Pointer Masking ACT

[jjscheel]

Technical Group

Pointer Masking TG

ratification-pkg

Pointer Masking

Technical Liaison

Martin Maas, Adam Zabrocki

Task Category

Arch Tests

Task Sub Category

• [ ] gcc
• [ ] binutils
• [ ] gdb
• [ ] intrinsics
• [ ] Java
• [ ] KVM
• [ ] ld
• [ ] llvm
• [ ] Linux kernel
• [ ] QEMU
• [ ] Spike

Ratification Target

3Q2023

Statement of Work (SOW)

SOW: link

SOW Signoffs: (delete those not needed)

• Task group liaison sign-off date:
• Development partner sign-off date:
• ACT SIG sign-off date (if ACT work):

Waiver

• [ ] Freeze
• [ ] Ratification

Pull Request Details

• ACT Tests: PR #484
• Coverage: TBD

[jjscheel]

This work is not yet staffed.

[jjscheel]

@mustafa7755, @Muhammad-Saadi-Abbasi, it sounds like you guys will be working on this. I've assigned it to both of you not knowing if you're sharing or working on separate pieces. Feel free to unassign yourselves as-appropriate based on assignments.

[jjscheel]

If possible, I'd like an update in the April 25th meeting on when you think you'll have the following dates:

• [ ] Development of code complete (ready to test)
• [ ] Testing complete (ready to submit first PR)
• [ ] Last PR accepted (done)

Comments in the issue with these dates would be great.

[jjscheel]

BTW, I should note for this issue that it's marked "At Risk" due to the fact that we had no one assigned.

Given that we have assignees, I'd like their comfort with the SOW and have a basic plan before we move back to "As Planned" status. My hope is that we'll be able to do this in the April 25th meeting at the latest.

[jjscheel]

@Muhammad-Saadi-Abbasi, @mustafa7755, please review the SOW and note that there have been updates to the content based on the feedback from Architecture Review.

This is a good reminder that the contents of the specification may be in flux until we get final AR approval. So, please be advised.

[UmerShahidengr]

Update: Apr 25th, 2023 => The planning phase of this project has been completed, this is the test plan for the viewers to review: Test plan Pointer Masking Ext Goal for next week: Develop the skeleton code (Basic R/W access to the Pointer masking CSR regs) according to the ACT template, and run it on Spike via riscof.

[UmerShahidengr]

@martinmaas, @Adam-pi3 Sir, Please find some time to review the test plan. You are the domain experts, so your comments would be valuable.

[martinmaas]

Apologies for the delayed response (I was on vacation and it took me a while to catch up on everything after coming back). Thank you so much for working on this!

My main feedback is that the latest version of the pointer masking spec has removed instruction pointer masking, which obviates the need for tests related to instructions and to the *ipmen fields.

https://github.com/riscv/riscv-j-extension/blob/master/zjpm-spec.pdf

Some additional feedback:

• We will still need to test interrupts/exceptions and how pointer masking behaves when changing between different privilege levels.
• All cases need to be tested for all privilege modes and address translation modes (Sv39, Sv48, Sv57 and Bare) that are supported.
• There is an additional corner case where a misaligned address wraps around (e.g., reading 64 bit from 0x...fffffa). We should cover this in the tests.
• We should ensure that we cover all instructions subject to pointer masking. In addition to the ones on the second page, this now includes CMOs as well.
• We should test that the behavior for MPRV=1 is correct.
• Pointer masking is not currently defined for RV32, so no testing is needed for that case.

Please don't hesitate to let @Adam-pi3 and me know if there are any additional questions.

[UmerShahidengr]

Update May 7th, 2023 ⇾ Not much update on this task. Possibly it will get deferred to Q3, 2023 because of upcoming new work (debug native triggers)

[jjscheel]

@martinmaas, thanks for the update. Would you kindly ensure that your additional comments about ACT get into the referenced SOW document (link)?

[jjscheel]

Thanks for the update, @UmerShahidengr. I recognize we're in a holding pattern here.

I'm going to leave on the Agenda for discussion purpsoses at this time.

@martinmaas, @Adam-pi3, you folks should be aware that given the challenges we've had with Code Size Reduction, I've got 1 resource to spend on either Pointer Masking and/or Debug. So, barring some explicit priority guidance, they will be started first-come, first serve. I'll be in touch with what and how we decide.

