From 48809d4e85c125814425c621d8d0d89f95405924 Mon Sep 17 00:00:00 2001
From: Jeffrey Walton <noloader@gmail.com>
Date: Thu, 5 Nov 2015 01:59:46 -0500
Subject: CRYPTOPP 5.6.3 RC6 checkin

---
 rdrand.asm | 573 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 573 insertions(+)
 create mode 100644 rdrand.asm

(limited to 'rdrand.asm')

diff --git a/rdrand.asm b/rdrand.asm
new file mode 100644
index 00000000..ecb19ae4
--- /dev/null
+++ b/rdrand.asm
@@ -0,0 +1,573 @@
+;; rdrand.asm - written and placed in public domain by Jeffrey Walton and Uri Blumenthal.
+;;              Copyright assigned to the Crypto++ project.
+
+;; This ASM file exists for one reason only - to emit the RDRAND instruction for Microsoft platforms.
+;; We can't call RDRAND directly on some versions of the toolchain (prior to CL 17.00/VS2012).
+;; Additionally, Microsoft/Intel penalizes AMD CPUs with the feature. To avoid these troubles, we
+;; provide the ASM and emit the opcodes for RDRAND by hand.
+
+;; set ASFLAGS=/nologo /D_M_X86 /W3 /Cx /Zi /safeseh
+;; set ASFLAGS64=/nologo /D_M_X64 /W3 /Cx /Zi
+;; "C:\Program Files (x86)\Microsoft Visual Studio 11.0\VC\bin\ml.exe" %ASFLAGS% /Fo rdrand-x86.obj /c rdrand.asm
+;; "C:\Program Files (x86)\Microsoft Visual Studio 11.0\VC\bin\amd64\ml64.exe" %ASFLAGS64% /Fo rdrand-x64.obj /c rdrand.asm
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+TITLE    MSC_RRA_GenerateBlock and MSC_RSA_GenerateBlock
+SUBTITLE Microsoft specific ASM code to utilize RDRAND and RDSEED for down level Microsoft toolchains
+
+PUBLIC MSC_RRA_GenerateBlock
+PUBLIC MSC_RSA_GenerateBlock
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+;; Naming convention used in rdrand.{h|cpp|asm}
+;;   MSC = Microsoft Compiler (and compatibles)
+;;   GCC = GNU Compiler (and compatibles)
+;;   RRA = RDRAND, Assembly
+;;   RSA = RDSEED, Assembly
+;;   RRI = RDRAND, Intrinsic
+;;   RSA = RDSEED, Intrinsic
+
+;;  Caller/Callee Saved Registers
+;;    https://msdn.microsoft.com/en-us/library/6t169e9c.aspx
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+;; C/C++ Function prototypes
+;;   X86:
+;;      extern "C" int MSC_RRA_GenerateBlock(byte* ptr, size_t size, unsigned int safety);
+;;   X64:
+;;      extern "C" int __fastcall MSC_RRA_GenerateBlock(byte* ptr, size_t size, unsigned int safety);
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+;; Return values
+RDRAND_SUCCESS EQU 1
+RDRAND_FAILURE EQU 0
+
+RDSEED_SUCCESS EQU 1
+RDSEED_FAILURE EQU 0
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+IFDEF _M_X86    ;; Set via the command line
+
+.486
+.MODEL FLAT
+
+ENDIF
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+IFDEF _M_X86    ;; Set via the command line
+
+.CODE
+ALIGN   8
+OPTION LANGUAGE:C
+OPTION PROLOGUE:NONE
+OPTION EPILOGUE:NONE
+
+;; Base relative (in): arg1, byte* buffer
+;; Base relative (in): arg2, size_t bsize
+;; Base relative (in): arg3, unsigned int safety
+;; EAX (out): success (1), failure (0)
+
+;; MSC_RRA_GenerateBlock PROC USES ecx edx edi arg1:DWORD,arg2:DWORD,arg3:DWORD
+MSC_RRA_GenerateBlock PROC arg1:DWORD,arg2:DWORD,arg3:DWORD
+
+	MWSIZE EQU 04h    ;; machine word size
+	buffer EQU edi
+	bsize  EQU edx
+	safety EQU ecx
+
+Load_Arguments:
+
+	mov		buffer, arg1
+	mov		bsize,  arg2
+	mov		safety, arg3
+
+Validate_Pointer:
+
+	cmp 	buffer, 0
+	je 		GenerateBlock_PreRet
+
+			;; Top of While loop
+GenerateBlock_Top:
+
+			;; Check remaining size
+	cmp 	bsize, 0
+	je		GenerateBlock_Success
+
+Call_RDRAND_EAX:
+			;; RDRAND is not available prior to VS2012. Just emit
+			;;   the byte codes using DB. This is `rdrand eax`.
