Conversation
tarcieri
force-pushed
the
aes/armv8
branch
3 times, most recently
from
a1e14b5 to
b393f8b
Compare
tarcieri
commented
May 14, 2021
aes/src/armv8.rs
Outdated
|
|
||
| /// AES key expansion | ||
| #[inline] | ||
| pub fn expand_key<const N: usize>(key: &[u8; 16]) -> [[u8; 16]; N] { |
Member
Author
There was a problem hiding this comment.
Note: the implementation is using const generics. It's only using 1.51+ compatible features so far, and it's an internal implementation details, so I figured why not.
For comparison, the corresponding AES-NI implementation contains a lot of code duplication.
Member
Author
|
Tests are confirmed passing on an Apple M1 |
tarcieri
force-pushed
the
aes/armv8
branch
14 times, most recently
from
0a8b89f to
15c5f1b
Compare
Member
Author
|
Some preliminary benchmarks on a M1 Mac Mini:
|
tarcieri
force-pushed
the
aes/armv8
branch
5 times, most recently
from
88f2a98 to
3eb1e34
Compare
This was referenced May 15, 2021
Merged
tarcieri
force-pushed
the
aes/armv8
branch
2 times, most recently
from
465cca1 to
fc260d0
Compare
tarcieri
force-pushed
the
aes/armv8
branch
4 times, most recently
from
b3ec618 to
e5bcf77
Compare
tarcieri
changed the title
Member
Author
|
Removing WIP. I'd call this complete except for pipelining. It implements the following:
I will look at pipelining, with an eye on what improves performance on the M1 (since that's the most powerful ARMv8 I have access to). In the meantime I would love it if anyone could benchmark it on other 64-bit ARMv8 platforms. I'll leave this PR open for awhile to invite review. |
tarcieri
force-pushed
the
aes/armv8
branch
2 times, most recently
from
0e53607 to
9f81b5c
Compare
Member
Author
|
Implemented pipelining which operates 8-blocks-at-a-time. Saw some pretty nice performance gains on the Apple M1 (reaching nearly 10GB/sec on AES-128!) |
Adds a new nightly-only backend which uses ARMv8 Cryptography Extensions gated under the newly introduced `armv8` crate feature. Support is provided for AES-128, AES-192, and AES-256, with runtime CPU feature detection on Linux and macOS targets. These extensions are supported on both 32-bit and 64-bit ARM targets, however the current implementation is gated on `aarch64` (as that's the only architecture it's been tested on so far). However, it could be easily extended to 32-bit ARMv8 targets as well.
Member
Author
|
Going to go ahead and land this. At this point I'd say it's the best tested of all of the backends. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adds a new backend which uses ARMv8 Cryptography Extensions. These are currently unstable so support is gated under a newly added
armv8crate feature.These extensions are supported on both 32-bit and 64-bit ARM targets, however the current implementation is gated on
aarch64(as that's the only architecture it's been tested on so far).Closes #10.