Remove AVX-512 RNG backend, since RNG doesn't expose enough parallelism to make it worth the complexity

caelunshun · caelunshun · commit 9f4b9c9a3fc0 · 2025-11-02T19:35:32.000-07:00
diff --git a/chacha20/src/backends/avx512.rs b/chacha20/src/backends/avx512.rs
@@ -2,9 +2,6 @@
 use crate::{Rounds, Variant};
 use core::marker::PhantomData;
 
-#[cfg(feature = "rng")]
-use crate::ChaChaCore;
-
 #[cfg(feature = "cipher")]
 use crate::{STATE_WORDS, chacha::Block};
 
@@ -59,49 +56,6 @@ where
     }
 }
 
-#[inline]
-#[target_feature(enable = "avx512f")]
-#[cfg(feature = "rng")]
-pub(crate) unsafe fn rng_inner<R, V>(core: &mut ChaChaCore<R, V>, buffer: &mut [u32; 64])
-where
-    R: Rounds,
-    V: Variant,
-{
-    use core::slice;
-
-    use crate::rng::BLOCK_WORDS;
-
-    let state_ptr = core.state.as_ptr() as *const __m128i;
-    let v = [
-        _mm512_broadcast_i32x4(_mm_loadu_si128(state_ptr.add(0))),
-        _mm512_broadcast_i32x4(_mm_loadu_si128(state_ptr.add(1))),
-        _mm512_broadcast_i32x4(_mm_loadu_si128(state_ptr.add(2))),
-    ];
-    let mut c = _mm512_broadcast_i32x4(_mm_loadu_si128(state_ptr.add(3)));
-    c = _mm512_add_epi64(c, _mm512_set_epi64(0, 3, 0, 2, 0, 1, 0, 0));
-    let mut ctr = [c; MAX_N];
-    for i in 0..MAX_N {
-        ctr[i] = c;
-        c = _mm512_add_epi64(c, _mm512_set_epi64(0, 4, 0, 4, 0, 4, 0, 4));
-    }
-    let mut backend = Backend::<R, V> {
-        v,
-        ctr,
-        _pd: PhantomData,
-    };
-
-    let buffer = slice::from_raw_parts_mut(
-        buffer.as_mut_ptr().cast::<Block>(),
-        buffer.len() / BLOCK_WORDS as usize,
-    );
-    backend.gen_par_ks_blocks_inner::<4, { 4 / BLOCKS_PER_VECTOR }>(buffer.try_into().unwrap());
-
-    core.state[12] =
-        _mm256_extract_epi32::<0>(_mm512_extracti32x8_epi32::<0>(backend.ctr[0])) as u32;
-    core.state[13] =
-        _mm256_extract_epi32::<1>(_mm512_extracti32x8_epi32::<0>(backend.ctr[0])) as u32;
-}
-
 struct Backend<R: Rounds, V: Variant> {
     state: [__m128i; 3],
     ctr: __m128i,
diff --git a/chacha20/src/rng.rs b/chacha20/src/rng.rs
@@ -189,11 +189,7 @@ impl<R: Rounds, V: Variant> ChaChaCore<R, V> {
                 backends::soft::Backend(self).gen_ks_blocks(buffer);
             } else if #[cfg(any(target_arch = "x86", target_arch = "x86_64"))] {
                 cfg_if! {
-                    if #[cfg(chacha20_force_avx512)] {
-                        unsafe {
-                            backends::avx512::rng_inner::<R, V>(self, buffer);
-                        }
-                    } else if #[cfg(chacha20_force_avx2)] {
+                    if #[cfg(chacha20_force_avx2)] {
                         unsafe {
                             backends::avx2::rng_inner::<R, V>(self, buffer);
                         }
@@ -202,12 +198,8 @@ impl<R: Rounds, V: Variant> ChaChaCore<R, V> {
                             backends::sse2::rng_inner::<R, V>(self, buffer);
                         }
                     } else {
-                        let (avx512_token, avx2_token, sse2_token) = self.tokens;
-                        if avx512_token.get() {
-                            unsafe {
-                                backends::avx512::rng_inner::<R, V>(self, buffer);
-                            }
-                        } else if avx2_token.get() {
+                        let (_avx512_token, avx2_token, sse2_token) = self.tokens;
+                        if avx2_token.get() {
                             unsafe {
                                 backends::avx2::rng_inner::<R, V>(self, buffer);
                             }
diff --git a/chacha20/tests/kats.rs b/chacha20/tests/kats.rs
@@ -98,6 +98,7 @@ mod chacha20test {
 
 // Long input test to check the full parallel AVX-512 implementation.
 // Test data generated from random byte strings.
+#[cfg(feature = "cipher")]
 mod chacha20test_long {
     use chacha20::{ChaCha20, KeyIvInit};
     use cipher::StreamCipher;
