    11003. 

  11003.         movq	%r12, %rdx
    11004. 

  11004.         shrq	$63, %rdx
    11005. 

  11005.         imulq	$19, %rdx, %rax
    11006. 

  11006.         andq	%rcx, %r12
    11007. 

  11007.         addq	%rax, %r9
    11008. 

  11008.         adcq	$0x00, %r10
    11009. 

  11009.         adcq	$0x00, %r11
    11010. 

  11010.         adcq	$0x00, %r12
    11011. 

  11011.         # Store
    11012. 

  11012.         movq	%r9, 128(%rsp)
    11013. 

  11013.         movq	%r10, 136(%rsp)
    11014. 

  11014.         movq	%r11, 144(%rsp)
    11015. 

  11015.         movq	%r12, 152(%rsp)
    11016. 

  11016.         # Add
    11017. 

  11017.         movq	32(%rsp), %r9
    11018. 

  11018.         movq	40(%rsp), %r10
    11019. 

  11019.         movq	48(%rsp), %r11
    11020. 

  11020.         movq	56(%rsp), %rax
    11021. 

  11021.         movq	%r9, %r13
    11022. 

  11022.         addq	(%rsp), %r9
    11023. 

  11023.         movq	%r10, %r14
    11024. 

  11024.         adcq	8(%rsp), %r10
    11025. 

  11025.         movq	%r11, %r15
    11026. 

  11026.         adcq	16(%rsp), %r11
    11027. 

  11027.         movq	%rax, %rbp
    11028. 

  11028.         adcq	24(%rsp), %rax
    11029. 

  11029.         movq	$-19, %rcx
    11030. 

  11030.         movq	%rax, %r12
    11031. 

  11031.         movq	$0x7fffffffffffffff, %rbx
    11032. 

  11032.         sarq	$63, %rax
    11033. 

  11033.         #   Mask the modulus
    11034. 

  11034.         andq	%rax, %rcx
    11035. 

  11035.         andq	%rax, %rbx
    11036. 

  11036.         #   Sub modulus (if overflow)
    11037. 

  11037.         subq	%rcx, %r9
    11038. 

  11038.         sbbq	%rax, %r10
    11039. 

  11039.         sbbq	%rax, %r11
    11040. 

  11040.         sbbq	%rbx, %r12
    11041. 

  11041.         # Sub
    11042. 

  11042.         subq	(%rsp), %r13
    11043. 

  11043.         movq	$0x00, %rax
    11044. 

  11044.         sbbq	8(%rsp), %r14
    11045. 

  11045.         movq	$-19, %rcx
    11046. 

  11046.         sbbq	16(%rsp), %r15
    11047. 

  11047.         movq	$0x7fffffffffffffff, %rbx
    11048. 

  11048.         sbbq	24(%rsp), %rbp
    11049. 

  11049.         sbbq	$0x00, %rax
    11050. 

  11050.         #   Mask the modulus
    11051. 

  11051.         andq	%rax, %rcx
    11052. 

  11052.         andq	%rax, %rbx
    11053. 

  11053.         #   Add modulus (if underflow)
    11054. 

  11054.         addq	%rcx, %r13
    11055. 

  11055.         adcq	%rax, %r14
    11056. 

  11056.         adcq	%rax, %r15
    11057. 

  11057.         adcq	%rbx, %rbp
    11058. 

  11058.         movq	%r9, 64(%rsp)
    11059. 

  11059.         movq	%r10, 72(%rsp)
    11060. 

  11060.         movq	%r11, 80(%rsp)
    11061. 

  11061.         movq	%r12, 88(%rsp)
    11062. 

  11062.         movq	%r13, (%rsp)
    11063. 

  11063.         movq	%r14, 8(%rsp)
    11064. 

  11064.         movq	%r15, 16(%rsp)
    11065. 

  11065.         movq	%rbp, 24(%rsp)
    11066. 

  11066.         # Multiply
    11067. 

  11067.         # A[0] * B[0]
    11068. 

  11068.         movq	96(%rsp), %rdx
    11069. 

  11069.         mulxq	128(%rsp), %r9, %r10
    11070. 

  11070.         # A[2] * B[0]
    11071. 

  11071.         mulxq	144(%rsp), %r11, %r12
    11072. 

  11072.         # A[1] * B[0]
    11073. 

  11073.         mulxq	136(%rsp), %rcx, %rbx
    11074. 

  11074.         xorq	%rbp, %rbp
    11075. 

  11075.         adcxq	%rcx, %r10
    11076. 

  11076.         # A[1] * B[3]
    11077. 

  11077.         movq	120(%rsp), %rdx
    11078. 

  11078.         mulxq	136(%rsp), %r13, %r14
    11079. 

  11079.         adcxq	%rbx, %r11
    11080. 

  11080.         # A[0] * B[1]
    11081. 

  11081.         movq	104(%rsp), %rdx
    11082. 

  11082.         mulxq	128(%rsp), %rcx, %rbx
    11083. 

  11083.         adoxq	%rcx, %r10
    11084. 

  11084.         # A[2] * B[1]
    11085. 

  11085.         mulxq	144(%rsp), %rcx, %r15
    11086. 

  11086.         adoxq	%rbx, %r11
    11087. 

  11087.         adcxq	%rcx, %r12
    11088. 

  11088.         # A[1] * B[2]
    11089. 

  11089.         movq	112(%rsp), %rdx
    11090. 

  11090.         mulxq	136(%rsp), %rcx, %rbx
    11091. 

  11091.         adcxq	%r15, %r13
    11092. 

  11092.         adoxq	%rcx, %r12
    11093. 

  11093.         adcxq	%rbp, %r14
    11094. 

  11094.         adoxq	%rbx, %r13
    11095. 

  11095.         # A[0] * B[2]
    11096. 

  11096.         mulxq	128(%rsp), %rcx, %rbx
    11097. 

  11097.         adoxq	%rbp, %r14
    11098. 

  11098.         xorq	%r15, %r15
    11099. 

  11099.         adcxq	%rcx, %r11
    11100. 

  11100.         # A[1] * B[1]
    11101. 

  11101.         movq	104(%rsp), %rdx
    11102. 

  11102.         mulxq	136(%rsp), %rdx, %rcx
    11103. 

  11103.         adcxq	%rbx, %r12
    11104. 

  11104.         adoxq	%rdx, %r11
    11105. 

  11105.         # A[3] * B[1]
    11106. 

  11106.         movq	104(%rsp), %rdx
    11107. 

  11107.         adoxq	%rcx, %r12
    11108. 

  11108.         mulxq	152(%rsp), %rcx, %rbx
    11109. 

  11109.         adcxq	%rcx, %r13
    11110. 

  11110.         # A[2] * B[2]
    11111. 

  11111.         movq	112(%rsp), %rdx
    11112. 

  11112.         mulxq	144(%rsp), %rdx, %rcx
    11113. 

  11113.         adcxq	%rbx, %r14
    11114. 

  11114.         adoxq	%rdx, %r13
    11115. 

  11115.         # A[3] * B[3]
    11116. 

  11116.         movq	120(%rsp), %rdx
    11117. 

  11117.         adoxq	%rcx, %r14
    11118. 

  11118.         mulxq	152(%rsp), %rcx, %rbx
    11119. 

  11119.         adoxq	%rbp, %r15
    11120. 

  11120.         adcxq	%rcx, %r15
    11121. 

  11121.         # A[0] * B[3]
    11122. 

  11122.         mulxq	128(%rsp), %rdx, %rcx
    11123. 

  11123.         adcxq	%rbx, %rbp
    11124. 

  11124.         xorq	%rbx, %rbx
    11125. 

  11125.         adcxq	%rdx, %r12
    11126. 

  11126.         # A[3] * B[0]
    11127. 

  11127.         movq	96(%rsp), %rdx
    11128. 

  11128.         adcxq	%rcx, %r13
    11129. 

  11129.         mulxq	152(%rsp), %rdx, %rcx
    11130. 

  11130.         adoxq	%rdx, %r12
    11131. 

  11131.         adoxq	%rcx, %r13
    11132. 

  11132.         # A[2] * B[3]
    11133. 

  11133.         movq	120(%rsp), %rdx
    11134. 

  11134.         mulxq	144(%rsp), %rdx, %rcx
    11135. 

  11135.         adcxq	%rdx, %r14
    11136. 

  11136.         # A[3] * B[2]
    11137. 

  11137.         movq	112(%rsp), %rdx
    11138. 

  11138.         adcxq	%rcx, %r15
    11139. 

  11139.         mulxq	152(%rsp), %rcx, %rdx
    11140. 

  11140.         adcxq	%rbx, %rbp
    11141. 

  11141.         adoxq	%rcx, %r14
    11142. 

  11142.         adoxq	%rdx, %r15
    11143. 

  11143.         adoxq	%rbx, %rbp
    11144. 

  11144.         # Reduce
    11145. 

  11145.         movq	$0x7fffffffffffffff, %rbx
    11146. 

  11146.         #  Move top half into t4-t7 and remove top bit from t3
    11147. 

  11147.         shldq	$0x01, %r15, %rbp
    11148. 

  11148.         shldq	$0x01, %r14, %r15
    11149. 

  11149.         shldq	$0x01, %r13, %r14
    11150. 

  11150.         shldq	$0x01, %r12, %r13
    11151. 

  11151.         andq	%rbx, %r12
    11152. 

  11152.         #  Multiply top half by 19
    11153. 

  11153.         movq	$19, %rdx
    11154. 

  11154.         xorq	%rbx, %rbx
    11155. 

  11155.         mulxq	%r13, %rcx, %r13
    11156. 

  11156.         adcxq	%rcx, %r9
    11157. 

  11157.         adoxq	%r13, %r10
    11158. 

  11158.         mulxq	%r14, %rcx, %r14
    11159. 

  11159.         adcxq	%rcx, %r10
    11160. 

  11160.         adoxq	%r14, %r11
    11161. 

  11161.         mulxq	%r15, %rcx, %r15
    11162. 

  11162.         adcxq	%rcx, %r11
    11163. 

  11163.         adoxq	%r15, %r12
    11164. 

  11164.         mulxq	%rbp, %rbp, %rdx
    11165. 

  11165.         adcxq	%rbp, %r12
    11166. 

  11166.         adoxq	%rbx, %rdx
    11167. 

  11167.         adcxq	%rbx, %rdx
    11168. 

  11168.         #  Overflow
    11169. 

  11169.         shldq	$0x01, %r12, %rdx
    11170. 

  11170.         movq	$0x7fffffffffffffff, %rbx
    11171. 

  11171.         imulq	$19, %rdx, %rcx
    11172. 

  11172.         andq	%rbx, %r12
    11173. 

  11173.         addq	%rcx, %r9
    11174. 

  11174.         adcq	$0x00, %r10
    11175. 

  11175.         adcq	$0x00, %r11
    11176. 

  11176.         adcq	$0x00, %r12
    11177. 

  11177.         # Reduce if top bit set
    11178. 

  11178.         movq	%r12, %rdx
    11179. 

  11179.         shrq	$63, %rdx
    11180. 

  11180.         imulq	$19, %rdx, %rcx
    11181. 

  11181.         andq	%rbx, %r12
    11182. 

  11182.         addq	%rcx, %r9
    11183. 

  11183.         adcq	$0x00, %r10
    11184. 

  11184.         adcq	$0x00, %r11
    11185. 

  11185.         adcq	$0x00, %r12
    11186. 

  11186.         # Store
    11187. 

  11187.         movq	%r9, (%rdi)
    11188. 

  11188.         movq	%r10, 8(%rdi)
    11189. 

  11189.         movq	%r11, 16(%rdi)
    11190. 

  11190.         movq	%r12, 24(%rdi)
    11191. 

  11191.         # Sub
    11192. 

  11192.         movq	128(%rsp), %r9
    11193. 

  11193.         movq	136(%rsp), %r10
    11194. 

  11194.         movq	144(%rsp), %r11
    11195. 

  11195.         movq	152(%rsp), %r12
    11196. 

  11196.         subq	96(%rsp), %r9
    11197. 

  11197.         movq	$0x00, %rax
    11198. 

  11198.         sbbq	104(%rsp), %r10
    11199. 

  11199.         movq	$-19, %rcx
    11200. 

  11200.         sbbq	112(%rsp), %r11
    11201. 

  11201.         movq	$0x7fffffffffffffff, %rbx
    11202. 

  11202.         sbbq	120(%rsp), %r12
    11203. 

  11203.         sbbq	$0x00, %rax
    11204. 

  11204.         #   Mask the modulus
    11205. 

  11205.         andq	%rax, %rcx
    11206. 

  11206.         andq	%rax, %rbx
    11207. 

  11207.         #   Add modulus (if underflow)
    11208. 

  11208.         addq	%rcx, %r9
    11209. 

  11209.         adcq	%rax, %r10
    11210. 

  11210.         adcq	%rax, %r11
    11211. 

  11211.         adcq	%rbx, %r12
    11212. 

  11212.         movq	%r9, 128(%rsp)
    11213. 

  11213.         movq	%r10, 136(%rsp)
    11214. 

  11214.         movq	%r11, 144(%rsp)
    11215. 

  11215.         movq	%r12, 152(%rsp)
    11216. 

  11216.         # Square
    11217. 

  11217.         # A[0] * A[1]
    11218. 

  11218.         movq	(%rsp), %rdx
    11219. 

  11219.         mulxq	8(%rsp), %r10, %r11
    11220. 

  11220.         # A[0] * A[3]
    11221. 

  11221.         mulxq	24(%rsp), %r12, %r13
    11222. 

  11222.         # A[2] * A[1]
    11223. 

  11223.         movq	16(%rsp), %rdx
    11224. 

  11224.         mulxq	8(%rsp), %rcx, %rbx
    11225. 

  11225.         xorq	%rbp, %rbp
    11226. 

  11226.         adoxq	%rcx, %r12
    11227. 

  11227.         # A[2] * A[3]
    11228. 

  11228.         mulxq	24(%rsp), %r14, %r15
    11229. 

  11229.         adoxq	%rbx, %r13
    11230. 

  11230.         # A[2] * A[0]
    11231. 

  11231.         mulxq	(%rsp), %rcx, %rbx
    11232. 

  11232.         adoxq	%rbp, %r14
    11233. 

  11233.         adcxq	%rcx, %r11
    11234. 

  11234.         adoxq	%rbp, %r15
    11235. 

  11235.         # A[1] * A[3]
    11236. 

  11236.         movq	8(%rsp), %rdx
    11237. 

  11237.         mulxq	24(%rsp), %rax, %r9
    11238. 

  11238.         adcxq	%rbx, %r12
    11239. 

  11239.         adcxq	%rax, %r13
    11240. 

  11240.         adcxq	%r9, %r14
    11241. 

  11241.         adcxq	%rbp, %r15
    11242. 

  11242.         # Double with Carry Flag
    11243. 

  11243.         xorq	%rbp, %rbp
    11244. 

  11244.         # A[0] * A[0]
    11245. 

  11245.         movq	(%rsp), %rdx
    11246. 

  11246.         mulxq	%rdx, %r9, %rax
    11247. 

  11247.         adcxq	%r10, %r10
    11248. 

  11248.         # A[1] * A[1]
    11249. 

  11249.         movq	8(%rsp), %rdx
    11250. 

  11250.         mulxq	%rdx, %rcx, %rbx
    11251. 

  11251.         adcxq	%r11, %r11
    11252. 

  11252.         adoxq	%rax, %r10
    11253. 

  11253.         adcxq	%r12, %r12
    11254. 

  11254.         adoxq	%rcx, %r11
    11255. 

  11255.         # A[2] * A[2]
    11256. 

  11256.         movq	16(%rsp), %rdx
    11257. 

  11257.         mulxq	%rdx, %rax, %rcx
    11258. 

  11258.         adcxq	%r13, %r13
    11259. 

  11259.         adoxq	%rbx, %r12
    11260. 

  11260.         adcxq	%r14, %r14
    11261. 

  11261.         adoxq	%rax, %r13
    11262. 

  11262.         # A[3] * A[3]
    11263. 

  11263.         movq	24(%rsp), %rdx
    11264. 

  11264.         mulxq	%rdx, %rax, %rbx
    11265. 

  11265.         adcxq	%r15, %r15
    11266. 

  11266.         adoxq	%rcx, %r14
    11267. 

  11267.         adcxq	%rbp, %rbp
    11268. 

  11268.         adoxq	%rax, %r15
    11269. 

  11269.         adoxq	%rbx, %rbp
    11270. 

  11270.         # Reduce
    11271. 

  11271.         movq	$0x7fffffffffffffff, %rcx
    11272. 

  11272.         #  Move top half into t4-t7 and remove top bit from t3
    11273. 

  11273.         shldq	$0x01, %r15, %rbp
    11274. 

  11274.         shldq	$0x01, %r14, %r15
    11275. 

  11275.         shldq	$0x01, %r13, %r14
    11276. 

  11276.         shldq	$0x01, %r12, %r13
    11277. 

  11277.         andq	%rcx, %r12
    11278. 

  11278.         #  Multiply top half by 19
    11279. 

  11279.         movq	$19, %rdx
    11280. 

  11280.         xorq	%rcx, %rcx
    11281. 

  11281.         mulxq	%r13, %rax, %r13
    11282. 

  11282.         adcxq	%rax, %r9
    11283. 

  11283.         adoxq	%r13, %r10
    11284. 

  11284.         mulxq	%r14, %rax, %r14
    11285. 

  11285.         adcxq	%rax, %r10
    11286. 

  11286.         adoxq	%r14, %r11
    11287. 

  11287.         mulxq	%r15, %rax, %r15
    11288. 

  11288.         adcxq	%rax, %r11
    11289. 

  11289.         adoxq	%r15, %r12
    11290. 

  11290.         mulxq	%rbp, %rbp, %rdx
    11291. 

  11291.         adcxq	%rbp, %r12
    11292. 

  11292.         adoxq	%rcx, %rdx
    11293. 

  11293.         adcxq	%rcx, %rdx
    11294. 

  11294.         #  Overflow
    11295. 

  11295.         shldq	$0x01, %r12, %rdx
    11296. 

  11296.         movq	$0x7fffffffffffffff, %rcx
    11297. 

  11297.         imulq	$19, %rdx, %rax
    11298. 

  11298.         andq	%rcx, %r12
    11299. 

  11299.         addq	%rax, %r9
    11300. 

  11300.         adcq	$0x00, %r10
    11301. 

  11301.         adcq	$0x00, %r11
    11302. 

  11302.         adcq	$0x00, %r12
    11303. 

  11303.         # Reduce if top bit set
    11304. 

  11304.         movq	%r12, %rdx
    11305. 

  11305.         shrq	$63, %rdx
    11306. 

  11306.         imulq	$19, %rdx, %rax
    11307. 

  11307.         andq	%rcx, %r12
    11308. 

  11308.         addq	%rax, %r9
    11309. 

  11309.         adcq	$0x00, %r10
    11310. 

  11310.         adcq	$0x00, %r11
    11311. 

  11311.         adcq	$0x00, %r12
    11312. 

  11312.         # Store
    11313. 

  11313.         movq	%r9, (%rsp)
    11314. 

  11314.         movq	%r10, 8(%rsp)
    11315. 

  11315.         movq	%r11, 16(%rsp)
    11316. 

  11316.         movq	%r12, 24(%rsp)
    11317. 

  11317.         movq	$0x1db42, %rdx
    11318. 

  11318.         mulxq	128(%rsp), %r9, %rbp
    11319. 

  11319.         mulxq	136(%rsp), %r10, %r15
    11320. 

  11320.         mulxq	144(%rsp), %r11, %r14
    11321. 

  11321.         mulxq	152(%rsp), %r12, %r13
    11322. 

  11322.         addq	%rbp, %r10
    11323. 

  11323.         adcq	%r15, %r11
    11324. 

  11324.         adcq	%r14, %r12
    11325. 

  11325.         adcq	$0x00, %r13
    11326. 

  11326.         movq	$0x7fffffffffffffff, %rbp
    11327. 

  11327.         shldq	$0x01, %r12, %r13
    11328. 

  11328.         andq	%rbp, %r12
    11329. 

  11329.         imulq	$19, %r13, %r13
    11330. 

  11330.         addq	%r13, %r9
    11331. 

  11331.         adcq	$0x00, %r10
    11332. 

  11332.         adcq	$0x00, %r11
    11333. 

  11333.         adcq	$0x00, %r12
    11334. 

  11334.         movq	%r9, 32(%rsp)
    11335. 

  11335.         movq	%r10, 40(%rsp)
    11336. 

  11336.         movq	%r11, 48(%rsp)
    11337. 

  11337.         movq	%r12, 56(%rsp)
    11338. 

  11338.         # Square
    11339. 

  11339.         # A[0] * A[1]
    11340. 

  11340.         movq	64(%rsp), %rdx
    11341. 

  11341.         mulxq	72(%rsp), %r10, %r11
    11342. 

  11342.         # A[0] * A[3]
    11343. 

  11343.         mulxq	88(%rsp), %r12, %r13
    11344. 

  11344.         # A[2] * A[1]
    11345. 

  11345.         movq	80(%rsp), %rdx
    11346. 

  11346.         mulxq	72(%rsp), %rcx, %rbx
    11347. 

  11347.         xorq	%rbp, %rbp
    11348. 

  11348.         adoxq	%rcx, %r12
    11349. 

  11349.         # A[2] * A[3]
    11350. 

  11350.         mulxq	88(%rsp), %r14, %r15
    11351. 

  11351.         adoxq	%rbx, %r13
    11352. 

  11352.         # A[2] * A[0]
    11353. 

  11353.         mulxq	64(%rsp), %rcx, %rbx
    11354. 

  11354.         adoxq	%rbp, %r14
    11355. 

  11355.         adcxq	%rcx, %r11
    11356. 

  11356.         adoxq	%rbp, %r15
    11357. 

  11357.         # A[1] * A[3]
    11358. 

  11358.         movq	72(%rsp), %rdx
    11359. 

  11359.         mulxq	88(%rsp), %rax, %r9
    11360. 

  11360.         adcxq	%rbx, %r12
    11361. 

  11361.         adcxq	%rax, %r13
    11362. 

  11362.         adcxq	%r9, %r14
    11363. 

  11363.         adcxq	%rbp, %r15
    11364. 

  11364.         # Double with Carry Flag
    11365. 

  11365.         xorq	%rbp, %rbp
    11366. 

  11366.         # A[0] * A[0]
    11367. 

  11367.         movq	64(%rsp), %rdx
    11368. 

  11368.         mulxq	%rdx, %r9, %rax
    11369. 

  11369.         adcxq	%r10, %r10
    11370. 

  11370.         # A[1] * A[1]
    11371. 

  11371.         movq	72(%rsp), %rdx
    11372. 

  11372.         mulxq	%rdx, %rcx, %rbx
    11373. 

  11373.         adcxq	%r11, %r11
    11374. 

  11374.         adoxq	%rax, %r10
    11375. 

  11375.         adcxq	%r12, %r12
    11376. 

  11376.         adoxq	%rcx, %r11
    11377. 

  11377.         # A[2] * A[2]
    11378. 

  11378.         movq	80(%rsp), %rdx
    11379. 

  11379.         mulxq	%rdx, %rax, %rcx
    11380. 

  11380.         adcxq	%r13, %r13
    11381. 

  11381.         adoxq	%rbx, %r12
    11382. 

  11382.         adcxq	%r14, %r14
    11383. 

  11383.         adoxq	%rax, %r13
    11384. 

  11384.         # A[3] * A[3]
    11385. 

  11385.         movq	88(%rsp), %rdx
    11386. 

  11386.         mulxq	%rdx, %rax, %rbx
    11387. 

  11387.         adcxq	%r15, %r15
    11388. 

  11388.         adoxq	%rcx, %r14
    11389. 

  11389.         adcxq	%rbp, %rbp
    11390. 

  11390.         adoxq	%rax, %r15
    11391. 

  11391.         adoxq	%rbx, %rbp
    11392. 

  11392.         # Reduce
    11393. 

  11393.         movq	$0x7fffffffffffffff, %rcx
    11394. 

  11394.         #  Move top half into t4-t7 and remove top bit from t3
    11395. 

  11395.         shldq	$0x01, %r15, %rbp
    11396. 

  11396.         shldq	$0x01, %r14, %r15
    11397. 

  11397.         shldq	$0x01, %r13, %r14
    11398. 

  11398.         shldq	$0x01, %r12, %r13
    11399. 

  11399.         andq	%rcx, %r12
    11400. 

  11400.         #  Multiply top half by 19
    11401. 

  11401.         movq	$19, %rdx
    11402. 

  11402.         xorq	%rcx, %rcx
    11403. 

  11403.         mulxq	%r13, %rax, %r13
    11404. 

  11404.         adcxq	%rax, %r9
    11405. 

  11405.         adoxq	%r13, %r10
    11406. 

  11406.         mulxq	%r14, %rax, %r14
    11407. 

  11407.         adcxq	%rax, %r10
    11408. 

  11408.         adoxq	%r14, %r11
    11409. 

  11409.         mulxq	%r15, %rax, %r15
    11410. 

  11410.         adcxq	%rax, %r11
    11411. 

  11411.         adoxq	%r15, %r12
    11412. 

  11412.         mulxq	%rbp, %rbp, %rdx
    11413. 

  11413.         adcxq	%rbp, %r12
    11414. 

  11414.         adoxq	%rcx, %rdx
    11415. 

  11415.         adcxq	%rcx, %rdx
    11416. 

  11416.         #  Overflow
    11417. 

  11417.         shldq	$0x01, %r12, %rdx
    11418. 

  11418.         movq	$0x7fffffffffffffff, %rcx
    11419. 

  11419.         imulq	$19, %rdx, %rax
    11420. 

  11420.         andq	%rcx, %r12
    11421. 

  11421.         addq	%rax, %r9
    11422. 

  11422.         adcq	$0x00, %r10
    11423. 

  11423.         adcq	$0x00, %r11
    11424. 

  11424.         adcq	$0x00, %r12
    11425. 

  11425.         # Reduce if top bit set
    11426. 

  11426.         movq	%r12, %rdx
    11427. 

  11427.         shrq	$63, %rdx
    11428. 

  11428.         imulq	$19, %rdx, %rax
    11429. 

  11429.         andq	%rcx, %r12
    11430. 

  11430.         addq	%rax, %r9
    11431. 

  11431.         adcq	$0x00, %r10
    11432. 

  11432.         adcq	$0x00, %r11
    11433. 

  11433.         adcq	$0x00, %r12
    11434. 

  11434.         # Store
    11435. 

  11435.         movq	%r9, 64(%rsp)
    11436. 

  11436.         movq	%r10, 72(%rsp)
    11437. 

  11437.         movq	%r11, 80(%rsp)
    11438. 

  11438.         movq	%r12, 88(%rsp)
    11439. 

  11439.         # Add
    11440. 

  11440.         movq	96(%rsp), %r9
    11441. 

  11441.         movq	104(%rsp), %r10
    11442. 

  11442.         addq	32(%rsp), %r9
    11443. 

  11443.         movq	112(%rsp), %r11
    11444. 

  11444.         adcq	40(%rsp), %r10
    11445. 

  11445.         movq	120(%rsp), %rax
    11446. 

  11446.         adcq	48(%rsp), %r11
    11447. 

  11447.         movq	$-19, %rcx
    11448. 

  11448.         adcq	56(%rsp), %rax
    11449. 

  11449.         movq	$0x7fffffffffffffff, %rbx
    11450. 

  11450.         movq	%rax, %r12
    11451. 

  11451.         sarq	$63, %rax
    11452. 

  11452.         #   Mask the modulus
    11453. 

  11453.         andq	%rax, %rcx
    11454. 

  11454.         andq	%rax, %rbx
    11455. 

  11455.         #   Sub modulus (if overflow)
    11456. 

  11456.         subq	%rcx, %r9
    11457. 

  11457.         sbbq	%rax, %r10
    11458. 

  11458.         sbbq	%rax, %r11
    11459. 

  11459.         sbbq	%rbx, %r12
    11460. 

  11460.         movq	%r9, 96(%rsp)
    11461. 

  11461.         movq	%r10, 104(%rsp)
    11462. 

  11462.         movq	%r11, 112(%rsp)
    11463. 

  11463.         movq	%r12, 120(%rsp)
    11464. 

  11464.         # Multiply
    11465. 

  11465.         # A[0] * B[0]
    11466. 

  11466.         movq	(%rsp), %rdx
    11467. 

  11467.         mulxq	(%r8), %r9, %r10
    11468. 

  11468.         # A[2] * B[0]
    11469. 

  11469.         mulxq	16(%r8), %r11, %r12
    11470. 

  11470.         # A[1] * B[0]
    11471. 

  11471.         mulxq	8(%r8), %rcx, %rbx
    11472. 

  11472.         xorq	%rbp, %rbp
    11473. 

  11473.         adcxq	%rcx, %r10
    11474. 

  11474.         # A[1] * B[3]
    11475. 

  11475.         movq	24(%rsp), %rdx
    11476. 

  11476.         mulxq	8(%r8), %r13, %r14
    11477. 

  11477.         adcxq	%rbx, %r11
    11478. 

  11478.         # A[0] * B[1]
    11479. 

  11479.         movq	8(%rsp), %rdx
    11480. 

  11480.         mulxq	(%r8), %rcx, %rbx
    11481. 

  11481.         adoxq	%rcx, %r10
    11482. 

  11482.         # A[2] * B[1]
    11483. 

  11483.         mulxq	16(%r8), %rcx, %r15
    11484. 

  11484.         adoxq	%rbx, %r11
    11485. 

  11485.         adcxq	%rcx, %r12
    11486. 

  11486.         # A[1] * B[2]
    11487. 

  11487.         movq	16(%rsp), %rdx
    11488. 

  11488.         mulxq	8(%r8), %rcx, %rbx
    11489. 

  11489.         adcxq	%r15, %r13
    11490. 

  11490.         adoxq	%rcx, %r12
    11491. 

  11491.         adcxq	%rbp, %r14
    11492. 

  11492.         adoxq	%rbx, %r13
    11493. 

  11493.         # A[0] * B[2]
    11494. 

  11494.         mulxq	(%r8), %rcx, %rbx
    11495. 

  11495.         adoxq	%rbp, %r14
    11496. 

  11496.         xorq	%r15, %r15
    11497. 

  11497.         adcxq	%rcx, %r11
    11498. 

  11498.         # A[1] * B[1]
    11499. 

  11499.         movq	8(%rsp), %rdx
    11500. 

  11500.         mulxq	8(%r8), %rdx, %rcx
    11501. 

  11501.         adcxq	%rbx, %r12
    11502. 

  11502.         adoxq	%rdx, %r11
    11503. 

  11503.         # A[3] * B[1]
    11504. 

  11504.         movq	8(%rsp), %rdx
    11505. 

  11505.         adoxq	%rcx, %r12
    11506. 

  11506.         mulxq	24(%r8), %rcx, %rbx
    11507. 

  11507.         adcxq	%rcx, %r13
    11508. 

  11508.         # A[2] * B[2]
    11509. 

  11509.         movq	16(%rsp), %rdx
    11510. 

  11510.         mulxq	16(%r8), %rdx, %rcx
    11511. 

  11511.         adcxq	%rbx, %r14
    11512. 

  11512.         adoxq	%rdx, %r13
    11513. 

  11513.         # A[3] * B[3]
    11514. 

  11514.         movq	24(%rsp), %rdx
    11515. 

  11515.         adoxq	%rcx, %r14
    11516. 

  11516.         mulxq	24(%r8), %rcx, %rbx
    11517. 

  11517.         adoxq	%rbp, %r15
    11518. 

  11518.         adcxq	%rcx, %r15
    11519. 

  11519.         # A[0] * B[3]
    11520. 

  11520.         mulxq	(%r8), %rdx, %rcx
    11521. 

  11521.         adcxq	%rbx, %rbp
    11522. 

  11522.         xorq	%rbx, %rbx
    11523. 

  11523.         adcxq	%rdx, %r12
    11524. 

  11524.         # A[3] * B[0]
    11525. 

  11525.         movq	(%rsp), %rdx
    11526. 

  11526.         adcxq	%rcx, %r13
    11527. 

  11527.         mulxq	24(%r8), %rdx, %rcx
    11528. 

  11528.         adoxq	%rdx, %r12
    11529. 

  11529.         adoxq	%rcx, %r13
    11530. 

  11530.         # A[2] * B[3]
    11531. 

  11531.         movq	24(%rsp), %rdx
    11532. 

  11532.         mulxq	16(%r8), %rdx, %rcx
    11533. 

  11533.         adcxq	%rdx, %r14
    11534. 

  11534.         # A[3] * B[2]
    11535. 

  11535.         movq	16(%rsp), %rdx
    11536. 

  11536.         adcxq	%rcx, %r15
    11537. 

  11537.         mulxq	24(%r8), %rcx, %rdx
    11538. 

  11538.         adcxq	%rbx, %rbp
    11539. 

  11539.         adoxq	%rcx, %r14
    11540. 

  11540.         adoxq	%rdx, %r15
    11541. 

  11541.         adoxq	%rbx, %rbp
    11542. 

  11542.         # Reduce
    11543. 

  11543.         movq	$0x7fffffffffffffff, %rbx
    11544. 

  11544.         #  Move top half into t4-t7 and remove top bit from t3
    11545. 

  11545.         shldq	$0x01, %r15, %rbp
    11546. 

  11546.         shldq	$0x01, %r14, %r15
    11547. 

  11547.         shldq	$0x01, %r13, %r14
    11548. 

  11548.         shldq	$0x01, %r12, %r13
    11549. 

  11549.         andq	%rbx, %r12
    11550. 

  11550.         #  Multiply top half by 19
    11551. 

  11551.         movq	$19, %rdx
    11552. 

  11552.         xorq	%rbx, %rbx
    11553. 

  11553.         mulxq	%r13, %rcx, %r13
    11554. 

  11554.         adcxq	%rcx, %r9
    11555. 

  11555.         adoxq	%r13, %r10
    11556. 

  11556.         mulxq	%r14, %rcx, %r14
    11557. 

  11557.         adcxq	%rcx, %r10
    11558. 

  11558.         adoxq	%r14, %r11
    11559. 

  11559.         mulxq	%r15, %rcx, %r15
    11560. 

  11560.         adcxq	%rcx, %r11
    11561. 

  11561.         adoxq	%r15, %r12
    11562. 

  11562.         mulxq	%rbp, %rbp, %rdx
    11563. 

  11563.         adcxq	%rbp, %r12
    11564. 

  11564.         adoxq	%rbx, %rdx
    11565. 

  11565.         adcxq	%rbx, %rdx
    11566. 

  11566.         #  Overflow
    11567. 

  11567.         shldq	$0x01, %r12, %rdx
    11568. 

  11568.         movq	$0x7fffffffffffffff, %rbx
    11569. 

  11569.         imulq	$19, %rdx, %rcx
    11570. 

  11570.         andq	%rbx, %r12
    11571. 

  11571.         addq	%rcx, %r9
    11572. 

  11572.         adcq	$0x00, %r10
    11573. 

  11573.         adcq	$0x00, %r11
    11574. 

  11574.         adcq	$0x00, %r12
    11575. 

  11575.         # Reduce if top bit set
    11576. 

  11576.         movq	%r12, %rdx
    11577. 

  11577.         shrq	$63, %rdx
    11578. 

  11578.         imulq	$19, %rdx, %rcx
    11579. 

  11579.         andq	%rbx, %r12
    11580. 

  11580.         addq	%rcx, %r9
    11581. 

  11581.         adcq	$0x00, %r10
    11582. 

  11582.         adcq	$0x00, %r11
    11583. 

  11583.         adcq	$0x00, %r12
    11584. 

  11584.         # Store
    11585. 

  11585.         movq	%r9, 32(%rsp)
    11586. 

  11586.         movq	%r10, 40(%rsp)
    11587. 

  11587.         movq	%r11, 48(%rsp)
    11588. 

  11588.         movq	%r12, 56(%rsp)
    11589. 

  11589.         # Multiply
    11590. 

  11590.         # A[0] * B[0]
    11591. 

  11591.         movq	96(%rsp), %rdx
    11592. 

  11592.         mulxq	128(%rsp), %r9, %r10
    11593. 

  11593.         # A[2] * B[0]
    11594. 

  11594.         mulxq	144(%rsp), %r11, %r12
    11595. 

  11595.         # A[1] * B[0]
    11596. 

  11596.         mulxq	136(%rsp), %rcx, %rbx
    11597. 

  11597.         xorq	%rbp, %rbp
    11598. 

  11598.         adcxq	%rcx, %r10
    11599. 

  11599.         # A[1] * B[3]
    11600. 

  11600.         movq	120(%rsp), %rdx
    11601. 

  11601.         mulxq	136(%rsp), %r13, %r14
    11602. 

  11602.         adcxq	%rbx, %r11
    11603. 

  11603.         # A[0] * B[1]
    11604. 

  11604.         movq	104(%rsp), %rdx
    11605. 

  11605.         mulxq	128(%rsp), %rcx, %rbx
    11606. 

  11606.         adoxq	%rcx, %r10
    11607. 

  11607.         # A[2] * B[1]
    11608. 

  11608.         mulxq	144(%rsp), %rcx, %r15
    11609. 

  11609.         adoxq	%rbx, %r11
    11610. 

  11610.         adcxq	%rcx, %r12
    11611. 

  11611.         # A[1] * B[2]
    11612. 

  11612.         movq	112(%rsp), %rdx
    11613. 

  11613.         mulxq	136(%rsp), %rcx, %rbx
    11614. 

  11614.         adcxq	%r15, %r13
    11615. 

  11615.         adoxq	%rcx, %r12
    11616. 

  11616.         adcxq	%rbp, %r14
    11617. 

  11617.         adoxq	%rbx, %r13
    11618. 

  11618.         # A[0] * B[2]
    11619. 

  11619.         mulxq	128(%rsp), %rcx, %rbx
    11620. 

  11620.         adoxq	%rbp, %r14
    11621. 

  11621.         xorq	%r15, %r15
    11622. 

  11622.         adcxq	%rcx, %r11
    11623. 

  11623.         # A[1] * B[1]
    11624. 

  11624.         movq	104(%rsp), %rdx
    11625. 

  11625.         mulxq	136(%rsp), %rdx, %rcx
    11626. 

  11626.         adcxq	%rbx, %r12
    11627. 

  11627.         adoxq	%rdx, %r11
    11628. 

  11628.         # A[3] * B[1]
    11629. 

  11629.         movq	104(%rsp), %rdx
    11630. 

  11630.         adoxq	%rcx, %r12
    11631. 

  11631.         mulxq	152(%rsp), %rcx, %rbx
    11632. 

  11632.         adcxq	%rcx, %r13
    11633. 

  11633.         # A[2] * B[2]
    11634. 

  11634.         movq	112(%rsp), %rdx
    11635. 

  11635.         mulxq	144(%rsp), %rdx, %rcx
    11636. 

  11636.         adcxq	%rbx, %r14
    11637. 

  11637.         adoxq	%rdx, %r13
    11638. 

  11638.         # A[3] * B[3]
    11639. 

  11639.         movq	120(%rsp), %rdx
    11640. 

  11640.         adoxq	%rcx, %r14
    11641. 

  11641.         mulxq	152(%rsp), %rcx, %rbx
    11642. 

  11642.         adoxq	%rbp, %r15
    11643. 

  11643.         adcxq	%rcx, %r15
    11644. 

  11644.         # A[0] * B[3]
    11645. 

  11645.         mulxq	128(%rsp), %rdx, %rcx
    11646. 

  11646.         adcxq	%rbx, %rbp
    11647. 

  11647.         xorq	%rbx, %rbx
    11648. 

  11648.         adcxq	%rdx, %r12
    11649. 

  11649.         # A[3] * B[0]
    11650. 

  11650.         movq	96(%rsp), %rdx
    11651. 

  11651.         adcxq	%rcx, %r13
    11652. 

  11652.         mulxq	152(%rsp), %rdx, %rcx
    11653. 

  11653.         adoxq	%rdx, %r12
    11654. 

  11654.         adoxq	%rcx, %r13
    11655. 

  11655.         # A[2] * B[3]
    11656. 

  11656.         movq	120(%rsp), %rdx
    11657. 

  11657.         mulxq	144(%rsp), %rdx, %rcx
    11658. 

  11658.         adcxq	%rdx, %r14
    11659. 

  11659.         # A[3] * B[2]
    11660. 

  11660.         movq	112(%rsp), %rdx
    11661. 

  11661.         adcxq	%rcx, %r15
    11662. 

  11662.         mulxq	152(%rsp), %rcx, %rdx
    11663. 

  11663.         adcxq	%rbx, %rbp
    11664. 

  11664.         adoxq	%rcx, %r14
    11665. 

  11665.         adoxq	%rdx, %r15
    11666. 

  11666.         adoxq	%rbx, %rbp
    11667. 

  11667.         # Reduce
    11668. 

  11668.         movq	$0x7fffffffffffffff, %rbx
    11669. 

  11669.         #  Move top half into t4-t7 and remove top bit from t3
    11670. 

  11670.         shldq	$0x01, %r15, %rbp
    11671. 

  11671.         shldq	$0x01, %r14, %r15
    11672. 

  11672.         shldq	$0x01, %r13, %r14
    11673. 

  11673.         shldq	$0x01, %r12, %r13
    11674. 

  11674.         andq	%rbx, %r12
    11675. 

  11675.         #  Multiply top half by 19
    11676. 

  11676.         movq	$19, %rdx
    11677. 

  11677.         xorq	%rbx, %rbx
    11678. 

  11678.         mulxq	%r13, %rcx, %r13
    11679. 

  11679.         adcxq	%rcx, %r9
    11680. 

  11680.         adoxq	%r13, %r10
    11681. 

  11681.         mulxq	%r14, %rcx, %r14
    11682. 

  11682.         adcxq	%rcx, %r10
    11683. 

