Home Esplora Aiuto
Accedi
OWEALs
/
wolfssl
mirror da https://github.com/wolfSSL/wolfssl.git
2
0
Forka 0
File Problemi 8 Wiki
Albero (Tree): 9d9549fbd3
Rami (Branch) Tag
wolfssl
/
wolfcrypt
/
src
/
fe_x25519_asm.S

fe_x25519_asm.S 404 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806180718081809181018111812181318141815181618171818181918201821182218231824182518261827182818291830183118321833183418351836183718381839184018411842184318441845184618471848184918501851185218531854185518561857185818591860186118621863186418651866186718681869187018711872187318741875187618771878187918801881188218831884188518861887188818891890189118921893189418951896189718981899190019011902190319041905190619071908190919101911191219131914191519161917191819191920192119221923192419251926192719281929193019311932193319341935193619371938193919401941194219431944194519461947194819491950195119521953195419551956195719581959196019611962196319641965196619671968196919701971197219731974197519761977197819791980198119821983198419851986198719881989199019911992199319941995199619971998199920002001200220032004200520062007200820092010201120122013201420152016201720182019202020212022202320242025202620272028202920302031203220332034203520362037203820392040204120422043204420452046204720482049205020512052205320542055205620572058205920602061206220632064206520662067206820692070207120722073207420752076207720782079208020812082208320842085208620872088208920902091209220932094209520962097209820992100210121022103210421052106210721082109211021112112211321142115211621172118211921202121212221232124212521262127212821292130213121322133213421352136213721382139214021412142214321442145214621472148214921502151215221532154215521562157215821592160216121622163216421652166216721682169217021712172217321742175217621772178217921802181218221832184218521862187218821892190219121922193219421952196219721982199220022012202220322042205220622072208220922102211221222132214221522162217221822192220222122222223222422252226222722282229223022312232223322342235223622372238223922402241224222432244224522462247224822492250225122522253225422552256225722582259226022612262226322642265226622672268226922702271227222732274227522762277227822792280228122822283228422852286228722882289229022912292229322942295229622972298229923002301230223032304230523062307230823092310231123122313231423152316231723182319232023212322232323242325232623272328232923302331233223332334233523362337233823392340234123422343234423452346234723482349235023512352235323542355235623572358235923602361236223632364236523662367236823692370237123722373237423752376237723782379238023812382238323842385238623872388238923902391239223932394239523962397239823992400240124022403240424052406240724082409241024112412241324142415241624172418241924202421242224232424242524262427242824292430243124322433243424352436243724382439244024412442244324442445244624472448244924502451245224532454245524562457245824592460246124622463246424652466246724682469247024712472247324742475247624772478247924802481248224832484248524862487248824892490249124922493249424952496249724982499250025012502250325042505250625072508250925102511251225132514251525162517251825192520252125222523252425252526252725282529253025312532253325342535253625372538253925402541254225432544254525462547254825492550255125522553255425552556255725582559256025612562256325642565256625672568256925702571257225732574257525762577257825792580258125822583258425852586258725882589259025912592259325942595259625972598259926002601260226032604260526062607260826092610261126122613261426152616261726182619262026212622262326242625262626272628262926302631263226332634263526362637263826392640264126422643264426452646264726482649265026512652265326542655265626572658265926602661266226632664266526662667266826692670267126722673267426752676267726782679268026812682268326842685268626872688268926902691269226932694269526962697269826992700270127022703270427052706270727082709271027112712271327142715271627172718271927202721272227232724272527262727272827292730273127322733273427352736273727382739274027412742274327442745274627472748274927502751275227532754275527562757275827592760276127622763276427652766276727682769277027712772277327742775277627772778277927802781278227832784278527862787278827892790279127922793279427952796279727982799280028012802280328042805280628072808280928102811281228132814281528162817281828192820282128222823282428252826282728282829283028312832283328342835283628372838283928402841284228432844284528462847284828492850285128522853285428552856285728582859286028612862286328642865286628672868286928702871287228732874287528762877287828792880288128822883288428852886288728882889289028912892289328942895289628972898289929002901290229032904290529062907290829092910291129122913291429152916291729182919292029212922292329242925292629272928292929302931293229332934293529362937293829392940294129422943294429452946294729482949295029512952295329542955295629572958295929602961296229632964296529662967296829692970297129722973297429752976297729782979298029812982298329842985298629872988298929902991299229932994299529962997299829993000300130023003300430053006300730083009301030113012301330143015301630173018301930203021302230233024302530263027302830293030303130323033303430353036303730383039304030413042304330443045304630473048304930503051305230533054305530563057305830593060306130623063306430653066306730683069307030713072307330743075307630773078307930803081308230833084308530863087308830893090309130923093309430953096309730983099310031013102310331043105310631073108310931103111311231133114311531163117311831193120312131223123312431253126312731283129313031313132313331343135313631373138313931403141314231433144314531463147314831493150315131523153315431553156315731583159316031613162316331643165316631673168316931703171317231733174317531763177317831793180318131823183318431853186318731883189319031913192319331943195319631973198319932003201320232033204320532063207320832093210321132123213321432153216321732183219322032213222322332243225322632273228322932303231323232333234323532363237323832393240324132423243324432453246324732483249325032513252325332543255325632573258325932603261326232633264326532663267326832693270327132723273327432753276327732783279328032813282328332843285328632873288328932903291329232933294329532963297329832993300330133023303330433053306330733083309331033113312331333143315331633173318331933203321332233233324332533263327332833293330333133323333333433353336333733383339334033413342334333443345334633473348334933503351335233533354335533563357335833593360336133623363336433653366336733683369337033713372337333743375337633773378337933803381338233833384338533863387338833893390339133923393339433953396339733983399340034013402340334043405340634073408340934103411341234133414341534163417341834193420342134223423342434253426342734283429343034313432343334343435343634373438343934403441344234433444344534463447344834493450345134523453345434553456345734583459346034613462346334643465346634673468346934703471347234733474347534763477347834793480348134823483348434853486348734883489349034913492349334943495349634973498349935003501350235033504350535063507350835093510351135123513351435153516351735183519352035213522352335243525352635273528352935303531353235333534353535363537353835393540354135423543354435453546354735483549355035513552355335543555355635573558355935603561356235633564356535663567356835693570357135723573357435753576357735783579358035813582358335843585358635873588358935903591359235933594359535963597359835993600360136023603360436053606360736083609361036113612361336143615361636173618361936203621362236233624362536263627362836293630363136323633363436353636363736383639364036413642364336443645364636473648364936503651365236533654365536563657365836593660366136623663366436653666366736683669367036713672367336743675367636773678367936803681368236833684368536863687368836893690369136923693369436953696369736983699370037013702370337043705370637073708370937103711371237133714371537163717371837193720372137223723372437253726372737283729373037313732373337343735373637373738373937403741374237433744374537463747374837493750375137523753375437553756375737583759376037613762376337643765376637673768376937703771377237733774377537763777377837793780378137823783378437853786378737883789379037913792379337943795379637973798379938003801380238033804380538063807380838093810381138123813381438153816381738183819382038213822382338243825382638273828382938303831383238333834383538363837383838393840384138423843384438453846384738483849385038513852385338543855385638573858385938603861386238633864386538663867386838693870387138723873387438753876387738783879388038813882388338843885388638873888388938903891389238933894389538963897389838993900390139023903390439053906390739083909391039113912391339143915391639173918391939203921392239233924392539263927392839293930393139323933393439353936393739383939394039413942394339443945394639473948394939503951395239533954395539563957395839593960396139623963396439653966396739683969397039713972397339743975397639773978397939803981398239833984398539863987398839893990399139923993399439953996399739983999400040014002400340044005400640074008400940104011401240134014401540164017401840194020402140224023402440254026402740284029403040314032403340344035403640374038403940404041404240434044404540464047404840494050405140524053405440554056405740584059406040614062406340644065406640674068406940704071407240734074407540764077407840794080408140824083408440854086408740884089409040914092409340944095409640974098409941004101410241034104410541064107410841094110411141124113411441154116411741184119412041214122412341244125412641274128412941304131413241334134413541364137413841394140414141424143414441454146414741484149415041514152415341544155415641574158415941604161416241634164416541664167416841694170417141724173417441754176417741784179418041814182418341844185418641874188418941904191419241934194419541964197419841994200420142024203420442054206420742084209421042114212421342144215421642174218421942204221422242234224422542264227422842294230423142324233423442354236423742384239424042414242424342444245424642474248424942504251425242534254425542564257425842594260426142624263426442654266426742684269427042714272427342744275427642774278427942804281428242834284428542864287428842894290429142924293429442954296429742984299430043014302430343044305430643074308430943104311431243134314431543164317431843194320432143224323432443254326432743284329433043314332433343344335433643374338433943404341434243434344434543464347434843494350435143524353435443554356435743584359436043614362436343644365436643674368436943704371437243734374437543764377437843794380438143824383438443854386438743884389439043914392439343944395439643974398439944004401440244034404440544064407440844094410441144124413441444154416441744184419442044214422442344244425442644274428442944304431443244334434443544364437443844394440444144424443444444454446444744484449445044514452445344544455445644574458445944604461446244634464446544664467446844694470447144724473447444754476447744784479448044814482448344844485448644874488448944904491449244934494449544964497449844994500450145024503450445054506450745084509451045114512451345144515451645174518451945204521452245234524452545264527452845294530453145324533453445354536453745384539454045414542454345444545454645474548454945504551455245534554455545564557455845594560456145624563456445654566456745684569457045714572457345744575457645774578457945804581458245834584458545864587458845894590459145924593459445954596459745984599460046014602460346044605460646074608460946104611461246134614461546164617461846194620462146224623462446254626462746284629463046314632463346344635463646374638463946404641464246434644464546464647464846494650465146524653465446554656465746584659466046614662466346644665466646674668466946704671467246734674467546764677467846794680468146824683468446854686468746884689469046914692469346944695469646974698469947004701470247034704470547064707470847094710471147124713471447154716471747184719472047214722472347244725472647274728472947304731473247334734473547364737473847394740474147424743474447454746474747484749475047514752475347544755475647574758475947604761476247634764476547664767476847694770477147724773477447754776477747784779478047814782478347844785478647874788478947904791479247934794479547964797479847994800480148024803480448054806480748084809481048114812481348144815481648174818481948204821482248234824482548264827482848294830483148324833483448354836483748384839484048414842484348444845484648474848484948504851485248534854485548564857485848594860486148624863486448654866486748684869487048714872487348744875487648774878487948804881488248834884488548864887488848894890489148924893489448954896489748984899490049014902490349044905490649074908490949104911491249134914491549164917491849194920492149224923492449254926492749284929493049314932493349344935493649374938493949404941494249434944494549464947494849494950495149524953495449554956495749584959496049614962496349644965496649674968496949704971497249734974497549764977497849794980498149824983498449854986498749884989499049914992499349944995499649974998499950005001500250035004500550065007500850095010501150125013501450155016501750185019502050215022502350245025502650275028502950305031503250335034503550365037503850395040504150425043504450455046504750485049505050515052505350545055505650575058505950605061506250635064506550665067506850695070507150725073507450755076507750785079508050815082508350845085508650875088508950905091509250935094509550965097509850995100510151025103510451055106510751085109511051115112511351145115511651175118511951205121512251235124512551265127512851295130513151325133513451355136513751385139514051415142514351445145514651475148514951505151515251535154515551565157515851595160516151625163516451655166516751685169517051715172517351745175517651775178517951805181518251835184518551865187518851895190519151925193519451955196519751985199520052015202520352045205520652075208520952105211521252135214521552165217521852195220522152225223522452255226522752285229523052315232523352345235523652375238523952405241524252435244524552465247524852495250525152525253525452555256525752585259526052615262526352645265526652675268526952705271527252735274527552765277527852795280528152825283528452855286528752885289529052915292529352945295529652975298529953005301530253035304530553065307530853095310531153125313531453155316531753185319532053215322532353245325532653275328532953305331533253335334533553365337533853395340534153425343534453455346534753485349535053515352535353545355535653575358535953605361536253635364536553665367536853695370537153725373537453755376537753785379538053815382538353845385538653875388538953905391539253935394539553965397539853995400540154025403540454055406540754085409541054115412541354145415541654175418541954205421542254235424542554265427542854295430543154325433543454355436543754385439544054415442544354445445544654475448544954505451545254535454545554565457545854595460546154625463546454655466546754685469547054715472547354745475547654775478547954805481548254835484548554865487548854895490549154925493549454955496549754985499550055015502550355045505550655075508550955105511551255135514551555165517551855195520552155225523552455255526552755285529553055315532553355345535553655375538553955405541554255435544554555465547554855495550555155525553555455555556555755585559556055615562556355645565556655675568556955705571557255735574557555765577557855795580558155825583558455855586558755885589559055915592559355945595559655975598559956005601560256035604560556065607560856095610561156125613561456155616561756185619562056215622562356245625562656275628562956305631563256335634563556365637563856395640564156425643564456455646564756485649565056515652565356545655565656575658565956605661566256635664566556665667566856695670567156725673567456755676567756785679568056815682568356845685568656875688568956905691569256935694569556965697569856995700570157025703570457055706570757085709571057115712571357145715571657175718571957205721572257235724572557265727572857295730573157325733573457355736573757385739574057415742574357445745574657475748574957505751575257535754575557565757575857595760576157625763576457655766576757685769577057715772577357745775577657775778577957805781578257835784578557865787578857895790579157925793579457955796579757985799580058015802580358045805580658075808580958105811581258135814581558165817581858195820582158225823582458255826582758285829583058315832583358345835583658375838583958405841584258435844584558465847584858495850585158525853585458555856585758585859586058615862586358645865586658675868586958705871587258735874587558765877587858795880588158825883588458855886588758885889589058915892589358945895589658975898589959005901590259035904590559065907590859095910591159125913591459155916591759185919592059215922592359245925592659275928592959305931593259335934593559365937593859395940594159425943594459455946594759485949595059515952595359545955595659575958595959605961596259635964596559665967596859695970597159725973597459755976597759785979598059815982598359845985598659875988598959905991599259935994599559965997599859996000600160026003600460056006600760086009601060116012601360146015601660176018601960206021602260236024602560266027602860296030603160326033603460356036603760386039604060416042604360446045604660476048604960506051605260536054605560566057605860596060606160626063606460656066606760686069607060716072607360746075607660776078607960806081608260836084608560866087608860896090609160926093609460956096609760986099610061016102610361046105610661076108610961106111611261136114611561166117611861196120612161226123612461256126612761286129613061316132613361346135613661376138613961406141614261436144614561466147614861496150615161526153615461556156615761586159616061616162616361646165616661676168616961706171617261736174617561766177617861796180618161826183618461856186618761886189619061916192619361946195619661976198619962006201620262036204620562066207620862096210621162126213621462156216621762186219622062216222622362246225622662276228622962306231623262336234623562366237623862396240624162426243624462456246624762486249625062516252625362546255625662576258625962606261626262636264626562666267626862696270627162726273627462756276627762786279628062816282628362846285628662876288628962906291629262936294629562966297629862996300630163026303630463056306630763086309631063116312631363146315631663176318631963206321632263236324632563266327632863296330633163326333633463356336633763386339634063416342634363446345634663476348634963506351635263536354635563566357635863596360636163626363636463656366636763686369637063716372637363746375637663776378637963806381638263836384638563866387638863896390639163926393639463956396639763986399640064016402640364046405640664076408640964106411641264136414641564166417641864196420642164226423642464256426642764286429643064316432643364346435643664376438643964406441644264436444644564466447644864496450645164526453645464556456645764586459646064616462646364646465646664676468646964706471647264736474647564766477647864796480648164826483648464856486648764886489649064916492649364946495649664976498649965006501650265036504650565066507650865096510651165126513651465156516651765186519652065216522652365246525652665276528652965306531653265336534653565366537653865396540654165426543654465456546654765486549655065516552655365546555655665576558655965606561656265636564656565666567656865696570657165726573657465756576657765786579658065816582658365846585658665876588658965906591659265936594659565966597659865996600660166026603660466056606660766086609661066116612661366146615661666176618661966206621662266236624662566266627662866296630663166326633663466356636663766386639664066416642664366446645664666476648664966506651665266536654665566566657665866596660666166626663666466656666666766686669667066716672667366746675667666776678667966806681668266836684668566866687668866896690669166926693669466956696669766986699670067016702670367046705670667076708670967106711671267136714671567166717671867196720672167226723672467256726672767286729673067316732673367346735673667376738673967406741674267436744674567466747674867496750675167526753675467556756675767586759676067616762676367646765676667676768676967706771677267736774677567766777677867796780678167826783678467856786678767886789679067916792679367946795679667976798679968006801680268036804680568066807680868096810681168126813681468156816681768186819682068216822682368246825682668276828682968306831683268336834683568366837683868396840684168426843684468456846684768486849685068516852685368546855685668576858685968606861686268636864686568666867686868696870687168726873687468756876687768786879688068816882688368846885688668876888688968906891689268936894689568966897689868996900690169026903690469056906690769086909691069116912691369146915691669176918691969206921692269236924692569266927692869296930693169326933693469356936693769386939694069416942694369446945694669476948694969506951695269536954695569566957695869596960696169626963696469656966696769686969697069716972697369746975697669776978697969806981698269836984698569866987698869896990699169926993699469956996699769986999700070017002700370047005700670077008700970107011701270137014701570167017701870197020702170227023702470257026702770287029703070317032703370347035703670377038703970407041704270437044704570467047704870497050705170527053705470557056705770587059706070617062706370647065706670677068706970707071707270737074707570767077707870797080708170827083708470857086708770887089709070917092709370947095709670977098709971007101710271037104710571067107710871097110711171127113711471157116711771187119712071217122712371247125712671277128712971307131713271337134713571367137713871397140714171427143714471457146714771487149715071517152715371547155715671577158715971607161716271637164716571667167716871697170717171727173717471757176717771787179718071817182718371847185718671877188718971907191719271937194719571967197719871997200720172027203720472057206720772087209721072117212721372147215721672177218721972207221722272237224722572267227722872297230723172327233723472357236723772387239724072417242724372447245724672477248724972507251725272537254725572567257725872597260726172627263726472657266726772687269727072717272727372747275727672777278727972807281728272837284728572867287728872897290729172927293729472957296729772987299730073017302730373047305730673077308730973107311731273137314731573167317731873197320732173227323732473257326732773287329733073317332733373347335733673377338733973407341734273437344734573467347734873497350735173527353735473557356735773587359736073617362736373647365736673677368736973707371737273737374737573767377737873797380738173827383738473857386738773887389739073917392739373947395739673977398739974007401740274037404740574067407740874097410741174127413741474157416741774187419742074217422742374247425742674277428742974307431743274337434743574367437743874397440744174427443744474457446744774487449745074517452745374547455745674577458745974607461746274637464746574667467746874697470747174727473747474757476747774787479748074817482748374847485748674877488748974907491749274937494749574967497749874997500750175027503750475057506750775087509751075117512751375147515751675177518751975207521752275237524752575267527752875297530753175327533753475357536753775387539754075417542754375447545754675477548754975507551755275537554755575567557755875597560756175627563756475657566756775687569757075717572757375747575757675777578757975807581758275837584758575867587758875897590759175927593759475957596759775987599760076017602760376047605760676077608760976107611761276137614761576167617761876197620762176227623762476257626762776287629763076317632763376347635763676377638763976407641764276437644764576467647764876497650765176527653765476557656765776587659766076617662766376647665766676677668766976707671767276737674767576767677767876797680768176827683768476857686768776887689769076917692769376947695769676977698769977007701770277037704770577067707770877097710771177127713771477157716771777187719772077217722772377247725772677277728772977307731773277337734773577367737773877397740774177427743774477457746774777487749775077517752775377547755775677577758775977607761776277637764776577667767776877697770777177727773777477757776777777787779778077817782778377847785778677877788778977907791779277937794779577967797779877997800780178027803780478057806780778087809781078117812781378147815781678177818781978207821782278237824782578267827782878297830783178327833783478357836783778387839784078417842784378447845784678477848784978507851785278537854785578567857785878597860786178627863786478657866786778687869787078717872787378747875787678777878787978807881788278837884788578867887788878897890789178927893789478957896789778987899790079017902790379047905790679077908790979107911791279137914791579167917791879197920792179227923792479257926792779287929793079317932793379347935793679377938793979407941794279437944794579467947794879497950795179527953795479557956795779587959796079617962796379647965796679677968796979707971797279737974797579767977797879797980798179827983798479857986798779887989799079917992799379947995799679977998799980008001800280038004800580068007800880098010801180128013801480158016801780188019802080218022802380248025802680278028802980308031803280338034803580368037803880398040804180428043804480458046804780488049805080518052805380548055805680578058805980608061806280638064806580668067806880698070807180728073807480758076807780788079808080818082808380848085808680878088808980908091809280938094809580968097809880998100810181028103810481058106810781088109811081118112811381148115811681178118811981208121812281238124812581268127812881298130813181328133813481358136813781388139814081418142814381448145814681478148814981508151815281538154815581568157815881598160816181628163816481658166816781688169817081718172817381748175817681778178817981808181818281838184818581868187818881898190819181928193819481958196819781988199820082018202820382048205820682078208820982108211821282138214821582168217821882198220822182228223822482258226822782288229823082318232823382348235823682378238823982408241824282438244824582468247824882498250825182528253825482558256825782588259826082618262826382648265826682678268826982708271827282738274827582768277827882798280828182828283828482858286828782888289829082918292829382948295829682978298829983008301830283038304830583068307830883098310831183128313831483158316831783188319832083218322832383248325832683278328832983308331833283338334833583368337833883398340834183428343834483458346834783488349835083518352835383548355835683578358835983608361836283638364836583668367836883698370837183728373837483758376837783788379838083818382838383848385838683878388838983908391839283938394839583968397839883998400840184028403840484058406840784088409841084118412841384148415841684178418841984208421842284238424842584268427842884298430843184328433843484358436843784388439844084418442844384448445844684478448844984508451845284538454845584568457845884598460846184628463846484658466846784688469847084718472847384748475847684778478847984808481848284838484848584868487848884898490849184928493849484958496849784988499850085018502850385048505850685078508850985108511851285138514851585168517851885198520852185228523852485258526852785288529853085318532853385348535853685378538853985408541854285438544854585468547854885498550855185528553855485558556855785588559856085618562856385648565856685678568856985708571857285738574857585768577857885798580858185828583858485858586858785888589859085918592859385948595859685978598859986008601860286038604860586068607860886098610861186128613861486158616861786188619862086218622862386248625862686278628862986308631863286338634863586368637863886398640864186428643864486458646864786488649865086518652865386548655865686578658865986608661866286638664866586668667866886698670867186728673867486758676867786788679868086818682868386848685868686878688868986908691869286938694869586968697869886998700870187028703870487058706870787088709871087118712871387148715871687178718871987208721872287238724872587268727872887298730873187328733873487358736873787388739874087418742874387448745874687478748874987508751875287538754875587568757875887598760876187628763876487658766876787688769877087718772877387748775877687778778877987808781878287838784878587868787878887898790879187928793879487958796879787988799880088018802880388048805880688078808880988108811881288138814881588168817881888198820882188228823882488258826882788288829883088318832883388348835883688378838883988408841884288438844884588468847884888498850885188528853885488558856885788588859886088618862886388648865886688678868886988708871887288738874887588768877887888798880888188828883888488858886888788888889889088918892889388948895889688978898889989008901890289038904890589068907890889098910891189128913891489158916891789188919892089218922892389248925892689278928892989308931893289338934893589368937893889398940894189428943894489458946894789488949895089518952895389548955895689578958895989608961896289638964896589668967896889698970897189728973897489758976897789788979898089818982898389848985898689878988898989908991899289938994899589968997899889999000900190029003900490059006900790089009901090119012901390149015901690179018901990209021902290239024902590269027902890299030903190329033903490359036903790389039904090419042904390449045904690479048904990509051905290539054905590569057905890599060906190629063906490659066906790689069907090719072907390749075907690779078907990809081908290839084908590869087908890899090909190929093909490959096909790989099910091019102910391049105910691079108910991109111911291139114911591169117911891199120912191229123912491259126912791289129913091319132913391349135913691379138913991409141914291439144914591469147914891499150915191529153915491559156915791589159916091619162916391649165916691679168916991709171917291739174917591769177917891799180918191829183918491859186918791889189919091919192919391949195919691979198919992009201920292039204920592069207920892099210921192129213921492159216921792189219922092219222922392249225922692279228922992309231923292339234923592369237923892399240924192429243924492459246924792489249925092519252925392549255925692579258925992609261926292639264926592669267926892699270927192729273927492759276927792789279928092819282928392849285928692879288928992909291929292939294929592969297929892999300930193029303930493059306930793089309931093119312931393149315931693179318931993209321932293239324932593269327932893299330933193329333933493359336933793389339934093419342934393449345934693479348934993509351935293539354935593569357935893599360936193629363936493659366936793689369937093719372937393749375937693779378937993809381938293839384938593869387938893899390939193929393939493959396939793989399940094019402940394049405940694079408940994109411941294139414941594169417941894199420942194229423942494259426942794289429943094319432943394349435943694379438943994409441944294439444944594469447944894499450945194529453945494559456945794589459946094619462946394649465946694679468946994709471947294739474947594769477947894799480948194829483948494859486948794889489949094919492949394949495949694979498949995009501950295039504950595069507950895099510951195129513951495159516951795189519952095219522952395249525952695279528952995309531953295339534953595369537953895399540954195429543954495459546954795489549955095519552955395549555955695579558955995609561956295639564956595669567956895699570957195729573957495759576957795789579958095819582958395849585958695879588958995909591959295939594959595969597959895999600960196029603960496059606960796089609961096119612961396149615961696179618961996209621962296239624962596269627962896299630963196329633963496359636963796389639964096419642964396449645964696479648964996509651965296539654965596569657965896599660966196629663966496659666966796689669967096719672967396749675967696779678967996809681968296839684968596869687968896899690969196929693969496959696969796989699970097019702970397049705970697079708970997109711971297139714971597169717971897199720972197229723972497259726972797289729973097319732973397349735973697379738973997409741974297439744974597469747974897499750975197529753975497559756975797589759976097619762976397649765976697679768976997709771977297739774977597769777977897799780978197829783978497859786978797889789979097919792979397949795979697979798979998009801980298039804980598069807980898099810981198129813981498159816981798189819982098219822982398249825982698279828982998309831983298339834983598369837983898399840984198429843984498459846984798489849985098519852985398549855985698579858985998609861986298639864986598669867986898699870987198729873987498759876987798789879988098819882988398849885988698879888988998909891989298939894989598969897989898999900990199029903990499059906990799089909991099119912991399149915991699179918991999209921992299239924992599269927992899299930993199329933993499359936993799389939994099419942994399449945994699479948994999509951995299539954995599569957995899599960996199629963996499659966996799689969997099719972997399749975997699779978997999809981998299839984998599869987998899899990999199929993999499959996999799989999100001000110002100031000410005100061000710008100091001010011100121001310014100151001610017100181001910020100211002210023100241002510026100271002810029100301003110032100331003410035100361003710038100391004010041100421004310044100451004610047100481004910050100511005210053100541005510056100571005810059100601006110062100631006410065100661006710068100691007010071100721007310074100751007610077100781007910080100811008210083100841008510086100871008810089100901009110092100931009410095100961009710098100991010010101101021010310104101051010610107101081010910110101111011210113101141011510116101171011810119101201012110122101231012410125101261012710128101291013010131101321013310134101351013610137101381013910140101411014210143101441014510146101471014810149101501015110152101531015410155101561015710158101591016010161101621016310164101651016610167101681016910170101711017210173101741017510176101771017810179101801018110182101831018410185101861018710188101891019010191101921019310194101951019610197101981019910200102011020210203102041020510206102071020810209102101021110212102131021410215102161021710218102191022010221102221022310224102251022610227102281022910230102311023210233102341023510236102371023810239102401024110242102431024410245102461024710248102491025010251102521025310254102551025610257102581025910260102611026210263102641026510266102671026810269102701027110272102731027410275102761027710278102791028010281102821028310284102851028610287102881028910290102911029210293102941029510296102971029810299103001030110302103031030410305103061030710308103091031010311103121031310314103151031610317103181031910320103211032210323103241032510326103271032810329103301033110332103331033410335103361033710338103391034010341103421034310344103451034610347103481034910350103511035210353103541035510356103571035810359103601036110362103631036410365103661036710368103691037010371103721037310374103751037610377103781037910380103811038210383103841038510386103871038810389103901039110392103931039410395103961039710398103991040010401104021040310404104051040610407104081040910410104111041210413104141041510416104171041810419104201042110422104231042410425104261042710428104291043010431104321043310434104351043610437104381043910440104411044210443104441044510446104471044810449104501045110452104531045410455104561045710458104591046010461104621046310464104651046610467104681046910470104711047210473104741047510476104771047810479104801048110482104831048410485104861048710488104891049010491104921049310494104951049610497104981049910500105011050210503105041050510506105071050810509105101051110512105131051410515105161051710518105191052010521105221052310524105251052610527105281052910530105311053210533105341053510536105371053810539105401054110542105431054410545105461054710548105491055010551105521055310554105551055610557105581055910560105611056210563105641056510566105671056810569105701057110572105731057410575105761057710578105791058010581105821058310584105851058610587105881058910590105911059210593105941059510596105971059810599106001060110602106031060410605106061060710608106091061010611106121061310614106151061610617106181061910620106211062210623106241062510626106271062810629106301063110632106331063410635106361063710638106391064010641106421064310644106451064610647106481064910650106511065210653106541065510656106571065810659106601066110662106631066410665106661066710668106691067010671106721067310674106751067610677106781067910680106811068210683106841068510686106871068810689106901069110692106931069410695106961069710698106991070010701107021070310704107051070610707107081070910710107111071210713107141071510716107171071810719107201072110722107231072410725107261072710728107291073010731107321073310734107351073610737107381073910740107411074210743107441074510746107471074810749107501075110752107531075410755107561075710758107591076010761107621076310764107651076610767107681076910770107711077210773107741077510776107771077810779107801078110782107831078410785107861078710788107891079010791107921079310794107951079610797107981079910800108011080210803108041080510806108071080810809108101081110812108131081410815108161081710818108191082010821108221082310824108251082610827108281082910830108311083210833108341083510836108371083810839108401084110842108431084410845108461084710848108491085010851108521085310854108551085610857108581085910860108611086210863108641086510866108671086810869108701087110872108731087410875108761087710878108791088010881108821088310884108851088610887108881088910890108911089210893108941089510896108971089810899109001090110902109031090410905109061090710908109091091010911109121091310914109151091610917109181091910920109211092210923109241092510926109271092810929109301093110932109331093410935109361093710938109391094010941109421094310944109451094610947109481094910950109511095210953109541095510956109571095810959109601096110962109631096410965109661096710968109691097010971109721097310974109751097610977109781097910980109811098210983109841098510986109871098810989109901099110992109931099410995109961099710998109991100011001110021100311004110051100611007110081100911010110111101211013110141101511016110171101811019110201102111022110231102411025110261102711028110291103011031110321103311034110351103611037110381103911040110411104211043110441104511046110471104811049110501105111052110531105411055110561105711058110591106011061110621106311064110651106611067110681106911070110711107211073110741107511076110771107811079110801108111082110831108411085110861108711088110891109011091110921109311094110951109611097110981109911100111011110211103111041110511106111071110811109111101111111112111131111411115111161111711118111191112011121111221112311124111251112611127111281112911130111311113211133111341113511136111371113811139111401114111142111431114411145111461114711148111491115011151111521115311154111551115611157111581115911160111611116211163111641116511166111671116811169111701117111172111731117411175111761117711178111791118011181111821118311184111851118611187111881118911190111911119211193111941119511196111971119811199112001120111202112031120411205112061120711208112091121011211112121121311214112151121611217112181121911220112211122211223112241122511226112271122811229112301123111232112331123411235112361123711238112391124011241112421124311244112451124611247112481124911250112511125211253112541125511256112571125811259112601126111262112631126411265112661126711268112691127011271112721127311274112751127611277112781127911280112811128211283112841128511286112871128811289112901129111292112931129411295112961129711298112991130011301113021130311304113051130611307113081130911310113111131211313113141131511316113171131811319113201132111322113231132411325113261132711328113291133011331113321133311334113351133611337113381133911340113411134211343113441134511346113471134811349113501135111352113531135411355113561135711358113591136011361113621136311364113651136611367113681136911370113711137211373113741137511376113771137811379113801138111382113831138411385113861138711388113891139011391113921139311394113951139611397113981139911400114011140211403114041140511406114071140811409114101141111412114131141411415114161141711418114191142011421114221142311424114251142611427114281142911430114311143211433114341143511436114371143811439114401144111442114431144411445114461144711448114491145011451114521145311454114551145611457114581145911460114611146211463114641146511466114671146811469114701147111472114731147411475114761147711478114791148011481114821148311484114851148611487114881148911490114911149211493114941149511496114971149811499115001150111502115031150411505115061150711508115091151011511115121151311514115151151611517115181151911520115211152211523115241152511526115271152811529115301153111532115331153411535115361153711538115391154011541115421154311544115451154611547115481154911550115511155211553115541155511556115571155811559115601156111562115631156411565115661156711568115691157011571115721157311574115751157611577115781157911580115811158211583115841158511586115871158811589115901159111592115931159411595115961159711598115991160011601116021160311604116051160611607116081160911610116111161211613116141161511616116171161811619116201162111622116231162411625116261162711628116291163011631116321163311634116351163611637116381163911640116411164211643116441164511646116471164811649116501165111652116531165411655116561165711658116591166011661116621166311664116651166611667116681166911670116711167211673116741167511676116771167811679116801168111682116831168411685116861168711688116891169011691116921169311694116951169611697116981169911700117011170211703117041170511706117071170811709117101171111712117131171411715117161171711718117191172011721117221172311724117251172611727117281172911730117311173211733117341173511736117371173811739117401174111742117431174411745117461174711748117491175011751117521175311754117551175611757117581175911760117611176211763117641176511766117671176811769117701177111772117731177411775117761177711778117791178011781117821178311784117851178611787117881178911790117911179211793117941179511796117971179811799118001180111802118031180411805118061180711808118091181011811118121181311814118151181611817118181181911820118211182211823118241182511826118271182811829118301183111832118331183411835118361183711838118391184011841118421184311844118451184611847118481184911850118511185211853118541185511856118571185811859118601186111862118631186411865118661186711868118691187011871118721187311874118751187611877118781187911880118811188211883118841188511886118871188811889118901189111892118931189411895118961189711898118991190011901119021190311904119051190611907119081190911910119111191211913119141191511916119171191811919119201192111922119231192411925119261192711928119291193011931119321193311934119351193611937119381193911940119411194211943119441194511946119471194811949119501195111952119531195411955119561195711958119591196011961119621196311964119651196611967119681196911970119711197211973119741197511976119771197811979119801198111982119831198411985119861198711988119891199011991119921199311994119951199611997119981199912000120011200212003120041200512006120071200812009120101201112012120131201412015120161201712018120191202012021120221202312024120251202612027120281202912030120311203212033120341203512036120371203812039120401204112042120431204412045120461204712048120491205012051120521205312054120551205612057120581205912060120611206212063120641206512066120671206812069120701207112072120731207412075120761207712078120791208012081120821208312084120851208612087120881208912090120911209212093120941209512096120971209812099121001210112102121031210412105121061210712108121091211012111121121211312114121151211612117121181211912120121211212212123121241212512126121271212812129121301213112132121331213412135121361213712138121391214012141121421214312144121451214612147121481214912150121511215212153121541215512156121571215812159121601216112162121631216412165121661216712168121691217012171121721217312174121751217612177121781217912180121811218212183121841218512186121871218812189121901219112192121931219412195121961219712198121991220012201122021220312204122051220612207122081220912210122111221212213122141221512216122171221812219122201222112222122231222412225122261222712228122291223012231122321223312234122351223612237122381223912240122411224212243122441224512246122471224812249122501225112252122531225412255122561225712258122591226012261122621226312264122651226612267122681226912270122711227212273122741227512276122771227812279122801228112282122831228412285122861228712288122891229012291122921229312294122951229612297122981229912300123011230212303123041230512306123071230812309123101231112312123131231412315123161231712318123191232012321123221232312324123251232612327123281232912330123311233212333123341233512336123371233812339123401234112342123431234412345123461234712348123491235012351123521235312354123551235612357123581235912360123611236212363123641236512366123671236812369123701237112372123731237412375123761237712378123791238012381123821238312384123851238612387123881238912390123911239212393123941239512396123971239812399124001240112402124031240412405124061240712408124091241012411124121241312414124151241612417124181241912420124211242212423124241242512426124271242812429124301243112432124331243412435124361243712438124391244012441124421244312444124451244612447124481244912450124511245212453124541245512456124571245812459124601246112462124631246412465124661246712468124691247012471124721247312474124751247612477124781247912480124811248212483124841248512486124871248812489124901249112492124931249412495124961249712498124991250012501125021250312504125051250612507125081250912510125111251212513125141251512516125171251812519125201252112522125231252412525125261252712528125291253012531125321253312534125351253612537125381253912540125411254212543125441254512546125471254812549125501255112552125531255412555125561255712558125591256012561125621256312564125651256612567125681256912570125711257212573125741257512576125771257812579125801258112582125831258412585125861258712588125891259012591125921259312594125951259612597125981259912600126011260212603126041260512606126071260812609126101261112612126131261412615126161261712618126191262012621126221262312624126251262612627126281262912630126311263212633126341263512636126371263812639126401264112642126431264412645126461264712648126491265012651126521265312654126551265612657126581265912660126611266212663126641266512666126671266812669126701267112672126731267412675126761267712678126791268012681126821268312684126851268612687126881268912690126911269212693126941269512696126971269812699127001270112702127031270412705127061270712708127091271012711127121271312714127151271612717127181271912720127211272212723127241272512726127271272812729127301273112732127331273412735127361273712738127391274012741127421274312744127451274612747127481274912750127511275212753127541275512756127571275812759127601276112762127631276412765127661276712768127691277012771127721277312774127751277612777127781277912780127811278212783127841278512786127871278812789127901279112792127931279412795127961279712798127991280012801128021280312804128051280612807128081280912810128111281212813128141281512816128171281812819128201282112822128231282412825128261282712828128291283012831128321283312834128351283612837128381283912840128411284212843128441284512846128471284812849128501285112852128531285412855128561285712858128591286012861128621286312864128651286612867128681286912870128711287212873128741287512876128771287812879128801288112882128831288412885128861288712888128891289012891128921289312894128951289612897128981289912900129011290212903129041290512906129071290812909129101291112912129131291412915129161291712918129191292012921129221292312924129251292612927129281292912930129311293212933129341293512936129371293812939129401294112942129431294412945129461294712948129491295012951129521295312954129551295612957129581295912960129611296212963129641296512966129671296812969129701297112972129731297412975129761297712978129791298012981129821298312984129851298612987129881298912990129911299212993129941299512996129971299812999130001300113002130031300413005130061300713008130091301013011130121301313014130151301613017130181301913020130211302213023130241302513026130271302813029130301303113032130331303413035130361303713038130391304013041130421304313044130451304613047130481304913050130511305213053130541305513056130571305813059130601306113062130631306413065130661306713068130691307013071130721307313074130751307613077130781307913080130811308213083130841308513086130871308813089130901309113092130931309413095130961309713098130991310013101131021310313104131051310613107131081310913110131111311213113131141311513116131171311813119131201312113122131231312413125131261312713128131291313013131131321313313134131351313613137131381313913140131411314213143131441314513146131471314813149131501315113152131531315413155131561315713158131591316013161131621316313164131651316613167131681316913170131711317213173131741317513176131771317813179131801318113182131831318413185131861318713188131891319013191131921319313194131951319613197131981319913200132011320213203132041320513206132071320813209132101321113212132131321413215132161321713218132191322013221132221322313224132251322613227132281322913230132311323213233132341323513236132371323813239132401324113242132431324413245132461324713248132491325013251132521325313254132551325613257132581325913260132611326213263132641326513266132671326813269132701327113272132731327413275132761327713278132791328013281132821328313284132851328613287132881328913290132911329213293132941329513296132971329813299133001330113302133031330413305133061330713308133091331013311133121331313314133151331613317133181331913320133211332213323133241332513326133271332813329133301333113332133331333413335133361333713338133391334013341133421334313344133451334613347133481334913350133511335213353133541335513356133571335813359133601336113362133631336413365133661336713368133691337013371133721337313374133751337613377133781337913380133811338213383133841338513386133871338813389133901339113392133931339413395133961339713398133991340013401134021340313404134051340613407134081340913410134111341213413134141341513416134171341813419134201342113422134231342413425134261342713428134291343013431134321343313434134351343613437134381343913440134411344213443134441344513446134471344813449134501345113452134531345413455134561345713458134591346013461134621346313464134651346613467134681346913470134711347213473134741347513476134771347813479134801348113482134831348413485134861348713488134891349013491134921349313494134951349613497134981349913500135011350213503135041350513506135071350813509135101351113512135131351413515135161351713518135191352013521135221352313524135251352613527135281352913530135311353213533135341353513536135371353813539135401354113542135431354413545135461354713548135491355013551135521355313554135551355613557135581355913560135611356213563135641356513566135671356813569135701357113572135731357413575135761357713578135791358013581135821358313584135851358613587135881358913590135911359213593135941359513596135971359813599136001360113602136031360413605136061360713608136091361013611136121361313614136151361613617136181361913620136211362213623136241362513626136271362813629136301363113632136331363413635136361363713638136391364013641136421364313644136451364613647136481364913650136511365213653136541365513656136571365813659136601366113662136631366413665136661366713668136691367013671136721367313674136751367613677136781367913680136811368213683136841368513686136871368813689136901369113692136931369413695136961369713698136991370013701137021370313704137051370613707137081370913710137111371213713137141371513716137171371813719137201372113722137231372413725137261372713728137291373013731137321373313734137351373613737137381373913740137411374213743137441374513746137471374813749137501375113752137531375413755137561375713758137591376013761137621376313764137651376613767137681376913770137711377213773137741377513776137771377813779137801378113782137831378413785137861378713788137891379013791137921379313794137951379613797137981379913800138011380213803138041380513806138071380813809138101381113812138131381413815138161381713818138191382013821138221382313824138251382613827138281382913830138311383213833138341383513836138371383813839138401384113842138431384413845138461384713848138491385013851138521385313854138551385613857138581385913860138611386213863138641386513866138671386813869138701387113872138731387413875138761387713878138791388013881138821388313884138851388613887138881388913890138911389213893138941389513896138971389813899139001390113902139031390413905139061390713908139091391013911139121391313914139151391613917139181391913920139211392213923139241392513926139271392813929139301393113932139331393413935139361393713938139391394013941139421394313944139451394613947139481394913950139511395213953139541395513956139571395813959139601396113962139631396413965139661396713968139691397013971139721397313974139751397613977139781397913980139811398213983139841398513986139871398813989139901399113992139931399413995139961399713998139991400014001140021400314004140051400614007140081400914010140111401214013140141401514016140171401814019140201402114022140231402414025140261402714028140291403014031140321403314034140351403614037140381403914040140411404214043140441404514046140471404814049140501405114052140531405414055140561405714058140591406014061140621406314064140651406614067140681406914070140711407214073140741407514076140771407814079140801408114082140831408414085140861408714088140891409014091140921409314094140951409614097140981409914100141011410214103141041410514106141071410814109141101411114112141131411414115141161411714118141191412014121141221412314124141251412614127141281412914130141311413214133141341413514136141371413814139141401414114142141431414414145141461414714148141491415014151141521415314154141551415614157141581415914160141611416214163141641416514166141671416814169141701417114172141731417414175141761417714178141791418014181141821418314184141851418614187141881418914190141911419214193141941419514196141971419814199142001420114202142031420414205142061420714208142091421014211142121421314214142151421614217142181421914220142211422214223142241422514226142271422814229142301423114232142331423414235142361423714238142391424014241142421424314244142451424614247142481424914250142511425214253142541425514256142571425814259142601426114262142631426414265142661426714268142691427014271142721427314274142751427614277142781427914280142811428214283142841428514286142871428814289142901429114292142931429414295142961429714298142991430014301143021430314304143051430614307143081430914310143111431214313143141431514316143171431814319143201432114322143231432414325143261432714328143291433014331143321433314334143351433614337143381433914340143411434214343143441434514346143471434814349143501435114352143531435414355143561435714358143591436014361143621436314364143651436614367143681436914370143711437214373143741437514376143771437814379143801438114382143831438414385143861438714388143891439014391143921439314394143951439614397143981439914400144011440214403144041440514406144071440814409144101441114412144131441414415144161441714418144191442014421144221442314424144251442614427144281442914430144311443214433144341443514436144371443814439144401444114442144431444414445144461444714448144491445014451144521445314454144551445614457144581445914460144611446214463144641446514466144671446814469144701447114472144731447414475144761447714478144791448014481144821448314484144851448614487144881448914490144911449214493144941449514496144971449814499145001450114502145031450414505145061450714508145091451014511145121451314514145151451614517145181451914520145211452214523145241452514526145271452814529145301453114532145331453414535145361453714538145391454014541145421454314544145451454614547145481454914550145511455214553145541455514556145571455814559145601456114562145631456414565145661456714568145691457014571145721457314574145751457614577145781457914580145811458214583145841458514586145871458814589145901459114592145931459414595145961459714598145991460014601146021460314604146051460614607146081460914610146111461214613146141461514616146171461814619146201462114622146231462414625146261462714628146291463014631146321463314634146351463614637146381463914640146411464214643146441464514646146471464814649146501465114652146531465414655146561465714658146591466014661146621466314664146651466614667146681466914670146711467214673146741467514676146771467814679146801468114682146831468414685146861468714688146891469014691146921469314694146951469614697146981469914700147011470214703147041470514706147071470814709147101471114712147131471414715147161471714718147191472014721147221472314724147251472614727147281472914730147311473214733147341473514736147371473814739147401474114742147431474414745147461474714748147491475014751147521475314754147551475614757147581475914760147611476214763147641476514766147671476814769147701477114772147731477414775147761477714778147791478014781147821478314784147851478614787147881478914790147911479214793147941479514796147971479814799148001480114802148031480414805148061480714808148091481014811148121481314814148151481614817148181481914820148211482214823148241482514826148271482814829148301483114832148331483414835148361483714838148391484014841148421484314844148451484614847148481484914850148511485214853148541485514856148571485814859148601486114862148631486414865148661486714868148691487014871148721487314874148751487614877148781487914880148811488214883148841488514886148871488814889148901489114892148931489414895148961489714898148991490014901149021490314904149051490614907149081490914910149111491214913149141491514916149171491814919149201492114922149231492414925149261492714928149291493014931149321493314934149351493614937149381493914940149411494214943149441494514946149471494814949149501495114952149531495414955149561495714958149591496014961149621496314964149651496614967149681496914970149711497214973149741497514976149771497814979149801498114982149831498414985149861498714988149891499014991149921499314994149951499614997149981499915000150011500215003150041500515006150071500815009150101501115012150131501415015150161501715018150191502015021150221502315024150251502615027150281502915030150311503215033150341503515036150371503815039150401504115042150431504415045150461504715048150491505015051150521505315054150551505615057150581505915060150611506215063150641506515066150671506815069150701507115072150731507415075150761507715078150791508015081150821508315084150851508615087150881508915090150911509215093150941509515096150971509815099151001510115102151031510415105151061510715108151091511015111151121511315114151151511615117151181511915120151211512215123151241512515126151271512815129151301513115132151331513415135151361513715138151391514015141151421514315144151451514615147151481514915150151511515215153151541515515156151571515815159151601516115162151631516415165151661516715168151691517015171151721517315174151751517615177151781517915180151811518215183151841518515186151871518815189151901519115192151931519415195151961519715198151991520015201152021520315204152051520615207152081520915210152111521215213152141521515216152171521815219152201522115222152231522415225152261522715228152291523015231152321523315234152351523615237152381523915240152411524215243152441524515246152471524815249152501525115252152531525415255152561525715258152591526015261152621526315264152651526615267152681526915270152711527215273152741527515276152771527815279152801528115282152831528415285152861528715288152891529015291152921529315294152951529615297152981529915300153011530215303153041530515306153071530815309153101531115312153131531415315153161531715318153191532015321153221532315324153251532615327153281532915330153311533215333153341533515336153371533815339153401534115342153431534415345153461534715348153491535015351153521535315354153551535615357153581535915360153611536215363153641536515366153671536815369153701537115372153731537415375153761537715378153791538015381153821538315384153851538615387153881538915390153911539215393153941539515396153971539815399154001540115402154031540415405154061540715408154091541015411154121541315414154151541615417154181541915420154211542215423154241542515426154271542815429154301543115432154331543415435154361543715438154391544015441154421544315444154451544615447154481544915450154511545215453154541545515456154571545815459154601546115462154631546415465154661546715468154691547015471154721547315474154751547615477154781547915480154811548215483154841548515486154871548815489154901549115492154931549415495154961549715498154991550015501155021550315504155051550615507155081550915510155111551215513155141551515516155171551815519155201552115522155231552415525155261552715528155291553015531155321553315534155351553615537155381553915540155411554215543155441554515546155471554815549155501555115552155531555415555155561555715558155591556015561155621556315564155651556615567155681556915570155711557215573155741557515576155771557815579155801558115582155831558415585155861558715588155891559015591155921559315594155951559615597155981559915600156011560215603156041560515606156071560815609156101561115612156131561415615156161561715618156191562015621156221562315624156251562615627156281562915630156311563215633156341563515636156371563815639156401564115642156431564415645156461564715648156491565015651156521565315654156551565615657156581565915660156611566215663156641566515666156671566815669156701567115672156731567415675156761567715678156791568015681156821568315684156851568615687156881568915690156911569215693156941569515696156971569815699157001570115702157031570415705157061570715708157091571015711157121571315714157151571615717157181571915720157211572215723157241572515726157271572815729157301573115732157331573415735157361573715738157391574015741157421574315744157451574615747157481574915750157511575215753157541575515756157571575815759157601576115762157631576415765157661576715768157691577015771157721577315774157751577615777157781577915780157811578215783157841578515786157871578815789157901579115792157931579415795157961579715798157991580015801158021580315804158051580615807158081580915810158111581215813158141581515816158171581815819158201582115822158231582415825158261582715828158291583015831158321583315834158351583615837158381583915840158411584215843158441584515846158471584815849158501585115852158531585415855158561585715858158591586015861158621586315864158651586615867158681586915870158711587215873158741587515876158771587815879158801588115882158831588415885158861588715888158891589015891158921589315894158951589615897158981589915900159011590215903159041590515906159071590815909159101591115912159131591415915159161591715918159191592015921159221592315924159251592615927159281592915930159311593215933159341593515936159371593815939159401594115942159431594415945159461594715948159491595015951159521595315954159551595615957159581595915960159611596215963159641596515966159671596815969159701597115972159731597415975159761597715978159791598015981159821598315984159851598615987159881598915990159911599215993159941599515996159971599815999160001600116002160031600416005160061600716008160091601016011160121601316014160151601616017160181601916020160211602216023160241602516026160271602816029160301603116032160331603416035160361603716038160391604016041160421604316044160451604616047160481604916050160511605216053160541605516056160571605816059160601606116062160631606416065160661606716068160691607016071160721607316074160751607616077160781607916080160811608216083160841608516086160871608816089160901609116092160931609416095160961609716098160991610016101161021610316104161051610616107161081610916110161111611216113161141611516116161171611816119161201612116122161231612416125161261612716128161291613016131161321613316134161351613616137161381613916140161411614216143161441614516146161471614816149161501615116152161531615416155161561615716158161591616016161161621616316164161651616616167161681616916170161711617216173161741617516176161771617816179161801618116182161831618416185161861618716188161891619016191161921619316194161951619616197161981619916200162011620216203162041620516206162071620816209162101621116212162131621416215162161621716218162191622016221162221622316224162251622616227162281622916230162311623216233162341623516236162371623816239162401624116242162431624416245162461624716248162491625016251162521625316254162551625616257162581625916260162611626216263162641626516266162671626816269162701627116272162731627416275162761627716278162791628016281162821628316284162851628616287162881628916290162911629216293162941629516296162971629816299163001630116302163031630416305163061630716308163091631016311163121631316314163151631616317163181631916320163211632216323163241632516326163271632816329163301633116332163331633416335163361633716338163391634016341163421634316344163451634616347163481634916350163511635216353163541635516356163571635816359163601636116362163631636416365163661636716368163691637016371163721637316374163751637616377163781637916380163811638216383163841638516386163871638816389163901639116392163931639416395163961639716398163991640016401164021640316404164051640616407164081640916410164111641216413164141641516416164171641816419164201642116422164231642416425164261642716428164291643016431164321643316434164351643616437164381643916440164411644216443164441644516446164471644816449164501645116452164531645416455164561645716458164591646016461164621646316464164651646616467164681646916470164711647216473164741647516476164771647816479164801648116482164831648416485164861648716488164891649016491164921649316494164951649616497164981649916500165011650216503165041650516506165071650816509165101651116512165131651416515165161651716518165191652016521165221652316524165251652616527165281652916530165311653216533165341653516536165371653816539165401654116542165431654416545165461654716548165491655016551165521655316554165551655616557165581655916560165611656216563165641656516566165671656816569165701657116572165731657416575165761657716578165791658016581165821658316584165851658616587165881658916590165911659216593165941659516596 
  1. /* fe_x25519_asm
    2. 

  2.  *
    3. 

  3.  * Copyright (C) 2006-2022 wolfSSL Inc.
    4. 

  4.  *
    5. 

  5.  * This file is part of wolfSSL.
    6. 

  6.  *
    7. 

  7.  * wolfSSL is free software; you can redistribute it and/or modify
    8. 

  8.  * it under the terms of the GNU General Public License as published by
    9. 

  9.  * the Free Software Foundation; either version 2 of the License, or
    10. 

  10.  * (at your option) any later version.
    11. 

  11.  *
    12. 

  12.  * wolfSSL is distributed in the hope that it will be useful,
    13. 

  13.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    14. 

  14.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    15. 

  15.  * GNU General Public License for more details.
    16. 

  16.  *
    17. 

  17.  * You should have received a copy of the GNU General Public License
    18. 

  18.  * along with this program; if not, write to the Free Software
    19. 

  19.  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
    20. 

  20.  */
    21. 

  21. 

  22. #ifdef WOLFSSL_USER_SETTINGS
    23. 

  23. #ifdef WOLFSSL_USER_SETTINGS_ASM
    24. 

  24. /*
    25. 

  25.  * user_settings_asm.h is a file generated by the script user_settings_asm.sh.
    26. 

  26.  * The script takes in a user_settings.h and produces user_settings_asm.h, which
    27. 

  27.  * is a stripped down version of user_settings.h containing only preprocessor
    28. 

  28.  * directives. This makes the header safe to include in assembly (.S) files.
    29. 

  29.  */
    30. 

  30. #include "user_settings_asm.h"
    31. 

  31. #else
    32. 

  32. /*
    33. 

  33.  * Note: if user_settings.h contains any C code (e.g. a typedef or function
    34. 

  34.  * prototype), including it here in an assembly (.S) file will cause an
    35. 

  35.  * assembler failure. See user_settings_asm.h above.
    36. 

  36.  */
    37. 

  37. #include "user_settings.h"
    38. 

  38. #endif /* WOLFSSL_USER_SETTINGS_ASM */
    39. 

  39. #endif /* WOLFSSL_USER_SETTINGS */
    40. 

  40. 

  41. #ifndef HAVE_INTEL_AVX1
    42. 

  42. #define HAVE_INTEL_AVX1
    43. 

  43. #endif /* HAVE_INTEL_AVX1 */
    44. 

  44. #ifndef NO_AVX2_SUPPORT
    45. 

  45. #define HAVE_INTEL_AVX2
    46. 

  46. #endif /* NO_AVX2_SUPPORT */
    47. 

  47. 

  48. #ifndef __APPLE__
    49. 

  49. .text
    50. 

  50. .globl	fe_init
    51. 

  51. .type	fe_init,@function
    52. 

  52. .align	16
    53. 

  53. fe_init:
    54. 

  54. #else
    55. 

  55. .section	__TEXT,__text
    56. 

  56. .globl	_fe_init
    57. 

  57. .p2align	4
    58. 

  58. _fe_init:
    59. 

  59. #endif /* __APPLE__ */
    60. 

  60. #ifdef HAVE_INTEL_AVX2
    61. 

  61. #ifndef __APPLE__
    62. 

  62.         movq	cpuFlagsSet@GOTPCREL(%rip), %rax
    63. 

  63.         movl	(%rax), %eax
    64. 

  64. #else
    65. 

  65.         movl	_cpuFlagsSet(%rip), %eax
    66. 

  66. #endif /* __APPLE__ */
    67. 

  67.         testl	%eax, %eax
    68. 

  68.         je	L_fe_init_get_flags
    69. 

  69.         repz retq
    70. 

  70. L_fe_init_get_flags:
    71. 

  71. #ifndef __APPLE__
    72. 

  72.         callq	cpuid_get_flags@plt
    73. 

  73. #else
    74. 

  74.         callq	_cpuid_get_flags
    75. 

  75. #endif /* __APPLE__ */
    76. 

  76. #ifndef __APPLE__
    77. 

  77.         movq	intelFlags@GOTPCREL(%rip), %rdx
    78. 

  78.         movl	%eax, (%rdx)
    79. 

  79. #else
    80. 

  80.         movl	%eax, _intelFlags(%rip)
    81. 

  81. #endif /* __APPLE__ */
    82. 

  82.         andl	$0x50, %eax
    83. 

  83.         cmpl	$0x50, %eax
    84. 

  84.         jne	L_fe_init_flags_done
    85. 

  85. #ifndef __APPLE__
    86. 

  86.         movq	fe_mul_avx2@GOTPCREL(%rip), %rax
    87. 

  87. #else
    88. 

  88.         leaq	_fe_mul_avx2(%rip), %rax
    89. 

  89. #endif /* __APPLE__ */
    90. 

  90. #ifndef __APPLE__
    91. 

  91.         movq	fe_mul_p@GOTPCREL(%rip), %rdx
    92. 

  92.         movq	%rax, (%rdx)
    93. 

  93. #else
    94. 

  94.         movq	%rax, _fe_mul_p(%rip)
    95. 

  95. #endif /* __APPLE__ */
    96. 

  96. #ifndef __APPLE__
    97. 

  97.         movq	fe_sq_avx2@GOTPCREL(%rip), %rax
    98. 

  98. #else
    99. 

  99.         leaq	_fe_sq_avx2(%rip), %rax
    100. 

  100. #endif /* __APPLE__ */
    101. 

  101. #ifndef __APPLE__
    102. 

  102.         movq	fe_sq_p@GOTPCREL(%rip), %rdx
    103. 

  103.         movq	%rax, (%rdx)
    104. 

  104. #else
    105. 

  105.         movq	%rax, _fe_sq_p(%rip)
    106. 

  106. #endif /* __APPLE__ */
    107. 

  107. #ifndef __APPLE__
    108. 

  108.         movq	fe_mul121666_avx2@GOTPCREL(%rip), %rax
    109. 

  109. #else
    110. 

  110.         leaq	_fe_mul121666_avx2(%rip), %rax
    111. 

  111. #endif /* __APPLE__ */
    112. 

  112. #ifndef __APPLE__
    113. 

  113.         movq	fe_mul121666_p@GOTPCREL(%rip), %rdx
    114. 

  114.         movq	%rax, (%rdx)
    115. 

  115. #else
    116. 

  116.         movq	%rax, _fe_mul121666_p(%rip)
    117. 

  117. #endif /* __APPLE__ */
    118. 

  118. #ifndef __APPLE__
    119. 

  119.         movq	fe_sq2_avx2@GOTPCREL(%rip), %rax
    120. 

  120. #else
    121. 

  121.         leaq	_fe_sq2_avx2(%rip), %rax
    122. 

  122. #endif /* __APPLE__ */
    123. 

  123. #ifndef __APPLE__
    124. 

  124.         movq	fe_sq2_p@GOTPCREL(%rip), %rdx
    125. 

  125.         movq	%rax, (%rdx)
    126. 

  126. #else
    127. 

  127.         movq	%rax, _fe_sq2_p(%rip)
    128. 

  128. #endif /* __APPLE__ */
    129. 

  129. #ifndef __APPLE__
    130. 

  130.         movq	fe_invert_avx2@GOTPCREL(%rip), %rax
    131. 

  131. #else
    132. 

  132.         leaq	_fe_invert_avx2(%rip), %rax
    133. 

  133. #endif /* __APPLE__ */
    134. 

  134. #ifndef __APPLE__
    135. 

  135.         movq	fe_invert_p@GOTPCREL(%rip), %rdx
    136. 

  136.         movq	%rax, (%rdx)
    137. 

  137. #else
    138. 

  138.         movq	%rax, _fe_invert_p(%rip)
    139. 

  139. #endif /* __APPLE__ */
    140. 

  140. #ifndef __APPLE__
    141. 

  141.         movq	curve25519_avx2@GOTPCREL(%rip), %rax
    142. 

  142. #else
    143. 

  143.         leaq	_curve25519_avx2(%rip), %rax
    144. 

  144. #endif /* __APPLE__ */
    145. 

  145. #ifndef __APPLE__
    146. 

  146.         movq	curve25519_p@GOTPCREL(%rip), %rdx
    147. 

  147.         movq	%rax, (%rdx)
    148. 

  148. #else
    149. 

  149.         movq	%rax, _curve25519_p(%rip)
    150. 

  150. #endif /* __APPLE__ */
    151. 

  151. #ifndef __APPLE__
    152. 

  152.         movq	fe_pow22523_avx2@GOTPCREL(%rip), %rax
    153. 

  153. #else
    154. 

  154.         leaq	_fe_pow22523_avx2(%rip), %rax
    155. 

  155. #endif /* __APPLE__ */
    156. 

  156. #ifndef __APPLE__
    157. 

  157.         movq	fe_pow22523_p@GOTPCREL(%rip), %rdx
    158. 

  158.         movq	%rax, (%rdx)
    159. 

  159. #else
    160. 

  160.         movq	%rax, _fe_pow22523_p(%rip)
    161. 

  161. #endif /* __APPLE__ */
    162. 

  162. #ifndef __APPLE__
    163. 

  163.         movq	fe_ge_to_p2_avx2@GOTPCREL(%rip), %rax
    164. 

  164. #else
    165. 

  165.         leaq	_fe_ge_to_p2_avx2(%rip), %rax
    166. 

  166. #endif /* __APPLE__ */
    167. 

  167. #ifndef __APPLE__
    168. 

  168.         movq	fe_ge_to_p2_p@GOTPCREL(%rip), %rdx
    169. 

  169.         movq	%rax, (%rdx)
    170. 

  170. #else
    171. 

  171.         movq	%rax, _fe_ge_to_p2_p(%rip)
    172. 

  172. #endif /* __APPLE__ */
    173. 

  173. #ifndef __APPLE__
    174. 

  174.         movq	fe_ge_to_p3_avx2@GOTPCREL(%rip), %rax
    175. 

  175. #else
    176. 

  176.         leaq	_fe_ge_to_p3_avx2(%rip), %rax
    177. 

  177. #endif /* __APPLE__ */
    178. 

  178. #ifndef __APPLE__
    179. 

  179.         movq	fe_ge_to_p3_p@GOTPCREL(%rip), %rdx
    180. 

  180.         movq	%rax, (%rdx)
    181. 

  181. #else
    182. 

  182.         movq	%rax, _fe_ge_to_p3_p(%rip)
    183. 

  183. #endif /* __APPLE__ */
    184. 

  184. #ifndef __APPLE__
    185. 

  185.         movq	fe_ge_dbl_avx2@GOTPCREL(%rip), %rax
    186. 

  186. #else
    187. 

  187.         leaq	_fe_ge_dbl_avx2(%rip), %rax
    188. 

  188. #endif /* __APPLE__ */
    189. 

  189. #ifndef __APPLE__
    190. 

  190.         movq	fe_ge_dbl_p@GOTPCREL(%rip), %rdx
    191. 

  191.         movq	%rax, (%rdx)
    192. 

  192. #else
    193. 

  193.         movq	%rax, _fe_ge_dbl_p(%rip)
    194. 

  194. #endif /* __APPLE__ */
    195. 

  195. #ifndef __APPLE__
    196. 

  196.         movq	fe_ge_madd_avx2@GOTPCREL(%rip), %rax
    197. 

  197. #else
    198. 

  198.         leaq	_fe_ge_madd_avx2(%rip), %rax
    199. 

  199. #endif /* __APPLE__ */
    200. 

  200. #ifndef __APPLE__
    201. 

  201.         movq	fe_ge_madd_p@GOTPCREL(%rip), %rdx
    202. 

  202.         movq	%rax, (%rdx)
    203. 

  203. #else
    204. 

  204.         movq	%rax, _fe_ge_madd_p(%rip)
    205. 

  205. #endif /* __APPLE__ */
    206. 

  206. #ifndef __APPLE__
    207. 

  207.         movq	fe_ge_msub_avx2@GOTPCREL(%rip), %rax
    208. 

  208. #else
    209. 

  209.         leaq	_fe_ge_msub_avx2(%rip), %rax
    210. 

  210. #endif /* __APPLE__ */
    211. 

  211. #ifndef __APPLE__
    212. 

  212.         movq	fe_ge_msub_p@GOTPCREL(%rip), %rdx
    213. 

  213.         movq	%rax, (%rdx)
    214. 

  214. #else
    215. 

  215.         movq	%rax, _fe_ge_msub_p(%rip)
    216. 

  216. #endif /* __APPLE__ */
    217. 

  217. #ifndef __APPLE__
    218. 

  218.         movq	fe_ge_add_avx2@GOTPCREL(%rip), %rax
    219. 

  219. #else
    220. 

  220.         leaq	_fe_ge_add_avx2(%rip), %rax
    221. 

  221. #endif /* __APPLE__ */
    222. 

  222. #ifndef __APPLE__
    223. 

  223.         movq	fe_ge_add_p@GOTPCREL(%rip), %rdx
    224. 

  224.         movq	%rax, (%rdx)
    225. 

  225. #else
    226. 

  226.         movq	%rax, _fe_ge_add_p(%rip)
    227. 

  227. #endif /* __APPLE__ */
    228. 

  228. #ifndef __APPLE__
    229. 

  229.         movq	fe_ge_sub_avx2@GOTPCREL(%rip), %rax
    230. 

  230. #else
    231. 

  231.         leaq	_fe_ge_sub_avx2(%rip), %rax
    232. 

  232. #endif /* __APPLE__ */
    233. 

  233. #ifndef __APPLE__
    234. 

  234.         movq	fe_ge_sub_p@GOTPCREL(%rip), %rdx
    235. 

  235.         movq	%rax, (%rdx)
    236. 

  236. #else
    237. 

  237.         movq	%rax, _fe_ge_sub_p(%rip)
    238. 

  238. #endif /* __APPLE__ */
    239. 

  239. L_fe_init_flags_done:
    240. 

  240. #ifndef __APPLE__
    241. 

  241.         movq	cpuFlagsSet@GOTPCREL(%rip), %rdx
    242. 

  242.         movl	$0x1, (%rdx)
    243. 

  243. #else
    244. 

  244.         movl	$0x1, _cpuFlagsSet(%rip)
    245. 

  245. #endif /* __APPLE__ */
    246. 

  246. #endif /* HAVE_INTEL_AVX2 */
    247. 

  247.         repz retq
    248. 

  248. #ifndef __APPLE__
    249. 

  249. .size	fe_init,.-fe_init
    250. 

  250. #endif /* __APPLE__ */
    251. 

  251. #ifndef __APPLE__
    252. 

  252. .text
    253. 

  253. .globl	fe_frombytes
    254. 

  254. .type	fe_frombytes,@function
    255. 

  255. .align	16
    256. 

  256. fe_frombytes:
    257. 

  257. #else
    258. 

  258. .section	__TEXT,__text
    259. 

  259. .globl	_fe_frombytes
    260. 

  260. .p2align	4
    261. 

  261. _fe_frombytes:
    262. 

  262. #endif /* __APPLE__ */
    263. 

  263.         movq	$0x7fffffffffffffff, %r9
    264. 

  264.         movq	(%rsi), %rdx
    265. 

  265.         movq	8(%rsi), %rax
    266. 

  266.         movq	16(%rsi), %rcx
    267. 

  267.         movq	24(%rsi), %r8
    268. 

  268.         andq	%r9, %r8
    269. 

  269.         movq	%rdx, (%rdi)
    270. 

  270.         movq	%rax, 8(%rdi)
    271. 

  271.         movq	%rcx, 16(%rdi)
    272. 

  272.         movq	%r8, 24(%rdi)
    273. 

  273.         repz retq
    274. 

  274. #ifndef __APPLE__
    275. 

  275. .size	fe_frombytes,.-fe_frombytes
    276. 

  276. #endif /* __APPLE__ */
    277. 

  277. #ifndef __APPLE__
    278. 

  278. .text
    279. 

  279. .globl	fe_tobytes
    280. 

  280. .type	fe_tobytes,@function
    281. 

  281. .align	16
    282. 

  282. fe_tobytes:
    283. 

  283. #else
    284. 

  284. .section	__TEXT,__text
    285. 

  285. .globl	_fe_tobytes
    286. 

  286. .p2align	4
    287. 

  287. _fe_tobytes:
    288. 

  288. #endif /* __APPLE__ */
    289. 

  289.         movq	$0x7fffffffffffffff, %r10
    290. 

  290.         movq	(%rsi), %rdx
    291. 

  291.         movq	8(%rsi), %rax
    292. 

  292.         movq	16(%rsi), %rcx
    293. 

  293.         movq	24(%rsi), %r8
    294. 

  294.         addq	$19, %rdx
    295. 

  295.         adcq	$0x00, %rax
    296. 

  296.         adcq	$0x00, %rcx
    297. 

  297.         adcq	$0x00, %r8
    298. 

  298.         shrq	$63, %r8
    299. 

  299.         imulq	$19, %r8, %r9
    300. 

  300.         movq	(%rsi), %rdx
    301. 

  301.         movq	8(%rsi), %rax
    302. 

  302.         movq	16(%rsi), %rcx
    303. 

  303.         movq	24(%rsi), %r8
    304. 

  304.         addq	%r9, %rdx
    305. 

  305.         adcq	$0x00, %rax
    306. 

  306.         adcq	$0x00, %rcx
    307. 

  307.         adcq	$0x00, %r8
    308. 

  308.         andq	%r10, %r8
    309. 

  309.         movq	%rdx, (%rdi)
    310. 

  310.         movq	%rax, 8(%rdi)
    311. 

  311.         movq	%rcx, 16(%rdi)
    312. 

  312.         movq	%r8, 24(%rdi)
    313. 

  313.         repz retq
    314. 

  314. #ifndef __APPLE__
    315. 

  315. .size	fe_tobytes,.-fe_tobytes
    316. 

  316. #endif /* __APPLE__ */
    317. 

  317. #ifndef __APPLE__
    318. 

  318. .text
    319. 

  319. .globl	fe_1
    320. 

  320. .type	fe_1,@function
    321. 

  321. .align	16
    322. 

  322. fe_1:
    323. 

  323. #else
    324. 

  324. .section	__TEXT,__text
    325. 

  325. .globl	_fe_1
    326. 

  326. .p2align	4
    327. 

  327. _fe_1:
    328. 

  328. #endif /* __APPLE__ */
    329. 

  329.         # Set one
    330. 

  330.         movq	$0x01, (%rdi)
    331. 

  331.         movq	$0x00, 8(%rdi)
    332. 

  332.         movq	$0x00, 16(%rdi)
    333. 

  333.         movq	$0x00, 24(%rdi)
    334. 

  334.         repz retq
    335. 

  335. #ifndef __APPLE__
    336. 

  336. .size	fe_1,.-fe_1
    337. 

  337. #endif /* __APPLE__ */
    338. 

  338. #ifndef __APPLE__
    339. 

  339. .text
    340. 

  340. .globl	fe_0
    341. 

  341. .type	fe_0,@function
    342. 

  342. .align	16
    343. 

  343. fe_0:
    344. 

  344. #else
    345. 

  345. .section	__TEXT,__text
    346. 

  346. .globl	_fe_0
    347. 

  347. .p2align	4
    348. 

  348. _fe_0:
    349. 

  349. #endif /* __APPLE__ */
    350. 

  350.         # Set zero
    351. 

  351.         movq	$0x00, (%rdi)
    352. 

  352.         movq	$0x00, 8(%rdi)
    353. 

  353.         movq	$0x00, 16(%rdi)
    354. 

  354.         movq	$0x00, 24(%rdi)
    355. 

  355.         repz retq
    356. 

  356. #ifndef __APPLE__
    357. 

  357. .size	fe_0,.-fe_0
    358. 

  358. #endif /* __APPLE__ */
    359. 

  359. #ifndef __APPLE__
    360. 

  360. .text
    361. 

  361. .globl	fe_copy
    362. 

  362. .type	fe_copy,@function
    363. 

  363. .align	16
    364. 

  364. fe_copy:
    365. 

  365. #else
    366. 

  366. .section	__TEXT,__text
    367. 

  367. .globl	_fe_copy
    368. 

  368. .p2align	4
    369. 

  369. _fe_copy:
    370. 

  370. #endif /* __APPLE__ */
    371. 

  371.         # Copy
    372. 

  372.         movq	(%rsi), %rdx
    373. 

  373.         movq	8(%rsi), %rax
    374. 

  374.         movq	16(%rsi), %rcx
    375. 

  375.         movq	24(%rsi), %r8
    376. 

  376.         movq	%rdx, (%rdi)
    377. 

  377.         movq	%rax, 8(%rdi)
    378. 

  378.         movq	%rcx, 16(%rdi)
    379. 

  379.         movq	%r8, 24(%rdi)
    380. 

  380.         repz retq
    381. 

  381. #ifndef __APPLE__
    382. 

  382. .size	fe_copy,.-fe_copy
    383. 

  383. #endif /* __APPLE__ */
    384. 

  384. #ifndef __APPLE__
    385. 

  385. .text
    386. 

  386. .globl	fe_sub
    387. 

  387. .type	fe_sub,@function
    388. 

  388. .align	16
    389. 

  389. fe_sub:
    390. 

  390. #else
    391. 

  391. .section	__TEXT,__text
    392. 

  392. .globl	_fe_sub
    393. 

  393. .p2align	4
    394. 

  394. _fe_sub:
    395. 

  395. #endif /* __APPLE__ */
    396. 

  396.         pushq	%r12
    397. 

  397.         # Sub
    398. 

  398.         movq	(%rsi), %rax
    399. 

  399.         movq	8(%rsi), %rcx
    400. 

  400.         movq	16(%rsi), %r8
    401. 

  401.         movq	24(%rsi), %r9
    402. 

  402.         subq	(%rdx), %rax
    403. 

  403.         movq	$0x00, %r10
    404. 

  404.         sbbq	8(%rdx), %rcx
    405. 

  405.         movq	$-19, %r11
    406. 

  406.         sbbq	16(%rdx), %r8
    407. 

  407.         movq	$0x7fffffffffffffff, %r12
    408. 

  408.         sbbq	24(%rdx), %r9
    409. 

  409.         sbbq	$0x00, %r10
    410. 

  410.         #   Mask the modulus
    411. 

  411.         andq	%r10, %r11
    412. 

  412.         andq	%r10, %r12
    413. 

  413.         #   Add modulus (if underflow)
    414. 

  414.         addq	%r11, %rax
    415. 

  415.         adcq	%r10, %rcx
    416. 

  416.         adcq	%r10, %r8
    417. 

  417.         adcq	%r12, %r9
    418. 

  418.         movq	%rax, (%rdi)
    419. 

  419.         movq	%rcx, 8(%rdi)
    420. 

  420.         movq	%r8, 16(%rdi)
    421. 

  421.         movq	%r9, 24(%rdi)
    422. 

  422.         popq	%r12
    423. 

  423.         repz retq
    424. 

  424. #ifndef __APPLE__
    425. 

  425. .size	fe_sub,.-fe_sub
    426. 

  426. #endif /* __APPLE__ */
    427. 

  427. #ifndef __APPLE__
    428. 

  428. .text
    429. 

  429. .globl	fe_add
    430. 

  430. .type	fe_add,@function
    431. 

  431. .align	16
    432. 

  432. fe_add:
    433. 

  433. #else
    434. 

  434. .section	__TEXT,__text
    435. 

  435. .globl	_fe_add
    436. 

  436. .p2align	4
    437. 

  437. _fe_add:
    438. 

  438. #endif /* __APPLE__ */
    439. 

  439.         pushq	%r12
    440. 

  440.         # Add
    441. 

  441.         movq	(%rsi), %rax
    442. 

  442.         movq	8(%rsi), %rcx
    443. 

  443.         addq	(%rdx), %rax
    444. 

  444.         movq	16(%rsi), %r8
    445. 

  445.         adcq	8(%rdx), %rcx
    446. 

  446.         movq	24(%rsi), %r10
    447. 

  447.         adcq	16(%rdx), %r8
    448. 

  448.         movq	$-19, %r11
    449. 

  449.         adcq	24(%rdx), %r10
    450. 

  450.         movq	$0x7fffffffffffffff, %r12
    451. 

  451.         movq	%r10, %r9
    452. 

  452.         sarq	$63, %r10
    453. 

  453.         #   Mask the modulus
    454. 

  454.         andq	%r10, %r11
    455. 

  455.         andq	%r10, %r12
    456. 

  456.         #   Sub modulus (if overflow)
    457. 

  457.         subq	%r11, %rax
    458. 

  458.         sbbq	%r10, %rcx
    459. 

  459.         sbbq	%r10, %r8
    460. 

  460.         sbbq	%r12, %r9
    461. 

  461.         movq	%rax, (%rdi)
    462. 

  462.         movq	%rcx, 8(%rdi)
    463. 

  463.         movq	%r8, 16(%rdi)
    464. 

  464.         movq	%r9, 24(%rdi)
    465. 

  465.         popq	%r12
    466. 

  466.         repz retq
    467. 

  467. #ifndef __APPLE__
    468. 

  468. .size	fe_add,.-fe_add
    469. 

  469. #endif /* __APPLE__ */
    470. 

  470. #ifndef __APPLE__
    471. 

  471. .text
    472. 

  472. .globl	fe_neg
    473. 

  473. .type	fe_neg,@function
    474. 

  474. .align	16
    475. 

  475. fe_neg:
    476. 

  476. #else
    477. 

  477. .section	__TEXT,__text
    478. 

  478. .globl	_fe_neg
    479. 

  479. .p2align	4
    480. 

  480. _fe_neg:
    481. 

  481. #endif /* __APPLE__ */
    482. 

  482.         movq	$-19, %rdx
    483. 

  483.         movq	$-1, %rax
    484. 

  484.         movq	$-1, %rcx
    485. 

  485.         movq	$0x7fffffffffffffff, %r8
    486. 

  486.         subq	(%rsi), %rdx
    487. 

  487.         sbbq	8(%rsi), %rax
    488. 

  488.         sbbq	16(%rsi), %rcx
    489. 

  489.         sbbq	24(%rsi), %r8
    490. 

  490.         movq	%rdx, (%rdi)
    491. 

  491.         movq	%rax, 8(%rdi)
    492. 

  492.         movq	%rcx, 16(%rdi)
    493. 

  493.         movq	%r8, 24(%rdi)
    494. 

  494.         repz retq
    495. 

  495. #ifndef __APPLE__
    496. 

  496. .size	fe_neg,.-fe_neg
    497. 

  497. #endif /* __APPLE__ */
    498. 

  498. #ifndef __APPLE__
    499. 

  499. .text
    500. 

  500. .globl	fe_cmov
    501. 

  501. .type	fe_cmov,@function
    502. 

  502. .align	16
    503. 

  503. fe_cmov:
    504. 

  504. #else
    505. 

  505. .section	__TEXT,__text
    506. 

  506. .globl	_fe_cmov
    507. 

  507. .p2align	4
    508. 

  508. _fe_cmov:
    509. 

  509. #endif /* __APPLE__ */
    510. 

  510.         cmpl	$0x01, %edx
    511. 

  511.         movq	(%rdi), %rcx
    512. 

  512.         movq	8(%rdi), %r8
    513. 

  513.         movq	16(%rdi), %r9
    514. 

  514.         movq	24(%rdi), %r10
    515. 

  515.         cmoveq	(%rsi), %rcx
    516. 

  516.         cmoveq	8(%rsi), %r8
    517. 

  517.         cmoveq	16(%rsi), %r9
    518. 

  518.         cmoveq	24(%rsi), %r10
    519. 

  519.         movq	%rcx, (%rdi)
    520. 

  520.         movq	%r8, 8(%rdi)
    521. 

  521.         movq	%r9, 16(%rdi)
    522. 

  522.         movq	%r10, 24(%rdi)
    523. 

  523.         repz retq
    524. 

  524. #ifndef __APPLE__
    525. 

  525. .size	fe_cmov,.-fe_cmov
    526. 

  526. #endif /* __APPLE__ */
    527. 

  527. #ifndef __APPLE__
    528. 

  528. .text
    529. 

  529. .globl	fe_isnonzero
    530. 

  530. .type	fe_isnonzero,@function
    531. 

  531. .align	16
    532. 

  532. fe_isnonzero:
    533. 

  533. #else
    534. 

  534. .section	__TEXT,__text
    535. 

  535. .globl	_fe_isnonzero
    536. 

  536. .p2align	4
    537. 

  537. _fe_isnonzero:
    538. 

  538. #endif /* __APPLE__ */
    539. 

  539.         movq	$0x7fffffffffffffff, %r10
    540. 

  540.         movq	(%rdi), %rax
    541. 

  541.         movq	8(%rdi), %rdx
    542. 

  542.         movq	16(%rdi), %rcx
    543. 

  543.         movq	24(%rdi), %r8
    544. 

  544.         addq	$19, %rax
    545. 

  545.         adcq	$0x00, %rdx
    546. 

  546.         adcq	$0x00, %rcx
    547. 

  547.         adcq	$0x00, %r8
    548. 

  548.         shrq	$63, %r8
    549. 

  549.         imulq	$19, %r8, %r9
    550. 

  550.         movq	(%rdi), %rax
    551. 

  551.         movq	8(%rdi), %rdx
    552. 

  552.         movq	16(%rdi), %rcx
    553. 

  553.         movq	24(%rdi), %r8
    554. 

  554.         addq	%r9, %rax
    555. 

  555.         adcq	$0x00, %rdx
    556. 

  556.         adcq	$0x00, %rcx
    557. 

  557.         adcq	$0x00, %r8
    558. 

  558.         andq	%r10, %r8
    559. 

  559.         orq	%rdx, %rax
    560. 

  560.         orq	%rcx, %rax
    561. 

  561.         orq	%r8, %rax
    562. 

  562.         repz retq
    563. 

  563. #ifndef __APPLE__
    564. 

  564. .size	fe_isnonzero,.-fe_isnonzero
    565. 

  565. #endif /* __APPLE__ */
    566. 

  566. #ifndef __APPLE__
    567. 

  567. .text
    568. 

  568. .globl	fe_isnegative
    569. 

  569. .type	fe_isnegative,@function
    570. 

  570. .align	16
    571. 

  571. fe_isnegative:
    572. 

  572. #else
    573. 

  573. .section	__TEXT,__text
    574. 

  574. .globl	_fe_isnegative
    575. 

  575. .p2align	4
    576. 

  576. _fe_isnegative:
    577. 

  577. #endif /* __APPLE__ */
    578. 

  578.         movq	$0x7fffffffffffffff, %r11
    579. 

  579.         movq	(%rdi), %rdx
    580. 

  580.         movq	8(%rdi), %rcx
    581. 

  581.         movq	16(%rdi), %r8
    582. 

  582.         movq	24(%rdi), %r9
    583. 

  583.         movq	%rdx, %rax
    584. 

  584.         addq	$19, %rdx
    585. 

  585.         adcq	$0x00, %rcx
    586. 

  586.         adcq	$0x00, %r8
    587. 

  587.         adcq	$0x00, %r9
    588. 

  588.         shrq	$63, %r9
    589. 

  589.         imulq	$19, %r9, %r10
    590. 

  590.         addq	%r10, %rax
    591. 

  591.         andq	$0x01, %rax
    592. 

  592.         repz retq
    593. 

  593. #ifndef __APPLE__
    594. 

  594. .size	fe_isnegative,.-fe_isnegative
    595. 

  595. #endif /* __APPLE__ */
    596. 

  596. #ifndef __APPLE__
    597. 

  597. .text
    598. 

  598. .globl	fe_cmov_table
    599. 

  599. .type	fe_cmov_table,@function
    600. 

  600. .align	16
    601. 

  601. fe_cmov_table:
    602. 

  602. #else
    603. 

  603. .section	__TEXT,__text
    604. 

  604. .globl	_fe_cmov_table
    605. 

  605. .p2align	4
    606. 

  606. _fe_cmov_table:
    607. 

  607. #endif /* __APPLE__ */
    608. 

  608.         pushq	%r12
    609. 

  609.         pushq	%r13
    610. 

  610.         pushq	%r14
    611. 

  611.         pushq	%r15
    612. 

  612.         movq	%rdx, %rcx
    613. 

  613.         movsbq	%cl, %rax
    614. 

  614.         cdq
    615. 

  615.         xorb	%dl, %al
    616. 

  616.         subb	%dl, %al
    617. 

  617.         movb	%al, %r15b
    618. 

  618.         movq	$0x01, %rax
    619. 

  619.         xorq	%rdx, %rdx
    620. 

  620.         xorq	%r8, %r8
    621. 

  621.         xorq	%r9, %r9
    622. 

  622.         movq	$0x01, %r10
    623. 

  623.         xorq	%r11, %r11
    624. 

  624.         xorq	%r12, %r12
    625. 

  625.         xorq	%r13, %r13
    626. 

  626.         cmpb	$0x01, %r15b
    627. 

  627.         movq	(%rsi), %r14
    628. 

  628.         cmoveq	%r14, %rax
    629. 

  629.         movq	8(%rsi), %r14
    630. 

  630.         cmoveq	%r14, %rdx
    631. 

  631.         movq	16(%rsi), %r14
    632. 

  632.         cmoveq	%r14, %r8
    633. 

  633.         movq	24(%rsi), %r14
    634. 

  634.         cmoveq	%r14, %r9
    635. 

  635.         movq	32(%rsi), %r14
    636. 

  636.         cmoveq	%r14, %r10
    637. 

  637.         movq	40(%rsi), %r14
    638. 

  638.         cmoveq	%r14, %r11
    639. 

  639.         movq	48(%rsi), %r14
    640. 

  640.         cmoveq	%r14, %r12
    641. 

  641.         movq	56(%rsi), %r14
    642. 

  642.         cmoveq	%r14, %r13
    643. 

  643.         cmpb	$2, %r15b
    644. 

  644.         movq	96(%rsi), %r14
    645. 

  645.         cmoveq	%r14, %rax
    646. 

  646.         movq	104(%rsi), %r14
    647. 

  647.         cmoveq	%r14, %rdx
    648. 

  648.         movq	112(%rsi), %r14
    649. 

  649.         cmoveq	%r14, %r8
    650. 

  650.         movq	120(%rsi), %r14
    651. 

  651.         cmoveq	%r14, %r9
    652. 

  652.         movq	128(%rsi), %r14
    653. 

  653.         cmoveq	%r14, %r10
    654. 

  654.         movq	136(%rsi), %r14
    655. 

  655.         cmoveq	%r14, %r11
    656. 

  656.         movq	144(%rsi), %r14
    657. 

  657.         cmoveq	%r14, %r12
    658. 

  658.         movq	152(%rsi), %r14
    659. 

  659.         cmoveq	%r14, %r13
    660. 

  660.         cmpb	$3, %r15b
    661. 

  661.         movq	192(%rsi), %r14
    662. 

  662.         cmoveq	%r14, %rax
    663. 

  663.         movq	200(%rsi), %r14
    664. 

  664.         cmoveq	%r14, %rdx
    665. 

  665.         movq	208(%rsi), %r14
    666. 

  666.         cmoveq	%r14, %r8
    667. 

  667.         movq	216(%rsi), %r14
    668. 

  668.         cmoveq	%r14, %r9
    669. 

  669.         movq	224(%rsi), %r14
    670. 

  670.         cmoveq	%r14, %r10
    671. 

  671.         movq	232(%rsi), %r14
    672. 

  672.         cmoveq	%r14, %r11
    673. 

  673.         movq	240(%rsi), %r14
    674. 

  674.         cmoveq	%r14, %r12
    675. 

  675.         movq	248(%rsi), %r14
    676. 

  676.         cmoveq	%r14, %r13
    677. 

  677.         cmpb	$4, %r15b
    678. 

  678.         movq	288(%rsi), %r14
    679. 

  679.         cmoveq	%r14, %rax
    680. 

  680.         movq	296(%rsi), %r14
    681. 

  681.         cmoveq	%r14, %rdx
    682. 

  682.         movq	304(%rsi), %r14
    683. 

  683.         cmoveq	%r14, %r8
    684. 

  684.         movq	312(%rsi), %r14
    685. 

  685.         cmoveq	%r14, %r9
    686. 

  686.         movq	320(%rsi), %r14
    687. 

  687.         cmoveq	%r14, %r10
    688. 

  688.         movq	328(%rsi), %r14
    689. 

  689.         cmoveq	%r14, %r11
    690. 

  690.         movq	336(%rsi), %r14
    691. 

  691.         cmoveq	%r14, %r12
    692. 

  692.         movq	344(%rsi), %r14
    693. 

  693.         cmoveq	%r14, %r13
    694. 

  694.         cmpb	$5, %r15b
    695. 

  695.         movq	384(%rsi), %r14
    696. 

  696.         cmoveq	%r14, %rax
    697. 

  697.         movq	392(%rsi), %r14
    698. 

  698.         cmoveq	%r14, %rdx
    699. 

  699.         movq	400(%rsi), %r14
    700. 

  700.         cmoveq	%r14, %r8
    701. 

  701.         movq	408(%rsi), %r14
    702. 

  702.         cmoveq	%r14, %r9
    703. 

  703.         movq	416(%rsi), %r14
    704. 

  704.         cmoveq	%r14, %r10
    705. 

  705.         movq	424(%rsi), %r14
    706. 

  706.         cmoveq	%r14, %r11
    707. 

  707.         movq	432(%rsi), %r14
    708. 

  708.         cmoveq	%r14, %r12
    709. 

  709.         movq	440(%rsi), %r14
    710. 

  710.         cmoveq	%r14, %r13
    711. 

  711.         cmpb	$6, %r15b
    712. 

  712.         movq	480(%rsi), %r14
    713. 

  713.         cmoveq	%r14, %rax
    714. 

  714.         movq	488(%rsi), %r14
    715. 

  715.         cmoveq	%r14, %rdx
    716. 

  716.         movq	496(%rsi), %r14
    717. 

  717.         cmoveq	%r14, %r8
    718. 

  718.         movq	504(%rsi), %r14
    719. 

  719.         cmoveq	%r14, %r9
    720. 

  720.         movq	512(%rsi), %r14
    721. 

  721.         cmoveq	%r14, %r10
    722. 

  722.         movq	520(%rsi), %r14
    723. 

  723.         cmoveq	%r14, %r11
    724. 

  724.         movq	528(%rsi), %r14
    725. 

  725.         cmoveq	%r14, %r12
    726. 

  726.         movq	536(%rsi), %r14
    727. 

  727.         cmoveq	%r14, %r13
    728. 

  728.         cmpb	$7, %r15b
    729. 

  729.         movq	576(%rsi), %r14
    730. 

  730.         cmoveq	%r14, %rax
    731. 

  731.         movq	584(%rsi), %r14
    732. 

  732.         cmoveq	%r14, %rdx
    733. 

  733.         movq	592(%rsi), %r14
    734. 

  734.         cmoveq	%r14, %r8
    735. 

  735.         movq	600(%rsi), %r14
    736. 

  736.         cmoveq	%r14, %r9
    737. 

  737.         movq	608(%rsi), %r14
    738. 

  738.         cmoveq	%r14, %r10
    739. 

  739.         movq	616(%rsi), %r14
    740. 

  740.         cmoveq	%r14, %r11
    741. 

  741.         movq	624(%rsi), %r14
    742. 

  742.         cmoveq	%r14, %r12
    743. 

  743.         movq	632(%rsi), %r14
    744. 

  744.         cmoveq	%r14, %r13
    745. 

  745.         cmpb	$8, %r15b
    746. 

  746.         movq	672(%rsi), %r14
    747. 

  747.         cmoveq	%r14, %rax
    748. 

  748.         movq	680(%rsi), %r14
    749. 

  749.         cmoveq	%r14, %rdx
    750. 

  750.         movq	688(%rsi), %r14
    751. 

  751.         cmoveq	%r14, %r8
    752. 

  752.         movq	696(%rsi), %r14
    753. 

  753.         cmoveq	%r14, %r9
    754. 

  754.         movq	704(%rsi), %r14
    755. 

  755.         cmoveq	%r14, %r10
    756. 

  756.         movq	712(%rsi), %r14
    757. 

  757.         cmoveq	%r14, %r11
    758. 

  758.         movq	720(%rsi), %r14
    759. 

  759.         cmoveq	%r14, %r12
    760. 

  760.         movq	728(%rsi), %r14
    761. 

  761.         cmoveq	%r14, %r13
    762. 

  762.         cmpb	$0x00, %cl
    763. 

  763.         movq	%rax, %r14
    764. 

  764.         cmovlq	%r10, %rax
    765. 

  765.         cmovlq	%r14, %r10
    766. 

  766.         movq	%rdx, %r14
    767. 

  767.         cmovlq	%r11, %rdx
    768. 

  768.         cmovlq	%r14, %r11
    769. 

  769.         movq	%r8, %r14
    770. 

  770.         cmovlq	%r12, %r8
    771. 

  771.         cmovlq	%r14, %r12
    772. 

  772.         movq	%r9, %r14
    773. 

  773.         cmovlq	%r13, %r9
    774. 

  774.         cmovlq	%r14, %r13
    775. 

  775.         movq	%rax, (%rdi)
    776. 

  776.         movq	%rdx, 8(%rdi)
    777. 

  777.         movq	%r8, 16(%rdi)
    778. 

  778.         movq	%r9, 24(%rdi)
    779. 

  779.         movq	%r10, 32(%rdi)
    780. 

  780.         movq	%r11, 40(%rdi)
    781. 

  781.         movq	%r12, 48(%rdi)
    782. 

  782.         movq	%r13, 56(%rdi)
    783. 

  783.         xorq	%rax, %rax
    784. 

  784.         xorq	%rdx, %rdx
    785. 

  785.         xorq	%r8, %r8
    786. 

  786.         xorq	%r9, %r9
    787. 

  787.         cmpb	$0x01, %r15b
    788. 

  788.         movq	64(%rsi), %r14
    789. 

  789.         cmoveq	%r14, %rax
    790. 

  790.         movq	72(%rsi), %r14
    791. 

  791.         cmoveq	%r14, %rdx
    792. 

  792.         movq	80(%rsi), %r14
    793. 

  793.         cmoveq	%r14, %r8
    794. 

  794.         movq	88(%rsi), %r14
    795. 

  795.         cmoveq	%r14, %r9
    796. 

  796.         cmpb	$2, %r15b
    797. 

  797.         movq	160(%rsi), %r14
    798. 

  798.         cmoveq	%r14, %rax
    799. 

  799.         movq	168(%rsi), %r14
    800. 

  800.         cmoveq	%r14, %rdx
    801. 

  801.         movq	176(%rsi), %r14
    802. 

  802.         cmoveq	%r14, %r8
    803. 

  803.         movq	184(%rsi), %r14
    804. 

  804.         cmoveq	%r14, %r9
    805. 

  805.         cmpb	$3, %r15b
    806. 

  806.         movq	256(%rsi), %r14
    807. 

  807.         cmoveq	%r14, %rax
    808. 

  808.         movq	264(%rsi), %r14
    809. 

  809.         cmoveq	%r14, %rdx
    810. 

  810.         movq	272(%rsi), %r14
    811. 

  811.         cmoveq	%r14, %r8
    812. 

  812.         movq	280(%rsi), %r14
    813. 

  813.         cmoveq	%r14, %r9
    814. 

  814.         cmpb	$4, %r15b
    815. 

  815.         movq	352(%rsi), %r14
    816. 

  816.         cmoveq	%r14, %rax
    817. 

  817.         movq	360(%rsi), %r14
    818. 

  818.         cmoveq	%r14, %rdx
    819. 

  819.         movq	368(%rsi), %r14
    820. 

  820.         cmoveq	%r14, %r8
    821. 

  821.         movq	376(%rsi), %r14
    822. 

  822.         cmoveq	%r14, %r9
    823. 

  823.         cmpb	$5, %r15b
    824. 

  824.         movq	448(%rsi), %r14
    825. 

  825.         cmoveq	%r14, %rax
    826. 

  826.         movq	456(%rsi), %r14
    827. 

  827.         cmoveq	%r14, %rdx
    828. 

  828.         movq	464(%rsi), %r14
    829. 

  829.         cmoveq	%r14, %r8
    830. 

  830.         movq	472(%rsi), %r14
    831. 

  831.         cmoveq	%r14, %r9
    832. 

  832.         cmpb	$6, %r15b
    833. 

  833.         movq	544(%rsi), %r14
    834. 

  834.         cmoveq	%r14, %rax
    835. 

  835.         movq	552(%rsi), %r14
    836. 

  836.         cmoveq	%r14, %rdx
    837. 

  837.         movq	560(%rsi), %r14
    838. 

  838.         cmoveq	%r14, %r8
    839. 

  839.         movq	568(%rsi), %r14
    840. 

  840.         cmoveq	%r14, %r9
    841. 

  841.         cmpb	$7, %r15b
    842. 

  842.         movq	640(%rsi), %r14
    843. 

  843.         cmoveq	%r14, %rax
    844. 

  844.         movq	648(%rsi), %r14
    845. 

  845.         cmoveq	%r14, %rdx
    846. 

  846.         movq	656(%rsi), %r14
    847. 

  847.         cmoveq	%r14, %r8
    848. 

  848.         movq	664(%rsi), %r14
    849. 

  849.         cmoveq	%r14, %r9
    850. 

  850.         cmpb	$8, %r15b
    851. 

  851.         movq	736(%rsi), %r14
    852. 

  852.         cmoveq	%r14, %rax
    853. 

  853.         movq	744(%rsi), %r14
    854. 

  854.         cmoveq	%r14, %rdx
    855. 

  855.         movq	752(%rsi), %r14
    856. 

  856.         cmoveq	%r14, %r8
    857. 

  857.         movq	760(%rsi), %r14
    858. 

  858.         cmoveq	%r14, %r9
    859. 

  859.         movq	$-19, %r10
    860. 

  860.         movq	$-1, %r11
    861. 

  861.         movq	$-1, %r12
    862. 

  862.         movq	$0x7fffffffffffffff, %r13
    863. 

  863.         subq	%rax, %r10
    864. 

  864.         sbbq	%rdx, %r11
    865. 

  865.         sbbq	%r8, %r12
    866. 

  866.         sbbq	%r9, %r13
    867. 

  867.         cmpb	$0x00, %cl
    868. 

  868.         cmovlq	%r10, %rax
    869. 

  869.         cmovlq	%r11, %rdx
    870. 

  870.         cmovlq	%r12, %r8
    871. 

  871.         cmovlq	%r13, %r9
    872. 

  872.         movq	%rax, 64(%rdi)
    873. 

  873.         movq	%rdx, 72(%rdi)
    874. 

  874.         movq	%r8, 80(%rdi)
    875. 

  875.         movq	%r9, 88(%rdi)
    876. 

  876.         popq	%r15
    877. 

  877.         popq	%r14
    878. 

  878.         popq	%r13
    879. 

  879.         popq	%r12
    880. 

  880.         repz retq
    881. 

  881. #ifndef __APPLE__
    882. 

  882. .size	fe_cmov_table,.-fe_cmov_table
    883. 

  883. #endif /* __APPLE__ */
    884. 

  884. #ifndef __APPLE__
    885. 

  885. .text
    886. 

  886. .globl	fe_mul
    887. 

  887. .type	fe_mul,@function
    888. 

  888. .align	16
    889. 

  889. fe_mul:
    890. 

  890. #else
    891. 

  891. .section	__TEXT,__text
    892. 

  892. .globl	_fe_mul
    893. 

  893. .p2align	4
    894. 

  894. _fe_mul:
    895. 

  895. #endif /* __APPLE__ */
    896. 

  896. #ifndef __APPLE__
    897. 

  897.         jmpq	*fe_mul_p(%rip)
    898. 

  898. #else
    899. 

  899.         jmpq	*_fe_mul_p(%rip)
    900. 

  900. #endif /* __APPLE__ */
    901. 

  901. #ifndef __APPLE__
    902. 

  902. .size	fe_mul,.-fe_mul
    903. 

  903. #endif /* __APPLE__ */
    904. 

  904. #ifndef __APPLE__
    905. 

  905. .text
    906. 

  906. .globl	fe_sq
    907. 

  907. .type	fe_sq,@function
    908. 

  908. .align	16
    909. 

  909. fe_sq:
    910. 

  910. #else
    911. 

  911. .section	__TEXT,__text
    912. 

  912. .globl	_fe_sq
    913. 

  913. .p2align	4
    914. 

  914. _fe_sq:
    915. 

  915. #endif /* __APPLE__ */
    916. 

  916. #ifndef __APPLE__
    917. 

  917.         jmpq	*fe_sq_p(%rip)
    918. 

  918. #else
    919. 

  919.         jmpq	*_fe_sq_p(%rip)
    920. 

  920. #endif /* __APPLE__ */
    921. 

  921. #ifndef __APPLE__
    922. 

  922. .size	fe_sq,.-fe_sq
    923. 

  923. #endif /* __APPLE__ */
    924. 

  924. #ifndef __APPLE__
    925. 

  925. .text
    926. 

  926. .globl	fe_mul121666
    927. 

  927. .type	fe_mul121666,@function
    928. 

  928. .align	16
    929. 

  929. fe_mul121666:
    930. 

  930. #else
    931. 

  931. .section	__TEXT,__text
    932. 

  932. .globl	_fe_mul121666
    933. 

  933. .p2align	4
    934. 

  934. _fe_mul121666:
    935. 

  935. #endif /* __APPLE__ */
    936. 

  936. #ifndef __APPLE__
    937. 

  937.         jmpq	*fe_mul121666_p(%rip)
    938. 

  938. #else
    939. 

  939.         jmpq	*_fe_mul121666_p(%rip)
    940. 

  940. #endif /* __APPLE__ */
    941. 

  941. #ifndef __APPLE__
    942. 

  942. .size	fe_mul121666,.-fe_mul121666
    943. 

  943. #endif /* __APPLE__ */
    944. 

  944. #ifndef __APPLE__
    945. 

  945. .text
    946. 

  946. .globl	fe_sq2
    947. 

  947. .type	fe_sq2,@function
    948. 

  948. .align	16
    949. 

  949. fe_sq2:
    950. 

  950. #else
    951. 

  951. .section	__TEXT,__text
    952. 

  952. .globl	_fe_sq2
    953. 

  953. .p2align	4
    954. 

  954. _fe_sq2:
    955. 

  955. #endif /* __APPLE__ */
    956. 

  956. #ifndef __APPLE__
    957. 

  957.         jmpq	*fe_sq2_p(%rip)
    958. 

  958. #else
    959. 

  959.         jmpq	*_fe_sq2_p(%rip)
    960. 

  960. #endif /* __APPLE__ */
    961. 

  961. #ifndef __APPLE__
    962. 

  962. .size	fe_sq2,.-fe_sq2
    963. 

  963. #endif /* __APPLE__ */
    964. 

  964. #ifndef __APPLE__
    965. 

  965. .text
    966. 

  966. .globl	fe_invert
    967. 

  967. .type	fe_invert,@function
    968. 

  968. .align	16
    969. 

  969. fe_invert:
    970. 

  970. #else
    971. 

  971. .section	__TEXT,__text
    972. 

  972. .globl	_fe_invert
    973. 

  973. .p2align	4
    974. 

  974. _fe_invert:
    975. 

  975. #endif /* __APPLE__ */
    976. 

  976. #ifndef __APPLE__
    977. 

  977.         jmpq	*fe_invert_p(%rip)
    978. 

  978. #else
    979. 

  979.         jmpq	*_fe_invert_p(%rip)
    980. 

  980. #endif /* __APPLE__ */
    981. 

  981. #ifndef __APPLE__
    982. 

  982. .size	fe_invert,.-fe_invert
    983. 

  983. #endif /* __APPLE__ */
    984. 

  984. #ifndef __APPLE__
    985. 

  985. .text
    986. 

  986. .globl	curve25519
    987. 

  987. .type	curve25519,@function
    988. 

  988. .align	16
    989. 

  989. curve25519:
    990. 

  990. #else
    991. 

  991. .section	__TEXT,__text
    992. 

  992. .globl	_curve25519
    993. 

  993. .p2align	4
    994. 

  994. _curve25519:
    995. 

  995. #endif /* __APPLE__ */
    996. 

  996. #ifndef __APPLE__
    997. 

  997.         jmpq	*curve25519_p(%rip)
    998. 

  998. #else
    999. 

  999.         jmpq	*_curve25519_p(%rip)
    1000. 

  1000. #endif /* __APPLE__ */
    1001. 

  1001. #ifndef __APPLE__
    1002. 

  1002. .size	curve25519,.-curve25519
    1003. 

  1003. #endif /* __APPLE__ */
    1004. 

  1004. #ifndef __APPLE__
    1005. 

  1005. .text
    1006. 

  1006. .globl	fe_pow22523
    1007. 

  1007. .type	fe_pow22523,@function
    1008. 

  1008. .align	16
    1009. 

  1009. fe_pow22523:
    1010. 

  1010. #else
    1011. 

  1011. .section	__TEXT,__text
    1012. 

  1012. .globl	_fe_pow22523
    1013. 

  1013. .p2align	4
    1014. 

  1014. _fe_pow22523:
    1015. 

  1015. #endif /* __APPLE__ */
    1016. 

  1016. #ifndef __APPLE__
    1017. 

  1017.         jmpq	*fe_pow22523_p(%rip)
    1018. 

  1018. #else
    1019. 

  1019.         jmpq	*_fe_pow22523_p(%rip)
    1020. 

  1020. #endif /* __APPLE__ */
    1021. 

  1021. #ifndef __APPLE__
    1022. 

  1022. .size	fe_pow22523,.-fe_pow22523
    1023. 

  1023. #endif /* __APPLE__ */
    1024. 

  1024. #ifndef __APPLE__
    1025. 

  1025. .text
    1026. 

  1026. .globl	fe_ge_to_p2
    1027. 

  1027. .type	fe_ge_to_p2,@function
    1028. 

  1028. .align	16
    1029. 

  1029. fe_ge_to_p2:
    1030. 

  1030. #else
    1031. 

  1031. .section	__TEXT,__text
    1032. 

  1032. .globl	_fe_ge_to_p2
    1033. 

  1033. .p2align	4
    1034. 

  1034. _fe_ge_to_p2:
    1035. 

  1035. #endif /* __APPLE__ */
    1036. 

  1036. #ifndef __APPLE__
    1037. 

  1037.         jmpq	*fe_ge_to_p2_p(%rip)
    1038. 

  1038. #else
    1039. 

  1039.         jmpq	*_fe_ge_to_p2_p(%rip)
    1040. 

  1040. #endif /* __APPLE__ */
    1041. 

  1041. #ifndef __APPLE__
    1042. 

  1042. .size	fe_ge_to_p2,.-fe_ge_to_p2
    1043. 

  1043. #endif /* __APPLE__ */
    1044. 

  1044. #ifndef __APPLE__
    1045. 

  1045. .text
    1046. 

  1046. .globl	fe_ge_to_p3
    1047. 

  1047. .type	fe_ge_to_p3,@function
    1048. 

  1048. .align	16
    1049. 

  1049. fe_ge_to_p3:
    1050. 

  1050. #else
    1051. 

  1051. .section	__TEXT,__text
    1052. 

  1052. .globl	_fe_ge_to_p3
    1053. 

  1053. .p2align	4
    1054. 

  1054. _fe_ge_to_p3:
    1055. 

  1055. #endif /* __APPLE__ */
    1056. 

  1056. #ifndef __APPLE__
    1057. 

  1057.         jmpq	*fe_ge_to_p3_p(%rip)
    1058. 

  1058. #else
    1059. 

  1059.         jmpq	*_fe_ge_to_p3_p(%rip)
    1060. 

  1060. #endif /* __APPLE__ */
    1061. 

  1061. #ifndef __APPLE__
    1062. 

  1062. .size	fe_ge_to_p3,.-fe_ge_to_p3
    1063. 

  1063. #endif /* __APPLE__ */
    1064. 

  1064. #ifndef __APPLE__
    1065. 

  1065. .text
    1066. 

  1066. .globl	fe_ge_dbl
    1067. 

  1067. .type	fe_ge_dbl,@function
    1068. 

  1068. .align	16
    1069. 

  1069. fe_ge_dbl:
    1070. 

  1070. #else
    1071. 

  1071. .section	__TEXT,__text
    1072. 

  1072. .globl	_fe_ge_dbl
    1073. 

  1073. .p2align	4
    1074. 

  1074. _fe_ge_dbl:
    1075. 

  1075. #endif /* __APPLE__ */
    1076. 

  1076. #ifndef __APPLE__
    1077. 

  1077.         jmpq	*fe_ge_dbl_p(%rip)
    1078. 

  1078. #else
    1079. 

  1079.         jmpq	*_fe_ge_dbl_p(%rip)
    1080. 

  1080. #endif /* __APPLE__ */
    1081. 

  1081. #ifndef __APPLE__
    1082. 

  1082. .size	fe_ge_dbl,.-fe_ge_dbl
    1083. 

  1083. #endif /* __APPLE__ */
    1084. 

  1084. #ifndef __APPLE__
    1085. 

  1085. .text
    1086. 

  1086. .globl	fe_ge_madd
    1087. 

  1087. .type	fe_ge_madd,@function
    1088. 

  1088. .align	16
    1089. 

  1089. fe_ge_madd:
    1090. 

  1090. #else
    1091. 

  1091. .section	__TEXT,__text
    1092. 

  1092. .globl	_fe_ge_madd
    1093. 

  1093. .p2align	4
    1094. 

  1094. _fe_ge_madd:
    1095. 

  1095. #endif /* __APPLE__ */
    1096. 

  1096. #ifndef __APPLE__
    1097. 

  1097.         jmpq	*fe_ge_madd_p(%rip)
    1098. 

  1098. #else
    1099. 

  1099.         jmpq	*_fe_ge_madd_p(%rip)
    1100. 

  1100. #endif /* __APPLE__ */
    1101. 

  1101. #ifndef __APPLE__
    1102. 

  1102. .size	fe_ge_madd,.-fe_ge_madd
    1103. 

  1103. #endif /* __APPLE__ */
    1104. 

  1104. #ifndef __APPLE__
    1105. 

  1105. .text
    1106. 

  1106. .globl	fe_ge_msub
    1107. 

  1107. .type	fe_ge_msub,@function
    1108. 

  1108. .align	16
    1109. 

  1109. fe_ge_msub:
    1110. 

  1110. #else
    1111. 

  1111. .section	__TEXT,__text
    1112. 

  1112. .globl	_fe_ge_msub
    1113. 

  1113. .p2align	4
    1114. 

  1114. _fe_ge_msub:
    1115. 

  1115. #endif /* __APPLE__ */
    1116. 

  1116. #ifndef __APPLE__
    1117. 

  1117.         jmpq	*fe_ge_msub_p(%rip)
    1118. 

  1118. #else
    1119. 

  1119.         jmpq	*_fe_ge_msub_p(%rip)
    1120. 

  1120. #endif /* __APPLE__ */
    1121. 

  1121. #ifndef __APPLE__
    1122. 

  1122. .size	fe_ge_msub,.-fe_ge_msub
    1123. 

  1123. #endif /* __APPLE__ */
    1124. 

  1124. #ifndef __APPLE__
    1125. 

  1125. .text
    1126. 

  1126. .globl	fe_ge_add
    1127. 

  1127. .type	fe_ge_add,@function
    1128. 

  1128. .align	16
    1129. 

  1129. fe_ge_add:
    1130. 

  1130. #else
    1131. 

  1131. .section	__TEXT,__text
    1132. 

  1132. .globl	_fe_ge_add
    1133. 

  1133. .p2align	4
    1134. 

  1134. _fe_ge_add:
    1135. 

  1135. #endif /* __APPLE__ */
    1136. 

  1136. #ifndef __APPLE__
    1137. 

  1137.         jmpq	*fe_ge_add_p(%rip)
    1138. 

  1138. #else
    1139. 

  1139.         jmpq	*_fe_ge_add_p(%rip)
    1140. 

  1140. #endif /* __APPLE__ */
    1141. 

  1141. #ifndef __APPLE__
    1142. 

  1142. .size	fe_ge_add,.-fe_ge_add
    1143. 

  1143. #endif /* __APPLE__ */
    1144. 

  1144. #ifndef __APPLE__
    1145. 

  1145. .text
    1146. 

  1146. .globl	fe_ge_sub
    1147. 

  1147. .type	fe_ge_sub,@function
    1148. 

  1148. .align	16
    1149. 

  1149. fe_ge_sub:
    1150. 

  1150. #else
    1151. 

  1151. .section	__TEXT,__text
    1152. 

  1152. .globl	_fe_ge_sub
    1153. 

  1153. .p2align	4
    1154. 

  1154. _fe_ge_sub:
    1155. 

  1155. #endif /* __APPLE__ */
    1156. 

  1156. #ifndef __APPLE__
    1157. 

  1157.         jmpq	*fe_ge_sub_p(%rip)
    1158. 

  1158. #else
    1159. 

  1159.         jmpq	*_fe_ge_sub_p(%rip)
    1160. 

  1160. #endif /* __APPLE__ */
    1161. 

  1161. #ifndef __APPLE__
    1162. 

  1162. .size	fe_ge_sub,.-fe_ge_sub
    1163. 

  1163. #endif /* __APPLE__ */
    1164. 

  1164. #ifndef __APPLE__
    1165. 

  1165. .data
    1166. 

  1166. .type	cpuFlagsSet, @object
    1167. 

  1167. .size	cpuFlagsSet,4
    1168. 

  1168. cpuFlagsSet:
    1169. 

  1169. 	.long	0
    1170. 

  1170. #else
    1171. 

  1171. .section	__DATA,__data
    1172. 

  1172. .p2align	2
    1173. 

  1173. _cpuFlagsSet:
    1174. 

  1174. 	.long	0
    1175. 

  1175. #endif /* __APPLE__ */
    1176. 

  1176. #ifndef __APPLE__
    1177. 

  1177. .data
    1178. 

  1178. .type	intelFlags, @object
    1179. 

  1179. .size	intelFlags,4
    1180. 

  1180. intelFlags:
    1181. 

  1181. 	.long	0
    1182. 

  1182. #else
    1183. 

  1183. .section	__DATA,__data
    1184. 

  1184. .p2align	2
    1185. 

  1185. _intelFlags:
    1186. 

  1186. 	.long	0
    1187. 

  1187. #endif /* __APPLE__ */
    1188. 

  1188. #ifndef __APPLE__
    1189. 

  1189. .data
    1190. 

  1190. .type	fe_mul_p, @object
    1191. 

  1191. .size	fe_mul_p,8
    1192. 

  1192. fe_mul_p:
    1193. 

  1193. 	.quad	fe_mul_x64
    1194. 

  1194. #else
    1195. 

  1195. .section	__DATA,__data
    1196. 

  1196. .p2align	2
    1197. 

  1197. _fe_mul_p:
    1198. 

  1198. 	.quad	_fe_mul_x64
    1199. 

  1199. #endif /* __APPLE__ */
    1200. 

  1200. #ifndef __APPLE__
    1201. 

  1201. .data
    1202. 

  1202. .type	fe_sq_p, @object
    1203. 

  1203. .size	fe_sq_p,8
    1204. 

  1204. fe_sq_p:
    1205. 

  1205. 	.quad	fe_sq_x64
    1206. 

  1206. #else
    1207. 

  1207. .section	__DATA,__data
    1208. 

  1208. .p2align	2
    1209. 

  1209. _fe_sq_p:
    1210. 

  1210. 	.quad	_fe_sq_x64
    1211. 

  1211. #endif /* __APPLE__ */
    1212. 

  1212. #ifndef __APPLE__
    1213. 

  1213. .data
    1214. 

  1214. .type	fe_mul121666_p, @object
    1215. 

  1215. .size	fe_mul121666_p,8
    1216. 

  1216. fe_mul121666_p:
    1217. 

  1217. 	.quad	fe_mul121666_x64
    1218. 

  1218. #else
    1219. 

  1219. .section	__DATA,__data
    1220. 

  1220. .p2align	2
    1221. 

  1221. _fe_mul121666_p:
    1222. 

  1222. 	.quad	_fe_mul121666_x64
    1223. 

  1223. #endif /* __APPLE__ */
    1224. 

  1224. #ifndef __APPLE__
    1225. 

  1225. .data
    1226. 

  1226. .type	fe_sq2_p, @object
    1227. 

  1227. .size	fe_sq2_p,8
    1228. 

  1228. fe_sq2_p:
    1229. 

  1229. 	.quad	fe_sq2_x64
    1230. 

  1230. #else
    1231. 

  1231. .section	__DATA,__data
    1232. 

  1232. .p2align	2
    1233. 

  1233. _fe_sq2_p:
    1234. 

  1234. 	.quad	_fe_sq2_x64
    1235. 

  1235. #endif /* __APPLE__ */
    1236. 

  1236. #ifndef __APPLE__
    1237. 

  1237. .data
    1238. 

  1238. .type	fe_invert_p, @object
    1239. 

  1239. .size	fe_invert_p,8
    1240. 

  1240. fe_invert_p:
    1241. 

  1241. 	.quad	fe_invert_x64
    1242. 

  1242. #else
    1243. 

  1243. .section	__DATA,__data
    1244. 

  1244. .p2align	2
    1245. 

  1245. _fe_invert_p:
    1246. 

  1246. 	.quad	_fe_invert_x64
    1247. 

  1247. #endif /* __APPLE__ */
    1248. 

  1248. #ifndef __APPLE__
    1249. 

  1249. .data
    1250. 

  1250. .type	curve25519_p, @object
    1251. 

  1251. .size	curve25519_p,8
    1252. 

  1252. curve25519_p:
    1253. 

  1253. 	.quad	curve25519_x64
    1254. 

  1254. #else
    1255. 

  1255. .section	__DATA,__data
    1256. 

  1256. .p2align	2
    1257. 

  1257. _curve25519_p:
    1258. 

  1258. 	.quad	_curve25519_x64
    1259. 

  1259. #endif /* __APPLE__ */
    1260. 

  1260. #ifndef __APPLE__
    1261. 

  1261. .data
    1262. 

  1262. .type	fe_pow22523_p, @object
    1263. 

  1263. .size	fe_pow22523_p,8
    1264. 

  1264. fe_pow22523_p:
    1265. 

  1265. 	.quad	fe_pow22523_x64
    1266. 

  1266. #else
    1267. 

  1267. .section	__DATA,__data
    1268. 

  1268. .p2align	2
    1269. 

  1269. _fe_pow22523_p:
    1270. 

  1270. 	.quad	_fe_pow22523_x64
    1271. 

  1271. #endif /* __APPLE__ */
    1272. 

  1272. #ifndef __APPLE__
    1273. 

  1273. .data
    1274. 

  1274. .type	fe_ge_to_p2_p, @object
    1275. 

  1275. .size	fe_ge_to_p2_p,8
    1276. 

  1276. fe_ge_to_p2_p:
    1277. 

  1277. 	.quad	fe_ge_to_p2_x64
    1278. 

  1278. #else
    1279. 

  1279. .section	__DATA,__data
    1280. 

  1280. .p2align	2
    1281. 

  1281. _fe_ge_to_p2_p:
    1282. 

  1282. 	.quad	_fe_ge_to_p2_x64
    1283. 

  1283. #endif /* __APPLE__ */
    1284. 

  1284. #ifndef __APPLE__
    1285. 

  1285. .data
    1286. 

  1286. .type	fe_ge_to_p3_p, @object
    1287. 

  1287. .size	fe_ge_to_p3_p,8
    1288. 

  1288. fe_ge_to_p3_p:
    1289. 

  1289. 	.quad	fe_ge_to_p3_x64
    1290. 

  1290. #else
    1291. 

  1291. .section	__DATA,__data
    1292. 

  1292. .p2align	2
    1293. 

  1293. _fe_ge_to_p3_p:
    1294. 

  1294. 	.quad	_fe_ge_to_p3_x64
    1295. 

  1295. #endif /* __APPLE__ */
    1296. 

  1296. #ifndef __APPLE__
    1297. 

  1297. .data
    1298. 

  1298. .type	fe_ge_dbl_p, @object
    1299. 

  1299. .size	fe_ge_dbl_p,8
    1300. 

  1300. fe_ge_dbl_p:
    1301. 

  1301. 	.quad	fe_ge_dbl_x64
    1302. 

  1302. #else
    1303. 

  1303. .section	__DATA,__data
    1304. 

  1304. .p2align	2
    1305. 

  1305. _fe_ge_dbl_p:
    1306. 

  1306. 	.quad	_fe_ge_dbl_x64
    1307. 

  1307. #endif /* __APPLE__ */
    1308. 

  1308. #ifndef __APPLE__
    1309. 

  1309. .data
    1310. 

  1310. .type	fe_ge_madd_p, @object
    1311. 

  1311. .size	fe_ge_madd_p,8
    1312. 

  1312. fe_ge_madd_p:
    1313. 

  1313. 	.quad	fe_ge_madd_x64
    1314. 

  1314. #else
    1315. 

  1315. .section	__DATA,__data
    1316. 

  1316. .p2align	2
    1317. 

  1317. _fe_ge_madd_p:
    1318. 

  1318. 	.quad	_fe_ge_madd_x64
    1319. 

  1319. #endif /* __APPLE__ */
    1320. 

  1320. #ifndef __APPLE__
    1321. 

  1321. .data
    1322. 

  1322. .type	fe_ge_msub_p, @object
    1323. 

  1323. .size	fe_ge_msub_p,8
    1324. 

  1324. fe_ge_msub_p:
    1325. 

  1325. 	.quad	fe_ge_msub_x64
    1326. 

  1326. #else
    1327. 

  1327. .section	__DATA,__data
    1328. 

  1328. .p2align	2
    1329. 

  1329. _fe_ge_msub_p:
    1330. 

  1330. 	.quad	_fe_ge_msub_x64
    1331. 

  1331. #endif /* __APPLE__ */
    1332. 

  1332. #ifndef __APPLE__
    1333. 

  1333. .data
    1334. 

  1334. .type	fe_ge_add_p, @object
    1335. 

  1335. .size	fe_ge_add_p,8
    1336. 

  1336. fe_ge_add_p:
    1337. 

  1337. 	.quad	fe_ge_add_x64
    1338. 

  1338. #else
    1339. 

  1339. .section	__DATA,__data
    1340. 

  1340. .p2align	2
    1341. 

  1341. _fe_ge_add_p:
    1342. 

  1342. 	.quad	_fe_ge_add_x64
    1343. 

  1343. #endif /* __APPLE__ */
    1344. 

  1344. #ifndef __APPLE__
    1345. 

  1345. .data
    1346. 

  1346. .type	fe_ge_sub_p, @object
    1347. 

  1347. .size	fe_ge_sub_p,8
    1348. 

  1348. fe_ge_sub_p:
    1349. 

  1349. 	.quad	fe_ge_sub_x64
    1350. 

  1350. #else
    1351. 

  1351. .section	__DATA,__data
    1352. 

  1352. .p2align	2
    1353. 

  1353. _fe_ge_sub_p:
    1354. 

  1354. 	.quad	_fe_ge_sub_x64
    1355. 

  1355. #endif /* __APPLE__ */
    1356. 

  1356. #ifndef __APPLE__
    1357. 

  1357. .text
    1358. 

  1358. .globl	fe_mul_x64
    1359. 

  1359. .type	fe_mul_x64,@function
    1360. 

  1360. .align	16
    1361. 

  1361. fe_mul_x64:
    1362. 

  1362. #else
    1363. 

  1363. .section	__TEXT,__text
    1364. 

  1364. .globl	_fe_mul_x64
    1365. 

  1365. .p2align	4
    1366. 

  1366. _fe_mul_x64:
    1367. 

  1367. #endif /* __APPLE__ */
    1368. 

  1368.         pushq	%r12
    1369. 

  1369.         pushq	%r13
    1370. 

  1370.         pushq	%r14
    1371. 

  1371.         pushq	%r15
    1372. 

  1372.         pushq	%rbx
    1373. 

  1373.         movq	%rdx, %rcx
    1374. 

  1374.         # Multiply
    1375. 

  1375.         #  A[0] * B[0]
    1376. 

  1376.         movq	(%rcx), %rax
    1377. 

  1377.         mulq	(%rsi)
    1378. 

  1378.         movq	%rax, %r8
    1379. 

  1379.         movq	%rdx, %r9
    1380. 

  1380.         #  A[0] * B[1]
    1381. 

  1381.         movq	8(%rcx), %rax
    1382. 

  1382.         mulq	(%rsi)
    1383. 

  1383.         xorq	%r10, %r10
    1384. 

  1384.         addq	%rax, %r9
    1385. 

  1385.         adcq	%rdx, %r10
    1386. 

  1386.         #  A[1] * B[0]
    1387. 

  1387.         movq	(%rcx), %rax
    1388. 

  1388.         mulq	8(%rsi)
    1389. 

  1389.         xorq	%r11, %r11
    1390. 

  1390.         addq	%rax, %r9
    1391. 

  1391.         adcq	%rdx, %r10
    1392. 

  1392.         adcq	$0x00, %r11
    1393. 

  1393.         #  A[0] * B[2]
    1394. 

  1394.         movq	16(%rcx), %rax
    1395. 

  1395.         mulq	(%rsi)
    1396. 

  1396.         addq	%rax, %r10
    1397. 

