The current emulator code has been written with Win64 in mind however current testing is being performed on macOS, Linux and FreeBSD. There are some sections of code that need to be abstracted.

The POSIX ABI proxy currently works with the Windows Services for Linux emulation layer however it can be ported to Win64 by using a subset of the Windows compatible POSIX APIs. e.g. std::thread but no fork.

The privileged emulator (when complete) can be made to run as a native Win64 application as it only needs to emulate virtual hardware (timer, framebuffer, virtio block, virtio net), not the POSIX API.

The primary changes required at present are memory mapping abstractions for Virtual{Alloc,Protect,Free} and mmap/munmap/mprotect.

Platform neutral type aliases are defined in asm/riscv-types.h instead of using stdint.h types due to the use of signed long int and unsigned long int for s64 and u64 by some library headers. The asm/riscv-types.h definitions are compatible with ILP32, LLP64 and LP64, which supports Windows and SVR4 ABIs for x86 and RISC-V.

    typedef signed int         s32;
    typedef unsigned int       u32;
    typedef signed long long   s64;
    typedef unsigned long long u64;

The minimum Windows target will be Visual Studio Community 2015.

Im tried run the make in centos machine but a have the next error. Somebody can help me.

 AR build/linux_x86_64/lib/libasmjit_x86.a
 CC build/linux_x86_64/obj/mem/mmap-linux.o
 CC build/linux_x86_64/obj/mem/mmap-core.o
src/mem/mmap-core.c:31:47: error: ‘MAP_ANONYMOUS’ undeclared here (not in a function)
 static const int METADATA_FLAGS = MAP_FIXED | MAP_ANONYMOUS | MAP_PRIVATE;
                                               ^~~~~~~~~~~~~
make: *** [Makefile:719: build/linux_x86_64/obj/mem/mmap-core.o] Error 1

An initial implementation of cycle metadata would add an additional file meta/opcode-cycles that contains an opcode and a constant number of cycles.

It could be rigged so that the cycle count is a C style expression that has access to the instruction operands. eg mul "log_2(rs1)" (or an appropriate expression for the implementation). Load and Store instructions may also similarly be exposed to variables representing a simple cache model e.g. cache_hit. Latency needs to be considered eventually however an initial model may provide a simple approximation of cycles.

lui    1
auipc  1
jalr   2
beq    2
bne    2
blt    2
jal    2
lb     "cache_hit * 2 + (1-cache_hit) * 50"
lh     "cache_hit * 2 + (1-cache_hit) * 50"
lw     "cache_hit * 2 + (1-cache_hit) * 50"

libSystem default zone seems to allocate some memory before we get a chance to change the default allocator. Some libSystem default zone allocations appear to collide with the translated guest address space due to the zero page size being reduced.

-Wl,-pagezero_size,0x1000 -Wl,-no_pie -image_base 0x10000000000

libSystem allocator doesn't start the heap after the application text and instead allocates low memory. Heap corruption can be seen when trapping into the debug CLI in rv-sim or rv-jit on OS X (the two programs that use custom allocators).

No problem exists with the malloc hooks on Linux.

Add a LaTeX instruction table generator that uses some of the additional metadata

• use C-based pseudo code from meta/opcode-pseudocode-c
• use math based pseudo code from meta/opcode-pseudocode-alt
• translate math based pseudo code to LaTeX using meta/notation
• use instruction names from meta/opcodes-fullnames
• use instruction descriptions from meta/opcodes-descriptions
• add immediate decode diagrams (TikZ/PGF _1,_2,*3)

[1] http://www.texample.net/media/pgf/builds/pgfmanualCVS2012-11-04.pdf
[2] http://hastebin.com/ziketikusa.tex
[3] http://i.cubeupload.com/g1J0Vi.png

The JIT API currently just checks instruction operands and emits the instruction.

• Add simple buffer implementation to collect JIT output
• Add support for labels, and link step
• Add mprotect handling (W^X) so output JIT can be executed
• Add host ABI trampoline for calling JIT with arguments and return value

Is there a way to get rv-meta to output the reserved regions of the RISC-V spec in the various tables it outputs?

If not, what do you think would be the best way to add such a feature?

