Add new tuning option: Constant-time branches #1338

stnolting · 2025-08-15T04:50:46Z

New top generic to enable constant-time branches (data-independent timing):

CPU_CONSTT_BR_EN : boolean := false; -- implement constant-time branches

When this option is enabled, all conditional branch instructions have identical execution times for taken and not taken branch conditions. Thus, all branches behave as if they were always taken (including a complete CPU pipeline flush). Enabling this feature makes execution times more predictable and makes timing side-channel attacks more difficult.
When disabled, not-taken conditional branches are executed faster without clearing the CPU pipeline. Hence, for maximum performance, this feature should be disabled.

stnolting added 3 commits August 15, 2025 06:42

[cpu] add new tuning option: constant-time branches

1bcbf0f

[top] add new generic for constant-time branches

94b330c

[mxcsr] add new flag to check for constant-time branches tuning option

09b62d9

stnolting self-assigned this Aug 15, 2025

stnolting added enhancement New feature or request HW Hardware-related labels Aug 15, 2025

stnolting added 3 commits August 15, 2025 06:51

[docs] minor edits

09d3a3b

[changelog] add v1.11.9.4

ada5fb6

[sim] add new tuning option to testbench

3953372

stnolting marked this pull request as ready for review August 15, 2025 05:11

stnolting merged commit 3e1cbb3 into main Aug 15, 2025
7 checks passed

stnolting deleted the constant_time_branches branch August 15, 2025 07:22

Provide feedback