[jjscheel]

Correction, the challenges with Pointer Masking ACT have been in Zfinx, Zfh, Zdinx, and Zhinx.

[jjscheel]

The discussion this week in the Pointer Masking TG was that @martinmaas would request the Architecture Review Committee to prioritize closure of the items preventing SAIL and ACT work in hopes of keeping this work moving forward.

@martinmaas, please provide an update when available.

[UmerShahidengr]

Update May 23rd, 2023 => Not much update on this task yet.

[jjscheel]

@martinmaas, any update from AR?

Marking as Blocked until we get AR resolution of issues.

[Muhammad-Saadi-Abbasi]

@jjscheel, the tool-chain doesn't has support for Zjpm extension.

[jjscheel]

@martinmaas, @Adam-pi3, what is the status of the toolchain work per @Muhammad-Saadi-Abbasi's question?

[martinmaas]

Pointer masking does not add any new instructions and can thus be used without toolchain support. Once the spec has passed architecture review, the toolchain will need to add some constants, but those shouldn't block ACT or Sail.

An (out of date) example can be found here: https://github.com/martinmaas/riscv-arch-test/commit/f3ba7f8c65496f46a11409b938888a6cb5cb1a56

Please also note that the latest changes requested by the architecture review committee will remove the new CSRs that pointer masking is adding and use the existing *envcfg CSRs.

[jjscheel]

Thanks, @martinmaas! Please keep us posted on the the ARC changes.

[UmerShahidengr]

Update ⇾ June 12th, 2023: Still blocked. No update

[jjscheel]

Agreed. Removing from Agenda. Re-visit next meeting.

[jjscheel]

Moving Projected completion out 6 months based on where we are to 12/30.

[UmerShahidengr]

Update ⇾ July 11th, 2023 Blocked

[jjscheel]

Comment from most recent ARC minutes (July 10) - link

Zjpm (Pointer Masking): Recent feedback from AR was incorporated into an updated spec. Review of this has started, with initial discussion about whether the presence of pointer masking affects the required minimum implemented width of CSRs that hold addresses. The following conclusions were reached:

• Hardware writes of addresses capture a transformed address in the CSR.
• Software writes capture the write data value in the CSR unmodified.
• The implemented WARL width of the register (i.e. how many lsb CSR bits are physically implemented with storage) remains unchanged from the current architecture's WARL specs for each such CSR. For example, if currently tval CSRs support 52 bits valid addresses and pointer masking is implemented and enabled with 16 msb's of masking, the necessary minimum implemented width of tval CSRs remains 52 bits irrespective of whether pointer masking is enabled or disabled.

[jjscheel]

Per ARC minutes from 8/23/2023: https://lists.riscv.org/g/tech-chairs/message/1593

The ARC continued discussion of the Pointer Masking spec, with the primary issue being the extension and enable bit names. The previous suggestion that the enable bit names be tied to the extension names was deemed inappropriate upon reflection because Pointer Masking an attribute of the ABI for given mode of operation, and the extension names are for the bits at higher modes of operation that define the enable bits. It was also suggested that the number of address bits be included in the name (not the number of ignored bits to make it independent of RV64 vs. RV128). As a result, our recommendation is now that the Pointer Masking enable bits be named PM48E in their respective CSRs. This enables would be read-only 0 in RV32 modes of operation.

[UmerShahidengr]

Update ⇾ September 26th, 2023 No update on this.

[UmerShahidengr]

Update ⇾ October 24th, 2023 No update on this.

[jjscheel]

From ARC Minutes for 11/14/2023: https://lists.riscv.org/g/tech-unprivileged/message/585

An updated pointer-masking spec was received, and ARC expects to complete final review and approve next week.

Unblocking. @UmerShahidengr, as they say in racing, "Start your engines!"

[UmerShahidengr]

Update ⇾ November 28th, 2023 Great to hear that. Thanks for the update @jjscheel

[UmerShahidengr]

Update ⇾ December 12th, 2023 @HAMZA-AFZAL404 will work on this in parallel to the Sail implementation

[jjscheel]

Thanks, @UmerShahidengr! Please ensure that Hamza gets a RISC-V Portal id, joins the devpartners community, and places their GH id in their profile. Questions can come directly to me.

[UmerShahidengr]

Update ⇾ March 5th, 2024 Stalled as there is no compiler support for Pointer Masking, so we cant write any assembly tests to verify it.

