From d656f4404ac98d0c33cf90663486766aa96aa233 Mon Sep 17 00:00:00 2001
From: Jeffrey Walton <noloader@gmail.com>
Date: Sun, 17 Apr 2016 10:48:26 -0400
Subject: [PATCH] Added Windows support for BLAKE2

---
 blake2.cpp      | 1007 +++++++++++++++++++++++++++++++++++++++++++++--
 blake2.h        |    2 +-
 cryptlib.dsp    |    8 +
 cryptlib.vcproj |   78 ++++
 vs2010.zip      |  Bin 19917 -> 19943 bytes
 5 files changed, 1062 insertions(+), 33 deletions(-)

diff --git a/blake2.cpp b/blake2.cpp
index a95a5043..69b5d068 100644
--- a/blake2.cpp
+++ b/blake2.cpp
@@ -10,8 +10,13 @@
 
 NAMESPACE_BEGIN(CryptoPP)
 
+// Visual Studio needs both VS2005 and _M_64 for _mm_set_epi64x()
+#if defined(_MSC_VER) && ((_MSC_VER < 1500) || !defined(_M_X64))
+# undef CRYPTOPP_BOOL_SSE2_INTRINSICS_AVAILABLE
+# undef CRYPTOPP_BOOL_SSE4_INTRINSICS_AVAILABLE
+#endif
+
 // TODO
-#undef CRYPTOPP_BOOL_SSE2_INTRINSICS_AVAILABLE
 #undef CRYPTOPP_BOOL_SSE4_INTRINSICS_AVAILABLE
 
 // C/C++ implementation
@@ -30,11 +35,8 @@ static inline void BLAKE2_SSE4_Compress64(const byte* input, BLAKE2_State<word64
 
 #ifndef CRYPTOPP_DOXYGEN_PROCESSING
 
-//! \class BLAKE2_IV
-//! \brief BLAKE2 initialization vector
-//! \tparam T_64bit flag indicating 64-bit
-//! \details IV and Sigma are a better fit as part of BLAKE2_Base, but that
-//!   places the constants out of reach for the SSE2 and SSE4 implementations.
+// IV and Sigma are a better fit as part of BLAKE2_Base, but that
+//   places the constants out of reach for the SSE2 and SSE4 implementations.
 template<bool T_64bit>
 struct CRYPTOPP_NO_VTABLE BLAKE2_IV {};
 
@@ -51,7 +53,6 @@ const word32 BLAKE2_IV<false>::iv[8] = {
 	0x510E527FUL, 0x9B05688CUL, 0x1F83D9ABUL, 0x5BE0CD19UL
 };
 
-//! \brief BLAKE2b initialization vector specialization
 template<>
 struct CRYPTOPP_NO_VTABLE BLAKE2_IV<true>
 {
@@ -66,15 +67,11 @@ const word64 BLAKE2_IV<true>::iv[8] = {
 	0x1f83d9abfb41bd6bULL, 0x5be0cd19137e2179ULL
 };
 
-//! \class BLAKE2_Sigma
-//! \brief BLAKE2 sigma table
-//! \tparam T_64bit flag indicating 64-bit
-//! \details IV and Sigma are a better fit as part of BLAKE2_Base, but that
-//!   places the constants out of reach for the SSE2 and SSE4 implementations.
+// IV and Sigma are a better fit as part of BLAKE2_Base, but that
+//   places the constants out of reach for the SSE2 and SSE4 implementations.
 template<bool T_64bit>
 struct CRYPTOPP_NO_VTABLE BLAKE2_Sigma {};
 
-//! \brief BLAKE2s sigma table specialization
 template<>
 struct CRYPTOPP_NO_VTABLE BLAKE2_Sigma<false>
 {
@@ -168,8 +165,8 @@ BLAKE2_ParameterBlock<false>::BLAKE2_ParameterBlock(size_t digestLen, size_t key
 	ThrowIfInvalidPersonalization<false>(personalizationLen);
 
 	memset(this, 0x00, sizeof(*this));
-	this->digestLength = digestLen;
-	this->keyLength = keyLen;
+	this->digestLength = (byte)digestLen;
+	this->keyLength = (byte)keyLen;
 	fanout = depth = 1;
 
 	if (salt && saltLen)
@@ -288,19 +285,18 @@ void BLAKE2_Base<W, T_64bit>::Update(const byte *input, size_t length)
 {
 	if (m_state.length + length > BLOCKSIZE)
 	{
-		/* Complete current block */
-		size_t left = m_state.length;
-		size_t fill = BLOCKSIZE - left;
-		memcpy(&m_state.buffer[left], input, fill);
+		// Complete current block
+		const size_t fill = BLOCKSIZE - m_state.length;
+		memcpy_s(&m_state.buffer[m_state.length], fill, input, fill);
 
 		IncrementCounter();
 		Compress(m_state.buffer);
-
 		m_state.length = 0;
+
 		length -= fill;
 		input += fill;
 
-		/* Avoid buffer copies when possible */
+		// Compress in-place to avoid copies
 		while (length > BLOCKSIZE) {
 			IncrementCounter();
 			Compress(input);
@@ -309,7 +305,7 @@ void BLAKE2_Base<W, T_64bit>::Update(const byte *input, size_t length)
 		}
 	}
 
-	memcpy(&m_state.buffer[m_state.length], input, length);
+	memcpy_s(&m_state.buffer[m_state.length], BLOCKSIZE - m_state.length, input, length);
 	m_state.length += static_cast<unsigned int>(length);
 }
 
@@ -329,7 +325,13 @@ void BLAKE2_Base<W, T_64bit>::TruncatedFinal(byte *hash, size_t size)
 	memset(m_state.buffer + m_state.length, 0x00, BLOCKSIZE - m_state.length);
 	Compress(m_state.buffer);
 
