External Release v2023.10.11

Updated CPUs and instructions according to ISE (Intel® Architecture Instruction Set Extensions and Future Features) rev-050, September 2023. Added: - New USER_MSR and FRED instructions - New chips: Emerald Rapids, Clearwater Forest and Panther Lake - ENC2 updates with support for AMX/EVEX, IMM dest operand and EVEX scalable operand size instructions - Instructions for contributing to the Intel® XED project (README.md) Fixed: - xed_agen() API: Avoid potential signed integer overflow (closes #305) - AMX: Fixed element types and updated extension definition Modified: - Updated DAZ behavior of several AVX_NE_CONVERT instructions - Dropped Grand Ridge (No new ISA over SRF) - Updated PBNDKB CPUID name Co-authored-by: marjevan <[email protected]>
intelxed · Oct 16, 2023 · d7d46c7 · d7d46c7
1 parent 01a6da8
commit d7d46c7
Show file tree

Hide file tree

Showing 66 changed files with 2,145 additions and 634 deletions.
diff --git a/.github/actions/antivirus-scan/action.yml b/.github/actions/antivirus-scan/action.yml
@@ -0,0 +1,60 @@
+#BEGIN_LEGAL
+#
+#Copyright (c) 2023 Intel Corporation
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+#  
+#END_LEGAL
+
+name: Anti-virus scan
+description: performs malware scan
+inputs:
+  av_scan_path:
+    description: 'Path to antivirus scan tool'
+    required: true
+outputs:
+  summary:
+    description: 'summary of anti-virus scan'
+    value: ${{ steps.gen_av_scan_sum.outputs.summary }}
+runs:
+  using: "composite"
+  steps:
+    - name: protex scan
+      run: |
+          python3 .github/scripts/antivirus_scan.py --path ${{ inputs.av_scan_path }}
+      shell: bash
+    - name: upload full results # uploads anti-virus scan results as artifact
+      id: upload
+      uses: actions/upload-artifact@v3
+      with:
+        name: anti-virus-sum
+        path: ./logs/avscan.txt
+    - name: Generate anti-virus scan summary
+      id: gen_av_scan_sum
+      run: |
+          av_sum=$( cat "./logs/antivirus_summary.txt" )
+          echo "summary=$av_sum" >> $GITHUB_OUTPUT
+      shell: bash
+    - name: add PR comment   # uploads anti-virus scan summary as pull-request comment
+      uses: actions/github-script@v6
+      if: github.event_name == 'pull_request'   # add scan summary as comment only if there is a PR
+      with:
+        script: |
+          const fs = require('fs');
+          github.rest.issues.createComment({
+            issue_number: context.issue.number,
+            owner: context.repo.owner,
+            repo: context.repo.repo,
+            body: "Anti-virus scan summary: ${{ steps.gen_av_scan_sum.outputs.summary }}"
+          })
+
diff --git a/.github/actions/coverity-report/action.yml b/.github/actions/coverity-report/action.yml
@@ -0,0 +1,51 @@
+#BEGIN_LEGAL
+#
+#Copyright (c) 2023 Intel Corporation
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+#  
+#END_LEGAL
+name: Coverity report generation
+description: generates Coverity CVSS and Security reports
+inputs:
+  auth_key:
+    description: 'Path to authentication key'
+    required: true
+  username:
+    description: 'Coverity username'
+    required: true
+  server:
+    description: 'URL to the Coverity server'
+    required: true
+  components:
+    description: 'components to include in the report'
+    required: false
+    default: ""
+runs:
+  using: "composite"
+  steps:
+    - name: Coverity report gen
+      run: |
+          python3 .github/scripts/gen_cov_reports.py --user=${{inputs.username}} --auth-key=${{inputs.auth_key}} \
+            --url=${{inputs.server}} --component="${{inputs.components}}"
+      shell: bash
+    - name: upload cvss results # uploads coverity cvss report as artifact
+      uses: actions/upload-artifact@v3
+      with:
+        name: cov-cvss-report
+        path: ./logs/cvss_report.pdf