+	DB 0Fh, 0C7h, 0F0h
+	
+			;; If CF=1, the number returned by RDRAND is valid.
+			;; If CF=0, a random number was not available.
+	jc 		RDRAND_succeeded
+
+RDRAND_failed:
+
+			;; Exit if we've reached the limit
+	cmp		safety, 0
+	je		GenerateBlock_Failure
+
+	dec 	safety
+	jmp		GenerateBlock_Top
+
+RDRAND_succeeded:
+
+	cmp		bsize, MWSIZE
+	jb		Partial_Machine_Word
+	
+Full_Machine_Word:
+
+	mov		DWORD PTR [buffer], eax
+	add		buffer, MWSIZE		;; No need for Intel Core 2 slow workarounds, like
+	sub		bsize, MWSIZE		;;   `lea buffer,[buffer+MWSIZE]` for faster adds
+	
+			;; Continue
+	jmp		GenerateBlock_Top
+
+			;; 1,2,3 bytes remain
+Partial_Machine_Word:
+
+			;; Test bit 1 to see if size is at least 2
+	test	bsize, 2
+	jz		Bit_1_Not_Set
+
+	mov		WORD PTR [buffer], ax
+	shr		eax, 16
+	add 	buffer, 2
+	
+Bit_1_Not_Set:
+	
+			;; Test bit 0 to see if size is at least 1
+	test	bsize, 1
+	;; jz		Bit_0_Not_Set
+	jz  	GenerateBlock_Success
+
+	mov		BYTE PTR [buffer], al
+
+Bit_0_Not_Set:
+
+			;; We've hit all the bits, set size to 0
+	;; mov 	bsize, 0
+	jmp 	GenerateBlock_Success
+
+GenerateBlock_PreRet:
+
+			;; Test for success (was the request completely fulfilled?)
+	cmp 	bsize, 0
+	je 		GenerateBlock_Success	
+	
+GenerateBlock_Failure:
+
+	mov		eax, RDRAND_FAILURE
+	jmp		GenerateBlock_Ret
+	
+GenerateBlock_Success:
+
+	mov		eax, RDRAND_SUCCESS
+
+GenerateBlock_Ret:
+
+	ret
+
+MSC_RRA_GenerateBlock ENDP
+
+ENDIF    ;; _M_X86
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+IFDEF _M_X64    ;; Set via the command line
+
+.CODE
+ALIGN   16
+OPTION PROLOGUE:NONE
+OPTION EPILOGUE:NONE
+
+;; RCX (in): arg1, byte* buffer
+;; RDX (in): arg2, size_t bsize
+;; R8d (in): arg3, unsigned int safety
+;; RAX (out): success (1), failure (0)
+
+;; MSC_RRA_GenerateBlock PROC USES RCX ;; arg1:QWORD,arg2:QWORD,arg3:DWORD
+MSC_RRA_GenerateBlock PROC ;; arg1:QWORD,arg2:QWORD,arg3:DWORD
+
+	MWSIZE EQU 08h    ;; machine word size
+	buffer EQU rcx
+	bsize  EQU rdx
+	safety EQU r8d
+
+	;; No need for Load_Arguments due to fastcall
+
+Validate_Pointer:
+
+			;; Validate pointer
+	cmp 	buffer, 0
+	je 		GenerateBlock_PreRet
+
+			;; Top of While loop
+GenerateBlock_Top:
+
+			;; Check remaining size
+	cmp 	bsize, 0
+	je		GenerateBlock_Success
+
+Call_RDRAND_RAX:
+			;; RDRAND is not available prior to VS2012. Just emit
+			;;   the byte codes using DB. This is `rdrand rax`.
+	DB 048h, 0Fh, 0C7h, 0F0h
+
+			;; If CF=1, the number returned by RDRAND is valid.
+			;; If CF=0, a random number was not available.