  11683.         adoxq	%r14, %r11
    11684. 

  11684.         mulxq	%r15, %rcx, %r15
    11685. 

  11685.         adcxq	%rcx, %r11
    11686. 

  11686.         adoxq	%r15, %r12
    11687. 

  11687.         mulxq	%rbp, %rbp, %rdx
    11688. 

  11688.         adcxq	%rbp, %r12
    11689. 

  11689.         adoxq	%rbx, %rdx
    11690. 

  11690.         adcxq	%rbx, %rdx
    11691. 

  11691.         #  Overflow
    11692. 

  11692.         shldq	$0x01, %r12, %rdx
    11693. 

  11693.         movq	$0x7fffffffffffffff, %rbx
    11694. 

  11694.         imulq	$19, %rdx, %rcx
    11695. 

  11695.         andq	%rbx, %r12
    11696. 

  11696.         addq	%rcx, %r9
    11697. 

  11697.         adcq	$0x00, %r10
    11698. 

  11698.         adcq	$0x00, %r11
    11699. 

  11699.         adcq	$0x00, %r12
    11700. 

  11700.         # Reduce if top bit set
    11701. 

  11701.         movq	%r12, %rdx
    11702. 

  11702.         shrq	$63, %rdx
    11703. 

  11703.         imulq	$19, %rdx, %rcx
    11704. 

  11704.         andq	%rbx, %r12
    11705. 

  11705.         addq	%rcx, %r9
    11706. 

  11706.         adcq	$0x00, %r10
    11707. 

  11707.         adcq	$0x00, %r11
    11708. 

  11708.         adcq	$0x00, %r12
    11709. 

  11709.         # Store
    11710. 

  11710.         movq	%r9, (%rsp)
    11711. 

  11711.         movq	%r10, 8(%rsp)
    11712. 

  11712.         movq	%r11, 16(%rsp)
    11713. 

  11713.         movq	%r12, 24(%rsp)
    11714. 

  11714.         decb	168(%rsp)
    11715. 

  11715.         jge	L_curve25519_avx2_bits
    11716. 

  11716.         movq	$63, 168(%rsp)
    11717. 

  11717.         decb	160(%rsp)
    11718. 

  11718.         jge	L_curve25519_avx2_words
    11719. 

  11719.         # Invert
    11720. 

  11720.         leaq	32(%rsp), %rdi
    11721. 

  11721.         movq	%rsp, %rsi
    11722. 

  11722. #ifndef __APPLE__
    11723. 

  11723.         callq	fe_sq_avx2@plt
    11724. 

  11724. #else
    11725. 

  11725.         callq	_fe_sq_avx2
    11726. 

  11726. #endif /* __APPLE__ */
    11727. 

  11727.         leaq	64(%rsp), %rdi
    11728. 

  11728.         leaq	32(%rsp), %rsi
    11729. 

  11729. #ifndef __APPLE__
    11730. 

  11730.         callq	fe_sq_avx2@plt
    11731. 

  11731. #else
    11732. 

  11732.         callq	_fe_sq_avx2
    11733. 

  11733. #endif /* __APPLE__ */
    11734. 

  11734.         leaq	64(%rsp), %rdi
    11735. 

  11735.         leaq	64(%rsp), %rsi
    11736. 

  11736. #ifndef __APPLE__
    11737. 

  11737.         callq	fe_sq_avx2@plt
    11738. 

  11738. #else
    11739. 

  11739.         callq	_fe_sq_avx2
    11740. 

  11740. #endif /* __APPLE__ */
    11741. 

  11741.         leaq	64(%rsp), %rdi
    11742. 

  11742.         movq	%rsp, %rsi
    11743. 

  11743.         leaq	64(%rsp), %rdx
    11744. 

  11744. #ifndef __APPLE__
    11745. 

  11745.         callq	fe_mul_avx2@plt
    11746. 

  11746. #else
    11747. 

  11747.         callq	_fe_mul_avx2
    11748. 

  11748. #endif /* __APPLE__ */
    11749. 

  11749.         leaq	32(%rsp), %rdi
    11750. 

  11750.         leaq	32(%rsp), %rsi
    11751. 

  11751.         leaq	64(%rsp), %rdx
    11752. 

  11752. #ifndef __APPLE__
    11753. 

  11753.         callq	fe_mul_avx2@plt
    11754. 

  11754. #else
    11755. 

  11755.         callq	_fe_mul_avx2
    11756. 

  11756. #endif /* __APPLE__ */
    11757. 

  11757.         leaq	96(%rsp), %rdi
    11758. 

  11758.         leaq	32(%rsp), %rsi
    11759. 

  11759. #ifndef __APPLE__
    11760. 

  11760.         callq	fe_sq_avx2@plt
    11761. 

  11761. #else
    11762. 

  11762.         callq	_fe_sq_avx2
    11763. 

  11763. #endif /* __APPLE__ */
    11764. 

  11764.         leaq	64(%rsp), %rdi
    11765. 

  11765.         leaq	64(%rsp), %rsi
    11766. 

  11766.         leaq	96(%rsp), %rdx
    11767. 

  11767. #ifndef __APPLE__
    11768. 

  11768.         callq	fe_mul_avx2@plt
    11769. 

  11769. #else
    11770. 

  11770.         callq	_fe_mul_avx2
    11771. 

  11771. #endif /* __APPLE__ */
    11772. 

  11772.         leaq	96(%rsp), %rdi
    11773. 

  11773.         leaq	64(%rsp), %rsi
    11774. 

  11774. #ifndef __APPLE__
    11775. 

  11775.         callq	fe_sq_avx2@plt
    11776. 

  11776. #else
    11777. 

  11777.         callq	_fe_sq_avx2
    11778. 

  11778. #endif /* __APPLE__ */
    11779. 

  11779.         leaq	96(%rsp), %rdi
    11780. 

  11780.         leaq	96(%rsp), %rsi
    11781. 

  11781.         movq	$4, %rdx
    11782. 

  11782. #ifndef __APPLE__
    11783. 

  11783.         callq	fe_sq_n_avx2@plt
    11784. 

  11784. #else
    11785. 

  11785.         callq	_fe_sq_n_avx2
    11786. 

  11786. #endif /* __APPLE__ */
    11787. 

  11787.         leaq	64(%rsp), %rdi
    11788. 

  11788.         leaq	96(%rsp), %rsi
    11789. 

  11789.         leaq	64(%rsp), %rdx
    11790. 

  11790. #ifndef __APPLE__
    11791. 

  11791.         callq	fe_mul_avx2@plt
    11792. 

  11792. #else
    11793. 

  11793.         callq	_fe_mul_avx2
    11794. 

  11794. #endif /* __APPLE__ */
    11795. 

  11795.         leaq	96(%rsp), %rdi
    11796. 

  11796.         leaq	64(%rsp), %rsi
    11797. 

  11797. #ifndef __APPLE__
    11798. 

  11798.         callq	fe_sq_avx2@plt
    11799. 

  11799. #else
    11800. 

  11800.         callq	_fe_sq_avx2
    11801. 

  11801. #endif /* __APPLE__ */
    11802. 

  11802.         leaq	96(%rsp), %rdi
    11803. 

  11803.         leaq	96(%rsp), %rsi
    11804. 

  11804.         movq	$9, %rdx
    11805. 

  11805. #ifndef __APPLE__
    11806. 

  11806.         callq	fe_sq_n_avx2@plt
    11807. 

  11807. #else
    11808. 

  11808.         callq	_fe_sq_n_avx2
    11809. 

  11809. #endif /* __APPLE__ */
    11810. 

  11810.         leaq	96(%rsp), %rdi
    11811. 

  11811.         leaq	96(%rsp), %rsi
    11812. 

  11812.         leaq	64(%rsp), %rdx
    11813. 

  11813. #ifndef __APPLE__
    11814. 

  11814.         callq	fe_mul_avx2@plt
    11815. 

  11815. #else
    11816. 

  11816.         callq	_fe_mul_avx2
    11817. 

  11817. #endif /* __APPLE__ */
    11818. 

  11818.         leaq	128(%rsp), %rdi
    11819. 

  11819.         leaq	96(%rsp), %rsi
    11820. 

  11820. #ifndef __APPLE__
    11821. 

  11821.         callq	fe_sq_avx2@plt
    11822. 

  11822. #else
    11823. 

  11823.         callq	_fe_sq_avx2
    11824. 

  11824. #endif /* __APPLE__ */
    11825. 

  11825.         leaq	128(%rsp), %rdi
    11826. 

  11826.         leaq	128(%rsp), %rsi
    11827. 

  11827.         movq	$19, %rdx
    11828. 

  11828. #ifndef __APPLE__
    11829. 

  11829.         callq	fe_sq_n_avx2@plt
    11830. 

  11830. #else
    11831. 

  11831.         callq	_fe_sq_n_avx2
    11832. 

  11832. #endif /* __APPLE__ */
    11833. 

  11833.         leaq	96(%rsp), %rdi
    11834. 

  11834.         leaq	128(%rsp), %rsi
    11835. 

  11835.         leaq	96(%rsp), %rdx
    11836. 

  11836. #ifndef __APPLE__
    11837. 

  11837.         callq	fe_mul_avx2@plt
    11838. 

  11838. #else
    11839. 

  11839.         callq	_fe_mul_avx2
    11840. 

  11840. #endif /* __APPLE__ */
    11841. 

  11841.         leaq	96(%rsp), %rdi
    11842. 

  11842.         leaq	96(%rsp), %rsi
    11843. 

  11843. #ifndef __APPLE__
    11844. 

  11844.         callq	fe_sq_avx2@plt
    11845. 

  11845. #else
    11846. 

  11846.         callq	_fe_sq_avx2
    11847. 

  11847. #endif /* __APPLE__ */
    11848. 

  11848.         leaq	96(%rsp), %rdi
    11849. 

  11849.         leaq	96(%rsp), %rsi
    11850. 

  11850.         movq	$9, %rdx
    11851. 

  11851. #ifndef __APPLE__
    11852. 

  11852.         callq	fe_sq_n_avx2@plt
    11853. 

  11853. #else
    11854. 

  11854.         callq	_fe_sq_n_avx2
    11855. 

  11855. #endif /* __APPLE__ */
    11856. 

  11856.         leaq	64(%rsp), %rdi
    11857. 

  11857.         leaq	96(%rsp), %rsi
    11858. 

  11858.         leaq	64(%rsp), %rdx
    11859. 

  11859. #ifndef __APPLE__
    11860. 

  11860.         callq	fe_mul_avx2@plt
    11861. 

  11861. #else
    11862. 

  11862.         callq	_fe_mul_avx2
    11863. 

  11863. #endif /* __APPLE__ */
    11864. 

  11864.         leaq	96(%rsp), %rdi
    11865. 

  11865.         leaq	64(%rsp), %rsi
    11866. 

  11866. #ifndef __APPLE__
    11867. 

  11867.         callq	fe_sq_avx2@plt
    11868. 

  11868. #else
    11869. 

  11869.         callq	_fe_sq_avx2
    11870. 

  11870. #endif /* __APPLE__ */
    11871. 

  11871.         leaq	96(%rsp), %rdi
    11872. 

  11872.         leaq	96(%rsp), %rsi
    11873. 

  11873.         movq	$49, %rdx
    11874. 

  11874. #ifndef __APPLE__
    11875. 

  11875.         callq	fe_sq_n_avx2@plt
    11876. 

  11876. #else
    11877. 

  11877.         callq	_fe_sq_n_avx2
    11878. 

  11878. #endif /* __APPLE__ */
    11879. 

  11879.         leaq	96(%rsp), %rdi
    11880. 

  11880.         leaq	96(%rsp), %rsi
    11881. 

  11881.         leaq	64(%rsp), %rdx
    11882. 

  11882. #ifndef __APPLE__
    11883. 

  11883.         callq	fe_mul_avx2@plt
    11884. 

  11884. #else
    11885. 

  11885.         callq	_fe_mul_avx2
    11886. 

  11886. #endif /* __APPLE__ */
    11887. 

  11887.         leaq	128(%rsp), %rdi
    11888. 

  11888.         leaq	96(%rsp), %rsi
    11889. 

  11889. #ifndef __APPLE__
    11890. 

  11890.         callq	fe_sq_avx2@plt
    11891. 

  11891. #else
    11892. 

  11892.         callq	_fe_sq_avx2
    11893. 

  11893. #endif /* __APPLE__ */
    11894. 

  11894.         leaq	128(%rsp), %rdi
    11895. 

  11895.         leaq	128(%rsp), %rsi
    11896. 

  11896.         movq	$0x63, %rdx
    11897. 

  11897. #ifndef __APPLE__
    11898. 

  11898.         callq	fe_sq_n_avx2@plt
    11899. 

  11899. #else
    11900. 

  11900.         callq	_fe_sq_n_avx2
    11901. 

  11901. #endif /* __APPLE__ */
    11902. 

  11902.         leaq	96(%rsp), %rdi
    11903. 

  11903.         leaq	128(%rsp), %rsi
    11904. 

  11904.         leaq	96(%rsp), %rdx
    11905. 

  11905. #ifndef __APPLE__
    11906. 

  11906.         callq	fe_mul_avx2@plt
    11907. 

  11907. #else
    11908. 

  11908.         callq	_fe_mul_avx2
    11909. 

  11909. #endif /* __APPLE__ */
    11910. 

  11910.         leaq	96(%rsp), %rdi
    11911. 

  11911.         leaq	96(%rsp), %rsi
    11912. 

  11912. #ifndef __APPLE__
    11913. 

  11913.         callq	fe_sq_avx2@plt
    11914. 

  11914. #else
    11915. 

  11915.         callq	_fe_sq_avx2
    11916. 

  11916. #endif /* __APPLE__ */
    11917. 

  11917.         leaq	96(%rsp), %rdi
    11918. 

  11918.         leaq	96(%rsp), %rsi
    11919. 

  11919.         movq	$49, %rdx
    11920. 

  11920. #ifndef __APPLE__
    11921. 

  11921.         callq	fe_sq_n_avx2@plt
    11922. 

  11922. #else
    11923. 

  11923.         callq	_fe_sq_n_avx2
    11924. 

  11924. #endif /* __APPLE__ */
    11925. 

  11925.         leaq	64(%rsp), %rdi
    11926. 

  11926.         leaq	96(%rsp), %rsi
    11927. 

  11927.         leaq	64(%rsp), %rdx
    11928. 

  11928. #ifndef __APPLE__
    11929. 

  11929.         callq	fe_mul_avx2@plt
    11930. 

  11930. #else
    11931. 

  11931.         callq	_fe_mul_avx2
    11932. 

  11932. #endif /* __APPLE__ */
    11933. 

  11933.         leaq	64(%rsp), %rdi
    11934. 

  11934.         leaq	64(%rsp), %rsi
    11935. 

  11935. #ifndef __APPLE__
    11936. 

  11936.         callq	fe_sq_avx2@plt
    11937. 

  11937. #else
    11938. 

  11938.         callq	_fe_sq_avx2
    11939. 

  11939. #endif /* __APPLE__ */
    11940. 

  11940.         leaq	64(%rsp), %rdi
    11941. 

  11941.         leaq	64(%rsp), %rsi
    11942. 

  11942.         movq	$4, %rdx
    11943. 

  11943. #ifndef __APPLE__
    11944. 

  11944.         callq	fe_sq_n_avx2@plt
    11945. 

  11945. #else
    11946. 

  11946.         callq	_fe_sq_n_avx2
    11947. 

  11947. #endif /* __APPLE__ */
    11948. 

  11948.         movq	%rsp, %rdi
    11949. 

  11949.         leaq	64(%rsp), %rsi
    11950. 

  11950.         leaq	32(%rsp), %rdx
    11951. 

  11951. #ifndef __APPLE__
    11952. 

  11952.         callq	fe_mul_avx2@plt
    11953. 

  11953. #else
    11954. 

  11954.         callq	_fe_mul_avx2
    11955. 

  11955. #endif /* __APPLE__ */
    11956. 

  11956.         movq	176(%rsp), %rdi
    11957. 

  11957.         # Multiply
    11958. 

  11958.         # A[0] * B[0]
    11959. 

  11959.         movq	(%rsp), %rdx
    11960. 

  11960.         mulxq	(%rdi), %r9, %r10
    11961. 

  11961.         # A[2] * B[0]
    11962. 

  11962.         mulxq	16(%rdi), %r11, %r12
    11963. 

  11963.         # A[1] * B[0]
    11964. 

  11964.         mulxq	8(%rdi), %rcx, %rbx
    11965. 

  11965.         xorq	%rbp, %rbp
    11966. 

  11966.         adcxq	%rcx, %r10
    11967. 

  11967.         # A[1] * B[3]
    11968. 

  11968.         movq	24(%rsp), %rdx
    11969. 

  11969.         mulxq	8(%rdi), %r13, %r14
    11970. 

  11970.         adcxq	%rbx, %r11
    11971. 

  11971.         # A[0] * B[1]
    11972. 

  11972.         movq	8(%rsp), %rdx
    11973. 

  11973.         mulxq	(%rdi), %rcx, %rbx
    11974. 

  11974.         adoxq	%rcx, %r10
    11975. 

  11975.         # A[2] * B[1]
    11976. 

  11976.         mulxq	16(%rdi), %rcx, %r15
    11977. 

  11977.         adoxq	%rbx, %r11
    11978. 

  11978.         adcxq	%rcx, %r12
    11979. 

  11979.         # A[1] * B[2]
    11980. 

  11980.         movq	16(%rsp), %rdx
    11981. 

  11981.         mulxq	8(%rdi), %rcx, %rbx
    11982. 

  11982.         adcxq	%r15, %r13
    11983. 

  11983.         adoxq	%rcx, %r12
    11984. 

  11984.         adcxq	%rbp, %r14
    11985. 

  11985.         adoxq	%rbx, %r13
    11986. 

  11986.         # A[0] * B[2]
    11987. 

  11987.         mulxq	(%rdi), %rcx, %rbx
    11988. 

  11988.         adoxq	%rbp, %r14
    11989. 

  11989.         xorq	%r15, %r15
    11990. 

  11990.         adcxq	%rcx, %r11
    11991. 

  11991.         # A[1] * B[1]
    11992. 

  11992.         movq	8(%rsp), %rdx
    11993. 

  11993.         mulxq	8(%rdi), %rdx, %rcx
    11994. 

  11994.         adcxq	%rbx, %r12
    11995. 

  11995.         adoxq	%rdx, %r11
    11996. 

  11996.         # A[3] * B[1]
    11997. 

  11997.         movq	8(%rsp), %rdx
    11998. 

  11998.         adoxq	%rcx, %r12
    11999. 

  11999.         mulxq	24(%rdi), %rcx, %rbx
    12000. 

  12000.         adcxq	%rcx, %r13
    12001. 

  12001.         # A[2] * B[2]
    12002. 

  12002.         movq	16(%rsp), %rdx
    12003. 

  12003.         mulxq	16(%rdi), %rdx, %rcx
    12004. 

  12004.         adcxq	%rbx, %r14
    12005. 

  12005.         adoxq	%rdx, %r13
    12006. 

  12006.         # A[3] * B[3]
    12007. 

  12007.         movq	24(%rsp), %rdx
    12008. 

  12008.         adoxq	%rcx, %r14
    12009. 

  12009.         mulxq	24(%rdi), %rcx, %rbx
    12010. 

  12010.         adoxq	%rbp, %r15
    12011. 

  12011.         adcxq	%rcx, %r15
    12012. 

  12012.         # A[0] * B[3]
    12013. 

  12013.         mulxq	(%rdi), %rdx, %rcx
    12014. 

  12014.         adcxq	%rbx, %rbp
    12015. 

  12015.         xorq	%rbx, %rbx
    12016. 

  12016.         adcxq	%rdx, %r12
    12017. 

  12017.         # A[3] * B[0]
    12018. 

  12018.         movq	(%rsp), %rdx
    12019. 

  12019.         adcxq	%rcx, %r13
    12020. 

  12020.         mulxq	24(%rdi), %rdx, %rcx
    12021. 

  12021.         adoxq	%rdx, %r12
    12022. 

  12022.         adoxq	%rcx, %r13
    12023. 

  12023.         # A[2] * B[3]
    12024. 

  12024.         movq	24(%rsp), %rdx
    12025. 

  12025.         mulxq	16(%rdi), %rdx, %rcx
    12026. 

  12026.         adcxq	%rdx, %r14
    12027. 

  12027.         # A[3] * B[2]
    12028. 

  12028.         movq	16(%rsp), %rdx
    12029. 

  12029.         adcxq	%rcx, %r15
    12030. 

  12030.         mulxq	24(%rdi), %rcx, %rdx
    12031. 

  12031.         adcxq	%rbx, %rbp
    12032. 

  12032.         adoxq	%rcx, %r14
    12033. 

  12033.         adoxq	%rdx, %r15
    12034. 

  12034.         adoxq	%rbx, %rbp
    12035. 

  12035.         # Reduce
    12036. 

  12036.         movq	$0x7fffffffffffffff, %rbx
    12037. 

  12037.         #  Move top half into t4-t7 and remove top bit from t3
    12038. 

  12038.         shldq	$0x01, %r15, %rbp
    12039. 

  12039.         shldq	$0x01, %r14, %r15
    12040. 

  12040.         shldq	$0x01, %r13, %r14
    12041. 

  12041.         shldq	$0x01, %r12, %r13
    12042. 

  12042.         andq	%rbx, %r12
    12043. 

  12043.         #  Multiply top half by 19
    12044. 

  12044.         movq	$19, %rdx
    12045. 

  12045.         xorq	%rbx, %rbx
    12046. 

  12046.         mulxq	%r13, %rcx, %r13
    12047. 

  12047.         adcxq	%rcx, %r9
    12048. 

  12048.         adoxq	%r13, %r10
    12049. 

  12049.         mulxq	%r14, %rcx, %r14
    12050. 

  12050.         adcxq	%rcx, %r10
    12051. 

  12051.         adoxq	%r14, %r11
    12052. 

  12052.         mulxq	%r15, %rcx, %r15
    12053. 

  12053.         adcxq	%rcx, %r11
    12054. 

  12054.         adoxq	%r15, %r12
    12055. 

  12055.         mulxq	%rbp, %rbp, %rdx
    12056. 

  12056.         adcxq	%rbp, %r12
    12057. 

  12057.         adoxq	%rbx, %rdx
    12058. 

  12058.         adcxq	%rbx, %rdx
    12059. 

  12059.         #  Overflow
    12060. 

  12060.         shldq	$0x01, %r12, %rdx
    12061. 

  12061.         movq	$0x7fffffffffffffff, %rbx
    12062. 

  12062.         imulq	$19, %rdx, %rcx
    12063. 

  12063.         andq	%rbx, %r12
    12064. 

  12064.         addq	%rcx, %r9
    12065. 

  12065.         adcq	$0x00, %r10
    12066. 

  12066.         adcq	$0x00, %r11
    12067. 

  12067.         adcq	$0x00, %r12
    12068. 

  12068.         # Reduce if top bit set
    12069. 

  12069.         movq	%r12, %rdx
    12070. 

  12070.         shrq	$63, %rdx
    12071. 

  12071.         imulq	$19, %rdx, %rcx
    12072. 

  12072.         andq	%rbx, %r12
    12073. 

  12073.         addq	%rcx, %r9
    12074. 

  12074.         adcq	$0x00, %r10
    12075. 

  12075.         adcq	$0x00, %r11
    12076. 

  12076.         adcq	$0x00, %r12
    12077. 

  12077.         # Store
    12078. 

  12078.         movq	%r9, (%rdi)
    12079. 

  12079.         movq	%r10, 8(%rdi)
    12080. 

  12080.         movq	%r11, 16(%rdi)
    12081. 

  12081.         movq	%r12, 24(%rdi)
    12082. 

  12082.         xorq	%rax, %rax
    12083. 

  12083.         addq	$0xc0, %rsp
    12084. 

  12084.         popq	%rbp
    12085. 

  12085.         popq	%r15
    12086. 

  12086.         popq	%r14
    12087. 

  12087.         popq	%r13
    12088. 

  12088.         popq	%r12
    12089. 

  12089.         popq	%rbx
    12090. 

  12090.         repz retq
    12091. 

  12091. #ifndef __APPLE__
    12092. 

  12092. .size	curve25519_avx2,.-curve25519_avx2
    12093. 

  12093. #endif /* __APPLE__ */
    12094. 

  12094. #ifndef __APPLE__
    12095. 

  12095. .text
    12096. 

  12096. .globl	fe_pow22523_avx2
    12097. 

  12097. .type	fe_pow22523_avx2,@function
    12098. 

  12098. .align	16
    12099. 

  12099. fe_pow22523_avx2:
    12100. 

  12100. #else
    12101. 

  12101. .section	__TEXT,__text
    12102. 

  12102. .globl	_fe_pow22523_avx2
    12103. 

  12103. .p2align	4
    12104. 

  12104. _fe_pow22523_avx2:
    12105. 

  12105. #endif /* __APPLE__ */
    12106. 

  12106.         subq	$0x70, %rsp
    12107. 

  12107.         # pow22523
    12108. 

  12108.         movq	%rdi, 96(%rsp)
    12109. 

  12109.         movq	%rsi, 104(%rsp)
    12110. 

  12110.         movq	%rsp, %rdi
    12111. 

  12111.         movq	104(%rsp), %rsi
    12112. 

  12112. #ifndef __APPLE__
    12113. 

  12113.         callq	fe_sq_avx2@plt
    12114. 

  12114. #else
    12115. 

  12115.         callq	_fe_sq_avx2
    12116. 

  12116. #endif /* __APPLE__ */
    12117. 

  12117.         leaq	32(%rsp), %rdi
    12118. 

  12118.         movq	%rsp, %rsi
    12119. 

  12119. #ifndef __APPLE__
    12120. 

  12120.         callq	fe_sq_avx2@plt
    12121. 

  12121. #else
    12122. 

  12122.         callq	_fe_sq_avx2
    12123. 

  12123. #endif /* __APPLE__ */
    12124. 

  12124.         leaq	32(%rsp), %rdi
    12125. 

  12125.         leaq	32(%rsp), %rsi
    12126. 

  12126. #ifndef __APPLE__
    12127. 

  12127.         callq	fe_sq_avx2@plt
    12128. 

  12128. #else
    12129. 

  12129.         callq	_fe_sq_avx2
    12130. 

  12130. #endif /* __APPLE__ */
    12131. 

  12131.         leaq	32(%rsp), %rdi
    12132. 

  12132.         movq	104(%rsp), %rsi
    12133. 

  12133.         leaq	32(%rsp), %rdx
    12134. 

  12134. #ifndef __APPLE__
    12135. 

  12135.         callq	fe_mul_avx2@plt
    12136. 

  12136. #else
    12137. 

  12137.         callq	_fe_mul_avx2
    12138. 

  12138. #endif /* __APPLE__ */
    12139. 

  12139.         movq	%rsp, %rdi
    12140. 

  12140.         movq	%rsp, %rsi
    12141. 

  12141.         leaq	32(%rsp), %rdx
    12142. 

  12142. #ifndef __APPLE__
    12143. 

  12143.         callq	fe_mul_avx2@plt
    12144. 

  12144. #else
    12145. 

  12145.         callq	_fe_mul_avx2
    12146. 

  12146. #endif /* __APPLE__ */
    12147. 

  12147.         movq	%rsp, %rdi
    12148. 

  12148.         movq	%rsp, %rsi
    12149. 

  12149. #ifndef __APPLE__
    12150. 

  12150.         callq	fe_sq_avx2@plt
    12151. 

  12151. #else
    12152. 

  12152.         callq	_fe_sq_avx2
    12153. 

  12153. #endif /* __APPLE__ */
    12154. 

  12154.         movq	%rsp, %rdi
    12155. 

  12155.         leaq	32(%rsp), %rsi
    12156. 

  12156.         movq	%rsp, %rdx
    12157. 

  12157. #ifndef __APPLE__
    12158. 

  12158.         callq	fe_mul_avx2@plt
    12159. 

  12159. #else
    12160. 

  12160.         callq	_fe_mul_avx2
    12161. 

  12161. #endif /* __APPLE__ */
    12162. 

  12162.         leaq	32(%rsp), %rdi
    12163. 

  12163.         movq	%rsp, %rsi
    12164. 

  12164. #ifndef __APPLE__
    12165. 

  12165.         callq	fe_sq_avx2@plt
    12166. 

  12166. #else
    12167. 

  12167.         callq	_fe_sq_avx2
    12168. 

  12168. #endif /* __APPLE__ */
    12169. 

  12169.         leaq	32(%rsp), %rdi
    12170. 

  12170.         leaq	32(%rsp), %rsi
    12171. 

  12171.         movb	$4, %dl
    12172. 

  12172. #ifndef __APPLE__
    12173. 

  12173.         callq	fe_sq_n_avx2@plt
    12174. 

  12174. #else
    12175. 

  12175.         callq	_fe_sq_n_avx2
    12176. 

  12176. #endif /* __APPLE__ */
    12177. 

  12177.         movq	%rsp, %rdi
    12178. 

  12178.         leaq	32(%rsp), %rsi
    12179. 

  12179.         movq	%rsp, %rdx
    12180. 

  12180. #ifndef __APPLE__
    12181. 

  12181.         callq	fe_mul_avx2@plt
    12182. 

  12182. #else
    12183. 

  12183.         callq	_fe_mul_avx2
    12184. 

  12184. #endif /* __APPLE__ */
    12185. 

  12185.         leaq	32(%rsp), %rdi
    12186. 

  12186.         movq	%rsp, %rsi
    12187. 

  12187. #ifndef __APPLE__
    12188. 

  12188.         callq	fe_sq_avx2@plt
    12189. 

  12189. #else
    12190. 

  12190.         callq	_fe_sq_avx2
    12191. 

  12191. #endif /* __APPLE__ */
    12192. 

  12192.         leaq	32(%rsp), %rdi
    12193. 

  12193.         leaq	32(%rsp), %rsi
    12194. 

  12194.         movb	$9, %dl
    12195. 

  12195. #ifndef __APPLE__
    12196. 

  12196.         callq	fe_sq_n_avx2@plt
    12197. 

  12197. #else
    12198. 

  12198.         callq	_fe_sq_n_avx2
    12199. 

  12199. #endif /* __APPLE__ */
    12200. 

  12200.         leaq	32(%rsp), %rdi
    12201. 

  12201.         leaq	32(%rsp), %rsi
    12202. 

  12202.         movq	%rsp, %rdx
    12203. 

  12203. #ifndef __APPLE__
    12204. 

  12204.         callq	fe_mul_avx2@plt
    12205. 

  12205. #else
    12206. 

  12206.         callq	_fe_mul_avx2
    12207. 

  12207. #endif /* __APPLE__ */
    12208. 

  12208.         leaq	64(%rsp), %rdi
    12209. 

  12209.         leaq	32(%rsp), %rsi
    12210. 

  12210. #ifndef __APPLE__
    12211. 

  12211.         callq	fe_sq_avx2@plt
    12212. 

  12212. #else
    12213. 

  12213.         callq	_fe_sq_avx2
    12214. 

  12214. #endif /* __APPLE__ */
    12215. 

  12215.         leaq	64(%rsp), %rdi
    12216. 

  12216.         leaq	64(%rsp), %rsi
    12217. 

  12217.         movb	$19, %dl
    12218. 

  12218. #ifndef __APPLE__
    12219. 

  12219.         callq	fe_sq_n_avx2@plt
    12220. 

  12220. #else
    12221. 

  12221.         callq	_fe_sq_n_avx2
    12222. 

  12222. #endif /* __APPLE__ */
    12223. 

  12223.         leaq	32(%rsp), %rdi
    12224. 

  12224.         leaq	64(%rsp), %rsi
    12225. 

  12225.         leaq	32(%rsp), %rdx
    12226. 

  12226. #ifndef __APPLE__
    12227. 

  12227.         callq	fe_mul_avx2@plt
    12228. 

  12228. #else
    12229. 

  12229.         callq	_fe_mul_avx2
    12230. 

  12230. #endif /* __APPLE__ */
    12231. 

  12231.         leaq	32(%rsp), %rdi
    12232. 

  12232.         leaq	32(%rsp), %rsi
    12233. 

  12233. #ifndef __APPLE__
    12234. 

  12234.         callq	fe_sq_avx2@plt
    12235. 

  12235. #else
    12236. 

  12236.         callq	_fe_sq_avx2
    12237. 

  12237. #endif /* __APPLE__ */
    12238. 

  12238.         leaq	32(%rsp), %rdi
    12239. 

  12239.         leaq	32(%rsp), %rsi
    12240. 

  12240.         movb	$9, %dl
    12241. 

  12241. #ifndef __APPLE__
    12242. 

  12242.         callq	fe_sq_n_avx2@plt
    12243. 

  12243. #else
    12244. 

  12244.         callq	_fe_sq_n_avx2
    12245. 

  12245. #endif /* __APPLE__ */
    12246. 

  12246.         movq	%rsp, %rdi
    12247. 

  12247.         leaq	32(%rsp), %rsi
    12248. 

  12248.         movq	%rsp, %rdx
    12249. 

  12249. #ifndef __APPLE__
    12250. 

  12250.         callq	fe_mul_avx2@plt
    12251. 

  12251. #else
    12252. 

  12252.         callq	_fe_mul_avx2
    12253. 

  12253. #endif /* __APPLE__ */
    12254. 

  12254.         leaq	32(%rsp), %rdi
    12255. 

  12255.         movq	%rsp, %rsi
    12256. 

  12256. #ifndef __APPLE__
    12257. 

  12257.         callq	fe_sq_avx2@plt
    12258. 

  12258. #else
    12259. 

  12259.         callq	_fe_sq_avx2
    12260. 

  12260. #endif /* __APPLE__ */
    12261. 

  12261.         leaq	32(%rsp), %rdi
    12262. 

  12262.         leaq	32(%rsp), %rsi
    12263. 

  12263.         movb	$49, %dl
    12264. 

  12264. #ifndef __APPLE__
    12265. 

  12265.         callq	fe_sq_n_avx2@plt
    12266. 

  12266. #else
    12267. 

  12267.         callq	_fe_sq_n_avx2
    12268. 

  12268. #endif /* __APPLE__ */
    12269. 

  12269.         leaq	32(%rsp), %rdi
    12270. 

  12270.         leaq	32(%rsp), %rsi
    12271. 

  12271.         movq	%rsp, %rdx
    12272. 

  12272. #ifndef __APPLE__
    12273. 

  12273.         callq	fe_mul_avx2@plt
    12274. 

  12274. #else
    12275. 

  12275.         callq	_fe_mul_avx2
    12276. 

  12276. #endif /* __APPLE__ */
    12277. 

  12277.         leaq	64(%rsp), %rdi
    12278. 

  12278.         leaq	32(%rsp), %rsi
    12279. 

  12279. #ifndef __APPLE__
    12280. 

  12280.         callq	fe_sq_avx2@plt
    12281. 

  12281. #else
    12282. 

  12282.         callq	_fe_sq_avx2
    12283. 

  12283. #endif /* __APPLE__ */
    12284. 

  12284.         leaq	64(%rsp), %rdi
    12285. 

  12285.         leaq	64(%rsp), %rsi
    12286. 

  12286.         movb	$0x63, %dl
    12287. 

  12287. #ifndef __APPLE__
    12288. 

  12288.         callq	fe_sq_n_avx2@plt
    12289. 

  12289. #else
    12290. 

  12290.         callq	_fe_sq_n_avx2
    12291. 

  12291. #endif /* __APPLE__ */
    12292. 

  12292.         leaq	32(%rsp), %rdi
    12293. 

  12293.         leaq	64(%rsp), %rsi
    12294. 

  12294.         leaq	32(%rsp), %rdx
    12295. 

  12295. #ifndef __APPLE__
    12296. 

  12296.         callq	fe_mul_avx2@plt
    12297. 

  12297. #else
    12298. 

  12298.         callq	_fe_mul_avx2
    12299. 

  12299. #endif /* __APPLE__ */
    12300. 

  12300.         leaq	32(%rsp), %rdi
    12301. 

  12301.         leaq	32(%rsp), %rsi
    12302. 

  12302. #ifndef __APPLE__
    12303. 

  12303.         callq	fe_sq_avx2@plt
    12304. 

  12304. #else
    12305. 

  12305.         callq	_fe_sq_avx2
    12306. 

  12306. #endif /* __APPLE__ */
    12307. 

  12307.         leaq	32(%rsp), %rdi
    12308. 

  12308.         leaq	32(%rsp), %rsi
    12309. 

  12309.         movb	$49, %dl
    12310. 

  12310. #ifndef __APPLE__
    12311. 

  12311.         callq	fe_sq_n_avx2@plt
    12312. 

  12312. #else
    12313. 

  12313.         callq	_fe_sq_n_avx2
    12314. 

  12314. #endif /* __APPLE__ */
    12315. 

  12315.         movq	%rsp, %rdi
    12316. 

  12316.         leaq	32(%rsp), %rsi
    12317. 

  12317.         movq	%rsp, %rdx
    12318. 

  12318. #ifndef __APPLE__
    12319. 

  12319.         callq	fe_mul_avx2@plt
    12320. 

  12320. #else
    12321. 

  12321.         callq	_fe_mul_avx2
    12322. 

  12322. #endif /* __APPLE__ */
    12323. 

  12323.         movq	%rsp, %rdi
    12324. 

  12324.         movq	%rsp, %rsi
    12325. 

  12325. #ifndef __APPLE__
    12326. 

  12326.         callq	fe_sq_avx2@plt
    12327. 

  12327. #else
    12328. 

  12328.         callq	_fe_sq_avx2
    12329. 

  12329. #endif /* __APPLE__ */
    12330. 

  12330.         movq	%rsp, %rdi
    12331. 

  12331.         movq	%rsp, %rsi
    12332. 

  12332. #ifndef __APPLE__
    12333. 

  12333.         callq	fe_sq_avx2@plt
    12334. 

  12334. #else
    12335. 

  12335.         callq	_fe_sq_avx2
    12336. 

  12336. #endif /* __APPLE__ */
    12337. 

  12337.         movq	96(%rsp), %rdi
    12338. 

  12338.         movq	%rsp, %rsi
    12339. 

  12339.         movq	104(%rsp), %rdx
    12340. 

  12340. #ifndef __APPLE__
    12341. 

  12341.         callq	fe_mul_avx2@plt
    12342. 

  12342. #else
    12343. 

  12343.         callq	_fe_mul_avx2
    12344. 

  12344. #endif /* __APPLE__ */
    12345. 

  12345.         movq	104(%rsp), %rsi
    12346. 

  12346.         movq	96(%rsp), %rdi
    12347. 

  12347.         addq	$0x70, %rsp
    12348. 

  12348.         repz retq
    12349. 

  12349. #ifndef __APPLE__
    12350. 

  12350. .text
    12351. 

  12351. .globl	fe_ge_to_p2_avx2
    12352. 

  12352. .type	fe_ge_to_p2_avx2,@function
    12353. 

  12353. .align	16
    12354. 

  12354. fe_ge_to_p2_avx2:
    12355. 

  12355. #else
    12356. 

  12356. .section	__TEXT,__text
    12357. 

  12357. .globl	_fe_ge_to_p2_avx2
    12358. 

  12358. .p2align	4
    12359. 

  12359. _fe_ge_to_p2_avx2:
    12360. 

  12360. #endif /* __APPLE__ */
    12361. 

  12361.         pushq	%rbx
    12362. 

  12362.         pushq	%r12
    12363. 

  12363.         pushq	%r13
    12364. 

  12364.         pushq	%r14
    12365. 

  12365.         pushq	%r15
    12366. 

  12366.         subq	$40, %rsp
    12367. 

  12367.         movq	%rsi, (%rsp)
    12368. 

  12368.         movq	%rdx, 8(%rsp)
    12369. 

  12369.         movq	%rcx, 16(%rsp)
    12370. 

  12370.         movq	%r8, 24(%rsp)
    12371. 

  12371.         movq	%r9, 32(%rsp)
    12372. 

  12372.         movq	16(%rsp), %rsi
    12373. 

  12373.         movq	88(%rsp), %rbx
    12374. 

  12374.         # Multiply
    12375. 

  12375.         # A[0] * B[0]
    12376. 

  12376.         movq	(%rbx), %rdx
    12377. 

  12377.         mulxq	(%rsi), %r8, %r9
    12378. 

  12378.         # A[2] * B[0]
    12379. 

  12379.         mulxq	16(%rsi), %r10, %r11
    12380. 

  12380.         # A[1] * B[0]
    12381. 

  12381.         mulxq	8(%rsi), %rcx, %rax
    12382. 

  12382.         xorq	%r15, %r15
    12383. 

  12383.         adcxq	%rcx, %r9
    12384. 

  12384.         # A[1] * B[3]
    12385. 

  12385.         movq	24(%rbx), %rdx
    12386. 

  12386.         mulxq	8(%rsi), %r12, %r13
    12387. 

  12387.         adcxq	%rax, %r10
    12388. 

  12388.         # A[0] * B[1]
    12389. 

  12389.         movq	8(%rbx), %rdx
    12390. 

  12390.         mulxq	(%rsi), %rcx, %rax
    12391. 

  12391.         adoxq	%rcx, %r9
    12392. 

  12392.         # A[2] * B[1]
    12393. 

  12393.         mulxq	16(%rsi), %rcx, %r14
    12394. 

  12394.         adoxq	%rax, %r10
    12395. 

  12395.         adcxq	%rcx, %r11
    12396. 

  12396.         # A[1] * B[2]
    12397. 

  12397.         movq	16(%rbx), %rdx
    12398. 

  12398.         mulxq	8(%rsi), %rcx, %rax
    12399. 

  12399.         adcxq	%r14, %r12
    12400. 

  12400.         adoxq	%rcx, %r11
    12401. 

  12401.         adcxq	%r15, %r13
    12402. 

  12402.         adoxq	%rax, %r12
    12403. 

