CLMUL instruction set
Carry-less Multiplication (CLMUL) is an extension to the x86 instruction set used by microprocessors from Intel and AMD which was proposed by Intel in March 2008 and made available in the Intel Westmere processors announced in early 2010.
One use of these instructions is to improve the speed of applications doing block cipher encryption in Galois/Counter Mode, which depends on finite field GF(2k) multiplication, which can be implemented more efficiently with the new CLMUL instructions than with the traditional instruction set. Another application is the fast calculation of CRC values, including those used to implement the LZ77 sliding window DEFLATE algorithm in zlib and pngcrush.
The instruction computes the 128-bit carry-less product of two 64-bit values. The destination is a 128-bit XMM register. The source may be another XMM register or memory. An immediate operand specifies which halves of the 128-bit operands are multiplied. Mnemonics specifying specific values of the immediate operand are also defined:
||Perform a carry-less multiplication of two 64-bit polynomials over the finite field GF(2k).|
||Multiply the low halves of the two registers.|
||Multiply the high half of the destination register by the low half of the source register.|
||Multiply the low half of the destination register by the high half of the source register.|
||Multiply the high halves of the two registers.|
CPUs with CLMUL instruction set
The presence of the CLMUL instruction set can be checked by testing one of the CPU feature bits.
- Finite field arithmetic
- AES instruction set
- FMA3 instruction set
- FMA4 instruction set
- AVX instruction set
- "Intel Software Network". Intel. Archived from the original on 2008-04-07. Retrieved 2008-04-05.
- Shay Gueron (2011-04-13). "Intel Carry-Less Multiplication Instruction and its Usage for Computing the GCM Mode – Rev 2". Intel.
- "Fast CRC Computation for Generic Polynomials Using PCLMULQDQ" (PDF).
- Vlad Krasnov (2015-07-08). "Fighting Cancer: The Unexpected Benefit Of Open Sourcing Our Code". CloudFlare. Retrieved 2016-09-04.
- Johan De Gelas (2017-03-31). "The Intel Xeon E5 v4 Review: Testing Broadwell-EP With Demanding Server Workloads". Anandtech. p. 3.
- Dave Christie (6 May 2009). "Striking a balance". AMD Developer blogs. Archived from the original on 9 November 2013. Retrieved 2011-03-11.
- "Slide detailing improvements of Jaguar over Bobcat". AMD. Retrieved August 3, 2013.