+	jc 		RDRAND_succeeded
+
+RDRAND_failed:
+
+			;; Exit if we've reached the limit
+	cmp		safety, 0
+	je		GenerateBlock_Failure
+
+	dec 	safety
+	jmp		GenerateBlock_Top
+
+RDRAND_succeeded:
+
+	cmp		bsize, MWSIZE
+	jb		Partial_Machine_Word
+	
+Full_Machine_Word:
+
+	mov		QWORD PTR [buffer], rax
+	add		buffer, MWSIZE
+	sub		bsize, MWSIZE
+
+			;; Continue
+	jmp		GenerateBlock_Top
+
+			;; 1,2,3,4,5,6,7 bytes remain
+Partial_Machine_Word:
+
+			;; Test bit 2 to see if size is at least 4
+	test	bsize, 4
+	jz		Bit_2_Not_Set
+
+	mov		DWORD PTR [buffer], eax
+	shr		rax, 32
+	add		buffer, 4
+
+Bit_2_Not_Set:
+
+			;; Test bit 1 to see if size is at least 2
+	test	bsize, 2
+	jz		Bit_1_Not_Set
+
+	mov		WORD PTR [buffer], ax
+	shr		eax, 16
+	add 	buffer, 2
+
+Bit_1_Not_Set:
+
+			;; Test bit 0 to see if size is at least 1
+	test	bsize, 1
+	;; jz		Bit_0_Not_Set
+	jz  	GenerateBlock_Success
+
+	mov		BYTE PTR [buffer], al
+
+Bit_0_Not_Set:
+
+			;; We've hit all the bits, set size to 0
+	;; mov 	bsize, 0
+	jmp		GenerateBlock_Success
+		
+GenerateBlock_PreRet:
+
+			;; Test for success (was the request completely fulfilled?)
+	cmp 	bsize, 0
+	je 		GenerateBlock_Success
+	
+GenerateBlock_Failure:
+
+	mov		rax, RDRAND_FAILURE
+	jmp		GenerateBlock_Ret
+	
+GenerateBlock_Success:
+
+	mov		rax, RDRAND_SUCCESS
+
+GenerateBlock_Ret:
+
+	ret
+
+MSC_RRA_GenerateBlock ENDP
+
+ENDIF    ;; _M_X64
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+IFDEF _M_X86    ;; Set via the command line
+
+.CODE
+ALIGN   8
+OPTION LANGUAGE:C
+OPTION PROLOGUE:NONE
+OPTION EPILOGUE:NONE
+
+;; Base relative (in): arg1, byte* buffer
+;; Base relative (in): arg2, size_t bsize
+;; Base relative (in): arg3, unsigned int safety
+;; EAX (out): success (1), failure (0)
+
+;; MSC_RSA_GenerateBlock PROC USES ecx edx edi arg1:DWORD,arg2:DWORD,arg3:DWORD
+MSC_RSA_GenerateBlock PROC arg1:DWORD,arg2:DWORD,arg3:DWORD
+
+	MWSIZE EQU 04h    ;; machine word size
+	buffer EQU edi
+	bsize  EQU edx
+	safety EQU ecx
+
+Load_Arguments:
+
+	mov		buffer, arg1
+	mov		bsize,  arg2
+	mov		safety, arg3
+
+Validate_Pointer:
+
+	cmp 	buffer, 0
+	je 		GenerateBlock_PreRet
+
+			;; Top of While loop
+GenerateBlock_Top:
+
+			;; Check remaining size
+	cmp 	bsize, 0
+	je		GenerateBlock_Success
+
+Call_RDSEED_EAX:
+			;; RDSEED is not available prior to VS2012. Just emit
+			;;   the byte codes using DB. This is `rdseed eax`.
+	DB 0Fh, 0C7h, 0F8h
+	
+			;; If CF=1, the number returned by RDSEED is valid.
+			;; If CF=0, a random number was not available.
+	jc 		RDSEED_succeeded
+
+RDSEED_failed:
+
+			;; Exit if we've reached the limit
+	cmp		safety, 0
+	je		GenerateBlock_Failure
+
+	dec 	safety
+	jmp		GenerateBlock_Top
+
+RDSEED_succeeded:
+
+	cmp		bsize, MWSIZE
+	jb		Partial_Machine_Word
+	
+Full_Machine_Word:
+
+	mov		DWORD PTR [buffer], eax
+	add		buffer, MWSIZE		;; No need for Intel Core 2 slow workarounds, like
+	sub		bsize, MWSIZE		;;   `lea buffer,[buffer+MWSIZE]` for faster adds
+	
+			;; Continue
+	jmp		GenerateBlock_Top
+
+			;; 1,2,3 bytes remain
+Partial_Machine_Word:
+
+			;; Test bit 1 to see if size is at least 2
+	test	bsize, 2
+	jz		Bit_1_Not_Set
+
+	mov		WORD PTR [buffer], ax
+	shr		eax, 16
+	add 	buffer, 2
+	
+Bit_1_Not_Set:
+	
+			;; Test bit 0 to see if size is at least 1
+	test	bsize, 1
+	;; jz		Bit_0_Not_Set
+	jz  	GenerateBlock_Success
+
+	mov		BYTE PTR [buffer], al
+
+Bit_0_Not_Set:
+
+			;; We've hit all the bits, set size to 0
+	;; mov 	bsize, 0
+	jmp 	GenerateBlock_Success
+
+GenerateBlock_PreRet:
+
+			;; Test for success (was the request completely fulfilled?)