  1397.         adcq	%rdx, %r11
    1398. 

  1398.         #  A[1] * B[1]
    1399. 

  1399.         movq	8(%rcx), %rax
    1400. 

  1400.         mulq	8(%rsi)
    1401. 

  1401.         xorq	%r12, %r12
    1402. 

  1402.         addq	%rax, %r10
    1403. 

  1403.         adcq	%rdx, %r11
    1404. 

  1404.         adcq	$0x00, %r12
    1405. 

  1405.         #  A[2] * B[0]
    1406. 

  1406.         movq	(%rcx), %rax
    1407. 

  1407.         mulq	16(%rsi)
    1408. 

  1408.         addq	%rax, %r10
    1409. 

  1409.         adcq	%rdx, %r11
    1410. 

  1410.         adcq	$0x00, %r12
    1411. 

  1411.         #  A[0] * B[3]
    1412. 

  1412.         movq	24(%rcx), %rax
    1413. 

  1413.         mulq	(%rsi)
    1414. 

  1414.         xorq	%r13, %r13
    1415. 

  1415.         addq	%rax, %r11
    1416. 

  1416.         adcq	%rdx, %r12
    1417. 

  1417.         adcq	$0x00, %r13
    1418. 

  1418.         #  A[1] * B[2]
    1419. 

  1419.         movq	16(%rcx), %rax
    1420. 

  1420.         mulq	8(%rsi)
    1421. 

  1421.         addq	%rax, %r11
    1422. 

  1422.         adcq	%rdx, %r12
    1423. 

  1423.         adcq	$0x00, %r13
    1424. 

  1424.         #  A[2] * B[1]
    1425. 

  1425.         movq	8(%rcx), %rax
    1426. 

  1426.         mulq	16(%rsi)
    1427. 

  1427.         addq	%rax, %r11
    1428. 

  1428.         adcq	%rdx, %r12
    1429. 

  1429.         adcq	$0x00, %r13
    1430. 

  1430.         #  A[3] * B[0]
    1431. 

  1431.         movq	(%rcx), %rax
    1432. 

  1432.         mulq	24(%rsi)
    1433. 

  1433.         addq	%rax, %r11
    1434. 

  1434.         adcq	%rdx, %r12
    1435. 

  1435.         adcq	$0x00, %r13
    1436. 

  1436.         #  A[1] * B[3]
    1437. 

  1437.         movq	24(%rcx), %rax
    1438. 

  1438.         mulq	8(%rsi)
    1439. 

  1439.         xorq	%r14, %r14
    1440. 

  1440.         addq	%rax, %r12
    1441. 

  1441.         adcq	%rdx, %r13
    1442. 

  1442.         adcq	$0x00, %r14
    1443. 

  1443.         #  A[2] * B[2]
    1444. 

  1444.         movq	16(%rcx), %rax
    1445. 

  1445.         mulq	16(%rsi)
    1446. 

  1446.         addq	%rax, %r12
    1447. 

  1447.         adcq	%rdx, %r13
    1448. 

  1448.         adcq	$0x00, %r14
    1449. 

  1449.         #  A[3] * B[1]
    1450. 

  1450.         movq	8(%rcx), %rax
    1451. 

  1451.         mulq	24(%rsi)
    1452. 

  1452.         addq	%rax, %r12
    1453. 

  1453.         adcq	%rdx, %r13
    1454. 

  1454.         adcq	$0x00, %r14
    1455. 

  1455.         #  A[2] * B[3]
    1456. 

  1456.         movq	24(%rcx), %rax
    1457. 

  1457.         mulq	16(%rsi)
    1458. 

  1458.         xorq	%r15, %r15
    1459. 

  1459.         addq	%rax, %r13
    1460. 

  1460.         adcq	%rdx, %r14
    1461. 

  1461.         adcq	$0x00, %r15
    1462. 

  1462.         #  A[3] * B[2]
    1463. 

  1463.         movq	16(%rcx), %rax
    1464. 

  1464.         mulq	24(%rsi)
    1465. 

  1465.         addq	%rax, %r13
    1466. 

  1466.         adcq	%rdx, %r14
    1467. 

  1467.         adcq	$0x00, %r15
    1468. 

  1468.         #  A[3] * B[3]
    1469. 

  1469.         movq	24(%rcx), %rax
    1470. 

  1470.         mulq	24(%rsi)
    1471. 

  1471.         addq	%rax, %r14
    1472. 

  1472.         adcq	%rdx, %r15
    1473. 

  1473.         # Reduce
    1474. 

  1474.         movq	$0x7fffffffffffffff, %rbx
    1475. 

  1475.         #  Move top half into t4-t7 and remove top bit from t3
    1476. 

  1476.         shldq	$0x01, %r14, %r15
    1477. 

  1477.         shldq	$0x01, %r13, %r14
    1478. 

  1478.         shldq	$0x01, %r12, %r13
    1479. 

  1479.         shldq	$0x01, %r11, %r12
    1480. 

  1480.         andq	%rbx, %r11
    1481. 

  1481.         #  Multiply top half by 19
    1482. 

  1482.         movq	$19, %rax
    1483. 

  1483.         mulq	%r12
    1484. 

  1484.         xorq	%r12, %r12
    1485. 

  1485.         addq	%rax, %r8
    1486. 

  1486.         movq	$19, %rax
    1487. 

  1487.         adcq	%rdx, %r12
    1488. 

  1488.         mulq	%r13
    1489. 

  1489.         xorq	%r13, %r13
    1490. 

  1490.         addq	%rax, %r9
    1491. 

  1491.         movq	$19, %rax
    1492. 

  1492.         adcq	%rdx, %r13
    1493. 

  1493.         mulq	%r14
    1494. 

  1494.         xorq	%r14, %r14
    1495. 

  1495.         addq	%rax, %r10
    1496. 

  1496.         movq	$19, %rax
    1497. 

  1497.         adcq	%rdx, %r14
    1498. 

  1498.         mulq	%r15
    1499. 

  1499.         #  Add remaining product results in
    1500. 

  1500.         addq	%r12, %r9
    1501. 

  1501.         adcq	%r13, %r10
    1502. 

  1502.         adcq	%r14, %r11
    1503. 

  1503.         adcq	%rax, %r11
    1504. 

  1504.         adcq	$0x00, %rdx
    1505. 

  1505.         #  Overflow
    1506. 

  1506.         shldq	$0x01, %r11, %rdx
    1507. 

  1507.         imulq	$19, %rdx, %rax
    1508. 

  1508.         andq	%rbx, %r11
    1509. 

  1509.         addq	%rax, %r8
    1510. 

  1510.         adcq	$0x00, %r9
    1511. 

  1511.         adcq	$0x00, %r10
    1512. 

  1512.         adcq	$0x00, %r11
    1513. 

  1513.         # Reduce if top bit set
    1514. 

  1514.         movq	%r11, %rdx
    1515. 

  1515.         sarq	$63, %rdx
    1516. 

  1516.         andq	$19, %rdx
    1517. 

  1517.         andq	%rbx, %r11
    1518. 

  1518.         addq	%rdx, %r8
    1519. 

  1519.         adcq	$0x00, %r9
    1520. 

  1520.         adcq	$0x00, %r10
    1521. 

  1521.         adcq	$0x00, %r11
    1522. 

  1522.         # Store
    1523. 

  1523.         movq	%r8, (%rdi)
    1524. 

  1524.         movq	%r9, 8(%rdi)
    1525. 

  1525.         movq	%r10, 16(%rdi)
    1526. 

  1526.         movq	%r11, 24(%rdi)
    1527. 

  1527.         popq	%rbx
    1528. 

  1528.         popq	%r15
    1529. 

  1529.         popq	%r14
    1530. 

  1530.         popq	%r13
    1531. 

  1531.         popq	%r12
    1532. 

  1532.         repz retq
    1533. 

  1533. #ifndef __APPLE__
    1534. 

  1534. .size	fe_mul_x64,.-fe_mul_x64
    1535. 

  1535. #endif /* __APPLE__ */
    1536. 

  1536. #ifndef __APPLE__
    1537. 

  1537. .text
    1538. 

  1538. .globl	fe_sq_x64
    1539. 

  1539. .type	fe_sq_x64,@function
    1540. 

  1540. .align	16
    1541. 

  1541. fe_sq_x64:
    1542. 

  1542. #else
    1543. 

  1543. .section	__TEXT,__text
    1544. 

  1544. .globl	_fe_sq_x64
    1545. 

  1545. .p2align	4
    1546. 

  1546. _fe_sq_x64:
    1547. 

  1547. #endif /* __APPLE__ */
    1548. 

  1548.         pushq	%r12
    1549. 

  1549.         pushq	%r13
    1550. 

  1550.         pushq	%r14
    1551. 

  1551.         pushq	%r15
    1552. 

  1552.         # Square
    1553. 

  1553.         #  A[0] * A[1]
    1554. 

  1554.         movq	(%rsi), %rax
    1555. 

  1555.         mulq	8(%rsi)
    1556. 

  1556.         movq	%rax, %r8
    1557. 

  1557.         movq	%rdx, %r9
    1558. 

  1558.         #  A[0] * A[2]
    1559. 

  1559.         movq	(%rsi), %rax
    1560. 

  1560.         mulq	16(%rsi)
    1561. 

  1561.         xorq	%r10, %r10
    1562. 

  1562.         addq	%rax, %r9
    1563. 

  1563.         adcq	%rdx, %r10
    1564. 

  1564.         #  A[0] * A[3]
    1565. 

  1565.         movq	(%rsi), %rax
    1566. 

  1566.         mulq	24(%rsi)
    1567. 

  1567.         xorq	%r11, %r11
    1568. 

  1568.         addq	%rax, %r10
    1569. 

  1569.         adcq	%rdx, %r11
    1570. 

  1570.         #  A[1] * A[2]
    1571. 

  1571.         movq	8(%rsi), %rax
    1572. 

  1572.         mulq	16(%rsi)
    1573. 

  1573.         xorq	%r12, %r12
    1574. 

  1574.         addq	%rax, %r10
    1575. 

  1575.         adcq	%rdx, %r11
    1576. 

  1576.         adcq	$0x00, %r12
    1577. 

  1577.         #  A[1] * A[3]
    1578. 

  1578.         movq	8(%rsi), %rax
    1579. 

  1579.         mulq	24(%rsi)
    1580. 

  1580.         addq	%rax, %r11
    1581. 

  1581.         adcq	%rdx, %r12
    1582. 

  1582.         #  A[2] * A[3]
    1583. 

  1583.         movq	16(%rsi), %rax
    1584. 

  1584.         mulq	24(%rsi)
    1585. 

  1585.         xorq	%r13, %r13
    1586. 

  1586.         addq	%rax, %r12
    1587. 

  1587.         adcq	%rdx, %r13
    1588. 

  1588.         # Double
    1589. 

  1589.         xorq	%r14, %r14
    1590. 

  1590.         addq	%r8, %r8
    1591. 

  1591.         adcq	%r9, %r9
    1592. 

  1592.         adcq	%r10, %r10
    1593. 

  1593.         adcq	%r11, %r11
    1594. 

  1594.         adcq	%r12, %r12
    1595. 

  1595.         adcq	%r13, %r13
    1596. 

  1596.         adcq	$0x00, %r14
    1597. 

  1597.         #  A[0] * A[0]
    1598. 

  1598.         movq	(%rsi), %rax
    1599. 

  1599.         mulq	%rax
    1600. 

  1600.         movq	%rax, %rcx
    1601. 

  1601.         movq	%rdx, %r15
    1602. 

  1602.         #  A[1] * A[1]
    1603. 

  1603.         movq	8(%rsi), %rax
    1604. 

  1604.         mulq	%rax
    1605. 

  1605.         addq	%r15, %r8
    1606. 

  1606.         adcq	%rax, %r9
    1607. 

  1607.         adcq	$0x00, %rdx
    1608. 

  1608.         movq	%rdx, %r15
    1609. 

  1609.         #  A[2] * A[2]
    1610. 

  1610.         movq	16(%rsi), %rax
    1611. 

  1611.         mulq	%rax
    1612. 

  1612.         addq	%r15, %r10
    1613. 

  1613.         adcq	%rax, %r11
    1614. 

  1614.         adcq	$0x00, %rdx
    1615. 

  1615.         movq	%rdx, %r15
    1616. 

  1616.         #  A[3] * A[3]
    1617. 

  1617.         movq	24(%rsi), %rax
    1618. 

  1618.         mulq	%rax
    1619. 

  1619.         addq	%rax, %r13
    1620. 

  1620.         adcq	%rdx, %r14
    1621. 

  1621.         addq	%r15, %r12
    1622. 

  1622.         adcq	$0x00, %r13
    1623. 

  1623.         adcq	$0x00, %r14
    1624. 

  1624.         # Reduce
    1625. 

  1625.         movq	$0x7fffffffffffffff, %r15
    1626. 

  1626.         #  Move top half into t4-t7 and remove top bit from t3
    1627. 

  1627.         shldq	$0x01, %r13, %r14
    1628. 

  1628.         shldq	$0x01, %r12, %r13
    1629. 

  1629.         shldq	$0x01, %r11, %r12
    1630. 

  1630.         shldq	$0x01, %r10, %r11
    1631. 

  1631.         andq	%r15, %r10
    1632. 

  1632.         #  Multiply top half by 19
    1633. 

  1633.         movq	$19, %rax
    1634. 

  1634.         mulq	%r11
    1635. 

  1635.         xorq	%r11, %r11
    1636. 

  1636.         addq	%rax, %rcx
    1637. 

  1637.         movq	$19, %rax
    1638. 

  1638.         adcq	%rdx, %r11
    1639. 

  1639.         mulq	%r12
    1640. 

  1640.         xorq	%r12, %r12
    1641. 

  1641.         addq	%rax, %r8
    1642. 

  1642.         movq	$19, %rax
    1643. 

  1643.         adcq	%rdx, %r12
    1644. 

  1644.         mulq	%r13
    1645. 

  1645.         xorq	%r13, %r13
    1646. 

  1646.         addq	%rax, %r9
    1647. 

  1647.         movq	$19, %rax
    1648. 

  1648.         adcq	%rdx, %r13
    1649. 

  1649.         mulq	%r14
    1650. 

  1650.         #  Add remaining product results in
    1651. 

  1651.         addq	%r11, %r8
    1652. 

  1652.         adcq	%r12, %r9
    1653. 

  1653.         adcq	%r13, %r10
    1654. 

  1654.         adcq	%rax, %r10
    1655. 

  1655.         adcq	$0x00, %rdx
    1656. 

  1656.         #  Overflow
    1657. 

  1657.         shldq	$0x01, %r10, %rdx
    1658. 

  1658.         imulq	$19, %rdx, %rax
    1659. 

  1659.         andq	%r15, %r10
    1660. 

  1660.         addq	%rax, %rcx
    1661. 

  1661.         adcq	$0x00, %r8
    1662. 

  1662.         adcq	$0x00, %r9
    1663. 

  1663.         adcq	$0x00, %r10
    1664. 

  1664.         # Reduce if top bit set
    1665. 

  1665.         movq	%r10, %rdx
    1666. 

  1666.         sarq	$63, %rdx
    1667. 

  1667.         andq	$19, %rdx
    1668. 

  1668.         andq	%r15, %r10
    1669. 

  1669.         addq	%rdx, %rcx
    1670. 

  1670.         adcq	$0x00, %r8
    1671. 

  1671.         adcq	$0x00, %r9
    1672. 

  1672.         adcq	$0x00, %r10
    1673. 

  1673.         # Store
    1674. 

  1674.         movq	%rcx, (%rdi)
    1675. 

  1675.         movq	%r8, 8(%rdi)
    1676. 

  1676.         movq	%r9, 16(%rdi)
    1677. 

  1677.         movq	%r10, 24(%rdi)
    1678. 

  1678.         popq	%r15
    1679. 

  1679.         popq	%r14
    1680. 

  1680.         popq	%r13
    1681. 

  1681.         popq	%r12
    1682. 

  1682.         repz retq
    1683. 

  1683. #ifndef __APPLE__
    1684. 

  1684. .size	fe_sq_x64,.-fe_sq_x64
    1685. 

  1685. #endif /* __APPLE__ */
    1686. 

  1686. #ifndef __APPLE__
    1687. 

  1687. .text
    1688. 

  1688. .globl	fe_sq_n_x64
    1689. 

  1689. .type	fe_sq_n_x64,@function
    1690. 

  1690. .align	16
    1691. 

  1691. fe_sq_n_x64:
    1692. 

  1692. #else
    1693. 

  1693. .section	__TEXT,__text
    1694. 

  1694. .globl	_fe_sq_n_x64
    1695. 

  1695. .p2align	4
    1696. 

  1696. _fe_sq_n_x64:
    1697. 

  1697. #endif /* __APPLE__ */
    1698. 

  1698.         pushq	%r12
    1699. 

  1699.         pushq	%r13
    1700. 

  1700.         pushq	%r14
    1701. 

  1701.         pushq	%r15
    1702. 

  1702.         pushq	%rbx
    1703. 

  1703.         movq	%rdx, %rcx
    1704. 

  1704. L_fe_sq_n_x64:
    1705. 

  1705.         # Square
    1706. 

  1706.         #  A[0] * A[1]
    1707. 

  1707.         movq	(%rsi), %rax
    1708. 

  1708.         mulq	8(%rsi)
    1709. 

  1709.         movq	%rax, %r9
    1710. 

  1710.         movq	%rdx, %r10
    1711. 

  1711.         #  A[0] * A[2]
    1712. 

  1712.         movq	(%rsi), %rax
    1713. 

  1713.         mulq	16(%rsi)
    1714. 

  1714.         xorq	%r11, %r11
    1715. 

  1715.         addq	%rax, %r10
    1716. 

  1716.         adcq	%rdx, %r11
    1717. 

  1717.         #  A[0] * A[3]
    1718. 

  1718.         movq	(%rsi), %rax
    1719. 

  1719.         mulq	24(%rsi)
    1720. 

  1720.         xorq	%r12, %r12
    1721. 

  1721.         addq	%rax, %r11
    1722. 

  1722.         adcq	%rdx, %r12
    1723. 

  1723.         #  A[1] * A[2]
    1724. 

  1724.         movq	8(%rsi), %rax
    1725. 

  1725.         mulq	16(%rsi)
    1726. 

  1726.         xorq	%r13, %r13
    1727. 

  1727.         addq	%rax, %r11
    1728. 

  1728.         adcq	%rdx, %r12
    1729. 

  1729.         adcq	$0x00, %r13
    1730. 

  1730.         #  A[1] * A[3]
    1731. 

  1731.         movq	8(%rsi), %rax
    1732. 

  1732.         mulq	24(%rsi)
    1733. 

  1733.         addq	%rax, %r12
    1734. 

  1734.         adcq	%rdx, %r13
    1735. 

  1735.         #  A[2] * A[3]
    1736. 

  1736.         movq	16(%rsi), %rax
    1737. 

  1737.         mulq	24(%rsi)
    1738. 

  1738.         xorq	%r14, %r14
    1739. 

  1739.         addq	%rax, %r13
    1740. 

  1740.         adcq	%rdx, %r14
    1741. 

  1741.         # Double
    1742. 

  1742.         xorq	%r15, %r15
    1743. 

  1743.         addq	%r9, %r9
    1744. 

  1744.         adcq	%r10, %r10
    1745. 

  1745.         adcq	%r11, %r11
    1746. 

  1746.         adcq	%r12, %r12
    1747. 

  1747.         adcq	%r13, %r13
    1748. 

  1748.         adcq	%r14, %r14
    1749. 

  1749.         adcq	$0x00, %r15
    1750. 

  1750.         #  A[0] * A[0]
    1751. 

  1751.         movq	(%rsi), %rax
    1752. 

  1752.         mulq	%rax
    1753. 

  1753.         movq	%rax, %r8
    1754. 

  1754.         movq	%rdx, %rbx
    1755. 

  1755.         #  A[1] * A[1]
    1756. 

  1756.         movq	8(%rsi), %rax
    1757. 

  1757.         mulq	%rax
    1758. 

  1758.         addq	%rbx, %r9
    1759. 

  1759.         adcq	%rax, %r10
    1760. 

  1760.         adcq	$0x00, %rdx
    1761. 

  1761.         movq	%rdx, %rbx
    1762. 

  1762.         #  A[2] * A[2]
    1763. 

  1763.         movq	16(%rsi), %rax
    1764. 

  1764.         mulq	%rax
    1765. 

  1765.         addq	%rbx, %r11
    1766. 

  1766.         adcq	%rax, %r12
    1767. 

  1767.         adcq	$0x00, %rdx
    1768. 

  1768.         movq	%rdx, %rbx
    1769. 

  1769.         #  A[3] * A[3]
    1770. 

  1770.         movq	24(%rsi), %rax
    1771. 

  1771.         mulq	%rax
    1772. 

  1772.         addq	%rax, %r14
    1773. 

  1773.         adcq	%rdx, %r15
    1774. 

  1774.         addq	%rbx, %r13
    1775. 

  1775.         adcq	$0x00, %r14
    1776. 

  1776.         adcq	$0x00, %r15
    1777. 

  1777.         # Reduce
    1778. 

  1778.         movq	$0x7fffffffffffffff, %rbx
    1779. 

  1779.         #  Move top half into t4-t7 and remove top bit from t3
    1780. 

  1780.         shldq	$0x01, %r14, %r15
    1781. 

  1781.         shldq	$0x01, %r13, %r14
    1782. 

  1782.         shldq	$0x01, %r12, %r13
    1783. 

  1783.         shldq	$0x01, %r11, %r12
    1784. 

  1784.         andq	%rbx, %r11
    1785. 

  1785.         #  Multiply top half by 19
    1786. 

  1786.         movq	$19, %rax
    1787. 

  1787.         mulq	%r12
    1788. 

  1788.         xorq	%r12, %r12
    1789. 

  1789.         addq	%rax, %r8
    1790. 

  1790.         movq	$19, %rax
    1791. 

  1791.         adcq	%rdx, %r12
    1792. 

  1792.         mulq	%r13
    1793. 

  1793.         xorq	%r13, %r13
    1794. 

  1794.         addq	%rax, %r9
    1795. 

  1795.         movq	$19, %rax
    1796. 

  1796.         adcq	%rdx, %r13
    1797. 

  1797.         mulq	%r14
    1798. 

  1798.         xorq	%r14, %r14
    1799. 

  1799.         addq	%rax, %r10
    1800. 

  1800.         movq	$19, %rax
    1801. 

  1801.         adcq	%rdx, %r14
    1802. 

  1802.         mulq	%r15
    1803. 

  1803.         #  Add remaining product results in
    1804. 

  1804.         addq	%r12, %r9
    1805. 

  1805.         adcq	%r13, %r10
    1806. 

  1806.         adcq	%r14, %r11
    1807. 

  1807.         adcq	%rax, %r11
    1808. 

  1808.         adcq	$0x00, %rdx
    1809. 

  1809.         #  Overflow
    1810. 

  1810.         shldq	$0x01, %r11, %rdx
    1811. 

  1811.         imulq	$19, %rdx, %rax
    1812. 

  1812.         andq	%rbx, %r11
    1813. 

  1813.         addq	%rax, %r8
    1814. 

  1814.         adcq	$0x00, %r9
    1815. 

  1815.         adcq	$0x00, %r10
    1816. 

  1816.         adcq	$0x00, %r11
    1817. 

  1817.         # Reduce if top bit set
    1818. 

  1818.         movq	%r11, %rdx
    1819. 

  1819.         sarq	$63, %rdx
    1820. 

  1820.         andq	$19, %rdx
    1821. 

  1821.         andq	%rbx, %r11
    1822. 

  1822.         addq	%rdx, %r8
    1823. 

  1823.         adcq	$0x00, %r9
    1824. 

  1824.         adcq	$0x00, %r10
    1825. 

  1825.         adcq	$0x00, %r11
    1826. 

  1826.         # Store
    1827. 

  1827.         movq	%r8, (%rdi)
    1828. 

  1828.         movq	%r9, 8(%rdi)
    1829. 

  1829.         movq	%r10, 16(%rdi)
    1830. 

  1830.         movq	%r11, 24(%rdi)
    1831. 

  1831.         decb	%cl
    1832. 

  1832.         jnz	L_fe_sq_n_x64
    1833. 

  1833.         popq	%rbx
    1834. 

  1834.         popq	%r15
    1835. 

  1835.         popq	%r14
    1836. 

  1836.         popq	%r13
    1837. 

  1837.         popq	%r12
    1838. 

  1838.         repz retq
    1839. 

  1839. #ifndef __APPLE__
    1840. 

  1840. .size	fe_sq_n_x64,.-fe_sq_n_x64
    1841. 

  1841. #endif /* __APPLE__ */
    1842. 

  1842. #ifndef __APPLE__
    1843. 

  1843. .text
    1844. 

  1844. .globl	fe_mul121666_x64
    1845. 

  1845. .type	fe_mul121666_x64,@function
    1846. 

  1846. .align	16
    1847. 

  1847. fe_mul121666_x64:
    1848. 

  1848. #else
    1849. 

  1849. .section	__TEXT,__text
    1850. 

  1850. .globl	_fe_mul121666_x64
    1851. 

  1851. .p2align	4
    1852. 

  1852. _fe_mul121666_x64:
    1853. 

  1853. #endif /* __APPLE__ */
    1854. 

  1854.         pushq	%r12
    1855. 

  1855.         # Multiply by 121666
    1856. 

  1856.         movq	$0x1db42, %rax
    1857. 

  1857.         mulq	(%rsi)
    1858. 

  1858.         xorq	%r10, %r10
    1859. 

  1859.         movq	%rax, %r8
    1860. 

  1860.         movq	%rdx, %r9
    1861. 

  1861.         movq	$0x1db42, %rax
    1862. 

  1862.         mulq	8(%rsi)
    1863. 

  1863.         xorq	%r11, %r11
    1864. 

  1864.         addq	%rax, %r9
    1865. 

  1865.         adcq	%rdx, %r10
    1866. 

  1866.         movq	$0x1db42, %rax
    1867. 

  1867.         mulq	16(%rsi)
    1868. 

  1868.         xorq	%r12, %r12
    1869. 

  1869.         addq	%rax, %r10
    1870. 

  1870.         adcq	%rdx, %r11
    1871. 

  1871.         movq	$0x1db42, %rax
    1872. 

  1872.         mulq	24(%rsi)
    1873. 

  1873.         movq	$0x7fffffffffffffff, %rcx
    1874. 

  1874.         addq	%rax, %r11
    1875. 

  1875.         adcq	%rdx, %r12
    1876. 

  1876.         shldq	$0x01, %r11, %r12
    1877. 

  1877.         andq	%rcx, %r11
    1878. 

  1878.         movq	$19, %rax
    1879. 

  1879.         mulq	%r12
    1880. 

  1880.         addq	%rax, %r8
    1881. 

  1881.         adcq	$0x00, %r9
    1882. 

  1882.         adcq	$0x00, %r10
    1883. 

  1883.         adcq	$0x00, %r11
    1884. 

  1884.         movq	%r8, (%rdi)
    1885. 

  1885.         movq	%r9, 8(%rdi)
    1886. 

  1886.         movq	%r10, 16(%rdi)
    1887. 

  1887.         movq	%r11, 24(%rdi)
    1888. 

  1888.         popq	%r12
    1889. 

  1889.         repz retq
    1890. 

  1890. #ifndef __APPLE__
    1891. 

  1891. .size	fe_mul121666_x64,.-fe_mul121666_x64
    1892. 

  1892. #endif /* __APPLE__ */
    1893. 

  1893. #ifndef __APPLE__
    1894. 

  1894. .text
    1895. 

  1895. .globl	fe_sq2_x64
    1896. 

  1896. .type	fe_sq2_x64,@function
    1897. 

  1897. .align	16
    1898. 

  1898. fe_sq2_x64:
    1899. 

  1899. #else
    1900. 

  1900. .section	__TEXT,__text
    1901. 

  1901. .globl	_fe_sq2_x64
    1902. 

  1902. .p2align	4
    1903. 

  1903. _fe_sq2_x64:
    1904. 

  1904. #endif /* __APPLE__ */
    1905. 

  1905.         pushq	%r12
    1906. 

  1906.         pushq	%r13
    1907. 

  1907.         pushq	%r14
    1908. 

  1908.         pushq	%r15
    1909. 

  1909.         pushq	%rbx
    1910. 

  1910.         # Square * 2
    1911. 

  1911.         #  A[0] * A[1]
    1912. 

  1912.         movq	(%rsi), %rax
    1913. 

  1913.         mulq	8(%rsi)
    1914. 

  1914.         movq	%rax, %r8
    1915. 

  1915.         movq	%rdx, %r9
    1916. 

  1916.         #  A[0] * A[2]
    1917. 

  1917.         movq	(%rsi), %rax
    1918. 

  1918.         mulq	16(%rsi)
    1919. 

  1919.         xorq	%r10, %r10
    1920. 

  1920.         addq	%rax, %r9
    1921. 

  1921.         adcq	%rdx, %r10
    1922. 

  1922.         #  A[0] * A[3]
    1923. 

  1923.         movq	(%rsi), %rax
    1924. 

  1924.         mulq	24(%rsi)
    1925. 

  1925.         xorq	%r11, %r11
    1926. 

  1926.         addq	%rax, %r10
    1927. 

  1927.         adcq	%rdx, %r11
    1928. 

  1928.         #  A[1] * A[2]
    1929. 

  1929.         movq	8(%rsi), %rax
    1930. 

  1930.         mulq	16(%rsi)
    1931. 

  1931.         xorq	%r12, %r12
    1932. 

  1932.         addq	%rax, %r10
    1933. 

  1933.         adcq	%rdx, %r11
    1934. 

  1934.         adcq	$0x00, %r12
    1935. 

  1935.         #  A[1] * A[3]
    1936. 

  1936.         movq	8(%rsi), %rax
    1937. 

  1937.         mulq	24(%rsi)
    1938. 

  1938.         addq	%rax, %r11
    1939. 

  1939.         adcq	%rdx, %r12
    1940. 

  1940.         #  A[2] * A[3]
    1941. 

  1941.         movq	16(%rsi), %rax
    1942. 

  1942.         mulq	24(%rsi)
    1943. 

  1943.         xorq	%r13, %r13
    1944. 

  1944.         addq	%rax, %r12
    1945. 

  1945.         adcq	%rdx, %r13
    1946. 

  1946.         # Double
    1947. 

  1947.         xorq	%r14, %r14
    1948. 

  1948.         addq	%r8, %r8
    1949. 

  1949.         adcq	%r9, %r9
    1950. 

  1950.         adcq	%r10, %r10
    1951. 

  1951.         adcq	%r11, %r11
    1952. 

  1952.         adcq	%r12, %r12
    1953. 

  1953.         adcq	%r13, %r13
    1954. 

  1954.         adcq	$0x00, %r14
    1955. 

  1955.         #  A[0] * A[0]
    1956. 

  1956.         movq	(%rsi), %rax
    1957. 

  1957.         mulq	%rax
    1958. 

  1958.         movq	%rax, %rcx
    1959. 

  1959.         movq	%rdx, %r15
    1960. 

  1960.         #  A[1] * A[1]
    1961. 

  1961.         movq	8(%rsi), %rax
    1962. 

  1962.         mulq	%rax
    1963. 

  1963.         addq	%r15, %r8
    1964. 

  1964.         adcq	%rax, %r9
    1965. 

  1965.         adcq	$0x00, %rdx
    1966. 

  1966.         movq	%rdx, %r15
    1967. 

  1967.         #  A[2] * A[2]
    1968. 

  1968.         movq	16(%rsi), %rax
    1969. 

  1969.         mulq	%rax
    1970. 

  1970.         addq	%r15, %r10
    1971. 

  1971.         adcq	%rax, %r11
    1972. 

  1972.         adcq	$0x00, %rdx
    1973. 

  1973.         movq	%rdx, %r15
    1974. 

  1974.         #  A[3] * A[3]
    1975. 

  1975.         movq	24(%rsi), %rax
    1976. 

  1976.         mulq	%rax
    1977. 

  1977.         addq	%rax, %r13
    1978. 

  1978.         adcq	%rdx, %r14
    1979. 

  1979.         addq	%r15, %r12
    1980. 

  1980.         adcq	$0x00, %r13
    1981. 

  1981.         adcq	$0x00, %r14
    1982. 

  1982.         # Reduce
    1983. 

  1983.         movq	$0x7fffffffffffffff, %rbx
    1984. 

  1984.         xorq	%rax, %rax
    1985. 

  1985.         #  Move top half into t4-t7 and remove top bit from t3
    1986. 

  1986.         shldq	$3, %r14, %rax
    1987. 

  1987.         shldq	$2, %r13, %r14
    1988. 

  1988.         shldq	$2, %r12, %r13
    1989. 

  1989.         shldq	$2, %r11, %r12
    1990. 

  1990.         shldq	$2, %r10, %r11
    1991. 

  1991.         shldq	$0x01, %r9, %r10
    1992. 

  1992.         shldq	$0x01, %r8, %r9
    1993. 

  1993.         shldq	$0x01, %rcx, %r8
    1994. 

  1994.         shlq	$0x01, %rcx
    1995. 

  1995.         andq	%rbx, %r10
    1996. 

  1996.         #  Two out left, one in right
    1997. 

  1997.         andq	%rbx, %r14
    1998. 

  1998.         #  Multiply top bits by 19*19
    1999. 

  1999.         imulq	$0x169, %rax, %r15
    2000. 

  2000.         #  Multiply top half by 19
    2001. 

  2001.         movq	$19, %rax
    2002. 

  2002.         mulq	%r11
    2003. 

  2003.         xorq	%r11, %r11
    2004. 

  2004.         addq	%rax, %rcx
    2005. 

  2005.         movq	$19, %rax
    2006. 

  2006.         adcq	%rdx, %r11
    2007. 

  2007.         mulq	%r12
    2008. 

  2008.         xorq	%r12, %r12
    2009. 

  2009.         addq	%rax, %r8
    2010. 

  2010.         movq	$19, %rax
    2011. 

  2011.         adcq	%rdx, %r12
    2012. 

  2012.         mulq	%r13
    2013. 

  2013.         xorq	%r13, %r13
    2014. 

  2014.         addq	%rax, %r9
    2015. 

  2015.         movq	$19, %rax
    2016. 

  2016.         adcq	%rdx, %r13
    2017. 

  2017.         mulq	%r14
    2018. 

  2018.         #  Add remaining produce results in
    2019. 

  2019.         addq	%r15, %rcx
    2020. 

  2020.         adcq	%r11, %r8
    2021. 

  2021.         adcq	%r12, %r9
    2022. 

  2022.         adcq	%r13, %r10
    2023. 

  2023.         adcq	%rax, %r10
    2024. 

  2024.         adcq	$0x00, %rdx
    2025. 

  2025.         #  Overflow
    2026. 

  2026.         shldq	$0x01, %r10, %rdx
    2027. 

  2027.         imulq	$19, %rdx, %rax
    2028. 

  2028.         andq	%rbx, %r10
    2029. 

  2029.         addq	%rax, %rcx
    2030. 

  2030.         adcq	$0x00, %r8
    2031. 

  2031.         adcq	$0x00, %r9
    2032. 

  2032.         adcq	$0x00, %r10
    2033. 

  2033.         # Reduce if top bit set
    2034. 

  2034.         movq	%r10, %rdx
    2035. 

  2035.         sarq	$63, %rdx
    2036. 

  2036.         andq	$19, %rdx
    2037. 

  2037.         andq	%rbx, %r10
    2038. 

  2038.         addq	%rdx, %rcx
    2039. 

  2039.         adcq	$0x00, %r8
    2040. 

  2040.         adcq	$0x00, %r9
    2041. 

  2041.         adcq	$0x00, %r10
    2042. 

  2042.         # Store
    2043. 

  2043.         movq	%rcx, (%rdi)
    2044. 

  2044.         movq	%r8, 8(%rdi)
    2045. 

  2045.         movq	%r9, 16(%rdi)
    2046. 

  2046.         movq	%r10, 24(%rdi)
    2047. 

  2047.         popq	%rbx
    2048. 

  2048.         popq	%r15
    2049. 

  2049.         popq	%r14
    2050. 

  2050.         popq	%r13
    2051. 

  2051.         popq	%r12
    2052. 

  2052.         repz retq
    2053. 

  2053. #ifndef __APPLE__
    2054. 

  2054. .size	fe_sq2_x64,.-fe_sq2_x64
    2055. 

  2055. #endif /* __APPLE__ */
    2056. 

  2056. #ifndef __APPLE__
    2057. 

  2057. .text
    2058. 

  2058. .globl	fe_invert_x64
    2059. 

  2059. .type	fe_invert_x64,@function
    2060. 

  2060. .align	16
    2061. 

  2061. fe_invert_x64:
    2062. 

  2062. #else
    2063. 

  2063. .section	__TEXT,__text
    2064. 

  2064. .globl	_fe_invert_x64
    2065. 

  2065. .p2align	4
    2066. 

  2066. _fe_invert_x64:
    2067. 

  2067. #endif /* __APPLE__ */
    2068. 

  2068.         subq	$0x90, %rsp
    2069. 

  2069.         # Invert
    2070. 

  2070.         movq	%rdi, 128(%rsp)
    2071. 

  2071.         movq	%rsi, 136(%rsp)
    2072. 

  2072.         movq	%rsp, %rdi
    2073. 

  2073.         movq	136(%rsp), %rsi
    2074. 

  2074. #ifndef __APPLE__
    2075. 

  2075.         callq	fe_sq_x64@plt
    2076. 

  2076. #else
    2077. 

  2077.         callq	_fe_sq_x64
    2078. 

  2078. #endif /* __APPLE__ */
    2079. 

  2079.         leaq	32(%rsp), %rdi
    2080. 

  2080.         movq	%rsp, %rsi
    2081. 

  2081. #ifndef __APPLE__
    2082. 

  2082.         callq	fe_sq_x64@plt
    2083. 

  2083. #else
    2084. 

  2084.         callq	_fe_sq_x64
    2085. 

  2085. #endif /* __APPLE__ */
    2086. 

  2086.         leaq	32(%rsp), %rdi
    2087. 

  2087.         leaq	32(%rsp), %rsi
    2088. 

  2088. #ifndef __APPLE__
    2089. 

  2089.         callq	fe_sq_x64@plt
    2090. 

  2090. #else
    2091. 

  2091.         callq	_fe_sq_x64
    2092. 

  2092. #endif /* __APPLE__ */
    2093. 

  2093.         leaq	32(%rsp), %rdi
    2094. 

  2094.         movq	136(%rsp), %rsi
    2095. 

  2095.         leaq	32(%rsp), %rdx
    2096. 

  2096. #ifndef __APPLE__
    2097. 

  2097.         callq	fe_mul_x64@plt
    2098. 

  2098. #else
    2099. 

  2099.         callq	_fe_mul_x64
    2100. 

  2100. #endif /* __APPLE__ */
    2101. 

  2101.         movq	%rsp, %rdi
    2102. 

  2102.         movq	%rsp, %rsi
    2103. 

  2103.         leaq	32(%rsp), %rdx
    2104. 

  2104. #ifndef __APPLE__
    2105. 

  2105.         callq	fe_mul_x64@plt
    2106. 

  2106. #else
    2107. 

  2107.         callq	_fe_mul_x64
    2108. 

  2108. #endif /* __APPLE__ */
    2109. 

  2109.         leaq	64(%rsp), %rdi
    2110. 

  2110.         movq	%rsp, %rsi
    2111. 

  2111. #ifndef __APPLE__
    2112. 

  2112.         callq	fe_sq_x64@plt
    2113. 

  2113. #else
    2114. 

  2114.         callq	_fe_sq_x64
    2115. 

  2115. #endif /* __APPLE__ */
    2116. 

  2116.         leaq	32(%rsp), %rdi
    2117. 

  2117.         leaq	32(%rsp), %rsi
    2118. 

  2118.         leaq	64(%rsp), %rdx
    2119. 

  2119. #ifndef __APPLE__
    2120. 

  2120.         callq	fe_mul_x64@plt
    2121. 

  2121. #else
    2122. 

  2122.         callq	_fe_mul_x64
    2123. 

  2123. #endif /* __APPLE__ */
    2124. 

  2124.         leaq	64(%rsp), %rdi
    2125. 

  2125.         leaq	32(%rsp), %rsi
    2126. 

  2126. #ifndef __APPLE__
    2127. 

  2127.         callq	fe_sq_x64@plt
    2128. 

  2128. #else
    2129. 

  2129.         callq	_fe_sq_x64
    2130. 

  2130. #endif /* __APPLE__ */
    2131. 

  2131.         leaq	64(%rsp), %rdi
    2132. 

  2132.         leaq	64(%rsp), %rsi
    2133. 

  2133.         movq	$4, %rdx
    2134. 

  2134. #ifndef __APPLE__
    2135. 

  2135.         callq	fe_sq_n_x64@plt
    2136. 

  2136. #else
    2137. 

  2137.         callq	_fe_sq_n_x64
    2138. 

  2138. #endif /* __APPLE__ */
    2139. 

  2139.         leaq	32(%rsp), %rdi
    2140. 

  2140.         leaq	64(%rsp), %rsi
    2141. 

  2141.         leaq	32(%rsp), %rdx
    2142. 

  2142. #ifndef __APPLE__
    2143. 

  2143.         callq	fe_mul_x64@plt
    2144. 

  2144. #else
    2145. 

  2145.         callq	_fe_mul_x64
    2146. 

  2146. #endif /* __APPLE__ */
    2147. 

  2147.         leaq	64(%rsp), %rdi
    2148. 

  2148.         leaq	32(%rsp), %rsi
    2149. 

  2149. #ifndef __APPLE__
    2150. 

  2150.         callq	fe_sq_x64@plt
    2151. 

  2151. #else
    2152. 

  2152.         callq	_fe_sq_x64
    2153. 

  2153. #endif /* __APPLE__ */
    2154. 

  2154.         leaq	64(%rsp), %rdi
    2155. 

  2155.         leaq	64(%rsp), %rsi
    2156. 

  2156.         movq	$9, %rdx
    2157. 

  2157. #ifndef __APPLE__
    2158. 

  2158.         callq	fe_sq_n_x64@plt
    2159. 

  2159. #else
    2160. 

  2160.         callq	_fe_sq_n_x64
    2161. 

  2161. #endif /* __APPLE__ */
    2162. 

  2162.         leaq	64(%rsp), %rdi
    2163. 

  2163.         leaq	64(%rsp), %rsi
    2164. 

  2164.         leaq	32(%rsp), %rdx
    2165. 

  2165. #ifndef __APPLE__
    2166. 

  2166.         callq	fe_mul_x64@plt
    2167. 

  2167. #else
    2168. 

  2168.         callq	_fe_mul_x64
    2169. 

  2169. #endif /* __APPLE__ */
    2170. 

  2170.         leaq	96(%rsp), %rdi
    2171. 

  2171.         leaq	64(%rsp), %rsi
    2172. 

  2172. #ifndef __APPLE__
    2173. 

  2173.         callq	fe_sq_x64@plt
    2174. 

  2174. #else
    2175. 

  2175.         callq	_fe_sq_x64
    2176. 

  2176. #endif /* __APPLE__ */
    2177. 

  2177.         leaq	96(%rsp), %rdi
    2178. 

  2178.         leaq	96(%rsp), %rsi
    2179. 

  2179.         movq	$19, %rdx
    2180. 

  2180. #ifndef __APPLE__
    2181. 

  2181.         callq	fe_sq_n_x64@plt
    2182. 

  2182. #else
    2183. 

  2183.         callq	_fe_sq_n_x64
    2184. 

  2184. #endif /* __APPLE__ */
    2185. 

  2185.         leaq	64(%rsp), %rdi
    2186. 

  2186.         leaq	96(%rsp), %rsi
    2187. 

  2187.         leaq	64(%rsp), %rdx
    2188. 

  2188. #ifndef __APPLE__
    2189. 

  2189.         callq	fe_mul_x64@plt
    2190. 

  2190. #else
    2191. 

  2191.         callq	_fe_mul_x64
    2192. 

  2192. #endif /* __APPLE__ */
    2193. 

  2193.         leaq	64(%rsp), %rdi
    2194. 

  2194.         leaq	64(%rsp), %rsi
    2195. 

  2195. #ifndef __APPLE__
    2196. 

  2196.         callq	fe_sq_x64@plt
    2197. 

  2197. #else
    2198. 

  2198.         callq	_fe_sq_x64
    2199. 

  2199. #endif /* __APPLE__ */
    2200. 

  2200.         leaq	64(%rsp), %rdi
    2201. 

  2201.         leaq	64(%rsp), %rsi
    2202. 

  2202.         movq	$9, %rdx
    2203. 

  2203. #ifndef __APPLE__
    2204. 

  2204.         callq	fe_sq_n_x64@plt
    2205. 

  2205. #else
    2206. 

  2206.         callq	_fe_sq_n_x64
    2207. 

  2207. #endif /* __APPLE__ */
    2208. 

  2208.         leaq	32(%rsp), %rdi
    2209. 

  2209.         leaq	64(%rsp), %rsi
    2210. 

  2210.         leaq	32(%rsp), %rdx
    2211. 

  2211. #ifndef __APPLE__
    2212. 

  2212.         callq	fe_mul_x64@plt
    2213. 

  2213. #else
    2214. 

  2214.         callq	_fe_mul_x64
    2215. 

  2215. #endif /* __APPLE__ */
    2216. 

  2216.         leaq	64(%rsp), %rdi
    2217. 

  2217.         leaq	32(%rsp), %rsi
    2218. 

  2218. #ifndef __APPLE__
    2219. 

  2219.         callq	fe_sq_x64@plt
    2220. 

  2220. #else
    2221. 

  2221.         callq	_fe_sq_x64
    2222. 

  2222. #endif /* __APPLE__ */
    2223. 

  2223.         leaq	64(%rsp), %rdi
    2224. 

  2224.         leaq	64(%rsp), %rsi
    2225. 

  2225.         movq	$49, %rdx
    2226. 

  2226. #ifndef __APPLE__
    2227. 

  2227.         callq	fe_sq_n_x64@plt
    2228. 

  2228. #else
    2229. 

  2229.         callq	_fe_sq_n_x64
    2230. 

  2230. #endif /* __APPLE__ */
    2231. 

  2231.         leaq	64(%rsp), %rdi
    2232. 

  2232.         leaq	64(%rsp), %rsi
    2233. 

  2233.         leaq	32(%rsp), %rdx
    2234. 

  2234. #ifndef __APPLE__
    2235. 

  2235.         callq	fe_mul_x64@plt
    2236. 

  2236. #else
    2237. 

  2237.         callq	_fe_mul_x64
    2238. 

  2238. #endif /* __APPLE__ */
    2239. 

  2239.         leaq	96(%rsp), %rdi
    2240. 

  2240.         leaq	64(%rsp), %rsi
    2241. 

  2241. #ifndef __APPLE__
    2242. 

  2242.         callq	fe_sq_x64@plt
    2243. 

  2243. #else
    2244. 

  2244.         callq	_fe_sq_x64
    2245. 

  2245. #endif /* __APPLE__ */
    2246. 

  2246.         leaq	96(%rsp), %rdi
    2247. 

  2247.         leaq	96(%rsp), %rsi
    2248. 

  2248.         movq	$0x63, %rdx
    2249. 

  2249. #ifndef __APPLE__
    2250. 

  2250.         callq	fe_sq_n_x64@plt
    2251. 

  2251. #else
    2252. 

  2252.         callq	_fe_sq_n_x64
    2253. 

  2253. #endif /* __APPLE__ */
    2254. 

  2254.         leaq	64(%rsp), %rdi
    2255. 

  2255.         leaq	96(%rsp), %rsi
    2256. 

  2256.         leaq	64(%rsp), %rdx
    2257. 

  2257. #ifndef __APPLE__
    2258. 

  2258.         callq	fe_mul_x64@plt
    2259. 

  2259. #else
    2260. 

  2260.         callq	_fe_mul_x64
    2261. 

  2261. #endif /* __APPLE__ */
    2262. 

  2262.         leaq	64(%rsp), %rdi
    2263. 

  2263.         leaq	64(%rsp), %rsi
    2264. 

  2264. #ifndef __APPLE__
    2265. 

  2265.         callq	fe_sq_x64@plt
    2266. 

  2266. #else
    2267. 

  2267.         callq	_fe_sq_x64
    2268. 

  2268. #endif /* __APPLE__ */
    2269. 

  2269.         leaq	64(%rsp), %rdi
    2270. 

  2270.         leaq	64(%rsp), %rsi
    2271. 

  2271.         movq	$49, %rdx
    2272. 

  2272. #ifndef __APPLE__
    2273. 

  2273.         callq	fe_sq_n_x64@plt
    2274. 

  2274. #else
    2275. 

  2275.         callq	_fe_sq_n_x64
    2276. 

  2276. #endif /* __APPLE__ */
    2277. 

  2277.         leaq	32(%rsp), %rdi
    2278. 

  2278.         leaq	64(%rsp), %rsi
    2279. 

  2279.         leaq	32(%rsp), %rdx
    2280. 

  2280. #ifndef __APPLE__
    2281. 

  2281.         callq	fe_mul_x64@plt
    2282. 

  2282. #else
    2283. 

  2283.         callq	_fe_mul_x64
    2284. 

  2284. #endif /* __APPLE__ */
    2285. 

  2285.         leaq	32(%rsp), %rdi
    2286. 

  2286.         leaq	32(%rsp), %rsi
    2287. 

  2287. #ifndef __APPLE__
    2288. 

  2288.         callq	fe_sq_x64@plt
    2289. 

  2289. #else
    2290. 

  2290.         callq	_fe_sq_x64
    2291. 

  2291. #endif /* __APPLE__ */
    2292. 

  2292.         leaq	32(%rsp), %rdi
    2293. 

  2293.         leaq	32(%rsp), %rsi
    2294. 

  2294.         movq	$4, %rdx
    2295. 

  2295. #ifndef __APPLE__
    2296. 

  2296.         callq	fe_sq_n_x64@plt
    2297. 

  2297. #else
    2298. 

  2298.         callq	_fe_sq_n_x64
    2299. 

  2299. #endif /* __APPLE__ */
    2300. 

  2300.         movq	128(%rsp), %rdi
    2301. 

  2301.         leaq	32(%rsp), %rsi
    2302. 

  2302.         movq	%rsp, %rdx
    2303. 

  2303. #ifndef __APPLE__
    2304. 

  2304.         callq	fe_mul_x64@plt
    2305. 

  2305. #else
    2306. 

  2306.         callq	_fe_mul_x64
    2307. 

  2307. #endif /* __APPLE__ */
    2308. 

  2308.         movq	136(%rsp), %rsi
    2309. 

  2309.         movq	128(%rsp), %rdi
    2310. 

  2310.         addq	$0x90, %rsp
    2311. 

  2311.         repz retq
    2312. 

  2312. #ifndef __APPLE__
    2313. 

  2313. .text
    2314. 

  2314. .globl	curve25519_x64
    2315. 

  2315. .type	curve25519_x64,@function
    2316. 

  2316. .align	16
    2317. 

  2317. curve25519_x64:
    2318. 

  2318. #else
    2319. 

  2319. .section	__TEXT,__text
    2320. 

  2320. .globl	_curve25519_x64
    2321. 

  2321. .p2align	4
    2322. 

  2322. _curve25519_x64:
    2323. 

  2323. #endif /* __APPLE__ */
    2324. 

  2324.         pushq	%r12
    2325. 

  2325.         pushq	%r13
    2326. 

  2326.         pushq	%r14
    2327. 

  2327.         pushq	%r15
    2328. 

  2328.         pushq	%rbx
    2329. 

  2329.         pushq	%rbp
    2330. 

  2330.         movq	%rdx, %r8
    2331. 

  2331.         subq	$0xb8, %rsp
    2332. 

  2332.         xorq	%rbx, %rbx
    2333. 

  2333.         movq	%rdi, 176(%rsp)
    2334. 

  2334.         # Set one
    2335. 

  2335.         movq	$0x01, (%rdi)
    2336. 

  2336.         movq	$0x00, 8(%rdi)
    2337. 

  2337.         movq	$0x00, 16(%rdi)
    2338. 

  2338.         movq	$0x00, 24(%rdi)
    2339. 

  2339.         # Set zero
    2340. 

  2340.         movq	$0x00, (%rsp)
    2341. 

  2341.         movq	$0x00, 8(%rsp)
    2342. 

  2342.         movq	$0x00, 16(%rsp)
    2343. 

  2343.         movq	$0x00, 24(%rsp)
    2344. 

  2344.         # Set one
    2345. 

  2345.         movq	$0x01, 32(%rsp)
    2346. 

  2346.         movq	$0x00, 40(%rsp)
    2347. 

  2347.         movq	$0x00, 48(%rsp)
    2348. 

  2348.         movq	$0x00, 56(%rsp)
    2349. 

  2349.         # Copy
    2350. 

  2350.         movq	(%r8), %rcx
    2351. 

  2351.         movq	8(%r8), %r9
    2352. 

  2352.         movq	16(%r8), %r10
    2353. 

  2353.         movq	24(%r8), %r11
    2354. 

  2354.         movq	%rcx, 64(%rsp)
    2355. 

  2355.         movq	%r9, 72(%rsp)
    2356. 

  2356.         movq	%r10, 80(%rsp)
    2357. 

  2357.         movq	%r11, 88(%rsp)
    2358. 

  2358.         movb	$62, 168(%rsp)
    2359. 

  2359.         movq	$3, 160(%rsp)
    2360. 

  2360. L_curve25519_x64_words:
    2361. 

  2361. L_curve25519_x64_bits:
    2362. 

  2362.         movq	160(%rsp), %r9
    2363. 

  2363.         movb	168(%rsp), %cl
    2364. 

  2364.         movq	(%rsi,%r9,8), %rbp
    2365. 

  2365.         shrq	%cl, %rbp
    2366. 

  2366.         andq	$0x01, %rbp
    2367. 

  2367.         xorq	%rbp, %rbx
    2368. 

  2368.         negq	%rbx
    2369. 

  2369.         # Conditional Swap
    2370. 

  2370.         movq	(%rdi), %rcx
    2371. 

  2371.         movq	8(%rdi), %r9
    2372. 

  2372.         movq	16(%rdi), %r10
    2373. 

  2373.         movq	24(%rdi), %r11
    2374. 

  2374.         xorq	64(%rsp), %rcx
    2375. 

  2375.         xorq	72(%rsp), %r9
    2376. 

  2376.         xorq	80(%rsp), %r10
    2377. 

  2377.         xorq	88(%rsp), %r11
    2378. 

  2378.         andq	%rbx, %rcx
    2379. 

  2379.         andq	%rbx, %r9
    2380. 

  2380.         andq	%rbx, %r10
    2381. 

  2381.         andq	%rbx, %r11
    2382. 

  2382.         xorq	%rcx, (%rdi)
    2383. 

  2383.         xorq	%r9, 8(%rdi)
    2384. 

  2384.         xorq	%r10, 16(%rdi)
    2385. 

  2385.         xorq	%r11, 24(%rdi)
    2386. 

  2386.         xorq	%rcx, 64(%rsp)
    2387. 

  2387.         xorq	%r9, 72(%rsp)
    2388. 

  2388.         xorq	%r10, 80(%rsp)
    2389. 

  2389.         xorq	%r11, 88(%rsp)
    2390. 

  2390.         # Conditional Swap
    2391. 

  2391.         movq	(%rsp), %rcx
    2392. 

  2392.         movq	8(%rsp), %r9
    2393. 

  2393.         movq	16(%rsp), %r10
    2394. 

  2394.         movq	24(%rsp), %r11
    2395. 

  2395.         xorq	32(%rsp), %rcx
    2396. 

  2396.         xorq	40(%rsp), %r9
    2397. 

  2397.         xorq	48(%rsp), %r10
    2398. 

  2398.         xorq	56(%rsp), %r11
    2399. 

  2399.         andq	%rbx, %rcx
    2400. 

  2400.         andq	%rbx, %r9
    2401. 

  2401.         andq	%rbx, %r10
    2402. 

  2402.         andq	%rbx, %r11
    2403. 

  2403.         xorq	%rcx, (%rsp)
    2404. 

  2404.         xorq	%r9, 8(%rsp)
    2405. 

  2405.         xorq	%r10, 16(%rsp)
    2406. 

  2406.         xorq	%r11, 24(%rsp)
    2407. 

  2407.         xorq	%rcx, 32(%rsp)
    2408. 

  2408.         xorq	%r9, 40(%rsp)
    2409. 

  2409.         xorq	%r10, 48(%rsp)
    2410. 

  2410.         xorq	%r11, 56(%rsp)
    2411. 

  2411.         movq	%rbp, %rbx
    2412. 

  2412.         # Add
    2413. 

  2413.         movq	(%rdi), %rcx
    2414. 

  2414.         movq	8(%rdi), %r9
    2415. 

  2415.         movq	16(%rdi), %r10
    2416. 

  2416.         movq	24(%rdi), %rbp
    2417. 

  2417.         movq	%rcx, %r12
    2418. 

  2418.         addq	(%rsp), %rcx
    2419. 

  2419.         movq	%r9, %r13
    2420. 

  2420.         adcq	8(%rsp), %r9
    2421. 

  2421.         movq	%r10, %r14
    2422. 

  2422.         adcq	16(%rsp), %r10
    2423. 

  2423.         movq	%rbp, %r15
    2424. 

  2424.         adcq	24(%rsp), %rbp
    2425. 

  2425.         movq	$-19, %rax
    2426. 

  2426.         movq	%rbp, %r11
    2427. 

  2427.         movq	$0x7fffffffffffffff, %rdx
    2428. 

  2428.         sarq	$63, %rbp
    2429. 

  2429.         #   Mask the modulus
    2430. 

  2430.         andq	%rbp, %rax
    2431. 

  2431.         andq	%rbp, %rdx
    2432. 

  2432.         #   Sub modulus (if overflow)
    2433. 

  2433.         subq	%rax, %rcx
    2434. 

  2434.         sbbq	%rbp, %r9
    2435. 

  2435.         sbbq	%rbp, %r10
    2436. 

  2436.         sbbq	%rdx, %r11
    2437. 

  2437.         # Sub
    2438. 

  2438.         subq	(%rsp), %r12
    2439. 

  2439.         movq	$0x00, %rbp
    2440. 

  2440.         sbbq	8(%rsp), %r13
    2441. 

  2441.         movq	$-19, %rax
    2442. 

  2442.         sbbq	16(%rsp), %r14
    2443. 

  2443.         movq	$0x7fffffffffffffff, %rdx
    2444. 

  2444.         sbbq	24(%rsp), %r15
    2445. 

  2445.         sbbq	$0x00, %rbp
    2446. 

  2446.         #   Mask the modulus
    2447. 

  2447.         andq	%rbp, %rax
    2448. 

  2448.         andq	%rbp, %rdx
    2449. 

  2449.         #   Add modulus (if underflow)
    2450. 

  2450.         addq	%rax, %r12
    2451. 

  2451.         adcq	%rbp, %r13
    2452. 

  2452.         adcq	%rbp, %r14
    2453. 

  2453.         adcq	%rdx, %r15
    2454. 

  2454.         movq	%rcx, (%rdi)
    2455. 

  2455.         movq	%r9, 8(%rdi)
    2456. 

  2456.         movq	%r10, 16(%rdi)
    2457. 

  2457.         movq	%r11, 24(%rdi)
    2458. 

  2458.         movq	%r12, 128(%rsp)
    2459. 

  2459.         movq	%r13, 136(%rsp)
    2460. 

  2460.         movq	%r14, 144(%rsp)
    2461. 

  2461.         movq	%r15, 152(%rsp)
    2462. 

  2462.         # Add
    2463. 

  2463.         movq	64(%rsp), %rcx
    2464. 

  2464.         movq	72(%rsp), %r9
    2465. 

  2465.         movq	80(%rsp), %r10
    2466. 

  2466.         movq	88(%rsp), %rbp
    2467. 

  2467.         movq	%rcx, %r12
    2468. 

  2468.         addq	32(%rsp), %rcx
    2469. 

  2469.         movq	%r9, %r13
    2470. 

  2470.         adcq	40(%rsp), %r9
    2471. 

  2471.         movq	%r10, %r14
    2472. 

  2472.         adcq	48(%rsp), %r10
    2473. 

  2473.         movq	%rbp, %r15
    2474. 

  2474.         adcq	56(%rsp), %rbp
    2475. 

  2475.         movq	$-19, %rax
    2476. 

  2476.         movq	%rbp, %r11
    2477. 

  2477.         movq	$0x7fffffffffffffff, %rdx
    2478. 

  2478.         sarq	$63, %rbp
    2479. 

  2479.         #   Mask the modulus
    2480. 

  2480.         andq	%rbp, %rax
    2481. 

  2481.         andq	%rbp, %rdx
    2482. 

  2482.         #   Sub modulus (if overflow)
    2483. 

  2483.         subq	%rax, %rcx
    2484. 

  2484.         sbbq	%rbp, %r9
    2485. 

  2485.         sbbq	%rbp, %r10
    2486. 

  2486.         sbbq	%rdx, %r11
    2487. 

  2487.         # Sub
    2488. 

  2488.         subq	32(%rsp), %r12
    2489. 

  2489.         movq	$0x00, %rbp
    2490. 

  2490.         sbbq	40(%rsp), %r13
    2491. 

  2491.         movq	$-19, %rax
    2492. 

  2492.         sbbq	48(%rsp), %r14
    2493. 

  2493.         movq	$0x7fffffffffffffff, %rdx
    2494. 

  2494.         sbbq	56(%rsp), %r15
    2495. 

  2495.         sbbq	$0x00, %rbp
    2496. 

  2496.         #   Mask the modulus
    2497. 

  2497.         andq	%rbp, %rax
    2498. 

  2498.         andq	%rbp, %rdx
    2499. 

  2499.         #   Add modulus (if underflow)
    2500. 

  2500.         addq	%rax, %r12
    2501. 

  2501.         adcq	%rbp, %r13
    2502. 

  2502.         adcq	%rbp, %r14
    2503. 

  2503.         adcq	%rdx, %r15
    2504. 

  2504.         movq	%rcx, (%rsp)
    2505. 

  2505.         movq	%r9, 8(%rsp)
    2506. 

  2506.         movq	%r10, 16(%rsp)
    2507. 

  2507.         movq	%r11, 24(%rsp)
    2508. 

  2508.         movq	%r12, 96(%rsp)
    2509. 

  2509.         movq	%r13, 104(%rsp)
    2510. 

  2510.         movq	%r14, 112(%rsp)
    2511. 

  2511.         movq	%r15, 120(%rsp)
    2512. 

  2512.         # Multiply
    2513. 

  2513.         #  A[0] * B[0]
    2514. 

  2514.         movq	(%rdi), %rax
    2515. 

  2515.         mulq	96(%rsp)
    2516. 

  2516.         movq	%rax, %rcx
    2517. 

  2517.         movq	%rdx, %r9
    2518. 

  2518.         #  A[0] * B[1]
    2519. 

  2519.         movq	8(%rdi), %rax
    2520. 

  2520.         mulq	96(%rsp)
    2521. 

  2521.         xorq	%r10, %r10
    2522. 

  2522.         addq	%rax, %r9
    2523. 

  2523.         adcq	%rdx, %r10
    2524. 

  2524.         #  A[1] * B[0]
    2525. 

  2525.         movq	(%rdi), %rax
    2526. 

  2526.         mulq	104(%rsp)
    2527. 

  2527.         xorq	%r11, %r11
    2528. 

  2528.         addq	%rax, %r9
    2529. 

  2529.         adcq	%rdx, %r10
    2530. 

  2530.         adcq	$0x00, %r11
    2531. 

  2531.         #  A[0] * B[2]
    2532. 

  2532.         movq	16(%rdi), %rax
    2533. 

  2533.         mulq	96(%rsp)
    2534. 

  2534.         addq	%rax, %r10
    2535. 

  2535.         adcq	%rdx, %r11
    2536. 

  2536.         #  A[1] * B[1]
    2537. 

  2537.         movq	8(%rdi), %rax
    2538. 

  2538.         mulq	104(%rsp)
    2539. 

  2539.         xorq	%r12, %r12
    2540. 

  2540.         addq	%rax, %r10
    2541. 

  2541.         adcq	%rdx, %r11
    2542. 

  2542.         adcq	$0x00, %r12
    2543. 

  2543.         #  A[2] * B[0]
    2544. 

  2544.         movq	(%rdi), %rax
    2545. 

  2545.         mulq	112(%rsp)
    2546. 

  2546.         addq	%rax, %r10
    2547. 

  2547.         adcq	%rdx, %r11
    2548. 

  2548.         adcq	$0x00, %r12
    2549. 

  2549.         #  A[0] * B[3]
    2550. 

  2550.         movq	24(%rdi), %rax
    2551. 

  2551.         mulq	96(%rsp)
    2552. 

  2552.         xorq	%r13, %r13
    2553. 

  2553.         addq	%rax, %r11
    2554. 

  2554.         adcq	%rdx, %r12
    2555. 

  2555.         adcq	$0x00, %r13
    2556. 

  2556.         #  A[1] * B[2]
    2557. 

  2557.         movq	16(%rdi), %rax
    2558. 

  2558.         mulq	104(%rsp)
    2559. 

  2559.         addq	%rax, %r11
    2560. 

  2560.         adcq	%rdx, %r12
    2561. 

  2561.         adcq	$0x00, %r13
    2562. 

  2562.         #  A[2] * B[1]
    2563. 

  2563.         movq	8(%rdi), %rax
    2564. 

  2564.         mulq	112(%rsp)
    2565. 

  2565.         addq	%rax, %r11
    2566. 

  2566.         adcq	%rdx, %r12
    2567. 

  2567.         adcq	$0x00, %r13
    2568. 

  2568.         #  A[3] * B[0]
    2569. 

  2569.         movq	(%rdi), %rax
    2570. 

  2570.         mulq	120(%rsp)
    2571. 

  2571.         addq	%rax, %r11
    2572. 

  2572.         adcq	%rdx, %r12
    2573. 

  2573.         adcq	$0x00, %r13
    2574. 

  2574.         #  A[1] * B[3]
    2575. 

  2575.         movq	24(%rdi), %rax
    2576. 

  2576.         mulq	104(%rsp)
    2577. 

  2577.         xorq	%r14, %r14
    2578. 

  2578.         addq	%rax, %r12
    2579. 

  2579.         adcq	%rdx, %r13
    2580. 

  2580.         adcq	$0x00, %r14
    2581. 

  2581.         #  A[2] * B[2]
    2582. 

  2582.         movq	16(%rdi), %rax
    2583. 

  2583.         mulq	112(%rsp)
    2584. 

  2584.         addq	%rax, %r12
    2585. 

  2585.         adcq	%rdx, %r13
    2586. 

  2586.         adcq	$0x00, %r14
    2587. 

  2587.         #  A[3] * B[1]
    2588. 

  2588.         movq	8(%rdi), %rax
    2589. 

  2589.         mulq	120(%rsp)
    2590. 

  2590.         addq	%rax, %r12
    2591. 

  2591.         adcq	%rdx, %r13
    2592. 

  2592.         adcq	$0x00, %r14
    2593. 

  2593.         #  A[2] * B[3]
    2594. 

  2594.         movq	24(%rdi), %rax
    2595. 

  2595.         mulq	112(%rsp)
    2596. 

  2596.         xorq	%r15, %r15
    2597. 

  2597.         addq	%rax, %r13
    2598. 

  2598.         adcq	%rdx, %r14
    2599. 

  2599.         adcq	$0x00, %r15
    2600. 

  2600.         #  A[3] * B[2]
    2601. 

  2601.         movq	16(%rdi), %rax
    2602. 

  2602.         mulq	120(%rsp)
    2603. 

  2603.         addq	%rax, %r13
    2604. 

  2604.         adcq	%rdx, %r14
    2605. 

  2605.         adcq	$0x00, %r15
    2606. 

  2606.         #  A[3] * B[3]
    2607. 

  2607.         movq	24(%rdi), %rax
    2608. 

  2608.         mulq	120(%rsp)
    2609. 

  2609.         addq	%rax, %r14
    2610. 

  2610.         adcq	%rdx, %r15
    2611. 

  2611.         # Reduce
    2612. 

  2612.         movq	$0x7fffffffffffffff, %rbp
    2613. 

  2613.         #  Move top half into t4-t7 and remove top bit from t3
    2614. 

  2614.         shldq	$0x01, %r14, %r15
    2615. 

  2615.         shldq	$0x01, %r13, %r14
    2616. 

  2616.         shldq	$0x01, %r12, %r13
    2617. 

  2617.         shldq	$0x01, %r11, %r12
    2618. 

  2618.         andq	%rbp, %r11
    2619. 

  2619.         #  Multiply top half by 19
    2620. 

  2620.         movq	$19, %rax
    2621. 

  2621.         mulq	%r12
    2622. 

  2622.         xorq	%r12, %r12
    2623. 

  2623.         addq	%rax, %rcx
    2624. 

  2624.         movq	$19, %rax
    2625. 

  2625.         adcq	%rdx, %r12
    2626. 

  2626.         mulq	%r13
    2627. 

  2627.         xorq	%r13, %r13
    2628. 

  2628.         addq	%rax, %r9
    2629. 

  2629.         movq	$19, %rax
    2630. 

  2630.         adcq	%rdx, %r13
    2631. 

  2631.         mulq	%r14
    2632. 

  2632.         xorq	%r14, %r14
    2633. 

  2633.         addq	%rax, %r10
    2634. 

  2634.         movq	$19, %rax
    2635. 

  2635.         adcq	%rdx, %r14
    2636. 

  2636.         mulq	%r15
    2637. 

  2637.         #  Add remaining product results in
    2638. 

  2638.         addq	%r12, %r9
    2639. 

  2639.         adcq	%r13, %r10
    2640. 

  2640.         adcq	%r14, %r11
    2641. 

  2641.         adcq	%rax, %r11
    2642. 

  2642.         adcq	$0x00, %rdx
    2643. 

  2643.         #  Overflow
    2644. 

  2644.         shldq	$0x01, %r11, %rdx
    2645. 

  2645.         imulq	$19, %rdx, %rax
    2646. 

  2646.         andq	%rbp, %r11
    2647. 

  2647.         addq	%rax, %rcx
    2648. 

  2648.         adcq	$0x00, %r9
    2649. 

  2649.         adcq	$0x00, %r10
    2650. 

  2650.         adcq	$0x00, %r11
    2651. 

  2651.         # Reduce if top bit set
    2652. 

  2652.         movq	%r11, %rdx
    2653. 

  2653.         sarq	$63, %rdx
    2654. 

  2654.         andq	$19, %rdx
    2655. 

  2655.         andq	%rbp, %r11
    2656. 

  2656.         addq	%rdx, %rcx
    2657. 

  2657.         adcq	$0x00, %r9
    2658. 

  2658.         adcq	$0x00, %r10
    2659. 

  2659.         adcq	$0x00, %r11
    2660. 

  2660.         # Store
    2661. 

  2661.         movq	%rcx, 32(%rsp)
    2662. 

  2662.         movq	%r9, 40(%rsp)
    2663. 

  2663.         movq	%r10, 48(%rsp)
    2664. 

  2664.         movq	%r11, 56(%rsp)
    2665. 

  2665.         # Multiply
    2666. 

  2666.         #  A[0] * B[0]
    2667. 

  2667.         movq	128(%rsp), %rax
    2668. 

  2668.         mulq	(%rsp)
    2669. 

  2669.         movq	%rax, %rcx
    2670. 

  2670.         movq	%rdx, %r9
    2671. 

  2671.         #  A[0] * B[1]
    2672. 

  2672.         movq	136(%rsp), %rax
    2673. 

  2673.         mulq	(%rsp)
    2674. 

  2674.         xorq	%r10, %r10
    2675. 

  2675.         addq	%rax, %r9
    2676. 

  2676.         adcq	%rdx, %r10
    2677. 

  2677.         #  A[1] * B[0]
    2678. 

  2678.         movq	128(%rsp), %rax
    2679. 

  2679.         mulq	8(%rsp)
    2680. 

  2680.         xorq	%r11, %r11
    2681. 

  2681.         addq	%rax, %r9
    2682. 

  2682.         adcq	%rdx, %r10
    2683. 

  2683.         adcq	$0x00, %r11
    2684. 

  2684.         #  A[0] * B[2]
    2685. 

  2685.         movq	144(%rsp), %rax
    2686. 

  2686.         mulq	(%rsp)
    2687. 

  2687.         addq	%rax, %r10
    2688. 

  2688.         adcq	%rdx, %r11
    2689. 

  2689.         #  A[1] * B[1]
    2690. 

  2690.         movq	136(%rsp), %rax
    2691. 

  2691.         mulq	8(%rsp)
    2692. 

  2692.         xorq	%r12, %r12
    2693. 

  2693.         addq	%rax, %r10
    2694. 

  2694.         adcq	%rdx, %r11
    2695. 

  2695.         adcq	$0x00, %r12
    2696. 

  2696.         #  A[2] * B[0]
    2697. 

  2697.         movq	128(%rsp), %rax
    2698. 

  2698.         mulq	16(%rsp)
    2699. 

  2699.         addq	%rax, %r10
    2700. 

  2700.         adcq	%rdx, %r11
    2701. 

  2701.         adcq	$0x00, %r12
    2702. 

  2702.         #  A[0] * B[3]
    2703. 

  2703.         movq	152(%rsp), %rax
    2704. 

  2704.         mulq	(%rsp)
    2705. 

  2705.         xorq	%r13, %r13
    2706. 

  2706.         addq	%rax, %r11
    2707. 

  2707.         adcq	%rdx, %r12
    2708. 

  2708.         adcq	$0x00, %r13
    2709. 

  2709.         #  A[1] * B[2]
    2710. 

  2710.         movq	144(%rsp), %rax
    2711. 

  2711.         mulq	8(%rsp)
    2712. 

  2712.         addq	%rax, %r11
    2713. 

  2713.         adcq	%rdx, %r12
    2714. 

  2714.         adcq	$0x00, %r13
    2715. 

  2715.         #  A[2] * B[1]
    2716. 

  2716.         movq	136(%rsp), %rax
    2717. 

  2717.         mulq	16(%rsp)
    2718. 

  2718.         addq	%rax, %r11
    2719. 

  2719.         adcq	%rdx, %r12
    2720. 

  2720.         adcq	$0x00, %r13
    2721. 

  2721.         #  A[3] * B[0]
    2722. 

  2722.         movq	128(%rsp), %rax
    2723. 

  2723.         mulq	24(%rsp)
    2724. 

  2724.         addq	%rax, %r11
    2725. 

  2725.         adcq	%rdx, %r12
    2726. 

  2726.         adcq	$0x00, %r13
    2727. 

  2727.         #  A[1] * B[3]
    2728. 

  2728.         movq	152(%rsp), %rax
    2729. 

  2729.         mulq	8(%rsp)
    2730. 

  2730.         xorq	%r14, %r14
    2731. 

  2731.         addq	%rax, %r12
    2732. 

  2732.         adcq	%rdx, %r13
    2733. 

  2733.         adcq	$0x00, %r14
    2734. 

  2734.         #  A[2] * B[2]
    2735. 

  2735.         movq	144(%rsp), %rax
    2736. 

  2736.         mulq	16(%rsp)
    2737. 

  2737.         addq	%rax, %r12
    2738. 

  2738.         adcq	%rdx, %r13
    2739. 

  2739.         adcq	$0x00, %r14
    2740. 

  2740.         #  A[3] * B[1]
    2741. 

  2741.         movq	136(%rsp), %rax
    2742. 

  2742.         mulq	24(%rsp)
    2743. 

  2743.         addq	%rax, %r12
    2744. 

  2744.         adcq	%rdx, %r13
    2745. 

  2745.         adcq	$0x00, %r14
    2746. 

  2746.         #  A[2] * B[3]
    2747. 

  2747.         movq	152(%rsp), %rax
    2748. 

  2748.         mulq	16(%rsp)
    2749. 

  2749.         xorq	%r15, %r15
    2750. 

  2750.         addq	%rax, %r13
    2751. 

  2751.         adcq	%rdx, %r14
    2752. 

  2752.         adcq	$0x00, %r15
    2753. 

  2753.         #  A[3] * B[2]
    2754. 

  2754.         movq	144(%rsp), %rax
    2755. 

  2755.         mulq	24(%rsp)
    2756. 

  2756.         addq	%rax, %r13
    2757. 

  2757.         adcq	%rdx, %r14
    2758. 

  2758.         adcq	$0x00, %r15
    2759. 

  2759.         #  A[3] * B[3]
    2760. 

  2760.         movq	152(%rsp), %rax
    2761. 

  2761.         mulq	24(%rsp)
    2762. 

  2762.         addq	%rax, %r14
    2763. 

  2763.         adcq	%rdx, %r15
    2764. 

  2764.         # Reduce
    2765. 

  2765.         movq	$0x7fffffffffffffff, %rbp
    2766. 

  2766.         #  Move top half into t4-t7 and remove top bit from t3
    2767. 

  2767.         shldq	$0x01, %r14, %r15
    2768. 

  2768.         shldq	$0x01, %r13, %r14
    2769. 

  2769.         shldq	$0x01, %r12, %r13
    2770. 

  2770.         shldq	$0x01, %r11, %r12
    2771. 

  2771.         andq	%rbp, %r11
    2772. 

  2772.         #  Multiply top half by 19
    2773. 

  2773.         movq	$19, %rax
    2774. 

  2774.         mulq	%r12
    2775. 

  2775.         xorq	%r12, %r12
    2776. 

  2776.         addq	%rax, %rcx
    2777. 

  2777.         movq	$19, %rax
    2778. 

  2778.         adcq	%rdx, %r12
    2779. 

  2779.         mulq	%r13
    2780. 

  2780.         xorq	%r13, %r13
    2781. 

  2781.         addq	%rax, %r9
    2782. 

  2782.         movq	$19, %rax
    2783. 

  2783.         adcq	%rdx, %r13
    2784. 

  2784.         mulq	%r14
    2785. 

  2785.         xorq	%r14, %r14
    2786. 

  2786.         addq	%rax, %r10
    2787. 

  2787.         movq	$19, %rax
    2788. 

  2788.         adcq	%rdx, %r14
    2789. 

  2789.         mulq	%r15
    2790. 

  2790.         #  Add remaining product results in
    2791. 

  2791.         addq	%r12, %r9
    2792. 

  2792.         adcq	%r13, %r10
    2793. 

  2793.         adcq	%r14, %r11
    2794. 

  2794.         adcq	%rax, %r11
    2795. 

  2795.         adcq	$0x00, %rdx
    2796. 

  2796.         #  Overflow
    2797. 

  2797.         shldq	$0x01, %r11, %rdx
    2798. 

  2798.         imulq	$19, %rdx, %rax
    2799. 

  2799.         andq	%rbp, %r11
    2800. 

  2800.         addq	%rax, %rcx
    2801. 

  2801.         adcq	$0x00, %r9
    2802. 

  2802.         adcq	$0x00, %r10
    2803. 

  2803.         adcq	$0x00, %r11
    2804. 

  2804.         # Reduce if top bit set
    2805. 

  2805.         movq	%r11, %rdx
    2806. 

  2806.         sarq	$63, %rdx
    2807. 

  2807.         andq	$19, %rdx
    2808. 

  2808.         andq	%rbp, %r11
    2809. 

  2809.         addq	%rdx, %rcx
    2810. 

  2810.         adcq	$0x00, %r9
    2811. 

  2811.         adcq	$0x00, %r10
    2812. 

  2812.         adcq	$0x00, %r11
    2813. 

  2813.         # Store
    2814. 

  2814.         movq	%rcx, (%rsp)
    2815. 

  2815.         movq	%r9, 8(%rsp)
    2816. 

  2816.         movq	%r10, 16(%rsp)
    2817. 

  2817.         movq	%r11, 24(%rsp)
    2818. 

  2818.         # Square
    2819. 

  2819.         #  A[0] * A[1]
    2820. 

  2820.         movq	128(%rsp), %rax
    2821. 

  2821.         mulq	136(%rsp)
    2822. 

  2822.         movq	%rax, %r9
    2823. 

  2823.         movq	%rdx, %r10
    2824. 

  2824.         #  A[0] * A[2]
    2825. 

  2825.         movq	128(%rsp), %rax
    2826. 

  2826.         mulq	144(%rsp)
    2827. 

  2827.         xorq	%r11, %r11
    2828. 

  2828.         addq	%rax, %r10
    2829. 

  2829.         adcq	%rdx, %r11
    2830. 

  2830.         #  A[0] * A[3]
    2831. 

  2831.         movq	128(%rsp), %rax
    2832. 

  2832.         mulq	152(%rsp)
    2833. 

  2833.         xorq	%r12, %r12
    2834. 

  2834.         addq	%rax, %r11
    2835. 

  2835.         adcq	%rdx, %r12
    2836. 

  2836.         #  A[1] * A[2]
    2837. 

  2837.         movq	136(%rsp), %rax
    2838. 

  2838.         mulq	144(%rsp)
    2839. 

  2839.         xorq	%r13, %r13
    2840. 

  2840.         addq	%rax, %r11
    2841. 

  2841.         adcq	%rdx, %r12
    2842. 

  2842.         adcq	$0x00, %r13
    2843. 

  2843.         #  A[1] * A[3]
    2844. 

  2844.         movq	136(%rsp), %rax
    2845. 

  2845.         mulq	152(%rsp)
    2846. 

  2846.         addq	%rax, %r12
    2847. 

  2847.         adcq	%rdx, %r13
    2848. 

  2848.         #  A[2] * A[3]
    2849. 

  2849.         movq	144(%rsp), %rax
    2850. 

  2850.         mulq	152(%rsp)
    2851. 

  2851.         xorq	%r14, %r14
    2852. 

  2852.         addq	%rax, %r13
    2853. 

  2853.         adcq	%rdx, %r14
    2854. 

  2854.         # Double
    2855. 

  2855.         xorq	%r15, %r15
    2856. 

  2856.         addq	%r9, %r9
    2857. 

  2857.         adcq	%r10, %r10
    2858. 

  2858.         adcq	%r11, %r11
    2859. 

  2859.         adcq	%r12, %r12
    2860. 

  2860.         adcq	%r13, %r13
    2861. 

  2861.         adcq	%r14, %r14
    2862. 

  2862.         adcq	$0x00, %r15
    2863. 

  2863.         #  A[0] * A[0]
    2864. 

  2864.         movq	128(%rsp), %rax
    2865. 

  2865.         mulq	%rax
    2866. 

  2866.         movq	%rax, %rcx
    2867. 

  2867.         movq	%rdx, %rbp
    2868. 

  2868.         #  A[1] * A[1]
    2869. 

  2869.         movq	136(%rsp), %rax
    2870. 

  2870.         mulq	%rax
    2871. 

  2871.         addq	%rbp, %r9
    2872. 

  2872.         adcq	%rax, %r10
    2873. 

  2873.         adcq	$0x00, %rdx
    2874. 

  2874.         movq	%rdx, %rbp
    2875. 

  2875.         #  A[2] * A[2]
    2876. 

  2876.         movq	144(%rsp), %rax
    2877. 

  2877.         mulq	%rax
    2878. 

  2878.         addq	%rbp, %r11
    2879. 

  2879.         adcq	%rax, %r12
    2880. 

  2880.         adcq	$0x00, %rdx
    2881. 

  2881.         movq	%rdx, %rbp
    2882. 

  2882.         #  A[3] * A[3]
    2883. 

  2883.         movq	152(%rsp), %rax
    2884. 

  2884.         mulq	%rax
    2885. 

  2885.         addq	%rax, %r14
    2886. 

  2886.         adcq	%rdx, %r15
    2887. 

  2887.         addq	%rbp, %r13
    2888. 

  2888.         adcq	$0x00, %r14
    2889. 

  2889.         adcq	$0x00, %r15
    2890. 

  2890.         # Reduce
    2891. 

  2891.         movq	$0x7fffffffffffffff, %rbp
    2892. 

  2892.         #  Move top half into t4-t7 and remove top bit from t3
    2893. 

  2893.         shldq	$0x01, %r14, %r15
    2894. 

  2894.         shldq	$0x01, %r13, %r14
    2895. 

  2895.         shldq	$0x01, %r12, %r13
    2896. 

  2896.         shldq	$0x01, %r11, %r12
    2897. 

  2897.         andq	%rbp, %r11
    2898. 

  2898.         #  Multiply top half by 19
    2899. 

  2899.         movq	$19, %rax
    2900. 

  2900.         mulq	%r12
    2901. 

  2901.         xorq	%r12, %r12
    2902. 

  2902.         addq	%rax, %rcx
    2903. 

  2903.         movq	$19, %rax
    2904. 

  2904.         adcq	%rdx, %r12
    2905. 

  2905.         mulq	%r13
    2906. 

  2906.         xorq	%r13, %r13
    2907. 

  2907.         addq	%rax, %r9
    2908. 

  2908.         movq	$19, %rax
    2909. 

  2909.         adcq	%rdx, %r13
    2910. 

  2910.         mulq	%r14
    2911. 

  2911.         xorq	%r14, %r14
    2912. 

  2912.         addq	%rax, %r10
    2913. 

  2913.         movq	$19, %rax
    2914. 

  2914.         adcq	%rdx, %r14
    2915. 

  2915.         mulq	%r15
    2916. 

  2916.         #  Add remaining product results in
    2917. 

  2917.         addq	%r12, %r9
    2918. 

  2918.         adcq	%r13, %r10
    2919. 

  2919.         adcq	%r14, %r11
    2920. 

  2920.         adcq	%rax, %r11
    2921. 

  2921.         adcq	$0x00, %rdx
    2922. 

  2922.         #  Overflow
    2923. 

  2923.         shldq	$0x01, %r11, %rdx
    2924. 

  2924.         imulq	$19, %rdx, %rax
    2925. 

  2925.         andq	%rbp, %r11
    2926. 

  2926.         addq	%rax, %rcx
    2927. 

  2927.         adcq	$0x00, %r9
    2928. 

  2928.         adcq	$0x00, %r10
    2929. 

  2929.         adcq	$0x00, %r11
    2930. 

  2930.         # Reduce if top bit set
    2931. 

  2931.         movq	%r11, %rdx
    2932. 

  2932.         sarq	$63, %rdx
    2933. 

  2933.         andq	$19, %rdx
    2934. 

  2934.         andq	%rbp, %r11
    2935. 

  2935.         addq	%rdx, %rcx
    2936. 

  2936.         adcq	$0x00, %r9
    2937. 

  2937.         adcq	$0x00, %r10
    2938. 

  2938.         adcq	$0x00, %r11
    2939. 

  2939.         # Store
    2940. 

  2940.         movq	%rcx, 96(%rsp)
    2941. 

  2941.         movq	%r9, 104(%rsp)
    2942. 

  2942.         movq	%r10, 112(%rsp)
    2943. 

  2943.         movq	%r11, 120(%rsp)
    2944. 

  2944.         # Square
    2945. 

  2945.         #  A[0] * A[1]
    2946. 

  2946.         movq	(%rdi), %rax
    2947. 

  2947.         mulq	8(%rdi)
    2948. 

  2948.         movq	%rax, %r9
    2949. 

  2949.         movq	%rdx, %r10
    2950. 

  2950.         #  A[0] * A[2]
    2951. 

  2951.         movq	(%rdi), %rax
    2952. 

  2952.         mulq	16(%rdi)
    2953. 

  2953.         xorq	%r11, %r11
    2954. 

  2954.         addq	%rax, %r10
    2955. 

  2955.         adcq	%rdx, %r11
    2956. 

  2956.         #  A[0] * A[3]
    2957. 

  2957.         movq	(%rdi), %rax
    2958. 

  2958.         mulq	24(%rdi)
    2959. 

  2959.         xorq	%r12, %r12
    2960. 

  2960.         addq	%rax, %r11
    2961. 

  2961.         adcq	%rdx, %r12
    2962. 

  2962.         #  A[1] * A[2]
    2963. 

  2963.         movq	8(%rdi), %rax
    2964. 

  2964.         mulq	16(%rdi)
    2965. 

  2965.         xorq	%r13, %r13
    2966. 

  2966.         addq	%rax, %r11
    2967. 

  2967.         adcq	%rdx, %r12
    2968. 

  2968.         adcq	$0x00, %r13
    2969. 

  2969.         #  A[1] * A[3]
    2970. 

  2970.         movq	8(%rdi), %rax
    2971. 

  2971.         mulq	24(%rdi)
    2972. 

  2972.         addq	%rax, %r12
    2973. 

  2973.         adcq	%rdx, %r13
    2974. 

  2974.         #  A[2] * A[3]
    2975. 

  2975.         movq	16(%rdi), %rax
    2976. 

  2976.         mulq	24(%rdi)
    2977. 

  2977.         xorq	%r14, %r14
    2978. 

  2978.         addq	%rax, %r13
    2979. 

  2979.         adcq	%rdx, %r14
    2980. 

  2980.         # Double
    2981. 

  2981.         xorq	%r15, %r15
    2982. 

  2982.         addq	%r9, %r9
    2983. 

  2983.         adcq	%r10, %r10
    2984. 

  2984.         adcq	%r11, %r11
    2985. 

  2985.         adcq	%r12, %r12
    2986. 

  2986.         adcq	%r13, %r13
    2987. 

  2987.         adcq	%r14, %r14
    2988. 

  2988.         adcq	$0x00, %r15
    2989. 

  2989.         #  A[0] * A[0]
    2990. 

  2990.         movq	(%rdi), %rax
    2991. 

  2991.         mulq	%rax
    2992. 

  2992.         movq	%rax, %rcx
    2993. 

  2993.         movq	%rdx, %rbp
    2994. 

  2994.         #  A[1] * A[1]
    2995. 

  2995.         movq	8(%rdi), %rax
    2996. 

  2996.         mulq	%rax
    2997. 

  2997.         addq	%rbp, %r9
    2998. 

  2998.         adcq	%rax, %r10
    2999. 

  2999.         adcq	$0x00, %rdx
    3000. 

  3000.         movq	%rdx, %rbp
    3001. 

  3001.         #  A[2] * A[2]
    3002. 

  3002.         movq	16(%rdi), %rax
    3003. 

  3003.         mulq	%rax
    3004. 

  3004.         addq	%rbp, %r11
    3005. 

  3005.         adcq	%rax, %r12
    3006. 

  3006.         adcq	$0x00, %rdx
    3007. 

  3007.         movq	%rdx, %rbp
    3008. 

  3008.         #  A[3] * A[3]
    3009. 

  3009.         movq	24(%rdi), %rax
    3010. 

  3010.         mulq	%rax
    3011. 

  3011.         addq	%rax, %r14
    3012. 

  3012.         adcq	%rdx, %r15
    3013. 

  3013.         addq	%rbp, %r13
    3014. 

  3014.         adcq	$0x00, %r14
    3015. 

  3015.         adcq	$0x00, %r15
    3016. 

  3016.         # Reduce
    3017. 

  3017.         movq	$0x7fffffffffffffff, %rbp
    3018. 

  3018.         #  Move top half into t4-t7 and remove top bit from t3
    3019. 

  3019.         shldq	$0x01, %r14, %r15
    3020. 

  3020.         shldq	$0x01, %r13, %r14
    3021. 

  3021.         shldq	$0x01, %r12, %r13
    3022. 

  3022.         shldq	$0x01, %r11, %r12
    3023. 

  3023.         andq	%rbp, %r11
    3024. 

  3024.         #  Multiply top half by 19
    3025. 

  3025.         movq	$19, %rax
    3026. 

  3026.         mulq	%r12
    3027. 

  3027.         xorq	%r12, %r12
    3028. 

  3028.         addq	%rax, %rcx
    3029. 

  3029.         movq	$19, %rax
    3030. 

  3030.         adcq	%rdx, %r12
    3031. 

  3031.         mulq	%r13
    3032. 

  3032.         xorq	%r13, %r13
    3033. 

  3033.         addq	%rax, %r9
    3034. 

  3034.         movq	$19, %rax
    3035. 

  3035.         adcq	%rdx, %r13
    3036. 

  3036.         mulq	%r14
    3037. 

  3037.         xorq	%r14, %r14
    3038. 

  3038.         addq	%rax, %r10
    3039. 

  3039.         movq	$19, %rax
    3040. 

  3040.         adcq	%rdx, %r14
    3041. 

  3041.         mulq	%r15
    3042. 

  3042.         #  Add remaining product results in
    3043. 

  3043.         addq	%r12, %r9
    3044. 

  3044.         adcq	%r13, %r10
    3045. 

  3045.         adcq	%r14, %r11
    3046. 

  3046.         adcq	%rax, %r11
    3047. 

  3047.         adcq	$0x00, %rdx
    3048. 

  3048.         #  Overflow
    3049. 

  3049.         shldq	$0x01, %r11, %rdx
    3050. 

  3050.         imulq	$19, %rdx, %rax
    3051. 

  3051.         andq	%rbp, %r11
    3052. 

  3052.         addq	%rax, %rcx
    3053. 

  3053.         adcq	$0x00, %r9
    3054. 

  3054.         adcq	$0x00, %r10
    3055. 

  3055.         adcq	$0x00, %r11
    3056. 

  3056.         # Reduce if top bit set
    3057. 

  3057.         movq	%r11, %rdx
    3058. 

  3058.         sarq	$63, %rdx
    3059. 

  3059.         andq	$19, %rdx
    3060. 

  3060.         andq	%rbp, %r11
    3061. 

  3061.         addq	%rdx, %rcx
    3062. 

  3062.         adcq	$0x00, %r9
    3063. 

  3063.         adcq	$0x00, %r10
    3064. 

  3064.         adcq	$0x00, %r11
    3065. 

  3065.         # Store
    3066. 

  3066.         movq	%rcx, 128(%rsp)
    3067. 

  3067.         movq	%r9, 136(%rsp)
    3068. 

  3068.         movq	%r10, 144(%rsp)
    3069. 

  3069.         movq	%r11, 152(%rsp)
    3070. 

  3070.         # Add
    3071. 

  3071.         movq	32(%rsp), %rcx
    3072. 

  3072.         movq	40(%rsp), %r9
    3073. 

  3073.         movq	48(%rsp), %r10
    3074. 

  3074.         movq	56(%rsp), %rbp
    3075. 

  3075.         movq	%rcx, %r12
    3076. 

  3076.         addq	(%rsp), %rcx
    3077. 

  3077.         movq	%r9, %r13
    3078. 

  3078.         adcq	8(%rsp), %r9
    3079. 

  3079.         movq	%r10, %r14
    3080. 

  3080.         adcq	16(%rsp), %r10
    3081. 

  3081.         movq	%rbp, %r15
    3082. 

  3082.         adcq	24(%rsp), %rbp
    3083. 

  3083.         movq	$-19, %rax
    3084. 

  3084.         movq	%rbp, %r11
    3085. 

  3085.         movq	$0x7fffffffffffffff, %rdx
    3086. 

  3086.         sarq	$63, %rbp
    3087. 

  3087.         #   Mask the modulus
    3088. 

  3088.         andq	%rbp, %rax
    3089. 

  3089.         andq	%rbp, %rdx
    3090. 

  3090.         #   Sub modulus (if overflow)
    3091. 

  3091.         subq	%rax, %rcx
    3092. 

  3092.         sbbq	%rbp, %r9
    3093. 

  3093.         sbbq	%rbp, %r10
    3094. 

  3094.         sbbq	%rdx, %r11
    3095. 

  3095.         # Sub
    3096. 

  3096.         subq	(%rsp), %r12
    3097. 

  3097.         movq	$0x00, %rbp
    3098. 

  3098.         sbbq	8(%rsp), %r13
    3099. 

  3099.         movq	$-19, %rax
    3100. 

  3100.         sbbq	16(%rsp), %r14
    3101. 

  3101.         movq	$0x7fffffffffffffff, %rdx
    3102. 

  3102.         sbbq	24(%rsp), %r15
    3103. 

  3103.         sbbq	$0x00, %rbp
    3104. 

  3104.         #   Mask the modulus
    3105. 

  3105.         andq	%rbp, %rax
    3106. 

  3106.         andq	%rbp, %rdx
    3107. 

  3107.         #   Add modulus (if underflow)
    3108. 

  3108.         addq	%rax, %r12
    3109. 

  3109.         adcq	%rbp, %r13
    3110. 

  3110.         adcq	%rbp, %r14
    3111. 

  3111.         adcq	%rdx, %r15
    3112. 

  3112.         movq	%rcx, 64(%rsp)
    3113. 

  3113.         movq	%r9, 72(%rsp)
    3114. 

  3114.         movq	%r10, 80(%rsp)
    3115. 

  3115.         movq	%r11, 88(%rsp)
    3116. 

  3116.         movq	%r12, (%rsp)
    3117. 

  3117.         movq	%r13, 8(%rsp)
    3118. 

  3118.         movq	%r14, 16(%rsp)
    3119. 

  3119.         movq	%r15, 24(%rsp)
    3120. 

  3120.         # Multiply
    3121. 

  3121.         #  A[0] * B[0]
    3122. 

  3122.         movq	96(%rsp), %rax
    3123. 

  3123.         mulq	128(%rsp)
    3124. 

  3124.         movq	%rax, %rcx
    3125. 

  3125.         movq	%rdx, %r9
    3126. 

  3126.         #  A[0] * B[1]
    3127. 

  3127.         movq	104(%rsp), %rax
    3128. 

  3128.         mulq	128(%rsp)
    3129. 

  3129.         xorq	%r10, %r10
    3130. 

  3130.         addq	%rax, %r9
    3131. 

  3131.         adcq	%rdx, %r10
    3132. 

  3132.         #  A[1] * B[0]
    3133. 

  3133.         movq	96(%rsp), %rax
    3134. 

  3134.         mulq	136(%rsp)
    3135. 

  3135.         xorq	%r11, %r11
    3136. 

  3136.         addq	%rax, %r9
    3137. 

  3137.         adcq	%rdx, %r10
    3138. 

  3138.         adcq	$0x00, %r11
    3139. 

  3139.         #  A[0] * B[2]
    3140. 

  3140.         movq	112(%rsp), %rax
    3141. 

  3141.         mulq	128(%rsp)
    3142. 

  3142.         addq	%rax, %r10
    3143. 

  3143.         adcq	%rdx, %r11
    3144. 

  3144.         #  A[1] * B[1]
    3145. 

  3145.         movq	104(%rsp), %rax
    3146. 

  3146.         mulq	136(%rsp)
    3147. 

  3147.         xorq	%r12, %r12
    3148. 

  3148.         addq	%rax, %r10
    3149. 

  3149.         adcq	%rdx, %r11
    3150. 

  3150.         adcq	$0x00, %r12
    3151. 

  3151.         #  A[2] * B[0]
    3152. 

  3152.         movq	96(%rsp), %rax
    3153. 

  3153.         mulq	144(%rsp)
    3154. 

  3154.         addq	%rax, %r10
    3155. 

  3155.         adcq	%rdx, %r11
    3156. 

  3156.         adcq	$0x00, %r12
    3157. 

  3157.         #  A[0] * B[3]
    3158. 

  3158.         movq	120(%rsp), %rax
    3159. 

  3159.         mulq	128(%rsp)
    3160. 

  3160.         xorq	%r13, %r13
    3161. 

  3161.         addq	%rax, %r11
    3162. 

  3162.         adcq	%rdx, %r12
    3163. 

  3163.         adcq	$0x00, %r13
    3164. 

  3164.         #  A[1] * B[2]
    3165. 

  3165.         movq	112(%rsp), %rax
    3166. 

  3166.         mulq	136(%rsp)
    3167. 

  3167.         addq	%rax, %r11
    3168. 

  3168.         adcq	%rdx, %r12
    3169. 

  3169.         adcq	$0x00, %r13
    3170. 

  3170.         #  A[2] * B[1]
    3171. 

  3171.         movq	104(%rsp), %rax
    3172. 

  3172.         mulq	144(%rsp)
    3173. 

  3173.         addq	%rax, %r11
    3174. 

  3174.         adcq	%rdx, %r12
    3175. 

  3175.         adcq	$0x00, %r13
    3176. 

  3176.         #  A[3] * B[0]
    3177. 

  3177.         movq	96(%rsp), %rax
    3178. 

  3178.         mulq	152(%rsp)
    3179. 

  3179.         addq	%rax, %r11
    3180. 

  3180.         adcq	%rdx, %r12
    3181. 

  3181.         adcq	$0x00, %r13
    3182. 

  3182.         #  A[1] * B[3]
    3183. 

  3183.         movq	120(%rsp), %rax
    3184. 

  3184.         mulq	136(%rsp)
    3185. 

  3185.         xorq	%r14, %r14
    3186. 

  3186.         addq	%rax, %r12
    3187. 

  3187.         adcq	%rdx, %r13
    3188. 

  3188.         adcq	$0x00, %r14
    3189. 

  3189.         #  A[2] * B[2]
    3190. 

  3190.         movq	112(%rsp), %rax
    3191. 

  3191.         mulq	144(%rsp)
    3192. 

  3192.         addq	%rax, %r12
    3193. 

  3193.         adcq	%rdx, %r13
    3194. 

  3194.         adcq	$0x00, %r14
    3195. 

  3195.         #  A[3] * B[1]
    3196. 

  3196.         movq	104(%rsp), %rax
    3197. 

  3197.         mulq	152(%rsp)
    3198. 

  3198.         addq	%rax, %r12
    3199. 

  3199.         adcq	%rdx, %r13
    3200. 

  3200.         adcq	$0x00, %r14
    3201. 

  3201.         #  A[2] * B[3]
    3202. 

  3202.         movq	120(%rsp), %rax
    3203. 

  3203.         mulq	144(%rsp)
    3204. 

  3204.         xorq	%r15, %r15
    3205. 

  3205.         addq	%rax, %r13
    3206. 

  3206.         adcq	%rdx, %r14
    3207. 

  3207.         adcq	$0x00, %r15
    3208. 

  3208.         #  A[3] * B[2]
    3209. 

  3209.         movq	112(%rsp), %rax
    3210. 

  3210.         mulq	152(%rsp)
    3211. 

  3211.         addq	%rax, %r13
    3212. 

  3212.         adcq	%rdx, %r14
    3213. 

  3213.         adcq	$0x00, %r15
    3214. 

  3214.         #  A[3] * B[3]
    3215. 

  3215.         movq	120(%rsp), %rax
    3216. 

  3216.         mulq	152(%rsp)
    3217. 

  3217.         addq	%rax, %r14
    3218. 

  3218.         adcq	%rdx, %r15
    3219. 

  3219.         # Reduce
    3220. 

  3220.         movq	$0x7fffffffffffffff, %rbp
    3221. 

  3221.         #  Move top half into t4-t7 and remove top bit from t3
    3222. 

  3222.         shldq	$0x01, %r14, %r15
    3223. 

  3223.         shldq	$0x01, %r13, %r14
    3224. 

  3224.         shldq	$0x01, %r12, %r13
    3225. 

  3225.         shldq	$0x01, %r11, %r12
    3226. 

  3226.         andq	%rbp, %r11
    3227. 

  3227.         #  Multiply top half by 19
    3228. 

  3228.         movq	$19, %rax
    3229. 

  3229.         mulq	%r12
    3230. 

  3230.         xorq	%r12, %r12
    3231. 

  3231.         addq	%rax, %rcx
    3232. 

  3232.         movq	$19, %rax
    3233. 

  3233.         adcq	%rdx, %r12
    3234. 

  3234.         mulq	%r13
    3235. 

  3235.         xorq	%r13, %r13
    3236. 

  3236.         addq	%rax, %r9
    3237. 

  3237.         movq	$19, %rax
    3238. 

  3238.         adcq	%rdx, %r13
    3239. 

  3239.         mulq	%r14
    3240. 

  3240.         xorq	%r14, %r14
    3241. 

  3241.         addq	%rax, %r10
    3242. 

  3242.         movq	$19, %rax
    3243. 

  3243.         adcq	%rdx, %r14
    3244. 

  3244.         mulq	%r15
    3245. 

  3245.         #  Add remaining product results in
    3246. 

  3246.         addq	%r12, %r9
    3247. 

  3247.         adcq	%r13, %r10
    3248. 

  3248.         adcq	%r14, %r11
    3249. 

  3249.         adcq	%rax, %r11
    3250. 

  3250.         adcq	$0x00, %rdx
    3251. 

  3251.         #  Overflow
    3252. 

  3252.         shldq	$0x01, %r11, %rdx
    3253. 

  3253.         imulq	$19, %rdx, %rax
    3254. 

  3254.         andq	%rbp, %r11
    3255. 

  3255.         addq	%rax, %rcx
    3256. 

  3256.         adcq	$0x00, %r9
    3257. 

  3257.         adcq	$0x00, %r10
    3258. 

  3258.         adcq	$0x00, %r11
    3259. 

  3259.         # Reduce if top bit set
    3260. 

  3260.         movq	%r11, %rdx
    3261. 

  3261.         sarq	$63, %rdx
    3262. 

  3262.         andq	$19, %rdx
    3263. 

  3263.         andq	%rbp, %r11
    3264. 

  3264.         addq	%rdx, %rcx
    3265. 

  3265.         adcq	$0x00, %r9
    3266. 

  3266.         adcq	$0x00, %r10
    3267. 

  3267.         adcq	$0x00, %r11
    3268. 

  3268.         # Store
    3269. 

  3269.         movq	%rcx, (%rdi)
    3270. 

  3270.         movq	%r9, 8(%rdi)
    3271. 

  3271.         movq	%r10, 16(%rdi)
    3272. 

  3272.         movq	%r11, 24(%rdi)
    3273. 

  3273.         # Sub
    3274. 

  3274.         movq	128(%rsp), %rcx
    3275. 

  3275.         movq	136(%rsp), %r9
    3276. 

  3276.         movq	144(%rsp), %r10
    3277. 

  3277.         movq	152(%rsp), %r11
    3278. 

  3278.         subq	96(%rsp), %rcx
    3279. 

  3279.         movq	$0x00, %rbp
    3280. 

  3280.         sbbq	104(%rsp), %r9
    3281. 

  3281.         movq	$-19, %rax
    3282. 

  3282.         sbbq	112(%rsp), %r10
    3283. 

  3283.         movq	$0x7fffffffffffffff, %rdx
    3284. 

  3284.         sbbq	120(%rsp), %r11
    3285. 

  3285.         sbbq	$0x00, %rbp
    3286. 

  3286.         #   Mask the modulus
    3287. 

  3287.         andq	%rbp, %rax
    3288. 

  3288.         andq	%rbp, %rdx
    3289. 

  3289.         #   Add modulus (if underflow)
    3290. 

  3290.         addq	%rax, %rcx
    3291. 

  3291.         adcq	%rbp, %r9
    3292. 

  3292.         adcq	%rbp, %r10
    3293. 

  3293.         adcq	%rdx, %r11
    3294. 

  3294.         movq	%rcx, 128(%rsp)
    3295. 

  3295.         movq	%r9, 136(%rsp)
    3296. 

  3296.         movq	%r10, 144(%rsp)
    3297. 

  3297.         movq	%r11, 152(%rsp)
    3298. 

  3298.         # Square
    3299. 

  3299.         #  A[0] * A[1]
    3300. 

  3300.         movq	(%rsp), %rax
    3301. 

  3301.         mulq	8(%rsp)
    3302. 

  3302.         movq	%rax, %r9
    3303. 

  3303.         movq	%rdx, %r10
    3304. 

  3304.         #  A[0] * A[2]
    3305. 

  3305.         movq	(%rsp), %rax
    3306. 

  3306.         mulq	16(%rsp)
    3307. 

  3307.         xorq	%r11, %r11
    3308. 

  3308.         addq	%rax, %r10
    3309. 

  3309.         adcq	%rdx, %r11
    3310. 

  3310.         #  A[0] * A[3]
    3311. 

  3311.         movq	(%rsp), %rax
    3312. 

  3312.         mulq	24(%rsp)
    3313. 

  3313.         xorq	%r12, %r12
    3314. 

  3314.         addq	%rax, %r11
    3315. 

  3315.         adcq	%rdx, %r12
    3316. 

  3316.         #  A[1] * A[2]
    3317. 

  3317.         movq	8(%rsp), %rax
    3318. 

  3318.         mulq	16(%rsp)
    3319. 

  3319.         xorq	%r13, %r13
    3320. 

  3320.         addq	%rax, %r11
    3321. 

  3321.         adcq	%rdx, %r12
    3322. 

  3322.         adcq	$0x00, %r13
    3323. 

  3323.         #  A[1] * A[3]
    3324. 

  3324.         movq	8(%rsp), %rax
    3325. 

  3325.         mulq	24(%rsp)
    3326. 

  3326.         addq	%rax, %r12
    3327. 

  3327.         adcq	%rdx, %r13
    3328. 

  3328.         #  A[2] * A[3]
    3329. 

  3329.         movq	16(%rsp), %rax
    3330. 

  3330.         mulq	24(%rsp)
    3331. 

  3331.         xorq	%r14, %r14
    3332. 

  3332.         addq	%rax, %r13
    3333. 

  3333.         adcq	%rdx, %r14
    3334. 

  3334.         # Double
    3335. 

  3335.         xorq	%r15, %r15
    3336. 

  3336.         addq	%r9, %r9
    3337. 

  3337.         adcq	%r10, %r10
    3338. 

  3338.         adcq	%r11, %r11
    3339. 

  3339.         adcq	%r12, %r12
    3340. 

  3340.         adcq	%r13, %r13
    3341. 

  3341.         adcq	%r14, %r14
    3342. 

  3342.         adcq	$0x00, %r15
    3343. 

  3343.         #  A[0] * A[0]
    3344. 

  3344.         movq	(%rsp), %rax
    3345. 

  3345.         mulq	%rax
    3346. 

  3346.         movq	%rax, %rcx
    3347. 

  3347.         movq	%rdx, %rbp
    3348. 

  3348.         #  A[1] * A[1]
    3349. 

  3349.         movq	8(%rsp), %rax
    3350. 

  3350.         mulq	%rax
    3351. 

  3351.         addq	%rbp, %r9
    3352. 

  3352.         adcq	%rax, %r10
    3353. 

  3353.         adcq	$0x00, %rdx
    3354. 

  3354.         movq	%rdx, %rbp
    3355. 

  3355.         #  A[2] * A[2]
    3356. 

  3356.         movq	16(%rsp), %rax
    3357. 

  3357.         mulq	%rax
    3358. 

  3358.         addq	%rbp, %r11
    3359. 

  3359.         adcq	%rax, %r12
    3360. 

  3360.         adcq	$0x00, %rdx
    3361. 

  3361.         movq	%rdx, %rbp
    3362. 

  3362.         #  A[3] * A[3]
    3363. 

  3363.         movq	24(%rsp), %rax
    3364. 

  3364.         mulq	%rax
    3365. 

  3365.         addq	%rax, %r14
    3366. 

  3366.         adcq	%rdx, %r15
    3367. 

  3367.         addq	%rbp, %r13
    3368. 

  3368.         adcq	$0x00, %r14
    3369. 

  3369.         adcq	$0x00, %r15
    3370. 

  3370.         # Reduce
    3371. 

  3371.         movq	$0x7fffffffffffffff, %rbp
    3372. 

  3372.         #  Move top half into t4-t7 and remove top bit from t3
    3373. 

  3373.         shldq	$0x01, %r14, %r15
    3374. 

  3374.         shldq	$0x01, %r13, %r14
    3375. 

  3375.         shldq	$0x01, %r12, %r13
    3376. 

  3376.         shldq	$0x01, %r11, %r12
    3377. 

  3377.         andq	%rbp, %r11
    3378. 

  3378.         #  Multiply top half by 19
    3379. 

  3379.         movq	$19, %rax
    3380. 

  3380.         mulq	%r12
    3381. 

  3381.         xorq	%r12, %r12
    3382. 

  3382.         addq	%rax, %rcx
    3383. 

  3383.         movq	$19, %rax
    3384. 

  3384.         adcq	%rdx, %r12
    3385. 

  3385.         mulq	%r13
    3386. 

  3386.         xorq	%r13, %r13
    3387. 

  3387.         addq	%rax, %r9
    3388. 

  3388.         movq	$19, %rax
    3389. 

  3389.         adcq	%rdx, %r13
    3390. 

  3390.         mulq	%r14
    3391. 

  3391.         xorq	%r14, %r14
    3392. 

  3392.         addq	%rax, %r10
    3393. 

  3393.         movq	$19, %rax
    3394. 

  3394.         adcq	%rdx, %r14
    3395. 

  3395.         mulq	%r15
    3396. 

  3396.         #  Add remaining product results in
    3397. 

  3397.         addq	%r12, %r9
    3398. 

  3398.         adcq	%r13, %r10
    3399. 

  3399.         adcq	%r14, %r11
    3400. 

  3400.         adcq	%rax, %r11
    3401. 

  3401.         adcq	$0x00, %rdx
    3402. 

  3402.         #  Overflow
    3403. 

  3403.         shldq	$0x01, %r11, %rdx
    3404. 

  3404.         imulq	$19, %rdx, %rax
    3405. 

  3405.         andq	%rbp, %r11
    3406. 

  3406.         addq	%rax, %rcx
    3407. 

  3407.         adcq	$0x00, %r9
    3408. 

  3408.         adcq	$0x00, %r10
    3409. 

  3409.         adcq	$0x00, %r11
    3410. 

  3410.         # Reduce if top bit set
    3411. 

  3411.         movq	%r11, %rdx
    3412. 

  3412.         sarq	$63, %rdx
    3413. 

  3413.         andq	$19, %rdx
    3414. 

  3414.         andq	%rbp, %r11
    3415. 

  3415.         addq	%rdx, %rcx
    3416. 

  3416.         adcq	$0x00, %r9
    3417. 

  3417.         adcq	$0x00, %r10
    3418. 

  3418.         adcq	$0x00, %r11
    3419. 

  3419.         # Store
    3420. 

  3420.         movq	%rcx, (%rsp)
    3421. 

  3421.         movq	%r9, 8(%rsp)
    3422. 

  3422.         movq	%r10, 16(%rsp)
    3423. 

  3423.         movq	%r11, 24(%rsp)
    3424. 

  3424.         # Multiply by 121666
    3425. 

  3425.         movq	$0x1db42, %rax
    3426. 

  3426.         mulq	128(%rsp)
    3427. 

  3427.         xorq	%r10, %r10
    3428. 

  3428.         movq	%rax, %rcx
    3429. 

  3429.         movq	%rdx, %r9
    3430. 

  3430.         movq	$0x1db42, %rax
    3431. 

  3431.         mulq	136(%rsp)
    3432. 

  3432.         xorq	%r11, %r11
    3433. 

  3433.         addq	%rax, %r9
    3434. 

  3434.         adcq	%rdx, %r10
    3435. 

  3435.         movq	$0x1db42, %rax
    3436. 

  3436.         mulq	144(%rsp)
    3437. 

  3437.         xorq	%r13, %r13
    3438. 

  3438.         addq	%rax, %r10
    3439. 

  3439.         adcq	%rdx, %r11
    3440. 

  3440.         movq	$0x1db42, %rax
    3441. 

  3441.         mulq	152(%rsp)
    3442. 

  3442.         movq	$0x7fffffffffffffff, %r12
    3443. 

  3443.         addq	%rax, %r11
    3444. 

  3444.         adcq	%rdx, %r13
    3445. 

  3445.         shldq	$0x01, %r11, %r13
    3446. 

  3446.         andq	%r12, %r11
    3447. 

  3447.         movq	$19, %rax
    3448. 

  3448.         mulq	%r13
    3449. 

  3449.         addq	%rax, %rcx
    3450. 

  3450.         adcq	$0x00, %r9
    3451. 

  3451.         adcq	$0x00, %r10
    3452. 

  3452.         adcq	$0x00, %r11
    3453. 

  3453.         movq	%rcx, 32(%rsp)
    3454. 

  3454.         movq	%r9, 40(%rsp)
    3455. 

  3455.         movq	%r10, 48(%rsp)
    3456. 

  3456.         movq	%r11, 56(%rsp)
    3457. 

  3457.         # Square
    3458. 

  3458.         #  A[0] * A[1]
    3459. 

  3459.         movq	64(%rsp), %rax
    3460. 

  3460.         mulq	72(%rsp)
    3461. 

  3461.         movq	%rax, %r9
    3462. 

  3462.         movq	%rdx, %r10
    3463. 

  3463.         #  A[0] * A[2]
    3464. 

  3464.         movq	64(%rsp), %rax
    3465. 

  3465.         mulq	80(%rsp)
    3466. 

  3466.         xorq	%r11, %r11
    3467. 

  3467.         addq	%rax, %r10
    3468. 

  3468.         adcq	%rdx, %r11
    3469. 

  3469.         #  A[0] * A[3]
    3470. 

  3470.         movq	64(%rsp), %rax
    3471. 

  3471.         mulq	88(%rsp)
    3472. 

  3472.         xorq	%r12, %r12
    3473. 

  3473.         addq	%rax, %r11
    3474. 

  3474.         adcq	%rdx, %r12
    3475. 

  3475.         #  A[1] * A[2]
    3476. 

  3476.         movq	72(%rsp), %rax
    3477. 

  3477.         mulq	80(%rsp)
    3478. 

  3478.         xorq	%r13, %r13
    3479. 

  3479.         addq	%rax, %r11
    3480. 

  3480.         adcq	%rdx, %r12
    3481. 

  3481.         adcq	$0x00, %r13
    3482. 

  3482.         #  A[1] * A[3]
    3483. 

  3483.         movq	72(%rsp), %rax
    3484. 

  3484.         mulq	88(%rsp)
    3485. 

  3485.         addq	%rax, %r12
    3486. 

  3486.         adcq	%rdx, %r13
    3487. 

  3487.         #  A[2] * A[3]
    3488. 

  3488.         movq	80(%rsp), %rax
    3489. 

  3489.         mulq	88(%rsp)
    3490. 

  3490.         xorq	%r14, %r14
    3491. 

  3491.         addq	%rax, %r13
    3492. 

  3492.         adcq	%rdx, %r14
    3493. 

  3493.         # Double
    3494. 

  3494.         xorq	%r15, %r15
    3495. 

  3495.         addq	%r9, %r9
    3496. 

  3496.         adcq	%r10, %r10
    3497. 

  3497.         adcq	%r11, %r11
    3498. 

  3498.         adcq	%r12, %r12
    3499. 

  3499.         adcq	%r13, %r13
    3500. 

  3500.         adcq	%r14, %r14
    3501. 

  3501.         adcq	$0x00, %r15
    3502. 

  3502.         #  A[0] * A[0]
    3503. 

  3503.         movq	64(%rsp), %rax
    3504. 

  3504.         mulq	%rax
    3505. 

  3505.         movq	%rax, %rcx
    3506. 

  3506.         movq	%rdx, %rbp
    3507. 

  3507.         #  A[1] * A[1]
    3508. 

  3508.         movq	72(%rsp), %rax
    3509. 

  3509.         mulq	%rax
    3510. 

  3510.         addq	%rbp, %r9
    3511. 

  3511.         adcq	%rax, %r10
    3512. 

  3512.         adcq	$0x00, %rdx
    3513. 

  3513.         movq	%rdx, %rbp
    3514. 

  3514.         #  A[2] * A[2]
    3515. 

  3515.         movq	80(%rsp), %rax
    3516. 

  3516.         mulq	%rax
    3517. 

  3517.         addq	%rbp, %r11
    3518. 

  3518.         adcq	%rax, %r12
    3519. 

  3519.         adcq	$0x00, %rdx
    3520. 

  3520.         movq	%rdx, %rbp
    3521. 

  3521.         #  A[3] * A[3]
    3522. 

  3522.         movq	88(%rsp), %rax
    3523. 

  3523.         mulq	%rax
    3524. 

  3524.         addq	%rax, %r14
    3525. 

  3525.         adcq	%rdx, %r15
    3526. 

  3526.         addq	%rbp, %r13
    3527. 

  3527.         adcq	$0x00, %r14
    3528. 

  3528.         adcq	$0x00, %r15
    3529. 

  3529.         # Reduce
    3530. 

  3530.         movq	$0x7fffffffffffffff, %rbp
    3531. 

  3531.         #  Move top half into t4-t7 and remove top bit from t3
    3532. 

  3532.         shldq	$0x01, %r14, %r15
    3533. 

  3533.         shldq	$0x01, %r13, %r14
    3534. 

  3534.         shldq	$0x01, %r12, %r13
    3535. 

  3535.         shldq	$0x01, %r11, %r12
    3536. 

  3536.         andq	%rbp, %r11
    3537. 

  3537.         #  Multiply top half by 19
    3538. 

  3538.         movq	$19, %rax
    3539. 

  3539.         mulq	%r12
    3540. 

  3540.         xorq	%r12, %r12
    3541. 

  3541.         addq	%rax, %rcx
    3542. 

  3542.         movq	$19, %rax
    3543. 

  3543.         adcq	%rdx, %r12
    3544. 

  3544.         mulq	%r13
    3545. 

  3545.         xorq	%r13, %r13
    3546. 

  3546.         addq	%rax, %r9
    3547. 

  3547.         movq	$19, %rax
    3548. 

  3548.         adcq	%rdx, %r13
    3549. 

  3549.         mulq	%r14
    3550. 

  3550.         xorq	%r14, %r14
    3551. 

  3551.         addq	%rax, %r10
    3552. 

  3552.         movq	$19, %rax
    3553. 

  3553.         adcq	%rdx, %r14
    3554. 

  3554.         mulq	%r15
    3555. 

  3555.         #  Add remaining product results in
    3556. 

  3556.         addq	%r12, %r9
    3557. 

  3557.         adcq	%r13, %r10
    3558. 

  3558.         adcq	%r14, %r11
    3559. 

  3559.         adcq	%rax, %r11
    3560. 

  3560.         adcq	$0x00, %rdx
    3561. 

  3561.         #  Overflow
    3562. 

  3562.         shldq	$0x01, %r11, %rdx
    3563. 

  3563.         imulq	$19, %rdx, %rax
    3564. 

  3564.         andq	%rbp, %r11
    3565. 

  3565.         addq	%rax, %rcx
    3566. 

  3566.         adcq	$0x00, %r9
    3567. 

  3567.         adcq	$0x00, %r10
    3568. 

  3568.         adcq	$0x00, %r11
    3569. 

  3569.         # Reduce if top bit set
    3570. 

  3570.         movq	%r11, %rdx
    3571. 

  3571.         sarq	$63, %rdx
    3572. 

  3572.         andq	$19, %rdx
    3573. 

  3573.         andq	%rbp, %r11
    3574. 

  3574.         addq	%rdx, %rcx
    3575. 

  3575.         adcq	$0x00, %r9
    3576. 

  3576.         adcq	$0x00, %r10
    3577. 

  3577.         adcq	$0x00, %r11
    3578. 

  3578.         # Store
    3579. 

  3579.         movq	%rcx, 64(%rsp)
    3580. 

  3580.         movq	%r9, 72(%rsp)
    3581. 

  3581.         movq	%r10, 80(%rsp)
    3582. 

  3582.         movq	%r11, 88(%rsp)
    3583. 

  3583.         # Add
    3584. 

  3584.         movq	96(%rsp), %rcx
    3585. 

  3585.         movq	104(%rsp), %r9
    3586. 

  3586.         addq	32(%rsp), %rcx
    3587. 

  3587.         movq	112(%rsp), %r10
    3588. 

  3588.         adcq	40(%rsp), %r9
    3589. 

  3589.         movq	120(%rsp), %rbp
    3590. 

  3590.         adcq	48(%rsp), %r10
    3591. 

  3591.         movq	$-19, %rax
    3592. 

  3592.         adcq	56(%rsp), %rbp
    3593. 

  3593.         movq	$0x7fffffffffffffff, %rdx
    3594. 

  3594.         movq	%rbp, %r11
    3595. 

  3595.         sarq	$63, %rbp
    3596. 

  3596.         #   Mask the modulus
    3597. 

  3597.         andq	%rbp, %rax
    3598. 

  3598.         andq	%rbp, %rdx
    3599. 

  3599.         #   Sub modulus (if overflow)
    3600. 

  3600.         subq	%rax, %rcx
    3601. 

  3601.         sbbq	%rbp, %r9
    3602. 

  3602.         sbbq	%rbp, %r10
    3603. 

  3603.         sbbq	%rdx, %r11
    3604. 

  3604.         movq	%rcx, 96(%rsp)
    3605. 

  3605.         movq	%r9, 104(%rsp)
    3606. 

  3606.         movq	%r10, 112(%rsp)
    3607. 

  3607.         movq	%r11, 120(%rsp)
    3608. 

  3608.         # Multiply
    3609. 

  3609.         #  A[0] * B[0]
    3610. 

  3610.         movq	(%rsp), %rax
    3611. 

  3611.         mulq	(%r8)
    3612. 

  3612.         movq	%rax, %rcx
    3613. 

  3613.         movq	%rdx, %r9
    3614. 

  3614.         #  A[0] * B[1]
    3615. 

  3615.         movq	8(%rsp), %rax
    3616. 

  3616.         mulq	(%r8)
    3617. 

  3617.         xorq	%r10, %r10
    3618. 

  3618.         addq	%rax, %r9
    3619. 

  3619.         adcq	%rdx, %r10
    3620. 

  3620.         #  A[1] * B[0]
    3621. 

  3621.         movq	(%rsp), %rax
    3622. 

  3622.         mulq	8(%r8)
    3623. 

  3623.         xorq	%r11, %r11
    3624. 

  3624.         addq	%rax, %r9
    3625. 

  3625.         adcq	%rdx, %r10
    3626. 

  3626.         adcq	$0x00, %r11
    3627. 

  3627.         #  A[0] * B[2]
    3628. 

  3628.         movq	16(%rsp), %rax
    3629. 

  3629.         mulq	(%r8)
    3630. 

  3630.         addq	%rax, %r10
    3631. 

  3631.         adcq	%rdx, %r11
    3632. 

  3632.         #  A[1] * B[1]
    3633. 

  3633.         movq	8(%rsp), %rax
    3634. 

  3634.         mulq	8(%r8)
    3635. 

  3635.         xorq	%r12, %r12
    3636. 

  3636.         addq	%rax, %r10
    3637. 

  3637.         adcq	%rdx, %r11
    3638. 

  3638.         adcq	$0x00, %r12
    3639. 