-	if (size < DIGESTSIZE) 
+	if (size >= DIGESTSIZE) 
+	{
+		// Write directly to the caller buffer
+		for(unsigned int i = 0; i < 8; ++i)
+			WriteWord<W, T_64bit>(m_state.h[i], hash, i);
+	}
+	else
 	{
 		SecByteBlock buffer(DIGESTSIZE);
 		for(unsigned int i = 0; i < 8; ++i)
@@ -337,12 +339,6 @@ void BLAKE2_Base<W, T_64bit>::TruncatedFinal(byte *hash, size_t size)
 
 		memcpy_s(hash, DIGESTSIZE, buffer, size);
 	}
-	else
-	{
-		// Write directly to the caller buffer
-		for(unsigned int i = 0; i < 8; ++i)
-			WriteWord<W, T_64bit>(m_state.h[i], hash, i);
-	}
 
 	Restart();
 }
@@ -517,14 +513,961 @@ void BLAKE2_CXX_Compress32(const byte* input, BLAKE2_State<word32, false>& state
 #if CRYPTOPP_BOOL_SSE2_INTRINSICS_AVAILABLE
 static inline void BLAKE2_SSE2_Compress32(const byte* input, BLAKE2_State<word32, false>& state)
 {
-	// TODO... fall back to C++
 	BLAKE2_CXX_Compress32(input, state);
 }
 
 static inline void BLAKE2_SSE2_Compress64(const byte* input, BLAKE2_State<word64, true>& state)
 {
-	// TODO... fall back to C++
-	BLAKE2_CXX_Compress64(input, state);
+  __m128i row1l, row1h, row2l, row2h;
+  __m128i row3l, row3h, row4l, row4h;
+  __m128i b0, b1, t0, t1;
+
+  const word64 m0 =  ((const word64*)input)[ 0];
+  const word64 m1 =  ((const word64*)input)[ 1];
+  const word64 m2 =  ((const word64*)input)[ 2];
+  const word64 m3 =  ((const word64*)input)[ 3];
+  const word64 m4 =  ((const word64*)input)[ 4];
+  const word64 m5 =  ((const word64*)input)[ 5];
+  const word64 m6 =  ((const word64*)input)[ 6];
+  const word64 m7 =  ((const word64*)input)[ 7];
+  const word64 m8 =  ((const word64*)input)[ 8];
+  const word64 m9 =  ((const word64*)input)[ 9];
+  const word64 m10 = ((const word64*)input)[10];
+  const word64 m11 = ((const word64*)input)[11];
+  const word64 m12 = ((const word64*)input)[12];
+  const word64 m13 = ((const word64*)input)[13];
+  const word64 m14 = ((const word64*)input)[14];
+  const word64 m15 = ((const word64*)input)[15];
+
+  row1l = _mm_loadu_si128( (const __m128i *)(&state.h[0]) );
+  row1h = _mm_loadu_si128( (const __m128i *)(&state.h[2]) );
+  row2l = _mm_loadu_si128( (const __m128i *)(&state.h[4]) );
+  row2h = _mm_loadu_si128( (const __m128i *)(&state.h[6]) );
+  row3l = _mm_loadu_si128( (const __m128i *)(&BLAKE2_IV<true>::iv[0]) );
+  row3h = _mm_loadu_si128( (const __m128i *)(&BLAKE2_IV<true>::iv[2]) );
+  row4l = _mm_xor_si128( _mm_loadu_si128( (const __m128i *)(&BLAKE2_IV<true>::iv[4]) ), _mm_loadu_si128( (const __m128i *)(&state.t[0]) ) );
+  row4h = _mm_xor_si128( _mm_loadu_si128( (const __m128i *)(&BLAKE2_IV<true>::iv[6]) ), _mm_loadu_si128( (const __m128i *)(&state.f[0]) ) );
+
+  b0 = _mm_set_epi64x(m2, m0);
+  b1 = _mm_set_epi64x(m6, m4);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l, 40 ));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h, 40 ));
+
+
+
+  b0 = _mm_set_epi64x(m3, m1);
+  b1 = _mm_set_epi64x(m7, m5);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m10, m8);
+  b1 = _mm_set_epi64x(m14, m12);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m11, m9);
+  b1 = _mm_set_epi64x(m15, m13);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m4, m14);
+  b1 = _mm_set_epi64x(m13, m9);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m8, m10);
+  b1 = _mm_set_epi64x(m6, m15);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m0, m1);
+  b1 = _mm_set_epi64x(m5, m11);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m2, m12);
+  b1 = _mm_set_epi64x(m3, m7);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m12, m11);
+  b1 = _mm_set_epi64x(m15, m5);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m0, m8);
+  b1 = _mm_set_epi64x(m13, m2);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m3, m10);
+  b1 = _mm_set_epi64x(m9, m7);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m6, m14);
+  b1 = _mm_set_epi64x(m4, m1);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m3, m7);
+  b1 = _mm_set_epi64x(m11, m13);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m1, m9);
+  b1 = _mm_set_epi64x(m14, m12);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m5, m2);
+  b1 = _mm_set_epi64x(m15, m4);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m10, m6);
+  b1 = _mm_set_epi64x(m8, m0);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m5, m9);
+  b1 = _mm_set_epi64x(m10, m2);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m7, m0);
+  b1 = _mm_set_epi64x(m15, m4);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m11, m14);
+  b1 = _mm_set_epi64x(m3, m6);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m12, m1);
+  b1 = _mm_set_epi64x(m13, m8);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m6, m2);
+  b1 = _mm_set_epi64x(m8, m0);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m10, m12);
+  b1 = _mm_set_epi64x(m3, m11);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m7, m4);