  12403.         # A[0] * B[2]
    12404. 

  12404.         mulxq	(%rsi), %rcx, %rax
    12405. 

  12405.         adoxq	%r15, %r13
    12406. 

  12406.         xorq	%r14, %r14
    12407. 

  12407.         adcxq	%rcx, %r10
    12408. 

  12408.         # A[1] * B[1]
    12409. 

  12409.         movq	8(%rbx), %rdx
    12410. 

  12410.         mulxq	8(%rsi), %rdx, %rcx
    12411. 

  12411.         adcxq	%rax, %r11
    12412. 

  12412.         adoxq	%rdx, %r10
    12413. 

  12413.         # A[3] * B[1]
    12414. 

  12414.         movq	8(%rbx), %rdx
    12415. 

  12415.         adoxq	%rcx, %r11
    12416. 

  12416.         mulxq	24(%rsi), %rcx, %rax
    12417. 

  12417.         adcxq	%rcx, %r12
    12418. 

  12418.         # A[2] * B[2]
    12419. 

  12419.         movq	16(%rbx), %rdx
    12420. 

  12420.         mulxq	16(%rsi), %rdx, %rcx
    12421. 

  12421.         adcxq	%rax, %r13
    12422. 

  12422.         adoxq	%rdx, %r12
    12423. 

  12423.         # A[3] * B[3]
    12424. 

  12424.         movq	24(%rbx), %rdx
    12425. 

  12425.         adoxq	%rcx, %r13
    12426. 

  12426.         mulxq	24(%rsi), %rcx, %rax
    12427. 

  12427.         adoxq	%r15, %r14
    12428. 

  12428.         adcxq	%rcx, %r14
    12429. 

  12429.         # A[0] * B[3]
    12430. 

  12430.         mulxq	(%rsi), %rdx, %rcx
    12431. 

  12431.         adcxq	%rax, %r15
    12432. 

  12432.         xorq	%rax, %rax
    12433. 

  12433.         adcxq	%rdx, %r11
    12434. 

  12434.         # A[3] * B[0]
    12435. 

  12435.         movq	(%rbx), %rdx
    12436. 

  12436.         adcxq	%rcx, %r12
    12437. 

  12437.         mulxq	24(%rsi), %rdx, %rcx
    12438. 

  12438.         adoxq	%rdx, %r11
    12439. 

  12439.         adoxq	%rcx, %r12
    12440. 

  12440.         # A[2] * B[3]
    12441. 

  12441.         movq	24(%rbx), %rdx
    12442. 

  12442.         mulxq	16(%rsi), %rdx, %rcx
    12443. 

  12443.         adcxq	%rdx, %r13
    12444. 

  12444.         # A[3] * B[2]
    12445. 

  12445.         movq	16(%rbx), %rdx
    12446. 

  12446.         adcxq	%rcx, %r14
    12447. 

  12447.         mulxq	24(%rsi), %rcx, %rdx
    12448. 

  12448.         adcxq	%rax, %r15
    12449. 

  12449.         adoxq	%rcx, %r13
    12450. 

  12450.         adoxq	%rdx, %r14
    12451. 

  12451.         adoxq	%rax, %r15
    12452. 

  12452.         # Reduce
    12453. 

  12453.         movq	$0x7fffffffffffffff, %rax
    12454. 

  12454.         #  Move top half into t4-t7 and remove top bit from t3
    12455. 

  12455.         shldq	$0x01, %r14, %r15
    12456. 

  12456.         shldq	$0x01, %r13, %r14
    12457. 

  12457.         shldq	$0x01, %r12, %r13
    12458. 

  12458.         shldq	$0x01, %r11, %r12
    12459. 

  12459.         andq	%rax, %r11
    12460. 

  12460.         #  Multiply top half by 19
    12461. 

  12461.         movq	$19, %rdx
    12462. 

  12462.         xorq	%rax, %rax
    12463. 

  12463.         mulxq	%r12, %rcx, %r12
    12464. 

  12464.         adcxq	%rcx, %r8
    12465. 

  12465.         adoxq	%r12, %r9
    12466. 

  12466.         mulxq	%r13, %rcx, %r13
    12467. 

  12467.         adcxq	%rcx, %r9
    12468. 

  12468.         adoxq	%r13, %r10
    12469. 

  12469.         mulxq	%r14, %rcx, %r14
    12470. 

  12470.         adcxq	%rcx, %r10
    12471. 

  12471.         adoxq	%r14, %r11
    12472. 

  12472.         mulxq	%r15, %r15, %rdx
    12473. 

  12473.         adcxq	%r15, %r11
    12474. 

  12474.         adoxq	%rax, %rdx
    12475. 

  12475.         adcxq	%rax, %rdx
    12476. 

  12476.         #  Overflow
    12477. 

  12477.         shldq	$0x01, %r11, %rdx
    12478. 

  12478.         movq	$0x7fffffffffffffff, %rax
    12479. 

  12479.         imulq	$19, %rdx, %rcx
    12480. 

  12480.         andq	%rax, %r11
    12481. 

  12481.         addq	%rcx, %r8
    12482. 

  12482.         adcq	$0x00, %r9
    12483. 

  12483.         adcq	$0x00, %r10
    12484. 

  12484.         adcq	$0x00, %r11
    12485. 

  12485.         # Reduce if top bit set
    12486. 

  12486.         movq	%r11, %rdx
    12487. 

  12487.         shrq	$63, %rdx
    12488. 

  12488.         imulq	$19, %rdx, %rcx
    12489. 

  12489.         andq	%rax, %r11
    12490. 

  12490.         addq	%rcx, %r8
    12491. 

  12491.         adcq	$0x00, %r9
    12492. 

  12492.         adcq	$0x00, %r10
    12493. 

  12493.         adcq	$0x00, %r11
    12494. 

  12494.         # Store
    12495. 

  12495.         movq	%r8, (%rdi)
    12496. 

  12496.         movq	%r9, 8(%rdi)
    12497. 

  12497.         movq	%r10, 16(%rdi)
    12498. 

  12498.         movq	%r11, 24(%rdi)
    12499. 

  12499.         movq	(%rsp), %rdi
    12500. 

  12500.         movq	24(%rsp), %rsi
    12501. 

  12501.         movq	32(%rsp), %rbx
    12502. 

  12502.         # Multiply
    12503. 

  12503.         # A[0] * B[0]
    12504. 

  12504.         movq	(%rbx), %rdx
    12505. 

  12505.         mulxq	(%rsi), %r8, %r9
    12506. 

  12506.         # A[2] * B[0]
    12507. 

  12507.         mulxq	16(%rsi), %r10, %r11
    12508. 

  12508.         # A[1] * B[0]
    12509. 

  12509.         mulxq	8(%rsi), %rcx, %rax
    12510. 

  12510.         xorq	%r15, %r15
    12511. 

  12511.         adcxq	%rcx, %r9
    12512. 

  12512.         # A[1] * B[3]
    12513. 

  12513.         movq	24(%rbx), %rdx
    12514. 

  12514.         mulxq	8(%rsi), %r12, %r13
    12515. 

  12515.         adcxq	%rax, %r10
    12516. 

  12516.         # A[0] * B[1]
    12517. 

  12517.         movq	8(%rbx), %rdx
    12518. 

  12518.         mulxq	(%rsi), %rcx, %rax
    12519. 

  12519.         adoxq	%rcx, %r9
    12520. 

  12520.         # A[2] * B[1]
    12521. 

  12521.         mulxq	16(%rsi), %rcx, %r14
    12522. 

  12522.         adoxq	%rax, %r10
    12523. 

  12523.         adcxq	%rcx, %r11
    12524. 

  12524.         # A[1] * B[2]
    12525. 

  12525.         movq	16(%rbx), %rdx
    12526. 

  12526.         mulxq	8(%rsi), %rcx, %rax
    12527. 

  12527.         adcxq	%r14, %r12
    12528. 

  12528.         adoxq	%rcx, %r11
    12529. 

  12529.         adcxq	%r15, %r13
    12530. 

  12530.         adoxq	%rax, %r12
    12531. 

  12531.         # A[0] * B[2]
    12532. 

  12532.         mulxq	(%rsi), %rcx, %rax
    12533. 

  12533.         adoxq	%r15, %r13
    12534. 

  12534.         xorq	%r14, %r14
    12535. 

  12535.         adcxq	%rcx, %r10
    12536. 

  12536.         # A[1] * B[1]
    12537. 

  12537.         movq	8(%rbx), %rdx
    12538. 

  12538.         mulxq	8(%rsi), %rdx, %rcx
    12539. 

  12539.         adcxq	%rax, %r11
    12540. 

  12540.         adoxq	%rdx, %r10
    12541. 

  12541.         # A[3] * B[1]
    12542. 

  12542.         movq	8(%rbx), %rdx
    12543. 

  12543.         adoxq	%rcx, %r11
    12544. 

  12544.         mulxq	24(%rsi), %rcx, %rax
    12545. 

  12545.         adcxq	%rcx, %r12
    12546. 

  12546.         # A[2] * B[2]
    12547. 

  12547.         movq	16(%rbx), %rdx
    12548. 

  12548.         mulxq	16(%rsi), %rdx, %rcx
    12549. 

  12549.         adcxq	%rax, %r13
    12550. 

  12550.         adoxq	%rdx, %r12
    12551. 

  12551.         # A[3] * B[3]
    12552. 

  12552.         movq	24(%rbx), %rdx
    12553. 

  12553.         adoxq	%rcx, %r13
    12554. 

  12554.         mulxq	24(%rsi), %rcx, %rax
    12555. 

  12555.         adoxq	%r15, %r14
    12556. 

  12556.         adcxq	%rcx, %r14
    12557. 

  12557.         # A[0] * B[3]
    12558. 

  12558.         mulxq	(%rsi), %rdx, %rcx
    12559. 

  12559.         adcxq	%rax, %r15
    12560. 

  12560.         xorq	%rax, %rax
    12561. 

  12561.         adcxq	%rdx, %r11
    12562. 

  12562.         # A[3] * B[0]
    12563. 

  12563.         movq	(%rbx), %rdx
    12564. 

  12564.         adcxq	%rcx, %r12
    12565. 

  12565.         mulxq	24(%rsi), %rdx, %rcx
    12566. 

  12566.         adoxq	%rdx, %r11
    12567. 

  12567.         adoxq	%rcx, %r12
    12568. 

  12568.         # A[2] * B[3]
    12569. 

  12569.         movq	24(%rbx), %rdx
    12570. 

  12570.         mulxq	16(%rsi), %rdx, %rcx
    12571. 

  12571.         adcxq	%rdx, %r13
    12572. 

  12572.         # A[3] * B[2]
    12573. 

  12573.         movq	16(%rbx), %rdx
    12574. 

  12574.         adcxq	%rcx, %r14
    12575. 

  12575.         mulxq	24(%rsi), %rcx, %rdx
    12576. 

  12576.         adcxq	%rax, %r15
    12577. 

  12577.         adoxq	%rcx, %r13
    12578. 

  12578.         adoxq	%rdx, %r14
    12579. 

  12579.         adoxq	%rax, %r15
    12580. 

  12580.         # Reduce
    12581. 

  12581.         movq	$0x7fffffffffffffff, %rax
    12582. 

  12582.         #  Move top half into t4-t7 and remove top bit from t3
    12583. 

  12583.         shldq	$0x01, %r14, %r15
    12584. 

  12584.         shldq	$0x01, %r13, %r14
    12585. 

  12585.         shldq	$0x01, %r12, %r13
    12586. 

  12586.         shldq	$0x01, %r11, %r12
    12587. 

  12587.         andq	%rax, %r11
    12588. 

  12588.         #  Multiply top half by 19
    12589. 

  12589.         movq	$19, %rdx
    12590. 

  12590.         xorq	%rax, %rax
    12591. 

  12591.         mulxq	%r12, %rcx, %r12
    12592. 

  12592.         adcxq	%rcx, %r8
    12593. 

  12593.         adoxq	%r12, %r9
    12594. 

  12594.         mulxq	%r13, %rcx, %r13
    12595. 

  12595.         adcxq	%rcx, %r9
    12596. 

  12596.         adoxq	%r13, %r10
    12597. 

  12597.         mulxq	%r14, %rcx, %r14
    12598. 

  12598.         adcxq	%rcx, %r10
    12599. 

  12599.         adoxq	%r14, %r11
    12600. 

  12600.         mulxq	%r15, %r15, %rdx
    12601. 

  12601.         adcxq	%r15, %r11
    12602. 

  12602.         adoxq	%rax, %rdx
    12603. 

  12603.         adcxq	%rax, %rdx
    12604. 

  12604.         #  Overflow
    12605. 

  12605.         shldq	$0x01, %r11, %rdx
    12606. 

  12606.         movq	$0x7fffffffffffffff, %rax
    12607. 

  12607.         imulq	$19, %rdx, %rcx
    12608. 

  12608.         andq	%rax, %r11
    12609. 

  12609.         addq	%rcx, %r8
    12610. 

  12610.         adcq	$0x00, %r9
    12611. 

  12611.         adcq	$0x00, %r10
    12612. 

  12612.         adcq	$0x00, %r11
    12613. 

  12613.         # Reduce if top bit set
    12614. 

  12614.         movq	%r11, %rdx
    12615. 

  12615.         shrq	$63, %rdx
    12616. 

  12616.         imulq	$19, %rdx, %rcx
    12617. 

  12617.         andq	%rax, %r11
    12618. 

  12618.         addq	%rcx, %r8
    12619. 

  12619.         adcq	$0x00, %r9
    12620. 

  12620.         adcq	$0x00, %r10
    12621. 

  12621.         adcq	$0x00, %r11
    12622. 

  12622.         # Store
    12623. 

  12623.         movq	%r8, (%rdi)
    12624. 

  12624.         movq	%r9, 8(%rdi)
    12625. 

  12625.         movq	%r10, 16(%rdi)
    12626. 

  12626.         movq	%r11, 24(%rdi)
    12627. 

  12627.         movq	8(%rsp), %rdi
    12628. 

  12628.         movq	88(%rsp), %rsi
    12629. 

  12629.         # Multiply
    12630. 

  12630.         # A[0] * B[0]
    12631. 

  12631.         movq	(%rsi), %rdx
    12632. 

  12632.         mulxq	(%rbx), %r8, %r9
    12633. 

  12633.         # A[2] * B[0]
    12634. 

  12634.         mulxq	16(%rbx), %r10, %r11
    12635. 

  12635.         # A[1] * B[0]
    12636. 

  12636.         mulxq	8(%rbx), %rcx, %rax
    12637. 

  12637.         xorq	%r15, %r15
    12638. 

  12638.         adcxq	%rcx, %r9
    12639. 

  12639.         # A[1] * B[3]
    12640. 

  12640.         movq	24(%rsi), %rdx
    12641. 

  12641.         mulxq	8(%rbx), %r12, %r13
    12642. 

  12642.         adcxq	%rax, %r10
    12643. 

  12643.         # A[0] * B[1]
    12644. 

  12644.         movq	8(%rsi), %rdx
    12645. 

  12645.         mulxq	(%rbx), %rcx, %rax
    12646. 

  12646.         adoxq	%rcx, %r9
    12647. 

  12647.         # A[2] * B[1]
    12648. 

  12648.         mulxq	16(%rbx), %rcx, %r14
    12649. 

  12649.         adoxq	%rax, %r10
    12650. 

  12650.         adcxq	%rcx, %r11
    12651. 

  12651.         # A[1] * B[2]
    12652. 

  12652.         movq	16(%rsi), %rdx
    12653. 

  12653.         mulxq	8(%rbx), %rcx, %rax
    12654. 

  12654.         adcxq	%r14, %r12
    12655. 

  12655.         adoxq	%rcx, %r11
    12656. 

  12656.         adcxq	%r15, %r13
    12657. 

  12657.         adoxq	%rax, %r12
    12658. 

  12658.         # A[0] * B[2]
    12659. 

  12659.         mulxq	(%rbx), %rcx, %rax
    12660. 

  12660.         adoxq	%r15, %r13
    12661. 

  12661.         xorq	%r14, %r14
    12662. 

  12662.         adcxq	%rcx, %r10
    12663. 

  12663.         # A[1] * B[1]
    12664. 

  12664.         movq	8(%rsi), %rdx
    12665. 

  12665.         mulxq	8(%rbx), %rdx, %rcx
    12666. 

  12666.         adcxq	%rax, %r11
    12667. 

  12667.         adoxq	%rdx, %r10
    12668. 

  12668.         # A[3] * B[1]
    12669. 

  12669.         movq	8(%rsi), %rdx
    12670. 

  12670.         adoxq	%rcx, %r11
    12671. 

  12671.         mulxq	24(%rbx), %rcx, %rax
    12672. 

  12672.         adcxq	%rcx, %r12
    12673. 

  12673.         # A[2] * B[2]
    12674. 

  12674.         movq	16(%rsi), %rdx
    12675. 

  12675.         mulxq	16(%rbx), %rdx, %rcx
    12676. 

  12676.         adcxq	%rax, %r13
    12677. 

  12677.         adoxq	%rdx, %r12
    12678. 

  12678.         # A[3] * B[3]
    12679. 

  12679.         movq	24(%rsi), %rdx
    12680. 

  12680.         adoxq	%rcx, %r13
    12681. 

  12681.         mulxq	24(%rbx), %rcx, %rax
    12682. 

  12682.         adoxq	%r15, %r14
    12683. 

  12683.         adcxq	%rcx, %r14
    12684. 

  12684.         # A[0] * B[3]
    12685. 

  12685.         mulxq	(%rbx), %rdx, %rcx
    12686. 

  12686.         adcxq	%rax, %r15
    12687. 

  12687.         xorq	%rax, %rax
    12688. 

  12688.         adcxq	%rdx, %r11
    12689. 

  12689.         # A[3] * B[0]
    12690. 

  12690.         movq	(%rsi), %rdx
    12691. 

  12691.         adcxq	%rcx, %r12
    12692. 

  12692.         mulxq	24(%rbx), %rdx, %rcx
    12693. 

  12693.         adoxq	%rdx, %r11
    12694. 

  12694.         adoxq	%rcx, %r12
    12695. 

  12695.         # A[2] * B[3]
    12696. 

  12696.         movq	24(%rsi), %rdx
    12697. 

  12697.         mulxq	16(%rbx), %rdx, %rcx
    12698. 

  12698.         adcxq	%rdx, %r13
    12699. 

  12699.         # A[3] * B[2]
    12700. 

  12700.         movq	16(%rsi), %rdx
    12701. 

  12701.         adcxq	%rcx, %r14
    12702. 

  12702.         mulxq	24(%rbx), %rcx, %rdx
    12703. 

  12703.         adcxq	%rax, %r15
    12704. 

  12704.         adoxq	%rcx, %r13
    12705. 

  12705.         adoxq	%rdx, %r14
    12706. 

  12706.         adoxq	%rax, %r15
    12707. 

  12707.         # Reduce
    12708. 

  12708.         movq	$0x7fffffffffffffff, %rax
    12709. 

  12709.         #  Move top half into t4-t7 and remove top bit from t3
    12710. 

  12710.         shldq	$0x01, %r14, %r15
    12711. 

  12711.         shldq	$0x01, %r13, %r14
    12712. 

  12712.         shldq	$0x01, %r12, %r13
    12713. 

  12713.         shldq	$0x01, %r11, %r12
    12714. 

  12714.         andq	%rax, %r11
    12715. 

  12715.         #  Multiply top half by 19
    12716. 

  12716.         movq	$19, %rdx
    12717. 

  12717.         xorq	%rax, %rax
    12718. 

  12718.         mulxq	%r12, %rcx, %r12
    12719. 

  12719.         adcxq	%rcx, %r8
    12720. 

  12720.         adoxq	%r12, %r9
    12721. 

  12721.         mulxq	%r13, %rcx, %r13
    12722. 

  12722.         adcxq	%rcx, %r9
    12723. 

  12723.         adoxq	%r13, %r10
    12724. 

  12724.         mulxq	%r14, %rcx, %r14
    12725. 

  12725.         adcxq	%rcx, %r10
    12726. 

  12726.         adoxq	%r14, %r11
    12727. 

  12727.         mulxq	%r15, %r15, %rdx
    12728. 

  12728.         adcxq	%r15, %r11
    12729. 

  12729.         adoxq	%rax, %rdx
    12730. 

  12730.         adcxq	%rax, %rdx
    12731. 

  12731.         #  Overflow
    12732. 

  12732.         shldq	$0x01, %r11, %rdx
    12733. 

  12733.         movq	$0x7fffffffffffffff, %rax
    12734. 

  12734.         imulq	$19, %rdx, %rcx
    12735. 

  12735.         andq	%rax, %r11
    12736. 

  12736.         addq	%rcx, %r8
    12737. 

  12737.         adcq	$0x00, %r9
    12738. 

  12738.         adcq	$0x00, %r10
    12739. 

  12739.         adcq	$0x00, %r11
    12740. 

  12740.         # Reduce if top bit set
    12741. 

  12741.         movq	%r11, %rdx
    12742. 

  12742.         shrq	$63, %rdx
    12743. 

  12743.         imulq	$19, %rdx, %rcx
    12744. 

  12744.         andq	%rax, %r11
    12745. 

  12745.         addq	%rcx, %r8
    12746. 

  12746.         adcq	$0x00, %r9
    12747. 

  12747.         adcq	$0x00, %r10
    12748. 

  12748.         adcq	$0x00, %r11
    12749. 

  12749.         # Store
    12750. 

  12750.         movq	%r8, (%rdi)
    12751. 

  12751.         movq	%r9, 8(%rdi)
    12752. 

  12752.         movq	%r10, 16(%rdi)
    12753. 

  12753.         movq	%r11, 24(%rdi)
    12754. 

  12754.         addq	$40, %rsp
    12755. 

  12755.         popq	%r15
    12756. 

  12756.         popq	%r14
    12757. 

  12757.         popq	%r13
    12758. 

  12758.         popq	%r12
    12759. 

  12759.         popq	%rbx
    12760. 

  12760.         repz retq
    12761. 

  12761. #ifndef __APPLE__
    12762. 

  12762. .size	fe_ge_to_p2_avx2,.-fe_ge_to_p2_avx2
    12763. 

  12763. #endif /* __APPLE__ */
    12764. 

  12764. #ifndef __APPLE__
    12765. 

  12765. .text
    12766. 

  12766. .globl	fe_ge_to_p3_avx2
    12767. 

  12767. .type	fe_ge_to_p3_avx2,@function
    12768. 

  12768. .align	16
    12769. 

  12769. fe_ge_to_p3_avx2:
    12770. 

  12770. #else
    12771. 

  12771. .section	__TEXT,__text
    12772. 

  12772. .globl	_fe_ge_to_p3_avx2
    12773. 

  12773. .p2align	4
    12774. 

  12774. _fe_ge_to_p3_avx2:
    12775. 

  12775. #endif /* __APPLE__ */
    12776. 

  12776.         pushq	%rbx
    12777. 

  12777.         pushq	%r12
    12778. 

  12778.         pushq	%r13
    12779. 

  12779.         pushq	%r14
    12780. 

  12780.         pushq	%r15
    12781. 

  12781.         subq	$40, %rsp
    12782. 

  12782.         movq	%rsi, (%rsp)
    12783. 

  12783.         movq	%rdx, 8(%rsp)
    12784. 

  12784.         movq	%rcx, 16(%rsp)
    12785. 

  12785.         movq	%r8, 24(%rsp)
    12786. 

  12786.         movq	%r9, 32(%rsp)
    12787. 

  12787.         movq	24(%rsp), %rsi
    12788. 

  12788.         movq	96(%rsp), %rbx
    12789. 

  12789.         # Multiply
    12790. 

  12790.         # A[0] * B[0]
    12791. 

  12791.         movq	(%rbx), %rdx
    12792. 

  12792.         mulxq	(%rsi), %r8, %r9
    12793. 

  12793.         # A[2] * B[0]
    12794. 

  12794.         mulxq	16(%rsi), %r10, %r11
    12795. 

  12795.         # A[1] * B[0]
    12796. 

  12796.         mulxq	8(%rsi), %rcx, %rax
    12797. 

  12797.         xorq	%r15, %r15
    12798. 

  12798.         adcxq	%rcx, %r9
    12799. 

  12799.         # A[1] * B[3]
    12800. 

  12800.         movq	24(%rbx), %rdx
    12801. 

  12801.         mulxq	8(%rsi), %r12, %r13
    12802. 

  12802.         adcxq	%rax, %r10
    12803. 

  12803.         # A[0] * B[1]
    12804. 

  12804.         movq	8(%rbx), %rdx
    12805. 

  12805.         mulxq	(%rsi), %rcx, %rax
    12806. 

  12806.         adoxq	%rcx, %r9
    12807. 

  12807.         # A[2] * B[1]
    12808. 

  12808.         mulxq	16(%rsi), %rcx, %r14
    12809. 

  12809.         adoxq	%rax, %r10
    12810. 

  12810.         adcxq	%rcx, %r11
    12811. 

  12811.         # A[1] * B[2]
    12812. 

  12812.         movq	16(%rbx), %rdx
    12813. 

  12813.         mulxq	8(%rsi), %rcx, %rax
    12814. 

  12814.         adcxq	%r14, %r12
    12815. 

  12815.         adoxq	%rcx, %r11
    12816. 

  12816.         adcxq	%r15, %r13
    12817. 

  12817.         adoxq	%rax, %r12
    12818. 

  12818.         # A[0] * B[2]
    12819. 

  12819.         mulxq	(%rsi), %rcx, %rax
    12820. 

  12820.         adoxq	%r15, %r13
    12821. 

  12821.         xorq	%r14, %r14
    12822. 

  12822.         adcxq	%rcx, %r10
    12823. 

  12823.         # A[1] * B[1]
    12824. 

  12824.         movq	8(%rbx), %rdx
    12825. 

  12825.         mulxq	8(%rsi), %rdx, %rcx
    12826. 

  12826.         adcxq	%rax, %r11
    12827. 

  12827.         adoxq	%rdx, %r10
    12828. 

  12828.         # A[3] * B[1]
    12829. 

  12829.         movq	8(%rbx), %rdx
    12830. 

  12830.         adoxq	%rcx, %r11
    12831. 

  12831.         mulxq	24(%rsi), %rcx, %rax
    12832. 

  12832.         adcxq	%rcx, %r12
    12833. 

  12833.         # A[2] * B[2]
    12834. 

  12834.         movq	16(%rbx), %rdx
    12835. 

  12835.         mulxq	16(%rsi), %rdx, %rcx
    12836. 

  12836.         adcxq	%rax, %r13
    12837. 

  12837.         adoxq	%rdx, %r12
    12838. 

  12838.         # A[3] * B[3]
    12839. 

  12839.         movq	24(%rbx), %rdx
    12840. 

  12840.         adoxq	%rcx, %r13
    12841. 

  12841.         mulxq	24(%rsi), %rcx, %rax
    12842. 

  12842.         adoxq	%r15, %r14
    12843. 

  12843.         adcxq	%rcx, %r14
    12844. 

  12844.         # A[0] * B[3]
    12845. 

  12845.         mulxq	(%rsi), %rdx, %rcx
    12846. 

  12846.         adcxq	%rax, %r15
    12847. 

  12847.         xorq	%rax, %rax
    12848. 

  12848.         adcxq	%rdx, %r11
    12849. 

  12849.         # A[3] * B[0]
    12850. 

  12850.         movq	(%rbx), %rdx
    12851. 

  12851.         adcxq	%rcx, %r12
    12852. 

  12852.         mulxq	24(%rsi), %rdx, %rcx
    12853. 

  12853.         adoxq	%rdx, %r11
    12854. 

  12854.         adoxq	%rcx, %r12
    12855. 

  12855.         # A[2] * B[3]
    12856. 

  12856.         movq	24(%rbx), %rdx
    12857. 

  12857.         mulxq	16(%rsi), %rdx, %rcx
    12858. 

  12858.         adcxq	%rdx, %r13
    12859. 

  12859.         # A[3] * B[2]
    12860. 

  12860.         movq	16(%rbx), %rdx
    12861. 

  12861.         adcxq	%rcx, %r14
    12862. 

  12862.         mulxq	24(%rsi), %rcx, %rdx
    12863. 

  12863.         adcxq	%rax, %r15
    12864. 

  12864.         adoxq	%rcx, %r13
    12865. 

  12865.         adoxq	%rdx, %r14
    12866. 

  12866.         adoxq	%rax, %r15
    12867. 

  12867.         # Reduce
    12868. 

  12868.         movq	$0x7fffffffffffffff, %rax
    12869. 

  12869.         #  Move top half into t4-t7 and remove top bit from t3
    12870. 

  12870.         shldq	$0x01, %r14, %r15
    12871. 

  12871.         shldq	$0x01, %r13, %r14
    12872. 

  12872.         shldq	$0x01, %r12, %r13
    12873. 

  12873.         shldq	$0x01, %r11, %r12
    12874. 

  12874.         andq	%rax, %r11
    12875. 

  12875.         #  Multiply top half by 19
    12876. 

  12876.         movq	$19, %rdx
    12877. 

  12877.         xorq	%rax, %rax
    12878. 

  12878.         mulxq	%r12, %rcx, %r12
    12879. 

  12879.         adcxq	%rcx, %r8
    12880. 

  12880.         adoxq	%r12, %r9
    12881. 

  12881.         mulxq	%r13, %rcx, %r13
    12882. 

  12882.         adcxq	%rcx, %r9
    12883. 

  12883.         adoxq	%r13, %r10
    12884. 

  12884.         mulxq	%r14, %rcx, %r14
    12885. 

  12885.         adcxq	%rcx, %r10
    12886. 

  12886.         adoxq	%r14, %r11
    12887. 

  12887.         mulxq	%r15, %r15, %rdx
    12888. 

  12888.         adcxq	%r15, %r11
    12889. 

  12889.         adoxq	%rax, %rdx
    12890. 

  12890.         adcxq	%rax, %rdx
    12891. 

  12891.         #  Overflow
    12892. 

  12892.         shldq	$0x01, %r11, %rdx
    12893. 

  12893.         movq	$0x7fffffffffffffff, %rax
    12894. 

  12894.         imulq	$19, %rdx, %rcx
    12895. 

  12895.         andq	%rax, %r11
    12896. 

  12896.         addq	%rcx, %r8
    12897. 

  12897.         adcq	$0x00, %r9
    12898. 

  12898.         adcq	$0x00, %r10
    12899. 

  12899.         adcq	$0x00, %r11
    12900. 

  12900.         # Reduce if top bit set
    12901. 

  12901.         movq	%r11, %rdx
    12902. 

  12902.         shrq	$63, %rdx
    12903. 

  12903.         imulq	$19, %rdx, %rcx
    12904. 

  12904.         andq	%rax, %r11
    12905. 

  12905.         addq	%rcx, %r8
    12906. 

  12906.         adcq	$0x00, %r9
    12907. 

  12907.         adcq	$0x00, %r10
    12908. 

  12908.         adcq	$0x00, %r11
    12909. 

  12909.         # Store
    12910. 

  12910.         movq	%r8, (%rdi)
    12911. 

  12911.         movq	%r9, 8(%rdi)
    12912. 

  12912.         movq	%r10, 16(%rdi)
    12913. 

  12913.         movq	%r11, 24(%rdi)
    12914. 

  12914.         movq	(%rsp), %rdi
    12915. 

  12915.         movq	32(%rsp), %rsi
    12916. 

  12916.         movq	88(%rsp), %rbx
    12917. 

  12917.         # Multiply
    12918. 

  12918.         # A[0] * B[0]
    12919. 

  12919.         movq	(%rbx), %rdx
    12920. 

  12920.         mulxq	(%rsi), %r8, %r9
    12921. 

  12921.         # A[2] * B[0]
    12922. 

  12922.         mulxq	16(%rsi), %r10, %r11
    12923. 

  12923.         # A[1] * B[0]
    12924. 

  12924.         mulxq	8(%rsi), %rcx, %rax
    12925. 

  12925.         xorq	%r15, %r15
    12926. 

  12926.         adcxq	%rcx, %r9
    12927. 

  12927.         # A[1] * B[3]
    12928. 

  12928.         movq	24(%rbx), %rdx
    12929. 

  12929.         mulxq	8(%rsi), %r12, %r13
    12930. 

  12930.         adcxq	%rax, %r10
    12931. 

  12931.         # A[0] * B[1]
    12932. 

  12932.         movq	8(%rbx), %rdx
    12933. 

  12933.         mulxq	(%rsi), %rcx, %rax
    12934. 

  12934.         adoxq	%rcx, %r9
    12935. 

  12935.         # A[2] * B[1]
    12936. 

  12936.         mulxq	16(%rsi), %rcx, %r14
    12937. 

  12937.         adoxq	%rax, %r10
    12938. 

  12938.         adcxq	%rcx, %r11
    12939. 

  12939.         # A[1] * B[2]
    12940. 

  12940.         movq	16(%rbx), %rdx
    12941. 

  12941.         mulxq	8(%rsi), %rcx, %rax
    12942. 

  12942.         adcxq	%r14, %r12
    12943. 

  12943.         adoxq	%rcx, %r11
    12944. 

  12944.         adcxq	%r15, %r13
    12945. 

  12945.         adoxq	%rax, %r12
    12946. 

  12946.         # A[0] * B[2]
    12947. 

  12947.         mulxq	(%rsi), %rcx, %rax
    12948. 

  12948.         adoxq	%r15, %r13
    12949. 

  12949.         xorq	%r14, %r14
    12950. 

  12950.         adcxq	%rcx, %r10
    12951. 

  12951.         # A[1] * B[1]
    12952. 

  12952.         movq	8(%rbx), %rdx
    12953. 

  12953.         mulxq	8(%rsi), %rdx, %rcx
    12954. 

  12954.         adcxq	%rax, %r11
    12955. 

  12955.         adoxq	%rdx, %r10
    12956. 

  12956.         # A[3] * B[1]
    12957. 

  12957.         movq	8(%rbx), %rdx
    12958. 

  12958.         adoxq	%rcx, %r11
    12959. 

  12959.         mulxq	24(%rsi), %rcx, %rax
    12960. 

  12960.         adcxq	%rcx, %r12
    12961. 

  12961.         # A[2] * B[2]
    12962. 

  12962.         movq	16(%rbx), %rdx
    12963. 

  12963.         mulxq	16(%rsi), %rdx, %rcx
    12964. 

  12964.         adcxq	%rax, %r13
    12965. 

  12965.         adoxq	%rdx, %r12
    12966. 

  12966.         # A[3] * B[3]
    12967. 

  12967.         movq	24(%rbx), %rdx
    12968. 

  12968.         adoxq	%rcx, %r13
    12969. 

  12969.         mulxq	24(%rsi), %rcx, %rax
    12970. 

  12970.         adoxq	%r15, %r14
    12971. 

  12971.         adcxq	%rcx, %r14
    12972. 

  12972.         # A[0] * B[3]
    12973. 

  12973.         mulxq	(%rsi), %rdx, %rcx
    12974. 

  12974.         adcxq	%rax, %r15
    12975. 

  12975.         xorq	%rax, %rax
    12976. 

  12976.         adcxq	%rdx, %r11
    12977. 

  12977.         # A[3] * B[0]
    12978. 

  12978.         movq	(%rbx), %rdx
    12979. 

  12979.         adcxq	%rcx, %r12
    12980. 

  12980.         mulxq	24(%rsi), %rdx, %rcx
    12981. 

  12981.         adoxq	%rdx, %r11
    12982. 

  12982.         adoxq	%rcx, %r12
    12983. 

  12983.         # A[2] * B[3]
    12984. 

  12984.         movq	24(%rbx), %rdx
    12985. 

  12985.         mulxq	16(%rsi), %rdx, %rcx
    12986. 

  12986.         adcxq	%rdx, %r13
    12987. 

  12987.         # A[3] * B[2]
    12988. 

  12988.         movq	16(%rbx), %rdx
    12989. 

  12989.         adcxq	%rcx, %r14
    12990. 

  12990.         mulxq	24(%rsi), %rcx, %rdx
    12991. 

  12991.         adcxq	%rax, %r15
    12992. 

  12992.         adoxq	%rcx, %r13
    12993. 

  12993.         adoxq	%rdx, %r14
    12994. 

  12994.         adoxq	%rax, %r15
    12995. 

  12995.         # Reduce
    12996. 

  12996.         movq	$0x7fffffffffffffff, %rax
    12997. 

  12997.         #  Move top half into t4-t7 and remove top bit from t3
    12998. 

  12998.         shldq	$0x01, %r14, %r15
    12999. 

  12999.         shldq	$0x01, %r13, %r14
    13000. 

  13000.         shldq	$0x01, %r12, %r13
    13001. 

  13001.         shldq	$0x01, %r11, %r12
    13002. 

  13002.         andq	%rax, %r11
    13003. 

  13003.         #  Multiply top half by 19
    13004. 

  13004.         movq	$19, %rdx
    13005. 

  13005.         xorq	%rax, %rax
    13006. 

  13006.         mulxq	%r12, %rcx, %r12
    13007. 

  13007.         adcxq	%rcx, %r8
    13008. 

  13008.         adoxq	%r12, %r9
    13009. 

  13009.         mulxq	%r13, %rcx, %r13
    13010. 

  13010.         adcxq	%rcx, %r9
    13011. 

  13011.         adoxq	%r13, %r10
    13012. 

  13012.         mulxq	%r14, %rcx, %r14
    13013. 

  13013.         adcxq	%rcx, %r10
    13014. 

  13014.         adoxq	%r14, %r11
    13015. 

  13015.         mulxq	%r15, %r15, %rdx
    13016. 

  13016.         adcxq	%r15, %r11
    13017. 

  13017.         adoxq	%rax, %rdx
    13018. 

  13018.         adcxq	%rax, %rdx
    13019. 

  13019.         #  Overflow
    13020. 

  13020.         shldq	$0x01, %r11, %rdx
    13021. 

  13021.         movq	$0x7fffffffffffffff, %rax
    13022. 

  13022.         imulq	$19, %rdx, %rcx
    13023. 

  13023.         andq	%rax, %r11
    13024. 

  13024.         addq	%rcx, %r8
    13025. 

  13025.         adcq	$0x00, %r9
    13026. 

  13026.         adcq	$0x00, %r10
    13027. 

  13027.         adcq	$0x00, %r11
    13028. 

  13028.         # Reduce if top bit set
    13029. 

  13029.         movq	%r11, %rdx
    13030. 

  13030.         shrq	$63, %rdx
    13031. 

  13031.         imulq	$19, %rdx, %rcx
    13032. 

  13032.         andq	%rax, %r11
    13033. 

  13033.         addq	%rcx, %r8
    13034. 

  13034.         adcq	$0x00, %r9
    13035. 

  13035.         adcq	$0x00, %r10
    13036. 

  13036.         adcq	$0x00, %r11
    13037. 

  13037.         # Store
    13038. 

  13038.         movq	%r8, (%rdi)
    13039. 

  13039.         movq	%r9, 8(%rdi)
    13040. 

  13040.         movq	%r10, 16(%rdi)
    13041. 

  13041.         movq	%r11, 24(%rdi)
    13042. 

  13042.         movq	8(%rsp), %rdi
    13043. 

  13043.         movq	96(%rsp), %rsi
    13044. 

  13044.         # Multiply
    13045. 

  13045.         # A[0] * B[0]
    13046. 

  13046.         movq	(%rsi), %rdx
    13047. 

  13047.         mulxq	(%rbx), %r8, %r9
    13048. 

  13048.         # A[2] * B[0]
    13049. 

  13049.         mulxq	16(%rbx), %r10, %r11
    13050. 

  13050.         # A[1] * B[0]
    13051. 

  13051.         mulxq	8(%rbx), %rcx, %rax
    13052. 

  13052.         xorq	%r15, %r15
    13053. 

  13053.         adcxq	%rcx, %r9
    13054. 

  13054.         # A[1] * B[3]
    13055. 

  13055.         movq	24(%rsi), %rdx
    13056. 

  13056.         mulxq	8(%rbx), %r12, %r13
    13057. 

  13057.         adcxq	%rax, %r10
    13058. 

  13058.         # A[0] * B[1]
    13059. 

  13059.         movq	8(%rsi), %rdx
    13060. 

  13060.         mulxq	(%rbx), %rcx, %rax
    13061. 

  13061.         adoxq	%rcx, %r9
    13062. 

  13062.         # A[2] * B[1]
    13063. 

  13063.         mulxq	16(%rbx), %rcx, %r14
    13064. 

  13064.         adoxq	%rax, %r10
    13065. 

  13065.         adcxq	%rcx, %r11
    13066. 

  13066.         # A[1] * B[2]
    13067. 

  13067.         movq	16(%rsi), %rdx
    13068. 

  13068.         mulxq	8(%rbx), %rcx, %rax
    13069. 

  13069.         adcxq	%r14, %r12
    13070. 

  13070.         adoxq	%rcx, %r11
    13071. 

  13071.         adcxq	%r15, %r13
    13072. 

  13072.         adoxq	%rax, %r12
    13073. 

  13073.         # A[0] * B[2]
    13074. 

  13074.         mulxq	(%rbx), %rcx, %rax
    13075. 

  13075.         adoxq	%r15, %r13
    13076. 

  13076.         xorq	%r14, %r14
    13077. 

  13077.         adcxq	%rcx, %r10
    13078. 

  13078.         # A[1] * B[1]
    13079. 

  13079.         movq	8(%rsi), %rdx
    13080. 

  13080.         mulxq	8(%rbx), %rdx, %rcx
    13081. 

  13081.         adcxq	%rax, %r11
    13082. 

  13082.         adoxq	%rdx, %r10
    13083. 

  13083.         # A[3] * B[1]
    13084. 

  13084.         movq	8(%rsi), %rdx
    13085. 

  13085.         adoxq	%rcx, %r11
    13086. 