  3639.         #  A[2] * B[0]
    3640. 

  3640.         movq	(%rsp), %rax
    3641. 

  3641.         mulq	16(%r8)
    3642. 

  3642.         addq	%rax, %r10
    3643. 

  3643.         adcq	%rdx, %r11
    3644. 

  3644.         adcq	$0x00, %r12
    3645. 

  3645.         #  A[0] * B[3]
    3646. 

  3646.         movq	24(%rsp), %rax
    3647. 

  3647.         mulq	(%r8)
    3648. 

  3648.         xorq	%r13, %r13
    3649. 

  3649.         addq	%rax, %r11
    3650. 

  3650.         adcq	%rdx, %r12
    3651. 

  3651.         adcq	$0x00, %r13
    3652. 

  3652.         #  A[1] * B[2]
    3653. 

  3653.         movq	16(%rsp), %rax
    3654. 

  3654.         mulq	8(%r8)
    3655. 

  3655.         addq	%rax, %r11
    3656. 

  3656.         adcq	%rdx, %r12
    3657. 

  3657.         adcq	$0x00, %r13
    3658. 

  3658.         #  A[2] * B[1]
    3659. 

  3659.         movq	8(%rsp), %rax
    3660. 

  3660.         mulq	16(%r8)
    3661. 

  3661.         addq	%rax, %r11
    3662. 

  3662.         adcq	%rdx, %r12
    3663. 

  3663.         adcq	$0x00, %r13
    3664. 

  3664.         #  A[3] * B[0]
    3665. 

  3665.         movq	(%rsp), %rax
    3666. 

  3666.         mulq	24(%r8)
    3667. 

  3667.         addq	%rax, %r11
    3668. 

  3668.         adcq	%rdx, %r12
    3669. 

  3669.         adcq	$0x00, %r13
    3670. 

  3670.         #  A[1] * B[3]
    3671. 

  3671.         movq	24(%rsp), %rax
    3672. 

  3672.         mulq	8(%r8)
    3673. 

  3673.         xorq	%r14, %r14
    3674. 

  3674.         addq	%rax, %r12
    3675. 

  3675.         adcq	%rdx, %r13
    3676. 

  3676.         adcq	$0x00, %r14
    3677. 

  3677.         #  A[2] * B[2]
    3678. 

  3678.         movq	16(%rsp), %rax
    3679. 

  3679.         mulq	16(%r8)
    3680. 

  3680.         addq	%rax, %r12
    3681. 

  3681.         adcq	%rdx, %r13
    3682. 

  3682.         adcq	$0x00, %r14
    3683. 

  3683.         #  A[3] * B[1]
    3684. 

  3684.         movq	8(%rsp), %rax
    3685. 

  3685.         mulq	24(%r8)
    3686. 

  3686.         addq	%rax, %r12
    3687. 

  3687.         adcq	%rdx, %r13
    3688. 

  3688.         adcq	$0x00, %r14
    3689. 

  3689.         #  A[2] * B[3]
    3690. 

  3690.         movq	24(%rsp), %rax
    3691. 

  3691.         mulq	16(%r8)
    3692. 

  3692.         xorq	%r15, %r15
    3693. 

  3693.         addq	%rax, %r13
    3694. 

  3694.         adcq	%rdx, %r14
    3695. 

  3695.         adcq	$0x00, %r15
    3696. 

  3696.         #  A[3] * B[2]
    3697. 

  3697.         movq	16(%rsp), %rax
    3698. 

  3698.         mulq	24(%r8)
    3699. 

  3699.         addq	%rax, %r13
    3700. 

  3700.         adcq	%rdx, %r14
    3701. 

  3701.         adcq	$0x00, %r15
    3702. 

  3702.         #  A[3] * B[3]
    3703. 

  3703.         movq	24(%rsp), %rax
    3704. 

  3704.         mulq	24(%r8)
    3705. 

  3705.         addq	%rax, %r14
    3706. 

  3706.         adcq	%rdx, %r15
    3707. 

  3707.         # Reduce
    3708. 

  3708.         movq	$0x7fffffffffffffff, %rbp
    3709. 

  3709.         #  Move top half into t4-t7 and remove top bit from t3
    3710. 

  3710.         shldq	$0x01, %r14, %r15
    3711. 

  3711.         shldq	$0x01, %r13, %r14
    3712. 

  3712.         shldq	$0x01, %r12, %r13
    3713. 

  3713.         shldq	$0x01, %r11, %r12
    3714. 

  3714.         andq	%rbp, %r11
    3715. 

  3715.         #  Multiply top half by 19
    3716. 

  3716.         movq	$19, %rax
    3717. 

  3717.         mulq	%r12
    3718. 

  3718.         xorq	%r12, %r12
    3719. 

  3719.         addq	%rax, %rcx
    3720. 

  3720.         movq	$19, %rax
    3721. 

  3721.         adcq	%rdx, %r12
    3722. 

  3722.         mulq	%r13
    3723. 

  3723.         xorq	%r13, %r13
    3724. 

  3724.         addq	%rax, %r9
    3725. 

  3725.         movq	$19, %rax
    3726. 

  3726.         adcq	%rdx, %r13
    3727. 

  3727.         mulq	%r14
    3728. 

  3728.         xorq	%r14, %r14
    3729. 

  3729.         addq	%rax, %r10
    3730. 

  3730.         movq	$19, %rax
    3731. 

  3731.         adcq	%rdx, %r14
    3732. 

  3732.         mulq	%r15
    3733. 

  3733.         #  Add remaining product results in
    3734. 

  3734.         addq	%r12, %r9
    3735. 

  3735.         adcq	%r13, %r10
    3736. 

  3736.         adcq	%r14, %r11
    3737. 

  3737.         adcq	%rax, %r11
    3738. 

  3738.         adcq	$0x00, %rdx
    3739. 

  3739.         #  Overflow
    3740. 

  3740.         shldq	$0x01, %r11, %rdx
    3741. 

  3741.         imulq	$19, %rdx, %rax
    3742. 

  3742.         andq	%rbp, %r11
    3743. 

  3743.         addq	%rax, %rcx
    3744. 

  3744.         adcq	$0x00, %r9
    3745. 

  3745.         adcq	$0x00, %r10
    3746. 

  3746.         adcq	$0x00, %r11
    3747. 

  3747.         # Reduce if top bit set
    3748. 

  3748.         movq	%r11, %rdx
    3749. 

  3749.         sarq	$63, %rdx
    3750. 

  3750.         andq	$19, %rdx
    3751. 

  3751.         andq	%rbp, %r11
    3752. 

  3752.         addq	%rdx, %rcx
    3753. 

  3753.         adcq	$0x00, %r9
    3754. 

  3754.         adcq	$0x00, %r10
    3755. 

  3755.         adcq	$0x00, %r11
    3756. 

  3756.         # Store
    3757. 

  3757.         movq	%rcx, 32(%rsp)
    3758. 

  3758.         movq	%r9, 40(%rsp)
    3759. 

  3759.         movq	%r10, 48(%rsp)
    3760. 

  3760.         movq	%r11, 56(%rsp)
    3761. 

  3761.         # Multiply
    3762. 

  3762.         #  A[0] * B[0]
    3763. 

  3763.         movq	96(%rsp), %rax
    3764. 

  3764.         mulq	128(%rsp)
    3765. 

  3765.         movq	%rax, %rcx
    3766. 

  3766.         movq	%rdx, %r9
    3767. 

  3767.         #  A[0] * B[1]
    3768. 

  3768.         movq	104(%rsp), %rax
    3769. 

  3769.         mulq	128(%rsp)
    3770. 

  3770.         xorq	%r10, %r10
    3771. 

  3771.         addq	%rax, %r9
    3772. 

  3772.         adcq	%rdx, %r10
    3773. 

  3773.         #  A[1] * B[0]
    3774. 

  3774.         movq	96(%rsp), %rax
    3775. 

  3775.         mulq	136(%rsp)
    3776. 

  3776.         xorq	%r11, %r11
    3777. 

  3777.         addq	%rax, %r9
    3778. 

  3778.         adcq	%rdx, %r10
    3779. 

  3779.         adcq	$0x00, %r11
    3780. 

  3780.         #  A[0] * B[2]
    3781. 

  3781.         movq	112(%rsp), %rax
    3782. 

  3782.         mulq	128(%rsp)
    3783. 

  3783.         addq	%rax, %r10
    3784. 

  3784.         adcq	%rdx, %r11
    3785. 

  3785.         #  A[1] * B[1]
    3786. 

  3786.         movq	104(%rsp), %rax
    3787. 

  3787.         mulq	136(%rsp)
    3788. 

  3788.         xorq	%r12, %r12
    3789. 

  3789.         addq	%rax, %r10
    3790. 

  3790.         adcq	%rdx, %r11
    3791. 

  3791.         adcq	$0x00, %r12
    3792. 

  3792.         #  A[2] * B[0]
    3793. 

  3793.         movq	96(%rsp), %rax
    3794. 

  3794.         mulq	144(%rsp)
    3795. 

  3795.         addq	%rax, %r10
    3796. 

  3796.         adcq	%rdx, %r11
    3797. 

  3797.         adcq	$0x00, %r12
    3798. 

  3798.         #  A[0] * B[3]
    3799. 

  3799.         movq	120(%rsp), %rax
    3800. 

  3800.         mulq	128(%rsp)
    3801. 

  3801.         xorq	%r13, %r13
    3802. 

  3802.         addq	%rax, %r11
    3803. 

  3803.         adcq	%rdx, %r12
    3804. 

  3804.         adcq	$0x00, %r13
    3805. 

  3805.         #  A[1] * B[2]
    3806. 

  3806.         movq	112(%rsp), %rax
    3807. 

  3807.         mulq	136(%rsp)
    3808. 

  3808.         addq	%rax, %r11
    3809. 

  3809.         adcq	%rdx, %r12
    3810. 

  3810.         adcq	$0x00, %r13
    3811. 

  3811.         #  A[2] * B[1]
    3812. 

  3812.         movq	104(%rsp), %rax
    3813. 

  3813.         mulq	144(%rsp)
    3814. 

  3814.         addq	%rax, %r11
    3815. 

  3815.         adcq	%rdx, %r12
    3816. 

  3816.         adcq	$0x00, %r13
    3817. 

  3817.         #  A[3] * B[0]
    3818. 

  3818.         movq	96(%rsp), %rax
    3819. 

  3819.         mulq	152(%rsp)
    3820. 

  3820.         addq	%rax, %r11
    3821. 

  3821.         adcq	%rdx, %r12
    3822. 

  3822.         adcq	$0x00, %r13
    3823. 

  3823.         #  A[1] * B[3]
    3824. 

  3824.         movq	120(%rsp), %rax
    3825. 

  3825.         mulq	136(%rsp)
    3826. 

  3826.         xorq	%r14, %r14
    3827. 

  3827.         addq	%rax, %r12
    3828. 

  3828.         adcq	%rdx, %r13
    3829. 

  3829.         adcq	$0x00, %r14
    3830. 

  3830.         #  A[2] * B[2]
    3831. 

  3831.         movq	112(%rsp), %rax
    3832. 

  3832.         mulq	144(%rsp)
    3833. 

  3833.         addq	%rax, %r12
    3834. 

  3834.         adcq	%rdx, %r13
    3835. 

  3835.         adcq	$0x00, %r14
    3836. 

  3836.         #  A[3] * B[1]
    3837. 

  3837.         movq	104(%rsp), %rax
    3838. 

  3838.         mulq	152(%rsp)
    3839. 

  3839.         addq	%rax, %r12
    3840. 

  3840.         adcq	%rdx, %r13
    3841. 

  3841.         adcq	$0x00, %r14
    3842. 

  3842.         #  A[2] * B[3]
    3843. 

  3843.         movq	120(%rsp), %rax
    3844. 

  3844.         mulq	144(%rsp)
    3845. 

  3845.         xorq	%r15, %r15
    3846. 

  3846.         addq	%rax, %r13
    3847. 

  3847.         adcq	%rdx, %r14
    3848. 

  3848.         adcq	$0x00, %r15
    3849. 

  3849.         #  A[3] * B[2]
    3850. 

  3850.         movq	112(%rsp), %rax
    3851. 

  3851.         mulq	152(%rsp)
    3852. 

  3852.         addq	%rax, %r13
    3853. 

  3853.         adcq	%rdx, %r14
    3854. 

  3854.         adcq	$0x00, %r15
    3855. 

  3855.         #  A[3] * B[3]
    3856. 

  3856.         movq	120(%rsp), %rax
    3857. 

  3857.         mulq	152(%rsp)
    3858. 

  3858.         addq	%rax, %r14
    3859. 

  3859.         adcq	%rdx, %r15
    3860. 

  3860.         # Reduce
    3861. 

  3861.         movq	$0x7fffffffffffffff, %rbp
    3862. 

  3862.         #  Move top half into t4-t7 and remove top bit from t3
    3863. 

  3863.         shldq	$0x01, %r14, %r15
    3864. 

  3864.         shldq	$0x01, %r13, %r14
    3865. 

  3865.         shldq	$0x01, %r12, %r13
    3866. 

  3866.         shldq	$0x01, %r11, %r12
    3867. 

  3867.         andq	%rbp, %r11
    3868. 

  3868.         #  Multiply top half by 19
    3869. 

  3869.         movq	$19, %rax
    3870. 

  3870.         mulq	%r12
    3871. 

  3871.         xorq	%r12, %r12
    3872. 

  3872.         addq	%rax, %rcx
    3873. 

  3873.         movq	$19, %rax
    3874. 

  3874.         adcq	%rdx, %r12
    3875. 

  3875.         mulq	%r13
    3876. 

  3876.         xorq	%r13, %r13
    3877. 

  3877.         addq	%rax, %r9
    3878. 

  3878.         movq	$19, %rax
    3879. 

  3879.         adcq	%rdx, %r13
    3880. 

  3880.         mulq	%r14
    3881. 

  3881.         xorq	%r14, %r14
    3882. 

  3882.         addq	%rax, %r10
    3883. 

  3883.         movq	$19, %rax
    3884. 

  3884.         adcq	%rdx, %r14
    3885. 

  3885.         mulq	%r15
    3886. 

  3886.         #  Add remaining product results in
    3887. 

  3887.         addq	%r12, %r9
    3888. 

  3888.         adcq	%r13, %r10
    3889. 

  3889.         adcq	%r14, %r11
    3890. 

  3890.         adcq	%rax, %r11
    3891. 

  3891.         adcq	$0x00, %rdx
    3892. 

  3892.         #  Overflow
    3893. 

  3893.         shldq	$0x01, %r11, %rdx
    3894. 

  3894.         imulq	$19, %rdx, %rax
    3895. 

  3895.         andq	%rbp, %r11
    3896. 

  3896.         addq	%rax, %rcx
    3897. 

  3897.         adcq	$0x00, %r9
    3898. 

  3898.         adcq	$0x00, %r10
    3899. 

  3899.         adcq	$0x00, %r11
    3900. 

  3900.         # Reduce if top bit set
    3901. 

  3901.         movq	%r11, %rdx
    3902. 

  3902.         sarq	$63, %rdx
    3903. 

  3903.         andq	$19, %rdx
    3904. 

  3904.         andq	%rbp, %r11
    3905. 

  3905.         addq	%rdx, %rcx
    3906. 

  3906.         adcq	$0x00, %r9
    3907. 

  3907.         adcq	$0x00, %r10
    3908. 

  3908.         adcq	$0x00, %r11
    3909. 

  3909.         # Store
    3910. 

  3910.         movq	%rcx, (%rsp)
    3911. 

  3911.         movq	%r9, 8(%rsp)
    3912. 

  3912.         movq	%r10, 16(%rsp)
    3913. 

  3913.         movq	%r11, 24(%rsp)
    3914. 

  3914.         decb	168(%rsp)
    3915. 

  3915.         jge	L_curve25519_x64_bits
    3916. 

  3916.         movq	$63, 168(%rsp)
    3917. 

  3917.         decb	160(%rsp)
    3918. 

  3918.         jge	L_curve25519_x64_words
    3919. 

  3919.         # Invert
    3920. 

  3920.         leaq	32(%rsp), %rdi
    3921. 

  3921.         movq	%rsp, %rsi
    3922. 

  3922. #ifndef __APPLE__
    3923. 

  3923.         callq	fe_sq_x64@plt
    3924. 

  3924. #else
    3925. 

  3925.         callq	_fe_sq_x64
    3926. 

  3926. #endif /* __APPLE__ */
    3927. 

  3927.         leaq	64(%rsp), %rdi
    3928. 

  3928.         leaq	32(%rsp), %rsi
    3929. 

  3929. #ifndef __APPLE__
    3930. 

  3930.         callq	fe_sq_x64@plt
    3931. 

  3931. #else
    3932. 

  3932.         callq	_fe_sq_x64
    3933. 

  3933. #endif /* __APPLE__ */
    3934. 

  3934.         leaq	64(%rsp), %rdi
    3935. 

  3935.         leaq	64(%rsp), %rsi
    3936. 

  3936. #ifndef __APPLE__
    3937. 

  3937.         callq	fe_sq_x64@plt
    3938. 

  3938. #else
    3939. 

  3939.         callq	_fe_sq_x64
    3940. 

  3940. #endif /* __APPLE__ */
    3941. 

  3941.         leaq	64(%rsp), %rdi
    3942. 

  3942.         movq	%rsp, %rsi
    3943. 

  3943.         leaq	64(%rsp), %rdx
    3944. 

  3944. #ifndef __APPLE__
    3945. 

  3945.         callq	fe_mul_x64@plt
    3946. 

  3946. #else
    3947. 

  3947.         callq	_fe_mul_x64
    3948. 

  3948. #endif /* __APPLE__ */
    3949. 

  3949.         leaq	32(%rsp), %rdi
    3950. 

  3950.         leaq	32(%rsp), %rsi
    3951. 

  3951.         leaq	64(%rsp), %rdx
    3952. 

  3952. #ifndef __APPLE__
    3953. 

  3953.         callq	fe_mul_x64@plt
    3954. 

  3954. #else
    3955. 

  3955.         callq	_fe_mul_x64
    3956. 

  3956. #endif /* __APPLE__ */
    3957. 

  3957.         leaq	96(%rsp), %rdi
    3958. 

  3958.         leaq	32(%rsp), %rsi
    3959. 

  3959. #ifndef __APPLE__
    3960. 

  3960.         callq	fe_sq_x64@plt
    3961. 

  3961. #else
    3962. 

  3962.         callq	_fe_sq_x64
    3963. 

  3963. #endif /* __APPLE__ */
    3964. 

  3964.         leaq	64(%rsp), %rdi
    3965. 

  3965.         leaq	64(%rsp), %rsi
    3966. 

  3966.         leaq	96(%rsp), %rdx
    3967. 

  3967. #ifndef __APPLE__
    3968. 

  3968.         callq	fe_mul_x64@plt
    3969. 

  3969. #else
    3970. 

  3970.         callq	_fe_mul_x64
    3971. 

  3971. #endif /* __APPLE__ */
    3972. 

  3972.         leaq	96(%rsp), %rdi
    3973. 

  3973.         leaq	64(%rsp), %rsi
    3974. 

  3974. #ifndef __APPLE__
    3975. 

  3975.         callq	fe_sq_x64@plt
    3976. 

  3976. #else
    3977. 

  3977.         callq	_fe_sq_x64
    3978. 

  3978. #endif /* __APPLE__ */
    3979. 

  3979.         leaq	96(%rsp), %rdi
    3980. 

  3980.         leaq	96(%rsp), %rsi
    3981. 

  3981.         movq	$4, %rdx
    3982. 

  3982. #ifndef __APPLE__
    3983. 

  3983.         callq	fe_sq_n_x64@plt
    3984. 

  3984. #else
    3985. 

  3985.         callq	_fe_sq_n_x64
    3986. 

  3986. #endif /* __APPLE__ */
    3987. 

  3987.         leaq	64(%rsp), %rdi
    3988. 

  3988.         leaq	96(%rsp), %rsi
    3989. 

  3989.         leaq	64(%rsp), %rdx
    3990. 

  3990. #ifndef __APPLE__
    3991. 

  3991.         callq	fe_mul_x64@plt
    3992. 

  3992. #else
    3993. 

  3993.         callq	_fe_mul_x64
    3994. 

  3994. #endif /* __APPLE__ */
    3995. 

  3995.         leaq	96(%rsp), %rdi
    3996. 

  3996.         leaq	64(%rsp), %rsi
    3997. 

  3997. #ifndef __APPLE__
    3998. 

  3998.         callq	fe_sq_x64@plt
    3999. 

  3999. #else
    4000. 

  4000.         callq	_fe_sq_x64
    4001. 

  4001. #endif /* __APPLE__ */
    4002. 

  4002.         leaq	96(%rsp), %rdi
    4003. 

  4003.         leaq	96(%rsp), %rsi
    4004. 

  4004.         movq	$9, %rdx
    4005. 

  4005. #ifndef __APPLE__
    4006. 

  4006.         callq	fe_sq_n_x64@plt
    4007. 

  4007. #else
    4008. 

  4008.         callq	_fe_sq_n_x64
    4009. 

  4009. #endif /* __APPLE__ */
    4010. 

  4010.         leaq	96(%rsp), %rdi
    4011. 

  4011.         leaq	96(%rsp), %rsi
    4012. 

  4012.         leaq	64(%rsp), %rdx
    4013. 

  4013. #ifndef __APPLE__
    4014. 

  4014.         callq	fe_mul_x64@plt
    4015. 

  4015. #else
    4016. 

  4016.         callq	_fe_mul_x64
    4017. 

  4017. #endif /* __APPLE__ */
    4018. 

  4018.         leaq	128(%rsp), %rdi
    4019. 

  4019.         leaq	96(%rsp), %rsi
    4020. 

  4020. #ifndef __APPLE__
    4021. 

  4021.         callq	fe_sq_x64@plt
    4022. 

  4022. #else
    4023. 

  4023.         callq	_fe_sq_x64
    4024. 

  4024. #endif /* __APPLE__ */
    4025. 

  4025.         leaq	128(%rsp), %rdi
    4026. 

  4026.         leaq	128(%rsp), %rsi
    4027. 

  4027.         movq	$19, %rdx
    4028. 

  4028. #ifndef __APPLE__
    4029. 

  4029.         callq	fe_sq_n_x64@plt
    4030. 

  4030. #else
    4031. 

  4031.         callq	_fe_sq_n_x64
    4032. 

  4032. #endif /* __APPLE__ */
    4033. 

  4033.         leaq	96(%rsp), %rdi
    4034. 

  4034.         leaq	128(%rsp), %rsi
    4035. 

  4035.         leaq	96(%rsp), %rdx
    4036. 

  4036. #ifndef __APPLE__
    4037. 

  4037.         callq	fe_mul_x64@plt
    4038. 

  4038. #else
    4039. 

  4039.         callq	_fe_mul_x64
    4040. 

  4040. #endif /* __APPLE__ */
    4041. 

  4041.         leaq	96(%rsp), %rdi
    4042. 

  4042.         leaq	96(%rsp), %rsi
    4043. 

  4043. #ifndef __APPLE__
    4044. 

  4044.         callq	fe_sq_x64@plt
    4045. 

  4045. #else
    4046. 

  4046.         callq	_fe_sq_x64
    4047. 

  4047. #endif /* __APPLE__ */
    4048. 

  4048.         leaq	96(%rsp), %rdi
    4049. 

  4049.         leaq	96(%rsp), %rsi
    4050. 

  4050.         movq	$9, %rdx
    4051. 

  4051. #ifndef __APPLE__
    4052. 

  4052.         callq	fe_sq_n_x64@plt
    4053. 

  4053. #else
    4054. 

  4054.         callq	_fe_sq_n_x64
    4055. 

  4055. #endif /* __APPLE__ */
    4056. 

  4056.         leaq	64(%rsp), %rdi
    4057. 

  4057.         leaq	96(%rsp), %rsi
    4058. 

  4058.         leaq	64(%rsp), %rdx
    4059. 

  4059. #ifndef __APPLE__
    4060. 

  4060.         callq	fe_mul_x64@plt
    4061. 

  4061. #else
    4062. 

  4062.         callq	_fe_mul_x64
    4063. 

  4063. #endif /* __APPLE__ */
    4064. 

  4064.         leaq	96(%rsp), %rdi
    4065. 

  4065.         leaq	64(%rsp), %rsi
    4066. 

  4066. #ifndef __APPLE__
    4067. 

  4067.         callq	fe_sq_x64@plt
    4068. 

  4068. #else
    4069. 

  4069.         callq	_fe_sq_x64
    4070. 

  4070. #endif /* __APPLE__ */
    4071. 

  4071.         leaq	96(%rsp), %rdi
    4072. 

  4072.         leaq	96(%rsp), %rsi
    4073. 

  4073.         movq	$49, %rdx
    4074. 

  4074. #ifndef __APPLE__
    4075. 

  4075.         callq	fe_sq_n_x64@plt
    4076. 

  4076. #else
    4077. 

  4077.         callq	_fe_sq_n_x64
    4078. 

  4078. #endif /* __APPLE__ */
    4079. 

  4079.         leaq	96(%rsp), %rdi
    4080. 

  4080.         leaq	96(%rsp), %rsi
    4081. 

  4081.         leaq	64(%rsp), %rdx
    4082. 

  4082. #ifndef __APPLE__
    4083. 

  4083.         callq	fe_mul_x64@plt
    4084. 

  4084. #else
    4085. 

  4085.         callq	_fe_mul_x64
    4086. 

  4086. #endif /* __APPLE__ */
    4087. 

  4087.         leaq	128(%rsp), %rdi
    4088. 

  4088.         leaq	96(%rsp), %rsi
    4089. 

  4089. #ifndef __APPLE__
    4090. 

  4090.         callq	fe_sq_x64@plt
    4091. 

  4091. #else
    4092. 

  4092.         callq	_fe_sq_x64
    4093. 

  4093. #endif /* __APPLE__ */
    4094. 

  4094.         leaq	128(%rsp), %rdi
    4095. 

  4095.         leaq	128(%rsp), %rsi
    4096. 

  4096.         movq	$0x63, %rdx
    4097. 

  4097. #ifndef __APPLE__
    4098. 

  4098.         callq	fe_sq_n_x64@plt
    4099. 

  4099. #else
    4100. 

  4100.         callq	_fe_sq_n_x64
    4101. 

  4101. #endif /* __APPLE__ */
    4102. 

  4102.         leaq	96(%rsp), %rdi
    4103. 

  4103.         leaq	128(%rsp), %rsi
    4104. 

  4104.         leaq	96(%rsp), %rdx
    4105. 

  4105. #ifndef __APPLE__
    4106. 

  4106.         callq	fe_mul_x64@plt
    4107. 

  4107. #else
    4108. 

  4108.         callq	_fe_mul_x64
    4109. 

  4109. #endif /* __APPLE__ */
    4110. 

  4110.         leaq	96(%rsp), %rdi
    4111. 

  4111.         leaq	96(%rsp), %rsi
    4112. 

  4112. #ifndef __APPLE__
    4113. 

  4113.         callq	fe_sq_x64@plt
    4114. 

  4114. #else
    4115. 

  4115.         callq	_fe_sq_x64
    4116. 

  4116. #endif /* __APPLE__ */
    4117. 

  4117.         leaq	96(%rsp), %rdi
    4118. 

  4118.         leaq	96(%rsp), %rsi
    4119. 

  4119.         movq	$49, %rdx
    4120. 

  4120. #ifndef __APPLE__
    4121. 

  4121.         callq	fe_sq_n_x64@plt
    4122. 

  4122. #else
    4123. 

  4123.         callq	_fe_sq_n_x64
    4124. 

  4124. #endif /* __APPLE__ */
    4125. 

  4125.         leaq	64(%rsp), %rdi
    4126. 

  4126.         leaq	96(%rsp), %rsi
    4127. 

  4127.         leaq	64(%rsp), %rdx
    4128. 

  4128. #ifndef __APPLE__
    4129. 

  4129.         callq	fe_mul_x64@plt
    4130. 

  4130. #else
    4131. 

  4131.         callq	_fe_mul_x64
    4132. 

  4132. #endif /* __APPLE__ */
    4133. 

  4133.         leaq	64(%rsp), %rdi
    4134. 

  4134.         leaq	64(%rsp), %rsi
    4135. 

  4135. #ifndef __APPLE__
    4136. 

  4136.         callq	fe_sq_x64@plt
    4137. 

  4137. #else
    4138. 

  4138.         callq	_fe_sq_x64
    4139. 

  4139. #endif /* __APPLE__ */
    4140. 

  4140.         leaq	64(%rsp), %rdi
    4141. 

  4141.         leaq	64(%rsp), %rsi
    4142. 

  4142.         movq	$4, %rdx
    4143. 

  4143. #ifndef __APPLE__
    4144. 

  4144.         callq	fe_sq_n_x64@plt
    4145. 

  4145. #else
    4146. 

  4146.         callq	_fe_sq_n_x64
    4147. 

  4147. #endif /* __APPLE__ */
    4148. 

  4148.         movq	%rsp, %rdi
    4149. 

  4149.         leaq	64(%rsp), %rsi
    4150. 

  4150.         leaq	32(%rsp), %rdx
    4151. 

  4151. #ifndef __APPLE__
    4152. 

  4152.         callq	fe_mul_x64@plt
    4153. 

  4153. #else
    4154. 

  4154.         callq	_fe_mul_x64
    4155. 

  4155. #endif /* __APPLE__ */
    4156. 

  4156.         movq	176(%rsp), %rdi
    4157. 

  4157.         # Multiply
    4158. 

  4158.         #  A[0] * B[0]
    4159. 

  4159.         movq	(%rsp), %rax
    4160. 

  4160.         mulq	(%rdi)
    4161. 

  4161.         movq	%rax, %rcx
    4162. 

  4162.         movq	%rdx, %r9
    4163. 

  4163.         #  A[0] * B[1]
    4164. 

  4164.         movq	8(%rsp), %rax
    4165. 

  4165.         mulq	(%rdi)
    4166. 

  4166.         xorq	%r10, %r10
    4167. 

  4167.         addq	%rax, %r9
    4168. 

  4168.         adcq	%rdx, %r10
    4169. 

  4169.         #  A[1] * B[0]
    4170. 

  4170.         movq	(%rsp), %rax
    4171. 

  4171.         mulq	8(%rdi)
    4172. 

  4172.         xorq	%r11, %r11
    4173. 

  4173.         addq	%rax, %r9
    4174. 

  4174.         adcq	%rdx, %r10
    4175. 

  4175.         adcq	$0x00, %r11
    4176. 

  4176.         #  A[0] * B[2]
    4177. 

  4177.         movq	16(%rsp), %rax
    4178. 

  4178.         mulq	(%rdi)
    4179. 

  4179.         addq	%rax, %r10
    4180. 

  4180.         adcq	%rdx, %r11
    4181. 

  4181.         #  A[1] * B[1]
    4182. 

  4182.         movq	8(%rsp), %rax
    4183. 

  4183.         mulq	8(%rdi)
    4184. 

  4184.         xorq	%r12, %r12
    4185. 

  4185.         addq	%rax, %r10
    4186. 

  4186.         adcq	%rdx, %r11
    4187. 

  4187.         adcq	$0x00, %r12
    4188. 

  4188.         #  A[2] * B[0]
    4189. 

  4189.         movq	(%rsp), %rax
    4190. 

  4190.         mulq	16(%rdi)
    4191. 

  4191.         addq	%rax, %r10
    4192. 

  4192.         adcq	%rdx, %r11
    4193. 

  4193.         adcq	$0x00, %r12
    4194. 

  4194.         #  A[0] * B[3]
    4195. 

  4195.         movq	24(%rsp), %rax
    4196. 

  4196.         mulq	(%rdi)
    4197. 

  4197.         xorq	%r13, %r13
    4198. 

  4198.         addq	%rax, %r11
    4199. 

  4199.         adcq	%rdx, %r12
    4200. 

  4200.         adcq	$0x00, %r13
    4201. 

  4201.         #  A[1] * B[2]
    4202. 

  4202.         movq	16(%rsp), %rax
    4203. 

  4203.         mulq	8(%rdi)
    4204. 

  4204.         addq	%rax, %r11
    4205. 

  4205.         adcq	%rdx, %r12
    4206. 

  4206.         adcq	$0x00, %r13
    4207. 

  4207.         #  A[2] * B[1]
    4208. 

  4208.         movq	8(%rsp), %rax
    4209. 

  4209.         mulq	16(%rdi)
    4210. 

  4210.         addq	%rax, %r11
    4211. 

  4211.         adcq	%rdx, %r12
    4212. 

  4212.         adcq	$0x00, %r13
    4213. 

  4213.         #  A[3] * B[0]
    4214. 

  4214.         movq	(%rsp), %rax
    4215. 

  4215.         mulq	24(%rdi)
    4216. 

  4216.         addq	%rax, %r11
    4217. 

  4217.         adcq	%rdx, %r12
    4218. 

  4218.         adcq	$0x00, %r13
    4219. 

  4219.         #  A[1] * B[3]
    4220. 

  4220.         movq	24(%rsp), %rax
    4221. 

  4221.         mulq	8(%rdi)
    4222. 

  4222.         xorq	%r14, %r14
    4223. 

  4223.         addq	%rax, %r12
    4224. 

  4224.         adcq	%rdx, %r13
    4225. 

  4225.         adcq	$0x00, %r14
    4226. 

  4226.         #  A[2] * B[2]
    4227. 

  4227.         movq	16(%rsp), %rax
    4228. 

  4228.         mulq	16(%rdi)
    4229. 

  4229.         addq	%rax, %r12
    4230. 

  4230.         adcq	%rdx, %r13
    4231. 

  4231.         adcq	$0x00, %r14
    4232. 

  4232.         #  A[3] * B[1]
    4233. 

  4233.         movq	8(%rsp), %rax
    4234. 

  4234.         mulq	24(%rdi)
    4235. 

  4235.         addq	%rax, %r12
    4236. 

  4236.         adcq	%rdx, %r13
    4237. 

  4237.         adcq	$0x00, %r14
    4238. 

  4238.         #  A[2] * B[3]
    4239. 

  4239.         movq	24(%rsp), %rax
    4240. 

  4240.         mulq	16(%rdi)
    4241. 

  4241.         xorq	%r15, %r15
    4242. 

  4242.         addq	%rax, %r13
    4243. 

  4243.         adcq	%rdx, %r14
    4244. 

  4244.         adcq	$0x00, %r15
    4245. 

  4245.         #  A[3] * B[2]
    4246. 

  4246.         movq	16(%rsp), %rax
    4247. 

  4247.         mulq	24(%rdi)
    4248. 

  4248.         addq	%rax, %r13
    4249. 

  4249.         adcq	%rdx, %r14
    4250. 

  4250.         adcq	$0x00, %r15
    4251. 

  4251.         #  A[3] * B[3]
    4252. 

  4252.         movq	24(%rsp), %rax
    4253. 

  4253.         mulq	24(%rdi)
    4254. 

  4254.         addq	%rax, %r14
    4255. 

  4255.         adcq	%rdx, %r15
    4256. 

  4256.         # Reduce
    4257. 

  4257.         movq	$0x7fffffffffffffff, %rbp
    4258. 

  4258.         #  Move top half into t4-t7 and remove top bit from t3
    4259. 

  4259.         shldq	$0x01, %r14, %r15
    4260. 

  4260.         shldq	$0x01, %r13, %r14
    4261. 

  4261.         shldq	$0x01, %r12, %r13
    4262. 

  4262.         shldq	$0x01, %r11, %r12
    4263. 

  4263.         andq	%rbp, %r11
    4264. 

  4264.         #  Multiply top half by 19
    4265. 

  4265.         movq	$19, %rax
    4266. 

  4266.         mulq	%r12
    4267. 

  4267.         xorq	%r12, %r12
    4268. 

  4268.         addq	%rax, %rcx
    4269. 

  4269.         movq	$19, %rax
    4270. 

  4270.         adcq	%rdx, %r12
    4271. 

  4271.         mulq	%r13
    4272. 

  4272.         xorq	%r13, %r13
    4273. 

  4273.         addq	%rax, %r9
    4274. 

  4274.         movq	$19, %rax
    4275. 

  4275.         adcq	%rdx, %r13
    4276. 

  4276.         mulq	%r14
    4277. 

  4277.         xorq	%r14, %r14
    4278. 

  4278.         addq	%rax, %r10
    4279. 

  4279.         movq	$19, %rax
    4280. 

  4280.         adcq	%rdx, %r14
    4281. 

  4281.         mulq	%r15
    4282. 

  4282.         #  Add remaining product results in
    4283. 

  4283.         addq	%r12, %r9
    4284. 

  4284.         adcq	%r13, %r10
    4285. 

  4285.         adcq	%r14, %r11
    4286. 

  4286.         adcq	%rax, %r11
    4287. 

  4287.         adcq	$0x00, %rdx
    4288. 

  4288.         #  Overflow
    4289. 

  4289.         shldq	$0x01, %r11, %rdx
    4290. 

  4290.         imulq	$19, %rdx, %rax
    4291. 

  4291.         andq	%rbp, %r11
    4292. 

  4292.         addq	%rax, %rcx
    4293. 

  4293.         adcq	$0x00, %r9
    4294. 

  4294.         adcq	$0x00, %r10
    4295. 

  4295.         adcq	$0x00, %r11
    4296. 

  4296.         # Reduce if top bit set
    4297. 

  4297.         movq	%r11, %rdx
    4298. 

  4298.         sarq	$63, %rdx
    4299. 

  4299.         andq	$19, %rdx
    4300. 

  4300.         andq	%rbp, %r11
    4301. 

  4301.         addq	%rdx, %rcx
    4302. 

  4302.         adcq	$0x00, %r9
    4303. 

  4303.         adcq	$0x00, %r10
    4304. 

  4304.         adcq	$0x00, %r11
    4305. 

  4305.         movq	%rcx, %rax
    4306. 

  4306.         addq	$19, %rax
    4307. 

  4307.         movq	%r9, %rax
    4308. 

  4308.         adcq	$0x00, %rax
    4309. 

  4309.         movq	%r10, %rax
    4310. 

  4310.         adcq	$0x00, %rax
    4311. 

  4311.         movq	%r11, %rax
    4312. 

  4312.         adcq	$0x00, %rax
    4313. 

  4313.         sarq	$63, %rax
    4314. 

  4314.         andq	$19, %rax
    4315. 

  4315.         addq	%rax, %rcx
    4316. 

  4316.         adcq	$0x00, %r9
    4317. 

  4317.         adcq	$0x00, %r10
    4318. 

  4318.         adcq	$0x00, %r11
    4319. 

  4319.         andq	%rbp, %r11
    4320. 

  4320.         # Store
    4321. 

  4321.         movq	%rcx, (%rdi)
    4322. 

  4322.         movq	%r9, 8(%rdi)
    4323. 

  4323.         movq	%r10, 16(%rdi)
    4324. 

  4324.         movq	%r11, 24(%rdi)
    4325. 

  4325.         xorq	%rax, %rax
    4326. 

  4326.         addq	$0xb8, %rsp
    4327. 

  4327.         popq	%rbp
    4328. 

  4328.         popq	%rbx
    4329. 

  4329.         popq	%r15
    4330. 

  4330.         popq	%r14
    4331. 

  4331.         popq	%r13
    4332. 

  4332.         popq	%r12
    4333. 

  4333.         repz retq
    4334. 

  4334. #ifndef __APPLE__
    4335. 

  4335. .size	curve25519_x64,.-curve25519_x64
    4336. 

  4336. #endif /* __APPLE__ */
    4337. 

  4337. #ifndef __APPLE__
    4338. 

  4338. .text
    4339. 

  4339. .globl	fe_pow22523_x64
    4340. 

  4340. .type	fe_pow22523_x64,@function
    4341. 

  4341. .align	16
    4342. 

  4342. fe_pow22523_x64:
    4343. 

  4343. #else
    4344. 

  4344. .section	__TEXT,__text
    4345. 

  4345. .globl	_fe_pow22523_x64
    4346. 

  4346. .p2align	4
    4347. 

  4347. _fe_pow22523_x64:
    4348. 

  4348. #endif /* __APPLE__ */
    4349. 

  4349.         subq	$0x70, %rsp
    4350. 

  4350.         # pow22523
    4351. 

  4351.         movq	%rdi, 96(%rsp)
    4352. 

  4352.         movq	%rsi, 104(%rsp)
    4353. 

  4353.         movq	%rsp, %rdi
    4354. 

  4354.         movq	104(%rsp), %rsi
    4355. 

  4355. #ifndef __APPLE__
    4356. 

  4356.         callq	fe_sq_x64@plt
    4357. 

  4357. #else
    4358. 

  4358.         callq	_fe_sq_x64
    4359. 

  4359. #endif /* __APPLE__ */
    4360. 

  4360.         leaq	32(%rsp), %rdi
    4361. 

  4361.         movq	%rsp, %rsi
    4362. 

  4362. #ifndef __APPLE__
    4363. 

  4363.         callq	fe_sq_x64@plt
    4364. 

  4364. #else
    4365. 

  4365.         callq	_fe_sq_x64
    4366. 

  4366. #endif /* __APPLE__ */
    4367. 

  4367.         leaq	32(%rsp), %rdi
    4368. 

  4368.         leaq	32(%rsp), %rsi
    4369. 

  4369. #ifndef __APPLE__
    4370. 

  4370.         callq	fe_sq_x64@plt
    4371. 

  4371. #else
    4372. 

  4372.         callq	_fe_sq_x64
    4373. 

  4373. #endif /* __APPLE__ */
    4374. 

  4374.         leaq	32(%rsp), %rdi
    4375. 

  4375.         movq	104(%rsp), %rsi
    4376. 

  4376.         leaq	32(%rsp), %rdx
    4377. 

  4377. #ifndef __APPLE__
    4378. 

  4378.         callq	fe_mul_x64@plt
    4379. 

  4379. #else
    4380. 

  4380.         callq	_fe_mul_x64
    4381. 

  4381. #endif /* __APPLE__ */
    4382. 

  4382.         movq	%rsp, %rdi
    4383. 

  4383.         movq	%rsp, %rsi
    4384. 

  4384.         leaq	32(%rsp), %rdx
    4385. 

  4385. #ifndef __APPLE__
    4386. 

  4386.         callq	fe_mul_x64@plt
    4387. 

  4387. #else
    4388. 

  4388.         callq	_fe_mul_x64
    4389. 

  4389. #endif /* __APPLE__ */
    4390. 

  4390.         movq	%rsp, %rdi
    4391. 

  4391.         movq	%rsp, %rsi
    4392. 

  4392. #ifndef __APPLE__
    4393. 

  4393.         callq	fe_sq_x64@plt
    4394. 

  4394. #else
    4395. 

  4395.         callq	_fe_sq_x64
    4396. 

  4396. #endif /* __APPLE__ */
    4397. 

  4397.         movq	%rsp, %rdi
    4398. 

  4398.         leaq	32(%rsp), %rsi
    4399. 

  4399.         movq	%rsp, %rdx
    4400. 

  4400. #ifndef __APPLE__
    4401. 

  4401.         callq	fe_mul_x64@plt
    4402. 

  4402. #else
    4403. 

  4403.         callq	_fe_mul_x64
    4404. 

  4404. #endif /* __APPLE__ */
    4405. 

  4405.         leaq	32(%rsp), %rdi
    4406. 

  4406.         movq	%rsp, %rsi
    4407. 

  4407. #ifndef __APPLE__
    4408. 

  4408.         callq	fe_sq_x64@plt
    4409. 

  4409. #else
    4410. 

  4410.         callq	_fe_sq_x64
    4411. 

  4411. #endif /* __APPLE__ */
    4412. 

  4412.         leaq	32(%rsp), %rdi
    4413. 

  4413.         leaq	32(%rsp), %rsi
    4414. 

  4414.         movq	$4, %rdx
    4415. 

  4415. #ifndef __APPLE__
    4416. 

  4416.         callq	fe_sq_n_x64@plt
    4417. 

  4417. #else
    4418. 

  4418.         callq	_fe_sq_n_x64
    4419. 

  4419. #endif /* __APPLE__ */
    4420. 

  4420.         movq	%rsp, %rdi
    4421. 

  4421.         leaq	32(%rsp), %rsi
    4422. 

  4422.         movq	%rsp, %rdx
    4423. 

  4423. #ifndef __APPLE__
    4424. 

  4424.         callq	fe_mul_x64@plt
    4425. 

  4425. #else
    4426. 

  4426.         callq	_fe_mul_x64
    4427. 

  4427. #endif /* __APPLE__ */
    4428. 

  4428.         leaq	32(%rsp), %rdi
    4429. 

  4429.         movq	%rsp, %rsi
    4430. 

  4430. #ifndef __APPLE__
    4431. 

  4431.         callq	fe_sq_x64@plt
    4432. 

  4432. #else
    4433. 

  4433.         callq	_fe_sq_x64
    4434. 

  4434. #endif /* __APPLE__ */
    4435. 

  4435.         leaq	32(%rsp), %rdi
    4436. 

  4436.         leaq	32(%rsp), %rsi
    4437. 

  4437.         movq	$9, %rdx
    4438. 

  4438. #ifndef __APPLE__
    4439. 

  4439.         callq	fe_sq_n_x64@plt
    4440. 

  4440. #else
    4441. 

  4441.         callq	_fe_sq_n_x64
    4442. 

  4442. #endif /* __APPLE__ */
    4443. 

  4443.         leaq	32(%rsp), %rdi
    4444. 

  4444.         leaq	32(%rsp), %rsi
    4445. 

  4445.         movq	%rsp, %rdx
    4446. 

  4446. #ifndef __APPLE__
    4447. 

  4447.         callq	fe_mul_x64@plt
    4448. 

  4448. #else
    4449. 

  4449.         callq	_fe_mul_x64
    4450. 

  4450. #endif /* __APPLE__ */
    4451. 

  4451.         leaq	64(%rsp), %rdi
    4452. 

  4452.         leaq	32(%rsp), %rsi
    4453. 

  4453. #ifndef __APPLE__
    4454. 

  4454.         callq	fe_sq_x64@plt
    4455. 

  4455. #else
    4456. 

  4456.         callq	_fe_sq_x64
    4457. 

  4457. #endif /* __APPLE__ */
    4458. 

  4458.         leaq	64(%rsp), %rdi
    4459. 

  4459.         leaq	64(%rsp), %rsi
    4460. 

  4460.         movq	$19, %rdx
    4461. 

  4461. #ifndef __APPLE__
    4462. 

  4462.         callq	fe_sq_n_x64@plt
    4463. 

  4463. #else
    4464. 

  4464.         callq	_fe_sq_n_x64
    4465. 

  4465. #endif /* __APPLE__ */
    4466. 

  4466.         leaq	32(%rsp), %rdi
    4467. 

  4467.         leaq	64(%rsp), %rsi
    4468. 

  4468.         leaq	32(%rsp), %rdx
    4469. 

  4469. #ifndef __APPLE__
    4470. 

  4470.         callq	fe_mul_x64@plt
    4471. 

  4471. #else
    4472. 

  4472.         callq	_fe_mul_x64
    4473. 

  4473. #endif /* __APPLE__ */
    4474. 

  4474.         leaq	32(%rsp), %rdi
    4475. 

  4475.         leaq	32(%rsp), %rsi
    4476. 

  4476. #ifndef __APPLE__
    4477. 

  4477.         callq	fe_sq_x64@plt
    4478. 

  4478. #else
    4479. 

  4479.         callq	_fe_sq_x64
    4480. 

  4480. #endif /* __APPLE__ */
    4481. 

  4481.         leaq	32(%rsp), %rdi
    4482. 

  4482.         leaq	32(%rsp), %rsi
    4483. 

  4483.         movq	$9, %rdx
    4484. 

  4484. #ifndef __APPLE__
    4485. 

  4485.         callq	fe_sq_n_x64@plt
    4486. 

  4486. #else
    4487. 

  4487.         callq	_fe_sq_n_x64
    4488. 

  4488. #endif /* __APPLE__ */
    4489. 

  4489.         movq	%rsp, %rdi
    4490. 

  4490.         leaq	32(%rsp), %rsi
    4491. 

  4491.         movq	%rsp, %rdx
    4492. 

  4492. #ifndef __APPLE__
    4493. 

  4493.         callq	fe_mul_x64@plt
    4494. 

  4494. #else
    4495. 

  4495.         callq	_fe_mul_x64
    4496. 

  4496. #endif /* __APPLE__ */
    4497. 

  4497.         leaq	32(%rsp), %rdi
    4498. 

  4498.         movq	%rsp, %rsi
    4499. 

  4499. #ifndef __APPLE__
    4500. 

  4500.         callq	fe_sq_x64@plt
    4501. 

  4501. #else
    4502. 

  4502.         callq	_fe_sq_x64
    4503. 

  4503. #endif /* __APPLE__ */
    4504. 

  4504.         leaq	32(%rsp), %rdi
    4505. 

  4505.         leaq	32(%rsp), %rsi
    4506. 

  4506.         movq	$49, %rdx
    4507. 

  4507. #ifndef __APPLE__
    4508. 

  4508.         callq	fe_sq_n_x64@plt
    4509. 

  4509. #else
    4510. 

  4510.         callq	_fe_sq_n_x64
    4511. 

  4511. #endif /* __APPLE__ */
    4512. 

  4512.         leaq	32(%rsp), %rdi
    4513. 

  4513.         leaq	32(%rsp), %rsi
    4514. 

  4514.         movq	%rsp, %rdx
    4515. 

  4515. #ifndef __APPLE__
    4516. 

  4516.         callq	fe_mul_x64@plt
    4517. 

  4517. #else
    4518. 

  4518.         callq	_fe_mul_x64
    4519. 

  4519. #endif /* __APPLE__ */
    4520. 

  4520.         leaq	64(%rsp), %rdi
    4521. 

  4521.         leaq	32(%rsp), %rsi
    4522. 

  4522. #ifndef __APPLE__
    4523. 

  4523.         callq	fe_sq_x64@plt
    4524. 

  4524. #else
    4525. 

  4525.         callq	_fe_sq_x64
    4526. 

  4526. #endif /* __APPLE__ */
    4527. 

  4527.         leaq	64(%rsp), %rdi
    4528. 

  4528.         leaq	64(%rsp), %rsi
    4529. 

  4529.         movq	$0x63, %rdx
    4530. 

  4530. #ifndef __APPLE__
    4531. 

  4531.         callq	fe_sq_n_x64@plt
    4532. 

  4532. #else
    4533. 

  4533.         callq	_fe_sq_n_x64
    4534. 

  4534. #endif /* __APPLE__ */
    4535. 

  4535.         leaq	32(%rsp), %rdi
    4536. 

  4536.         leaq	64(%rsp), %rsi
    4537. 

  4537.         leaq	32(%rsp), %rdx
    4538. 

  4538. #ifndef __APPLE__
    4539. 

  4539.         callq	fe_mul_x64@plt
    4540. 

  4540. #else
    4541. 

  4541.         callq	_fe_mul_x64
    4542. 

  4542. #endif /* __APPLE__ */
    4543. 

  4543.         leaq	32(%rsp), %rdi
    4544. 

  4544.         leaq	32(%rsp), %rsi
    4545. 

  4545. #ifndef __APPLE__
    4546. 

  4546.         callq	fe_sq_x64@plt
    4547. 

  4547. #else
    4548. 

  4548.         callq	_fe_sq_x64
    4549. 

  4549. #endif /* __APPLE__ */
    4550. 

  4550.         leaq	32(%rsp), %rdi
    4551. 

  4551.         leaq	32(%rsp), %rsi
    4552. 

  4552.         movq	$49, %rdx
    4553. 

  4553. #ifndef __APPLE__
    4554. 

  4554.         callq	fe_sq_n_x64@plt
    4555. 

  4555. #else
    4556. 

  4556.         callq	_fe_sq_n_x64
    4557. 

  4557. #endif /* __APPLE__ */
    4558. 

  4558.         movq	%rsp, %rdi
    4559. 

  4559.         leaq	32(%rsp), %rsi
    4560. 

  4560.         movq	%rsp, %rdx
    4561. 

  4561. #ifndef __APPLE__
    4562. 

  4562.         callq	fe_mul_x64@plt
    4563. 

  4563. #else
    4564. 

  4564.         callq	_fe_mul_x64
    4565. 

  4565. #endif /* __APPLE__ */
    4566. 

  4566.         movq	%rsp, %rdi
    4567. 

  4567.         movq	%rsp, %rsi
    4568. 

  4568. #ifndef __APPLE__
    4569. 

  4569.         callq	fe_sq_x64@plt
    4570. 

  4570. #else
    4571. 

  4571.         callq	_fe_sq_x64
    4572. 

  4572. #endif /* __APPLE__ */
    4573. 

  4573.         movq	%rsp, %rdi
    4574. 

  4574.         movq	%rsp, %rsi
    4575. 

  4575. #ifndef __APPLE__
    4576. 

  4576.         callq	fe_sq_x64@plt
    4577. 

  4577. #else
    4578. 

  4578.         callq	_fe_sq_x64
    4579. 

  4579. #endif /* __APPLE__ */
    4580. 

  4580.         movq	96(%rsp), %rdi
    4581. 

  4581.         movq	%rsp, %rsi
    4582. 

  4582.         movq	104(%rsp), %rdx
    4583. 

  4583. #ifndef __APPLE__
    4584. 

  4584.         callq	fe_mul_x64@plt
    4585. 

  4585. #else
    4586. 

  4586.         callq	_fe_mul_x64
    4587. 

  4587. #endif /* __APPLE__ */
    4588. 

  4588.         movq	104(%rsp), %rsi
    4589. 

  4589.         movq	96(%rsp), %rdi
    4590. 

  4590.         addq	$0x70, %rsp
    4591. 

  4591.         repz retq
    4592. 

  4592. #ifndef __APPLE__
    4593. 

  4593. .text
    4594. 

  4594. .globl	fe_ge_to_p2_x64
    4595. 

  4595. .type	fe_ge_to_p2_x64,@function
    4596. 

  4596. .align	16
    4597. 

  4597. fe_ge_to_p2_x64:
    4598. 

  4598. #else
    4599. 

  4599. .section	__TEXT,__text
    4600. 

  4600. .globl	_fe_ge_to_p2_x64
    4601. 

  4601. .p2align	4
    4602. 

  4602. _fe_ge_to_p2_x64:
    4603. 

  4603. #endif /* __APPLE__ */
    4604. 

  4604.         pushq	%rbx
    4605. 

  4605.         pushq	%r12
    4606. 

  4606.         pushq	%r13
    4607. 

  4607.         pushq	%r14
    4608. 

  4608.         pushq	%r15
    4609. 

  4609.         subq	$40, %rsp
    4610. 

  4610.         movq	%rsi, (%rsp)
    4611. 

  4611.         movq	%rdx, 8(%rsp)
    4612. 

  4612.         movq	%rcx, 16(%rsp)
    4613. 

  4613.         movq	%r8, 24(%rsp)
    4614. 

  4614.         movq	%r9, 32(%rsp)
    4615. 

  4615.         movq	16(%rsp), %rsi
    4616. 

  4616.         movq	88(%rsp), %rbx
    4617. 

  4617.         # Multiply
    4618. 

  4618.         #  A[0] * B[0]
    4619. 

  4619.         movq	(%rbx), %rax
    4620. 

  4620.         mulq	(%rsi)
    4621. 

  4621.         movq	%rax, %r8
    4622. 

  4622.         movq	%rdx, %r9
    4623. 

  4623.         #  A[0] * B[1]
    4624. 

  4624.         movq	8(%rbx), %rax
    4625. 

  4625.         mulq	(%rsi)
    4626. 

  4626.         xorq	%r10, %r10
    4627. 

  4627.         addq	%rax, %r9
    4628. 

  4628.         adcq	%rdx, %r10
    4629. 

  4629.         #  A[1] * B[0]
    4630. 

  4630.         movq	(%rbx), %rax
    4631. 

  4631.         mulq	8(%rsi)
    4632. 

  4632.         xorq	%r11, %r11
    4633. 

  4633.         addq	%rax, %r9
    4634. 

  4634.         adcq	%rdx, %r10
    4635. 

  4635.         adcq	$0x00, %r11
    4636. 

  4636.         #  A[0] * B[2]
    4637. 

  4637.         movq	16(%rbx), %rax
    4638. 

  4638.         mulq	(%rsi)
    4639. 

  4639.         addq	%rax, %r10
    4640. 

  4640.         adcq	%rdx, %r11
    4641. 

  4641.         #  A[1] * B[1]
    4642. 

  4642.         movq	8(%rbx), %rax
    4643. 

  4643.         mulq	8(%rsi)
    4644. 

  4644.         xorq	%r12, %r12
    4645. 

  4645.         addq	%rax, %r10
    4646. 

  4646.         adcq	%rdx, %r11
    4647. 

  4647.         adcq	$0x00, %r12
    4648. 

  4648.         #  A[2] * B[0]
    4649. 

  4649.         movq	(%rbx), %rax
    4650. 

  4650.         mulq	16(%rsi)
    4651. 

  4651.         addq	%rax, %r10
    4652. 

  4652.         adcq	%rdx, %r11
    4653. 

  4653.         adcq	$0x00, %r12
    4654. 

  4654.         #  A[0] * B[3]
    4655. 

  4655.         movq	24(%rbx), %rax
    4656. 

  4656.         mulq	(%rsi)
    4657. 

  4657.         xorq	%r13, %r13
    4658. 

  4658.         addq	%rax, %r11
    4659. 

  4659.         adcq	%rdx, %r12
    4660. 

  4660.         adcq	$0x00, %r13
    4661. 

  4661.         #  A[1] * B[2]
    4662. 

  4662.         movq	16(%rbx), %rax
    4663. 

  4663.         mulq	8(%rsi)
    4664. 

  4664.         addq	%rax, %r11
    4665. 

  4665.         adcq	%rdx, %r12
    4666. 

  4666.         adcq	$0x00, %r13
    4667. 

  4667.         #  A[2] * B[1]
    4668. 

  4668.         movq	8(%rbx), %rax
    4669. 

  4669.         mulq	16(%rsi)
    4670. 

  4670.         addq	%rax, %r11
    4671. 

  4671.         adcq	%rdx, %r12
    4672. 

  4672.         adcq	$0x00, %r13
    4673. 

  4673.         #  A[3] * B[0]
    4674. 

  4674.         movq	(%rbx), %rax
    4675. 

  4675.         mulq	24(%rsi)
    4676. 

  4676.         addq	%rax, %r11
    4677. 

  4677.         adcq	%rdx, %r12
    4678. 

  4678.         adcq	$0x00, %r13
    4679. 

  4679.         #  A[1] * B[3]
    4680. 

  4680.         movq	24(%rbx), %rax
    4681. 

  4681.         mulq	8(%rsi)
    4682. 

  4682.         xorq	%r14, %r14
    4683. 

  4683.         addq	%rax, %r12
    4684. 

  4684.         adcq	%rdx, %r13
    4685. 

  4685.         adcq	$0x00, %r14
    4686. 

  4686.         #  A[2] * B[2]
    4687. 

  4687.         movq	16(%rbx), %rax
    4688. 

  4688.         mulq	16(%rsi)
    4689. 

  4689.         addq	%rax, %r12
    4690. 

  4690.         adcq	%rdx, %r13
    4691. 

  4691.         adcq	$0x00, %r14
    4692. 

  4692.         #  A[3] * B[1]
    4693. 

  4693.         movq	8(%rbx), %rax
    4694. 

  4694.         mulq	24(%rsi)
    4695. 

  4695.         addq	%rax, %r12
    4696. 

  4696.         adcq	%rdx, %r13
    4697. 

  4697.         adcq	$0x00, %r14
    4698. 

  4698.         #  A[2] * B[3]
    4699. 

  4699.         movq	24(%rbx), %rax
    4700. 

  4700.         mulq	16(%rsi)
    4701. 

  4701.         xorq	%r15, %r15
    4702. 

  4702.         addq	%rax, %r13
    4703. 

  4703.         adcq	%rdx, %r14
    4704. 

  4704.         adcq	$0x00, %r15
    4705. 

  4705.         #  A[3] * B[2]
    4706. 

  4706.         movq	16(%rbx), %rax
    4707. 

  4707.         mulq	24(%rsi)
    4708. 

  4708.         addq	%rax, %r13
    4709. 

  4709.         adcq	%rdx, %r14
    4710. 

  4710.         adcq	$0x00, %r15
    4711. 

  4711.         #  A[3] * B[3]
    4712. 

  4712.         movq	24(%rbx), %rax
    4713. 

  4713.         mulq	24(%rsi)
    4714. 

  4714.         addq	%rax, %r14
    4715. 

  4715.         adcq	%rdx, %r15
    4716. 

  4716.         # Reduce
    4717. 

  4717.         movq	$0x7fffffffffffffff, %rcx
    4718. 

  4718.         #  Move top half into t4-t7 and remove top bit from t3
    4719. 

  4719.         shldq	$0x01, %r14, %r15
    4720. 

  4720.         shldq	$0x01, %r13, %r14
    4721. 

  4721.         shldq	$0x01, %r12, %r13
    4722. 

  4722.         shldq	$0x01, %r11, %r12
    4723. 

  4723.         andq	%rcx, %r11
    4724. 

  4724.         #  Multiply top half by 19
    4725. 

  4725.         movq	$19, %rax
    4726. 

  4726.         mulq	%r12
    4727. 

  4727.         xorq	%r12, %r12
    4728. 

  4728.         addq	%rax, %r8
    4729. 

  4729.         movq	$19, %rax
    4730. 

  4730.         adcq	%rdx, %r12
    4731. 

  4731.         mulq	%r13
    4732. 

  4732.         xorq	%r13, %r13
    4733. 

  4733.         addq	%rax, %r9
    4734. 

  4734.         movq	$19, %rax
    4735. 

  4735.         adcq	%rdx, %r13
    4736. 

  4736.         mulq	%r14
    4737. 

  4737.         xorq	%r14, %r14
    4738. 

  4738.         addq	%rax, %r10
    4739. 

  4739.         movq	$19, %rax
    4740. 

  4740.         adcq	%rdx, %r14
    4741. 

  4741.         mulq	%r15
    4742. 

  4742.         #  Add remaining product results in
    4743. 

  4743.         addq	%r12, %r9
    4744. 

  4744.         adcq	%r13, %r10
    4745. 

  4745.         adcq	%r14, %r11
    4746. 

  4746.         adcq	%rax, %r11
    4747. 

  4747.         adcq	$0x00, %rdx
    4748. 

  4748.         #  Overflow
    4749. 

  4749.         shldq	$0x01, %r11, %rdx
    4750. 

  4750.         imulq	$19, %rdx, %rax
    4751. 

  4751.         andq	%rcx, %r11
    4752. 

  4752.         addq	%rax, %r8
    4753. 

  4753.         adcq	$0x00, %r9
    4754. 

  4754.         adcq	$0x00, %r10
    4755. 

  4755.         adcq	$0x00, %r11
    4756. 

  4756.         # Reduce if top bit set
    4757. 

  4757.         movq	%r11, %rdx
    4758. 

  4758.         sarq	$63, %rdx
    4759. 

  4759.         andq	$19, %rdx
    4760. 

  4760.         andq	%rcx, %r11
    4761. 

  4761.         addq	%rdx, %r8
    4762. 

  4762.         adcq	$0x00, %r9
    4763. 

  4763.         adcq	$0x00, %r10
    4764. 

  4764.         adcq	$0x00, %r11
    4765. 

  4765.         # Store
    4766. 

  4766.         movq	%r8, (%rdi)
    4767. 

  4767.         movq	%r9, 8(%rdi)
    4768. 

  4768.         movq	%r10, 16(%rdi)
    4769. 

  4769.         movq	%r11, 24(%rdi)
    4770. 

  4770.         movq	(%rsp), %rdi
    4771. 

  4771.         movq	24(%rsp), %rsi
    4772. 

  4772.         movq	32(%rsp), %rbx
    4773. 

  4773.         # Multiply
    4774. 

  4774.         #  A[0] * B[0]
    4775. 

  4775.         movq	(%rbx), %rax
    4776. 

  4776.         mulq	(%rsi)
    4777. 

  4777.         movq	%rax, %r8
    4778. 

  4778.         movq	%rdx, %r9
    4779. 

  4779.         #  A[0] * B[1]
    4780. 

  4780.         movq	8(%rbx), %rax
    4781. 

  4781.         mulq	(%rsi)
    4782. 

  4782.         xorq	%r10, %r10
    4783. 

  4783.         addq	%rax, %r9
    4784. 

  4784.         adcq	%rdx, %r10
    4785. 

  4785.         #  A[1] * B[0]
    4786. 

  4786.         movq	(%rbx), %rax
    4787. 

  4787.         mulq	8(%rsi)
    4788. 

  4788.         xorq	%r11, %r11
    4789. 

  4789.         addq	%rax, %r9
    4790. 

  4790.         adcq	%rdx, %r10
    4791. 

  4791.         adcq	$0x00, %r11
    4792. 

  4792.         #  A[0] * B[2]
    4793. 

  4793.         movq	16(%rbx), %rax
    4794. 

  4794.         mulq	(%rsi)
    4795. 

  4795.         addq	%rax, %r10
    4796. 

  4796.         adcq	%rdx, %r11
    4797. 

  4797.         #  A[1] * B[1]
    4798. 

  4798.         movq	8(%rbx), %rax
    4799. 

  4799.         mulq	8(%rsi)
    4800. 

  4800.         xorq	%r12, %r12
    4801. 

  4801.         addq	%rax, %r10
    4802. 

  4802.         adcq	%rdx, %r11
    4803. 

  4803.         adcq	$0x00, %r12
    4804. 

  4804.         #  A[2] * B[0]
    4805. 

  4805.         movq	(%rbx), %rax
    4806. 

  4806.         mulq	16(%rsi)
    4807. 

  4807.         addq	%rax, %r10
    4808. 

  4808.         adcq	%rdx, %r11
    4809. 

  4809.         adcq	$0x00, %r12
    4810. 

  4810.         #  A[0] * B[3]
    4811. 

  4811.         movq	24(%rbx), %rax
    4812. 

  4812.         mulq	(%rsi)
    4813. 

  4813.         xorq	%r13, %r13
    4814. 

  4814.         addq	%rax, %r11
    4815. 

  4815.         adcq	%rdx, %r12
    4816. 

  4816.         adcq	$0x00, %r13
    4817. 

  4817.         #  A[1] * B[2]
    4818. 

  4818.         movq	16(%rbx), %rax
    4819. 

  4819.         mulq	8(%rsi)
    4820. 

  4820.         addq	%rax, %r11
    4821. 

  4821.         adcq	%rdx, %r12
    4822. 

  4822.         adcq	$0x00, %r13
    4823. 

  4823.         #  A[2] * B[1]
    4824. 

  4824.         movq	8(%rbx), %rax
    4825. 

  4825.         mulq	16(%rsi)
    4826. 

  4826.         addq	%rax, %r11
    4827. 

  4827.         adcq	%rdx, %r12
    4828. 

  4828.         adcq	$0x00, %r13
    4829. 

  4829.         #  A[3] * B[0]
    4830. 

  4830.         movq	(%rbx), %rax
    4831. 

  4831.         mulq	24(%rsi)
    4832. 

  4832.         addq	%rax, %r11
    4833. 

  4833.         adcq	%rdx, %r12
    4834. 

  4834.         adcq	$0x00, %r13
    4835. 

  4835.         #  A[1] * B[3]
    4836. 

  4836.         movq	24(%rbx), %rax
    4837. 

  4837.         mulq	8(%rsi)
    4838. 

  4838.         xorq	%r14, %r14
    4839. 

  4839.         addq	%rax, %r12
    4840. 

  4840.         adcq	%rdx, %r13
    4841. 

  4841.         adcq	$0x00, %r14
    4842. 

  4842.         #  A[2] * B[2]
    4843. 

  4843.         movq	16(%rbx), %rax
    4844. 

  4844.         mulq	16(%rsi)
    4845. 

  4845.         addq	%rax, %r12
    4846. 

  4846.         adcq	%rdx, %r13
    4847. 

  4847.         adcq	$0x00, %r14
    4848. 

  4848.         #  A[3] * B[1]
    4849. 

  4849.         movq	8(%rbx), %rax
    4850. 

  4850.         mulq	24(%rsi)
    4851. 

  4851.         addq	%rax, %r12
    4852. 

  4852.         adcq	%rdx, %r13
    4853. 

  4853.         adcq	$0x00, %r14
    4854. 

  4854.         #  A[2] * B[3]
    4855. 

  4855.         movq	24(%rbx), %rax
    4856. 

  4856.         mulq	16(%rsi)
    4857. 

  4857.         xorq	%r15, %r15
    4858. 

  4858.         addq	%rax, %r13
    4859. 

  4859.         adcq	%rdx, %r14
    4860. 

  4860.         adcq	$0x00, %r15
    4861. 

  4861.         #  A[3] * B[2]
    4862. 

  4862.         movq	16(%rbx), %rax
    4863. 

  4863.         mulq	24(%rsi)
    4864. 

  4864.         addq	%rax, %r13
    4865. 

  4865.         adcq	%rdx, %r14
    4866. 

  4866.         adcq	$0x00, %r15
    4867. 

  4867.         #  A[3] * B[3]
    4868. 

  4868.         movq	24(%rbx), %rax
    4869. 

  4869.         mulq	24(%rsi)
    4870. 

  4870.         addq	%rax, %r14
    4871. 

  4871.         adcq	%rdx, %r15
    4872. 

  4872.         # Reduce
    4873. 

  4873.         movq	$0x7fffffffffffffff, %rcx
    4874. 

  4874.         #  Move top half into t4-t7 and remove top bit from t3
    4875. 

  4875.         shldq	$0x01, %r14, %r15
    4876. 

  4876.         shldq	$0x01, %r13, %r14
    4877. 

  4877.         shldq	$0x01, %r12, %r13
    4878. 

  4878.         shldq	$0x01, %r11, %r12
    4879. 

  4879.         andq	%rcx, %r11
    4880. 

  4880.         #  Multiply top half by 19
    4881. 

  4881.         movq	$19, %rax
    4882. 

  4882.         mulq	%r12
    4883. 

  4883.         xorq	%r12, %r12
    4884. 

  4884.         addq	%rax, %r8
    4885. 

  4885.         movq	$19, %rax
    4886. 

  4886.         adcq	%rdx, %r12
    4887. 

  4887.         mulq	%r13
    4888. 

  4888.         xorq	%r13, %r13
    4889. 

  4889.         addq	%rax, %r9
    4890. 

  4890.         movq	$19, %rax
    4891. 

  4891.         adcq	%rdx, %r13
    4892. 

  4892.         mulq	%r14
    4893. 

  4893.         xorq	%r14, %r14
    4894. 

  4894.         addq	%rax, %r10
    4895. 

  4895.         movq	$19, %rax
    4896. 

  4896.         adcq	%rdx, %r14
    4897. 

  4897.         mulq	%r15
    4898. 

  4898.         #  Add remaining product results in
    4899. 

  4899.         addq	%r12, %r9
    4900. 

  4900.         adcq	%r13, %r10
    4901. 

  4901.         adcq	%r14, %r11
    4902. 

  4902.         adcq	%rax, %r11
    4903. 

  4903.         adcq	$0x00, %rdx
    4904. 

  4904.         #  Overflow
    4905. 

  4905.         shldq	$0x01, %r11, %rdx
    4906. 

  4906.         imulq	$19, %rdx, %rax
    4907. 

  4907.         andq	%rcx, %r11
    4908. 

  4908.         addq	%rax, %r8
    4909. 

  4909.         adcq	$0x00, %r9
    4910. 

  4910.         adcq	$0x00, %r10
    4911. 

  4911.         adcq	$0x00, %r11
    4912. 

  4912.         # Reduce if top bit set
    4913. 

  4913.         movq	%r11, %rdx
    4914. 

  4914.         sarq	$63, %rdx
    4915. 

  4915.         andq	$19, %rdx
    4916. 

  4916.         andq	%rcx, %r11
    4917. 

  4917.         addq	%rdx, %r8
    4918. 

  4918.         adcq	$0x00, %r9
    4919. 

  4919.         adcq	$0x00, %r10
    4920. 

  4920.         adcq	$0x00, %r11
    4921. 

  4921.         # Store
    4922. 

  4922.         movq	%r8, (%rdi)
    4923. 

  4923.         movq	%r9, 8(%rdi)
    4924. 

  4924.         movq	%r10, 16(%rdi)
    4925. 

  4925.         movq	%r11, 24(%rdi)
    4926. 

  4926.         movq	8(%rsp), %rdi
    4927. 

  4927.         movq	32(%rsp), %rsi
    4928. 

  4928.         movq	88(%rsp), %rbx
    4929. 

  4929.         # Multiply
    4930. 

  4930.         #  A[0] * B[0]
    4931. 

  4931.         movq	(%rbx), %rax
    4932. 

  4932.         mulq	(%rsi)
    4933. 

  4933.         movq	%rax, %r8
    4934. 

  4934.         movq	%rdx, %r9
    4935. 

  4935.         #  A[0] * B[1]
    4936. 

  4936.         movq	8(%rbx), %rax
    4937. 

  4937.         mulq	(%rsi)
    4938. 

  4938.         xorq	%r10, %r10
    4939. 

  4939.         addq	%rax, %r9
    4940. 

  4940.         adcq	%rdx, %r10
    4941. 

  4941.         #  A[1] * B[0]
    4942. 

  4942.         movq	(%rbx), %rax
    4943. 

  4943.         mulq	8(%rsi)
    4944. 

  4944.         xorq	%r11, %r11
    4945. 

  4945.         addq	%rax, %r9
    4946. 

  4946.         adcq	%rdx, %r10
    4947. 

  4947.         adcq	$0x00, %r11
    4948. 

  4948.         #  A[0] * B[2]
    4949. 

  4949.         movq	16(%rbx), %rax
    4950. 

  4950.         mulq	(%rsi)
    4951. 

  4951.         addq	%rax, %r10
    4952. 

  4952.         adcq	%rdx, %r11
    4953. 

  4953.         #  A[1] * B[1]
    4954. 

  4954.         movq	8(%rbx), %rax
    4955. 

  4955.         mulq	8(%rsi)
    4956. 

  4956.         xorq	%r12, %r12
    4957. 

  4957.         addq	%rax, %r10
    4958. 

  4958.         adcq	%rdx, %r11
    4959. 

  4959.         adcq	$0x00, %r12
    4960. 

  4960.         #  A[2] * B[0]
    4961. 

  4961.         movq	(%rbx), %rax
    4962. 

  4962.         mulq	16(%rsi)
    4963. 

  4963.         addq	%rax, %r10
    4964. 

  4964.         adcq	%rdx, %r11
    4965. 

  4965.         adcq	$0x00, %r12
    4966. 

  4966.         #  A[0] * B[3]
    4967. 

  4967.         movq	24(%rbx), %rax
    4968. 

  4968.         mulq	(%rsi)
    4969. 

  4969.         xorq	%r13, %r13
    4970. 

  4970.         addq	%rax, %r11
    4971. 

  4971.         adcq	%rdx, %r12
    4972. 

  4972.         adcq	$0x00, %r13
    4973. 

  4973.         #  A[1] * B[2]
    4974. 

  4974.         movq	16(%rbx), %rax
    4975. 

  4975.         mulq	8(%rsi)
    4976. 

  4976.         addq	%rax, %r11
    4977. 

  4977.         adcq	%rdx, %r12
    4978. 

  4978.         adcq	$0x00, %r13
    4979. 

  4979.         #  A[2] * B[1]
    4980. 

  4980.         movq	8(%rbx), %rax
    4981. 

  4981.         mulq	16(%rsi)
    4982. 

  4982.         addq	%rax, %r11
    4983. 

  4983.         adcq	%rdx, %r12
    4984. 

  4984.         adcq	$0x00, %r13
    4985. 

  4985.         #  A[3] * B[0]
    4986. 

  4986.         movq	(%rbx), %rax
    4987. 

  4987.         mulq	24(%rsi)
    4988. 

  4988.         addq	%rax, %r11
    4989. 

  4989.         adcq	%rdx, %r12
    4990. 

  4990.         adcq	$0x00, %r13
    4991. 

  4991.         #  A[1] * B[3]
    4992. 

  4992.         movq	24(%rbx), %rax
    4993. 

  4993.         mulq	8(%rsi)
    4994. 

  4994.         xorq	%r14, %r14
    4995. 

  4995.         addq	%rax, %r12
    4996. 

  4996.         adcq	%rdx, %r13
    4997. 

  4997.         adcq	$0x00, %r14
    4998. 

  4998.         #  A[2] * B[2]
    4999. 

  4999.         movq	16(%rbx), %rax
    5000. 

  5000.         mulq	16(%rsi)
    5001. 

  5001.         addq	%rax, %r12
    5002. 

  5002.         adcq	%rdx, %r13
    5003. 

  5003.         adcq	$0x00, %r14
    5004. 

  5004.         #  A[3] * B[1]
    5005. 

  5005.         movq	8(%rbx), %rax
    5006. 

  5006.         mulq	24(%rsi)
    5007. 

  5007.         addq	%rax, %r12
    5008. 

  5008.         adcq	%rdx, %r13
    5009. 

  5009.         adcq	$0x00, %r14
    5010. 

  5010.         #  A[2] * B[3]
    5011. 

  5011.         movq	24(%rbx), %rax
    5012. 

  5012.         mulq	16(%rsi)
    5013. 

  5013.         xorq	%r15, %r15
    5014. 

  5014.         addq	%rax, %r13
    5015. 

  5015.         adcq	%rdx, %r14
    5016. 

  5016.         adcq	$0x00, %r15
    5017. 

  5017.         #  A[3] * B[2]
    5018. 

  5018.         movq	16(%rbx), %rax
    5019. 

  5019.         mulq	24(%rsi)
    5020. 

  5020.         addq	%rax, %r13
    5021. 

  5021.         adcq	%rdx, %r14
    5022. 

  5022.         adcq	$0x00, %r15
    5023. 

  5023.         #  A[3] * B[3]
    5024. 

  5024.         movq	24(%rbx), %rax
    5025. 

  5025.         mulq	24(%rsi)
    5026. 

  5026.         addq	%rax, %r14
    5027. 

  5027.         adcq	%rdx, %r15
    5028. 

  5028.         # Reduce
    5029. 

  5029.         movq	$0x7fffffffffffffff, %rcx
    5030. 

  5030.         #  Move top half into t4-t7 and remove top bit from t3
    5031. 

  5031.         shldq	$0x01, %r14, %r15
    5032. 

  5032.         shldq	$0x01, %r13, %r14
    5033. 

  5033.         shldq	$0x01, %r12, %r13
    5034. 

  5034.         shldq	$0x01, %r11, %r12
    5035. 

  5035.         andq	%rcx, %r11
    5036. 

  5036.         #  Multiply top half by 19
    5037. 

  5037.         movq	$19, %rax
    5038. 

  5038.         mulq	%r12
    5039. 

  5039.         xorq	%r12, %r12
    5040. 

  5040.         addq	%rax, %r8
    5041. 

  5041.         movq	$19, %rax
    5042. 

  5042.         adcq	%rdx, %r12
    5043. 

  5043.         mulq	%r13
    5044. 

  5044.         xorq	%r13, %r13
    5045. 

  5045.         addq	%rax, %r9
    5046. 

  5046.         movq	$19, %rax
    5047. 

  5047.         adcq	%rdx, %r13
    5048. 

  5048.         mulq	%r14
    5049. 

  5049.         xorq	%r14, %r14
    5050. 

  5050.         addq	%rax, %r10
    5051. 

  5051.         movq	$19, %rax
    5052. 

  5052.         adcq	%rdx, %r14
    5053. 

  5053.         mulq	%r15
    5054. 

  5054.         #  Add remaining product results in
    5055. 

  5055.         addq	%r12, %r9
    5056. 

  5056.         adcq	%r13, %r10
    5057. 

  5057.         adcq	%r14, %r11
    5058. 

  5058.         adcq	%rax, %r11
    5059. 

  5059.         adcq	$0x00, %rdx
    5060. 

  5060.         #  Overflow
    5061. 

  5061.         shldq	$0x01, %r11, %rdx
    5062. 

  5062.         imulq	$19, %rdx, %rax
    5063. 

  5063.         andq	%rcx, %r11
    5064. 

  5064.         addq	%rax, %r8
    5065. 

  5065.         adcq	$0x00, %r9
    5066. 

  5066.         adcq	$0x00, %r10
    5067. 

  5067.         adcq	$0x00, %r11
    5068. 

  5068.         # Reduce if top bit set
    5069. 

  5069.         movq	%r11, %rdx
    5070. 

  5070.         sarq	$63, %rdx
    5071. 

  5071.         andq	$19, %rdx
    5072. 

  5072.         andq	%rcx, %r11
    5073. 

  5073.         addq	%rdx, %r8
    5074. 

  5074.         adcq	$0x00, %r9
    5075. 

  5075.         adcq	$0x00, %r10
    5076. 

  5076.         adcq	$0x00, %r11
    5077. 

  5077.         # Store
    5078. 

  5078.         movq	%r8, (%rdi)
    5079. 

  5079.         movq	%r9, 8(%rdi)
    5080. 

  5080.         movq	%r10, 16(%rdi)
    5081. 

  5081.         movq	%r11, 24(%rdi)
    5082. 

  5082.         addq	$40, %rsp
    5083. 

  5083.         popq	%r15
    5084. 

  5084.         popq	%r14
    5085. 

  5085.         popq	%r13
    5086. 

  5086.         popq	%r12
    5087. 

  5087.         popq	%rbx
    5088. 

  5088.         repz retq
    5089. 

  5089. #ifndef __APPLE__
    5090. 

  5090. .size	fe_ge_to_p2_x64,.-fe_ge_to_p2_x64
    5091. 

  5091. #endif /* __APPLE__ */
    5092. 

  5092. #ifndef __APPLE__
    5093. 

  5093. .text
    5094. 

  5094. .globl	fe_ge_to_p3_x64
    5095. 

  5095. .type	fe_ge_to_p3_x64,@function
    5096. 

  5096. .align	16
    5097. 

  5097. fe_ge_to_p3_x64:
    5098. 

  5098. #else
    5099. 

  5099. .section	__TEXT,__text
    5100. 

  5100. .globl	_fe_ge_to_p3_x64
    5101. 

  5101. .p2align	4
    5102. 

  5102. _fe_ge_to_p3_x64:
    5103. 

  5103. #endif /* __APPLE__ */
    5104. 

  5104.         pushq	%rbx
    5105. 

  5105.         pushq	%r12
    5106. 

  5106.         pushq	%r13
    5107. 

  5107.         pushq	%r14
    5108. 

  5108.         pushq	%r15
    5109. 

  5109.         subq	$40, %rsp
    5110. 

  5110.         movq	%rsi, (%rsp)
    5111. 

  5111.         movq	%rdx, 8(%rsp)
    5112. 

  5112.         movq	%rcx, 16(%rsp)
    5113. 

  5113.         movq	%r8, 24(%rsp)
    5114. 

  5114.         movq	%r9, 32(%rsp)
    5115. 

  5115.         movq	24(%rsp), %rsi
    5116. 

  5116.         movq	96(%rsp), %rbx
    5117. 

  5117.         # Multiply
    5118. 

  5118.         #  A[0] * B[0]
    5119. 

  5119.         movq	(%rbx), %rax
    5120. 

  5120.         mulq	(%rsi)
    5121. 

  5121.         movq	%rax, %r8
    5122. 

  5122.         movq	%rdx, %r9
    5123. 

  5123.         #  A[0] * B[1]
    5124. 

  5124.         movq	8(%rbx), %rax
    5125. 

  5125.         mulq	(%rsi)
    5126. 

  5126.         xorq	%r10, %r10
    5127. 

  5127.         addq	%rax, %r9
    5128. 

  5128.         adcq	%rdx, %r10
    5129. 

  5129.         #  A[1] * B[0]
    5130. 

  5130.         movq	(%rbx), %rax
    5131. 

  5131.         mulq	8(%rsi)
    5132. 

  5132.         xorq	%r11, %r11
    5133. 

  5133.         addq	%rax, %r9
    5134. 

  5134.         adcq	%rdx, %r10
    5135. 

  5135.         adcq	$0x00, %r11
    5136. 

  5136.         #  A[0] * B[2]
    5137. 

  5137.         movq	16(%rbx), %rax
    5138. 

  5138.         mulq	(%rsi)
    5139. 

  5139.         addq	%rax, %r10
    5140. 

  5140.         adcq	%rdx, %r11
    5141. 

  5141.         #  A[1] * B[1]
    5142. 

  5142.         movq	8(%rbx), %rax
    5143. 

  5143.         mulq	8(%rsi)
    5144. 

  5144.         xorq	%r12, %r12
    5145. 

  5145.         addq	%rax, %r10
    5146. 

  5146.         adcq	%rdx, %r11
    5147. 

  5147.         adcq	$0x00, %r12
    5148. 

  5148.         #  A[2] * B[0]
    5149. 

  5149.         movq	(%rbx), %rax
    5150. 

  5150.         mulq	16(%rsi)
    5151. 

  5151.         addq	%rax, %r10
    5152. 

  5152.         adcq	%rdx, %r11
    5153. 

  5153.         adcq	$0x00, %r12
    5154. 

  5154.         #  A[0] * B[3]
    5155. 

  5155.         movq	24(%rbx), %rax
    5156. 

  5156.         mulq	(%rsi)
    5157. 

  5157.         xorq	%r13, %r13
    5158. 

  5158.         addq	%rax, %r11
    5159. 

  5159.         adcq	%rdx, %r12
    5160. 

  5160.         adcq	$0x00, %r13
    5161. 

  5161.         #  A[1] * B[2]
    5162. 

  5162.         movq	16(%rbx), %rax
    5163. 

  5163.         mulq	8(%rsi)
    5164. 

  5164.         addq	%rax, %r11
    5165. 

  5165.         adcq	%rdx, %r12
    5166. 

  5166.         adcq	$0x00, %r13
    5167. 

  5167.         #  A[2] * B[1]
    5168. 

  5168.         movq	8(%rbx), %rax
    5169. 

  5169.         mulq	16(%rsi)
    5170. 

  5170.         addq	%rax, %r11
    5171. 

  5171.         adcq	%rdx, %r12
    5172. 

  5172.         adcq	$0x00, %r13
    5173. 

  5173.         #  A[3] * B[0]
    5174. 

  5174.         movq	(%rbx), %rax
    5175. 

  5175.         mulq	24(%rsi)
    5176. 

  5176.         addq	%rax, %r11
    5177. 

  5177.         adcq	%rdx, %r12
    5178. 

  5178.         adcq	$0x00, %r13
    5179. 

  5179.         #  A[1] * B[3]
    5180. 

  5180.         movq	24(%rbx), %rax
    5181. 

  5181.         mulq	8(%rsi)
    5182. 

  5182.         xorq	%r14, %r14
    5183. 

  5183.         addq	%rax, %r12
    5184. 

  5184.         adcq	%rdx, %r13
    5185. 

  5185.         adcq	$0x00, %r14
    5186. 

  5186.         #  A[2] * B[2]
    5187. 

  5187.         movq	16(%rbx), %rax
    5188. 

  5188.         mulq	16(%rsi)
    5189. 

  5189.         addq	%rax, %r12
    5190. 

  5190.         adcq	%rdx, %r13
    5191. 

  5191.         adcq	$0x00, %r14
    5192. 

  5192.         #  A[3] * B[1]
    5193. 

  5193.         movq	8(%rbx), %rax
    5194. 

  5194.         mulq	24(%rsi)
    5195. 

  5195.         addq	%rax, %r12
    5196. 

  5196.         adcq	%rdx, %r13
    5197. 

  5197.         adcq	$0x00, %r14
    5198. 

  5198.         #  A[2] * B[3]
    5199. 

  5199.         movq	24(%rbx), %rax
    5200. 

  5200.         mulq	16(%rsi)
    5201. 

  5201.         xorq	%r15, %r15
    5202. 

  5202.         addq	%rax, %r13
    5203. 

  5203.         adcq	%rdx, %r14
    5204. 

  5204.         adcq	$0x00, %r15
    5205. 

  5205.         #  A[3] * B[2]
    5206. 

  5206.         movq	16(%rbx), %rax
    5207. 

  5207.         mulq	24(%rsi)
    5208. 

  5208.         addq	%rax, %r13
    5209. 

  5209.         adcq	%rdx, %r14
    5210. 

  5210.         adcq	$0x00, %r15
    5211. 

  5211.         #  A[3] * B[3]
    5212. 

  5212.         movq	24(%rbx), %rax
    5213. 

  5213.         mulq	24(%rsi)
    5214. 

  5214.         addq	%rax, %r14
    5215. 

  5215.         adcq	%rdx, %r15
    5216. 

  5216.         # Reduce
    5217. 

  5217.         movq	$0x7fffffffffffffff, %rcx
    5218. 

  5218.         #  Move top half into t4-t7 and remove top bit from t3
    5219. 

  5219.         shldq	$0x01, %r14, %r15
    5220. 

  5220.         shldq	$0x01, %r13, %r14
    5221. 

  5221.         shldq	$0x01, %r12, %r13
    5222. 

  5222.         shldq	$0x01, %r11, %r12
    5223. 

  5223.         andq	%rcx, %r11
    5224. 

  5224.         #  Multiply top half by 19
    5225. 

  5225.         movq	$19, %rax
    5226. 

  5226.         mulq	%r12
    5227. 

  5227.         xorq	%r12, %r12
    5228. 

  5228.         addq	%rax, %r8
    5229. 

  5229.         movq	$19, %rax
    5230. 

  5230.         adcq	%rdx, %r12
    5231. 

  5231.         mulq	%r13
    5232. 

  5232.         xorq	%r13, %r13
    5233. 

  5233.         addq	%rax, %r9
    5234. 

  5234.         movq	$19, %rax
    5235. 

  5235.         adcq	%rdx, %r13
    5236. 

  5236.         mulq	%r14
    5237. 

  5237.         xorq	%r14, %r14
    5238. 

  5238.         addq	%rax, %r10
    5239. 

  5239.         movq	$19, %rax
    5240. 

  5240.         adcq	%rdx, %r14
    5241. 

  5241.         mulq	%r15
    5242. 

  5242.         #  Add remaining product results in
    5243. 

  5243.         addq	%r12, %r9
    5244. 

  5244.         adcq	%r13, %r10
    5245. 

  5245.         adcq	%r14, %r11
    5246. 

  5246.         adcq	%rax, %r11
    5247. 

  5247.         adcq	$0x00, %rdx
    5248. 

  5248.         #  Overflow
    5249. 

  5249.         shldq	$0x01, %r11, %rdx
    5250. 

  5250.         imulq	$19, %rdx, %rax
    5251. 

  5251.         andq	%rcx, %r11
    5252. 

  5252.         addq	%rax, %r8
    5253. 

  5253.         adcq	$0x00, %r9
    5254. 

  5254.         adcq	$0x00, %r10
    5255. 

  5255.         adcq	$0x00, %r11
    5256. 

  5256.         # Reduce if top bit set
    5257. 

  5257.         movq	%r11, %rdx
    5258. 

  5258.         sarq	$63, %rdx
    5259. 

  5259.         andq	$19, %rdx
    5260. 

  5260.         andq	%rcx, %r11
    5261. 

  5261.         addq	%rdx, %r8
    5262. 

  5262.         adcq	$0x00, %r9
    5263. 

  5263.         adcq	$0x00, %r10
    5264. 

  5264.         adcq	$0x00, %r11
    5265. 

  5265.         # Store
    5266. 

  5266.         movq	%r8, (%rdi)
    5267. 

  5267.         movq	%r9, 8(%rdi)
    5268. 

  5268.         movq	%r10, 16(%rdi)
    5269. 

  5269.         movq	%r11, 24(%rdi)
    5270. 

  5270.         movq	(%rsp), %rdi
    5271. 

  5271.         movq	32(%rsp), %rsi
    5272. 

  5272.         movq	88(%rsp), %rbx
    5273. 

  5273.         # Multiply
    5274. 

  5274.         #  A[0] * B[0]
    5275. 

  5275.         movq	(%rbx), %rax
    5276. 

  5276.         mulq	(%rsi)
    5277. 

  5277.         movq	%rax, %r8
    5278. 

  5278.         movq	%rdx, %r9
    5279. 

  5279.         #  A[0] * B[1]
    5280. 

  5280.         movq	8(%rbx), %rax
    5281. 

  5281.         mulq	(%rsi)
    5282. 

  5282.         xorq	%r10, %r10
    5283. 

  5283.         addq	%rax, %r9
    5284. 

  5284.         adcq	%rdx, %r10
    5285. 

  5285.         #  A[1] * B[0]
    5286. 

  5286.         movq	(%rbx), %rax
    5287. 

  5287.         mulq	8(%rsi)
    5288. 

  5288.         xorq	%r11, %r11
    5289. 

  5289.         addq	%rax, %r9
    5290. 

  5290.         adcq	%rdx, %r10
    5291. 

  5291.         adcq	$0x00, %r11
    5292. 

  5292.         #  A[0] * B[2]
    5293. 

  5293.         movq	16(%rbx), %rax
    5294. 

  5294.         mulq	(%rsi)
    5295. 

  5295.         addq	%rax, %r10
    5296. 

  5296.         adcq	%rdx, %r11
    5297. 

  5297.         #  A[1] * B[1]
    5298. 

  5298.         movq	8(%rbx), %rax
    5299. 

  5299.         mulq	8(%rsi)
    5300. 

  5300.         xorq	%r12, %r12
    5301. 

  5301.         addq	%rax, %r10
    5302. 

  5302.         adcq	%rdx, %r11
    5303. 

  5303.         adcq	$0x00, %r12
    5304. 

  5304.         #  A[2] * B[0]
    5305. 

  5305.         movq	(%rbx), %rax
    5306. 

  5306.         mulq	16(%rsi)
    5307. 

  5307.         addq	%rax, %r10
    5308. 

  5308.         adcq	%rdx, %r11
    5309. 

  5309.         adcq	$0x00, %r12
    5310. 

  5310.         #  A[0] * B[3]
    5311. 

  5311.         movq	24(%rbx), %rax
    5312. 

  5312.         mulq	(%rsi)
    5313. 

  5313.         xorq	%r13, %r13
    5314. 

  5314.         addq	%rax, %r11
    5315. 

  5315.         adcq	%rdx, %r12
    5316. 

  5316.         adcq	$0x00, %r13
    5317. 

  5317.         #  A[1] * B[2]
    5318. 

  5318.         movq	16(%rbx), %rax
    5319. 

  5319.         mulq	8(%rsi)
    5320. 

  5320.         addq	%rax, %r11
    5321. 

  5321.         adcq	%rdx, %r12
    5322. 

  5322.         adcq	$0x00, %r13
    5323. 

  5323.         #  A[2] * B[1]
    5324. 

  5324.         movq	8(%rbx), %rax
    5325. 

  5325.         mulq	16(%rsi)
    5326. 

  5326.         addq	%rax, %r11
    5327. 

  5327.         adcq	%rdx, %r12
    5328. 

  5328.         adcq	$0x00, %r13
    5329. 

  5329.         #  A[3] * B[0]
    5330. 

  5330.         movq	(%rbx), %rax
    5331. 

  5331.         mulq	24(%rsi)
    5332. 

  5332.         addq	%rax, %r11
    5333. 

  5333.         adcq	%rdx, %r12
    5334. 

  5334.         adcq	$0x00, %r13
    5335. 

  5335.         #  A[1] * B[3]
    5336. 

  5336.         movq	24(%rbx), %rax
    5337. 

  5337.         mulq	8(%rsi)
    5338. 

  5338.         xorq	%r14, %r14
    5339. 

  5339.         addq	%rax, %r12
    5340. 

  5340.         adcq	%rdx, %r13
    5341. 

  5341.         adcq	$0x00, %r14
    5342. 

  5342.         #  A[2] * B[2]
    5343. 

  5343.         movq	16(%rbx), %rax
    5344. 

  5344.         mulq	16(%rsi)
    5345. 

  5345.         addq	%rax, %r12
    5346. 

  5346.         adcq	%rdx, %r13
    5347. 

  5347.         adcq	$0x00, %r14
    5348. 

  5348.         #  A[3] * B[1]
    5349. 

  5349.         movq	8(%rbx), %rax
    5350. 

  5350.         mulq	24(%rsi)
    5351. 

  5351.         addq	%rax, %r12
    5352. 

  5352.         adcq	%rdx, %r13
    5353. 

  5353.         adcq	$0x00, %r14
    5354. 

  5354.         #  A[2] * B[3]
    5355. 

  5355.         movq	24(%rbx), %rax
    5356. 

  5356.         mulq	16(%rsi)
    5357. 

  5357.         xorq	%r15, %r15
    5358. 

  5358.         addq	%rax, %r13
    5359. 

  5359.         adcq	%rdx, %r14
    5360. 

  5360.         adcq	$0x00, %r15
    5361. 

  5361.         #  A[3] * B[2]
    5362. 

  5362.         movq	16(%rbx), %rax
    5363. 

  5363.         mulq	24(%rsi)
    5364. 

  5364.         addq	%rax, %r13
    5365. 

  5365.         adcq	%rdx, %r14
    5366. 

  5366.         adcq	$0x00, %r15
    5367. 

  5367.         #  A[3] * B[3]
    5368. 

  5368.         movq	24(%rbx), %rax
    5369. 

  5369.         mulq	24(%rsi)
    5370. 

  5370.         addq	%rax, %r14
    5371. 

  5371.         adcq	%rdx, %r15
    5372. 

  5372.         # Reduce
    5373. 

  5373.         movq	$0x7fffffffffffffff, %rcx
    5374. 

  5374.         #  Move top half into t4-t7 and remove top bit from t3
    5375. 

  5375.         shldq	$0x01, %r14, %r15
    5376. 

  5376.         shldq	$0x01, %r13, %r14
    5377. 

  5377.         shldq	$0x01, %r12, %r13
    5378. 

  5378.         shldq	$0x01, %r11, %r12
    5379. 

  5379.         andq	%rcx, %r11
    5380. 

  5380.         #  Multiply top half by 19
    5381. 

  5381.         movq	$19, %rax
    5382. 

  5382.         mulq	%r12
    5383. 

  5383.         xorq	%r12, %r12
    5384. 

  5384.         addq	%rax, %r8
    5385. 

  5385.         movq	$19, %rax
    5386. 

  5386.         adcq	%rdx, %r12
    5387. 

  5387.         mulq	%r13
    5388. 

  5388.         xorq	%r13, %r13
    5389. 

  5389.         addq	%rax, %r9
    5390. 

  5390.         movq	$19, %rax
    5391. 

  5391.         adcq	%rdx, %r13
    5392. 

  5392.         mulq	%r14
    5393. 

  5393.         xorq	%r14, %r14
    5394. 

  5394.         addq	%rax, %r10
    5395. 

  5395.         movq	$19, %rax
    5396. 

  5396.         adcq	%rdx, %r14
    5397. 

  5397.         mulq	%r15
    5398. 

  5398.         #  Add remaining product results in
    5399. 

  5399.         addq	%r12, %r9
    5400. 

  5400.         adcq	%r13, %r10
    5401. 

  5401.         adcq	%r14, %r11
    5402. 

  5402.         adcq	%rax, %r11
    5403. 

  5403.         adcq	$0x00, %rdx
    5404. 

  5404.         #  Overflow
    5405. 

  5405.         shldq	$0x01, %r11, %rdx
    5406. 

  5406.         imulq	$19, %rdx, %rax
    5407. 

  5407.         andq	%rcx, %r11
    5408. 

  5408.         addq	%rax, %r8
    5409. 

  5409.         adcq	$0x00, %r9
    5410. 

  5410.         adcq	$0x00, %r10
    5411. 

  5411.         adcq	$0x00, %r11
    5412. 

  5412.         # Reduce if top bit set
    5413. 

  5413.         movq	%r11, %rdx
    5414. 

  5414.         sarq	$63, %rdx
    5415. 

  5415.         andq	$19, %rdx
    5416. 

  5416.         andq	%rcx, %r11
    5417. 

  5417.         addq	%rdx, %r8
    5418. 

  5418.         adcq	$0x00, %r9
    5419. 

  5419.         adcq	$0x00, %r10
    5420. 

  5420.         adcq	$0x00, %r11
    5421. 

  5421.         # Store
    5422. 

  5422.         movq	%r8, (%rdi)
    5423. 

  5423.         movq	%r9, 8(%rdi)
    5424. 

  5424.         movq	%r10, 16(%rdi)
    5425. 

  5425.         movq	%r11, 24(%rdi)
    5426. 

  5426.         movq	8(%rsp), %rdi
    5427. 

  5427.         movq	88(%rsp), %rsi
    5428. 

  5428.         movq	96(%rsp), %rbx
    5429. 

  5429.         # Multiply
    5430. 

  5430.         #  A[0] * B[0]
    5431. 

  5431.         movq	(%rbx), %rax
    5432. 

  5432.         mulq	(%rsi)
    5433. 

  5433.         movq	%rax, %r8
    5434. 

  5434.         movq	%rdx, %r9
    5435. 

  5435.         #  A[0] * B[1]
    5436. 

  5436.         movq	8(%rbx), %rax
    5437. 

  5437.         mulq	(%rsi)
    5438. 

  5438.         xorq	%r10, %r10
    5439. 

  5439.         addq	%rax, %r9
    5440. 

  5440.         adcq	%rdx, %r10
    5441. 

  5441.         #  A[1] * B[0]
    5442. 

  5442.         movq	(%rbx), %rax
    5443. 

  5443.         mulq	8(%rsi)
    5444. 

  5444.         xorq	%r11, %r11
    5445. 

  5445.         addq	%rax, %r9
    5446. 

  5446.         adcq	%rdx, %r10
    5447. 

  5447.         adcq	$0x00, %r11
    5448. 

  5448.         #  A[0] * B[2]
    5449. 

  5449.         movq	16(%rbx), %rax
    5450. 

  5450.         mulq	(%rsi)
    5451. 

  5451.         addq	%rax, %r10
    5452. 

  5452.         adcq	%rdx, %r11
    5453. 

  5453.         #  A[1] * B[1]
    5454. 

  5454.         movq	8(%rbx), %rax
    5455. 

  5455.         mulq	8(%rsi)
    5456. 

  5456.         xorq	%r12, %r12
    5457. 

  5457.         addq	%rax, %r10
    5458. 

  5458.         adcq	%rdx, %r11
    5459. 

  5459.         adcq	$0x00, %r12
    5460. 

  5460.         #  A[2] * B[0]
    5461. 

  5461.         movq	(%rbx), %rax
    5462. 

  5462.         mulq	16(%rsi)
    5463. 

  5463.         addq	%rax, %r10
    5464. 

  5464.         adcq	%rdx, %r11
    5465. 

  5465.         adcq	$0x00, %r12
    5466. 

  5466.         #  A[0] * B[3]
    5467. 

  5467.         movq	24(%rbx), %rax
    5468. 

  5468.         mulq	(%rsi)
    5469. 

  5469.         xorq	%r13, %r13
    5470. 

  5470.         addq	%rax, %r11
    5471. 

  5471.         adcq	%rdx, %r12
    5472. 

  5472.         adcq	$0x00, %r13
    5473. 

  5473.         #  A[1] * B[2]
    5474. 

  5474.         movq	16(%rbx), %rax
    5475. 

  5475.         mulq	8(%rsi)
    5476. 

  5476.         addq	%rax, %r11
    5477. 

  5477.         adcq	%rdx, %r12
    5478. 

  5478.         adcq	$0x00, %r13
    5479. 

  5479.         #  A[2] * B[1]
    5480. 

  5480.         movq	8(%rbx), %rax
    5481. 

  5481.         mulq	16(%rsi)
    5482. 

  5482.         addq	%rax, %r11
    5483. 

  5483.         adcq	%rdx, %r12
    5484. 

  5484.         adcq	$0x00, %r13
    5485. 

  5485.         #  A[3] * B[0]
    5486. 

  5486.         movq	(%rbx), %rax
    5487. 

  5487.         mulq	24(%rsi)
    5488. 

  5488.         addq	%rax, %r11
    5489. 

  5489.         adcq	%rdx, %r12
    5490. 

  5490.         adcq	$0x00, %r13
    5491. 

  5491.         #  A[1] * B[3]
    5492. 

  5492.         movq	24(%rbx), %rax
    5493. 

  5493.         mulq	8(%rsi)
    5494. 

  5494.         xorq	%r14, %r14
    5495. 

  5495.         addq	%rax, %r12
    5496. 

  5496.         adcq	%rdx, %r13
    5497. 

  5497.         adcq	$0x00, %r14
    5498. 

  5498.         #  A[2] * B[2]
    5499. 

  5499.         movq	16(%rbx), %rax
    5500. 

  5500.         mulq	16(%rsi)
    5501. 

  5501.         addq	%rax, %r12
    5502. 

  5502.         adcq	%rdx, %r13
    5503. 

  5503.         adcq	$0x00, %r14
    5504. 

  5504.         #  A[3] * B[1]
    5505. 

  5505.         movq	8(%rbx), %rax
    5506. 

  5506.         mulq	24(%rsi)
    5507. 

  5507.         addq	%rax, %r12
    5508. 

  5508.         adcq	%rdx, %r13
    5509. 

  5509.         adcq	$0x00, %r14
    5510. 

  5510.         #  A[2] * B[3]
    5511. 

  5511.         movq	24(%rbx), %rax
    5512. 

  5512.         mulq	16(%rsi)
    5513. 

  5513.         xorq	%r15, %r15
    5514. 

  5514.         addq	%rax, %r13
    5515. 

  5515.         adcq	%rdx, %r14
    5516. 

  5516.         adcq	$0x00, %r15
    5517. 

  5517.         #  A[3] * B[2]
    5518. 

  5518.         movq	16(%rbx), %rax
    5519. 

  5519.         mulq	24(%rsi)
    5520. 

  5520.         addq	%rax, %r13
    5521. 

  5521.         adcq	%rdx, %r14
    5522. 

  5522.         adcq	$0x00, %r15
    5523. 

  5523.         #  A[3] * B[3]
    5524. 

  5524.         movq	24(%rbx), %rax
    5525. 

  5525.         mulq	24(%rsi)
    5526. 

  5526.         addq	%rax, %r14
    5527. 

  5527.         adcq	%rdx, %r15
    5528. 

  5528.         # Reduce
    5529. 

  5529.         movq	$0x7fffffffffffffff, %rcx
    5530. 

  5530.         #  Move top half into t4-t7 and remove top bit from t3
    5531. 

  5531.         shldq	$0x01, %r14, %r15
    5532. 

  5532.         shldq	$0x01, %r13, %r14
    5533. 

  5533.         shldq	$0x01, %r12, %r13
    5534. 

  5534.         shldq	$0x01, %r11, %r12
    5535. 

  5535.         andq	%rcx, %r11
    5536. 

  5536.         #  Multiply top half by 19
    5537. 

  5537.         movq	$19, %rax
    5538. 

  5538.         mulq	%r12
    5539. 

  5539.         xorq	%r12, %r12
    5540. 

  5540.         addq	%rax, %r8
    5541. 

  5541.         movq	$19, %rax
    5542. 

  5542.         adcq	%rdx, %r12
    5543. 

  5543.         mulq	%r13
    5544. 

  5544.         xorq	%r13, %r13
    5545. 

  5545.         addq	%rax, %r9
    5546. 

  5546.         movq	$19, %rax
    5547. 

  5547.         adcq	%rdx, %r13
    5548. 

  5548.         mulq	%r14
    5549. 

  5549.         xorq	%r14, %r14
    5550. 

  5550.         addq	%rax, %r10
    5551. 

  5551.         movq	$19, %rax
    5552. 

  5552.         adcq	%rdx, %r14
    5553. 

  5553.         mulq	%r15
    5554. 

  5554.         #  Add remaining product results in
    5555. 

  5555.         addq	%r12, %r9
    5556. 

  5556.         adcq	%r13, %r10
    5557. 

  5557.         adcq	%r14, %r11
    5558. 

  5558.         adcq	%rax, %r11
    5559. 

  5559.         adcq	$0x00, %rdx
    5560. 

  5560.         #  Overflow
    5561. 

  5561.         shldq	$0x01, %r11, %rdx
    5562. 

  5562.         imulq	$19, %rdx, %rax
    5563. 

  5563.         andq	%rcx, %r11
    5564. 

  5564.         addq	%rax, %r8
    5565. 

  5565.         adcq	$0x00, %r9
    5566. 

  5566.         adcq	$0x00, %r10
    5567. 

  5567.         adcq	$0x00, %r11
    5568. 

  5568.         # Reduce if top bit set
    5569. 

  5569.         movq	%r11, %rdx
    5570. 

  5570.         sarq	$63, %rdx
    5571. 

  5571.         andq	$19, %rdx
    5572. 

  5572.         andq	%rcx, %r11
    5573. 

  5573.         addq	%rdx, %r8
    5574. 

  5574.         adcq	$0x00, %r9
    5575. 

  5575.         adcq	$0x00, %r10
    5576. 

  5576.         adcq	$0x00, %r11
    5577. 

  5577.         # Store
    5578. 

  5578.         movq	%r8, (%rdi)
    5579. 

  5579.         movq	%r9, 8(%rdi)
    5580. 

  5580.         movq	%r10, 16(%rdi)
    5581. 

  5581.         movq	%r11, 24(%rdi)
    5582. 

  5582.         movq	16(%rsp), %rdi
    5583. 

  5583.         movq	24(%rsp), %rsi
    5584. 

  5584.         movq	32(%rsp), %rbx
    5585. 

  5585.         # Multiply
    5586. 

  5586.         #  A[0] * B[0]
    5587. 

  5587.         movq	(%rbx), %rax
    5588. 

  5588.         mulq	(%rsi)
    5589. 

  5589.         movq	%rax, %r8
    5590. 

  5590.         movq	%rdx, %r9
    5591. 

  5591.         #  A[0] * B[1]
    5592. 

  5592.         movq	8(%rbx), %rax
    5593. 

  5593.         mulq	(%rsi)
    5594. 

  5594.         xorq	%r10, %r10
    5595. 

  5595.         addq	%rax, %r9
    5596. 

  5596.         adcq	%rdx, %r10
    5597. 

  5597.         #  A[1] * B[0]
    5598. 

  5598.         movq	(%rbx), %rax
    5599. 

  5599.         mulq	8(%rsi)
    5600. 

  5600.         xorq	%r11, %r11
    5601. 

  5601.         addq	%rax, %r9
    5602. 

  5602.         adcq	%rdx, %r10
    5603. 

  5603.         adcq	$0x00, %r11
    5604. 

  5604.         #  A[0] * B[2]
    5605. 

  5605.         movq	16(%rbx), %rax
    5606. 

  5606.         mulq	(%rsi)
    5607. 

  5607.         addq	%rax, %r10
    5608. 

  5608.         adcq	%rdx, %r11
    5609. 

  5609.         #  A[1] * B[1]
    5610. 

  5610.         movq	8(%rbx), %rax
    5611. 

  5611.         mulq	8(%rsi)
    5612. 

  5612.         xorq	%r12, %r12
    5613. 

  5613.         addq	%rax, %r10
    5614. 

  5614.         adcq	%rdx, %r11
    5615. 

  5615.         adcq	$0x00, %r12
    5616. 

  5616.         #  A[2] * B[0]
    5617. 

  5617.         movq	(%rbx), %rax
    5618. 

  5618.         mulq	16(%rsi)
    5619. 

  5619.         addq	%rax, %r10
    5620. 

  5620.         adcq	%rdx, %r11
    5621. 

  5621.         adcq	$0x00, %r12
    5622. 

  5622.         #  A[0] * B[3]
    5623. 

  5623.         movq	24(%rbx), %rax
    5624. 

  5624.         mulq	(%rsi)
    5625. 

  5625.         xorq	%r13, %r13
    5626. 

  5626.         addq	%rax, %r11
    5627. 

  5627.         adcq	%rdx, %r12
    5628. 

  5628.         adcq	$0x00, %r13
    5629. 

  5629.         #  A[1] * B[2]
    5630. 

  5630.         movq	16(%rbx), %rax
    5631. 

  5631.         mulq	8(%rsi)
    5632. 

  5632.         addq	%rax, %r11
    5633. 

  5633.         adcq	%rdx, %r12
    5634. 

  5634.         adcq	$0x00, %r13
    5635. 

  5635.         #  A[2] * B[1]
    5636. 

  5636.         movq	8(%rbx), %rax
    5637. 

  5637.         mulq	16(%rsi)
    5638. 

  5638.         addq	%rax, %r11
    5639. 

  5639.         adcq	%rdx, %r12
    5640. 

  5640.         adcq	$0x00, %r13
    5641. 

  5641.         #  A[3] * B[0]
    5642. 

  5642.         movq	(%rbx), %rax
    5643. 

  5643.         mulq	24(%rsi)
    5644. 

  5644.         addq	%rax, %r11
    5645. 

  5645.         adcq	%rdx, %r12
    5646. 

  5646.         adcq	$0x00, %r13
    5647. 

  5647.         #  A[1] * B[3]
    5648. 

  5648.         movq	24(%rbx), %rax
    5649. 

  5649.         mulq	8(%rsi)
    5650. 

  5650.         xorq	%r14, %r14
    5651. 

  5651.         addq	%rax, %r12
    5652. 

  5652.         adcq	%rdx, %r13
    5653. 

  5653.         adcq	$0x00, %r14
    5654. 

  5654.         #  A[2] * B[2]
    5655. 

  5655.         movq	16(%rbx), %rax
    5656. 

  5656.         mulq	16(%rsi)
    5657. 

  5657.         addq	%rax, %r12
    5658. 

  5658.         adcq	%rdx, %r13
    5659. 

  5659.         adcq	$0x00, %r14
    5660. 

  5660.         #  A[3] * B[1]
    5661. 

  5661.         movq	8(%rbx), %rax
    5662. 

  5662.         mulq	24(%rsi)
    5663. 

  5663.         addq	%rax, %r12
    5664. 

  5664.         adcq	%rdx, %r13
    5665. 

  5665.         adcq	$0x00, %r14
    5666. 

  5666.         #  A[2] * B[3]
    5667. 

  5667.         movq	24(%rbx), %rax
    5668. 

  5668.         mulq	16(%rsi)
    5669. 

  5669.         xorq	%r15, %r15
    5670. 

  5670.         addq	%rax, %r13
    5671. 

  5671.         adcq	%rdx, %r14
    5672. 

  5672.         adcq	$0x00, %r15
    5673. 

  5673.         #  A[3] * B[2]
    5674. 

  5674.         movq	16(%rbx), %rax
    5675. 

  5675.         mulq	24(%rsi)
    5676. 

  5676.         addq	%rax, %r13
    5677. 

  5677.         adcq	%rdx, %r14
    5678. 

  5678.         adcq	$0x00, %r15
    5679. 

  5679.         #  A[3] * B[3]
    5680. 

  5680.         movq	24(%rbx), %rax
    5681. 

  5681.         mulq	24(%rsi)
    5682. 

  5682.         addq	%rax, %r14
    5683. 

  5683.         adcq	%rdx, %r15
    5684. 

  5684.         # Reduce
    5685. 

  5685.         movq	$0x7fffffffffffffff, %rcx
    5686. 

  5686.         #  Move top half into t4-t7 and remove top bit from t3
    5687. 

  5687.         shldq	$0x01, %r14, %r15
    5688. 

  5688.         shldq	$0x01, %r13, %r14
    5689. 

  5689.         shldq	$0x01, %r12, %r13
    5690. 

  5690.         shldq	$0x01, %r11, %r12
    5691. 

  5691.         andq	%rcx, %r11
    5692. 

  5692.         #  Multiply top half by 19
    5693. 

  5693.         movq	$19, %rax
    5694. 

  5694.         mulq	%r12
    5695. 

  5695.         xorq	%r12, %r12
    5696. 

  5696.         addq	%rax, %r8
    5697. 

  5697.         movq	$19, %rax
    5698. 

  5698.         adcq	%rdx, %r12
    5699. 

  5699.         mulq	%r13
    5700. 

  5700.         xorq	%r13, %r13
    5701. 

  5701.         addq	%rax, %r9
    5702. 

  5702.         movq	$19, %rax
    5703. 

  5703.         adcq	%rdx, %r13
    5704. 

  5704.         mulq	%r14
    5705. 

  5705.         xorq	%r14, %r14
    5706. 

  5706.         addq	%rax, %r10
    5707. 

  5707.         movq	$19, %rax
    5708. 

  5708.         adcq	%rdx, %r14
    5709. 

  5709.         mulq	%r15
    5710. 

  5710.         #  Add remaining product results in
    5711. 

  5711.         addq	%r12, %r9
    5712. 

  5712.         adcq	%r13, %r10
    5713. 

  5713.         adcq	%r14, %r11
    5714. 

  5714.         adcq	%rax, %r11
    5715. 

  5715.         adcq	$0x00, %rdx
    5716. 

  5716.         #  Overflow
    5717. 

  5717.         shldq	$0x01, %r11, %rdx
    5718. 

  5718.         imulq	$19, %rdx, %rax
    5719. 

  5719.         andq	%rcx, %r11
    5720. 

  5720.         addq	%rax, %r8
    5721. 

  5721.         adcq	$0x00, %r9
    5722. 

  5722.         adcq	$0x00, %r10
    5723. 

  5723.         adcq	$0x00, %r11
    5724. 

  5724.         # Reduce if top bit set
    5725. 

  5725.         movq	%r11, %rdx
    5726. 

  5726.         sarq	$63, %rdx
    5727. 

  5727.         andq	$19, %rdx
    5728. 

  5728.         andq	%rcx, %r11
    5729. 

  5729.         addq	%rdx, %r8
    5730. 

  5730.         adcq	$0x00, %r9
    5731. 

  5731.         adcq	$0x00, %r10
    5732. 

  5732.         adcq	$0x00, %r11
    5733. 

  5733.         # Store
    5734. 

  5734.         movq	%r8, (%rdi)
    5735. 

  5735.         movq	%r9, 8(%rdi)
    5736. 

  5736.         movq	%r10, 16(%rdi)
    5737. 

  5737.         movq	%r11, 24(%rdi)
    5738. 

  5738.         addq	$40, %rsp
    5739. 

  5739.         popq	%r15
    5740. 

  5740.         popq	%r14
    5741. 

  5741.         popq	%r13
    5742. 

  5742.         popq	%r12
    5743. 

  5743.         popq	%rbx
    5744. 

  5744.         repz retq
    5745. 

  5745. #ifndef __APPLE__
    5746. 

  5746. .size	fe_ge_to_p3_x64,.-fe_ge_to_p3_x64
    5747. 

  5747. #endif /* __APPLE__ */
    5748. 

  5748. #ifndef __APPLE__
    5749. 

  5749. .text
    5750. 

  5750. .globl	fe_ge_dbl_x64
    5751. 

  5751. .type	fe_ge_dbl_x64,@function
    5752. 

  5752. .align	16
    5753. 

  5753. fe_ge_dbl_x64:
    5754. 

  5754. #else
    5755. 

  5755. .section	__TEXT,__text
    5756. 

  5756. .globl	_fe_ge_dbl_x64
    5757. 

  5757. .p2align	4
    5758. 

  5758. _fe_ge_dbl_x64:
    5759. 

  5759. #endif /* __APPLE__ */
    5760. 

  5760.         pushq	%rbx
    5761. 

  5761.         pushq	%r12
    5762. 

  5762.         pushq	%r13
    5763. 

  5763.         pushq	%r14
    5764. 

  5764.         pushq	%r15
    5765. 

  5765.         subq	$0x50, %rsp
    5766. 

  5766.         movq	%rdi, (%rsp)
    5767. 

  5767.         movq	%rsi, 8(%rsp)
    5768. 

  5768.         movq	%rdx, 16(%rsp)
    5769. 

  5769.         movq	%rcx, 24(%rsp)
    5770. 

  5770.         movq	%r8, 32(%rsp)
    5771. 

  5771.         movq	%r9, 40(%rsp)
    5772. 

  5772.         movq	(%rsp), %rdi
    5773. 

  5773.         movq	32(%rsp), %rsi
    5774. 

  5774.         # Square
    5775. 

  5775.         #  A[0] * A[1]
    5776. 

  5776.         movq	(%rsi), %rax
    5777. 

  5777.         mulq	8(%rsi)
    5778. 

  5778.         movq	%rax, %r9
    5779. 

  5779.         movq	%rdx, %r10
    5780. 

  5780.         #  A[0] * A[2]
    5781. 

  5781.         movq	(%rsi), %rax
    5782. 

  5782.         mulq	16(%rsi)
    5783. 

  5783.         xorq	%r11, %r11
    5784. 

  5784.         addq	%rax, %r10
    5785. 

  5785.         adcq	%rdx, %r11
    5786. 

  5786.         #  A[0] * A[3]
    5787. 

  5787.         movq	(%rsi), %rax
    5788. 

  5788.         mulq	24(%rsi)
    5789. 

  5789.         xorq	%r12, %r12
    5790. 

  5790.         addq	%rax, %r11
    5791. 

  5791.         adcq	%rdx, %r12
    5792. 

  5792.         #  A[1] * A[2]
    5793. 

  5793.         movq	8(%rsi), %rax
    5794. 

  5794.         mulq	16(%rsi)
    5795. 

  5795.         xorq	%r13, %r13
    5796. 

  5796.         addq	%rax, %r11
    5797. 

  5797.         adcq	%rdx, %r12
    5798. 

  5798.         adcq	$0x00, %r13
    5799. 

  5799.         #  A[1] * A[3]
    5800. 

  5800.         movq	8(%rsi), %rax
    5801. 

  5801.         mulq	24(%rsi)
    5802. 

  5802.         addq	%rax, %r12
    5803. 

  5803.         adcq	%rdx, %r13
    5804. 

  5804.         #  A[2] * A[3]
    5805. 

  5805.         movq	16(%rsi), %rax
    5806. 

  5806.         mulq	24(%rsi)
    5807. 

  5807.         xorq	%r14, %r14
    5808. 

  5808.         addq	%rax, %r13
    5809. 

  5809.         adcq	%rdx, %r14
    5810. 

  5810.         # Double
    5811. 

  5811.         xorq	%r15, %r15
    5812. 

  5812.         addq	%r9, %r9
    5813. 

  5813.         adcq	%r10, %r10
    5814. 

  5814.         adcq	%r11, %r11
    5815. 

  5815.         adcq	%r12, %r12
    5816. 

  5816.         adcq	%r13, %r13
    5817. 

  5817.         adcq	%r14, %r14
    5818. 

  5818.         adcq	$0x00, %r15
    5819. 

  5819.         #  A[0] * A[0]
    5820. 

  5820.         movq	(%rsi), %rax
    5821. 

  5821.         mulq	%rax
    5822. 

  5822.         movq	%rax, %r8
    5823. 

  5823.         movq	%rdx, %rcx
    5824. 

  5824.         #  A[1] * A[1]
    5825. 

  5825.         movq	8(%rsi), %rax
    5826. 

  5826.         mulq	%rax
    5827. 

  5827.         addq	%rcx, %r9
    5828. 

  5828.         adcq	%rax, %r10
    5829. 

  5829.         adcq	$0x00, %rdx
    5830. 

  5830.         movq	%rdx, %rcx
    5831. 

  5831.         #  A[2] * A[2]
    5832. 

  5832.         movq	16(%rsi), %rax
    5833. 

  5833.         mulq	%rax
    5834. 

  5834.         addq	%rcx, %r11
    5835. 

  5835.         adcq	%rax, %r12
    5836. 

  5836.         adcq	$0x00, %rdx
    5837. 

  5837.         movq	%rdx, %rcx
    5838. 

  5838.         #  A[3] * A[3]
    5839. 

  5839.         movq	24(%rsi), %rax
    5840. 

  5840.         mulq	%rax
    5841. 

  5841.         addq	%rax, %r14
    5842. 

  5842.         adcq	%rdx, %r15
    5843. 

  5843.         addq	%rcx, %r13
    5844. 

  5844.         adcq	$0x00, %r14
    5845. 

  5845.         adcq	$0x00, %r15
    5846. 

  5846.         # Reduce
    5847. 

  5847.         movq	$0x7fffffffffffffff, %rcx
    5848. 

  5848.         #  Move top half into t4-t7 and remove top bit from t3
    5849. 

  5849.         shldq	$0x01, %r14, %r15
    5850. 

  5850.         shldq	$0x01, %r13, %r14
    5851. 

  5851.         shldq	$0x01, %r12, %r13
    5852. 

  5852.         shldq	$0x01, %r11, %r12
    5853. 

  5853.         andq	%rcx, %r11
    5854. 

  5854.         #  Multiply top half by 19
    5855. 

  5855.         movq	$19, %rax
    5856. 

  5856.         mulq	%r12
    5857. 

  5857.         xorq	%r12, %r12
    5858. 

  5858.         addq	%rax, %r8
    5859. 

  5859.         movq	$19, %rax
    5860. 

  5860.         adcq	%rdx, %r12
    5861. 

  5861.         mulq	%r13
    5862. 

  5862.         xorq	%r13, %r13
    5863. 

  5863.         addq	%rax, %r9
    5864. 

  5864.         movq	$19, %rax
    5865. 

  5865.         adcq	%rdx, %r13
    5866. 

  5866.         mulq	%r14
    5867. 

  5867.         xorq	%r14, %r14
    5868. 

  5868.         addq	%rax, %r10
    5869. 

  5869.         movq	$19, %rax
    5870. 

  5870.         adcq	%rdx, %r14
    5871. 

  5871.         mulq	%r15
    5872. 

  5872.         #  Add remaining product results in
    5873. 

  5873.         addq	%r12, %r9
    5874. 

  5874.         adcq	%r13, %r10
    5875. 

  5875.         adcq	%r14, %r11
    5876. 

  5876.         adcq	%rax, %r11
    5877. 

  5877.         adcq	$0x00, %rdx
    5878. 

  5878.         #  Overflow
    5879. 

  5879.         shldq	$0x01, %r11, %rdx
    5880. 

  5880.         imulq	$19, %rdx, %rax
    5881. 

  5881.         andq	%rcx, %r11
    5882. 

  5882.         addq	%rax, %r8
    5883. 

  5883.         adcq	$0x00, %r9
    5884. 