+    - name: upload security results # uploads coverity security report as artifact
+      uses: actions/upload-artifact@v3
+      with:
+        name: cov-security-report
+        path: ./logs/security_report.pdf
diff --git a/.github/actions/coverity-scan/action.yml b/.github/actions/coverity-scan/action.yml
@@ -0,0 +1,67 @@
+#BEGIN_LEGAL
+#
+#Copyright (c) 2023 Intel Corporation
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+#  
+#END_LEGAL
+name: Coverity scan
+description: performs Coverity static code analysis
+inputs:
+  linux_auth_key:
+    description: 'Path to Linux authentication key'
+    required: true
+  windows_auth_key:
+    description: 'Path to Windows authentication key'
+    required: true
+  os:
+    description: 'perform Coverity scan on the specified os'
+    required: true
+  compiler:
+    description: 'perform Coverity scan on the specified compiler'
+    required: true
+  version:
+    description: 'compiler version'
+    required: true
+  server:
+    description: 'URL to the Coverity server'
+    required: true
+  additional_knobs:
+    description: 'add additional knobs for the python script (e.g. --external)'
+    required: false
+    default: ""
+outputs:
+  cov_sum:
+    description: 'summary of coverity scan'
+    value: ${{ steps.gen_coverity_sum.outputs.cov_sum }}
+runs:
+  using: "composite"
+  steps:
+    - name: Xed Coverity Scan (Linux)
+      run: |
+          cd xed
+          python3 .github/scripts/coverity.py --compiler=${{inputs.compiler}} --version=${{inputs.version}} --url=${{ inputs.server }} --auth-key=${{ inputs.linux_auth_key }} ${{ inputs.additional_knobs }}
+      if: ${{ matrix.os == 'Linux' }}
+      shell: bash
+    - name: Xed Coverity Scan (Windows)
+      run: |
+          cd xed
+          python3 .github/scripts/coverity.py --compiler=${{inputs.compiler}} --version=${{inputs.version}} --url=${{ inputs.server }} --auth-key=${{ inputs.windows_auth_key }} ${{ inputs.additional_knobs }}
+      if: ${{ matrix.os == 'Windows' }}
+      shell: bash
+    - name: Generate Coverity summary
+      id: gen_coverity_sum
+      run: |
+          cov_issue_sum_${{inputs.os}}=$( cat "xed/logs/coverity/${{inputs.os}}_cov_issue_sum.txt" )
+          echo "cov_sum=$cov_issue_sum_${{inputs.os}}" >> $GITHUB_OUTPUT
+      shell: bash
diff --git a/.github/actions/protex-scan/action.yml b/.github/actions/protex-scan/action.yml
@@ -0,0 +1,55 @@
+#BEGIN_LEGAL
+#
+#Copyright (c) 2023 Intel Corporation
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+#  
+#END_LEGAL
+
+name: Protex scan
+description: performs Protex scan
+inputs:
+  bdstool_path:
+    description: 'Path to Protex bdstool'
+    required: true
+  username:
+    description: 'Protex username'
+    required: true
+  password:
+    description: 'Protex password'
+    required: true
+  server:
+    description: 'URL to the Protex server'
+    required: true
+  proj_id:
+    description: 'Protex project ID'
+    required: true
+runs:
+  using: "composite"
+  steps:
+    - name: protex scan
+      run: |
+          python3 .github/scripts/protex.py --project-id ${{ inputs.proj_id }} --url ${{ inputs.server }} \
+            --user ${{ inputs.username }} --pass ${{ inputs.password }} --tool-path ${{ inputs.bdstool_path }}
+      shell: bash
+    - name: add comment   # uploads protex guidance as pull-request comment
+      uses: actions/github-script@v6
+      if: github.event_name == 'pull_request'   # add scan summary as comment only if there is a PR
+      with:
+        script: |
+          github.rest.issues.createComment({
+            issue_number: context.issue.number,
+            owner: context.repo.owner,
+            repo: context.repo.repo,
+            body: "Protex scan finished; view results at ${{ inputs.server }}"
+          })