Enable sha2 AArch64 extension on Linux

linkmauve · linkmauve · commit bf0bc7488b4f · 2020-01-05T23:48:01.000Z
The feature gate is specific to glibc on Linux, using getauxval() to
check the CPU flags, so it’s currently not used on other systems.
Patches welcome. :)

The sha2 extension only provides SHA-256 instructions, so keep using the
plain Rust implementation for SHA-512 until someone adds sha512
extension assembly (I have no computer to test that with).
diff --git a/sha2/src/aarch64.rs b/sha2/src/aarch64.rs
@@ -0,0 +1,11 @@
+// From sys/auxv.h
+const AT_HWCAP: u64 = 16;
+const HWCAP_SHA2: u64 = 64;
+extern {
+    fn getauxval(type_: u64) -> u64;
+}
+
+pub fn sha2_supported() -> bool {
+    let hwcaps: u64 = unsafe { getauxval(AT_HWCAP) };
+    (hwcaps & HWCAP_SHA2) != 0
+}
diff --git a/sha2/src/lib.rs b/sha2/src/lib.rs
@@ -67,10 +67,12 @@ extern crate sha2_asm;
 extern crate std;
 
 mod consts;
-#[cfg(not(feature = "asm"))]
+#[cfg(any(not(feature = "asm"), target_arch = "aarch64"))]
 mod sha256_utils;
-#[cfg(not(feature = "asm"))]
+#[cfg(any(not(feature = "asm"), target_arch = "aarch64"))]
 mod sha512_utils;
+#[cfg(all(feature = "asm", target_arch = "aarch64", target_os = "linux"))]
+mod aarch64;
 mod sha256;
 mod sha512;
 
diff --git a/sha2/src/sha256.rs b/sha2/src/sha256.rs
@@ -24,10 +24,30 @@ struct Engine256State {
 impl Engine256State {
     fn new(h: &[u32; STATE_LEN]) -> Engine256State { Engine256State { h: *h } }
 
+    #[cfg(not(all(feature = "asm", target_arch = "aarch64", target_os = "linux")))]
     pub fn process_block(&mut self, block: &Block) {
         let block = unsafe { &*(block.as_ptr() as *const [u8; 64]) };
         compress256(&mut self.h, block);
     }
+
+    #[cfg(all(feature = "asm", target_arch = "aarch64", not(target_os = "linux")))]
+    pub fn process_block(&mut self, block: &Block) {
+        let block = unsafe { &*(block.as_ptr() as *const [u8; 64]) };
+        ::sha256_utils::compress256(&mut self.h, block);
+    }
+
+    #[cfg(all(feature = "asm", target_arch = "aarch64", target_os = "linux"))]
+    pub fn process_block(&mut self, block: &Block) {
+        let block = unsafe { &*(block.as_ptr() as *const [u8; 64]) };
+        // TODO: Replace this platform-specific call with is_aarch64_feature_detected!("sha2") once
+        // that macro is stabilised and https://github.com/rust-lang/rfcs/pull/2725 is implemented
+        // to let us use it on no_std.
+        if ::aarch64::sha2_supported() {
+            compress256(&mut self.h, block);
+        } else {
+            ::sha256_utils::compress256(&mut self.h, block);
+        }
+    }
 }
 
 /// A structure that keeps track of the state of the Sha-256 operation and
diff --git a/sha2/src/sha512.rs b/sha2/src/sha512.rs
@@ -6,9 +6,9 @@ use block_buffer::byteorder::{BE, ByteOrder};
 
 use consts::{STATE_LEN, H384, H512, H512_TRUNC_224, H512_TRUNC_256};
 
-#[cfg(not(feature = "asm"))]
+#[cfg(any(not(feature = "asm"), target_arch = "aarch64"))]
 use sha512_utils::compress512;
-#[cfg(feature = "asm")]
+#[cfg(all(feature = "asm", not(target_arch = "aarch64")))]
 use sha2_asm::compress512;
 
 type BlockSize = U128;