  5884.         adcq	$0x00, %r10
    5885. 

  5885.         adcq	$0x00, %r11
    5886. 

  5886.         # Reduce if top bit set
    5887. 

  5887.         movq	%r11, %rdx
    5888. 

  5888.         sarq	$63, %rdx
    5889. 

  5889.         andq	$19, %rdx
    5890. 

  5890.         andq	%rcx, %r11
    5891. 

  5891.         addq	%rdx, %r8
    5892. 

  5892.         adcq	$0x00, %r9
    5893. 

  5893.         adcq	$0x00, %r10
    5894. 

  5894.         adcq	$0x00, %r11
    5895. 

  5895.         # Store
    5896. 

  5896.         movq	%r8, (%rdi)
    5897. 

  5897.         movq	%r9, 8(%rdi)
    5898. 

  5898.         movq	%r10, 16(%rdi)
    5899. 

  5899.         movq	%r11, 24(%rdi)
    5900. 

  5900.         movq	16(%rsp), %rdi
    5901. 

  5901.         movq	40(%rsp), %rsi
    5902. 

  5902.         # Square
    5903. 

  5903.         #  A[0] * A[1]
    5904. 

  5904.         movq	(%rsi), %rax
    5905. 

  5905.         mulq	8(%rsi)
    5906. 

  5906.         movq	%rax, %r9
    5907. 

  5907.         movq	%rdx, %r10
    5908. 

  5908.         #  A[0] * A[2]
    5909. 

  5909.         movq	(%rsi), %rax
    5910. 

  5910.         mulq	16(%rsi)
    5911. 

  5911.         xorq	%r11, %r11
    5912. 

  5912.         addq	%rax, %r10
    5913. 

  5913.         adcq	%rdx, %r11
    5914. 

  5914.         #  A[0] * A[3]
    5915. 

  5915.         movq	(%rsi), %rax
    5916. 

  5916.         mulq	24(%rsi)
    5917. 

  5917.         xorq	%r12, %r12
    5918. 

  5918.         addq	%rax, %r11
    5919. 

  5919.         adcq	%rdx, %r12
    5920. 

  5920.         #  A[1] * A[2]
    5921. 

  5921.         movq	8(%rsi), %rax
    5922. 

  5922.         mulq	16(%rsi)
    5923. 

  5923.         xorq	%r13, %r13
    5924. 

  5924.         addq	%rax, %r11
    5925. 

  5925.         adcq	%rdx, %r12
    5926. 

  5926.         adcq	$0x00, %r13
    5927. 

  5927.         #  A[1] * A[3]
    5928. 

  5928.         movq	8(%rsi), %rax
    5929. 

  5929.         mulq	24(%rsi)
    5930. 

  5930.         addq	%rax, %r12
    5931. 

  5931.         adcq	%rdx, %r13
    5932. 

  5932.         #  A[2] * A[3]
    5933. 

  5933.         movq	16(%rsi), %rax
    5934. 

  5934.         mulq	24(%rsi)
    5935. 

  5935.         xorq	%r14, %r14
    5936. 

  5936.         addq	%rax, %r13
    5937. 

  5937.         adcq	%rdx, %r14
    5938. 

  5938.         # Double
    5939. 

  5939.         xorq	%r15, %r15
    5940. 

  5940.         addq	%r9, %r9
    5941. 

  5941.         adcq	%r10, %r10
    5942. 

  5942.         adcq	%r11, %r11
    5943. 

  5943.         adcq	%r12, %r12
    5944. 

  5944.         adcq	%r13, %r13
    5945. 

  5945.         adcq	%r14, %r14
    5946. 

  5946.         adcq	$0x00, %r15
    5947. 

  5947.         #  A[0] * A[0]
    5948. 

  5948.         movq	(%rsi), %rax
    5949. 

  5949.         mulq	%rax
    5950. 

  5950.         movq	%rax, %r8
    5951. 

  5951.         movq	%rdx, %rcx
    5952. 

  5952.         #  A[1] * A[1]
    5953. 

  5953.         movq	8(%rsi), %rax
    5954. 

  5954.         mulq	%rax
    5955. 

  5955.         addq	%rcx, %r9
    5956. 

  5956.         adcq	%rax, %r10
    5957. 

  5957.         adcq	$0x00, %rdx
    5958. 

  5958.         movq	%rdx, %rcx
    5959. 

  5959.         #  A[2] * A[2]
    5960. 

  5960.         movq	16(%rsi), %rax
    5961. 

  5961.         mulq	%rax
    5962. 

  5962.         addq	%rcx, %r11
    5963. 

  5963.         adcq	%rax, %r12
    5964. 

  5964.         adcq	$0x00, %rdx
    5965. 

  5965.         movq	%rdx, %rcx
    5966. 

  5966.         #  A[3] * A[3]
    5967. 

  5967.         movq	24(%rsi), %rax
    5968. 

  5968.         mulq	%rax
    5969. 

  5969.         addq	%rax, %r14
    5970. 

  5970.         adcq	%rdx, %r15
    5971. 

  5971.         addq	%rcx, %r13
    5972. 

  5972.         adcq	$0x00, %r14
    5973. 

  5973.         adcq	$0x00, %r15
    5974. 

  5974.         # Reduce
    5975. 

  5975.         movq	$0x7fffffffffffffff, %rcx
    5976. 

  5976.         #  Move top half into t4-t7 and remove top bit from t3
    5977. 

  5977.         shldq	$0x01, %r14, %r15
    5978. 

  5978.         shldq	$0x01, %r13, %r14
    5979. 

  5979.         shldq	$0x01, %r12, %r13
    5980. 

  5980.         shldq	$0x01, %r11, %r12
    5981. 

  5981.         andq	%rcx, %r11
    5982. 

  5982.         #  Multiply top half by 19
    5983. 

  5983.         movq	$19, %rax
    5984. 

  5984.         mulq	%r12
    5985. 

  5985.         xorq	%r12, %r12
    5986. 

  5986.         addq	%rax, %r8
    5987. 

  5987.         movq	$19, %rax
    5988. 

  5988.         adcq	%rdx, %r12
    5989. 

  5989.         mulq	%r13
    5990. 

  5990.         xorq	%r13, %r13
    5991. 

  5991.         addq	%rax, %r9
    5992. 

  5992.         movq	$19, %rax
    5993. 

  5993.         adcq	%rdx, %r13
    5994. 

  5994.         mulq	%r14
    5995. 

  5995.         xorq	%r14, %r14
    5996. 

  5996.         addq	%rax, %r10
    5997. 

  5997.         movq	$19, %rax
    5998. 

  5998.         adcq	%rdx, %r14
    5999. 

  5999.         mulq	%r15
    6000. 

  6000.         #  Add remaining product results in
    6001. 

  6001.         addq	%r12, %r9
    6002. 

  6002.         adcq	%r13, %r10
    6003. 

  6003.         adcq	%r14, %r11
    6004. 

  6004.         adcq	%rax, %r11
    6005. 

  6005.         adcq	$0x00, %rdx
    6006. 

  6006.         #  Overflow
    6007. 

  6007.         shldq	$0x01, %r11, %rdx
    6008. 

  6008.         imulq	$19, %rdx, %rax
    6009. 

  6009.         andq	%rcx, %r11
    6010. 

  6010.         addq	%rax, %r8
    6011. 

  6011.         adcq	$0x00, %r9
    6012. 

  6012.         adcq	$0x00, %r10
    6013. 

  6013.         adcq	$0x00, %r11
    6014. 

  6014.         # Reduce if top bit set
    6015. 

  6015.         movq	%r11, %rdx
    6016. 

  6016.         sarq	$63, %rdx
    6017. 

  6017.         andq	$19, %rdx
    6018. 

  6018.         andq	%rcx, %r11
    6019. 

  6019.         addq	%rdx, %r8
    6020. 

  6020.         adcq	$0x00, %r9
    6021. 

  6021.         adcq	$0x00, %r10
    6022. 

  6022.         adcq	$0x00, %r11
    6023. 

  6023.         # Store
    6024. 

  6024.         movq	%r8, (%rdi)
    6025. 

  6025.         movq	%r9, 8(%rdi)
    6026. 

  6026.         movq	%r10, 16(%rdi)
    6027. 

  6027.         movq	%r11, 24(%rdi)
    6028. 

  6028.         movq	24(%rsp), %rdi
    6029. 

  6029.         movq	128(%rsp), %rsi
    6030. 

  6030.         # Square * 2
    6031. 

  6031.         #  A[0] * A[1]
    6032. 

  6032.         movq	(%rsi), %rax
    6033. 

  6033.         mulq	8(%rsi)
    6034. 

  6034.         movq	%rax, %r9
    6035. 

  6035.         movq	%rdx, %r10
    6036. 

  6036.         #  A[0] * A[2]
    6037. 

  6037.         movq	(%rsi), %rax
    6038. 

  6038.         mulq	16(%rsi)
    6039. 

  6039.         xorq	%r11, %r11
    6040. 

  6040.         addq	%rax, %r10
    6041. 

  6041.         adcq	%rdx, %r11
    6042. 

  6042.         #  A[0] * A[3]
    6043. 

  6043.         movq	(%rsi), %rax
    6044. 

  6044.         mulq	24(%rsi)
    6045. 

  6045.         xorq	%r12, %r12
    6046. 

  6046.         addq	%rax, %r11
    6047. 

  6047.         adcq	%rdx, %r12
    6048. 

  6048.         #  A[1] * A[2]
    6049. 

  6049.         movq	8(%rsi), %rax
    6050. 

  6050.         mulq	16(%rsi)
    6051. 

  6051.         xorq	%r13, %r13
    6052. 

  6052.         addq	%rax, %r11
    6053. 

  6053.         adcq	%rdx, %r12
    6054. 

  6054.         adcq	$0x00, %r13
    6055. 

  6055.         #  A[1] * A[3]
    6056. 

  6056.         movq	8(%rsi), %rax
    6057. 

  6057.         mulq	24(%rsi)
    6058. 

  6058.         addq	%rax, %r12
    6059. 

  6059.         adcq	%rdx, %r13
    6060. 

  6060.         #  A[2] * A[3]
    6061. 

  6061.         movq	16(%rsi), %rax
    6062. 

  6062.         mulq	24(%rsi)
    6063. 

  6063.         xorq	%r14, %r14
    6064. 

  6064.         addq	%rax, %r13
    6065. 

  6065.         adcq	%rdx, %r14
    6066. 

  6066.         # Double
    6067. 

  6067.         xorq	%r15, %r15
    6068. 

  6068.         addq	%r9, %r9
    6069. 

  6069.         adcq	%r10, %r10
    6070. 

  6070.         adcq	%r11, %r11
    6071. 

  6071.         adcq	%r12, %r12
    6072. 

  6072.         adcq	%r13, %r13
    6073. 

  6073.         adcq	%r14, %r14
    6074. 

  6074.         adcq	$0x00, %r15
    6075. 

  6075.         #  A[0] * A[0]
    6076. 

  6076.         movq	(%rsi), %rax
    6077. 

  6077.         mulq	%rax
    6078. 

  6078.         movq	%rax, %r8
    6079. 

  6079.         movq	%rdx, %rcx
    6080. 

  6080.         #  A[1] * A[1]
    6081. 

  6081.         movq	8(%rsi), %rax
    6082. 

  6082.         mulq	%rax
    6083. 

  6083.         addq	%rcx, %r9
    6084. 

  6084.         adcq	%rax, %r10
    6085. 

  6085.         adcq	$0x00, %rdx
    6086. 

  6086.         movq	%rdx, %rcx
    6087. 

  6087.         #  A[2] * A[2]
    6088. 

  6088.         movq	16(%rsi), %rax
    6089. 

  6089.         mulq	%rax
    6090. 

  6090.         addq	%rcx, %r11
    6091. 

  6091.         adcq	%rax, %r12
    6092. 

  6092.         adcq	$0x00, %rdx
    6093. 

  6093.         movq	%rdx, %rcx
    6094. 

  6094.         #  A[3] * A[3]
    6095. 

  6095.         movq	24(%rsi), %rax
    6096. 

  6096.         mulq	%rax
    6097. 

  6097.         addq	%rax, %r14
    6098. 

  6098.         adcq	%rdx, %r15
    6099. 

  6099.         addq	%rcx, %r13
    6100. 

  6100.         adcq	$0x00, %r14
    6101. 

  6101.         adcq	$0x00, %r15
    6102. 

  6102.         # Reduce
    6103. 

  6103.         movq	$0x7fffffffffffffff, %rbx
    6104. 

  6104.         xorq	%rax, %rax
    6105. 

  6105.         #  Move top half into t4-t7 and remove top bit from t3
    6106. 

  6106.         shldq	$3, %r15, %rax
    6107. 

  6107.         shldq	$2, %r14, %r15
    6108. 

  6108.         shldq	$2, %r13, %r14
    6109. 

  6109.         shldq	$2, %r12, %r13
    6110. 

  6110.         shldq	$2, %r11, %r12
    6111. 

  6111.         shldq	$0x01, %r10, %r11
    6112. 

  6112.         shldq	$0x01, %r9, %r10
    6113. 

  6113.         shldq	$0x01, %r8, %r9
    6114. 

  6114.         shlq	$0x01, %r8
    6115. 

  6115.         andq	%rbx, %r11
    6116. 

  6116.         #  Two out left, one in right
    6117. 

  6117.         andq	%rbx, %r15
    6118. 

  6118.         #  Multiply top bits by 19*19
    6119. 

  6119.         imulq	$0x169, %rax, %rcx
    6120. 

  6120.         #  Multiply top half by 19
    6121. 

  6121.         movq	$19, %rax
    6122. 

  6122.         mulq	%r12
    6123. 

  6123.         xorq	%r12, %r12
    6124. 

  6124.         addq	%rax, %r8
    6125. 

  6125.         movq	$19, %rax
    6126. 

  6126.         adcq	%rdx, %r12
    6127. 

  6127.         mulq	%r13
    6128. 

  6128.         xorq	%r13, %r13
    6129. 

  6129.         addq	%rax, %r9
    6130. 

  6130.         movq	$19, %rax
    6131. 

  6131.         adcq	%rdx, %r13
    6132. 

  6132.         mulq	%r14
    6133. 

  6133.         xorq	%r14, %r14
    6134. 

  6134.         addq	%rax, %r10
    6135. 

  6135.         movq	$19, %rax
    6136. 

  6136.         adcq	%rdx, %r14
    6137. 

  6137.         mulq	%r15
    6138. 

  6138.         #  Add remaining produce results in
    6139. 

  6139.         addq	%rcx, %r8
    6140. 

  6140.         adcq	%r12, %r9
    6141. 

  6141.         adcq	%r13, %r10
    6142. 

  6142.         adcq	%r14, %r11
    6143. 

  6143.         adcq	%rax, %r11
    6144. 

  6144.         adcq	$0x00, %rdx
    6145. 

  6145.         #  Overflow
    6146. 

  6146.         shldq	$0x01, %r11, %rdx
    6147. 

  6147.         imulq	$19, %rdx, %rax
    6148. 

  6148.         andq	%rbx, %r11
    6149. 

  6149.         addq	%rax, %r8
    6150. 

  6150.         adcq	$0x00, %r9
    6151. 

  6151.         adcq	$0x00, %r10
    6152. 

  6152.         adcq	$0x00, %r11
    6153. 

  6153.         # Reduce if top bit set
    6154. 

  6154.         movq	%r11, %rdx
    6155. 

  6155.         sarq	$63, %rdx
    6156. 

  6156.         andq	$19, %rdx
    6157. 

  6157.         andq	%rbx, %r11
    6158. 

  6158.         addq	%rdx, %r8
    6159. 

  6159.         adcq	$0x00, %r9
    6160. 

  6160.         adcq	$0x00, %r10
    6161. 

  6161.         adcq	$0x00, %r11
    6162. 

  6162.         # Store
    6163. 

  6163.         movq	%r8, (%rdi)
    6164. 

  6164.         movq	%r9, 8(%rdi)
    6165. 

  6165.         movq	%r10, 16(%rdi)
    6166. 

  6166.         movq	%r11, 24(%rdi)
    6167. 

  6167.         movq	8(%rsp), %rdi
    6168. 

  6168.         movq	32(%rsp), %rsi
    6169. 

  6169.         movq	40(%rsp), %rbx
    6170. 

  6170.         # Add
    6171. 

  6171.         movq	(%rsi), %r8
    6172. 

  6172.         movq	8(%rsi), %r9
    6173. 

  6173.         addq	(%rbx), %r8
    6174. 

  6174.         movq	16(%rsi), %r10
    6175. 

  6175.         adcq	8(%rbx), %r9
    6176. 

  6176.         movq	24(%rsi), %rcx
    6177. 

  6177.         adcq	16(%rbx), %r10
    6178. 

  6178.         movq	$-19, %rax
    6179. 

  6179.         adcq	24(%rbx), %rcx
    6180. 

  6180.         movq	$0x7fffffffffffffff, %rdx
    6181. 

  6181.         movq	%rcx, %r11
    6182. 

  6182.         sarq	$63, %rcx
    6183. 

  6183.         #   Mask the modulus
    6184. 

  6184.         andq	%rcx, %rax
    6185. 

  6185.         andq	%rcx, %rdx
    6186. 

  6186.         #   Sub modulus (if overflow)
    6187. 

  6187.         subq	%rax, %r8
    6188. 

  6188.         sbbq	%rcx, %r9
    6189. 

  6189.         sbbq	%rcx, %r10
    6190. 

  6190.         sbbq	%rdx, %r11
    6191. 

  6191.         movq	%r8, (%rdi)
    6192. 

  6192.         movq	%r9, 8(%rdi)
    6193. 

  6193.         movq	%r10, 16(%rdi)
    6194. 

  6194.         movq	%r11, 24(%rdi)
    6195. 

  6195.         leaq	48(%rsp), %rdi
    6196. 

  6196.         movq	8(%rsp), %rsi
    6197. 

  6197.         # Square
    6198. 

  6198.         #  A[0] * A[1]
    6199. 

  6199.         movq	(%rsi), %rax
    6200. 

  6200.         mulq	8(%rsi)
    6201. 

  6201.         movq	%rax, %r9
    6202. 

  6202.         movq	%rdx, %r10
    6203. 

  6203.         #  A[0] * A[2]
    6204. 

  6204.         movq	(%rsi), %rax
    6205. 

  6205.         mulq	16(%rsi)
    6206. 

  6206.         xorq	%r11, %r11
    6207. 

  6207.         addq	%rax, %r10
    6208. 

  6208.         adcq	%rdx, %r11
    6209. 

  6209.         #  A[0] * A[3]
    6210. 

  6210.         movq	(%rsi), %rax
    6211. 

  6211.         mulq	24(%rsi)
    6212. 

  6212.         xorq	%r12, %r12
    6213. 

  6213.         addq	%rax, %r11
    6214. 

  6214.         adcq	%rdx, %r12
    6215. 

  6215.         #  A[1] * A[2]
    6216. 

  6216.         movq	8(%rsi), %rax
    6217. 

  6217.         mulq	16(%rsi)
    6218. 

  6218.         xorq	%r13, %r13
    6219. 

  6219.         addq	%rax, %r11
    6220. 

  6220.         adcq	%rdx, %r12
    6221. 

  6221.         adcq	$0x00, %r13
    6222. 

  6222.         #  A[1] * A[3]
    6223. 

  6223.         movq	8(%rsi), %rax
    6224. 

  6224.         mulq	24(%rsi)
    6225. 

  6225.         addq	%rax, %r12
    6226. 

  6226.         adcq	%rdx, %r13
    6227. 

  6227.         #  A[2] * A[3]
    6228. 

  6228.         movq	16(%rsi), %rax
    6229. 

  6229.         mulq	24(%rsi)
    6230. 

  6230.         xorq	%r14, %r14
    6231. 

  6231.         addq	%rax, %r13
    6232. 

  6232.         adcq	%rdx, %r14
    6233. 

  6233.         # Double
    6234. 

  6234.         xorq	%r15, %r15
    6235. 

  6235.         addq	%r9, %r9
    6236. 

  6236.         adcq	%r10, %r10
    6237. 

  6237.         adcq	%r11, %r11
    6238. 

  6238.         adcq	%r12, %r12
    6239. 

  6239.         adcq	%r13, %r13
    6240. 

  6240.         adcq	%r14, %r14
    6241. 

  6241.         adcq	$0x00, %r15
    6242. 

  6242.         #  A[0] * A[0]
    6243. 

  6243.         movq	(%rsi), %rax
    6244. 

  6244.         mulq	%rax
    6245. 

  6245.         movq	%rax, %r8
    6246. 

  6246.         movq	%rdx, %rcx
    6247. 

  6247.         #  A[1] * A[1]
    6248. 

  6248.         movq	8(%rsi), %rax
    6249. 

  6249.         mulq	%rax
    6250. 

  6250.         addq	%rcx, %r9
    6251. 

  6251.         adcq	%rax, %r10
    6252. 

  6252.         adcq	$0x00, %rdx
    6253. 

  6253.         movq	%rdx, %rcx
    6254. 

  6254.         #  A[2] * A[2]
    6255. 

  6255.         movq	16(%rsi), %rax
    6256. 

  6256.         mulq	%rax
    6257. 

  6257.         addq	%rcx, %r11
    6258. 

  6258.         adcq	%rax, %r12
    6259. 

  6259.         adcq	$0x00, %rdx
    6260. 

  6260.         movq	%rdx, %rcx
    6261. 

  6261.         #  A[3] * A[3]
    6262. 

  6262.         movq	24(%rsi), %rax
    6263. 

  6263.         mulq	%rax
    6264. 

  6264.         addq	%rax, %r14
    6265. 

  6265.         adcq	%rdx, %r15
    6266. 

  6266.         addq	%rcx, %r13
    6267. 

  6267.         adcq	$0x00, %r14
    6268. 

  6268.         adcq	$0x00, %r15
    6269. 

  6269.         # Reduce
    6270. 

  6270.         movq	$0x7fffffffffffffff, %rcx
    6271. 

  6271.         #  Move top half into t4-t7 and remove top bit from t3
    6272. 

  6272.         shldq	$0x01, %r14, %r15
    6273. 

  6273.         shldq	$0x01, %r13, %r14
    6274. 

  6274.         shldq	$0x01, %r12, %r13
    6275. 

  6275.         shldq	$0x01, %r11, %r12
    6276. 

  6276.         andq	%rcx, %r11
    6277. 

  6277.         #  Multiply top half by 19
    6278. 

  6278.         movq	$19, %rax
    6279. 

  6279.         mulq	%r12
    6280. 

  6280.         xorq	%r12, %r12
    6281. 

  6281.         addq	%rax, %r8
    6282. 

  6282.         movq	$19, %rax
    6283. 

  6283.         adcq	%rdx, %r12
    6284. 

  6284.         mulq	%r13
    6285. 

  6285.         xorq	%r13, %r13
    6286. 

  6286.         addq	%rax, %r9
    6287. 

  6287.         movq	$19, %rax
    6288. 

  6288.         adcq	%rdx, %r13
    6289. 

  6289.         mulq	%r14
    6290. 

  6290.         xorq	%r14, %r14
    6291. 

  6291.         addq	%rax, %r10
    6292. 

  6292.         movq	$19, %rax
    6293. 

  6293.         adcq	%rdx, %r14
    6294. 

  6294.         mulq	%r15
    6295. 

  6295.         #  Add remaining product results in
    6296. 

  6296.         addq	%r12, %r9
    6297. 

  6297.         adcq	%r13, %r10
    6298. 

  6298.         adcq	%r14, %r11
    6299. 

  6299.         adcq	%rax, %r11
    6300. 

  6300.         adcq	$0x00, %rdx
    6301. 

  6301.         #  Overflow
    6302. 

  6302.         shldq	$0x01, %r11, %rdx
    6303. 

  6303.         imulq	$19, %rdx, %rax
    6304. 

  6304.         andq	%rcx, %r11
    6305. 

  6305.         addq	%rax, %r8
    6306. 

  6306.         adcq	$0x00, %r9
    6307. 

  6307.         adcq	$0x00, %r10
    6308. 

  6308.         adcq	$0x00, %r11
    6309. 

  6309.         # Reduce if top bit set
    6310. 

  6310.         movq	%r11, %rdx
    6311. 

  6311.         sarq	$63, %rdx
    6312. 

  6312.         andq	$19, %rdx
    6313. 

  6313.         andq	%rcx, %r11
    6314. 

  6314.         addq	%rdx, %r8
    6315. 

  6315.         adcq	$0x00, %r9
    6316. 

  6316.         adcq	$0x00, %r10
    6317. 

  6317.         adcq	$0x00, %r11
    6318. 

  6318.         # Store
    6319. 

  6319.         movq	%r8, (%rdi)
    6320. 

  6320.         movq	%r9, 8(%rdi)
    6321. 

  6321.         movq	%r10, 16(%rdi)
    6322. 

  6322.         movq	%r11, 24(%rdi)
    6323. 

  6323.         movq	8(%rsp), %rdi
    6324. 

  6324.         movq	16(%rsp), %rsi
    6325. 

  6325.         movq	(%rsp), %rbx
    6326. 

  6326.         # Add
    6327. 

  6327.         movq	(%rsi), %r8
    6328. 

  6328.         movq	8(%rsi), %r9
    6329. 

  6329.         addq	(%rbx), %r8
    6330. 

  6330.         movq	16(%rsi), %r10
    6331. 

  6331.         adcq	8(%rbx), %r9
    6332. 

  6332.         movq	24(%rsi), %rcx
    6333. 

  6333.         adcq	16(%rbx), %r10
    6334. 

  6334.         movq	$-19, %rax
    6335. 

  6335.         adcq	24(%rbx), %rcx
    6336. 

  6336.         movq	$0x7fffffffffffffff, %rdx
    6337. 

  6337.         movq	%rcx, %r11
    6338. 

  6338.         sarq	$63, %rcx
    6339. 

  6339.         #   Mask the modulus
    6340. 

  6340.         andq	%rcx, %rax
    6341. 

  6341.         andq	%rcx, %rdx
    6342. 

  6342.         #   Sub modulus (if overflow)
    6343. 

  6343.         subq	%rax, %r8
    6344. 

  6344.         sbbq	%rcx, %r9
    6345. 

  6345.         sbbq	%rcx, %r10
    6346. 

  6346.         sbbq	%rdx, %r11
    6347. 

  6347.         movq	%r8, (%rdi)
    6348. 

  6348.         movq	%r9, 8(%rdi)
    6349. 

  6349.         movq	%r10, 16(%rdi)
    6350. 

  6350.         movq	%r11, 24(%rdi)
    6351. 

  6351.         movq	16(%rsp), %rdi
    6352. 

  6352.         movq	16(%rsp), %rsi
    6353. 

  6353.         movq	(%rsp), %rbx
    6354. 

  6354.         # Sub
    6355. 

  6355.         movq	(%rsi), %r8
    6356. 

  6356.         movq	8(%rsi), %r9
    6357. 

  6357.         movq	16(%rsi), %r10
    6358. 

  6358.         movq	24(%rsi), %r11
    6359. 

  6359.         subq	(%rbx), %r8
    6360. 

  6360.         movq	$0x00, %rcx
    6361. 

  6361.         sbbq	8(%rbx), %r9
    6362. 

  6362.         movq	$-19, %rax
    6363. 

  6363.         sbbq	16(%rbx), %r10
    6364. 

  6364.         movq	$0x7fffffffffffffff, %rdx
    6365. 

  6365.         sbbq	24(%rbx), %r11
    6366. 

  6366.         sbbq	$0x00, %rcx
    6367. 

  6367.         #   Mask the modulus
    6368. 

  6368.         andq	%rcx, %rax
    6369. 

  6369.         andq	%rcx, %rdx
    6370. 

  6370.         #   Add modulus (if underflow)
    6371. 

  6371.         addq	%rax, %r8
    6372. 

  6372.         adcq	%rcx, %r9
    6373. 

  6373.         adcq	%rcx, %r10
    6374. 

  6374.         adcq	%rdx, %r11
    6375. 

  6375.         movq	%r8, (%rdi)
    6376. 

  6376.         movq	%r9, 8(%rdi)
    6377. 

  6377.         movq	%r10, 16(%rdi)
    6378. 

  6378.         movq	%r11, 24(%rdi)
    6379. 

  6379.         movq	(%rsp), %rdi
    6380. 

  6380.         leaq	48(%rsp), %rsi
    6381. 

  6381.         movq	8(%rsp), %rbx
    6382. 

  6382.         # Sub
    6383. 

  6383.         movq	(%rsi), %r8
    6384. 

  6384.         movq	8(%rsi), %r9
    6385. 

  6385.         movq	16(%rsi), %r10
    6386. 

  6386.         movq	24(%rsi), %r11
    6387. 

  6387.         subq	(%rbx), %r8
    6388. 

  6388.         movq	$0x00, %rcx
    6389. 

  6389.         sbbq	8(%rbx), %r9
    6390. 

  6390.         movq	$-19, %rax
    6391. 

  6391.         sbbq	16(%rbx), %r10
    6392. 

  6392.         movq	$0x7fffffffffffffff, %rdx
    6393. 

  6393.         sbbq	24(%rbx), %r11
    6394. 

  6394.         sbbq	$0x00, %rcx
    6395. 

  6395.         #   Mask the modulus
    6396. 

  6396.         andq	%rcx, %rax
    6397. 

  6397.         andq	%rcx, %rdx
    6398. 

  6398.         #   Add modulus (if underflow)
    6399. 

  6399.         addq	%rax, %r8
    6400. 

  6400.         adcq	%rcx, %r9
    6401. 

  6401.         adcq	%rcx, %r10
    6402. 

  6402.         adcq	%rdx, %r11
    6403. 

  6403.         movq	%r8, (%rdi)
    6404. 

  6404.         movq	%r9, 8(%rdi)
    6405. 

  6405.         movq	%r10, 16(%rdi)
    6406. 

  6406.         movq	%r11, 24(%rdi)
    6407. 

  6407.         movq	24(%rsp), %rdi
    6408. 

  6408.         movq	24(%rsp), %rsi
    6409. 

  6409.         movq	16(%rsp), %rbx
    6410. 

  6410.         # Sub
    6411. 

  6411.         movq	(%rsi), %r8
    6412. 

  6412.         movq	8(%rsi), %r9
    6413. 

  6413.         movq	16(%rsi), %r10
    6414. 

  6414.         movq	24(%rsi), %r11
    6415. 

  6415.         subq	(%rbx), %r8
    6416. 

  6416.         movq	$0x00, %rcx
    6417. 

  6417.         sbbq	8(%rbx), %r9
    6418. 

  6418.         movq	$-19, %rax
    6419. 

  6419.         sbbq	16(%rbx), %r10
    6420. 

  6420.         movq	$0x7fffffffffffffff, %rdx
    6421. 

  6421.         sbbq	24(%rbx), %r11
    6422. 

  6422.         sbbq	$0x00, %rcx
    6423. 

  6423.         #   Mask the modulus
    6424. 

  6424.         andq	%rcx, %rax
    6425. 

  6425.         andq	%rcx, %rdx
    6426. 

  6426.         #   Add modulus (if underflow)
    6427. 

  6427.         addq	%rax, %r8
    6428. 

  6428.         adcq	%rcx, %r9
    6429. 

  6429.         adcq	%rcx, %r10
    6430. 

  6430.         adcq	%rdx, %r11
    6431. 

  6431.         movq	%r8, (%rdi)
    6432. 

  6432.         movq	%r9, 8(%rdi)
    6433. 

  6433.         movq	%r10, 16(%rdi)
    6434. 

  6434.         movq	%r11, 24(%rdi)
    6435. 

  6435.         addq	$0x50, %rsp
    6436. 

  6436.         popq	%r15
    6437. 

  6437.         popq	%r14
    6438. 

  6438.         popq	%r13
    6439. 

  6439.         popq	%r12
    6440. 

  6440.         popq	%rbx
    6441. 

  6441.         repz retq
    6442. 

  6442. #ifndef __APPLE__
    6443. 

  6443. .size	fe_ge_dbl_x64,.-fe_ge_dbl_x64
    6444. 

  6444. #endif /* __APPLE__ */
    6445. 

  6445. #ifndef __APPLE__
    6446. 

  6446. .text
    6447. 

  6447. .globl	fe_ge_madd_x64
    6448. 

  6448. .type	fe_ge_madd_x64,@function
    6449. 

  6449. .align	16
    6450. 

  6450. fe_ge_madd_x64:
    6451. 

  6451. #else
    6452. 

  6452. .section	__TEXT,__text
    6453. 

  6453. .globl	_fe_ge_madd_x64
    6454. 

  6454. .p2align	4
    6455. 

  6455. _fe_ge_madd_x64:
    6456. 

  6456. #endif /* __APPLE__ */
    6457. 

  6457.         pushq	%rbx
    6458. 

  6458.         pushq	%r12
    6459. 

  6459.         pushq	%r13
    6460. 

  6460.         pushq	%r14
    6461. 

  6461.         pushq	%r15
    6462. 

  6462.         subq	$0x50, %rsp
    6463. 

  6463.         movq	%rdi, (%rsp)
    6464. 

  6464.         movq	%rsi, 8(%rsp)
    6465. 

  6465.         movq	%rdx, 16(%rsp)
    6466. 

  6466.         movq	%rcx, 24(%rsp)
    6467. 

  6467.         movq	%r8, 32(%rsp)
    6468. 

  6468.         movq	%r9, 40(%rsp)
    6469. 

  6469.         movq	(%rsp), %rdi
    6470. 

  6470.         movq	40(%rsp), %rsi
    6471. 

  6471.         movq	32(%rsp), %rbx
    6472. 

  6472.         # Add
    6473. 

  6473.         movq	(%rsi), %r8
    6474. 

  6474.         movq	8(%rsi), %r9
    6475. 

  6475.         addq	(%rbx), %r8
    6476. 

  6476.         movq	16(%rsi), %r10
    6477. 

  6477.         adcq	8(%rbx), %r9
    6478. 

  6478.         movq	24(%rsi), %rcx
    6479. 

  6479.         adcq	16(%rbx), %r10
    6480. 

  6480.         movq	$-19, %rax
    6481. 

  6481.         adcq	24(%rbx), %rcx
    6482. 

  6482.         movq	$0x7fffffffffffffff, %rdx
    6483. 

  6483.         movq	%rcx, %r11
    6484. 

  6484.         sarq	$63, %rcx
    6485. 

  6485.         #   Mask the modulus
    6486. 

  6486.         andq	%rcx, %rax
    6487. 

  6487.         andq	%rcx, %rdx
    6488. 

  6488.         #   Sub modulus (if overflow)
    6489. 

  6489.         subq	%rax, %r8
    6490. 

  6490.         sbbq	%rcx, %r9
    6491. 

  6491.         sbbq	%rcx, %r10
    6492. 

  6492.         sbbq	%rdx, %r11
    6493. 

  6493.         movq	%r8, (%rdi)
    6494. 

  6494.         movq	%r9, 8(%rdi)
    6495. 

  6495.         movq	%r10, 16(%rdi)
    6496. 

  6496.         movq	%r11, 24(%rdi)
    6497. 

  6497.         movq	8(%rsp), %rdi
    6498. 

  6498.         movq	40(%rsp), %rsi
    6499. 

  6499.         movq	32(%rsp), %rbx
    6500. 

  6500.         # Sub
    6501. 

  6501.         movq	(%rsi), %r8
    6502. 

  6502.         movq	8(%rsi), %r9
    6503. 

  6503.         movq	16(%rsi), %r10
    6504. 

  6504.         movq	24(%rsi), %r11
    6505. 

  6505.         subq	(%rbx), %r8
    6506. 

  6506.         movq	$0x00, %rcx
    6507. 

  6507.         sbbq	8(%rbx), %r9
    6508. 

  6508.         movq	$-19, %rax
    6509. 

  6509.         sbbq	16(%rbx), %r10
    6510. 

  6510.         movq	$0x7fffffffffffffff, %rdx
    6511. 

  6511.         sbbq	24(%rbx), %r11
    6512. 

  6512.         sbbq	$0x00, %rcx
    6513. 

  6513.         #   Mask the modulus
    6514. 

  6514.         andq	%rcx, %rax
    6515. 

  6515.         andq	%rcx, %rdx
    6516. 

  6516.         #   Add modulus (if underflow)
    6517. 

  6517.         addq	%rax, %r8
    6518. 

  6518.         adcq	%rcx, %r9
    6519. 

  6519.         adcq	%rcx, %r10
    6520. 

  6520.         adcq	%rdx, %r11
    6521. 

  6521.         movq	%r8, (%rdi)
    6522. 

  6522.         movq	%r9, 8(%rdi)
    6523. 

  6523.         movq	%r10, 16(%rdi)
    6524. 

  6524.         movq	%r11, 24(%rdi)
    6525. 

  6525.         movq	16(%rsp), %rdi
    6526. 

  6526.         movq	(%rsp), %rsi
    6527. 

  6527.         movq	152(%rsp), %rbx
    6528. 

  6528.         # Multiply
    6529. 

  6529.         #  A[0] * B[0]
    6530. 

  6530.         movq	(%rbx), %rax
    6531. 

  6531.         mulq	(%rsi)
    6532. 

  6532.         movq	%rax, %r8
    6533. 

  6533.         movq	%rdx, %r9
    6534. 

  6534.         #  A[0] * B[1]
    6535. 

  6535.         movq	8(%rbx), %rax
    6536. 

  6536.         mulq	(%rsi)
    6537. 

  6537.         xorq	%r10, %r10
    6538. 

  6538.         addq	%rax, %r9
    6539. 

  6539.         adcq	%rdx, %r10
    6540. 

  6540.         #  A[1] * B[0]
    6541. 

  6541.         movq	(%rbx), %rax
    6542. 

  6542.         mulq	8(%rsi)
    6543. 

  6543.         xorq	%r11, %r11
    6544. 

  6544.         addq	%rax, %r9
    6545. 

  6545.         adcq	%rdx, %r10
    6546. 

  6546.         adcq	$0x00, %r11
    6547. 

  6547.         #  A[0] * B[2]
    6548. 

  6548.         movq	16(%rbx), %rax
    6549. 

  6549.         mulq	(%rsi)
    6550. 

  6550.         addq	%rax, %r10
    6551. 

  6551.         adcq	%rdx, %r11
    6552. 

  6552.         #  A[1] * B[1]
    6553. 

  6553.         movq	8(%rbx), %rax
    6554. 

  6554.         mulq	8(%rsi)
    6555. 

  6555.         xorq	%r12, %r12
    6556. 

  6556.         addq	%rax, %r10
    6557. 

  6557.         adcq	%rdx, %r11
    6558. 

  6558.         adcq	$0x00, %r12
    6559. 

  6559.         #  A[2] * B[0]
    6560. 

  6560.         movq	(%rbx), %rax
    6561. 

  6561.         mulq	16(%rsi)
    6562. 

  6562.         addq	%rax, %r10
    6563. 

  6563.         adcq	%rdx, %r11
    6564. 

  6564.         adcq	$0x00, %r12
    6565. 

  6565.         #  A[0] * B[3]
    6566. 

  6566.         movq	24(%rbx), %rax
    6567. 

  6567.         mulq	(%rsi)
    6568. 

  6568.         xorq	%r13, %r13
    6569. 

  6569.         addq	%rax, %r11
    6570. 

  6570.         adcq	%rdx, %r12
    6571. 

  6571.         adcq	$0x00, %r13
    6572. 

  6572.         #  A[1] * B[2]
    6573. 

  6573.         movq	16(%rbx), %rax
    6574. 

  6574.         mulq	8(%rsi)
    6575. 

  6575.         addq	%rax, %r11
    6576. 

  6576.         adcq	%rdx, %r12
    6577. 

  6577.         adcq	$0x00, %r13
    6578. 

  6578.         #  A[2] * B[1]
    6579. 

  6579.         movq	8(%rbx), %rax
    6580. 

  6580.         mulq	16(%rsi)
    6581. 

  6581.         addq	%rax, %r11
    6582. 

  6582.         adcq	%rdx, %r12
    6583. 

  6583.         adcq	$0x00, %r13
    6584. 

  6584.         #  A[3] * B[0]
    6585. 

  6585.         movq	(%rbx), %rax
    6586. 

  6586.         mulq	24(%rsi)
    6587. 

  6587.         addq	%rax, %r11
    6588. 

  6588.         adcq	%rdx, %r12
    6589. 

  6589.         adcq	$0x00, %r13
    6590. 

  6590.         #  A[1] * B[3]
    6591. 

  6591.         movq	24(%rbx), %rax
    6592. 

  6592.         mulq	8(%rsi)
    6593. 

  6593.         xorq	%r14, %r14
    6594. 

  6594.         addq	%rax, %r12
    6595. 

  6595.         adcq	%rdx, %r13
    6596. 

  6596.         adcq	$0x00, %r14
    6597. 

  6597.         #  A[2] * B[2]
    6598. 

  6598.         movq	16(%rbx), %rax
    6599. 

  6599.         mulq	16(%rsi)
    6600. 

  6600.         addq	%rax, %r12
    6601. 

  6601.         adcq	%rdx, %r13
    6602. 

  6602.         adcq	$0x00, %r14
    6603. 

  6603.         #  A[3] * B[1]
    6604. 

  6604.         movq	8(%rbx), %rax
    6605. 

  6605.         mulq	24(%rsi)
    6606. 

  6606.         addq	%rax, %r12
    6607. 

  6607.         adcq	%rdx, %r13
    6608. 

  6608.         adcq	$0x00, %r14
    6609. 

  6609.         #  A[2] * B[3]
    6610. 

  6610.         movq	24(%rbx), %rax
    6611. 

  6611.         mulq	16(%rsi)
    6612. 

  6612.         xorq	%r15, %r15
    6613. 

  6613.         addq	%rax, %r13
    6614. 

  6614.         adcq	%rdx, %r14
    6615. 

  6615.         adcq	$0x00, %r15
    6616. 

  6616.         #  A[3] * B[2]
    6617. 

  6617.         movq	16(%rbx), %rax
    6618. 

  6618.         mulq	24(%rsi)
    6619. 

  6619.         addq	%rax, %r13
    6620. 

  6620.         adcq	%rdx, %r14
    6621. 

  6621.         adcq	$0x00, %r15
    6622. 

  6622.         #  A[3] * B[3]
    6623. 

  6623.         movq	24(%rbx), %rax
    6624. 

  6624.         mulq	24(%rsi)
    6625. 

  6625.         addq	%rax, %r14
    6626. 

  6626.         adcq	%rdx, %r15
    6627. 

  6627.         # Reduce
    6628. 

  6628.         movq	$0x7fffffffffffffff, %rcx
    6629. 

  6629.         #  Move top half into t4-t7 and remove top bit from t3
    6630. 

  6630.         shldq	$0x01, %r14, %r15
    6631. 

  6631.         shldq	$0x01, %r13, %r14
    6632. 

  6632.         shldq	$0x01, %r12, %r13
    6633. 

  6633.         shldq	$0x01, %r11, %r12
    6634. 

  6634.         andq	%rcx, %r11
    6635. 

  6635.         #  Multiply top half by 19
    6636. 

  6636.         movq	$19, %rax
    6637. 

  6637.         mulq	%r12
    6638. 

  6638.         xorq	%r12, %r12
    6639. 

  6639.         addq	%rax, %r8
    6640. 

  6640.         movq	$19, %rax
    6641. 

  6641.         adcq	%rdx, %r12
    6642. 

  6642.         mulq	%r13
    6643. 

  6643.         xorq	%r13, %r13
    6644. 

  6644.         addq	%rax, %r9
    6645. 

  6645.         movq	$19, %rax
    6646. 

  6646.         adcq	%rdx, %r13
    6647. 

  6647.         mulq	%r14
    6648. 

  6648.         xorq	%r14, %r14
    6649. 

  6649.         addq	%rax, %r10
    6650. 

  6650.         movq	$19, %rax
    6651. 

  6651.         adcq	%rdx, %r14
    6652. 

  6652.         mulq	%r15
    6653. 

  6653.         #  Add remaining product results in
    6654. 

  6654.         addq	%r12, %r9
    6655. 

  6655.         adcq	%r13, %r10
    6656. 

  6656.         adcq	%r14, %r11
    6657. 

  6657.         adcq	%rax, %r11
    6658. 

  6658.         adcq	$0x00, %rdx
    6659. 

  6659.         #  Overflow
    6660. 

  6660.         shldq	$0x01, %r11, %rdx
    6661. 

  6661.         imulq	$19, %rdx, %rax
    6662. 

  6662.         andq	%rcx, %r11
    6663. 

  6663.         addq	%rax, %r8
    6664. 

  6664.         adcq	$0x00, %r9
    6665. 

  6665.         adcq	$0x00, %r10
    6666. 

  6666.         adcq	$0x00, %r11
    6667. 

  6667.         # Reduce if top bit set
    6668. 

  6668.         movq	%r11, %rdx
    6669. 

  6669.         sarq	$63, %rdx
    6670. 

  6670.         andq	$19, %rdx
    6671. 

  6671.         andq	%rcx, %r11
    6672. 

  6672.         addq	%rdx, %r8
    6673. 

  6673.         adcq	$0x00, %r9
    6674. 

  6674.         adcq	$0x00, %r10
    6675. 

  6675.         adcq	$0x00, %r11
    6676. 

  6676.         # Store
    6677. 

  6677.         movq	%r8, (%rdi)
    6678. 

  6678.         movq	%r9, 8(%rdi)
    6679. 

  6679.         movq	%r10, 16(%rdi)
    6680. 

  6680.         movq	%r11, 24(%rdi)
    6681. 

  6681.         movq	8(%rsp), %rdi
    6682. 

  6682.         movq	8(%rsp), %rsi
    6683. 

  6683.         movq	160(%rsp), %rbx
    6684. 

  6684.         # Multiply
    6685. 

  6685.         #  A[0] * B[0]
    6686. 

  6686.         movq	(%rbx), %rax
    6687. 

  6687.         mulq	(%rsi)
    6688. 

  6688.         movq	%rax, %r8
    6689. 

  6689.         movq	%rdx, %r9
    6690. 

  6690.         #  A[0] * B[1]
    6691. 

  6691.         movq	8(%rbx), %rax
    6692. 

  6692.         mulq	(%rsi)
    6693. 

  6693.         xorq	%r10, %r10
    6694. 

  6694.         addq	%rax, %r9
    6695. 

  6695.         adcq	%rdx, %r10
    6696. 

  6696.         #  A[1] * B[0]
    6697. 

  6697.         movq	(%rbx), %rax
    6698. 

  6698.         mulq	8(%rsi)
    6699. 

  6699.         xorq	%r11, %r11
    6700. 

  6700.         addq	%rax, %r9
    6701. 

  6701.         adcq	%rdx, %r10
    6702. 

  6702.         adcq	$0x00, %r11
    6703. 

  6703.         #  A[0] * B[2]
    6704. 

  6704.         movq	16(%rbx), %rax
    6705. 

  6705.         mulq	(%rsi)
    6706. 

  6706.         addq	%rax, %r10
    6707. 

  6707.         adcq	%rdx, %r11
    6708. 

  6708.         #  A[1] * B[1]
    6709. 

  6709.         movq	8(%rbx), %rax
    6710. 

  6710.         mulq	8(%rsi)
    6711. 

  6711.         xorq	%r12, %r12
    6712. 

  6712.         addq	%rax, %r10
    6713. 

  6713.         adcq	%rdx, %r11
    6714. 

  6714.         adcq	$0x00, %r12
    6715. 

  6715.         #  A[2] * B[0]
    6716. 

  6716.         movq	(%rbx), %rax
    6717. 

  6717.         mulq	16(%rsi)
    6718. 

  6718.         addq	%rax, %r10
    6719. 

  6719.         adcq	%rdx, %r11
    6720. 

  6720.         adcq	$0x00, %r12
    6721. 

  6721.         #  A[0] * B[3]
    6722. 

  6722.         movq	24(%rbx), %rax
    6723. 

  6723.         mulq	(%rsi)
    6724. 

  6724.         xorq	%r13, %r13
    6725. 

  6725.         addq	%rax, %r11
    6726. 

  6726.         adcq	%rdx, %r12
    6727. 

  6727.         adcq	$0x00, %r13
    6728. 

  6728.         #  A[1] * B[2]
    6729. 

  6729.         movq	16(%rbx), %rax
    6730. 

  6730.         mulq	8(%rsi)
    6731. 

  6731.         addq	%rax, %r11
    6732. 

  6732.         adcq	%rdx, %r12
    6733. 

  6733.         adcq	$0x00, %r13
    6734. 

  6734.         #  A[2] * B[1]
    6735. 

  6735.         movq	8(%rbx), %rax
    6736. 

  6736.         mulq	16(%rsi)
    6737. 

  6737.         addq	%rax, %r11
    6738. 

  6738.         adcq	%rdx, %r12
    6739. 

  6739.         adcq	$0x00, %r13
    6740. 

  6740.         #  A[3] * B[0]
    6741. 

  6741.         movq	(%rbx), %rax
    6742. 

  6742.         mulq	24(%rsi)
    6743. 

  6743.         addq	%rax, %r11
    6744. 

  6744.         adcq	%rdx, %r12
    6745. 

  6745.         adcq	$0x00, %r13
    6746. 

  6746.         #  A[1] * B[3]
    6747. 

  6747.         movq	24(%rbx), %rax
    6748. 

  6748.         mulq	8(%rsi)
    6749. 

  6749.         xorq	%r14, %r14
    6750. 

  6750.         addq	%rax, %r12
    6751. 

  6751.         adcq	%rdx, %r13
    6752. 

  6752.         adcq	$0x00, %r14
    6753. 

  6753.         #  A[2] * B[2]
    6754. 

  6754.         movq	16(%rbx), %rax
    6755. 

  6755.         mulq	16(%rsi)
    6756. 

  6756.         addq	%rax, %r12
    6757. 

  6757.         adcq	%rdx, %r13
    6758. 

  6758.         adcq	$0x00, %r14
    6759. 

  6759.         #  A[3] * B[1]
    6760. 

  6760.         movq	8(%rbx), %rax
    6761. 

  6761.         mulq	24(%rsi)
    6762. 

  6762.         addq	%rax, %r12
    6763. 

  6763.         adcq	%rdx, %r13
    6764. 

  6764.         adcq	$0x00, %r14
    6765. 

  6765.         #  A[2] * B[3]
    6766. 

  6766.         movq	24(%rbx), %rax
    6767. 

  6767.         mulq	16(%rsi)
    6768. 

  6768.         xorq	%r15, %r15
    6769. 

  6769.         addq	%rax, %r13
    6770. 

  6770.         adcq	%rdx, %r14
    6771. 

  6771.         adcq	$0x00, %r15
    6772. 

  6772.         #  A[3] * B[2]
    6773. 

  6773.         movq	16(%rbx), %rax
    6774. 

  6774.         mulq	24(%rsi)
    6775. 

  6775.         addq	%rax, %r13
    6776. 

  6776.         adcq	%rdx, %r14
    6777. 

  6777.         adcq	$0x00, %r15
    6778. 

  6778.         #  A[3] * B[3]
    6779. 

  6779.         movq	24(%rbx), %rax
    6780. 

  6780.         mulq	24(%rsi)
    6781. 

  6781.         addq	%rax, %r14
    6782. 

  6782.         adcq	%rdx, %r15
    6783. 

  6783.         # Reduce
    6784. 

  6784.         movq	$0x7fffffffffffffff, %rcx
    6785. 

  6785.         #  Move top half into t4-t7 and remove top bit from t3
    6786. 

  6786.         shldq	$0x01, %r14, %r15
    6787. 

  6787.         shldq	$0x01, %r13, %r14
    6788. 

  6788.         shldq	$0x01, %r12, %r13
    6789. 

  6789.         shldq	$0x01, %r11, %r12
    6790. 

  6790.         andq	%rcx, %r11
    6791. 

  6791.         #  Multiply top half by 19
    6792. 

  6792.         movq	$19, %rax
    6793. 

  6793.         mulq	%r12
    6794. 

  6794.         xorq	%r12, %r12
    6795. 

  6795.         addq	%rax, %r8
    6796. 

  6796.         movq	$19, %rax
    6797. 

  6797.         adcq	%rdx, %r12
    6798. 

  6798.         mulq	%r13
    6799. 

  6799.         xorq	%r13, %r13
    6800. 

  6800.         addq	%rax, %r9
    6801. 

  6801.         movq	$19, %rax
    6802. 

  6802.         adcq	%rdx, %r13
    6803. 

  6803.         mulq	%r14
    6804. 

  6804.         xorq	%r14, %r14
    6805. 

  6805.         addq	%rax, %r10
    6806. 

  6806.         movq	$19, %rax
    6807. 

  6807.         adcq	%rdx, %r14
    6808. 

  6808.         mulq	%r15
    6809. 

  6809.         #  Add remaining product results in
    6810. 

  6810.         addq	%r12, %r9
    6811. 

  6811.         adcq	%r13, %r10
    6812. 

  6812.         adcq	%r14, %r11
    6813. 

  6813.         adcq	%rax, %r11
    6814. 

  6814.         adcq	$0x00, %rdx
    6815. 

  6815.         #  Overflow
    6816. 

  6816.         shldq	$0x01, %r11, %rdx
    6817. 

  6817.         imulq	$19, %rdx, %rax
    6818. 

  6818.         andq	%rcx, %r11
    6819. 

  6819.         addq	%rax, %r8
    6820. 

  6820.         adcq	$0x00, %r9
    6821. 

  6821.         adcq	$0x00, %r10
    6822. 

  6822.         adcq	$0x00, %r11
    6823. 

  6823.         # Reduce if top bit set
    6824. 

  6824.         movq	%r11, %rdx
    6825. 

  6825.         sarq	$63, %rdx
    6826. 

  6826.         andq	$19, %rdx
    6827. 

  6827.         andq	%rcx, %r11
    6828. 

  6828.         addq	%rdx, %r8
    6829. 

  6829.         adcq	$0x00, %r9
    6830. 

  6830.         adcq	$0x00, %r10
    6831. 

  6831.         adcq	$0x00, %r11
    6832. 

  6832.         # Store
    6833. 

  6833.         movq	%r8, (%rdi)
    6834. 

  6834.         movq	%r9, 8(%rdi)
    6835. 

  6835.         movq	%r10, 16(%rdi)
    6836. 

  6836.         movq	%r11, 24(%rdi)
    6837. 

  6837.         movq	24(%rsp), %rdi
    6838. 

  6838.         movq	144(%rsp), %rsi
    6839. 

  6839.         movq	136(%rsp), %rbx
    6840. 

  6840.         # Multiply
    6841. 

  6841.         #  A[0] * B[0]
    6842. 

  6842.         movq	(%rbx), %rax
    6843. 

  6843.         mulq	(%rsi)
    6844. 

  6844.         movq	%rax, %r8
    6845. 

  6845.         movq	%rdx, %r9
    6846. 

  6846.         #  A[0] * B[1]
    6847. 

  6847.         movq	8(%rbx), %rax
    6848. 

  6848.         mulq	(%rsi)
    6849. 

  6849.         xorq	%r10, %r10
    6850. 

  6850.         addq	%rax, %r9
    6851. 

  6851.         adcq	%rdx, %r10
    6852. 

  6852.         #  A[1] * B[0]
    6853. 

  6853.         movq	(%rbx), %rax
    6854. 

  6854.         mulq	8(%rsi)
    6855. 

  6855.         xorq	%r11, %r11
    6856. 

  6856.         addq	%rax, %r9
    6857. 

  6857.         adcq	%rdx, %r10
    6858. 

  6858.         adcq	$0x00, %r11
    6859. 

  6859.         #  A[0] * B[2]
    6860. 

  6860.         movq	16(%rbx), %rax
    6861. 

  6861.         mulq	(%rsi)
    6862. 

  6862.         addq	%rax, %r10
    6863. 

  6863.         adcq	%rdx, %r11
    6864. 

  6864.         #  A[1] * B[1]
    6865. 

  6865.         movq	8(%rbx), %rax
    6866. 

  6866.         mulq	8(%rsi)
    6867. 

  6867.         xorq	%r12, %r12
    6868. 

  6868.         addq	%rax, %r10
    6869. 

  6869.         adcq	%rdx, %r11
    6870. 

  6870.         adcq	$0x00, %r12
    6871. 

  6871.         #  A[2] * B[0]
    6872. 

  6872.         movq	(%rbx), %rax
    6873. 

  6873.         mulq	16(%rsi)
    6874. 

  6874.         addq	%rax, %r10
    6875. 

  6875.         adcq	%rdx, %r11
    6876. 

  6876.         adcq	$0x00, %r12
    6877. 

  6877.         #  A[0] * B[3]
    6878. 

  6878.         movq	24(%rbx), %rax
    6879. 

  6879.         mulq	(%rsi)
    6880. 

  6880.         xorq	%r13, %r13
    6881. 

  6881.         addq	%rax, %r11
    6882. 

  6882.         adcq	%rdx, %r12
    6883. 

  6883.         adcq	$0x00, %r13
    6884. 

  6884.         #  A[1] * B[2]
    6885. 

  6885.         movq	16(%rbx), %rax
    6886. 

  6886.         mulq	8(%rsi)
    6887. 

  6887.         addq	%rax, %r11
    6888. 

  6888.         adcq	%rdx, %r12
    6889. 

  6889.         adcq	$0x00, %r13
    6890. 

  6890.         #  A[2] * B[1]
    6891. 

  6891.         movq	8(%rbx), %rax
    6892. 

  6892.         mulq	16(%rsi)
    6893. 

  6893.         addq	%rax, %r11
    6894. 

  6894.         adcq	%rdx, %r12
    6895. 

  6895.         adcq	$0x00, %r13
    6896. 

  6896.         #  A[3] * B[0]
    6897. 

  6897.         movq	(%rbx), %rax
    6898. 

  6898.         mulq	24(%rsi)
    6899. 

  6899.         addq	%rax, %r11
    6900. 

  6900.         adcq	%rdx, %r12
    6901. 

  6901.         adcq	$0x00, %r13
    6902. 

  6902.         #  A[1] * B[3]
    6903. 

  6903.         movq	24(%rbx), %rax
    6904. 

  6904.         mulq	8(%rsi)
    6905. 

  6905.         xorq	%r14, %r14
    6906. 

  6906.         addq	%rax, %r12
    6907. 

  6907.         adcq	%rdx, %r13
    6908. 

  6908.         adcq	$0x00, %r14
    6909. 

  6909.         #  A[2] * B[2]
    6910. 

  6910.         movq	16(%rbx), %rax
    6911. 

  6911.         mulq	16(%rsi)
    6912. 

  6912.         addq	%rax, %r12
    6913. 

  6913.         adcq	%rdx, %r13
    6914. 

  6914.         adcq	$0x00, %r14
    6915. 

  6915.         #  A[3] * B[1]
    6916. 

  6916.         movq	8(%rbx), %rax
    6917. 

  6917.         mulq	24(%rsi)
    6918. 

  6918.         addq	%rax, %r12
    6919. 

  6919.         adcq	%rdx, %r13
    6920. 

  6920.         adcq	$0x00, %r14
    6921. 

  6921.         #  A[2] * B[3]
    6922. 

  6922.         movq	24(%rbx), %rax
    6923. 

  6923.         mulq	16(%rsi)
    6924. 

  6924.         xorq	%r15, %r15
    6925. 

  6925.         addq	%rax, %r13
    6926. 

  6926.         adcq	%rdx, %r14
    6927. 

  6927.         adcq	$0x00, %r15
    6928. 

  6928.         #  A[3] * B[2]
    6929. 

  6929.         movq	16(%rbx), %rax
    6930. 

  6930.         mulq	24(%rsi)
    6931. 

  6931.         addq	%rax, %r13
    6932. 

  6932.         adcq	%rdx, %r14
    6933. 

  6933.         adcq	$0x00, %r15
    6934. 

  6934.         #  A[3] * B[3]
    6935. 

  6935.         movq	24(%rbx), %rax
    6936. 

  6936.         mulq	24(%rsi)
    6937. 

  6937.         addq	%rax, %r14
    6938. 

  6938.         adcq	%rdx, %r15
    6939. 

  6939.         # Reduce
    6940. 

  6940.         movq	$0x7fffffffffffffff, %rcx
    6941. 

  6941.         #  Move top half into t4-t7 and remove top bit from t3
    6942. 

  6942.         shldq	$0x01, %r14, %r15
    6943. 

  6943.         shldq	$0x01, %r13, %r14
    6944. 

  6944.         shldq	$0x01, %r12, %r13
    6945. 

  6945.         shldq	$0x01, %r11, %r12
    6946. 

  6946.         andq	%rcx, %r11
    6947. 

  6947.         #  Multiply top half by 19
    6948. 

  6948.         movq	$19, %rax
    6949. 

  6949.         mulq	%r12
    6950. 

  6950.         xorq	%r12, %r12
    6951. 

  6951.         addq	%rax, %r8
    6952. 

  6952.         movq	$19, %rax
    6953. 

  6953.         adcq	%rdx, %r12
    6954. 

  6954.         mulq	%r13
    6955. 

  6955.         xorq	%r13, %r13
    6956. 

  6956.         addq	%rax, %r9
    6957. 

  6957.         movq	$19, %rax
    6958. 

  6958.         adcq	%rdx, %r13
    6959. 

  6959.         mulq	%r14
    6960. 

  6960.         xorq	%r14, %r14
    6961. 

  6961.         addq	%rax, %r10
    6962. 

  6962.         movq	$19, %rax
    6963. 

  6963.         adcq	%rdx, %r14
    6964. 

  6964.         mulq	%r15
    6965. 

  6965.         #  Add remaining product results in
    6966. 

  6966.         addq	%r12, %r9
    6967. 

  6967.         adcq	%r13, %r10
    6968. 

  6968.         adcq	%r14, %r11
    6969. 

  6969.         adcq	%rax, %r11
    6970. 

  6970.         adcq	$0x00, %rdx
    6971. 

  6971.         #  Overflow
    6972. 

  6972.         shldq	$0x01, %r11, %rdx
    6973. 

  6973.         imulq	$19, %rdx, %rax
    6974. 

  6974.         andq	%rcx, %r11
    6975. 

  6975.         addq	%rax, %r8
    6976. 

  6976.         adcq	$0x00, %r9
    6977. 

  6977.         adcq	$0x00, %r10
    6978. 

  6978.         adcq	$0x00, %r11
    6979. 

  6979.         # Reduce if top bit set
    6980. 

  6980.         movq	%r11, %rdx
    6981. 

  6981.         sarq	$63, %rdx
    6982. 

  6982.         andq	$19, %rdx
    6983. 

  6983.         andq	%rcx, %r11
    6984. 

  6984.         addq	%rdx, %r8
    6985. 

  6985.         adcq	$0x00, %r9
    6986. 

  6986.         adcq	$0x00, %r10
    6987. 

  6987.         adcq	$0x00, %r11
    6988. 

  6988.         # Store
    6989. 

  6989.         movq	%r8, (%rdi)
    6990. 

  6990.         movq	%r9, 8(%rdi)
    6991. 

  6991.         movq	%r10, 16(%rdi)
    6992. 

  6992.         movq	%r11, 24(%rdi)
    6993. 

  6993.         leaq	48(%rsp), %rdi
    6994. 

  6994.         movq	128(%rsp), %rsi
    6995. 

  6995.         movq	128(%rsp), %rbx
    6996. 

  6996.         # Add
    6997. 

  6997.         movq	(%rsi), %r8
    6998. 

  6998.         movq	8(%rsi), %r9
    6999. 

  6999.         addq	(%rbx), %r8
    7000. 

  7000.         movq	16(%rsi), %r10
    7001. 

  7001.         adcq	8(%rbx), %r9
    7002. 

  7002.         movq	24(%rsi), %rcx
    7003. 

  7003.         adcq	16(%rbx), %r10
    7004. 

  7004.         movq	$-19, %rax
    7005. 

  7005.         adcq	24(%rbx), %rcx
    7006. 

  7006.         movq	$0x7fffffffffffffff, %rdx
    7007. 

  7007.         movq	%rcx, %r11
    7008. 

  7008.         sarq	$63, %rcx
    7009. 

  7009.         #   Mask the modulus
    7010. 

  7010.         andq	%rcx, %rax
    7011. 

  7011.         andq	%rcx, %rdx
    7012. 

  7012.         #   Sub modulus (if overflow)
    7013. 

  7013.         subq	%rax, %r8
    7014. 

  7014.         sbbq	%rcx, %r9
    7015. 

  7015.         sbbq	%rcx, %r10
    7016. 

  7016.         sbbq	%rdx, %r11
    7017. 

  7017.         movq	%r8, (%rdi)
    7018. 

  7018.         movq	%r9, 8(%rdi)
    7019. 

  7019.         movq	%r10, 16(%rdi)
    7020. 

  7020.         movq	%r11, 24(%rdi)
    7021. 

  7021.         movq	(%rsp), %rdi
    7022. 

  7022.         movq	16(%rsp), %rsi
    7023. 

  7023.         movq	8(%rsp), %rbx
    7024. 

  7024.         # Sub
    7025. 

  7025.         movq	(%rsi), %r8
    7026. 

  7026.         movq	8(%rsi), %r9
    7027. 

  7027.         movq	16(%rsi), %r10
    7028. 

  7028.         movq	24(%rsi), %r11
    7029. 

  7029.         subq	(%rbx), %r8
    7030. 

  7030.         movq	$0x00, %rcx
    7031. 

  7031.         sbbq	8(%rbx), %r9
    7032. 

  7032.         movq	$-19, %rax
    7033. 

  7033.         sbbq	16(%rbx), %r10
    7034. 

  7034.         movq	$0x7fffffffffffffff, %rdx
    7035. 

  7035.         sbbq	24(%rbx), %r11
    7036. 

  7036.         sbbq	$0x00, %rcx
    7037. 

  7037.         #   Mask the modulus
    7038. 

  7038.         andq	%rcx, %rax
    7039. 

  7039.         andq	%rcx, %rdx
    7040. 

  7040.         #   Add modulus (if underflow)
    7041. 

  7041.         addq	%rax, %r8
    7042. 

  7042.         adcq	%rcx, %r9
    7043. 

  7043.         adcq	%rcx, %r10
    7044. 

  7044.         adcq	%rdx, %r11
    7045. 

  7045.         movq	%r8, (%rdi)
    7046. 

  7046.         movq	%r9, 8(%rdi)
    7047. 

  7047.         movq	%r10, 16(%rdi)
    7048. 

  7048.         movq	%r11, 24(%rdi)
    7049. 

  7049.         movq	8(%rsp), %rdi
    7050. 

  7050.         movq	16(%rsp), %rsi
    7051. 

  7051.         movq	8(%rsp), %rbx
    7052. 

  7052.         # Add
    7053. 

  7053.         movq	(%rsi), %r8
    7054. 

  7054.         movq	8(%rsi), %r9
    7055. 

  7055.         addq	(%rbx), %r8
    7056. 

  7056.         movq	16(%rsi), %r10
    7057. 

  7057.         adcq	8(%rbx), %r9
    7058. 

  7058.         movq	24(%rsi), %rcx
    7059. 

  7059.         adcq	16(%rbx), %r10
    7060. 

  7060.         movq	$-19, %rax
    7061. 

  7061.         adcq	24(%rbx), %rcx
    7062. 

  7062.         movq	$0x7fffffffffffffff, %rdx
    7063. 

  7063.         movq	%rcx, %r11
    7064. 

  7064.         sarq	$63, %rcx
    7065. 

  7065.         #   Mask the modulus
    7066. 

  7066.         andq	%rcx, %rax
    7067. 

  7067.         andq	%rcx, %rdx
    7068. 

  7068.         #   Sub modulus (if overflow)
    7069. 

  7069.         subq	%rax, %r8
    7070. 

  7070.         sbbq	%rcx, %r9
    7071. 

  7071.         sbbq	%rcx, %r10
    7072. 

  7072.         sbbq	%rdx, %r11
    7073. 

  7073.         movq	%r8, (%rdi)
    7074. 

  7074.         movq	%r9, 8(%rdi)
    7075. 

  7075.         movq	%r10, 16(%rdi)
    7076. 

  7076.         movq	%r11, 24(%rdi)
    7077. 

  7077.         movq	16(%rsp), %rdi
    7078. 

  7078.         leaq	48(%rsp), %rsi
    7079. 

  7079.         movq	24(%rsp), %rbx
    7080. 

  7080.         # Add
    7081. 

  7081.         movq	(%rsi), %r8
    7082. 

  7082.         movq	8(%rsi), %r9
    7083. 

  7083.         addq	(%rbx), %r8
    7084. 

  7084.         movq	16(%rsi), %r10
    7085. 

  7085.         adcq	8(%rbx), %r9
    7086. 

  7086.         movq	24(%rsi), %rcx
    7087. 

  7087.         adcq	16(%rbx), %r10
    7088. 

  7088.         movq	$-19, %rax
    7089. 

  7089.         adcq	24(%rbx), %rcx
    7090. 

  7090.         movq	$0x7fffffffffffffff, %rdx
    7091. 

  7091.         movq	%rcx, %r11
    7092. 

  7092.         sarq	$63, %rcx
    7093. 

  7093.         #   Mask the modulus
    7094. 

  7094.         andq	%rcx, %rax
    7095. 

  7095.         andq	%rcx, %rdx
    7096. 

  7096.         #   Sub modulus (if overflow)
    7097. 

  7097.         subq	%rax, %r8
    7098. 

  7098.         sbbq	%rcx, %r9
    7099. 

  7099.         sbbq	%rcx, %r10
    7100. 

  7100.         sbbq	%rdx, %r11
    7101. 

  7101.         movq	%r8, (%rdi)
    7102. 

  7102.         movq	%r9, 8(%rdi)
    7103. 

  7103.         movq	%r10, 16(%rdi)
    7104. 

  7104.         movq	%r11, 24(%rdi)
    7105. 

  7105.         movq	24(%rsp), %rdi
    7106. 

  7106.         leaq	48(%rsp), %rsi
    7107. 

  7107.         movq	24(%rsp), %rbx
    7108. 

  7108.         # Sub
    7109. 

  7109.         movq	(%rsi), %r8
    7110. 

  7110.         movq	8(%rsi), %r9
    7111. 

  7111.         movq	16(%rsi), %r10
    7112. 

  7112.         movq	24(%rsi), %r11
    7113. 

  7113.         subq	(%rbx), %r8
    7114. 

  7114.         movq	$0x00, %rcx
    7115. 

  7115.         sbbq	8(%rbx), %r9
    7116. 

  7116.         movq	$-19, %rax
    7117. 

  7117.         sbbq	16(%rbx), %r10
    7118. 

  7118.         movq	$0x7fffffffffffffff, %rdx
    7119. 

  7119.         sbbq	24(%rbx), %r11
    7120. 

  7120.         sbbq	$0x00, %rcx
    7121. 

  7121.         #   Mask the modulus
    7122. 

  7122.         andq	%rcx, %rax
    7123. 

  7123.         andq	%rcx, %rdx
    7124. 

  7124.         #   Add modulus (if underflow)
    7125. 

  7125.         addq	%rax, %r8
    7126. 

  7126.         adcq	%rcx, %r9
    7127. 

  7127.         adcq	%rcx, %r10
    7128. 

  7128.         adcq	%rdx, %r11
    7129. 

  7129.         movq	%r8, (%rdi)
    7130. 

  7130.         movq	%r9, 8(%rdi)
    7131. 

  7131.         movq	%r10, 16(%rdi)
    7132. 

  7132.         movq	%r11, 24(%rdi)
    7133. 

  7133.         addq	$0x50, %rsp
    7134. 

  7134.         popq	%r15
    7135. 

  7135.         popq	%r14
    7136. 

  7136.         popq	%r13
    7137. 

  7137.         popq	%r12
    7138. 

  7138.         popq	%rbx
    7139. 

  7139.         repz retq
    7140. 

  7140. #ifndef __APPLE__
    7141. 

  7141. .size	fe_ge_madd_x64,.-fe_ge_madd_x64
    7142. 

  7142. #endif /* __APPLE__ */
    7143. 

  7143. #ifndef __APPLE__
    7144. 

  7144. .text
    7145. 

  7145. .globl	fe_ge_msub_x64
    7146. 

  7146. .type	fe_ge_msub_x64,@function
    7147. 

  7147. .align	16
    7148. 

  7148. fe_ge_msub_x64:
    7149. 

  7149. #else
    7150. 

  7150. .section	__TEXT,__text
    7151. 

  7151. .globl	_fe_ge_msub_x64
    7152. 

  7152. .p2align	4
    7153. 

  7153. _fe_ge_msub_x64:
    7154. 

  7154. #endif /* __APPLE__ */
    7155. 

  7155.         pushq	%rbx
    7156. 

  7156.         pushq	%r12
    7157. 

  7157.         pushq	%r13
    7158. 

  7158.         pushq	%r14
    7159. 

  7159.         pushq	%r15
    7160. 

  7160.         subq	$0x50, %rsp
    7161. 

  7161.         movq	%rdi, (%rsp)
    7162. 

  7162.         movq	%rsi, 8(%rsp)
    7163. 

  7163.         movq	%rdx, 16(%rsp)
    7164. 

  7164.         movq	%rcx, 24(%rsp)
    7165. 

  7165.         movq	%r8, 32(%rsp)
    7166. 

  7166.         movq	%r9, 40(%rsp)
    7167. 

  7167.         movq	(%rsp), %rdi
    7168. 

  7168.         movq	40(%rsp), %rsi
    7169. 

  7169.         movq	32(%rsp), %rbx
    7170. 

  7170.         # Add
    7171. 

  7171.         movq	(%rsi), %r8
    7172. 

  7172.         movq	8(%rsi), %r9
    7173. 

  7173.         addq	(%rbx), %r8
    7174. 

  7174.         movq	16(%rsi), %r10
    7175. 

  7175.         adcq	8(%rbx), %r9
    7176. 

  7176.         movq	24(%rsi), %rcx
    7177. 

  7177.         adcq	16(%rbx), %r10
    7178. 

  7178.         movq	$-19, %rax
    7179. 

  7179.         adcq	24(%rbx), %rcx
    7180. 

  7180.         movq	$0x7fffffffffffffff, %rdx
    7181. 

  7181.         movq	%rcx, %r11
    7182. 

  7182.         sarq	$63, %rcx
    7183. 

  7183.         #   Mask the modulus
    7184. 

  7184.         andq	%rcx, %rax
    7185. 

  7185.         andq	%rcx, %rdx
    7186. 

  7186.         #   Sub modulus (if overflow)
    7187. 

  7187.         subq	%rax, %r8
    7188. 

  7188.         sbbq	%rcx, %r9
    7189. 

  7189.         sbbq	%rcx, %r10
    7190. 

  7190.         sbbq	%rdx, %r11
    7191. 

  7191.         movq	%r8, (%rdi)
    7192. 

  7192.         movq	%r9, 8(%rdi)
    7193. 

  7193.         movq	%r10, 16(%rdi)
    7194. 

  7194.         movq	%r11, 24(%rdi)
    7195. 

  7195.         movq	8(%rsp), %rdi
    7196. 

  7196.         movq	40(%rsp), %rsi
    7197. 

  7197.         movq	32(%rsp), %rbx
    7198. 

  7198.         # Sub
    7199. 

  7199.         movq	(%rsi), %r8
    7200. 

  7200.         movq	8(%rsi), %r9
    7201. 

  7201.         movq	16(%rsi), %r10
    7202. 

  7202.         movq	24(%rsi), %r11
    7203. 

  7203.         subq	(%rbx), %r8
    7204. 

  7204.         movq	$0x00, %rcx
    7205. 

  7205.         sbbq	8(%rbx), %r9
    7206. 

  7206.         movq	$-19, %rax
    7207. 

  7207.         sbbq	16(%rbx), %r10
    7208. 

  7208.         movq	$0x7fffffffffffffff, %rdx
    7209. 

  7209.         sbbq	24(%rbx), %r11
    7210. 

  7210.         sbbq	$0x00, %rcx
    7211. 

  7211.         #   Mask the modulus
    7212. 

  7212.         andq	%rcx, %rax
    7213. 

  7213.         andq	%rcx, %rdx
    7214. 

  7214.         #   Add modulus (if underflow)
    7215. 

  7215.         addq	%rax, %r8
    7216. 

  7216.         adcq	%rcx, %r9
    7217. 

  7217.         adcq	%rcx, %r10
    7218. 

  7218.         adcq	%rdx, %r11
    7219. 

  7219.         movq	%r8, (%rdi)
    7220. 

  7220.         movq	%r9, 8(%rdi)
    7221. 

  7221.         movq	%r10, 16(%rdi)
    7222. 

  7222.         movq	%r11, 24(%rdi)
    7223. 

  7223.         movq	16(%rsp), %rdi
    7224. 

  7224.         movq	(%rsp), %rsi
    7225. 

  7225.         movq	160(%rsp), %rbx
    7226. 

  7226.         # Multiply
    7227. 

  7227.         #  A[0] * B[0]
    7228. 

  7228.         movq	(%rbx), %rax
    7229. 

  7229.         mulq	(%rsi)
    7230. 

  7230.         movq	%rax, %r8
    7231. 

  7231.         movq	%rdx, %r9
    7232. 

  7232.         #  A[0] * B[1]
    7233. 

  7233.         movq	8(%rbx), %rax
    7234. 

  7234.         mulq	(%rsi)
    7235. 

  7235.         xorq	%r10, %r10
    7236. 

  7236.         addq	%rax, %r9
    7237. 

  7237.         adcq	%rdx, %r10
    7238. 

  7238.         #  A[1] * B[0]
    7239. 

  7239.         movq	(%rbx), %rax
    7240. 

  7240.         mulq	8(%rsi)
    7241. 

  7241.         xorq	%r11, %r11
    7242. 

  7242.         addq	%rax, %r9
    7243. 

  7243.         adcq	%rdx, %r10
    7244. 

  7244.         adcq	$0x00, %r11
    7245. 

  7245.         #  A[0] * B[2]
    7246. 

  7246.         movq	16(%rbx), %rax
    7247. 

  7247.         mulq	(%rsi)
    7248. 

  7248.         addq	%rax, %r10
    7249. 

  7249.         adcq	%rdx, %r11
    7250. 

  7250.         #  A[1] * B[1]
    7251. 

  7251.         movq	8(%rbx), %rax
    7252. 

  7252.         mulq	8(%rsi)
    7253. 

  7253.         xorq	%r12, %r12
    7254. 

  7254.         addq	%rax, %r10
    7255. 

  7255.         adcq	%rdx, %r11
    7256. 

  7256.         adcq	$0x00, %r12
    7257. 

  7257.         #  A[2] * B[0]
    7258. 

  7258.         movq	(%rbx), %rax
    7259. 

  7259.         mulq	16(%rsi)
    7260. 

  7260.         addq	%rax, %r10
    7261. 

  7261.         adcq	%rdx, %r11
    7262. 

  7262.         adcq	$0x00, %r12
    7263. 

  7263.         #  A[0] * B[3]
    7264. 

  7264.         movq	24(%rbx), %rax
    7265. 

  7265.         mulq	(%rsi)
    7266. 

  7266.         xorq	%r13, %r13
    7267. 

  7267.         addq	%rax, %r11
    7268. 

  7268.         adcq	%rdx, %r12
    7269. 

  7269.         adcq	$0x00, %r13
    7270. 

  7270.         #  A[1] * B[2]
    7271. 

  7271.         movq	16(%rbx), %rax
    7272. 

  7272.         mulq	8(%rsi)
    7273. 

  7273.         addq	%rax, %r11
    7274. 

  7274.         adcq	%rdx, %r12
    7275. 

  7275.         adcq	$0x00, %r13
    7276. 

  7276.         #  A[2] * B[1]
    7277. 

  7277.         movq	8(%rbx), %rax
    7278. 

  7278.         mulq	16(%rsi)
    7279. 

  7279.         addq	%rax, %r11
    7280. 

  7280.         adcq	%rdx, %r12
    7281. 

  7281.         adcq	$0x00, %r13
    7282. 

  7282.         #  A[3] * B[0]
    7283. 

  7283.         movq	(%rbx), %rax
    7284. 

  7284.         mulq	24(%rsi)
    7285. 

  7285.         addq	%rax, %r11
    7286. 

  7286.         adcq	%rdx, %r12
    7287. 

  7287.         adcq	$0x00, %r13
    7288. 

  7288.         #  A[1] * B[3]
    7289. 

  7289.         movq	24(%rbx), %rax
    7290. 

  7290.         mulq	8(%rsi)
    7291. 

  7291.         xorq	%r14, %r14
    7292. 

  7292.         addq	%rax, %r12
    7293. 

  7293.         adcq	%rdx, %r13
    7294. 

  7294.         adcq	$0x00, %r14
    7295. 

  7295.         #  A[2] * B[2]
    7296. 

  7296.         movq	16(%rbx), %rax
    7297. 

  7297.         mulq	16(%rsi)
    7298. 

  7298.         addq	%rax, %r12
    7299. 

  7299.         adcq	%rdx, %r13
    7300. 

  7300.         adcq	$0x00, %r14
    7301. 

  7301.         #  A[3] * B[1]
    7302. 

  7302.         movq	8(%rbx), %rax
    7303. 

  7303.         mulq	24(%rsi)
    7304. 

  7304.         addq	%rax, %r12
    7305. 

  7305.         adcq	%rdx, %r13
    7306. 

  7306.         adcq	$0x00, %r14
    7307. 

  7307.         #  A[2] * B[3]
    7308. 

  7308.         movq	24(%rbx), %rax
    7309. 

  7309.         mulq	16(%rsi)
    7310. 

  7310.         xorq	%r15, %r15
    7311. 

  7311.         addq	%rax, %r13
    7312. 

  7312.         adcq	%rdx, %r14
    7313. 

  7313.         adcq	$0x00, %r15
    7314. 

  7314.         #  A[3] * B[2]
    7315. 

  7315.         movq	16(%rbx), %rax
    7316. 

  7316.         mulq	24(%rsi)
    7317. 

  7317.         addq	%rax, %r13
    7318. 

  7318.         adcq	%rdx, %r14
    7319. 

  7319.         adcq	$0x00, %r15
    7320. 

  7320.         #  A[3] * B[3]
    7321. 

  7321.         movq	24(%rbx), %rax
    7322. 

  7322.         mulq	24(%rsi)
    7323. 

  7323.         addq	%rax, %r14
    7324. 

  7324.         adcq	%rdx, %r15
    7325. 

  7325.         # Reduce
    7326. 

  7326.         movq	$0x7fffffffffffffff, %rcx
    7327. 

  7327.         #  Move top half into t4-t7 and remove top bit from t3
    7328. 

  7328.         shldq	$0x01, %r14, %r15
    7329. 

  7329.         shldq	$0x01, %r13, %r14
    7330. 

  7330.         shldq	$0x01, %r12, %r13
    7331. 

  7331.         shldq	$0x01, %r11, %r12
    7332. 

  7332.         andq	%rcx, %r11
    7333. 

  7333.         #  Multiply top half by 19
    7334. 

  7334.         movq	$19, %rax
    7335. 

  7335.         mulq	%r12
    7336. 

  7336.         xorq	%r12, %r12
    7337. 

  7337.         addq	%rax, %r8
    7338. 

  7338.         movq	$19, %rax
    7339. 

  7339.         adcq	%rdx, %r12
    7340. 

  7340.         mulq	%r13
    7341. 

  7341.         xorq	%r13, %r13
    7342. 

  7342.         addq	%rax, %r9
    7343. 

  7343.         movq	$19, %rax
    7344. 

  7344.         adcq	%rdx, %r13
    7345. 

  7345.         mulq	%r14
    7346. 

  7346.         xorq	%r14, %r14
    7347. 

  7347.         addq	%rax, %r10
    7348. 

  7348.         movq	$19, %rax
    7349. 

  7349.         adcq	%rdx, %r14
    7350. 

  7350.         mulq	%r15
    7351. 

  7351.         #  Add remaining product results in
    7352. 

  7352.         addq	%r12, %r9
    7353. 

  7353.         adcq	%r13, %r10
    7354. 

  7354.         adcq	%r14, %r11
    7355. 

  7355.         adcq	%rax, %r11
    7356. 

  7356.         adcq	$0x00, %rdx
    7357. 

  7357.         #  Overflow
    7358. 

  7358.         shldq	$0x01, %r11, %rdx
    7359. 

  7359.         imulq	$19, %rdx, %rax
    7360. 

  7360.         andq	%rcx, %r11
    7361. 

  7361.         addq	%rax, %r8
    7362. 

  7362.         adcq	$0x00, %r9
    7363. 

  7363.         adcq	$0x00, %r10
    7364. 

  7364.         adcq	$0x00, %r11
    7365. 

  7365.         # Reduce if top bit set
    7366. 

  7366.         movq	%r11, %rdx
    7367. 

  7367.         sarq	$63, %rdx
    7368. 

  7368.         andq	$19, %rdx
    7369. 

  7369.         andq	%rcx, %r11
    7370. 

  7370.         addq	%rdx, %r8
    7371. 

  7371.         adcq	$0x00, %r9
    7372. 

  7372.         adcq	$0x00, %r10
    7373. 

  7373.         adcq	$0x00, %r11
    7374. 

  7374.         # Store
    7375. 

  7375.         movq	%r8, (%rdi)
    7376. 

  7376.         movq	%r9, 8(%rdi)
    7377. 

  7377.         movq	%r10, 16(%rdi)
    7378. 

  7378.         movq	%r11, 24(%rdi)
    7379. 

  7379.         movq	8(%rsp), %rdi
    7380. 

  7380.         movq	8(%rsp), %rsi
    7381. 

  7381.         movq	152(%rsp), %rbx
    7382. 

  7382.         # Multiply
    7383. 

  7383.         #  A[0] * B[0]
    7384. 

  7384.         movq	(%rbx), %rax
    7385. 

  7385.         mulq	(%rsi)
    7386. 

  7386.         movq	%rax, %r8
    7387. 

  7387.         movq	%rdx, %r9
    7388. 

  7388.         #  A[0] * B[1]
    7389. 

  7389.         movq	8(%rbx), %rax
    7390. 

  7390.         mulq	(%rsi)
    7391. 

  7391.         xorq	%r10, %r10
    7392. 

  7392.         addq	%rax, %r9
    7393. 

  7393.         adcq	%rdx, %r10
    7394. 

  7394.         #  A[1] * B[0]
    7395. 

  7395.         movq	(%rbx), %rax
    7396. 

  7396.         mulq	8(%rsi)
    7397. 

  7397.         xorq	%r11, %r11
    7398. 

  7398.         addq	%rax, %r9
    7399. 

  7399.         adcq	%rdx, %r10
    7400. 

  7400.         adcq	$0x00, %r11
    7401. 

  7401.         #  A[0] * B[2]
    7402. 

  7402.         movq	16(%rbx), %rax
    7403. 

  7403.         mulq	(%rsi)
    7404. 

  7404.         addq	%rax, %r10
    7405. 

  7405.         adcq	%rdx, %r11
    7406. 

  7406.         #  A[1] * B[1]
    7407. 

  7407.         movq	8(%rbx), %rax
    7408. 

  7408.         mulq	8(%rsi)
    7409. 

  7409.         xorq	%r12, %r12
    7410. 

  7410.         addq	%rax, %r10
    7411. 

  7411.         adcq	%rdx, %r11
    7412. 

  7412.         adcq	$0x00, %r12
    7413. 

  7413.         #  A[2] * B[0]
    7414. 

  7414.         movq	(%rbx), %rax
    7415. 

  7415.         mulq	16(%rsi)
    7416. 

  7416.         addq	%rax, %r10
    7417. 

  7417.         adcq	%rdx, %r11
    7418. 

  7418.         adcq	$0x00, %r12
    7419. 

  7419.         #  A[0] * B[3]
    7420. 

  7420.         movq	24(%rbx), %rax
    7421. 

  7421.         mulq	(%rsi)
    7422. 

  7422.         xorq	%r13, %r13
    7423. 

  7423.         addq	%rax, %r11
    7424. 

  7424.         adcq	%rdx, %r12
    7425. 

  7425.         adcq	$0x00, %r13
    7426. 

  7426.         #  A[1] * B[2]
    7427. 

  7427.         movq	16(%rbx), %rax
    7428. 

  7428.         mulq	8(%rsi)
    7429. 

  7429.         addq	%rax, %r11
    7430. 

  7430.         adcq	%rdx, %r12
    7431. 

  7431.         adcq	$0x00, %r13
    7432. 

  7432.         #  A[2] * B[1]
    7433. 

  7433.         movq	8(%rbx), %rax
    7434. 

  7434.         mulq	16(%rsi)
    7435. 

  7435.         addq	%rax, %r11
    7436. 

  7436.         adcq	%rdx, %r12
    7437. 

  7437.         adcq	$0x00, %r13
    7438. 

  7438.         #  A[3] * B[0]
    7439. 

  7439.         movq	(%rbx), %rax
    7440. 

  7440.         mulq	24(%rsi)
    7441. 

  7441.         addq	%rax, %r11
    7442. 

  7442.         adcq	%rdx, %r12
    7443. 

  7443.         adcq	$0x00, %r13
    7444. 

  7444.         #  A[1] * B[3]
    7445. 

  7445.         movq	24(%rbx), %rax
    7446. 

  7446.         mulq	8(%rsi)
    7447. 

  7447.         xorq	%r14, %r14
    7448. 

  7448.         addq	%rax, %r12
    7449. 

  7449.         adcq	%rdx, %r13
    7450. 

  7450.         adcq	$0x00, %r14
    7451. 

  7451.         #  A[2] * B[2]
    7452. 

  7452.         movq	16(%rbx), %rax
    7453. 

  7453.         mulq	16(%rsi)
    7454. 

  7454.         addq	%rax, %r12
    7455. 

  7455.         adcq	%rdx, %r13
    7456. 

  7456.         adcq	$0x00, %r14
    7457. 

  7457.         #  A[3] * B[1]
    7458. 

  7458.         movq	8(%rbx), %rax
    7459. 

  7459.         mulq	24(%rsi)
    7460. 

  7460.         addq	%rax, %r12
    7461. 

  7461.         adcq	%rdx, %r13
    7462. 

  7462.         adcq	$0x00, %r14
    7463. 

  7463.         #  A[2] * B[3]
    7464. 

  7464.         movq	24(%rbx), %rax
    7465. 

  7465.         mulq	16(%rsi)
    7466. 

  7466.         xorq	%r15, %r15
    7467. 

  7467.         addq	%rax, %r13
    7468. 

  7468.         adcq	%rdx, %r14
    7469. 

  7469.         adcq	$0x00, %r15
    7470. 

  7470.         #  A[3] * B[2]
    7471. 

  7471.         movq	16(%rbx), %rax
    7472. 

  7472.         mulq	24(%rsi)
    7473. 

  7473.         addq	%rax, %r13
    7474. 

  7474.         adcq	%rdx, %r14
    7475. 

  7475.         adcq	$0x00, %r15
    7476. 

  7476.         #  A[3] * B[3]
    7477. 

  7477.         movq	24(%rbx), %rax
    7478. 

  7478.         mulq	24(%rsi)
    7479. 

  7479.         addq	%rax, %r14
    7480. 

  7480.         adcq	%rdx, %r15
    7481. 

  7481.         # Reduce
    7482. 

  7482.         movq	$0x7fffffffffffffff, %rcx
    7483. 

  7483.         #  Move top half into t4-t7 and remove top bit from t3
    7484. 

  7484.         shldq	$0x01, %r14, %r15
    7485. 

  7485.         shldq	$0x01, %r13, %r14
    7486. 

  7486.         shldq	$0x01, %r12, %r13
    7487. 

  7487.         shldq	$0x01, %r11, %r12
    7488. 

  7488.         andq	%rcx, %r11
    7489. 

  7489.         #  Multiply top half by 19
    7490. 

  7490.         movq	$19, %rax
    7491. 

  7491.         mulq	%r12
    7492. 

  7492.         xorq	%r12, %r12
    7493. 

  7493.         addq	%rax, %r8
    7494. 

  7494.         movq	$19, %rax
    7495. 

  7495.         adcq	%rdx, %r12
    7496. 

  7496.         mulq	%r13
    7497. 

  7497.         xorq	%r13, %r13
    7498. 

  7498.         addq	%rax, %r9
    7499. 

  7499.         movq	$19, %rax
    7500. 

  7500.         adcq	%rdx, %r13
    7501. 

  7501.         mulq	%r14
    7502. 

  7502.         xorq	%r14, %r14
    7503. 

  7503.         addq	%rax, %r10
    7504. 

  7504.         movq	$19, %rax
    7505. 

  7505.         adcq	%rdx, %r14
    7506. 

  7506.         mulq	%r15
    7507. 

  7507.         #  Add remaining product results in
    7508. 

  7508.         addq	%r12, %r9
    7509. 

  7509.         adcq	%r13, %r10
    7510. 

  7510.         adcq	%r14, %r11
    7511. 

  7511.         adcq	%rax, %r11
    7512. 

  7512.         adcq	$0x00, %rdx
    7513. 

  7513.         #  Overflow
    7514. 

  7514.         shldq	$0x01, %r11, %rdx
    7515. 

  7515.         imulq	$19, %rdx, %rax
    7516. 

  7516.         andq	%rcx, %r11
    7517. 

  7517.         addq	%rax, %r8
    7518. 

  7518.         adcq	$0x00, %r9
    7519. 

  7519.         adcq	$0x00, %r10
    7520. 

  7520.         adcq	$0x00, %r11
    7521. 

  7521.         # Reduce if top bit set
    7522. 

  7522.         movq	%r11, %rdx
    7523. 

  7523.         sarq	$63, %rdx
    7524. 

  7524.         andq	$19, %rdx
    7525. 

  7525.         andq	%rcx, %r11
    7526. 

  7526.         addq	%rdx, %r8
    7527. 

  7527.         adcq	$0x00, %r9
    7528. 

  7528.         adcq	$0x00, %r10
    7529. 

  7529.         adcq	$0x00, %r11
    7530. 

  7530.         # Store
    7531. 

  7531.         movq	%r8, (%rdi)
    7532. 

  7532.         movq	%r9, 8(%rdi)
    7533. 

  7533.         movq	%r10, 16(%rdi)
    7534. 

  7534.         movq	%r11, 24(%rdi)
    7535. 

  7535.         movq	24(%rsp), %rdi
    7536. 

  7536.         movq	144(%rsp), %rsi
    7537. 

  7537.         movq	136(%rsp), %rbx
    7538. 

  7538.         # Multiply
    7539. 

  7539.         #  A[0] * B[0]
    7540. 

  7540.         movq	(%rbx), %rax
    7541. 

  7541.         mulq	(%rsi)
    7542. 

  7542.         movq	%rax, %r8
    7543. 

  7543.         movq	%rdx, %r9
    7544. 

  7544.         #  A[0] * B[1]
    7545. 

  7545.         movq	8(%rbx), %rax
    7546. 

  7546.         mulq	(%rsi)
    7547. 

  7547.         xorq	%r10, %r10
    7548. 

  7548.         addq	%rax, %r9
    7549. 

  7549.         adcq	%rdx, %r10
    7550. 

  7550.         #  A[1] * B[0]
    7551. 

  7551.         movq	(%rbx), %rax
    7552. 

  7552.         mulq	8(%rsi)
    7553. 

  7553.         xorq	%r11, %r11
    7554. 

  7554.         addq	%rax, %r9
    7555. 

  7555.         adcq	%rdx, %r10
    7556. 

  7556.         adcq	$0x00, %r11
    7557. 

  7557.         #  A[0] * B[2]
    7558. 

  7558.         movq	16(%rbx), %rax
    7559. 

  7559.         mulq	(%rsi)
    7560. 

  7560.         addq	%rax, %r10
    7561. 

  7561.         adcq	%rdx, %r11
    7562. 

  7562.         #  A[1] * B[1]
    7563. 

  7563.         movq	8(%rbx), %rax
    7564. 

  7564.         mulq	8(%rsi)
    7565. 

  7565.         xorq	%r12, %r12
    7566. 

  7566.         addq	%rax, %r10
    7567. 

  7567.         adcq	%rdx, %r11
    7568. 

  7568.         adcq	$0x00, %r12
    7569. 

  7569.         #  A[2] * B[0]
    7570. 

  7570.         movq	(%rbx), %rax
    7571. 

  7571.         mulq	16(%rsi)
    7572. 

  7572.         addq	%rax, %r10
    7573. 

  7573.         adcq	%rdx, %r11
    7574. 

  7574.         adcq	$0x00, %r12
    7575. 

  7575.         #  A[0] * B[3]
    7576. 

  7576.         movq	24(%rbx), %rax
    7577. 

  7577.         mulq	(%rsi)
    7578. 

  7578.         xorq	%r13, %r13
    7579. 

  7579.         addq	%rax, %r11
    7580. 

  7580.         adcq	%rdx, %r12
    7581. 

  7581.         adcq	$0x00, %r13
    7582. 

  7582.         #  A[1] * B[2]
    7583. 

  7583.         movq	16(%rbx), %rax
    7584. 

  7584.         mulq	8(%rsi)
    7585. 

  7585.         addq	%rax, %r11
    7586. 

  7586.         adcq	%rdx, %r12
    7587. 

  7587.         adcq	$0x00, %r13
    7588. 

  7588.         #  A[2] * B[1]
    7589. 

  7589.         movq	8(%rbx), %rax
    7590. 

  7590.         mulq	16(%rsi)
    7591. 

  7591.         addq	%rax, %r11
    7592. 

  7592.         adcq	%rdx, %r12
    7593. 

  7593.         adcq	$0x00, %r13
    7594. 

  7594.         #  A[3] * B[0]
    7595. 

  7595.         movq	(%rbx), %rax
    7596. 

  7596.         mulq	24(%rsi)
    7597. 

  7597.         addq	%rax, %r11
    7598. 

  7598.         adcq	%rdx, %r12
    7599. 

  7599.         adcq	$0x00, %r13
    7600. 

  7600.         #  A[1] * B[3]
    7601. 

  7601.         movq	24(%rbx), %rax
    7602. 

  7602.         mulq	8(%rsi)
    7603. 

  7603.         xorq	%r14, %r14
    7604. 

  7604.         addq	%rax, %r12
    7605. 

  7605.         adcq	%rdx, %r13
    7606. 

  7606.         adcq	$0x00, %r14
    7607. 

  7607.         #  A[2] * B[2]
    7608. 

  7608.         movq	16(%rbx), %rax
    7609. 

  7609.         mulq	16(%rsi)
    7610. 

  7610.         addq	%rax, %r12
    7611. 

  7611.         adcq	%rdx, %r13
    7612. 

  7612.         adcq	$0x00, %r14
    7613. 

  7613.         #  A[3] * B[1]
    7614. 

  7614.         movq	8(%rbx), %rax
    7615. 

  7615.         mulq	24(%rsi)
    7616. 

  7616.         addq	%rax, %r12
    7617. 

  7617.         adcq	%rdx, %r13
    7618. 

  7618.         adcq	$0x00, %r14
    7619. 

  7619.         #  A[2] * B[3]
    7620. 

  7620.         movq	24(%rbx), %rax
    7621. 

  7621.         mulq	16(%rsi)
    7622. 

  7622.         xorq	%r15, %r15
    7623. 

  7623.         addq	%rax, %r13
    7624. 

  7624.         adcq	%rdx, %r14
    7625. 

  7625.         adcq	$0x00, %r15
    7626. 

  7626.         #  A[3] * B[2]
    7627. 

  7627.         movq	16(%rbx), %rax
    7628. 

  7628.         mulq	24(%rsi)
    7629. 

  7629.         addq	%rax, %r13
    7630. 

  7630.         adcq	%rdx, %r14
    7631. 

  7631.         adcq	$0x00, %r15
    7632. 

  7632.         #  A[3] * B[3]
    7633. 

  7633.         movq	24(%rbx), %rax
    7634. 

  7634.         mulq	24(%rsi)
    7635. 

  7635.         addq	%rax, %r14
    7636. 

  7636.         adcq	%rdx, %r15
    7637. 

  7637.         # Reduce
    7638. 

  7638.         movq	$0x7fffffffffffffff, %rcx
    7639. 

  7639.         #  Move top half into t4-t7 and remove top bit from t3
    7640. 

  7640.         shldq	$0x01, %r14, %r15
    7641. 

  7641.         shldq	$0x01, %r13, %r14
    7642. 

  7642.         shldq	$0x01, %r12, %r13
    7643. 

  7643.         shldq	$0x01, %r11, %r12
    7644. 

  7644.         andq	%rcx, %r11
    7645. 

  7645.         #  Multiply top half by 19
    7646. 

  7646.         movq	$19, %rax
    7647. 

  7647.         mulq	%r12
    7648. 

  7648.         xorq	%r12, %r12
    7649. 

  7649.         addq	%rax, %r8
    7650. 

  7650.         movq	$19, %rax
    7651. 

  7651.         adcq	%rdx, %r12
    7652. 

  7652.         mulq	%r13
    7653. 

  7653.         xorq	%r13, %r13
    7654. 

  7654.         addq	%rax, %r9
    7655. 

  7655.         movq	$19, %rax
    7656. 

  7656.         adcq	%rdx, %r13
    7657. 

  7657.         mulq	%r14
    7658. 

  7658.         xorq	%r14, %r14
    7659. 

  7659.         addq	%rax, %r10
    7660. 

  7660.         movq	$19, %rax
    7661. 

  7661.         adcq	%rdx, %r14
    7662. 

  7662.         mulq	%r15
    7663. 

  7663.         #  Add remaining product results in
    7664. 

  7664.         addq	%r12, %r9
    7665. 

  7665.         adcq	%r13, %r10
    7666. 

  7666.         adcq	%r14, %r11
    7667. 

  7667.         adcq	%rax, %r11
    7668. 

  7668.         adcq	$0x00, %rdx
    7669. 

  7669.         #  Overflow
    7670. 

  7670.         shldq	$0x01, %r11, %rdx
    7671. 

  7671.         imulq	$19, %rdx, %rax
    7672. 

  7672.         andq	%rcx, %r11
    7673. 

  7673.         addq	%rax, %r8
    7674. 

  7674.         adcq	$0x00, %r9
    7675. 

  7675.         adcq	$0x00, %r10
    7676. 

  7676.         adcq	$0x00, %r11
    7677. 

  7677.         # Reduce if top bit set
    7678. 

  7678.         movq	%r11, %rdx
    7679. 

  7679.         sarq	$63, %rdx
    7680. 

  7680.         andq	$19, %rdx
    7681. 

  7681.         andq	%rcx, %r11
    7682. 

  7682.         addq	%rdx, %r8
    7683. 

  7683.         adcq	$0x00, %r9
    7684. 

  7684.         adcq	$0x00, %r10
    7685. 

  7685.         adcq	$0x00, %r11
    7686. 

  7686.         # Store
    7687. 

  7687.         movq	%r8, (%rdi)
    7688. 

  7688.         movq	%r9, 8(%rdi)
    7689. 

  7689.         movq	%r10, 16(%rdi)
    7690. 

  7690.         movq	%r11, 24(%rdi)
    7691. 

  7691.         leaq	48(%rsp), %rdi
    7692. 

  7692.         movq	128(%rsp), %rsi
    7693. 

  7693.         movq	128(%rsp), %rbx
    7694. 

  7694.         # Add
    7695. 

  7695.         movq	(%rsi), %r8
    7696. 

  7696.         movq	8(%rsi), %r9
    7697. 

  7697.         addq	(%rbx), %r8
    7698. 

  7698.         movq	16(%rsi), %r10
    7699. 

  7699.         adcq	8(%rbx), %r9
    7700. 

  7700.         movq	24(%rsi), %rcx
    7701. 

  7701.         adcq	16(%rbx), %r10
    7702. 

  7702.         movq	$-19, %rax
    7703. 

  7703.         adcq	24(%rbx), %rcx
    7704. 

  7704.         movq	$0x7fffffffffffffff, %rdx
    7705. 

  7705.         movq	%rcx, %r11
    7706. 

  7706.         sarq	$63, %rcx
    7707. 

  7707.         #   Mask the modulus
    7708. 

  7708.         andq	%rcx, %rax
    7709. 

  7709.         andq	%rcx, %rdx
    7710. 

  7710.         #   Sub modulus (if overflow)
    7711. 

  7711.         subq	%rax, %r8
    7712. 

  7712.         sbbq	%rcx, %r9
    7713. 

  7713.         sbbq	%rcx, %r10
    7714. 

  7714.         sbbq	%rdx, %r11
    7715. 

  7715.         movq	%r8, (%rdi)
    7716. 

  7716.         movq	%r9, 8(%rdi)
    7717. 

  7717.         movq	%r10, 16(%rdi)
    7718. 

  7718.         movq	%r11, 24(%rdi)
    7719. 

  7719.         movq	(%rsp), %rdi
    7720. 

  7720.         movq	16(%rsp), %rsi
    7721. 

  7721.         movq	8(%rsp), %rbx
    7722. 

  7722.         # Sub
    7723. 

  7723.         movq	(%rsi), %r8
    7724. 

  7724.         movq	8(%rsi), %r9
    7725. 

  7725.         movq	16(%rsi), %r10
    7726. 

  7726.         movq	24(%rsi), %r11
    7727. 

  7727.         subq	(%rbx), %r8
    7728. 

  7728.         movq	$0x00, %rcx
    7729. 

  7729.         sbbq	8(%rbx), %r9
    7730. 

  7730.         movq	$-19, %rax
    7731. 

  7731.         sbbq	16(%rbx), %r10
    7732. 

  7732.         movq	$0x7fffffffffffffff, %rdx
    7733. 

  7733.         sbbq	24(%rbx), %r11
    7734. 

  7734.         sbbq	$0x00, %rcx
    7735. 

  7735.         #   Mask the modulus
    7736. 

  7736.         andq	%rcx, %rax
    7737. 

  7737.         andq	%rcx, %rdx
    7738. 

  7738.         #   Add modulus (if underflow)
    7739. 

  7739.         addq	%rax, %r8
    7740. 

  7740.         adcq	%rcx, %r9
    7741. 

  7741.         adcq	%rcx, %r10
    7742. 

  7742.         adcq	%rdx, %r11
    7743. 

  7743.         movq	%r8, (%rdi)
    7744. 

  7744.         movq	%r9, 8(%rdi)
    7745. 

  7745.         movq	%r10, 16(%rdi)
    7746. 

  7746.         movq	%r11, 24(%rdi)
    7747. 

  7747.         movq	8(%rsp), %rdi
    7748. 

  7748.         movq	16(%rsp), %rsi
    7749. 

  7749.         movq	8(%rsp), %rbx
    7750. 

  7750.         # Add
    7751. 

  7751.         movq	(%rsi), %r8
    7752. 

  7752.         movq	8(%rsi), %r9
    7753. 

  7753.         addq	(%rbx), %r8
    7754. 

  7754.         movq	16(%rsi), %r10
    7755. 

  7755.         adcq	8(%rbx), %r9
    7756. 

  7756.         movq	24(%rsi), %rcx
    7757. 

  7757.         adcq	16(%rbx), %r10
    7758. 

  7758.         movq	$-19, %rax
    7759. 

  7759.         adcq	24(%rbx), %rcx
    7760. 

  7760.         movq	$0x7fffffffffffffff, %rdx
    7761. 

  7761.         movq	%rcx, %r11
    7762. 

  7762.         sarq	$63, %rcx
    7763. 

  7763.         #   Mask the modulus
    7764. 

  7764.         andq	%rcx, %rax
    7765. 

  7765.         andq	%rcx, %rdx
    7766. 

  7766.         #   Sub modulus (if overflow)
    7767. 

  7767.         subq	%rax, %r8
    7768. 

  7768.         sbbq	%rcx, %r9
    7769. 

  7769.         sbbq	%rcx, %r10
    7770. 

  7770.         sbbq	%rdx, %r11
    7771. 

  7771.         movq	%r8, (%rdi)
    7772. 

  7772.         movq	%r9, 8(%rdi)
    7773. 

  7773.         movq	%r10, 16(%rdi)
    7774. 

  7774.         movq	%r11, 24(%rdi)
    7775. 

  7775.         movq	16(%rsp), %rdi
    7776. 

  7776.         leaq	48(%rsp), %rsi
    7777. 

  7777.         movq	24(%rsp), %rbx
    7778. 

  7778.         # Sub
    7779. 

  7779.         movq	(%rsi), %r8
    7780. 

  7780.         movq	8(%rsi), %r9
    7781. 

  7781.         movq	16(%rsi), %r10
    7782. 

  7782.         movq	24(%rsi), %r11
    7783. 

  7783.         subq	(%rbx), %r8
    7784. 

  7784.         movq	$0x00, %rcx
    7785. 

  7785.         sbbq	8(%rbx), %r9
    7786. 

  7786.         movq	$-19, %rax
    7787. 

  7787.         sbbq	16(%rbx), %r10
    7788. 

  7788.         movq	$0x7fffffffffffffff, %rdx
    7789. 

  7789.         sbbq	24(%rbx), %r11
    7790. 

  7790.         sbbq	$0x00, %rcx
    7791. 

  7791.         #   Mask the modulus
    7792. 

  7792.         andq	%rcx, %rax
    7793. 

  7793.         andq	%rcx, %rdx
    7794. 

  7794.         #   Add modulus (if underflow)
    7795. 

  7795.         addq	%rax, %r8
    7796. 

  7796.         adcq	%rcx, %r9
    7797. 

  7797.         adcq	%rcx, %r10
    7798. 

  7798.         adcq	%rdx, %r11
    7799. 

  7799.         movq	%r8, (%rdi)
    7800. 

  7800.         movq	%r9, 8(%rdi)
    7801. 

  7801.         movq	%r10, 16(%rdi)
    7802. 

  7802.         movq	%r11, 24(%rdi)
    7803. 

  7803.         movq	24(%rsp), %rdi
    7804. 

  7804.         leaq	48(%rsp), %rsi
    7805. 

  7805.         movq	24(%rsp), %rbx
    7806. 

  7806.         # Add
    7807. 

  7807.         movq	(%rsi), %r8
    7808. 

  7808.         movq	8(%rsi), %r9
    7809. 

  7809.         addq	(%rbx), %r8
    7810. 

  7810.         movq	16(%rsi), %r10
    7811. 

  7811.         adcq	8(%rbx), %r9
    7812. 

  7812.         movq	24(%rsi), %rcx
    7813. 

  7813.         adcq	16(%rbx), %r10
    7814. 

  7814.         movq	$-19, %rax
    7815. 

  7815.         adcq	24(%rbx), %rcx
    7816. 

  7816.         movq	$0x7fffffffffffffff, %rdx
    7817. 

  7817.         movq	%rcx, %r11
    7818. 

  7818.         sarq	$63, %rcx
    7819. 

  7819.         #   Mask the modulus
    7820. 

  7820.         andq	%rcx, %rax
    7821. 

  7821.         andq	%rcx, %rdx
    7822. 

  7822.         #   Sub modulus (if overflow)
    7823. 

  7823.         subq	%rax, %r8
    7824. 

  7824.         sbbq	%rcx, %r9
    7825. 

  7825.         sbbq	%rcx, %r10
    7826. 

  7826.         sbbq	%rdx, %r11
    7827. 

  7827.         movq	%r8, (%rdi)
    7828. 

  7828.         movq	%r9, 8(%rdi)
    7829. 

  7829.         movq	%r10, 16(%rdi)
    7830. 

  7830.         movq	%r11, 24(%rdi)
    7831. 

  7831.         addq	$0x50, %rsp
    7832. 

  7832.         popq	%r15
    7833. 

  7833.         popq	%r14
    7834. 

  7834.         popq	%r13
    7835. 

  7835.         popq	%r12
    7836. 

  7836.         popq	%rbx
    7837. 

  7837.         repz retq
    7838. 

  7838. #ifndef __APPLE__
    7839. 

  7839. .size	fe_ge_msub_x64,.-fe_ge_msub_x64
    7840. 

  7840. #endif /* __APPLE__ */
    7841. 

  7841. #ifndef __APPLE__
    7842. 

  7842. .text
    7843. 

  7843. .globl	fe_ge_add_x64
    7844. 

  7844. .type	fe_ge_add_x64,@function
    7845. 

  7845. .align	16
    7846. 

  7846. fe_ge_add_x64:
    7847. 

  7847. #else
    7848. 

  7848. .section	__TEXT,__text
    7849. 

  7849. .globl	_fe_ge_add_x64
    7850. 

  7850. .p2align	4
    7851. 

  7851. _fe_ge_add_x64:
    7852. 

  7852. #endif /* __APPLE__ */
    7853. 

  7853.         pushq	%rbx
    7854. 

  7854.         pushq	%r12
    7855. 

  7855.         pushq	%r13
    7856. 

  7856.         pushq	%r14
    7857. 

  7857.         pushq	%r15
    7858. 

  7858.         subq	$0x50, %rsp
    7859. 

  7859.         movq	%rdi, (%rsp)
    7860. 

  7860.         movq	%rsi, 8(%rsp)
    7861. 

  7861.         movq	%rdx, 16(%rsp)
    7862. 

  7862.         movq	%rcx, 24(%rsp)
    7863. 

  7863.         movq	%r8, 32(%rsp)
    7864. 

  7864.         movq	%r9, 40(%rsp)
    7865. 

  7865.         movq	(%rsp), %rdi
    7866. 

  7866.         movq	40(%rsp), %rsi
    7867. 

  7867.         movq	32(%rsp), %rbx
    7868. 

  7868.         # Add
    7869. 

  7869.         movq	(%rsi), %r8
    7870. 

  7870.         movq	8(%rsi), %r9
    7871. 

  7871.         addq	(%rbx), %r8
    7872. 

  7872.         movq	16(%rsi), %r10
    7873. 

  7873.         adcq	8(%rbx), %r9
    7874. 

  7874.         movq	24(%rsi), %rcx
    7875. 

  7875.         adcq	16(%rbx), %r10
    7876. 

  7876.         movq	$-19, %rax
    7877. 

  7877.         adcq	24(%rbx), %rcx
    7878. 

  7878.         movq	$0x7fffffffffffffff, %rdx
    7879. 

  7879.         movq	%rcx, %r11
    7880. 

  7880.         sarq	$63, %rcx
    7881. 

  7881.         #   Mask the modulus
    7882. 

  7882.         andq	%rcx, %rax
    7883. 

  7883.         andq	%rcx, %rdx
    7884. 

  7884.         #   Sub modulus (if overflow)
    7885. 

  7885.         subq	%rax, %r8
    7886. 

  7886.         sbbq	%rcx, %r9
    7887. 

  7887.         sbbq	%rcx, %r10
    7888. 

  7888.         sbbq	%rdx, %r11
    7889. 

  7889.         movq	%r8, (%rdi)
    7890. 

  7890.         movq	%r9, 8(%rdi)
    7891. 

  7891.         movq	%r10, 16(%rdi)
    7892. 

  7892.         movq	%r11, 24(%rdi)
    7893. 

  7893.         movq	8(%rsp), %rdi
    7894. 

  7894.         movq	40(%rsp), %rsi
    7895. 

  7895.         movq	32(%rsp), %rbx
    7896. 

  7896.         # Sub
    7897. 

  7897.         movq	(%rsi), %r8
    7898. 

  7898.         movq	8(%rsi), %r9
    7899. 

  7899.         movq	16(%rsi), %r10
    7900. 

  7900.         movq	24(%rsi), %r11
    7901. 

  7901.         subq	(%rbx), %r8
    7902. 

  7902.         movq	$0x00, %rcx
    7903. 

  7903.         sbbq	8(%rbx), %r9
    7904. 

  7904.         movq	$-19, %rax
    7905. 

  7905.         sbbq	16(%rbx), %r10
    7906. 

  7906.         movq	$0x7fffffffffffffff, %rdx
    7907. 

  7907.         sbbq	24(%rbx), %r11
    7908. 

  7908.         sbbq	$0x00, %rcx
    7909. 

  7909.         #   Mask the modulus
    7910. 

  7910.         andq	%rcx, %rax
    7911. 

  7911.         andq	%rcx, %rdx
    7912. 

  7912.         #   Add modulus (if underflow)
    7913. 

  7913.         addq	%rax, %r8
    7914. 

  7914.         adcq	%rcx, %r9
    7915. 

  7915.         adcq	%rcx, %r10
    7916. 

  7916.         adcq	%rdx, %r11
    7917. 

  7917.         movq	%r8, (%rdi)
    7918. 

  7918.         movq	%r9, 8(%rdi)
    7919. 

  7919.         movq	%r10, 16(%rdi)
    7920. 

  7920.         movq	%r11, 24(%rdi)
    7921. 

  7921.         movq	16(%rsp), %rdi
    7922. 

  7922.         movq	(%rsp), %rsi
    7923. 

  7923.         movq	160(%rsp), %rbx
    7924. 

  7924.         # Multiply
    7925. 

  7925.         #  A[0] * B[0]
    7926. 

  7926.         movq	(%rbx), %rax
    7927. 

  7927.         mulq	(%rsi)
    7928. 

  7928.         movq	%rax, %r8
    7929. 

  7929.         movq	%rdx, %r9
    7930. 

  7930.         #  A[0] * B[1]
    7931. 

  7931.         movq	8(%rbx), %rax
    7932. 

  7932.         mulq	(%rsi)
    7933. 

  7933.         xorq	%r10, %r10
    7934. 

  7934.         addq	%rax, %r9
    7935. 

  7935.         adcq	%rdx, %r10
    7936. 

  7936.         #  A[1] * B[0]
    7937. 

  7937.         movq	(%rbx), %rax
    7938. 

  7938.         mulq	8(%rsi)
    7939. 

  7939.         xorq	%r11, %r11
    7940. 

  7940.         addq	%rax, %r9
    7941. 

  7941.         adcq	%rdx, %r10
    7942. 

  7942.         adcq	$0x00, %r11
    7943. 

  7943.         #  A[0] * B[2]
    7944. 

  7944.         movq	16(%rbx), %rax
    7945. 

  7945.         mulq	(%rsi)
    7946. 

  7946.         addq	%rax, %r10
    7947. 

  7947.         adcq	%rdx, %r11
    7948. 

  7948.         #  A[1] * B[1]
    7949. 

  7949.         movq	8(%rbx), %rax
    7950. 

  7950.         mulq	8(%rsi)
    7951. 

  7951.         xorq	%r12, %r12
    7952. 

  7952.         addq	%rax, %r10
    7953. 

  7953.         adcq	%rdx, %r11
    7954. 

  7954.         adcq	$0x00, %r12
    7955. 

  7955.         #  A[2] * B[0]
    7956. 

  7956.         movq	(%rbx), %rax
    7957. 

  7957.         mulq	16(%rsi)
    7958. 

  7958.         addq	%rax, %r10
    7959. 

  7959.         adcq	%rdx, %r11
    7960. 

  7960.         adcq	$0x00, %r12
    7961. 

  7961.         #  A[0] * B[3]
    7962. 

  7962.         movq	24(%rbx), %rax
    7963. 

  7963.         mulq	(%rsi)
    7964. 

  7964.         xorq	%r13, %r13
    7965. 

  7965.         addq	%rax, %r11
    7966. 

  7966.         adcq	%rdx, %r12
    7967. 

  7967.         adcq	$0x00, %r13
    7968. 

  7968.         #  A[1] * B[2]
    7969. 

  7969.         movq	16(%rbx), %rax
    7970. 

  7970.         mulq	8(%rsi)
    7971. 

  7971.         addq	%rax, %r11
    7972. 

  7972.         adcq	%rdx, %r12
    7973. 

  7973.         adcq	$0x00, %r13
    7974. 

  7974.         #  A[2] * B[1]
    7975. 

  7975.         movq	8(%rbx), %rax
    7976. 

  7976.         mulq	16(%rsi)
    7977. 

  7977.         addq	%rax, %r11
    7978. 

  7978.         adcq	%rdx, %r12
    7979. 

  7979.         adcq	$0x00, %r13
    7980. 

  7980.         #  A[3] * B[0]
    7981. 

  7981.         movq	(%rbx), %rax
    7982. 

  7982.         mulq	24(%rsi)
    7983. 

  7983.         addq	%rax, %r11
    7984. 

  7984.         adcq	%rdx, %r12
    7985. 

  7985.         adcq	$0x00, %r13
    7986. 

  7986.         #  A[1] * B[3]
    7987. 

  7987.         movq	24(%rbx), %rax
    7988. 

  7988.         mulq	8(%rsi)
    7989. 

  7989.         xorq	%r14, %r14
    7990. 

  7990.         addq	%rax, %r12
    7991. 

  7991.         adcq	%rdx, %r13
    7992. 

  7992.         adcq	$0x00, %r14
    7993. 

  7993.         #  A[2] * B[2]
    7994. 

  7994.         movq	16(%rbx), %rax
    7995. 

  7995.         mulq	16(%rsi)
    7996. 

  7996.         addq	%rax, %r12
    7997. 

  7997.         adcq	%rdx, %r13
    7998. 

  7998.         adcq	$0x00, %r14
    7999. 

  7999.         #  A[3] * B[1]
    8000. 

  8000.         movq	8(%rbx), %rax
    8001. 

  8001.         mulq	24(%rsi)
    8002. 

  8002.         addq	%rax, %r12
    8003. 

  8003.         adcq	%rdx, %r13
    8004. 

  8004.         adcq	$0x00, %r14
    8005. 

  8005.         #  A[2] * B[3]
    8006. 

  8006.         movq	24(%rbx), %rax
    8007. 

  8007.         mulq	16(%rsi)
    8008. 

  8008.         xorq	%r15, %r15
    8009. 

  8009.         addq	%rax, %r13
    8010. 

  8010.         adcq	%rdx, %r14
    8011. 

  8011.         adcq	$0x00, %r15
    8012. 

  8012.         #  A[3] * B[2]
    8013. 

  8013.         movq	16(%rbx), %rax
    8014. 

  8014.         mulq	24(%rsi)
    8015. 

  8015.         addq	%rax, %r13
    8016. 

  8016.         adcq	%rdx, %r14
    8017. 

  8017.         adcq	$0x00, %r15
    8018. 

  8018.         #  A[3] * B[3]
    8019. 

  8019.         movq	24(%rbx), %rax
    8020. 

  8020.         mulq	24(%rsi)
    8021. 

  8021.         addq	%rax, %r14
    8022. 

  8022.         adcq	%rdx, %r15
    8023. 

  8023.         # Reduce
    8024. 

  8024.         movq	$0x7fffffffffffffff, %rcx
    8025. 

  8025.         #  Move top half into t4-t7 and remove top bit from t3
    8026. 

  8026.         shldq	$0x01, %r14, %r15
    8027. 

  8027.         shldq	$0x01, %r13, %r14
    8028. 

  8028.         shldq	$0x01, %r12, %r13
    8029. 

  8029.         shldq	$0x01, %r11, %r12
    8030. 

  8030.         andq	%rcx, %r11
    8031. 

  8031.         #  Multiply top half by 19
    8032. 

  8032.         movq	$19, %rax
    8033. 

  8033.         mulq	%r12
    8034. 

  8034.         xorq	%r12, %r12
    8035. 

  8035.         addq	%rax, %r8
    8036. 

  8036.         movq	$19, %rax
    8037. 

  8037.         adcq	%rdx, %r12
    8038. 

  8038.         mulq	%r13
    8039. 

  8039.         xorq	%r13, %r13
    8040. 

  8040.         addq	%rax, %r9
    8041. 

  8041.         movq	$19, %rax
    8042. 

  8042.         adcq	%rdx, %r13
    8043. 

  8043.         mulq	%r14
    8044. 

  8044.         xorq	%r14, %r14
    8045. 

  8045.         addq	%rax, %r10
    8046. 

  8046.         movq	$19, %rax
    8047. 

  8047.         adcq	%rdx, %r14
    8048. 

  8048.         mulq	%r15
    8049. 

  8049.         #  Add remaining product results in
    8050. 

  8050.         addq	%r12, %r9
    8051. 

  8051.         adcq	%r13, %r10
    8052. 

  8052.         adcq	%r14, %r11
    8053. 

  8053.         adcq	%rax, %r11
    8054. 

  8054.         adcq	$0x00, %rdx
    8055. 

  8055.         #  Overflow
    8056. 

  8056.         shldq	$0x01, %r11, %rdx
    8057. 

  8057.         imulq	$19, %rdx, %rax
    8058. 

  8058.         andq	%rcx, %r11
    8059. 

  8059.         addq	%rax, %r8
    8060. 

  8060.         adcq	$0x00, %r9
    8061. 

  8061.         adcq	$0x00, %r10
    8062. 

  8062.         adcq	$0x00, %r11
    8063. 

  8063.         # Reduce if top bit set
    8064. 

  8064.         movq	%r11, %rdx
    8065. 

  8065.         sarq	$63, %rdx
    8066. 

  8066.         andq	$19, %rdx
    8067. 

  8067.         andq	%rcx, %r11
    8068. 

  8068.         addq	%rdx, %r8
    8069. 

  8069.         adcq	$0x00, %r9
    8070. 

  8070.         adcq	$0x00, %r10
    8071. 

  8071.         adcq	$0x00, %r11
    8072. 

  8072.         # Store
    8073. 

  8073.         movq	%r8, (%rdi)
    8074. 

  8074.         movq	%r9, 8(%rdi)
    8075. 

  8075.         movq	%r10, 16(%rdi)
    8076. 

  8076.         movq	%r11, 24(%rdi)
    8077. 

  8077.         movq	8(%rsp), %rdi
    8078. 

  8078.         movq	8(%rsp), %rsi
    8079. 

  8079.         movq	168(%rsp), %rbx
    8080. 

  8080.         # Multiply
    8081. 

  8081.         #  A[0] * B[0]
    8082. 

  8082.         movq	(%rbx), %rax
    8083. 

  8083.         mulq	(%rsi)
    8084. 

  8084.         movq	%rax, %r8
    8085. 

  8085.         movq	%rdx, %r9
    8086. 

  8086.         #  A[0] * B[1]
    8087. 

  8087.         movq	8(%rbx), %rax
    8088. 

  8088.         mulq	(%rsi)
    8089. 

  8089.         xorq	%r10, %r10
    8090. 

  8090.         addq	%rax, %r9
    8091. 

  8091.         adcq	%rdx, %r10
    8092. 

  8092.         #  A[1] * B[0]
    8093. 

  8093.         movq	(%rbx), %rax
    8094. 