+  b1 = _mm_set_epi64x(m1, m15);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m5, m13);
+  b1 = _mm_set_epi64x(m9, m14);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m1, m12);
+  b1 = _mm_set_epi64x(m4, m14);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m15, m5);
+  b1 = _mm_set_epi64x(m10, m13);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m6, m0);
+  b1 = _mm_set_epi64x(m8, m9);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m3, m7);
+  b1 = _mm_set_epi64x(m11, m2);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m7, m13);
+  b1 = _mm_set_epi64x(m3, m12);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m14, m11);
+  b1 = _mm_set_epi64x(m9, m1);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m15, m5);
+  b1 = _mm_set_epi64x(m2, m8);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m4, m0);
+  b1 = _mm_set_epi64x(m10, m6);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m14, m6);
+  b1 = _mm_set_epi64x(m0, m11);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m9, m15);
+  b1 = _mm_set_epi64x(m8, m3);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m13, m12);
+  b1 = _mm_set_epi64x(m10, m1);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m7, m2);
+  b1 = _mm_set_epi64x(m5, m4);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m8, m10);
+  b1 = _mm_set_epi64x(m1, m7);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m4, m2);
+  b1 = _mm_set_epi64x(m5, m6);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m9, m15);
+  b1 = _mm_set_epi64x(m13, m3);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m14, m11);
+  b1 = _mm_set_epi64x(m0, m12);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m2, m0);
+  b1 = _mm_set_epi64x(m6, m4);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m3, m1);
+  b1 = _mm_set_epi64x(m7, m5);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m10, m8);
+  b1 = _mm_set_epi64x(m14, m12);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m11, m9);
+  b1 = _mm_set_epi64x(m15, m13);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+
+  b0 = _mm_set_epi64x(m4, m14);
+  b1 = _mm_set_epi64x(m13, m9);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m8, m10);
+  b1 = _mm_set_epi64x(m6, m15);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row4l, t1 = row2l, row4l = row3l, row3l = row3h, row3h = row4l;
+  row4l = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t0, t0));
+  row4h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row4h, row4h));
+  row2l = _mm_unpackhi_epi64(row2l, _mm_unpacklo_epi64(row2h, row2h));
+  row2h = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(t1, t1));
+  b0 = _mm_set_epi64x(m0, m1);
+  b1 = _mm_set_epi64x(m5, m11);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,32),_mm_slli_epi64(row4l,32));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,32),_mm_slli_epi64(row4h,32));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,24),_mm_slli_epi64(row2l,40));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,24),_mm_slli_epi64(row2h,40));
+
+
+  b0 = _mm_set_epi64x(m2, m12);
+  b1 = _mm_set_epi64x(m3, m7);
+  row1l = _mm_add_epi64(_mm_add_epi64(row1l, b0), row2l);
+  row1h = _mm_add_epi64(_mm_add_epi64(row1h, b1), row2h);
+  row4l = _mm_xor_si128(row4l, row1l);
+  row4h = _mm_xor_si128(row4h, row1h);
+  row4l = _mm_xor_si128(_mm_srli_epi64(row4l,16),_mm_slli_epi64(row4l,48));
+  row4h = _mm_xor_si128(_mm_srli_epi64(row4h,16),_mm_slli_epi64(row4h,48));
+  row3l = _mm_add_epi64(row3l, row4l);
+  row3h = _mm_add_epi64(row3h, row4h);
+  row2l = _mm_xor_si128(row2l, row3l);
+  row2h = _mm_xor_si128(row2h, row3h);
+  row2l = _mm_xor_si128(_mm_srli_epi64(row2l,63),_mm_slli_epi64(row2l,1));
+  row2h = _mm_xor_si128(_mm_srli_epi64(row2h,63),_mm_slli_epi64(row2h,1));
+
+
+  t0 = row3l, row3l = row3h, row3h = t0, t0 = row2l, t1 = row4l;
+  row2l = _mm_unpackhi_epi64(row2h, _mm_unpacklo_epi64(row2l, row2l));
+  row2h = _mm_unpackhi_epi64(t0, _mm_unpacklo_epi64(row2h, row2h));
+  row4l = _mm_unpackhi_epi64(row4l, _mm_unpacklo_epi64(row4h, row4h));
+  row4h = _mm_unpackhi_epi64(row4h, _mm_unpacklo_epi64(t1, t1));
+
+  row1l = _mm_xor_si128( row3l, row1l );
+  row1h = _mm_xor_si128( row3h, row1h );
+  _mm_storeu_si128((__m128i *)(&state.h[0]), _mm_xor_si128(_mm_loadu_si128( (const __m128i *)(&state.h[0]) ), row1l));
+  _mm_storeu_si128((__m128i *)(&state.h[2]), _mm_xor_si128(_mm_loadu_si128( (const __m128i *)(&state.h[2]) ), row1h));
+  row2l = _mm_xor_si128( row4l, row2l );
+  row2h = _mm_xor_si128( row4h, row2h );
+  _mm_storeu_si128((__m128i *)(&state.h[4]), _mm_xor_si128(_mm_loadu_si128( (const __m128i *)(&state.h[4]) ), row2l));
+  _mm_storeu_si128((__m128i *)(&state.h[6]), _mm_xor_si128(_mm_loadu_si128( (const __m128i *)(&state.h[6]) ), row2h));
 }
 #endif  // CRYPTOPP_BOOL_SSE2_INTRINSICS_AVAILABLE
 