  13086.         mulxq	24(%rbx), %rcx, %rax
    13087. 

  13087.         adcxq	%rcx, %r12
    13088. 

  13088.         # A[2] * B[2]
    13089. 

  13089.         movq	16(%rsi), %rdx
    13090. 

  13090.         mulxq	16(%rbx), %rdx, %rcx
    13091. 

  13091.         adcxq	%rax, %r13
    13092. 

  13092.         adoxq	%rdx, %r12
    13093. 

  13093.         # A[3] * B[3]
    13094. 

  13094.         movq	24(%rsi), %rdx
    13095. 

  13095.         adoxq	%rcx, %r13
    13096. 

  13096.         mulxq	24(%rbx), %rcx, %rax
    13097. 

  13097.         adoxq	%r15, %r14
    13098. 

  13098.         adcxq	%rcx, %r14
    13099. 

  13099.         # A[0] * B[3]
    13100. 

  13100.         mulxq	(%rbx), %rdx, %rcx
    13101. 

  13101.         adcxq	%rax, %r15
    13102. 

  13102.         xorq	%rax, %rax
    13103. 

  13103.         adcxq	%rdx, %r11
    13104. 

  13104.         # A[3] * B[0]
    13105. 

  13105.         movq	(%rsi), %rdx
    13106. 

  13106.         adcxq	%rcx, %r12
    13107. 

  13107.         mulxq	24(%rbx), %rdx, %rcx
    13108. 

  13108.         adoxq	%rdx, %r11
    13109. 

  13109.         adoxq	%rcx, %r12
    13110. 

  13110.         # A[2] * B[3]
    13111. 

  13111.         movq	24(%rsi), %rdx
    13112. 

  13112.         mulxq	16(%rbx), %rdx, %rcx
    13113. 

  13113.         adcxq	%rdx, %r13
    13114. 

  13114.         # A[3] * B[2]
    13115. 

  13115.         movq	16(%rsi), %rdx
    13116. 

  13116.         adcxq	%rcx, %r14
    13117. 

  13117.         mulxq	24(%rbx), %rcx, %rdx
    13118. 

  13118.         adcxq	%rax, %r15
    13119. 

  13119.         adoxq	%rcx, %r13
    13120. 

  13120.         adoxq	%rdx, %r14
    13121. 

  13121.         adoxq	%rax, %r15
    13122. 

  13122.         # Reduce
    13123. 

  13123.         movq	$0x7fffffffffffffff, %rax
    13124. 

  13124.         #  Move top half into t4-t7 and remove top bit from t3
    13125. 

  13125.         shldq	$0x01, %r14, %r15
    13126. 

  13126.         shldq	$0x01, %r13, %r14
    13127. 

  13127.         shldq	$0x01, %r12, %r13
    13128. 

  13128.         shldq	$0x01, %r11, %r12
    13129. 

  13129.         andq	%rax, %r11
    13130. 

  13130.         #  Multiply top half by 19
    13131. 

  13131.         movq	$19, %rdx
    13132. 

  13132.         xorq	%rax, %rax
    13133. 

  13133.         mulxq	%r12, %rcx, %r12
    13134. 

  13134.         adcxq	%rcx, %r8
    13135. 

  13135.         adoxq	%r12, %r9
    13136. 

  13136.         mulxq	%r13, %rcx, %r13
    13137. 

  13137.         adcxq	%rcx, %r9
    13138. 

  13138.         adoxq	%r13, %r10
    13139. 

  13139.         mulxq	%r14, %rcx, %r14
    13140. 

  13140.         adcxq	%rcx, %r10
    13141. 

  13141.         adoxq	%r14, %r11
    13142. 

  13142.         mulxq	%r15, %r15, %rdx
    13143. 

  13143.         adcxq	%r15, %r11
    13144. 

  13144.         adoxq	%rax, %rdx
    13145. 

  13145.         adcxq	%rax, %rdx
    13146. 

  13146.         #  Overflow
    13147. 

  13147.         shldq	$0x01, %r11, %rdx
    13148. 

  13148.         movq	$0x7fffffffffffffff, %rax
    13149. 

  13149.         imulq	$19, %rdx, %rcx
    13150. 

  13150.         andq	%rax, %r11
    13151. 

  13151.         addq	%rcx, %r8
    13152. 

  13152.         adcq	$0x00, %r9
    13153. 

  13153.         adcq	$0x00, %r10
    13154. 

  13154.         adcq	$0x00, %r11
    13155. 

  13155.         # Reduce if top bit set
    13156. 

  13156.         movq	%r11, %rdx
    13157. 

  13157.         shrq	$63, %rdx
    13158. 

  13158.         imulq	$19, %rdx, %rcx
    13159. 

  13159.         andq	%rax, %r11
    13160. 

  13160.         addq	%rcx, %r8
    13161. 

  13161.         adcq	$0x00, %r9
    13162. 

  13162.         adcq	$0x00, %r10
    13163. 

  13163.         adcq	$0x00, %r11
    13164. 

  13164.         # Store
    13165. 

  13165.         movq	%r8, (%rdi)
    13166. 

  13166.         movq	%r9, 8(%rdi)
    13167. 

  13167.         movq	%r10, 16(%rdi)
    13168. 

  13168.         movq	%r11, 24(%rdi)
    13169. 

  13169.         movq	16(%rsp), %rdi
    13170. 

  13170.         movq	24(%rsp), %rsi
    13171. 

  13171.         movq	32(%rsp), %rbx
    13172. 

  13172.         # Multiply
    13173. 

  13173.         # A[0] * B[0]
    13174. 

  13174.         movq	(%rbx), %rdx
    13175. 

  13175.         mulxq	(%rsi), %r8, %r9
    13176. 

  13176.         # A[2] * B[0]
    13177. 

  13177.         mulxq	16(%rsi), %r10, %r11
    13178. 

  13178.         # A[1] * B[0]
    13179. 

  13179.         mulxq	8(%rsi), %rcx, %rax
    13180. 

  13180.         xorq	%r15, %r15
    13181. 

  13181.         adcxq	%rcx, %r9
    13182. 

  13182.         # A[1] * B[3]
    13183. 

  13183.         movq	24(%rbx), %rdx
    13184. 

  13184.         mulxq	8(%rsi), %r12, %r13
    13185. 

  13185.         adcxq	%rax, %r10
    13186. 

  13186.         # A[0] * B[1]
    13187. 

  13187.         movq	8(%rbx), %rdx
    13188. 

  13188.         mulxq	(%rsi), %rcx, %rax
    13189. 

  13189.         adoxq	%rcx, %r9
    13190. 

  13190.         # A[2] * B[1]
    13191. 

  13191.         mulxq	16(%rsi), %rcx, %r14
    13192. 

  13192.         adoxq	%rax, %r10
    13193. 

  13193.         adcxq	%rcx, %r11
    13194. 

  13194.         # A[1] * B[2]
    13195. 

  13195.         movq	16(%rbx), %rdx
    13196. 

  13196.         mulxq	8(%rsi), %rcx, %rax
    13197. 

  13197.         adcxq	%r14, %r12
    13198. 

  13198.         adoxq	%rcx, %r11
    13199. 

  13199.         adcxq	%r15, %r13
    13200. 

  13200.         adoxq	%rax, %r12
    13201. 

  13201.         # A[0] * B[2]
    13202. 

  13202.         mulxq	(%rsi), %rcx, %rax
    13203. 

  13203.         adoxq	%r15, %r13
    13204. 

  13204.         xorq	%r14, %r14
    13205. 

  13205.         adcxq	%rcx, %r10
    13206. 

  13206.         # A[1] * B[1]
    13207. 

  13207.         movq	8(%rbx), %rdx
    13208. 

  13208.         mulxq	8(%rsi), %rdx, %rcx
    13209. 

  13209.         adcxq	%rax, %r11
    13210. 

  13210.         adoxq	%rdx, %r10
    13211. 

  13211.         # A[3] * B[1]
    13212. 

  13212.         movq	8(%rbx), %rdx
    13213. 

  13213.         adoxq	%rcx, %r11
    13214. 

  13214.         mulxq	24(%rsi), %rcx, %rax
    13215. 

  13215.         adcxq	%rcx, %r12
    13216. 

  13216.         # A[2] * B[2]
    13217. 

  13217.         movq	16(%rbx), %rdx
    13218. 

  13218.         mulxq	16(%rsi), %rdx, %rcx
    13219. 

  13219.         adcxq	%rax, %r13
    13220. 

  13220.         adoxq	%rdx, %r12
    13221. 

  13221.         # A[3] * B[3]
    13222. 

  13222.         movq	24(%rbx), %rdx
    13223. 

  13223.         adoxq	%rcx, %r13
    13224. 

  13224.         mulxq	24(%rsi), %rcx, %rax
    13225. 

  13225.         adoxq	%r15, %r14
    13226. 

  13226.         adcxq	%rcx, %r14
    13227. 

  13227.         # A[0] * B[3]
    13228. 

  13228.         mulxq	(%rsi), %rdx, %rcx
    13229. 

  13229.         adcxq	%rax, %r15
    13230. 

  13230.         xorq	%rax, %rax
    13231. 

  13231.         adcxq	%rdx, %r11
    13232. 

  13232.         # A[3] * B[0]
    13233. 

  13233.         movq	(%rbx), %rdx
    13234. 

  13234.         adcxq	%rcx, %r12
    13235. 

  13235.         mulxq	24(%rsi), %rdx, %rcx
    13236. 

  13236.         adoxq	%rdx, %r11
    13237. 

  13237.         adoxq	%rcx, %r12
    13238. 

  13238.         # A[2] * B[3]
    13239. 

  13239.         movq	24(%rbx), %rdx
    13240. 

  13240.         mulxq	16(%rsi), %rdx, %rcx
    13241. 

  13241.         adcxq	%rdx, %r13
    13242. 

  13242.         # A[3] * B[2]
    13243. 

  13243.         movq	16(%rbx), %rdx
    13244. 

  13244.         adcxq	%rcx, %r14
    13245. 

  13245.         mulxq	24(%rsi), %rcx, %rdx
    13246. 

  13246.         adcxq	%rax, %r15
    13247. 

  13247.         adoxq	%rcx, %r13
    13248. 

  13248.         adoxq	%rdx, %r14
    13249. 

  13249.         adoxq	%rax, %r15
    13250. 

  13250.         # Reduce
    13251. 

  13251.         movq	$0x7fffffffffffffff, %rax
    13252. 

  13252.         #  Move top half into t4-t7 and remove top bit from t3
    13253. 

  13253.         shldq	$0x01, %r14, %r15
    13254. 

  13254.         shldq	$0x01, %r13, %r14
    13255. 

  13255.         shldq	$0x01, %r12, %r13
    13256. 

  13256.         shldq	$0x01, %r11, %r12
    13257. 

  13257.         andq	%rax, %r11
    13258. 

  13258.         #  Multiply top half by 19
    13259. 

  13259.         movq	$19, %rdx
    13260. 

  13260.         xorq	%rax, %rax
    13261. 

  13261.         mulxq	%r12, %rcx, %r12
    13262. 

  13262.         adcxq	%rcx, %r8
    13263. 

  13263.         adoxq	%r12, %r9
    13264. 

  13264.         mulxq	%r13, %rcx, %r13
    13265. 

  13265.         adcxq	%rcx, %r9
    13266. 

  13266.         adoxq	%r13, %r10
    13267. 

  13267.         mulxq	%r14, %rcx, %r14
    13268. 

  13268.         adcxq	%rcx, %r10
    13269. 

  13269.         adoxq	%r14, %r11
    13270. 

  13270.         mulxq	%r15, %r15, %rdx
    13271. 

  13271.         adcxq	%r15, %r11
    13272. 

  13272.         adoxq	%rax, %rdx
    13273. 

  13273.         adcxq	%rax, %rdx
    13274. 

  13274.         #  Overflow
    13275. 

  13275.         shldq	$0x01, %r11, %rdx
    13276. 

  13276.         movq	$0x7fffffffffffffff, %rax
    13277. 

  13277.         imulq	$19, %rdx, %rcx
    13278. 

  13278.         andq	%rax, %r11
    13279. 

  13279.         addq	%rcx, %r8
    13280. 

  13280.         adcq	$0x00, %r9
    13281. 

  13281.         adcq	$0x00, %r10
    13282. 

  13282.         adcq	$0x00, %r11
    13283. 

  13283.         # Reduce if top bit set
    13284. 

  13284.         movq	%r11, %rdx
    13285. 

  13285.         shrq	$63, %rdx
    13286. 

  13286.         imulq	$19, %rdx, %rcx
    13287. 

  13287.         andq	%rax, %r11
    13288. 

  13288.         addq	%rcx, %r8
    13289. 

  13289.         adcq	$0x00, %r9
    13290. 

  13290.         adcq	$0x00, %r10
    13291. 

  13291.         adcq	$0x00, %r11
    13292. 

  13292.         # Store
    13293. 

  13293.         movq	%r8, (%rdi)
    13294. 

  13294.         movq	%r9, 8(%rdi)
    13295. 

  13295.         movq	%r10, 16(%rdi)
    13296. 

  13296.         movq	%r11, 24(%rdi)
    13297. 

  13297.         addq	$40, %rsp
    13298. 

  13298.         popq	%r15
    13299. 

  13299.         popq	%r14
    13300. 

  13300.         popq	%r13
    13301. 

  13301.         popq	%r12
    13302. 

  13302.         popq	%rbx
    13303. 

  13303.         repz retq
    13304. 

  13304. #ifndef __APPLE__
    13305. 

  13305. .size	fe_ge_to_p3_avx2,.-fe_ge_to_p3_avx2
    13306. 

  13306. #endif /* __APPLE__ */
    13307. 

  13307. #ifndef __APPLE__
    13308. 

  13308. .text
    13309. 

  13309. .globl	fe_ge_dbl_avx2
    13310. 

  13310. .type	fe_ge_dbl_avx2,@function
    13311. 

  13311. .align	16
    13312. 

  13312. fe_ge_dbl_avx2:
    13313. 

  13313. #else
    13314. 

  13314. .section	__TEXT,__text
    13315. 

  13315. .globl	_fe_ge_dbl_avx2
    13316. 

  13316. .p2align	4
    13317. 

  13317. _fe_ge_dbl_avx2:
    13318. 

  13318. #endif /* __APPLE__ */
    13319. 

  13319.         pushq	%rbp
    13320. 

  13320.         pushq	%rbx
    13321. 

  13321.         pushq	%r12
    13322. 

  13322.         pushq	%r13
    13323. 

  13323.         pushq	%r14
    13324. 

  13324.         pushq	%r15
    13325. 

  13325.         subq	$48, %rsp
    13326. 

  13326.         movq	%rdi, (%rsp)
    13327. 

  13327.         movq	%rsi, 8(%rsp)
    13328. 

  13328.         movq	%rdx, 16(%rsp)
    13329. 

  13329.         movq	%rcx, 24(%rsp)
    13330. 

  13330.         movq	%r8, 32(%rsp)
    13331. 

  13331.         movq	%r9, 40(%rsp)
    13332. 

  13332.         movq	32(%rsp), %rsi
    13333. 

  13333.         # Square
    13334. 

  13334.         # A[0] * A[1]
    13335. 

  13335.         movq	(%rsi), %rdx
    13336. 

  13336.         mulxq	8(%rsi), %r9, %r10
    13337. 

  13337.         # A[0] * A[3]
    13338. 

  13338.         mulxq	24(%rsi), %r11, %r12
    13339. 

  13339.         # A[2] * A[1]
    13340. 

  13340.         movq	16(%rsi), %rdx
    13341. 

  13341.         mulxq	8(%rsi), %rcx, %rax
    13342. 

  13342.         xorq	%r15, %r15
    13343. 

  13343.         adoxq	%rcx, %r11
    13344. 

  13344.         # A[2] * A[3]
    13345. 

  13345.         mulxq	24(%rsi), %r13, %r14
    13346. 

  13346.         adoxq	%rax, %r12
    13347. 

  13347.         # A[2] * A[0]
    13348. 

  13348.         mulxq	(%rsi), %rcx, %rax
    13349. 

  13349.         adoxq	%r15, %r13
    13350. 

  13350.         adcxq	%rcx, %r10
    13351. 

  13351.         adoxq	%r15, %r14
    13352. 

  13352.         # A[1] * A[3]
    13353. 

  13353.         movq	8(%rsi), %rdx
    13354. 

  13354.         mulxq	24(%rsi), %rbp, %r8
    13355. 

  13355.         adcxq	%rax, %r11
    13356. 

  13356.         adcxq	%rbp, %r12
    13357. 

  13357.         adcxq	%r8, %r13
    13358. 

  13358.         adcxq	%r15, %r14
    13359. 

  13359.         # Double with Carry Flag
    13360. 

  13360.         xorq	%r15, %r15
    13361. 

  13361.         # A[0] * A[0]
    13362. 

  13362.         movq	(%rsi), %rdx
    13363. 

  13363.         mulxq	%rdx, %r8, %rbp
    13364. 

  13364.         adcxq	%r9, %r9
    13365. 

  13365.         # A[1] * A[1]
    13366. 

  13366.         movq	8(%rsi), %rdx
    13367. 

  13367.         mulxq	%rdx, %rcx, %rax
    13368. 

  13368.         adcxq	%r10, %r10
    13369. 

  13369.         adoxq	%rbp, %r9
    13370. 

  13370.         adcxq	%r11, %r11
    13371. 

  13371.         adoxq	%rcx, %r10
    13372. 

  13372.         # A[2] * A[2]
    13373. 

  13373.         movq	16(%rsi), %rdx
    13374. 

  13374.         mulxq	%rdx, %rbp, %rcx
    13375. 

  13375.         adcxq	%r12, %r12
    13376. 

  13376.         adoxq	%rax, %r11
    13377. 

  13377.         adcxq	%r13, %r13
    13378. 

  13378.         adoxq	%rbp, %r12
    13379. 

  13379.         # A[3] * A[3]
    13380. 

  13380.         movq	24(%rsi), %rdx
    13381. 

  13381.         mulxq	%rdx, %rbp, %rax
    13382. 

  13382.         adcxq	%r14, %r14
    13383. 

  13383.         adoxq	%rcx, %r13
    13384. 

  13384.         adcxq	%r15, %r15
    13385. 

  13385.         adoxq	%rbp, %r14
    13386. 

  13386.         adoxq	%rax, %r15
    13387. 

  13387.         # Reduce
    13388. 

  13388.         movq	$0x7fffffffffffffff, %rcx
    13389. 

  13389.         #  Move top half into t4-t7 and remove top bit from t3
    13390. 

  13390.         shldq	$0x01, %r14, %r15
    13391. 

  13391.         shldq	$0x01, %r13, %r14
    13392. 

  13392.         shldq	$0x01, %r12, %r13
    13393. 

  13393.         shldq	$0x01, %r11, %r12
    13394. 

  13394.         andq	%rcx, %r11
    13395. 

  13395.         #  Multiply top half by 19
    13396. 

  13396.         movq	$19, %rdx
    13397. 

  13397.         xorq	%rcx, %rcx
    13398. 

  13398.         mulxq	%r12, %rbp, %r12
    13399. 

  13399.         adcxq	%rbp, %r8
    13400. 

  13400.         adoxq	%r12, %r9
    13401. 

  13401.         mulxq	%r13, %rbp, %r13
    13402. 

  13402.         adcxq	%rbp, %r9
    13403. 

  13403.         adoxq	%r13, %r10
    13404. 

  13404.         mulxq	%r14, %rbp, %r14
    13405. 

  13405.         adcxq	%rbp, %r10
    13406. 

  13406.         adoxq	%r14, %r11
    13407. 

  13407.         mulxq	%r15, %r15, %rdx
    13408. 

  13408.         adcxq	%r15, %r11
    13409. 

  13409.         adoxq	%rcx, %rdx
    13410. 

  13410.         adcxq	%rcx, %rdx
    13411. 

  13411.         #  Overflow
    13412. 

  13412.         shldq	$0x01, %r11, %rdx
    13413. 

  13413.         movq	$0x7fffffffffffffff, %rcx
    13414. 

  13414.         imulq	$19, %rdx, %rbp
    13415. 

  13415.         andq	%rcx, %r11
    13416. 

  13416.         addq	%rbp, %r8
    13417. 

  13417.         adcq	$0x00, %r9
    13418. 

  13418.         adcq	$0x00, %r10
    13419. 

  13419.         adcq	$0x00, %r11
    13420. 

  13420.         # Reduce if top bit set
    13421. 

  13421.         movq	%r11, %rdx
    13422. 

  13422.         shrq	$63, %rdx
    13423. 

  13423.         imulq	$19, %rdx, %rbp
    13424. 

  13424.         andq	%rcx, %r11
    13425. 

  13425.         addq	%rbp, %r8
    13426. 

  13426.         adcq	$0x00, %r9
    13427. 

  13427.         adcq	$0x00, %r10
    13428. 

  13428.         adcq	$0x00, %r11
    13429. 

  13429.         # Store
    13430. 

  13430.         movq	%r8, (%rdi)
    13431. 

  13431.         movq	%r9, 8(%rdi)
    13432. 

  13432.         movq	%r10, 16(%rdi)
    13433. 

  13433.         movq	%r11, 24(%rdi)
    13434. 

  13434.         movq	16(%rsp), %rdi
    13435. 

  13435.         movq	40(%rsp), %rbx
    13436. 

  13436.         # Square
    13437. 

  13437.         # A[0] * A[1]
    13438. 

  13438.         movq	(%rbx), %rdx
    13439. 

  13439.         mulxq	8(%rbx), %r9, %r10
    13440. 

  13440.         # A[0] * A[3]
    13441. 

  13441.         mulxq	24(%rbx), %r11, %r12
    13442. 

  13442.         # A[2] * A[1]
    13443. 

  13443.         movq	16(%rbx), %rdx
    13444. 

  13444.         mulxq	8(%rbx), %rcx, %rax
    13445. 

  13445.         xorq	%r15, %r15
    13446. 

  13446.         adoxq	%rcx, %r11
    13447. 

  13447.         # A[2] * A[3]
    13448. 

  13448.         mulxq	24(%rbx), %r13, %r14
    13449. 

  13449.         adoxq	%rax, %r12
    13450. 

  13450.         # A[2] * A[0]
    13451. 

  13451.         mulxq	(%rbx), %rcx, %rax
    13452. 

  13452.         adoxq	%r15, %r13
    13453. 

  13453.         adcxq	%rcx, %r10
    13454. 

  13454.         adoxq	%r15, %r14
    13455. 

  13455.         # A[1] * A[3]
    13456. 

  13456.         movq	8(%rbx), %rdx
    13457. 

  13457.         mulxq	24(%rbx), %rbp, %r8
    13458. 

  13458.         adcxq	%rax, %r11
    13459. 

  13459.         adcxq	%rbp, %r12
    13460. 

  13460.         adcxq	%r8, %r13
    13461. 

  13461.         adcxq	%r15, %r14
    13462. 

  13462.         # Double with Carry Flag
    13463. 

  13463.         xorq	%r15, %r15
    13464. 

  13464.         # A[0] * A[0]
    13465. 

  13465.         movq	(%rbx), %rdx
    13466. 

  13466.         mulxq	%rdx, %r8, %rbp
    13467. 

  13467.         adcxq	%r9, %r9
    13468. 

  13468.         # A[1] * A[1]
    13469. 

  13469.         movq	8(%rbx), %rdx
    13470. 

  13470.         mulxq	%rdx, %rcx, %rax
    13471. 

  13471.         adcxq	%r10, %r10
    13472. 

  13472.         adoxq	%rbp, %r9
    13473. 

  13473.         adcxq	%r11, %r11
    13474. 

  13474.         adoxq	%rcx, %r10
    13475. 

  13475.         # A[2] * A[2]
    13476. 

  13476.         movq	16(%rbx), %rdx
    13477. 

  13477.         mulxq	%rdx, %rbp, %rcx
    13478. 

  13478.         adcxq	%r12, %r12
    13479. 

  13479.         adoxq	%rax, %r11
    13480. 

  13480.         adcxq	%r13, %r13
    13481. 

  13481.         adoxq	%rbp, %r12
    13482. 

  13482.         # A[3] * A[3]
    13483. 

  13483.         movq	24(%rbx), %rdx
    13484. 

  13484.         mulxq	%rdx, %rbp, %rax
    13485. 

  13485.         adcxq	%r14, %r14
    13486. 

  13486.         adoxq	%rcx, %r13
    13487. 

  13487.         adcxq	%r15, %r15
    13488. 

  13488.         adoxq	%rbp, %r14
    13489. 

  13489.         adoxq	%rax, %r15
    13490. 

  13490.         # Reduce
    13491. 

  13491.         movq	$0x7fffffffffffffff, %rcx
    13492. 

  13492.         #  Move top half into t4-t7 and remove top bit from t3
    13493. 

  13493.         shldq	$0x01, %r14, %r15
    13494. 

  13494.         shldq	$0x01, %r13, %r14
    13495. 

  13495.         shldq	$0x01, %r12, %r13
    13496. 

  13496.         shldq	$0x01, %r11, %r12
    13497. 

  13497.         andq	%rcx, %r11
    13498. 

  13498.         #  Multiply top half by 19
    13499. 

  13499.         movq	$19, %rdx
    13500. 

  13500.         xorq	%rcx, %rcx
    13501. 

  13501.         mulxq	%r12, %rbp, %r12
    13502. 

  13502.         adcxq	%rbp, %r8
    13503. 

  13503.         adoxq	%r12, %r9
    13504. 

  13504.         mulxq	%r13, %rbp, %r13
    13505. 

  13505.         adcxq	%rbp, %r9
    13506. 

  13506.         adoxq	%r13, %r10
    13507. 

  13507.         mulxq	%r14, %rbp, %r14
    13508. 

  13508.         adcxq	%rbp, %r10
    13509. 

  13509.         adoxq	%r14, %r11
    13510. 

  13510.         mulxq	%r15, %r15, %rdx
    13511. 

  13511.         adcxq	%r15, %r11
    13512. 

  13512.         adoxq	%rcx, %rdx
    13513. 

  13513.         adcxq	%rcx, %rdx
    13514. 

  13514.         #  Overflow
    13515. 

  13515.         shldq	$0x01, %r11, %rdx
    13516. 

  13516.         movq	$0x7fffffffffffffff, %rcx
    13517. 

  13517.         imulq	$19, %rdx, %rbp
    13518. 

  13518.         andq	%rcx, %r11
    13519. 

  13519.         addq	%rbp, %r8
    13520. 

  13520.         adcq	$0x00, %r9
    13521. 

  13521.         adcq	$0x00, %r10
    13522. 

  13522.         adcq	$0x00, %r11
    13523. 

  13523.         # Reduce if top bit set
    13524. 

  13524.         movq	%r11, %rdx
    13525. 

  13525.         shrq	$63, %rdx
    13526. 

  13526.         imulq	$19, %rdx, %rbp
    13527. 

  13527.         andq	%rcx, %r11
    13528. 

  13528.         addq	%rbp, %r8
    13529. 

  13529.         adcq	$0x00, %r9
    13530. 

  13530.         adcq	$0x00, %r10
    13531. 

  13531.         adcq	$0x00, %r11
    13532. 

  13532.         # Store
    13533. 

  13533.         movq	%r8, (%rdi)
    13534. 

  13534.         movq	%r9, 8(%rdi)
    13535. 

  13535.         movq	%r10, 16(%rdi)
    13536. 

  13536.         movq	%r11, 24(%rdi)
    13537. 

  13537.         movq	8(%rsp), %rdi
    13538. 

  13538.         # Add
    13539. 

  13539.         movq	(%rsi), %r8
    13540. 

  13540.         movq	8(%rsi), %r9
    13541. 

  13541.         addq	(%rbx), %r8
    13542. 

  13542.         movq	16(%rsi), %r10
    13543. 

  13543.         adcq	8(%rbx), %r9
    13544. 

  13544.         movq	24(%rsi), %rdx
    13545. 

  13545.         adcq	16(%rbx), %r10
    13546. 

  13546.         movq	$-19, %rcx
    13547. 

  13547.         adcq	24(%rbx), %rdx
    13548. 

  13548.         movq	$0x7fffffffffffffff, %rax
    13549. 

  13549.         movq	%rdx, %r11
    13550. 

  13550.         sarq	$63, %rdx
    13551. 

  13551.         #   Mask the modulus
    13552. 

  13552.         andq	%rdx, %rcx
    13553. 

  13553.         andq	%rdx, %rax
    13554. 

  13554.         #   Sub modulus (if overflow)
    13555. 

  13555.         subq	%rcx, %r8
    13556. 

  13556.         sbbq	%rdx, %r9
    13557. 

  13557.         sbbq	%rdx, %r10
    13558. 

  13558.         sbbq	%rax, %r11
    13559. 

  13559.         movq	%r8, (%rdi)
    13560. 

  13560.         movq	%r9, 8(%rdi)
    13561. 

  13561.         movq	%r10, 16(%rdi)
    13562. 

  13562.         movq	%r11, 24(%rdi)
    13563. 

  13563.         movq	24(%rsp), %rsi
    13564. 

  13564.         # Square
    13565. 

  13565.         # A[0] * A[1]
    13566. 

  13566.         movq	(%rdi), %rdx
    13567. 

  13567.         mulxq	8(%rdi), %r9, %r10
    13568. 

  13568.         # A[0] * A[3]
    13569. 

  13569.         mulxq	24(%rdi), %r11, %r12
    13570. 

  13570.         # A[2] * A[1]
    13571. 

  13571.         movq	16(%rdi), %rdx
    13572. 

  13572.         mulxq	8(%rdi), %rcx, %rax
    13573. 

  13573.         xorq	%r15, %r15
    13574. 

  13574.         adoxq	%rcx, %r11
    13575. 

  13575.         # A[2] * A[3]
    13576. 

  13576.         mulxq	24(%rdi), %r13, %r14
    13577. 

  13577.         adoxq	%rax, %r12
    13578. 

  13578.         # A[2] * A[0]
    13579. 

  13579.         mulxq	(%rdi), %rcx, %rax
    13580. 

  13580.         adoxq	%r15, %r13
    13581. 

  13581.         adcxq	%rcx, %r10
    13582. 

  13582.         adoxq	%r15, %r14
    13583. 

  13583.         # A[1] * A[3]
    13584. 

  13584.         movq	8(%rdi), %rdx
    13585. 

  13585.         mulxq	24(%rdi), %rbp, %r8
    13586. 

  13586.         adcxq	%rax, %r11
    13587. 

  13587.         adcxq	%rbp, %r12
    13588. 

  13588.         adcxq	%r8, %r13
    13589. 

  13589.         adcxq	%r15, %r14
    13590. 

  13590.         # Double with Carry Flag
    13591. 

  13591.         xorq	%r15, %r15
    13592. 

  13592.         # A[0] * A[0]
    13593. 

  13593.         movq	(%rdi), %rdx
    13594. 

  13594.         mulxq	%rdx, %r8, %rbp
    13595. 

  13595.         adcxq	%r9, %r9
    13596. 

  13596.         # A[1] * A[1]
    13597. 

  13597.         movq	8(%rdi), %rdx
    13598. 

  13598.         mulxq	%rdx, %rcx, %rax
    13599. 

  13599.         adcxq	%r10, %r10
    13600. 

  13600.         adoxq	%rbp, %r9
    13601. 

  13601.         adcxq	%r11, %r11
    13602. 

  13602.         adoxq	%rcx, %r10
    13603. 

  13603.         # A[2] * A[2]
    13604. 

  13604.         movq	16(%rdi), %rdx
    13605. 

  13605.         mulxq	%rdx, %rbp, %rcx
    13606. 

  13606.         adcxq	%r12, %r12
    13607. 

  13607.         adoxq	%rax, %r11
    13608. 

  13608.         adcxq	%r13, %r13
    13609. 

  13609.         adoxq	%rbp, %r12
    13610. 

  13610.         # A[3] * A[3]
    13611. 

  13611.         movq	24(%rdi), %rdx
    13612. 

  13612.         mulxq	%rdx, %rbp, %rax
    13613. 

  13613.         adcxq	%r14, %r14
    13614. 

  13614.         adoxq	%rcx, %r13
    13615. 

  13615.         adcxq	%r15, %r15
    13616. 

  13616.         adoxq	%rbp, %r14
    13617. 

  13617.         adoxq	%rax, %r15
    13618. 

  13618.         # Reduce
    13619. 

  13619.         movq	$0x7fffffffffffffff, %rcx
    13620. 

  13620.         #  Move top half into t4-t7 and remove top bit from t3
    13621. 

  13621.         shldq	$0x01, %r14, %r15
    13622. 

  13622.         shldq	$0x01, %r13, %r14
    13623. 

  13623.         shldq	$0x01, %r12, %r13
    13624. 

  13624.         shldq	$0x01, %r11, %r12
    13625. 

  13625.         andq	%rcx, %r11
    13626. 

  13626.         #  Multiply top half by 19
    13627. 

  13627.         movq	$19, %rdx
    13628. 

  13628.         xorq	%rcx, %rcx
    13629. 

  13629.         mulxq	%r12, %rbp, %r12
    13630. 

  13630.         adcxq	%rbp, %r8
    13631. 

  13631.         adoxq	%r12, %r9
    13632. 

  13632.         mulxq	%r13, %rbp, %r13
    13633. 

  13633.         adcxq	%rbp, %r9
    13634. 

  13634.         adoxq	%r13, %r10
    13635. 

  13635.         mulxq	%r14, %rbp, %r14
    13636. 

  13636.         adcxq	%rbp, %r10
    13637. 

  13637.         adoxq	%r14, %r11
    13638. 

  13638.         mulxq	%r15, %r15, %rdx
    13639. 

  13639.         adcxq	%r15, %r11
    13640. 

  13640.         adoxq	%rcx, %rdx
    13641. 

  13641.         adcxq	%rcx, %rdx
    13642. 

  13642.         #  Overflow
    13643. 

  13643.         shldq	$0x01, %r11, %rdx
    13644. 

  13644.         movq	$0x7fffffffffffffff, %rcx
    13645. 

  13645.         imulq	$19, %rdx, %rbp
    13646. 

  13646.         andq	%rcx, %r11
    13647. 

  13647.         addq	%rbp, %r8
    13648. 

  13648.         adcq	$0x00, %r9
    13649. 

  13649.         adcq	$0x00, %r10
    13650. 

  13650.         adcq	$0x00, %r11
    13651. 

  13651.         # Reduce if top bit set
    13652. 

  13652.         movq	%r11, %rdx
    13653. 

  13653.         shrq	$63, %rdx
    13654. 

  13654.         imulq	$19, %rdx, %rbp
    13655. 

  13655.         andq	%rcx, %r11
    13656. 

  13656.         addq	%rbp, %r8
    13657. 

  13657.         adcq	$0x00, %r9
    13658. 

  13658.         adcq	$0x00, %r10
    13659. 

  13659.         adcq	$0x00, %r11
    13660. 

  13660.         # Store
    13661. 

  13661.         movq	%r8, (%rsi)
    13662. 

  13662.         movq	%r9, 8(%rsi)
    13663. 

  13663.         movq	%r10, 16(%rsi)
    13664. 

  13664.         movq	%r11, 24(%rsi)
    13665. 

  13665.         movq	16(%rsp), %rsi
    13666. 

  13666.         movq	(%rsp), %rbx
    13667. 

  13667.         # Add
    13668. 

  13668.         movq	(%rsi), %r8
    13669. 

  13669.         movq	8(%rsi), %r9
    13670. 

  13670.         movq	16(%rsi), %r10
    13671. 

  13671.         movq	24(%rsi), %rdx
    13672. 

  13672.         movq	%r8, %r12
    13673. 

  13673.         addq	(%rbx), %r8
    13674. 

  13674.         movq	%r9, %r13
    13675. 

  13675.         adcq	8(%rbx), %r9
    13676. 

  13676.         movq	%r10, %r14
    13677. 

  13677.         adcq	16(%rbx), %r10
    13678. 

  13678.         movq	%rdx, %r15
    13679. 

  13679.         adcq	24(%rbx), %rdx
    13680. 

  13680.         movq	$-19, %rcx
    13681. 

  13681.         movq	%rdx, %r11
    13682. 

  13682.         movq	$0x7fffffffffffffff, %rax
    13683. 

  13683.         sarq	$63, %rdx
    13684. 

  13684.         #   Mask the modulus
    13685. 

  13685.         andq	%rdx, %rcx
    13686. 

  13686.         andq	%rdx, %rax
    13687. 

  13687.         #   Sub modulus (if overflow)
    13688. 

  13688.         subq	%rcx, %r8
    13689. 

  13689.         sbbq	%rdx, %r9
    13690. 

  13690.         sbbq	%rdx, %r10
    13691. 

  13691.         sbbq	%rax, %r11
    13692. 

  13692.         # Sub
    13693. 

  13693.         subq	(%rbx), %r12
    13694. 

  13694.         movq	$0x00, %rdx
    13695. 

  13695.         sbbq	8(%rbx), %r13
    13696. 

  13696.         movq	$-19, %rcx
    13697. 

  13697.         sbbq	16(%rbx), %r14
    13698. 

  13698.         movq	$0x7fffffffffffffff, %rax
    13699. 

  13699.         sbbq	24(%rbx), %r15
    13700. 

  13700.         sbbq	$0x00, %rdx
    13701. 

  13701.         #   Mask the modulus
    13702. 

  13702.         andq	%rdx, %rcx
    13703. 

  13703.         andq	%rdx, %rax
    13704. 

  13704.         #   Add modulus (if underflow)
    13705. 

  13705.         addq	%rcx, %r12
    13706. 

  13706.         adcq	%rdx, %r13
    13707. 

  13707.         adcq	%rdx, %r14
    13708. 

  13708.         adcq	%rax, %r15
    13709. 

  13709.         movq	%r8, (%rdi)
    13710. 

  13710.         movq	%r9, 8(%rdi)
    13711. 

  13711.         movq	%r10, 16(%rdi)
    13712. 

  13712.         movq	%r11, 24(%rdi)
    13713. 

  13713.         movq	%r12, (%rsi)
    13714. 

  13714.         movq	%r13, 8(%rsi)
    13715. 

  13715.         movq	%r14, 16(%rsi)
    13716. 

  13716.         movq	%r15, 24(%rsi)
    13717. 

  13717.         movq	24(%rsp), %rsi
    13718. 

  13718.         # Sub
    13719. 

  13719.         movq	(%rsi), %r8
    13720. 

  13720.         movq	8(%rsi), %r9
    13721. 

  13721.         movq	16(%rsi), %r10
    13722. 

  13722.         movq	24(%rsi), %r11
    13723. 

  13723.         subq	(%rdi), %r8
    13724. 

  13724.         movq	$0x00, %rdx
    13725. 

  13725.         sbbq	8(%rdi), %r9
    13726. 

  13726.         movq	$-19, %rcx
    13727. 

  13727.         sbbq	16(%rdi), %r10
    13728. 

  13728.         movq	$0x7fffffffffffffff, %rax
    13729. 

  13729.         sbbq	24(%rdi), %r11
    13730. 

  13730.         sbbq	$0x00, %rdx
    13731. 

  13731.         #   Mask the modulus
    13732. 

  13732.         andq	%rdx, %rcx
    13733. 

  13733.         andq	%rdx, %rax
    13734. 

  13734.         #   Add modulus (if underflow)
    13735. 

  13735.         addq	%rcx, %r8
    13736. 

  13736.         adcq	%rdx, %r9
    13737. 

  13737.         adcq	%rdx, %r10
    13738. 

  13738.         adcq	%rax, %r11
    13739. 

  13739.         movq	%r8, (%rbx)
    13740. 

  13740.         movq	%r9, 8(%rbx)
    13741. 

  13741.         movq	%r10, 16(%rbx)
    13742. 

  13742.         movq	%r11, 24(%rbx)
    13743. 

  13743.         movq	104(%rsp), %rdi
    13744. 

  13744.         # Square * 2
    13745. 

  13745.         # A[0] * A[1]
    13746. 

  13746.         movq	(%rdi), %rdx
    13747. 

  13747.         mulxq	8(%rdi), %r9, %r10
    13748. 

  13748.         # A[0] * A[3]
    13749. 

  13749.         mulxq	24(%rdi), %r11, %r12
    13750. 

  13750.         # A[2] * A[1]
    13751. 

  13751.         movq	16(%rdi), %rdx
    13752. 

  13752.         mulxq	8(%rdi), %rcx, %rax
    13753. 

  13753.         xorq	%r15, %r15
    13754. 

  13754.         adoxq	%rcx, %r11
    13755. 

  13755.         # A[2] * A[3]
    13756. 

  13756.         mulxq	24(%rdi), %r13, %r14
    13757. 

  13757.         adoxq	%rax, %r12
    13758. 

  13758.         # A[2] * A[0]
    13759. 

  13759.         mulxq	(%rdi), %rcx, %rax
    13760. 

  13760.         adoxq	%r15, %r13
    13761. 

  13761.         adcxq	%rcx, %r10
    13762. 

  13762.         adoxq	%r15, %r14
    13763. 

  13763.         # A[1] * A[3]
    13764. 

  13764.         movq	8(%rdi), %rdx
    13765. 

  13765.         mulxq	24(%rdi), %rbp, %r8
    13766. 

  13766.         adcxq	%rax, %r11
    13767. 

  13767.         adcxq	%rbp, %r12
    13768. 

  13768.         adcxq	%r8, %r13
    13769. 

  13769.         adcxq	%r15, %r14
    13770. 

  13770.         # Double with Carry Flag
    13771. 

  13771.         xorq	%r15, %r15
    13772. 

  13772.         # A[0] * A[0]
    13773. 

  13773.         movq	(%rdi), %rdx
    13774. 

  13774.         mulxq	%rdx, %r8, %rbp
    13775. 

  13775.         adcxq	%r9, %r9
    13776. 

  13776.         # A[1] * A[1]
    13777. 

  13777.         movq	8(%rdi), %rdx
    13778. 