[jjscheel]

According to the Pointer Masking ISA Status Checklist, "Freeze" tab only CSR access is needed for Pointer Masking support.

@martinmaas, @Adam-pi3, can you confirm that his is the case and assist with an explanation of how test should be written?

[martinmaas]

That's correct – pointer masking doesn't add any additional CSRs or instructions (it only defines new bits in existing CSRs). No compiler support is needed.

[UmerShahidengr]

Pointer Masking defines new bits in existing CSRs, but those bits were reserved earlier. Accessing those reserved bits are giving compile time errors. @HAMZA-AFZAL404 , @muhammad-maarij-zeeshan can you share your insights here.

[martinmaas]

Which compiler are you using, and what is the error message you are seeing? I had written some simple one-off tests (using gcc) and they compiled without problems, but it could be different for LLVM or other versions of GCC. If this does require changes to the compiler, it is probably a very simple patch.

[jjscheel]

Thanks, @martinmaas. @UmerShahidengr, @HAMZA-AFZAL404 , or @muhammad-maarij-zeeshan can you provide some details, please?

[HAMZA-AFZAL404]

Pointer Masking ACT,s - Test Plan

Hello everyone,

I'm currently working on a test plan for verifying pointer masking in Sail. I've written some test cases, but there are a few that I'm not entirely sure about and would appreciate your guidance on.

Specifically, I'm interested in understanding what will happen when we mask 16 bits of the physical address.

I've outlined my current understanding and approach in the test plan. You can access it here.

If there's is any mistake in this plan. You can edit it and State a reason in the Comment Column.Thank you for your time and assistance.

[jjscheel]

@martinmaas, @Adam-pi3, your guidance on @HAMZA-AFZAL404 's post would be appreciated. Thanks!

[martinmaas]

For physical addresses, pointer masking with 16 bits means that the effective address is the same as if the top 16 bits of the address are set to 0.

Looking at the remaining part of the spreadsheet: Sv48 doesn't necessarily have to result in a page fault – in that case, the effective address is the same as if the top 16 bits are the sign extension of bit 47.

[HAMZA-AFZAL404]

Thank you, Martin, for your insights. For more clarification i want to discuss a specific scenario related to pointer masking on physical addresses.Correct me if i am wrong please

Let’s consider an example where the original address is 0x0080000000000688. If we apply pointer masking with PMLEN = 16, the resulting address becomes 0x0000000000000688.

So Far as i understand address probably gona be invalid. So it will lead to an access fault.

[martinmaas]

For a physical address, the resulting address with PMLEN=16 becomes 0x0080000000000688. For a virtual address, it becomes 0xFF80000000000688. Whether or not it becomes an access fault depends on whether this part of the address space is valid/mapped.

[UmerShahidengr]

Update ⇾ April 2nd, 2024 @HAMZA-AFZAL404 has been working on ACTs. The work is in development phase

[HAMZA-AFZAL404]

For a physical address, the resulting address with PMLEN=16 becomes 0x0080000000000688. For a virtual address, it becomes 0xFF80000000000688. Whether or not it becomes an access fault depends on whether this part of the address space is valid/mapped.

Lets say any kind of fault happens on accessing this address what should be wrriten in the tval .The "masked address" or the "unmasked address".

[martinmaas]

Apologies for the delayed response. Section 2.6 describes the details of when the masked or unmasked address should be used. For hardware writes to registers such as tval, pointer masking is applied (i.e., the tag is removed).

[UmerShahidengr]

Update ⇾ April 18th, 2024 ACTs are under development. Almost all tests are ready except pointer masking with sv57 and pointer masking with vector operations. For the time being, we are ignoring ACTs related to pointer masking with vector operations, rest of the tests will be delivered before our next meeting. CC: @HAMZA-AFZAL404

[UmerShahidengr]

Update April 30th, 2024: ACTs are ready but the coverpoint definitions are yet to be added,

[jjscheel]

@UmerShahidengr, what is the status of the coverpoints definitions? Any progress?

[martinmaas]

Thanks @UmerShahidengr for the work on this! Is there a PR for the ACTs, even if the coverpoint definitions are missing?

[martinmaas]

(My reason for asking is that we need to validate the Spike port, and even incomplete ACTs would be very helpful.)

CC: @HAMZA-AFZAL404 @UmerShahidengr