Drive protection user bits on TL

[jsmithsf]

Related issue:

Type of change: other enhancement
Drive some relevant AMBA protection field information from Rocket.

Impact: API modification
When Rocket is configured to not use virtual memory, it will drive extra information on the TL user bits that can be converted into the AMBA protection fields.

Development Phase: implementation

Release Notes

The instruction vs data, cacheable vs. non-cacheable, and privileged vs. non-privileged information should be driven now.

Now we will mark an access as privileged if the core is in machine mode, or if the access is to a cacheable region.

[jsmithsf]

The changes are pretty minor, just looking for an approval from someone

[mwachs5]

so all cacheable accesses are also by definition privileged?

[jsmithsf]

The relevant point from the AMBA spec is that if a master cannot generate accurate protection information, it is recommended that we mark the transaction as privileged. Because caches like the L2 can merge requests from multiple different privilege modes, we can't accurately provide the protection information.

[mwachs5]

oh i see the comment here. so we are assuming everythign cacheable is going to memory port? If not this comment is a bit misleading

[jsmithsf]

Yes, currently we are assuming any cacheable thing is going to the memory port. During a short discussion that I had with @hcook he mentioned that it's possible this may change in the future if we add other types of ports.

[solomatnikov]

It seems it should be the opposite for safety, i.e. if you cannot figure out the exact privilege level, you should assume the lowest level of privilege.

[jsmithsf]

I don't understand ARM's reasoning behind their decision, but we are making this change to be more compatible with ARM behavior. So I think for that reason we should follow the same thing.

[terpstra]

I am confused. Since we cache everything on fetch, why is privileged not just tied to true?

[jsmithsf]

@terpstra, @aswaterman posed a similar question but was unsure.

[mwachs5]

If @daveparry can review i can rubber stamp (assuming his review is not strong enough)

[terpstra]

I wonder whether bufferable/modifiable should be !user_bit_cacheable ?

[terpstra]

I am confused. Since we cache everything on fetch, why is privileged not just tied to true?

[DecodeTheEncoded]

@jsmithsf Hi, Thanks for your work. I am rookie to rocketchip, and want to understand why AMBAProtField is needed when virtual memory is disabled.

  val masterNode = TLClientNode(Seq(TLMasterPortParameters.v1(
    clients = Seq(TLMasterParameters.v1(
      sourceId = IdRange(0, 1 + icacheParams.prefetch.toInt), // 0=refill, 1=hint
      name = s"Core ${staticIdForMetadataUseOnly} ICache")),
    requestFields = useVM.option(Seq()).getOrElse(Seq(AMBAProtField())))))

I am working on a chipyard configuration(rv32imac without os support), and when I port the deign to vcu118 fpga prototyping, the firrtl will complain some amba signal is not initialized.
I do some debugging, and found the problem is icache masterNode will have amba related userbits if useVM is false, through diplomacy negotiation, these requestFields will go downsteam and reach an end of fpga signal while there is no corresponding amba signal. So, I want to know why you add this in the first place. Thanks