  13778.         mulxq	%rdx, %rcx, %rax
    13779. 

  13779.         adcxq	%r10, %r10
    13780. 

  13780.         adoxq	%rbp, %r9
    13781. 

  13781.         adcxq	%r11, %r11
    13782. 

  13782.         adoxq	%rcx, %r10
    13783. 

  13783.         # A[2] * A[2]
    13784. 

  13784.         movq	16(%rdi), %rdx
    13785. 

  13785.         mulxq	%rdx, %rbp, %rcx
    13786. 

  13786.         adcxq	%r12, %r12
    13787. 

  13787.         adoxq	%rax, %r11
    13788. 

  13788.         adcxq	%r13, %r13
    13789. 

  13789.         adoxq	%rbp, %r12
    13790. 

  13790.         # A[3] * A[3]
    13791. 

  13791.         movq	24(%rdi), %rdx
    13792. 

  13792.         mulxq	%rdx, %rbp, %rax
    13793. 

  13793.         adcxq	%r14, %r14
    13794. 

  13794.         adoxq	%rcx, %r13
    13795. 

  13795.         adcxq	%r15, %r15
    13796. 

  13796.         adoxq	%rbp, %r14
    13797. 

  13797.         adoxq	%rax, %r15
    13798. 

  13798.         # Reduce
    13799. 

  13799.         movq	$0x7fffffffffffffff, %rax
    13800. 

  13800.         xorq	%rbp, %rbp
    13801. 

  13801.         #  Move top half into t4-t7 and remove top bit from t3 and double
    13802. 

  13802.         shldq	$3, %r15, %rbp
    13803. 

  13803.         shldq	$2, %r14, %r15
    13804. 

  13804.         shldq	$2, %r13, %r14
    13805. 

  13805.         shldq	$2, %r12, %r13
    13806. 

  13806.         shldq	$2, %r11, %r12
    13807. 

  13807.         shldq	$0x01, %r10, %r11
    13808. 

  13808.         shldq	$0x01, %r9, %r10
    13809. 

  13809.         shldq	$0x01, %r8, %r9
    13810. 

  13810.         shlq	$0x01, %r8
    13811. 

  13811.         andq	%rax, %r11
    13812. 

  13812.         #  Two out left, one in right
    13813. 

  13813.         andq	%rax, %r15
    13814. 

  13814.         #  Multiply top bits by 19*19
    13815. 

  13815.         imulq	$0x169, %rbp, %rcx
    13816. 

  13816.         xorq	%rax, %rax
    13817. 

  13817.         #  Multiply top half by 19
    13818. 

  13818.         movq	$19, %rdx
    13819. 

  13819.         adoxq	%rcx, %r8
    13820. 

  13820.         mulxq	%r12, %rbp, %r12
    13821. 

  13821.         adcxq	%rbp, %r8
    13822. 

  13822.         adoxq	%r12, %r9
    13823. 

  13823.         mulxq	%r13, %rbp, %r13
    13824. 

  13824.         adcxq	%rbp, %r9
    13825. 

  13825.         adoxq	%r13, %r10
    13826. 

  13826.         mulxq	%r14, %rbp, %r14
    13827. 

  13827.         adcxq	%rbp, %r10
    13828. 

  13828.         adoxq	%r14, %r11
    13829. 

  13829.         mulxq	%r15, %r15, %rdx
    13830. 

  13830.         adcxq	%r15, %r11
    13831. 

  13831.         adoxq	%rax, %rdx
    13832. 

  13832.         adcxq	%rax, %rdx
    13833. 

  13833.         #  Overflow
    13834. 

  13834.         shldq	$0x01, %r11, %rdx
    13835. 

  13835.         movq	$0x7fffffffffffffff, %rax
    13836. 

  13836.         imulq	$19, %rdx, %rbp
    13837. 

  13837.         andq	%rax, %r11
    13838. 

  13838.         addq	%rbp, %r8
    13839. 

  13839.         adcq	$0x00, %r9
    13840. 

  13840.         adcq	$0x00, %r10
    13841. 

  13841.         adcq	$0x00, %r11
    13842. 

  13842.         # Reduce if top bit set
    13843. 

  13843.         movq	%r11, %rdx
    13844. 

  13844.         shrq	$63, %rdx
    13845. 

  13845.         imulq	$19, %rdx, %rbp
    13846. 

  13846.         andq	%rax, %r11
    13847. 

  13847.         addq	%rbp, %r8
    13848. 

  13848.         adcq	$0x00, %r9
    13849. 

  13849.         adcq	$0x00, %r10
    13850. 

  13850.         adcq	$0x00, %r11
    13851. 

  13851.         # Store
    13852. 

  13852.         movq	%r8, (%rsi)
    13853. 

  13853.         movq	%r9, 8(%rsi)
    13854. 

  13854.         movq	%r10, 16(%rsi)
    13855. 

  13855.         movq	%r11, 24(%rsi)
    13856. 

  13856.         movq	16(%rsp), %rdi
    13857. 

  13857.         # Sub
    13858. 

  13858.         movq	(%rsi), %r8
    13859. 

  13859.         movq	8(%rsi), %r9
    13860. 

  13860.         movq	16(%rsi), %r10
    13861. 

  13861.         movq	24(%rsi), %r11
    13862. 

  13862.         subq	(%rdi), %r8
    13863. 

  13863.         movq	$0x00, %rdx
    13864. 

  13864.         sbbq	8(%rdi), %r9
    13865. 

  13865.         movq	$-19, %rcx
    13866. 

  13866.         sbbq	16(%rdi), %r10
    13867. 

  13867.         movq	$0x7fffffffffffffff, %rax
    13868. 

  13868.         sbbq	24(%rdi), %r11
    13869. 

  13869.         sbbq	$0x00, %rdx
    13870. 

  13870.         #   Mask the modulus
    13871. 

  13871.         andq	%rdx, %rcx
    13872. 

  13872.         andq	%rdx, %rax
    13873. 

  13873.         #   Add modulus (if underflow)
    13874. 

  13874.         addq	%rcx, %r8
    13875. 

  13875.         adcq	%rdx, %r9
    13876. 

  13876.         adcq	%rdx, %r10
    13877. 

  13877.         adcq	%rax, %r11
    13878. 

  13878.         movq	%r8, (%rsi)
    13879. 

  13879.         movq	%r9, 8(%rsi)
    13880. 

  13880.         movq	%r10, 16(%rsi)
    13881. 

  13881.         movq	%r11, 24(%rsi)
    13882. 

  13882.         addq	$48, %rsp
    13883. 

  13883.         popq	%r15
    13884. 

  13884.         popq	%r14
    13885. 

  13885.         popq	%r13
    13886. 

  13886.         popq	%r12
    13887. 

  13887.         popq	%rbx
    13888. 

  13888.         popq	%rbp
    13889. 

  13889.         repz retq
    13890. 

  13890. #ifndef __APPLE__
    13891. 

  13891. .size	fe_ge_dbl_avx2,.-fe_ge_dbl_avx2
    13892. 

  13892. #endif /* __APPLE__ */
    13893. 

  13893. #ifndef __APPLE__
    13894. 

  13894. .text
    13895. 

  13895. .globl	fe_ge_madd_avx2
    13896. 

  13896. .type	fe_ge_madd_avx2,@function
    13897. 

  13897. .align	16
    13898. 

  13898. fe_ge_madd_avx2:
    13899. 

  13899. #else
    13900. 

  13900. .section	__TEXT,__text
    13901. 

  13901. .globl	_fe_ge_madd_avx2
    13902. 

  13902. .p2align	4
    13903. 

  13903. _fe_ge_madd_avx2:
    13904. 

  13904. #endif /* __APPLE__ */
    13905. 

  13905.         pushq	%rbp
    13906. 

  13906.         pushq	%rbx
    13907. 

  13907.         pushq	%r12
    13908. 

  13908.         pushq	%r13
    13909. 

  13909.         pushq	%r14
    13910. 

  13910.         pushq	%r15
    13911. 

  13911.         subq	$48, %rsp
    13912. 

  13912.         movq	%rdi, (%rsp)
    13913. 

  13913.         movq	%rsi, 8(%rsp)
    13914. 

  13914.         movq	%rdx, 16(%rsp)
    13915. 

  13915.         movq	%rcx, 24(%rsp)
    13916. 

  13916.         movq	%r8, 32(%rsp)
    13917. 

  13917.         movq	%r9, 40(%rsp)
    13918. 

  13918.         movq	8(%rsp), %rsi
    13919. 

  13919.         movq	40(%rsp), %rbx
    13920. 

  13920.         movq	32(%rsp), %rbp
    13921. 

  13921.         # Add
    13922. 

  13922.         movq	(%rbx), %r8
    13923. 

  13923.         movq	8(%rbx), %r9
    13924. 

  13924.         movq	16(%rbx), %r10
    13925. 

  13925.         movq	24(%rbx), %rdx
    13926. 

  13926.         movq	%r8, %r12
    13927. 

  13927.         addq	(%rbp), %r8
    13928. 

  13928.         movq	%r9, %r13
    13929. 

  13929.         adcq	8(%rbp), %r9
    13930. 

  13930.         movq	%r10, %r14
    13931. 

  13931.         adcq	16(%rbp), %r10
    13932. 

  13932.         movq	%rdx, %r15
    13933. 

  13933.         adcq	24(%rbp), %rdx
    13934. 

  13934.         movq	$-19, %rcx
    13935. 

  13935.         movq	%rdx, %r11
    13936. 

  13936.         movq	$0x7fffffffffffffff, %rax
    13937. 

  13937.         sarq	$63, %rdx
    13938. 

  13938.         #   Mask the modulus
    13939. 

  13939.         andq	%rdx, %rcx
    13940. 

  13940.         andq	%rdx, %rax
    13941. 

  13941.         #   Sub modulus (if overflow)
    13942. 

  13942.         subq	%rcx, %r8
    13943. 

  13943.         sbbq	%rdx, %r9
    13944. 

  13944.         sbbq	%rdx, %r10
    13945. 

  13945.         sbbq	%rax, %r11
    13946. 

  13946.         # Sub
    13947. 

  13947.         subq	(%rbp), %r12
    13948. 

  13948.         movq	$0x00, %rdx
    13949. 

  13949.         sbbq	8(%rbp), %r13
    13950. 

  13950.         movq	$-19, %rcx
    13951. 

  13951.         sbbq	16(%rbp), %r14
    13952. 

  13952.         movq	$0x7fffffffffffffff, %rax
    13953. 

  13953.         sbbq	24(%rbp), %r15
    13954. 

  13954.         sbbq	$0x00, %rdx
    13955. 

  13955.         #   Mask the modulus
    13956. 

  13956.         andq	%rdx, %rcx
    13957. 

  13957.         andq	%rdx, %rax
    13958. 

  13958.         #   Add modulus (if underflow)
    13959. 

  13959.         addq	%rcx, %r12
    13960. 

  13960.         adcq	%rdx, %r13
    13961. 

  13961.         adcq	%rdx, %r14
    13962. 

  13962.         adcq	%rax, %r15
    13963. 

  13963.         movq	%r8, (%rdi)
    13964. 

  13964.         movq	%r9, 8(%rdi)
    13965. 

  13965.         movq	%r10, 16(%rdi)
    13966. 

  13966.         movq	%r11, 24(%rdi)
    13967. 

  13967.         movq	%r12, (%rsi)
    13968. 

  13968.         movq	%r13, 8(%rsi)
    13969. 

  13969.         movq	%r14, 16(%rsi)
    13970. 

  13970.         movq	%r15, 24(%rsi)
    13971. 

  13971.         movq	16(%rsp), %rbx
    13972. 

  13972.         movq	128(%rsp), %rbp
    13973. 

  13973.         # Multiply
    13974. 

  13974.         # A[0] * B[0]
    13975. 

  13975.         movq	(%rbp), %rdx
    13976. 

  13976.         mulxq	(%rdi), %r8, %r9
    13977. 

  13977.         # A[2] * B[0]
    13978. 

  13978.         mulxq	16(%rdi), %r10, %r11
    13979. 

  13979.         # A[1] * B[0]
    13980. 

  13980.         mulxq	8(%rdi), %rcx, %rax
    13981. 

  13981.         xorq	%r15, %r15
    13982. 

  13982.         adcxq	%rcx, %r9
    13983. 

  13983.         # A[1] * B[3]
    13984. 

  13984.         movq	24(%rbp), %rdx
    13985. 

  13985.         mulxq	8(%rdi), %r12, %r13
    13986. 

  13986.         adcxq	%rax, %r10
    13987. 

  13987.         # A[0] * B[1]
    13988. 

  13988.         movq	8(%rbp), %rdx
    13989. 

  13989.         mulxq	(%rdi), %rcx, %rax
    13990. 

  13990.         adoxq	%rcx, %r9
    13991. 

  13991.         # A[2] * B[1]
    13992. 

  13992.         mulxq	16(%rdi), %rcx, %r14
    13993. 

  13993.         adoxq	%rax, %r10
    13994. 

  13994.         adcxq	%rcx, %r11
    13995. 

  13995.         # A[1] * B[2]
    13996. 

  13996.         movq	16(%rbp), %rdx
    13997. 

  13997.         mulxq	8(%rdi), %rcx, %rax
    13998. 

  13998.         adcxq	%r14, %r12
    13999. 

  13999.         adoxq	%rcx, %r11
    14000. 

  14000.         adcxq	%r15, %r13
    14001. 

  14001.         adoxq	%rax, %r12
    14002. 

  14002.         # A[0] * B[2]
    14003. 

  14003.         mulxq	(%rdi), %rcx, %rax
    14004. 

  14004.         adoxq	%r15, %r13
    14005. 

  14005.         xorq	%r14, %r14
    14006. 

  14006.         adcxq	%rcx, %r10
    14007. 

  14007.         # A[1] * B[1]
    14008. 

  14008.         movq	8(%rbp), %rdx
    14009. 

  14009.         mulxq	8(%rdi), %rdx, %rcx
    14010. 

  14010.         adcxq	%rax, %r11
    14011. 

  14011.         adoxq	%rdx, %r10
    14012. 

  14012.         # A[3] * B[1]
    14013. 

  14013.         movq	8(%rbp), %rdx
    14014. 

  14014.         adoxq	%rcx, %r11
    14015. 

  14015.         mulxq	24(%rdi), %rcx, %rax
    14016. 

  14016.         adcxq	%rcx, %r12
    14017. 

  14017.         # A[2] * B[2]
    14018. 

  14018.         movq	16(%rbp), %rdx
    14019. 

  14019.         mulxq	16(%rdi), %rdx, %rcx
    14020. 

  14020.         adcxq	%rax, %r13
    14021. 

  14021.         adoxq	%rdx, %r12
    14022. 

  14022.         # A[3] * B[3]
    14023. 

  14023.         movq	24(%rbp), %rdx
    14024. 

  14024.         adoxq	%rcx, %r13
    14025. 

  14025.         mulxq	24(%rdi), %rcx, %rax
    14026. 

  14026.         adoxq	%r15, %r14
    14027. 

  14027.         adcxq	%rcx, %r14
    14028. 

  14028.         # A[0] * B[3]
    14029. 

  14029.         mulxq	(%rdi), %rdx, %rcx
    14030. 

  14030.         adcxq	%rax, %r15
    14031. 

  14031.         xorq	%rax, %rax
    14032. 

  14032.         adcxq	%rdx, %r11
    14033. 

  14033.         # A[3] * B[0]
    14034. 

  14034.         movq	(%rbp), %rdx
    14035. 

  14035.         adcxq	%rcx, %r12
    14036. 

  14036.         mulxq	24(%rdi), %rdx, %rcx
    14037. 

  14037.         adoxq	%rdx, %r11
    14038. 

  14038.         adoxq	%rcx, %r12
    14039. 

  14039.         # A[2] * B[3]
    14040. 

  14040.         movq	24(%rbp), %rdx
    14041. 

  14041.         mulxq	16(%rdi), %rdx, %rcx
    14042. 

  14042.         adcxq	%rdx, %r13
    14043. 

  14043.         # A[3] * B[2]
    14044. 

  14044.         movq	16(%rbp), %rdx
    14045. 

  14045.         adcxq	%rcx, %r14
    14046. 

  14046.         mulxq	24(%rdi), %rcx, %rdx
    14047. 

  14047.         adcxq	%rax, %r15
    14048. 

  14048.         adoxq	%rcx, %r13
    14049. 

  14049.         adoxq	%rdx, %r14
    14050. 

  14050.         adoxq	%rax, %r15
    14051. 

  14051.         # Reduce
    14052. 

  14052.         movq	$0x7fffffffffffffff, %rax
    14053. 

  14053.         #  Move top half into t4-t7 and remove top bit from t3
    14054. 

  14054.         shldq	$0x01, %r14, %r15
    14055. 

  14055.         shldq	$0x01, %r13, %r14
    14056. 

  14056.         shldq	$0x01, %r12, %r13
    14057. 

  14057.         shldq	$0x01, %r11, %r12
    14058. 

  14058.         andq	%rax, %r11
    14059. 

  14059.         #  Multiply top half by 19
    14060. 

  14060.         movq	$19, %rdx
    14061. 

  14061.         xorq	%rax, %rax
    14062. 

  14062.         mulxq	%r12, %rcx, %r12
    14063. 

  14063.         adcxq	%rcx, %r8
    14064. 

  14064.         adoxq	%r12, %r9
    14065. 

  14065.         mulxq	%r13, %rcx, %r13
    14066. 

  14066.         adcxq	%rcx, %r9
    14067. 

  14067.         adoxq	%r13, %r10
    14068. 

  14068.         mulxq	%r14, %rcx, %r14
    14069. 

  14069.         adcxq	%rcx, %r10
    14070. 

  14070.         adoxq	%r14, %r11
    14071. 

  14071.         mulxq	%r15, %r15, %rdx
    14072. 

  14072.         adcxq	%r15, %r11
    14073. 

  14073.         adoxq	%rax, %rdx
    14074. 

  14074.         adcxq	%rax, %rdx
    14075. 

  14075.         #  Overflow
    14076. 

  14076.         shldq	$0x01, %r11, %rdx
    14077. 

  14077.         movq	$0x7fffffffffffffff, %rax
    14078. 

  14078.         imulq	$19, %rdx, %rcx
    14079. 

  14079.         andq	%rax, %r11
    14080. 

  14080.         addq	%rcx, %r8
    14081. 

  14081.         adcq	$0x00, %r9
    14082. 

  14082.         adcq	$0x00, %r10
    14083. 

  14083.         adcq	$0x00, %r11
    14084. 

  14084.         # Reduce if top bit set
    14085. 

  14085.         movq	%r11, %rdx
    14086. 

  14086.         shrq	$63, %rdx
    14087. 

  14087.         imulq	$19, %rdx, %rcx
    14088. 

  14088.         andq	%rax, %r11
    14089. 

  14089.         addq	%rcx, %r8
    14090. 

  14090.         adcq	$0x00, %r9
    14091. 

  14091.         adcq	$0x00, %r10
    14092. 

  14092.         adcq	$0x00, %r11
    14093. 

  14093.         # Store
    14094. 

  14094.         movq	%r8, (%rbx)
    14095. 

  14095.         movq	%r9, 8(%rbx)
    14096. 

  14096.         movq	%r10, 16(%rbx)
    14097. 

  14097.         movq	%r11, 24(%rbx)
    14098. 

  14098.         movq	136(%rsp), %rdi
    14099. 

  14099.         # Multiply
    14100. 

  14100.         # A[0] * B[0]
    14101. 

  14101.         movq	(%rdi), %rdx
    14102. 

  14102.         mulxq	(%rsi), %r8, %r9
    14103. 

  14103.         # A[2] * B[0]
    14104. 

  14104.         mulxq	16(%rsi), %r10, %r11
    14105. 

  14105.         # A[1] * B[0]
    14106. 

  14106.         mulxq	8(%rsi), %rcx, %rax
    14107. 

  14107.         xorq	%r15, %r15
    14108. 

  14108.         adcxq	%rcx, %r9
    14109. 

  14109.         # A[1] * B[3]
    14110. 

  14110.         movq	24(%rdi), %rdx
    14111. 

  14111.         mulxq	8(%rsi), %r12, %r13
    14112. 

  14112.         adcxq	%rax, %r10
    14113. 

  14113.         # A[0] * B[1]
    14114. 

  14114.         movq	8(%rdi), %rdx
    14115. 

  14115.         mulxq	(%rsi), %rcx, %rax
    14116. 

  14116.         adoxq	%rcx, %r9
    14117. 

  14117.         # A[2] * B[1]
    14118. 

  14118.         mulxq	16(%rsi), %rcx, %r14
    14119. 

  14119.         adoxq	%rax, %r10
    14120. 

  14120.         adcxq	%rcx, %r11
    14121. 

  14121.         # A[1] * B[2]
    14122. 

  14122.         movq	16(%rdi), %rdx
    14123. 

  14123.         mulxq	8(%rsi), %rcx, %rax
    14124. 

  14124.         adcxq	%r14, %r12
    14125. 

  14125.         adoxq	%rcx, %r11
    14126. 

  14126.         adcxq	%r15, %r13
    14127. 

  14127.         adoxq	%rax, %r12
    14128. 

  14128.         # A[0] * B[2]
    14129. 

  14129.         mulxq	(%rsi), %rcx, %rax
    14130. 

  14130.         adoxq	%r15, %r13
    14131. 

  14131.         xorq	%r14, %r14
    14132. 

  14132.         adcxq	%rcx, %r10
    14133. 

  14133.         # A[1] * B[1]
    14134. 

  14134.         movq	8(%rdi), %rdx
    14135. 

  14135.         mulxq	8(%rsi), %rdx, %rcx
    14136. 

  14136.         adcxq	%rax, %r11
    14137. 

  14137.         adoxq	%rdx, %r10
    14138. 

  14138.         # A[3] * B[1]
    14139. 

  14139.         movq	8(%rdi), %rdx
    14140. 

  14140.         adoxq	%rcx, %r11
    14141. 

  14141.         mulxq	24(%rsi), %rcx, %rax
    14142. 

  14142.         adcxq	%rcx, %r12
    14143. 

  14143.         # A[2] * B[2]
    14144. 

  14144.         movq	16(%rdi), %rdx
    14145. 

  14145.         mulxq	16(%rsi), %rdx, %rcx
    14146. 

  14146.         adcxq	%rax, %r13
    14147. 

  14147.         adoxq	%rdx, %r12
    14148. 

  14148.         # A[3] * B[3]
    14149. 

  14149.         movq	24(%rdi), %rdx
    14150. 

  14150.         adoxq	%rcx, %r13
    14151. 

  14151.         mulxq	24(%rsi), %rcx, %rax
    14152. 

  14152.         adoxq	%r15, %r14
    14153. 

  14153.         adcxq	%rcx, %r14
    14154. 

  14154.         # A[0] * B[3]
    14155. 

  14155.         mulxq	(%rsi), %rdx, %rcx
    14156. 

  14156.         adcxq	%rax, %r15
    14157. 

  14157.         xorq	%rax, %rax
    14158. 

  14158.         adcxq	%rdx, %r11
    14159. 

  14159.         # A[3] * B[0]
    14160. 

  14160.         movq	(%rdi), %rdx
    14161. 

  14161.         adcxq	%rcx, %r12
    14162. 

  14162.         mulxq	24(%rsi), %rdx, %rcx
    14163. 

  14163.         adoxq	%rdx, %r11
    14164. 

  14164.         adoxq	%rcx, %r12
    14165. 

  14165.         # A[2] * B[3]
    14166. 

  14166.         movq	24(%rdi), %rdx
    14167. 

  14167.         mulxq	16(%rsi), %rdx, %rcx
    14168. 

  14168.         adcxq	%rdx, %r13
    14169. 

  14169.         # A[3] * B[2]
    14170. 

  14170.         movq	16(%rdi), %rdx
    14171. 

  14171.         adcxq	%rcx, %r14
    14172. 

  14172.         mulxq	24(%rsi), %rcx, %rdx
    14173. 

  14173.         adcxq	%rax, %r15
    14174. 

  14174.         adoxq	%rcx, %r13
    14175. 

  14175.         adoxq	%rdx, %r14
    14176. 

  14176.         adoxq	%rax, %r15
    14177. 

  14177.         # Reduce
    14178. 

  14178.         movq	$0x7fffffffffffffff, %rax
    14179. 

  14179.         #  Move top half into t4-t7 and remove top bit from t3
    14180. 

  14180.         shldq	$0x01, %r14, %r15
    14181. 

  14181.         shldq	$0x01, %r13, %r14
    14182. 

  14182.         shldq	$0x01, %r12, %r13
    14183. 

  14183.         shldq	$0x01, %r11, %r12
    14184. 

  14184.         andq	%rax, %r11
    14185. 

  14185.         #  Multiply top half by 19
    14186. 

  14186.         movq	$19, %rdx
    14187. 

  14187.         xorq	%rax, %rax
    14188. 

  14188.         mulxq	%r12, %rcx, %r12
    14189. 

  14189.         adcxq	%rcx, %r8
    14190. 

  14190.         adoxq	%r12, %r9
    14191. 

  14191.         mulxq	%r13, %rcx, %r13
    14192. 

  14192.         adcxq	%rcx, %r9
    14193. 

  14193.         adoxq	%r13, %r10
    14194. 

  14194.         mulxq	%r14, %rcx, %r14
    14195. 

  14195.         adcxq	%rcx, %r10
    14196. 

  14196.         adoxq	%r14, %r11
    14197. 

  14197.         mulxq	%r15, %r15, %rdx
    14198. 

  14198.         adcxq	%r15, %r11
    14199. 

  14199.         adoxq	%rax, %rdx
    14200. 

  14200.         adcxq	%rax, %rdx
    14201. 

  14201.         #  Overflow
    14202. 

  14202.         shldq	$0x01, %r11, %rdx
    14203. 

  14203.         movq	$0x7fffffffffffffff, %rax
    14204. 

  14204.         imulq	$19, %rdx, %rcx
    14205. 

  14205.         andq	%rax, %r11
    14206. 

  14206.         addq	%rcx, %r8
    14207. 

  14207.         adcq	$0x00, %r9
    14208. 

  14208.         adcq	$0x00, %r10
    14209. 

  14209.         adcq	$0x00, %r11
    14210. 

  14210.         # Reduce if top bit set
    14211. 

  14211.         movq	%r11, %rdx
    14212. 

  14212.         shrq	$63, %rdx
    14213. 

  14213.         imulq	$19, %rdx, %rcx
    14214. 

  14214.         andq	%rax, %r11
    14215. 

  14215.         addq	%rcx, %r8
    14216. 

  14216.         adcq	$0x00, %r9
    14217. 

  14217.         adcq	$0x00, %r10
    14218. 

  14218.         adcq	$0x00, %r11
    14219. 

  14219.         # Store
    14220. 

  14220.         movq	%r8, (%rsi)
    14221. 

  14221.         movq	%r9, 8(%rsi)
    14222. 

  14222.         movq	%r10, 16(%rsi)
    14223. 

  14223.         movq	%r11, 24(%rsi)
    14224. 

  14224.         movq	24(%rsp), %rdi
    14225. 

  14225.         movq	120(%rsp), %rsi
    14226. 

  14226.         movq	112(%rsp), %rbp
    14227. 

  14227.         # Multiply
    14228. 

  14228.         # A[0] * B[0]
    14229. 

  14229.         movq	(%rbp), %rdx
    14230. 

  14230.         mulxq	(%rsi), %r8, %r9
    14231. 

  14231.         # A[2] * B[0]
    14232. 

  14232.         mulxq	16(%rsi), %r10, %r11
    14233. 

  14233.         # A[1] * B[0]
    14234. 

  14234.         mulxq	8(%rsi), %rcx, %rax
    14235. 

  14235.         xorq	%r15, %r15
    14236. 

  14236.         adcxq	%rcx, %r9
    14237. 

  14237.         # A[1] * B[3]
    14238. 

  14238.         movq	24(%rbp), %rdx
    14239. 

  14239.         mulxq	8(%rsi), %r12, %r13
    14240. 

  14240.         adcxq	%rax, %r10
    14241. 

  14241.         # A[0] * B[1]
    14242. 

  14242.         movq	8(%rbp), %rdx
    14243. 

  14243.         mulxq	(%rsi), %rcx, %rax
    14244. 

  14244.         adoxq	%rcx, %r9
    14245. 

  14245.         # A[2] * B[1]
    14246. 

  14246.         mulxq	16(%rsi), %rcx, %r14
    14247. 

  14247.         adoxq	%rax, %r10
    14248. 

  14248.         adcxq	%rcx, %r11
    14249. 

  14249.         # A[1] * B[2]
    14250. 

  14250.         movq	16(%rbp), %rdx
    14251. 

  14251.         mulxq	8(%rsi), %rcx, %rax
    14252. 

  14252.         adcxq	%r14, %r12
    14253. 

  14253.         adoxq	%rcx, %r11
    14254. 

  14254.         adcxq	%r15, %r13
    14255. 

  14255.         adoxq	%rax, %r12
    14256. 

  14256.         # A[0] * B[2]
    14257. 

  14257.         mulxq	(%rsi), %rcx, %rax
    14258. 

  14258.         adoxq	%r15, %r13
    14259. 

  14259.         xorq	%r14, %r14
    14260. 

  14260.         adcxq	%rcx, %r10
    14261. 

  14261.         # A[1] * B[1]
    14262. 

  14262.         movq	8(%rbp), %rdx
    14263. 

  14263.         mulxq	8(%rsi), %rdx, %rcx
    14264. 

  14264.         adcxq	%rax, %r11
    14265. 

  14265.         adoxq	%rdx, %r10
    14266. 

  14266.         # A[3] * B[1]
    14267. 

  14267.         movq	8(%rbp), %rdx
    14268. 

  14268.         adoxq	%rcx, %r11
    14269. 

  14269.         mulxq	24(%rsi), %rcx, %rax
    14270. 

  14270.         adcxq	%rcx, %r12
    14271. 

  14271.         # A[2] * B[2]
    14272. 

  14272.         movq	16(%rbp), %rdx
    14273. 

  14273.         mulxq	16(%rsi), %rdx, %rcx
    14274. 

  14274.         adcxq	%rax, %r13
    14275. 

  14275.         adoxq	%rdx, %r12
    14276. 

  14276.         # A[3] * B[3]
    14277. 

  14277.         movq	24(%rbp), %rdx
    14278. 

  14278.         adoxq	%rcx, %r13
    14279. 

  14279.         mulxq	24(%rsi), %rcx, %rax
    14280. 

  14280.         adoxq	%r15, %r14
    14281. 

  14281.         adcxq	%rcx, %r14
    14282. 

  14282.         # A[0] * B[3]
    14283. 

  14283.         mulxq	(%rsi), %rdx, %rcx
    14284. 

  14284.         adcxq	%rax, %r15
    14285. 

  14285.         xorq	%rax, %rax
    14286. 

  14286.         adcxq	%rdx, %r11
    14287. 

  14287.         # A[3] * B[0]
    14288. 

  14288.         movq	(%rbp), %rdx
    14289. 

  14289.         adcxq	%rcx, %r12
    14290. 

  14290.         mulxq	24(%rsi), %rdx, %rcx
    14291. 

  14291.         adoxq	%rdx, %r11
    14292. 

  14292.         adoxq	%rcx, %r12
    14293. 

  14293.         # A[2] * B[3]
    14294. 

  14294.         movq	24(%rbp), %rdx
    14295. 

  14295.         mulxq	16(%rsi), %rdx, %rcx
    14296. 

  14296.         adcxq	%rdx, %r13
    14297. 

  14297.         # A[3] * B[2]
    14298. 

  14298.         movq	16(%rbp), %rdx
    14299. 

  14299.         adcxq	%rcx, %r14
    14300. 

  14300.         mulxq	24(%rsi), %rcx, %rdx
    14301. 

  14301.         adcxq	%rax, %r15
    14302. 

  14302.         adoxq	%rcx, %r13
    14303. 

  14303.         adoxq	%rdx, %r14
    14304. 

  14304.         adoxq	%rax, %r15
    14305. 

  14305.         # Reduce
    14306. 

  14306.         movq	$0x7fffffffffffffff, %rax
    14307. 

  14307.         #  Move top half into t4-t7 and remove top bit from t3
    14308. 

  14308.         shldq	$0x01, %r14, %r15
    14309. 

  14309.         shldq	$0x01, %r13, %r14
    14310. 

  14310.         shldq	$0x01, %r12, %r13
    14311. 

  14311.         shldq	$0x01, %r11, %r12
    14312. 

  14312.         andq	%rax, %r11
    14313. 

  14313.         #  Multiply top half by 19
    14314. 

  14314.         movq	$19, %rdx
    14315. 

  14315.         xorq	%rax, %rax
    14316. 

  14316.         mulxq	%r12, %rcx, %r12
    14317. 

  14317.         adcxq	%rcx, %r8
    14318. 

  14318.         adoxq	%r12, %r9
    14319. 

  14319.         mulxq	%r13, %rcx, %r13
    14320. 

  14320.         adcxq	%rcx, %r9
    14321. 

  14321.         adoxq	%r13, %r10
    14322. 

  14322.         mulxq	%r14, %rcx, %r14
    14323. 

  14323.         adcxq	%rcx, %r10
    14324. 

  14324.         adoxq	%r14, %r11
    14325. 

  14325.         mulxq	%r15, %r15, %rdx
    14326. 

  14326.         adcxq	%r15, %r11
    14327. 

  14327.         adoxq	%rax, %rdx
    14328. 

  14328.         adcxq	%rax, %rdx
    14329. 

  14329.         #  Overflow
    14330. 

  14330.         shldq	$0x01, %r11, %rdx
    14331. 

  14331.         movq	$0x7fffffffffffffff, %rax
    14332. 

  14332.         imulq	$19, %rdx, %rcx
    14333. 

  14333.         andq	%rax, %r11
    14334. 

  14334.         addq	%rcx, %r8
    14335. 

  14335.         adcq	$0x00, %r9
    14336. 

  14336.         adcq	$0x00, %r10
    14337. 

  14337.         adcq	$0x00, %r11
    14338. 

  14338.         # Reduce if top bit set
    14339. 

  14339.         movq	%r11, %rdx
    14340. 

  14340.         shrq	$63, %rdx
    14341. 

  14341.         imulq	$19, %rdx, %rcx
    14342. 

  14342.         andq	%rax, %r11
    14343. 

  14343.         addq	%rcx, %r8
    14344. 

  14344.         adcq	$0x00, %r9
    14345. 

  14345.         adcq	$0x00, %r10
    14346. 

  14346.         adcq	$0x00, %r11
    14347. 

  14347.         # Store
    14348. 

  14348.         movq	%r8, (%rdi)
    14349. 

  14349.         movq	%r9, 8(%rdi)
    14350. 

  14350.         movq	%r10, 16(%rdi)
    14351. 

  14351.         movq	%r11, 24(%rdi)
    14352. 

  14352.         movq	8(%rsp), %rdi
    14353. 

  14353.         movq	(%rsp), %rsi
    14354. 

  14354.         # Add
    14355. 

  14355.         movq	(%rbx), %r8
    14356. 

  14356.         movq	8(%rbx), %r9
    14357. 

  14357.         movq	16(%rbx), %r10
    14358. 

  14358.         movq	24(%rbx), %rdx
    14359. 

  14359.         movq	%r8, %r12
    14360. 

  14360.         addq	(%rdi), %r8
    14361. 

  14361.         movq	%r9, %r13
    14362. 

  14362.         adcq	8(%rdi), %r9
    14363. 

  14363.         movq	%r10, %r14
    14364. 

  14364.         adcq	16(%rdi), %r10
    14365. 

  14365.         movq	%rdx, %r15
    14366. 

  14366.         adcq	24(%rdi), %rdx
    14367. 

  14367.         movq	$-19, %rcx
    14368. 

  14368.         movq	%rdx, %r11
    14369. 

  14369.         movq	$0x7fffffffffffffff, %rax
    14370. 

  14370.         sarq	$63, %rdx
    14371. 

  14371.         #   Mask the modulus
    14372. 

  14372.         andq	%rdx, %rcx
    14373. 

  14373.         andq	%rdx, %rax
    14374. 

  14374.         #   Sub modulus (if overflow)
    14375. 

  14375.         subq	%rcx, %r8
    14376. 

  14376.         sbbq	%rdx, %r9
    14377. 

  14377.         sbbq	%rdx, %r10
    14378. 

  14378.         sbbq	%rax, %r11
    14379. 

  14379.         # Sub
    14380. 

  14380.         subq	(%rdi), %r12
    14381. 

  14381.         movq	$0x00, %rdx
    14382. 

  14382.         sbbq	8(%rdi), %r13
    14383. 

  14383.         movq	$-19, %rcx
    14384. 

  14384.         sbbq	16(%rdi), %r14
    14385. 

  14385.         movq	$0x7fffffffffffffff, %rax
    14386. 

  14386.         sbbq	24(%rdi), %r15
    14387. 

  14387.         sbbq	$0x00, %rdx
    14388. 

  14388.         #   Mask the modulus
    14389. 

  14389.         andq	%rdx, %rcx
    14390. 

  14390.         andq	%rdx, %rax
    14391. 

  14391.         #   Add modulus (if underflow)
    14392. 

  14392.         addq	%rcx, %r12
    14393. 

  14393.         adcq	%rdx, %r13
    14394. 

  14394.         adcq	%rdx, %r14
    14395. 

  14395.         adcq	%rax, %r15
    14396. 

  14396.         movq	%r8, (%rdi)
    14397. 

  14397.         movq	%r9, 8(%rdi)
    14398. 

  14398.         movq	%r10, 16(%rdi)
    14399. 

  14399.         movq	%r11, 24(%rdi)
    14400. 

  14400.         movq	%r12, (%rsi)
    14401. 

  14401.         movq	%r13, 8(%rsi)
    14402. 

  14402.         movq	%r14, 16(%rsi)
    14403. 

  14403.         movq	%r15, 24(%rsi)
    14404. 

  14404.         movq	104(%rsp), %rdi
    14405. 

  14405.         # Double
    14406. 

  14406.         movq	(%rdi), %r8
    14407. 

  14407.         movq	8(%rdi), %r9
    14408. 

  14408.         addq	%r8, %r8
    14409. 

  14409.         movq	16(%rdi), %r10
    14410. 

  14410.         adcq	%r9, %r9
    14411. 

  14411.         movq	24(%rdi), %rdx
    14412. 

  14412.         adcq	%r10, %r10
    14413. 

  14413.         movq	$-19, %rcx
    14414. 

  14414.         adcq	%rdx, %rdx
    14415. 

  14415.         movq	$0x7fffffffffffffff, %rax
    14416. 

  14416.         movq	%rdx, %r11
    14417. 

  14417.         sarq	$63, %rdx
    14418. 

  14418.         #   Mask the modulus
    14419. 

  14419.         andq	%rdx, %rcx
    14420. 

  14420.         andq	%rdx, %rax
    14421. 

  14421.         #   Sub modulus (if overflow)
    14422. 

  14422.         subq	%rcx, %r8
    14423. 

  14423.         sbbq	%rdx, %r9
    14424. 

  14424.         sbbq	%rdx, %r10
    14425. 

  14425.         sbbq	%rax, %r11
    14426. 

  14426.         movq	%r8, (%rbx)
    14427. 

  14427.         movq	%r9, 8(%rbx)
    14428. 

  14428.         movq	%r10, 16(%rbx)
    14429. 

  14429.         movq	%r11, 24(%rbx)
    14430. 

  14430.         movq	24(%rsp), %rdi
    14431. 

  14431.         # Add
    14432. 

  14432.         movq	(%rbx), %r8
    14433. 

  14433.         movq	8(%rbx), %r9
    14434. 

  14434.         movq	16(%rbx), %r10
    14435. 

  14435.         movq	24(%rbx), %rdx
    14436. 

  14436.         movq	%r8, %r12
    14437. 

  14437.         addq	(%rdi), %r8
    14438. 

  14438.         movq	%r9, %r13
    14439. 

  14439.         adcq	8(%rdi), %r9
    14440. 

  14440.         movq	%r10, %r14
    14441. 

  14441.         adcq	16(%rdi), %r10
    14442. 

  14442.         movq	%rdx, %r15
    14443. 

  14443.         adcq	24(%rdi), %rdx
    14444. 

  14444.         movq	$-19, %rcx
    14445. 

  14445.         movq	%rdx, %r11
    14446. 

  14446.         movq	$0x7fffffffffffffff, %rax
    14447. 

  14447.         sarq	$63, %rdx
    14448. 

  14448.         #   Mask the modulus
    14449. 

  14449.         andq	%rdx, %rcx
    14450. 

  14450.         andq	%rdx, %rax
    14451. 

  14451.         #   Sub modulus (if overflow)
    14452. 

  14452.         subq	%rcx, %r8
    14453. 

  14453.         sbbq	%rdx, %r9
    14454. 

  14454.         sbbq	%rdx, %r10
    14455. 

  14455.         sbbq	%rax, %r11
    14456. 

  14456.         # Sub
    14457. 

  14457.         subq	(%rdi), %r12
    14458. 

  14458.         movq	$0x00, %rdx
    14459. 

  14459.         sbbq	8(%rdi), %r13
    14460. 

  14460.         movq	$-19, %rcx
    14461. 

  14461.         sbbq	16(%rdi), %r14
    14462. 

  14462.         movq	$0x7fffffffffffffff, %rax
    14463. 

  14463.         sbbq	24(%rdi), %r15
    14464. 

  14464.         sbbq	$0x00, %rdx
    14465. 

  14465.         #   Mask the modulus
    14466. 

  14466.         andq	%rdx, %rcx
    14467. 

  14467.         andq	%rdx, %rax
    14468. 

  14468.         #   Add modulus (if underflow)
    14469. 

  14469.         addq	%rcx, %r12
    14470. 

  14470.         adcq	%rdx, %r13
    14471. 