  8094.         mulq	8(%rsi)
    8095. 

  8095.         xorq	%r11, %r11
    8096. 

  8096.         addq	%rax, %r9
    8097. 

  8097.         adcq	%rdx, %r10
    8098. 

  8098.         adcq	$0x00, %r11
    8099. 

  8099.         #  A[0] * B[2]
    8100. 

  8100.         movq	16(%rbx), %rax
    8101. 

  8101.         mulq	(%rsi)
    8102. 

  8102.         addq	%rax, %r10
    8103. 

  8103.         adcq	%rdx, %r11
    8104. 

  8104.         #  A[1] * B[1]
    8105. 

  8105.         movq	8(%rbx), %rax
    8106. 

  8106.         mulq	8(%rsi)
    8107. 

  8107.         xorq	%r12, %r12
    8108. 

  8108.         addq	%rax, %r10
    8109. 

  8109.         adcq	%rdx, %r11
    8110. 

  8110.         adcq	$0x00, %r12
    8111. 

  8111.         #  A[2] * B[0]
    8112. 

  8112.         movq	(%rbx), %rax
    8113. 

  8113.         mulq	16(%rsi)
    8114. 

  8114.         addq	%rax, %r10
    8115. 

  8115.         adcq	%rdx, %r11
    8116. 

  8116.         adcq	$0x00, %r12
    8117. 

  8117.         #  A[0] * B[3]
    8118. 

  8118.         movq	24(%rbx), %rax
    8119. 

  8119.         mulq	(%rsi)
    8120. 

  8120.         xorq	%r13, %r13
    8121. 

  8121.         addq	%rax, %r11
    8122. 

  8122.         adcq	%rdx, %r12
    8123. 

  8123.         adcq	$0x00, %r13
    8124. 

  8124.         #  A[1] * B[2]
    8125. 

  8125.         movq	16(%rbx), %rax
    8126. 

  8126.         mulq	8(%rsi)
    8127. 

  8127.         addq	%rax, %r11
    8128. 

  8128.         adcq	%rdx, %r12
    8129. 

  8129.         adcq	$0x00, %r13
    8130. 

  8130.         #  A[2] * B[1]
    8131. 

  8131.         movq	8(%rbx), %rax
    8132. 

  8132.         mulq	16(%rsi)
    8133. 

  8133.         addq	%rax, %r11
    8134. 

  8134.         adcq	%rdx, %r12
    8135. 

  8135.         adcq	$0x00, %r13
    8136. 

  8136.         #  A[3] * B[0]
    8137. 

  8137.         movq	(%rbx), %rax
    8138. 

  8138.         mulq	24(%rsi)
    8139. 

  8139.         addq	%rax, %r11
    8140. 

  8140.         adcq	%rdx, %r12
    8141. 

  8141.         adcq	$0x00, %r13
    8142. 

  8142.         #  A[1] * B[3]
    8143. 

  8143.         movq	24(%rbx), %rax
    8144. 

  8144.         mulq	8(%rsi)
    8145. 

  8145.         xorq	%r14, %r14
    8146. 

  8146.         addq	%rax, %r12
    8147. 

  8147.         adcq	%rdx, %r13
    8148. 

  8148.         adcq	$0x00, %r14
    8149. 

  8149.         #  A[2] * B[2]
    8150. 

  8150.         movq	16(%rbx), %rax
    8151. 

  8151.         mulq	16(%rsi)
    8152. 

  8152.         addq	%rax, %r12
    8153. 

  8153.         adcq	%rdx, %r13
    8154. 

  8154.         adcq	$0x00, %r14
    8155. 

  8155.         #  A[3] * B[1]
    8156. 

  8156.         movq	8(%rbx), %rax
    8157. 

  8157.         mulq	24(%rsi)
    8158. 

  8158.         addq	%rax, %r12
    8159. 

  8159.         adcq	%rdx, %r13
    8160. 

  8160.         adcq	$0x00, %r14
    8161. 

  8161.         #  A[2] * B[3]
    8162. 

  8162.         movq	24(%rbx), %rax
    8163. 

  8163.         mulq	16(%rsi)
    8164. 

  8164.         xorq	%r15, %r15
    8165. 

  8165.         addq	%rax, %r13
    8166. 

  8166.         adcq	%rdx, %r14
    8167. 

  8167.         adcq	$0x00, %r15
    8168. 

  8168.         #  A[3] * B[2]
    8169. 

  8169.         movq	16(%rbx), %rax
    8170. 

  8170.         mulq	24(%rsi)
    8171. 

  8171.         addq	%rax, %r13
    8172. 

  8172.         adcq	%rdx, %r14
    8173. 

  8173.         adcq	$0x00, %r15
    8174. 

  8174.         #  A[3] * B[3]
    8175. 

  8175.         movq	24(%rbx), %rax
    8176. 

  8176.         mulq	24(%rsi)
    8177. 

  8177.         addq	%rax, %r14
    8178. 

  8178.         adcq	%rdx, %r15
    8179. 

  8179.         # Reduce
    8180. 

  8180.         movq	$0x7fffffffffffffff, %rcx
    8181. 

  8181.         #  Move top half into t4-t7 and remove top bit from t3
    8182. 

  8182.         shldq	$0x01, %r14, %r15
    8183. 

  8183.         shldq	$0x01, %r13, %r14
    8184. 

  8184.         shldq	$0x01, %r12, %r13
    8185. 

  8185.         shldq	$0x01, %r11, %r12
    8186. 

  8186.         andq	%rcx, %r11
    8187. 

  8187.         #  Multiply top half by 19
    8188. 

  8188.         movq	$19, %rax
    8189. 

  8189.         mulq	%r12
    8190. 

  8190.         xorq	%r12, %r12
    8191. 

  8191.         addq	%rax, %r8
    8192. 

  8192.         movq	$19, %rax
    8193. 

  8193.         adcq	%rdx, %r12
    8194. 

  8194.         mulq	%r13
    8195. 

  8195.         xorq	%r13, %r13
    8196. 

  8196.         addq	%rax, %r9
    8197. 

  8197.         movq	$19, %rax
    8198. 

  8198.         adcq	%rdx, %r13
    8199. 

  8199.         mulq	%r14
    8200. 

  8200.         xorq	%r14, %r14
    8201. 

  8201.         addq	%rax, %r10
    8202. 

  8202.         movq	$19, %rax
    8203. 

  8203.         adcq	%rdx, %r14
    8204. 

  8204.         mulq	%r15
    8205. 

  8205.         #  Add remaining product results in
    8206. 

  8206.         addq	%r12, %r9
    8207. 

  8207.         adcq	%r13, %r10
    8208. 

  8208.         adcq	%r14, %r11
    8209. 

  8209.         adcq	%rax, %r11
    8210. 

  8210.         adcq	$0x00, %rdx
    8211. 

  8211.         #  Overflow
    8212. 

  8212.         shldq	$0x01, %r11, %rdx
    8213. 

  8213.         imulq	$19, %rdx, %rax
    8214. 

  8214.         andq	%rcx, %r11
    8215. 

  8215.         addq	%rax, %r8
    8216. 

  8216.         adcq	$0x00, %r9
    8217. 

  8217.         adcq	$0x00, %r10
    8218. 

  8218.         adcq	$0x00, %r11
    8219. 

  8219.         # Reduce if top bit set
    8220. 

  8220.         movq	%r11, %rdx
    8221. 

  8221.         sarq	$63, %rdx
    8222. 

  8222.         andq	$19, %rdx
    8223. 

  8223.         andq	%rcx, %r11
    8224. 

  8224.         addq	%rdx, %r8
    8225. 

  8225.         adcq	$0x00, %r9
    8226. 

  8226.         adcq	$0x00, %r10
    8227. 

  8227.         adcq	$0x00, %r11
    8228. 

  8228.         # Store
    8229. 

  8229.         movq	%r8, (%rdi)
    8230. 

  8230.         movq	%r9, 8(%rdi)
    8231. 

  8231.         movq	%r10, 16(%rdi)
    8232. 

  8232.         movq	%r11, 24(%rdi)
    8233. 

  8233.         movq	24(%rsp), %rdi
    8234. 

  8234.         movq	152(%rsp), %rsi
    8235. 

  8235.         movq	136(%rsp), %rbx
    8236. 

  8236.         # Multiply
    8237. 

  8237.         #  A[0] * B[0]
    8238. 

  8238.         movq	(%rbx), %rax
    8239. 

  8239.         mulq	(%rsi)
    8240. 

  8240.         movq	%rax, %r8
    8241. 

  8241.         movq	%rdx, %r9
    8242. 

  8242.         #  A[0] * B[1]
    8243. 

  8243.         movq	8(%rbx), %rax
    8244. 

  8244.         mulq	(%rsi)
    8245. 

  8245.         xorq	%r10, %r10
    8246. 

  8246.         addq	%rax, %r9
    8247. 

  8247.         adcq	%rdx, %r10
    8248. 

  8248.         #  A[1] * B[0]
    8249. 

  8249.         movq	(%rbx), %rax
    8250. 

  8250.         mulq	8(%rsi)
    8251. 

  8251.         xorq	%r11, %r11
    8252. 

  8252.         addq	%rax, %r9
    8253. 

  8253.         adcq	%rdx, %r10
    8254. 

  8254.         adcq	$0x00, %r11
    8255. 

  8255.         #  A[0] * B[2]
    8256. 

  8256.         movq	16(%rbx), %rax
    8257. 

  8257.         mulq	(%rsi)
    8258. 

  8258.         addq	%rax, %r10
    8259. 

  8259.         adcq	%rdx, %r11
    8260. 

  8260.         #  A[1] * B[1]
    8261. 

  8261.         movq	8(%rbx), %rax
    8262. 

  8262.         mulq	8(%rsi)
    8263. 

  8263.         xorq	%r12, %r12
    8264. 

  8264.         addq	%rax, %r10
    8265. 

  8265.         adcq	%rdx, %r11
    8266. 

  8266.         adcq	$0x00, %r12
    8267. 

  8267.         #  A[2] * B[0]
    8268. 

  8268.         movq	(%rbx), %rax
    8269. 

  8269.         mulq	16(%rsi)
    8270. 

  8270.         addq	%rax, %r10
    8271. 

  8271.         adcq	%rdx, %r11
    8272. 

  8272.         adcq	$0x00, %r12
    8273. 

  8273.         #  A[0] * B[3]
    8274. 

  8274.         movq	24(%rbx), %rax
    8275. 

  8275.         mulq	(%rsi)
    8276. 

  8276.         xorq	%r13, %r13
    8277. 

  8277.         addq	%rax, %r11
    8278. 

  8278.         adcq	%rdx, %r12
    8279. 

  8279.         adcq	$0x00, %r13
    8280. 

  8280.         #  A[1] * B[2]
    8281. 

  8281.         movq	16(%rbx), %rax
    8282. 

  8282.         mulq	8(%rsi)
    8283. 

  8283.         addq	%rax, %r11
    8284. 

  8284.         adcq	%rdx, %r12
    8285. 

  8285.         adcq	$0x00, %r13
    8286. 

  8286.         #  A[2] * B[1]
    8287. 

  8287.         movq	8(%rbx), %rax
    8288. 

  8288.         mulq	16(%rsi)
    8289. 

  8289.         addq	%rax, %r11
    8290. 

  8290.         adcq	%rdx, %r12
    8291. 

  8291.         adcq	$0x00, %r13
    8292. 

  8292.         #  A[3] * B[0]
    8293. 

  8293.         movq	(%rbx), %rax
    8294. 

  8294.         mulq	24(%rsi)
    8295. 

  8295.         addq	%rax, %r11
    8296. 

  8296.         adcq	%rdx, %r12
    8297. 

  8297.         adcq	$0x00, %r13
    8298. 

  8298.         #  A[1] * B[3]
    8299. 

  8299.         movq	24(%rbx), %rax
    8300. 

  8300.         mulq	8(%rsi)
    8301. 

  8301.         xorq	%r14, %r14
    8302. 

  8302.         addq	%rax, %r12
    8303. 

  8303.         adcq	%rdx, %r13
    8304. 

  8304.         adcq	$0x00, %r14
    8305. 

  8305.         #  A[2] * B[2]
    8306. 

  8306.         movq	16(%rbx), %rax
    8307. 

  8307.         mulq	16(%rsi)
    8308. 

  8308.         addq	%rax, %r12
    8309. 

  8309.         adcq	%rdx, %r13
    8310. 

  8310.         adcq	$0x00, %r14
    8311. 

  8311.         #  A[3] * B[1]
    8312. 

  8312.         movq	8(%rbx), %rax
    8313. 

  8313.         mulq	24(%rsi)
    8314. 

  8314.         addq	%rax, %r12
    8315. 

  8315.         adcq	%rdx, %r13
    8316. 

  8316.         adcq	$0x00, %r14
    8317. 

  8317.         #  A[2] * B[3]
    8318. 

  8318.         movq	24(%rbx), %rax
    8319. 

  8319.         mulq	16(%rsi)
    8320. 

  8320.         xorq	%r15, %r15
    8321. 

  8321.         addq	%rax, %r13
    8322. 

  8322.         adcq	%rdx, %r14
    8323. 

  8323.         adcq	$0x00, %r15
    8324. 

  8324.         #  A[3] * B[2]
    8325. 

  8325.         movq	16(%rbx), %rax
    8326. 

  8326.         mulq	24(%rsi)
    8327. 

  8327.         addq	%rax, %r13
    8328. 

  8328.         adcq	%rdx, %r14
    8329. 

  8329.         adcq	$0x00, %r15
    8330. 

  8330.         #  A[3] * B[3]
    8331. 

  8331.         movq	24(%rbx), %rax
    8332. 

  8332.         mulq	24(%rsi)
    8333. 

  8333.         addq	%rax, %r14
    8334. 

  8334.         adcq	%rdx, %r15
    8335. 

  8335.         # Reduce
    8336. 

  8336.         movq	$0x7fffffffffffffff, %rcx
    8337. 

  8337.         #  Move top half into t4-t7 and remove top bit from t3
    8338. 

  8338.         shldq	$0x01, %r14, %r15
    8339. 

  8339.         shldq	$0x01, %r13, %r14
    8340. 

  8340.         shldq	$0x01, %r12, %r13
    8341. 

  8341.         shldq	$0x01, %r11, %r12
    8342. 

  8342.         andq	%rcx, %r11
    8343. 

  8343.         #  Multiply top half by 19
    8344. 

  8344.         movq	$19, %rax
    8345. 

  8345.         mulq	%r12
    8346. 

  8346.         xorq	%r12, %r12
    8347. 

  8347.         addq	%rax, %r8
    8348. 

  8348.         movq	$19, %rax
    8349. 

  8349.         adcq	%rdx, %r12
    8350. 

  8350.         mulq	%r13
    8351. 

  8351.         xorq	%r13, %r13
    8352. 

  8352.         addq	%rax, %r9
    8353. 

  8353.         movq	$19, %rax
    8354. 

  8354.         adcq	%rdx, %r13
    8355. 

  8355.         mulq	%r14
    8356. 

  8356.         xorq	%r14, %r14
    8357. 

  8357.         addq	%rax, %r10
    8358. 

  8358.         movq	$19, %rax
    8359. 

  8359.         adcq	%rdx, %r14
    8360. 

  8360.         mulq	%r15
    8361. 

  8361.         #  Add remaining product results in
    8362. 

  8362.         addq	%r12, %r9
    8363. 

  8363.         adcq	%r13, %r10
    8364. 

  8364.         adcq	%r14, %r11
    8365. 

  8365.         adcq	%rax, %r11
    8366. 

  8366.         adcq	$0x00, %rdx
    8367. 

  8367.         #  Overflow
    8368. 

  8368.         shldq	$0x01, %r11, %rdx
    8369. 

  8369.         imulq	$19, %rdx, %rax
    8370. 

  8370.         andq	%rcx, %r11
    8371. 

  8371.         addq	%rax, %r8
    8372. 

  8372.         adcq	$0x00, %r9
    8373. 

  8373.         adcq	$0x00, %r10
    8374. 

  8374.         adcq	$0x00, %r11
    8375. 

  8375.         # Reduce if top bit set
    8376. 

  8376.         movq	%r11, %rdx
    8377. 

  8377.         sarq	$63, %rdx
    8378. 

  8378.         andq	$19, %rdx
    8379. 

  8379.         andq	%rcx, %r11
    8380. 

  8380.         addq	%rdx, %r8
    8381. 

  8381.         adcq	$0x00, %r9
    8382. 

  8382.         adcq	$0x00, %r10
    8383. 

  8383.         adcq	$0x00, %r11
    8384. 

  8384.         # Store
    8385. 

  8385.         movq	%r8, (%rdi)
    8386. 

  8386.         movq	%r9, 8(%rdi)
    8387. 

  8387.         movq	%r10, 16(%rdi)
    8388. 

  8388.         movq	%r11, 24(%rdi)
    8389. 

  8389.         movq	(%rsp), %rdi
    8390. 

  8390.         movq	128(%rsp), %rsi
    8391. 

  8391.         movq	144(%rsp), %rbx
    8392. 

  8392.         # Multiply
    8393. 

  8393.         #  A[0] * B[0]
    8394. 

  8394.         movq	(%rbx), %rax
    8395. 

  8395.         mulq	(%rsi)
    8396. 

  8396.         movq	%rax, %r8
    8397. 

  8397.         movq	%rdx, %r9
    8398. 

  8398.         #  A[0] * B[1]
    8399. 

  8399.         movq	8(%rbx), %rax
    8400. 

  8400.         mulq	(%rsi)
    8401. 

  8401.         xorq	%r10, %r10
    8402. 

  8402.         addq	%rax, %r9
    8403. 

  8403.         adcq	%rdx, %r10
    8404. 

  8404.         #  A[1] * B[0]
    8405. 

  8405.         movq	(%rbx), %rax
    8406. 

  8406.         mulq	8(%rsi)
    8407. 

  8407.         xorq	%r11, %r11
    8408. 

  8408.         addq	%rax, %r9
    8409. 

  8409.         adcq	%rdx, %r10
    8410. 

  8410.         adcq	$0x00, %r11
    8411. 

  8411.         #  A[0] * B[2]
    8412. 

  8412.         movq	16(%rbx), %rax
    8413. 

  8413.         mulq	(%rsi)
    8414. 

  8414.         addq	%rax, %r10
    8415. 

  8415.         adcq	%rdx, %r11
    8416. 

  8416.         #  A[1] * B[1]
    8417. 

  8417.         movq	8(%rbx), %rax
    8418. 

  8418.         mulq	8(%rsi)
    8419. 

  8419.         xorq	%r12, %r12
    8420. 

  8420.         addq	%rax, %r10
    8421. 

  8421.         adcq	%rdx, %r11
    8422. 

  8422.         adcq	$0x00, %r12
    8423. 

  8423.         #  A[2] * B[0]
    8424. 

  8424.         movq	(%rbx), %rax
    8425. 

  8425.         mulq	16(%rsi)
    8426. 

  8426.         addq	%rax, %r10
    8427. 

  8427.         adcq	%rdx, %r11
    8428. 

  8428.         adcq	$0x00, %r12
    8429. 

  8429.         #  A[0] * B[3]
    8430. 

  8430.         movq	24(%rbx), %rax
    8431. 

  8431.         mulq	(%rsi)
    8432. 

  8432.         xorq	%r13, %r13
    8433. 

  8433.         addq	%rax, %r11
    8434. 

  8434.         adcq	%rdx, %r12
    8435. 

  8435.         adcq	$0x00, %r13
    8436. 

  8436.         #  A[1] * B[2]
    8437. 

  8437.         movq	16(%rbx), %rax
    8438. 

  8438.         mulq	8(%rsi)
    8439. 

  8439.         addq	%rax, %r11
    8440. 

  8440.         adcq	%rdx, %r12
    8441. 

  8441.         adcq	$0x00, %r13
    8442. 

  8442.         #  A[2] * B[1]
    8443. 

  8443.         movq	8(%rbx), %rax
    8444. 

  8444.         mulq	16(%rsi)
    8445. 

  8445.         addq	%rax, %r11
    8446. 

  8446.         adcq	%rdx, %r12
    8447. 

  8447.         adcq	$0x00, %r13
    8448. 

  8448.         #  A[3] * B[0]
    8449. 

  8449.         movq	(%rbx), %rax
    8450. 

  8450.         mulq	24(%rsi)
    8451. 

  8451.         addq	%rax, %r11
    8452. 

  8452.         adcq	%rdx, %r12
    8453. 

  8453.         adcq	$0x00, %r13
    8454. 

  8454.         #  A[1] * B[3]
    8455. 

  8455.         movq	24(%rbx), %rax
    8456. 

  8456.         mulq	8(%rsi)
    8457. 

  8457.         xorq	%r14, %r14
    8458. 

  8458.         addq	%rax, %r12
    8459. 

  8459.         adcq	%rdx, %r13
    8460. 

  8460.         adcq	$0x00, %r14
    8461. 

  8461.         #  A[2] * B[2]
    8462. 

  8462.         movq	16(%rbx), %rax
    8463. 

  8463.         mulq	16(%rsi)
    8464. 

  8464.         addq	%rax, %r12
    8465. 

  8465.         adcq	%rdx, %r13
    8466. 

  8466.         adcq	$0x00, %r14
    8467. 

  8467.         #  A[3] * B[1]
    8468. 

  8468.         movq	8(%rbx), %rax
    8469. 

  8469.         mulq	24(%rsi)
    8470. 

  8470.         addq	%rax, %r12
    8471. 

  8471.         adcq	%rdx, %r13
    8472. 

  8472.         adcq	$0x00, %r14
    8473. 

  8473.         #  A[2] * B[3]
    8474. 

  8474.         movq	24(%rbx), %rax
    8475. 

  8475.         mulq	16(%rsi)
    8476. 

  8476.         xorq	%r15, %r15
    8477. 

  8477.         addq	%rax, %r13
    8478. 

  8478.         adcq	%rdx, %r14
    8479. 

  8479.         adcq	$0x00, %r15
    8480. 

  8480.         #  A[3] * B[2]
    8481. 

  8481.         movq	16(%rbx), %rax
    8482. 

  8482.         mulq	24(%rsi)
    8483. 

  8483.         addq	%rax, %r13
    8484. 

  8484.         adcq	%rdx, %r14
    8485. 

  8485.         adcq	$0x00, %r15
    8486. 

  8486.         #  A[3] * B[3]
    8487. 

  8487.         movq	24(%rbx), %rax
    8488. 

  8488.         mulq	24(%rsi)
    8489. 

  8489.         addq	%rax, %r14
    8490. 

  8490.         adcq	%rdx, %r15
    8491. 

  8491.         # Reduce
    8492. 

  8492.         movq	$0x7fffffffffffffff, %rcx
    8493. 

  8493.         #  Move top half into t4-t7 and remove top bit from t3
    8494. 

  8494.         shldq	$0x01, %r14, %r15
    8495. 

  8495.         shldq	$0x01, %r13, %r14
    8496. 

  8496.         shldq	$0x01, %r12, %r13
    8497. 

  8497.         shldq	$0x01, %r11, %r12
    8498. 

  8498.         andq	%rcx, %r11
    8499. 

  8499.         #  Multiply top half by 19
    8500. 

  8500.         movq	$19, %rax
    8501. 

  8501.         mulq	%r12
    8502. 

  8502.         xorq	%r12, %r12
    8503. 

  8503.         addq	%rax, %r8
    8504. 

  8504.         movq	$19, %rax
    8505. 

  8505.         adcq	%rdx, %r12
    8506. 

  8506.         mulq	%r13
    8507. 

  8507.         xorq	%r13, %r13
    8508. 

  8508.         addq	%rax, %r9
    8509. 

  8509.         movq	$19, %rax
    8510. 

  8510.         adcq	%rdx, %r13
    8511. 

  8511.         mulq	%r14
    8512. 

  8512.         xorq	%r14, %r14
    8513. 

  8513.         addq	%rax, %r10
    8514. 

  8514.         movq	$19, %rax
    8515. 

  8515.         adcq	%rdx, %r14
    8516. 

  8516.         mulq	%r15
    8517. 

  8517.         #  Add remaining product results in
    8518. 

  8518.         addq	%r12, %r9
    8519. 

  8519.         adcq	%r13, %r10
    8520. 

  8520.         adcq	%r14, %r11
    8521. 

  8521.         adcq	%rax, %r11
    8522. 

  8522.         adcq	$0x00, %rdx
    8523. 

  8523.         #  Overflow
    8524. 

  8524.         shldq	$0x01, %r11, %rdx
    8525. 

  8525.         imulq	$19, %rdx, %rax
    8526. 

  8526.         andq	%rcx, %r11
    8527. 

  8527.         addq	%rax, %r8
    8528. 

  8528.         adcq	$0x00, %r9
    8529. 

  8529.         adcq	$0x00, %r10
    8530. 

  8530.         adcq	$0x00, %r11
    8531. 

  8531.         # Reduce if top bit set
    8532. 

  8532.         movq	%r11, %rdx
    8533. 

  8533.         sarq	$63, %rdx
    8534. 

  8534.         andq	$19, %rdx
    8535. 

  8535.         andq	%rcx, %r11
    8536. 

  8536.         addq	%rdx, %r8
    8537. 

  8537.         adcq	$0x00, %r9
    8538. 

  8538.         adcq	$0x00, %r10
    8539. 

  8539.         adcq	$0x00, %r11
    8540. 

  8540.         # Store
    8541. 

  8541.         movq	%r8, (%rdi)
    8542. 

  8542.         movq	%r9, 8(%rdi)
    8543. 

  8543.         movq	%r10, 16(%rdi)
    8544. 

  8544.         movq	%r11, 24(%rdi)
    8545. 

  8545.         leaq	48(%rsp), %rdi
    8546. 

  8546.         movq	(%rsp), %rsi
    8547. 

  8547.         movq	(%rsp), %rbx
    8548. 

  8548.         # Add
    8549. 

  8549.         movq	(%rsi), %r8
    8550. 

  8550.         movq	8(%rsi), %r9
    8551. 

  8551.         addq	(%rbx), %r8
    8552. 

  8552.         movq	16(%rsi), %r10
    8553. 

  8553.         adcq	8(%rbx), %r9
    8554. 

  8554.         movq	24(%rsi), %rcx
    8555. 

  8555.         adcq	16(%rbx), %r10
    8556. 

  8556.         movq	$-19, %rax
    8557. 

  8557.         adcq	24(%rbx), %rcx
    8558. 

  8558.         movq	$0x7fffffffffffffff, %rdx
    8559. 

  8559.         movq	%rcx, %r11
    8560. 

  8560.         sarq	$63, %rcx
    8561. 

  8561.         #   Mask the modulus
    8562. 

  8562.         andq	%rcx, %rax
    8563. 

  8563.         andq	%rcx, %rdx
    8564. 

  8564.         #   Sub modulus (if overflow)
    8565. 

  8565.         subq	%rax, %r8
    8566. 

  8566.         sbbq	%rcx, %r9
    8567. 

  8567.         sbbq	%rcx, %r10
    8568. 

  8568.         sbbq	%rdx, %r11
    8569. 

  8569.         movq	%r8, (%rdi)
    8570. 

  8570.         movq	%r9, 8(%rdi)
    8571. 

  8571.         movq	%r10, 16(%rdi)
    8572. 

  8572.         movq	%r11, 24(%rdi)
    8573. 

  8573.         movq	(%rsp), %rdi
    8574. 

  8574.         movq	16(%rsp), %rsi
    8575. 

  8575.         movq	8(%rsp), %rbx
    8576. 

  8576.         # Sub
    8577. 

  8577.         movq	(%rsi), %r8
    8578. 

  8578.         movq	8(%rsi), %r9
    8579. 

  8579.         movq	16(%rsi), %r10
    8580. 

  8580.         movq	24(%rsi), %r11
    8581. 

  8581.         subq	(%rbx), %r8
    8582. 

  8582.         movq	$0x00, %rcx
    8583. 

  8583.         sbbq	8(%rbx), %r9
    8584. 

  8584.         movq	$-19, %rax
    8585. 

  8585.         sbbq	16(%rbx), %r10
    8586. 

  8586.         movq	$0x7fffffffffffffff, %rdx
    8587. 

  8587.         sbbq	24(%rbx), %r11
    8588. 

  8588.         sbbq	$0x00, %rcx
    8589. 

  8589.         #   Mask the modulus
    8590. 

  8590.         andq	%rcx, %rax
    8591. 

  8591.         andq	%rcx, %rdx
    8592. 

  8592.         #   Add modulus (if underflow)
    8593. 

  8593.         addq	%rax, %r8
    8594. 

  8594.         adcq	%rcx, %r9
    8595. 

  8595.         adcq	%rcx, %r10
    8596. 

  8596.         adcq	%rdx, %r11
    8597. 

  8597.         movq	%r8, (%rdi)
    8598. 

  8598.         movq	%r9, 8(%rdi)
    8599. 

  8599.         movq	%r10, 16(%rdi)
    8600. 

  8600.         movq	%r11, 24(%rdi)
    8601. 

  8601.         movq	8(%rsp), %rdi
    8602. 

  8602.         movq	16(%rsp), %rsi
    8603. 

  8603.         movq	8(%rsp), %rbx
    8604. 

  8604.         # Add
    8605. 

  8605.         movq	(%rsi), %r8
    8606. 

  8606.         movq	8(%rsi), %r9
    8607. 

  8607.         addq	(%rbx), %r8
    8608. 

  8608.         movq	16(%rsi), %r10
    8609. 

  8609.         adcq	8(%rbx), %r9
    8610. 

  8610.         movq	24(%rsi), %rcx
    8611. 

  8611.         adcq	16(%rbx), %r10
    8612. 

  8612.         movq	$-19, %rax
    8613. 

  8613.         adcq	24(%rbx), %rcx
    8614. 

  8614.         movq	$0x7fffffffffffffff, %rdx
    8615. 

  8615.         movq	%rcx, %r11
    8616. 

  8616.         sarq	$63, %rcx
    8617. 

  8617.         #   Mask the modulus
    8618. 

  8618.         andq	%rcx, %rax
    8619. 

  8619.         andq	%rcx, %rdx
    8620. 

  8620.         #   Sub modulus (if overflow)
    8621. 

  8621.         subq	%rax, %r8
    8622. 

  8622.         sbbq	%rcx, %r9
    8623. 

  8623.         sbbq	%rcx, %r10
    8624. 

  8624.         sbbq	%rdx, %r11
    8625. 

  8625.         movq	%r8, (%rdi)
    8626. 

  8626.         movq	%r9, 8(%rdi)
    8627. 

  8627.         movq	%r10, 16(%rdi)
    8628. 

  8628.         movq	%r11, 24(%rdi)
    8629. 

  8629.         movq	16(%rsp), %rdi
    8630. 

  8630.         leaq	48(%rsp), %rsi
    8631. 

  8631.         movq	24(%rsp), %rbx
    8632. 

  8632.         # Add
    8633. 

  8633.         movq	(%rsi), %r8
    8634. 

  8634.         movq	8(%rsi), %r9
    8635. 

  8635.         addq	(%rbx), %r8
    8636. 

  8636.         movq	16(%rsi), %r10
    8637. 

  8637.         adcq	8(%rbx), %r9
    8638. 

  8638.         movq	24(%rsi), %rcx
    8639. 

  8639.         adcq	16(%rbx), %r10
    8640. 

  8640.         movq	$-19, %rax
    8641. 

  8641.         adcq	24(%rbx), %rcx
    8642. 

  8642.         movq	$0x7fffffffffffffff, %rdx
    8643. 

  8643.         movq	%rcx, %r11
    8644. 

  8644.         sarq	$63, %rcx
    8645. 

  8645.         #   Mask the modulus
    8646. 

  8646.         andq	%rcx, %rax
    8647. 

  8647.         andq	%rcx, %rdx
    8648. 

  8648.         #   Sub modulus (if overflow)
    8649. 

  8649.         subq	%rax, %r8
    8650. 

  8650.         sbbq	%rcx, %r9
    8651. 

  8651.         sbbq	%rcx, %r10
    8652. 

  8652.         sbbq	%rdx, %r11
    8653. 

  8653.         movq	%r8, (%rdi)
    8654. 

  8654.         movq	%r9, 8(%rdi)
    8655. 

  8655.         movq	%r10, 16(%rdi)
    8656. 

  8656.         movq	%r11, 24(%rdi)
    8657. 

  8657.         movq	24(%rsp), %rdi
    8658. 

  8658.         leaq	48(%rsp), %rsi
    8659. 

  8659.         movq	24(%rsp), %rbx
    8660. 

  8660.         # Sub
    8661. 

  8661.         movq	(%rsi), %r8
    8662. 

  8662.         movq	8(%rsi), %r9
    8663. 

  8663.         movq	16(%rsi), %r10
    8664. 

  8664.         movq	24(%rsi), %r11
    8665. 

  8665.         subq	(%rbx), %r8
    8666. 

  8666.         movq	$0x00, %rcx
    8667. 

  8667.         sbbq	8(%rbx), %r9
    8668. 

  8668.         movq	$-19, %rax
    8669. 

  8669.         sbbq	16(%rbx), %r10
    8670. 

  8670.         movq	$0x7fffffffffffffff, %rdx
    8671. 

  8671.         sbbq	24(%rbx), %r11
    8672. 

  8672.         sbbq	$0x00, %rcx
    8673. 

  8673.         #   Mask the modulus
    8674. 

  8674.         andq	%rcx, %rax
    8675. 

  8675.         andq	%rcx, %rdx
    8676. 

  8676.         #   Add modulus (if underflow)
    8677. 

  8677.         addq	%rax, %r8
    8678. 

  8678.         adcq	%rcx, %r9
    8679. 

  8679.         adcq	%rcx, %r10
    8680. 

  8680.         adcq	%rdx, %r11
    8681. 

  8681.         movq	%r8, (%rdi)
    8682. 

  8682.         movq	%r9, 8(%rdi)
    8683. 

  8683.         movq	%r10, 16(%rdi)
    8684. 

  8684.         movq	%r11, 24(%rdi)
    8685. 

  8685.         addq	$0x50, %rsp
    8686. 

  8686.         popq	%r15
    8687. 

  8687.         popq	%r14
    8688. 

  8688.         popq	%r13
    8689. 

  8689.         popq	%r12
    8690. 

  8690.         popq	%rbx
    8691. 

  8691.         repz retq
    8692. 

  8692. #ifndef __APPLE__
    8693. 

  8693. .size	fe_ge_add_x64,.-fe_ge_add_x64
    8694. 

  8694. #endif /* __APPLE__ */
    8695. 

  8695. #ifndef __APPLE__
    8696. 

  8696. .text
    8697. 

  8697. .globl	fe_ge_sub_x64
    8698. 

  8698. .type	fe_ge_sub_x64,@function
    8699. 

  8699. .align	16
    8700. 

  8700. fe_ge_sub_x64:
    8701. 

  8701. #else
    8702. 

  8702. .section	__TEXT,__text
    8703. 

  8703. .globl	_fe_ge_sub_x64
    8704. 

  8704. .p2align	4
    8705. 

  8705. _fe_ge_sub_x64:
    8706. 

  8706. #endif /* __APPLE__ */
    8707. 

  8707.         pushq	%rbx
    8708. 

  8708.         pushq	%r12
    8709. 

  8709.         pushq	%r13
    8710. 

  8710.         pushq	%r14
    8711. 

  8711.         pushq	%r15
    8712. 

  8712.         subq	$0x50, %rsp
    8713. 

  8713.         movq	%rdi, (%rsp)
    8714. 

  8714.         movq	%rsi, 8(%rsp)
    8715. 

  8715.         movq	%rdx, 16(%rsp)
    8716. 

  8716.         movq	%rcx, 24(%rsp)
    8717. 

  8717.         movq	%r8, 32(%rsp)
    8718. 

  8718.         movq	%r9, 40(%rsp)
    8719. 

  8719.         movq	(%rsp), %rdi
    8720. 

  8720.         movq	40(%rsp), %rsi
    8721. 

  8721.         movq	32(%rsp), %rbx
    8722. 

  8722.         # Add
    8723. 

  8723.         movq	(%rsi), %r8
    8724. 

  8724.         movq	8(%rsi), %r9
    8725. 

  8725.         addq	(%rbx), %r8
    8726. 

  8726.         movq	16(%rsi), %r10
    8727. 

  8727.         adcq	8(%rbx), %r9
    8728. 

  8728.         movq	24(%rsi), %rcx
    8729. 

  8729.         adcq	16(%rbx), %r10
    8730. 

  8730.         movq	$-19, %rax
    8731. 

  8731.         adcq	24(%rbx), %rcx
    8732. 

  8732.         movq	$0x7fffffffffffffff, %rdx
    8733. 

  8733.         movq	%rcx, %r11
    8734. 

  8734.         sarq	$63, %rcx
    8735. 

  8735.         #   Mask the modulus
    8736. 

  8736.         andq	%rcx, %rax
    8737. 

  8737.         andq	%rcx, %rdx
    8738. 

  8738.         #   Sub modulus (if overflow)
    8739. 

  8739.         subq	%rax, %r8
    8740. 

  8740.         sbbq	%rcx, %r9
    8741. 

  8741.         sbbq	%rcx, %r10
    8742. 

  8742.         sbbq	%rdx, %r11
    8743. 

  8743.         movq	%r8, (%rdi)
    8744. 

  8744.         movq	%r9, 8(%rdi)
    8745. 

  8745.         movq	%r10, 16(%rdi)
    8746. 

  8746.         movq	%r11, 24(%rdi)
    8747. 

  8747.         movq	8(%rsp), %rdi
    8748. 

  8748.         movq	40(%rsp), %rsi
    8749. 

  8749.         movq	32(%rsp), %rbx
    8750. 

  8750.         # Sub
    8751. 

  8751.         movq	(%rsi), %r8
    8752. 

  8752.         movq	8(%rsi), %r9
    8753. 

  8753.         movq	16(%rsi), %r10
    8754. 

  8754.         movq	24(%rsi), %r11
    8755. 

  8755.         subq	(%rbx), %r8
    8756. 

  8756.         movq	$0x00, %rcx
    8757. 

  8757.         sbbq	8(%rbx), %r9
    8758. 

  8758.         movq	$-19, %rax
    8759. 

  8759.         sbbq	16(%rbx), %r10
    8760. 

  8760.         movq	$0x7fffffffffffffff, %rdx
    8761. 

  8761.         sbbq	24(%rbx), %r11
    8762. 

  8762.         sbbq	$0x00, %rcx
    8763. 

  8763.         #   Mask the modulus
    8764. 

  8764.         andq	%rcx, %rax
    8765. 

  8765.         andq	%rcx, %rdx
    8766. 

  8766.         #   Add modulus (if underflow)
    8767. 

  8767.         addq	%rax, %r8
    8768. 

  8768.         adcq	%rcx, %r9
    8769. 

  8769.         adcq	%rcx, %r10
    8770. 

  8770.         adcq	%rdx, %r11
    8771. 

  8771.         movq	%r8, (%rdi)
    8772. 

  8772.         movq	%r9, 8(%rdi)
    8773. 

  8773.         movq	%r10, 16(%rdi)
    8774. 

  8774.         movq	%r11, 24(%rdi)
    8775. 

  8775.         movq	16(%rsp), %rdi
    8776. 

  8776.         movq	(%rsp), %rsi
    8777. 

  8777.         movq	168(%rsp), %rbx
    8778. 

  8778.         # Multiply
    8779. 

  8779.         #  A[0] * B[0]
    8780. 

  8780.         movq	(%rbx), %rax
    8781. 

  8781.         mulq	(%rsi)
    8782. 

  8782.         movq	%rax, %r8
    8783. 

  8783.         movq	%rdx, %r9
    8784. 

  8784.         #  A[0] * B[1]
    8785. 

  8785.         movq	8(%rbx), %rax
    8786. 

  8786.         mulq	(%rsi)
    8787. 

  8787.         xorq	%r10, %r10
    8788. 

  8788.         addq	%rax, %r9
    8789. 

  8789.         adcq	%rdx, %r10
    8790. 

  8790.         #  A[1] * B[0]
    8791. 

  8791.         movq	(%rbx), %rax
    8792. 

  8792.         mulq	8(%rsi)
    8793. 

  8793.         xorq	%r11, %r11
    8794. 

  8794.         addq	%rax, %r9
    8795. 

  8795.         adcq	%rdx, %r10
    8796. 

  8796.         adcq	$0x00, %r11
    8797. 

  8797.         #  A[0] * B[2]
    8798. 

  8798.         movq	16(%rbx), %rax
    8799. 

  8799.         mulq	(%rsi)
    8800. 

  8800.         addq	%rax, %r10
    8801. 

  8801.         adcq	%rdx, %r11
    8802. 

  8802.         #  A[1] * B[1]
    8803. 

  8803.         movq	8(%rbx), %rax
    8804. 

  8804.         mulq	8(%rsi)
    8805. 

  8805.         xorq	%r12, %r12
    8806. 

  8806.         addq	%rax, %r10
    8807. 

  8807.         adcq	%rdx, %r11
    8808. 

  8808.         adcq	$0x00, %r12
    8809. 

  8809.         #  A[2] * B[0]
    8810. 

  8810.         movq	(%rbx), %rax
    8811. 

  8811.         mulq	16(%rsi)
    8812. 

  8812.         addq	%rax, %r10
    8813. 

  8813.         adcq	%rdx, %r11
    8814. 

  8814.         adcq	$0x00, %r12
    8815. 

  8815.         #  A[0] * B[3]
    8816. 

  8816.         movq	24(%rbx), %rax
    8817. 

  8817.         mulq	(%rsi)
    8818. 

  8818.         xorq	%r13, %r13
    8819. 

  8819.         addq	%rax, %r11
    8820. 

  8820.         adcq	%rdx, %r12
    8821. 

  8821.         adcq	$0x00, %r13
    8822. 

  8822.         #  A[1] * B[2]
    8823. 

  8823.         movq	16(%rbx), %rax
    8824. 

  8824.         mulq	8(%rsi)
    8825. 

  8825.         addq	%rax, %r11
    8826. 

  8826.         adcq	%rdx, %r12
    8827. 

  8827.         adcq	$0x00, %r13
    8828. 

  8828.         #  A[2] * B[1]
    8829. 

  8829.         movq	8(%rbx), %rax
    8830. 

  8830.         mulq	16(%rsi)
    8831. 

  8831.         addq	%rax, %r11
    8832. 

  8832.         adcq	%rdx, %r12
    8833. 

  8833.         adcq	$0x00, %r13
    8834. 

  8834.         #  A[3] * B[0]
    8835. 

  8835.         movq	(%rbx), %rax
    8836. 

  8836.         mulq	24(%rsi)
    8837. 

  8837.         addq	%rax, %r11
    8838. 

  8838.         adcq	%rdx, %r12
    8839. 

  8839.         adcq	$0x00, %r13
    8840. 

  8840.         #  A[1] * B[3]
    8841. 

  8841.         movq	24(%rbx), %rax
    8842. 

  8842.         mulq	8(%rsi)
    8843. 

  8843.         xorq	%r14, %r14
    8844. 

  8844.         addq	%rax, %r12
    8845. 

  8845.         adcq	%rdx, %r13
    8846. 

  8846.         adcq	$0x00, %r14
    8847. 

  8847.         #  A[2] * B[2]
    8848. 

  8848.         movq	16(%rbx), %rax
    8849. 

  8849.         mulq	16(%rsi)
    8850. 

  8850.         addq	%rax, %r12
    8851. 

  8851.         adcq	%rdx, %r13
    8852. 

  8852.         adcq	$0x00, %r14
    8853. 

  8853.         #  A[3] * B[1]
    8854. 

  8854.         movq	8(%rbx), %rax
    8855. 

  8855.         mulq	24(%rsi)
    8856. 

  8856.         addq	%rax, %r12
    8857. 

  8857.         adcq	%rdx, %r13
    8858. 

  8858.         adcq	$0x00, %r14
    8859. 

  8859.         #  A[2] * B[3]
    8860. 

  8860.         movq	24(%rbx), %rax
    8861. 

  8861.         mulq	16(%rsi)
    8862. 

  8862.         xorq	%r15, %r15
    8863. 

  8863.         addq	%rax, %r13
    8864. 

  8864.         adcq	%rdx, %r14
    8865. 

  8865.         adcq	$0x00, %r15
    8866. 

  8866.         #  A[3] * B[2]
    8867. 

  8867.         movq	16(%rbx), %rax
    8868. 

  8868.         mulq	24(%rsi)
    8869. 

  8869.         addq	%rax, %r13
    8870. 

  8870.         adcq	%rdx, %r14
    8871. 

  8871.         adcq	$0x00, %r15
    8872. 

  8872.         #  A[3] * B[3]
    8873. 

  8873.         movq	24(%rbx), %rax
    8874. 

  8874.         mulq	24(%rsi)
    8875. 

  8875.         addq	%rax, %r14
    8876. 

  8876.         adcq	%rdx, %r15
    8877. 

  8877.         # Reduce
    8878. 

  8878.         movq	$0x7fffffffffffffff, %rcx
    8879. 

  8879.         #  Move top half into t4-t7 and remove top bit from t3
    8880. 

  8880.         shldq	$0x01, %r14, %r15
    8881. 

  8881.         shldq	$0x01, %r13, %r14
    8882. 

  8882.         shldq	$0x01, %r12, %r13
    8883. 

  8883.         shldq	$0x01, %r11, %r12
    8884. 

  8884.         andq	%rcx, %r11
    8885. 

  8885.         #  Multiply top half by 19
    8886. 

  8886.         movq	$19, %rax
    8887. 

  8887.         mulq	%r12
    8888. 

  8888.         xorq	%r12, %r12
    8889. 

  8889.         addq	%rax, %r8
    8890. 

  8890.         movq	$19, %rax
    8891. 

  8891.         adcq	%rdx, %r12
    8892. 

  8892.         mulq	%r13
    8893. 

  8893.         xorq	%r13, %r13
    8894. 

  8894.         addq	%rax, %r9
    8895. 

  8895.         movq	$19, %rax
    8896. 

  8896.         adcq	%rdx, %r13
    8897. 

  8897.         mulq	%r14
    8898. 

  8898.         xorq	%r14, %r14
    8899. 

  8899.         addq	%rax, %r10
    8900. 

  8900.         movq	$19, %rax
    8901. 

  8901.         adcq	%rdx, %r14
    8902. 

  8902.         mulq	%r15
    8903. 

  8903.         #  Add remaining product results in
    8904. 

  8904.         addq	%r12, %r9
    8905. 

  8905.         adcq	%r13, %r10
    8906. 

  8906.         adcq	%r14, %r11
    8907. 

  8907.         adcq	%rax, %r11
    8908. 

  8908.         adcq	$0x00, %rdx
    8909. 

  8909.         #  Overflow
    8910. 

  8910.         shldq	$0x01, %r11, %rdx
    8911. 

  8911.         imulq	$19, %rdx, %rax
    8912. 

  8912.         andq	%rcx, %r11
    8913. 

  8913.         addq	%rax, %r8
    8914. 

  8914.         adcq	$0x00, %r9
    8915. 

  8915.         adcq	$0x00, %r10
    8916. 

  8916.         adcq	$0x00, %r11
    8917. 

  8917.         # Reduce if top bit set
    8918. 

  8918.         movq	%r11, %rdx
    8919. 

  8919.         sarq	$63, %rdx
    8920. 

  8920.         andq	$19, %rdx
    8921. 

  8921.         andq	%rcx, %r11
    8922. 

  8922.         addq	%rdx, %r8
    8923. 

  8923.         adcq	$0x00, %r9
    8924. 

  8924.         adcq	$0x00, %r10
    8925. 

  8925.         adcq	$0x00, %r11
    8926. 

  8926.         # Store
    8927. 

  8927.         movq	%r8, (%rdi)
    8928. 

  8928.         movq	%r9, 8(%rdi)
    8929. 

  8929.         movq	%r10, 16(%rdi)
    8930. 

  8930.         movq	%r11, 24(%rdi)
    8931. 

  8931.         movq	8(%rsp), %rdi
    8932. 

  8932.         movq	8(%rsp), %rsi
    8933. 

  8933.         movq	160(%rsp), %rbx
    8934. 

  8934.         # Multiply
    8935. 

  8935.         #  A[0] * B[0]
    8936. 

  8936.         movq	(%rbx), %rax
    8937. 

  8937.         mulq	(%rsi)
    8938. 

  8938.         movq	%rax, %r8
    8939. 

  8939.         movq	%rdx, %r9
    8940. 

  8940.         #  A[0] * B[1]
    8941. 

  8941.         movq	8(%rbx), %rax
    8942. 

  8942.         mulq	(%rsi)
    8943. 

  8943.         xorq	%r10, %r10
    8944. 

  8944.         addq	%rax, %r9
    8945. 

  8945.         adcq	%rdx, %r10
    8946. 

  8946.         #  A[1] * B[0]
    8947. 

  8947.         movq	(%rbx), %rax
    8948. 

  8948.         mulq	8(%rsi)
    8949. 

  8949.         xorq	%r11, %r11
    8950. 

  8950.         addq	%rax, %r9
    8951. 

  8951.         adcq	%rdx, %r10
    8952. 

  8952.         adcq	$0x00, %r11
    8953. 

  8953.         #  A[0] * B[2]
    8954. 

  8954.         movq	16(%rbx), %rax
    8955. 

  8955.         mulq	(%rsi)
    8956. 

  8956.         addq	%rax, %r10
    8957. 

  8957.         adcq	%rdx, %r11
    8958. 

  8958.         #  A[1] * B[1]
    8959. 

  8959.         movq	8(%rbx), %rax
    8960. 

  8960.         mulq	8(%rsi)
    8961. 

  8961.         xorq	%r12, %r12
    8962. 

  8962.         addq	%rax, %r10
    8963. 

  8963.         adcq	%rdx, %r11
    8964. 

  8964.         adcq	$0x00, %r12
    8965. 

  8965.         #  A[2] * B[0]
    8966. 

  8966.         movq	(%rbx), %rax
    8967. 

  8967.         mulq	16(%rsi)
    8968. 

  8968.         addq	%rax, %r10
    8969. 

  8969.         adcq	%rdx, %r11
    8970. 

  8970.         adcq	$0x00, %r12
    8971. 

  8971.         #  A[0] * B[3]
    8972. 

  8972.         movq	24(%rbx), %rax
    8973. 

  8973.         mulq	(%rsi)
    8974. 

  8974.         xorq	%r13, %r13
    8975. 

  8975.         addq	%rax, %r11
    8976. 

  8976.         adcq	%rdx, %r12
    8977. 

  8977.         adcq	$0x00, %r13
    8978. 

  8978.         #  A[1] * B[2]
    8979. 

  8979.         movq	16(%rbx), %rax
    8980. 

  8980.         mulq	8(%rsi)
    8981. 

  8981.         addq	%rax, %r11
    8982. 

  8982.         adcq	%rdx, %r12
    8983. 

  8983.         adcq	$0x00, %r13
    8984. 

  8984.         #  A[2] * B[1]
    8985. 

  8985.         movq	8(%rbx), %rax
    8986. 

  8986.         mulq	16(%rsi)
    8987. 

  8987.         addq	%rax, %r11
    8988. 

  8988.         adcq	%rdx, %r12
    8989. 

  8989.         adcq	$0x00, %r13
    8990. 

  8990.         #  A[3] * B[0]
    8991. 

  8991.         movq	(%rbx), %rax
    8992. 

  8992.         mulq	24(%rsi)
    8993. 

  8993.         addq	%rax, %r11
    8994. 

  8994.         adcq	%rdx, %r12
    8995. 

  8995.         adcq	$0x00, %r13
    8996. 

  8996.         #  A[1] * B[3]
    8997. 

  8997.         movq	24(%rbx), %rax
    8998. 

  8998.         mulq	8(%rsi)
    8999. 

  8999.         xorq	%r14, %r14
    9000. 

  9000.         addq	%rax, %r12
    9001. 

  9001.         adcq	%rdx, %r13
    9002. 

  9002.         adcq	$0x00, %r14
    9003. 

  9003.         #  A[2] * B[2]
    9004. 

  9004.         movq	16(%rbx), %rax
    9005. 

  9005.         mulq	16(%rsi)
    9006. 

  9006.         addq	%rax, %r12
    9007. 

  9007.         adcq	%rdx, %r13
    9008. 

  9008.         adcq	$0x00, %r14
    9009. 

  9009.         #  A[3] * B[1]
    9010. 

  9010.         movq	8(%rbx), %rax
    9011. 

  9011.         mulq	24(%rsi)
    9012. 

  9012.         addq	%rax, %r12
    9013. 

  9013.         adcq	%rdx, %r13
    9014. 

  9014.         adcq	$0x00, %r14
    9015. 

  9015.         #  A[2] * B[3]
    9016. 

  9016.         movq	24(%rbx), %rax
    9017. 

  9017.         mulq	16(%rsi)
    9018. 

  9018.         xorq	%r15, %r15
    9019. 

  9019.         addq	%rax, %r13
    9020. 

  9020.         adcq	%rdx, %r14
    9021. 

  9021.         adcq	$0x00, %r15
    9022. 

  9022.         #  A[3] * B[2]
    9023. 

  9023.         movq	16(%rbx), %rax
    9024. 

  9024.         mulq	24(%rsi)
    9025. 

  9025.         addq	%rax, %r13
    9026. 

  9026.         adcq	%rdx, %r14
    9027. 

  9027.         adcq	$0x00, %r15
    9028. 

  9028.         #  A[3] * B[3]
    9029. 

  9029.         movq	24(%rbx), %rax
    9030. 

  9030.         mulq	24(%rsi)
    9031. 

  9031.         addq	%rax, %r14
    9032. 

  9032.         adcq	%rdx, %r15
    9033. 

  9033.         # Reduce
    9034. 

  9034.         movq	$0x7fffffffffffffff, %rcx
    9035. 

  9035.         #  Move top half into t4-t7 and remove top bit from t3
    9036. 

  9036.         shldq	$0x01, %r14, %r15
    9037. 

  9037.         shldq	$0x01, %r13, %r14
    9038. 

  9038.         shldq	$0x01, %r12, %r13
    9039. 

  9039.         shldq	$0x01, %r11, %r12
    9040. 

  9040.         andq	%rcx, %r11
    9041. 

  9041.         #  Multiply top half by 19
    9042. 

  9042.         movq	$19, %rax
    9043. 

  9043.         mulq	%r12
    9044. 

  9044.         xorq	%r12, %r12
    9045. 

  9045.         addq	%rax, %r8
    9046. 

  9046.         movq	$19, %rax
    9047. 

  9047.         adcq	%rdx, %r12
    9048. 

  9048.         mulq	%r13
    9049. 

  9049.         xorq	%r13, %r13
    9050. 

  9050.         addq	%rax, %r9
    9051. 

  9051.         movq	$19, %rax
    9052. 

  9052.         adcq	%rdx, %r13
    9053. 

  9053.         mulq	%r14
    9054. 

  9054.         xorq	%r14, %r14
    9055. 

  9055.         addq	%rax, %r10
    9056. 

  9056.         movq	$19, %rax
    9057. 

  9057.         adcq	%rdx, %r14
    9058. 

  9058.         mulq	%r15
    9059. 

  9059.         #  Add remaining product results in
    9060. 

  9060.         addq	%r12, %r9
    9061. 

  9061.         adcq	%r13, %r10
    9062. 

  9062.         adcq	%r14, %r11
    9063. 

  9063.         adcq	%rax, %r11
    9064. 

  9064.         adcq	$0x00, %rdx
    9065. 

  9065.         #  Overflow
    9066. 

  9066.         shldq	$0x01, %r11, %rdx
    9067. 

  9067.         imulq	$19, %rdx, %rax
    9068. 

  9068.         andq	%rcx, %r11
    9069. 

  9069.         addq	%rax, %r8
    9070. 

  9070.         adcq	$0x00, %r9
    9071. 

  9071.         adcq	$0x00, %r10
    9072. 

  9072.         adcq	$0x00, %r11
    9073. 

  9073.         # Reduce if top bit set
    9074. 

  9074.         movq	%r11, %rdx
    9075. 

  9075.         sarq	$63, %rdx
    9076. 

  9076.         andq	$19, %rdx
    9077. 

  9077.         andq	%rcx, %r11
    9078. 

  9078.         addq	%rdx, %r8
    9079. 

  9079.         adcq	$0x00, %r9
    9080. 

  9080.         adcq	$0x00, %r10
    9081. 

  9081.         adcq	$0x00, %r11
    9082. 

  9082.         # Store
    9083. 

  9083.         movq	%r8, (%rdi)
    9084. 

  9084.         movq	%r9, 8(%rdi)
    9085. 

  9085.         movq	%r10, 16(%rdi)
    9086. 

  9086.         movq	%r11, 24(%rdi)
    9087. 

  9087.         movq	24(%rsp), %rdi
    9088. 

  9088.         movq	152(%rsp), %rsi
    9089. 

  9089.         movq	136(%rsp), %rbx
    9090. 

  9090.         # Multiply
    9091. 

  9091.         #  A[0] * B[0]
    9092. 

  9092.         movq	(%rbx), %rax
    9093. 

  9093.         mulq	(%rsi)
    9094. 

  9094.         movq	%rax, %r8
    9095. 

  9095.         movq	%rdx, %r9
    9096. 

  9096.         #  A[0] * B[1]
    9097. 

  9097.         movq	8(%rbx), %rax
    9098. 

  9098.         mulq	(%rsi)
    9099. 

  9099.         xorq	%r10, %r10
    9100. 

  9100.         addq	%rax, %r9
    9101. 

  9101.         adcq	%rdx, %r10
    9102. 

  9102.         #  A[1] * B[0]
    9103. 

  9103.         movq	(%rbx), %rax
    9104. 

  9104.         mulq	8(%rsi)
    9105. 

  9105.         xorq	%r11, %r11
    9106. 

  9106.         addq	%rax, %r9
    9107. 

  9107.         adcq	%rdx, %r10
    9108. 

  9108.         adcq	$0x00, %r11
    9109. 

  9109.         #  A[0] * B[2]
    9110. 

  9110.         movq	16(%rbx), %rax
    9111. 

  9111.         mulq	(%rsi)
    9112. 

  9112.         addq	%rax, %r10
    9113. 

  9113.         adcq	%rdx, %r11
    9114. 

  9114.         #  A[1] * B[1]
    9115. 

  9115.         movq	8(%rbx), %rax
    9116. 

  9116.         mulq	8(%rsi)
    9117. 

  9117.         xorq	%r12, %r12
    9118. 

  9118.         addq	%rax, %r10
    9119. 

  9119.         adcq	%rdx, %r11
    9120. 

  9120.         adcq	$0x00, %r12
    9121. 

  9121.         #  A[2] * B[0]
    9122. 

  9122.         movq	(%rbx), %rax
    9123. 

  9123.         mulq	16(%rsi)
    9124. 

  9124.         addq	%rax, %r10
    9125. 

  9125.         adcq	%rdx, %r11
    9126. 

  9126.         adcq	$0x00, %r12
    9127. 

  9127.         #  A[0] * B[3]
    9128. 

  9128.         movq	24(%rbx), %rax
    9129. 

  9129.         mulq	(%rsi)
    9130. 

  9130.         xorq	%r13, %r13
    9131. 

  9131.         addq	%rax, %r11
    9132. 

  9132.         adcq	%rdx, %r12
    9133. 

  9133.         adcq	$0x00, %r13
    9134. 

  9134.         #  A[1] * B[2]
    9135. 

  9135.         movq	16(%rbx), %rax
    9136. 

  9136.         mulq	8(%rsi)
    9137. 

  9137.         addq	%rax, %r11
    9138. 

  9138.         adcq	%rdx, %r12
    9139. 

  9139.         adcq	$0x00, %r13
    9140. 

  9140.         #  A[2] * B[1]
    9141. 

  9141.         movq	8(%rbx), %rax
    9142. 

  9142.         mulq	16(%rsi)
    9143. 

  9143.         addq	%rax, %r11
    9144. 

  9144.         adcq	%rdx, %r12
    9145. 

  9145.         adcq	$0x00, %r13
    9146. 

  9146.         #  A[3] * B[0]
    9147. 

  9147.         movq	(%rbx), %rax
    9148. 

  9148.         mulq	24(%rsi)
    9149. 

  9149.         addq	%rax, %r11
    9150. 

  9150.         adcq	%rdx, %r12
    9151. 

  9151.         adcq	$0x00, %r13
    9152. 

  9152.         #  A[1] * B[3]
    9153. 

  9153.         movq	24(%rbx), %rax
    9154. 

  9154.         mulq	8(%rsi)
    9155. 

  9155.         xorq	%r14, %r14
    9156. 

  9156.         addq	%rax, %r12
    9157. 

  9157.         adcq	%rdx, %r13
    9158. 

  9158.         adcq	$0x00, %r14
    9159. 

  9159.         #  A[2] * B[2]
    9160. 

  9160.         movq	16(%rbx), %rax
    9161. 

  9161.         mulq	16(%rsi)
    9162. 

  9162.         addq	%rax, %r12
    9163. 

  9163.         adcq	%rdx, %r13
    9164. 

  9164.         adcq	$0x00, %r14
    9165. 

  9165.         #  A[3] * B[1]
    9166. 

  9166.         movq	8(%rbx), %rax
    9167. 

  9167.         mulq	24(%rsi)
    9168. 

  9168.         addq	%rax, %r12
    9169. 

  9169.         adcq	%rdx, %r13
    9170. 

  9170.         adcq	$0x00, %r14
    9171. 

  9171.         #  A[2] * B[3]
    9172. 

  9172.         movq	24(%rbx), %rax
    9173. 

  9173.         mulq	16(%rsi)
    9174. 

  9174.         xorq	%r15, %r15
    9175. 

  9175.         addq	%rax, %r13
    9176. 

  9176.         adcq	%rdx, %r14
    9177. 

  9177.         adcq	$0x00, %r15
    9178. 

  9178.         #  A[3] * B[2]
    9179. 

  9179.         movq	16(%rbx), %rax
    9180. 

  9180.         mulq	24(%rsi)
    9181. 

  9181.         addq	%rax, %r13
    9182. 

  9182.         adcq	%rdx, %r14
    9183. 

  9183.         adcq	$0x00, %r15
    9184. 

  9184.         #  A[3] * B[3]
    9185. 

  9185.         movq	24(%rbx), %rax
    9186. 

  9186.         mulq	24(%rsi)
    9187. 

  9187.         addq	%rax, %r14
    9188. 

  9188.         adcq	%rdx, %r15
    9189. 

  9189.         # Reduce
    9190. 

  9190.         movq	$0x7fffffffffffffff, %rcx
    9191. 

  9191.         #  Move top half into t4-t7 and remove top bit from t3
    9192. 

  9192.         shldq	$0x01, %r14, %r15
    9193. 

  9193.         shldq	$0x01, %r13, %r14
    9194. 

  9194.         shldq	$0x01, %r12, %r13
    9195. 

  9195.         shldq	$0x01, %r11, %r12
    9196. 

  9196.         andq	%rcx, %r11
    9197. 

  9197.         #  Multiply top half by 19
    9198. 

  9198.         movq	$19, %rax
    9199. 

  9199.         mulq	%r12
    9200. 

  9200.         xorq	%r12, %r12
    9201. 

  9201.         addq	%rax, %r8
    9202. 

  9202.         movq	$19, %rax
    9203. 

  9203.         adcq	%rdx, %r12
    9204. 

  9204.         mulq	%r13
    9205. 

  9205.         xorq	%r13, %r13
    9206. 

  9206.         addq	%rax, %r9
    9207. 

  9207.         movq	$19, %rax
    9208. 

  9208.         adcq	%rdx, %r13
    9209. 

  9209.         mulq	%r14
    9210. 

  9210.         xorq	%r14, %r14
    9211. 

  9211.         addq	%rax, %r10
    9212. 

  9212.         movq	$19, %rax
    9213. 

  9213.         adcq	%rdx, %r14
    9214. 

  9214.         mulq	%r15
    9215. 

  9215.         #  Add remaining product results in
    9216. 

  9216.         addq	%r12, %r9
    9217. 

  9217.         adcq	%r13, %r10
    9218. 

  9218.         adcq	%r14, %r11
    9219. 

  9219.         adcq	%rax, %r11
    9220. 

  9220.         adcq	$0x00, %rdx
    9221. 

  9221.         #  Overflow
    9222. 

  9222.         shldq	$0x01, %r11, %rdx
    9223. 

  9223.         imulq	$19, %rdx, %rax
    9224. 

  9224.         andq	%rcx, %r11
    9225. 

  9225.         addq	%rax, %r8
    9226. 

  9226.         adcq	$0x00, %r9
    9227. 

  9227.         adcq	$0x00, %r10
    9228. 

  9228.         adcq	$0x00, %r11
    9229. 

  9229.         # Reduce if top bit set
    9230. 

  9230.         movq	%r11, %rdx
    9231. 

  9231.         sarq	$63, %rdx
    9232. 

  9232.         andq	$19, %rdx
    9233. 

  9233.         andq	%rcx, %r11
    9234. 

  9234.         addq	%rdx, %r8
    9235. 

  9235.         adcq	$0x00, %r9
    9236. 

  9236.         adcq	$0x00, %r10
    9237. 

  9237.         adcq	$0x00, %r11
    9238. 

  9238.         # Store
    9239. 

  9239.         movq	%r8, (%rdi)
    9240. 

  9240.         movq	%r9, 8(%rdi)
    9241. 

  9241.         movq	%r10, 16(%rdi)
    9242. 

  9242.         movq	%r11, 24(%rdi)
    9243. 

  9243.         movq	(%rsp), %rdi
    9244. 

  9244.         movq	128(%rsp), %rsi
    9245. 

  9245.         movq	144(%rsp), %rbx
    9246. 

  9246.         # Multiply
    9247. 

  9247.         #  A[0] * B[0]
    9248. 

  9248.         movq	(%rbx), %rax
    9249. 

  9249.         mulq	(%rsi)
    9250. 

  9250.         movq	%rax, %r8
    9251. 

  9251.         movq	%rdx, %r9
    9252. 

  9252.         #  A[0] * B[1]
    9253. 

  9253.         movq	8(%rbx), %rax
    9254. 

  9254.         mulq	(%rsi)
    9255. 

  9255.         xorq	%r10, %r10
    9256. 

  9256.         addq	%rax, %r9
    9257. 

  9257.         adcq	%rdx, %r10
    9258. 

  9258.         #  A[1] * B[0]
    9259. 

  9259.         movq	(%rbx), %rax
    9260. 

  9260.         mulq	8(%rsi)
    9261. 

  9261.         xorq	%r11, %r11
    9262. 

  9262.         addq	%rax, %r9
    9263. 

  9263.         adcq	%rdx, %r10
    9264. 

  9264.         adcq	$0x00, %r11
    9265. 

  9265.         #  A[0] * B[2]
    9266. 

  9266.         movq	16(%rbx), %rax
    9267. 

  9267.         mulq	(%rsi)
    9268. 

  9268.         addq	%rax, %r10
    9269. 

  9269.         adcq	%rdx, %r11
    9270. 

  9270.         #  A[1] * B[1]
    9271. 

  9271.         movq	8(%rbx), %rax
    9272. 

  9272.         mulq	8(%rsi)
    9273. 

  9273.         xorq	%r12, %r12
    9274. 

  9274.         addq	%rax, %r10
    9275. 

  9275.         adcq	%rdx, %r11
    9276. 

  9276.         adcq	$0x00, %r12
    9277. 

  9277.         #  A[2] * B[0]
    9278. 

  9278.         movq	(%rbx), %rax
    9279. 

  9279.         mulq	16(%rsi)
    9280. 

  9280.         addq	%rax, %r10
    9281. 

  9281.         adcq	%rdx, %r11
    9282. 

  9282.         adcq	$0x00, %r12
    9283. 

  9283.         #  A[0] * B[3]
    9284. 

  9284.         movq	24(%rbx), %rax
    9285. 

  9285.         mulq	(%rsi)
    9286. 

  9286.         xorq	%r13, %r13
    9287. 

  9287.         addq	%rax, %r11
    9288. 

  9288.         adcq	%rdx, %r12
    9289. 

  9289.         adcq	$0x00, %r13
    9290. 

  9290.         #  A[1] * B[2]
    9291. 

  9291.         movq	16(%rbx), %rax
    9292. 

  9292.         mulq	8(%rsi)
    9293. 

  9293.         addq	%rax, %r11
    9294. 

  9294.         adcq	%rdx, %r12
    9295. 

  9295.         adcq	$0x00, %r13
    9296. 

  9296.         #  A[2] * B[1]
    9297. 

  9297.         movq	8(%rbx), %rax
    9298. 

  9298.         mulq	16(%rsi)
    9299. 

  9299.         addq	%rax, %r11
    9300. 

  9300.         adcq	%rdx, %r12
    9301. 

  9301.         adcq	$0x00, %r13
    9302. 

  9302.         #  A[3] * B[0]
    9303. 

  9303.         movq	(%rbx), %rax
    9304. 

  9304.         mulq	24(%rsi)
    9305. 

  9305.         addq	%rax, %r11
    9306. 

  9306.         adcq	%rdx, %r12
    9307. 

  9307.         adcq	$0x00, %r13
    9308. 

  9308.         #  A[1] * B[3]
    9309. 

  9309.         movq	24(%rbx), %rax
    9310. 

  9310.         mulq	8(%rsi)
    9311. 

  9311.         xorq	%r14, %r14
    9312. 

  9312.         addq	%rax, %r12
    9313. 

  9313.         adcq	%rdx, %r13
    9314. 

  9314.         adcq	$0x00, %r14
    9315. 

  9315.         #  A[2] * B[2]
    9316. 

  9316.         movq	16(%rbx), %rax
    9317. 

  9317.         mulq	16(%rsi)
    9318. 

  9318.         addq	%rax, %r12
    9319. 

  9319.         adcq	%rdx, %r13
    9320. 

  9320.         adcq	$0x00, %r14
    9321. 

  9321.         #  A[3] * B[1]
    9322. 

  9322.         movq	8(%rbx), %rax
    9323. 

  9323.         mulq	24(%rsi)
    9324. 

  9324.         addq	%rax, %r12
    9325. 

  9325.         adcq	%rdx, %r13
    9326. 

  9326.         adcq	$0x00, %r14
    9327. 

  9327.         #  A[2] * B[3]
    9328. 

  9328.         movq	24(%rbx), %rax
    9329. 

  9329.         mulq	16(%rsi)
    9330. 

  9330.         xorq	%r15, %r15
    9331. 

  9331.         addq	%rax, %r13
    9332. 

  9332.         adcq	%rdx, %r14
    9333. 

  9333.         adcq	$0x00, %r15
    9334. 

  9334.         #  A[3] * B[2]
    9335. 

  9335.         movq	16(%rbx), %rax
    9336. 

  9336.         mulq	24(%rsi)
    9337. 

  9337.         addq	%rax, %r13
    9338. 

  9338.         adcq	%rdx, %r14
    9339. 

  9339.         adcq	$0x00, %r15
    9340. 

  9340.         #  A[3] * B[3]
    9341. 

  9341.         movq	24(%rbx), %rax
    9342. 

  9342.         mulq	24(%rsi)
    9343. 

  9343.         addq	%rax, %r14
    9344. 

  9344.         adcq	%rdx, %r15
    9345. 

  9345.         # Reduce
    9346. 

  9346.         movq	$0x7fffffffffffffff, %rcx
    9347. 

  9347.         #  Move top half into t4-t7 and remove top bit from t3
    9348. 

  9348.         shldq	$0x01, %r14, %r15
    9349. 

  9349.         shldq	$0x01, %r13, %r14
    9350. 

  9350.         shldq	$0x01, %r12, %r13
    9351. 

  9351.         shldq	$0x01, %r11, %r12
    9352. 

  9352.         andq	%rcx, %r11
    9353. 

  9353.         #  Multiply top half by 19
    9354. 

  9354.         movq	$19, %rax
    9355. 

  9355.         mulq	%r12
    9356. 

  9356.         xorq	%r12, %r12
    9357. 

  9357.         addq	%rax, %r8
    9358. 

  9358.         movq	$19, %rax
    9359. 

  9359.         adcq	%rdx, %r12
    9360. 

  9360.         mulq	%r13
    9361. 

  9361.         xorq	%r13, %r13
    9362. 

  9362.         addq	%rax, %r9
    9363. 

  9363.         movq	$19, %rax
    9364. 

  9364.         adcq	%rdx, %r13
    9365. 

  9365.         mulq	%r14
    9366. 

  9366.         xorq	%r14, %r14
    9367. 

  9367.         addq	%rax, %r10
    9368. 

  9368.         movq	$19, %rax
    9369. 

  9369.         adcq	%rdx, %r14
    9370. 

  9370.         mulq	%r15
    9371. 

  9371.         #  Add remaining product results in
    9372. 

  9372.         addq	%r12, %r9
    9373. 

  9373.         adcq	%r13, %r10
    9374. 

  9374.         adcq	%r14, %r11
    9375. 

  9375.         adcq	%rax, %r11
    9376. 

  9376.         adcq	$0x00, %rdx
    9377. 

  9377.         #  Overflow
    9378. 

  9378.         shldq	$0x01, %r11, %rdx
    9379. 

  9379.         imulq	$19, %rdx, %rax
    9380. 

  9380.         andq	%rcx, %r11
    9381. 

  9381.         addq	%rax, %r8
    9382. 

  9382.         adcq	$0x00, %r9
    9383. 

  9383.         adcq	$0x00, %r10
    9384. 

  9384.         adcq	$0x00, %r11
    9385. 

  9385.         # Reduce if top bit set
    9386. 

  9386.         movq	%r11, %rdx
    9387. 

  9387.         sarq	$63, %rdx
    9388. 

  9388.         andq	$19, %rdx
    9389. 

  9389.         andq	%rcx, %r11
    9390. 

  9390.         addq	%rdx, %r8
    9391. 

  9391.         adcq	$0x00, %r9
    9392. 

  9392.         adcq	$0x00, %r10
    9393. 

  9393.         adcq	$0x00, %r11
    9394. 

  9394.         # Store
    9395. 

  9395.         movq	%r8, (%rdi)
    9396. 

  9396.         movq	%r9, 8(%rdi)
    9397. 

  9397.         movq	%r10, 16(%rdi)
    9398. 

  9398.         movq	%r11, 24(%rdi)
    9399. 

  9399.         leaq	48(%rsp), %rdi
    9400. 

  9400.         movq	(%rsp), %rsi
    9401. 

  9401.         movq	(%rsp), %rbx
    9402. 

  9402.         # Add
    9403. 

  9403.         movq	(%rsi), %r8
    9404. 

  9404.         movq	8(%rsi), %r9
    9405. 

  9405.         addq	(%rbx), %r8
    9406. 

  9406.         movq	16(%rsi), %r10
    9407. 

  9407.         adcq	8(%rbx), %r9
    9408. 

  9408.         movq	24(%rsi), %rcx
    9409. 

  9409.         adcq	16(%rbx), %r10
    9410. 

  9410.         movq	$-19, %rax
    9411. 

  9411.         adcq	24(%rbx), %rcx
    9412. 

  9412.         movq	$0x7fffffffffffffff, %rdx
    9413. 

  9413.         movq	%rcx, %r11
    9414. 

  9414.         sarq	$63, %rcx
    9415. 

  9415.         #   Mask the modulus
    9416. 

  9416.         andq	%rcx, %rax
    9417. 

  9417.         andq	%rcx, %rdx
    9418. 

  9418.         #   Sub modulus (if overflow)
    9419. 

  9419.         subq	%rax, %r8
    9420. 

  9420.         sbbq	%rcx, %r9
    9421. 

  9421.         sbbq	%rcx, %r10
    9422. 

  9422.         sbbq	%rdx, %r11
    9423. 

  9423.         movq	%r8, (%rdi)
    9424. 

  9424.         movq	%r9, 8(%rdi)
    9425. 

  9425.         movq	%r10, 16(%rdi)
    9426. 

  9426.         movq	%r11, 24(%rdi)
    9427. 

  9427.         movq	(%rsp), %rdi
    9428. 

  9428.         movq	16(%rsp), %rsi
    9429. 

  9429.         movq	8(%rsp), %rbx
    9430. 

  9430.         # Sub
    9431. 

  9431.         movq	(%rsi), %r8
    9432. 

  9432.         movq	8(%rsi), %r9
    9433. 

  9433.         movq	16(%rsi), %r10
    9434. 

  9434.         movq	24(%rsi), %r11
    9435. 

  9435.         subq	(%rbx), %r8
    9436. 

  9436.         movq	$0x00, %rcx
    9437. 

  9437.         sbbq	8(%rbx), %r9
    9438. 

  9438.         movq	$-19, %rax
    9439. 

  9439.         sbbq	16(%rbx), %r10
    9440. 

  9440.         movq	$0x7fffffffffffffff, %rdx
    9441. 

  9441.         sbbq	24(%rbx), %r11
    9442. 

  9442.         sbbq	$0x00, %rcx
    9443. 

  9443.         #   Mask the modulus
    9444. 

  9444.         andq	%rcx, %rax
    9445. 

  9445.         andq	%rcx, %rdx
    9446. 

  9446.         #   Add modulus (if underflow)
    9447. 

  9447.         addq	%rax, %r8
    9448. 

  9448.         adcq	%rcx, %r9
    9449. 

  9449.         adcq	%rcx, %r10
    9450. 

  9450.         adcq	%rdx, %r11
    9451. 

  9451.         movq	%r8, (%rdi)
    9452. 

  9452.         movq	%r9, 8(%rdi)
    9453. 

  9453.         movq	%r10, 16(%rdi)
    9454. 

  9454.         movq	%r11, 24(%rdi)
    9455. 

  9455.         movq	8(%rsp), %rdi
    9456. 

  9456.         movq	16(%rsp), %rsi
    9457. 

  9457.         movq	8(%rsp), %rbx
    9458. 

  9458.         # Add
    9459. 

  9459.         movq	(%rsi), %r8
    9460. 

  9460.         movq	8(%rsi), %r9
    9461. 

  9461.         addq	(%rbx), %r8
    9462. 

  9462.         movq	16(%rsi), %r10
    9463. 

  9463.         adcq	8(%rbx), %r9
    9464. 

  9464.         movq	24(%rsi), %rcx
    9465. 

  9465.         adcq	16(%rbx), %r10
    9466. 

  9466.         movq	$-19, %rax
    9467. 

  9467.         adcq	24(%rbx), %rcx
    9468. 

  9468.         movq	$0x7fffffffffffffff, %rdx
    9469. 

  9469.         movq	%rcx, %r11
    9470. 

  9470.         sarq	$63, %rcx
    9471. 

  9471.         #   Mask the modulus
    9472. 

  9472.         andq	%rcx, %rax
    9473. 

  9473.         andq	%rcx, %rdx
    9474. 

  9474.         #   Sub modulus (if overflow)
    9475. 

  9475.         subq	%rax, %r8
    9476. 

  9476.         sbbq	%rcx, %r9
    9477. 

  9477.         sbbq	%rcx, %r10
    9478. 

  9478.         sbbq	%rdx, %r11
    9479. 

  9479.         movq	%r8, (%rdi)
    9480. 

  9480.         movq	%r9, 8(%rdi)
    9481. 

  9481.         movq	%r10, 16(%rdi)
    9482. 

  9482.         movq	%r11, 24(%rdi)
    9483. 

  9483.         movq	16(%rsp), %rdi
    9484. 

  9484.         leaq	48(%rsp), %rsi
    9485. 

  9485.         movq	24(%rsp), %rbx
    9486. 

  9486.         # Sub
    9487. 

  9487.         movq	(%rsi), %r8
    9488. 

  9488.         movq	8(%rsi), %r9
    9489. 

  9489.         movq	16(%rsi), %r10
    9490. 

  9490.         movq	24(%rsi), %r11
    9491. 

  9491.         subq	(%rbx), %r8
    9492. 

  9492.         movq	$0x00, %rcx
    9493. 

  9493.         sbbq	8(%rbx), %r9
    9494. 

  9494.         movq	$-19, %rax
    9495. 

  9495.         sbbq	16(%rbx), %r10
    9496. 

  9496.         movq	$0x7fffffffffffffff, %rdx
    9497. 

  9497.         sbbq	24(%rbx), %r11
    9498. 

  9498.         sbbq	$0x00, %rcx
    9499. 

  9499.         #   Mask the modulus
    9500. 

  9500.         andq	%rcx, %rax
    9501. 

  9501.         andq	%rcx, %rdx
    9502. 

  9502.         #   Add modulus (if underflow)
    9503. 

  9503.         addq	%rax, %r8
    9504. 

  9504.         adcq	%rcx, %r9
    9505. 

  9505.         adcq	%rcx, %r10
    9506. 

  9506.         adcq	%rdx, %r11
    9507. 

  9507.         movq	%r8, (%rdi)
    9508. 

  9508.         movq	%r9, 8(%rdi)
    9509. 

  9509.         movq	%r10, 16(%rdi)
    9510. 

  9510.         movq	%r11, 24(%rdi)
    9511. 

  9511.         movq	24(%rsp), %rdi
    9512. 

  9512.         leaq	48(%rsp), %rsi
    9513. 

  9513.         movq	24(%rsp), %rbx
    9514. 

  9514.         # Add
    9515. 

  9515.         movq	(%rsi), %r8
    9516. 

  9516.         movq	8(%rsi), %r9
    9517. 

  9517.         addq	(%rbx), %r8
    9518. 

  9518.         movq	16(%rsi), %r10
    9519. 

  9519.         adcq	8(%rbx), %r9
    9520. 

  9520.         movq	24(%rsi), %rcx
    9521. 

  9521.         adcq	16(%rbx), %r10
    9522. 

  9522.         movq	$-19, %rax
    9523. 

  9523.         adcq	24(%rbx), %rcx
    9524. 

  9524.         movq	$0x7fffffffffffffff, %rdx
    9525. 

  9525.         movq	%rcx, %r11
    9526. 

  9526.         sarq	$63, %rcx
    9527. 

  9527.         #   Mask the modulus
    9528. 

  9528.         andq	%rcx, %rax
    9529. 

  9529.         andq	%rcx, %rdx
    9530. 

  9530.         #   Sub modulus (if overflow)
    9531. 

  9531.         subq	%rax, %r8
    9532. 

  9532.         sbbq	%rcx, %r9
    9533. 

  9533.         sbbq	%rcx, %r10
    9534. 

  9534.         sbbq	%rdx, %r11
    9535. 

  9535.         movq	%r8, (%rdi)
    9536. 

  9536.         movq	%r9, 8(%rdi)
    9537. 

  9537.         movq	%r10, 16(%rdi)
    9538. 

  9538.         movq	%r11, 24(%rdi)
    9539. 

  9539.         addq	$0x50, %rsp
    9540. 

  9540.         popq	%r15
    9541. 

  9541.         popq	%r14
    9542. 

  9542.         popq	%r13
    9543. 

  9543.         popq	%r12
    9544. 

  9544.         popq	%rbx
    9545. 

  9545.         repz retq
    9546. 

  9546. #ifndef __APPLE__
    9547. 

  9547. .size	fe_ge_sub_x64,.-fe_ge_sub_x64
    9548. 

  9548. #endif /* __APPLE__ */
    9549. 

  9549. #ifdef HAVE_INTEL_AVX2
    9550. 

  9550. #ifndef __APPLE__
    9551. 

  9551. .text
    9552. 

  9552. .globl	fe_mul_avx2
    9553. 

  9553. .type	fe_mul_avx2,@function
    9554. 

  9554. .align	16
    9555. 

  9555. fe_mul_avx2:
    9556. 

  9556. #else
    9557. 

  9557. .section	__TEXT,__text
    9558. 

  9558. .globl	_fe_mul_avx2
    9559. 

  9559. .p2align	4
    9560. 

  9560. _fe_mul_avx2:
    9561. 

  9561. #endif /* __APPLE__ */
    9562. 

  9562.         pushq	%r12
    9563. 

  9563.         pushq	%r13
    9564. 

  9564.         pushq	%r14
    9565. 

  9565.         pushq	%r15
    9566. 

  9566.         pushq	%rbx
    9567. 

  9567.         movq	%rdx, %rbx
    9568. 

  9568.         # Multiply
    9569. 

  9569.         # A[0] * B[0]
    9570. 

  9570.         movq	(%rbx), %rdx
    9571. 

  9571.         mulxq	(%rsi), %r8, %r9
    9572. 

  9572.         # A[2] * B[0]
    9573. 

  9573.         mulxq	16(%rsi), %r10, %r11
    9574. 

  9574.         # A[1] * B[0]
    9575. 

  9575.         mulxq	8(%rsi), %rax, %rcx
    9576. 

  9576.         xorq	%r15, %r15
    9577. 

  9577.         adcxq	%rax, %r9
    9578. 

  9578.         # A[1] * B[3]
    9579. 

  9579.         movq	24(%rbx), %rdx
    9580. 

  9580.         mulxq	8(%rsi), %r12, %r13
    9581. 

  9581.         adcxq	%rcx, %r10
    9582. 

  9582.         # A[0] * B[1]
    9583. 

  9583.         movq	8(%rbx), %rdx
    9584. 

  9584.         mulxq	(%rsi), %rax, %rcx
    9585. 

  9585.         adoxq	%rax, %r9
    9586. 

  9586.         # A[2] * B[1]
    9587. 

  9587.         mulxq	16(%rsi), %rax, %r14
    9588. 

  9588.         adoxq	%rcx, %r10
    9589. 

  9589.         adcxq	%rax, %r11
    9590. 

  9590.         # A[1] * B[2]
    9591. 

  9591.         movq	16(%rbx), %rdx
    9592. 

  9592.         mulxq	8(%rsi), %rax, %rcx
    9593. 

  9593.         adcxq	%r14, %r12
    9594. 

  9594.         adoxq	%rax, %r11
    9595. 

  9595.         adcxq	%r15, %r13
    9596. 

  9596.         adoxq	%rcx, %r12
    9597. 

  9597.         # A[0] * B[2]
    9598. 

  9598.         mulxq	(%rsi), %rax, %rcx
    9599. 

  9599.         adoxq	%r15, %r13
    9600. 

  9600.         xorq	%r14, %r14
    9601. 

  9601.         adcxq	%rax, %r10
    9602. 

  9602.         # A[1] * B[1]
    9603. 

  9603.         movq	8(%rbx), %rdx
    9604. 

  9604.         mulxq	8(%rsi), %rdx, %rax
    9605. 

  9605.         adcxq	%rcx, %r11
    9606. 

  9606.         adoxq	%rdx, %r10
    9607. 

  9607.         # A[3] * B[1]
    9608. 

  9608.         movq	8(%rbx), %rdx
    9609. 

  9609.         adoxq	%rax, %r11
    9610. 

  9610.         mulxq	24(%rsi), %rax, %rcx
    9611. 

  9611.         adcxq	%rax, %r12
    9612. 

  9612.         # A[2] * B[2]
    9613. 

  9613.         movq	16(%rbx), %rdx
    9614. 

  9614.         mulxq	16(%rsi), %rdx, %rax
    9615. 

  9615.         adcxq	%rcx, %r13
    9616. 

  9616.         adoxq	%rdx, %r12
    9617. 

  9617.         # A[3] * B[3]
    9618. 

  9618.         movq	24(%rbx), %rdx
    9619. 

  9619.         adoxq	%rax, %r13
    9620. 

  9620.         mulxq	24(%rsi), %rax, %rcx
    9621. 

  9621.         adoxq	%r15, %r14
    9622. 

  9622.         adcxq	%rax, %r14
    9623. 

  9623.         # A[0] * B[3]
    9624. 

  9624.         mulxq	(%rsi), %rdx, %rax
    9625. 

  9625.         adcxq	%rcx, %r15
    9626. 

  9626.         xorq	%rcx, %rcx
    9627. 

  9627.         adcxq	%rdx, %r11
    9628. 

  9628.         # A[3] * B[0]
    9629. 

  9629.         movq	(%rbx), %rdx
    9630. 

  9630.         adcxq	%rax, %r12
    9631. 

  9631.         mulxq	24(%rsi), %rdx, %rax
    9632. 

  9632.         adoxq	%rdx, %r11
    9633. 

  9633.         adoxq	%rax, %r12
    9634. 

  9634.         # A[2] * B[3]
    9635. 

  9635.         movq	24(%rbx), %rdx
    9636. 

  9636.         mulxq	16(%rsi), %rdx, %rax
    9637. 

  9637.         adcxq	%rdx, %r13
    9638. 

  9638.         # A[3] * B[2]
    9639. 

  9639.         movq	16(%rbx), %rdx
    9640. 

  9640.         adcxq	%rax, %r14
    9641. 

  9641.         mulxq	24(%rsi), %rax, %rdx
    9642. 

  9642.         adcxq	%rcx, %r15
    9643. 

  9643.         adoxq	%rax, %r13
    9644. 

  9644.         adoxq	%rdx, %r14
    9645. 

  9645.         adoxq	%rcx, %r15
    9646. 

  9646.         # Reduce
    9647. 

  9647.         movq	$0x7fffffffffffffff, %rcx
    9648. 

  9648.         #  Move top half into t4-t7 and remove top bit from t3
    9649. 

  9649.         shldq	$0x01, %r14, %r15
    9650. 

  9650.         shldq	$0x01, %r13, %r14
    9651. 

  9651.         shldq	$0x01, %r12, %r13
    9652. 

  9652.         shldq	$0x01, %r11, %r12
    9653. 

  9653.         andq	%rcx, %r11
    9654. 

  9654.         #  Multiply top half by 19
    9655. 

  9655.         movq	$19, %rdx
    9656. 

  9656.         xorq	%rcx, %rcx
    9657. 

  9657.         mulxq	%r12, %rax, %r12
    9658. 

  9658.         adcxq	%rax, %r8
    9659. 

  9659.         adoxq	%r12, %r9
    9660. 

  9660.         mulxq	%r13, %rax, %r13
    9661. 

  9661.         adcxq	%rax, %r9
    9662. 

  9662.         adoxq	%r13, %r10
    9663. 

  9663.         mulxq	%r14, %rax, %r14
    9664. 

  9664.         adcxq	%rax, %r10
    9665. 

  9665.         adoxq	%r14, %r11
    9666. 

  9666.         mulxq	%r15, %r15, %rdx
    9667. 

  9667.         adcxq	%r15, %r11
    9668. 

  9668.         adoxq	%rcx, %rdx
    9669. 

  9669.         adcxq	%rcx, %rdx
    9670. 

  9670.         #  Overflow
    9671. 

  9671.         shldq	$0x01, %r11, %rdx
    9672. 

  9672.         movq	$0x7fffffffffffffff, %rcx
    9673. 

  9673.         imulq	$19, %rdx, %rax
    9674. 

  9674.         andq	%rcx, %r11
    9675. 

  9675.         addq	%rax, %r8
    9676. 

  9676.         adcq	$0x00, %r9
    9677. 

  9677.         adcq	$0x00, %r10
    9678. 

  9678.         adcq	$0x00, %r11
    9679. 

  9679.         # Reduce if top bit set
    9680. 

  9680.         movq	%r11, %rdx
    9681. 

  9681.         sarq	$63, %rdx
    9682. 

  9682.         andq	$19, %rdx
    9683. 

  9683.         andq	%rcx, %r11
    9684. 

  9684.         addq	%rdx, %r8
    9685. 

  9685.         adcq	$0x00, %r9
    9686. 

  9686.         adcq	$0x00, %r10
    9687. 

  9687.         adcq	$0x00, %r11
    9688. 

  9688.         # Store
    9689. 

  9689.         movq	%r8, (%rdi)
    9690. 

  9690.         movq	%r9, 8(%rdi)
    9691. 

  9691.         movq	%r10, 16(%rdi)
    9692. 

  9692.         movq	%r11, 24(%rdi)
    9693. 

  9693.         popq	%rbx
    9694. 

  9694.         popq	%r15
    9695. 

  9695.         popq	%r14
    9696. 

  9696.         popq	%r13
    9697. 

  9697.         popq	%r12
    9698. 

  9698.         repz retq
    9699. 

  9699. #ifndef __APPLE__
    9700. 

  9700. .size	fe_mul_avx2,.-fe_mul_avx2
    9701. 

  9701. #endif /* __APPLE__ */
    9702. 

  9702. #ifndef __APPLE__
    9703. 

  9703. .text
    9704. 

  9704. .globl	fe_sq_avx2
    9705. 

  9705. .type	fe_sq_avx2,@function
    9706. 

  9706. .align	16
    9707. 

  9707. fe_sq_avx2:
    9708. 

  9708. #else
    9709. 

  9709. .section	__TEXT,__text
    9710. 

  9710. .globl	_fe_sq_avx2
    9711. 

  9711. .p2align	4
    9712. 

  9712. _fe_sq_avx2:
    9713. 

  9713. #endif /* __APPLE__ */
    9714. 

  9714.         pushq	%rbx
    9715. 

  9715.         pushq	%r12
    9716. 

  9716.         pushq	%r13
    9717. 

  9717.         pushq	%r14
    9718. 

  9718.         pushq	%r15
    9719. 

  9719.         # Square
    9720. 

  9720.         # A[0] * A[1]
    9721. 

  9721.         movq	(%rsi), %rdx
    9722. 

  9722.         mulxq	8(%rsi), %r9, %r10
    9723. 

  9723.         # A[0] * A[3]
    9724. 

  9724.         mulxq	24(%rsi), %r11, %r12
    9725. 

  9725.         # A[2] * A[1]
    9726. 

  9726.         movq	16(%rsi), %rdx
    9727. 

  9727.         mulxq	8(%rsi), %rcx, %rbx
    9728. 

  9728.         xorq	%r15, %r15
    9729. 

  9729.         adoxq	%rcx, %r11
    9730. 

  9730.         # A[2] * A[3]
    9731. 

  9731.         mulxq	24(%rsi), %r13, %r14
    9732. 

  9732.         adoxq	%rbx, %r12
    9733. 

  9733.         # A[2] * A[0]
    9734. 

  9734.         mulxq	(%rsi), %rcx, %rbx
    9735. 

  9735.         adoxq	%r15, %r13
    9736. 

  9736.         adcxq	%rcx, %r10
    9737. 

  9737.         adoxq	%r15, %r14
    9738. 

  9738.         # A[1] * A[3]
    9739. 

  9739.         movq	8(%rsi), %rdx
    9740. 

  9740.         mulxq	24(%rsi), %rax, %r8
    9741. 

  9741.         adcxq	%rbx, %r11
    9742. 

  9742.         adcxq	%rax, %r12
    9743. 

  9743.         adcxq	%r8, %r13
    9744. 

  9744.         adcxq	%r15, %r14
    9745. 

  9745.         # Double with Carry Flag
    9746. 

  9746.         xorq	%r15, %r15
    9747. 

  9747.         # A[0] * A[0]
    9748. 

  9748.         movq	(%rsi), %rdx
    9749. 

  9749.         mulxq	%rdx, %r8, %rax
    9750. 

  9750.         adcxq	%r9, %r9
    9751. 

  9751.         # A[1] * A[1]
    9752. 

  9752.         movq	8(%rsi), %rdx
    9753. 

  9753.         mulxq	%rdx, %rcx, %rbx
    9754. 

  9754.         adcxq	%r10, %r10
    9755. 

  9755.         adoxq	%rax, %r9
    9756. 

  9756.         adcxq	%r11, %r11
    9757. 

  9757.         adoxq	%rcx, %r10
    9758. 

  9758.         # A[2] * A[2]
    9759. 

  9759.         movq	16(%rsi), %rdx
    9760. 

  9760.         mulxq	%rdx, %rax, %rcx
    9761. 

  9761.         adcxq	%r12, %r12
    9762. 

  9762.         adoxq	%rbx, %r11
    9763. 

  9763.         adcxq	%r13, %r13
    9764. 

  9764.         adoxq	%rax, %r12
    9765. 

  9765.         # A[3] * A[3]
    9766. 

  9766.         movq	24(%rsi), %rdx
    9767. 

  9767.         mulxq	%rdx, %rax, %rbx
    9768. 

  9768.         adcxq	%r14, %r14
    9769. 

  9769.         adoxq	%rcx, %r13
    9770. 

  9770.         adcxq	%r15, %r15
    9771. 

  9771.         adoxq	%rax, %r14
    9772. 

  9772.         adoxq	%rbx, %r15
    9773. 

  9773.         # Reduce
    9774. 

  9774.         movq	$0x7fffffffffffffff, %rcx
    9775. 

  9775.         #  Move top half into t4-t7 and remove top bit from t3
    9776. 

  9776.         shldq	$0x01, %r14, %r15
    9777. 

  9777.         shldq	$0x01, %r13, %r14
    9778. 

  9778.         shldq	$0x01, %r12, %r13
    9779. 

  9779.         shldq	$0x01, %r11, %r12
    9780. 

  9780.         andq	%rcx, %r11
    9781. 

  9781.         #  Multiply top half by 19
    9782. 

  9782.         movq	$19, %rdx
    9783. 

  9783.         xorq	%rcx, %rcx
    9784. 

  9784.         mulxq	%r12, %rax, %r12
    9785. 

  9785.         adcxq	%rax, %r8
    9786. 

  9786.         adoxq	%r12, %r9
    9787. 

  9787.         mulxq	%r13, %rax, %r13
    9788. 

  9788.         adcxq	%rax, %r9
    9789. 

  9789.         adoxq	%r13, %r10
    9790. 

  9790.         mulxq	%r14, %rax, %r14
    9791. 

  9791.         adcxq	%rax, %r10
    9792. 

  9792.         adoxq	%r14, %r11
    9793. 

  9793.         mulxq	%r15, %r15, %rdx
    9794. 

  9794.         adcxq	%r15, %r11
    9795. 

  9795.         adoxq	%rcx, %rdx
    9796. 

  9796.         adcxq	%rcx, %rdx
    9797. 

  9797.         #  Overflow
    9798. 

  9798.         shldq	$0x01, %r11, %rdx
    9799. 

  9799.         movq	$0x7fffffffffffffff, %rcx
    9800. 

  9800.         imulq	$19, %rdx, %rax
    9801. 

  9801.         andq	%rcx, %r11
    9802. 

  9802.         addq	%rax, %r8
    9803. 

  9803.         adcq	$0x00, %r9
    9804. 

  9804.         adcq	$0x00, %r10
    9805. 

  9805.         adcq	$0x00, %r11
    9806. 

  9806.         # Reduce if top bit set
    9807. 

  9807.         movq	%r11, %rdx
    9808. 

  9808.         sarq	$63, %rdx
    9809. 

  9809.         andq	$19, %rdx
    9810. 

  9810.         andq	%rcx, %r11
    9811. 

  9811.         addq	%rdx, %r8
    9812. 

  9812.         adcq	$0x00, %r9
    9813. 

  9813.         adcq	$0x00, %r10
    9814. 

  9814.         adcq	$0x00, %r11
    9815. 

  9815.         # Store
    9816. 

  9816.         movq	%r8, (%rdi)
    9817. 

  9817.         movq	%r9, 8(%rdi)
    9818. 

  9818.         movq	%r10, 16(%rdi)
    9819. 

  9819.         movq	%r11, 24(%rdi)
    9820. 

  9820.         popq	%r15
    9821. 

  9821.         popq	%r14
    9822. 

  9822.         popq	%r13
    9823. 

  9823.         popq	%r12
    9824. 

  9824.         popq	%rbx
    9825. 

  9825.         repz retq
    9826. 

  9826. #ifndef __APPLE__
    9827. 

  9827. .size	fe_sq_avx2,.-fe_sq_avx2
    9828. 

  9828. #endif /* __APPLE__ */
    9829. 

  9829. #ifndef __APPLE__
    9830. 

  9830. .text
    9831. 

  9831. .globl	fe_sq_n_avx2
    9832. 

  9832. .type	fe_sq_n_avx2,@function
    9833. 

  9833. .align	16
    9834. 

  9834. fe_sq_n_avx2:
    9835. 

  9835. #else
    9836. 

  9836. .section	__TEXT,__text
    9837. 

  9837. .globl	_fe_sq_n_avx2
    9838. 

  9838. .p2align	4
    9839. 

  9839. _fe_sq_n_avx2:
    9840. 

  9840. #endif /* __APPLE__ */
    9841. 

  9841.         pushq	%rbx
    9842. 

  9842.         pushq	%r12
    9843. 

  9843.         pushq	%r13
    9844. 

  9844.         pushq	%r14
    9845. 

  9845.         pushq	%r15
    9846. 

  9846.         pushq	%rbp
    9847. 

  9847.         movq	%rdx, %rbp
    9848. 

  9848. L_fe_sq_n_avx2:
    9849. 

  9849.         # Square
    9850. 

  9850.         # A[0] * A[1]
    9851. 

  9851.         movq	(%rsi), %rdx
    9852. 

  9852.         mulxq	8(%rsi), %r9, %r10
    9853. 

  9853.         # A[0] * A[3]
    9854. 

  9854.         mulxq	24(%rsi), %r11, %r12
    9855. 

  9855.         # A[2] * A[1]
    9856. 

  9856.         movq	16(%rsi), %rdx
    9857. 

  9857.         mulxq	8(%rsi), %rcx, %rbx
    9858. 

  9858.         xorq	%r15, %r15
    9859. 

  9859.         adoxq	%rcx, %r11
    9860. 

  9860.         # A[2] * A[3]
    9861. 

  9861.         mulxq	24(%rsi), %r13, %r14
    9862. 

  9862.         adoxq	%rbx, %r12
    9863. 

  9863.         # A[2] * A[0]
    9864. 

  9864.         mulxq	(%rsi), %rcx, %rbx
    9865. 

  9865.         adoxq	%r15, %r13
    9866. 

  9866.         adcxq	%rcx, %r10
    9867. 

  9867.         adoxq	%r15, %r14
    9868. 

  9868.         # A[1] * A[3]
    9869. 

  9869.         movq	8(%rsi), %rdx
    9870. 

  9870.         mulxq	24(%rsi), %rax, %r8
    9871. 

  9871.         adcxq	%rbx, %r11
    9872. 

  9872.         adcxq	%rax, %r12
    9873. 

  9873.         adcxq	%r8, %r13
    9874. 

  9874.         adcxq	%r15, %r14
    9875. 

  9875.         # Double with Carry Flag
    9876. 

  9876.         xorq	%r15, %r15
    9877. 

  9877.         # A[0] * A[0]
    9878. 

  9878.         movq	(%rsi), %rdx
    9879. 

  9879.         mulxq	%rdx, %r8, %rax
    9880. 

  9880.         adcxq	%r9, %r9
    9881. 

  9881.         # A[1] * A[1]
    9882. 

  9882.         movq	8(%rsi), %rdx
    9883. 

  9883.         mulxq	%rdx, %rcx, %rbx
    9884. 

  9884.         adcxq	%r10, %r10
    9885. 

  9885.         adoxq	%rax, %r9
    9886. 

  9886.         adcxq	%r11, %r11
    9887. 

  9887.         adoxq	%rcx, %r10
    9888. 

  9888.         # A[2] * A[2]
    9889. 

  9889.         movq	16(%rsi), %rdx
    9890. 

  9890.         mulxq	%rdx, %rax, %rcx
    9891. 

  9891.         adcxq	%r12, %r12
    9892. 

  9892.         adoxq	%rbx, %r11
    9893. 

  9893.         adcxq	%r13, %r13
    9894. 

  9894.         adoxq	%rax, %r12
    9895. 

  9895.         # A[3] * A[3]
    9896. 

  9896.         movq	24(%rsi), %rdx
    9897. 

  9897.         mulxq	%rdx, %rax, %rbx
    9898. 

  9898.         adcxq	%r14, %r14
    9899. 

  9899.         adoxq	%rcx, %r13
    9900. 

  9900.         adcxq	%r15, %r15
    9901. 

  9901.         adoxq	%rax, %r14
    9902. 

  9902.         adoxq	%rbx, %r15
    9903. 

  9903.         # Reduce
    9904. 

  9904.         movq	$0x7fffffffffffffff, %rcx
    9905. 

  9905.         #  Move top half into t4-t7 and remove top bit from t3
    9906. 

  9906.         shldq	$0x01, %r14, %r15
    9907. 

  9907.         shldq	$0x01, %r13, %r14
    9908. 

  9908.         shldq	$0x01, %r12, %r13
    9909. 

  9909.         shldq	$0x01, %r11, %r12
    9910. 

  9910.         andq	%rcx, %r11
    9911. 

  9911.         #  Multiply top half by 19
    9912. 

  9912.         movq	$19, %rdx
    9913. 

  9913.         xorq	%rcx, %rcx
    9914. 

  9914.         mulxq	%r12, %rax, %r12
    9915. 

  9915.         adcxq	%rax, %r8
    9916. 

  9916.         adoxq	%r12, %r9
    9917. 

  9917.         mulxq	%r13, %rax, %r13
    9918. 

  9918.         adcxq	%rax, %r9
    9919. 

  9919.         adoxq	%r13, %r10
    9920. 

  9920.         mulxq	%r14, %rax, %r14
    9921. 

  9921.         adcxq	%rax, %r10
    9922. 

  9922.         adoxq	%r14, %r11
    9923. 

  9923.         mulxq	%r15, %r15, %rdx
    9924. 

  9924.         adcxq	%r15, %r11
    9925. 

  9925.         adoxq	%rcx, %rdx
    9926. 

  9926.         adcxq	%rcx, %rdx
    9927. 

  9927.         #  Overflow
    9928. 

  9928.         shldq	$0x01, %r11, %rdx
    9929. 

  9929.         movq	$0x7fffffffffffffff, %rcx
    9930. 

  9930.         imulq	$19, %rdx, %rax
    9931. 

  9931.         andq	%rcx, %r11
    9932. 

  9932.         addq	%rax, %r8
    9933. 

  9933.         adcq	$0x00, %r9
    9934. 

  9934.         adcq	$0x00, %r10
    9935. 

  9935.         adcq	$0x00, %r11
    9936. 

  9936.         # Reduce if top bit set
    9937. 

  9937.         movq	%r11, %rdx
    9938. 

  9938.         sarq	$63, %rdx
    9939. 

  9939.         andq	$19, %rdx
    9940. 

  9940.         andq	%rcx, %r11
    9941. 

  9941.         addq	%rdx, %r8
    9942. 

  9942.         adcq	$0x00, %r9
    9943. 

  9943.         adcq	$0x00, %r10
    9944. 

  9944.         adcq	$0x00, %r11
    9945. 

  9945.         # Store
    9946. 

  9946.         movq	%r8, (%rdi)
    9947. 

  9947.         movq	%r9, 8(%rdi)
    9948. 

  9948.         movq	%r10, 16(%rdi)
    9949. 

  9949.         movq	%r11, 24(%rdi)
    9950. 

  9950.         decb	%bpl
    9951. 

  9951.         jnz	L_fe_sq_n_avx2
    9952. 

  9952.         popq	%rbp
    9953. 

  9953.         popq	%r15
    9954. 

  9954.         popq	%r14
    9955. 

  9955.         popq	%r13
    9956. 

  9956.         popq	%r12
    9957. 

  9957.         popq	%rbx
    9958. 

  9958.         repz retq
    9959. 

  9959. #ifndef __APPLE__
    9960. 

  9960. .size	fe_sq_n_avx2,.-fe_sq_n_avx2
    9961. 

  9961. #endif /* __APPLE__ */
    9962. 

  9962. #ifndef __APPLE__
    9963. 

  9963. .text
    9964. 

  9964. .globl	fe_mul121666_avx2
    9965. 

  9965. .type	fe_mul121666_avx2,@function
    9966. 

  9966. .align	16
    9967. 

  9967. fe_mul121666_avx2:
    9968. 

  9968. #else
    9969. 

  9969. .section	__TEXT,__text
    9970. 

  9970. .globl	_fe_mul121666_avx2
    9971. 

  9971. .p2align	4
    9972. 

  9972. _fe_mul121666_avx2:
    9973. 

  9973. #endif /* __APPLE__ */
    9974. 

  9974.         pushq	%r12
    9975. 

  9975.         pushq	%r13
    9976. 

  9976.         movq	$0x1db42, %rdx
    9977. 

  9977.         mulxq	(%rsi), %rax, %r13
    9978. 

  9978.         mulxq	8(%rsi), %rcx, %r12
    9979. 

  9979.         mulxq	16(%rsi), %r8, %r11
    9980. 

  9980.         mulxq	24(%rsi), %r9, %r10
    9981. 

  9981.         addq	%r13, %rcx
    9982. 

  9982.         adcq	%r12, %r8
    9983. 

  9983.         adcq	%r11, %r9
    9984. 

  9984.         adcq	$0x00, %r10
    9985. 

  9985.         movq	$0x7fffffffffffffff, %r13
    9986. 

  9986.         shldq	$0x01, %r9, %r10
    9987. 

  9987.         andq	%r13, %r9
    9988. 

  9988.         imulq	$19, %r10, %r10
    9989. 

  9989.         addq	%r10, %rax
    9990. 

  9990.         adcq	$0x00, %rcx
    9991. 

  9991.         adcq	$0x00, %r8
    9992. 

  9992.         adcq	$0x00, %r9
    9993. 

  9993.         movq	%rax, (%rdi)
    9994. 

  9994.         movq	%rcx, 8(%rdi)
    9995. 

  9995.         movq	%r8, 16(%rdi)
    9996. 

  9996.         movq	%r9, 24(%rdi)
    9997. 

  9997.         popq	%r13
    9998. 

  9998.         popq	%r12
    9999. 

  9999.         repz retq
    10000. 

  10000. #ifndef __APPLE__
    10001. 

  10001. .size	fe_mul121666_avx2,.-fe_mul121666_avx2
    10002. 

  10002. #endif /* __APPLE__ */
    10003. 

  10003. #ifndef __APPLE__
    10004. 

  10004. .text
    10005. 

  10005. .globl	fe_sq2_avx2
    10006. 

  10006. .type	fe_sq2_avx2,@function
    10007. 

  10007. .align	16
    10008. 

  10008. fe_sq2_avx2:
    10009. 

  10009. #else
    10010. 

  10010. .section	__TEXT,__text
    10011. 

  10011. .globl	_fe_sq2_avx2
    10012. 

  10012. .p2align	4
    10013. 

  10013. _fe_sq2_avx2:
    10014. 

  10014. #endif /* __APPLE__ */
    10015. 

  10015.         pushq	%rbx
    10016. 

  10016.         pushq	%r12
    10017. 

  10017.         pushq	%r13
    10018. 

  10018.         pushq	%r14
    10019. 

  10019.         pushq	%r15
    10020. 

  10020.         # Square * 2
    10021. 

  10021.         # A[0] * A[1]
    10022. 

  10022.         movq	(%rsi), %rdx
    10023. 

  10023.         mulxq	8(%rsi), %r9, %r10
    10024. 

  10024.         # A[0] * A[3]
    10025. 

  10025.         mulxq	24(%rsi), %r11, %r12
    10026. 

  10026.         # A[2] * A[1]
    10027. 

  10027.         movq	16(%rsi), %rdx
    10028. 

  10028.         mulxq	8(%rsi), %rcx, %rbx
    10029. 

  10029.         xorq	%r15, %r15
    10030. 

  10030.         adoxq	%rcx, %r11
    10031. 

  10031.         # A[2] * A[3]
    10032. 

  10032.         mulxq	24(%rsi), %r13, %r14
    10033. 

  10033.         adoxq	%rbx, %r12
    10034. 

  10034.         # A[2] * A[0]
    10035. 

  10035.         mulxq	(%rsi), %rcx, %rbx
    10036. 

  10036.         adoxq	%r15, %r13
    10037. 

  10037.         adcxq	%rcx, %r10
    10038. 

  10038.         adoxq	%r15, %r14
    10039. 

  10039.         # A[1] * A[3]
    10040. 

  10040.         movq	8(%rsi), %rdx
    10041. 

  10041.         mulxq	24(%rsi), %rax, %r8
    10042. 

  10042.         adcxq	%rbx, %r11
    10043. 

  10043.         adcxq	%rax, %r12
    10044. 

  10044.         adcxq	%r8, %r13
    10045. 

  10045.         adcxq	%r15, %r14
    10046. 

  10046.         # Double with Carry Flag
    10047. 

  10047.         xorq	%r15, %r15
    10048. 

  10048.         # A[0] * A[0]
    10049. 

  10049.         movq	(%rsi), %rdx
    10050. 

  10050.         mulxq	%rdx, %r8, %rax
    10051. 

  10051.         adcxq	%r9, %r9
    10052. 

  10052.         # A[1] * A[1]
    10053. 

  10053.         movq	8(%rsi), %rdx
    10054. 

  10054.         mulxq	%rdx, %rcx, %rbx
    10055. 

  10055.         adcxq	%r10, %r10
    10056. 

  10056.         adoxq	%rax, %r9
    10057. 

  10057.         adcxq	%r11, %r11
    10058. 

  10058.         adoxq	%rcx, %r10
    10059. 

  10059.         # A[2] * A[2]
    10060. 

  10060.         movq	16(%rsi), %rdx
    10061. 

  10061.         mulxq	%rdx, %rax, %rcx
    10062. 

  10062.         adcxq	%r12, %r12
    10063. 

  10063.         adoxq	%rbx, %r11
    10064. 

  10064.         adcxq	%r13, %r13
    10065. 

  10065.         adoxq	%rax, %r12
    10066. 

  10066.         # A[3] * A[3]
    10067. 

  10067.         movq	24(%rsi), %rdx
    10068. 

  10068.         mulxq	%rdx, %rax, %rbx
    10069. 

  10069.         adcxq	%r14, %r14
    10070. 

  10070.         adoxq	%rcx, %r13
    10071. 

  10071.         adcxq	%r15, %r15
    10072. 

  10072.         adoxq	%rax, %r14
    10073. 

  10073.         adoxq	%rbx, %r15
    10074. 

  10074.         # Reduce
    10075. 

  10075.         movq	$0x7fffffffffffffff, %rbx
    10076. 

  10076.         xorq	%rax, %rax
    10077. 

  10077.         #  Move top half into t4-t7 and remove top bit from t3 and double
    10078. 

  10078.         shldq	$3, %r15, %rax
    10079. 

  10079.         shldq	$2, %r14, %r15
    10080. 

  10080.         shldq	$2, %r13, %r14
    10081. 

  10081.         shldq	$2, %r12, %r13
    10082. 

  10082.         shldq	$2, %r11, %r12
    10083. 

  10083.         shldq	$0x01, %r10, %r11
    10084. 

  10084.         shldq	$0x01, %r9, %r10
    10085. 

  10085.         shldq	$0x01, %r8, %r9
    10086. 

  10086.         shlq	$0x01, %r8
    10087. 

  10087.         andq	%rbx, %r11
    10088. 

  10088.         #  Two out left, one in right
    10089. 

  10089.         andq	%rbx, %r15
    10090. 

  10090.         #  Multiply top bits by 19*19
    10091. 

  10091.         imulq	$0x169, %rax, %rcx
    10092. 

  10092.         xorq	%rbx, %rbx
    10093. 

  10093.         #  Multiply top half by 19
    10094. 

  10094.         movq	$19, %rdx
    10095. 

  10095.         adoxq	%rcx, %r8
    10096. 

  10096.         mulxq	%r12, %rax, %r12
    10097. 

  10097.         adcxq	%rax, %r8
    10098. 

  10098.         adoxq	%r12, %r9
    10099. 

  10099.         mulxq	%r13, %rax, %r13
    10100. 

  10100.         adcxq	%rax, %r9
    10101. 

  10101.         adoxq	%r13, %r10
    10102. 

  10102.         mulxq	%r14, %rax, %r14
    10103. 

  10103.         adcxq	%rax, %r10
    10104. 

  10104.         adoxq	%r14, %r11
    10105. 

  10105.         mulxq	%r15, %r15, %rdx
    10106. 

  10106.         adcxq	%r15, %r11
    10107. 

  10107.         adoxq	%rbx, %rdx
    10108. 

  10108.         adcxq	%rbx, %rdx
    10109. 

  10109.         #  Overflow
    10110. 

  10110.         shldq	$0x01, %r11, %rdx
    10111. 

  10111.         movq	$0x7fffffffffffffff, %rbx
    10112. 

  10112.         imulq	$19, %rdx, %rax
    10113. 

  10113.         andq	%rbx, %r11
    10114. 

  10114.         addq	%rax, %r8
    10115. 

  10115.         adcq	$0x00, %r9
    10116. 

  10116.         adcq	$0x00, %r10
    10117. 

  10117.         adcq	$0x00, %r11
    10118. 

  10118.         # Reduce if top bit set
    10119. 

  10119.         movq	%r11, %rdx
    10120. 

  10120.         sarq	$63, %rdx
    10121. 

  10121.         andq	$19, %rdx
    10122. 

  10122.         andq	%rbx, %r11
    10123. 

  10123.         addq	%rdx, %r8
    10124. 

  10124.         adcq	$0x00, %r9
    10125. 

  10125.         adcq	$0x00, %r10
    10126. 

  10126.         adcq	$0x00, %r11
    10127. 

  10127.         # Store
    10128. 

  10128.         movq	%r8, (%rdi)
    10129. 

  10129.         movq	%r9, 8(%rdi)
    10130. 

  10130.         movq	%r10, 16(%rdi)
    10131. 

  10131.         movq	%r11, 24(%rdi)
    10132. 

  10132.         popq	%r15
    10133. 

  10133.         popq	%r14
    10134. 

  10134.         popq	%r13
    10135. 

  10135.         popq	%r12
    10136. 

  10136.         popq	%rbx
    10137. 

  10137.         repz retq
    10138. 

  10138. #ifndef __APPLE__
    10139. 

  10139. .size	fe_sq2_avx2,.-fe_sq2_avx2
    10140. 

  10140. #endif /* __APPLE__ */
    10141. 

  10141. #ifndef __APPLE__
    10142. 

  10142. .text
    10143. 

  10143. .globl	fe_invert_avx2
    10144. 

  10144. .type	fe_invert_avx2,@function
    10145. 

  10145. .align	16
    10146. 

  10146. fe_invert_avx2:
    10147. 

  10147. #else
    10148. 

  10148. .section	__TEXT,__text
    10149. 

  10149. .globl	_fe_invert_avx2
    10150. 

  10150. .p2align	4
    10151. 

  10151. _fe_invert_avx2:
    10152. 

  10152. #endif /* __APPLE__ */
    10153. 

  10153.         subq	$0x90, %rsp
    10154. 

  10154.         # Invert
    10155. 

  10155.         movq	%rdi, 128(%rsp)
    10156. 

  10156.         movq	%rsi, 136(%rsp)
    10157. 

  10157.         movq	%rsp, %rdi
    10158. 

  10158.         movq	136(%rsp), %rsi
    10159. 

  10159. #ifndef __APPLE__
    10160. 

  10160.         callq	fe_sq_avx2@plt
    10161. 

  10161. #else
    10162. 

  10162.         callq	_fe_sq_avx2
    10163. 

  10163. #endif /* __APPLE__ */
    10164. 

  10164.         leaq	32(%rsp), %rdi
    10165. 

  10165.         movq	%rsp, %rsi
    10166. 

  10166. #ifndef __APPLE__
    10167. 

  10167.         callq	fe_sq_avx2@plt
    10168. 

  10168. #else
    10169. 

  10169.         callq	_fe_sq_avx2
    10170. 

  10170. #endif /* __APPLE__ */
    10171. 

  10171.         leaq	32(%rsp), %rdi
    10172. 

  10172.         leaq	32(%rsp), %rsi
    10173. 

  10173. #ifndef __APPLE__
    10174. 

  10174.         callq	fe_sq_avx2@plt
    10175. 

  10175. #else
    10176. 

  10176.         callq	_fe_sq_avx2
    10177. 

  10177. #endif /* __APPLE__ */
    10178. 

  10178.         leaq	32(%rsp), %rdi
    10179. 

  10179.         movq	136(%rsp), %rsi
    10180. 

  10180.         leaq	32(%rsp), %rdx
    10181. 

  10181. #ifndef __APPLE__
    10182. 

  10182.         callq	fe_mul_avx2@plt
    10183. 

  10183. #else
    10184. 

  10184.         callq	_fe_mul_avx2
    10185. 

  10185. #endif /* __APPLE__ */
    10186. 

  10186.         movq	%rsp, %rdi
    10187. 

  10187.         movq	%rsp, %rsi
    10188. 

  10188.         leaq	32(%rsp), %rdx
    10189. 

  10189. #ifndef __APPLE__
    10190. 

  10190.         callq	fe_mul_avx2@plt
    10191. 

  10191. #else
    10192. 

  10192.         callq	_fe_mul_avx2
    10193. 

  10193. #endif /* __APPLE__ */
    10194. 

  10194.         leaq	64(%rsp), %rdi
    10195. 

  10195.         movq	%rsp, %rsi
    10196. 

  10196. #ifndef __APPLE__
    10197. 

  10197.         callq	fe_sq_avx2@plt
    10198. 

  10198. #else
    10199. 

  10199.         callq	_fe_sq_avx2
    10200. 

  10200. #endif /* __APPLE__ */
    10201. 

  10201.         leaq	32(%rsp), %rdi
    10202. 

  10202.         leaq	32(%rsp), %rsi
    10203. 

  10203.         leaq	64(%rsp), %rdx
    10204. 

  10204. #ifndef __APPLE__
    10205. 

  10205.         callq	fe_mul_avx2@plt
    10206. 

  10206. #else
    10207. 

  10207.         callq	_fe_mul_avx2
    10208. 

  10208. #endif /* __APPLE__ */
    10209. 

  10209.         leaq	64(%rsp), %rdi
    10210. 

  10210.         leaq	32(%rsp), %rsi
    10211. 

  10211. #ifndef __APPLE__
    10212. 

  10212.         callq	fe_sq_avx2@plt
    10213. 

  10213. #else
    10214. 

  10214.         callq	_fe_sq_avx2
    10215. 

  10215. #endif /* __APPLE__ */
    10216. 

  10216.         leaq	64(%rsp), %rdi
    10217. 

  10217.         leaq	64(%rsp), %rsi
    10218. 

  10218.         movq	$4, %rdx
    10219. 

  10219. #ifndef __APPLE__
    10220. 

  10220.         callq	fe_sq_n_avx2@plt
    10221. 

  10221. #else
    10222. 

  10222.         callq	_fe_sq_n_avx2
    10223. 

  10223. #endif /* __APPLE__ */
    10224. 

  10224.         leaq	32(%rsp), %rdi
    10225. 

  10225.         leaq	64(%rsp), %rsi
    10226. 

  10226.         leaq	32(%rsp), %rdx
    10227. 

  10227. #ifndef __APPLE__
    10228. 

  10228.         callq	fe_mul_avx2@plt
    10229. 

  10229. #else
    10230. 

  10230.         callq	_fe_mul_avx2
    10231. 

  10231. #endif /* __APPLE__ */
    10232. 

  10232.         leaq	64(%rsp), %rdi
    10233. 

  10233.         leaq	32(%rsp), %rsi
    10234. 

  10234. #ifndef __APPLE__
    10235. 

  10235.         callq	fe_sq_avx2@plt
    10236. 

  10236. #else
    10237. 

  10237.         callq	_fe_sq_avx2
    10238. 

  10238. #endif /* __APPLE__ */
    10239. 

  10239.         leaq	64(%rsp), %rdi
    10240. 

  10240.         leaq	64(%rsp), %rsi
    10241. 

  10241.         movq	$9, %rdx
    10242. 

  10242. #ifndef __APPLE__
    10243. 

  10243.         callq	fe_sq_n_avx2@plt
    10244. 

  10244. #else
    10245. 

  10245.         callq	_fe_sq_n_avx2
    10246. 

  10246. #endif /* __APPLE__ */
    10247. 

  10247.         leaq	64(%rsp), %rdi
    10248. 

  10248.         leaq	64(%rsp), %rsi
    10249. 

  10249.         leaq	32(%rsp), %rdx
    10250. 

  10250. #ifndef __APPLE__
    10251. 

  10251.         callq	fe_mul_avx2@plt
    10252. 

  10252. #else
    10253. 

  10253.         callq	_fe_mul_avx2
    10254. 

  10254. #endif /* __APPLE__ */
    10255. 

  10255.         leaq	96(%rsp), %rdi
    10256. 

  10256.         leaq	64(%rsp), %rsi
    10257. 

  10257. #ifndef __APPLE__
    10258. 

  10258.         callq	fe_sq_avx2@plt
    10259. 

  10259. #else
    10260. 

  10260.         callq	_fe_sq_avx2
    10261. 

  10261. #endif /* __APPLE__ */
    10262. 

  10262.         leaq	96(%rsp), %rdi
    10263. 

  10263.         leaq	96(%rsp), %rsi
    10264. 

  10264.         movq	$19, %rdx
    10265. 

  10265. #ifndef __APPLE__
    10266. 

  10266.         callq	fe_sq_n_avx2@plt
    10267. 

  10267. #else
    10268. 

  10268.         callq	_fe_sq_n_avx2
    10269. 

  10269. #endif /* __APPLE__ */
    10270. 

  10270.         leaq	64(%rsp), %rdi
    10271. 

  10271.         leaq	96(%rsp), %rsi
    10272. 

  10272.         leaq	64(%rsp), %rdx
    10273. 

  10273. #ifndef __APPLE__
    10274. 

  10274.         callq	fe_mul_avx2@plt
    10275. 

  10275. #else
    10276. 

  10276.         callq	_fe_mul_avx2
    10277. 

  10277. #endif /* __APPLE__ */
    10278. 

  10278.         leaq	64(%rsp), %rdi
    10279. 

  10279.         leaq	64(%rsp), %rsi
    10280. 

  10280. #ifndef __APPLE__
    10281. 

  10281.         callq	fe_sq_avx2@plt
    10282. 

  10282. #else
    10283. 

  10283.         callq	_fe_sq_avx2
    10284. 

  10284. #endif /* __APPLE__ */
    10285. 

  10285.         leaq	64(%rsp), %rdi
    10286. 

  10286.         leaq	64(%rsp), %rsi
    10287. 

  10287.         movq	$9, %rdx
    10288. 

  10288. #ifndef __APPLE__
    10289. 

  10289.         callq	fe_sq_n_avx2@plt
    10290. 

  10290. #else
    10291. 

  10291.         callq	_fe_sq_n_avx2
    10292. 

  10292. #endif /* __APPLE__ */
    10293. 

