aes-modes.S - OpenGrok cross reference for /linux-6.14.4/arch/arm64/crypto/aes-modes.S

Lines Matching +full:carry +full:- +full:less
1 /* SPDX-License-Identifier: GPL-2.0-only */
3  * linux/arch/arm64/crypto/aes-modes.S - chaining mode wrappers for AES
5  * Copyright (C) 2013 - 2017 Linaro Ltd <[email protected]>
8 /* included by aes-ce.S and aes-neon.S */
62 	ld1		{v0.16b-v3.16b}, [x1], #64	/* get 4 pt blocks */
66 	st1		{v0.16b-v3.16b}, [x0], #64
92 	ld1		{v0.16b-v3.16b}, [x1], #64	/* get 4 ct blocks */
96 	st1		{v0.16b-v3.16b}, [x0], #64
130 	mov		w8, #14				/* AES-256: 14 rounds */
143 	ld1		{v0.16b-v3.16b}, [x1], #64	/* get 4 pt blocks */
152 	st1		{v0.16b-v3.16b}, [x0], #64
174 	mov		w8, #14				/* AES-256: 14 rounds */
188 	ld1		{v0.16b-v3.16b}, [x1], #64	/* get 4 ct blocks */
215 	st1		{v0.16b-v3.16b}, [x0], #64
341 	 * the 64-bit counter with the IV.
360 	 * Set up the counter values in v0-v{MAX_STRIDE-1}.
362 	 * If we are encrypting less than MAX_STRIDE blocks, the tail block
364 	 * v{MAX_STRIDE-1}.  For example: if encrypting two blocks with
378 		sub		x6, CTR, #MAX_STRIDE - 1
379 		sub		x7, CTR, #MAX_STRIDE - 2
380 		sub		x8, CTR, #MAX_STRIDE - 3
381 		sub		x9, CTR, #MAX_STRIDE - 4
382 ST5(		sub		x10, CTR, #MAX_STRIDE - 5	)
405 		/* Apply carry to outgoing counter. */
413 		 * Apply carry to counter blocks if needed.
415 		 * Since the carry flag was set, we know 0 <= IV_PART <
438 		sub		x7, IV_PART, #MAX_STRIDE - 1
439 		sub		x8, IV_PART, #MAX_STRIDE - 2
440 		sub		x9, IV_PART, #MAX_STRIDE - 3
445 ST5(		sub		x10, IV_PART, #MAX_STRIDE - 4	)
457 	ld1		{v5.16b-v7.16b}, [IN], #48
463 ST5(	ld1		{v5.16b-v6.16b}, [IN], #32	)
467 	st1		{v0.16b-v3.16b}, [OUT], #64
481 	 * Handle up to MAX_STRIDE * 16 - 1 bytes of plaintext
483 	 * This code expects the last keystream block to be in v{MAX_STRIDE-1}.
496 ST5(	cmp		BYTES_W, #64 - (MAX_STRIDE << 4))
498 	cmp		BYTES_W, #48 - (MAX_STRIDE << 4)
500 	cmp		BYTES_W, #32 - (MAX_STRIDE << 4)
502 	cmp		BYTES_W, #16 - (MAX_STRIDE << 4)
546 	 * encrypting/decrypting less than 16 bytes.
550 	 * This causes unusual behaviour when encrypting/decrypting less than 16
563 	ld1		{v10.16b-v11.16b}, [x9]
592 	 * encrypting/decrypting less than 16 bytes.  Otherwise out of bounds
594 	 * to be at the end of this 16-byte temporary buffer rather than the
607 	 * encrypting/decrypting less than 16 bytes.  Otherwise out of bounds
609 	 * to be at the end of this 16-byte temporary buffer rather than the
659 	ld1		{v0.16b-v3.16b}, [x1], #64	/* get 4 pt blocks */
672 	st1		{v0.16b-v3.16b}, [x0], #64
751 	ld1		{v0.16b-v3.16b}, [x1], #64	/* get 4 ct blocks */
764 	st1		{v0.16b-v3.16b}, [x0], #64
832 	ld1		{v1.16b-v4.16b}, [x0], #64	/* get next pt block */