  14471.         adcq	%rdx, %r14
    14472. 

  14472.         adcq	%rax, %r15
    14473. 

  14473.         movq	%r8, (%rbx)
    14474. 

  14474.         movq	%r9, 8(%rbx)
    14475. 

  14475.         movq	%r10, 16(%rbx)
    14476. 

  14476.         movq	%r11, 24(%rbx)
    14477. 

  14477.         movq	%r12, (%rdi)
    14478. 

  14478.         movq	%r13, 8(%rdi)
    14479. 

  14479.         movq	%r14, 16(%rdi)
    14480. 

  14480.         movq	%r15, 24(%rdi)
    14481. 

  14481.         addq	$48, %rsp
    14482. 

  14482.         popq	%r15
    14483. 

  14483.         popq	%r14
    14484. 

  14484.         popq	%r13
    14485. 

  14485.         popq	%r12
    14486. 

  14486.         popq	%rbx
    14487. 

  14487.         popq	%rbp
    14488. 

  14488.         repz retq
    14489. 

  14489. #ifndef __APPLE__
    14490. 

  14490. .size	fe_ge_madd_avx2,.-fe_ge_madd_avx2
    14491. 

  14491. #endif /* __APPLE__ */
    14492. 

  14492. #ifndef __APPLE__
    14493. 

  14493. .text
    14494. 

  14494. .globl	fe_ge_msub_avx2
    14495. 

  14495. .type	fe_ge_msub_avx2,@function
    14496. 

  14496. .align	16
    14497. 

  14497. fe_ge_msub_avx2:
    14498. 

  14498. #else
    14499. 

  14499. .section	__TEXT,__text
    14500. 

  14500. .globl	_fe_ge_msub_avx2
    14501. 

  14501. .p2align	4
    14502. 

  14502. _fe_ge_msub_avx2:
    14503. 

  14503. #endif /* __APPLE__ */
    14504. 

  14504.         pushq	%rbp
    14505. 

  14505.         pushq	%rbx
    14506. 

  14506.         pushq	%r12
    14507. 

  14507.         pushq	%r13
    14508. 

  14508.         pushq	%r14
    14509. 

  14509.         pushq	%r15
    14510. 

  14510.         subq	$48, %rsp
    14511. 

  14511.         movq	%rdi, (%rsp)
    14512. 

  14512.         movq	%rsi, 8(%rsp)
    14513. 

  14513.         movq	%rdx, 16(%rsp)
    14514. 

  14514.         movq	%rcx, 24(%rsp)
    14515. 

  14515.         movq	%r8, 32(%rsp)
    14516. 

  14516.         movq	%r9, 40(%rsp)
    14517. 

  14517.         movq	8(%rsp), %rsi
    14518. 

  14518.         movq	40(%rsp), %rbx
    14519. 

  14519.         movq	32(%rsp), %rbp
    14520. 

  14520.         # Add
    14521. 

  14521.         movq	(%rbx), %r8
    14522. 

  14522.         movq	8(%rbx), %r9
    14523. 

  14523.         movq	16(%rbx), %r10
    14524. 

  14524.         movq	24(%rbx), %rdx
    14525. 

  14525.         movq	%r8, %r12
    14526. 

  14526.         addq	(%rbp), %r8
    14527. 

  14527.         movq	%r9, %r13
    14528. 

  14528.         adcq	8(%rbp), %r9
    14529. 

  14529.         movq	%r10, %r14
    14530. 

  14530.         adcq	16(%rbp), %r10
    14531. 

  14531.         movq	%rdx, %r15
    14532. 

  14532.         adcq	24(%rbp), %rdx
    14533. 

  14533.         movq	$-19, %rcx
    14534. 

  14534.         movq	%rdx, %r11
    14535. 

  14535.         movq	$0x7fffffffffffffff, %rax
    14536. 

  14536.         sarq	$63, %rdx
    14537. 

  14537.         #   Mask the modulus
    14538. 

  14538.         andq	%rdx, %rcx
    14539. 

  14539.         andq	%rdx, %rax
    14540. 

  14540.         #   Sub modulus (if overflow)
    14541. 

  14541.         subq	%rcx, %r8
    14542. 

  14542.         sbbq	%rdx, %r9
    14543. 

  14543.         sbbq	%rdx, %r10
    14544. 

  14544.         sbbq	%rax, %r11
    14545. 

  14545.         # Sub
    14546. 

  14546.         subq	(%rbp), %r12
    14547. 

  14547.         movq	$0x00, %rdx
    14548. 

  14548.         sbbq	8(%rbp), %r13
    14549. 

  14549.         movq	$-19, %rcx
    14550. 

  14550.         sbbq	16(%rbp), %r14
    14551. 

  14551.         movq	$0x7fffffffffffffff, %rax
    14552. 

  14552.         sbbq	24(%rbp), %r15
    14553. 

  14553.         sbbq	$0x00, %rdx
    14554. 

  14554.         #   Mask the modulus
    14555. 

  14555.         andq	%rdx, %rcx
    14556. 

  14556.         andq	%rdx, %rax
    14557. 

  14557.         #   Add modulus (if underflow)
    14558. 

  14558.         addq	%rcx, %r12
    14559. 

  14559.         adcq	%rdx, %r13
    14560. 

  14560.         adcq	%rdx, %r14
    14561. 

  14561.         adcq	%rax, %r15
    14562. 

  14562.         movq	%r8, (%rdi)
    14563. 

  14563.         movq	%r9, 8(%rdi)
    14564. 

  14564.         movq	%r10, 16(%rdi)
    14565. 

  14565.         movq	%r11, 24(%rdi)
    14566. 

  14566.         movq	%r12, (%rsi)
    14567. 

  14567.         movq	%r13, 8(%rsi)
    14568. 

  14568.         movq	%r14, 16(%rsi)
    14569. 

  14569.         movq	%r15, 24(%rsi)
    14570. 

  14570.         movq	16(%rsp), %rbx
    14571. 

  14571.         movq	136(%rsp), %rbp
    14572. 

  14572.         # Multiply
    14573. 

  14573.         # A[0] * B[0]
    14574. 

  14574.         movq	(%rbp), %rdx
    14575. 

  14575.         mulxq	(%rdi), %r8, %r9
    14576. 

  14576.         # A[2] * B[0]
    14577. 

  14577.         mulxq	16(%rdi), %r10, %r11
    14578. 

  14578.         # A[1] * B[0]
    14579. 

  14579.         mulxq	8(%rdi), %rcx, %rax
    14580. 

  14580.         xorq	%r15, %r15
    14581. 

  14581.         adcxq	%rcx, %r9
    14582. 

  14582.         # A[1] * B[3]
    14583. 

  14583.         movq	24(%rbp), %rdx
    14584. 

  14584.         mulxq	8(%rdi), %r12, %r13
    14585. 

  14585.         adcxq	%rax, %r10
    14586. 

  14586.         # A[0] * B[1]
    14587. 

  14587.         movq	8(%rbp), %rdx
    14588. 

  14588.         mulxq	(%rdi), %rcx, %rax
    14589. 

  14589.         adoxq	%rcx, %r9
    14590. 

  14590.         # A[2] * B[1]
    14591. 

  14591.         mulxq	16(%rdi), %rcx, %r14
    14592. 

  14592.         adoxq	%rax, %r10
    14593. 

  14593.         adcxq	%rcx, %r11
    14594. 

  14594.         # A[1] * B[2]
    14595. 

  14595.         movq	16(%rbp), %rdx
    14596. 

  14596.         mulxq	8(%rdi), %rcx, %rax
    14597. 

  14597.         adcxq	%r14, %r12
    14598. 

  14598.         adoxq	%rcx, %r11
    14599. 

  14599.         adcxq	%r15, %r13
    14600. 

  14600.         adoxq	%rax, %r12
    14601. 

  14601.         # A[0] * B[2]
    14602. 

  14602.         mulxq	(%rdi), %rcx, %rax
    14603. 

  14603.         adoxq	%r15, %r13
    14604. 

  14604.         xorq	%r14, %r14
    14605. 

  14605.         adcxq	%rcx, %r10
    14606. 

  14606.         # A[1] * B[1]
    14607. 

  14607.         movq	8(%rbp), %rdx
    14608. 

  14608.         mulxq	8(%rdi), %rdx, %rcx
    14609. 

  14609.         adcxq	%rax, %r11
    14610. 

  14610.         adoxq	%rdx, %r10
    14611. 

  14611.         # A[3] * B[1]
    14612. 

  14612.         movq	8(%rbp), %rdx
    14613. 

  14613.         adoxq	%rcx, %r11
    14614. 

  14614.         mulxq	24(%rdi), %rcx, %rax
    14615. 

  14615.         adcxq	%rcx, %r12
    14616. 

  14616.         # A[2] * B[2]
    14617. 

  14617.         movq	16(%rbp), %rdx
    14618. 

  14618.         mulxq	16(%rdi), %rdx, %rcx
    14619. 

  14619.         adcxq	%rax, %r13
    14620. 

  14620.         adoxq	%rdx, %r12
    14621. 

  14621.         # A[3] * B[3]
    14622. 

  14622.         movq	24(%rbp), %rdx
    14623. 

  14623.         adoxq	%rcx, %r13
    14624. 

  14624.         mulxq	24(%rdi), %rcx, %rax
    14625. 

  14625.         adoxq	%r15, %r14
    14626. 

  14626.         adcxq	%rcx, %r14
    14627. 

  14627.         # A[0] * B[3]
    14628. 

  14628.         mulxq	(%rdi), %rdx, %rcx
    14629. 

  14629.         adcxq	%rax, %r15
    14630. 

  14630.         xorq	%rax, %rax
    14631. 

  14631.         adcxq	%rdx, %r11
    14632. 

  14632.         # A[3] * B[0]
    14633. 

  14633.         movq	(%rbp), %rdx
    14634. 

  14634.         adcxq	%rcx, %r12
    14635. 

  14635.         mulxq	24(%rdi), %rdx, %rcx
    14636. 

  14636.         adoxq	%rdx, %r11
    14637. 

  14637.         adoxq	%rcx, %r12
    14638. 

  14638.         # A[2] * B[3]
    14639. 

  14639.         movq	24(%rbp), %rdx
    14640. 

  14640.         mulxq	16(%rdi), %rdx, %rcx
    14641. 

  14641.         adcxq	%rdx, %r13
    14642. 

  14642.         # A[3] * B[2]
    14643. 

  14643.         movq	16(%rbp), %rdx
    14644. 

  14644.         adcxq	%rcx, %r14
    14645. 

  14645.         mulxq	24(%rdi), %rcx, %rdx
    14646. 

  14646.         adcxq	%rax, %r15
    14647. 

  14647.         adoxq	%rcx, %r13
    14648. 

  14648.         adoxq	%rdx, %r14
    14649. 

  14649.         adoxq	%rax, %r15
    14650. 

  14650.         # Reduce
    14651. 

  14651.         movq	$0x7fffffffffffffff, %rax
    14652. 

  14652.         #  Move top half into t4-t7 and remove top bit from t3
    14653. 

  14653.         shldq	$0x01, %r14, %r15
    14654. 

  14654.         shldq	$0x01, %r13, %r14
    14655. 

  14655.         shldq	$0x01, %r12, %r13
    14656. 

  14656.         shldq	$0x01, %r11, %r12
    14657. 

  14657.         andq	%rax, %r11
    14658. 

  14658.         #  Multiply top half by 19
    14659. 

  14659.         movq	$19, %rdx
    14660. 

  14660.         xorq	%rax, %rax
    14661. 

  14661.         mulxq	%r12, %rcx, %r12
    14662. 

  14662.         adcxq	%rcx, %r8
    14663. 

  14663.         adoxq	%r12, %r9
    14664. 

  14664.         mulxq	%r13, %rcx, %r13
    14665. 

  14665.         adcxq	%rcx, %r9
    14666. 

  14666.         adoxq	%r13, %r10
    14667. 

  14667.         mulxq	%r14, %rcx, %r14
    14668. 

  14668.         adcxq	%rcx, %r10
    14669. 

  14669.         adoxq	%r14, %r11
    14670. 

  14670.         mulxq	%r15, %r15, %rdx
    14671. 

  14671.         adcxq	%r15, %r11
    14672. 

  14672.         adoxq	%rax, %rdx
    14673. 

  14673.         adcxq	%rax, %rdx
    14674. 

  14674.         #  Overflow
    14675. 

  14675.         shldq	$0x01, %r11, %rdx
    14676. 

  14676.         movq	$0x7fffffffffffffff, %rax
    14677. 

  14677.         imulq	$19, %rdx, %rcx
    14678. 

  14678.         andq	%rax, %r11
    14679. 

  14679.         addq	%rcx, %r8
    14680. 

  14680.         adcq	$0x00, %r9
    14681. 

  14681.         adcq	$0x00, %r10
    14682. 

  14682.         adcq	$0x00, %r11
    14683. 

  14683.         # Reduce if top bit set
    14684. 

  14684.         movq	%r11, %rdx
    14685. 

  14685.         shrq	$63, %rdx
    14686. 

  14686.         imulq	$19, %rdx, %rcx
    14687. 

  14687.         andq	%rax, %r11
    14688. 

  14688.         addq	%rcx, %r8
    14689. 

  14689.         adcq	$0x00, %r9
    14690. 

  14690.         adcq	$0x00, %r10
    14691. 

  14691.         adcq	$0x00, %r11
    14692. 

  14692.         # Store
    14693. 

  14693.         movq	%r8, (%rbx)
    14694. 

  14694.         movq	%r9, 8(%rbx)
    14695. 

  14695.         movq	%r10, 16(%rbx)
    14696. 

  14696.         movq	%r11, 24(%rbx)
    14697. 

  14697.         movq	128(%rsp), %rdi
    14698. 

  14698.         # Multiply
    14699. 

  14699.         # A[0] * B[0]
    14700. 

  14700.         movq	(%rdi), %rdx
    14701. 

  14701.         mulxq	(%rsi), %r8, %r9
    14702. 

  14702.         # A[2] * B[0]
    14703. 

  14703.         mulxq	16(%rsi), %r10, %r11
    14704. 

  14704.         # A[1] * B[0]
    14705. 

  14705.         mulxq	8(%rsi), %rcx, %rax
    14706. 

  14706.         xorq	%r15, %r15
    14707. 

  14707.         adcxq	%rcx, %r9
    14708. 

  14708.         # A[1] * B[3]
    14709. 

  14709.         movq	24(%rdi), %rdx
    14710. 

  14710.         mulxq	8(%rsi), %r12, %r13
    14711. 

  14711.         adcxq	%rax, %r10
    14712. 

  14712.         # A[0] * B[1]
    14713. 

  14713.         movq	8(%rdi), %rdx
    14714. 

  14714.         mulxq	(%rsi), %rcx, %rax
    14715. 

  14715.         adoxq	%rcx, %r9
    14716. 

  14716.         # A[2] * B[1]
    14717. 

  14717.         mulxq	16(%rsi), %rcx, %r14
    14718. 

  14718.         adoxq	%rax, %r10
    14719. 

  14719.         adcxq	%rcx, %r11
    14720. 

  14720.         # A[1] * B[2]
    14721. 

  14721.         movq	16(%rdi), %rdx
    14722. 

  14722.         mulxq	8(%rsi), %rcx, %rax
    14723. 

  14723.         adcxq	%r14, %r12
    14724. 

  14724.         adoxq	%rcx, %r11
    14725. 

  14725.         adcxq	%r15, %r13
    14726. 

  14726.         adoxq	%rax, %r12
    14727. 

  14727.         # A[0] * B[2]
    14728. 

  14728.         mulxq	(%rsi), %rcx, %rax
    14729. 

  14729.         adoxq	%r15, %r13
    14730. 

  14730.         xorq	%r14, %r14
    14731. 

  14731.         adcxq	%rcx, %r10
    14732. 

  14732.         # A[1] * B[1]
    14733. 

  14733.         movq	8(%rdi), %rdx
    14734. 

  14734.         mulxq	8(%rsi), %rdx, %rcx
    14735. 

  14735.         adcxq	%rax, %r11
    14736. 

  14736.         adoxq	%rdx, %r10
    14737. 

  14737.         # A[3] * B[1]
    14738. 

  14738.         movq	8(%rdi), %rdx
    14739. 

  14739.         adoxq	%rcx, %r11
    14740. 

  14740.         mulxq	24(%rsi), %rcx, %rax
    14741. 

  14741.         adcxq	%rcx, %r12
    14742. 

  14742.         # A[2] * B[2]
    14743. 

  14743.         movq	16(%rdi), %rdx
    14744. 

  14744.         mulxq	16(%rsi), %rdx, %rcx
    14745. 

  14745.         adcxq	%rax, %r13
    14746. 

  14746.         adoxq	%rdx, %r12
    14747. 

  14747.         # A[3] * B[3]
    14748. 

  14748.         movq	24(%rdi), %rdx
    14749. 

  14749.         adoxq	%rcx, %r13
    14750. 

  14750.         mulxq	24(%rsi), %rcx, %rax
    14751. 

  14751.         adoxq	%r15, %r14
    14752. 

  14752.         adcxq	%rcx, %r14
    14753. 

  14753.         # A[0] * B[3]
    14754. 

  14754.         mulxq	(%rsi), %rdx, %rcx
    14755. 

  14755.         adcxq	%rax, %r15
    14756. 

  14756.         xorq	%rax, %rax
    14757. 

  14757.         adcxq	%rdx, %r11
    14758. 

  14758.         # A[3] * B[0]
    14759. 

  14759.         movq	(%rdi), %rdx
    14760. 

  14760.         adcxq	%rcx, %r12
    14761. 

  14761.         mulxq	24(%rsi), %rdx, %rcx
    14762. 

  14762.         adoxq	%rdx, %r11
    14763. 

  14763.         adoxq	%rcx, %r12
    14764. 

  14764.         # A[2] * B[3]
    14765. 

  14765.         movq	24(%rdi), %rdx
    14766. 

  14766.         mulxq	16(%rsi), %rdx, %rcx
    14767. 

  14767.         adcxq	%rdx, %r13
    14768. 

  14768.         # A[3] * B[2]
    14769. 

  14769.         movq	16(%rdi), %rdx
    14770. 

  14770.         adcxq	%rcx, %r14
    14771. 

  14771.         mulxq	24(%rsi), %rcx, %rdx
    14772. 

  14772.         adcxq	%rax, %r15
    14773. 

  14773.         adoxq	%rcx, %r13
    14774. 

  14774.         adoxq	%rdx, %r14
    14775. 

  14775.         adoxq	%rax, %r15
    14776. 

  14776.         # Reduce
    14777. 

  14777.         movq	$0x7fffffffffffffff, %rax
    14778. 

  14778.         #  Move top half into t4-t7 and remove top bit from t3
    14779. 

  14779.         shldq	$0x01, %r14, %r15
    14780. 

  14780.         shldq	$0x01, %r13, %r14
    14781. 

  14781.         shldq	$0x01, %r12, %r13
    14782. 

  14782.         shldq	$0x01, %r11, %r12
    14783. 

  14783.         andq	%rax, %r11
    14784. 

  14784.         #  Multiply top half by 19
    14785. 

  14785.         movq	$19, %rdx
    14786. 

  14786.         xorq	%rax, %rax
    14787. 

  14787.         mulxq	%r12, %rcx, %r12
    14788. 

  14788.         adcxq	%rcx, %r8
    14789. 

  14789.         adoxq	%r12, %r9
    14790. 

  14790.         mulxq	%r13, %rcx, %r13
    14791. 

  14791.         adcxq	%rcx, %r9
    14792. 

  14792.         adoxq	%r13, %r10
    14793. 

  14793.         mulxq	%r14, %rcx, %r14
    14794. 

  14794.         adcxq	%rcx, %r10
    14795. 

  14795.         adoxq	%r14, %r11
    14796. 

  14796.         mulxq	%r15, %r15, %rdx
    14797. 

  14797.         adcxq	%r15, %r11
    14798. 

  14798.         adoxq	%rax, %rdx
    14799. 

  14799.         adcxq	%rax, %rdx
    14800. 

  14800.         #  Overflow
    14801. 

  14801.         shldq	$0x01, %r11, %rdx
    14802. 

  14802.         movq	$0x7fffffffffffffff, %rax
    14803. 

  14803.         imulq	$19, %rdx, %rcx
    14804. 

  14804.         andq	%rax, %r11
    14805. 

  14805.         addq	%rcx, %r8
    14806. 

  14806.         adcq	$0x00, %r9
    14807. 

  14807.         adcq	$0x00, %r10
    14808. 

  14808.         adcq	$0x00, %r11
    14809. 

  14809.         # Reduce if top bit set
    14810. 

  14810.         movq	%r11, %rdx
    14811. 

  14811.         shrq	$63, %rdx
    14812. 

  14812.         imulq	$19, %rdx, %rcx
    14813. 

  14813.         andq	%rax, %r11
    14814. 

  14814.         addq	%rcx, %r8
    14815. 

  14815.         adcq	$0x00, %r9
    14816. 

  14816.         adcq	$0x00, %r10
    14817. 

  14817.         adcq	$0x00, %r11
    14818. 

  14818.         # Store
    14819. 

  14819.         movq	%r8, (%rsi)
    14820. 

  14820.         movq	%r9, 8(%rsi)
    14821. 

  14821.         movq	%r10, 16(%rsi)
    14822. 

  14822.         movq	%r11, 24(%rsi)
    14823. 

  14823.         movq	24(%rsp), %rdi
    14824. 

  14824.         movq	120(%rsp), %rsi
    14825. 

  14825.         movq	112(%rsp), %rbp
    14826. 

  14826.         # Multiply
    14827. 

  14827.         # A[0] * B[0]
    14828. 

  14828.         movq	(%rbp), %rdx
    14829. 

  14829.         mulxq	(%rsi), %r8, %r9
    14830. 

  14830.         # A[2] * B[0]
    14831. 

  14831.         mulxq	16(%rsi), %r10, %r11
    14832. 

  14832.         # A[1] * B[0]
    14833. 

  14833.         mulxq	8(%rsi), %rcx, %rax
    14834. 

  14834.         xorq	%r15, %r15
    14835. 

  14835.         adcxq	%rcx, %r9
    14836. 

  14836.         # A[1] * B[3]
    14837. 

  14837.         movq	24(%rbp), %rdx
    14838. 

  14838.         mulxq	8(%rsi), %r12, %r13
    14839. 

  14839.         adcxq	%rax, %r10
    14840. 

  14840.         # A[0] * B[1]
    14841. 

  14841.         movq	8(%rbp), %rdx
    14842. 

  14842.         mulxq	(%rsi), %rcx, %rax
    14843. 

  14843.         adoxq	%rcx, %r9
    14844. 

  14844.         # A[2] * B[1]
    14845. 

  14845.         mulxq	16(%rsi), %rcx, %r14
    14846. 

  14846.         adoxq	%rax, %r10
    14847. 

  14847.         adcxq	%rcx, %r11
    14848. 

  14848.         # A[1] * B[2]
    14849. 

  14849.         movq	16(%rbp), %rdx
    14850. 

  14850.         mulxq	8(%rsi), %rcx, %rax
    14851. 

  14851.         adcxq	%r14, %r12
    14852. 

  14852.         adoxq	%rcx, %r11
    14853. 

  14853.         adcxq	%r15, %r13
    14854. 

  14854.         adoxq	%rax, %r12
    14855. 

  14855.         # A[0] * B[2]
    14856. 

  14856.         mulxq	(%rsi), %rcx, %rax
    14857. 

  14857.         adoxq	%r15, %r13
    14858. 

  14858.         xorq	%r14, %r14
    14859. 

  14859.         adcxq	%rcx, %r10
    14860. 

  14860.         # A[1] * B[1]
    14861. 

  14861.         movq	8(%rbp), %rdx
    14862. 

  14862.         mulxq	8(%rsi), %rdx, %rcx
    14863. 

  14863.         adcxq	%rax, %r11
    14864. 

  14864.         adoxq	%rdx, %r10
    14865. 

  14865.         # A[3] * B[1]
    14866. 

  14866.         movq	8(%rbp), %rdx
    14867. 

  14867.         adoxq	%rcx, %r11
    14868. 

  14868.         mulxq	24(%rsi), %rcx, %rax
    14869. 

  14869.         adcxq	%rcx, %r12
    14870. 

  14870.         # A[2] * B[2]
    14871. 

  14871.         movq	16(%rbp), %rdx
    14872. 

  14872.         mulxq	16(%rsi), %rdx, %rcx
    14873. 

  14873.         adcxq	%rax, %r13
    14874. 

  14874.         adoxq	%rdx, %r12
    14875. 

  14875.         # A[3] * B[3]
    14876. 

  14876.         movq	24(%rbp), %rdx
    14877. 

  14877.         adoxq	%rcx, %r13
    14878. 

  14878.         mulxq	24(%rsi), %rcx, %rax
    14879. 

  14879.         adoxq	%r15, %r14
    14880. 

  14880.         adcxq	%rcx, %r14
    14881. 

  14881.         # A[0] * B[3]
    14882. 

  14882.         mulxq	(%rsi), %rdx, %rcx
    14883. 

  14883.         adcxq	%rax, %r15
    14884. 

  14884.         xorq	%rax, %rax
    14885. 

  14885.         adcxq	%rdx, %r11
    14886. 

  14886.         # A[3] * B[0]
    14887. 

  14887.         movq	(%rbp), %rdx
    14888. 

  14888.         adcxq	%rcx, %r12
    14889. 

  14889.         mulxq	24(%rsi), %rdx, %rcx
    14890. 

  14890.         adoxq	%rdx, %r11
    14891. 

  14891.         adoxq	%rcx, %r12
    14892. 

  14892.         # A[2] * B[3]
    14893. 

  14893.         movq	24(%rbp), %rdx
    14894. 

  14894.         mulxq	16(%rsi), %rdx, %rcx
    14895. 

  14895.         adcxq	%rdx, %r13
    14896. 

  14896.         # A[3] * B[2]
    14897. 

  14897.         movq	16(%rbp), %rdx
    14898. 

  14898.         adcxq	%rcx, %r14
    14899. 

  14899.         mulxq	24(%rsi), %rcx, %rdx
    14900. 

  14900.         adcxq	%rax, %r15
    14901. 

  14901.         adoxq	%rcx, %r13
    14902. 

  14902.         adoxq	%rdx, %r14
    14903. 

  14903.         adoxq	%rax, %r15
    14904. 

  14904.         # Reduce
    14905. 

  14905.         movq	$0x7fffffffffffffff, %rax
    14906. 

  14906.         #  Move top half into t4-t7 and remove top bit from t3
    14907. 

  14907.         shldq	$0x01, %r14, %r15
    14908. 

  14908.         shldq	$0x01, %r13, %r14
    14909. 

  14909.         shldq	$0x01, %r12, %r13
    14910. 

  14910.         shldq	$0x01, %r11, %r12
    14911. 

  14911.         andq	%rax, %r11
    14912. 

  14912.         #  Multiply top half by 19
    14913. 

  14913.         movq	$19, %rdx
    14914. 

  14914.         xorq	%rax, %rax
    14915. 

  14915.         mulxq	%r12, %rcx, %r12
    14916. 

  14916.         adcxq	%rcx, %r8
    14917. 

  14917.         adoxq	%r12, %r9
    14918. 

  14918.         mulxq	%r13, %rcx, %r13
    14919. 

  14919.         adcxq	%rcx, %r9
    14920. 

  14920.         adoxq	%r13, %r10
    14921. 

  14921.         mulxq	%r14, %rcx, %r14
    14922. 

  14922.         adcxq	%rcx, %r10
    14923. 

  14923.         adoxq	%r14, %r11
    14924. 

  14924.         mulxq	%r15, %r15, %rdx
    14925. 

  14925.         adcxq	%r15, %r11
    14926. 

  14926.         adoxq	%rax, %rdx
    14927. 

  14927.         adcxq	%rax, %rdx
    14928. 

  14928.         #  Overflow
    14929. 

  14929.         shldq	$0x01, %r11, %rdx
    14930. 

  14930.         movq	$0x7fffffffffffffff, %rax
    14931. 

  14931.         imulq	$19, %rdx, %rcx
    14932. 

  14932.         andq	%rax, %r11
    14933. 

  14933.         addq	%rcx, %r8
    14934. 

  14934.         adcq	$0x00, %r9
    14935. 

  14935.         adcq	$0x00, %r10
    14936. 

  14936.         adcq	$0x00, %r11
    14937. 

  14937.         # Reduce if top bit set
    14938. 

  14938.         movq	%r11, %rdx
    14939. 

  14939.         shrq	$63, %rdx
    14940. 

  14940.         imulq	$19, %rdx, %rcx
    14941. 

  14941.         andq	%rax, %r11
    14942. 

  14942.         addq	%rcx, %r8
    14943. 

  14943.         adcq	$0x00, %r9
    14944. 

  14944.         adcq	$0x00, %r10
    14945. 

  14945.         adcq	$0x00, %r11
    14946. 

  14946.         # Store
    14947. 

  14947.         movq	%r8, (%rdi)
    14948. 

  14948.         movq	%r9, 8(%rdi)
    14949. 

  14949.         movq	%r10, 16(%rdi)
    14950. 

  14950.         movq	%r11, 24(%rdi)
    14951. 

  14951.         movq	8(%rsp), %rsi
    14952. 

  14952.         movq	(%rsp), %rbp
    14953. 

  14953.         # Add
    14954. 

  14954.         movq	(%rbx), %r8
    14955. 

  14955.         movq	8(%rbx), %r9
    14956. 

  14956.         movq	16(%rbx), %r10
    14957. 

  14957.         movq	24(%rbx), %rdx
    14958. 

  14958.         movq	%r8, %r12
    14959. 

  14959.         addq	(%rsi), %r8
    14960. 

  14960.         movq	%r9, %r13
    14961. 

  14961.         adcq	8(%rsi), %r9
    14962. 

  14962.         movq	%r10, %r14
    14963. 

  14963.         adcq	16(%rsi), %r10
    14964. 

  14964.         movq	%rdx, %r15
    14965. 

  14965.         adcq	24(%rsi), %rdx
    14966. 

  14966.         movq	$-19, %rcx
    14967. 

  14967.         movq	%rdx, %r11
    14968. 

  14968.         movq	$0x7fffffffffffffff, %rax
    14969. 

  14969.         sarq	$63, %rdx
    14970. 

  14970.         #   Mask the modulus
    14971. 

  14971.         andq	%rdx, %rcx
    14972. 

  14972.         andq	%rdx, %rax
    14973. 

  14973.         #   Sub modulus (if overflow)
    14974. 

  14974.         subq	%rcx, %r8
    14975. 

  14975.         sbbq	%rdx, %r9
    14976. 

  14976.         sbbq	%rdx, %r10
    14977. 

  14977.         sbbq	%rax, %r11
    14978. 

  14978.         # Sub
    14979. 

  14979.         subq	(%rsi), %r12
    14980. 

  14980.         movq	$0x00, %rdx
    14981. 

  14981.         sbbq	8(%rsi), %r13
    14982. 

  14982.         movq	$-19, %rcx
    14983. 

  14983.         sbbq	16(%rsi), %r14
    14984. 

  14984.         movq	$0x7fffffffffffffff, %rax
    14985. 

  14985.         sbbq	24(%rsi), %r15
    14986. 

  14986.         sbbq	$0x00, %rdx
    14987. 

  14987.         #   Mask the modulus
    14988. 

  14988.         andq	%rdx, %rcx
    14989. 

  14989.         andq	%rdx, %rax
    14990. 

  14990.         #   Add modulus (if underflow)
    14991. 

  14991.         addq	%rcx, %r12
    14992. 

  14992.         adcq	%rdx, %r13
    14993. 

  14993.         adcq	%rdx, %r14
    14994. 

  14994.         adcq	%rax, %r15
    14995. 

  14995.         movq	%r8, (%rsi)
    14996. 

  14996.         movq	%r9, 8(%rsi)
    14997. 

  14997.         movq	%r10, 16(%rsi)
    14998. 

  14998.         movq	%r11, 24(%rsi)
    14999. 

  14999.         movq	%r12, (%rbp)
    15000. 

  15000.         movq	%r13, 8(%rbp)
    15001. 

  15001.         movq	%r14, 16(%rbp)
    15002. 

  15002.         movq	%r15, 24(%rbp)
    15003. 

  15003.         movq	104(%rsp), %rsi
    15004. 

  15004.         # Double
    15005. 

  15005.         movq	(%rsi), %r8
    15006. 

  15006.         movq	8(%rsi), %r9
    15007. 

  15007.         addq	%r8, %r8
    15008. 

  15008.         movq	16(%rsi), %r10
    15009. 

  15009.         adcq	%r9, %r9
    15010. 

  15010.         movq	24(%rsi), %rdx
    15011. 

  15011.         adcq	%r10, %r10
    15012. 

  15012.         movq	$-19, %rcx
    15013. 

  15013.         adcq	%rdx, %rdx
    15014. 

  15014.         movq	$0x7fffffffffffffff, %rax
    15015. 

  15015.         movq	%rdx, %r11
    15016. 

  15016.         sarq	$63, %rdx
    15017. 

  15017.         #   Mask the modulus
    15018. 

  15018.         andq	%rdx, %rcx
    15019. 

  15019.         andq	%rdx, %rax
    15020. 

  15020.         #   Sub modulus (if overflow)
    15021. 

  15021.         subq	%rcx, %r8
    15022. 

  15022.         sbbq	%rdx, %r9
    15023. 

  15023.         sbbq	%rdx, %r10
    15024. 

  15024.         sbbq	%rax, %r11
    15025. 

  15025.         movq	%r8, (%rbx)
    15026. 

  15026.         movq	%r9, 8(%rbx)
    15027. 

  15027.         movq	%r10, 16(%rbx)
    15028. 

  15028.         movq	%r11, 24(%rbx)
    15029. 

  15029.         # Add
    15030. 

  15030.         movq	(%rbx), %r8
    15031. 

  15031.         movq	8(%rbx), %r9
    15032. 

  15032.         movq	16(%rbx), %r10
    15033. 

  15033.         movq	24(%rbx), %rdx
    15034. 

  15034.         movq	%r8, %r12
    15035. 

  15035.         addq	(%rdi), %r8
    15036. 

  15036.         movq	%r9, %r13
    15037. 

  15037.         adcq	8(%rdi), %r9
    15038. 

  15038.         movq	%r10, %r14
    15039. 

  15039.         adcq	16(%rdi), %r10
    15040. 

  15040.         movq	%rdx, %r15
    15041. 

  15041.         adcq	24(%rdi), %rdx
    15042. 

  15042.         movq	$-19, %rcx
    15043. 

  15043.         movq	%rdx, %r11
    15044. 

  15044.         movq	$0x7fffffffffffffff, %rax
    15045. 

  15045.         sarq	$63, %rdx
    15046. 

  15046.         #   Mask the modulus
    15047. 

  15047.         andq	%rdx, %rcx
    15048. 

  15048.         andq	%rdx, %rax
    15049. 

  15049.         #   Sub modulus (if overflow)
    15050. 

  15050.         subq	%rcx, %r8
    15051. 

  15051.         sbbq	%rdx, %r9
    15052. 

  15052.         sbbq	%rdx, %r10
    15053. 

  15053.         sbbq	%rax, %r11
    15054. 

  15054.         # Sub
    15055. 

  15055.         subq	(%rdi), %r12
    15056. 

  15056.         movq	$0x00, %rdx
    15057. 

  15057.         sbbq	8(%rdi), %r13
    15058. 

  15058.         movq	$-19, %rcx
    15059. 

  15059.         sbbq	16(%rdi), %r14
    15060. 

  15060.         movq	$0x7fffffffffffffff, %rax
    15061. 

  15061.         sbbq	24(%rdi), %r15
    15062. 

  15062.         sbbq	$0x00, %rdx
    15063. 

  15063.         #   Mask the modulus
    15064. 

  15064.         andq	%rdx, %rcx
    15065. 

  15065.         andq	%rdx, %rax
    15066. 

  15066.         #   Add modulus (if underflow)
    15067. 

  15067.         addq	%rcx, %r12
    15068. 

  15068.         adcq	%rdx, %r13
    15069. 

  15069.         adcq	%rdx, %r14
    15070. 

  15070.         adcq	%rax, %r15
    15071. 

  15071.         movq	%r8, (%rdi)
    15072. 

  15072.         movq	%r9, 8(%rdi)
    15073. 

  15073.         movq	%r10, 16(%rdi)
    15074. 

  15074.         movq	%r11, 24(%rdi)
    15075. 

  15075.         movq	%r12, (%rbx)
    15076. 

  15076.         movq	%r13, 8(%rbx)
    15077. 

  15077.         movq	%r14, 16(%rbx)
    15078. 

  15078.         movq	%r15, 24(%rbx)
    15079. 

  15079.         addq	$48, %rsp
    15080. 

  15080.         popq	%r15
    15081. 

  15081.         popq	%r14
    15082. 

  15082.         popq	%r13
    15083. 

  15083.         popq	%r12
    15084. 

  15084.         popq	%rbx
    15085. 

  15085.         popq	%rbp
    15086. 

  15086.         repz retq
    15087. 

  15087. #ifndef __APPLE__
    15088. 

  15088. .size	fe_ge_msub_avx2,.-fe_ge_msub_avx2
    15089. 

  15089. #endif /* __APPLE__ */
    15090. 

  15090. #ifndef __APPLE__
    15091. 

  15091. .text
    15092. 

  15092. .globl	fe_ge_add_avx2
    15093. 

  15093. .type	fe_ge_add_avx2,@function
    15094. 

  15094. .align	16
    15095. 

  15095. fe_ge_add_avx2:
    15096. 

  15096. #else
    15097. 

  15097. .section	__TEXT,__text
    15098. 

  15098. .globl	_fe_ge_add_avx2
    15099. 

  15099. .p2align	4
    15100. 

  15100. _fe_ge_add_avx2:
    15101. 

  15101. #endif /* __APPLE__ */
    15102. 

  15102.         pushq	%rbx
    15103. 

  15103.         pushq	%rbp
    15104. 

  15104.         pushq	%r12
    15105. 

  15105.         pushq	%r13
    15106. 

  15106.         pushq	%r14
    15107. 

  15107.         pushq	%r15
    15108. 

  15108.         subq	$0x50, %rsp
    15109. 

  15109.         movq	%rdi, (%rsp)
    15110. 

  15110.         movq	%rsi, 8(%rsp)
    15111. 

  15111.         movq	%rdx, 16(%rsp)
    15112. 

  15112.         movq	%rcx, 24(%rsp)
    15113. 

  15113.         movq	%r8, 32(%rsp)
    15114. 

  15114.         movq	%r9, 40(%rsp)
    15115. 

  15115.         movq	8(%rsp), %rsi
    15116. 

  15116.         movq	40(%rsp), %rbx
    15117. 

  15117.         movq	32(%rsp), %rbp
    15118. 

  15118.         # Add
    15119. 

  15119.         movq	(%rbx), %r8
    15120. 

  15120.         movq	8(%rbx), %r9
    15121. 

  15121.         movq	16(%rbx), %r10
    15122. 

  15122.         movq	24(%rbx), %rdx
    15123. 

  15123.         movq	%r8, %r12
    15124. 

  15124.         addq	(%rbp), %r8
    15125. 

  15125.         movq	%r9, %r13
    15126. 

  15126.         adcq	8(%rbp), %r9
    15127. 

  15127.         movq	%r10, %r14
    15128. 

  15128.         adcq	16(%rbp), %r10
    15129. 

  15129.         movq	%rdx, %r15
    15130. 

  15130.         adcq	24(%rbp), %rdx
    15131. 

  15131.         movq	$-19, %rcx
    15132. 

  15132.         movq	%rdx, %r11
    15133. 

  15133.         movq	$0x7fffffffffffffff, %rax
    15134. 

  15134.         sarq	$63, %rdx
    15135. 

  15135.         #   Mask the modulus
    15136. 

  15136.         andq	%rdx, %rcx
    15137. 

  15137.         andq	%rdx, %rax
    15138. 

  15138.         #   Sub modulus (if overflow)
    15139. 

  15139.         subq	%rcx, %r8
    15140. 

  15140.         sbbq	%rdx, %r9
    15141. 

  15141.         sbbq	%rdx, %r10
    15142. 

  15142.         sbbq	%rax, %r11
    15143. 

  15143.         # Sub
    15144. 

  15144.         subq	(%rbp), %r12
    15145. 

  15145.         movq	$0x00, %rdx
    15146. 

  15146.         sbbq	8(%rbp), %r13
    15147. 

  15147.         movq	$-19, %rcx
    15148. 

  15148.         sbbq	16(%rbp), %r14
    15149. 

  15149.         movq	$0x7fffffffffffffff, %rax
    15150. 

  15150.         sbbq	24(%rbp), %r15
    15151. 

  15151.         sbbq	$0x00, %rdx
    15152. 

  15152.         #   Mask the modulus
    15153. 

  15153.         andq	%rdx, %rcx
    15154. 

  15154.         andq	%rdx, %rax
    15155. 

  15155.         #   Add modulus (if underflow)
    15156. 

  15156.         addq	%rcx, %r12
    15157. 

  15157.         adcq	%rdx, %r13
    15158. 

  15158.         adcq	%rdx, %r14
    15159. 

  15159.         adcq	%rax, %r15
    15160. 

  15160.         movq	%r8, (%rdi)
    15161. 

  15161.         movq	%r9, 8(%rdi)
    15162. 

  15162.         movq	%r10, 16(%rdi)
    15163. 

  15163.         movq	%r11, 24(%rdi)
    15164. 

  15164.         movq	%r12, (%rsi)
    15165. 

  15165.         movq	%r13, 8(%rsi)
    15166. 

  15166.         movq	%r14, 16(%rsi)
    15167. 

  15167.         movq	%r15, 24(%rsi)
    15168. 