diff --git a/blake2.h b/blake2.h
index bd081fc5..a6583d32 100644
--- a/blake2.h
+++ b/blake2.h
@@ -172,7 +172,7 @@ struct CRYPTOPP_NO_VTABLE BLAKE2_State
 //! \details BLAKE2b uses BLAKE2_Base<word64, true>, while BLAKE2s
 //!   uses BLAKE2_Base<word32, false>.
 template <class W, bool T_64bit>
-class CRYPTOPP_NO_VTABLE BLAKE2_Base : public SimpleKeyingInterfaceImpl<MessageAuthenticationCode, BLAKE2_Info<T_64bit> >
+class BLAKE2_Base : public SimpleKeyingInterfaceImpl<MessageAuthenticationCode, BLAKE2_Info<T_64bit> >
 {
 public:
 	CRYPTOPP_CONSTANT(DIGESTSIZE = BLAKE2_Info<T_64bit>::DIGESTSIZE);
diff --git a/cryptlib.dsp b/cryptlib.dsp
index d08fa890..2d32a916 100644
--- a/cryptlib.dsp
+++ b/cryptlib.dsp
@@ -234,6 +234,10 @@ SOURCE=.\blowfish.cpp
 # End Source File
 # Begin Source File
 
+SOURCE=.\blake2.cpp
+# End Source File
+# Begin Source File
+
 SOURCE=.\blumshub.cpp
 # End Source File
 # Begin Source File
@@ -729,6 +733,10 @@ SOURCE=.\basecode.h
 # End Source File
 # Begin Source File
 
