Administrivia

• First off, be safe/healthy!
• Last miles:
  1. Virtual final project demo/presentation: 7 to 10-min video (DUE: Apr 13)
  2. Final project peer-evaluation (DUE: Apr 14/Apr 16)
  3. Final write-up/code (DUE: May 1)
  4. Quiz #2 will be distributed at 9am on Apr 21 (take-home/open-ended, 24h)
  5. Lab4 (DUE: Apr 20 w/ 2-week late days)

Virtual final project demo/presentation

• 7-10 min video (depending on #members in the team)
• Upload the video to Youtube
• Submit the link to us!

Grading policy (new)

• Preparation: 10%
• Quiz: 30%
  • 20%: max(Q1, Q2)
  • 10%: min(Q1, Q2)
• Lab: 40%: 8% + 8% + 8% + 8% + 8% (bonus 8% for lab5)
• Final project: 20%
  • Demo & presentation: 5% (peer evaluation)
  • Write-up/code: 15% (by TAs)

Q&A

Why can kernel access user program memory? For what purpose?

Given limited memory space, how does an embedded device handle virtual memory?

How does an operating system give the illusion of multiple things occurring simultaneously? For example, if I run a Python script, download a file from the web, and fetch a web page in my browser all at the same time it looks to me as if my Python script is running through to completion without being scheduled out by the scheduler but it also seems like the file I’m downloading never gets interrupted and same with fetching the web page.

Incorporating I/O in scheduling

Agenda

• LEC 15: Interrupt and Exception (Lab4, Phase 1)
• LEC 16: Process and Scheduling (Lab4, Phase 2)
• LEC 17: Virtual Memory (Lab4, Phase 3/4)
• LEC 18: Multicore and Synchronization (Lab5, Phase 1)

Summary: Abstraction: “process” (ref)

• The problems of a single process model (i.e., firmware)
  1. Only one program is allowed to run
  2. Need to develop a program with consideration of running programs

→ How to provide the illusion of owning the hardware?

Summary: Abstraction: “process” (ref)

• Key idea: abstracting the memory (virtual address space) and CPU (time sharing)
  1. Exception level → provides a strong isolation for a user process
  2. Interrupt handling → allowing preemptive multitasking

Today: virtual memory

• Isolation each processes by abstracting the virtual address space
• Disclaimer: more than isolation (i.e., lots of applications)
  1. On-demand paging
  2. Page swapping

Prep Q&A

1. Can we use EL3 for userspace, EL0 for kernel (yes/no)? why not?
2. Kernel can not read userspace memory (yes/no)?
3. Userspace can not read kernel’s memory (yes/no)?
4. Pointers in kernel are using physical address (yes/no)?
5. Processes requiring 3GB memory cannot run on a machine with 2GB RAM (yes/no)?

Address translation by MMU in Aarch64

Address translation by MMU in Aarch64

Unique MMU designs of Aarch64

• Two translation tables for top/bottom of the address space
  1. TTBR1: a table for an address starting with 0b111…
  2. TTBR0: a table for an address starting with 0b000…

Unique MMU designs of Aarch64

• IPS (Intermediate Physical Address Size): control the maximum output address size
• TG (Translation Granule): 00=4KB, 01=16KB, 11=64KB
• T0/1SZ: #bits to dispatch the address to TTBR0/1

Translation overview

• Given a virtual address:
  1. Decide which table (i.e., TTBR0/1) to use for address translation (based on T0/1SZ)
  2. Look up the entry inside the table (based on page size, TG)
  3. Output the physical address (limited by IPS)

Example: 2-level translation

• TG = 11 (64KB)
• T0/1SZ = 22 (42-bit address space)
• 8192 x 64-bit entries in the page table
• One entry refers 512MB (block descriptor)

Example: 3-level translation

• TG = 11 (64KB)
• T0/1SZ = 22 (42-bit address space)
• 8192 x 64-bit entries in the page table (L2)
  • One entry refers another page table, 64KB (table descriptor)
• 8192 x 64-bit entries in the page table (L3)
  • One entry refers 64KB (block descriptor)

Table entry

• Each entry in the page table (refer the reference for more detail!)

Table entry for supported page sizes

• 4KB page: translating up to four levels (pros/cons?)

• 64KB page: translating up to three levels (pros/cons?)

Cache polices

• MAIR (Memory Attribute Indirection Register): 3-bit index in the page table entry
  • Indicating that the cache policies of each memory block
  • e.g., Cacheable or Non-cacheable

Memory attribute

• Unprivileged eXecute Never (UXN) / Privileged eXecute Never (PXN)
• AF is the access flag
• SH is the shareable attribute
• AP is the access permission
• Indx is the index into the MAIR_ELn.

