1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
|
`timescale 1ns / 1ps
module streebog_rom_a_matrix
(
clk,
din, dout
);
//
// Ports
//
input wire clk;
input wire [ 5: 0] din;
output wire [63: 0] dout;
//
// Output Register
//
reg [63: 0] dout_reg;
assign dout = dout_reg;
//
// A Transformation Matrix
//
/*
* Original matrix from the standard was transformed to allow efficient implementation of
* hardware multiplication. The following matrix is effectively the transposed version
* of the original matrix A with reversed row order.
*
* Original 64x64 bit matrix from the standard has the following form:
*
* a[i,j] is 1-bit matrix element
*
* A_row(i) is 64-bit row of matrix
* A_col(j) is 64-bit column of matrix
*
*
* A_col(0) A_col(1) A_col(62) A_col(63)
* | | | |
* | | | |
* +----------------------------------------------+
* | a[ 0,63] a[ 0,62] ... a[ 0, 1] a[ 0, 0] | --A_row(0)
* | a[ 1,63] a[ 1,62] ... a[ 1, 1] a[ 1, 0] | --A_row(1)
* | ... |
* | a[62,63] a[62,62] ... a[62, 1] a[62, 0] | --A_row(62)
* | a[63,63] a[63,62] ... a[63, 1] a[63, 0] | --A_row(63)
* +----------------------------------------------+
*
*
* A_row(0)...A_row(63) are given in the original specification. Instead of row vectors we need a set of
* column vectors A_col(0)...A_col(63). A_col() can be obtained by transposing A_row().
*
*
* A_row(0) A_row(1) A_row(62) A_row(63)
* | | | |
* | | | |
* +---------------------------------------------+
* | a[ 0,63] a[ 1,63] ... a[62,63] a[63,63] | --A_col(0)
* | a[ 0,62] a[ 1,62] ... a[62,62] a[63,62] | --A_col(1)
* | ... |
* | a[ 0, 1] a[ 1, 1] ... a[62, 1] a[63, 1] | --A_col(62)
* | a[ 0, 0] a[ 1, 0] ... a[62, 0] a[63, 0] | --A_col(63)
* +---------------------------------------------+
*
*
* The only problem with A_col() is that original 64-bit A_row() values in the standard are written from MSB to LSB. That implies that
* original matrix columns are numbered from 63 to 0, while matrix rows are numbered from 0 to 63. Because of that we need to reverse
* row order after transposition. Original matrix had element a[0,0] in A_row(0), but after transposition element a[0,0] turns out
* to be in A_col(63), not in A_col(0). Because of that addresses inside of case() below are reversed. This effectively reverses
* the order in which A_col() follow.
*
*/
always @(posedge clk) begin
//
case (din)
//
6'h3F: dout_reg <= 64'hB18285C0BA4F9506;
6'h3E: dout_reg <= 64'h584142605DA7CA83;
6'h3D: dout_reg <= 64'h2CA021302E53E5C1;
6'h3C: dout_reg <= 64'h16509098172972E0;
6'h3B: dout_reg <= 64'hBA2A4D8C315B2C76;
6'h3A: dout_reg <= 64'hEC172386A2E2833D;
6'h39: dout_reg <= 64'hC7091403EB3E5418;
6'h38: dout_reg <= 64'h63040A81759F2A0C;
6'h37: dout_reg <= 64'h025DA344601EA1B8;
6'h36: dout_reg <= 64'h012ED1A2308FD05C;
6'h35: dout_reg <= 64'h8017685198C7E8AE;
6'h34: dout_reg <= 64'h408BB4284C63F457;
6'h33: dout_reg <= 64'h2218F9D046AFDB13;
6'h32: dout_reg <= 64'h13515FACC3C94CB1;
6'h31: dout_reg <= 64'h0B758C12817A87E0;
6'h30: dout_reg <= 64'h05BA4689C03D4370;
6'h2F: dout_reg <= 64'hA1F0C986411102CC;
6'h2E: dout_reg <= 64'hD0F864C3A0080166;
6'h2D: dout_reg <= 64'hE87CB2E1508480B3;
6'h2C: dout_reg <= 64'hF4BED9F0A8C24059;
6'h2B: dout_reg <= 64'hDB2F257E95702260;
6'h2A: dout_reg <= 64'h4C67DB398BA913FC;
6'h29: dout_reg <= 64'h87C3241A04450B32;
6'h28: dout_reg <= 64'h43E1920D82220599;
6'h27: dout_reg <= 64'hE0802541868B1232;
6'h26: dout_reg <= 64'h704012A0C3458999;
6'h25: dout_reg <= 64'hB8208950E12244CC;
6'h24: dout_reg <= 64'h5C1044A8F011A266;
6'h23: dout_reg <= 64'h4E0887957E834381;
6'h22: dout_reg <= 64'hC704668B394AB3F2;
6'h21: dout_reg <= 64'h830296041A2E4BCB;
6'h20: dout_reg <= 64'hC1014B820D172565;
6'h1F: dout_reg <= 64'h7DD80C6D98218914;
6'h1E: dout_reg <= 64'h3E6C06B64C90440A;
6'h1D: dout_reg <= 64'h9F36835B26C8A285;
6'h1C: dout_reg <= 64'h4F1BC1AD93E45142;
6'h1B: dout_reg <= 64'hDA55ECBBD1D3A135;
6'h1A: dout_reg <= 64'h10727AB0F048598E;
6'h19: dout_reg <= 64'hF56131B560852553;
6'h18: dout_reg <= 64'hFAB018DA30421229;
6'h17: dout_reg <= 64'h82B12139880C7F01;
6'h16: dout_reg <= 64'h4158909CC4063F80;
6'h15: dout_reg <= 64'hA02CC8CEE2831F40;
6'h14: dout_reg <= 64'h5016E46771C10F20;
6'h13: dout_reg <= 64'h2ABAD30AB0ECF811;
6'h12: dout_reg <= 64'h17EC48BC507A0309;
6'h11: dout_reg <= 64'h09C785E72031FE05;
6'h10: dout_reg <= 64'h046342731018FF02;
6'h0F: dout_reg <= 64'h91E9E113A54E2B57;
6'h0E: dout_reg <= 64'h4874F009522715AB;
6'h0D: dout_reg <= 64'hA43AF804A9138A55;
6'h0C: dout_reg <= 64'hD21D7C825409C5AA;
6'h0B: dout_reg <= 64'h78E75F528F4A4982;
6'h0A: dout_reg <= 64'hAD9ACEBA62EB0F16;
6'h09: dout_reg <= 64'h47A4864E943BAC5C;
6'h08: dout_reg <= 64'h23D2C3274A9D56AE;
6'h07: dout_reg <= 64'h06016A5C89D498B1;
6'h06: dout_reg <= 64'h8380B5AE446A4C58;
6'h05: dout_reg <= 64'hC140DA57A2B5262C;
6'h04: dout_reg <= 64'hE0206DAB51DA9316;
6'h03: dout_reg <= 64'h7611DC09A1B9D1BA;
6'h02: dout_reg <= 64'h3D0984585908F0EC;
6'h01: dout_reg <= 64'h1805A870255060C7;
6'h00: dout_reg <= 64'h0C02D4B812A83063;
//
endcase // case(din)
//
end // always @(posedge clk)
endmodule
|