The following 32-bit operations are required to sign extend their results:

• addw, subw, mulw, divw, remw, divuw, remuw, sllw, srlw, sraw, addiw, slliw, srliw, sraiw

The code currently emits sign extension code after each operation. If the emitter keeps track of the width of the last operation, it would be possible to sign extend the register lazily either when it is used as input to a 64-bit operation or at a branch tail or the end of a trace.

Add generator to generate encode and decode template specialisations using BMI2 PEXT/PDEP

• use riscv-host to check for Intel BMI2 support
• add mechanism to select optimized decoder template

The application currently does not use polymorphism, rather there will be x86 host optimized templates and the instantiation will be selected statically so there is no virtual function call overhead.

The use of virtual is discouraged, and is presently only used in the src/model and src/gen i.e. not in code that is in the fast path.

compress-elf is currently only able to translate very simple ELF executables. There are still issues with ambiguities between constants and addresses, and translated function addresses within ELF data segments.

Further investigation and potential compiler tuning to create a RISC-V target that can be statically translated. e.g. resolve static translation ambiguities using a well formed subset of RISC-V that can differentiate pointers vs integrals (LUI vs AUIPC), and resolve indirect call targets via symbol metadata. e.g. ELF debug symbols / DWARF.

This research into static translation will be feed into a future region or trace based dynamic translator.

Implement instruction fetch, loads and stores using current privilege level and flags e.g. MSTATUS.{MPRV,PUM,MXR,VM}

• fetch_inst
• load
• store
• walk_page_table

Implement a minimal subset of PMA with PMP attributes (emu/riscv-pma.h) to protect M-mode PA from S-mode.

switch (proc.mstatus.vm) {
    case riscv_vm_mbare: /* TODO */ break;
    case riscv_vm_mbb:   /* TODO */ break;
    case riscv_vm_mbid:  /* TODO */ break;
    case riscv_vm_sv32:  /* TODO */ break;
    case riscv_vm_sv39:  /* TODO */ break;
    case riscv_vm_sv48:  /* TODO */ break;
}

The RISC-V Instruction Set Manual
Volume II: Privileged Architecture
Document Version 20190608-Priv-MSU-Ratified

mbadaddr : -> mtval?
The mbadaddr register has been subsumed by a more general mtval register that can now
capture bad instruction bits on an illegal instruction fault to speed instruction emulation.
(Preface to Version 1.10 - Page 5)

mbase : ?
mibase : ?
mdbase : ?
mbound : ?
mibound : ?
mdbound : ?

sptbr : -> satp
The supervisor virtual memory configuration has been moved from the mstatus register to
the sptbr register. Accordingly, the sptbr register has been renamed to satp (Supervisor
Address Translation and Protection) to reflect its broadened role.
(Preface to Version 1.10 - Page 5)

sbadaddr : stval?

thanks for reading and for the great work done with the simulator!

Currently, meta/csrs contains basic information about CSRs such as numbers, permissions, and names. meta/enums also lists some of the specific fields of CSRs, such as the possible values and meanings of, for example, mstatus.fs. However, information about the structure of CSRs, such as the location of fields (e.g. which bits of mstatus correspond to fs?) is non-existent in meta/. Currently, this information exists in emu/processor-priv-1.9.h for a few machine-level CSRs.

It would be useful to have this information (along with information about whether a field is WIRI, WPRI, WLRL, or WARL) encoded in plain text in meta/, possibly in the style of meta/operands.

To test RV128I in the absence of compiler and binutils support, it will likely take less effort to implement a very simple metadata driven assembler.

The following pieces already exist: string tables, opcode and operand format metadata, pseudo instruction metadata and encoder, compression metadata and encoder, instruction encoders, assembly-like format parser, operand limit verifiers, label support (in riscv-compress-elf) and ELF output support already exist.