Memory attribute

• AP (access permission) for kernel/user R/W

Address spaces in RustOS

• TTBR0 for the kernel space (4GB)
• TTBR1 for the user space (1GB)
• 64KB page

MAIR in RustOS

// (ref: D7.2.70: Memory Attribute Indirection Register)
MAIR_EL1.set(
    (0xFF <<  0) |// AttrIdx=0: normal, IWBWA, OWBWA, NTR
    (0x04 <<  8) |// AttrIdx=1: device, nGnRE (must be OSH too)
    (0x44 << 16), // AttrIdx=2: non cacheable
);

TTBR in RustOS

// (ref: D7.2.91: Translation Control Register)
TCR_EL1.set(
    (0b00 << 37) |// TBI=0, no tagging
    (ips  << 32) |// IPS
    (0b11 << 30) |// TG1=64k
    (0b11 << 28) |// SH1=3 inner
    (0b01 << 26) |// ORGN1=1 write back
    (0b01 << 24) |// IRGN1=1 write back
    (0b0  << 23) |// EPD1 enables higher half
    ((USER_MASK_BITS as u64) << 16) | // T1SZ=34 (1GB)
    (0b01 << 14) |// TG0=64k
    (0b11 << 12) |// SH0=3 inner
    (0b01 << 10) |// ORGN0=1 write back
    (0b01 <<  8) |// IRGN0=1 write back
    (0b0  <<  7) |// EPD0 enables lower half
    ((KERNEL_MASK_BITS as u64) << 0), // T0SZ=32 (4GB)
);

TTBR0_EL1.set(baddr);
TTBR1_EL1.set(baddr);

Page Table in RustOS

#[repr(C)]
#[repr(align(65536))]
pub struct PageTable {
    pub l2: L2PageTable,
    pub l3: [L3PageTable; 3],
}

pub struct KernPageTable(Box<PageTable>);
pub struct UserPageTable(Box<PageTable>);

Page Table in RustOS

impl PageTable {
    /// Returns a new `Box` containing `PageTable`.
    /// Entries in L2PageTable should be initialized properly
    /// before return.
    fn new(perm: u64) -> Box<PageTable> {
        // linking three l3 page tables to l2
        for i in 0..=2 {
            pt.l2.entries[i]
                .set_value(EntryValid::Valid, RawL2Entry::VALID)
                .set_value(EntryType::Table, RawL2Entry::TYPE)
                .set_value(perm, RawL2Entry::AP)
                .set_value(EntrySh::ISh, RawL2Entry::SH)
                .set_value(EntryAttr::Mem, RawL2Entry::ATTR)
                .set_bit(RawL2Entry::AF)
                .set_masked(pt.l3[i].as_ptr().as_u64(), RawL2Entry::ADDR);
        }
...

Kernel Page Table in RustOS

impl KernPageTable {
    pub fn new() -> KernPageTable {
        let mut pt = PageTable::new(EntryPerm::KERN_RW);

        // normal memory
        let mut l3entry = RawL3Entry::new(0);
        l3entry
            .set_value(EntryValid::Valid, RawL3Entry::VALID)
            .set_value(PageType::Page, RawL3Entry::TYPE)
            .set_value(EntryAttr::Mem, RawL3Entry::ATTR)
            .set_value(EntryPerm::KERN_RW, RawL3Entry::AP)
            .set_value(EntrySh::ISh, RawL3Entry::SH)
            .set_bit(RawL3Entry::AF);

Kernel Page Table in RustOS

impl KernPageTable {
    pub fn new() -> KernPageTable {
        ...

        // iomem
        l3entry
            .set_value(EntrySh::OSh, RawL3Entry::SH)
            .set_value(EntryAttr::Dev, RawL3Entry::ATTR);

        let mut addr = IO_BASE;
        while addr < IO_BASE_END {
            l3entry.set_masked(addr as u64, RawL3Entry::ADDR);
            pt.set_entry(addr.into(), l3entry);
            addr += PAGE_SIZE;
        }
    }
}

Translation Lookaside Buffer (TLB)

• Cache of recent page translation: (virtual address → physical address)
• Should be flushed whenever the address space is modified (e.g., context switching)

  dsb ishst            // ensure write has completed
  tlbi alle1           // invalidate all TLB entries
  dsb ish              // ensure completion of TLB invalidation
  isb                  // synchronize context and ensure that no instructions are

Ref. Translation Lookaside Buffer

TLB and Performance

→ Please check this talk (a prep question)!

References

• ARMv8-A Address Translation
• Async/Await
• The Abstraction: The Process
• Scheduling: Introduction
• Scheduling: Proportional Share