  10293.         leaq	32(%rsp), %rdi
    10294. 

  10294.         leaq	64(%rsp), %rsi
    10295. 

  10295.         leaq	32(%rsp), %rdx
    10296. 

  10296. #ifndef __APPLE__
    10297. 

  10297.         callq	fe_mul_avx2@plt
    10298. 

  10298. #else
    10299. 

  10299.         callq	_fe_mul_avx2
    10300. 

  10300. #endif /* __APPLE__ */
    10301. 

  10301.         leaq	64(%rsp), %rdi
    10302. 

  10302.         leaq	32(%rsp), %rsi
    10303. 

  10303. #ifndef __APPLE__
    10304. 

  10304.         callq	fe_sq_avx2@plt
    10305. 

  10305. #else
    10306. 

  10306.         callq	_fe_sq_avx2
    10307. 

  10307. #endif /* __APPLE__ */
    10308. 

  10308.         leaq	64(%rsp), %rdi
    10309. 

  10309.         leaq	64(%rsp), %rsi
    10310. 

  10310.         movq	$49, %rdx
    10311. 

  10311. #ifndef __APPLE__
    10312. 

  10312.         callq	fe_sq_n_avx2@plt
    10313. 

  10313. #else
    10314. 

  10314.         callq	_fe_sq_n_avx2
    10315. 

  10315. #endif /* __APPLE__ */
    10316. 

  10316.         leaq	64(%rsp), %rdi
    10317. 

  10317.         leaq	64(%rsp), %rsi
    10318. 

  10318.         leaq	32(%rsp), %rdx
    10319. 

  10319. #ifndef __APPLE__
    10320. 

  10320.         callq	fe_mul_avx2@plt
    10321. 

  10321. #else
    10322. 

  10322.         callq	_fe_mul_avx2
    10323. 

  10323. #endif /* __APPLE__ */
    10324. 

  10324.         leaq	96(%rsp), %rdi
    10325. 

  10325.         leaq	64(%rsp), %rsi
    10326. 

  10326. #ifndef __APPLE__
    10327. 

  10327.         callq	fe_sq_avx2@plt
    10328. 

  10328. #else
    10329. 

  10329.         callq	_fe_sq_avx2
    10330. 

  10330. #endif /* __APPLE__ */
    10331. 

  10331.         leaq	96(%rsp), %rdi
    10332. 

  10332.         leaq	96(%rsp), %rsi
    10333. 

  10333.         movq	$0x63, %rdx
    10334. 

  10334. #ifndef __APPLE__
    10335. 

  10335.         callq	fe_sq_n_avx2@plt
    10336. 

  10336. #else
    10337. 

  10337.         callq	_fe_sq_n_avx2
    10338. 

  10338. #endif /* __APPLE__ */
    10339. 

  10339.         leaq	64(%rsp), %rdi
    10340. 

  10340.         leaq	96(%rsp), %rsi
    10341. 

  10341.         leaq	64(%rsp), %rdx
    10342. 

  10342. #ifndef __APPLE__
    10343. 

  10343.         callq	fe_mul_avx2@plt
    10344. 

  10344. #else
    10345. 

  10345.         callq	_fe_mul_avx2
    10346. 

  10346. #endif /* __APPLE__ */
    10347. 

  10347.         leaq	64(%rsp), %rdi
    10348. 

  10348.         leaq	64(%rsp), %rsi
    10349. 

  10349. #ifndef __APPLE__
    10350. 

  10350.         callq	fe_sq_avx2@plt
    10351. 

  10351. #else
    10352. 

  10352.         callq	_fe_sq_avx2
    10353. 

  10353. #endif /* __APPLE__ */
    10354. 

  10354.         leaq	64(%rsp), %rdi
    10355. 

  10355.         leaq	64(%rsp), %rsi
    10356. 

  10356.         movq	$49, %rdx
    10357. 

  10357. #ifndef __APPLE__
    10358. 

  10358.         callq	fe_sq_n_avx2@plt
    10359. 

  10359. #else
    10360. 

  10360.         callq	_fe_sq_n_avx2
    10361. 

  10361. #endif /* __APPLE__ */
    10362. 

  10362.         leaq	32(%rsp), %rdi
    10363. 

  10363.         leaq	64(%rsp), %rsi
    10364. 

  10364.         leaq	32(%rsp), %rdx
    10365. 

  10365. #ifndef __APPLE__
    10366. 

  10366.         callq	fe_mul_avx2@plt
    10367. 

  10367. #else
    10368. 

  10368.         callq	_fe_mul_avx2
    10369. 

  10369. #endif /* __APPLE__ */
    10370. 

  10370.         leaq	32(%rsp), %rdi
    10371. 

  10371.         leaq	32(%rsp), %rsi
    10372. 

  10372. #ifndef __APPLE__
    10373. 

  10373.         callq	fe_sq_avx2@plt
    10374. 

  10374. #else
    10375. 

  10375.         callq	_fe_sq_avx2
    10376. 

  10376. #endif /* __APPLE__ */
    10377. 

  10377.         leaq	32(%rsp), %rdi
    10378. 

  10378.         leaq	32(%rsp), %rsi
    10379. 

  10379.         movq	$4, %rdx
    10380. 

  10380. #ifndef __APPLE__
    10381. 

  10381.         callq	fe_sq_n_avx2@plt
    10382. 

  10382. #else
    10383. 

  10383.         callq	_fe_sq_n_avx2
    10384. 

  10384. #endif /* __APPLE__ */
    10385. 

  10385.         movq	128(%rsp), %rdi
    10386. 

  10386.         leaq	32(%rsp), %rsi
    10387. 

  10387.         movq	%rsp, %rdx
    10388. 

  10388. #ifndef __APPLE__
    10389. 

  10389.         callq	fe_mul_avx2@plt
    10390. 

  10390. #else
    10391. 

  10391.         callq	_fe_mul_avx2
    10392. 

  10392. #endif /* __APPLE__ */
    10393. 

  10393.         movq	136(%rsp), %rsi
    10394. 

  10394.         movq	128(%rsp), %rdi
    10395. 

  10395.         addq	$0x90, %rsp
    10396. 

  10396.         repz retq
    10397. 

  10397. #ifndef __APPLE__
    10398. 

  10398. .text
    10399. 

  10399. .globl	curve25519_avx2
    10400. 

  10400. .type	curve25519_avx2,@function
    10401. 

  10401. .align	16
    10402. 

  10402. curve25519_avx2:
    10403. 

  10403. #else
    10404. 

  10404. .section	__TEXT,__text
    10405. 

  10405. .globl	_curve25519_avx2
    10406. 

  10406. .p2align	4
    10407. 

  10407. _curve25519_avx2:
    10408. 

  10408. #endif /* __APPLE__ */
    10409. 

  10409.         pushq	%rbx
    10410. 

  10410.         pushq	%r12
    10411. 

  10411.         pushq	%r13
    10412. 

  10412.         pushq	%r14
    10413. 

  10413.         pushq	%r15
    10414. 

  10414.         pushq	%rbp
    10415. 

  10415.         movq	%rdx, %r8
    10416. 

  10416.         subq	$0xc0, %rsp
    10417. 

  10417.         movq	$0x00, 184(%rsp)
    10418. 

  10418.         movq	%rdi, 176(%rsp)
    10419. 

  10419.         # Set one
    10420. 

  10420.         movq	$0x01, (%rdi)
    10421. 

  10421.         movq	$0x00, 8(%rdi)
    10422. 

  10422.         movq	$0x00, 16(%rdi)
    10423. 

  10423.         movq	$0x00, 24(%rdi)
    10424. 

  10424.         # Set zero
    10425. 

  10425.         movq	$0x00, (%rsp)
    10426. 

  10426.         movq	$0x00, 8(%rsp)
    10427. 

  10427.         movq	$0x00, 16(%rsp)
    10428. 

  10428.         movq	$0x00, 24(%rsp)
    10429. 

  10429.         # Set one
    10430. 

  10430.         movq	$0x01, 32(%rsp)
    10431. 

  10431.         movq	$0x00, 40(%rsp)
    10432. 

  10432.         movq	$0x00, 48(%rsp)
    10433. 

  10433.         movq	$0x00, 56(%rsp)
    10434. 

  10434.         # Copy
    10435. 

  10435.         movq	(%r8), %r9
    10436. 

  10436.         movq	8(%r8), %r10
    10437. 

  10437.         movq	16(%r8), %r11
    10438. 

  10438.         movq	24(%r8), %r12
    10439. 

  10439.         movq	%r9, 64(%rsp)
    10440. 

  10440.         movq	%r10, 72(%rsp)
    10441. 

  10441.         movq	%r11, 80(%rsp)
    10442. 

  10442.         movq	%r12, 88(%rsp)
    10443. 

  10443.         movb	$62, 168(%rsp)
    10444. 

  10444.         movq	$3, 160(%rsp)
    10445. 

  10445. L_curve25519_avx2_words:
    10446. 

  10446. L_curve25519_avx2_bits:
    10447. 

  10447.         movq	184(%rsp), %rbx
    10448. 

  10448.         movq	160(%rsp), %r9
    10449. 

  10449.         movb	168(%rsp), %cl
    10450. 

  10450.         movq	(%rsi,%r9,8), %rax
    10451. 

  10451.         shrq	%cl, %rax
    10452. 

  10452.         andq	$0x01, %rax
    10453. 

  10453.         xorq	%rax, %rbx
    10454. 

  10454.         negq	%rbx
    10455. 

  10455.         # Conditional Swap
    10456. 

  10456.         movq	(%rdi), %r9
    10457. 

  10457.         movq	8(%rdi), %r10
    10458. 

  10458.         movq	16(%rdi), %r11
    10459. 

  10459.         movq	24(%rdi), %r12
    10460. 

  10460.         xorq	64(%rsp), %r9
    10461. 

  10461.         xorq	72(%rsp), %r10
    10462. 

  10462.         xorq	80(%rsp), %r11
    10463. 

  10463.         xorq	88(%rsp), %r12
    10464. 

  10464.         andq	%rbx, %r9
    10465. 

  10465.         andq	%rbx, %r10
    10466. 

  10466.         andq	%rbx, %r11
    10467. 

  10467.         andq	%rbx, %r12
    10468. 

  10468.         xorq	%r9, (%rdi)
    10469. 

  10469.         xorq	%r10, 8(%rdi)
    10470. 

  10470.         xorq	%r11, 16(%rdi)
    10471. 

  10471.         xorq	%r12, 24(%rdi)
    10472. 

  10472.         xorq	%r9, 64(%rsp)
    10473. 

  10473.         xorq	%r10, 72(%rsp)
    10474. 

  10474.         xorq	%r11, 80(%rsp)
    10475. 

  10475.         xorq	%r12, 88(%rsp)
    10476. 

  10476.         # Conditional Swap
    10477. 

  10477.         movq	(%rsp), %r9
    10478. 

  10478.         movq	8(%rsp), %r10
    10479. 

  10479.         movq	16(%rsp), %r11
    10480. 

  10480.         movq	24(%rsp), %r12
    10481. 

  10481.         xorq	32(%rsp), %r9
    10482. 

  10482.         xorq	40(%rsp), %r10
    10483. 

  10483.         xorq	48(%rsp), %r11
    10484. 

  10484.         xorq	56(%rsp), %r12
    10485. 

  10485.         andq	%rbx, %r9
    10486. 

  10486.         andq	%rbx, %r10
    10487. 

  10487.         andq	%rbx, %r11
    10488. 

  10488.         andq	%rbx, %r12
    10489. 

  10489.         xorq	%r9, (%rsp)
    10490. 

  10490.         xorq	%r10, 8(%rsp)
    10491. 

  10491.         xorq	%r11, 16(%rsp)
    10492. 

  10492.         xorq	%r12, 24(%rsp)
    10493. 

  10493.         xorq	%r9, 32(%rsp)
    10494. 

  10494.         xorq	%r10, 40(%rsp)
    10495. 

  10495.         xorq	%r11, 48(%rsp)
    10496. 

  10496.         xorq	%r12, 56(%rsp)
    10497. 

  10497.         movq	%rax, 184(%rsp)
    10498. 

  10498.         # Add
    10499. 

  10499.         movq	(%rdi), %r9
    10500. 

  10500.         movq	8(%rdi), %r10
    10501. 

  10501.         movq	16(%rdi), %r11
    10502. 

  10502.         movq	24(%rdi), %rax
    10503. 

  10503.         movq	%r9, %r13
    10504. 

  10504.         addq	(%rsp), %r9
    10505. 

  10505.         movq	%r10, %r14
    10506. 

  10506.         adcq	8(%rsp), %r10
    10507. 

  10507.         movq	%r11, %r15
    10508. 

  10508.         adcq	16(%rsp), %r11
    10509. 

  10509.         movq	%rax, %rbp
    10510. 

  10510.         adcq	24(%rsp), %rax
    10511. 

  10511.         movq	$-19, %rcx
    10512. 

  10512.         movq	%rax, %r12
    10513. 

  10513.         movq	$0x7fffffffffffffff, %rbx
    10514. 

  10514.         sarq	$63, %rax
    10515. 

  10515.         #   Mask the modulus
    10516. 

  10516.         andq	%rax, %rcx
    10517. 

  10517.         andq	%rax, %rbx
    10518. 

  10518.         #   Sub modulus (if overflow)
    10519. 

  10519.         subq	%rcx, %r9
    10520. 

  10520.         sbbq	%rax, %r10
    10521. 

  10521.         sbbq	%rax, %r11
    10522. 

  10522.         sbbq	%rbx, %r12
    10523. 

  10523.         # Sub
    10524. 

  10524.         subq	(%rsp), %r13
    10525. 

  10525.         movq	$0x00, %rax
    10526. 

  10526.         sbbq	8(%rsp), %r14
    10527. 

  10527.         movq	$-19, %rcx
    10528. 

  10528.         sbbq	16(%rsp), %r15
    10529. 

  10529.         movq	$0x7fffffffffffffff, %rbx
    10530. 

  10530.         sbbq	24(%rsp), %rbp
    10531. 

  10531.         sbbq	$0x00, %rax
    10532. 

  10532.         #   Mask the modulus
    10533. 

  10533.         andq	%rax, %rcx
    10534. 

  10534.         andq	%rax, %rbx
    10535. 

  10535.         #   Add modulus (if underflow)
    10536. 

  10536.         addq	%rcx, %r13
    10537. 

  10537.         adcq	%rax, %r14
    10538. 

  10538.         adcq	%rax, %r15
    10539. 

  10539.         adcq	%rbx, %rbp
    10540. 

  10540.         movq	%r9, (%rdi)
    10541. 

  10541.         movq	%r10, 8(%rdi)
    10542. 

  10542.         movq	%r11, 16(%rdi)
    10543. 

  10543.         movq	%r12, 24(%rdi)
    10544. 

  10544.         movq	%r13, 128(%rsp)
    10545. 

  10545.         movq	%r14, 136(%rsp)
    10546. 

  10546.         movq	%r15, 144(%rsp)
    10547. 

  10547.         movq	%rbp, 152(%rsp)
    10548. 

  10548.         # Add
    10549. 

  10549.         movq	64(%rsp), %r9
    10550. 

  10550.         movq	72(%rsp), %r10
    10551. 

  10551.         movq	80(%rsp), %r11
    10552. 

  10552.         movq	88(%rsp), %rax
    10553. 

  10553.         movq	%r9, %r13
    10554. 

  10554.         addq	32(%rsp), %r9
    10555. 

  10555.         movq	%r10, %r14
    10556. 

  10556.         adcq	40(%rsp), %r10
    10557. 

  10557.         movq	%r11, %r15
    10558. 

  10558.         adcq	48(%rsp), %r11
    10559. 

  10559.         movq	%rax, %rbp
    10560. 

  10560.         adcq	56(%rsp), %rax
    10561. 

  10561.         movq	$-19, %rcx
    10562. 

  10562.         movq	%rax, %r12
    10563. 

  10563.         movq	$0x7fffffffffffffff, %rbx
    10564. 

  10564.         sarq	$63, %rax
    10565. 

  10565.         #   Mask the modulus
    10566. 

  10566.         andq	%rax, %rcx
    10567. 

  10567.         andq	%rax, %rbx
    10568. 

  10568.         #   Sub modulus (if overflow)
    10569. 

  10569.         subq	%rcx, %r9
    10570. 

  10570.         sbbq	%rax, %r10
    10571. 

  10571.         sbbq	%rax, %r11
    10572. 

  10572.         sbbq	%rbx, %r12
    10573. 

  10573.         # Sub
    10574. 

  10574.         subq	32(%rsp), %r13
    10575. 

  10575.         movq	$0x00, %rax
    10576. 

  10576.         sbbq	40(%rsp), %r14
    10577. 

  10577.         movq	$-19, %rcx
    10578. 

  10578.         sbbq	48(%rsp), %r15
    10579. 

  10579.         movq	$0x7fffffffffffffff, %rbx
    10580. 

  10580.         sbbq	56(%rsp), %rbp
    10581. 

  10581.         sbbq	$0x00, %rax
    10582. 

  10582.         #   Mask the modulus
    10583. 

  10583.         andq	%rax, %rcx
    10584. 

  10584.         andq	%rax, %rbx
    10585. 

  10585.         #   Add modulus (if underflow)
    10586. 

  10586.         addq	%rcx, %r13
    10587. 

  10587.         adcq	%rax, %r14
    10588. 

  10588.         adcq	%rax, %r15
    10589. 

  10589.         adcq	%rbx, %rbp
    10590. 

  10590.         movq	%r9, (%rsp)
    10591. 

  10591.         movq	%r10, 8(%rsp)
    10592. 

  10592.         movq	%r11, 16(%rsp)
    10593. 

  10593.         movq	%r12, 24(%rsp)
    10594. 

  10594.         movq	%r13, 96(%rsp)
    10595. 

  10595.         movq	%r14, 104(%rsp)
    10596. 

  10596.         movq	%r15, 112(%rsp)
    10597. 

  10597.         movq	%rbp, 120(%rsp)
    10598. 

  10598.         # Multiply
    10599. 

  10599.         # A[0] * B[0]
    10600. 

  10600.         movq	(%rdi), %rdx
    10601. 

  10601.         mulxq	96(%rsp), %r9, %r10
    10602. 

  10602.         # A[2] * B[0]
    10603. 

  10603.         mulxq	112(%rsp), %r11, %r12
    10604. 

  10604.         # A[1] * B[0]
    10605. 

  10605.         mulxq	104(%rsp), %rcx, %rbx
    10606. 

  10606.         xorq	%rbp, %rbp
    10607. 

  10607.         adcxq	%rcx, %r10
    10608. 

  10608.         # A[1] * B[3]
    10609. 

  10609.         movq	24(%rdi), %rdx
    10610. 

  10610.         mulxq	104(%rsp), %r13, %r14
    10611. 

  10611.         adcxq	%rbx, %r11
    10612. 

  10612.         # A[0] * B[1]
    10613. 

  10613.         movq	8(%rdi), %rdx
    10614. 

  10614.         mulxq	96(%rsp), %rcx, %rbx
    10615. 

  10615.         adoxq	%rcx, %r10
    10616. 

  10616.         # A[2] * B[1]
    10617. 

  10617.         mulxq	112(%rsp), %rcx, %r15
    10618. 

  10618.         adoxq	%rbx, %r11
    10619. 

  10619.         adcxq	%rcx, %r12
    10620. 

  10620.         # A[1] * B[2]
    10621. 

  10621.         movq	16(%rdi), %rdx
    10622. 

  10622.         mulxq	104(%rsp), %rcx, %rbx
    10623. 

  10623.         adcxq	%r15, %r13
    10624. 

  10624.         adoxq	%rcx, %r12
    10625. 

  10625.         adcxq	%rbp, %r14
    10626. 

  10626.         adoxq	%rbx, %r13
    10627. 

  10627.         # A[0] * B[2]
    10628. 

  10628.         mulxq	96(%rsp), %rcx, %rbx
    10629. 

  10629.         adoxq	%rbp, %r14
    10630. 

  10630.         xorq	%r15, %r15
    10631. 

  10631.         adcxq	%rcx, %r11
    10632. 

  10632.         # A[1] * B[1]
    10633. 

  10633.         movq	8(%rdi), %rdx
    10634. 

  10634.         mulxq	104(%rsp), %rdx, %rcx
    10635. 

  10635.         adcxq	%rbx, %r12
    10636. 

  10636.         adoxq	%rdx, %r11
    10637. 

  10637.         # A[3] * B[1]
    10638. 

  10638.         movq	8(%rdi), %rdx
    10639. 

  10639.         adoxq	%rcx, %r12
    10640. 

  10640.         mulxq	120(%rsp), %rcx, %rbx
    10641. 

  10641.         adcxq	%rcx, %r13
    10642. 

  10642.         # A[2] * B[2]
    10643. 

  10643.         movq	16(%rdi), %rdx
    10644. 

  10644.         mulxq	112(%rsp), %rdx, %rcx
    10645. 

  10645.         adcxq	%rbx, %r14
    10646. 

  10646.         adoxq	%rdx, %r13
    10647. 

  10647.         # A[3] * B[3]
    10648. 

  10648.         movq	24(%rdi), %rdx
    10649. 

  10649.         adoxq	%rcx, %r14
    10650. 

  10650.         mulxq	120(%rsp), %rcx, %rbx
    10651. 

  10651.         adoxq	%rbp, %r15
    10652. 

  10652.         adcxq	%rcx, %r15
    10653. 

  10653.         # A[0] * B[3]
    10654. 

  10654.         mulxq	96(%rsp), %rdx, %rcx
    10655. 

  10655.         adcxq	%rbx, %rbp
    10656. 

  10656.         xorq	%rbx, %rbx
    10657. 

  10657.         adcxq	%rdx, %r12
    10658. 

  10658.         # A[3] * B[0]
    10659. 

  10659.         movq	(%rdi), %rdx
    10660. 

  10660.         adcxq	%rcx, %r13
    10661. 

  10661.         mulxq	120(%rsp), %rdx, %rcx
    10662. 

  10662.         adoxq	%rdx, %r12
    10663. 

  10663.         adoxq	%rcx, %r13
    10664. 

  10664.         # A[2] * B[3]
    10665. 

  10665.         movq	24(%rdi), %rdx
    10666. 

  10666.         mulxq	112(%rsp), %rdx, %rcx
    10667. 

  10667.         adcxq	%rdx, %r14
    10668. 

  10668.         # A[3] * B[2]
    10669. 

  10669.         movq	16(%rdi), %rdx
    10670. 

  10670.         adcxq	%rcx, %r15
    10671. 

  10671.         mulxq	120(%rsp), %rcx, %rdx
    10672. 

  10672.         adcxq	%rbx, %rbp
    10673. 

  10673.         adoxq	%rcx, %r14
    10674. 

  10674.         adoxq	%rdx, %r15
    10675. 

  10675.         adoxq	%rbx, %rbp
    10676. 

  10676.         # Reduce
    10677. 

  10677.         movq	$0x7fffffffffffffff, %rbx
    10678. 

  10678.         #  Move top half into t4-t7 and remove top bit from t3
    10679. 

  10679.         shldq	$0x01, %r15, %rbp
    10680. 

  10680.         shldq	$0x01, %r14, %r15
    10681. 

  10681.         shldq	$0x01, %r13, %r14
    10682. 

  10682.         shldq	$0x01, %r12, %r13
    10683. 

  10683.         andq	%rbx, %r12
    10684. 

  10684.         #  Multiply top half by 19
    10685. 

  10685.         movq	$19, %rdx
    10686. 

  10686.         xorq	%rbx, %rbx
    10687. 

  10687.         mulxq	%r13, %rcx, %r13
    10688. 

  10688.         adcxq	%rcx, %r9
    10689. 

  10689.         adoxq	%r13, %r10
    10690. 

  10690.         mulxq	%r14, %rcx, %r14
    10691. 

  10691.         adcxq	%rcx, %r10
    10692. 

  10692.         adoxq	%r14, %r11
    10693. 

  10693.         mulxq	%r15, %rcx, %r15
    10694. 

  10694.         adcxq	%rcx, %r11
    10695. 

  10695.         adoxq	%r15, %r12
    10696. 

  10696.         mulxq	%rbp, %rbp, %rdx
    10697. 

  10697.         adcxq	%rbp, %r12
    10698. 

  10698.         adoxq	%rbx, %rdx
    10699. 

  10699.         adcxq	%rbx, %rdx
    10700. 

  10700.         #  Overflow
    10701. 

  10701.         shldq	$0x01, %r12, %rdx
    10702. 

  10702.         movq	$0x7fffffffffffffff, %rbx
    10703. 

  10703.         imulq	$19, %rdx, %rcx
    10704. 

  10704.         andq	%rbx, %r12
    10705. 

  10705.         addq	%rcx, %r9
    10706. 

  10706.         adcq	$0x00, %r10
    10707. 

  10707.         adcq	$0x00, %r11
    10708. 

  10708.         adcq	$0x00, %r12
    10709. 

  10709.         # Reduce if top bit set
    10710. 

  10710.         movq	%r12, %rdx
    10711. 

  10711.         sarq	$63, %rdx
    10712. 

  10712.         andq	$19, %rdx
    10713. 

  10713.         andq	%rbx, %r12
    10714. 

  10714.         addq	%rdx, %r9
    10715. 

  10715.         adcq	$0x00, %r10
    10716. 

  10716.         adcq	$0x00, %r11
    10717. 

  10717.         adcq	$0x00, %r12
    10718. 

  10718.         # Store
    10719. 

  10719.         movq	%r9, 32(%rsp)
    10720. 

  10720.         movq	%r10, 40(%rsp)
    10721. 

  10721.         movq	%r11, 48(%rsp)
    10722. 

  10722.         movq	%r12, 56(%rsp)
    10723. 

  10723.         # Multiply
    10724. 

  10724.         # A[0] * B[0]
    10725. 

  10725.         movq	128(%rsp), %rdx
    10726. 

  10726.         mulxq	(%rsp), %r9, %r10
    10727. 

  10727.         # A[2] * B[0]
    10728. 

  10728.         mulxq	16(%rsp), %r11, %r12
    10729. 

  10729.         # A[1] * B[0]
    10730. 

  10730.         mulxq	8(%rsp), %rcx, %rbx
    10731. 

  10731.         xorq	%rbp, %rbp
    10732. 

  10732.         adcxq	%rcx, %r10
    10733. 

  10733.         # A[1] * B[3]
    10734. 

  10734.         movq	152(%rsp), %rdx
    10735. 

  10735.         mulxq	8(%rsp), %r13, %r14
    10736. 

  10736.         adcxq	%rbx, %r11
    10737. 

  10737.         # A[0] * B[1]
    10738. 

  10738.         movq	136(%rsp), %rdx
    10739. 

  10739.         mulxq	(%rsp), %rcx, %rbx
    10740. 

  10740.         adoxq	%rcx, %r10
    10741. 

  10741.         # A[2] * B[1]
    10742. 

  10742.         mulxq	16(%rsp), %rcx, %r15
    10743. 

  10743.         adoxq	%rbx, %r11
    10744. 

  10744.         adcxq	%rcx, %r12
    10745. 

  10745.         # A[1] * B[2]
    10746. 

  10746.         movq	144(%rsp), %rdx
    10747. 

  10747.         mulxq	8(%rsp), %rcx, %rbx
    10748. 

  10748.         adcxq	%r15, %r13
    10749. 

  10749.         adoxq	%rcx, %r12
    10750. 

  10750.         adcxq	%rbp, %r14
    10751. 

  10751.         adoxq	%rbx, %r13
    10752. 

  10752.         # A[0] * B[2]
    10753. 

  10753.         mulxq	(%rsp), %rcx, %rbx
    10754. 

  10754.         adoxq	%rbp, %r14
    10755. 

  10755.         xorq	%r15, %r15
    10756. 

  10756.         adcxq	%rcx, %r11
    10757. 

  10757.         # A[1] * B[1]
    10758. 

  10758.         movq	136(%rsp), %rdx
    10759. 

  10759.         mulxq	8(%rsp), %rdx, %rcx
    10760. 

  10760.         adcxq	%rbx, %r12
    10761. 

  10761.         adoxq	%rdx, %r11
    10762. 

  10762.         # A[3] * B[1]
    10763. 

  10763.         movq	136(%rsp), %rdx
    10764. 

  10764.         adoxq	%rcx, %r12
    10765. 

  10765.         mulxq	24(%rsp), %rcx, %rbx
    10766. 

  10766.         adcxq	%rcx, %r13
    10767. 

  10767.         # A[2] * B[2]
    10768. 

  10768.         movq	144(%rsp), %rdx
    10769. 

  10769.         mulxq	16(%rsp), %rdx, %rcx
    10770. 

  10770.         adcxq	%rbx, %r14
    10771. 

  10771.         adoxq	%rdx, %r13
    10772. 

  10772.         # A[3] * B[3]
    10773. 

  10773.         movq	152(%rsp), %rdx
    10774. 

  10774.         adoxq	%rcx, %r14
    10775. 

  10775.         mulxq	24(%rsp), %rcx, %rbx
    10776. 

  10776.         adoxq	%rbp, %r15
    10777. 

  10777.         adcxq	%rcx, %r15
    10778. 

  10778.         # A[0] * B[3]
    10779. 

  10779.         mulxq	(%rsp), %rdx, %rcx
    10780. 

  10780.         adcxq	%rbx, %rbp
    10781. 

  10781.         xorq	%rbx, %rbx
    10782. 

  10782.         adcxq	%rdx, %r12
    10783. 

  10783.         # A[3] * B[0]
    10784. 

  10784.         movq	128(%rsp), %rdx
    10785. 

  10785.         adcxq	%rcx, %r13
    10786. 

  10786.         mulxq	24(%rsp), %rdx, %rcx
    10787. 

  10787.         adoxq	%rdx, %r12
    10788. 

  10788.         adoxq	%rcx, %r13
    10789. 

  10789.         # A[2] * B[3]
    10790. 

  10790.         movq	152(%rsp), %rdx
    10791. 

  10791.         mulxq	16(%rsp), %rdx, %rcx
    10792. 

  10792.         adcxq	%rdx, %r14
    10793. 

  10793.         # A[3] * B[2]
    10794. 

  10794.         movq	144(%rsp), %rdx
    10795. 

  10795.         adcxq	%rcx, %r15
    10796. 

  10796.         mulxq	24(%rsp), %rcx, %rdx
    10797. 

  10797.         adcxq	%rbx, %rbp
    10798. 

  10798.         adoxq	%rcx, %r14
    10799. 

  10799.         adoxq	%rdx, %r15
    10800. 

  10800.         adoxq	%rbx, %rbp
    10801. 

  10801.         # Reduce
    10802. 

  10802.         movq	$0x7fffffffffffffff, %rbx
    10803. 

  10803.         #  Move top half into t4-t7 and remove top bit from t3
    10804. 

  10804.         shldq	$0x01, %r15, %rbp
    10805. 

  10805.         shldq	$0x01, %r14, %r15
    10806. 

  10806.         shldq	$0x01, %r13, %r14
    10807. 

  10807.         shldq	$0x01, %r12, %r13
    10808. 

  10808.         andq	%rbx, %r12
    10809. 

  10809.         #  Multiply top half by 19
    10810. 

  10810.         movq	$19, %rdx
    10811. 

  10811.         xorq	%rbx, %rbx
    10812. 

  10812.         mulxq	%r13, %rcx, %r13
    10813. 

  10813.         adcxq	%rcx, %r9
    10814. 

  10814.         adoxq	%r13, %r10
    10815. 

  10815.         mulxq	%r14, %rcx, %r14
    10816. 

  10816.         adcxq	%rcx, %r10
    10817. 

  10817.         adoxq	%r14, %r11
    10818. 

  10818.         mulxq	%r15, %rcx, %r15
    10819. 

  10819.         adcxq	%rcx, %r11
    10820. 

  10820.         adoxq	%r15, %r12
    10821. 

  10821.         mulxq	%rbp, %rbp, %rdx
    10822. 

  10822.         adcxq	%rbp, %r12
    10823. 

  10823.         adoxq	%rbx, %rdx
    10824. 

  10824.         adcxq	%rbx, %rdx
    10825. 

  10825.         #  Overflow
    10826. 

  10826.         shldq	$0x01, %r12, %rdx
    10827. 

  10827.         movq	$0x7fffffffffffffff, %rbx
    10828. 

  10828.         imulq	$19, %rdx, %rcx
    10829. 

  10829.         andq	%rbx, %r12
    10830. 

  10830.         addq	%rcx, %r9
    10831. 

  10831.         adcq	$0x00, %r10
    10832. 

  10832.         adcq	$0x00, %r11
    10833. 

  10833.         adcq	$0x00, %r12
    10834. 

  10834.         # Reduce if top bit set
    10835. 

  10835.         movq	%r12, %rdx
    10836. 

  10836.         sarq	$63, %rdx
    10837. 

  10837.         andq	$19, %rdx
    10838. 

  10838.         andq	%rbx, %r12
    10839. 

  10839.         addq	%rdx, %r9
    10840. 

  10840.         adcq	$0x00, %r10
    10841. 

  10841.         adcq	$0x00, %r11
    10842. 

  10842.         adcq	$0x00, %r12
    10843. 

  10843.         # Store
    10844. 

  10844.         movq	%r9, (%rsp)
    10845. 

  10845.         movq	%r10, 8(%rsp)
    10846. 

  10846.         movq	%r11, 16(%rsp)
    10847. 

  10847.         movq	%r12, 24(%rsp)
    10848. 

  10848.         # Square
    10849. 

  10849.         # A[0] * A[1]
    10850. 

  10850.         movq	128(%rsp), %rdx
    10851. 

  10851.         mulxq	136(%rsp), %r10, %r11
    10852. 

  10852.         # A[0] * A[3]
    10853. 

  10853.         mulxq	152(%rsp), %r12, %r13
    10854. 

  10854.         # A[2] * A[1]
    10855. 

  10855.         movq	144(%rsp), %rdx
    10856. 

  10856.         mulxq	136(%rsp), %rcx, %rbx
    10857. 

  10857.         xorq	%rbp, %rbp
    10858. 

  10858.         adoxq	%rcx, %r12
    10859. 

  10859.         # A[2] * A[3]
    10860. 

  10860.         mulxq	152(%rsp), %r14, %r15
    10861. 

  10861.         adoxq	%rbx, %r13
    10862. 

  10862.         # A[2] * A[0]
    10863. 

  10863.         mulxq	128(%rsp), %rcx, %rbx
    10864. 

  10864.         adoxq	%rbp, %r14
    10865. 

  10865.         adcxq	%rcx, %r11
    10866. 

  10866.         adoxq	%rbp, %r15
    10867. 

  10867.         # A[1] * A[3]
    10868. 

  10868.         movq	136(%rsp), %rdx
    10869. 

  10869.         mulxq	152(%rsp), %rax, %r9
    10870. 

  10870.         adcxq	%rbx, %r12
    10871. 

  10871.         adcxq	%rax, %r13
    10872. 

  10872.         adcxq	%r9, %r14
    10873. 

  10873.         adcxq	%rbp, %r15
    10874. 

  10874.         # Double with Carry Flag
    10875. 

  10875.         xorq	%rbp, %rbp
    10876. 

  10876.         # A[0] * A[0]
    10877. 

  10877.         movq	128(%rsp), %rdx
    10878. 

  10878.         mulxq	%rdx, %r9, %rax
    10879. 

  10879.         adcxq	%r10, %r10
    10880. 

  10880.         # A[1] * A[1]
    10881. 

  10881.         movq	136(%rsp), %rdx
    10882. 

  10882.         mulxq	%rdx, %rcx, %rbx
    10883. 

  10883.         adcxq	%r11, %r11
    10884. 

  10884.         adoxq	%rax, %r10
    10885. 

  10885.         adcxq	%r12, %r12
    10886. 

  10886.         adoxq	%rcx, %r11
    10887. 

  10887.         # A[2] * A[2]
    10888. 

  10888.         movq	144(%rsp), %rdx
    10889. 

  10889.         mulxq	%rdx, %rax, %rcx
    10890. 

  10890.         adcxq	%r13, %r13
    10891. 

  10891.         adoxq	%rbx, %r12
    10892. 

  10892.         adcxq	%r14, %r14
    10893. 

  10893.         adoxq	%rax, %r13
    10894. 

  10894.         # A[3] * A[3]
    10895. 

  10895.         movq	152(%rsp), %rdx
    10896. 

  10896.         mulxq	%rdx, %rax, %rbx
    10897. 

  10897.         adcxq	%r15, %r15
    10898. 

  10898.         adoxq	%rcx, %r14
    10899. 

  10899.         adcxq	%rbp, %rbp
    10900. 

  10900.         adoxq	%rax, %r15
    10901. 

  10901.         adoxq	%rbx, %rbp
    10902. 

  10902.         # Reduce
    10903. 

  10903.         movq	$0x7fffffffffffffff, %rcx
    10904. 

  10904.         #  Move top half into t4-t7 and remove top bit from t3
    10905. 

  10905.         shldq	$0x01, %r15, %rbp
    10906. 

  10906.         shldq	$0x01, %r14, %r15
    10907. 

  10907.         shldq	$0x01, %r13, %r14
    10908. 

  10908.         shldq	$0x01, %r12, %r13
    10909. 

  10909.         andq	%rcx, %r12
    10910. 

  10910.         #  Multiply top half by 19
    10911. 

  10911.         movq	$19, %rdx
    10912. 

  10912.         xorq	%rcx, %rcx
    10913. 

  10913.         mulxq	%r13, %rax, %r13
    10914. 

  10914.         adcxq	%rax, %r9
    10915. 

  10915.         adoxq	%r13, %r10
    10916. 

  10916.         mulxq	%r14, %rax, %r14
    10917. 

  10917.         adcxq	%rax, %r10
    10918. 

  10918.         adoxq	%r14, %r11
    10919. 

  10919.         mulxq	%r15, %rax, %r15
    10920. 

  10920.         adcxq	%rax, %r11
    10921. 

  10921.         adoxq	%r15, %r12
    10922. 

  10922.         mulxq	%rbp, %rbp, %rdx
    10923. 

  10923.         adcxq	%rbp, %r12
    10924. 

  10924.         adoxq	%rcx, %rdx
    10925. 

  10925.         adcxq	%rcx, %rdx
    10926. 

  10926.         #  Overflow
    10927. 

  10927.         shldq	$0x01, %r12, %rdx
    10928. 

  10928.         movq	$0x7fffffffffffffff, %rcx
    10929. 

  10929.         imulq	$19, %rdx, %rax
    10930. 

  10930.         andq	%rcx, %r12
    10931. 

  10931.         addq	%rax, %r9
    10932. 

  10932.         adcq	$0x00, %r10
    10933. 

  10933.         adcq	$0x00, %r11
    10934. 

  10934.         adcq	$0x00, %r12
    10935. 

  10935.         # Reduce if top bit set
    10936. 

  10936.         movq	%r12, %rdx
    10937. 

  10937.         sarq	$63, %rdx
    10938. 

  10938.         andq	$19, %rdx
    10939. 

  10939.         andq	%rcx, %r12
    10940. 

  10940.         addq	%rdx, %r9
    10941. 

  10941.         adcq	$0x00, %r10
    10942. 

  10942.         adcq	$0x00, %r11
    10943. 

  10943.         adcq	$0x00, %r12
    10944. 

  10944.         # Store
    10945. 

  10945.         movq	%r9, 96(%rsp)
    10946. 

  10946.         movq	%r10, 104(%rsp)
    10947. 

  10947.         movq	%r11, 112(%rsp)
    10948. 

  10948.         movq	%r12, 120(%rsp)
    10949. 

  10949.         # Square
    10950. 

  10950.         # A[0] * A[1]
    10951. 

  10951.         movq	(%rdi), %rdx
    10952. 

  10952.         mulxq	8(%rdi), %r10, %r11
    10953. 

  10953.         # A[0] * A[3]
    10954. 

  10954.         mulxq	24(%rdi), %r12, %r13
    10955. 

  10955.         # A[2] * A[1]
    10956. 

  10956.         movq	16(%rdi), %rdx
    10957. 

  10957.         mulxq	8(%rdi), %rcx, %rbx
    10958. 

  10958.         xorq	%rbp, %rbp
    10959. 

  10959.         adoxq	%rcx, %r12
    10960. 

  10960.         # A[2] * A[3]
    10961. 

  10961.         mulxq	24(%rdi), %r14, %r15
    10962. 

  10962.         adoxq	%rbx, %r13
    10963. 

  10963.         # A[2] * A[0]
    10964. 

  10964.         mulxq	(%rdi), %rcx, %rbx
    10965. 

  10965.         adoxq	%rbp, %r14
    10966. 

  10966.         adcxq	%rcx, %r11
    10967. 

  10967.         adoxq	%rbp, %r15
    10968. 

  10968.         # A[1] * A[3]
    10969. 

  10969.         movq	8(%rdi), %rdx
    10970. 

  10970.         mulxq	24(%rdi), %rax, %r9
    10971. 

  10971.         adcxq	%rbx, %r12
    10972. 

  10972.         adcxq	%rax, %r13
    10973. 

  10973.         adcxq	%r9, %r14
    10974. 

  10974.         adcxq	%rbp, %r15
    10975. 

  10975.         # Double with Carry Flag
    10976. 

  10976.         xorq	%rbp, %rbp
    10977. 

  10977.         # A[0] * A[0]
    10978. 

  10978.         movq	(%rdi), %rdx
    10979. 

  10979.         mulxq	%rdx, %r9, %rax
    10980. 

  10980.         adcxq	%r10, %r10
    10981. 

  10981.         # A[1] * A[1]
    10982. 

  10982.         movq	8(%rdi), %rdx
    10983. 

  10983.         mulxq	%rdx, %rcx, %rbx
    10984. 

  10984.         adcxq	%r11, %r11
    10985. 

  10985.         adoxq	%rax, %r10
    10986. 

  10986.         adcxq	%r12, %r12
    10987. 

  10987.         adoxq	%rcx, %r11
    10988. 

  10988.         # A[2] * A[2]
    10989. 

  10989.         movq	16(%rdi), %rdx
    10990. 

  10990.         mulxq	%rdx, %rax, %rcx
    10991. 

  10991.         adcxq	%r13, %r13
    10992. 

  10992.         adoxq	%rbx, %r12
    10993. 

  10993.         adcxq	%r14, %r14
    10994. 

  10994.         adoxq	%rax, %r13
    10995. 

  10995.         # A[3] * A[3]
    10996. 

  10996.         movq	24(%rdi), %rdx
    10997. 

  10997.         mulxq	%rdx, %rax, %rbx
    10998. 

  10998.         adcxq	%r15, %r15
    10999. 

  10999.         adoxq	%rcx, %r14
    11000. 

  11000.         adcxq	%rbp, %rbp
    11001. 

  11001.         adoxq	%rax, %r15
    11002. 

  11002.         adoxq	%rbx, %rbp
    11003. 

  11003.         # Reduce
    11004. 

  11004.         movq	$0x7fffffffffffffff, %rcx
    11005. 

  11005.         #  Move top half into t4-t7 and remove top bit from t3
    11006. 

  11006.         shldq	$0x01, %r15, %rbp
    11007. 

  11007.         shldq	$0x01, %r14, %r15
    11008. 

  11008.         shldq	$0x01, %r13, %r14
    11009. 

  11009.         shldq	$0x01, %r12, %r13
    11010. 

  11010.         andq	%rcx, %r12
    11011. 

  11011.         #  Multiply top half by 19
    11012. 

  11012.         movq	$19, %rdx
    11013. 

  11013.         xorq	%rcx, %rcx
    11014. 

  11014.         mulxq	%r13, %rax, %r13
    11015. 

  11015.         adcxq	%rax, %r9
    11016. 

  11016.         adoxq	%r13, %r10
    11017. 

  11017.         mulxq	%r14, %rax, %r14
    11018. 

  11018.         adcxq	%rax, %r10
    11019. 

  11019.         adoxq	%r14, %r11
    11020. 

  11020.         mulxq	%r15, %rax, %r15
    11021. 

  11021.         adcxq	%rax, %r11
    11022. 

  11022.         adoxq	%r15, %r12
    11023. 

  11023.         mulxq	%rbp, %rbp, %rdx
    11024. 

  11024.         adcxq	%rbp, %r12
    11025. 

  11025.         adoxq	%rcx, %rdx
    11026. 

  11026.         adcxq	%rcx, %rdx
    11027. 

  11027.         #  Overflow
    11028. 

  11028.         shldq	$0x01, %r12, %rdx
    11029. 

  11029.         movq	$0x7fffffffffffffff, %rcx
    11030. 

  11030.         imulq	$19, %rdx, %rax
    11031. 

  11031.         andq	%rcx, %r12
    11032. 

  11032.         addq	%rax, %r9
    11033. 

  11033.         adcq	$0x00, %r10
    11034. 

  11034.         adcq	$0x00, %r11
    11035. 

  11035.         adcq	$0x00, %r12
    11036. 

  11036.         # Reduce if top bit set
    11037. 

  11037.         movq	%r12, %rdx
    11038. 

  11038.         sarq	$63, %rdx
    11039. 

  11039.         andq	$19, %rdx
    11040. 

  11040.         andq	%rcx, %r12
    11041. 

  11041.         addq	%rdx, %r9
    11042. 

  11042.         adcq	$0x00, %r10
    11043. 

  11043.         adcq	$0x00, %r11
    11044. 

  11044.         adcq	$0x00, %r12
    11045. 

  11045.         # Store
    11046. 

  11046.         movq	%r9, 128(%rsp)
    11047. 

  11047.         movq	%r10, 136(%rsp)
    11048. 

  11048.         movq	%r11, 144(%rsp)
    11049. 

  11049.         movq	%r12, 152(%rsp)
    11050. 

  11050.         # Add
    11051. 

  11051.         movq	32(%rsp), %r9
    11052. 

  11052.         movq	40(%rsp), %r10
    11053. 

  11053.         movq	48(%rsp), %r11
    11054. 

  11054.         movq	56(%rsp), %rax
    11055. 

  11055.         movq	%r9, %r13
    11056. 

  11056.         addq	(%rsp), %r9
    11057. 

  11057.         movq	%r10, %r14
    11058. 

  11058.         adcq	8(%rsp), %r10
    11059. 

  11059.         movq	%r11, %r15
    11060. 

  11060.         adcq	16(%rsp), %r11
    11061. 

  11061.         movq	%rax, %rbp
    11062. 

  11062.         adcq	24(%rsp), %rax
    11063. 

  11063.         movq	$-19, %rcx
    11064. 

  11064.         movq	%rax, %r12
    11065. 

  11065.         movq	$0x7fffffffffffffff, %rbx
    11066. 

  11066.         sarq	$63, %rax
    11067. 

  11067.         #   Mask the modulus
    11068. 

  11068.         andq	%rax, %rcx
    11069. 

  11069.         andq	%rax, %rbx
    11070. 

  11070.         #   Sub modulus (if overflow)
    11071. 

  11071.         subq	%rcx, %r9
    11072. 

  11072.         sbbq	%rax, %r10
    11073. 

  11073.         sbbq	%rax, %r11
    11074. 

  11074.         sbbq	%rbx, %r12
    11075. 

  11075.         # Sub
    11076. 

  11076.         subq	(%rsp), %r13
    11077. 

  11077.         movq	$0x00, %rax
    11078. 

  11078.         sbbq	8(%rsp), %r14
    11079. 

  11079.         movq	$-19, %rcx
    11080. 

  11080.         sbbq	16(%rsp), %r15
    11081. 

  11081.         movq	$0x7fffffffffffffff, %rbx
    11082. 

  11082.         sbbq	24(%rsp), %rbp
    11083. 

  11083.         sbbq	$0x00, %rax
    11084. 

  11084.         #   Mask the modulus
    11085. 

  11085.         andq	%rax, %rcx
    11086. 

  11086.         andq	%rax, %rbx
    11087. 

  11087.         #   Add modulus (if underflow)
    11088. 

  11088.         addq	%rcx, %r13
    11089. 

  11089.         adcq	%rax, %r14
    11090. 

  11090.         adcq	%rax, %r15
    11091. 

  11091.         adcq	%rbx, %rbp
    11092. 

  11092.         movq	%r9, 64(%rsp)
    11093. 

  11093.         movq	%r10, 72(%rsp)
    11094. 

  11094.         movq	%r11, 80(%rsp)
    11095. 

  11095.         movq	%r12, 88(%rsp)
    11096. 

  11096.         movq	%r13, (%rsp)
    11097. 

  11097.         movq	%r14, 8(%rsp)
    11098. 

  11098.         movq	%r15, 16(%rsp)
    11099. 

  11099.         movq	%rbp, 24(%rsp)
    11100. 

  11100.         # Multiply
    11101. 

  11101.         # A[0] * B[0]
    11102. 

  11102.         movq	96(%rsp), %rdx
    11103. 

  11103.         mulxq	128(%rsp), %r9, %r10
    11104. 

  11104.         # A[2] * B[0]
    11105. 

  11105.         mulxq	144(%rsp), %r11, %r12
    11106. 

  11106.         # A[1] * B[0]
    11107. 

  11107.         mulxq	136(%rsp), %rcx, %rbx
    11108. 

  11108.         xorq	%rbp, %rbp
    11109. 

  11109.         adcxq	%rcx, %r10
    11110. 

  11110.         # A[1] * B[3]
    11111. 

  11111.         movq	120(%rsp), %rdx
    11112. 

  11112.         mulxq	136(%rsp), %r13, %r14
    11113. 

  11113.         adcxq	%rbx, %r11
    11114. 

  11114.         # A[0] * B[1]
    11115. 

  11115.         movq	104(%rsp), %rdx
    11116. 

  11116.         mulxq	128(%rsp), %rcx, %rbx
    11117. 

  11117.         adoxq	%rcx, %r10
    11118. 

  11118.         # A[2] * B[1]
    11119. 

  11119.         mulxq	144(%rsp), %rcx, %r15
    11120. 

  11120.         adoxq	%rbx, %r11
    11121. 

  11121.         adcxq	%rcx, %r12
    11122. 

  11122.         # A[1] * B[2]
    11123. 

  11123.         movq	112(%rsp), %rdx
    11124. 

  11124.         mulxq	136(%rsp), %rcx, %rbx
    11125. 

  11125.         adcxq	%r15, %r13
    11126. 

  11126.         adoxq	%rcx, %r12
    11127. 

  11127.         adcxq	%rbp, %r14
    11128. 

  11128.         adoxq	%rbx, %r13
    11129. 

  11129.         # A[0] * B[2]
    11130. 

  11130.         mulxq	128(%rsp), %rcx, %rbx
    11131. 

  11131.         adoxq	%rbp, %r14
    11132. 

  11132.         xorq	%r15, %r15
    11133. 

  11133.         adcxq	%rcx, %r11
    11134. 

  11134.         # A[1] * B[1]
    11135. 

  11135.         movq	104(%rsp), %rdx
    11136. 

  11136.         mulxq	136(%rsp), %rdx, %rcx
    11137. 

  11137.         adcxq	%rbx, %r12
    11138. 

  11138.         adoxq	%rdx, %r11
    11139. 

  11139.         # A[3] * B[1]
    11140. 

  11140.         movq	104(%rsp), %rdx
    11141. 

  11141.         adoxq	%rcx, %r12
    11142. 

  11142.         mulxq	152(%rsp), %rcx, %rbx
    11143. 

  11143.         adcxq	%rcx, %r13
    11144. 

  11144.         # A[2] * B[2]
    11145. 

  11145.         movq	112(%rsp), %rdx
    11146. 

  11146.         mulxq	144(%rsp), %rdx, %rcx
    11147. 

  11147.         adcxq	%rbx, %r14
    11148. 

  11148.         adoxq	%rdx, %r13
    11149. 

  11149.         # A[3] * B[3]
    11150. 

  11150.         movq	120(%rsp), %rdx
    11151. 

  11151.         adoxq	%rcx, %r14
    11152. 

  11152.         mulxq	152(%rsp), %rcx, %rbx
    11153. 

  11153.         adoxq	%rbp, %r15
    11154. 

  11154.         adcxq	%rcx, %r15
    11155. 

  11155.         # A[0] * B[3]
    11156. 

  11156.         mulxq	128(%rsp), %rdx, %rcx
    11157. 

  11157.         adcxq	%rbx, %rbp
    11158. 

  11158.         xorq	%rbx, %rbx
    11159. 

  11159.         adcxq	%rdx, %r12
    11160. 

  11160.         # A[3] * B[0]
    11161. 

  11161.         movq	96(%rsp), %rdx
    11162. 

  11162.         adcxq	%rcx, %r13
    11163. 

  11163.         mulxq	152(%rsp), %rdx, %rcx
    11164. 

  11164.         adoxq	%rdx, %r12
    11165. 

  11165.         adoxq	%rcx, %r13
    11166. 

  11166.         # A[2] * B[3]
    11167. 

  11167.         movq	120(%rsp), %rdx
    11168. 

  11168.         mulxq	144(%rsp), %rdx, %rcx
    11169. 

  11169.         adcxq	%rdx, %r14
    11170. 

  11170.         # A[3] * B[2]
    11171. 

  11171.         movq	112(%rsp), %rdx
    11172. 

  11172.         adcxq	%rcx, %r15
    11173. 

  11173.         mulxq	152(%rsp), %rcx, %rdx
    11174. 

  11174.         adcxq	%rbx, %rbp
    11175. 

  11175.         adoxq	%rcx, %r14
    11176. 

  11176.         adoxq	%rdx, %r15
    11177. 

  11177.         adoxq	%rbx, %rbp
    11178. 

  11178.         # Reduce
    11179. 

  11179.         movq	$0x7fffffffffffffff, %rbx
    11180. 

  11180.         #  Move top half into t4-t7 and remove top bit from t3
    11181. 

  11181.         shldq	$0x01, %r15, %rbp
    11182. 

  11182.         shldq	$0x01, %r14, %r15
    11183. 

  11183.         shldq	$0x01, %r13, %r14
    11184. 

  11184.         shldq	$0x01, %r12, %r13
    11185. 

  11185.         andq	%rbx, %r12
    11186. 

  11186.         #  Multiply top half by 19
    11187. 

  11187.         movq	$19, %rdx
    11188. 

  11188.         xorq	%rbx, %rbx
    11189. 

  11189.         mulxq	%r13, %rcx, %r13
    11190. 

  11190.         adcxq	%rcx, %r9
    11191. 

  11191.         adoxq	%r13, %r10
    11192. 

  11192.         mulxq	%r14, %rcx, %r14
    11193. 

  11193.         adcxq	%rcx, %r10
    11194. 

  11194.         adoxq	%r14, %r11
    11195. 

  11195.         mulxq	%r15, %rcx, %r15
    11196. 

  11196.         adcxq	%rcx, %r11
    11197. 

  11197.         adoxq	%r15, %r12
    11198. 

  11198.         mulxq	%rbp, %rbp, %rdx
    11199. 

  11199.         adcxq	%rbp, %r12
    11200. 

  11200.         adoxq	%rbx, %rdx
    11201. 

  11201.         adcxq	%rbx, %rdx
    11202. 

  11202.         #  Overflow
    11203. 

  11203.         shldq	$0x01, %r12, %rdx
    11204. 

  11204.         movq	$0x7fffffffffffffff, %rbx
    11205. 

  11205.         imulq	$19, %rdx, %rcx
    11206. 

  11206.         andq	%rbx, %r12
    11207. 

  11207.         addq	%rcx, %r9
    11208. 

  11208.         adcq	$0x00, %r10
    11209. 

  11209.         adcq	$0x00, %r11
    11210. 

  11210.         adcq	$0x00, %r12
    11211. 

  11211.         # Reduce if top bit set
    11212. 

  11212.         movq	%r12, %rdx
    11213. 

  11213.         sarq	$63, %rdx
    11214. 

  11214.         andq	$19, %rdx
    11215. 

  11215.         andq	%rbx, %r12
    11216. 

  11216.         addq	%rdx, %r9
    11217. 

  11217.         adcq	$0x00, %r10
    11218. 

  11218.         adcq	$0x00, %r11
    11219. 

  11219.         adcq	$0x00, %r12
    11220. 

  11220.         # Store
    11221. 

  11221.         movq	%r9, (%rdi)
    11222. 

  11222.         movq	%r10, 8(%rdi)
    11223. 

  11223.         movq	%r11, 16(%rdi)
    11224. 

  11224.         movq	%r12, 24(%rdi)
    11225. 

  11225.         # Sub
    11226. 

  11226.         movq	128(%rsp), %r9
    11227. 

  11227.         movq	136(%rsp), %r10
    11228. 

  11228.         movq	144(%rsp), %r11
    11229. 

  11229.         movq	152(%rsp), %r12
    11230. 

  11230.         subq	96(%rsp), %r9
    11231. 

  11231.         movq	$0x00, %rax
    11232. 

  11232.         sbbq	104(%rsp), %r10
    11233. 

  11233.         movq	$-19, %rcx
    11234. 

  11234.         sbbq	112(%rsp), %r11
    11235. 

  11235.         movq	$0x7fffffffffffffff, %rbx
    11236. 

  11236.         sbbq	120(%rsp), %r12
    11237. 

  11237.         sbbq	$0x00, %rax
    11238. 

  11238.         #   Mask the modulus
    11239. 

  11239.         andq	%rax, %rcx
    11240. 

  11240.         andq	%rax, %rbx
    11241. 

  11241.         #   Add modulus (if underflow)
    11242. 

  11242.         addq	%rcx, %r9
    11243. 

  11243.         adcq	%rax, %r10
    11244. 

  11244.         adcq	%rax, %r11
    11245. 

  11245.         adcq	%rbx, %r12
    11246. 

  11246.         movq	%r9, 128(%rsp)
    11247. 

  11247.         movq	%r10, 136(%rsp)
    11248. 

  11248.         movq	%r11, 144(%rsp)
    11249. 

  11249.         movq	%r12, 152(%rsp)
    11250. 

  11250.         # Square
    11251. 

  11251.         # A[0] * A[1]
    11252. 

  11252.         movq	(%rsp), %rdx
    11253. 

  11253.         mulxq	8(%rsp), %r10, %r11
    11254. 

  11254.         # A[0] * A[3]
    11255. 

  11255.         mulxq	24(%rsp), %r12, %r13
    11256. 

  11256.         # A[2] * A[1]
    11257. 

  11257.         movq	16(%rsp), %rdx
    11258. 

  11258.         mulxq	8(%rsp), %rcx, %rbx
    11259. 

  11259.         xorq	%rbp, %rbp
    11260. 

  11260.         adoxq	%rcx, %r12
    11261. 

  11261.         # A[2] * A[3]
    11262. 

  11262.         mulxq	24(%rsp), %r14, %r15
    11263. 

  11263.         adoxq	%rbx, %r13
    11264. 

  11264.         # A[2] * A[0]
    11265. 

  11265.         mulxq	(%rsp), %rcx, %rbx
    11266. 

  11266.         adoxq	%rbp, %r14
    11267. 

  11267.         adcxq	%rcx, %r11
    11268. 

  11268.         adoxq	%rbp, %r15
    11269. 

  11269.         # A[1] * A[3]
    11270. 

  11270.         movq	8(%rsp), %rdx
    11271. 

  11271.         mulxq	24(%rsp), %rax, %r9
    11272. 

  11272.         adcxq	%rbx, %r12
    11273. 

  11273.         adcxq	%rax, %r13
    11274. 

  11274.         adcxq	%r9, %r14
    11275. 

  11275.         adcxq	%rbp, %r15
    11276. 

  11276.         # Double with Carry Flag
    11277. 

  11277.         xorq	%rbp, %rbp
    11278. 

  11278.         # A[0] * A[0]
    11279. 

  11279.         movq	(%rsp), %rdx
    11280. 

  11280.         mulxq	%rdx, %r9, %rax
    11281. 

  11281.         adcxq	%r10, %r10
    11282. 

  11282.         # A[1] * A[1]
    11283. 

  11283.         movq	8(%rsp), %rdx
    11284. 

  11284.         mulxq	%rdx, %rcx, %rbx
    11285. 

  11285.         adcxq	%r11, %r11
    11286. 

  11286.         adoxq	%rax, %r10
    11287. 

  11287.         adcxq	%r12, %r12
    11288. 

  11288.         adoxq	%rcx, %r11
    11289. 

  11289.         # A[2] * A[2]
    11290. 

  11290.         movq	16(%rsp), %rdx
    11291. 

  11291.         mulxq	%rdx, %rax, %rcx
    11292. 

  11292.         adcxq	%r13, %r13
    11293. 

  11293.         adoxq	%rbx, %r12
    11294. 

  11294.         adcxq	%r14, %r14
    11295. 

  11295.         adoxq	%rax, %r13
    11296. 

  11296.         # A[3] * A[3]
    11297. 

  11297.         movq	24(%rsp), %rdx
    11298. 

  11298.         mulxq	%rdx, %rax, %rbx
    11299. 

  11299.         adcxq	%r15, %r15
    11300. 

  11300.         adoxq	%rcx, %r14
    11301. 

  11301.         adcxq	%rbp, %rbp
    11302. 

  11302.         adoxq	%rax, %r15
    11303. 

  11303.         adoxq	%rbx, %rbp
    11304. 

  11304.         # Reduce
    11305. 

  11305.         movq	$0x7fffffffffffffff, %rcx
    11306. 

  11306.         #  Move top half into t4-t7 and remove top bit from t3
    11307. 

  11307.         shldq	$0x01, %r15, %rbp
    11308. 

  11308.         shldq	$0x01, %r14, %r15
    11309. 

  11309.         shldq	$0x01, %r13, %r14
    11310. 

  11310.         shldq	$0x01, %r12, %r13
    11311. 

  11311.         andq	%rcx, %r12
    11312. 

  11312.         #  Multiply top half by 19
    11313. 

  11313.         movq	$19, %rdx
    11314. 

  11314.         xorq	%rcx, %rcx
    11315. 

  11315.         mulxq	%r13, %rax, %r13
    11316. 

  11316.         adcxq	%rax, %r9
    11317. 

  11317.         adoxq	%r13, %r10
    11318. 

  11318.         mulxq	%r14, %rax, %r14
    11319. 

  11319.         adcxq	%rax, %r10
    11320. 

  11320.         adoxq	%r14, %r11
    11321. 

  11321.         mulxq	%r15, %rax, %r15
    11322. 

  11322.         adcxq	%rax, %r11
    11323. 

  11323.         adoxq	%r15, %r12
    11324. 

  11324.         mulxq	%rbp, %rbp, %rdx
    11325. 

  11325.         adcxq	%rbp, %r12
    11326. 

  11326.         adoxq	%rcx, %rdx
    11327. 

  11327.         adcxq	%rcx, %rdx
    11328. 

  11328.         #  Overflow
    11329. 

  11329.         shldq	$0x01, %r12, %rdx
    11330. 

  11330.         movq	$0x7fffffffffffffff, %rcx
    11331. 

  11331.         imulq	$19, %rdx, %rax
    11332. 

  11332.         andq	%rcx, %r12
    11333. 

  11333.         addq	%rax, %r9
    11334. 

  11334.         adcq	$0x00, %r10
    11335. 

  11335.         adcq	$0x00, %r11
    11336. 

  11336.         adcq	$0x00, %r12
    11337. 

  11337.         # Reduce if top bit set
    11338. 

  11338.         movq	%r12, %rdx
    11339. 

  11339.         sarq	$63, %rdx
    11340. 

  11340.         andq	$19, %rdx
    11341. 

  11341.         andq	%rcx, %r12
    11342. 

  11342.         addq	%rdx, %r9
    11343. 

  11343.         adcq	$0x00, %r10
    11344. 

  11344.         adcq	$0x00, %r11
    11345. 

  11345.         adcq	$0x00, %r12
    11346. 

  11346.         # Store
    11347. 

  11347.         movq	%r9, (%rsp)
    11348. 

  11348.         movq	%r10, 8(%rsp)
    11349. 

  11349.         movq	%r11, 16(%rsp)
    11350. 

  11350.         movq	%r12, 24(%rsp)
    11351. 

  11351.         movq	$0x1db42, %rdx
    11352. 

  11352.         mulxq	128(%rsp), %r9, %rbp
    11353. 

  11353.         mulxq	136(%rsp), %r10, %r15
    11354. 

  11354.         mulxq	144(%rsp), %r11, %r14
    11355. 

  11355.         mulxq	152(%rsp), %r12, %r13
    11356. 

  11356.         addq	%rbp, %r10
    11357. 

  11357.         adcq	%r15, %r11
    11358. 

  11358.         adcq	%r14, %r12
    11359. 

  11359.         adcq	$0x00, %r13
    11360. 

  11360.         movq	$0x7fffffffffffffff, %rbp
    11361. 

  11361.         shldq	$0x01, %r12, %r13
    11362. 

  11362.         andq	%rbp, %r12
    11363. 

  11363.         imulq	$19, %r13, %r13
    11364. 

  11364.         addq	%r13, %r9
    11365. 

  11365.         adcq	$0x00, %r10
    11366. 

  11366.         adcq	$0x00, %r11
    11367. 

  11367.         adcq	$0x00, %r12
    11368. 

  11368.         movq	%r9, 32(%rsp)
    11369. 

  11369.         movq	%r10, 40(%rsp)
    11370. 

  11370.         movq	%r11, 48(%rsp)
    11371. 

  11371.         movq	%r12, 56(%rsp)
    11372. 

  11372.         # Square
    11373. 

  11373.         # A[0] * A[1]
    11374. 

  11374.         movq	64(%rsp), %rdx
    11375. 

  11375.         mulxq	72(%rsp), %r10, %r11
    11376. 

  11376.         # A[0] * A[3]
    11377. 

  11377.         mulxq	88(%rsp), %r12, %r13
    11378. 

  11378.         # A[2] * A[1]
    11379. 

  11379.         movq	80(%rsp), %rdx
    11380. 

  11380.         mulxq	72(%rsp), %rcx, %rbx
    11381. 

  11381.         xorq	%rbp, %rbp
    11382. 

  11382.         adoxq	%rcx, %r12
    11383. 

  11383.         # A[2] * A[3]
    11384. 

  11384.         mulxq	88(%rsp), %r14, %r15
    11385. 

  11385.         adoxq	%rbx, %r13
    11386. 

  11386.         # A[2] * A[0]
    11387. 

  11387.         mulxq	64(%rsp), %rcx, %rbx
    11388. 

  11388.         adoxq	%rbp, %r14
    11389. 

  11389.         adcxq	%rcx, %r11
    11390. 

  11390.         adoxq	%rbp, %r15
    11391. 

  11391.         # A[1] * A[3]
    11392. 

  11392.         movq	72(%rsp), %rdx
    11393. 

  11393.         mulxq	88(%rsp), %rax, %r9
    11394. 

  11394.         adcxq	%rbx, %r12
    11395. 

  11395.         adcxq	%rax, %r13
    11396. 

  11396.         adcxq	%r9, %r14
    11397. 

  11397.         adcxq	%rbp, %r15
    11398. 

  11398.         # Double with Carry Flag
    11399. 

  11399.         xorq	%rbp, %rbp
    11400. 

  11400.         # A[0] * A[0]
    11401. 

  11401.         movq	64(%rsp), %rdx
    11402. 

  11402.         mulxq	%rdx, %r9, %rax
    11403. 

  11403.         adcxq	%r10, %r10
    11404. 

  11404.         # A[1] * A[1]
    11405. 

  11405.         movq	72(%rsp), %rdx
    11406. 

  11406.         mulxq	%rdx, %rcx, %rbx
    11407. 

  11407.         adcxq	%r11, %r11
    11408. 

  11408.         adoxq	%rax, %r10
    11409. 

  11409.         adcxq	%r12, %r12
    11410. 

  11410.         adoxq	%rcx, %r11
    11411. 

  11411.         # A[2] * A[2]
    11412. 

  11412.         movq	80(%rsp), %rdx
    11413. 

  11413.         mulxq	%rdx, %rax, %rcx
    11414. 

  11414.         adcxq	%r13, %r13
    11415. 

  11415.         adoxq	%rbx, %r12
    11416. 

  11416.         adcxq	%r14, %r14
    11417. 

  11417.         adoxq	%rax, %r13
    11418. 

  11418.         # A[3] * A[3]
    11419. 

  11419.         movq	88(%rsp), %rdx
    11420. 

  11420.         mulxq	%rdx, %rax, %rbx
    11421. 

  11421.         adcxq	%r15, %r15
    11422. 

  11422.         adoxq	%rcx, %r14
    11423. 

  11423.         adcxq	%rbp, %rbp
    11424. 

  11424.         adoxq	%rax, %r15
    11425. 

  11425.         adoxq	%rbx, %rbp
    11426. 

  11426.         # Reduce
    11427. 

  11427.         movq	$0x7fffffffffffffff, %rcx
    11428. 

  11428.         #  Move top half into t4-t7 and remove top bit from t3
    11429. 

  11429.         shldq	$0x01, %r15, %rbp
    11430. 

  11430.         shldq	$0x01, %r14, %r15
    11431. 

  11431.         shldq	$0x01, %r13, %r14
    11432. 

  11432.         shldq	$0x01, %r12, %r13
    11433. 

  11433.         andq	%rcx, %r12
    11434. 

  11434.         #  Multiply top half by 19
    11435. 

  11435.         movq	$19, %rdx
    11436. 

  11436.         xorq	%rcx, %rcx
    11437. 

  11437.         mulxq	%r13, %rax, %r13
    11438. 

  11438.         adcxq	%rax, %r9
    11439. 

  11439.         adoxq	%r13, %r10
    11440. 

  11440.         mulxq	%r14, %rax, %r14
    11441. 

  11441.         adcxq	%rax, %r10
    11442. 

  11442.         adoxq	%r14, %r11
    11443. 

  11443.         mulxq	%r15, %rax, %r15
    11444. 

  11444.         adcxq	%rax, %r11
    11445. 

  11445.         adoxq	%r15, %r12
    11446. 

  11446.         mulxq	%rbp, %rbp, %rdx
    11447. 

  11447.         adcxq	%rbp, %r12
    11448. 

  11448.         adoxq	%rcx, %rdx
    11449. 

  11449.         adcxq	%rcx, %rdx
    11450. 

  11450.         #  Overflow
    11451. 

  11451.         shldq	$0x01, %r12, %rdx
    11452. 

  11452.         movq	$0x7fffffffffffffff, %rcx
    11453. 

  11453.         imulq	$19, %rdx, %rax
    11454. 

  11454.         andq	%rcx, %r12
    11455. 

  11455.         addq	%rax, %r9
    11456. 

  11456.         adcq	$0x00, %r10
    11457. 

  11457.         adcq	$0x00, %r11
    11458. 

  11458.         adcq	$0x00, %r12
    11459. 

  11459.         # Reduce if top bit set
    11460. 

  11460.         movq	%r12, %rdx
    11461. 

  11461.         sarq	$63, %rdx
    11462. 

  11462.         andq	$19, %rdx
    11463. 

  11463.         andq	%rcx, %r12
    11464. 

  11464.         addq	%rdx, %r9
    11465. 

  11465.         adcq	$0x00, %r10
    11466. 

  11466.         adcq	$0x00, %r11
    11467. 

  11467.         adcq	$0x00, %r12
    11468. 

  11468.         # Store
    11469. 

  11469.         movq	%r9, 64(%rsp)
    11470. 

  11470.         movq	%r10, 72(%rsp)
    11471. 

  11471.         movq	%r11, 80(%rsp)
    11472. 

  11472.         movq	%r12, 88(%rsp)
    11473. 

  11473.         # Add
    11474. 

  11474.         movq	96(%rsp), %r9
    11475. 

  11475.         movq	104(%rsp), %r10
    11476. 

  11476.         addq	32(%rsp), %r9
    11477. 

  11477.         movq	112(%rsp), %r11
    11478. 

  11478.         adcq	40(%rsp), %r10
    11479. 

  11479.         movq	120(%rsp), %rax
    11480. 

  11480.         adcq	48(%rsp), %r11
    11481. 

  11481.         movq	$-19, %rcx
    11482. 

  11482.         adcq	56(%rsp), %rax
    11483. 

  11483.         movq	$0x7fffffffffffffff, %rbx
    11484. 

  11484.         movq	%rax, %r12
    11485. 

  11485.         sarq	$63, %rax
    11486. 

  11486.         #   Mask the modulus
    11487. 

  11487.         andq	%rax, %rcx
    11488. 

  11488.         andq	%rax, %rbx
    11489. 

  11489.         #   Sub modulus (if overflow)
    11490. 

  11490.         subq	%rcx, %r9
    11491. 

  11491.         sbbq	%rax, %r10
    11492. 

  11492.         sbbq	%rax, %r11
    11493. 

  11493.         sbbq	%rbx, %r12
    11494. 

  11494.         movq	%r9, 96(%rsp)
    11495. 

  11495.         movq	%r10, 104(%rsp)
    11496. 

  11496.         movq	%r11, 112(%rsp)
    11497. 

  11497.         movq	%r12, 120(%rsp)
    11498. 

  11498.         # Multiply
    11499. 

  11499.         # A[0] * B[0]
    11500. 

  11500.         movq	(%rsp), %rdx
    11501. 

  11501.         mulxq	(%r8), %r9, %r10
    11502. 

  11502.         # A[2] * B[0]
    11503. 

  11503.         mulxq	16(%r8), %r11, %r12
    11504. 

  11504.         # A[1] * B[0]
    11505. 

  11505.         mulxq	8(%r8), %rcx, %rbx
    11506. 

  11506.         xorq	%rbp, %rbp
    11507. 

  11507.         adcxq	%rcx, %r10
    11508. 

  11508.         # A[1] * B[3]
    11509. 

  11509.         movq	24(%rsp), %rdx
    11510. 

  11510.         mulxq	8(%r8), %r13, %r14
    11511. 

  11511.         adcxq	%rbx, %r11
    11512. 

  11512.         # A[0] * B[1]
    11513. 

  11513.         movq	8(%rsp), %rdx
    11514. 

  11514.         mulxq	(%r8), %rcx, %rbx
    11515. 

  11515.         adoxq	%rcx, %r10
    11516. 

  11516.         # A[2] * B[1]
    11517. 

  11517.         mulxq	16(%r8), %rcx, %r15
    11518. 

  11518.         adoxq	%rbx, %r11
    11519. 

  11519.         adcxq	%rcx, %r12
    11520. 

  11520.         # A[1] * B[2]
    11521. 

  11521.         movq	16(%rsp), %rdx
    11522. 

  11522.         mulxq	8(%r8), %rcx, %rbx
    11523. 

  11523.         adcxq	%r15, %r13
    11524. 

  11524.         adoxq	%rcx, %r12
    11525. 

  11525.         adcxq	%rbp, %r14
    11526. 

  11526.         adoxq	%rbx, %r13
    11527. 

  11527.         # A[0] * B[2]
    11528. 

  11528.         mulxq	(%r8), %rcx, %rbx
    11529. 

  11529.         adoxq	%rbp, %r14
    11530. 

  11530.         xorq	%r15, %r15
    11531. 

  11531.         adcxq	%rcx, %r11
    11532. 

  11532.         # A[1] * B[1]
    11533. 

  11533.         movq	8(%rsp), %rdx
    11534. 

  11534.         mulxq	8(%r8), %rdx, %rcx
    11535. 

  11535.         adcxq	%rbx, %r12
    11536. 

  11536.         adoxq	%rdx, %r11
    11537. 

  11537.         # A[3] * B[1]
    11538. 

  11538.         movq	8(%rsp), %rdx
    11539. 

  11539.         adoxq	%rcx, %r12
    11540. 

  11540.         mulxq	24(%r8), %rcx, %rbx
    11541. 

  11541.         adcxq	%rcx, %r13
    11542. 

  11542.         # A[2] * B[2]
    11543. 

  11543.         movq	16(%rsp), %rdx
    11544. 

  11544.         mulxq	16(%r8), %rdx, %rcx
    11545. 

  11545.         adcxq	%rbx, %r14
    11546. 

  11546.         adoxq	%rdx, %r13
    11547. 

  11547.         # A[3] * B[3]
    11548. 

  11548.         movq	24(%rsp), %rdx
    11549. 

  11549.         adoxq	%rcx, %r14
    11550. 

  11550.         mulxq	24(%r8), %rcx, %rbx
    11551. 

  11551.         adoxq	%rbp, %r15
    11552. 

  11552.         adcxq	%rcx, %r15
    11553. 

  11553.         # A[0] * B[3]
    11554. 

  11554.         mulxq	(%r8), %rdx, %rcx
    11555. 

  11555.         adcxq	%rbx, %rbp
    11556. 

  11556.         xorq	%rbx, %rbx
    11557. 

  11557.         adcxq	%rdx, %r12
    11558. 

  11558.         # A[3] * B[0]
    11559. 

  11559.         movq	(%rsp), %rdx
    11560. 

  11560.         adcxq	%rcx, %r13
    11561. 

  11561.         mulxq	24(%r8), %rdx, %rcx
    11562. 

  11562.         adoxq	%rdx, %r12
    11563. 

  11563.         adoxq	%rcx, %r13
    11564. 

  11564.         # A[2] * B[3]
    11565. 

  11565.         movq	24(%rsp), %rdx
    11566. 

  11566.         mulxq	16(%r8), %rdx, %rcx
    11567. 

  11567.         adcxq	%rdx, %r14
    11568. 

  11568.         # A[3] * B[2]
    11569. 

  11569.         movq	16(%rsp), %rdx
    11570. 

  11570.         adcxq	%rcx, %r15
    11571. 

  11571.         mulxq	24(%r8), %rcx, %rdx
    11572. 

  11572.         adcxq	%rbx, %rbp
    11573. 

  11573.         adoxq	%rcx, %r14
    11574. 

  11574.         adoxq	%rdx, %r15
    11575. 

  11575.         adoxq	%rbx, %rbp
    11576. 

  11576.         # Reduce
    11577. 

  11577.         movq	$0x7fffffffffffffff, %rbx
    11578. 

  11578.         #  Move top half into t4-t7 and remove top bit from t3
    11579. 

  11579.         shldq	$0x01, %r15, %rbp
    11580. 

  11580.         shldq	$0x01, %r14, %r15
    11581. 

  11581.         shldq	$0x01, %r13, %r14
    11582. 

  11582.         shldq	$0x01, %r12, %r13
    11583. 

  11583.         andq	%rbx, %r12
    11584. 

  11584.         #  Multiply top half by 19
    11585. 

  11585.         movq	$19, %rdx
    11586. 

  11586.         xorq	%rbx, %rbx
    11587. 

  11587.         mulxq	%r13, %rcx, %r13
    11588. 

  11588.         adcxq	%rcx, %r9
    11589. 

  11589.         adoxq	%r13, %r10
    11590. 

  11590.         mulxq	%r14, %rcx, %r14
    11591. 

  11591.         adcxq	%rcx, %r10
    11592. 

  11592.         adoxq	%r14, %r11
    11593. 

  11593.         mulxq	%r15, %rcx, %r15
    11594. 

  11594.         adcxq	%rcx, %r11
    11595. 

  11595.         adoxq	%r15, %r12
    11596. 

  11596.         mulxq	%rbp, %rbp, %rdx
    11597. 

  11597.         adcxq	%rbp, %r12
    11598. 

  11598.         adoxq	%rbx, %rdx
    11599. 

  11599.         adcxq	%rbx, %rdx
    11600. 

  11600.         #  Overflow
    11601. 

  11601.         shldq	$0x01, %r12, %rdx
    11602. 

  11602.         movq	$0x7fffffffffffffff, %rbx
    11603. 

  11603.         imulq	$19, %rdx, %rcx
    11604. 

  11604.         andq	%rbx, %r12
    11605. 

  11605.         addq	%rcx, %r9
    11606. 

  11606.         adcq	$0x00, %r10
    11607. 

  11607.         adcq	$0x00, %r11
    11608. 

  11608.         adcq	$0x00, %r12
    11609. 

  11609.         # Reduce if top bit set
    11610. 

  11610.         movq	%r12, %rdx
    11611. 

  11611.         sarq	$63, %rdx
    11612. 

  11612.         andq	$19, %rdx
    11613. 

  11613.         andq	%rbx, %r12
    11614. 

  11614.         addq	%rdx, %r9
    11615. 

  11615.         adcq	$0x00, %r10
    11616. 

  11616.         adcq	$0x00, %r11
    11617. 

  11617.         adcq	$0x00, %r12
    11618. 

  11618.         # Store
    11619. 

  11619.         movq	%r9, 32(%rsp)
    11620. 

  11620.         movq	%r10, 40(%rsp)
    11621. 

  11621.         movq	%r11, 48(%rsp)
    11622. 

  11622.         movq	%r12, 56(%rsp)
    11623. 

  11623.         # Multiply
    11624. 

  11624.         # A[0] * B[0]
    11625. 

  11625.         movq	96(%rsp), %rdx
    11626. 

  11626.         mulxq	128(%rsp), %r9, %r10
    11627. 

  11627.         # A[2] * B[0]
    11628. 

  11628.         mulxq	144(%rsp), %r11, %r12
    11629. 

  11629.         # A[1] * B[0]
    11630. 

  11630.         mulxq	136(%rsp), %rcx, %rbx
    11631. 

  11631.         xorq	%rbp, %rbp
    11632. 

  11632.         adcxq	%rcx, %r10
    11633. 

  11633.         # A[1] * B[3]
    11634. 

  11634.         movq	120(%rsp), %rdx
    11635. 

  11635.         mulxq	136(%rsp), %r13, %r14
    11636. 

  11636.         adcxq	%rbx, %r11
    11637. 

  11637.         # A[0] * B[1]
    11638. 

  11638.         movq	104(%rsp), %rdx
    11639. 

  11639.         mulxq	128(%rsp), %rcx, %rbx
    11640. 

  11640.         adoxq	%rcx, %r10
    11641. 

  11641.         # A[2] * B[1]
    11642. 

  11642.         mulxq	144(%rsp), %rcx, %r15
    11643. 

  11643.         adoxq	%rbx, %r11
    11644. 

  11644.         adcxq	%rcx, %r12
    11645. 

  11645.         # A[1] * B[2]
    11646. 

  11646.         movq	112(%rsp), %rdx
    11647. 

  11647.         mulxq	136(%rsp), %rcx, %rbx
    11648. 

  11648.         adcxq	%r15, %r13
    11649. 

  11649.         adoxq	%rcx, %r12
    11650. 

  11650.         adcxq	%rbp, %r14
    11651. 

  11651.         adoxq	%rbx, %r13
    11652. 

  11652.         # A[0] * B[2]
    11653. 

  11653.         mulxq	128(%rsp), %rcx, %rbx
    11654. 

  11654.         adoxq	%rbp, %r14
    11655. 

  11655.         xorq	%r15, %r15
    11656. 

  11656.         adcxq	%rcx, %r11
    11657. 

  11657.         # A[1] * B[1]
    11658. 

  11658.         movq	104(%rsp), %rdx
    11659. 

  11659.         mulxq	136(%rsp), %rdx, %rcx
    11660. 

  11660.         adcxq	%rbx, %r12
    11661. 

  11661.         adoxq	%rdx, %r11
    11662. 

  11662.         # A[3] * B[1]
    11663. 

  11663.         movq	104(%rsp), %rdx
    11664. 

  11664.         adoxq	%rcx, %r12
    11665. 

  11665.         mulxq	152(%rsp), %rcx, %rbx
    11666. 

  11666.         adcxq	%rcx, %r13
    11667. 

  11667.         # A[2] * B[2]
    11668. 

  11668.         movq	112(%rsp), %rdx
    11669. 

  11669.         mulxq	144(%rsp), %rdx, %rcx
    11670. 

  11670.         adcxq	%rbx, %r14
    11671. 

  11671.         adoxq	%rdx, %r13
    11672. 

  11672.         # A[3] * B[3]
    11673. 

  11673.         movq	120(%rsp), %rdx
    11674. 

  11674.         adoxq	%rcx, %r14
    11675. 

  11675.         mulxq	152(%rsp), %rcx, %rbx
    11676. 

  11676.         adoxq	%rbp, %r15
    11677. 

  11677.         adcxq	%rcx, %r15
    11678. 

  11678.         # A[0] * B[3]
    11679. 

  11679.         mulxq	128(%rsp), %rdx, %rcx
    11680. 

  11680.         adcxq	%rbx, %rbp
    11681. 

  11681.         xorq	%rbx, %rbx
    11682. 

  11682.         adcxq	%rdx, %r12
    11683. 

  11683.         # A[3] * B[0]
    11684. 

  11684.         movq	96(%rsp), %rdx
    11685. 

  11685.         adcxq	%rcx, %r13
    11686. 

  11686.         mulxq	152(%rsp), %rdx, %rcx
    11687. 

  11687.         adoxq	%rdx, %r12
    11688. 

  11688.         adoxq	%rcx, %r13
    11689. 

  11689.         # A[2] * B[3]
    11690. 

  11690.         movq	120(%rsp), %rdx
    11691. 

  11691.         mulxq	144(%rsp), %rdx, %rcx
    11692. 

  11692.         adcxq	%rdx, %r14
    11693. 

  11693.         # A[3] * B[2]
    11694. 

  11694.         movq	112(%rsp), %rdx
    11695. 

  11695.         adcxq	%rcx, %r15
    11696. 

  11696.         mulxq	152(%rsp), %rcx, %rdx
    11697. 

  11697.         adcxq	%rbx, %rbp
    11698. 

  11698.         adoxq	%rcx, %r14
    11699. 

  11699.         adoxq	%rdx, %r15
    11700. 

  11700.         adoxq	%rbx, %rbp
    11701. 

  11701.         # Reduce
    11702. 

  11702.         movq	$0x7fffffffffffffff, %rbx
    11703. 

  11703.         #  Move top half into t4-t7 and remove top bit from t3
    11704. 

  11704.         shldq	$0x01, %r15, %rbp
    11705. 

  11705.         shldq	$0x01, %r14, %r15
    11706. 

  11706.         shldq	$0x01, %r13, %r14
    11707. 

  11707.         shldq	$0x01, %r12, %r13
    11708. 

  11708.         andq	%rbx, %r12
    11709. 

  11709.         #  Multiply top half by 19
    11710. 

  11710.         movq	$19, %rdx
    11711. 

  11711.         xorq	%rbx, %rbx
    11712. 

  11712.         mulxq	%r13, %rcx, %r13
    11713. 

  11713.         adcxq	%rcx, %r9
    11714. 

  11714.         adoxq	%r13, %r10
    11715. 

  11715.         mulxq	%r14, %rcx, %r14
    11716. 

  11716.         adcxq	%rcx, %r10
    11717. 

  11717.         adoxq	%r14, %r11
    11718. 

  11718.         mulxq	%r15, %rcx, %r15
    11719. 

  11719.         adcxq	%rcx, %r11
    11720. 

  11720.         adoxq	%r15, %r12
    11721. 

  11721.         mulxq	%rbp, %rbp, %rdx
    11722. 

  11722.         adcxq	%rbp, %r12
    11723. 

  11723.         adoxq	%rbx, %rdx
    11724. 

  11724.         adcxq	%rbx, %rdx
    11725. 

  11725.         #  Overflow
    11726. 

  11726.         shldq	$0x01, %r12, %rdx
    11727. 

  11727.         movq	$0x7fffffffffffffff, %rbx
    11728. 

  11728.         imulq	$19, %rdx, %rcx
    11729. 

  11729.         andq	%rbx, %r12
    11730. 

  11730.         addq	%rcx, %r9
    11731. 

  11731.         adcq	$0x00, %r10
    11732. 

  11732.         adcq	$0x00, %r11
    11733. 

  11733.         adcq	$0x00, %r12
    11734. 

  11734.         # Reduce if top bit set
    11735. 

  11735.         movq	%r12, %rdx
    11736. 

  11736.         sarq	$63, %rdx
    11737. 

  11737.         andq	$19, %rdx
    11738. 

  11738.         andq	%rbx, %r12
    11739. 

  11739.         addq	%rdx, %r9
    11740. 

  11740.         adcq	$0x00, %r10
    11741. 

  11741.         adcq	$0x00, %r11
    11742. 

  11742.         adcq	$0x00, %r12
    11743. 

  11743.         # Store
    11744. 

  11744.         movq	%r9, (%rsp)
    11745. 

  11745.         movq	%r10, 8(%rsp)
    11746. 

  11746.         movq	%r11, 16(%rsp)
    11747. 

  11747.         movq	%r12, 24(%rsp)
    11748. 

  11748.         decb	168(%rsp)
    11749. 

  11749.         jge	L_curve25519_avx2_bits
    11750. 

  11750.         movq	$63, 168(%rsp)
    11751. 

  11751.         decb	160(%rsp)
    11752. 

  11752.         jge	L_curve25519_avx2_words
    11753. 

  11753.         # Invert
    11754. 

  11754.         leaq	32(%rsp), %rdi
    11755. 

  11755.         movq	%rsp, %rsi
    11756. 

  11756. #ifndef __APPLE__
    11757. 

  11757.         callq	fe_sq_avx2@plt
    11758. 

  11758. #else
    11759. 

  11759.         callq	_fe_sq_avx2
    11760. 

  11760. #endif /* __APPLE__ */
    11761. 

  11761.         leaq	64(%rsp), %rdi
    11762. 

  11762.         leaq	32(%rsp), %rsi
    11763. 

  11763. #ifndef __APPLE__
    11764. 

  11764.         callq	fe_sq_avx2@plt
    11765. 

  11765. #else
    11766. 

  11766.         callq	_fe_sq_avx2
    11767. 

  11767. #endif /* __APPLE__ */
    11768. 

  11768.         leaq	64(%rsp), %rdi
    11769. 

  11769.         leaq	64(%rsp), %rsi
    11770. 

  11770. #ifndef __APPLE__
    11771. 

  11771.         callq	fe_sq_avx2@plt
    11772. 

  11772. #else
    11773. 

  11773.         callq	_fe_sq_avx2
    11774. 

  11774. #endif /* __APPLE__ */
    11775. 

  11775.         leaq	64(%rsp), %rdi
    11776. 

  11776.         movq	%rsp, %rsi
    11777. 

  11777.         leaq	64(%rsp), %rdx
    11778. 

  11778. #ifndef __APPLE__
    11779. 

  11779.         callq	fe_mul_avx2@plt
    11780. 

  11780. #else
    11781. 

  11781.         callq	_fe_mul_avx2
    11782. 

  11782. #endif /* __APPLE__ */
    11783. 

  11783.         leaq	32(%rsp), %rdi
    11784. 

  11784.         leaq	32(%rsp), %rsi
    11785. 

  11785.         leaq	64(%rsp), %rdx
    11786. 

  11786. #ifndef __APPLE__
    11787. 

  11787.         callq	fe_mul_avx2@plt
    11788. 

  11788. #else
    11789. 

  11789.         callq	_fe_mul_avx2
    11790. 

  11790. #endif /* __APPLE__ */
    11791. 

  11791.         leaq	96(%rsp), %rdi
    11792. 

  11792.         leaq	32(%rsp), %rsi
    11793. 

  11793. #ifndef __APPLE__
    11794. 

  11794.         callq	fe_sq_avx2@plt
    11795. 

  11795. #else
    11796. 

  11796.         callq	_fe_sq_avx2
    11797. 

  11797. #endif /* __APPLE__ */
    11798. 

  11798.         leaq	64(%rsp), %rdi
    11799. 

  11799.         leaq	64(%rsp), %rsi
    11800. 

  11800.         leaq	96(%rsp), %rdx
    11801. 

  11801. #ifndef __APPLE__
    11802. 

  11802.         callq	fe_mul_avx2@plt
    11803. 

  11803. #else
    11804. 

  11804.         callq	_fe_mul_avx2
    11805. 

  11805. #endif /* __APPLE__ */
    11806. 

  11806.         leaq	96(%rsp), %rdi
    11807. 

  11807.         leaq	64(%rsp), %rsi
    11808. 

  11808. #ifndef __APPLE__
    11809. 

  11809.         callq	fe_sq_avx2@plt
    11810. 

  11810. #else
    11811. 

  11811.         callq	_fe_sq_avx2
    11812. 

  11812. #endif /* __APPLE__ */
    11813. 

  11813.         leaq	96(%rsp), %rdi
    11814. 

  11814.         leaq	96(%rsp), %rsi
    11815. 

  11815.         movq	$4, %rdx
    11816. 

  11816. #ifndef __APPLE__
    11817. 

  11817.         callq	fe_sq_n_avx2@plt
    11818. 

  11818. #else
    11819. 

  11819.         callq	_fe_sq_n_avx2
    11820. 

  11820. #endif /* __APPLE__ */
    11821. 

  11821.         leaq	64(%rsp), %rdi
    11822. 

  11822.         leaq	96(%rsp), %rsi
    11823. 

  11823.         leaq	64(%rsp), %rdx
    11824. 

  11824. #ifndef __APPLE__
    11825. 

  11825.         callq	fe_mul_avx2@plt
    11826. 

  11826. #else
    11827. 

  11827.         callq	_fe_mul_avx2
    11828. 

  11828. #endif /* __APPLE__ */
    11829. 

  11829.         leaq	96(%rsp), %rdi
    11830. 

  11830.         leaq	64(%rsp), %rsi
    11831. 

  11831. #ifndef __APPLE__
    11832. 

  11832.         callq	fe_sq_avx2@plt
    11833. 

  11833. #else
    11834. 

  11834.         callq	_fe_sq_avx2
    11835. 

  11835. #endif /* __APPLE__ */
    11836. 

  11836.         leaq	96(%rsp), %rdi
    11837. 

  11837.         leaq	96(%rsp), %rsi
    11838. 

  11838.         movq	$9, %rdx
    11839. 

  11839. #ifndef __APPLE__
    11840. 

  11840.         callq	fe_sq_n_avx2@plt
    11841. 

  11841. #else
    11842. 

  11842.         callq	_fe_sq_n_avx2
    11843. 

  11843. #endif /* __APPLE__ */
    11844. 

  11844.         leaq	96(%rsp), %rdi
    11845. 

  11845.         leaq	96(%rsp), %rsi
    11846. 

  11846.         leaq	64(%rsp), %rdx
    11847. 

  11847. #ifndef __APPLE__
    11848. 

  11848.         callq	fe_mul_avx2@plt
    11849. 

  11849. #else
    11850. 

  11850.         callq	_fe_mul_avx2
    11851. 

  11851. #endif /* __APPLE__ */
    11852. 

  11852.         leaq	128(%rsp), %rdi
    11853. 

  11853.         leaq	96(%rsp), %rsi
    11854. 

  11854. #ifndef __APPLE__
    11855. 

  11855.         callq	fe_sq_avx2@plt
    11856. 

  11856. #else
    11857. 

  11857.         callq	_fe_sq_avx2
    11858. 

  11858. #endif /* __APPLE__ */
    11859. 

  11859.         leaq	128(%rsp), %rdi
    11860. 

  11860.         leaq	128(%rsp), %rsi
    11861. 

  11861.         movq	$19, %rdx
    11862. 

  11862. #ifndef __APPLE__
    11863. 

  11863.         callq	fe_sq_n_avx2@plt
    11864. 

  11864. #else
    11865. 

  11865.         callq	_fe_sq_n_avx2
    11866. 

  11866. #endif /* __APPLE__ */
    11867. 

  11867.         leaq	96(%rsp), %rdi
    11868. 

  11868.         leaq	128(%rsp), %rsi
    11869. 

  11869.         leaq	96(%rsp), %rdx
    11870. 

  11870. #ifndef __APPLE__
    11871. 

  11871.         callq	fe_mul_avx2@plt
    11872. 

  11872. #else
    11873. 

  11873.         callq	_fe_mul_avx2
    11874. 

  11874. #endif /* __APPLE__ */
    11875. 

  11875.         leaq	96(%rsp), %rdi
    11876. 

  11876.         leaq	96(%rsp), %rsi
    11877. 

  11877. #ifndef __APPLE__
    11878. 

  11878.         callq	fe_sq_avx2@plt
    11879. 

  11879. #else
    11880. 

  11880.         callq	_fe_sq_avx2
    11881. 

  11881. #endif /* __APPLE__ */
    11882. 

  11882.         leaq	96(%rsp), %rdi
    11883. 

  11883.         leaq	96(%rsp), %rsi
    11884. 

  11884.         movq	$9, %rdx
    11885. 

  11885. #ifndef __APPLE__
    11886. 

  11886.         callq	fe_sq_n_avx2@plt
    11887. 

  11887. #else
    11888. 

  11888.         callq	_fe_sq_n_avx2
    11889. 

  11889. #endif /* __APPLE__ */
    11890. 

  11890.         leaq	64(%rsp), %rdi
    11891. 

  11891.         leaq	96(%rsp), %rsi
    11892. 

  11892.         leaq	64(%rsp), %rdx
    11893. 

  11893. #ifndef __APPLE__
    11894. 

  11894.         callq	fe_mul_avx2@plt
    11895. 

  11895. #else
    11896. 

  11896.         callq	_fe_mul_avx2
    11897. 

  11897. #endif /* __APPLE__ */
    11898. 

  11898.         leaq	96(%rsp), %rdi
    11899. 

  11899.         leaq	64(%rsp), %rsi
    11900. 

  11900. #ifndef __APPLE__
    11901. 

  11901.         callq	fe_sq_avx2@plt
    11902. 

  11902. #else
    11903. 

  11903.         callq	_fe_sq_avx2
    11904. 

  11904. #endif /* __APPLE__ */
    11905. 

  11905.         leaq	96(%rsp), %rdi
    11906. 

  11906.         leaq	96(%rsp), %rsi
    11907. 

  11907.         movq	$49, %rdx
    11908. 

  11908. #ifndef __APPLE__
    11909. 

  11909.         callq	fe_sq_n_avx2@plt
    11910. 

  11910. #else
    11911. 

  11911.         callq	_fe_sq_n_avx2
    11912. 

  11912. #endif /* __APPLE__ */
    11913. 

  11913.         leaq	96(%rsp), %rdi
    11914. 

  11914.         leaq	96(%rsp), %rsi
    11915. 

  11915.         leaq	64(%rsp), %rdx
    11916. 

  11916. #ifndef __APPLE__
    11917. 

  11917.         callq	fe_mul_avx2@plt
    11918. 

  11918. #else
    11919. 

  11919.         callq	_fe_mul_avx2
    11920. 

  11920. #endif /* __APPLE__ */
    11921. 

  11921.         leaq	128(%rsp), %rdi
    11922. 

  11922.         leaq	96(%rsp), %rsi
    11923. 

  11923. #ifndef __APPLE__
    11924. 

  11924.         callq	fe_sq_avx2@plt
    11925. 

  11925. #else
    11926. 

  11926.         callq	_fe_sq_avx2
    11927. 

  11927. #endif /* __APPLE__ */
    11928. 

  11928.         leaq	128(%rsp), %rdi
    11929. 

  11929.         leaq	128(%rsp), %rsi
    11930. 

  11930.         movq	$0x63, %rdx
    11931. 

  11931. #ifndef __APPLE__
    11932. 

  11932.         callq	fe_sq_n_avx2@plt
    11933. 

  11933. #else
    11934. 

  11934.         callq	_fe_sq_n_avx2
    11935. 

  11935. #endif /* __APPLE__ */
    11936. 

  11936.         leaq	96(%rsp), %rdi
    11937. 

  11937.         leaq	128(%rsp), %rsi
    11938. 

  11938.         leaq	96(%rsp), %rdx
    11939. 

  11939. #ifndef __APPLE__
    11940. 

  11940.         callq	fe_mul_avx2@plt
    11941. 

  11941. #else
    11942. 

  11942.         callq	_fe_mul_avx2
    11943. 

  11943. #endif /* __APPLE__ */
    11944. 

  11944.         leaq	96(%rsp), %rdi
    11945. 

  11945.         leaq	96(%rsp), %rsi
    11946. 

  11946. #ifndef __APPLE__
    11947. 

  11947.         callq	fe_sq_avx2@plt
    11948. 

  11948. #else
    11949. 

  11949.         callq	_fe_sq_avx2
    11950. 

  11950. #endif /* __APPLE__ */
    11951. 

  11951.         leaq	96(%rsp), %rdi
    11952. 

  11952.         leaq	96(%rsp), %rsi
    11953. 

  11953.         movq	$49, %rdx
    11954. 

  11954. #ifndef __APPLE__
    11955. 

  11955.         callq	fe_sq_n_avx2@plt
    11956. 

  11956. #else
    11957. 

  11957.         callq	_fe_sq_n_avx2
    11958. 

  11958. #endif /* __APPLE__ */
    11959. 

  11959.         leaq	64(%rsp), %rdi
    11960. 

  11960.         leaq	96(%rsp), %rsi
    11961. 

  11961.         leaq	64(%rsp), %rdx
    11962. 

  11962. #ifndef __APPLE__
    11963. 

  11963.         callq	fe_mul_avx2@plt
    11964. 

  11964. #else
    11965. 

  11965.         callq	_fe_mul_avx2
    11966. 

  11966. #endif /* __APPLE__ */
    11967. 

  11967.         leaq	64(%rsp), %rdi
    11968. 

  11968.         leaq	64(%rsp), %rsi
    11969. 

  11969. #ifndef __APPLE__
    11970. 

  11970.         callq	fe_sq_avx2@plt
    11971. 

  11971. #else
    11972. 

  11972.         callq	_fe_sq_avx2
    11973. 

  11973. #endif /* __APPLE__ */
    11974. 

  11974.         leaq	64(%rsp), %rdi
    11975. 

  11975.         leaq	64(%rsp), %rsi
    11976. 

  11976.         movq	$4, %rdx
    11977. 

  11977. #ifndef __APPLE__
    11978. 

  11978.         callq	fe_sq_n_avx2@plt
    11979. 

  11979. #else
    11980. 

  11980.         callq	_fe_sq_n_avx2
    11981. 

  11981. #endif /* __APPLE__ */
    11982. 

  11982.         movq	%rsp, %rdi
    11983. 

  11983.         leaq	64(%rsp), %rsi
    11984. 

  11984.         leaq	32(%rsp), %rdx
    11985. 

  11985. #ifndef __APPLE__
    11986. 

  11986.         callq	fe_mul_avx2@plt
    11987. 

  11987. #else
    11988. 

  11988.         callq	_fe_mul_avx2
    11989. 

  11989. #endif /* __APPLE__ */
    11990. 

  11990.         movq	176(%rsp), %rdi
    11991. 

  11991.         # Multiply
    11992. 

  11992.         # A[0] * B[0]
    11993. 

  11993.         movq	(%rsp), %rdx
    11994. 

  11994.         mulxq	(%rdi), %r9, %r10
    11995. 

  11995.         # A[2] * B[0]
    11996. 

  11996.         mulxq	16(%rdi), %r11, %r12
    11997. 

  11997.         # A[1] * B[0]
    11998. 

  11998.         mulxq	8(%rdi), %rcx, %rbx
    11999. 

  11999.         xorq	%rbp, %rbp
    12000. 

  12000.         adcxq	%rcx, %r10
    12001. 

  12001.         # A[1] * B[3]
    12002. 

  12002.         movq	24(%rsp), %rdx
    12003. 

  12003.         mulxq	8(%rdi), %r13, %r14
    12004. 

  12004.         adcxq	%rbx, %r11
    12005. 

  12005.         # A[0] * B[1]
    12006. 

  12006.         movq	8(%rsp), %rdx
    12007. 

  12007.         mulxq	(%rdi), %rcx, %rbx
    12008. 

  12008.         adoxq	%rcx, %r10
    12009. 

  12009.         # A[2] * B[1]
    12010. 

  12010.         mulxq	16(%rdi), %rcx, %r15
    12011. 

  12011.         adoxq	%rbx, %r11
    12012. 

  12012.         adcxq	%rcx, %r12
    12013. 

  12013.         # A[1] * B[2]
    12014. 

  12014.         movq	16(%rsp), %rdx
    12015. 

  12015.         mulxq	8(%rdi), %rcx, %rbx
    12016. 

  12016.         adcxq	%r15, %r13
    12017. 

  12017.         adoxq	%rcx, %r12
    12018. 

  12018.         adcxq	%rbp, %r14
    12019. 

  12019.         adoxq	%rbx, %r13
    12020. 

  12020.         # A[0] * B[2]
    12021. 

  12021.         mulxq	(%rdi), %rcx, %rbx
    12022. 

  12022.         adoxq	%rbp, %r14
    12023. 

  12023.         xorq	%r15, %r15
    12024. 

  12024.         adcxq	%rcx, %r11
    12025. 

  12025.         # A[1] * B[1]
    12026. 

  12026.         movq	8(%rsp), %rdx
    12027. 

  12027.         mulxq	8(%rdi), %rdx, %rcx
    12028. 

  12028.         adcxq	%rbx, %r12
    12029. 

  12029.         adoxq	%rdx, %r11
    12030. 

  12030.         # A[3] * B[1]
    12031. 

  12031.         movq	8(%rsp), %rdx
    12032. 

  12032.         adoxq	%rcx, %r12
    12033. 

  12033.         mulxq	24(%rdi), %rcx, %rbx
    12034. 

  12034.         adcxq	%rcx, %r13
    12035. 

  12035.         # A[2] * B[2]
    12036. 

  12036.         movq	16(%rsp), %rdx
    12037. 

  12037.         mulxq	16(%rdi), %rdx, %rcx
    12038. 

  12038.         adcxq	%rbx, %r14
    12039. 

  12039.         adoxq	%rdx, %r13
    12040. 

  12040.         # A[3] * B[3]
    12041. 

  12041.         movq	24(%rsp), %rdx
    12042. 

  12042.         adoxq	%rcx, %r14
    12043. 

  12043.         mulxq	24(%rdi), %rcx, %rbx
    12044. 

  12044.         adoxq	%rbp, %r15
    12045. 

  12045.         adcxq	%rcx, %r15
    12046. 

  12046.         # A[0] * B[3]
    12047. 

  12047.         mulxq	(%rdi), %rdx, %rcx
    12048. 

  12048.         adcxq	%rbx, %rbp
    12049. 

  12049.         xorq	%rbx, %rbx
    12050. 

  12050.         adcxq	%rdx, %r12
    12051. 

  12051.         # A[3] * B[0]
    12052. 

  12052.         movq	(%rsp), %rdx
    12053. 

  12053.         adcxq	%rcx, %r13
    12054. 

  12054.         mulxq	24(%rdi), %rdx, %rcx
    12055. 

  12055.         adoxq	%rdx, %r12
    12056. 

  12056.         adoxq	%rcx, %r13
    12057. 

  12057.         # A[2] * B[3]
    12058. 

  12058.         movq	24(%rsp), %rdx
    12059. 

  12059.         mulxq	16(%rdi), %rdx, %rcx
    12060. 

  12060.         adcxq	%rdx, %r14
    12061. 

  12061.         # A[3] * B[2]
    12062. 

  12062.         movq	16(%rsp), %rdx
    12063. 

  12063.         adcxq	%rcx, %r15
    12064. 

  12064.         mulxq	24(%rdi), %rcx, %rdx
    12065. 

  12065.         adcxq	%rbx, %rbp
    12066. 

  12066.         adoxq	%rcx, %r14
    12067. 

  12067.         adoxq	%rdx, %r15
    12068. 

  12068.         adoxq	%rbx, %rbp
    12069. 

  12069.         # Reduce
    12070. 

  12070.         movq	$0x7fffffffffffffff, %rbx
    12071. 

  12071.         #  Move top half into t4-t7 and remove top bit from t3
    12072. 

  12072.         shldq	$0x01, %r15, %rbp
    12073. 

  12073.         shldq	$0x01, %r14, %r15
    12074. 

  12074.         shldq	$0x01, %r13, %r14
    12075. 

  12075.         shldq	$0x01, %r12, %r13
    12076. 

  12076.         andq	%rbx, %r12
    12077. 

  12077.         #  Multiply top half by 19
    12078. 

  12078.         movq	$19, %rdx
    12079. 

  12079.         xorq	%rbx, %rbx
    12080. 

  12080.         mulxq	%r13, %rcx, %r13
    12081. 

  12081.         adcxq	%rcx, %r9
    12082. 

  12082.         adoxq	%r13, %r10
    12083. 

  12083.         mulxq	%r14, %rcx, %r14
    12084. 

  12084.         adcxq	%rcx, %r10
    12085. 

  12085.         adoxq	%r14, %r11
    12086. 

  12086.         mulxq	%r15, %rcx, %r15
    12087. 

  12087.         adcxq	%rcx, %r11
    12088. 

  12088.         adoxq	%r15, %r12
    12089. 

  12089.         mulxq	%rbp, %rbp, %rdx
    12090. 

  12090.         adcxq	%rbp, %r12
    12091. 

  12091.         adoxq	%rbx, %rdx
    12092. 

  12092.         adcxq	%rbx, %rdx
    12093. 

  12093.         #  Overflow
    12094. 

  12094.         shldq	$0x01, %r12, %rdx
    12095. 

  12095.         movq	$0x7fffffffffffffff, %rbx
    12096. 

  12096.         imulq	$19, %rdx, %rcx
    12097. 

  12097.         andq	%rbx, %r12
    12098. 

  12098.         addq	%rcx, %r9
    12099. 

  12099.         adcq	$0x00, %r10
    12100. 

  12100.         adcq	$0x00, %r11
    12101. 

  12101.         adcq	$0x00, %r12
    12102. 

  12102.         # Reduce if top bit set
    12103. 

  12103.         movq	%r12, %rdx
    12104. 

  12104.         sarq	$63, %rdx
    12105. 

  12105.         andq	$19, %rdx
    12106. 

  12106.         andq	%rbx, %r12
    12107. 

  12107.         addq	%rdx, %r9
    12108. 

  12108.         adcq	$0x00, %r10
    12109. 

  12109.         adcq	$0x00, %r11
    12110. 

  12110.         adcq	$0x00, %r12
    12111. 

  12111.         movq	$0x7fffffffffffffff, %rbx
    12112. 

  12112.         movq	%r9, %rdx
    12113. 

  12113.         addq	$19, %rdx
    12114. 

  12114.         movq	%r10, %rdx
    12115. 

  12115.         adcq	$0x00, %rdx
    12116. 

  12116.         movq	%r11, %rdx
    12117. 

  12117.         adcq	$0x00, %rdx
    12118. 

  12118.         movq	%r12, %rdx
    12119. 

  12119.         adcq	$0x00, %rdx
    12120. 

  12120.         sarq	$63, %rdx
    12121. 

  12121.         andq	$19, %rdx
    12122. 

  12122.         addq	%rdx, %r9
    12123. 

  12123.         adcq	$0x00, %r10
    12124. 

  12124.         adcq	$0x00, %r11
    12125. 

  12125.         adcq	$0x00, %r12
    12126. 

  12126.         andq	%rbx, %r12
    12127. 

  12127.         # Store
    12128. 

  12128.         movq	%r9, (%rdi)
    12129. 

  12129.         movq	%r10, 8(%rdi)
    12130. 

  12130.         movq	%r11, 16(%rdi)
    12131. 

  12131.         movq	%r12, 24(%rdi)
    12132. 

  12132.         xorq	%rax, %rax
    12133. 

  12133.         addq	$0xc0, %rsp
    12134. 

  12134.         popq	%rbp
    12135. 

  12135.         popq	%r15
    12136. 

  12136.         popq	%r14
    12137. 

  12137.         popq	%r13
    12138. 

  12138.         popq	%r12
    12139. 

  12139.         popq	%rbx
    12140. 

  12140.         repz retq
    12141. 

  12141. #ifndef __APPLE__
    12142. 

  12142. .size	curve25519_avx2,.-curve25519_avx2
    12143. 

  12143. #endif /* __APPLE__ */
    12144. 

  12144. #ifndef __APPLE__
    12145. 

  12145. .text
    12146. 

  12146. .globl	fe_pow22523_avx2
    12147. 

  12147. .type	fe_pow22523_avx2,@function
    12148. 

  12148. .align	16
    12149. 

  12149. fe_pow22523_avx2:
    12150. 

  12150. #else
    12151. 

  12151. .section	__TEXT,__text
    12152. 

  12152. .globl	_fe_pow22523_avx2
    12153. 

  12153. .p2align	4
    12154. 

  12154. _fe_pow22523_avx2:
    12155. 

  12155. #endif /* __APPLE__ */
    12156. 

  12156.         subq	$0x70, %rsp
    12157. 

  12157.         # pow22523
    12158. 

  12158.         movq	%rdi, 96(%rsp)
    12159. 

  12159.         movq	%rsi, 104(%rsp)
    12160. 

  12160.         movq	%rsp, %rdi
    12161. 

  12161.         movq	104(%rsp), %rsi
    12162. 

  12162. #ifndef __APPLE__
    12163. 

  12163.         callq	fe_sq_avx2@plt
    12164. 

  12164. #else
    12165. 

  12165.         callq	_fe_sq_avx2
    12166. 

  12166. #endif /* __APPLE__ */
    12167. 

  12167.         leaq	32(%rsp), %rdi
    12168. 

  12168.         movq	%rsp, %rsi
    12169. 

  12169. #ifndef __APPLE__
    12170. 

  12170.         callq	fe_sq_avx2@plt
    12171. 

  12171. #else
    12172. 

  12172.         callq	_fe_sq_avx2
    12173. 

  12173. #endif /* __APPLE__ */
    12174. 

  12174.         leaq	32(%rsp), %rdi
    12175. 

  12175.         leaq	32(%rsp), %rsi
    12176. 

  12176. #ifndef __APPLE__
    12177. 

  12177.         callq	fe_sq_avx2@plt
    12178. 

  12178. #else
    12179. 

  12179.         callq	_fe_sq_avx2
    12180. 

  12180. #endif /* __APPLE__ */
    12181. 

  12181.         leaq	32(%rsp), %rdi
    12182. 

  12182.         movq	104(%rsp), %rsi
    12183. 

  12183.         leaq	32(%rsp), %rdx
    12184. 

  12184. #ifndef __APPLE__
    12185. 

  12185.         callq	fe_mul_avx2@plt
    12186. 

  12186. #else
    12187. 

  12187.         callq	_fe_mul_avx2
    12188. 

  12188. #endif /* __APPLE__ */
    12189. 

  12189.         movq	%rsp, %rdi
    12190. 

  12190.         movq	%rsp, %rsi
    12191. 

  12191.         leaq	32(%rsp), %rdx
    12192. 

  12192. #ifndef __APPLE__
    12193. 

  12193.         callq	fe_mul_avx2@plt
    12194. 

  12194. #else
    12195. 

  12195.         callq	_fe_mul_avx2
    12196. 

  12196. #endif /* __APPLE__ */
    12197. 

  12197.         movq	%rsp, %rdi
    12198. 

  12198.         movq	%rsp, %rsi
    12199. 

  12199. #ifndef __APPLE__
    12200. 

  12200.         callq	fe_sq_avx2@plt
    12201. 

  12201. #else
    12202. 

  12202.         callq	_fe_sq_avx2
    12203. 

  12203. #endif /* __APPLE__ */
    12204. 

  12204.         movq	%rsp, %rdi
    12205. 

  12205.         leaq	32(%rsp), %rsi
    12206. 

  12206.         movq	%rsp, %rdx
    12207. 

  12207. #ifndef __APPLE__
    12208. 

  12208.         callq	fe_mul_avx2@plt
    12209. 

  12209. #else
    12210. 

  12210.         callq	_fe_mul_avx2
    12211. 

  12211. #endif /* __APPLE__ */
    12212. 

  12212.         leaq	32(%rsp), %rdi
    12213. 

  12213.         movq	%rsp, %rsi
    12214. 

  12214. #ifndef __APPLE__
    12215. 

  12215.         callq	fe_sq_avx2@plt
    12216. 

  12216. #else
    12217. 

  12217.         callq	_fe_sq_avx2
    12218. 

  12218. #endif /* __APPLE__ */
    12219. 

  12219.         leaq	32(%rsp), %rdi
    12220. 

  12220.         leaq	32(%rsp), %rsi
    12221. 

  12221.         movb	$4, %dl
    12222. 

  12222. #ifndef __APPLE__
    12223. 

  12223.         callq	fe_sq_n_avx2@plt
    12224. 

  12224. #else
    12225. 

  12225.         callq	_fe_sq_n_avx2
    12226. 

  12226. #endif /* __APPLE__ */
    12227. 

  12227.         movq	%rsp, %rdi
    12228. 

  12228.         leaq	32(%rsp), %rsi
    12229. 

  12229.         movq	%rsp, %rdx
    12230. 

  12230. #ifndef __APPLE__
    12231. 

  12231.         callq	fe_mul_avx2@plt
    12232. 

  12232. #else
    12233. 

  12233.         callq	_fe_mul_avx2
    12234. 

  12234. #endif /* __APPLE__ */
    12235. 

  12235.         leaq	32(%rsp), %rdi
    12236. 

  12236.         movq	%rsp, %rsi
    12237. 

  12237. #ifndef __APPLE__
    12238. 

  12238.         callq	fe_sq_avx2@plt
    12239. 

  12239. #else
    12240. 

  12240.         callq	_fe_sq_avx2
    12241. 

  12241. #endif /* __APPLE__ */
    12242. 

  12242.         leaq	32(%rsp), %rdi
    12243. 

  12243.         leaq	32(%rsp), %rsi
    12244. 

  12244.         movb	$9, %dl
    12245. 

  12245. #ifndef __APPLE__
    12246. 

  12246.         callq	fe_sq_n_avx2@plt
    12247. 

  12247. #else
    12248. 

  12248.         callq	_fe_sq_n_avx2
    12249. 

  12249. #endif /* __APPLE__ */
    12250. 

  12250.         leaq	32(%rsp), %rdi
    12251. 

  12251.         leaq	32(%rsp), %rsi
    12252. 

  12252.         movq	%rsp, %rdx
    12253. 

  12253. #ifndef __APPLE__
    12254. 

  12254.         callq	fe_mul_avx2@plt
    12255. 

  12255. #else
    12256. 

  12256.         callq	_fe_mul_avx2
    12257. 

  12257. #endif /* __APPLE__ */
    12258. 

  12258.         leaq	64(%rsp), %rdi
    12259. 

  12259.         leaq	32(%rsp), %rsi
    12260. 

  12260. #ifndef __APPLE__
    12261. 

  12261.         callq	fe_sq_avx2@plt
    12262. 

  12262. #else
    12263. 

  12263.         callq	_fe_sq_avx2
    12264. 

  12264. #endif /* __APPLE__ */
    12265. 

  12265.         leaq	64(%rsp), %rdi
    12266. 

  12266.         leaq	64(%rsp), %rsi
    12267. 

  12267.         movb	$19, %dl
    12268. 

  12268. #ifndef __APPLE__
    12269. 

  12269.         callq	fe_sq_n_avx2@plt
    12270. 

  12270. #else
    12271. 

  12271.         callq	_fe_sq_n_avx2
    12272. 

  12272. #endif /* __APPLE__ */
    12273. 

  12273.         leaq	32(%rsp), %rdi
    12274. 

  12274.         leaq	64(%rsp), %rsi
    12275. 

  12275.         leaq	32(%rsp), %rdx
    12276. 

  12276. #ifndef __APPLE__
    12277. 

  12277.         callq	fe_mul_avx2@plt
    12278. 

  12278. #else
    12279. 

  12279.         callq	_fe_mul_avx2
    12280. 

  12280. #endif /* __APPLE__ */
    12281. 

  12281.         leaq	32(%rsp), %rdi
    12282. 

  12282.         leaq	32(%rsp), %rsi
    12283. 

  12283. #ifndef __APPLE__
    12284. 

  12284.         callq	fe_sq_avx2@plt
    12285. 

  12285. #else
    12286. 

  12286.         callq	_fe_sq_avx2
    12287. 

  12287. #endif /* __APPLE__ */
    12288. 

  12288.         leaq	32(%rsp), %rdi
    12289. 

  12289.         leaq	32(%rsp), %rsi
    12290. 

  12290.         movb	$9, %dl
    12291. 

  12291. #ifndef __APPLE__
    12292. 

  12292.         callq	fe_sq_n_avx2@plt
    12293. 

  12293. #else
    12294. 

  12294.         callq	_fe_sq_n_avx2
    12295. 

  12295. #endif /* __APPLE__ */
    12296. 

  12296.         movq	%rsp, %rdi
    12297. 

  12297.         leaq	32(%rsp), %rsi
    12298. 

  12298.         movq	%rsp, %rdx
    12299. 

  12299. #ifndef __APPLE__
    12300. 

  12300.         callq	fe_mul_avx2@plt
    12301. 

  12301. #else
    12302. 

  12302.         callq	_fe_mul_avx2
    12303. 

  12303. #endif /* __APPLE__ */
    12304. 

  12304.         leaq	32(%rsp), %rdi
    12305. 

  12305.         movq	%rsp, %rsi
    12306. 

  12306. #ifndef __APPLE__
    12307. 

  12307.         callq	fe_sq_avx2@plt
    12308. 

  12308. #else
    12309. 

  12309.         callq	_fe_sq_avx2
    12310. 

  12310. #endif /* __APPLE__ */
    12311. 

  12311.         leaq	32(%rsp), %rdi
    12312. 

  12312.         leaq	32(%rsp), %rsi
    12313. 

  12313.         movb	$49, %dl
    12314. 

  12314. #ifndef __APPLE__
    12315. 

  12315.         callq	fe_sq_n_avx2@plt
    12316. 

  12316. #else
    12317. 

  12317.         callq	_fe_sq_n_avx2
    12318. 

  12318. #endif /* __APPLE__ */
    12319. 

  12319.         leaq	32(%rsp), %rdi
    12320. 

  12320.         leaq	32(%rsp), %rsi
    12321. 

  12321.         movq	%rsp, %rdx
    12322. 

  12322. #ifndef __APPLE__
    12323. 

  12323.         callq	fe_mul_avx2@plt
    12324. 

  12324. #else
    12325. 

  12325.         callq	_fe_mul_avx2
    12326. 

  12326. #endif /* __APPLE__ */
    12327. 

  12327.         leaq	64(%rsp), %rdi
    12328. 

  12328.         leaq	32(%rsp), %rsi
    12329. 

  12329. #ifndef __APPLE__
    12330. 

  12330.         callq	fe_sq_avx2@plt
    12331. 

  12331. #else
    12332. 

  12332.         callq	_fe_sq_avx2
    12333. 

  12333. #endif /* __APPLE__ */
    12334. 

  12334.         leaq	64(%rsp), %rdi
    12335. 

  12335.         leaq	64(%rsp), %rsi
    12336. 

  12336.         movb	$0x63, %dl
    12337. 

  12337. #ifndef __APPLE__
    12338. 

  12338.         callq	fe_sq_n_avx2@plt
    12339. 

  12339. #else
    12340. 

  12340.         callq	_fe_sq_n_avx2
    12341. 

  12341. #endif /* __APPLE__ */
    12342. 

  12342.         leaq	32(%rsp), %rdi
    12343. 

  12343.         leaq	64(%rsp), %rsi
    12344. 

  12344.         leaq	32(%rsp), %rdx
    12345. 

  12345. #ifndef __APPLE__
    12346. 

  12346.         callq	fe_mul_avx2@plt
    12347. 

  12347. #else
    12348. 

  12348.         callq	_fe_mul_avx2
    12349. 

  12349. #endif /* __APPLE__ */
    12350. 

  12350.         leaq	32(%rsp), %rdi
    12351. 

  12351.         leaq	32(%rsp), %rsi
    12352. 

  12352. #ifndef __APPLE__
    12353. 

  12353.         callq	fe_sq_avx2@plt
    12354. 

  12354. #else
    12355. 

  12355.         callq	_fe_sq_avx2
    12356. 

  12356. #endif /* __APPLE__ */
    12357. 

  12357.         leaq	32(%rsp), %rdi
    12358. 

  12358.         leaq	32(%rsp), %rsi
    12359. 

  12359.         movb	$49, %dl
    12360. 

  12360. #ifndef __APPLE__
    12361. 

  12361.         callq	fe_sq_n_avx2@plt
    12362. 

  12362. #else
    12363. 

  12363.         callq	_fe_sq_n_avx2
    12364. 

  12364. #endif /* __APPLE__ */
    12365. 

  12365.         movq	%rsp, %rdi
    12366. 

  12366.         leaq	32(%rsp), %rsi
    12367. 

  12367.         movq	%rsp, %rdx
    12368. 

  12368. #ifndef __APPLE__
    12369. 

  12369.         callq	fe_mul_avx2@plt
    12370. 

  12370. #else
    12371. 

  12371.         callq	_fe_mul_avx2
    12372. 

  12372. #endif /* __APPLE__ */
    12373. 

  12373.         movq	%rsp, %rdi
    12374. 

  12374.         movq	%rsp, %rsi
    12375. 

  12375. #ifndef __APPLE__
    12376. 

  12376.         callq	fe_sq_avx2@plt
    12377. 

  12377. #else
    12378. 

  12378.         callq	_fe_sq_avx2
    12379. 

  12379. #endif /* __APPLE__ */
    12380. 

  12380.         movq	%rsp, %rdi
    12381. 

  12381.         movq	%rsp, %rsi
    12382. 

  12382. #ifndef __APPLE__
    12383. 

  12383.         callq	fe_sq_avx2@plt
    12384. 

  12384. #else
    12385. 

  12385.         callq	_fe_sq_avx2
    12386. 

  12386. #endif /* __APPLE__ */
    12387. 

  12387.         movq	96(%rsp), %rdi
    12388. 

  12388.         movq	%rsp, %rsi
    12389. 

  12389.         movq	104(%rsp), %rdx
    12390. 

  12390. #ifndef __APPLE__
    12391. 

  12391.         callq	fe_mul_avx2@plt
    12392. 

  12392. #else
    12393. 

  12393.         callq	_fe_mul_avx2
    12394. 

  12394. #endif /* __APPLE__ */
    12395. 

  12395.         movq	104(%rsp), %rsi
    12396. 

  12396.         movq	96(%rsp), %rdi
    12397. 

  12397.         addq	$0x70, %rsp
    12398. 

  12398.         repz retq
    12399. 

  12399. #ifndef __APPLE__
    12400. 

  12400. .text
    12401. 

  12401. .globl	fe_ge_to_p2_avx2
    12402. 

  12402. .type	fe_ge_to_p2_avx2,@function
    12403. 

  12403. .align	16
    12404. 

  12404. fe_ge_to_p2_avx2:
    12405. 

  12405. #else
    12406. 