+	cmp 	bsize, 0
+	je 		GenerateBlock_Success	
+	
+GenerateBlock_Failure:
+
+	mov		eax, RDSEED_FAILURE
+	jmp		GenerateBlock_Ret
+	
+GenerateBlock_Success:
+
+	mov		eax, RDSEED_SUCCESS
+
+GenerateBlock_Ret:
+
+	ret
+
+MSC_RSA_GenerateBlock ENDP
+
+ENDIF    ;; _M_X86
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+IFDEF _M_X64    ;; Set via the command line
+
+.CODE
+ALIGN   16
+OPTION PROLOGUE:NONE
+OPTION EPILOGUE:NONE
+
+;; RCX (in): arg1, byte* buffer
+;; RDX (in): arg2, size_t bsize
+;; R8d (in): arg3, unsigned int safety
+;; RAX (out): success (1), failure (0)
+
+;; MSC_RSA_GenerateBlock PROC USES RCX ;; arg1:QWORD,arg2:QWORD,arg3:DWORD
+MSC_RSA_GenerateBlock PROC ;; arg1:QWORD,arg2:QWORD,arg3:DWORD
+
+	MWSIZE EQU 08h    ;; machine word size
+	buffer EQU rcx
+	bsize  EQU rdx
+	safety EQU r8d
+
+	;; No need for Load_Arguments due to fastcall
+
+Validate_Pointer:
+
+			;; Validate pointer
+	cmp 	buffer, 0
+	je 		GenerateBlock_PreRet
+
+			;; Top of While loop
+GenerateBlock_Top:
+
+			;; Check remaining size
+	cmp 	bsize, 0
+	je		GenerateBlock_Success
+
+Call_RDSEED_RAX:
+			;; RDSEED is not available prior to VS2012. Just emit
+			;;   the byte codes using DB. This is `rdseed rax`.
+	DB 048h, 0Fh, 0C7h, 0F8h
+
+			;; If CF=1, the number returned by RDSEED is valid.
+			;; If CF=0, a random number was not available.
+	jc 		RDSEED_succeeded
+
+RDSEED_failed:
+
+			;; Exit if we've reached the limit
+	cmp		safety, 0
+	je		GenerateBlock_Failure
+
+	dec 	safety
+	jmp		GenerateBlock_Top
+
+RDSEED_succeeded:
+
+	cmp		bsize, MWSIZE
+	jb		Partial_Machine_Word
+	
+Full_Machine_Word:
+
+	mov		QWORD PTR [buffer], rax
+	add		buffer, MWSIZE
+	sub		bsize, MWSIZE
+
+			;; Continue
+	jmp		GenerateBlock_Top
+
+			;; 1,2,3,4,5,6,7 bytes remain
+Partial_Machine_Word:
+
+			;; Test bit 2 to see if size is at least 4
+	test	bsize, 4
+	jz		Bit_2_Not_Set
+
+	mov		DWORD PTR [buffer], eax
+	shr		rax, 32
+	add		buffer, 4
+
+Bit_2_Not_Set:
+
+			;; Test bit 1 to see if size is at least 2
+	test	bsize, 2
+	jz		Bit_1_Not_Set
+
+	mov		WORD PTR [buffer], ax
+	shr		eax, 16
+	add 	buffer, 2
+
+Bit_1_Not_Set:
+
+			;; Test bit 0 to see if size is at least 1
+	test	bsize, 1
+	;; jz		Bit_0_Not_Set
+	jz  	GenerateBlock_Success
+
+	mov		BYTE PTR [buffer], al
+
+Bit_0_Not_Set:
+
+			;; We've hit all the bits, set size to 0
+	;; mov 	bsize, 0
+	jmp		GenerateBlock_Success
+		
+GenerateBlock_PreRet:
+
+			;; Test for success (was the request completely fulfilled?)
+	cmp 	bsize, 0
+	je 		GenerateBlock_Success
+	
+GenerateBlock_Failure:
+
+	mov		rax, RDSEED_FAILURE
+	jmp		GenerateBlock_Ret
+	
+GenerateBlock_Success:
+
+	mov		rax, RDSEED_SUCCESS
+
+GenerateBlock_Ret:
+
+	ret
+
+MSC_RSA_GenerateBlock ENDP
+
+ENDIF    ;; _M_X64
+
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
+
+END
-- 
cgit v1.2.1