| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 | #ifndef __PRG_HPP__#define __PRG_HPP__#include <array>#include "bitutils.hpp"#include "aes.hpp"static const struct PRGkey {    AESkey k;    PRGkey(__m128i key) {        AES_128_Key_Expansion(k, key);    }}// Digits of eprgkey(    _mm_set_epi64x(2718281828459045235ULL, 3602874713526624977ULL)),// Digits of pileafprgkeys[3] = {    _mm_set_epi64x(3141592653589793238ULL, 4626433832795028841ULL),    _mm_set_epi64x(9716939937510582097ULL, 4944592307816406286ULL),    _mm_set_epi64x(2089986280348253421ULL, 1706798214808651328ULL)};// Compute one of the children of node seed; whichchild=0 for// the left child, 1 for the right childstatic inline void prg(__m128i &out, __m128i seed, bool whichchild,    size_t &aes_ops){    __m128i in = set_lsb(seed, whichchild);    __m128i mid;    AES_ECB_encrypt(mid, set_lsb(seed, whichchild), prgkey.k, aes_ops);    out = mid ^ in;}// Compute both children of node seedstatic inline void prgboth(__m128i &left, __m128i &right, __m128i seed,    size_t &aes_ops){    __m128i inl = set_lsb(seed, 0);    __m128i inr = set_lsb(seed, 1);    __m128i midl, midr;    AES_ECB_encrypt(midl, inl, prgkey.k, aes_ops);    AES_ECB_encrypt(midr, inr, prgkey.k, aes_ops);    left = midl ^ inl;    right = midr ^ inr;}// Compute one of the leaf children of node seed; whichchild=0 for// the left child, 1 for the right childtemplate <size_t LWIDTH>static inline void prg(std::array<__m128i,LWIDTH> &out,    __m128i seed, bool whichchild, size_t &aes_ops){    __m128i in = set_lsb(seed, whichchild);    __m128i mid0, mid1, mid2;    AES_ECB_encrypt(mid0, set_lsb(seed, whichchild), leafprgkeys[0].k, aes_ops);    if (LWIDTH > 1) {        AES_ECB_encrypt(mid1, set_lsb(seed, whichchild), leafprgkeys[1].k, aes_ops);    }    if (LWIDTH > 2) {        AES_ECB_encrypt(mid2, set_lsb(seed, whichchild), leafprgkeys[2].k, aes_ops);    }    out[0] = mid0 ^ in;    if (LWIDTH > 1) {        out[1] = mid1 ^ in;    }    if (LWIDTH > 2) {        out[2] = mid2 ^ in;    }}// Compute both of the leaf children of node seedtemplate <size_t LWIDTH>static inline void prgboth(std::array<__m128i,LWIDTH> &left,    std::array<__m128i,LWIDTH> &right, __m128i seed, size_t &aes_ops){    __m128i inl = set_lsb(seed, 0);    __m128i inr = set_lsb(seed, 1);    __m128i midl0, midl1, midl2;    __m128i midr0, midr1, midr2;    AES_ECB_encrypt(midl0, inl, leafprgkeys[0].k, aes_ops);    AES_ECB_encrypt(midr0, inr, leafprgkeys[0].k, aes_ops);    if (LWIDTH > 1) {        AES_ECB_encrypt(midl1, inl, leafprgkeys[1].k, aes_ops);        AES_ECB_encrypt(midr1, inr, leafprgkeys[1].k, aes_ops);    }    if (LWIDTH > 2) {        AES_ECB_encrypt(midl2, inl, leafprgkeys[2].k, aes_ops);        AES_ECB_encrypt(midr2, inr, leafprgkeys[2].k, aes_ops);    }    left[0] = midl0 ^ inl;    right[0] = midr0 ^ inr;    if (LWIDTH > 1) {        left[1] = midl1 ^ inl;        right[1] = midr1 ^ inr;    }    if (LWIDTH > 2) {        left[2] = midl2 ^ inl;        right[2] = midr2 ^ inr;    }}#endif
 |