  12406. .section	__TEXT,__text
    12407. 

  12407. .globl	_fe_ge_to_p2_avx2
    12408. 

  12408. .p2align	4
    12409. 

  12409. _fe_ge_to_p2_avx2:
    12410. 

  12410. #endif /* __APPLE__ */
    12411. 

  12411.         pushq	%rbx
    12412. 

  12412.         pushq	%r12
    12413. 

  12413.         pushq	%r13
    12414. 

  12414.         pushq	%r14
    12415. 

  12415.         pushq	%r15
    12416. 

  12416.         subq	$40, %rsp
    12417. 

  12417.         movq	%rsi, (%rsp)
    12418. 

  12418.         movq	%rdx, 8(%rsp)
    12419. 

  12419.         movq	%rcx, 16(%rsp)
    12420. 

  12420.         movq	%r8, 24(%rsp)
    12421. 

  12421.         movq	%r9, 32(%rsp)
    12422. 

  12422.         movq	16(%rsp), %rsi
    12423. 

  12423.         movq	88(%rsp), %rbx
    12424. 

  12424.         # Multiply
    12425. 

  12425.         # A[0] * B[0]
    12426. 

  12426.         movq	(%rbx), %rdx
    12427. 

  12427.         mulxq	(%rsi), %r8, %r9
    12428. 

  12428.         # A[2] * B[0]
    12429. 

  12429.         mulxq	16(%rsi), %r10, %r11
    12430. 

  12430.         # A[1] * B[0]
    12431. 

  12431.         mulxq	8(%rsi), %rcx, %rax
    12432. 

  12432.         xorq	%r15, %r15
    12433. 

  12433.         adcxq	%rcx, %r9
    12434. 

  12434.         # A[1] * B[3]
    12435. 

  12435.         movq	24(%rbx), %rdx
    12436. 

  12436.         mulxq	8(%rsi), %r12, %r13
    12437. 

  12437.         adcxq	%rax, %r10
    12438. 

  12438.         # A[0] * B[1]
    12439. 

  12439.         movq	8(%rbx), %rdx
    12440. 

  12440.         mulxq	(%rsi), %rcx, %rax
    12441. 

  12441.         adoxq	%rcx, %r9
    12442. 

  12442.         # A[2] * B[1]
    12443. 

  12443.         mulxq	16(%rsi), %rcx, %r14
    12444. 

  12444.         adoxq	%rax, %r10
    12445. 

  12445.         adcxq	%rcx, %r11
    12446. 

  12446.         # A[1] * B[2]
    12447. 

  12447.         movq	16(%rbx), %rdx
    12448. 

  12448.         mulxq	8(%rsi), %rcx, %rax
    12449. 

  12449.         adcxq	%r14, %r12
    12450. 

  12450.         adoxq	%rcx, %r11
    12451. 

  12451.         adcxq	%r15, %r13
    12452. 

  12452.         adoxq	%rax, %r12
    12453. 

  12453.         # A[0] * B[2]
    12454. 

  12454.         mulxq	(%rsi), %rcx, %rax
    12455. 

  12455.         adoxq	%r15, %r13
    12456. 

  12456.         xorq	%r14, %r14
    12457. 

  12457.         adcxq	%rcx, %r10
    12458. 

  12458.         # A[1] * B[1]
    12459. 

  12459.         movq	8(%rbx), %rdx
    12460. 

  12460.         mulxq	8(%rsi), %rdx, %rcx
    12461. 

  12461.         adcxq	%rax, %r11
    12462. 

  12462.         adoxq	%rdx, %r10
    12463. 

  12463.         # A[3] * B[1]
    12464. 

  12464.         movq	8(%rbx), %rdx
    12465. 

  12465.         adoxq	%rcx, %r11
    12466. 

  12466.         mulxq	24(%rsi), %rcx, %rax
    12467. 

  12467.         adcxq	%rcx, %r12
    12468. 

  12468.         # A[2] * B[2]
    12469. 

  12469.         movq	16(%rbx), %rdx
    12470. 

  12470.         mulxq	16(%rsi), %rdx, %rcx
    12471. 

  12471.         adcxq	%rax, %r13
    12472. 

  12472.         adoxq	%rdx, %r12
    12473. 

  12473.         # A[3] * B[3]
    12474. 

  12474.         movq	24(%rbx), %rdx
    12475. 

  12475.         adoxq	%rcx, %r13
    12476. 

  12476.         mulxq	24(%rsi), %rcx, %rax
    12477. 

  12477.         adoxq	%r15, %r14
    12478. 

  12478.         adcxq	%rcx, %r14
    12479. 

  12479.         # A[0] * B[3]
    12480. 

  12480.         mulxq	(%rsi), %rdx, %rcx
    12481. 

  12481.         adcxq	%rax, %r15
    12482. 

  12482.         xorq	%rax, %rax
    12483. 

  12483.         adcxq	%rdx, %r11
    12484. 

  12484.         # A[3] * B[0]
    12485. 

  12485.         movq	(%rbx), %rdx
    12486. 

  12486.         adcxq	%rcx, %r12
    12487. 

  12487.         mulxq	24(%rsi), %rdx, %rcx
    12488. 

  12488.         adoxq	%rdx, %r11
    12489. 

  12489.         adoxq	%rcx, %r12
    12490. 

  12490.         # A[2] * B[3]
    12491. 

  12491.         movq	24(%rbx), %rdx
    12492. 

  12492.         mulxq	16(%rsi), %rdx, %rcx
    12493. 

  12493.         adcxq	%rdx, %r13
    12494. 

  12494.         # A[3] * B[2]
    12495. 

  12495.         movq	16(%rbx), %rdx
    12496. 

  12496.         adcxq	%rcx, %r14
    12497. 

  12497.         mulxq	24(%rsi), %rcx, %rdx
    12498. 

  12498.         adcxq	%rax, %r15
    12499. 

  12499.         adoxq	%rcx, %r13
    12500. 

  12500.         adoxq	%rdx, %r14
    12501. 

  12501.         adoxq	%rax, %r15
    12502. 

  12502.         # Reduce
    12503. 

  12503.         movq	$0x7fffffffffffffff, %rax
    12504. 

  12504.         #  Move top half into t4-t7 and remove top bit from t3
    12505. 

  12505.         shldq	$0x01, %r14, %r15
    12506. 

  12506.         shldq	$0x01, %r13, %r14
    12507. 

  12507.         shldq	$0x01, %r12, %r13
    12508. 

  12508.         shldq	$0x01, %r11, %r12
    12509. 

  12509.         andq	%rax, %r11
    12510. 

  12510.         #  Multiply top half by 19
    12511. 

  12511.         movq	$19, %rdx
    12512. 

  12512.         xorq	%rax, %rax
    12513. 

  12513.         mulxq	%r12, %rcx, %r12
    12514. 

  12514.         adcxq	%rcx, %r8
    12515. 

  12515.         adoxq	%r12, %r9
    12516. 

  12516.         mulxq	%r13, %rcx, %r13
    12517. 

  12517.         adcxq	%rcx, %r9
    12518. 

  12518.         adoxq	%r13, %r10
    12519. 

  12519.         mulxq	%r14, %rcx, %r14
    12520. 

  12520.         adcxq	%rcx, %r10
    12521. 

  12521.         adoxq	%r14, %r11
    12522. 

  12522.         mulxq	%r15, %r15, %rdx
    12523. 

  12523.         adcxq	%r15, %r11
    12524. 

  12524.         adoxq	%rax, %rdx
    12525. 

  12525.         adcxq	%rax, %rdx
    12526. 

  12526.         #  Overflow
    12527. 

  12527.         shldq	$0x01, %r11, %rdx
    12528. 

  12528.         movq	$0x7fffffffffffffff, %rax
    12529. 

  12529.         imulq	$19, %rdx, %rcx
    12530. 

  12530.         andq	%rax, %r11
    12531. 

  12531.         addq	%rcx, %r8
    12532. 

  12532.         adcq	$0x00, %r9
    12533. 

  12533.         adcq	$0x00, %r10
    12534. 

  12534.         adcq	$0x00, %r11
    12535. 

  12535.         # Reduce if top bit set
    12536. 

  12536.         movq	%r11, %rdx
    12537. 

  12537.         sarq	$63, %rdx
    12538. 

  12538.         andq	$19, %rdx
    12539. 

  12539.         andq	%rax, %r11
    12540. 

  12540.         addq	%rdx, %r8
    12541. 

  12541.         adcq	$0x00, %r9
    12542. 

  12542.         adcq	$0x00, %r10
    12543. 

  12543.         adcq	$0x00, %r11
    12544. 

  12544.         # Store
    12545. 

  12545.         movq	%r8, (%rdi)
    12546. 

  12546.         movq	%r9, 8(%rdi)
    12547. 

  12547.         movq	%r10, 16(%rdi)
    12548. 

  12548.         movq	%r11, 24(%rdi)
    12549. 

  12549.         movq	(%rsp), %rdi
    12550. 

  12550.         movq	24(%rsp), %rsi
    12551. 

  12551.         movq	32(%rsp), %rbx
    12552. 

  12552.         # Multiply
    12553. 

  12553.         # A[0] * B[0]
    12554. 

  12554.         movq	(%rbx), %rdx
    12555. 

  12555.         mulxq	(%rsi), %r8, %r9
    12556. 

  12556.         # A[2] * B[0]
    12557. 

  12557.         mulxq	16(%rsi), %r10, %r11
    12558. 

  12558.         # A[1] * B[0]
    12559. 

  12559.         mulxq	8(%rsi), %rcx, %rax
    12560. 

  12560.         xorq	%r15, %r15
    12561. 

  12561.         adcxq	%rcx, %r9
    12562. 

  12562.         # A[1] * B[3]
    12563. 

  12563.         movq	24(%rbx), %rdx
    12564. 

  12564.         mulxq	8(%rsi), %r12, %r13
    12565. 

  12565.         adcxq	%rax, %r10
    12566. 

  12566.         # A[0] * B[1]
    12567. 

  12567.         movq	8(%rbx), %rdx
    12568. 

  12568.         mulxq	(%rsi), %rcx, %rax
    12569. 

  12569.         adoxq	%rcx, %r9
    12570. 

  12570.         # A[2] * B[1]
    12571. 

  12571.         mulxq	16(%rsi), %rcx, %r14
    12572. 

  12572.         adoxq	%rax, %r10
    12573. 

  12573.         adcxq	%rcx, %r11
    12574. 

  12574.         # A[1] * B[2]
    12575. 

  12575.         movq	16(%rbx), %rdx
    12576. 

  12576.         mulxq	8(%rsi), %rcx, %rax
    12577. 

  12577.         adcxq	%r14, %r12
    12578. 

  12578.         adoxq	%rcx, %r11
    12579. 

  12579.         adcxq	%r15, %r13
    12580. 

  12580.         adoxq	%rax, %r12
    12581. 

  12581.         # A[0] * B[2]
    12582. 

  12582.         mulxq	(%rsi), %rcx, %rax
    12583. 

  12583.         adoxq	%r15, %r13
    12584. 

  12584.         xorq	%r14, %r14
    12585. 

  12585.         adcxq	%rcx, %r10
    12586. 

  12586.         # A[1] * B[1]
    12587. 

  12587.         movq	8(%rbx), %rdx
    12588. 

  12588.         mulxq	8(%rsi), %rdx, %rcx
    12589. 

  12589.         adcxq	%rax, %r11
    12590. 

  12590.         adoxq	%rdx, %r10
    12591. 

  12591.         # A[3] * B[1]
    12592. 

  12592.         movq	8(%rbx), %rdx
    12593. 

  12593.         adoxq	%rcx, %r11
    12594. 

  12594.         mulxq	24(%rsi), %rcx, %rax
    12595. 

  12595.         adcxq	%rcx, %r12
    12596. 

  12596.         # A[2] * B[2]
    12597. 

  12597.         movq	16(%rbx), %rdx
    12598. 

  12598.         mulxq	16(%rsi), %rdx, %rcx
    12599. 

  12599.         adcxq	%rax, %r13
    12600. 

  12600.         adoxq	%rdx, %r12
    12601. 

  12601.         # A[3] * B[3]
    12602. 

  12602.         movq	24(%rbx), %rdx
    12603. 

  12603.         adoxq	%rcx, %r13
    12604. 

  12604.         mulxq	24(%rsi), %rcx, %rax
    12605. 

  12605.         adoxq	%r15, %r14
    12606. 

  12606.         adcxq	%rcx, %r14
    12607. 

  12607.         # A[0] * B[3]
    12608. 

  12608.         mulxq	(%rsi), %rdx, %rcx
    12609. 

  12609.         adcxq	%rax, %r15
    12610. 

  12610.         xorq	%rax, %rax
    12611. 

  12611.         adcxq	%rdx, %r11
    12612. 

  12612.         # A[3] * B[0]
    12613. 

  12613.         movq	(%rbx), %rdx
    12614. 

  12614.         adcxq	%rcx, %r12
    12615. 

  12615.         mulxq	24(%rsi), %rdx, %rcx
    12616. 

  12616.         adoxq	%rdx, %r11
    12617. 

  12617.         adoxq	%rcx, %r12
    12618. 

  12618.         # A[2] * B[3]
    12619. 

  12619.         movq	24(%rbx), %rdx
    12620. 

  12620.         mulxq	16(%rsi), %rdx, %rcx
    12621. 

  12621.         adcxq	%rdx, %r13
    12622. 

  12622.         # A[3] * B[2]
    12623. 

  12623.         movq	16(%rbx), %rdx
    12624. 

  12624.         adcxq	%rcx, %r14
    12625. 

  12625.         mulxq	24(%rsi), %rcx, %rdx
    12626. 

  12626.         adcxq	%rax, %r15
    12627. 

  12627.         adoxq	%rcx, %r13
    12628. 

  12628.         adoxq	%rdx, %r14
    12629. 

  12629.         adoxq	%rax, %r15
    12630. 

  12630.         # Reduce
    12631. 

  12631.         movq	$0x7fffffffffffffff, %rax
    12632. 

  12632.         #  Move top half into t4-t7 and remove top bit from t3
    12633. 

  12633.         shldq	$0x01, %r14, %r15
    12634. 

  12634.         shldq	$0x01, %r13, %r14
    12635. 

  12635.         shldq	$0x01, %r12, %r13
    12636. 

  12636.         shldq	$0x01, %r11, %r12
    12637. 

  12637.         andq	%rax, %r11
    12638. 

  12638.         #  Multiply top half by 19
    12639. 

  12639.         movq	$19, %rdx
    12640. 

  12640.         xorq	%rax, %rax
    12641. 

  12641.         mulxq	%r12, %rcx, %r12
    12642. 

  12642.         adcxq	%rcx, %r8
    12643. 

  12643.         adoxq	%r12, %r9
    12644. 

  12644.         mulxq	%r13, %rcx, %r13
    12645. 

  12645.         adcxq	%rcx, %r9
    12646. 

  12646.         adoxq	%r13, %r10
    12647. 

  12647.         mulxq	%r14, %rcx, %r14
    12648. 

  12648.         adcxq	%rcx, %r10
    12649. 

  12649.         adoxq	%r14, %r11
    12650. 

  12650.         mulxq	%r15, %r15, %rdx
    12651. 

  12651.         adcxq	%r15, %r11
    12652. 

  12652.         adoxq	%rax, %rdx
    12653. 

  12653.         adcxq	%rax, %rdx
    12654. 

  12654.         #  Overflow
    12655. 

  12655.         shldq	$0x01, %r11, %rdx
    12656. 

  12656.         movq	$0x7fffffffffffffff, %rax
    12657. 

  12657.         imulq	$19, %rdx, %rcx
    12658. 

  12658.         andq	%rax, %r11
    12659. 

  12659.         addq	%rcx, %r8
    12660. 

  12660.         adcq	$0x00, %r9
    12661. 

  12661.         adcq	$0x00, %r10
    12662. 

  12662.         adcq	$0x00, %r11
    12663. 

  12663.         # Reduce if top bit set
    12664. 

  12664.         movq	%r11, %rdx
    12665. 

  12665.         sarq	$63, %rdx
    12666. 

  12666.         andq	$19, %rdx
    12667. 

  12667.         andq	%rax, %r11
    12668. 

  12668.         addq	%rdx, %r8
    12669. 

  12669.         adcq	$0x00, %r9
    12670. 

  12670.         adcq	$0x00, %r10
    12671. 

  12671.         adcq	$0x00, %r11
    12672. 

  12672.         # Store
    12673. 

  12673.         movq	%r8, (%rdi)
    12674. 

  12674.         movq	%r9, 8(%rdi)
    12675. 

  12675.         movq	%r10, 16(%rdi)
    12676. 

  12676.         movq	%r11, 24(%rdi)
    12677. 

  12677.         movq	8(%rsp), %rdi
    12678. 

  12678.         movq	88(%rsp), %rsi
    12679. 

  12679.         # Multiply
    12680. 

  12680.         # A[0] * B[0]
    12681. 

  12681.         movq	(%rsi), %rdx
    12682. 

  12682.         mulxq	(%rbx), %r8, %r9
    12683. 

  12683.         # A[2] * B[0]
    12684. 

  12684.         mulxq	16(%rbx), %r10, %r11
    12685. 

  12685.         # A[1] * B[0]
    12686. 

  12686.         mulxq	8(%rbx), %rcx, %rax
    12687. 

  12687.         xorq	%r15, %r15
    12688. 

  12688.         adcxq	%rcx, %r9
    12689. 

  12689.         # A[1] * B[3]
    12690. 

  12690.         movq	24(%rsi), %rdx
    12691. 

  12691.         mulxq	8(%rbx), %r12, %r13
    12692. 

  12692.         adcxq	%rax, %r10
    12693. 

  12693.         # A[0] * B[1]
    12694. 

  12694.         movq	8(%rsi), %rdx
    12695. 

  12695.         mulxq	(%rbx), %rcx, %rax
    12696. 

  12696.         adoxq	%rcx, %r9
    12697. 

  12697.         # A[2] * B[1]
    12698. 

  12698.         mulxq	16(%rbx), %rcx, %r14
    12699. 

  12699.         adoxq	%rax, %r10
    12700. 

  12700.         adcxq	%rcx, %r11
    12701. 

  12701.         # A[1] * B[2]
    12702. 

  12702.         movq	16(%rsi), %rdx
    12703. 

  12703.         mulxq	8(%rbx), %rcx, %rax
    12704. 

  12704.         adcxq	%r14, %r12
    12705. 

  12705.         adoxq	%rcx, %r11
    12706. 

  12706.         adcxq	%r15, %r13
    12707. 

  12707.         adoxq	%rax, %r12
    12708. 

  12708.         # A[0] * B[2]
    12709. 

  12709.         mulxq	(%rbx), %rcx, %rax
    12710. 

  12710.         adoxq	%r15, %r13
    12711. 

  12711.         xorq	%r14, %r14
    12712. 

  12712.         adcxq	%rcx, %r10
    12713. 

  12713.         # A[1] * B[1]
    12714. 

  12714.         movq	8(%rsi), %rdx
    12715. 

  12715.         mulxq	8(%rbx), %rdx, %rcx
    12716. 

  12716.         adcxq	%rax, %r11
    12717. 

  12717.         adoxq	%rdx, %r10
    12718. 

  12718.         # A[3] * B[1]
    12719. 

  12719.         movq	8(%rsi), %rdx
    12720. 

  12720.         adoxq	%rcx, %r11
    12721. 

  12721.         mulxq	24(%rbx), %rcx, %rax
    12722. 

  12722.         adcxq	%rcx, %r12
    12723. 

  12723.         # A[2] * B[2]
    12724. 

  12724.         movq	16(%rsi), %rdx
    12725. 

  12725.         mulxq	16(%rbx), %rdx, %rcx
    12726. 

  12726.         adcxq	%rax, %r13
    12727. 

  12727.         adoxq	%rdx, %r12
    12728. 

  12728.         # A[3] * B[3]
    12729. 

  12729.         movq	24(%rsi), %rdx
    12730. 

  12730.         adoxq	%rcx, %r13
    12731. 

  12731.         mulxq	24(%rbx), %rcx, %rax
    12732. 

  12732.         adoxq	%r15, %r14
    12733. 

  12733.         adcxq	%rcx, %r14
    12734. 

  12734.         # A[0] * B[3]
    12735. 

  12735.         mulxq	(%rbx), %rdx, %rcx
    12736. 

  12736.         adcxq	%rax, %r15
    12737. 

  12737.         xorq	%rax, %rax
    12738. 

  12738.         adcxq	%rdx, %r11
    12739. 

  12739.         # A[3] * B[0]
    12740. 

  12740.         movq	(%rsi), %rdx
    12741. 

  12741.         adcxq	%rcx, %r12
    12742. 

  12742.         mulxq	24(%rbx), %rdx, %rcx
    12743. 

  12743.         adoxq	%rdx, %r11
    12744. 

  12744.         adoxq	%rcx, %r12
    12745. 

  12745.         # A[2] * B[3]
    12746. 

  12746.         movq	24(%rsi), %rdx
    12747. 

  12747.         mulxq	16(%rbx), %rdx, %rcx
    12748. 

  12748.         adcxq	%rdx, %r13
    12749. 

  12749.         # A[3] * B[2]
    12750. 

  12750.         movq	16(%rsi), %rdx
    12751. 

  12751.         adcxq	%rcx, %r14
    12752. 

  12752.         mulxq	24(%rbx), %rcx, %rdx
    12753. 

  12753.         adcxq	%rax, %r15
    12754. 

  12754.         adoxq	%rcx, %r13
    12755. 

  12755.         adoxq	%rdx, %r14
    12756. 

  12756.         adoxq	%rax, %r15
    12757. 

  12757.         # Reduce
    12758. 

  12758.         movq	$0x7fffffffffffffff, %rax
    12759. 

  12759.         #  Move top half into t4-t7 and remove top bit from t3
    12760. 

  12760.         shldq	$0x01, %r14, %r15
    12761. 

  12761.         shldq	$0x01, %r13, %r14
    12762. 

  12762.         shldq	$0x01, %r12, %r13
    12763. 

  12763.         shldq	$0x01, %r11, %r12
    12764. 

  12764.         andq	%rax, %r11
    12765. 

  12765.         #  Multiply top half by 19
    12766. 

  12766.         movq	$19, %rdx
    12767. 

  12767.         xorq	%rax, %rax
    12768. 

  12768.         mulxq	%r12, %rcx, %r12
    12769. 

  12769.         adcxq	%rcx, %r8
    12770. 

  12770.         adoxq	%r12, %r9
    12771. 

  12771.         mulxq	%r13, %rcx, %r13
    12772. 

  12772.         adcxq	%rcx, %r9
    12773. 

  12773.         adoxq	%r13, %r10
    12774. 

  12774.         mulxq	%r14, %rcx, %r14
    12775. 

  12775.         adcxq	%rcx, %r10
    12776. 

  12776.         adoxq	%r14, %r11
    12777. 

  12777.         mulxq	%r15, %r15, %rdx
    12778. 

  12778.         adcxq	%r15, %r11
    12779. 

  12779.         adoxq	%rax, %rdx
    12780. 

  12780.         adcxq	%rax, %rdx
    12781. 

  12781.         #  Overflow
    12782. 

  12782.         shldq	$0x01, %r11, %rdx
    12783. 

  12783.         movq	$0x7fffffffffffffff, %rax
    12784. 

  12784.         imulq	$19, %rdx, %rcx
    12785. 

  12785.         andq	%rax, %r11
    12786. 

  12786.         addq	%rcx, %r8
    12787. 

  12787.         adcq	$0x00, %r9
    12788. 

  12788.         adcq	$0x00, %r10
    12789. 

  12789.         adcq	$0x00, %r11
    12790. 

  12790.         # Reduce if top bit set
    12791. 

  12791.         movq	%r11, %rdx
    12792. 

  12792.         sarq	$63, %rdx
    12793. 

  12793.         andq	$19, %rdx
    12794. 

  12794.         andq	%rax, %r11
    12795. 

  12795.         addq	%rdx, %r8
    12796. 

  12796.         adcq	$0x00, %r9
    12797. 

  12797.         adcq	$0x00, %r10
    12798. 

  12798.         adcq	$0x00, %r11
    12799. 

  12799.         # Store
    12800. 

  12800.         movq	%r8, (%rdi)
    12801. 

  12801.         movq	%r9, 8(%rdi)
    12802. 

  12802.         movq	%r10, 16(%rdi)
    12803. 

  12803.         movq	%r11, 24(%rdi)
    12804. 

  12804.         addq	$40, %rsp
    12805. 

  12805.         popq	%r15
    12806. 

  12806.         popq	%r14
    12807. 

  12807.         popq	%r13
    12808. 

  12808.         popq	%r12
    12809. 

  12809.         popq	%rbx
    12810. 

  12810.         repz retq
    12811. 

  12811. #ifndef __APPLE__
    12812. 

  12812. .size	fe_ge_to_p2_avx2,.-fe_ge_to_p2_avx2
    12813. 

  12813. #endif /* __APPLE__ */
    12814. 

  12814. #ifndef __APPLE__
    12815. 

  12815. .text
    12816. 

  12816. .globl	fe_ge_to_p3_avx2
    12817. 

  12817. .type	fe_ge_to_p3_avx2,@function
    12818. 

  12818. .align	16
    12819. 

  12819. fe_ge_to_p3_avx2:
    12820. 

  12820. #else
    12821. 

  12821. .section	__TEXT,__text
    12822. 

  12822. .globl	_fe_ge_to_p3_avx2
    12823. 

  12823. .p2align	4
    12824. 

  12824. _fe_ge_to_p3_avx2:
    12825. 

  12825. #endif /* __APPLE__ */
    12826. 

  12826.         pushq	%rbx
    12827. 

  12827.         pushq	%r12
    12828. 

  12828.         pushq	%r13
    12829. 

  12829.         pushq	%r14
    12830. 

  12830.         pushq	%r15
    12831. 

  12831.         subq	$40, %rsp
    12832. 

  12832.         movq	%rsi, (%rsp)
    12833. 

  12833.         movq	%rdx, 8(%rsp)
    12834. 

  12834.         movq	%rcx, 16(%rsp)
    12835. 

  12835.         movq	%r8, 24(%rsp)
    12836. 

  12836.         movq	%r9, 32(%rsp)
    12837. 

  12837.         movq	24(%rsp), %rsi
    12838. 

  12838.         movq	96(%rsp), %rbx
    12839. 

  12839.         # Multiply
    12840. 

  12840.         # A[0] * B[0]
    12841. 

  12841.         movq	(%rbx), %rdx
    12842. 

  12842.         mulxq	(%rsi), %r8, %r9
    12843. 

  12843.         # A[2] * B[0]
    12844. 

  12844.         mulxq	16(%rsi), %r10, %r11
    12845. 

  12845.         # A[1] * B[0]
    12846. 

  12846.         mulxq	8(%rsi), %rcx, %rax
    12847. 

  12847.         xorq	%r15, %r15
    12848. 

  12848.         adcxq	%rcx, %r9
    12849. 

  12849.         # A[1] * B[3]
    12850. 

  12850.         movq	24(%rbx), %rdx
    12851. 

  12851.         mulxq	8(%rsi), %r12, %r13
    12852. 

  12852.         adcxq	%rax, %r10
    12853. 

  12853.         # A[0] * B[1]
    12854. 

  12854.         movq	8(%rbx), %rdx
    12855. 

  12855.         mulxq	(%rsi), %rcx, %rax
    12856. 

  12856.         adoxq	%rcx, %r9
    12857. 

  12857.         # A[2] * B[1]
    12858. 

  12858.         mulxq	16(%rsi), %rcx, %r14
    12859. 

  12859.         adoxq	%rax, %r10
    12860. 

  12860.         adcxq	%rcx, %r11
    12861. 

  12861.         # A[1] * B[2]
    12862. 

  12862.         movq	16(%rbx), %rdx
    12863. 

  12863.         mulxq	8(%rsi), %rcx, %rax
    12864. 

  12864.         adcxq	%r14, %r12
    12865. 

  12865.         adoxq	%rcx, %r11
    12866. 

  12866.         adcxq	%r15, %r13
    12867. 

  12867.         adoxq	%rax, %r12
    12868. 

  12868.         # A[0] * B[2]
    12869. 

  12869.         mulxq	(%rsi), %rcx, %rax
    12870. 

  12870.         adoxq	%r15, %r13
    12871. 

  12871.         xorq	%r14, %r14
    12872. 

  12872.         adcxq	%rcx, %r10
    12873. 

  12873.         # A[1] * B[1]
    12874. 

  12874.         movq	8(%rbx), %rdx
    12875. 

  12875.         mulxq	8(%rsi), %rdx, %rcx
    12876. 

  12876.         adcxq	%rax, %r11
    12877. 

  12877.         adoxq	%rdx, %r10
    12878. 

  12878.         # A[3] * B[1]
    12879. 

  12879.         movq	8(%rbx), %rdx
    12880. 

  12880.         adoxq	%rcx, %r11
    12881. 

  12881.         mulxq	24(%rsi), %rcx, %rax
    12882. 

  12882.         adcxq	%rcx, %r12
    12883. 

  12883.         # A[2] * B[2]
    12884. 

  12884.         movq	16(%rbx), %rdx
    12885. 

  12885.         mulxq	16(%rsi), %rdx, %rcx
    12886. 

  12886.         adcxq	%rax, %r13
    12887. 

  12887.         adoxq	%rdx, %r12
    12888. 

  12888.         # A[3] * B[3]
    12889. 

  12889.         movq	24(%rbx), %rdx
    12890. 

  12890.         adoxq	%rcx, %r13
    12891. 

  12891.         mulxq	24(%rsi), %rcx, %rax
    12892. 

  12892.         adoxq	%r15, %r14
    12893. 

  12893.         adcxq	%rcx, %r14
    12894. 

  12894.         # A[0] * B[3]
    12895. 

  12895.         mulxq	(%rsi), %rdx, %rcx
    12896. 

  12896.         adcxq	%rax, %r15
    12897. 

  12897.         xorq	%rax, %rax
    12898. 

  12898.         adcxq	%rdx, %r11
    12899. 

  12899.         # A[3] * B[0]
    12900. 

  12900.         movq	(%rbx), %rdx
    12901. 

  12901.         adcxq	%rcx, %r12
    12902. 

  12902.         mulxq	24(%rsi), %rdx, %rcx
    12903. 

  12903.         adoxq	%rdx, %r11
    12904. 

  12904.         adoxq	%rcx, %r12
    12905. 

  12905.         # A[2] * B[3]
    12906. 

  12906.         movq	24(%rbx), %rdx
    12907. 

  12907.         mulxq	16(%rsi), %rdx, %rcx
    12908. 

  12908.         adcxq	%rdx, %r13
    12909. 

  12909.         # A[3] * B[2]
    12910. 

  12910.         movq	16(%rbx), %rdx
    12911. 

  12911.         adcxq	%rcx, %r14
    12912. 

  12912.         mulxq	24(%rsi), %rcx, %rdx
    12913. 

  12913.         adcxq	%rax, %r15
    12914. 

  12914.         adoxq	%rcx, %r13
    12915. 

  12915.         adoxq	%rdx, %r14
    12916. 

  12916.         adoxq	%rax, %r15
    12917. 

  12917.         # Reduce
    12918. 

  12918.         movq	$0x7fffffffffffffff, %rax
    12919. 

  12919.         #  Move top half into t4-t7 and remove top bit from t3
    12920. 

  12920.         shldq	$0x01, %r14, %r15
    12921. 

  12921.         shldq	$0x01, %r13, %r14
    12922. 

  12922.         shldq	$0x01, %r12, %r13
    12923. 

  12923.         shldq	$0x01, %r11, %r12
    12924. 

  12924.         andq	%rax, %r11
    12925. 

  12925.         #  Multiply top half by 19
    12926. 

  12926.         movq	$19, %rdx
    12927. 

  12927.         xorq	%rax, %rax
    12928. 

  12928.         mulxq	%r12, %rcx, %r12
    12929. 

  12929.         adcxq	%rcx, %r8
    12930. 

  12930.         adoxq	%r12, %r9
    12931. 

  12931.         mulxq	%r13, %rcx, %r13
    12932. 

  12932.         adcxq	%rcx, %r9
    12933. 

  12933.         adoxq	%r13, %r10
    12934. 

  12934.         mulxq	%r14, %rcx, %r14
    12935. 

  12935.         adcxq	%rcx, %r10
    12936. 

  12936.         adoxq	%r14, %r11
    12937. 

  12937.         mulxq	%r15, %r15, %rdx
    12938. 

  12938.         adcxq	%r15, %r11
    12939. 

  12939.         adoxq	%rax, %rdx
    12940. 

  12940.         adcxq	%rax, %rdx
    12941. 

  12941.         #  Overflow
    12942. 

  12942.         shldq	$0x01, %r11, %rdx
    12943. 

  12943.         movq	$0x7fffffffffffffff, %rax
    12944. 

  12944.         imulq	$19, %rdx, %rcx
    12945. 

  12945.         andq	%rax, %r11
    12946. 

  12946.         addq	%rcx, %r8
    12947. 

  12947.         adcq	$0x00, %r9
    12948. 

  12948.         adcq	$0x00, %r10
    12949. 

  12949.         adcq	$0x00, %r11
    12950. 

  12950.         # Reduce if top bit set
    12951. 

  12951.         movq	%r11, %rdx
    12952. 

  12952.         sarq	$63, %rdx
    12953. 

  12953.         andq	$19, %rdx
    12954. 

  12954.         andq	%rax, %r11
    12955. 

  12955.         addq	%rdx, %r8
    12956. 

  12956.         adcq	$0x00, %r9
    12957. 

  12957.         adcq	$0x00, %r10
    12958. 

  12958.         adcq	$0x00, %r11
    12959. 

  12959.         # Store
    12960. 

  12960.         movq	%r8, (%rdi)
    12961. 

  12961.         movq	%r9, 8(%rdi)
    12962. 

  12962.         movq	%r10, 16(%rdi)
    12963. 

  12963.         movq	%r11, 24(%rdi)
    12964. 

  12964.         movq	(%rsp), %rdi
    12965. 

  12965.         movq	32(%rsp), %rsi
    12966. 

  12966.         movq	88(%rsp), %rbx
    12967. 

  12967.         # Multiply
    12968. 

  12968.         # A[0] * B[0]
    12969. 

  12969.         movq	(%rbx), %rdx
    12970. 

  12970.         mulxq	(%rsi), %r8, %r9
    12971. 

  12971.         # A[2] * B[0]
    12972. 

  12972.         mulxq	16(%rsi), %r10, %r11
    12973. 

  12973.         # A[1] * B[0]
    12974. 

  12974.         mulxq	8(%rsi), %rcx, %rax
    12975. 

  12975.         xorq	%r15, %r15
    12976. 

  12976.         adcxq	%rcx, %r9
    12977. 

  12977.         # A[1] * B[3]
    12978. 

  12978.         movq	24(%rbx), %rdx
    12979. 

  12979.         mulxq	8(%rsi), %r12, %r13
    12980. 

  12980.         adcxq	%rax, %r10
    12981. 

  12981.         # A[0] * B[1]
    12982. 

  12982.         movq	8(%rbx), %rdx
    12983. 

  12983.         mulxq	(%rsi), %rcx, %rax
    12984. 

  12984.         adoxq	%rcx, %r9
    12985. 

  12985.         # A[2] * B[1]
    12986. 

  12986.         mulxq	16(%rsi), %rcx, %r14
    12987. 

  12987.         adoxq	%rax, %r10
    12988. 

  12988.         adcxq	%rcx, %r11
    12989. 

  12989.         # A[1] * B[2]
    12990. 

  12990.         movq	16(%rbx), %rdx
    12991. 

  12991.         mulxq	8(%rsi), %rcx, %rax
    12992. 

  12992.         adcxq	%r14, %r12
    12993. 

  12993.         adoxq	%rcx, %r11
    12994. 

  12994.         adcxq	%r15, %r13
    12995. 

  12995.         adoxq	%rax, %r12
    12996. 

  12996.         # A[0] * B[2]
    12997. 

  12997.         mulxq	(%rsi), %rcx, %rax
    12998. 

  12998.         adoxq	%r15, %r13
    12999. 

  12999.         xorq	%r14, %r14
    13000. 

  13000.         adcxq	%rcx, %r10
    13001. 

  13001.         # A[1] * B[1]
    13002. 

  13002.         movq	8(%rbx), %rdx
    13003. 

  13003.         mulxq	8(%rsi), %rdx, %rcx
    13004. 

  13004.         adcxq	%rax, %r11
    13005. 

  13005.         adoxq	%rdx, %r10
    13006. 

  13006.         # A[3] * B[1]
    13007. 

  13007.         movq	8(%rbx), %rdx
    13008. 

  13008.         adoxq	%rcx, %r11
    13009. 

  13009.         mulxq	24(%rsi), %rcx, %rax
    13010. 

  13010.         adcxq	%rcx, %r12
    13011. 

  13011.         # A[2] * B[2]
    13012. 

  13012.         movq	16(%rbx), %rdx
    13013. 

  13013.         mulxq	16(%rsi), %rdx, %rcx
    13014. 

  13014.         adcxq	%rax, %r13
    13015. 

  13015.         adoxq	%rdx, %r12
    13016. 

  13016.         # A[3] * B[3]
    13017. 

  13017.         movq	24(%rbx), %rdx
    13018. 

  13018.         adoxq	%rcx, %r13
    13019. 

  13019.         mulxq	24(%rsi), %rcx, %rax
    13020. 

  13020.         adoxq	%r15, %r14
    13021. 

  13021.         adcxq	%rcx, %r14
    13022. 

  13022.         # A[0] * B[3]
    13023. 

  13023.         mulxq	(%rsi), %rdx, %rcx
    13024. 

  13024.         adcxq	%rax, %r15
    13025. 

  13025.         xorq	%rax, %rax
    13026. 

  13026.         adcxq	%rdx, %r11
    13027. 

  13027.         # A[3] * B[0]
    13028. 

  13028.         movq	(%rbx), %rdx
    13029. 

  13029.         adcxq	%rcx, %r12
    13030. 

  13030.         mulxq	24(%rsi), %rdx, %rcx
    13031. 

  13031.         adoxq	%rdx, %r11
    13032. 

  13032.         adoxq	%rcx, %r12
    13033. 

  13033.         # A[2] * B[3]
    13034. 

  13034.         movq	24(%rbx), %rdx
    13035. 

  13035.         mulxq	16(%rsi), %rdx, %rcx
    13036. 

  13036.         adcxq	%rdx, %r13
    13037. 

  13037.         # A[3] * B[2]
    13038. 

  13038.         movq	16(%rbx), %rdx
    13039. 

  13039.         adcxq	%rcx, %r14
    13040. 

  13040.         mulxq	24(%rsi), %rcx, %rdx
    13041. 

  13041.         adcxq	%rax, %r15
    13042. 

  13042.         adoxq	%rcx, %r13
    13043. 

  13043.         adoxq	%rdx, %r14
    13044. 

  13044.         adoxq	%rax, %r15
    13045. 

  13045.         # Reduce
    13046. 

  13046.         movq	$0x7fffffffffffffff, %rax
    13047. 

  13047.         #  Move top half into t4-t7 and remove top bit from t3
    13048. 

  13048.         shldq	$0x01, %r14, %r15
    13049. 

  13049.         shldq	$0x01, %r13, %r14
    13050. 

  13050.         shldq	$0x01, %r12, %r13
    13051. 

  13051.         shldq	$0x01, %r11, %r12
    13052. 

  13052.         andq	%rax, %r11
    13053. 

  13053.         #  Multiply top half by 19
    13054. 

  13054.         movq	$19, %rdx
    13055. 

  13055.         xorq	%rax, %rax
    13056. 

  13056.         mulxq	%r12, %rcx, %r12
    13057. 

  13057.         adcxq	%rcx, %r8
    13058. 

  13058.         adoxq	%r12, %r9
    13059. 

  13059.         mulxq	%r13, %rcx, %r13
    13060. 

  13060.         adcxq	%rcx, %r9
    13061. 

  13061.         adoxq	%r13, %r10
    13062. 

  13062.         mulxq	%r14, %rcx, %r14
    13063. 

  13063.         adcxq	%rcx, %r10
    13064. 

  13064.         adoxq	%r14, %r11
    13065. 

  13065.         mulxq	%r15, %r15, %rdx
    13066. 

  13066.         adcxq	%r15, %r11
    13067. 

  13067.         adoxq	%rax, %rdx
    13068. 

  13068.         adcxq	%rax, %rdx
    13069. 

  13069.         #  Overflow
    13070. 

  13070.         shldq	$0x01, %r11, %rdx
    13071. 

  13071.         movq	$0x7fffffffffffffff, %rax
    13072. 

  13072.         imulq	$19, %rdx, %rcx
    13073. 

  13073.         andq	%rax, %r11
    13074. 

  13074.         addq	%rcx, %r8
    13075. 

  13075.         adcq	$0x00, %r9
    13076. 

  13076.         adcq	$0x00, %r10
    13077. 

  13077.         adcq	$0x00, %r11
    13078. 

  13078.         # Reduce if top bit set
    13079. 

  13079.         movq	%r11, %rdx
    13080. 

  13080.         sarq	$63, %rdx
    13081. 

  13081.         andq	$19, %rdx
    13082. 

  13082.         andq	%rax, %r11
    13083. 

  13083.         addq	%rdx, %r8
    13084. 

  13084.         adcq	$0x00, %r9
    13085. 

  13085.         adcq	$0x00, %r10
    13086. 

  13086.         adcq	$0x00, %r11
    13087. 

  13087.         # Store
    13088. 

  13088.         movq	%r8, (%rdi)
    13089. 

  13089.         movq	%r9, 8(%rdi)
    13090. 

  13090.         movq	%r10, 16(%rdi)
    13091. 

  13091.         movq	%r11, 24(%rdi)
    13092. 

  13092.         movq	8(%rsp), %rdi
    13093. 

  13093.         movq	96(%rsp), %rsi
    13094. 

  13094.         # Multiply
    13095. 

  13095.         # A[0] * B[0]
    13096. 

  13096.         movq	(%rsi), %rdx
    13097. 

  13097.         mulxq	(%rbx), %r8, %r9
    13098. 

  13098.         # A[2] * B[0]
    13099. 

  13099.         mulxq	16(%rbx), %r10, %r11
    13100. 

  13100.         # A[1] * B[0]
    13101. 

  13101.         mulxq	8(%rbx), %rcx, %rax
    13102. 

  13102.         xorq	%r15, %r15
    13103. 

  13103.         adcxq	%rcx, %r9
    13104. 

  13104.         # A[1] * B[3]
    13105. 

  13105.         movq	24(%rsi), %rdx
    13106. 

  13106.         mulxq	8(%rbx), %r12, %r13
    13107. 

  13107.         adcxq	%rax, %r10
    13108. 

  13108.         # A[0] * B[1]
    13109. 

  13109.         movq	8(%rsi), %rdx
    13110. 

  13110.         mulxq	(%rbx), %rcx, %rax
    13111. 

  13111.         adoxq	%rcx, %r9
    13112. 

  13112.         # A[2] * B[1]
    13113. 

  13113.         mulxq	16(%rbx), %rcx, %r14
    13114. 

  13114.         adoxq	%rax, %r10
    13115. 

  13115.         adcxq	%rcx, %r11
    13116. 

  13116.         # A[1] * B[2]
    13117. 

  13117.         movq	16(%rsi), %rdx
    13118. 

  13118.         mulxq	8(%rbx), %rcx, %rax
    13119. 

  13119.         adcxq	%r14, %r12
    13120. 

  13120.         adoxq	%rcx, %r11
    13121. 

  13121.         adcxq	%r15, %r13
    13122. 

  13122.         adoxq	%rax, %r12
    13123. 

  13123.         # A[0] * B[2]
    13124. 

  13124.         mulxq	(%rbx), %rcx, %rax
    13125. 

  13125.         adoxq	%r15, %r13
    13126. 

  13126.         xorq	%r14, %r14
    13127. 

  13127.         adcxq	%rcx, %r10
    13128. 

  13128.         # A[1] * B[1]
    13129. 

  13129.         movq	8(%rsi), %rdx
    13130. 

  13130.         mulxq	8(%rbx), %rdx, %rcx
    13131. 

  13131.         adcxq	%rax, %r11
    13132. 

  13132.         adoxq	%rdx, %r10
    13133. 

  13133.         # A[3] * B[1]
    13134. 

  13134.         movq	8(%rsi), %rdx
    13135. 

  13135.         adoxq	%rcx, %r11
    13136. 

  13136.         mulxq	24(%rbx), %rcx, %rax
    13137. 

  13137.         adcxq	%rcx, %r12
    13138. 

  13138.         # A[2] * B[2]
    13139. 

  13139.         movq	16(%rsi), %rdx
    13140. 

  13140.         mulxq	16(%rbx), %rdx, %rcx
    13141. 

  13141.         adcxq	%rax, %r13
    13142. 

  13142.         adoxq	%rdx, %r12
    13143. 

  13143.         # A[3] * B[3]
    13144. 

  13144.         movq	24(%rsi), %rdx
    13145. 

  13145.         adoxq	%rcx, %r13
    13146. 

  13146.         mulxq	24(%rbx), %rcx, %rax
    13147. 

  13147.         adoxq	%r15, %r14
    13148. 

  13148.         adcxq	%rcx, %r14
    13149. 

  13149.         # A[0] * B[3]
    13150. 

  13150.         mulxq	(%rbx), %rdx, %rcx
    13151. 

  13151.         adcxq	%rax, %r15
    13152. 

  13152.         xorq	%rax, %rax
    13153. 

  13153.         adcxq	%rdx, %r11
    13154. 

  13154.         # A[3] * B[0]
    13155. 

  13155.         movq	(%rsi), %rdx
    13156. 

  13156.         adcxq	%rcx, %r12
    13157. 

  13157.         mulxq	24(%rbx), %rdx, %rcx
    13158. 

  13158.         adoxq	%rdx, %r11
    13159. 

  13159.         adoxq	%rcx, %r12
    13160. 

  13160.         # A[2] * B[3]
    13161. 

  13161.         movq	24(%rsi), %rdx
    13162. 

  13162.         mulxq	16(%rbx), %rdx, %rcx
    13163. 

  13163.         adcxq	%rdx, %r13
    13164. 

  13164.         # A[3] * B[2]
    13165. 

  13165.         movq	16(%rsi), %rdx
    13166. 

  13166.         adcxq	%rcx, %r14
    13167. 

  13167.         mulxq	24(%rbx), %rcx, %rdx
    13168. 

  13168.         adcxq	%rax, %r15
    13169. 

  13169.         adoxq	%rcx, %r13
    13170. 

  13170.         adoxq	%rdx, %r14
    13171. 

  13171.         adoxq	%rax, %r15
    13172. 

  13172.         # Reduce
    13173. 

  13173.         movq	$0x7fffffffffffffff, %rax
    13174. 

  13174.         #  Move top half into t4-t7 and remove top bit from t3
    13175. 

  13175.         shldq	$0x01, %r14, %r15
    13176. 

  13176.         shldq	$0x01, %r13, %r14
    13177. 

  13177.         shldq	$0x01, %r12, %r13
    13178. 

  13178.         shldq	$0x01, %r11, %r12
    13179. 

  13179.         andq	%rax, %r11
    13180. 

  13180.         #  Multiply top half by 19
    13181. 

  13181.         movq	$19, %rdx
    13182. 

  13182.         xorq	%rax, %rax
    13183. 

  13183.         mulxq	%r12, %rcx, %r12
    13184. 

  13184.         adcxq	%rcx, %r8
    13185. 

  13185.         adoxq	%r12, %r9
    13186. 

  13186.         mulxq	%r13, %rcx, %r13
    13187. 

  13187.         adcxq	%rcx, %r9
    13188. 

  13188.         adoxq	%r13, %r10
    13189. 

  13189.         mulxq	%r14, %rcx, %r14
    13190. 

  13190.         adcxq	%rcx, %r10
    13191. 

  13191.         adoxq	%r14, %r11
    13192. 

  13192.         mulxq	%r15, %r15, %rdx
    13193. 

  13193.         adcxq	%r15, %r11
    13194. 

  13194.         adoxq	%rax, %rdx
    13195. 

  13195.         adcxq	%rax, %rdx
    13196. 

  13196.         #  Overflow
    13197. 

  13197.         shldq	$0x01, %r11, %rdx
    13198. 

  13198.         movq	$0x7fffffffffffffff, %rax
    13199. 

  13199.         imulq	$19, %rdx, %rcx
    13200. 

  13200.         andq	%rax, %r11
    13201. 

  13201.         addq	%rcx, %r8
    13202. 

  13202.         adcq	$0x00, %r9
    13203. 

  13203.         adcq	$0x00, %r10
    13204. 

  13204.         adcq	$0x00, %r11
    13205. 

  13205.         # Reduce if top bit set
    13206. 

  13206.         movq	%r11, %rdx
    13207. 

  13207.         sarq	$63, %rdx
    13208. 

  13208.         andq	$19, %rdx
    13209. 

  13209.         andq	%rax, %r11
    13210. 

  13210.         addq	%rdx, %r8
    13211. 

  13211.         adcq	$0x00, %r9
    13212. 

  13212.         adcq	$0x00, %r10
    13213. 

  13213.         adcq	$0x00, %r11
    13214. 

  13214.         # Store
    13215. 

  13215.         movq	%r8, (%rdi)
    13216. 

  13216.         movq	%r9, 8(%rdi)
    13217. 

  13217.         movq	%r10, 16(%rdi)
    13218. 

  13218.         movq	%r11, 24(%rdi)
    13219. 

  13219.         movq	16(%rsp), %rdi
    13220. 

  13220.         movq	24(%rsp), %rsi
    13221. 

  13221.         movq	32(%rsp), %rbx
    13222. 

  13222.         # Multiply
    13223. 

  13223.         # A[0] * B[0]
    13224. 

  13224.         movq	(%rbx), %rdx
    13225. 

  13225.         mulxq	(%rsi), %r8, %r9
    13226. 

  13226.         # A[2] * B[0]
    13227. 

  13227.         mulxq	16(%rsi), %r10, %r11
    13228. 

  13228.         # A[1] * B[0]
    13229. 

  13229.         mulxq	8(%rsi), %rcx, %rax
    13230. 

  13230.         xorq	%r15, %r15
    13231. 

  13231.         adcxq	%rcx, %r9
    13232. 

  13232.         # A[1] * B[3]
    13233. 

  13233.         movq	24(%rbx), %rdx
    13234. 

  13234.         mulxq	8(%rsi), %r12, %r13
    13235. 

  13235.         adcxq	%rax, %r10
    13236. 

  13236.         # A[0] * B[1]
    13237. 

  13237.         movq	8(%rbx), %rdx
    13238. 

  13238.         mulxq	(%rsi), %rcx, %rax
    13239. 

  13239.         adoxq	%rcx, %r9
    13240. 

  13240.         # A[2] * B[1]
    13241. 

  13241.         mulxq	16(%rsi), %rcx, %r14
    13242. 

  13242.         adoxq	%rax, %r10
    13243. 

  13243.         adcxq	%rcx, %r11
    13244. 

  13244.         # A[1] * B[2]
    13245. 

  13245.         movq	16(%rbx), %rdx
    13246. 

  13246.         mulxq	8(%rsi), %rcx, %rax
    13247. 

  13247.         adcxq	%r14, %r12
    13248. 

  13248.         adoxq	%rcx, %r11
    13249. 

  13249.         adcxq	%r15, %r13
    13250. 

  13250.         adoxq	%rax, %r12
    13251. 

  13251.         # A[0] * B[2]
    13252. 

  13252.         mulxq	(%rsi), %rcx, %rax
    13253. 

  13253.         adoxq	%r15, %r13
    13254. 

  13254.         xorq	%r14, %r14
    13255. 

  13255.         adcxq	%rcx, %r10
    13256. 

  13256.         # A[1] * B[1]
    13257. 

  13257.         movq	8(%rbx), %rdx
    13258. 

  13258.         mulxq	8(%rsi), %rdx, %rcx
    13259. 

  13259.         adcxq	%rax, %r11
    13260. 

  13260.         adoxq	%rdx, %r10
    13261. 

  13261.         # A[3] * B[1]
    13262. 

  13262.         movq	8(%rbx), %rdx
    13263. 

  13263.         adoxq	%rcx, %r11
    13264. 

  13264.         mulxq	24(%rsi), %rcx, %rax
    13265. 

  13265.         adcxq	%rcx, %r12
    13266. 

  13266.         # A[2] * B[2]
    13267. 

  13267.         movq	16(%rbx), %rdx
    13268. 

  13268.         mulxq	16(%rsi), %rdx, %rcx
    13269. 

  13269.         adcxq	%rax, %r13
    13270. 

  13270.         adoxq	%rdx, %r12
    13271. 

  13271.         # A[3] * B[3]
    13272. 

  13272.         movq	24(%rbx), %rdx
    13273. 

  13273.         adoxq	%rcx, %r13
    13274. 

  13274.         mulxq	24(%rsi), %rcx, %rax
    13275. 

  13275.         adoxq	%r15, %r14
    13276. 

  13276.         adcxq	%rcx, %r14
    13277. 

  13277.         # A[0] * B[3]
    13278. 

  13278.         mulxq	(%rsi), %rdx, %rcx
    13279. 

  13279.         adcxq	%rax, %r15
    13280. 

  13280.         xorq	%rax, %rax
    13281. 

  13281.         adcxq	%rdx, %r11
    13282. 

  13282.         # A[3] * B[0]
    13283. 

  13283.         movq	(%rbx), %rdx
    13284. 

  13284.         adcxq	%rcx, %r12
    13285. 

  13285.         mulxq	24(%rsi), %rdx, %rcx
    13286. 

  13286.         adoxq	%rdx, %r11
    13287. 

  13287.         adoxq	%rcx, %r12
    13288. 

  13288.         # A[2] * B[3]
    13289. 

  13289.         movq	24(%rbx), %rdx
    13290. 

  13290.         mulxq	16(%rsi), %rdx, %rcx
    13291. 

  13291.         adcxq	%rdx, %r13
    13292. 

  13292.         # A[3] * B[2]
    13293. 

  13293.         movq	16(%rbx), %rdx
    13294. 

  13294.         adcxq	%rcx, %r14
    13295. 

  13295.         mulxq	24(%rsi), %rcx, %rdx
    13296. 

  13296.         adcxq	%rax, %r15
    13297. 

  13297.         adoxq	%rcx, %r13
    13298. 

  13298.         adoxq	%rdx, %r14
    13299. 

  13299.         adoxq	%rax, %r15
    13300. 

  13300.         # Reduce
    13301. 

  13301.         movq	$0x7fffffffffffffff, %rax
    13302. 

  13302.         #  Move top half into t4-t7 and remove top bit from t3
    13303. 

  13303.         shldq	$0x01, %r14, %r15
    13304. 

  13304.         shldq	$0x01, %r13, %r14
    13305. 

  13305.         shldq	$0x01, %r12, %r13
    13306. 

  13306.         shldq	$0x01, %r11, %r12
    13307. 

  13307.         andq	%rax, %r11
    13308. 

  13308.         #  Multiply top half by 19
    13309. 

  13309.         movq	$19, %rdx
    13310. 

  13310.         xorq	%rax, %rax
    13311. 

  13311.         mulxq	%r12, %rcx, %r12
    13312. 

  13312.         adcxq	%rcx, %r8
    13313. 

  13313.         adoxq	%r12, %r9
    13314. 

  13314.         mulxq	%r13, %rcx, %r13
    13315. 

  13315.         adcxq	%rcx, %r9
    13316. 

  13316.         adoxq	%r13, %r10
    13317. 

  13317.         mulxq	%r14, %rcx, %r14
    13318. 

  13318.         adcxq	%rcx, %r10
    13319. 

  13319.         adoxq	%r14, %r11
    13320. 

  13320.         mulxq	%r15, %r15, %rdx
    13321. 

  13321.         adcxq	%r15, %r11
    13322. 

  13322.         adoxq	%rax, %rdx
    13323. 

  13323.         adcxq	%rax, %rdx
    13324. 

  13324.         #  Overflow
    13325. 

  13325.         shldq	$0x01, %r11, %rdx
    13326. 

  13326.         movq	$0x7fffffffffffffff, %rax
    13327. 

  13327.         imulq	$19, %rdx, %rcx
    13328. 

  13328.         andq	%rax, %r11
    13329. 

  13329.         addq	%rcx, %r8
    13330. 

  13330.         adcq	$0x00, %r9
    13331. 

  13331.         adcq	$0x00, %r10
    13332. 

  13332.         adcq	$0x00, %r11
    13333. 

  13333.         # Reduce if top bit set
    13334. 

  13334.         movq	%r11, %rdx
    13335. 

  13335.         sarq	$63, %rdx
    13336. 

  13336.         andq	$19, %rdx
    13337. 

  13337.         andq	%rax, %r11
    13338. 

  13338.         addq	%rdx, %r8
    13339. 

  13339.         adcq	$0x00, %r9
    13340. 

  13340.         adcq	$0x00, %r10
    13341. 

  13341.         adcq	$0x00, %r11
    13342. 

  13342.         # Store
    13343. 

  13343.         movq	%r8, (%rdi)
    13344. 

  13344.         movq	%r9, 8(%rdi)
    13345. 

  13345.         movq	%r10, 16(%rdi)
    13346. 

  13346.         movq	%r11, 24(%rdi)
    13347. 

  13347.         addq	$40, %rsp
    13348. 

  13348.         popq	%r15
    13349. 

  13349.         popq	%r14
    13350. 

  13350.         popq	%r13
    13351. 

  13351.         popq	%r12
    13352. 

  13352.         popq	%rbx
    13353. 

  13353.         repz retq
    13354. 

  13354. #ifndef __APPLE__
    13355. 

  13355. .size	fe_ge_to_p3_avx2,.-fe_ge_to_p3_avx2
    13356. 

  13356. #endif /* __APPLE__ */
    13357. 

  13357. #ifndef __APPLE__
    13358. 

  13358. .text
    13359. 

  13359. .globl	fe_ge_dbl_avx2
    13360. 

  13360. .type	fe_ge_dbl_avx2,@function
    13361. 

  13361. .align	16
    13362. 

  13362. fe_ge_dbl_avx2:
    13363. 

  13363. #else
    13364. 

  13364. .section	__TEXT,__text
    13365. 

  13365. .globl	_fe_ge_dbl_avx2
    13366. 

  13366. .p2align	4
    13367. 

  13367. _fe_ge_dbl_avx2:
    13368. 

  13368. #endif /* __APPLE__ */
    13369. 

  13369.         pushq	%rbp
    13370. 

  13370.         pushq	%rbx
    13371. 

  13371.         pushq	%r12
    13372. 

  13372.         pushq	%r13
    13373. 

  13373.         pushq	%r14
    13374. 

  13374.         pushq	%r15
    13375. 

  13375.         subq	$48, %rsp
    13376. 

  13376.         movq	%rdi, (%rsp)
    13377. 

  13377.         movq	%rsi, 8(%rsp)
    13378. 

  13378.         movq	%rdx, 16(%rsp)
    13379. 

  13379.         movq	%rcx, 24(%rsp)
    13380. 

  13380.         movq	%r8, 32(%rsp)
    13381. 

  13381.         movq	%r9, 40(%rsp)
    13382. 

  13382.         movq	32(%rsp), %rsi
    13383. 

  13383.         # Square
    13384. 

  13384.         # A[0] * A[1]
    13385. 

  13385.         movq	(%rsi), %rdx
    13386. 

  13386.         mulxq	8(%rsi), %r9, %r10
    13387. 

  13387.         # A[0] * A[3]
    13388. 

  13388.         mulxq	24(%rsi), %r11, %r12
    13389. 

  13389.         # A[2] * A[1]
    13390. 

  13390.         movq	16(%rsi), %rdx
    13391. 

  13391.         mulxq	8(%rsi), %rcx, %rax
    13392. 

  13392.         xorq	%r15, %r15
    13393. 

  13393.         adoxq	%rcx, %r11
    13394. 

  13394.         # A[2] * A[3]
    13395. 

  13395.         mulxq	24(%rsi), %r13, %r14
    13396. 

  13396.         adoxq	%rax, %r12
    13397. 

  13397.         # A[2] * A[0]
    13398. 

  13398.         mulxq	(%rsi), %rcx, %rax
    13399. 

  13399.         adoxq	%r15, %r13
    13400. 

  13400.         adcxq	%rcx, %r10
    13401. 

  13401.         adoxq	%r15, %r14
    13402. 

  13402.         # A[1] * A[3]
    13403. 

  13403.         movq	8(%rsi), %rdx
    13404. 

  13404.         mulxq	24(%rsi), %rbp, %r8
    13405. 

  13405.         adcxq	%rax, %r11
    13406. 

  13406.         adcxq	%rbp, %r12
    13407. 

  13407.         adcxq	%r8, %r13
    13408. 

  13408.         adcxq	%r15, %r14
    13409. 

  13409.         # Double with Carry Flag
    13410. 

  13410.         xorq	%r15, %r15
    13411. 

  13411.         # A[0] * A[0]
    13412. 

  13412.         movq	(%rsi), %rdx
    13413. 

  13413.         mulxq	%rdx, %r8, %rbp
    13414. 

  13414.         adcxq	%r9, %r9
    13415. 

  13415.         # A[1] * A[1]
    13416. 

  13416.         movq	8(%rsi), %rdx
    13417. 

  13417.         mulxq	%rdx, %rcx, %rax
    13418. 

  13418.         adcxq	%r10, %r10
    13419. 

  13419.         adoxq	%rbp, %r9
    13420. 

  13420.         adcxq	%r11, %r11
    13421. 

  13421.         adoxq	%rcx, %r10
    13422. 

  13422.         # A[2] * A[2]
    13423. 

  13423.         movq	16(%rsi), %rdx
    13424. 

  13424.         mulxq	%rdx, %rbp, %rcx
    13425. 

  13425.         adcxq	%r12, %r12
    13426. 

  13426.         adoxq	%rax, %r11
    13427. 

  13427.         adcxq	%r13, %r13
    13428. 

  13428.         adoxq	%rbp, %r12
    13429. 

  13429.         # A[3] * A[3]
    13430. 

  13430.         movq	24(%rsi), %rdx
    13431. 

  13431.         mulxq	%rdx, %rbp, %rax
    13432. 

  13432.         adcxq	%r14, %r14
    13433. 

  13433.         adoxq	%rcx, %r13
    13434. 

  13434.         adcxq	%r15, %r15
    13435. 

  13435.         adoxq	%rbp, %r14
    13436. 

  13436.         adoxq	%rax, %r15
    13437. 

  13437.         # Reduce
    13438. 

  13438.         movq	$0x7fffffffffffffff, %rcx
    13439. 

  13439.         #  Move top half into t4-t7 and remove top bit from t3
    13440. 

  13440.         shldq	$0x01, %r14, %r15
    13441. 

  13441.         shldq	$0x01, %r13, %r14
    13442. 

  13442.         shldq	$0x01, %r12, %r13
    13443. 

  13443.         shldq	$0x01, %r11, %r12
    13444. 

  13444.         andq	%rcx, %r11
    13445. 

  13445.         #  Multiply top half by 19
    13446. 

  13446.         movq	$19, %rdx
    13447. 

  13447.         xorq	%rcx, %rcx
    13448. 

  13448.         mulxq	%r12, %rbp, %r12
    13449. 

  13449.         adcxq	%rbp, %r8
    13450. 

  13450.         adoxq	%r12, %r9
    13451. 

  13451.         mulxq	%r13, %rbp, %r13
    13452. 

  13452.         adcxq	%rbp, %r9
    13453. 

  13453.         adoxq	%r13, %r10
    13454. 

  13454.         mulxq	%r14, %rbp, %r14
    13455. 

  13455.         adcxq	%rbp, %r10
    13456. 

  13456.         adoxq	%r14, %r11
    13457. 

  13457.         mulxq	%r15, %r15, %rdx
    13458. 

  13458.         adcxq	%r15, %r11
    13459. 

  13459.         adoxq	%rcx, %rdx
    13460. 

  13460.         adcxq	%rcx, %rdx
    13461. 

  13461.         #  Overflow
    13462. 

  13462.         shldq	$0x01, %r11, %rdx
    13463. 

  13463.         movq	$0x7fffffffffffffff, %rcx
    13464. 

  13464.         imulq	$19, %rdx, %rbp
    13465. 

  13465.         andq	%rcx, %r11
    13466. 

  13466.         addq	%rbp, %r8
    13467. 

  13467.         adcq	$0x00, %r9
    13468. 

  13468.         adcq	$0x00, %r10
    13469. 

  13469.         adcq	$0x00, %r11
    13470. 

  13470.         # Reduce if top bit set
    13471. 

  13471.         movq	%r11, %rdx
    13472. 

  13472.         sarq	$63, %rdx
    13473. 

  13473.         andq	$19, %rdx
    13474. 

  13474.         andq	%rcx, %r11
    13475. 

  13475.         addq	%rdx, %r8
    13476. 

  13476.         adcq	$0x00, %r9
    13477. 

  13477.         adcq	$0x00, %r10
    13478. 

  13478.         adcq	$0x00, %r11
    13479. 

  13479.         # Store
    13480. 

  13480.         movq	%r8, (%rdi)
    13481. 

  13481.         movq	%r9, 8(%rdi)
    13482. 

  13482.         movq	%r10, 16(%rdi)
    13483. 

  13483.         movq	%r11, 24(%rdi)
    13484. 

  13484.         movq	16(%rsp), %rdi
    13485. 

  13485.         movq	40(%rsp), %rbx
    13486. 

  13486.         # Square
    13487. 

  13487.         # A[0] * A[1]
    13488. 

  13488.         movq	(%rbx), %rdx
    13489. 

  13489.         mulxq	8(%rbx), %r9, %r10
    13490. 

  13490.         # A[0] * A[3]
    13491. 

  13491.         mulxq	24(%rbx), %r11, %r12
    13492. 

  13492.         # A[2] * A[1]
    13493. 

  13493.         movq	16(%rbx), %rdx
    13494. 

  13494.         mulxq	8(%rbx), %rcx, %rax
    13495. 

  13495.         xorq	%r15, %r15
    13496. 

  13496.         adoxq	%rcx, %r11
    13497. 

  13497.         # A[2] * A[3]
    13498. 

  13498.         mulxq	24(%rbx), %r13, %r14
    13499. 

  13499.         adoxq	%rax, %r12
    13500. 

  13500.         # A[2] * A[0]
    13501. 

  13501.         mulxq	(%rbx), %rcx, %rax
    13502. 

  13502.         adoxq	%r15, %r13
    13503. 

  13503.         adcxq	%rcx, %r10
    13504. 

  13504.         adoxq	%r15, %r14
    13505. 

  13505.         # A[1] * A[3]
    13506. 

  13506.         movq	8(%rbx), %rdx
    13507. 

  13507.         mulxq	24(%rbx), %rbp, %r8
    13508. 

  13508.         adcxq	%rax, %r11
    13509. 

  13509.         adcxq	%rbp, %r12
    13510. 

  13510.         adcxq	%r8, %r13
    13511. 

  13511.         adcxq	%r15, %r14
    13512. 

  13512.         # Double with Carry Flag
    13513. 

  13513.         xorq	%r15, %r15
    13514. 

  13514.         # A[0] * A[0]
    13515. 

  13515.         movq	(%rbx), %rdx
    13516. 

  13516.         mulxq	%rdx, %r8, %rbp
    13517. 

  13517.         adcxq	%r9, %r9
    13518. 

  13518.         # A[1] * A[1]
    13519. 

  13519.         movq	8(%rbx), %rdx
    13520. 

  13520.         mulxq	%rdx, %rcx, %rax
    13521. 

  13521.         adcxq	%r10, %r10
    13522. 

  13522.         adoxq	%rbp, %r9
    13523. 

  13523.         adcxq	%r11, %r11
    13524. 

  13524.         adoxq	%rcx, %r10
    13525. 

  13525.         # A[2] * A[2]
    13526. 

  13526.         movq	16(%rbx), %rdx
    13527. 

  13527.         mulxq	%rdx, %rbp, %rcx
    13528. 

  13528.         adcxq	%r12, %r12
    13529. 

  13529.         adoxq	%rax, %r11
    13530. 

  13530.         adcxq	%r13, %r13
    13531. 

  13531.         adoxq	%rbp, %r12
    13532. 

  13532.         # A[3] * A[3]
    13533. 

  13533.         movq	24(%rbx), %rdx
    13534. 

  13534.         mulxq	%rdx, %rbp, %rax
    13535. 

  13535.         adcxq	%r14, %r14
    13536. 

  13536.         adoxq	%rcx, %r13
    13537. 

  13537.         adcxq	%r15, %r15
    13538. 

  13538.         adoxq	%rbp, %r14
    13539. 

  13539.         adoxq	%rax, %r15
    13540. 

  13540.         # Reduce
    13541. 

  13541.         movq	$0x7fffffffffffffff, %rcx
    13542. 

  13542.         #  Move top half into t4-t7 and remove top bit from t3
    13543. 

  13543.         shldq	$0x01, %r14, %r15
    13544. 

  13544.         shldq	$0x01, %r13, %r14
    13545. 

  13545.         shldq	$0x01, %r12, %r13
    13546. 

  13546.         shldq	$0x01, %r11, %r12
    13547. 

  13547.         andq	%rcx, %r11
    13548. 

  13548.         #  Multiply top half by 19
    13549. 

  13549.         movq	$19, %rdx
    13550. 

  13550.         xorq	%rcx, %rcx
    13551. 

  13551.         mulxq	%r12, %rbp, %r12
    13552. 

  13552.         adcxq	%rbp, %r8
    13553. 

  13553.         adoxq	%r12, %r9
    13554. 

  13554.         mulxq	%r13, %rbp, %r13
    13555. 

  13555.         adcxq	%rbp, %r9
    13556. 

  13556.         adoxq	%r13, %r10
    13557. 

  13557.         mulxq	%r14, %rbp, %r14
    13558. 

  13558.         adcxq	%rbp, %r10
    13559. 

  13559.         adoxq	%r14, %r11
    13560. 

  13560.         mulxq	%r15, %r15, %rdx
    13561. 

  13561.         adcxq	%r15, %r11
    13562. 

  13562.         adoxq	%rcx, %rdx
    13563. 

  13563.         adcxq	%rcx, %rdx
    13564. 

  13564.         #  Overflow
    13565. 

  13565.         shldq	$0x01, %r11, %rdx
    13566. 

  13566.         movq	$0x7fffffffffffffff, %rcx
    13567. 

  13567.         imulq	$19, %rdx, %rbp
    13568. 

  13568.         andq	%rcx, %r11
    13569. 

  13569.         addq	%rbp, %r8
    13570. 

  13570.         adcq	$0x00, %r9
    13571. 

  13571.         adcq	$0x00, %r10
    13572. 

  13572.         adcq	$0x00, %r11
    13573. 

  13573.         # Reduce if top bit set
    13574. 

  13574.         movq	%r11, %rdx
    13575. 

  13575.         sarq	$63, %rdx
    13576. 

  13576.         andq	$19, %rdx
    13577. 

  13577.         andq	%rcx, %r11
    13578. 

  13578.         addq	%rdx, %r8
    13579. 

  13579.         adcq	$0x00, %r9
    13580. 

  13580.         adcq	$0x00, %r10
    13581. 

  13581.         adcq	$0x00, %r11
    13582. 

  13582.         # Store
    13583. 

  13583.         movq	%r8, (%rdi)
    13584. 

  13584.         movq	%r9, 8(%rdi)
    13585. 

  13585.         movq	%r10, 16(%rdi)
    13586. 

  13586.         movq	%r11, 24(%rdi)
    13587. 

  13587.         movq	8(%rsp), %rdi
    13588. 

  13588.         # Add
    13589. 

  13589.         movq	(%rsi), %r8
    13590. 

  13590.         movq	8(%rsi), %r9
    13591. 

  13591.         addq	(%rbx), %r8
    13592. 

  13592.         movq	16(%rsi), %r10
    13593. 

  13593.         adcq	8(%rbx), %r9
    13594. 

  13594.         movq	24(%rsi), %rdx
    13595. 

  13595.         adcq	16(%rbx), %r10
    13596. 

  13596.         movq	$-19, %rcx
    13597. 

  13597.         adcq	24(%rbx), %rdx
    13598. 

  13598.         movq	$0x7fffffffffffffff, %rax
    13599. 

  13599.         movq	%rdx, %r11
    13600. 

  13600.         sarq	$63, %rdx
    13601. 

  13601.         #   Mask the modulus
    13602. 

  13602.         andq	%rdx, %rcx
    13603. 

  13603.         andq	%rdx, %rax
    13604. 

  13604.         #   Sub modulus (if overflow)
    13605. 

  13605.         subq	%rcx, %r8
    13606. 

  13606.         sbbq	%rdx, %r9
    13607. 

  13607.         sbbq	%rdx, %r10
    13608. 

  13608.         sbbq	%rax, %r11
    13609. 

  13609.         movq	%r8, (%rdi)
    13610. 

  13610.         movq	%r9, 8(%rdi)
    13611. 

  13611.         movq	%r10, 16(%rdi)
    13612. 

  13612.         movq	%r11, 24(%rdi)
    13613. 

  13613.         movq	24(%rsp), %rsi
    13614. 

  13614.         # Square
    13615. 

  13615.         # A[0] * A[1]
    13616. 

  13616.         movq	(%rdi), %rdx
    13617. 

  13617.         mulxq	8(%rdi), %r9, %r10
    13618. 

  13618.         # A[0] * A[3]
    13619. 

  13619.         mulxq	24(%rdi), %r11, %r12
    13620. 

  13620.         # A[2] * A[1]
    13621. 

  13621.         movq	16(%rdi), %rdx
    13622. 

  13622.         mulxq	8(%rdi), %rcx, %rax
    13623. 

  13623.         xorq	%r15, %r15
    13624. 

  13624.         adoxq	%rcx, %r11
    13625. 

  13625.         # A[2] * A[3]
    13626. 

  13626.         mulxq	24(%rdi), %r13, %r14
    13627. 

  13627.         adoxq	%rax, %r12
    13628. 

  13628.         # A[2] * A[0]
    13629. 

  13629.         mulxq	(%rdi), %rcx, %rax
    13630. 

  13630.         adoxq	%r15, %r13
    13631. 

  13631.         adcxq	%rcx, %r10
    13632. 

  13632.         adoxq	%r15, %r14
    13633. 

  13633.         # A[1] * A[3]
    13634. 

  13634.         movq	8(%rdi), %rdx
    13635. 

  13635.         mulxq	24(%rdi), %rbp, %r8
    13636. 

  13636.         adcxq	%rax, %r11
    13637. 

  13637.         adcxq	%rbp, %r12
    13638. 

  13638.         adcxq	%r8, %r13
    13639. 

  13639.         adcxq	%r15, %r14
    13640. 

  13640.         # Double with Carry Flag
    13641. 

  13641.         xorq	%r15, %r15
    13642. 

  13642.         # A[0] * A[0]
    13643. 

  13643.         movq	(%rdi), %rdx
    13644. 

  13644.         mulxq	%rdx, %r8, %rbp
    13645. 

  13645.         adcxq	%r9, %r9
    13646. 

  13646.         # A[1] * A[1]
    13647. 

  13647.         movq	8(%rdi), %rdx
    13648. 

  13648.         mulxq	%rdx, %rcx, %rax
    13649. 

  13649.         adcxq	%r10, %r10
    13650. 

  13650.         adoxq	%rbp, %r9
    13651. 

  13651.         adcxq	%r11, %r11
    13652. 

  13652.         adoxq	%rcx, %r10
    13653. 

  13653.         # A[2] * A[2]
    13654. 

  13654.         movq	16(%rdi), %rdx
    13655. 

  13655.         mulxq	%rdx, %rbp, %rcx
    13656. 

  13656.         adcxq	%r12, %r12
    13657. 

  13657.         adoxq	%rax, %r11
    13658. 

  13658.         adcxq	%r13, %r13
    13659. 

  13659.         adoxq	%rbp, %r12
    13660. 

  13660.         # A[3] * A[3]
    13661. 

  13661.         movq	24(%rdi), %rdx
    13662. 

  13662.         mulxq	%rdx, %rbp, %rax
    13663. 

  13663.         adcxq	%r14, %r14
    13664. 

  13664.         adoxq	%rcx, %r13
    13665. 

  13665.         adcxq	%r15, %r15
    13666. 

  13666.         adoxq	%rbp, %r14
    13667. 

  13667.         adoxq	%rax, %r15
    13668. 

  13668.         # Reduce
    13669. 

  13669.         movq	$0x7fffffffffffffff, %rcx
    13670. 

  13670.         #  Move top half into t4-t7 and remove top bit from t3
    13671. 

  13671.         shldq	$0x01, %r14, %r15
    13672. 

  13672.         shldq	$0x01, %r13, %r14
    13673. 

  13673.         shldq	$0x01, %r12, %r13
    13674. 

  13674.         shldq	$0x01, %r11, %r12
    13675. 

  13675.         andq	%rcx, %r11
    13676. 

  13676.         #  Multiply top half by 19
    13677. 

  13677.         movq	$19, %rdx
    13678. 

  13678.         xorq	%rcx, %rcx
    13679. 

  13679.         mulxq	%r12, %rbp, %r12
    13680. 

  13680.         adcxq	%rbp, %r8
    13681. 

  13681.         adoxq	%r12, %r9
    13682. 

  13682.         mulxq	%r13, %rbp, %r13
    13683. 

  13683.         adcxq	%rbp, %r9
    13684. 

  13684.         adoxq	%r13, %r10
    13685. 

  13685.         mulxq	%r14, %rbp, %r14
    13686. 

  13686.         adcxq	%rbp, %r10
    13687. 

  13687.         adoxq	%r14, %r11
    13688. 

  13688.         mulxq	%r15, %r15, %rdx
    13689. 

  13689.         adcxq	%r15, %r11
    13690. 

  13690.         adoxq	%rcx, %rdx
    13691. 

  13691.         adcxq	%rcx, %rdx
    13692. 

  13692.         #  Overflow
    13693. 

  13693.         shldq	$0x01, %r11, %rdx
    13694. 

  13694.         movq	$0x7fffffffffffffff, %rcx
    13695. 

  13695.         imulq	$19, %rdx, %rbp
    13696. 

  13696.         andq	%rcx, %r11
    13697. 

  13697.         addq	%rbp, %r8
    13698. 

  13698.         adcq	$0x00, %r9
    13699. 

  13699.         adcq	$0x00, %r10
    13700. 

  13700.         adcq	$0x00, %r11
    13701. 

  13701.         # Reduce if top bit set
    13702. 

  13702.         movq	%r11, %rdx
    13703. 

  13703.         sarq	$63, %rdx
    13704. 

  13704.         andq	$19, %rdx
    13705. 

  13705.         andq	%rcx, %r11
    13706. 

  13706.         addq	%rdx, %r8
    13707. 

  13707.         adcq	$0x00, %r9
    13708. 

  13708.         adcq	$0x00, %r10
    13709. 

  13709.         adcq	$0x00, %r11
    13710. 

  13710.         # Store
    13711. 

  13711.         movq	%r8, (%rsi)
    13712. 

  13712.         movq	%r9, 8(%rsi)
    13713. 

  13713.         movq	%r10, 16(%rsi)
    13714. 

  13714.         movq	%r11, 24(%rsi)
    13715. 

  13715.         movq	16(%rsp), %rsi
    13716. 

  13716.         movq	(%rsp), %rbx
    13717. 

  13717.         # Add
    13718. 

  13718.         movq	(%rsi), %r8
    13719. 

  13719.         movq	8(%rsi), %r9
    13720. 

  13720.         movq	16(%rsi), %r10
    13721. 

  13721.         movq	24(%rsi), %rdx
    13722. 

  13722.         movq	%r8, %r12
    13723. 

  13723.         addq	(%rbx), %r8
    13724. 

  13724.         movq	%r9, %r13
    13725. 

  13725.         adcq	8(%rbx), %r9
    13726. 

  13726.         movq	%r10, %r14
    13727. 

  13727.         adcq	16(%rbx), %r10
    13728. 

  13728.         movq	%rdx, %r15
    13729. 

  13729.         adcq	24(%rbx), %rdx
    13730. 

  13730.         movq	$-19, %rcx
    13731. 

  13731.         movq	%rdx, %r11
    13732. 

  13732.         movq	$0x7fffffffffffffff, %rax
    13733. 

  13733.         sarq	$63, %rdx
    13734. 

  13734.         #   Mask the modulus
    13735. 

  13735.         andq	%rdx, %rcx
    13736. 

  13736.         andq	%rdx, %rax
    13737. 

  13737.         #   Sub modulus (if overflow)
    13738. 

  13738.         subq	%rcx, %r8
    13739. 

  13739.         sbbq	%rdx, %r9
    13740. 

  13740.         sbbq	%rdx, %r10
    13741. 

  13741.         sbbq	%rax, %r11
    13742. 

  13742.         # Sub
    13743. 

  13743.         subq	(%rbx), %r12
    13744. 

  13744.         movq	$0x00, %rdx
    13745. 

  13745.         sbbq	8(%rbx), %r13
    13746. 

  13746.         movq	$-19, %rcx
    13747. 

  13747.         sbbq	16(%rbx), %r14
    13748. 

  13748.         movq	$0x7fffffffffffffff, %rax
    13749. 

  13749.         sbbq	24(%rbx), %r15
    13750. 

  13750.         sbbq	$0x00, %rdx
    13751. 

  13751.         #   Mask the modulus
    13752. 

  13752.         andq	%rdx, %rcx
    13753. 

  13753.         andq	%rdx, %rax
    13754. 

  13754.         #   Add modulus (if underflow)
    13755. 

  13755.         addq	%rcx, %r12
    13756. 

  13756.         adcq	%rdx, %r13
    13757. 

  13757.         adcq	%rdx, %r14
    13758. 

  13758.         adcq	%rax, %r15
    13759. 

  13759.         movq	%r8, (%rdi)
    13760. 

  13760.         movq	%r9, 8(%rdi)
    13761. 

  13761.         movq	%r10, 16(%rdi)
    13762. 

  13762.         movq	%r11, 24(%rdi)
    13763. 

  13763.         movq	%r12, (%rsi)
    13764. 

  13764.         movq	%r13, 8(%rsi)
    13765. 

  13765.         movq	%r14, 16(%rsi)
    13766. 

  13766.         movq	%r15, 24(%rsi)
    13767. 

  13767.         movq	24(%rsp), %rsi
    13768. 

  13768.         # Sub
    13769. 

  13769.         movq	(%rsi), %r8
    13770. 

  13770.         movq	8(%rsi), %r9
    13771. 

  13771.         movq	16(%rsi), %r10
    13772. 

  13772.         movq	24(%rsi), %r11
    13773. 

  13773.         subq	(%rdi), %r8
    13774. 

  13774.         movq	$0x00, %rdx
    13775. 

  13775.         sbbq	8(%rdi), %r9
    13776. 

  13776.         movq	$-19, %rcx
    13777. 

  13777.         sbbq	16(%rdi), %r10
    13778. 

  13778.         movq	$0x7fffffffffffffff, %rax
    13779. 

  13779.         sbbq	24(%rdi), %r11
    13780. 

  13780.         sbbq	$0x00, %rdx
    13781. 

  13781.         #   Mask the modulus
    13782. 

  13782.         andq	%rdx, %rcx
    13783. 

  13783.         andq	%rdx, %rax
    13784. 

  13784.         #   Add modulus (if underflow)
    13785. 

  13785.         addq	%rcx, %r8
    13786. 

  13786.         adcq	%rdx, %r9
    13787. 

  13787.         adcq	%rdx, %r10
    13788. 

  13788.         adcq	%rax, %r11
    13789. 

  13789.         movq	%r8, (%rbx)
    13790. 

  13790.         movq	%r9, 8(%rbx)
    13791. 

  13791.         movq	%r10, 16(%rbx)
    13792. 

  13792.         movq	%r11, 24(%rbx)
    13793. 

  13793.         movq	104(%rsp), %rdi
    13794. 

  13794.         # Square * 2
    13795. 

  13795.         # A[0] * A[1]
    13796. 

  13796.         movq	(%rdi), %rdx
    13797. 

  13797.         mulxq	8(%rdi), %r9, %r10
    13798. 

  13798.         # A[0] * A[3]
    13799. 

  13799.         mulxq	24(%rdi), %r11, %r12
    13800. 

  13800.         # A[2] * A[1]
    13801. 

  13801.         movq	16(%rdi), %rdx
    13802. 

  13802.         mulxq	8(%rdi), %rcx, %rax
    13803. 

  13803.         xorq	%r15, %r15
    13804. 

  13804.         adoxq	%rcx, %r11
    13805. 

  13805.         # A[2] * A[3]
    13806. 

  13806.         mulxq	24(%rdi), %r13, %r14
    13807. 

  13807.         adoxq	%rax, %r12
    13808. 

  13808.         # A[2] * A[0]
    13809. 

  13809.         mulxq	(%rdi), %rcx, %rax
    13810. 

  13810.         adoxq	%r15, %r13
    13811. 

  13811.         adcxq	%rcx, %r10
    13812. 

  13812.         adoxq	%r15, %r14
    13813. 

  13813.         # A[1] * A[3]
    13814. 

  13814.         movq	8(%rdi), %rdx
    13815. 

  13815.         mulxq	24(%rdi), %rbp, %r8
    13816. 

  13816.         adcxq	%rax, %r11
    13817. 

  13817.         adcxq	%rbp, %r12
    13818. 

  13818.         adcxq	%r8, %r13
    13819. 

  13819.         adcxq	%r15, %r14
    13820. 

  13820.         # Double with Carry Flag
    13821. 

  13821.         xorq	%r15, %r15
    13822. 

  13822.         # A[0] * A[0]
    13823. 

  13823.         movq	(%rdi), %rdx
    13824. 

  13824.         mulxq	%rdx, %r8, %rbp
    13825. 

  13825.         adcxq	%r9, %r9
    13826. 

  13826.         # A[1] * A[1]
    13827. 

  13827.         movq	8(%rdi), %rdx
    13828. 

  13828.         mulxq	%rdx, %rcx, %rax
    13829. 

  13829.         adcxq	%r10, %r10
    13830. 

  13830.         adoxq	%rbp, %r9
    13831. 

  13831.         adcxq	%r11, %r11
    13832. 

  13832.         adoxq	%rcx, %r10
    13833. 

  13833.         # A[2] * A[2]
    13834. 

  13834.         movq	16(%rdi), %rdx
    13835. 

  13835.         mulxq	%rdx, %rbp, %rcx
    13836. 

  13836.         adcxq	%r12, %r12
    13837. 

  13837.         adoxq	%rax, %r11
    13838. 

  13838.         adcxq	%r13, %r13
    13839. 

  13839.         adoxq	%rbp, %r12
    13840. 

  13840.         # A[3] * A[3]
    13841. 

  13841.         movq	24(%rdi), %rdx
    13842. 

  13842.         mulxq	%rdx, %rbp, %rax
    13843. 

  13843.         adcxq	%r14, %r14
    13844. 

  13844.         adoxq	%rcx, %r13
    13845. 

  13845.         adcxq	%r15, %r15
    13846. 

  13846.         adoxq	%rbp, %r14
    13847. 

  13847.         adoxq	%rax, %r15
    13848. 

  13848.         # Reduce
    13849. 

  13849.         movq	$0x7fffffffffffffff, %rax
    13850. 

  13850.         xorq	%rbp, %rbp
    13851. 

  13851.         #  Move top half into t4-t7 and remove top bit from t3 and double
    13852. 

  13852.         shldq	$3, %r15, %rbp
    13853. 

  13853.         shldq	$2, %r14, %r15
    13854. 

  13854.         shldq	$2, %r13, %r14
    13855. 

  13855.         shldq	$2, %r12, %r13
    13856. 

  13856.         shldq	$2, %r11, %r12
    13857. 

  13857.         shldq	$0x01, %r10, %r11
    13858. 

  13858.         shldq	$0x01, %r9, %r10
    13859. 

  13859.         shldq	$0x01, %r8, %r9
    13860. 

  13860.         shlq	$0x01, %r8
    13861. 

  13861.         andq	%rax, %r11
    13862. 

  13862.         #  Two out left, one in right
    13863. 

  13863.         andq	%rax, %r15
    13864. 

  13864.         #  Multiply top bits by 19*19
    13865. 

  13865.         imulq	$0x169, %rbp, %rcx
    13866. 

  13866.         xorq	%rax, %rax
    13867. 

  13867.         #  Multiply top half by 19
    13868. 

  13868.         movq	$19, %rdx
    13869. 

  13869.         adoxq	%rcx, %r8
    13870. 

  13870.         mulxq	%r12, %rbp, %r12
    13871. 

  13871.         adcxq	%rbp, %r8
    13872. 

  13872.         adoxq	%r12, %r9
    13873. 

  13873.         mulxq	%r13, %rbp, %r13
    13874. 

  13874.         adcxq	%rbp, %r9
    13875. 

  13875.         adoxq	%r13, %r10
    13876. 

  13876.         mulxq	%r14, %rbp, %r14
    13877. 

  13877.         adcxq	%rbp, %r10
    13878. 

  13878.         adoxq	%r14, %r11
    13879. 

  13879.         mulxq	%r15, %r15, %rdx
    13880. 

  13880.         adcxq	%r15, %r11
    13881. 

  13881.         adoxq	%rax, %rdx
    13882. 

  13882.         adcxq	%rax, %rdx
    13883. 

  13883.         #  Overflow
    13884. 

  13884.         shldq	$0x01, %r11, %rdx
    13885. 

  13885.         movq	$0x7fffffffffffffff, %rax
    13886. 

  13886.         imulq	$19, %rdx, %rbp
    13887. 

  13887.         andq	%rax, %r11
    13888. 

  13888.         addq	%rbp, %r8
    13889. 

  13889.         adcq	$0x00, %r9
    13890. 

  13890.         adcq	$0x00, %r10
    13891. 

  13891.         adcq	$0x00, %r11
    13892. 

  13892.         # Reduce if top bit set
    13893. 

  13893.         movq	%r11, %rdx
    13894. 

  13894.         sarq	$63, %rdx
    13895. 

  13895.         andq	$19, %rdx
    13896. 

  13896.         andq	%rax, %r11
    13897. 

  13897.         addq	%rdx, %r8
    13898. 

  13898.         adcq	$0x00, %r9
    13899. 

  13899.         adcq	$0x00, %r10
    13900. 

  13900.         adcq	$0x00, %r11
    13901. 

  13901.         # Store
    13902. 

  13902.         movq	%r8, (%rsi)
    13903. 

  13903.         movq	%r9, 8(%rsi)
    13904. 

  13904.         movq	%r10, 16(%rsi)
    13905. 

  13905.         movq	%r11, 24(%rsi)
    13906. 

  13906.         movq	16(%rsp), %rdi
    13907. 

  13907.         # Sub
    13908. 

  13908.         movq	(%rsi), %r8
    13909. 

  13909.         movq	8(%rsi), %r9
    13910. 

  13910.         movq	16(%rsi), %r10
    13911. 

  13911.         movq	24(%rsi), %r11
    13912. 

  13912.         subq	(%rdi), %r8
    13913. 

  13913.         movq	$0x00, %rdx
    13914. 

  13914.         sbbq	8(%rdi), %r9
    13915. 

  13915.         movq	$-19, %rcx
    13916. 

  13916.         sbbq	16(%rdi), %r10
    13917. 

  13917.         movq	$0x7fffffffffffffff, %rax
    13918. 

  13918.         sbbq	24(%rdi), %r11
    13919. 

  13919.         sbbq	$0x00, %rdx
    13920. 

  13920.         #   Mask the modulus
    13921. 

  13921.         andq	%rdx, %rcx
    13922. 

  13922.         andq	%rdx, %rax
    13923. 

  13923.         #   Add modulus (if underflow)
    13924. 

  13924.         addq	%rcx, %r8
    13925. 

  13925.         adcq	%rdx, %r9
    13926. 

  13926.         adcq	%rdx, %r10
    13927. 

  13927.         adcq	%rax, %r11
    13928. 

  13928.         movq	%r8, (%rsi)
    13929. 

  13929.         movq	%r9, 8(%rsi)
    13930. 

  13930.         movq	%r10, 16(%rsi)
    13931. 

  13931.         movq	%r11, 24(%rsi)
    13932. 

  13932.         addq	$48, %rsp
    13933. 

  13933.         popq	%r15
    13934. 

  13934.         popq	%r14
    13935. 

  13935.         popq	%r13
    13936. 

  13936.         popq	%r12
    13937. 

  13937.         popq	%rbx
    13938. 

  13938.         popq	%rbp
    13939. 

  13939.         repz retq
    13940. 

  13940. #ifndef __APPLE__
    13941. 

  13941. .size	fe_ge_dbl_avx2,.-fe_ge_dbl_avx2
    13942. 

  13942. #endif /* __APPLE__ */
    13943. 

  13943. #ifndef __APPLE__
    13944. 

  13944. .text
    13945. 

  13945. .globl	fe_ge_madd_avx2
    13946. 

  13946. .type	fe_ge_madd_avx2,@function
    13947. 

  13947. .align	16
    13948. 

  13948. fe_ge_madd_avx2:
    13949. 

  13949. #else
    13950. 

  13950. .section	__TEXT,__text
    13951. 

  13951. .globl	_fe_ge_madd_avx2
    13952. 

  13952. .p2align	4
    13953. 

  13953. _fe_ge_madd_avx2:
    13954. 

  13954. #endif /* __APPLE__ */
    13955. 

  13955.         pushq	%rbp
    13956. 

  13956.         pushq	%rbx
    13957. 

  13957.         pushq	%r12
    13958. 

  13958.         pushq	%r13
    13959. 

  13959.         pushq	%r14
    13960. 

  13960.         pushq	%r15
    13961. 

  13961.         subq	$48, %rsp
    13962. 

  13962.         movq	%rdi, (%rsp)
    13963. 

  13963.         movq	%rsi, 8(%rsp)
    13964. 

  13964.         movq	%rdx, 16(%rsp)
    13965. 

  13965.         movq	%rcx, 24(%rsp)
    13966. 

  13966.         movq	%r8, 32(%rsp)
    13967. 

  13967.         movq	%r9, 40(%rsp)
    13968. 

  13968.         movq	8(%rsp), %rsi
    13969. 

  13969.         movq	40(%rsp), %rbx
    13970. 

  13970.         movq	32(%rsp), %rbp
    13971. 

  13971.         # Add
    13972. 

  13972.         movq	(%rbx), %r8
    13973. 

  13973.         movq	8(%rbx), %r9
    13974. 

  13974.         movq	16(%rbx), %r10
    13975. 

  13975.         movq	24(%rbx), %rdx
    13976. 

  13976.         movq	%r8, %r12
    13977. 

  13977.         addq	(%rbp), %r8
    13978. 

  13978.         movq	%r9, %r13
    13979. 

  13979.         adcq	8(%rbp), %r9
    13980. 

  13980.         movq	%r10, %r14
    13981. 

  13981.         adcq	16(%rbp), %r10
    13982. 

  13982.         movq	%rdx, %r15
    13983. 

  13983.         adcq	24(%rbp), %rdx
    13984. 

  13984.         movq	$-19, %rcx
    13985. 

  13985.         movq	%rdx, %r11
    13986. 

  13986.         movq	$0x7fffffffffffffff, %rax
    13987. 

  13987.         sarq	$63, %rdx
    13988. 

  13988.         #   Mask the modulus
    13989. 

  13989.         andq	%rdx, %rcx
    13990. 

  13990.         andq	%rdx, %rax
    13991. 

  13991.         #   Sub modulus (if overflow)
    13992. 

  13992.         subq	%rcx, %r8
    13993. 

  13993.         sbbq	%rdx, %r9
    13994. 

  13994.         sbbq	%rdx, %r10
    13995. 

  13995.         sbbq	%rax, %r11
    13996. 

  13996.         # Sub
    13997. 

  13997.         subq	(%rbp), %r12
    13998. 

  13998.         movq	$0x00, %rdx
    13999. 

  13999.         sbbq	8(%rbp), %r13
    14000. 

  14000.         movq	$-19, %rcx
    14001. 

  14001.         sbbq	16(%rbp), %r14
    14002. 

  14002.         movq	$0x7fffffffffffffff, %rax
    14003. 

  14003.         sbbq	24(%rbp), %r15
    14004. 

  14004.         sbbq	$0x00, %rdx
    14005. 

  14005.         #   Mask the modulus
    14006. 

  14006.         andq	%rdx, %rcx
    14007. 

  14007.         andq	%rdx, %rax
    14008. 

  14008.         #   Add modulus (if underflow)
    14009. 

  14009.         addq	%rcx, %r12
    14010. 

  14010.         adcq	%rdx, %r13
    14011. 

  14011.         adcq	%rdx, %r14
    14012. 

  14012.         adcq	%rax, %r15
    14013. 

  14013.         movq	%r8, (%rdi)
    14014. 

  14014.         movq	%r9, 8(%rdi)
    14015. 

  14015.         movq	%r10, 16(%rdi)
    14016. 

  14016.         movq	%r11, 24(%rdi)
    14017. 

  14017.         movq	%r12, (%rsi)
    14018. 

  14018.         movq	%r13, 8(%rsi)
    14019. 

  14019.         movq	%r14, 16(%rsi)
    14020. 

  14020.         movq	%r15, 24(%rsi)
    14021. 

  14021.         movq	16(%rsp), %rbx
    14022. 

  14022.         movq	128(%rsp), %rbp
    14023. 

  14023.         # Multiply
    14024. 

  14024.         # A[0] * B[0]
    14025. 

  14025.         movq	(%rbp), %rdx
    14026. 

  14026.         mulxq	(%rdi), %r8, %r9
    14027. 

  14027.         # A[2] * B[0]
    14028. 

  14028.         mulxq	16(%rdi), %r10, %r11
    14029. 

  14029.         # A[1] * B[0]
    14030. 

  14030.         mulxq	8(%rdi), %rcx, %rax
    14031. 

  14031.         xorq	%r15, %r15
    14032. 

  14032.         adcxq	%rcx, %r9
    14033. 

  14033.         # A[1] * B[3]
    14034. 

  14034.         movq	24(%rbp), %rdx
    14035. 

  14035.         mulxq	8(%rdi), %r12, %r13
    14036. 

  14036.         adcxq	%rax, %r10
    14037. 

  14037.         # A[0] * B[1]
    14038. 

  14038.         movq	8(%rbp), %rdx
    14039. 

  14039.         mulxq	(%rdi), %rcx, %rax
    14040. 

  14040.         adoxq	%rcx, %r9
    14041. 

  14041.         # A[2] * B[1]
    14042. 

  14042.         mulxq	16(%rdi), %rcx, %r14
    14043. 

  14043.         adoxq	%rax, %r10
    14044. 

  14044.         adcxq	%rcx, %r11
    14045. 

  14045.         # A[1] * B[2]
    14046. 

  14046.         movq	16(%rbp), %rdx
    14047. 

  14047.         mulxq	8(%rdi), %rcx, %rax
    14048. 

  14048.         adcxq	%r14, %r12
    14049. 

  14049.         adoxq	%rcx, %r11
    14050. 

  14050.         adcxq	%r15, %r13
    14051. 

  14051.         adoxq	%rax, %r12
    14052. 

  14052.         # A[0] * B[2]
    14053. 

  14053.         mulxq	(%rdi), %rcx, %rax
    14054. 

  14054.         adoxq	%r15, %r13
    14055. 

  14055.         xorq	%r14, %r14
    14056. 

  14056.         adcxq	%rcx, %r10
    14057. 

  14057.         # A[1] * B[1]
    14058. 

  14058.         movq	8(%rbp), %rdx
    14059. 

  14059.         mulxq	8(%rdi), %rdx, %rcx
    14060. 

  14060.         adcxq	%rax, %r11
    14061. 

  14061.         adoxq	%rdx, %r10
    14062. 

  14062.         # A[3] * B[1]
    14063. 

  14063.         movq	8(%rbp), %rdx
    14064. 

  14064.         adoxq	%rcx, %r11
    14065. 

  14065.         mulxq	24(%rdi), %rcx, %rax
    14066. 

  14066.         adcxq	%rcx, %r12
    14067. 

  14067.         # A[2] * B[2]
    14068. 

  14068.         movq	16(%rbp), %rdx
    14069. 

  14069.         mulxq	16(%rdi), %rdx, %rcx
    14070. 

  14070.         adcxq	%rax, %r13
    14071. 

  14071.         adoxq	%rdx, %r12
    14072. 

  14072.         # A[3] * B[3]
    14073. 

  14073.         movq	24(%rbp), %rdx
    14074. 

  14074.         adoxq	%rcx, %r13
    14075. 

  14075.         mulxq	24(%rdi), %rcx, %rax
    14076. 

  14076.         adoxq	%r15, %r14
    14077. 

  14077.         adcxq	%rcx, %r14
    14078. 

  14078.         # A[0] * B[3]
    14079. 

  14079.         mulxq	(%rdi), %rdx, %rcx
    14080. 

  14080.         adcxq	%rax, %r15
    14081. 

  14081.         xorq	%rax, %rax
    14082. 

  14082.         adcxq	%rdx, %r11
    14083. 

  14083.         # A[3] * B[0]
    14084. 

  14084.         movq	(%rbp), %rdx
    14085. 

  14085.         adcxq	%rcx, %r12
    14086. 

  14086.         mulxq	24(%rdi), %rdx, %rcx
    14087. 

  14087.         adoxq	%rdx, %r11
    14088. 

  14088.         adoxq	%rcx, %r12
    14089. 

  14089.         # A[2] * B[3]
    14090. 

  14090.         movq	24(%rbp), %rdx
    14091. 

  14091.         mulxq	16(%rdi), %rdx, %rcx
    14092. 

  14092.         adcxq	%rdx, %r13
    14093. 

  14093.         # A[3] * B[2]
    14094. 

  14094.         movq	16(%rbp), %rdx
    14095. 

  14095.         adcxq	%rcx, %r14
    14096. 

  14096.         mulxq	24(%rdi), %rcx, %rdx
    14097. 

  14097.         adcxq	%rax, %r15
    14098. 

  14098.         adoxq	%rcx, %r13
    14099. 

  14099.         adoxq	%rdx, %r14
    14100. 

  14100.         adoxq	%rax, %r15
    14101. 

  14101.         # Reduce
    14102. 

  14102.         movq	$0x7fffffffffffffff, %rax
    14103. 

  14103.         #  Move top half into t4-t7 and remove top bit from t3
    14104. 

  14104.         shldq	$0x01, %r14, %r15
    14105. 

  14105.         shldq	$0x01, %r13, %r14
    14106. 

  14106.         shldq	$0x01, %r12, %r13
    14107. 

  14107.         shldq	$0x01, %r11, %r12
    14108. 

  14108.         andq	%rax, %r11
    14109. 

  14109.         #  Multiply top half by 19
    14110. 

  14110.         movq	$19, %rdx
    14111. 

  14111.         xorq	%rax, %rax
    14112. 

  14112.         mulxq	%r12, %rcx, %r12
    14113. 

  14113.         adcxq	%rcx, %r8
    14114. 

  14114.         adoxq	%r12, %r9
    14115. 

  14115.         mulxq	%r13, %rcx, %r13
    14116. 

  14116.         adcxq	%rcx, %r9
    14117. 

  14117.         adoxq	%r13, %r10
    14118. 

  14118.         mulxq	%r14, %rcx, %r14
    14119. 

  14119.         adcxq	%rcx, %r10
    14120. 

  14120.         adoxq	%r14, %r11
    14121. 

  14121.         mulxq	%r15, %r15, %rdx
    14122. 

  14122.         adcxq	%r15, %r11
    14123. 

  14123.         adoxq	%rax, %rdx
    14124. 

  14124.         adcxq	%rax, %rdx
    14125. 

  14125.         #  Overflow
    14126. 

  14126.         shldq	$0x01, %r11, %rdx
    14127. 

  14127.         movq	$0x7fffffffffffffff, %rax
    14128. 

  14128.         imulq	$19, %rdx, %rcx
    14129. 

  14129.         andq	%rax, %r11
    14130. 

  14130.         addq	%rcx, %r8
    14131. 

  14131.         adcq	$0x00, %r9
    14132. 

  14132.         adcq	$0x00, %r10
    14133. 

  14133.         adcq	$0x00, %r11
    14134. 

  14134.         # Reduce if top bit set
    14135. 

  14135.         movq	%r11, %rdx
    14136. 

  14136.         sarq	$63, %rdx
    14137. 

  14137.         andq	$19, %rdx
    14138. 

  14138.         andq	%rax, %r11
    14139. 

  14139.         addq	%rdx, %r8
    14140. 

  14140.         adcq	$0x00, %r9
    14141. 

  14141.         adcq	$0x00, %r10
    14142. 

  14142.         adcq	$0x00, %r11
    14143. 

  14143.         # Store
    14144. 

  14144.         movq	%r8, (%rbx)
    14145. 

  14145.         movq	%r9, 8(%rbx)
    14146. 

  14146.         movq	%r10, 16(%rbx)
    14147. 

  14147.         movq	%r11, 24(%rbx)
    14148. 

  14148.         movq	136(%rsp), %rdi
    14149. 

  14149.         # Multiply
    14150. 

  14150.         # A[0] * B[0]
    14151. 

  14151.         movq	(%rdi), %rdx
    14152. 

  14152.         mulxq	(%rsi), %r8, %r9
    14153. 

  14153.         # A[2] * B[0]
    14154. 

  14154.         mulxq	16(%rsi), %r10, %r11
    14155. 

  14155.         # A[1] * B[0]
    14156. 

  14156.         mulxq	8(%rsi), %rcx, %rax
    14157. 

  14157.         xorq	%r15, %r15
    14158. 

  14158.         adcxq	%rcx, %r9
    14159. 

  14159.         # A[1] * B[3]
    14160. 

  14160.         movq	24(%rdi), %rdx
    14161. 

  14161.         mulxq	8(%rsi), %r12, %r13
    14162. 

  14162.         adcxq	%rax, %r10
    14163. 

  14163.         # A[0] * B[1]
    14164. 

  14164.         movq	8(%rdi), %rdx
    14165. 

  14165.         mulxq	(%rsi), %rcx, %rax
    14166. 

  14166.         adoxq	%rcx, %r9
    14167. 

  14167.         # A[2] * B[1]
    14168. 

  14168.         mulxq	16(%rsi), %rcx, %r14
    14169. 

  14169.         adoxq	%rax, %r10
    14170. 

  14170.         adcxq	%rcx, %r11
    14171. 

  14171.         # A[1] * B[2]
    14172. 

  14172.         movq	16(%rdi), %rdx
    14173. 

  14173.         mulxq	8(%rsi), %rcx, %rax
    14174. 

  14174.         adcxq	%r14, %r12
    14175. 

  14175.         adoxq	%rcx, %r11
    14176. 

  14176.         adcxq	%r15, %r13
    14177. 

  14177.         adoxq	%rax, %r12
    14178. 

  14178.         # A[0] * B[2]
    14179. 

  14179.         mulxq	(%rsi), %rcx, %rax
    14180. 

  14180.         adoxq	%r15, %r13
    14181. 

  14181.         xorq	%r14, %r14
    14182. 

  14182.         adcxq	%rcx, %r10
    14183. 

  14183.         # A[1] * B[1]
    14184. 

  14184.         movq	8(%rdi), %rdx
    14185. 

  14185.         mulxq	8(%rsi), %rdx, %rcx
    14186. 

  14186.         adcxq	%rax, %r11
    14187. 

  14187.         adoxq	%rdx, %r10
    14188. 

  14188.         # A[3] * B[1]
    14189. 

  14189.         movq	8(%rdi), %rdx
    14190. 

  14190.         adoxq	%rcx, %r11
    14191. 

  14191.         mulxq	24(%rsi), %rcx, %rax
    14192. 

  14192.         adcxq	%rcx, %r12
    14193. 

  14193.         # A[2] * B[2]
    14194. 

  14194.         movq	16(%rdi), %rdx
    14195. 

  14195.         mulxq	16(%rsi), %rdx, %rcx
    14196. 

  14196.         adcxq	%rax, %r13
    14197. 

  14197.         adoxq	%rdx, %r12
    14198. 

  14198.         # A[3] * B[3]
    14199. 

  14199.         movq	24(%rdi), %rdx
    14200. 

  14200.         adoxq	%rcx, %r13
    14201. 

  14201.         mulxq	24(%rsi), %rcx, %rax
    14202. 

  14202.         adoxq	%r15, %r14
    14203. 

  14203.         adcxq	%rcx, %r14
    14204. 

  14204.         # A[0] * B[3]
    14205. 

  14205.         mulxq	(%rsi), %rdx, %rcx
    14206. 

  14206.         adcxq	%rax, %r15
    14207. 

  14207.         xorq	%rax, %rax
    14208. 

  14208.         adcxq	%rdx, %r11
    14209. 

  14209.         # A[3] * B[0]
    14210. 

  14210.         movq	(%rdi), %rdx
    14211. 

  14211.         adcxq	%rcx, %r12
    14212. 

  14212.         mulxq	24(%rsi), %rdx, %rcx
    14213. 

  14213.         adoxq	%rdx, %r11
    14214. 

  14214.         adoxq	%rcx, %r12
    14215. 

  14215.         # A[2] * B[3]
    14216. 

  14216.         movq	24(%rdi), %rdx
    14217. 

  14217.         mulxq	16(%rsi), %rdx, %rcx
    14218. 

  14218.         adcxq	%rdx, %r13
    14219. 

  14219.         # A[3] * B[2]
    14220. 

  14220.         movq	16(%rdi), %rdx
    14221. 

  14221.         adcxq	%rcx, %r14
    14222. 

  14222.         mulxq	24(%rsi), %rcx, %rdx
    14223. 

  14223.         adcxq	%rax, %r15
    14224. 

  14224.         adoxq	%rcx, %r13
    14225. 

  14225.         adoxq	%rdx, %r14
    14226. 

  14226.         adoxq	%rax, %r15
    14227. 

  14227.         # Reduce
    14228. 

  14228.         movq	$0x7fffffffffffffff, %rax
    14229. 

  14229.         #  Move top half into t4-t7 and remove top bit from t3
    14230. 

  14230.         shldq	$0x01, %r14, %r15
    14231. 

  14231.         shldq	$0x01, %r13, %r14
    14232. 

  14232.         shldq	$0x01, %r12, %r13
    14233. 

  14233.         shldq	$0x01, %r11, %r12
    14234. 

  14234.         andq	%rax, %r11
    14235. 

  14235.         #  Multiply top half by 19
    14236. 

  14236.         movq	$19, %rdx
    14237. 

  14237.         xorq	%rax, %rax
    14238. 

  14238.         mulxq	%r12, %rcx, %r12
    14239. 

  14239.         adcxq	%rcx, %r8
    14240. 

  14240.         adoxq	%r12, %r9
    14241. 

  14241.         mulxq	%r13, %rcx, %r13
    14242. 

  14242.         adcxq	%rcx, %r9
    14243. 

  14243.         adoxq	%r13, %r10
    14244. 

  14244.         mulxq	%r14, %rcx, %r14
    14245. 

  14245.         adcxq	%rcx, %r10
    14246. 

  14246.         adoxq	%r14, %r11
    14247. 

  14247.         mulxq	%r15, %r15, %rdx
    14248. 

  14248.         adcxq	%r15, %r11
    14249. 

  14249.         adoxq	%rax, %rdx
    14250. 

  14250.         adcxq	%rax, %rdx
    14251. 

  14251.         #  Overflow
    14252. 

  14252.         shldq	$0x01, %r11, %rdx
    14253. 

  14253.         movq	$0x7fffffffffffffff, %rax
    14254. 

  14254.         imulq	$19, %rdx, %rcx
    14255. 

  14255.         andq	%rax, %r11
    14256. 

  14256.         addq	%rcx, %r8
    14257. 

  14257.         adcq	$0x00, %r9
    14258. 

  14258.         adcq	$0x00, %r10
    14259. 

  14259.         adcq	$0x00, %r11
    14260. 

  14260.         # Reduce if top bit set
    14261. 

  14261.         movq	%r11, %rdx
    14262. 

  14262.         sarq	$63, %rdx
    14263. 

  14263.         andq	$19, %rdx
    14264. 

  14264.         andq	%rax, %r11
    14265. 

  14265.         addq	%rdx, %r8
    14266. 

  14266.         adcq	$0x00, %r9
    14267. 

  14267.         adcq	$0x00, %r10
    14268. 

  14268.         adcq	$0x00, %r11
    14269. 

  14269.         # Store
    14270. 

  14270.         movq	%r8, (%rsi)
    14271. 

  14271.         movq	%r9, 8(%rsi)
    14272. 

  14272.         movq	%r10, 16(%rsi)
    14273. 

  14273.         movq	%r11, 24(%rsi)
    14274. 

  14274.         movq	24(%rsp), %rdi
    14275. 

  14275.         movq	120(%rsp), %rsi
    14276. 

  14276.         movq	112(%rsp), %rbp
    14277. 

  14277.         # Multiply
    14278. 

  14278.         # A[0] * B[0]
    14279. 

  14279.         movq	(%rbp), %rdx
    14280. 

  14280.         mulxq	(%rsi), %r8, %r9
    14281. 

  14281.         # A[2] * B[0]
    14282. 

  14282.         mulxq	16(%rsi), %r10, %r11
    14283. 

  14283.         # A[1] * B[0]
    14284. 

  14284.         mulxq	8(%rsi), %rcx, %rax
    14285. 

  14285.         xorq	%r15, %r15
    14286. 

  14286.         adcxq	%rcx, %r9
    14287. 

  14287.         # A[1] * B[3]
    14288. 

  14288.         movq	24(%rbp), %rdx
    14289. 

  14289.         mulxq	8(%rsi), %r12, %r13
    14290. 

  14290.         adcxq	%rax, %r10
    14291. 

  14291.         # A[0] * B[1]
    14292. 

  14292.         movq	8(%rbp), %rdx
    14293. 

  14293.         mulxq	(%rsi), %rcx, %rax
    14294. 

  14294.         adoxq	%rcx, %r9
    14295. 

  14295.         # A[2] * B[1]
    14296. 

  14296.         mulxq	16(%rsi), %rcx, %r14
    14297. 

  14297.         adoxq	%rax, %r10
    14298. 

  14298.         adcxq	%rcx, %r11
    14299. 

  14299.         # A[1] * B[2]
    14300. 

  14300.         movq	16(%rbp), %rdx
    14301. 

  14301.         mulxq	8(%rsi), %rcx, %rax
    14302. 

  14302.         adcxq	%r14, %r12
    14303. 

  14303.         adoxq	%rcx, %r11
    14304. 

  14304.         adcxq	%r15, %r13
    14305. 

  14305.         adoxq	%rax, %r12
    14306. 

  14306.         # A[0] * B[2]
    14307. 

  14307.         mulxq	(%rsi), %rcx, %rax
    14308. 

  14308.         adoxq	%r15, %r13
    14309. 

  14309.         xorq	%r14, %r14
    14310. 

  14310.         adcxq	%rcx, %r10
    14311. 

  14311.         # A[1] * B[1]
    14312. 

  14312.         movq	8(%rbp), %rdx
    14313. 

  14313.         mulxq	8(%rsi), %rdx, %rcx
    14314. 

  14314.         adcxq	%rax, %r11
    14315. 

  14315.         adoxq	%rdx, %r10
    14316. 

  14316.         # A[3] * B[1]
    14317. 

  14317.         movq	8(%rbp), %rdx
    14318. 

  14318.         adoxq	%rcx, %r11
    14319. 

  14319.         mulxq	24(%rsi), %rcx, %rax
    14320. 

  14320.         adcxq	%rcx, %r12
    14321. 

  14321.         # A[2] * B[2]
    14322. 

  14322.         movq	16(%rbp), %rdx
    14323. 

  14323.         mulxq	16(%rsi), %rdx, %rcx
    14324. 

  14324.         adcxq	%rax, %r13
    14325. 

  14325.         adoxq	%rdx, %r12
    14326. 

  14326.         # A[3] * B[3]
    14327. 

  14327.         movq	24(%rbp), %rdx
    14328. 

  14328.         adoxq	%rcx, %r13
    14329. 

  14329.         mulxq	24(%rsi), %rcx, %rax
    14330. 

  14330.         adoxq	%r15, %r14
    14331. 

  14331.         adcxq	%rcx, %r14
    14332. 

  14332.         # A[0] * B[3]
    14333. 

  14333.         mulxq	(%rsi), %rdx, %rcx
    14334. 

  14334.         adcxq	%rax, %r15
    14335. 

  14335.         xorq	%rax, %rax
    14336. 

  14336.         adcxq	%rdx, %r11
    14337. 

  14337.         # A[3] * B[0]
    14338. 

  14338.         movq	(%rbp), %rdx
    14339. 

  14339.         adcxq	%rcx, %r12
    14340. 

  14340.         mulxq	24(%rsi), %rdx, %rcx
    14341. 

  14341.         adoxq	%rdx, %r11
    14342. 

  14342.         adoxq	%rcx, %r12
    14343. 

  14343.         # A[2] * B[3]
    14344. 

  14344.         movq	24(%rbp), %rdx
    14345. 

  14345.         mulxq	16(%rsi), %rdx, %rcx
    14346. 

  14346.         adcxq	%rdx, %r13
    14347. 

  14347.         # A[3] * B[2]
    14348. 

  14348.         movq	16(%rbp), %rdx
    14349. 

  14349.         adcxq	%rcx, %r14
    14350. 

  14350.         mulxq	24(%rsi), %rcx, %rdx
    14351. 

  14351.         adcxq	%rax, %r15
    14352. 

  14352.         adoxq	%rcx, %r13
    14353. 

  14353.         adoxq	%rdx, %r14
    14354. 

  14354.         adoxq	%rax, %r15
    14355. 

  14355.         # Reduce
    14356. 

  14356.         movq	$0x7fffffffffffffff, %rax
    14357. 

  14357.         #  Move top half into t4-t7 and remove top bit from t3
    14358. 

  14358.         shldq	$0x01, %r14, %r15
    14359. 

  14359.         shldq	$0x01, %r13, %r14
    14360. 

  14360.         shldq	$0x01, %r12, %r13
    14361. 

  14361.         shldq	$0x01, %r11, %r12
    14362. 

  14362.         andq	%rax, %r11
    14363. 

  14363.         #  Multiply top half by 19
    14364. 

  14364.         movq	$19, %rdx
    14365. 

  14365.         xorq	%rax, %rax
    14366. 

  14366.         mulxq	%r12, %rcx, %r12
    14367. 

  14367.         adcxq	%rcx, %r8
    14368. 

  14368.         adoxq	%r12, %r9
    14369. 

  14369.         mulxq	%r13, %rcx, %r13
    14370. 

  14370.         adcxq	%rcx, %r9
    14371. 

  14371.         adoxq	%r13, %r10
    14372. 

  14372.         mulxq	%r14, %rcx, %r14
    14373. 

  14373.         adcxq	%rcx, %r10
    14374. 

  14374.         adoxq	%r14, %r11
    14375. 

  14375.         mulxq	%r15, %r15, %rdx
    14376. 

  14376.         adcxq	%r15, %r11
    14377. 

  14377.         adoxq	%rax, %rdx
    14378. 

  14378.         adcxq	%rax, %rdx
    14379. 

  14379.         #  Overflow
    14380. 

  14380.         shldq	$0x01, %r11, %rdx
    14381. 

  14381.         movq	$0x7fffffffffffffff, %rax
    14382. 

  14382.         imulq	$19, %rdx, %rcx
    14383. 

  14383.         andq	%rax, %r11
    14384. 

  14384.         addq	%rcx, %r8
    14385. 

  14385.         adcq	$0x00, %r9
    14386. 

  14386.         adcq	$0x00, %r10
    14387. 

  14387.         adcq	$0x00, %r11
    14388. 

  14388.         # Reduce if top bit set
    14389. 

  14389.         movq	%r11, %rdx
    14390. 

  14390.         sarq	$63, %rdx
    14391. 

  14391.         andq	$19, %rdx
    14392. 

  14392.         andq	%rax, %r11
    14393. 

  14393.         addq	%rdx, %r8
    14394. 

  14394.         adcq	$0x00, %r9
    14395. 

  14395.         adcq	$0x00, %r10
    14396. 

  14396.         adcq	$0x00, %r11
    14397. 

  14397.         # Store
    14398. 

  14398.         movq	%r8, (%rdi)
    14399. 

  14399.         movq	%r9, 8(%rdi)
    14400. 

  14400.         movq	%r10, 16(%rdi)
    14401. 

  14401.         movq	%r11, 24(%rdi)
    14402. 

  14402.         movq	8(%rsp), %rdi
    14403. 

  14403.         movq	(%rsp), %rsi
    14404. 

  14404.         # Add
    14405. 

  14405.         movq	(%rbx), %r8
    14406. 

  14406.         movq	8(%rbx), %r9
    14407. 

  14407.         movq	16(%rbx), %r10
    14408. 

  14408.         movq	24(%rbx), %rdx
    14409. 

  14409.         movq	%r8, %r12
    14410. 

  14410.         addq	(%rdi), %r8
    14411. 

  14411.         movq	%r9, %r13
    14412. 

  14412.         adcq	8(%rdi), %r9
    14413. 

  14413.         movq	%r10, %r14
    14414. 

  14414.         adcq	16(%rdi), %r10
    14415. 

  14415.         movq	%rdx, %r15
    14416. 

  14416.         adcq	24(%rdi), %rdx
    14417. 

  14417.         movq	$-19, %rcx
    14418. 

  14418.         movq	%rdx, %r11
    14419. 

  14419.         movq	$0x7fffffffffffffff, %rax
    14420. 

  14420.         sarq	$63, %rdx
    14421. 

  14421.         #   Mask the modulus
    14422. 

  14422.         andq	%rdx, %rcx
    14423. 

  14423.         andq	%rdx, %rax
    14424. 

  14424.         #   Sub modulus (if overflow)
    14425. 

  14425.         subq	%rcx, %r8
    14426. 

  14426.         sbbq	%rdx, %r9
    14427. 

  14427.         sbbq	%rdx, %r10
    14428. 

  14428.         sbbq	%rax, %r11
    14429. 

  14429.         # Sub
    14430. 

  14430.         subq	(%rdi), %r12
    14431. 

  14431.         movq	$0x00, %rdx
    14432. 

  14432.         sbbq	8(%rdi), %r13
    14433. 

  14433.         movq	$-19, %rcx
    14434. 

  14434.         sbbq	16(%rdi), %r14
    14435. 

  14435.         movq	$0x7fffffffffffffff, %rax
    14436. 

  14436.         sbbq	24(%rdi), %r15
    14437. 

  14437.         sbbq	$0x00, %rdx
    14438. 

  14438.         #   Mask the modulus
    14439. 

  14439.         andq	%rdx, %rcx
    14440. 

  14440.         andq	%rdx, %rax
    14441. 

  14441.         #   Add modulus (if underflow)
    14442. 

  14442.         addq	%rcx, %r12
    14443. 

  14443.         adcq	%rdx, %r13
    14444. 

  14444.         adcq	%rdx, %r14
    14445. 

  14445.         adcq	%rax, %r15
    14446. 

  14446.         movq	%r8, (%rdi)
    14447. 

  14447.         movq	%r9, 8(%rdi)
    14448. 

  14448.         movq	%r10, 16(%rdi)
    14449. 

  14449.         movq	%r11, 24(%rdi)
    14450. 

  14450.         movq	%r12, (%rsi)
    14451. 

  14451.         movq	%r13, 8(%rsi)
    14452. 

  14452.         movq	%r14, 16(%rsi)
    14453. 

  14453.         movq	%r15, 24(%rsi)
    14454. 

  14454.         movq	104(%rsp), %rdi
    14455. 

  14455.         # Double
    14456. 

  14456.         movq	(%rdi), %r8
    14457. 

  14457.         movq	8(%rdi), %r9
    14458. 

  14458.         addq	%r8, %r8
    14459. 

  14459.         movq	16(%rdi), %r10
    14460. 

  14460.         adcq	%r9, %r9
    14461. 

  14461.         movq	24(%rdi), %rdx
    14462. 

  14462.         adcq	%r10, %r10
    14463. 

  14463.         movq	$-19, %rcx
    14464. 

  14464.         adcq	%rdx, %rdx
    14465. 

  14465.         movq	$0x7fffffffffffffff, %rax
    14466. 

  14466.         movq	%rdx, %r11
    14467. 

  14467.         sarq	$63, %rdx
    14468. 

  14468.         #   Mask the modulus
    14469. 

  14469.         andq	%rdx, %rcx
    14470. 

  14470.         andq	%rdx, %rax
    14471. 

  14471.         #   Sub modulus (if overflow)
    14472. 

  14472.         subq	%rcx, %r8
    14473. 

  14473.         sbbq	%rdx, %r9
    14474. 

  14474.         sbbq	%rdx, %r10
    14475. 

  14475.         sbbq	%rax, %r11
    14476. 

  14476.         movq	%r8, (%rbx)
    14477. 

  14477.         movq	%r9, 8(%rbx)
    14478. 

  14478.         movq	%r10, 16(%rbx)
    14479. 

  14479.         movq	%r11, 24(%rbx)
    14480. 

  14480.         movq	24(%rsp), %rdi
    14481. 

  14481.         # Add
    14482. 

  14482.         movq	(%rbx), %r8
    14483. 

  14483.         movq	8(%rbx), %r9
    14484. 

  14484.         movq	16(%rbx), %r10
    14485. 

  14485.         movq	24(%rbx), %rdx
    14486. 

  14486.         movq	%r8, %r12
    14487. 

  14487.         addq	(%rdi), %r8
    14488. 

  14488.         movq	%r9, %r13
    14489. 

  14489.         adcq	8(%rdi), %r9
    14490. 

  14490.         movq	%r10, %r14
    14491. 

  14491.         adcq	16(%rdi), %r10
    14492. 

  14492.         movq	%rdx, %r15
    14493. 

  14493.         adcq	24(%rdi), %rdx
    14494. 

  14494.         movq	$-19, %rcx
    14495. 

  14495.         movq	%rdx, %r11
    14496. 

  14496.         movq	$0x7fffffffffffffff, %rax
    14497. 