  15168.         movq	16(%rsp), %rbx
    15169. 

  15169.         movq	168(%rsp), %rbp
    15170. 

  15170.         # Multiply
    15171. 

  15171.         # A[0] * B[0]
    15172. 

  15172.         movq	(%rbp), %rdx
    15173. 

  15173.         mulxq	(%rdi), %r8, %r9
    15174. 

  15174.         # A[2] * B[0]
    15175. 

  15175.         mulxq	16(%rdi), %r10, %r11
    15176. 

  15176.         # A[1] * B[0]
    15177. 

  15177.         mulxq	8(%rdi), %rcx, %rax
    15178. 

  15178.         xorq	%r15, %r15
    15179. 

  15179.         adcxq	%rcx, %r9
    15180. 

  15180.         # A[1] * B[3]
    15181. 

  15181.         movq	24(%rbp), %rdx
    15182. 

  15182.         mulxq	8(%rdi), %r12, %r13
    15183. 

  15183.         adcxq	%rax, %r10
    15184. 

  15184.         # A[0] * B[1]
    15185. 

  15185.         movq	8(%rbp), %rdx
    15186. 

  15186.         mulxq	(%rdi), %rcx, %rax
    15187. 

  15187.         adoxq	%rcx, %r9
    15188. 

  15188.         # A[2] * B[1]
    15189. 

  15189.         mulxq	16(%rdi), %rcx, %r14
    15190. 

  15190.         adoxq	%rax, %r10
    15191. 

  15191.         adcxq	%rcx, %r11
    15192. 

  15192.         # A[1] * B[2]
    15193. 

  15193.         movq	16(%rbp), %rdx
    15194. 

  15194.         mulxq	8(%rdi), %rcx, %rax
    15195. 

  15195.         adcxq	%r14, %r12
    15196. 

  15196.         adoxq	%rcx, %r11
    15197. 

  15197.         adcxq	%r15, %r13
    15198. 

  15198.         adoxq	%rax, %r12
    15199. 

  15199.         # A[0] * B[2]
    15200. 

  15200.         mulxq	(%rdi), %rcx, %rax
    15201. 

  15201.         adoxq	%r15, %r13
    15202. 

  15202.         xorq	%r14, %r14
    15203. 

  15203.         adcxq	%rcx, %r10
    15204. 

  15204.         # A[1] * B[1]
    15205. 

  15205.         movq	8(%rbp), %rdx
    15206. 

  15206.         mulxq	8(%rdi), %rdx, %rcx
    15207. 

  15207.         adcxq	%rax, %r11
    15208. 

  15208.         adoxq	%rdx, %r10
    15209. 

  15209.         # A[3] * B[1]
    15210. 

  15210.         movq	8(%rbp), %rdx
    15211. 

  15211.         adoxq	%rcx, %r11
    15212. 

  15212.         mulxq	24(%rdi), %rcx, %rax
    15213. 

  15213.         adcxq	%rcx, %r12
    15214. 

  15214.         # A[2] * B[2]
    15215. 

  15215.         movq	16(%rbp), %rdx
    15216. 

  15216.         mulxq	16(%rdi), %rdx, %rcx
    15217. 

  15217.         adcxq	%rax, %r13
    15218. 

  15218.         adoxq	%rdx, %r12
    15219. 

  15219.         # A[3] * B[3]
    15220. 

  15220.         movq	24(%rbp), %rdx
    15221. 

  15221.         adoxq	%rcx, %r13
    15222. 

  15222.         mulxq	24(%rdi), %rcx, %rax
    15223. 

  15223.         adoxq	%r15, %r14
    15224. 

  15224.         adcxq	%rcx, %r14
    15225. 

  15225.         # A[0] * B[3]
    15226. 

  15226.         mulxq	(%rdi), %rdx, %rcx
    15227. 

  15227.         adcxq	%rax, %r15
    15228. 

  15228.         xorq	%rax, %rax
    15229. 

  15229.         adcxq	%rdx, %r11
    15230. 

  15230.         # A[3] * B[0]
    15231. 

  15231.         movq	(%rbp), %rdx
    15232. 

  15232.         adcxq	%rcx, %r12
    15233. 

  15233.         mulxq	24(%rdi), %rdx, %rcx
    15234. 

  15234.         adoxq	%rdx, %r11
    15235. 

  15235.         adoxq	%rcx, %r12
    15236. 

  15236.         # A[2] * B[3]
    15237. 

  15237.         movq	24(%rbp), %rdx
    15238. 

  15238.         mulxq	16(%rdi), %rdx, %rcx
    15239. 

  15239.         adcxq	%rdx, %r13
    15240. 

  15240.         # A[3] * B[2]
    15241. 

  15241.         movq	16(%rbp), %rdx
    15242. 

  15242.         adcxq	%rcx, %r14
    15243. 

  15243.         mulxq	24(%rdi), %rcx, %rdx
    15244. 

  15244.         adcxq	%rax, %r15
    15245. 

  15245.         adoxq	%rcx, %r13
    15246. 

  15246.         adoxq	%rdx, %r14
    15247. 

  15247.         adoxq	%rax, %r15
    15248. 

  15248.         # Reduce
    15249. 

  15249.         movq	$0x7fffffffffffffff, %rax
    15250. 

  15250.         #  Move top half into t4-t7 and remove top bit from t3
    15251. 

  15251.         shldq	$0x01, %r14, %r15
    15252. 

  15252.         shldq	$0x01, %r13, %r14
    15253. 

  15253.         shldq	$0x01, %r12, %r13
    15254. 

  15254.         shldq	$0x01, %r11, %r12
    15255. 

  15255.         andq	%rax, %r11
    15256. 

  15256.         #  Multiply top half by 19
    15257. 

  15257.         movq	$19, %rdx
    15258. 

  15258.         xorq	%rax, %rax
    15259. 

  15259.         mulxq	%r12, %rcx, %r12
    15260. 

  15260.         adcxq	%rcx, %r8
    15261. 

  15261.         adoxq	%r12, %r9
    15262. 

  15262.         mulxq	%r13, %rcx, %r13
    15263. 

  15263.         adcxq	%rcx, %r9
    15264. 

  15264.         adoxq	%r13, %r10
    15265. 

  15265.         mulxq	%r14, %rcx, %r14
    15266. 

  15266.         adcxq	%rcx, %r10
    15267. 

  15267.         adoxq	%r14, %r11
    15268. 

  15268.         mulxq	%r15, %r15, %rdx
    15269. 

  15269.         adcxq	%r15, %r11
    15270. 

  15270.         adoxq	%rax, %rdx
    15271. 

  15271.         adcxq	%rax, %rdx
    15272. 

  15272.         #  Overflow
    15273. 

  15273.         shldq	$0x01, %r11, %rdx
    15274. 

  15274.         movq	$0x7fffffffffffffff, %rax
    15275. 

  15275.         imulq	$19, %rdx, %rcx
    15276. 

  15276.         andq	%rax, %r11
    15277. 

  15277.         addq	%rcx, %r8
    15278. 

  15278.         adcq	$0x00, %r9
    15279. 

  15279.         adcq	$0x00, %r10
    15280. 

  15280.         adcq	$0x00, %r11
    15281. 

  15281.         # Reduce if top bit set
    15282. 

  15282.         movq	%r11, %rdx
    15283. 

  15283.         shrq	$63, %rdx
    15284. 

  15284.         imulq	$19, %rdx, %rcx
    15285. 

  15285.         andq	%rax, %r11
    15286. 

  15286.         addq	%rcx, %r8
    15287. 

  15287.         adcq	$0x00, %r9
    15288. 

  15288.         adcq	$0x00, %r10
    15289. 

  15289.         adcq	$0x00, %r11
    15290. 

  15290.         # Store
    15291. 

  15291.         movq	%r8, (%rbx)
    15292. 

  15292.         movq	%r9, 8(%rbx)
    15293. 

  15293.         movq	%r10, 16(%rbx)
    15294. 

  15294.         movq	%r11, 24(%rbx)
    15295. 

  15295.         movq	176(%rsp), %rbx
    15296. 

  15296.         # Multiply
    15297. 

  15297.         # A[0] * B[0]
    15298. 

  15298.         movq	(%rbx), %rdx
    15299. 

  15299.         mulxq	(%rsi), %r8, %r9
    15300. 

  15300.         # A[2] * B[0]
    15301. 

  15301.         mulxq	16(%rsi), %r10, %r11
    15302. 

  15302.         # A[1] * B[0]
    15303. 

  15303.         mulxq	8(%rsi), %rcx, %rax
    15304. 

  15304.         xorq	%r15, %r15
    15305. 

  15305.         adcxq	%rcx, %r9
    15306. 

  15306.         # A[1] * B[3]
    15307. 

  15307.         movq	24(%rbx), %rdx
    15308. 

  15308.         mulxq	8(%rsi), %r12, %r13
    15309. 

  15309.         adcxq	%rax, %r10
    15310. 

  15310.         # A[0] * B[1]
    15311. 

  15311.         movq	8(%rbx), %rdx
    15312. 

  15312.         mulxq	(%rsi), %rcx, %rax
    15313. 

  15313.         adoxq	%rcx, %r9
    15314. 

  15314.         # A[2] * B[1]
    15315. 

  15315.         mulxq	16(%rsi), %rcx, %r14
    15316. 

  15316.         adoxq	%rax, %r10
    15317. 

  15317.         adcxq	%rcx, %r11
    15318. 

  15318.         # A[1] * B[2]
    15319. 

  15319.         movq	16(%rbx), %rdx
    15320. 

  15320.         mulxq	8(%rsi), %rcx, %rax
    15321. 

  15321.         adcxq	%r14, %r12
    15322. 

  15322.         adoxq	%rcx, %r11
    15323. 

  15323.         adcxq	%r15, %r13
    15324. 

  15324.         adoxq	%rax, %r12
    15325. 

  15325.         # A[0] * B[2]
    15326. 

  15326.         mulxq	(%rsi), %rcx, %rax
    15327. 

  15327.         adoxq	%r15, %r13
    15328. 

  15328.         xorq	%r14, %r14
    15329. 

  15329.         adcxq	%rcx, %r10
    15330. 

  15330.         # A[1] * B[1]
    15331. 

  15331.         movq	8(%rbx), %rdx
    15332. 

  15332.         mulxq	8(%rsi), %rdx, %rcx
    15333. 

  15333.         adcxq	%rax, %r11
    15334. 

  15334.         adoxq	%rdx, %r10
    15335. 

  15335.         # A[3] * B[1]
    15336. 

  15336.         movq	8(%rbx), %rdx
    15337. 

  15337.         adoxq	%rcx, %r11
    15338. 

  15338.         mulxq	24(%rsi), %rcx, %rax
    15339. 

  15339.         adcxq	%rcx, %r12
    15340. 

  15340.         # A[2] * B[2]
    15341. 

  15341.         movq	16(%rbx), %rdx
    15342. 

  15342.         mulxq	16(%rsi), %rdx, %rcx
    15343. 

  15343.         adcxq	%rax, %r13
    15344. 

  15344.         adoxq	%rdx, %r12
    15345. 

  15345.         # A[3] * B[3]
    15346. 

  15346.         movq	24(%rbx), %rdx
    15347. 

  15347.         adoxq	%rcx, %r13
    15348. 

  15348.         mulxq	24(%rsi), %rcx, %rax
    15349. 

  15349.         adoxq	%r15, %r14
    15350. 

  15350.         adcxq	%rcx, %r14
    15351. 

  15351.         # A[0] * B[3]
    15352. 

  15352.         mulxq	(%rsi), %rdx, %rcx
    15353. 

  15353.         adcxq	%rax, %r15
    15354. 

  15354.         xorq	%rax, %rax
    15355. 

  15355.         adcxq	%rdx, %r11
    15356. 

  15356.         # A[3] * B[0]
    15357. 

  15357.         movq	(%rbx), %rdx
    15358. 

  15358.         adcxq	%rcx, %r12
    15359. 

  15359.         mulxq	24(%rsi), %rdx, %rcx
    15360. 

  15360.         adoxq	%rdx, %r11
    15361. 

  15361.         adoxq	%rcx, %r12
    15362. 

  15362.         # A[2] * B[3]
    15363. 

  15363.         movq	24(%rbx), %rdx
    15364. 

  15364.         mulxq	16(%rsi), %rdx, %rcx
    15365. 

  15365.         adcxq	%rdx, %r13
    15366. 

  15366.         # A[3] * B[2]
    15367. 

  15367.         movq	16(%rbx), %rdx
    15368. 

  15368.         adcxq	%rcx, %r14
    15369. 

  15369.         mulxq	24(%rsi), %rcx, %rdx
    15370. 

  15370.         adcxq	%rax, %r15
    15371. 

  15371.         adoxq	%rcx, %r13
    15372. 

  15372.         adoxq	%rdx, %r14
    15373. 

  15373.         adoxq	%rax, %r15
    15374. 

  15374.         # Reduce
    15375. 

  15375.         movq	$0x7fffffffffffffff, %rax
    15376. 

  15376.         #  Move top half into t4-t7 and remove top bit from t3
    15377. 

  15377.         shldq	$0x01, %r14, %r15
    15378. 

  15378.         shldq	$0x01, %r13, %r14
    15379. 

  15379.         shldq	$0x01, %r12, %r13
    15380. 

  15380.         shldq	$0x01, %r11, %r12
    15381. 

  15381.         andq	%rax, %r11
    15382. 

  15382.         #  Multiply top half by 19
    15383. 

  15383.         movq	$19, %rdx
    15384. 

  15384.         xorq	%rax, %rax
    15385. 

  15385.         mulxq	%r12, %rcx, %r12
    15386. 

  15386.         adcxq	%rcx, %r8
    15387. 

  15387.         adoxq	%r12, %r9
    15388. 

  15388.         mulxq	%r13, %rcx, %r13
    15389. 

  15389.         adcxq	%rcx, %r9
    15390. 

  15390.         adoxq	%r13, %r10
    15391. 

  15391.         mulxq	%r14, %rcx, %r14
    15392. 

  15392.         adcxq	%rcx, %r10
    15393. 

  15393.         adoxq	%r14, %r11
    15394. 

  15394.         mulxq	%r15, %r15, %rdx
    15395. 

  15395.         adcxq	%r15, %r11
    15396. 

  15396.         adoxq	%rax, %rdx
    15397. 

  15397.         adcxq	%rax, %rdx
    15398. 

  15398.         #  Overflow
    15399. 

  15399.         shldq	$0x01, %r11, %rdx
    15400. 

  15400.         movq	$0x7fffffffffffffff, %rax
    15401. 

  15401.         imulq	$19, %rdx, %rcx
    15402. 

  15402.         andq	%rax, %r11
    15403. 

  15403.         addq	%rcx, %r8
    15404. 

  15404.         adcq	$0x00, %r9
    15405. 

  15405.         adcq	$0x00, %r10
    15406. 

  15406.         adcq	$0x00, %r11
    15407. 

  15407.         # Reduce if top bit set
    15408. 

  15408.         movq	%r11, %rdx
    15409. 

  15409.         shrq	$63, %rdx
    15410. 

  15410.         imulq	$19, %rdx, %rcx
    15411. 

  15411.         andq	%rax, %r11
    15412. 

  15412.         addq	%rcx, %r8
    15413. 

  15413.         adcq	$0x00, %r9
    15414. 

  15414.         adcq	$0x00, %r10
    15415. 

  15415.         adcq	$0x00, %r11
    15416. 

  15416.         # Store
    15417. 

  15417.         movq	%r8, (%rsi)
    15418. 

  15418.         movq	%r9, 8(%rsi)
    15419. 

  15419.         movq	%r10, 16(%rsi)
    15420. 

  15420.         movq	%r11, 24(%rsi)
    15421. 

  15421.         movq	24(%rsp), %rsi
    15422. 

  15422.         movq	160(%rsp), %rbx
    15423. 

  15423.         movq	144(%rsp), %rbp
    15424. 

  15424.         # Multiply
    15425. 

  15425.         # A[0] * B[0]
    15426. 

  15426.         movq	(%rbp), %rdx
    15427. 

  15427.         mulxq	(%rbx), %r8, %r9
    15428. 

  15428.         # A[2] * B[0]
    15429. 

  15429.         mulxq	16(%rbx), %r10, %r11
    15430. 

  15430.         # A[1] * B[0]
    15431. 

  15431.         mulxq	8(%rbx), %rcx, %rax
    15432. 

  15432.         xorq	%r15, %r15
    15433. 

  15433.         adcxq	%rcx, %r9
    15434. 

  15434.         # A[1] * B[3]
    15435. 

  15435.         movq	24(%rbp), %rdx
    15436. 

  15436.         mulxq	8(%rbx), %r12, %r13
    15437. 

  15437.         adcxq	%rax, %r10
    15438. 

  15438.         # A[0] * B[1]
    15439. 

  15439.         movq	8(%rbp), %rdx
    15440. 

  15440.         mulxq	(%rbx), %rcx, %rax
    15441. 

  15441.         adoxq	%rcx, %r9
    15442. 

  15442.         # A[2] * B[1]
    15443. 

  15443.         mulxq	16(%rbx), %rcx, %r14
    15444. 

  15444.         adoxq	%rax, %r10
    15445. 

  15445.         adcxq	%rcx, %r11
    15446. 

  15446.         # A[1] * B[2]
    15447. 

  15447.         movq	16(%rbp), %rdx
    15448. 

  15448.         mulxq	8(%rbx), %rcx, %rax
    15449. 

  15449.         adcxq	%r14, %r12
    15450. 

  15450.         adoxq	%rcx, %r11
    15451. 

  15451.         adcxq	%r15, %r13
    15452. 

  15452.         adoxq	%rax, %r12
    15453. 

  15453.         # A[0] * B[2]
    15454. 

  15454.         mulxq	(%rbx), %rcx, %rax
    15455. 

  15455.         adoxq	%r15, %r13
    15456. 

  15456.         xorq	%r14, %r14
    15457. 

  15457.         adcxq	%rcx, %r10
    15458. 

  15458.         # A[1] * B[1]
    15459. 

  15459.         movq	8(%rbp), %rdx
    15460. 

  15460.         mulxq	8(%rbx), %rdx, %rcx
    15461. 

  15461.         adcxq	%rax, %r11
    15462. 

  15462.         adoxq	%rdx, %r10
    15463. 

  15463.         # A[3] * B[1]
    15464. 

  15464.         movq	8(%rbp), %rdx
    15465. 

  15465.         adoxq	%rcx, %r11
    15466. 

  15466.         mulxq	24(%rbx), %rcx, %rax
    15467. 

  15467.         adcxq	%rcx, %r12
    15468. 

  15468.         # A[2] * B[2]
    15469. 

  15469.         movq	16(%rbp), %rdx
    15470. 

  15470.         mulxq	16(%rbx), %rdx, %rcx
    15471. 

  15471.         adcxq	%rax, %r13
    15472. 

  15472.         adoxq	%rdx, %r12
    15473. 

  15473.         # A[3] * B[3]
    15474. 

  15474.         movq	24(%rbp), %rdx
    15475. 

  15475.         adoxq	%rcx, %r13
    15476. 

  15476.         mulxq	24(%rbx), %rcx, %rax
    15477. 

  15477.         adoxq	%r15, %r14
    15478. 

  15478.         adcxq	%rcx, %r14
    15479. 

  15479.         # A[0] * B[3]
    15480. 

  15480.         mulxq	(%rbx), %rdx, %rcx
    15481. 

  15481.         adcxq	%rax, %r15
    15482. 

  15482.         xorq	%rax, %rax
    15483. 

  15483.         adcxq	%rdx, %r11
    15484. 

  15484.         # A[3] * B[0]
    15485. 

  15485.         movq	(%rbp), %rdx
    15486. 

  15486.         adcxq	%rcx, %r12
    15487. 

  15487.         mulxq	24(%rbx), %rdx, %rcx
    15488. 

  15488.         adoxq	%rdx, %r11
    15489. 

  15489.         adoxq	%rcx, %r12
    15490. 

  15490.         # A[2] * B[3]
    15491. 

  15491.         movq	24(%rbp), %rdx
    15492. 

  15492.         mulxq	16(%rbx), %rdx, %rcx
    15493. 

  15493.         adcxq	%rdx, %r13
    15494. 

  15494.         # A[3] * B[2]
    15495. 

  15495.         movq	16(%rbp), %rdx
    15496. 

  15496.         adcxq	%rcx, %r14
    15497. 

  15497.         mulxq	24(%rbx), %rcx, %rdx
    15498. 

  15498.         adcxq	%rax, %r15
    15499. 

  15499.         adoxq	%rcx, %r13
    15500. 

  15500.         adoxq	%rdx, %r14
    15501. 

  15501.         adoxq	%rax, %r15
    15502. 

  15502.         # Reduce
    15503. 

  15503.         movq	$0x7fffffffffffffff, %rax
    15504. 

  15504.         #  Move top half into t4-t7 and remove top bit from t3
    15505. 

  15505.         shldq	$0x01, %r14, %r15
    15506. 

  15506.         shldq	$0x01, %r13, %r14
    15507. 

  15507.         shldq	$0x01, %r12, %r13
    15508. 

  15508.         shldq	$0x01, %r11, %r12
    15509. 

  15509.         andq	%rax, %r11
    15510. 

  15510.         #  Multiply top half by 19
    15511. 

  15511.         movq	$19, %rdx
    15512. 

  15512.         xorq	%rax, %rax
    15513. 

  15513.         mulxq	%r12, %rcx, %r12
    15514. 

  15514.         adcxq	%rcx, %r8
    15515. 

  15515.         adoxq	%r12, %r9
    15516. 

  15516.         mulxq	%r13, %rcx, %r13
    15517. 

  15517.         adcxq	%rcx, %r9
    15518. 

  15518.         adoxq	%r13, %r10
    15519. 

  15519.         mulxq	%r14, %rcx, %r14
    15520. 

  15520.         adcxq	%rcx, %r10
    15521. 

  15521.         adoxq	%r14, %r11
    15522. 

  15522.         mulxq	%r15, %r15, %rdx
    15523. 

  15523.         adcxq	%r15, %r11
    15524. 

  15524.         adoxq	%rax, %rdx
    15525. 

  15525.         adcxq	%rax, %rdx
    15526. 

  15526.         #  Overflow
    15527. 

  15527.         shldq	$0x01, %r11, %rdx
    15528. 

  15528.         movq	$0x7fffffffffffffff, %rax
    15529. 

  15529.         imulq	$19, %rdx, %rcx
    15530. 

  15530.         andq	%rax, %r11
    15531. 

  15531.         addq	%rcx, %r8
    15532. 

  15532.         adcq	$0x00, %r9
    15533. 

  15533.         adcq	$0x00, %r10
    15534. 

  15534.         adcq	$0x00, %r11
    15535. 

  15535.         # Reduce if top bit set
    15536. 

  15536.         movq	%r11, %rdx
    15537. 

  15537.         shrq	$63, %rdx
    15538. 

  15538.         imulq	$19, %rdx, %rcx
    15539. 

  15539.         andq	%rax, %r11
    15540. 

  15540.         addq	%rcx, %r8
    15541. 

  15541.         adcq	$0x00, %r9
    15542. 

  15542.         adcq	$0x00, %r10
    15543. 

  15543.         adcq	$0x00, %r11
    15544. 

  15544.         # Store
    15545. 

  15545.         movq	%r8, (%rsi)
    15546. 

  15546.         movq	%r9, 8(%rsi)
    15547. 

  15547.         movq	%r10, 16(%rsi)
    15548. 

  15548.         movq	%r11, 24(%rsi)
    15549. 

  15549.         movq	136(%rsp), %rsi
    15550. 

  15550.         movq	152(%rsp), %rbx
    15551. 

  15551.         # Multiply
    15552. 

  15552.         # A[0] * B[0]
    15553. 

  15553.         movq	(%rbx), %rdx
    15554. 

  15554.         mulxq	(%rsi), %r8, %r9
    15555. 

  15555.         # A[2] * B[0]
    15556. 

  15556.         mulxq	16(%rsi), %r10, %r11
    15557. 

  15557.         # A[1] * B[0]
    15558. 

  15558.         mulxq	8(%rsi), %rcx, %rax
    15559. 

  15559.         xorq	%r15, %r15
    15560. 

  15560.         adcxq	%rcx, %r9
    15561. 

  15561.         # A[1] * B[3]
    15562. 

  15562.         movq	24(%rbx), %rdx
    15563. 

  15563.         mulxq	8(%rsi), %r12, %r13
    15564. 

  15564.         adcxq	%rax, %r10
    15565. 

  15565.         # A[0] * B[1]
    15566. 

  15566.         movq	8(%rbx), %rdx
    15567. 

  15567.         mulxq	(%rsi), %rcx, %rax
    15568. 

  15568.         adoxq	%rcx, %r9
    15569. 

  15569.         # A[2] * B[1]
    15570. 

  15570.         mulxq	16(%rsi), %rcx, %r14
    15571. 

  15571.         adoxq	%rax, %r10
    15572. 

  15572.         adcxq	%rcx, %r11
    15573. 

  15573.         # A[1] * B[2]
    15574. 

  15574.         movq	16(%rbx), %rdx
    15575. 

  15575.         mulxq	8(%rsi), %rcx, %rax
    15576. 

  15576.         adcxq	%r14, %r12
    15577. 

  15577.         adoxq	%rcx, %r11
    15578. 

  15578.         adcxq	%r15, %r13
    15579. 

  15579.         adoxq	%rax, %r12
    15580. 

  15580.         # A[0] * B[2]
    15581. 

  15581.         mulxq	(%rsi), %rcx, %rax
    15582. 

  15582.         adoxq	%r15, %r13
    15583. 

  15583.         xorq	%r14, %r14
    15584. 

  15584.         adcxq	%rcx, %r10
    15585. 

  15585.         # A[1] * B[1]
    15586. 

  15586.         movq	8(%rbx), %rdx
    15587. 

  15587.         mulxq	8(%rsi), %rdx, %rcx
    15588. 

  15588.         adcxq	%rax, %r11
    15589. 

  15589.         adoxq	%rdx, %r10
    15590. 

  15590.         # A[3] * B[1]
    15591. 

  15591.         movq	8(%rbx), %rdx
    15592. 

  15592.         adoxq	%rcx, %r11
    15593. 

  15593.         mulxq	24(%rsi), %rcx, %rax
    15594. 

  15594.         adcxq	%rcx, %r12
    15595. 

  15595.         # A[2] * B[2]
    15596. 

  15596.         movq	16(%rbx), %rdx
    15597. 

  15597.         mulxq	16(%rsi), %rdx, %rcx
    15598. 

  15598.         adcxq	%rax, %r13
    15599. 

  15599.         adoxq	%rdx, %r12
    15600. 

  15600.         # A[3] * B[3]
    15601. 

  15601.         movq	24(%rbx), %rdx
    15602. 

  15602.         adoxq	%rcx, %r13
    15603. 

  15603.         mulxq	24(%rsi), %rcx, %rax
    15604. 

  15604.         adoxq	%r15, %r14
    15605. 

  15605.         adcxq	%rcx, %r14
    15606. 

  15606.         # A[0] * B[3]
    15607. 

  15607.         mulxq	(%rsi), %rdx, %rcx
    15608. 

  15608.         adcxq	%rax, %r15
    15609. 

  15609.         xorq	%rax, %rax
    15610. 

  15610.         adcxq	%rdx, %r11
    15611. 

  15611.         # A[3] * B[0]
    15612. 

  15612.         movq	(%rbx), %rdx
    15613. 

  15613.         adcxq	%rcx, %r12
    15614. 

  15614.         mulxq	24(%rsi), %rdx, %rcx
    15615. 

  15615.         adoxq	%rdx, %r11
    15616. 

  15616.         adoxq	%rcx, %r12
    15617. 

  15617.         # A[2] * B[3]
    15618. 

  15618.         movq	24(%rbx), %rdx
    15619. 

  15619.         mulxq	16(%rsi), %rdx, %rcx
    15620. 

  15620.         adcxq	%rdx, %r13
    15621. 

  15621.         # A[3] * B[2]
    15622. 

  15622.         movq	16(%rbx), %rdx
    15623. 

  15623.         adcxq	%rcx, %r14
    15624. 

  15624.         mulxq	24(%rsi), %rcx, %rdx
    15625. 

  15625.         adcxq	%rax, %r15
    15626. 

  15626.         adoxq	%rcx, %r13
    15627. 

  15627.         adoxq	%rdx, %r14
    15628. 

  15628.         adoxq	%rax, %r15
    15629. 

  15629.         # Reduce
    15630. 

  15630.         movq	$0x7fffffffffffffff, %rax
    15631. 

  15631.         #  Move top half into t4-t7 and remove top bit from t3
    15632. 

  15632.         shldq	$0x01, %r14, %r15
    15633. 

  15633.         shldq	$0x01, %r13, %r14
    15634. 

  15634.         shldq	$0x01, %r12, %r13
    15635. 

  15635.         shldq	$0x01, %r11, %r12
    15636. 

  15636.         andq	%rax, %r11
    15637. 

  15637.         #  Multiply top half by 19
    15638. 

  15638.         movq	$19, %rdx
    15639. 

  15639.         xorq	%rax, %rax
    15640. 

  15640.         mulxq	%r12, %rcx, %r12
    15641. 

  15641.         adcxq	%rcx, %r8
    15642. 

  15642.         adoxq	%r12, %r9
    15643. 

  15643.         mulxq	%r13, %rcx, %r13
    15644. 

  15644.         adcxq	%rcx, %r9
    15645. 

  15645.         adoxq	%r13, %r10
    15646. 

  15646.         mulxq	%r14, %rcx, %r14
    15647. 

  15647.         adcxq	%rcx, %r10
    15648. 

  15648.         adoxq	%r14, %r11
    15649. 

  15649.         mulxq	%r15, %r15, %rdx
    15650. 

  15650.         adcxq	%r15, %r11
    15651. 

  15651.         adoxq	%rax, %rdx
    15652. 

  15652.         adcxq	%rax, %rdx
    15653. 

  15653.         #  Overflow
    15654. 

  15654.         shldq	$0x01, %r11, %rdx
    15655. 

  15655.         movq	$0x7fffffffffffffff, %rax
    15656. 

  15656.         imulq	$19, %rdx, %rcx
    15657. 

  15657.         andq	%rax, %r11
    15658. 

  15658.         addq	%rcx, %r8
    15659. 

  15659.         adcq	$0x00, %r9
    15660. 

  15660.         adcq	$0x00, %r10
    15661. 

  15661.         adcq	$0x00, %r11
    15662. 

  15662.         # Reduce if top bit set
    15663. 

  15663.         movq	%r11, %rdx
    15664. 

  15664.         shrq	$63, %rdx
    15665. 

  15665.         imulq	$19, %rdx, %rcx
    15666. 

  15666.         andq	%rax, %r11
    15667. 

  15667.         addq	%rcx, %r8
    15668. 

  15668.         adcq	$0x00, %r9
    15669. 

  15669.         adcq	$0x00, %r10
    15670. 

  15670.         adcq	$0x00, %r11
    15671. 

  15671.         # Store
    15672. 

  15672.         movq	%r8, (%rdi)
    15673. 

  15673.         movq	%r9, 8(%rdi)
    15674. 

  15674.         movq	%r10, 16(%rdi)
    15675. 

  15675.         movq	%r11, 24(%rdi)
    15676. 

  15676.         leaq	48(%rsp), %rsi
    15677. 

  15677.         # Double
    15678. 

  15678.         movq	(%rdi), %r8
    15679. 

  15679.         movq	8(%rdi), %r9
    15680. 

  15680.         addq	%r8, %r8
    15681. 

  15681.         movq	16(%rdi), %r10
    15682. 

  15682.         adcq	%r9, %r9
    15683. 

  15683.         movq	24(%rdi), %rdx
    15684. 

  15684.         adcq	%r10, %r10
    15685. 

  15685.         movq	$-19, %rcx
    15686. 

  15686.         adcq	%rdx, %rdx
    15687. 

  15687.         movq	$0x7fffffffffffffff, %rax
    15688. 

  15688.         movq	%rdx, %r11
    15689. 

  15689.         sarq	$63, %rdx
    15690. 

  15690.         #   Mask the modulus
    15691. 

  15691.         andq	%rdx, %rcx
    15692. 

  15692.         andq	%rdx, %rax
    15693. 

  15693.         #   Sub modulus (if overflow)
    15694. 

  15694.         subq	%rcx, %r8
    15695. 

  15695.         sbbq	%rdx, %r9
    15696. 

  15696.         sbbq	%rdx, %r10
    15697. 

  15697.         sbbq	%rax, %r11
    15698. 

  15698.         movq	%r8, (%rsi)
    15699. 

  15699.         movq	%r9, 8(%rsi)
    15700. 

  15700.         movq	%r10, 16(%rsi)
    15701. 

  15701.         movq	%r11, 24(%rsi)
    15702. 

  15702.         movq	8(%rsp), %rbx
    15703. 

  15703.         movq	16(%rsp), %rbp
    15704. 

  15704.         # Add
    15705. 

  15705.         movq	(%rbp), %r8
    15706. 

  15706.         movq	8(%rbp), %r9
    15707. 

  15707.         movq	16(%rbp), %r10
    15708. 

  15708.         movq	24(%rbp), %rdx
    15709. 

  15709.         movq	%r8, %r12
    15710. 

  15710.         addq	(%rbx), %r8
    15711. 

  15711.         movq	%r9, %r13
    15712. 

  15712.         adcq	8(%rbx), %r9
    15713. 

  15713.         movq	%r10, %r14
    15714. 

  15714.         adcq	16(%rbx), %r10
    15715. 

  15715.         movq	%rdx, %r15
    15716. 

  15716.         adcq	24(%rbx), %rdx
    15717. 

  15717.         movq	$-19, %rcx
    15718. 

  15718.         movq	%rdx, %r11
    15719. 

  15719.         movq	$0x7fffffffffffffff, %rax
    15720. 

  15720.         sarq	$63, %rdx
    15721. 

  15721.         #   Mask the modulus
    15722. 

  15722.         andq	%rdx, %rcx
    15723. 

  15723.         andq	%rdx, %rax
    15724. 

  15724.         #   Sub modulus (if overflow)
    15725. 

  15725.         subq	%rcx, %r8
    15726. 

  15726.         sbbq	%rdx, %r9
    15727. 

  15727.         sbbq	%rdx, %r10
    15728. 

  15728.         sbbq	%rax, %r11
    15729. 

  15729.         # Sub
    15730. 

  15730.         subq	(%rbx), %r12
    15731. 

  15731.         movq	$0x00, %rdx
    15732. 

  15732.         sbbq	8(%rbx), %r13
    15733. 

  15733.         movq	$-19, %rcx
    15734. 

  15734.         sbbq	16(%rbx), %r14
    15735. 

  15735.         movq	$0x7fffffffffffffff, %rax
    15736. 

  15736.         sbbq	24(%rbx), %r15
    15737. 

  15737.         sbbq	$0x00, %rdx
    15738. 

  15738.         #   Mask the modulus
    15739. 

  15739.         andq	%rdx, %rcx
    15740. 

  15740.         andq	%rdx, %rax
    15741. 

  15741.         #   Add modulus (if underflow)
    15742. 

  15742.         addq	%rcx, %r12
    15743. 

  15743.         adcq	%rdx, %r13
    15744. 

  15744.         adcq	%rdx, %r14
    15745. 

  15745.         adcq	%rax, %r15
    15746. 

  15746.         movq	%r8, (%rbx)
    15747. 

  15747.         movq	%r9, 8(%rbx)
    15748. 

  15748.         movq	%r10, 16(%rbx)
    15749. 

  15749.         movq	%r11, 24(%rbx)
    15750. 

  15750.         movq	%r12, (%rdi)
    15751. 

  15751.         movq	%r13, 8(%rdi)
    15752. 

  15752.         movq	%r14, 16(%rdi)
    15753. 

  15753.         movq	%r15, 24(%rdi)
    15754. 

  15754.         movq	24(%rsp), %rdi
    15755. 

  15755.         # Add
    15756. 

  15756.         movq	(%rsi), %r8
    15757. 

  15757.         movq	8(%rsi), %r9
    15758. 

  15758.         movq	16(%rsi), %r10
    15759. 

  15759.         movq	24(%rsi), %rdx
    15760. 

  15760.         movq	%r8, %r12
    15761. 

  15761.         addq	(%rdi), %r8
    15762. 

  15762.         movq	%r9, %r13
    15763. 

  15763.         adcq	8(%rdi), %r9
    15764. 

  15764.         movq	%r10, %r14
    15765. 

  15765.         adcq	16(%rdi), %r10
    15766. 

  15766.         movq	%rdx, %r15
    15767. 

  15767.         adcq	24(%rdi), %rdx
    15768. 

  15768.         movq	$-19, %rcx
    15769. 

  15769.         movq	%rdx, %r11
    15770. 

  15770.         movq	$0x7fffffffffffffff, %rax
    15771. 

  15771.         sarq	$63, %rdx
    15772. 

  15772.         #   Mask the modulus
    15773. 

  15773.         andq	%rdx, %rcx
    15774. 

  15774.         andq	%rdx, %rax
    15775. 

  15775.         #   Sub modulus (if overflow)
    15776. 

  15776.         subq	%rcx, %r8
    15777. 

  15777.         sbbq	%rdx, %r9
    15778. 

  15778.         sbbq	%rdx, %r10
    15779. 

  15779.         sbbq	%rax, %r11
    15780. 

  15780.         # Sub
    15781. 

  15781.         subq	(%rdi), %r12
    15782. 

  15782.         movq	$0x00, %rdx
    15783. 

  15783.         sbbq	8(%rdi), %r13
    15784. 

  15784.         movq	$-19, %rcx
    15785. 

  15785.         sbbq	16(%rdi), %r14
    15786. 

  15786.         movq	$0x7fffffffffffffff, %rax
    15787. 

  15787.         sbbq	24(%rdi), %r15
    15788. 

  15788.         sbbq	$0x00, %rdx
    15789. 

  15789.         #   Mask the modulus
    15790. 

  15790.         andq	%rdx, %rcx
    15791. 

  15791.         andq	%rdx, %rax
    15792. 

  15792.         #   Add modulus (if underflow)
    15793. 

  15793.         addq	%rcx, %r12
    15794. 

  15794.         adcq	%rdx, %r13
    15795. 

  15795.         adcq	%rdx, %r14
    15796. 

  15796.         adcq	%rax, %r15
    15797. 

  15797.         movq	%r8, (%rbp)
    15798. 

  15798.         movq	%r9, 8(%rbp)
    15799. 

  15799.         movq	%r10, 16(%rbp)
    15800. 

  15800.         movq	%r11, 24(%rbp)
    15801. 

  15801.         movq	%r12, (%rdi)
    15802. 

  15802.         movq	%r13, 8(%rdi)
    15803. 

  15803.         movq	%r14, 16(%rdi)
    15804. 

  15804.         movq	%r15, 24(%rdi)
    15805. 

  15805.         addq	$0x50, %rsp
    15806. 

  15806.         popq	%r15
    15807. 

  15807.         popq	%r14
    15808. 

  15808.         popq	%r13
    15809. 

  15809.         popq	%r12
    15810. 

  15810.         popq	%rbp
    15811. 

  15811.         popq	%rbx
    15812. 

  15812.         repz retq
    15813. 

  15813. #ifndef __APPLE__
    15814. 

  15814. .size	fe_ge_add_avx2,.-fe_ge_add_avx2
    15815. 

  15815. #endif /* __APPLE__ */
    15816. 

  15816. #ifndef __APPLE__
    15817. 

  15817. .text
    15818. 

  15818. .globl	fe_ge_sub_avx2
    15819. 

  15819. .type	fe_ge_sub_avx2,@function
    15820. 

  15820. .align	16
    15821. 

  15821. fe_ge_sub_avx2:
    15822. 

  15822. #else
    15823. 

  15823. .section	__TEXT,__text
    15824. 

  15824. .globl	_fe_ge_sub_avx2
    15825. 

  15825. .p2align	4
    15826. 

  15826. _fe_ge_sub_avx2:
    15827. 

  15827. #endif /* __APPLE__ */
    15828. 

  15828.         pushq	%rbx
    15829. 

  15829.         pushq	%rbp
    15830. 

  15830.         pushq	%r12
    15831. 

  15831.         pushq	%r13
    15832. 

  15832.         pushq	%r14
    15833. 

  15833.         pushq	%r15
    15834. 

  15834.         subq	$0x50, %rsp
    15835. 

  15835.         movq	%rdi, (%rsp)
    15836. 

  15836.         movq	%rsi, 8(%rsp)
    15837. 

  15837.         movq	%rdx, 16(%rsp)
    15838. 

  15838.         movq	%rcx, 24(%rsp)
    15839. 

  15839.         movq	%r8, 32(%rsp)
    15840. 

  15840.         movq	%r9, 40(%rsp)
    15841. 

  15841.         movq	8(%rsp), %rsi
    15842. 

  15842.         movq	40(%rsp), %rbx
    15843. 

  15843.         movq	32(%rsp), %rbp
    15844. 

  15844.         # Add
    15845. 

  15845.         movq	(%rbx), %r8
    15846. 

  15846.         movq	8(%rbx), %r9
    15847. 

  15847.         movq	16(%rbx), %r10
    15848. 

  15848.         movq	24(%rbx), %rdx
    15849. 

  15849.         movq	%r8, %r12
    15850. 

  15850.         addq	(%rbp), %r8
    15851. 

  15851.         movq	%r9, %r13
    15852. 

  15852.         adcq	8(%rbp), %r9
    15853. 

  15853.         movq	%r10, %r14
    15854. 

  15854.         adcq	16(%rbp), %r10
    15855. 

  15855.         movq	%rdx, %r15
    15856. 

  15856.         adcq	24(%rbp), %rdx
    15857. 

  15857.         movq	$-19, %rcx
    15858. 

  15858.         movq	%rdx, %r11
    15859. 