In addition to the RISC-V assembly formats that exist in the disassembler, the following directives, label formats and addressing modes need to be implemented to enable compilation of simple test cases:

Directives

Labels

text labels:

labels:

numeric labels for 1f, 1b type expressions:

1:

Addressing modes

absolute addressing

        lui a1, %hi(msg)            # load msg(hi)
        addi a1, a1, %lo(msg)       # load msg(lo)

relative addressing

1:      auipc a1, %pcrel_hi(msg)    # load msg(hi)
        addi a1, a1, %pcrel_lo(1b)  # load msg(lo)

jit-fusion.h contains a simple state machine that matchs CALL (AUIPC+JALR) and LA (AUIPC+ADDI) to coalesce them into one single operation. It is intended that the state machine can coalesce other instruction sequences however there is currently a bug in the fusion state machine that appears on test-miniz so it is currently disabled.

git diff 452537c51871d6f5670d22b32153e6f294411b6f..edd60409afead0f95628985c98fcb58e0811c000
--- a/src/app/rv-jit.cc
+++ b/src/app/rv-jit.cc
@@ -91,13 +91,13 @@ using proxy_model_rv32imafdc = processor_rv32imafdc_model<
        jit_decode, processor_rv32imafd, mmu_proxy_rv32>;
 using proxy_jit_rv32imafdc = jit_runloop<
        processor_proxy<proxy_model_rv32imafdc>,
-       jit_fusion<jit_emitter_rv32<proxy_model_rv32imafdc>>>;
+       jit_emitter_rv32<proxy_model_rv32imafdc>>;
 
 using proxy_model_rv64imafdc = processor_rv64imafdc_model<
        jit_decode, processor_rv64imafd, mmu_proxy_rv64>;
 using proxy_jit_rv64imafdc = jit_runloop<
        processor_proxy<proxy_model_rv64imafdc>,
-       jit_fusion<jit_emitter_rv64<proxy_model_rv64imafdc>>>;
+       jit_emitter_rv64<proxy_model_rv64imafdc>>;
 
 /* environment variables */

• compiler agnostic u128 and s128 multiply are implemented defined using constant time 64-bit {add,shift,and}
• compiler agnostic u128 and s128 divide needs to be implemented (using 64-bit bitwise division)

I'm trying to use rv8 to run codes that are compiled by 32bits compiler. My 32bits compiler is built using --with-arch=rv32gc and --with-abi=ilp32d. And the version of my compiler is 7.2.0. I find the output of rv8/src/test/test-fpu-printf.c is not correct.

The content of test-fpu-printf.c:

#include <stdio.h>

int main()
{
	float f1 = 1.0f;
	float f2 = 3.0f;
	float f3 = f1 / f2;
	printf("%.9ef ÷ %.9ef = %.9ef\n", f1, f2, f3);
}

I set RISCV as the path of the 32bits compiler, and run make test-build-rv32 to compile codes.

I also use objdump to see the generated assembly instructions:

test-fpu-printf:     file format elf32-littleriscv


Disassembly of section .text:

00010074 <main>:
   10074:	1101                	addi	sp,sp,-32
   10076:	0000b797          	auipc	a5,0xb
   1007a:	37a7b787          	fld	fa5,890(a5) # 1b3f0 <__clzsi2+0x40>
   1007e:	a43e                	fsd	fa5,8(sp)
   10080:	0000b797          	auipc	a5,0xb
   10084:	3787b787          	fld	fa5,888(a5) # 1b3f8 <__clzsi2+0x48>
   10088:	4822                	lw	a6,8(sp)
   1008a:	48b2                	lw	a7,12(sp)
   1008c:	a43e                	fsd	fa5,8(sp)
   1008e:	0000b697          	auipc	a3,0xb
   10092:	3726b787          	fld	fa5,882(a3) # 1b400 <__clzsi2+0x50>
   10096:	4722                	lw	a4,8(sp)
   10098:	47b2                	lw	a5,12(sp)
   1009a:	a43e                	fsd	fa5,8(sp)
   1009c:	4622                	lw	a2,8(sp)
   1009e:	46b2                	lw	a3,12(sp)
   100a0:	0000b517          	auipc	a0,0xb
   100a4:	36850513          	addi	a0,a0,872 # 1b408 <__clzsi2+0x58>
   100a8:	ce06                	sw	ra,28(sp)
   100aa:	24bd                	jal	10318 <printf>
   100ac:	40f2                	lw	ra,28(sp)
   100ae:	4501                	li	a0,0
   100b0:	6105                	addi	sp,sp,32
   100b2:	8082                	ret

But the otuput is:

Besides, I don't know why the compiler emits fld and fsd instructions. Since the variables f1 and f2 are float, the compiler should use flw and fsw.