+SOURCE=.\blake2.h
+# End Source File
+# Begin Source File
+
 SOURCE=.\blowfish.h
 # End Source File
 # Begin Source File
diff --git a/cryptlib.vcproj b/cryptlib.vcproj
index 77a095a0..bab64bca 100644
--- a/cryptlib.vcproj
+++ b/cryptlib.vcproj
@@ -1308,6 +1308,80 @@
 					/>
 				</FileConfiguration>
 			</File>
+			<File
+				RelativePath="blake2.cpp"
+				>
+				<FileConfiguration
+					Name="Release|Win32"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						PreprocessorDefinitions=""
+					/>
+				</FileConfiguration>
+				<FileConfiguration
+					Name="Release|x64"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						PreprocessorDefinitions=""
+					/>
+				</FileConfiguration>
+				<FileConfiguration
+					Name="DLL-Import Release|Win32"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						Optimization="2"
+						PreprocessorDefinitions=""
+					/>
+				</FileConfiguration>
+				<FileConfiguration
+					Name="DLL-Import Release|x64"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						Optimization="2"
+						PreprocessorDefinitions=""
+					/>
+				</FileConfiguration>
+				<FileConfiguration
+					Name="Debug|Win32"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						Optimization="0"
+						PreprocessorDefinitions=""
+					/>
+				</FileConfiguration>
+				<FileConfiguration
+					Name="Debug|x64"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						Optimization="0"
+						PreprocessorDefinitions=""
+					/>
+				</FileConfiguration>
+				<FileConfiguration
+					Name="DLL-Import Debug|Win32"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						Optimization="0"
+						PreprocessorDefinitions=""
+					/>
+				</FileConfiguration>
+				<FileConfiguration
+					Name="DLL-Import Debug|x64"
+					>
+					<Tool
+						Name="VCCLCompilerTool"
+						Optimization="0"
+						PreprocessorDefinitions=""
+					/>
+				</FileConfiguration>
+			</File>
 			<File
 				RelativePath="blowfish.cpp"
 				>
@@ -9150,6 +9224,10 @@
 				RelativePath="basecode.h"
 				>
 			</File>
+			<File
+				RelativePath="blake2.h"
+				>
+			</File>
 			<File
 				RelativePath="blowfish.h"
 				>
diff --git a/vs2010.zip b/vs2010.zip
index b4cc9e3d3854c0af0b822f66ed97c17a8adf292e..097769c28ce4933c315a6cc758f1acbf3da3f71a 100644
GIT binary patch
delta 5058
zcmY+I2|QHm8^=lLni5_6l6#SmE&D#@7GkIgO$;M@_MK}zMY2rDl6@&#wy{-XWJ`8q
z%Q_f))<KG~HvGwQ`_K8lXWsXm&*z-yJkRs~p7-;1B$Ll2lb5_?r*(rysZ(W-lssi1
zBNJ?jNn>X}mz?+~tmdG_)UmTtFNFA0Q%)jcCfWby^(w2tsSU$$LYz@_=H#!=DDERy
z#O8G@2I7N_1@&}E<F$L9@Ax?2<Ny#+&<%90igCSbuVN1Et2p=7^0l_>pK7S^+4XPK
z{VDl_-Jv&|*)DJO_XMidI$rRTr_0&hBJAN(P>RNvY0xPnJPX;Xu4CK7XM>^^;2W!T
znR#wXd(DArnN`aETZ{em+pb^hv!OjXV@leieU9MNS(mkL96;>@)%?R<9_al<dNQd1
zw%vYHJx(h<f)=p5%d)R1?*ikeXUU_@9>SMfu~o}SSwzb1?wTycJ1}YbEOK6nzE}|&
zJ>PXRT`a%Ev0`-wG%`hH&FkszR+pzAaSL%h%Di|Wv77tWrDCaz(G>=kH+%ji$*qpd
zc)|?tX^ZkwJEj>(e_MY6!2+rDaO*#_Q(Mmr>)!`_EDE~$*!AFm)-!EO8v8T>qOa7V
zVMj!dJMI-aIzA=D9;zoYQO+ZkTq1E>gjw3oP26fxz$Z$2=S#gU$K2$!v&ClFjfUbi
zUpUKk8e){hCA~rUSA}|r*y#L%q8qIbvuF6MKkf`ir|21~@3n*`RRUH9akZjtrgPt<
zBE+2}6*tSFLczva_R2>32z`XHzTXbvM{oFSRmfyAm|<pn^wz5m2~prfFc!4tzCmX!
zlN1=xgo+z5C?su8oX2X7H?M_pF+8l--`xG0(Y5XS1|&O;95mFCDm787XE<NKD7zLG
zG_K9oDbxHp+DSoa5?E@Ey-g$`K}I-MQMW>4-LIyVTaEhQ-p1XVQl6_L_A3<y`;F;)
z7vR8NT5MD++D^^7_JPbEo!poevb>D992C|HYtivB-_7t$&}1E!>~KiE(95Wn=L^re
zxxJf;5ZPfjN-pm0t>+fcV8s5w&r+w#g+Zf8Mq*)K>Z>aOIZ?=B;;mU!*|uU!MjwvY
zy{a?^fVVvi?^HH`vIY{9cy%0W#>c$Ywnwp<qLtsu!M<|7+uKfa^AppZ1Hq)g(dyLY
z%yAEd<2PSLUu$DyxZgH56BMzAv8&j=@}j`$VcNa9zp!>1^7U+Y_Z>KPO4aS#W}GD4
zOF%n$1zEs3>_&o@`_Ce1&PJPN!A8dVzxO-w@tu5ES=NJA%gfGx*sj1QD(w@H<Ip0A
z%-ZWpeCk?FxlXkm=5KgW;W*A;zvf}Y1qB<b>F?h+AN2(8!s72p7_KWLI_n<*FWZ$q
zV?sn#vNz7}T2&71@9(I(F2=_^5cpv@q^cmPlE@7JJUxAB^Cj-HHPZgJK+Crr3#nbR
zY5RSyWGkD&MdK3ZoA~**7eh}m-=T|z_ns=sD3{xT`D5{h3#h{4pEl!iKfT<twjJ>$
zoHMg?m0vhGEuHFG+F$5?)0Ik4P0UUBb*xO>a&LVLw?x@?8Nj*r2@}1+fq|K$q`->+
z7noB#{QAKm?7?QX(8$|#aCk)WmF9&vhe-^2WMPNqq7w;huAR3tw;wyFkBTIpeGbgI
zeSwt3#IX+DspP(3j!Cxh`Am`!62-i8jbI4n{3Ez>cVxO?cwKd^$Md?rm_EL-bxH%t
zkrU>sLs_3V={u<W>E~nY6K}AZ7=UA40^=X;Ls_hHCHjD>H_Gnege^RujM75|`nTAd