  14497.         sarq	$63, %rdx
    14498. 

  14498.         #   Mask the modulus
    14499. 

  14499.         andq	%rdx, %rcx
    14500. 

  14500.         andq	%rdx, %rax
    14501. 

  14501.         #   Sub modulus (if overflow)
    14502. 

  14502.         subq	%rcx, %r8
    14503. 

  14503.         sbbq	%rdx, %r9
    14504. 

  14504.         sbbq	%rdx, %r10
    14505. 

  14505.         sbbq	%rax, %r11
    14506. 

  14506.         # Sub
    14507. 

  14507.         subq	(%rdi), %r12
    14508. 

  14508.         movq	$0x00, %rdx
    14509. 

  14509.         sbbq	8(%rdi), %r13
    14510. 

  14510.         movq	$-19, %rcx
    14511. 

  14511.         sbbq	16(%rdi), %r14
    14512. 

  14512.         movq	$0x7fffffffffffffff, %rax
    14513. 

  14513.         sbbq	24(%rdi), %r15
    14514. 

  14514.         sbbq	$0x00, %rdx
    14515. 

  14515.         #   Mask the modulus
    14516. 

  14516.         andq	%rdx, %rcx
    14517. 

  14517.         andq	%rdx, %rax
    14518. 

  14518.         #   Add modulus (if underflow)
    14519. 

  14519.         addq	%rcx, %r12
    14520. 

  14520.         adcq	%rdx, %r13
    14521. 

  14521.         adcq	%rdx, %r14
    14522. 

  14522.         adcq	%rax, %r15
    14523. 

  14523.         movq	%r8, (%rbx)
    14524. 

  14524.         movq	%r9, 8(%rbx)
    14525. 

  14525.         movq	%r10, 16(%rbx)
    14526. 

  14526.         movq	%r11, 24(%rbx)
    14527. 

  14527.         movq	%r12, (%rdi)
    14528. 

  14528.         movq	%r13, 8(%rdi)
    14529. 

  14529.         movq	%r14, 16(%rdi)
    14530. 

  14530.         movq	%r15, 24(%rdi)
    14531. 

  14531.         addq	$48, %rsp
    14532. 

  14532.         popq	%r15
    14533. 

  14533.         popq	%r14
    14534. 

  14534.         popq	%r13
    14535. 

  14535.         popq	%r12
    14536. 

  14536.         popq	%rbx
    14537. 

  14537.         popq	%rbp
    14538. 

  14538.         repz retq
    14539. 

  14539. #ifndef __APPLE__
    14540. 

  14540. .size	fe_ge_madd_avx2,.-fe_ge_madd_avx2
    14541. 

  14541. #endif /* __APPLE__ */
    14542. 

  14542. #ifndef __APPLE__
    14543. 

  14543. .text
    14544. 

  14544. .globl	fe_ge_msub_avx2
    14545. 

  14545. .type	fe_ge_msub_avx2,@function
    14546. 

  14546. .align	16
    14547. 

  14547. fe_ge_msub_avx2:
    14548. 

  14548. #else
    14549. 

  14549. .section	__TEXT,__text
    14550. 

  14550. .globl	_fe_ge_msub_avx2
    14551. 

  14551. .p2align	4
    14552. 

  14552. _fe_ge_msub_avx2:
    14553. 

  14553. #endif /* __APPLE__ */
    14554. 

  14554.         pushq	%rbp
    14555. 

  14555.         pushq	%rbx
    14556. 

  14556.         pushq	%r12
    14557. 

  14557.         pushq	%r13
    14558. 

  14558.         pushq	%r14
    14559. 

  14559.         pushq	%r15
    14560. 

  14560.         subq	$48, %rsp
    14561. 

  14561.         movq	%rdi, (%rsp)
    14562. 

  14562.         movq	%rsi, 8(%rsp)
    14563. 

  14563.         movq	%rdx, 16(%rsp)
    14564. 

  14564.         movq	%rcx, 24(%rsp)
    14565. 

  14565.         movq	%r8, 32(%rsp)
    14566. 

  14566.         movq	%r9, 40(%rsp)
    14567. 

  14567.         movq	8(%rsp), %rsi
    14568. 

  14568.         movq	40(%rsp), %rbx
    14569. 

  14569.         movq	32(%rsp), %rbp
    14570. 

  14570.         # Add
    14571. 

  14571.         movq	(%rbx), %r8
    14572. 

  14572.         movq	8(%rbx), %r9
    14573. 

  14573.         movq	16(%rbx), %r10
    14574. 

  14574.         movq	24(%rbx), %rdx
    14575. 

  14575.         movq	%r8, %r12
    14576. 

  14576.         addq	(%rbp), %r8
    14577. 

  14577.         movq	%r9, %r13
    14578. 

  14578.         adcq	8(%rbp), %r9
    14579. 

  14579.         movq	%r10, %r14
    14580. 

  14580.         adcq	16(%rbp), %r10
    14581. 

  14581.         movq	%rdx, %r15
    14582. 

  14582.         adcq	24(%rbp), %rdx
    14583. 

  14583.         movq	$-19, %rcx
    14584. 

  14584.         movq	%rdx, %r11
    14585. 

  14585.         movq	$0x7fffffffffffffff, %rax
    14586. 

  14586.         sarq	$63, %rdx
    14587. 

  14587.         #   Mask the modulus
    14588. 

  14588.         andq	%rdx, %rcx
    14589. 

  14589.         andq	%rdx, %rax
    14590. 

  14590.         #   Sub modulus (if overflow)
    14591. 

  14591.         subq	%rcx, %r8
    14592. 

  14592.         sbbq	%rdx, %r9
    14593. 

  14593.         sbbq	%rdx, %r10
    14594. 

  14594.         sbbq	%rax, %r11
    14595. 

  14595.         # Sub
    14596. 

  14596.         subq	(%rbp), %r12
    14597. 

  14597.         movq	$0x00, %rdx
    14598. 

  14598.         sbbq	8(%rbp), %r13
    14599. 

  14599.         movq	$-19, %rcx
    14600. 

  14600.         sbbq	16(%rbp), %r14
    14601. 

  14601.         movq	$0x7fffffffffffffff, %rax
    14602. 

  14602.         sbbq	24(%rbp), %r15
    14603. 

  14603.         sbbq	$0x00, %rdx
    14604. 

  14604.         #   Mask the modulus
    14605. 

  14605.         andq	%rdx, %rcx
    14606. 

  14606.         andq	%rdx, %rax
    14607. 

  14607.         #   Add modulus (if underflow)
    14608. 

  14608.         addq	%rcx, %r12
    14609. 

  14609.         adcq	%rdx, %r13
    14610. 

  14610.         adcq	%rdx, %r14
    14611. 

  14611.         adcq	%rax, %r15
    14612. 

  14612.         movq	%r8, (%rdi)
    14613. 

  14613.         movq	%r9, 8(%rdi)
    14614. 

  14614.         movq	%r10, 16(%rdi)
    14615. 

  14615.         movq	%r11, 24(%rdi)
    14616. 

  14616.         movq	%r12, (%rsi)
    14617. 

  14617.         movq	%r13, 8(%rsi)
    14618. 

  14618.         movq	%r14, 16(%rsi)
    14619. 

  14619.         movq	%r15, 24(%rsi)
    14620. 

  14620.         movq	16(%rsp), %rbx
    14621. 

  14621.         movq	136(%rsp), %rbp
    14622. 

  14622.         # Multiply
    14623. 

  14623.         # A[0] * B[0]
    14624. 

  14624.         movq	(%rbp), %rdx
    14625. 

  14625.         mulxq	(%rdi), %r8, %r9
    14626. 

  14626.         # A[2] * B[0]
    14627. 

  14627.         mulxq	16(%rdi), %r10, %r11
    14628. 

  14628.         # A[1] * B[0]
    14629. 

  14629.         mulxq	8(%rdi), %rcx, %rax
    14630. 

  14630.         xorq	%r15, %r15
    14631. 

  14631.         adcxq	%rcx, %r9
    14632. 

  14632.         # A[1] * B[3]
    14633. 

  14633.         movq	24(%rbp), %rdx
    14634. 

  14634.         mulxq	8(%rdi), %r12, %r13
    14635. 

  14635.         adcxq	%rax, %r10
    14636. 

  14636.         # A[0] * B[1]
    14637. 

  14637.         movq	8(%rbp), %rdx
    14638. 

  14638.         mulxq	(%rdi), %rcx, %rax
    14639. 

  14639.         adoxq	%rcx, %r9
    14640. 

  14640.         # A[2] * B[1]
    14641. 

  14641.         mulxq	16(%rdi), %rcx, %r14
    14642. 

  14642.         adoxq	%rax, %r10
    14643. 

  14643.         adcxq	%rcx, %r11
    14644. 

  14644.         # A[1] * B[2]
    14645. 

  14645.         movq	16(%rbp), %rdx
    14646. 

  14646.         mulxq	8(%rdi), %rcx, %rax
    14647. 

  14647.         adcxq	%r14, %r12
    14648. 

  14648.         adoxq	%rcx, %r11
    14649. 

  14649.         adcxq	%r15, %r13
    14650. 

  14650.         adoxq	%rax, %r12
    14651. 

  14651.         # A[0] * B[2]
    14652. 

  14652.         mulxq	(%rdi), %rcx, %rax
    14653. 

  14653.         adoxq	%r15, %r13
    14654. 

  14654.         xorq	%r14, %r14
    14655. 

  14655.         adcxq	%rcx, %r10
    14656. 

  14656.         # A[1] * B[1]
    14657. 

  14657.         movq	8(%rbp), %rdx
    14658. 

  14658.         mulxq	8(%rdi), %rdx, %rcx
    14659. 

  14659.         adcxq	%rax, %r11
    14660. 

  14660.         adoxq	%rdx, %r10
    14661. 

  14661.         # A[3] * B[1]
    14662. 

  14662.         movq	8(%rbp), %rdx
    14663. 

  14663.         adoxq	%rcx, %r11
    14664. 

  14664.         mulxq	24(%rdi), %rcx, %rax
    14665. 

  14665.         adcxq	%rcx, %r12
    14666. 

  14666.         # A[2] * B[2]
    14667. 

  14667.         movq	16(%rbp), %rdx
    14668. 

  14668.         mulxq	16(%rdi), %rdx, %rcx
    14669. 

  14669.         adcxq	%rax, %r13
    14670. 

  14670.         adoxq	%rdx, %r12
    14671. 

  14671.         # A[3] * B[3]
    14672. 

  14672.         movq	24(%rbp), %rdx
    14673. 

  14673.         adoxq	%rcx, %r13
    14674. 

  14674.         mulxq	24(%rdi), %rcx, %rax
    14675. 

  14675.         adoxq	%r15, %r14
    14676. 

  14676.         adcxq	%rcx, %r14
    14677. 

  14677.         # A[0] * B[3]
    14678. 

  14678.         mulxq	(%rdi), %rdx, %rcx
    14679. 

  14679.         adcxq	%rax, %r15
    14680. 

  14680.         xorq	%rax, %rax
    14681. 

  14681.         adcxq	%rdx, %r11
    14682. 

  14682.         # A[3] * B[0]
    14683. 

  14683.         movq	(%rbp), %rdx
    14684. 

  14684.         adcxq	%rcx, %r12
    14685. 

  14685.         mulxq	24(%rdi), %rdx, %rcx
    14686. 

  14686.         adoxq	%rdx, %r11
    14687. 

  14687.         adoxq	%rcx, %r12
    14688. 

  14688.         # A[2] * B[3]
    14689. 

  14689.         movq	24(%rbp), %rdx
    14690. 

  14690.         mulxq	16(%rdi), %rdx, %rcx
    14691. 

  14691.         adcxq	%rdx, %r13
    14692. 

  14692.         # A[3] * B[2]
    14693. 

  14693.         movq	16(%rbp), %rdx
    14694. 

  14694.         adcxq	%rcx, %r14
    14695. 

  14695.         mulxq	24(%rdi), %rcx, %rdx
    14696. 

  14696.         adcxq	%rax, %r15
    14697. 

  14697.         adoxq	%rcx, %r13
    14698. 

  14698.         adoxq	%rdx, %r14
    14699. 

  14699.         adoxq	%rax, %r15
    14700. 

  14700.         # Reduce
    14701. 

  14701.         movq	$0x7fffffffffffffff, %rax
    14702. 

  14702.         #  Move top half into t4-t7 and remove top bit from t3
    14703. 

  14703.         shldq	$0x01, %r14, %r15
    14704. 

  14704.         shldq	$0x01, %r13, %r14
    14705. 

  14705.         shldq	$0x01, %r12, %r13
    14706. 

  14706.         shldq	$0x01, %r11, %r12
    14707. 

  14707.         andq	%rax, %r11
    14708. 

  14708.         #  Multiply top half by 19
    14709. 

  14709.         movq	$19, %rdx
    14710. 

  14710.         xorq	%rax, %rax
    14711. 

  14711.         mulxq	%r12, %rcx, %r12
    14712. 

  14712.         adcxq	%rcx, %r8
    14713. 

  14713.         adoxq	%r12, %r9
    14714. 

  14714.         mulxq	%r13, %rcx, %r13
    14715. 

  14715.         adcxq	%rcx, %r9
    14716. 

  14716.         adoxq	%r13, %r10
    14717. 

  14717.         mulxq	%r14, %rcx, %r14
    14718. 

  14718.         adcxq	%rcx, %r10
    14719. 

  14719.         adoxq	%r14, %r11
    14720. 

  14720.         mulxq	%r15, %r15, %rdx
    14721. 

  14721.         adcxq	%r15, %r11
    14722. 

  14722.         adoxq	%rax, %rdx
    14723. 

  14723.         adcxq	%rax, %rdx
    14724. 

  14724.         #  Overflow
    14725. 

  14725.         shldq	$0x01, %r11, %rdx
    14726. 

  14726.         movq	$0x7fffffffffffffff, %rax
    14727. 

  14727.         imulq	$19, %rdx, %rcx
    14728. 

  14728.         andq	%rax, %r11
    14729. 

  14729.         addq	%rcx, %r8
    14730. 

  14730.         adcq	$0x00, %r9
    14731. 

  14731.         adcq	$0x00, %r10
    14732. 

  14732.         adcq	$0x00, %r11
    14733. 

  14733.         # Reduce if top bit set
    14734. 

  14734.         movq	%r11, %rdx
    14735. 

  14735.         sarq	$63, %rdx
    14736. 

  14736.         andq	$19, %rdx
    14737. 

  14737.         andq	%rax, %r11
    14738. 

  14738.         addq	%rdx, %r8
    14739. 

  14739.         adcq	$0x00, %r9
    14740. 

  14740.         adcq	$0x00, %r10
    14741. 

  14741.         adcq	$0x00, %r11
    14742. 

  14742.         # Store
    14743. 

  14743.         movq	%r8, (%rbx)
    14744. 

  14744.         movq	%r9, 8(%rbx)
    14745. 

  14745.         movq	%r10, 16(%rbx)
    14746. 

  14746.         movq	%r11, 24(%rbx)
    14747. 

  14747.         movq	128(%rsp), %rdi
    14748. 

  14748.         # Multiply
    14749. 

  14749.         # A[0] * B[0]
    14750. 

  14750.         movq	(%rdi), %rdx
    14751. 

  14751.         mulxq	(%rsi), %r8, %r9
    14752. 

  14752.         # A[2] * B[0]
    14753. 

  14753.         mulxq	16(%rsi), %r10, %r11
    14754. 

  14754.         # A[1] * B[0]
    14755. 

  14755.         mulxq	8(%rsi), %rcx, %rax
    14756. 

  14756.         xorq	%r15, %r15
    14757. 

  14757.         adcxq	%rcx, %r9
    14758. 

  14758.         # A[1] * B[3]
    14759. 

  14759.         movq	24(%rdi), %rdx
    14760. 

  14760.         mulxq	8(%rsi), %r12, %r13
    14761. 

  14761.         adcxq	%rax, %r10
    14762. 

  14762.         # A[0] * B[1]
    14763. 

  14763.         movq	8(%rdi), %rdx
    14764. 

  14764.         mulxq	(%rsi), %rcx, %rax
    14765. 

  14765.         adoxq	%rcx, %r9
    14766. 

  14766.         # A[2] * B[1]
    14767. 

  14767.         mulxq	16(%rsi), %rcx, %r14
    14768. 

  14768.         adoxq	%rax, %r10
    14769. 

  14769.         adcxq	%rcx, %r11
    14770. 

  14770.         # A[1] * B[2]
    14771. 

  14771.         movq	16(%rdi), %rdx
    14772. 

  14772.         mulxq	8(%rsi), %rcx, %rax
    14773. 

  14773.         adcxq	%r14, %r12
    14774. 

  14774.         adoxq	%rcx, %r11
    14775. 

  14775.         adcxq	%r15, %r13
    14776. 

  14776.         adoxq	%rax, %r12
    14777. 

  14777.         # A[0] * B[2]
    14778. 

  14778.         mulxq	(%rsi), %rcx, %rax
    14779. 

  14779.         adoxq	%r15, %r13
    14780. 

  14780.         xorq	%r14, %r14
    14781. 

  14781.         adcxq	%rcx, %r10
    14782. 

  14782.         # A[1] * B[1]
    14783. 

  14783.         movq	8(%rdi), %rdx
    14784. 

  14784.         mulxq	8(%rsi), %rdx, %rcx
    14785. 

  14785.         adcxq	%rax, %r11
    14786. 

  14786.         adoxq	%rdx, %r10
    14787. 

  14787.         # A[3] * B[1]
    14788. 

  14788.         movq	8(%rdi), %rdx
    14789. 

  14789.         adoxq	%rcx, %r11
    14790. 

  14790.         mulxq	24(%rsi), %rcx, %rax
    14791. 

  14791.         adcxq	%rcx, %r12
    14792. 

  14792.         # A[2] * B[2]
    14793. 

  14793.         movq	16(%rdi), %rdx
    14794. 

  14794.         mulxq	16(%rsi), %rdx, %rcx
    14795. 

  14795.         adcxq	%rax, %r13
    14796. 

  14796.         adoxq	%rdx, %r12
    14797. 

  14797.         # A[3] * B[3]
    14798. 

  14798.         movq	24(%rdi), %rdx
    14799. 

  14799.         adoxq	%rcx, %r13
    14800. 

  14800.         mulxq	24(%rsi), %rcx, %rax
    14801. 

  14801.         adoxq	%r15, %r14
    14802. 

  14802.         adcxq	%rcx, %r14
    14803. 

  14803.         # A[0] * B[3]
    14804. 

  14804.         mulxq	(%rsi), %rdx, %rcx
    14805. 

  14805.         adcxq	%rax, %r15
    14806. 

  14806.         xorq	%rax, %rax
    14807. 

  14807.         adcxq	%rdx, %r11
    14808. 

  14808.         # A[3] * B[0]
    14809. 

  14809.         movq	(%rdi), %rdx
    14810. 

  14810.         adcxq	%rcx, %r12
    14811. 

  14811.         mulxq	24(%rsi), %rdx, %rcx
    14812. 

  14812.         adoxq	%rdx, %r11
    14813. 

  14813.         adoxq	%rcx, %r12
    14814. 

  14814.         # A[2] * B[3]
    14815. 

  14815.         movq	24(%rdi), %rdx
    14816. 

  14816.         mulxq	16(%rsi), %rdx, %rcx
    14817. 

  14817.         adcxq	%rdx, %r13
    14818. 

  14818.         # A[3] * B[2]
    14819. 

  14819.         movq	16(%rdi), %rdx
    14820. 

  14820.         adcxq	%rcx, %r14
    14821. 

  14821.         mulxq	24(%rsi), %rcx, %rdx
    14822. 

  14822.         adcxq	%rax, %r15
    14823. 

  14823.         adoxq	%rcx, %r13
    14824. 

  14824.         adoxq	%rdx, %r14
    14825. 

  14825.         adoxq	%rax, %r15
    14826. 

  14826.         # Reduce
    14827. 

  14827.         movq	$0x7fffffffffffffff, %rax
    14828. 

  14828.         #  Move top half into t4-t7 and remove top bit from t3
    14829. 

  14829.         shldq	$0x01, %r14, %r15
    14830. 

  14830.         shldq	$0x01, %r13, %r14
    14831. 

  14831.         shldq	$0x01, %r12, %r13
    14832. 

  14832.         shldq	$0x01, %r11, %r12
    14833. 

  14833.         andq	%rax, %r11
    14834. 

  14834.         #  Multiply top half by 19
    14835. 

  14835.         movq	$19, %rdx
    14836. 

  14836.         xorq	%rax, %rax
    14837. 

  14837.         mulxq	%r12, %rcx, %r12
    14838. 

  14838.         adcxq	%rcx, %r8
    14839. 

  14839.         adoxq	%r12, %r9
    14840. 

  14840.         mulxq	%r13, %rcx, %r13
    14841. 

  14841.         adcxq	%rcx, %r9
    14842. 

  14842.         adoxq	%r13, %r10
    14843. 

  14843.         mulxq	%r14, %rcx, %r14
    14844. 

  14844.         adcxq	%rcx, %r10
    14845. 

  14845.         adoxq	%r14, %r11
    14846. 

  14846.         mulxq	%r15, %r15, %rdx
    14847. 

  14847.         adcxq	%r15, %r11
    14848. 

  14848.         adoxq	%rax, %rdx
    14849. 

  14849.         adcxq	%rax, %rdx
    14850. 

  14850.         #  Overflow
    14851. 

  14851.         shldq	$0x01, %r11, %rdx
    14852. 

  14852.         movq	$0x7fffffffffffffff, %rax
    14853. 

  14853.         imulq	$19, %rdx, %rcx
    14854. 

  14854.         andq	%rax, %r11
    14855. 

  14855.         addq	%rcx, %r8
    14856. 

  14856.         adcq	$0x00, %r9
    14857. 

  14857.         adcq	$0x00, %r10
    14858. 

  14858.         adcq	$0x00, %r11
    14859. 

  14859.         # Reduce if top bit set
    14860. 

  14860.         movq	%r11, %rdx
    14861. 

  14861.         sarq	$63, %rdx
    14862. 

  14862.         andq	$19, %rdx
    14863. 

  14863.         andq	%rax, %r11
    14864. 

  14864.         addq	%rdx, %r8
    14865. 

  14865.         adcq	$0x00, %r9
    14866. 

  14866.         adcq	$0x00, %r10
    14867. 

  14867.         adcq	$0x00, %r11
    14868. 

  14868.         # Store
    14869. 

  14869.         movq	%r8, (%rsi)
    14870. 

  14870.         movq	%r9, 8(%rsi)
    14871. 

  14871.         movq	%r10, 16(%rsi)
    14872. 

  14872.         movq	%r11, 24(%rsi)
    14873. 

  14873.         movq	24(%rsp), %rdi
    14874. 

  14874.         movq	120(%rsp), %rsi
    14875. 

  14875.         movq	112(%rsp), %rbp
    14876. 

  14876.         # Multiply
    14877. 

  14877.         # A[0] * B[0]
    14878. 

  14878.         movq	(%rbp), %rdx
    14879. 

  14879.         mulxq	(%rsi), %r8, %r9
    14880. 

  14880.         # A[2] * B[0]
    14881. 

  14881.         mulxq	16(%rsi), %r10, %r11
    14882. 

  14882.         # A[1] * B[0]
    14883. 

  14883.         mulxq	8(%rsi), %rcx, %rax
    14884. 

  14884.         xorq	%r15, %r15
    14885. 

  14885.         adcxq	%rcx, %r9
    14886. 

  14886.         # A[1] * B[3]
    14887. 

  14887.         movq	24(%rbp), %rdx
    14888. 

  14888.         mulxq	8(%rsi), %r12, %r13
    14889. 

  14889.         adcxq	%rax, %r10
    14890. 

  14890.         # A[0] * B[1]
    14891. 

  14891.         movq	8(%rbp), %rdx
    14892. 

  14892.         mulxq	(%rsi), %rcx, %rax
    14893. 

  14893.         adoxq	%rcx, %r9
    14894. 

  14894.         # A[2] * B[1]
    14895. 

  14895.         mulxq	16(%rsi), %rcx, %r14
    14896. 

  14896.         adoxq	%rax, %r10
    14897. 

  14897.         adcxq	%rcx, %r11
    14898. 

  14898.         # A[1] * B[2]
    14899. 

  14899.         movq	16(%rbp), %rdx
    14900. 

  14900.         mulxq	8(%rsi), %rcx, %rax
    14901. 

  14901.         adcxq	%r14, %r12
    14902. 

  14902.         adoxq	%rcx, %r11
    14903. 

  14903.         adcxq	%r15, %r13
    14904. 

  14904.         adoxq	%rax, %r12
    14905. 

  14905.         # A[0] * B[2]
    14906. 

  14906.         mulxq	(%rsi), %rcx, %rax
    14907. 

  14907.         adoxq	%r15, %r13
    14908. 

  14908.         xorq	%r14, %r14
    14909. 

  14909.         adcxq	%rcx, %r10
    14910. 

  14910.         # A[1] * B[1]
    14911. 

  14911.         movq	8(%rbp), %rdx
    14912. 

  14912.         mulxq	8(%rsi), %rdx, %rcx
    14913. 

  14913.         adcxq	%rax, %r11
    14914. 

  14914.         adoxq	%rdx, %r10
    14915. 

  14915.         # A[3] * B[1]
    14916. 

  14916.         movq	8(%rbp), %rdx
    14917. 

  14917.         adoxq	%rcx, %r11
    14918. 

  14918.         mulxq	24(%rsi), %rcx, %rax
    14919. 

  14919.         adcxq	%rcx, %r12
    14920. 

  14920.         # A[2] * B[2]
    14921. 

  14921.         movq	16(%rbp), %rdx
    14922. 

  14922.         mulxq	16(%rsi), %rdx, %rcx
    14923. 

  14923.         adcxq	%rax, %r13
    14924. 

  14924.         adoxq	%rdx, %r12
    14925. 

  14925.         # A[3] * B[3]
    14926. 

  14926.         movq	24(%rbp), %rdx
    14927. 

  14927.         adoxq	%rcx, %r13
    14928. 

  14928.         mulxq	24(%rsi), %rcx, %rax
    14929. 

  14929.         adoxq	%r15, %r14
    14930. 

  14930.         adcxq	%rcx, %r14
    14931. 

  14931.         # A[0] * B[3]
    14932. 

  14932.         mulxq	(%rsi), %rdx, %rcx
    14933. 

  14933.         adcxq	%rax, %r15
    14934. 

  14934.         xorq	%rax, %rax
    14935. 

  14935.         adcxq	%rdx, %r11
    14936. 

  14936.         # A[3] * B[0]
    14937. 

  14937.         movq	(%rbp), %rdx
    14938. 

  14938.         adcxq	%rcx, %r12
    14939. 

  14939.         mulxq	24(%rsi), %rdx, %rcx
    14940. 

  14940.         adoxq	%rdx, %r11
    14941. 

  14941.         adoxq	%rcx, %r12
    14942. 

  14942.         # A[2] * B[3]
    14943. 

  14943.         movq	24(%rbp), %rdx
    14944. 

  14944.         mulxq	16(%rsi), %rdx, %rcx
    14945. 

  14945.         adcxq	%rdx, %r13
    14946. 

  14946.         # A[3] * B[2]
    14947. 

  14947.         movq	16(%rbp), %rdx
    14948. 

  14948.         adcxq	%rcx, %r14
    14949. 

  14949.         mulxq	24(%rsi), %rcx, %rdx
    14950. 

  14950.         adcxq	%rax, %r15
    14951. 

  14951.         adoxq	%rcx, %r13
    14952. 

  14952.         adoxq	%rdx, %r14
    14953. 

  14953.         adoxq	%rax, %r15
    14954. 

  14954.         # Reduce
    14955. 

  14955.         movq	$0x7fffffffffffffff, %rax
    14956. 

  14956.         #  Move top half into t4-t7 and remove top bit from t3
    14957. 

  14957.         shldq	$0x01, %r14, %r15
    14958. 

  14958.         shldq	$0x01, %r13, %r14
    14959. 

  14959.         shldq	$0x01, %r12, %r13
    14960. 

  14960.         shldq	$0x01, %r11, %r12
    14961. 

  14961.         andq	%rax, %r11
    14962. 

  14962.         #  Multiply top half by 19
    14963. 

  14963.         movq	$19, %rdx
    14964. 

  14964.         xorq	%rax, %rax
    14965. 

  14965.         mulxq	%r12, %rcx, %r12
    14966. 

  14966.         adcxq	%rcx, %r8
    14967. 

  14967.         adoxq	%r12, %r9
    14968. 

  14968.         mulxq	%r13, %rcx, %r13
    14969. 

  14969.         adcxq	%rcx, %r9
    14970. 

  14970.         adoxq	%r13, %r10
    14971. 

  14971.         mulxq	%r14, %rcx, %r14
    14972. 

  14972.         adcxq	%rcx, %r10
    14973. 

  14973.         adoxq	%r14, %r11
    14974. 

  14974.         mulxq	%r15, %r15, %rdx
    14975. 

  14975.         adcxq	%r15, %r11
    14976. 

  14976.         adoxq	%rax, %rdx
    14977. 

  14977.         adcxq	%rax, %rdx
    14978. 

  14978.         #  Overflow
    14979. 

  14979.         shldq	$0x01, %r11, %rdx
    14980. 

  14980.         movq	$0x7fffffffffffffff, %rax
    14981. 

  14981.         imulq	$19, %rdx, %rcx
    14982. 

  14982.         andq	%rax, %r11
    14983. 

  14983.         addq	%rcx, %r8
    14984. 

  14984.         adcq	$0x00, %r9
    14985. 

  14985.         adcq	$0x00, %r10
    14986. 

  14986.         adcq	$0x00, %r11
    14987. 

  14987.         # Reduce if top bit set
    14988. 

  14988.         movq	%r11, %rdx
    14989. 

  14989.         sarq	$63, %rdx
    14990. 

  14990.         andq	$19, %rdx
    14991. 

  14991.         andq	%rax, %r11
    14992. 

  14992.         addq	%rdx, %r8
    14993. 

  14993.         adcq	$0x00, %r9
    14994. 

  14994.         adcq	$0x00, %r10
    14995. 

  14995.         adcq	$0x00, %r11
    14996. 

  14996.         # Store
    14997. 

  14997.         movq	%r8, (%rdi)
    14998. 

  14998.         movq	%r9, 8(%rdi)
    14999. 

  14999.         movq	%r10, 16(%rdi)
    15000. 

  15000.         movq	%r11, 24(%rdi)
    15001. 

  15001.         movq	8(%rsp), %rsi
    15002. 

  15002.         movq	(%rsp), %rbp
    15003. 

  15003.         # Add
    15004. 

  15004.         movq	(%rbx), %r8
    15005. 

  15005.         movq	8(%rbx), %r9
    15006. 

  15006.         movq	16(%rbx), %r10
    15007. 

  15007.         movq	24(%rbx), %rdx
    15008. 

  15008.         movq	%r8, %r12
    15009. 

  15009.         addq	(%rsi), %r8
    15010. 

  15010.         movq	%r9, %r13
    15011. 

  15011.         adcq	8(%rsi), %r9
    15012. 

  15012.         movq	%r10, %r14
    15013. 

  15013.         adcq	16(%rsi), %r10
    15014. 

  15014.         movq	%rdx, %r15
    15015. 

  15015.         adcq	24(%rsi), %rdx
    15016. 

  15016.         movq	$-19, %rcx
    15017. 

  15017.         movq	%rdx, %r11
    15018. 

  15018.         movq	$0x7fffffffffffffff, %rax
    15019. 

  15019.         sarq	$63, %rdx
    15020. 

  15020.         #   Mask the modulus
    15021. 

  15021.         andq	%rdx, %rcx
    15022. 

  15022.         andq	%rdx, %rax
    15023. 

  15023.         #   Sub modulus (if overflow)
    15024. 

  15024.         subq	%rcx, %r8
    15025. 

  15025.         sbbq	%rdx, %r9
    15026. 

  15026.         sbbq	%rdx, %r10
    15027. 

  15027.         sbbq	%rax, %r11
    15028. 

  15028.         # Sub
    15029. 

  15029.         subq	(%rsi), %r12
    15030. 

  15030.         movq	$0x00, %rdx
    15031. 

  15031.         sbbq	8(%rsi), %r13
    15032. 

  15032.         movq	$-19, %rcx
    15033. 

  15033.         sbbq	16(%rsi), %r14
    15034. 

  15034.         movq	$0x7fffffffffffffff, %rax
    15035. 

  15035.         sbbq	24(%rsi), %r15
    15036. 

  15036.         sbbq	$0x00, %rdx
    15037. 

  15037.         #   Mask the modulus
    15038. 

  15038.         andq	%rdx, %rcx
    15039. 

  15039.         andq	%rdx, %rax
    15040. 

  15040.         #   Add modulus (if underflow)
    15041. 

  15041.         addq	%rcx, %r12
    15042. 

  15042.         adcq	%rdx, %r13
    15043. 

  15043.         adcq	%rdx, %r14
    15044. 

  15044.         adcq	%rax, %r15
    15045. 

  15045.         movq	%r8, (%rsi)
    15046. 

  15046.         movq	%r9, 8(%rsi)
    15047. 

  15047.         movq	%r10, 16(%rsi)
    15048. 

  15048.         movq	%r11, 24(%rsi)
    15049. 

  15049.         movq	%r12, (%rbp)
    15050. 

  15050.         movq	%r13, 8(%rbp)
    15051. 

  15051.         movq	%r14, 16(%rbp)
    15052. 

  15052.         movq	%r15, 24(%rbp)
    15053. 

  15053.         movq	104(%rsp), %rsi
    15054. 

  15054.         # Double
    15055. 

  15055.         movq	(%rsi), %r8
    15056. 

  15056.         movq	8(%rsi), %r9
    15057. 

  15057.         addq	%r8, %r8
    15058. 

  15058.         movq	16(%rsi), %r10
    15059. 

  15059.         adcq	%r9, %r9
    15060. 

  15060.         movq	24(%rsi), %rdx
    15061. 

  15061.         adcq	%r10, %r10
    15062. 

  15062.         movq	$-19, %rcx
    15063. 

  15063.         adcq	%rdx, %rdx
    15064. 

  15064.         movq	$0x7fffffffffffffff, %rax
    15065. 

  15065.         movq	%rdx, %r11
    15066. 

  15066.         sarq	$63, %rdx
    15067. 

  15067.         #   Mask the modulus
    15068. 

  15068.         andq	%rdx, %rcx
    15069. 

  15069.         andq	%rdx, %rax
    15070. 

  15070.         #   Sub modulus (if overflow)
    15071. 

  15071.         subq	%rcx, %r8
    15072. 

  15072.         sbbq	%rdx, %r9
    15073. 

  15073.         sbbq	%rdx, %r10
    15074. 

  15074.         sbbq	%rax, %r11
    15075. 

  15075.         movq	%r8, (%rbx)
    15076. 

  15076.         movq	%r9, 8(%rbx)
    15077. 

  15077.         movq	%r10, 16(%rbx)
    15078. 

  15078.         movq	%r11, 24(%rbx)
    15079. 

  15079.         # Add
    15080. 

  15080.         movq	(%rbx), %r8
    15081. 

  15081.         movq	8(%rbx), %r9
    15082. 

  15082.         movq	16(%rbx), %r10
    15083. 

  15083.         movq	24(%rbx), %rdx
    15084. 

  15084.         movq	%r8, %r12
    15085. 

  15085.         addq	(%rdi), %r8
    15086. 

  15086.         movq	%r9, %r13
    15087. 

  15087.         adcq	8(%rdi), %r9
    15088. 

  15088.         movq	%r10, %r14
    15089. 

  15089.         adcq	16(%rdi), %r10
    15090. 

  15090.         movq	%rdx, %r15
    15091. 

  15091.         adcq	24(%rdi), %rdx
    15092. 

  15092.         movq	$-19, %rcx
    15093. 

  15093.         movq	%rdx, %r11
    15094. 

  15094.         movq	$0x7fffffffffffffff, %rax
    15095. 

  15095.         sarq	$63, %rdx
    15096. 

  15096.         #   Mask the modulus
    15097. 

  15097.         andq	%rdx, %rcx
    15098. 

  15098.         andq	%rdx, %rax
    15099. 

  15099.         #   Sub modulus (if overflow)
    15100. 

  15100.         subq	%rcx, %r8
    15101. 

  15101.         sbbq	%rdx, %r9
    15102. 

  15102.         sbbq	%rdx, %r10
    15103. 

  15103.         sbbq	%rax, %r11
    15104. 

  15104.         # Sub
    15105. 

  15105.         subq	(%rdi), %r12
    15106. 

  15106.         movq	$0x00, %rdx
    15107. 

  15107.         sbbq	8(%rdi), %r13
    15108. 

  15108.         movq	$-19, %rcx
    15109. 

  15109.         sbbq	16(%rdi), %r14
    15110. 

  15110.         movq	$0x7fffffffffffffff, %rax
    15111. 

  15111.         sbbq	24(%rdi), %r15
    15112. 

  15112.         sbbq	$0x00, %rdx
    15113. 

  15113.         #   Mask the modulus
    15114. 

  15114.         andq	%rdx, %rcx
    15115. 

  15115.         andq	%rdx, %rax
    15116. 

  15116.         #   Add modulus (if underflow)
    15117. 

  15117.         addq	%rcx, %r12
    15118. 

  15118.         adcq	%rdx, %r13
    15119. 

  15119.         adcq	%rdx, %r14
    15120. 

  15120.         adcq	%rax, %r15
    15121. 

  15121.         movq	%r8, (%rdi)
    15122. 

  15122.         movq	%r9, 8(%rdi)
    15123. 

  15123.         movq	%r10, 16(%rdi)
    15124. 

  15124.         movq	%r11, 24(%rdi)
    15125. 

  15125.         movq	%r12, (%rbx)
    15126. 

  15126.         movq	%r13, 8(%rbx)
    15127. 

  15127.         movq	%r14, 16(%rbx)
    15128. 

  15128.         movq	%r15, 24(%rbx)
    15129. 

  15129.         addq	$48, %rsp
    15130. 

  15130.         popq	%r15
    15131. 

  15131.         popq	%r14
    15132. 

  15132.         popq	%r13
    15133. 

  15133.         popq	%r12
    15134. 

  15134.         popq	%rbx
    15135. 

  15135.         popq	%rbp
    15136. 

  15136.         repz retq
    15137. 

  15137. #ifndef __APPLE__
    15138. 

  15138. .size	fe_ge_msub_avx2,.-fe_ge_msub_avx2
    15139. 

  15139. #endif /* __APPLE__ */
    15140. 

  15140. #ifndef __APPLE__
    15141. 

  15141. .text
    15142. 

  15142. .globl	fe_ge_add_avx2
    15143. 

  15143. .type	fe_ge_add_avx2,@function
    15144. 

  15144. .align	16
    15145. 

  15145. fe_ge_add_avx2:
    15146. 

  15146. #else
    15147. 

  15147. .section	__TEXT,__text
    15148. 

  15148. .globl	_fe_ge_add_avx2
    15149. 

  15149. .p2align	4
    15150. 

  15150. _fe_ge_add_avx2:
    15151. 

  15151. #endif /* __APPLE__ */
    15152. 

  15152.         pushq	%rbx
    15153. 

  15153.         pushq	%rbp
    15154. 

  15154.         pushq	%r12
    15155. 

  15155.         pushq	%r13
    15156. 

  15156.         pushq	%r14
    15157. 

  15157.         pushq	%r15
    15158. 

  15158.         subq	$0x50, %rsp
    15159. 

  15159.         movq	%rdi, (%rsp)
    15160. 

  15160.         movq	%rsi, 8(%rsp)
    15161. 

  15161.         movq	%rdx, 16(%rsp)
    15162. 

  15162.         movq	%rcx, 24(%rsp)
    15163. 

  15163.         movq	%r8, 32(%rsp)
    15164. 

  15164.         movq	%r9, 40(%rsp)
    15165. 

  15165.         movq	8(%rsp), %rsi
    15166. 

  15166.         movq	40(%rsp), %rbx
    15167. 

  15167.         movq	32(%rsp), %rbp
    15168. 

  15168.         # Add
    15169. 

  15169.         movq	(%rbx), %r8
    15170. 

  15170.         movq	8(%rbx), %r9
    15171. 

  15171.         movq	16(%rbx), %r10
    15172. 

  15172.         movq	24(%rbx), %rdx
    15173. 

  15173.         movq	%r8, %r12
    15174. 

  15174.         addq	(%rbp), %r8
    15175. 

  15175.         movq	%r9, %r13
    15176. 

  15176.         adcq	8(%rbp), %r9
    15177. 

  15177.         movq	%r10, %r14
    15178. 

  15178.         adcq	16(%rbp), %r10
    15179. 

  15179.         movq	%rdx, %r15
    15180. 

  15180.         adcq	24(%rbp), %rdx
    15181. 

  15181.         movq	$-19, %rcx
    15182. 

  15182.         movq	%rdx, %r11
    15183. 

  15183.         movq	$0x7fffffffffffffff, %rax
    15184. 

  15184.         sarq	$63, %rdx
    15185. 

  15185.         #   Mask the modulus
    15186. 

  15186.         andq	%rdx, %rcx
    15187. 

  15187.         andq	%rdx, %rax
    15188. 

  15188.         #   Sub modulus (if overflow)
    15189. 

  15189.         subq	%rcx, %r8
    15190. 

  15190.         sbbq	%rdx, %r9
    15191. 

  15191.         sbbq	%rdx, %r10
    15192. 

  15192.         sbbq	%rax, %r11
    15193. 

  15193.         # Sub
    15194. 

  15194.         subq	(%rbp), %r12
    15195. 

  15195.         movq	$0x00, %rdx
    15196. 

  15196.         sbbq	8(%rbp), %r13
    15197. 

  15197.         movq	$-19, %rcx
    15198. 

  15198.         sbbq	16(%rbp), %r14
    15199. 

  15199.         movq	$0x7fffffffffffffff, %rax
    15200. 

  15200.         sbbq	24(%rbp), %r15
    15201. 

  15201.         sbbq	$0x00, %rdx
    15202. 

  15202.         #   Mask the modulus
    15203. 

  15203.         andq	%rdx, %rcx
    15204. 

  15204.         andq	%rdx, %rax
    15205. 

  15205.         #   Add modulus (if underflow)
    15206. 

  15206.         addq	%rcx, %r12
    15207. 

  15207.         adcq	%rdx, %r13
    15208. 

  15208.         adcq	%rdx, %r14
    15209. 

  15209.         adcq	%rax, %r15
    15210. 

  15210.         movq	%r8, (%rdi)
    15211. 

  15211.         movq	%r9, 8(%rdi)
    15212. 

  15212.         movq	%r10, 16(%rdi)
    15213. 

  15213.         movq	%r11, 24(%rdi)
    15214. 

  15214.         movq	%r12, (%rsi)
    15215. 

  15215.         movq	%r13, 8(%rsi)
    15216. 

  15216.         movq	%r14, 16(%rsi)
    15217. 

  15217.         movq	%r15, 24(%rsi)
    15218. 

  15218.         movq	16(%rsp), %rbx
    15219. 

  15219.         movq	168(%rsp), %rbp
    15220. 

  15220.         # Multiply
    15221. 

  15221.         # A[0] * B[0]
    15222. 

  15222.         movq	(%rbp), %rdx
    15223. 

  15223.         mulxq	(%rdi), %r8, %r9
    15224. 

  15224.         # A[2] * B[0]
    15225. 

  15225.         mulxq	16(%rdi), %r10, %r11
    15226. 

  15226.         # A[1] * B[0]
    15227. 

  15227.         mulxq	8(%rdi), %rcx, %rax
    15228. 

  15228.         xorq	%r15, %r15
    15229. 

  15229.         adcxq	%rcx, %r9
    15230. 

  15230.         # A[1] * B[3]
    15231. 

  15231.         movq	24(%rbp), %rdx
    15232. 

  15232.         mulxq	8(%rdi), %r12, %r13
    15233. 

  15233.         adcxq	%rax, %r10
    15234. 

  15234.         # A[0] * B[1]
    15235. 

  15235.         movq	8(%rbp), %rdx
    15236. 

  15236.         mulxq	(%rdi), %rcx, %rax
    15237. 

  15237.         adoxq	%rcx, %r9
    15238. 

  15238.         # A[2] * B[1]
    15239. 

  15239.         mulxq	16(%rdi), %rcx, %r14
    15240. 

  15240.         adoxq	%rax, %r10
    15241. 

  15241.         adcxq	%rcx, %r11
    15242. 

  15242.         # A[1] * B[2]
    15243. 

  15243.         movq	16(%rbp), %rdx
    15244. 

  15244.         mulxq	8(%rdi), %rcx, %rax
    15245. 

  15245.         adcxq	%r14, %r12
    15246. 

  15246.         adoxq	%rcx, %r11
    15247. 

  15247.         adcxq	%r15, %r13
    15248. 

  15248.         adoxq	%rax, %r12
    15249. 

  15249.         # A[0] * B[2]
    15250. 

  15250.         mulxq	(%rdi), %rcx, %rax
    15251. 

  15251.         adoxq	%r15, %r13
    15252. 

  15252.         xorq	%r14, %r14
    15253. 

  15253.         adcxq	%rcx, %r10
    15254. 

  15254.         # A[1] * B[1]
    15255. 

  15255.         movq	8(%rbp), %rdx
    15256. 

  15256.         mulxq	8(%rdi), %rdx, %rcx
    15257. 

  15257.         adcxq	%rax, %r11
    15258. 

  15258.         adoxq	%rdx, %r10
    15259. 

  15259.         # A[3] * B[1]
    15260. 

  15260.         movq	8(%rbp), %rdx
    15261. 

  15261.         adoxq	%rcx, %r11
    15262. 

  15262.         mulxq	24(%rdi), %rcx, %rax
    15263. 

  15263.         adcxq	%rcx, %r12
    15264. 

  15264.         # A[2] * B[2]
    15265. 

  15265.         movq	16(%rbp), %rdx
    15266. 

  15266.         mulxq	16(%rdi), %rdx, %rcx
    15267. 

  15267.         adcxq	%rax, %r13
    15268. 

  15268.         adoxq	%rdx, %r12
    15269. 

  15269.         # A[3] * B[3]
    15270. 

  15270.         movq	24(%rbp), %rdx
    15271. 

  15271.         adoxq	%rcx, %r13
    15272. 

  15272.         mulxq	24(%rdi), %rcx, %rax
    15273. 

  15273.         adoxq	%r15, %r14
    15274. 

  15274.         adcxq	%rcx, %r14
    15275. 

  15275.         # A[0] * B[3]
    15276. 

  15276.         mulxq	(%rdi), %rdx, %rcx
    15277. 

  15277.         adcxq	%rax, %r15
    15278. 

  15278.         xorq	%rax, %rax
    15279. 

  15279.         adcxq	%rdx, %r11
    15280. 

  15280.         # A[3] * B[0]
    15281. 

  15281.         movq	(%rbp), %rdx
    15282. 

  15282.         adcxq	%rcx, %r12
    15283. 

  15283.         mulxq	24(%rdi), %rdx, %rcx
    15284. 

  15284.         adoxq	%rdx, %r11
    15285. 

  15285.         adoxq	%rcx, %r12
    15286. 

  15286.         # A[2] * B[3]
    15287. 

  15287.         movq	24(%rbp), %rdx
    15288. 

  15288.         mulxq	16(%rdi), %rdx, %rcx
    15289. 

  15289.         adcxq	%rdx, %r13
    15290. 

  15290.         # A[3] * B[2]
    15291. 

  15291.         movq	16(%rbp), %rdx
    15292. 

  15292.         adcxq	%rcx, %r14
    15293. 

  15293.         mulxq	24(%rdi), %rcx, %rdx
    15294. 

  15294.         adcxq	%rax, %r15
    15295. 

  15295.         adoxq	%rcx, %r13
    15296. 

  15296.         adoxq	%rdx, %r14
    15297. 

  15297.         adoxq	%rax, %r15
    15298. 

  15298.         # Reduce
    15299. 

  15299.         movq	$0x7fffffffffffffff, %rax
    15300. 

  15300.         #  Move top half into t4-t7 and remove top bit from t3
    15301. 

  15301.         shldq	$0x01, %r14, %r15
    15302. 

  15302.         shldq	$0x01, %r13, %r14
    15303. 

  15303.         shldq	$0x01, %r12, %r13
    15304. 

  15304.         shldq	$0x01, %r11, %r12
    15305. 

  15305.         andq	%rax, %r11
    15306. 

  15306.         #  Multiply top half by 19
    15307. 

  15307.         movq	$19, %rdx
    15308. 

  15308.         xorq	%rax, %rax
    15309. 

  15309.         mulxq	%r12, %rcx, %r12
    15310. 

  15310.         adcxq	%rcx, %r8
    15311. 

  15311.         adoxq	%r12, %r9
    15312. 

  15312.         mulxq	%r13, %rcx, %r13
    15313. 

  15313.         adcxq	%rcx, %r9
    15314. 

  15314.         adoxq	%r13, %r10
    15315. 

  15315.         mulxq	%r14, %rcx, %r14
    15316. 

  15316.         adcxq	%rcx, %r10
    15317. 

  15317.         adoxq	%r14, %r11
    15318. 

  15318.         mulxq	%r15, %r15, %rdx
    15319. 

  15319.         adcxq	%r15, %r11
    15320. 

  15320.         adoxq	%rax, %rdx
    15321. 

  15321.         adcxq	%rax, %rdx
    15322. 

  15322.         #  Overflow
    15323. 

  15323.         shldq	$0x01, %r11, %rdx
    15324. 

  15324.         movq	$0x7fffffffffffffff, %rax
    15325. 

  15325.         imulq	$19, %rdx, %rcx
    15326. 

  15326.         andq	%rax, %r11
    15327. 

  15327.         addq	%rcx, %r8
    15328. 

  15328.         adcq	$0x00, %r9
    15329. 

  15329.         adcq	$0x00, %r10
    15330. 

  15330.         adcq	$0x00, %r11
    15331. 

  15331.         # Reduce if top bit set
    15332. 

  15332.         movq	%r11, %rdx
    15333. 

  15333.         sarq	$63, %rdx
    15334. 

  15334.         andq	$19, %rdx
    15335. 

  15335.         andq	%rax, %r11
    15336. 

  15336.         addq	%rdx, %r8
    15337. 

  15337.         adcq	$0x00, %r9
    15338. 

  15338.         adcq	$0x00, %r10
    15339. 

  15339.         adcq	$0x00, %r11
    15340. 

  15340.         # Store
    15341. 

  15341.         movq	%r8, (%rbx)
    15342. 

  15342.         movq	%r9, 8(%rbx)
    15343. 

  15343.         movq	%r10, 16(%rbx)
    15344. 

  15344.         movq	%r11, 24(%rbx)
    15345. 

  15345.         movq	176(%rsp), %rbx
    15346. 

  15346.         # Multiply
    15347. 

  15347.         # A[0] * B[0]
    15348. 

  15348.         movq	(%rbx), %rdx
    15349. 

  15349.         mulxq	(%rsi), %r8, %r9
    15350. 

  15350.         # A[2] * B[0]
    15351. 

  15351.         mulxq	16(%rsi), %r10, %r11
    15352. 

  15352.         # A[1] * B[0]
    15353. 

  15353.         mulxq	8(%rsi), %rcx, %rax
    15354. 

  15354.         xorq	%r15, %r15
    15355. 

  15355.         adcxq	%rcx, %r9
    15356. 

  15356.         # A[1] * B[3]
    15357. 

  15357.         movq	24(%rbx), %rdx
    15358. 

  15358.         mulxq	8(%rsi), %r12, %r13
    15359. 

  15359.         adcxq	%rax, %r10
    15360. 

  15360.         # A[0] * B[1]
    15361. 

  15361.         movq	8(%rbx), %rdx
    15362. 

  15362.         mulxq	(%rsi), %rcx, %rax
    15363. 

  15363.         adoxq	%rcx, %r9
    15364. 

  15364.         # A[2] * B[1]
    15365. 

  15365.         mulxq	16(%rsi), %rcx, %r14
    15366. 

  15366.         adoxq	%rax, %r10
    15367. 

  15367.         adcxq	%rcx, %r11
    15368. 

  15368.         # A[1] * B[2]
    15369. 

  15369.         movq	16(%rbx), %rdx
    15370. 

  15370.         mulxq	8(%rsi), %rcx, %rax
    15371. 

  15371.         adcxq	%r14, %r12
    15372. 

  15372.         adoxq	%rcx, %r11
    15373. 

  15373.         adcxq	%r15, %r13
    15374. 

  15374.         adoxq	%rax, %r12
    15375. 

  15375.         # A[0] * B[2]
    15376. 

  15376.         mulxq	(%rsi), %rcx, %rax
    15377. 

  15377.         adoxq	%r15, %r13
    15378. 

  15378.         xorq	%r14, %r14
    15379. 

  15379.         adcxq	%rcx, %r10
    15380. 

  15380.         # A[1] * B[1]
    15381. 

  15381.         movq	8(%rbx), %rdx
    15382. 

  15382.         mulxq	8(%rsi), %rdx, %rcx
    15383. 

  15383.         adcxq	%rax, %r11
    15384. 

  15384.         adoxq	%rdx, %r10
    15385. 

  15385.         # A[3] * B[1]
    15386. 

  15386.         movq	8(%rbx), %rdx
    15387. 

  15387.         adoxq	%rcx, %r11
    15388. 

  15388.         mulxq	24(%rsi), %rcx, %rax
    15389. 

  15389.         adcxq	%rcx, %r12
    15390. 

  15390.         # A[2] * B[2]
    15391. 

  15391.         movq	16(%rbx), %rdx
    15392. 

  15392.         mulxq	16(%rsi), %rdx, %rcx
    15393. 

  15393.         adcxq	%rax, %r13
    15394. 

  15394.         adoxq	%rdx, %r12
    15395. 

  15395.         # A[3] * B[3]
    15396. 

  15396.         movq	24(%rbx), %rdx
    15397. 

  15397.         adoxq	%rcx, %r13
    15398. 

  15398.         mulxq	24(%rsi), %rcx, %rax
    15399. 

  15399.         adoxq	%r15, %r14
    15400. 

  15400.         adcxq	%rcx, %r14
    15401. 

  15401.         # A[0] * B[3]
    15402. 

  15402.         mulxq	(%rsi), %rdx, %rcx
    15403. 

  15403.         adcxq	%rax, %r15
    15404. 

  15404.         xorq	%rax, %rax
    15405. 

  15405.         adcxq	%rdx, %r11
    15406. 

  15406.         # A[3] * B[0]
    15407. 

  15407.         movq	(%rbx), %rdx
    15408. 

  15408.         adcxq	%rcx, %r12
    15409. 

  15409.         mulxq	24(%rsi), %rdx, %rcx
    15410. 

  15410.         adoxq	%rdx, %r11
    15411. 

  15411.         adoxq	%rcx, %r12
    15412. 

  15412.         # A[2] * B[3]
    15413. 

  15413.         movq	24(%rbx), %rdx
    15414. 

  15414.         mulxq	16(%rsi), %rdx, %rcx
    15415. 

  15415.         adcxq	%rdx, %r13
    15416. 

  15416.         # A[3] * B[2]
    15417. 

  15417.         movq	16(%rbx), %rdx
    15418. 

  15418.         adcxq	%rcx, %r14
    15419. 

  15419.         mulxq	24(%rsi), %rcx, %rdx
    15420. 

  15420.         adcxq	%rax, %r15
    15421. 

  15421.         adoxq	%rcx, %r13
    15422. 

  15422.         adoxq	%rdx, %r14
    15423. 

  15423.         adoxq	%rax, %r15
    15424. 

  15424.         # Reduce
    15425. 

  15425.         movq	$0x7fffffffffffffff, %rax
    15426. 

  15426.         #  Move top half into t4-t7 and remove top bit from t3
    15427. 

  15427.         shldq	$0x01, %r14, %r15
    15428. 

  15428.         shldq	$0x01, %r13, %r14
    15429. 

  15429.         shldq	$0x01, %r12, %r13
    15430. 

  15430.         shldq	$0x01, %r11, %r12
    15431. 

  15431.         andq	%rax, %r11
    15432. 

  15432.         #  Multiply top half by 19
    15433. 

  15433.         movq	$19, %rdx
    15434. 

  15434.         xorq	%rax, %rax
    15435. 

  15435.         mulxq	%r12, %rcx, %r12
    15436. 

  15436.         adcxq	%rcx, %r8
    15437. 

  15437.         adoxq	%r12, %r9
    15438. 

  15438.         mulxq	%r13, %rcx, %r13
    15439. 

  15439.         adcxq	%rcx, %r9
    15440. 

  15440.         adoxq	%r13, %r10
    15441. 

  15441.         mulxq	%r14, %rcx, %r14
    15442. 

  15442.         adcxq	%rcx, %r10
    15443. 

  15443.         adoxq	%r14, %r11
    15444. 

  15444.         mulxq	%r15, %r15, %rdx
    15445. 

  15445.         adcxq	%r15, %r11
    15446. 

  15446.         adoxq	%rax, %rdx
    15447. 

  15447.         adcxq	%rax, %rdx
    15448. 

  15448.         #  Overflow
    15449. 

  15449.         shldq	$0x01, %r11, %rdx
    15450. 

  15450.         movq	$0x7fffffffffffffff, %rax
    15451. 

  15451.         imulq	$19, %rdx, %rcx
    15452. 

  15452.         andq	%rax, %r11
    15453. 

  15453.         addq	%rcx, %r8
    15454. 

  15454.         adcq	$0x00, %r9
    15455. 

  15455.         adcq	$0x00, %r10
    15456. 

  15456.         adcq	$0x00, %r11
    15457. 

  15457.         # Reduce if top bit set
    15458. 

  15458.         movq	%r11, %rdx
    15459. 

  15459.         sarq	$63, %rdx
    15460. 

  15460.         andq	$19, %rdx
    15461. 

  15461.         andq	%rax, %r11
    15462. 

  15462.         addq	%rdx, %r8
    15463. 

  15463.         adcq	$0x00, %r9
    15464. 

  15464.         adcq	$0x00, %r10
    15465. 

  15465.         adcq	$0x00, %r11
    15466. 

  15466.         # Store
    15467. 

  15467.         movq	%r8, (%rsi)
    15468. 

  15468.         movq	%r9, 8(%rsi)
    15469. 

  15469.         movq	%r10, 16(%rsi)
    15470. 

  15470.         movq	%r11, 24(%rsi)
    15471. 

  15471.         movq	24(%rsp), %rsi
    15472. 

  15472.         movq	160(%rsp), %rbx
    15473. 

  15473.         movq	144(%rsp), %rbp
    15474. 

  15474.         # Multiply
    15475. 

  15475.         # A[0] * B[0]
    15476. 

  15476.         movq	(%rbp), %rdx
    15477. 

  15477.         mulxq	(%rbx), %r8, %r9
    15478. 

  15478.         # A[2] * B[0]
    15479. 

  15479.         mulxq	16(%rbx), %r10, %r11
    15480. 

  15480.         # A[1] * B[0]
    15481. 

  15481.         mulxq	8(%rbx), %rcx, %rax
    15482. 

  15482.         xorq	%r15, %r15
    15483. 

  15483.         adcxq	%rcx, %r9
    15484. 

  15484.         # A[1] * B[3]
    15485. 

  15485.         movq	24(%rbp), %rdx
    15486. 

  15486.         mulxq	8(%rbx), %r12, %r13
    15487. 

  15487.         adcxq	%rax, %r10
    15488. 

  15488.         # A[0] * B[1]
    15489. 

  15489.         movq	8(%rbp), %rdx
    15490. 

  15490.         mulxq	(%rbx), %rcx, %rax
    15491. 

  15491.         adoxq	%rcx, %r9
    15492. 

  15492.         # A[2] * B[1]
    15493. 

  15493.         mulxq	16(%rbx), %rcx, %r14
    15494. 

  15494.         adoxq	%rax, %r10
    15495. 

  15495.         adcxq	%rcx, %r11
    15496. 

  15496.         # A[1] * B[2]
    15497. 

  15497.         movq	16(%rbp), %rdx
    15498. 

  15498.         mulxq	8(%rbx), %rcx, %rax
    15499. 

  15499.         adcxq	%r14, %r12
    15500. 

  15500.         adoxq	%rcx, %r11
    15501. 

  15501.         adcxq	%r15, %r13
    15502. 

  15502.         adoxq	%rax, %r12
    15503. 

  15503.         # A[0] * B[2]
    15504. 

  15504.         mulxq	(%rbx), %rcx, %rax
    15505. 

  15505.         adoxq	%r15, %r13
    15506. 

  15506.         xorq	%r14, %r14
    15507. 

  15507.         adcxq	%rcx, %r10
    15508. 

  15508.         # A[1] * B[1]
    15509. 

  15509.         movq	8(%rbp), %rdx
    15510. 

  15510.         mulxq	8(%rbx), %rdx, %rcx
    15511. 

  15511.         adcxq	%rax, %r11
    15512. 

  15512.         adoxq	%rdx, %r10
    15513. 

  15513.         # A[3] * B[1]
    15514. 

  15514.         movq	8(%rbp), %rdx
    15515. 

  15515.         adoxq	%rcx, %r11
    15516. 

  15516.         mulxq	24(%rbx), %rcx, %rax
    15517. 

  15517.         adcxq	%rcx, %r12
    15518. 

  15518.         # A[2] * B[2]
    15519. 

  15519.         movq	16(%rbp), %rdx
    15520. 

  15520.         mulxq	16(%rbx), %rdx, %rcx
    15521. 

  15521.         adcxq	%rax, %r13
    15522. 

  15522.         adoxq	%rdx, %r12
    15523. 

  15523.         # A[3] * B[3]
    15524. 

  15524.         movq	24(%rbp), %rdx
    15525. 

  15525.         adoxq	%rcx, %r13
    15526. 

  15526.         mulxq	24(%rbx), %rcx, %rax
    15527. 

  15527.         adoxq	%r15, %r14
    15528. 

  15528.         adcxq	%rcx, %r14
    15529. 

  15529.         # A[0] * B[3]
    15530. 

  15530.         mulxq	(%rbx), %rdx, %rcx
    15531. 

  15531.         adcxq	%rax, %r15
    15532. 

  15532.         xorq	%rax, %rax
    15533. 

  15533.         adcxq	%rdx, %r11
    15534. 

  15534.         # A[3] * B[0]
    15535. 

  15535.         movq	(%rbp), %rdx
    15536. 

  15536.         adcxq	%rcx, %r12
    15537. 

  15537.         mulxq	24(%rbx), %rdx, %rcx
    15538. 

  15538.         adoxq	%rdx, %r11
    15539. 

  15539.         adoxq	%rcx, %r12
    15540. 

  15540.         # A[2] * B[3]
    15541. 

  15541.         movq	24(%rbp), %rdx
    15542. 

  15542.         mulxq	16(%rbx), %rdx, %rcx
    15543. 

  15543.         adcxq	%rdx, %r13
    15544. 

  15544.         # A[3] * B[2]
    15545. 

  15545.         movq	16(%rbp), %rdx
    15546. 

  15546.         adcxq	%rcx, %r14
    15547. 

  15547.         mulxq	24(%rbx), %rcx, %rdx
    15548. 

  15548.         adcxq	%rax, %r15
    15549. 

  15549.         adoxq	%rcx, %r13
    15550. 

  15550.         adoxq	%rdx, %r14
    15551. 

  15551.         adoxq	%rax, %r15
    15552. 

  15552.         # Reduce
    15553. 

  15553.         movq	$0x7fffffffffffffff, %rax
    15554. 

  15554.         #  Move top half into t4-t7 and remove top bit from t3
    15555. 

  15555.         shldq	$0x01, %r14, %r15
    15556. 

  15556.         shldq	$0x01, %r13, %r14
    15557. 

  15557.         shldq	$0x01, %r12, %r13
    15558. 

  15558.         shldq	$0x01, %r11, %r12
    15559. 

  15559.         andq	%rax, %r11
    15560. 

  15560.         #  Multiply top half by 19
    15561. 

  15561.         movq	$19, %rdx
    15562. 

  15562.         xorq	%rax, %rax
    15563. 

  15563.         mulxq	%r12, %rcx, %r12
    15564. 

  15564.         adcxq	%rcx, %r8
    15565. 

  15565.         adoxq	%r12, %r9
    15566. 

  15566.         mulxq	%r13, %rcx, %r13
    15567. 

  15567.         adcxq	%rcx, %r9
    15568. 

  15568.         adoxq	%r13, %r10
    15569. 

  15569.         mulxq	%r14, %rcx, %r14
    15570. 

  15570.         adcxq	%rcx, %r10
    15571. 

  15571.         adoxq	%r14, %r11
    15572. 

  15572.         mulxq	%r15, %r15, %rdx
    15573. 

  15573.         adcxq	%r15, %r11
    15574. 

  15574.         adoxq	%rax, %rdx
    15575. 

  15575.         adcxq	%rax, %rdx
    15576. 

  15576.         #  Overflow
    15577. 

  15577.         shldq	$0x01, %r11, %rdx
    15578. 

  15578.         movq	$0x7fffffffffffffff, %rax
    15579. 

  15579.         imulq	$19, %rdx, %rcx
    15580. 

  15580.         andq	%rax, %r11
    15581. 

  15581.         addq	%rcx, %r8
    15582. 

  15582.         adcq	$0x00, %r9
    15583. 

  15583.         adcq	$0x00, %r10
    15584. 

  15584.         adcq	$0x00, %r11
    15585. 

  15585.         # Reduce if top bit set
    15586. 

  15586.         movq	%r11, %rdx
    15587. 

  15587.         sarq	$63, %rdx
    15588. 

  15588.         andq	$19, %rdx
    15589. 

  15589.         andq	%rax, %r11
    15590. 

  15590.         addq	%rdx, %r8
    15591. 

  15591.         adcq	$0x00, %r9
    15592. 

  15592.         adcq	$0x00, %r10
    15593. 

  15593.         adcq	$0x00, %r11
    15594. 

  15594.         # Store
    15595. 

  15595.         movq	%r8, (%rsi)
    15596. 

  15596.         movq	%r9, 8(%rsi)
    15597. 

  15597.         movq	%r10, 16(%rsi)
    15598. 

  15598.         movq	%r11, 24(%rsi)
    15599. 

  15599.         movq	136(%rsp), %rsi
    15600. 

  15600.         movq	152(%rsp), %rbx
    15601. 

  15601.         # Multiply
    15602. 

  15602.         # A[0] * B[0]
    15603. 

  15603.         movq	(%rbx), %rdx
    15604. 

  15604.         mulxq	(%rsi), %r8, %r9
    15605. 

  15605.         # A[2] * B[0]
    15606. 

  15606.         mulxq	16(%rsi), %r10, %r11
    15607. 

  15607.         # A[1] * B[0]
    15608. 

  15608.         mulxq	8(%rsi), %rcx, %rax
    15609. 

  15609.         xorq	%r15, %r15
    15610. 

  15610.         adcxq	%rcx, %r9
    15611. 

  15611.         # A[1] * B[3]
    15612. 

  15612.         movq	24(%rbx), %rdx
    15613. 

  15613.         mulxq	8(%rsi), %r12, %r13
    15614. 

  15614.         adcxq	%rax, %r10
    15615. 

  15615.         # A[0] * B[1]
    15616. 

  15616.         movq	8(%rbx), %rdx
    15617. 

  15617.         mulxq	(%rsi), %rcx, %rax
    15618. 

  15618.         adoxq	%rcx, %r9
    15619. 

  15619.         # A[2] * B[1]
    15620. 

  15620.         mulxq	16(%rsi), %rcx, %r14
    15621. 

  15621.         adoxq	%rax, %r10
    15622. 

  15622.         adcxq	%rcx, %r11
    15623. 

  15623.         # A[1] * B[2]
    15624. 

  15624.         movq	16(%rbx), %rdx
    15625. 

  15625.         mulxq	8(%rsi), %rcx, %rax
    15626. 

  15626.         adcxq	%r14, %r12
    15627. 

  15627.         adoxq	%rcx, %r11
    15628. 

  15628.         adcxq	%r15, %r13
    15629. 

  15629.         adoxq	%rax, %r12
    15630. 

  15630.         # A[0] * B[2]
    15631. 

  15631.         mulxq	(%rsi), %rcx, %rax
    15632. 

  15632.         adoxq	%r15, %r13
    15633. 

  15633.         xorq	%r14, %r14
    15634. 

  15634.         adcxq	%rcx, %r10
    15635. 

  15635.         # A[1] * B[1]
    15636. 

  15636.         movq	8(%rbx), %rdx
    15637. 

  15637.         mulxq	8(%rsi), %rdx, %rcx
    15638. 

  15638.         adcxq	%rax, %r11
    15639. 

  15639.         adoxq	%rdx, %r10
    15640. 

  15640.         # A[3] * B[1]
    15641. 

  15641.         movq	8(%rbx), %rdx
    15642. 

  15642.         adoxq	%rcx, %r11
    15643. 

  15643.         mulxq	24(%rsi), %rcx, %rax
    15644. 

  15644.         adcxq	%rcx, %r12
    15645. 

  15645.         # A[2] * B[2]
    15646. 

  15646.         movq	16(%rbx), %rdx
    15647. 

  15647.         mulxq	16(%rsi), %rdx, %rcx
    15648. 

  15648.         adcxq	%rax, %r13
    15649. 

  15649.         adoxq	%rdx, %r12
    15650. 

  15650.         # A[3] * B[3]
    15651. 

  15651.         movq	24(%rbx), %rdx
    15652. 

  15652.         adoxq	%rcx, %r13
    15653. 

  15653.         mulxq	24(%rsi), %rcx, %rax
    15654. 

  15654.         adoxq	%r15, %r14
    15655. 

  15655.         adcxq	%rcx, %r14
    15656. 

  15656.         # A[0] * B[3]
    15657. 

  15657.         mulxq	(%rsi), %rdx, %rcx
    15658. 

  15658.         adcxq	%rax, %r15
    15659. 

  15659.         xorq	%rax, %rax
    15660. 

  15660.         adcxq	%rdx, %r11
    15661. 

  15661.         # A[3] * B[0]
    15662. 

  15662.         movq	(%rbx), %rdx
    15663. 

  15663.         adcxq	%rcx, %r12
    15664. 

  15664.         mulxq	24(%rsi), %rdx, %rcx
    15665. 

  15665.         adoxq	%rdx, %r11
    15666. 

  15666.         adoxq	%rcx, %r12
    15667. 

  15667.         # A[2] * B[3]
    15668. 

  15668.         movq	24(%rbx), %rdx
    15669. 

  15669.         mulxq	16(%rsi), %rdx, %rcx
    15670. 

  15670.         adcxq	%rdx, %r13
    15671. 

  15671.         # A[3] * B[2]
    15672. 

  15672.         movq	16(%rbx), %rdx
    15673. 

  15673.         adcxq	%rcx, %r14
    15674. 

  15674.         mulxq	24(%rsi), %rcx, %rdx
    15675. 

  15675.         adcxq	%rax, %r15
    15676. 

  15676.         adoxq	%rcx, %r13
    15677. 

  15677.         adoxq	%rdx, %r14
    15678. 

  15678.         adoxq	%rax, %r15
    15679. 

  15679.         # Reduce
    15680. 

  15680.         movq	$0x7fffffffffffffff, %rax
    15681. 

  15681.         #  Move top half into t4-t7 and remove top bit from t3
    15682. 

  15682.         shldq	$0x01, %r14, %r15
    15683. 

  15683.         shldq	$0x01, %r13, %r14
    15684. 

  15684.         shldq	$0x01, %r12, %r13
    15685. 

  15685.         shldq	$0x01, %r11, %r12
    15686. 

  15686.         andq	%rax, %r11
    15687. 

  15687.         #  Multiply top half by 19
    15688. 

  15688.         movq	$19, %rdx
    15689. 

  15689.         xorq	%rax, %rax
    15690. 

  15690.         mulxq	%r12, %rcx, %r12
    15691. 

  15691.         adcxq	%rcx, %r8
    15692. 

  15692.         adoxq	%r12, %r9
    15693. 

  15693.         mulxq	%r13, %rcx, %r13
    15694. 

  15694.         adcxq	%rcx, %r9
    15695. 

  15695.         adoxq	%r13, %r10
    15696. 

  15696.         mulxq	%r14, %rcx, %r14
    15697. 

  15697.         adcxq	%rcx, %r10
    15698. 

  15698.         adoxq	%r14, %r11
    15699. 

  15699.         mulxq	%r15, %r15, %rdx
    15700. 

  15700.         adcxq	%r15, %r11
    15701. 

  15701.         adoxq	%rax, %rdx
    15702. 

  15702.         adcxq	%rax, %rdx
    15703. 

  15703.         #  Overflow
    15704. 

  15704.         shldq	$0x01, %r11, %rdx
    15705. 

  15705.         movq	$0x7fffffffffffffff, %rax
    15706. 

  15706.         imulq	$19, %rdx, %rcx
    15707. 

  15707.         andq	%rax, %r11
    15708. 

  15708.         addq	%rcx, %r8
    15709. 

  15709.         adcq	$0x00, %r9
    15710. 

  15710.         adcq	$0x00, %r10
    15711. 

  15711.         adcq	$0x00, %r11
    15712. 

  15712.         # Reduce if top bit set
    15713. 

  15713.         movq	%r11, %rdx
    15714. 

  15714.         sarq	$63, %rdx
    15715. 

  15715.         andq	$19, %rdx
    15716. 

  15716.         andq	%rax, %r11
    15717. 

  15717.         addq	%rdx, %r8
    15718. 

  15718.         adcq	$0x00, %r9
    15719. 

  15719.         adcq	$0x00, %r10
    15720. 

  15720.         adcq	$0x00, %r11
    15721. 

  15721.         # Store
    15722. 

  15722.         movq	%r8, (%rdi)
    15723. 

  15723.         movq	%r9, 8(%rdi)
    15724. 

  15724.         movq	%r10, 16(%rdi)
    15725. 

  15725.         movq	%r11, 24(%rdi)
    15726. 

  15726.         leaq	48(%rsp), %rsi
    15727. 

  15727.         # Double
    15728. 

  15728.         movq	(%rdi), %r8
    15729. 

  15729.         movq	8(%rdi), %r9
    15730. 

  15730.         addq	%r8, %r8
    15731. 

  15731.         movq	16(%rdi), %r10
    15732. 

  15732.         adcq	%r9, %r9
    15733. 

  15733.         movq	24(%rdi), %rdx
    15734. 

  15734.         adcq	%r10, %r10
    15735. 

  15735.         movq	$-19, %rcx
    15736. 

  15736.         adcq	%rdx, %rdx
    15737. 

  15737.         movq	$0x7fffffffffffffff, %rax
    15738. 

  15738.         movq	%rdx, %r11
    15739. 

  15739.         sarq	$63, %rdx
    15740. 

  15740.         #   Mask the modulus
    15741. 

  15741.         andq	%rdx, %rcx
    15742. 

  15742.         andq	%rdx, %rax
    15743. 

  15743.         #   Sub modulus (if overflow)
    15744. 

  15744.         subq	%rcx, %r8
    15745. 

  15745.         sbbq	%rdx, %r9
    15746. 

  15746.         sbbq	%rdx, %r10
    15747. 

  15747.         sbbq	%rax, %r11
    15748. 

  15748.         movq	%r8, (%rsi)
    15749. 

  15749.         movq	%r9, 8(%rsi)
    15750. 

  15750.         movq	%r10, 16(%rsi)
    15751. 

  15751.         movq	%r11, 24(%rsi)
    15752. 

  15752.         movq	8(%rsp), %rbx
    15753. 

  15753.         movq	16(%rsp), %rbp
    15754. 

  15754.         # Add
    15755. 

  15755.         movq	(%rbp), %r8
    15756. 

  15756.         movq	8(%rbp), %r9
    15757. 

  15757.         movq	16(%rbp), %r10
    15758. 

  15758.         movq	24(%rbp), %rdx
    15759. 

  15759.         movq	%r8, %r12
    15760. 

  15760.         addq	(%rbx), %r8
    15761. 

  15761.         movq	%r9, %r13
    15762. 

  15762.         adcq	8(%rbx), %r9
    15763. 

  15763.         movq	%r10, %r14
    15764. 

  15764.         adcq	16(%rbx), %r10
    15765. 

  15765.         movq	%rdx, %r15
    15766. 

  15766.         adcq	24(%rbx), %rdx
    15767. 

  15767.         movq	$-19, %rcx
    15768. 

  15768.         movq	%rdx, %r11
    15769. 

  15769.         movq	$0x7fffffffffffffff, %rax
    15770. 

  15770.         sarq	$63, %rdx
    15771. 

  15771.         #   Mask the modulus
    15772. 

  15772.         andq	%rdx, %rcx
    15773. 

  15773.         andq	%rdx, %rax
    15774. 

  15774.         #   Sub modulus (if overflow)
    15775. 

  15775.         subq	%rcx, %r8
    15776. 

  15776.         sbbq	%rdx, %r9
    15777. 

  15777.         sbbq	%rdx, %r10
    15778. 

  15778.         sbbq	%rax, %r11
    15779. 

  15779.         # Sub
    15780. 

  15780.         subq	(%rbx), %r12
    15781. 

  15781.         movq	$0x00, %rdx
    15782. 

  15782.         sbbq	8(%rbx), %r13
    15783. 

  15783.         movq	$-19, %rcx
    15784. 

  15784.         sbbq	16(%rbx), %r14
    15785. 

  15785.         movq	$0x7fffffffffffffff, %rax
    15786. 

  15786.         sbbq	24(%rbx), %r15
    15787. 

  15787.         sbbq	$0x00, %rdx
    15788. 

  15788.         #   Mask the modulus
    15789. 

  15789.         andq	%rdx, %rcx
    15790. 

  15790.         andq	%rdx, %rax
    15791. 

  15791.         #   Add modulus (if underflow)
    15792. 

  15792.         addq	%rcx, %r12
    15793. 

  15793.         adcq	%rdx, %r13
    15794. 

  15794.         adcq	%rdx, %r14
    15795. 

  15795.         adcq	%rax, %r15
    15796. 

  15796.         movq	%r8, (%rbx)
    15797. 

  15797.         movq	%r9, 8(%rbx)
    15798. 

  15798.         movq	%r10, 16(%rbx)
    15799. 

  15799.         movq	%r11, 24(%rbx)
    15800. 

  15800.         movq	%r12, (%rdi)
    15801. 

  15801.         movq	%r13, 8(%rdi)
    15802. 

  15802.         movq	%r14, 16(%rdi)
    15803. 

  15803.         movq	%r15, 24(%rdi)
    15804. 

  15804.         movq	24(%rsp), %rdi
    15805. 

  15805.         # Add
    15806. 

  15806.         movq	(%rsi), %r8
    15807. 

  15807.         movq	8(%rsi), %r9
    15808. 

  15808.         movq	16(%rsi), %r10
    15809. 

  15809.         movq	24(%rsi), %rdx
    15810. 

  15810.         movq	%r8, %r12
    15811. 

  15811.         addq	(%rdi), %r8
    15812. 

  15812.         movq	%r9, %r13
    15813. 

  15813.         adcq	8(%rdi), %r9
    15814. 

  15814.         movq	%r10, %r14
    15815. 

  15815.         adcq	16(%rdi), %r10
    15816. 

  15816.         movq	%rdx, %r15
    15817. 

  15817.         adcq	24(%rdi), %rdx
    15818. 

  15818.         movq	$-19, %rcx
    15819. 

  15819.         movq	%rdx, %r11
    15820. 

  15820.         movq	$0x7fffffffffffffff, %rax
    15821. 

  15821.         sarq	$63, %rdx
    15822. 

  15822.         #   Mask the modulus
    15823. 

  15823.         andq	%rdx, %rcx
    15824. 

  15824.         andq	%rdx, %rax
    15825. 

  15825.         #   Sub modulus (if overflow)
    15826. 

  15826.         subq	%rcx, %r8
    15827. 

  15827.         sbbq	%rdx, %r9
    15828. 

  15828.         sbbq	%rdx, %r10
    15829. 

  15829.         sbbq	%rax, %r11
    15830. 

  15830.         # Sub
    15831. 

  15831.         subq	(%rdi), %r12
    15832. 

  15832.         movq	$0x00, %rdx
    15833. 

  15833.         sbbq	8(%rdi), %r13
    15834. 

  15834.         movq	$-19, %rcx
    15835. 

  15835.         sbbq	16(%rdi), %r14
    15836. 

  15836.         movq	$0x7fffffffffffffff, %rax
    15837. 

  15837.         sbbq	24(%rdi), %r15
    15838. 

  15838.         sbbq	$0x00, %rdx
    15839. 

  15839.         #   Mask the modulus
    15840. 

  15840.         andq	%rdx, %rcx
    15841. 

  15841.         andq	%rdx, %rax
    15842. 

  15842.         #   Add modulus (if underflow)
    15843. 

  15843.         addq	%rcx, %r12
    15844. 

  15844.         adcq	%rdx, %r13
    15845. 

  15845.         adcq	%rdx, %r14
    15846. 

  15846.         adcq	%rax, %r15
    15847. 

  15847.         movq	%r8, (%rbp)
    15848. 

  15848.         movq	%r9, 8(%rbp)
    15849. 

  15849.         movq	%r10, 16(%rbp)
    15850. 

  15850.         movq	%r11, 24(%rbp)
    15851. 

  15851.         movq	%r12, (%rdi)
    15852. 

  15852.         movq	%r13, 8(%rdi)
    15853. 

  15853.         movq	%r14, 16(%rdi)
    15854. 

  15854.         movq	%r15, 24(%rdi)
    15855. 

  15855.         addq	$0x50, %rsp
    15856. 

  15856.         popq	%r15
    15857. 

  15857.         popq	%r14
    15858. 

  15858.         popq	%r13
    15859. 

  15859.         popq	%r12
    15860. 

  15860.         popq	%rbp
    15861. 

  15861.         popq	%rbx
    15862. 

  15862.         repz retq
    15863. 

  15863. #ifndef __APPLE__
    15864. 

  15864. .size	fe_ge_add_avx2,.-fe_ge_add_avx2
    15865. 

  15865. #endif /* __APPLE__ */
    15866. 

  15866. #ifndef __APPLE__
    15867. 

  15867. .text
    15868. 

  15868. .globl	fe_ge_sub_avx2
    15869. 

  15869. .type	fe_ge_sub_avx2,@function
    15870. 

  15870. .align	16
    15871. 

  15871. fe_ge_sub_avx2:
    15872. 

  15872. #else
    15873. 

  15873. .section	__TEXT,__text
    15874. 

  15874. .globl	_fe_ge_sub_avx2
    15875. 

  15875. .p2align	4
    15876. 

  15876. _fe_ge_sub_avx2:
    15877. 

  15877. #endif /* __APPLE__ */
    15878. 

  15878.         pushq	%rbx
    15879. 

  15879.         pushq	%rbp
    15880. 

  15880.         pushq	%r12
    15881. 

  15881.         pushq	%r13
    15882. 

  15882.         pushq	%r14
    15883. 

  15883.         pushq	%r15
    15884. 

  15884.         subq	$0x50, %rsp
    15885. 

  15885.         movq	%rdi, (%rsp)
    15886. 

  15886.         movq	%rsi, 8(%rsp)
    15887. 

  15887.         movq	%rdx, 16(%rsp)
    15888. 

  15888.         movq	%rcx, 24(%rsp)
    15889. 

  15889.         movq	%r8, 32(%rsp)
    15890. 

  15890.         movq	%r9, 40(%rsp)
    15891. 

  15891.         movq	8(%rsp), %rsi
    15892. 

  15892.         movq	40(%rsp), %rbx
    15893. 

  15893.         movq	32(%rsp), %rbp
    15894. 

  15894.         # Add
    15895. 

  15895.         movq	(%rbx), %r8
    15896. 

  15896.         movq	8(%rbx), %r9
    15897. 

  15897.         movq	16(%rbx), %r10
    15898. 

  15898.         movq	24(%rbx), %rdx
    15899. 

  15899.         movq	%r8, %r12
    15900. 

  15900.         addq	(%rbp), %r8
    15901. 

  15901.         movq	%r9, %r13
    15902. 

  15902.         adcq	8(%rbp), %r9
    15903. 

  15903.         movq	%r10, %r14
    15904. 

  15904.         adcq	16(%rbp), %r10
    15905. 

  15905.         movq	%rdx, %r15
    15906. 

  15906.         adcq	24(%rbp), %rdx
    15907. 

  15907.         movq	$-19, %rcx
    15908. 

  15908.         movq	%rdx, %r11
    15909. 

  15909.         movq	$0x7fffffffffffffff, %rax
    15910. 

  15910.         sarq	$63, %rdx
    15911. 

  15911.         #   Mask the modulus
    15912. 

  15912.         andq	%rdx, %rcx
    15913. 

  15913.         andq	%rdx, %rax
    15914. 

  15914.         #   Sub modulus (if overflow)
    15915. 

  15915.         subq	%rcx, %r8
    15916. 

  15916.         sbbq	%rdx, %r9
    15917. 

  15917.         sbbq	%rdx, %r10
    15918. 

  15918.         sbbq	%rax, %r11
    15919. 

  15919.         # Sub
    15920. 

  15920.         subq	(%rbp), %r12
    15921. 

  15921.         movq	$0x00, %rdx
    15922. 

  15922.         sbbq	8(%rbp), %r13
    15923. 

  15923.         movq	$-19, %rcx
    15924. 

  15924.         sbbq	16(%rbp), %r14
    15925. 

  15925.         movq	$0x7fffffffffffffff, %rax
    15926. 

  15926.         sbbq	24(%rbp), %r15
    15927. 

  15927.         sbbq	$0x00, %rdx
    15928. 

  15928.         #   Mask the modulus
    15929. 

  15929.         andq	%rdx, %rcx
    15930. 

  15930.         andq	%rdx, %rax
    15931. 

  15931.         #   Add modulus (if underflow)
    15932. 

  15932.         addq	%rcx, %r12
    15933. 

  15933.         adcq	%rdx, %r13
    15934. 

  15934.         adcq	%rdx, %r14
    15935. 

  15935.         adcq	%rax, %r15
    15936. 

  15936.         movq	%r8, (%rdi)
    15937. 

  15937.         movq	%r9, 8(%rdi)
    15938. 

  15938.         movq	%r10, 16(%rdi)
    15939. 

  15939.         movq	%r11, 24(%rdi)
    15940. 

  15940.         movq	%r12, (%rsi)
    15941. 

  15941.         movq	%r13, 8(%rsi)
    15942. 

  15942.         movq	%r14, 16(%rsi)
    15943. 

  15943.         movq	%r15, 24(%rsi)
    15944. 

  15944.         movq	16(%rsp), %rbx
    15945. 

  15945.         movq	176(%rsp), %rbp
    15946. 

  15946.         # Multiply
    15947. 

  15947.         # A[0] * B[0]
    15948. 

  15948.         movq	(%rbp), %rdx
    15949. 

  15949.         mulxq	(%rdi), %r8, %r9
    15950. 

  15950.         # A[2] * B[0]
    15951. 

  15951.         mulxq	16(%rdi), %r10, %r11
    15952. 

  15952.         # A[1] * B[0]
    15953. 

  15953.         mulxq	8(%rdi), %rcx, %rax
    15954. 

  15954.         xorq	%r15, %r15
    15955. 

  15955.         adcxq	%rcx, %r9
    15956. 

  15956.         # A[1] * B[3]
    15957. 

  15957.         movq	24(%rbp), %rdx
    15958. 

  15958.         mulxq	8(%rdi), %r12, %r13
    15959. 

  15959.         adcxq	%rax, %r10
    15960. 

  15960.         # A[0] * B[1]
    15961. 

  15961.         movq	8(%rbp), %rdx
    15962. 

  15962.         mulxq	(%rdi), %rcx, %rax
    15963. 

  15963.         adoxq	%rcx, %r9
    15964. 

  15964.         # A[2] * B[1]
    15965. 

  15965.         mulxq	16(%rdi), %rcx, %r14
    15966. 

  15966.         adoxq	%rax, %r10
    15967. 

  15967.         adcxq	%rcx, %r11
    15968. 

  15968.         # A[1] * B[2]
    15969. 

  15969.         movq	16(%rbp), %rdx
    15970. 

  15970.         mulxq	8(%rdi), %rcx, %rax
    15971. 

  15971.         adcxq	%r14, %r12
    15972. 

  15972.         adoxq	%rcx, %r11
    15973. 

  15973.         adcxq	%r15, %r13
    15974. 

  15974.         adoxq	%rax, %r12
    15975. 

  15975.         # A[0] * B[2]
    15976. 

  15976.         mulxq	(%rdi), %rcx, %rax
    15977. 

  15977.         adoxq	%r15, %r13
    15978. 

  15978.         xorq	%r14, %r14
    15979. 

  15979.         adcxq	%rcx, %r10
    15980. 

  15980.         # A[1] * B[1]
    15981. 

  15981.         movq	8(%rbp), %rdx
    15982. 

  15982.         mulxq	8(%rdi), %rdx, %rcx
    15983. 

  15983.         adcxq	%rax, %r11
    15984. 

  15984.         adoxq	%rdx, %r10
    15985. 

  15985.         # A[3] * B[1]
    15986. 

  15986.         movq	8(%rbp), %rdx
    15987. 

  15987.         adoxq	%rcx, %r11
    15988. 

  15988.         mulxq	24(%rdi), %rcx, %rax
    15989. 

  15989.         adcxq	%rcx, %r12
    15990. 

  15990.         # A[2] * B[2]
    15991. 

  15991.         movq	16(%rbp), %rdx
    15992. 

  15992.         mulxq	16(%rdi), %rdx, %rcx
    15993. 

  15993.         adcxq	%rax, %r13
    15994. 

  15994.         adoxq	%rdx, %r12
    15995. 

  15995.         # A[3] * B[3]
    15996. 

  15996.         movq	24(%rbp), %rdx
    15997. 

  15997.         adoxq	%rcx, %r13
    15998. 

  15998.         mulxq	24(%rdi), %rcx, %rax
    15999. 

  15999.         adoxq	%r15, %r14
    16000. 

  16000.         adcxq	%rcx, %r14
    16001. 

  16001.         # A[0] * B[3]
    16002. 

  16002.         mulxq	(%rdi), %rdx, %rcx
    16003. 

  16003.         adcxq	%rax, %r15
    16004. 

  16004.         xorq	%rax, %rax
    16005. 

  16005.         adcxq	%rdx, %r11
    16006. 

  16006.         # A[3] * B[0]
    16007. 

  16007.         movq	(%rbp), %rdx
    16008. 

  16008.         adcxq	%rcx, %r12
    16009. 

  16009.         mulxq	24(%rdi), %rdx, %rcx
    16010. 

  16010.         adoxq	%rdx, %r11
    16011. 

  16011.         adoxq	%rcx, %r12
    16012. 

  16012.         # A[2] * B[3]
    16013. 

  16013.         movq	24(%rbp), %rdx
    16014. 

  16014.         mulxq	16(%rdi), %rdx, %rcx
    16015. 

  16015.         adcxq	%rdx, %r13
    16016. 

  16016.         # A[3] * B[2]
    16017. 

  16017.         movq	16(%rbp), %rdx
    16018. 

  16018.         adcxq	%rcx, %r14
    16019. 

  16019.         mulxq	24(%rdi), %rcx, %rdx
    16020. 

  16020.         adcxq	%rax, %r15
    16021. 

  16021.         adoxq	%rcx, %r13
    16022. 

  16022.         adoxq	%rdx, %r14
    16023. 

  16023.         adoxq	%rax, %r15
    16024. 

  16024.         # Reduce
    16025. 

  16025.         movq	$0x7fffffffffffffff, %rax
    16026. 

  16026.         #  Move top half into t4-t7 and remove top bit from t3
    16027. 

  16027.         shldq	$0x01, %r14, %r15
    16028. 

  16028.         shldq	$0x01, %r13, %r14
    16029. 

  16029.         shldq	$0x01, %r12, %r13
    16030. 

  16030.         shldq	$0x01, %r11, %r12
    16031. 

  16031.         andq	%rax, %r11
    16032. 

  16032.         #  Multiply top half by 19
    16033. 

  16033.         movq	$19, %rdx
    16034. 

  16034.         xorq	%rax, %rax
    16035. 

  16035.         mulxq	%r12, %rcx, %r12
    16036. 

  16036.         adcxq	%rcx, %r8
    16037. 

  16037.         adoxq	%r12, %r9
    16038. 

  16038.         mulxq	%r13, %rcx, %r13
    16039. 

  16039.         adcxq	%rcx, %r9
    16040. 

  16040.         adoxq	%r13, %r10
    16041. 

  16041.         mulxq	%r14, %rcx, %r14
    16042. 

  16042.         adcxq	%rcx, %r10
    16043. 

  16043.         adoxq	%r14, %r11
    16044. 

  16044.         mulxq	%r15, %r15, %rdx
    16045. 

  16045.         adcxq	%r15, %r11
    16046. 

  16046.         adoxq	%rax, %rdx
    16047. 

  16047.         adcxq	%rax, %rdx
    16048. 

  16048.         #  Overflow
    16049. 

  16049.         shldq	$0x01, %r11, %rdx
    16050. 

  16050.         movq	$0x7fffffffffffffff, %rax
    16051. 

  16051.         imulq	$19, %rdx, %rcx
    16052. 

  16052.         andq	%rax, %r11
    16053. 

  16053.         addq	%rcx, %r8
    16054. 

  16054.         adcq	$0x00, %r9
    16055. 

  16055.         adcq	$0x00, %r10
    16056. 

  16056.         adcq	$0x00, %r11
    16057. 

  16057.         # Reduce if top bit set
    16058. 

  16058.         movq	%r11, %rdx
    16059. 

  16059.         sarq	$63, %rdx
    16060. 

  16060.         andq	$19, %rdx
    16061. 

  16061.         andq	%rax, %r11
    16062. 

  16062.         addq	%rdx, %r8
    16063. 

  16063.         adcq	$0x00, %r9
    16064. 

  16064.         adcq	$0x00, %r10
    16065. 

  16065.         adcq	$0x00, %r11
    16066. 

  16066.         # Store
    16067. 

  16067.         movq	%r8, (%rbx)
    16068. 

  16068.         movq	%r9, 8(%rbx)
    16069. 

  16069.         movq	%r10, 16(%rbx)
    16070. 

  16070.         movq	%r11, 24(%rbx)
    16071. 

  16071.         movq	168(%rsp), %rbx
    16072. 

  16072.         # Multiply
    16073. 

  16073.         # A[0] * B[0]
    16074. 

  16074.         movq	(%rbx), %rdx
    16075. 

  16075.         mulxq	(%rsi), %r8, %r9
    16076. 

  16076.         # A[2] * B[0]
    16077. 

  16077.         mulxq	16(%rsi), %r10, %r11
    16078. 

  16078.         # A[1] * B[0]
    16079. 

  16079.         mulxq	8(%rsi), %rcx, %rax
    16080. 

  16080.         xorq	%r15, %r15
    16081. 

  16081.         adcxq	%rcx, %r9
    16082. 

  16082.         # A[1] * B[3]
    16083. 

  16083.         movq	24(%rbx), %rdx
    16084. 

  16084.         mulxq	8(%rsi), %r12, %r13
    16085. 

  16085.         adcxq	%rax, %r10
    16086. 

  16086.         # A[0] * B[1]
    16087. 

  16087.         movq	8(%rbx), %rdx
    16088. 

  16088.         mulxq	(%rsi), %rcx, %rax
    16089. 

  16089.         adoxq	%rcx, %r9
    16090. 

  16090.         # A[2] * B[1]
    16091. 

  16091.         mulxq	16(%rsi), %rcx, %r14
    16092. 

  16092.         adoxq	%rax, %r10
    16093. 

  16093.         adcxq	%rcx, %r11
    16094. 

  16094.         # A[1] * B[2]
    16095. 

  16095.         movq	16(%rbx), %rdx
    16096. 

  16096.         mulxq	8(%rsi), %rcx, %rax
    16097. 

  16097.         adcxq	%r14, %r12
    16098. 

  16098.         adoxq	%rcx, %r11
    16099. 

  16099.         adcxq	%r15, %r13
    16100. 

  16100.         adoxq	%rax, %r12
    16101. 

  16101.         # A[0] * B[2]
    16102. 

  16102.         mulxq	(%rsi), %rcx, %rax
    16103. 

  16103.         adoxq	%r15, %r13
    16104. 

  16104.         xorq	%r14, %r14
    16105. 

  16105.         adcxq	%rcx, %r10
    16106. 

  16106.         # A[1] * B[1]
    16107. 

  16107.         movq	8(%rbx), %rdx
    16108. 

  16108.         mulxq	8(%rsi), %rdx, %rcx
    16109. 

  16109.         adcxq	%rax, %r11
    16110. 

  16110.         adoxq	%rdx, %r10
    16111. 

  16111.         # A[3] * B[1]
    16112. 

  16112.         movq	8(%rbx), %rdx
    16113. 

  16113.         adoxq	%rcx, %r11
    16114. 

  16114.         mulxq	24(%rsi), %rcx, %rax
    16115. 

  16115.         adcxq	%rcx, %r12
    16116. 

  16116.         # A[2] * B[2]
    16117. 

  16117.         movq	16(%rbx), %rdx
    16118. 

  16118.         mulxq	16(%rsi), %rdx, %rcx
    16119. 

  16119.         adcxq	%rax, %r13
    16120. 

  16120.         adoxq	%rdx, %r12
    16121. 

  16121.         # A[3] * B[3]
    16122. 

  16122.         movq	24(%rbx), %rdx
    16123. 

  16123.         adoxq	%rcx, %r13
    16124. 

  16124.         mulxq	24(%rsi), %rcx, %rax
    16125. 

  16125.         adoxq	%r15, %r14
    16126. 

  16126.         adcxq	%rcx, %r14
    16127. 

  16127.         # A[0] * B[3]
    16128. 

  16128.         mulxq	(%rsi), %rdx, %rcx
    16129. 

  16129.         adcxq	%rax, %r15
    16130. 

  16130.         xorq	%rax, %rax
    16131. 

  16131.         adcxq	%rdx, %r11
    16132. 

  16132.         # A[3] * B[0]
    16133. 

  16133.         movq	(%rbx), %rdx
    16134. 

  16134.         adcxq	%rcx, %r12
    16135. 

  16135.         mulxq	24(%rsi), %rdx, %rcx
    16136. 

  16136.         adoxq	%rdx, %r11
    16137. 

  16137.         adoxq	%rcx, %r12
    16138. 

  16138.         # A[2] * B[3]
    16139. 

  16139.         movq	24(%rbx), %rdx
    16140. 

  16140.         mulxq	16(%rsi), %rdx, %rcx
    16141. 

  16141.         adcxq	%rdx, %r13
    16142. 

  16142.         # A[3] * B[2]
    16143. 

  16143.         movq	16(%rbx), %rdx
    16144. 

  16144.         adcxq	%rcx, %r14
    16145. 

  16145.         mulxq	24(%rsi), %rcx, %rdx
    16146. 

  16146.         adcxq	%rax, %r15
    16147. 

  16147.         adoxq	%rcx, %r13
    16148. 

  16148.         adoxq	%rdx, %r14
    16149. 

  16149.         adoxq	%rax, %r15
    16150. 

  16150.         # Reduce
    16151. 

  16151.         movq	$0x7fffffffffffffff, %rax
    16152. 

  16152.         #  Move top half into t4-t7 and remove top bit from t3
    16153. 

  16153.         shldq	$0x01, %r14, %r15
    16154. 

  16154.         shldq	$0x01, %r13, %r14
    16155. 

  16155.         shldq	$0x01, %r12, %r13
    16156. 

  16156.         shldq	$0x01, %r11, %r12
    16157. 

  16157.         andq	%rax, %r11
    16158. 

  16158.         #  Multiply top half by 19
    16159. 

  16159.         movq	$19, %rdx
    16160. 

  16160.         xorq	%rax, %rax
    16161. 

  16161.         mulxq	%r12, %rcx, %r12
    16162. 

  16162.         adcxq	%rcx, %r8
    16163. 

  16163.         adoxq	%r12, %r9
    16164. 

  16164.         mulxq	%r13, %rcx, %r13
    16165. 

  16165.         adcxq	%rcx, %r9
    16166. 

  16166.         adoxq	%r13, %r10
    16167. 

  16167.         mulxq	%r14, %rcx, %r14
    16168. 

  16168.         adcxq	%rcx, %r10
    16169. 

  16169.         adoxq	%r14, %r11
    16170. 

  16170.         mulxq	%r15, %r15, %rdx
    16171. 

  16171.         adcxq	%r15, %r11
    16172. 

  16172.         adoxq	%rax, %rdx
    16173. 

  16173.         adcxq	%rax, %rdx
    16174. 

  16174.         #  Overflow
    16175. 

  16175.         shldq	$0x01, %r11, %rdx
    16176. 

  16176.         movq	$0x7fffffffffffffff, %rax
    16177. 

  16177.         imulq	$19, %rdx, %rcx
    16178. 

  16178.         andq	%rax, %r11
    16179. 

  16179.         addq	%rcx, %r8
    16180. 

  16180.         adcq	$0x00, %r9
    16181. 

  16181.         adcq	$0x00, %r10
    16182. 

  16182.         adcq	$0x00, %r11
    16183. 

  16183.         # Reduce if top bit set
    16184. 

  16184.         movq	%r11, %rdx
    16185. 

  16185.         sarq	$63, %rdx
    16186. 

  16186.         andq	$19, %rdx
    16187. 

  16187.         andq	%rax, %r11
    16188. 

  16188.         addq	%rdx, %r8
    16189. 

  16189.         adcq	$0x00, %r9
    16190. 

  16190.         adcq	$0x00, %r10
    16191. 

  16191.         adcq	$0x00, %r11
    16192. 

  16192.         # Store
    16193. 

  16193.         movq	%r8, (%rsi)
    16194. 

  16194.         movq	%r9, 8(%rsi)
    16195. 

  16195.         movq	%r10, 16(%rsi)
    16196. 

  16196.         movq	%r11, 24(%rsi)
    16197. 

  16197.         movq	24(%rsp), %rsi
    16198. 

  16198.         movq	160(%rsp), %rbx
    16199. 

  16199.         movq	144(%rsp), %rbp
    16200. 

  16200.         # Multiply
    16201. 

  16201.         # A[0] * B[0]
    16202. 

  16202.         movq	(%rbp), %rdx
    16203. 

  16203.         mulxq	(%rbx), %r8, %r9
    16204. 

  16204.         # A[2] * B[0]
    16205. 

  16205.         mulxq	16(%rbx), %r10, %r11
    16206. 

  16206.         # A[1] * B[0]
    16207. 

  16207.         mulxq	8(%rbx), %rcx, %rax
    16208. 

  16208.         xorq	%r15, %r15
    16209. 

  16209.         adcxq	%rcx, %r9
    16210. 

  16210.         # A[1] * B[3]
    16211. 

  16211.         movq	24(%rbp), %rdx
    16212. 

  16212.         mulxq	8(%rbx), %r12, %r13
    16213. 

  16213.         adcxq	%rax, %r10
    16214. 

  16214.         # A[0] * B[1]
    16215. 

  16215.         movq	8(%rbp), %rdx
    16216. 

  16216.         mulxq	(%rbx), %rcx, %rax
    16217. 

  16217.         adoxq	%rcx, %r9
    16218. 

  16218.         # A[2] * B[1]
    16219. 

  16219.         mulxq	16(%rbx), %rcx, %r14
    16220. 

  16220.         adoxq	%rax, %r10
    16221. 

  16221.         adcxq	%rcx, %r11
    16222. 

  16222.         # A[1] * B[2]
    16223. 

  16223.         movq	16(%rbp), %rdx
    16224. 

  16224.         mulxq	8(%rbx), %rcx, %rax
    16225. 

  16225.         adcxq	%r14, %r12
    16226. 

  16226.         adoxq	%rcx, %r11
    16227. 

  16227.         adcxq	%r15, %r13
    16228. 

  16228.         adoxq	%rax, %r12
    16229. 

  16229.         # A[0] * B[2]
    16230. 

  16230.         mulxq	(%rbx), %rcx, %rax
    16231. 

  16231.         adoxq	%r15, %r13
    16232. 

  16232.         xorq	%r14, %r14
    16233. 

  16233.         adcxq	%rcx, %r10
    16234. 

  16234.         # A[1] * B[1]
    16235. 

  16235.         movq	8(%rbp), %rdx
    16236. 

  16236.         mulxq	8(%rbx), %rdx, %rcx
    16237. 

  16237.         adcxq	%rax, %r11
    16238. 

  16238.         adoxq	%rdx, %r10
    16239. 

  16239.         # A[3] * B[1]
    16240. 

  16240.         movq	8(%rbp), %rdx
    16241. 

  16241.         adoxq	%rcx, %r11
    16242. 

  16242.         mulxq	24(%rbx), %rcx, %rax
    16243. 

  16243.         adcxq	%rcx, %r12
    16244. 

  16244.         # A[2] * B[2]
    16245. 

  16245.         movq	16(%rbp), %rdx
    16246. 

  16246.         mulxq	16(%rbx), %rdx, %rcx
    16247. 

  16247.         adcxq	%rax, %r13
    16248. 

  16248.         adoxq	%rdx, %r12
    16249. 

  16249.         # A[3] * B[3]
    16250. 

  16250.         movq	24(%rbp), %rdx
    16251. 

  16251.         adoxq	%rcx, %r13
    16252. 

  16252.         mulxq	24(%rbx), %rcx, %rax
    16253. 

  16253.         adoxq	%r15, %r14
    16254. 

  16254.         adcxq	%rcx, %r14
    16255. 

  16255.         # A[0] * B[3]
    16256. 

  16256.         mulxq	(%rbx), %rdx, %rcx
    16257. 

  16257.         adcxq	%rax, %r15
    16258. 

  16258.         xorq	%rax, %rax
    16259. 

  16259.         adcxq	%rdx, %r11
    16260. 

  16260.         # A[3] * B[0]
    16261. 

  16261.         movq	(%rbp), %rdx
    16262. 

  16262.         adcxq	%rcx, %r12
    16263. 

  16263.         mulxq	24(%rbx), %rdx, %rcx
    16264. 

  16264.         adoxq	%rdx, %r11
    16265. 

  16265.         adoxq	%rcx, %r12
    16266. 

  16266.         # A[2] * B[3]
    16267. 

  16267.         movq	24(%rbp), %rdx
    16268. 

  16268.         mulxq	16(%rbx), %rdx, %rcx
    16269. 

  16269.         adcxq	%rdx, %r13
    16270. 

  16270.         # A[3] * B[2]
    16271. 

  16271.         movq	16(%rbp), %rdx
    16272. 

  16272.         adcxq	%rcx, %r14
    16273. 

  16273.         mulxq	24(%rbx), %rcx, %rdx
    16274. 

  16274.         adcxq	%rax, %r15
    16275. 

  16275.         adoxq	%rcx, %r13
    16276. 

  16276.         adoxq	%rdx, %r14
    16277. 

  16277.         adoxq	%rax, %r15
    16278. 

  16278.         # Reduce
    16279. 

  16279.         movq	$0x7fffffffffffffff, %rax
    16280. 

  16280.         #  Move top half into t4-t7 and remove top bit from t3
    16281. 

  16281.         shldq	$0x01, %r14, %r15
    16282. 

  16282.         shldq	$0x01, %r13, %r14
    16283. 

  16283.         shldq	$0x01, %r12, %r13
    16284. 

  16284.         shldq	$0x01, %r11, %r12
    16285. 

  16285.         andq	%rax, %r11
    16286. 

  16286.         #  Multiply top half by 19
    16287. 

  16287.         movq	$19, %rdx
    16288. 

  16288.         xorq	%rax, %rax
    16289. 

  16289.         mulxq	%r12, %rcx, %r12
    16290. 

  16290.         adcxq	%rcx, %r8
    16291. 

  16291.         adoxq	%r12, %r9
    16292. 

  16292.         mulxq	%r13, %rcx, %r13
    16293. 

  16293.         adcxq	%rcx, %r9
    16294. 

  16294.         adoxq	%r13, %r10
    16295. 

  16295.         mulxq	%r14, %rcx, %r14
    16296. 

  16296.         adcxq	%rcx, %r10
    16297. 

  16297.         adoxq	%r14, %r11
    16298. 

  16298.         mulxq	%r15, %r15, %rdx
    16299. 

  16299.         adcxq	%r15, %r11
    16300. 

  16300.         adoxq	%rax, %rdx
    16301. 

  16301.         adcxq	%rax, %rdx
    16302. 

  16302.         #  Overflow
    16303. 

  16303.         shldq	$0x01, %r11, %rdx
    16304. 

  16304.         movq	$0x7fffffffffffffff, %rax
    16305. 

  16305.         imulq	$19, %rdx, %rcx
    16306. 

  16306.         andq	%rax, %r11
    16307. 

  16307.         addq	%rcx, %r8
    16308. 

  16308.         adcq	$0x00, %r9
    16309. 

  16309.         adcq	$0x00, %r10
    16310. 

  16310.         adcq	$0x00, %r11
    16311. 

  16311.         # Reduce if top bit set
    16312. 

  16312.         movq	%r11, %rdx
    16313. 

  16313.         sarq	$63, %rdx
    16314. 

  16314.         andq	$19, %rdx
    16315. 

  16315.         andq	%rax, %r11
    16316. 

  16316.         addq	%rdx, %r8
    16317. 

  16317.         adcq	$0x00, %r9
    16318. 

  16318.         adcq	$0x00, %r10
    16319. 

  16319.         adcq	$0x00, %r11
    16320. 

  16320.         # Store
    16321. 

  16321.         movq	%r8, (%rsi)
    16322. 

  16322.         movq	%r9, 8(%rsi)
    16323. 

  16323.         movq	%r10, 16(%rsi)
    16324. 

  16324.         movq	%r11, 24(%rsi)
    16325. 

  16325.         movq	136(%rsp), %rsi
    16326. 

  16326.         movq	152(%rsp), %rbx
    16327. 

  16327.         # Multiply
    16328. 

  16328.         # A[0] * B[0]
    16329. 

  16329.         movq	(%rbx), %rdx
    16330. 

  16330.         mulxq	(%rsi), %r8, %r9
    16331. 

  16331.         # A[2] * B[0]
    16332. 

  16332.         mulxq	16(%rsi), %r10, %r11
    16333. 

  16333.         # A[1] * B[0]
    16334. 

  16334.         mulxq	8(%rsi), %rcx, %rax
    16335. 

  16335.         xorq	%r15, %r15
    16336. 

  16336.         adcxq	%rcx, %r9
    16337. 

  16337.         # A[1] * B[3]
    16338. 

  16338.         movq	24(%rbx), %rdx
    16339. 

  16339.         mulxq	8(%rsi), %r12, %r13
    16340. 

  16340.         adcxq	%rax, %r10
    16341. 

  16341.         # A[0] * B[1]
    16342. 

  16342.         movq	8(%rbx), %rdx
    16343. 

  16343.         mulxq	(%rsi), %rcx, %rax
    16344. 

  16344.         adoxq	%rcx, %r9
    16345. 

  16345.         # A[2] * B[1]
    16346. 

  16346.         mulxq	16(%rsi), %rcx, %r14
    16347. 

  16347.         adoxq	%rax, %r10
    16348. 

  16348.         adcxq	%rcx, %r11
    16349. 

  16349.         # A[1] * B[2]
    16350. 

  16350.         movq	16(%rbx), %rdx
    16351. 

  16351.         mulxq	8(%rsi), %rcx, %rax
    16352. 

  16352.         adcxq	%r14, %r12
    16353. 

  16353.         adoxq	%rcx, %r11
    16354. 

  16354.         adcxq	%r15, %r13
    16355. 

  16355.         adoxq	%rax, %r12
    16356. 

  16356.         # A[0] * B[2]
    16357. 

  16357.         mulxq	(%rsi), %rcx, %rax
    16358. 

  16358.         adoxq	%r15, %r13
    16359. 

  16359.         xorq	%r14, %r14
    16360. 

  16360.         adcxq	%rcx, %r10
    16361. 

  16361.         # A[1] * B[1]
    16362. 

  16362.         movq	8(%rbx), %rdx
    16363. 

  16363.         mulxq	8(%rsi), %rdx, %rcx
    16364. 

  16364.         adcxq	%rax, %r11
    16365. 

  16365.         adoxq	%rdx, %r10
    16366. 

  16366.         # A[3] * B[1]
    16367. 

  16367.         movq	8(%rbx), %rdx
    16368. 

  16368.         adoxq	%rcx, %r11
    16369. 

  16369.         mulxq	24(%rsi), %rcx, %rax
    16370. 

  16370.         adcxq	%rcx, %r12
    16371. 

  16371.         # A[2] * B[2]
    16372. 

  16372.         movq	16(%rbx), %rdx
    16373. 

  16373.         mulxq	16(%rsi), %rdx, %rcx
    16374. 

  16374.         adcxq	%rax, %r13
    16375. 

  16375.         adoxq	%rdx, %r12
    16376. 

  16376.         # A[3] * B[3]
    16377. 

  16377.         movq	24(%rbx), %rdx
    16378. 

  16378.         adoxq	%rcx, %r13
    16379. 

  16379.         mulxq	24(%rsi), %rcx, %rax
    16380. 

  16380.         adoxq	%r15, %r14
    16381. 

  16381.         adcxq	%rcx, %r14
    16382. 

  16382.         # A[0] * B[3]
    16383. 

  16383.         mulxq	(%rsi), %rdx, %rcx
    16384. 

  16384.         adcxq	%rax, %r15
    16385. 

  16385.         xorq	%rax, %rax
    16386. 

  16386.         adcxq	%rdx, %r11
    16387. 

  16387.         # A[3] * B[0]
    16388. 

  16388.         movq	(%rbx), %rdx
    16389. 

  16389.         adcxq	%rcx, %r12
    16390. 

  16390.         mulxq	24(%rsi), %rdx, %rcx
    16391. 

  16391.         adoxq	%rdx, %r11
    16392. 

  16392.         adoxq	%rcx, %r12
    16393. 

  16393.         # A[2] * B[3]
    16394. 

  16394.         movq	24(%rbx), %rdx
    16395. 

  16395.         mulxq	16(%rsi), %rdx, %rcx
    16396. 

  16396.         adcxq	%rdx, %r13
    16397. 

  16397.         # A[3] * B[2]
    16398. 

  16398.         movq	16(%rbx), %rdx
    16399. 

  16399.         adcxq	%rcx, %r14
    16400. 

  16400.         mulxq	24(%rsi), %rcx, %rdx
    16401. 

  16401.         adcxq	%rax, %r15
    16402. 

  16402.         adoxq	%rcx, %r13
    16403. 

  16403.         adoxq	%rdx, %r14
    16404. 

  16404.         adoxq	%rax, %r15
    16405. 

  16405.         # Reduce
    16406. 

  16406.         movq	$0x7fffffffffffffff, %rax
    16407. 

  16407.         #  Move top half into t4-t7 and remove top bit from t3
    16408. 

  16408.         shldq	$0x01, %r14, %r15
    16409. 

  16409.         shldq	$0x01, %r13, %r14
    16410. 

  16410.         shldq	$0x01, %r12, %r13
    16411. 

  16411.         shldq	$0x01, %r11, %r12
    16412. 

  16412.         andq	%rax, %r11
    16413. 

  16413.         #  Multiply top half by 19
    16414. 

  16414.         movq	$19, %rdx
    16415. 

  16415.         xorq	%rax, %rax
    16416. 

  16416.         mulxq	%r12, %rcx, %r12
    16417. 

  16417.         adcxq	%rcx, %r8
    16418. 

  16418.         adoxq	%r12, %r9
    16419. 

  16419.         mulxq	%r13, %rcx, %r13
    16420. 

  16420.         adcxq	%rcx, %r9
    16421. 

  16421.         adoxq	%r13, %r10
    16422. 

  16422.         mulxq	%r14, %rcx, %r14
    16423. 

  16423.         adcxq	%rcx, %r10
    16424. 

  16424.         adoxq	%r14, %r11
    16425. 

  16425.         mulxq	%r15, %r15, %rdx
    16426. 

  16426.         adcxq	%r15, %r11
    16427. 

  16427.         adoxq	%rax, %rdx
    16428. 

  16428.         adcxq	%rax, %rdx
    16429. 

  16429.         #  Overflow
    16430. 

  16430.         shldq	$0x01, %r11, %rdx
    16431. 

  16431.         movq	$0x7fffffffffffffff, %rax
    16432. 

  16432.         imulq	$19, %rdx, %rcx
    16433. 

  16433.         andq	%rax, %r11
    16434. 

  16434.         addq	%rcx, %r8
    16435. 

  16435.         adcq	$0x00, %r9
    16436. 

  16436.         adcq	$0x00, %r10
    16437. 

  16437.         adcq	$0x00, %r11
    16438. 

  16438.         # Reduce if top bit set
    16439. 

  16439.         movq	%r11, %rdx
    16440. 

  16440.         sarq	$63, %rdx
    16441. 

  16441.         andq	$19, %rdx
    16442. 

  16442.         andq	%rax, %r11
    16443. 

  16443.         addq	%rdx, %r8
    16444. 

  16444.         adcq	$0x00, %r9
    16445. 

  16445.         adcq	$0x00, %r10
    16446. 

  16446.         adcq	$0x00, %r11
    16447. 

  16447.         # Store
    16448. 

  16448.         movq	%r8, (%rdi)
    16449. 

  16449.         movq	%r9, 8(%rdi)
    16450. 

  16450.         movq	%r10, 16(%rdi)
    16451. 

  16451.         movq	%r11, 24(%rdi)
    16452. 

  16452.         leaq	48(%rsp), %rsi
    16453. 

  16453.         # Double
    16454. 

  16454.         movq	(%rdi), %r8
    16455. 

  16455.         movq	8(%rdi), %r9
    16456. 

  16456.         addq	%r8, %r8
    16457. 

  16457.         movq	16(%rdi), %r10
    16458. 

  16458.         adcq	%r9, %r9
    16459. 

  16459.         movq	24(%rdi), %rdx
    16460. 

  16460.         adcq	%r10, %r10
    16461. 

  16461.         movq	$-19, %rcx
    16462. 

  16462.         adcq	%rdx, %rdx
    16463. 

  16463.         movq	$0x7fffffffffffffff, %rax
    16464. 

  16464.         movq	%rdx, %r11
    16465. 

  16465.         sarq	$63, %rdx
    16466. 

  16466.         #   Mask the modulus
    16467. 

  16467.         andq	%rdx, %rcx
    16468. 

  16468.         andq	%rdx, %rax
    16469. 

  16469.         #   Sub modulus (if overflow)
    16470. 

  16470.         subq	%rcx, %r8
    16471. 

  16471.         sbbq	%rdx, %r9
    16472. 

  16472.         sbbq	%rdx, %r10
    16473. 

  16473.         sbbq	%rax, %r11
    16474. 

  16474.         movq	%r8, (%rsi)
    16475. 

  16475.         movq	%r9, 8(%rsi)
    16476. 

  16476.         movq	%r10, 16(%rsi)
    16477. 

  16477.         movq	%r11, 24(%rsi)
    16478. 

  16478.         movq	8(%rsp), %rbx
    16479. 

  16479.         movq	16(%rsp), %rbp
    16480. 

  16480.         # Add
    16481. 

  16481.         movq	(%rbp), %r8
    16482. 

  16482.         movq	8(%rbp), %r9
    16483. 

  16483.         movq	16(%rbp), %r10
    16484. 

  16484.         movq	24(%rbp), %rdx
    16485. 

  16485.         movq	%r8, %r12
    16486. 

  16486.         addq	(%rbx), %r8
    16487. 

  16487.         movq	%r9, %r13
    16488. 

  16488.         adcq	8(%rbx), %r9
    16489. 

  16489.         movq	%r10, %r14
    16490. 

  16490.         adcq	16(%rbx), %r10
    16491. 

  16491.         movq	%rdx, %r15
    16492. 

  16492.         adcq	24(%rbx), %rdx
    16493. 

  16493.         movq	$-19, %rcx
    16494. 

  16494.         movq	%rdx, %r11
    16495. 

  16495.         movq	$0x7fffffffffffffff, %rax
    16496. 

  16496.         sarq	$63, %rdx
    16497. 

  16497.         #   Mask the modulus
    16498. 

  16498.         andq	%rdx, %rcx
    16499. 

  16499.         andq	%rdx, %rax
    16500. 

  16500.         #   Sub modulus (if overflow)
    16501. 

  16501.         subq	%rcx, %r8
    16502. 

  16502.         sbbq	%rdx, %r9
    16503. 

  16503.         sbbq	%rdx, %r10
    16504. 

  16504.         sbbq	%rax, %r11
    16505. 

  16505.         # Sub
    16506. 

  16506.         subq	(%rbx), %r12
    16507. 

  16507.         movq	$0x00, %rdx
    16508. 

  16508.         sbbq	8(%rbx), %r13
    16509. 

  16509.         movq	$-19, %rcx
    16510. 

  16510.         sbbq	16(%rbx), %r14
    16511. 

  16511.         movq	$0x7fffffffffffffff, %rax
    16512. 

  16512.         sbbq	24(%rbx), %r15
    16513. 

  16513.         sbbq	$0x00, %rdx
    16514. 

  16514.         #   Mask the modulus
    16515. 

  16515.         andq	%rdx, %rcx
    16516. 

  16516.         andq	%rdx, %rax
    16517. 

  16517.         #   Add modulus (if underflow)
    16518. 

  16518.         addq	%rcx, %r12
    16519. 

  16519.         adcq	%rdx, %r13
    16520. 

  16520.         adcq	%rdx, %r14
    16521. 

  16521.         adcq	%rax, %r15
    16522. 

  16522.         movq	%r8, (%rbx)
    16523. 

  16523.         movq	%r9, 8(%rbx)
    16524. 

  16524.         movq	%r10, 16(%rbx)
    16525. 

  16525.         movq	%r11, 24(%rbx)
    16526. 

  16526.         movq	%r12, (%rdi)
    16527. 

  16527.         movq	%r13, 8(%rdi)
    16528. 

  16528.         movq	%r14, 16(%rdi)
    16529. 

  16529.         movq	%r15, 24(%rdi)
    16530. 

  16530.         movq	24(%rsp), %rdi
    16531. 

  16531.         # Add
    16532. 

  16532.         movq	(%rsi), %r8
    16533. 

  16533.         movq	8(%rsi), %r9
    16534. 

  16534.         movq	16(%rsi), %r10
    16535. 

  16535.         movq	24(%rsi), %rdx
    16536. 

  16536.         movq	%r8, %r12
    16537. 

  16537.         addq	(%rdi), %r8
    16538. 

  16538.         movq	%r9, %r13
    16539. 

  16539.         adcq	8(%rdi), %r9
    16540. 

  16540.         movq	%r10, %r14
    16541. 

  16541.         adcq	16(%rdi), %r10
    16542. 

  16542.         movq	%rdx, %r15
    16543. 

  16543.         adcq	24(%rdi), %rdx
    16544. 

  16544.         movq	$-19, %rcx
    16545. 

  16545.         movq	%rdx, %r11
    16546. 

  16546.         movq	$0x7fffffffffffffff, %rax
    16547. 

  16547.         sarq	$63, %rdx
    16548. 

  16548.         #   Mask the modulus
    16549. 

  16549.         andq	%rdx, %rcx
    16550. 

  16550.         andq	%rdx, %rax
    16551. 

  16551.         #   Sub modulus (if overflow)
    16552. 

  16552.         subq	%rcx, %r8
    16553. 

  16553.         sbbq	%rdx, %r9
    16554. 

  16554.         sbbq	%rdx, %r10
    16555. 

  16555.         sbbq	%rax, %r11
    16556. 

  16556.         # Sub
    16557. 

  16557.         subq	(%rdi), %r12
    16558. 

  16558.         movq	$0x00, %rdx
    16559. 

  16559.         sbbq	8(%rdi), %r13
    16560. 

  16560.         movq	$-19, %rcx
    16561. 

  16561.         sbbq	16(%rdi), %r14
    16562. 

  16562.         movq	$0x7fffffffffffffff, %rax
    16563. 

  16563.         sbbq	24(%rdi), %r15
    16564. 

  16564.         sbbq	$0x00, %rdx
    16565. 

  16565.         #   Mask the modulus
    16566. 

  16566.         andq	%rdx, %rcx
    16567. 

  16567.         andq	%rdx, %rax
    16568. 

  16568.         #   Add modulus (if underflow)
    16569. 

  16569.         addq	%rcx, %r12
    16570. 

  16570.         adcq	%rdx, %r13
    16571. 

  16571.         adcq	%rdx, %r14
    16572. 

  16572.         adcq	%rax, %r15
    16573. 

  16573.         movq	%r8, (%rdi)
    16574. 

  16574.         movq	%r9, 8(%rdi)
    16575. 

  16575.         movq	%r10, 16(%rdi)
    16576. 

  16576.         movq	%r11, 24(%rdi)
    16577. 

  16577.         movq	%r12, (%rbp)
    16578. 

  16578.         movq	%r13, 8(%rbp)
    16579. 

  16579.         movq	%r14, 16(%rbp)
    16580. 

  16580.         movq	%r15, 24(%rbp)
    16581. 

  16581.         addq	$0x50, %rsp
    16582. 

  16582.         popq	%r15
    16583. 

  16583.         popq	%r14
    16584. 

  16584.         popq	%r13
    16585. 

  16585.         popq	%r12
    16586. 

  16586.         popq	%rbp
    16587. 

  16587.         popq	%rbx
    16588. 

  16588.         repz retq
    16589. 

  16589. #ifndef __APPLE__
    16590. 

  16590. .size	fe_ge_sub_avx2,.-fe_ge_sub_avx2
    16591. 

  16591. #endif /* __APPLE__ */
    16592. 

  16592. #endif /* HAVE_INTEL_AVX2 */
    16593. 

  16593. 

  16594. #if defined(__linux__) && defined(__ELF__)
    16595. 

  16595. .section	.note.GNU-stack,"",%progbits
    16596. 

  16596. #endif
    16597.