I tried the above command from all the directories including home and root, riscv,rv8--etc. It keeps giving me the error no such file or directory. can someone help me to generate logfiles and histograms for my elf files or please let me know how to execute the commands like this "rv-sim build/riscv64-unknown-elf/bin/hello-world-libc".

Thanks in advance.

ELF128

There needs to be some discussion around how ELF is mapped to 128-bit, given that there may be ABI variants, and there is a distinction between 128-bit integrals vs 128-bit pointers. i.e. An ELF128 ABI could potentially have an 'offset' concept that is a compact memory representation of a 'pointer' relative to some base pointer.

e.g. define Elf128_Off as u64 as this represents an offset within the ELF image, and likewise define Elf128_Xword and Elf128_Sxword as u64 and s64 respectively, as these are used for segment sizes.

This proposed typing based on ELF64 only promotes the Addr type to 128. Linkers and link loaders may store 'offsets' relative to some reference address. e.g. start of segment.

Draft Elf128 types

• typedef u128 Elf128_Addr;
• typedef u16 Elf128_Half;
• typedef u64 Elf128_Off;
• typedef s32 Elf128_Sword;
• typedef u32 Elf128_Word;
• typedef u64 Elf128_Xword;
• typedef s64 Elf128_Sxword;
• typedef u8 Elf128_Byte;

The 128-bit shift instructions in asm/riscv-operators.h and meta/opcode-pseudocode-c do not all generate constant time assembly (i.e. avoid branch instructions that may leak timing information). The ternary operators need to be replaced with constant time bitwise predicate logic.

A separate version of pseudocode-c may be added that contains simpler to read non predicate form logic that excludes the special cases for NaN, divide by zero, underflow and overflow.

• all operators used in cryptographic code should be constant time at the expense of performance.
• an alternative fast math option may be provided that sacrifices precision and the constant time constraint for performance.

The current bitfield structs in emu/riscv-machine.h and emu/riscv-pte.h require endian macros in a similar fashion to the register structs in emu/riscv-processor.h due to structure bitfield order differences for different emulator host endianness.

#if _BYTE_ORDER == _LITTLE_ENDIAN
    /* */
#else
    /* */
#endif

The alternative is to define enums with bit positions and masks for the various CSRs with sub fields.

The original intent behind using the structure bitfields is that it lends itself to nicer pseudo-code e.g. mstatus.MPRV vs (mstatus & MPRV_MASK)

I was wondering if you would be interested in supporting sorting the output of rv-meta in different ways?

I'm interested in sorted the output via opcode + funct values. (FYI - I'm also interested in knowing if a funct3 / opcode space is fully populated.)

I can imaging wanting to sort by extension and instruction format too.

I am working on instruction profile (frequency of instruction) of typical programs and required your program to simulate and make histograms of dynamic instructions that are run on a processor using RiscV executable file. I successfully installed rv8 and riscv-tools but was not able to run a typical hello world program and got the following error,

TRAP :breakpoint pc:0x112c badaddr:0x112c

when I tried running using the command, rv-sys --instruction-usage-histogram helloworld.
I tried to remove printf and scanf in the possibility of rv-sys not supporting system calls but got the same error. I also tried to include -static option to the cross-compiler but with no success.
I tried to get the total instruction count of helloworld using spike pk -s and was able to run the program and get the total dynamic instruction counts. (helloworld seems to be cross-compiled correctly).
I compiled using the tool, riscv64-unknown-elf-gcc

Contents of the file:

#include <stdio.h>

int main(void)
{
printf("Hello Riscv Word!");
return 0;
}

Details:
Ubuntu 16.04 LTS 64-bit
i7-6700 HQ
16 GB DDR4 RAM
UEFI System
GPT Partitioning
Asus ROG GL552VW-CN230T

PS.

I even tried to use the tool rv-sim --instruction-usage-histogram but was not able to get the required histograms. I got only the output specified in the program hello.c.
I tried to run the testing program provided bbl by using the tool rv-sys, but was not able to run it (Terminal gave no output and seemed to be stuck (not frozen)).
I tried on a virtual and a native host machine both, getting the same result.

​

The emulator can use a user supplied seed or hardware random to seed a PRNG to create entropy in all integer registers excluding sp (1920 bit for RV64). sp holds a reference to a (temporary) stack.