zX`&rmCB#As!_2*aFS>UpW!RdCGp1r%V;X!^x5vFNTh?Z}F2e^?kV8}7Aj(u7u9`!b
z{+iOQJ5wU<=aFf&i%ArVxe!!fNhi&yB-oXS*7ZH3iBSKr;KUh`Lx6+kO)0a|5_jnd
z2y+a96>rEN^_R#L_Yp-fXT6dL^kd{Ph!6b&xB%f}yc^MCMu}8@PQfzYQn?-?hB_?t
zKAmqr!rw%s+OM-nVr)wI7bs81K%v+WB<2`^poiZZS!Htke#AgQd8uriZy>V#-y`72
zav(9%-lHeNjoD$6=@^oKmGGreVT1o3M9{(C;1!SHaUg}9Je#0z*g>gtYW3KMekV}*
zF@#qm4_=0lIReM;Wpb?cX6IcQQKmAA$`PM66BDWz|3#T`oElevsHdE$;8_7>?P+O;
zBX-^4sk3|$Tf00Bw+)Xdo_by;9F_peAZK<uLMaft`RNe|eMC)Zza0Lv@G;&qad0U!
zKzP9P7vAW&X1b>*KHX`Qj;Pxx+c;0f3IbxdWAoGG!z0HPVPxGt4uLnrnFh{)doE?7
z;}TH)pW)LrqE0rBp+PUgcB?QSO`4eHNaNG}_;4NHAb($G=13XYecO&aPwQ#}I92|}
z(=d>E$Da^fxT#FoC_mtldDv?sIK(n2ZTi`omn5l(^Zs*087w+*4`o}%>g?%F8muoD
z)Er}gat!dKLxb>-(-dTTx(E=d^19bx;S$P~&7BPNQkS+E$oeUlwS|t4rjQfwPyTE9
z?C81-I!qU~T>k!2wbl6GtErA?pBaIlox%`;+&&OCN>DBe*fxWsQ*bV(*ihlChn*it
zdpv#U#7FZ_l!iytPVgBNKESMUa~a-gh28XJY!H7|9Iz!A62xpw`CX6h@YG%V1$I+@
z(TQ~3M`uZ^RHku^;jrU1gSH2zD!5OhUsEA<pZr()p8*d3imaSmNp60W$3Z&?onN4B
zmh}JSmi9}`KIU~V!f%5k<~r*!)k%1SlEJiG@^P*r%WJA<BA<6N*?;+kl5O&4y1|o^
zd_-apjUAW_n&Z1)2Hv3oKvgmF?CFI9w9ya+yoB<YVjLg$4fy-p#}p3>j<lT^erWey
zr_6g#PEsZSWo&n4I79fDoqlPlvU-I0@jO4Xav^`sz%~&#pnFiRp~FMifP&44g&p8U
z<Y?9W1Z-_gy`S+TXe*wW_vj^hRYpK1Z!xbo>+decPp0**?CrEyx`bDGgk5cHLx&86
ztE5(TxeGSp9=7CSx<FOzmcCKF`$`Dtm~10#zS+~6+$V6Yb|A&Od7zzW{@R8s7p)Ni
z+Dm!LdEKJ{M{lO~;;>WYPx<QHwd^BT9i9iu(WfDDBE*lpoOAzAWSTrUW9<1^fNE2A
z>mqg46R!{p?3px*q5|NUpkENN%UnT1yeD!aJhnsJQ20-)b{eGZ6N}pW1Wu$)WXhWn
zmJ|cwq&UilBezQY?Rx6<_r!eE18eGI;Q<aL$j>DismpujM6!NK$Ew|85IEUe^NtDc
z-JBZKRUJ|OeZ}~XDkvsAlj19Hhtw+cnXW9v4cJ_0A7jsMAUM*yjum5eH`624uaWY*
z^J`c7GJZ?yFiw7t*SM#qhn-@Dd-}dfmUo{0o<Bgp!JCs1XP{vA$br(Y{*tHphp3)e
znLTylScP5&WA^Fr(5I5^?}Sv3_3A*iil?XwPW9;#fqBI0|3-7ajTlEtel9Wr|9v&d
z+qP|E;I~<#ho6VD(X?i_o?c69?6CNpCVmnPl(Azk?SH}WZhQbb&Giyu*zzC8T6my{
zJMSML(O<WHPK{5i2oF|h4F_f|Ozu0)i1P;?QDz*wOjc}K)@EVzh&9gSh@op(qoRs4
zCliSnzHAWG^~s1nBtea??nu_fg?26VIqOfv_%q7W0j_`1nV$KW>M-^zUP7nE;rl^d
zYKHD<oduQzcuwl#4x<bxBHMZ`_@CcCxL=&!+Szb2U=~dC2Iv3W^6?QHny%yUUX|ZH
z&&GJmE8a)(^l{#dgX$}A%Hv{j7!0()2>kRm_dylTqy_Gte|D1VMr7q15+}wSl<I>_
z4svE%B}1H6q^_x?TW3#Q=yXu@VhTAIPBUF(V(0AU?)>y}_GX4WJ-tk5gE^$>7aKM|
zLS<)bB2SB_|A*y#*)H)SAn)`Wh}RrqXQ7?p*Xd52MhY8|z%x<U)iM2IKnDF(zN6w1
z&52tF3oyX*GJDOr41rS<Yo}Cyn~XcmG7*?B;wLg@uQlu-=@||g%PVZ52H)L(XbKoU
zj=AC(#!q{d16h(xbWAC=!-@~FzFMyPGwL}pf#n0cwIy2_vvn^^{Ls0wpYKc8v6<z!
zIk?XC`c+AKeV<D=@9x+e*outs(%+NuvKXonj-KoS4{@9q^s<a);1h*tMR&z*{fJkq
zpB|ZI-7A=VcHv_qNn`MJCrE2xsiX!F{UaH*iQ--MCzdW4i2h}=`FP4;-Ok-HCpV~5
zbJIrL;OBX_$edK$E-CcS)<v83%1wQ5%V{$OLMnRMX1SfSEr(*PdOsz^%*(nR!O)_M
zwdj>#Zt{)ghUBOeRY>c;DPuKal9ziYgfAyRzeFXIaQw@XZ7YAhkGpeC1V{m@tTW}p
z+}+ai_*jToUPPSI&||7_%cMsAtG1HmksFbFYmIBFYgmKKihf(keFYoI505p4E5m0;
z>=x=WNBiv57Qer~bk|!nP1FkIs7Y$c>(r~LZAXnz&gfni)uHBG|G?{CqrCqtz4&hW
zYSr5NZ>TjzYQ2xIV_Ws5MHY4eSA|$56_(~qT4MYi$B%9=Bd)r^-y*$7zqVNUjOuBy
z(2}mjUvFR3E(Rhd;ZpLpa{?Vgnf9%!j4qj8EBERpDxmZ+y_J}kJG)CmHS&=3W`B8s
zH$CgVP-ZPVP#44-rs+4+6+dVfX6vU|>0(Cg6|4Q=3&f_t!m)!_K1c!GOFvpX|I{j$
zUGe788uXa#c>ko%bx!StSwdghdeHe0A2Aw-VPZkyKO(kEd3vpcgLbZP$fDJYDCkQU
z63n2jZg{w`9?fIFmX4%9Tngt)Ky0kk@lnE81fR{Qgf_6g4RH5_TxGlyl)uo&dOx8E
zLIHb--Qe{^x8=?qtXDGvgkn1}IDd>=Jge1J(p8x3bl5FVWZX58lF;yJb<Fg8=ce}o
zKSaihaz70T1Qe<3uqv=u-FGI@FTH33S%tX7>+Q)QyhzV@L}Kls4NaW0?Kg1lYO=e!
z5C0B-<KaOs;NAK1k(7J$dT&C-w9A2M^r0cCCZSB7ysd`7kVy&#+Xrp-ikP_^T|{S|
zl}{H(cuTm}S%S;uZ%u8T#{^rwt=?Jk3VO}6$zYRt-xH#|r2vB&&ZcF^1FD@&OBz<-
zmCM2QR*)cQzaF1PmP^p>H%`Ioo)8=Jw<^}?LHD5K1kB@9L3)nL=@c*ZXO-z!C-W7|
zM>&7Ab4~$8j#;DE_4#$pKQd0?U2n4XVO>4n01Ra>S8~4<y?k%MtdZy<BBW!jEk3hE
zk@s%ULPcK9k}0SYVquW2z2a)Z9NYOln!2+I8%dFh>}HK?d}|$dt5X)08rpVH%iPeK
z{+HrFcda@EiOg3Fpo_E`^?M|HBj>t&g|CSU4FW*-YBDWMcU|~GkQ+>)&0<P9sq&k^
zriMl;hP%yCFIIuyBR)IZ=czgP6RwMMC2_1tZ$8Q3V`X-nV0>PT>nJ0m%79?QS#AW1
zZZ>Vft)j&xg5Qs0W?T@LhkC&$vyy{G@o0^tmO!w#vVtln4n!RP*5vaK0?aCwCZmd=
z2>daP_?(dY`Ak!8_r?Rya_M~a0wFi5E=v!}3+em|=XMd3_egIa$(co@q9kgjG1na2
z(sf~mIrzN|e5$+eG@BZJt83ZFITL)ztx?NQ5?nhdjr#|DZ%BqU0j7EJGO31mCpSX!
zV=Zjk9ZaK}BcafSwtFiR7~d4kUR4cLi8rM^ZavtG((Y=}RnwPOY@cVp<_RSU*VU~|
ztg<~KeW(qWh1;w_N|R?S7grND#`iD2lM$<DQ~3YgGYT>~G8VGKANfK1^z=D98JU@j
zmy?^FwW)}Q*}qOMjy8I_lw=f#J8UsfE%umunwQC;F^-zL<R&o<nno0!@?<gI^6W8S
k$PIF}m?sb;^4^#+hyi(DjGPvfJS+yOrAS4iarlP+0loDZMF0Q*