  15859.         movq	$0x7fffffffffffffff, %rax
    15860. 

  15860.         sarq	$63, %rdx
    15861. 

  15861.         #   Mask the modulus
    15862. 

  15862.         andq	%rdx, %rcx
    15863. 

  15863.         andq	%rdx, %rax
    15864. 

  15864.         #   Sub modulus (if overflow)
    15865. 

  15865.         subq	%rcx, %r8
    15866. 

  15866.         sbbq	%rdx, %r9
    15867. 

  15867.         sbbq	%rdx, %r10
    15868. 

  15868.         sbbq	%rax, %r11
    15869. 

  15869.         # Sub
    15870. 

  15870.         subq	(%rbp), %r12
    15871. 

  15871.         movq	$0x00, %rdx
    15872. 

  15872.         sbbq	8(%rbp), %r13
    15873. 

  15873.         movq	$-19, %rcx
    15874. 

  15874.         sbbq	16(%rbp), %r14
    15875. 

  15875.         movq	$0x7fffffffffffffff, %rax
    15876. 

  15876.         sbbq	24(%rbp), %r15
    15877. 

  15877.         sbbq	$0x00, %rdx
    15878. 

  15878.         #   Mask the modulus
    15879. 

  15879.         andq	%rdx, %rcx
    15880. 

  15880.         andq	%rdx, %rax
    15881. 

  15881.         #   Add modulus (if underflow)
    15882. 

  15882.         addq	%rcx, %r12
    15883. 

  15883.         adcq	%rdx, %r13
    15884. 

  15884.         adcq	%rdx, %r14
    15885. 

  15885.         adcq	%rax, %r15
    15886. 

  15886.         movq	%r8, (%rdi)
    15887. 

  15887.         movq	%r9, 8(%rdi)
    15888. 

  15888.         movq	%r10, 16(%rdi)
    15889. 

  15889.         movq	%r11, 24(%rdi)
    15890. 

  15890.         movq	%r12, (%rsi)
    15891. 

  15891.         movq	%r13, 8(%rsi)
    15892. 

  15892.         movq	%r14, 16(%rsi)
    15893. 

  15893.         movq	%r15, 24(%rsi)
    15894. 

  15894.         movq	16(%rsp), %rbx
    15895. 

  15895.         movq	176(%rsp), %rbp
    15896. 

  15896.         # Multiply
    15897. 

  15897.         # A[0] * B[0]
    15898. 

  15898.         movq	(%rbp), %rdx
    15899. 

  15899.         mulxq	(%rdi), %r8, %r9
    15900. 

  15900.         # A[2] * B[0]
    15901. 

  15901.         mulxq	16(%rdi), %r10, %r11
    15902. 

  15902.         # A[1] * B[0]
    15903. 

  15903.         mulxq	8(%rdi), %rcx, %rax
    15904. 

  15904.         xorq	%r15, %r15
    15905. 

  15905.         adcxq	%rcx, %r9
    15906. 

  15906.         # A[1] * B[3]
    15907. 

  15907.         movq	24(%rbp), %rdx
    15908. 

  15908.         mulxq	8(%rdi), %r12, %r13
    15909. 

  15909.         adcxq	%rax, %r10
    15910. 

  15910.         # A[0] * B[1]
    15911. 

  15911.         movq	8(%rbp), %rdx
    15912. 

  15912.         mulxq	(%rdi), %rcx, %rax
    15913. 

  15913.         adoxq	%rcx, %r9
    15914. 

  15914.         # A[2] * B[1]
    15915. 

  15915.         mulxq	16(%rdi), %rcx, %r14
    15916. 

  15916.         adoxq	%rax, %r10
    15917. 

  15917.         adcxq	%rcx, %r11
    15918. 

  15918.         # A[1] * B[2]
    15919. 

  15919.         movq	16(%rbp), %rdx
    15920. 

  15920.         mulxq	8(%rdi), %rcx, %rax
    15921. 

  15921.         adcxq	%r14, %r12
    15922. 

  15922.         adoxq	%rcx, %r11
    15923. 

  15923.         adcxq	%r15, %r13
    15924. 

  15924.         adoxq	%rax, %r12
    15925. 

  15925.         # A[0] * B[2]
    15926. 

  15926.         mulxq	(%rdi), %rcx, %rax
    15927. 

  15927.         adoxq	%r15, %r13
    15928. 

  15928.         xorq	%r14, %r14
    15929. 

  15929.         adcxq	%rcx, %r10
    15930. 

  15930.         # A[1] * B[1]
    15931. 

  15931.         movq	8(%rbp), %rdx
    15932. 

  15932.         mulxq	8(%rdi), %rdx, %rcx
    15933. 

  15933.         adcxq	%rax, %r11
    15934. 

  15934.         adoxq	%rdx, %r10
    15935. 

  15935.         # A[3] * B[1]
    15936. 

  15936.         movq	8(%rbp), %rdx
    15937. 

  15937.         adoxq	%rcx, %r11
    15938. 

  15938.         mulxq	24(%rdi), %rcx, %rax
    15939. 

  15939.         adcxq	%rcx, %r12
    15940. 

  15940.         # A[2] * B[2]
    15941. 

  15941.         movq	16(%rbp), %rdx
    15942. 

  15942.         mulxq	16(%rdi), %rdx, %rcx
    15943. 

  15943.         adcxq	%rax, %r13
    15944. 

  15944.         adoxq	%rdx, %r12
    15945. 

  15945.         # A[3] * B[3]
    15946. 

  15946.         movq	24(%rbp), %rdx
    15947. 

  15947.         adoxq	%rcx, %r13
    15948. 

  15948.         mulxq	24(%rdi), %rcx, %rax
    15949. 

  15949.         adoxq	%r15, %r14
    15950. 

  15950.         adcxq	%rcx, %r14
    15951. 

  15951.         # A[0] * B[3]
    15952. 

  15952.         mulxq	(%rdi), %rdx, %rcx
    15953. 

  15953.         adcxq	%rax, %r15
    15954. 

  15954.         xorq	%rax, %rax
    15955. 

  15955.         adcxq	%rdx, %r11
    15956. 

  15956.         # A[3] * B[0]
    15957. 

  15957.         movq	(%rbp), %rdx
    15958. 

  15958.         adcxq	%rcx, %r12
    15959. 

  15959.         mulxq	24(%rdi), %rdx, %rcx
    15960. 

  15960.         adoxq	%rdx, %r11
    15961. 

  15961.         adoxq	%rcx, %r12
    15962. 

  15962.         # A[2] * B[3]
    15963. 

  15963.         movq	24(%rbp), %rdx
    15964. 

  15964.         mulxq	16(%rdi), %rdx, %rcx
    15965. 

  15965.         adcxq	%rdx, %r13
    15966. 

  15966.         # A[3] * B[2]
    15967. 

  15967.         movq	16(%rbp), %rdx
    15968. 

  15968.         adcxq	%rcx, %r14
    15969. 

  15969.         mulxq	24(%rdi), %rcx, %rdx
    15970. 

  15970.         adcxq	%rax, %r15
    15971. 

  15971.         adoxq	%rcx, %r13
    15972. 

  15972.         adoxq	%rdx, %r14
    15973. 

  15973.         adoxq	%rax, %r15
    15974. 

  15974.         # Reduce
    15975. 

  15975.         movq	$0x7fffffffffffffff, %rax
    15976. 

  15976.         #  Move top half into t4-t7 and remove top bit from t3
    15977. 

  15977.         shldq	$0x01, %r14, %r15
    15978. 

  15978.         shldq	$0x01, %r13, %r14
    15979. 

  15979.         shldq	$0x01, %r12, %r13
    15980. 

  15980.         shldq	$0x01, %r11, %r12
    15981. 

  15981.         andq	%rax, %r11
    15982. 

  15982.         #  Multiply top half by 19
    15983. 

  15983.         movq	$19, %rdx
    15984. 

  15984.         xorq	%rax, %rax
    15985. 

  15985.         mulxq	%r12, %rcx, %r12
    15986. 

  15986.         adcxq	%rcx, %r8
    15987. 

  15987.         adoxq	%r12, %r9
    15988. 

  15988.         mulxq	%r13, %rcx, %r13
    15989. 

  15989.         adcxq	%rcx, %r9
    15990. 

  15990.         adoxq	%r13, %r10
    15991. 

  15991.         mulxq	%r14, %rcx, %r14
    15992. 

  15992.         adcxq	%rcx, %r10
    15993. 

  15993.         adoxq	%r14, %r11
    15994. 

  15994.         mulxq	%r15, %r15, %rdx
    15995. 

  15995.         adcxq	%r15, %r11
    15996. 

  15996.         adoxq	%rax, %rdx
    15997. 

  15997.         adcxq	%rax, %rdx
    15998. 

  15998.         #  Overflow
    15999. 

  15999.         shldq	$0x01, %r11, %rdx
    16000. 

  16000.         movq	$0x7fffffffffffffff, %rax
    16001. 

  16001.         imulq	$19, %rdx, %rcx
    16002. 

  16002.         andq	%rax, %r11
    16003. 

  16003.         addq	%rcx, %r8
    16004. 

  16004.         adcq	$0x00, %r9
    16005. 

  16005.         adcq	$0x00, %r10
    16006. 

  16006.         adcq	$0x00, %r11
    16007. 

  16007.         # Reduce if top bit set
    16008. 

  16008.         movq	%r11, %rdx
    16009. 

  16009.         shrq	$63, %rdx
    16010. 

  16010.         imulq	$19, %rdx, %rcx
    16011. 

  16011.         andq	%rax, %r11
    16012. 

  16012.         addq	%rcx, %r8
    16013. 

  16013.         adcq	$0x00, %r9
    16014. 

  16014.         adcq	$0x00, %r10
    16015. 

  16015.         adcq	$0x00, %r11
    16016. 

  16016.         # Store
    16017. 

  16017.         movq	%r8, (%rbx)
    16018. 

  16018.         movq	%r9, 8(%rbx)
    16019. 

  16019.         movq	%r10, 16(%rbx)
    16020. 

  16020.         movq	%r11, 24(%rbx)
    16021. 

  16021.         movq	168(%rsp), %rbx
    16022. 

  16022.         # Multiply
    16023. 

  16023.         # A[0] * B[0]
    16024. 

  16024.         movq	(%rbx), %rdx
    16025. 

  16025.         mulxq	(%rsi), %r8, %r9
    16026. 

  16026.         # A[2] * B[0]
    16027. 

  16027.         mulxq	16(%rsi), %r10, %r11
    16028. 

  16028.         # A[1] * B[0]
    16029. 

  16029.         mulxq	8(%rsi), %rcx, %rax
    16030. 

  16030.         xorq	%r15, %r15
    16031. 

  16031.         adcxq	%rcx, %r9
    16032. 

  16032.         # A[1] * B[3]
    16033. 

  16033.         movq	24(%rbx), %rdx
    16034. 

  16034.         mulxq	8(%rsi), %r12, %r13
    16035. 

  16035.         adcxq	%rax, %r10
    16036. 

  16036.         # A[0] * B[1]
    16037. 

  16037.         movq	8(%rbx), %rdx
    16038. 

  16038.         mulxq	(%rsi), %rcx, %rax
    16039. 

  16039.         adoxq	%rcx, %r9
    16040. 

  16040.         # A[2] * B[1]
    16041. 

  16041.         mulxq	16(%rsi), %rcx, %r14
    16042. 

  16042.         adoxq	%rax, %r10
    16043. 

  16043.         adcxq	%rcx, %r11
    16044. 

  16044.         # A[1] * B[2]
    16045. 

  16045.         movq	16(%rbx), %rdx
    16046. 

  16046.         mulxq	8(%rsi), %rcx, %rax
    16047. 

  16047.         adcxq	%r14, %r12
    16048. 

  16048.         adoxq	%rcx, %r11
    16049. 

  16049.         adcxq	%r15, %r13
    16050. 

  16050.         adoxq	%rax, %r12
    16051. 

  16051.         # A[0] * B[2]
    16052. 

  16052.         mulxq	(%rsi), %rcx, %rax
    16053. 

  16053.         adoxq	%r15, %r13
    16054. 

  16054.         xorq	%r14, %r14
    16055. 

  16055.         adcxq	%rcx, %r10
    16056. 

  16056.         # A[1] * B[1]
    16057. 

  16057.         movq	8(%rbx), %rdx
    16058. 

  16058.         mulxq	8(%rsi), %rdx, %rcx
    16059. 

  16059.         adcxq	%rax, %r11
    16060. 

  16060.         adoxq	%rdx, %r10
    16061. 

  16061.         # A[3] * B[1]
    16062. 

  16062.         movq	8(%rbx), %rdx
    16063. 

  16063.         adoxq	%rcx, %r11
    16064. 

  16064.         mulxq	24(%rsi), %rcx, %rax
    16065. 

  16065.         adcxq	%rcx, %r12
    16066. 

  16066.         # A[2] * B[2]
    16067. 

  16067.         movq	16(%rbx), %rdx
    16068. 

  16068.         mulxq	16(%rsi), %rdx, %rcx
    16069. 

  16069.         adcxq	%rax, %r13
    16070. 

  16070.         adoxq	%rdx, %r12
    16071. 

  16071.         # A[3] * B[3]
    16072. 

  16072.         movq	24(%rbx), %rdx
    16073. 

  16073.         adoxq	%rcx, %r13
    16074. 

  16074.         mulxq	24(%rsi), %rcx, %rax
    16075. 

  16075.         adoxq	%r15, %r14
    16076. 

  16076.         adcxq	%rcx, %r14
    16077. 

  16077.         # A[0] * B[3]
    16078. 

  16078.         mulxq	(%rsi), %rdx, %rcx
    16079. 

  16079.         adcxq	%rax, %r15
    16080. 

  16080.         xorq	%rax, %rax
    16081. 

  16081.         adcxq	%rdx, %r11
    16082. 

  16082.         # A[3] * B[0]
    16083. 

  16083.         movq	(%rbx), %rdx
    16084. 

  16084.         adcxq	%rcx, %r12
    16085. 

  16085.         mulxq	24(%rsi), %rdx, %rcx
    16086. 

  16086.         adoxq	%rdx, %r11
    16087. 

  16087.         adoxq	%rcx, %r12
    16088. 

  16088.         # A[2] * B[3]
    16089. 

  16089.         movq	24(%rbx), %rdx
    16090. 

  16090.         mulxq	16(%rsi), %rdx, %rcx
    16091. 

  16091.         adcxq	%rdx, %r13
    16092. 

  16092.         # A[3] * B[2]
    16093. 

  16093.         movq	16(%rbx), %rdx
    16094. 

  16094.         adcxq	%rcx, %r14
    16095. 

  16095.         mulxq	24(%rsi), %rcx, %rdx
    16096. 

  16096.         adcxq	%rax, %r15
    16097. 

  16097.         adoxq	%rcx, %r13
    16098. 

  16098.         adoxq	%rdx, %r14
    16099. 

  16099.         adoxq	%rax, %r15
    16100. 

  16100.         # Reduce
    16101. 

  16101.         movq	$0x7fffffffffffffff, %rax
    16102. 

  16102.         #  Move top half into t4-t7 and remove top bit from t3
    16103. 

  16103.         shldq	$0x01, %r14, %r15
    16104. 

  16104.         shldq	$0x01, %r13, %r14
    16105. 

  16105.         shldq	$0x01, %r12, %r13
    16106. 

  16106.         shldq	$0x01, %r11, %r12
    16107. 

  16107.         andq	%rax, %r11
    16108. 

  16108.         #  Multiply top half by 19
    16109. 

  16109.         movq	$19, %rdx
    16110. 

  16110.         xorq	%rax, %rax
    16111. 

  16111.         mulxq	%r12, %rcx, %r12
    16112. 

  16112.         adcxq	%rcx, %r8
    16113. 

  16113.         adoxq	%r12, %r9
    16114. 

  16114.         mulxq	%r13, %rcx, %r13
    16115. 

  16115.         adcxq	%rcx, %r9
    16116. 

  16116.         adoxq	%r13, %r10
    16117. 

  16117.         mulxq	%r14, %rcx, %r14
    16118. 

  16118.         adcxq	%rcx, %r10
    16119. 

  16119.         adoxq	%r14, %r11
    16120. 

  16120.         mulxq	%r15, %r15, %rdx
    16121. 

  16121.         adcxq	%r15, %r11
    16122. 

  16122.         adoxq	%rax, %rdx
    16123. 

  16123.         adcxq	%rax, %rdx
    16124. 

  16124.         #  Overflow
    16125. 

  16125.         shldq	$0x01, %r11, %rdx
    16126. 

  16126.         movq	$0x7fffffffffffffff, %rax
    16127. 

  16127.         imulq	$19, %rdx, %rcx
    16128. 

  16128.         andq	%rax, %r11
    16129. 

  16129.         addq	%rcx, %r8
    16130. 

  16130.         adcq	$0x00, %r9
    16131. 

  16131.         adcq	$0x00, %r10
    16132. 

  16132.         adcq	$0x00, %r11
    16133. 

  16133.         # Reduce if top bit set
    16134. 

  16134.         movq	%r11, %rdx
    16135. 

  16135.         shrq	$63, %rdx
    16136. 

  16136.         imulq	$19, %rdx, %rcx
    16137. 

  16137.         andq	%rax, %r11
    16138. 

  16138.         addq	%rcx, %r8
    16139. 

  16139.         adcq	$0x00, %r9
    16140. 

  16140.         adcq	$0x00, %r10
    16141. 

  16141.         adcq	$0x00, %r11
    16142. 

  16142.         # Store
    16143. 

  16143.         movq	%r8, (%rsi)
    16144. 

  16144.         movq	%r9, 8(%rsi)
    16145. 

  16145.         movq	%r10, 16(%rsi)
    16146. 

  16146.         movq	%r11, 24(%rsi)
    16147. 

  16147.         movq	24(%rsp), %rsi
    16148. 

  16148.         movq	160(%rsp), %rbx
    16149. 

  16149.         movq	144(%rsp), %rbp
    16150. 

  16150.         # Multiply
    16151. 

  16151.         # A[0] * B[0]
    16152. 

  16152.         movq	(%rbp), %rdx
    16153. 

  16153.         mulxq	(%rbx), %r8, %r9
    16154. 

  16154.         # A[2] * B[0]
    16155. 

  16155.         mulxq	16(%rbx), %r10, %r11
    16156. 

  16156.         # A[1] * B[0]
    16157. 

  16157.         mulxq	8(%rbx), %rcx, %rax
    16158. 

  16158.         xorq	%r15, %r15
    16159. 

  16159.         adcxq	%rcx, %r9
    16160. 

  16160.         # A[1] * B[3]
    16161. 

  16161.         movq	24(%rbp), %rdx
    16162. 

  16162.         mulxq	8(%rbx), %r12, %r13
    16163. 

  16163.         adcxq	%rax, %r10
    16164. 

  16164.         # A[0] * B[1]
    16165. 

  16165.         movq	8(%rbp), %rdx
    16166. 

  16166.         mulxq	(%rbx), %rcx, %rax
    16167. 

  16167.         adoxq	%rcx, %r9
    16168. 

  16168.         # A[2] * B[1]
    16169. 

  16169.         mulxq	16(%rbx), %rcx, %r14
    16170. 

  16170.         adoxq	%rax, %r10
    16171. 

  16171.         adcxq	%rcx, %r11
    16172. 

  16172.         # A[1] * B[2]
    16173. 

  16173.         movq	16(%rbp), %rdx
    16174. 

  16174.         mulxq	8(%rbx), %rcx, %rax
    16175. 

  16175.         adcxq	%r14, %r12
    16176. 

  16176.         adoxq	%rcx, %r11
    16177. 

  16177.         adcxq	%r15, %r13
    16178. 

  16178.         adoxq	%rax, %r12
    16179. 

  16179.         # A[0] * B[2]
    16180. 

  16180.         mulxq	(%rbx), %rcx, %rax
    16181. 

  16181.         adoxq	%r15, %r13
    16182. 

  16182.         xorq	%r14, %r14
    16183. 

  16183.         adcxq	%rcx, %r10
    16184. 

  16184.         # A[1] * B[1]
    16185. 

  16185.         movq	8(%rbp), %rdx
    16186. 

  16186.         mulxq	8(%rbx), %rdx, %rcx
    16187. 

  16187.         adcxq	%rax, %r11
    16188. 

  16188.         adoxq	%rdx, %r10
    16189. 

  16189.         # A[3] * B[1]
    16190. 

  16190.         movq	8(%rbp), %rdx
    16191. 

  16191.         adoxq	%rcx, %r11
    16192. 

  16192.         mulxq	24(%rbx), %rcx, %rax
    16193. 

  16193.         adcxq	%rcx, %r12
    16194. 

  16194.         # A[2] * B[2]
    16195. 

  16195.         movq	16(%rbp), %rdx
    16196. 

  16196.         mulxq	16(%rbx), %rdx, %rcx
    16197. 

  16197.         adcxq	%rax, %r13
    16198. 

  16198.         adoxq	%rdx, %r12
    16199. 

  16199.         # A[3] * B[3]
    16200. 

  16200.         movq	24(%rbp), %rdx
    16201. 

  16201.         adoxq	%rcx, %r13
    16202. 

  16202.         mulxq	24(%rbx), %rcx, %rax
    16203. 

  16203.         adoxq	%r15, %r14
    16204. 

  16204.         adcxq	%rcx, %r14
    16205. 

  16205.         # A[0] * B[3]
    16206. 

  16206.         mulxq	(%rbx), %rdx, %rcx
    16207. 

  16207.         adcxq	%rax, %r15
    16208. 

  16208.         xorq	%rax, %rax
    16209. 

  16209.         adcxq	%rdx, %r11
    16210. 

  16210.         # A[3] * B[0]
    16211. 

  16211.         movq	(%rbp), %rdx
    16212. 

  16212.         adcxq	%rcx, %r12
    16213. 

  16213.         mulxq	24(%rbx), %rdx, %rcx
    16214. 

  16214.         adoxq	%rdx, %r11
    16215. 

  16215.         adoxq	%rcx, %r12
    16216. 

  16216.         # A[2] * B[3]
    16217. 

  16217.         movq	24(%rbp), %rdx
    16218. 

  16218.         mulxq	16(%rbx), %rdx, %rcx
    16219. 

  16219.         adcxq	%rdx, %r13
    16220. 

  16220.         # A[3] * B[2]
    16221. 

  16221.         movq	16(%rbp), %rdx
    16222. 

  16222.         adcxq	%rcx, %r14
    16223. 

  16223.         mulxq	24(%rbx), %rcx, %rdx
    16224. 

  16224.         adcxq	%rax, %r15
    16225. 

  16225.         adoxq	%rcx, %r13
    16226. 

  16226.         adoxq	%rdx, %r14
    16227. 

  16227.         adoxq	%rax, %r15
    16228. 

  16228.         # Reduce
    16229. 

  16229.         movq	$0x7fffffffffffffff, %rax
    16230. 

  16230.         #  Move top half into t4-t7 and remove top bit from t3
    16231. 

  16231.         shldq	$0x01, %r14, %r15
    16232. 

  16232.         shldq	$0x01, %r13, %r14
    16233. 

  16233.         shldq	$0x01, %r12, %r13
    16234. 

  16234.         shldq	$0x01, %r11, %r12
    16235. 

  16235.         andq	%rax, %r11
    16236. 

  16236.         #  Multiply top half by 19
    16237. 

  16237.         movq	$19, %rdx
    16238. 

  16238.         xorq	%rax, %rax
    16239. 

  16239.         mulxq	%r12, %rcx, %r12
    16240. 

  16240.         adcxq	%rcx, %r8
    16241. 

  16241.         adoxq	%r12, %r9
    16242. 

  16242.         mulxq	%r13, %rcx, %r13
    16243. 

  16243.         adcxq	%rcx, %r9
    16244. 

  16244.         adoxq	%r13, %r10
    16245. 

  16245.         mulxq	%r14, %rcx, %r14
    16246. 

  16246.         adcxq	%rcx, %r10
    16247. 

  16247.         adoxq	%r14, %r11
    16248. 

  16248.         mulxq	%r15, %r15, %rdx
    16249. 

  16249.         adcxq	%r15, %r11
    16250. 

  16250.         adoxq	%rax, %rdx
    16251. 

  16251.         adcxq	%rax, %rdx
    16252. 

  16252.         #  Overflow
    16253. 

  16253.         shldq	$0x01, %r11, %rdx
    16254. 

  16254.         movq	$0x7fffffffffffffff, %rax
    16255. 

  16255.         imulq	$19, %rdx, %rcx
    16256. 

  16256.         andq	%rax, %r11
    16257. 

  16257.         addq	%rcx, %r8
    16258. 

  16258.         adcq	$0x00, %r9
    16259. 

  16259.         adcq	$0x00, %r10
    16260. 

  16260.         adcq	$0x00, %r11
    16261. 

  16261.         # Reduce if top bit set
    16262. 

  16262.         movq	%r11, %rdx
    16263. 

  16263.         shrq	$63, %rdx
    16264. 

  16264.         imulq	$19, %rdx, %rcx
    16265. 

  16265.         andq	%rax, %r11
    16266. 

  16266.         addq	%rcx, %r8
    16267. 

  16267.         adcq	$0x00, %r9
    16268. 

  16268.         adcq	$0x00, %r10
    16269. 

  16269.         adcq	$0x00, %r11
    16270. 

  16270.         # Store
    16271. 

  16271.         movq	%r8, (%rsi)
    16272. 

  16272.         movq	%r9, 8(%rsi)
    16273. 

  16273.         movq	%r10, 16(%rsi)
    16274. 

  16274.         movq	%r11, 24(%rsi)
    16275. 

  16275.         movq	136(%rsp), %rsi
    16276. 

  16276.         movq	152(%rsp), %rbx
    16277. 

  16277.         # Multiply
    16278. 

  16278.         # A[0] * B[0]
    16279. 

  16279.         movq	(%rbx), %rdx
    16280. 

  16280.         mulxq	(%rsi), %r8, %r9
    16281. 

  16281.         # A[2] * B[0]
    16282. 

  16282.         mulxq	16(%rsi), %r10, %r11
    16283. 

  16283.         # A[1] * B[0]
    16284. 

  16284.         mulxq	8(%rsi), %rcx, %rax
    16285. 

  16285.         xorq	%r15, %r15
    16286. 

  16286.         adcxq	%rcx, %r9
    16287. 

  16287.         # A[1] * B[3]
    16288. 

  16288.         movq	24(%rbx), %rdx
    16289. 

  16289.         mulxq	8(%rsi), %r12, %r13
    16290. 

  16290.         adcxq	%rax, %r10
    16291. 

  16291.         # A[0] * B[1]
    16292. 

  16292.         movq	8(%rbx), %rdx
    16293. 

  16293.         mulxq	(%rsi), %rcx, %rax
    16294. 

  16294.         adoxq	%rcx, %r9
    16295. 

  16295.         # A[2] * B[1]
    16296. 

  16296.         mulxq	16(%rsi), %rcx, %r14
    16297. 

  16297.         adoxq	%rax, %r10
    16298. 

  16298.         adcxq	%rcx, %r11
    16299. 

  16299.         # A[1] * B[2]
    16300. 

  16300.         movq	16(%rbx), %rdx
    16301. 

  16301.         mulxq	8(%rsi), %rcx, %rax
    16302. 

  16302.         adcxq	%r14, %r12
    16303. 

  16303.         adoxq	%rcx, %r11
    16304. 

  16304.         adcxq	%r15, %r13
    16305. 

  16305.         adoxq	%rax, %r12
    16306. 

  16306.         # A[0] * B[2]
    16307. 

  16307.         mulxq	(%rsi), %rcx, %rax
    16308. 

  16308.         adoxq	%r15, %r13
    16309. 

  16309.         xorq	%r14, %r14
    16310. 

  16310.         adcxq	%rcx, %r10
    16311. 

  16311.         # A[1] * B[1]
    16312. 

  16312.         movq	8(%rbx), %rdx
    16313. 

  16313.         mulxq	8(%rsi), %rdx, %rcx
    16314. 

  16314.         adcxq	%rax, %r11
    16315. 

  16315.         adoxq	%rdx, %r10
    16316. 

  16316.         # A[3] * B[1]
    16317. 

  16317.         movq	8(%rbx), %rdx
    16318. 

  16318.         adoxq	%rcx, %r11
    16319. 

  16319.         mulxq	24(%rsi), %rcx, %rax
    16320. 

  16320.         adcxq	%rcx, %r12
    16321. 

  16321.         # A[2] * B[2]
    16322. 

  16322.         movq	16(%rbx), %rdx
    16323. 

  16323.         mulxq	16(%rsi), %rdx, %rcx
    16324. 

  16324.         adcxq	%rax, %r13
    16325. 

  16325.         adoxq	%rdx, %r12
    16326. 

  16326.         # A[3] * B[3]
    16327. 

  16327.         movq	24(%rbx), %rdx
    16328. 

  16328.         adoxq	%rcx, %r13
    16329. 

  16329.         mulxq	24(%rsi), %rcx, %rax
    16330. 

  16330.         adoxq	%r15, %r14
    16331. 

  16331.         adcxq	%rcx, %r14
    16332. 

  16332.         # A[0] * B[3]
    16333. 

  16333.         mulxq	(%rsi), %rdx, %rcx
    16334. 

  16334.         adcxq	%rax, %r15
    16335. 

  16335.         xorq	%rax, %rax
    16336. 

  16336.         adcxq	%rdx, %r11
    16337. 

  16337.         # A[3] * B[0]
    16338. 

  16338.         movq	(%rbx), %rdx
    16339. 

  16339.         adcxq	%rcx, %r12
    16340. 

  16340.         mulxq	24(%rsi), %rdx, %rcx
    16341. 

  16341.         adoxq	%rdx, %r11
    16342. 

  16342.         adoxq	%rcx, %r12
    16343. 

  16343.         # A[2] * B[3]
    16344. 

  16344.         movq	24(%rbx), %rdx
    16345. 

  16345.         mulxq	16(%rsi), %rdx, %rcx
    16346. 

  16346.         adcxq	%rdx, %r13
    16347. 

  16347.         # A[3] * B[2]
    16348. 

  16348.         movq	16(%rbx), %rdx
    16349. 

  16349.         adcxq	%rcx, %r14
    16350. 

  16350.         mulxq	24(%rsi), %rcx, %rdx
    16351. 

  16351.         adcxq	%rax, %r15
    16352. 

  16352.         adoxq	%rcx, %r13
    16353. 

  16353.         adoxq	%rdx, %r14
    16354. 

  16354.         adoxq	%rax, %r15
    16355. 

  16355.         # Reduce
    16356. 

  16356.         movq	$0x7fffffffffffffff, %rax
    16357. 

  16357.         #  Move top half into t4-t7 and remove top bit from t3
    16358. 

  16358.         shldq	$0x01, %r14, %r15
    16359. 

  16359.         shldq	$0x01, %r13, %r14
    16360. 

  16360.         shldq	$0x01, %r12, %r13
    16361. 

  16361.         shldq	$0x01, %r11, %r12
    16362. 

  16362.         andq	%rax, %r11
    16363. 

  16363.         #  Multiply top half by 19
    16364. 

  16364.         movq	$19, %rdx
    16365. 

  16365.         xorq	%rax, %rax
    16366. 

  16366.         mulxq	%r12, %rcx, %r12
    16367. 

  16367.         adcxq	%rcx, %r8
    16368. 

  16368.         adoxq	%r12, %r9
    16369. 

  16369.         mulxq	%r13, %rcx, %r13
    16370. 

  16370.         adcxq	%rcx, %r9
    16371. 

  16371.         adoxq	%r13, %r10
    16372. 

  16372.         mulxq	%r14, %rcx, %r14
    16373. 

  16373.         adcxq	%rcx, %r10
    16374. 

  16374.         adoxq	%r14, %r11
    16375. 

  16375.         mulxq	%r15, %r15, %rdx
    16376. 

  16376.         adcxq	%r15, %r11
    16377. 

  16377.         adoxq	%rax, %rdx
    16378. 

  16378.         adcxq	%rax, %rdx
    16379. 

  16379.         #  Overflow
    16380. 

  16380.         shldq	$0x01, %r11, %rdx
    16381. 

  16381.         movq	$0x7fffffffffffffff, %rax
    16382. 

  16382.         imulq	$19, %rdx, %rcx
    16383. 

  16383.         andq	%rax, %r11
    16384. 

  16384.         addq	%rcx, %r8
    16385. 

  16385.         adcq	$0x00, %r9
    16386. 

  16386.         adcq	$0x00, %r10
    16387. 

  16387.         adcq	$0x00, %r11
    16388. 

  16388.         # Reduce if top bit set
    16389. 

  16389.         movq	%r11, %rdx
    16390. 

  16390.         shrq	$63, %rdx
    16391. 

  16391.         imulq	$19, %rdx, %rcx
    16392. 

  16392.         andq	%rax, %r11
    16393. 

  16393.         addq	%rcx, %r8
    16394. 

  16394.         adcq	$0x00, %r9
    16395. 

  16395.         adcq	$0x00, %r10
    16396. 

  16396.         adcq	$0x00, %r11
    16397. 

  16397.         # Store
    16398. 

  16398.         movq	%r8, (%rdi)
    16399. 

  16399.         movq	%r9, 8(%rdi)
    16400. 

  16400.         movq	%r10, 16(%rdi)
    16401. 

  16401.         movq	%r11, 24(%rdi)
    16402. 

  16402.         leaq	48(%rsp), %rsi
    16403. 

  16403.         # Double
    16404. 

  16404.         movq	(%rdi), %r8
    16405. 

  16405.         movq	8(%rdi), %r9
    16406. 

  16406.         addq	%r8, %r8
    16407. 

  16407.         movq	16(%rdi), %r10
    16408. 

  16408.         adcq	%r9, %r9
    16409. 

  16409.         movq	24(%rdi), %rdx
    16410. 

  16410.         adcq	%r10, %r10
    16411. 

  16411.         movq	$-19, %rcx
    16412. 

  16412.         adcq	%rdx, %rdx
    16413. 

  16413.         movq	$0x7fffffffffffffff, %rax
    16414. 

  16414.         movq	%rdx, %r11
    16415. 

  16415.         sarq	$63, %rdx
    16416. 

  16416.         #   Mask the modulus
    16417. 

  16417.         andq	%rdx, %rcx
    16418. 

  16418.         andq	%rdx, %rax
    16419. 

  16419.         #   Sub modulus (if overflow)
    16420. 

  16420.         subq	%rcx, %r8
    16421. 

  16421.         sbbq	%rdx, %r9
    16422. 

  16422.         sbbq	%rdx, %r10
    16423. 

  16423.         sbbq	%rax, %r11
    16424. 

  16424.         movq	%r8, (%rsi)
    16425. 

  16425.         movq	%r9, 8(%rsi)
    16426. 

  16426.         movq	%r10, 16(%rsi)
    16427. 

  16427.         movq	%r11, 24(%rsi)
    16428. 

  16428.         movq	8(%rsp), %rbx
    16429. 

  16429.         movq	16(%rsp), %rbp
    16430. 

  16430.         # Add
    16431. 

  16431.         movq	(%rbp), %r8
    16432. 

  16432.         movq	8(%rbp), %r9
    16433. 

  16433.         movq	16(%rbp), %r10
    16434. 

  16434.         movq	24(%rbp), %rdx
    16435. 

  16435.         movq	%r8, %r12
    16436. 

  16436.         addq	(%rbx), %r8
    16437. 

  16437.         movq	%r9, %r13
    16438. 

  16438.         adcq	8(%rbx), %r9
    16439. 

  16439.         movq	%r10, %r14
    16440. 

  16440.         adcq	16(%rbx), %r10
    16441. 

  16441.         movq	%rdx, %r15
    16442. 

  16442.         adcq	24(%rbx), %rdx
    16443. 

  16443.         movq	$-19, %rcx
    16444. 

  16444.         movq	%rdx, %r11
    16445. 

  16445.         movq	$0x7fffffffffffffff, %rax
    16446. 

  16446.         sarq	$63, %rdx
    16447. 

  16447.         #   Mask the modulus
    16448. 

  16448.         andq	%rdx, %rcx
    16449. 

  16449.         andq	%rdx, %rax
    16450. 

  16450.         #   Sub modulus (if overflow)
    16451. 

  16451.         subq	%rcx, %r8
    16452. 

  16452.         sbbq	%rdx, %r9
    16453. 

  16453.         sbbq	%rdx, %r10
    16454. 

  16454.         sbbq	%rax, %r11
    16455. 

  16455.         # Sub
    16456. 

  16456.         subq	(%rbx), %r12
    16457. 

  16457.         movq	$0x00, %rdx
    16458. 

  16458.         sbbq	8(%rbx), %r13
    16459. 

  16459.         movq	$-19, %rcx
    16460. 

  16460.         sbbq	16(%rbx), %r14
    16461. 

  16461.         movq	$0x7fffffffffffffff, %rax
    16462. 

  16462.         sbbq	24(%rbx), %r15
    16463. 

  16463.         sbbq	$0x00, %rdx
    16464. 

  16464.         #   Mask the modulus
    16465. 

  16465.         andq	%rdx, %rcx
    16466. 

  16466.         andq	%rdx, %rax
    16467. 

  16467.         #   Add modulus (if underflow)
    16468. 

  16468.         addq	%rcx, %r12
    16469. 

  16469.         adcq	%rdx, %r13
    16470. 

  16470.         adcq	%rdx, %r14
    16471. 

  16471.         adcq	%rax, %r15
    16472. 

  16472.         movq	%r8, (%rbx)
    16473. 

  16473.         movq	%r9, 8(%rbx)
    16474. 

  16474.         movq	%r10, 16(%rbx)
    16475. 

  16475.         movq	%r11, 24(%rbx)
    16476. 

  16476.         movq	%r12, (%rdi)
    16477. 

  16477.         movq	%r13, 8(%rdi)
    16478. 

  16478.         movq	%r14, 16(%rdi)
    16479. 

  16479.         movq	%r15, 24(%rdi)
    16480. 

  16480.         movq	24(%rsp), %rdi
    16481. 

  16481.         # Add
    16482. 

  16482.         movq	(%rsi), %r8
    16483. 

  16483.         movq	8(%rsi), %r9
    16484. 

  16484.         movq	16(%rsi), %r10
    16485. 

  16485.         movq	24(%rsi), %rdx
    16486. 

  16486.         movq	%r8, %r12
    16487. 

  16487.         addq	(%rdi), %r8
    16488. 

  16488.         movq	%r9, %r13
    16489. 

  16489.         adcq	8(%rdi), %r9
    16490. 

  16490.         movq	%r10, %r14
    16491. 

  16491.         adcq	16(%rdi), %r10
    16492. 

  16492.         movq	%rdx, %r15
    16493. 

  16493.         adcq	24(%rdi), %rdx
    16494. 

  16494.         movq	$-19, %rcx
    16495. 

  16495.         movq	%rdx, %r11
    16496. 

  16496.         movq	$0x7fffffffffffffff, %rax
    16497. 

  16497.         sarq	$63, %rdx
    16498. 

  16498.         #   Mask the modulus
    16499. 

  16499.         andq	%rdx, %rcx
    16500. 

  16500.         andq	%rdx, %rax
    16501. 

  16501.         #   Sub modulus (if overflow)
    16502. 

  16502.         subq	%rcx, %r8
    16503. 

  16503.         sbbq	%rdx, %r9
    16504. 

  16504.         sbbq	%rdx, %r10
    16505. 

  16505.         sbbq	%rax, %r11
    16506. 

  16506.         # Sub
    16507. 

  16507.         subq	(%rdi), %r12
    16508. 

  16508.         movq	$0x00, %rdx
    16509. 

  16509.         sbbq	8(%rdi), %r13
    16510. 

  16510.         movq	$-19, %rcx
    16511. 

  16511.         sbbq	16(%rdi), %r14
    16512. 

  16512.         movq	$0x7fffffffffffffff, %rax
    16513. 

  16513.         sbbq	24(%rdi), %r15
    16514. 

  16514.         sbbq	$0x00, %rdx
    16515. 

  16515.         #   Mask the modulus
    16516. 

  16516.         andq	%rdx, %rcx
    16517. 

  16517.         andq	%rdx, %rax
    16518. 

  16518.         #   Add modulus (if underflow)
    16519. 

  16519.         addq	%rcx, %r12
    16520. 

  16520.         adcq	%rdx, %r13
    16521. 

  16521.         adcq	%rdx, %r14
    16522. 

  16522.         adcq	%rax, %r15
    16523. 

  16523.         movq	%r8, (%rdi)
    16524. 

  16524.         movq	%r9, 8(%rdi)
    16525. 

  16525.         movq	%r10, 16(%rdi)
    16526. 

  16526.         movq	%r11, 24(%rdi)
    16527. 

  16527.         movq	%r12, (%rbp)
    16528. 

  16528.         movq	%r13, 8(%rbp)
    16529. 

  16529.         movq	%r14, 16(%rbp)
    16530. 

  16530.         movq	%r15, 24(%rbp)
    16531. 

  16531.         addq	$0x50, %rsp
    16532. 

  16532.         popq	%r15
    16533. 

  16533.         popq	%r14
    16534. 

  16534.         popq	%r13
    16535. 

  16535.         popq	%r12
    16536. 

  16536.         popq	%rbp
    16537. 

  16537.         popq	%rbx
    16538. 

  16538.         repz retq
    16539. 

  16539. #ifndef __APPLE__
    16540. 

  16540. .size	fe_ge_sub_avx2,.-fe_ge_sub_avx2
    16541. 

  16541. #endif /* __APPLE__ */
    16542. 

  16542. #endif /* HAVE_INTEL_AVX2 */
    16543. 

  16543. 

  16544. #if defined(__linux__) && defined(__ELF__)
    16545. 

  16545. .section	.note.GNU-stack,"",%progbits
    16546. 

  16546. #endif
    16547.