In haste a PRNG was used over a CSPRNG as there are no digest algorithms in the standard library. This will be replaced with a CSPRNG such as SHA-2 (SHA-512).

For simulation purposes the use of the mersenne twister PRNG is sufficient however a CSPRNG should be used for productionised binary translation.

Add a generator that uses meta data that maps C operators to functions so that the existing pseudo code used for interpreter generated can be machine translated into Berkeley SoftFloat calls

• Required to support QP
• Potentially support SP, DP; e.g. test and verification for the host C style hard float
• See SoftFloat Release 3b (2016 July) http://www.jhauser.us/arithmetic/SoftFloat.html

Implement the privileged CSRs and address translation modes from priv-1.9.

The privileged implementation will primarily involve these files:

• src/app/riscv-test-emulate.cc
• src/emu/riscv-mmu.h
• src/emu/riscv-machine.h

Snippet from src/emu/riscv-mmu.h

        template <typename P> u64 fetch_inst(P &proc, UX pc)
        {
            return 0; // TODO
        }

        // T is one of u64, u32, u16, u8
        template <typename P, typename T, bool aligned> bool load(P &proc, UX va, T &val)
        {
            return false; // TODO
        }

        // T is one of u64, u32, u16, u8
        template <typename P, typename T, bool aligned> bool store(P &proc, UX va, T val)
        {
            return false; // TODO
        }

        // T is one of u64, u32, u16, u8
        template <typename P> uintptr_t translate_addr(P &proc, UX va)
        {
            switch (proc.mstatus.vm) {
                case riscv_vm_mbare: /* TODO */ break;
                case riscv_vm_mbb:   /* TODO */ break;
                case riscv_vm_mbid:  /* TODO */ break;
                case riscv_vm_sv32:  /* TODO */ break;
                case riscv_vm_sv39:  /* TODO */ break;
                case riscv_vm_sv48:  /* TODO */ break;
            }
            return -1;
        }

        // PTM is one of sv32, sv39, sv48
        template <typename PTM> bool walk_page_table(UX va, typename PTM::pte_type &pte)
        {
            return false; // TODO
        }

Reduce size of decode structure in asm/riscv-codec.h from 16 bytes to 12 bytes with the intention of increasing decode performance. The immediate can also be stored as a signed 32 bit value.

The current decode model was based primarily around compression and it decodes all items from the instruction into the decode structure, including registers which have fixed locations in the Base ISA.

The proposal is to change the decode structure so that the fixed place items (registers) are no longer decoded until access (using bitfield unions) and to make changes to the interpreter generator to reference the registers within union structures. This will reduce the decode memory bandwidth and reduce the number of host instructions (icache pressure) required to decode an instruction, however inlining may increase icache pressure as there will be shift/and to access registers within each emulated instruction instead of in the codec.

This new proposal, while it saves space for the decoded immediate and registers, requires an additional 2 bytes to store the compressed version of the instruction (which will be zeroed if not compressed) as the 32-bit instruction will be used to store the decoded operands for compressed instructions. Primarily this approach defers register decode nearer to instruction execution and cache locality for operand access to the instruction.

32 bytes

• 4 bytes (encoded instruction)
• 4 bytes (decoded operands)
• 4 bytes (redundant immediate bits)
• 2 bytes (compressed instruction)

Register assignments within the Base ISA codecs (asm/riscv-decode.h and asm/riscv-encode.h) will be removed for the IMAFD i.e. they will only be required to decode the immediate as the registers will be referenced in place. This change will also allow the inst field to be removed from asm/riscv-disasm.h and will reduce struct disasm it from 32 bytes to 20 bytes.

Compressed instructions will need to store their instruction in a 16-bit element so that their operands can be decompressed into the union register aliases.

Disadvantage with this approach is that it will no longer be possible to have byte addresses for the register operands. The existing approach may be better suited to binary translation?