delta 5025
zcmY+I2{@Ep8^@DR3a?U_5Q?bCk~MpaEsX4A-<h(^7;DHp5wc`!GO|Rnh1ZOA7;6a0
zGLd~>vhRDg@sXw8IluE<=R7mlbDeYF|MS1Ec_v~>nqo<^!<nd4)La!%Yq9K5+Eb^Z
z%2Dx5OsEXf%NP24HJBd7d|sNF3qX>S4YQzznXX;;$}Q_sh=IJj%^Y#Tk|gr9<X-SR
z|D>i>N7O45E^V#dl|3Sm$9cto1lVJSB<{rzn@L+oyYpR4ccS^)bnpE*XQ)0?)70Sk
z3^8qN;-#0N!jg-bDdb_uLB=iTt125yox3?=2JYpOw02^J3a!c^<E1MF=P1~J6wVI6
zRM4FA*a;&KlXv&pS!~aIwKDPbm2y%txXd%IIDHT)-ZVCzn6pQ{{t<m~+8Ido-X^Jb
zLv}1b^sHdE!`W+g#q$&0oquA~*!VS=mGba#f{=%k%{LaO^^NK-zW&?j^)?Bm>#UBK
zI9d{3N}Fk!4LS}tfN(Ycv?|U|Px@%)T?s5TXR9~P5=@i}xNdCAa^0z*(I<In%W0?r
zK94E-5NE7NJs??NH!#HzjRqvxajl$65-76#ykz3~H=RVVNCu7=bM}2BZI7hp^rlT4
zK887ECY#%ygHMd6_hW|PXSjlmh#54<kk_tj(z3ZtbDhn8HR)C7-RA1L(Qors-T@{P
zn>c=R+G%#^^$d&)mtJP+O%82{k@uS%r3P@T^I8FiSY}c9PQ)c)H-M0T8!&lW(>!Q<
z#cJruvw3)uE_H=s@AKl^(%jPW+^yBlu{5S8cbaNZ;O4iLl0dFls4>yzd=zMWX7*Y+
zOo*H;#DFKOKzDngk^voC9yUQIb2HmNZ+@d*E@5T!0mz{igvF=Ym{*7T-@5GIju@w-
ztavXJ2M_h*7<Toj0=mO)1y65-K*iaD#*?}gpT5?(E(PZyQ-e2N+RP6X_VzhJ_JU=0
znQ+7%saxzQ`|i+IWEO1anqw(}9&Ysr2BJk_!_(HkuFEa(M+xLVjp-L>O63mK*u*Km
zT;7l<Gh7ud7BNXndnIQn%Z(nxH=P%EqD^AkE-|G|dgbW`I2pfd6AWxLuv&2smrKu?
zNgVcU-a{_W6}@o{1Sw_-3O`C6cwSMqGQLt0rC{PZ2nT*S{#srcZf>cpd!KcFo4mwR
zqF13}u5@5v^VzS~@^akPa+Ct-$^@d@aYgwuWH?(gvH3o_`>nITa6Ga9?y5yZ&)bG!
z>uFQaswU(SK!cvUvoih5C`n~5GD>GoZfYqx4$t=<tja%0ISjXAuvu}!3wjbeK@~}c
z(XjFRZg`0aFL;_qx5Go6p<YGKZtnA(D@?9!RJEg{3zf;_8(3bHb<w0(Y22$U;?-zR
zUj&VbuhJaDI>9w>Z*MJRyp8Whmc~zfZiwp>UjaFQD4(1z)nYc&=w-jtK@1-RH`uJ#
z)%Fr)L<nt|_6pNcpQ4sXhCEWlXi}SA;%Rr-b67W0?Is@IYM^Jb*<SASYh_Y#Ww6Lh
z;#(8JElEtgamXhknjw84-G)CzK>g0|)?XPo{pN9Dqkd<60Zy9OS($d8oLr$~o17Jp
zMv7Z9TI@H2S)tn2;770b+bj#%T$3q`4vLvmjLIW$2zCmO#|6u;w2VlX7>S&t+H0Qr
z7;SokM=%%VD#!TML9~6{cN?l}>;Rp(a_geRMQXQ=!a7L7RLFSBf_biKZc#9*CX!xE
zg>E91!e6j@6XW$_vjt7Eh72_YvIV<<qDo>Cf3q6&)84a(Uek=7OL#EMBioftHR`3L
zNsNr?j2?NB{4QBidVCdJ==DrPjcH72qzY9~`I=-SQemQ}5F-Z4s~L=bP8BnO&P8N;
zSuCNx7`<blmtt-cCT~-Z)+aZ6PgndDIez=f_!I6b-HZb5&t!%N0Q-H70@fG7!*L4a
zKypZ@U=d!8?Y`j`xg)S68K%tkE%Zl}*<@;FlNlVb7G!T$Eb!0P5H);2LMFR3H?|?;
z1;ab<-|SWydThrTK}%~44p|sDqj!@Agg64|%q-e19OfAqIV1}LADvBRp5h&0J7$Zn
zP|>;Y$+hD-8|E>BG~(;s&>|+f<6mK*2;sruk32nxcy#Ji^Ym36k_CYo+-Ey|vVzjJ
zY5VY^1z9@hhPqXt_BoZmmF^+y4a<`c7sq%f<ovGI)III1wLhc+mieRa3k?AH76k<V
zW=6YD4JSwAbYE!bH1BUPP=`&H%XXFYzv&RgiN7)^@;d_C=a^~zZ;k#TgpOr9&!gZ0
zWCj&owRgIVJK`&^S`5QAd^OrN)0UQECn!#N5bXIswN&X3Dd?NGbzICV(0^vzw?U>l
z$CDGTjz|DOL>qsxrR{l^#*`p}u;0TLMn;y-OaNJ8YrI(y+lG7X(rO6rf8Bk~m8j3k
z=P=d4Xb%SN{UL8YPL#t#sB|<H{Q*lw|KF@DIexEj0gJHDt77*&e(6}%$Fc=gd;Ap4
z2xn??B3IaQf1f@sa(Ok44EK50*rW};+kMXZ8qXqomYoeekSx@f)k@B#T11!j^oIMU
zjzUn`#_V>nMyZ}7R?=?}@Ap({!X(GDzfPMUuxmhHGElV>%NhHEz62PkB6C6{*k}x+
zsES@t{$>W$CmY;O0W$vilKa*sR{+*W*MCv_f(cp9;z;Jza*E%VEzvD5MFnPzj5R!{
z?ACf}SFHKL0NaO~dn^h0A8eTZHyxsd@?1w+Kae^V43mJto;u9g{uRK$9YWg99Lo`e
z@CxcZcX5Li<lK`<h_?{nJR%o@>djQJm4se`FVX*|qp)zN<-(ERK4wAfSBRRF7fyt|
zuWJT~R^o{wJJtyS6A>Ry=IuCcPg6=9u-^}uq3f0X-;-e65i{BbRt9>1FZ>*gmg287
z7n~()kS}*cMNg`{YnSqw-zR#1mu2@|jBR-?^~Tun9n^MDJ%_b{J4OjhIk6z-9h(8B