Alternative: use 64-bit union with inst_64, inst_32 and inst_16, to allow decode of 48-bit and 64-bit instructions. Size would remain 16 bytes for the structure however the decode order and 32-bit base ISA codecs would be simplified. i.e. registers can be accessed in place.

    struct decode
    {
        int32_t imm    : 32;
        union {
            uint32_t inst_32   : 32;
            struct {
                /* register and operands bit field */
            } operand;
        } base;
        uint32_t inst_16   : 16;
        uint32_t  op    : 8;
        uint32_t  codec : 8;
        /* uint32_t  rd    : 5; // move into union that aliases inst_32 */ 
        /* uint32_t  rs1   : 5; // move into union that aliases inst_32 */ 
        /* uint32_t  rs2   : 5; // move into union that aliases inst_32 */ 
        /* uint32_t  rs3   : 5; // move into union that aliases inst_32 */ 
        /* uint32_t  rm    : 3; // move into union that aliases inst_32 */ 
        /* uint32_t  aq    : 1; // move into union that aliases inst_32 */ 
        /* uint32_t  rl    : 1; // move into union that aliases inst_32 */ 
        /* uint32_t  pred  : 4; // move into union that aliases inst_32 */ 
        /* uint32_t  succ  : 4; // move into union that aliases inst_32 */ 
    };

The proxy emulator needs the stack frame setup so that command line arguments and environment can be read from the host system. The current stack frame is just a empty stack that allows running programs with no command line arguments. The host environment passed to the emulator should be verified (a selected subset).

   STACK TOP
   env data
   arg data
   padding, align 16
   auxv table, AT_NULL terminated
   envp array, null terminated
   argv pointer array, null terminated
   argc <- stack pointer

Hi,

Having fun and playing with the idea of generating graphics with linux framebuffer and riscv assembly code of my computer. I already got my random generator to flush the screen with noise. But it's handcoded with the buffer size. I stumbled upon the ioctl calls not seeming to work.

Peeked into the rv8 src/abi/. It looks like the ioctl only supports one command and for everything else it's been programmed to give EINVAL.

The ioctl commands I tried to get to work:

FBIOGET_VSCREENINFO = 0x4600
FBIOGET_FSCREENINFO = 0x4602

The code I tried:

addi sp, sp, -fb_fix_screeninfo_size
mv a0, gp                           # fbfd
li a1, FBIOGET_VSCREENINFO
mv a2, sp                           # The screeninfo size pointer. 
li a7, sys_ioctl
ecall
blt a0, zero, fail

Could add few lines into the rv8 to make this work. But should I? It feels laborious to add some check for every single one ioctl that's been used by Linux.

• This can be used to implement ABI tracing statements in src/abi/riscv-unknown-abi.h
• The use of variadic templates creates fixed sized stack frames which are safer than varargs
• Format string vulnerabilities should be considered during the implementation
• Support for s128 and u128 Decimal and Hex
• Support for QP float (gdtoa). Import: https://github.com/jwiegley/gdtoa/

RV128I

• LDU, LQ (OP-LOAD, funct3[14:12]=Q.width)
• SQ (OP-STORE, funct3[14:12]=Q.width)
• ADDD, SUBD, SLLD, SRLD, SUBD, SRAD (OP-64)
• ADDID, SLLID, SRLID, SRAID (OP-IMM-64)

RV128M

• MULD, DIVD, DIVUD, REMD, REMUD (OP-64)

RV128A

• LR.D, SC.D, AMO{*}.D (OP-AMO, funct3[14:12]=Q.width)

RV32Q, RV64Q

• FLQ (OP-LOAD-FP, funct3[14:12]=Q.width)
• FSQ (OP-STORE-FP, funct3[14:12]=Q.width)
• F{*}.Q (OP-FP, fmt[26:25]=Q.fmt)

RV128FDQ

• FCVT.{F,D,Q}.C (OP-FP, funct5[31:27]={{F,D,Q}.C}, fmt[26:25]={S,D,Q})
• FCVT.{F,D,Q}.CU (OP-FP, funct5[31:27]={{F,D,Q}.CU}, fmt[26:25]={S,D,Q})
• FCVT.C.{F,D,Q} (OP-FP, funct5[31:27]={C.{F,D,Q}}, fmt[26:25]={S,D,Q})
• FCVT.CU.{F,D,Q} (OP-FP, funct5[31:27]={CU.{F,D,Q}}, fmt[26:25]={S,D,Q})

The meta emulator uses the TLSF memory allocator: https://github.com/mattconte/tlsf

It does this due to the non default link location to allow loading RISC-V executables into the lower part in the non privileged common address space proxy model (not --privileged which currently implements a soft-mmu).