z^x_9@Bzw8ibX2VXJ&{xHrnZzzjL=W~X<fT#u$SG5Kk;P9WGhvBo;wDaeucGOCYJ33
z7bzL&Hr&14s$cUtZdKHAe`8AfMX~#fm)8{TK<tdsT<D6y$5Uy|k+$p9BPtUFv)OAy
zFH4xu2ITAy-gRO>Tuc-?4i-<(R>xs_=z)VQ?K(0om#UuZj?jg9$<yU?NS29Rg7=>p
z#E!j*uKpxY$bzN^^}-qsl!b>N@w-XkeqWBfX8*`n3?Rvmjf%`5p(~Z=M`X14v9EoR
z0}QbvN=|RmE&kHTIT)v9=y4{3amEGhTyvlQ*vVs<Q$&#L(BGCt8V@d8glfWX-Fp4A
zzO8W0a++)`VL}7)sokg7CryKph3eE9if*HvoR*9ze&7KtPN?(UC3Ty9+6G|qutis;
zshxQr(AUh~%OS0yrj<}T7>v1)a|J*CaXauon$qV!$$I`;hJA}Tx-aa^i6k=%`}(h(
zNME8*DgPtw@$?|fvHtGpnj;I_H?n;f15D|TJ&WFM*L<7mKeH=;W@Y9~Xp{aUm)_rd
zmI)l(J;3<q;FJY1c_}}<h8JQuzSo&ogjea(tUb=g+Khb<$)99kyKG2K^iPR1&XKA-
zGRS?KOz5y_K}!PXk5}IzSh(bH1K(15TZIB+c*aWYkoDkP<{@nr9lXjvx2pw?@U+4=
z2t$qz7A3Ac$0&1=p@{o5&B|G}Bd7Pb8oZrpvG32okw>pJ+jGzSRbn8Br0ZcE$5n}E
zz+-Lw?zf7-7gAOyMX_SUx-v(|p6GD)uMO*Svhjp+8-CwWxJKJc_)gVy2=eK?r>*|q
zkvB~8xw+sN20%}qhaF+8_saZySU?Vv(JNx*X?ybZmo+X}+i;-wiPkBHI*_%0l)NwG
z4F2ZRET0c6)Ioan3{e56jw479D|7UGQ^4N8ZxF{M3;{@1uhOzrW33x(Bb*WMUe_OD
z43?&;>)W6?uK68UoDtoGUahe9$sUk3A+3_%@ORFf)L;{Yr+=^ci{rz(RV$*FCI(VD
ziK++P20;yHKV>N7cTz_INZ-xB_OLfnOCzc;e{5}8k9tGKF%k6=k#w6w6H~0puPN<w
ze}ZXhhJ7t)T=R$_f@pg^PKl&ksb_4h*({fmT-lpc9`64iVH_1;x{po}K_lH)aRH;G
zX2oGqoP5L`6jgEeAR{pKE@})wLC|x(02{;p-KNS9Z=mvz%$BR#u5a1}@&WEblI8aC
z!xc8FT^|hku+INXmwvZwqMq4)lilqxsMI<SVU5MCoxbQA#)*+5=xkUA=}(qAV>y#*
z2=_Lg^x)SGEgBO3#mHB9CZs?`q;YuzPkS*P&3%b>;zRx0guuJ#sM=XMZ<PYTP(;ef
ztWn`sl_l5D7~6+*T(K=yi73H_Dz6e2I%a%#SV*gC(k%4@+vxm}<+}P<k(eZ1g^g$%
zAN2~A5vy)gi1qg;sd{lPx$;iiPxdBdOeEn#75@sy7?jDcR3yo32IJatd!Ljyp;;t*
zz)h~nEa$nFk~c;+9XqygZDDc1v|;3SLtn9xn(Ek+fXny$CdwldGb@jOZEmfeBS<{n
z9uOxusijaVMaNl<zA2X}eAvzIi;$dF+q*Lbj-qZ|@`cSft7BuYY}#Q<l+INr0%HRH
zdi_&tggehO<)L$uDbZH>Jl&rjz=R0QHqSUkxy&6sKp+huL8=$>YH9`OdVGUJD<+<A
z`eUH|aP*@En{@2X=5h=ekrf7o!2U%tju)aA!rrW8AU2DWac5$TST<oFr|9a8;K@@x
zyrt3f{Lkih0uWTF9#nZa3F5qbCAb6`>GIVoM5=(xeZMn!3zys$!y5aYKfM%QbuQ5M
z#)vas!o_0D=?>fL6hPm=#sAS9RiH#}imYF@;mwG<qgvVXp;O6h>1x97#UE1qh<rLk
zVcQ-5vss5>?RlA!R=8g)0|<I!7pif0G)UGh7|qR_eJglWv1l|OQJe3xOzg*e`rO@j
zACjE@`aM`Ly@=T5EI;NaD2s34+WU?v6{w;CeZ$=}AEkD(z6#71v&TsZ{Tp7ZCQ%YV
zD+N`|jw!a-dfM2BzzbfV50L%RoGnWUePfB4Jq7Nwn*KB@S?B1c2staDp?$Vt?Z+A&
zRM$@H?ayXQ=f3K^AI4tmr4PPGcsk~*r%Q0M?vQ12^Ey3Ne=oxhrF2cnV|5Fw#tEiY
zeVXRF#G!$&`ltpJJxrG16wcL56zZKRt^%tV=Bq}Y4eduXOJ1+)C!ieKnRDl<-N&gB
zouaMt?{3p_3G`DS=J6k>rpNFl-(@KD6y4g~Ac{S?${$q3qF$#9-H3Kv_ipQ+5xDlA
zT`>3oG*uu=<HiO)TUl=6Sv@Iqbga(1S#FZ5VdRI9G8+_#>u8o8lbg{M@8ys=*T9jI
zXC1i}d@<{$3wes!UULDa$h4h#xsiE<_Q@}1e{QZVwEu(ROy)5G1Zz|O##>L06jei-
zu?>!I%(Nv9t*vGEa#_K%6Vw|j@KG*jFi(HKhH_*>TRnb0h~k<po%v}Rtj<{{f^)H<
zrI^B7>Cj~WPB+`8BadQo)9metNS#yFO|@cctuk6<^;4Vw!Ed%%lOd=?ras^j?~C9w
zQ_(UbvCw+rnOS1Mq@AoyFa9!(x5USv5ajIZg?0EuT*->NQ`g+VFsR%|Ct6IJ!Og1)
z13c%O#mhND*kL=bRxw2_348dFROy(6K{=+`P*#Iav$0f-hwqlQu4^eU_7D2)6tj|X
z{fK6^GQj<atyCVZ{%2r7#@OO<zU7Y1(=@1MM$&C&7VA}`w<Vv5)`O;l@MkVqV$a~!
zIGzIc)UGDSSm$Rd+Y10mo;rUuBlCY>n~|QnaO(1@gAd7me}THA%!pc3Vnx{~vyh0Q
z0+qE$6i@@oMkGckNfjd!9#o8q5h-5w6lziSGU_7u9!W7u6Rb|+fJy;No>_c!@SOhx
DfQkuK