MACOS_LDFLAGS = -Wl,-pagezero_size,0x1000 -Wl,-no_pie -image_base 0x40000000
LINUX_LDFLAGS = -Wl,--section-start=.text=0x40000000 -static

The platform allocator is not guaranteed to adjust its allocation area for the new text segment location so we implement a custom allocator that is the same on all platforms.

The issue is Clang generates code like this on x86_64, which requires allocations to be 16-byte aligned:

0000000040068f1e	movaps	%xmm0, 0x70(%rbx)
0000000040068f22	movaps	%xmm0, 0x60(%rbx)
0000000040068f26	movaps	%xmm0, 0x50(%rbx)
0000000040068f2a	movaps	%xmm0, 0x40(%rbx)

There are some pretty deep assumptions made in the TLSF allocator around 4 and 8 byte alignment so the allocator may need to be changed for a more flexible and thread-safe cross platform allocator.

The base address for the asmjit allocator is currently hardcoded in asmjit/src/asmjit/base/osutils.cppand the base address for the dlmalloc allocator is hardcoded in src/mem/osmorecore.cc.

asmjit needs an interface to pass the mmap base address to JitRuntime / CodeHolder / VMemMgr in asmjit/src/asmjit/base/vmem.cpp.

Consider replacing dlmalloc with tcmalloc.

Currently all RVC instructions are labeled with either rv32c or rv64c however some of the compressed opcodes depend on the F or D extensions.

Update meta/opcodes labels on compressed floating point instructions to use rv32cf, rv32cd, rv64cf, rv64cd labels and update the model to interpret multiple suffixes as an 'and' of the extensions.

• RV32IMAC selects rv32c
• RV32IMAFC selects rv32c and rv32cf
• RV64IMAFDC selects rv64c, rv64cf and rv64cd

Complete compiler agnostic u128 and s128 integer operation support.

Implement using operator overloads so that the riscv128 C pseudo-code generated interpreter will work unchanged in terms of the currently defined type system. e.g.

• ==, !=, <, >= (for both s128 and u128)
• +, -, bitwise logical operations, bit shifts (for both s128 and u128)

• make test-sim
• make test-sys
• rv-jit build/riscv64-unknown-elf/bin/test-dhrystone

All of them crash with an error message illegal hardware instruction (core dumped)

I'm guessing jit emits instructions from sse3 or higher.

Cpu: Intel(R) Core(TM)2 Duo CPU T5900 @ 2.20GHz with flags fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx lm constant_tsc arch_perfmon pebs bts rep_good nopl cpuid aperfmperf pni dtes64 monitor ds_cpl est tm2 ssse3 cx16 xtpr pdcm lahf_lm pti dtherm

Edit: It looks like it crashes here on __asm__ volatile ("rdtscp\n" : "=a" (a), "=d" (d));

Proxy syscalls are currently defined in src/abi/riscv-unknown-abi.h to match the riscv-unknown-elf toolchain.

The target syscall set is the minimum set required to run apache with mod_ssl / openssl.

I think that you can perform bit sign extension in fewer instructions than claimed. I'm using an ARMish syntax here (since that's what I'm familiar with...)

; a0: argument
; a1: value less than XLEN for the bit position to be extended
addi a1 a1 #-32 ; Assuming 32-bit arch. For RV64 or 128, replace as appropriate
neg a1 a1
sll a0 a0 a1
sra a0 a0 a1

Similarly, for signed bit extend by an immediate, you can just perform the left shift and arithmetic right shift.

The debug and panic macros currently use varargs and require length identifiers on integrals.

The new fmt interface is similar to Go and does not require length modifiers for fmt parameters. All integer parameters are sign extended to the largest integer type and are boxed with type width information using CTTI (Compile Time Type Identification).

PRIxPTR, PRIdPTR, PRIuPTR can be replaced with %x, %d and %u
PRIxPTR, PRIdPTR, PRIuPTR can be replaced with %x, %d and %u

'll' or 'l' modifiers can be removed

The 16-bit and 64-bit bitextend templates are not working on Apple LLVM version 8.0.0 (clang-800.0.42.1). 32-bit bitextend template are working fine. Need to test on gcc.