Code Review / openocd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
ARMv7-M: make DAP commands verify target is an ARMv7-M
[openocd.git] / src / target / arm926ejs.c
1 /***************************************************************************
2 * Copyright (C) 2007 by Dominic Rath *
3 * Dominic.Rath@gmx.de *
4 * *
5 * Copyright (C) 2007,2008,2009 by Øyvind Harboe *
6 * oyvind.harboe@zylin.com *
7 * *
8 * This program is free software; you can redistribute it and/or modify *
9 * it under the terms of the GNU General Public License as published by *
10 * the Free Software Foundation; either version 2 of the License, or *
11 * (at your option) any later version. *
12 * *
13 * This program is distributed in the hope that it will be useful, *
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
16 * GNU General Public License for more details. *
17 * *
18 * You should have received a copy of the GNU General Public License *
19 * along with this program; if not, write to the *
20 * Free Software Foundation, Inc., *
21 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
22 ***************************************************************************/
23 #ifdef HAVE_CONFIG_H
24 #include "config.h"
25 #endif
26
27 #include "arm926ejs.h"
28 #include <helper/time_support.h>
29 #include "target_type.h"
30 #include "register.h"
31 #include "arm_opcodes.h"
32
33
34 /*
35 * The ARM926 is built around the ARM9EJ-S core, and most JTAG docs
36 * are in the ARM9EJ-S Technical Reference Manual (ARM DDI 0222B) not
37 * the ARM926 manual (ARM DDI 0198E). The scan chains are:
38 *
39 * 1 ... core debugging
40 * 2 ... EmbeddedICE
41 * 3 ... external boundary scan (SoC-specific, unused here)
42 * 6 ... ETM
43 * 15 ... coprocessor 15
44 */
45
46 #if 0
47 #define _DEBUG_INSTRUCTION_EXECUTION_
48 #endif
49
50 #define ARM926EJS_CP15_ADDR(opcode_1, opcode_2, CRn, CRm) ((opcode_1 << 11) | (opcode_2 << 8) | (CRn << 4) | (CRm << 0))
51
52 static int arm926ejs_cp15_read(struct target *target, uint32_t op1, uint32_t op2,
53 uint32_t CRn, uint32_t CRm, uint32_t *value)
54 {
55 int retval = ERROR_OK;
56 struct arm7_9_common *arm7_9 = target_to_arm7_9(target);
57 struct arm_jtag *jtag_info = &arm7_9->jtag_info;
58 uint32_t address = ARM926EJS_CP15_ADDR(op1, op2, CRn, CRm);
59 struct scan_field fields[4];
60 uint8_t address_buf[2] = {0, 0};
61 uint8_t nr_w_buf = 0;
62 uint8_t access = 1;
63
64 buf_set_u32(address_buf, 0, 14, address);
65
66 jtag_set_end_state(TAP_IDLE);
67 if ((retval = arm_jtag_scann(jtag_info, 0xf)) != ERROR_OK)
68 {
69 return retval;
70 }
71 arm_jtag_set_instr(jtag_info, jtag_info->intest_instr, NULL);
72
73 fields[0].tap = jtag_info->tap;
74 fields[0].num_bits = 32;
75 fields[0].out_value = NULL;
76 fields[0].in_value = (uint8_t *)value;
77
78
79 fields[1].tap = jtag_info->tap;
80 fields[1].num_bits = 1;
81 fields[1].out_value = &access;
82 fields[1].in_value = &access;
83
84 fields[2].tap = jtag_info->tap;
85 fields[2].num_bits = 14;
86 fields[2].out_value = address_buf;
87 fields[2].in_value = NULL;
88
89 fields[3].tap = jtag_info->tap;
90 fields[3].num_bits = 1;
91 fields[3].out_value = &nr_w_buf;
92 fields[3].in_value = NULL;
93
94 jtag_add_dr_scan(4, fields, jtag_get_end_state());
95
96 long long then = timeval_ms();
97
98 for (;;)
99 {
100 /* rescan with NOP, to wait for the access to complete */
101 access = 0;
102 nr_w_buf = 0;
103 jtag_add_dr_scan(4, fields, jtag_get_end_state());
104
105 jtag_add_callback(arm_le_to_h_u32, (jtag_callback_data_t)value);
106
107 if ((retval = jtag_execute_queue()) != ERROR_OK)
108 {
109 return retval;
110 }
111
112 if (buf_get_u32(&access, 0, 1) == 1)
113 {
114 break;
115 }
116
117 /* 10ms timeout */
118 if ((timeval_ms()-then)>10)
119 {
120 LOG_ERROR("cp15 read operation timed out");
121 return ERROR_FAIL;
122 }
123 }
124
125 #ifdef _DEBUG_INSTRUCTION_EXECUTION_
126 LOG_DEBUG("addr: 0x%x value: %8.8x", address, *value);
127 #endif
128
129 arm_jtag_set_instr(jtag_info, 0xc, NULL);
130
131 return ERROR_OK;
132 }
133
134 static int arm926ejs_mrc(struct target *target, int cpnum, uint32_t op1,
135 uint32_t op2, uint32_t CRn, uint32_t CRm, uint32_t *value)
136 {
137 if (cpnum != 15) {
138 LOG_ERROR("Only cp15 is supported");
139 return ERROR_FAIL;
140 }
141 return arm926ejs_cp15_read(target, op1, op2, CRn, CRm, value);
142 }
143
144 static int arm926ejs_cp15_write(struct target *target, uint32_t op1, uint32_t op2,
145 uint32_t CRn, uint32_t CRm, uint32_t value)
146 {
147 int retval = ERROR_OK;
148 struct arm7_9_common *arm7_9 = target_to_arm7_9(target);
149 struct arm_jtag *jtag_info = &arm7_9->jtag_info;
150 uint32_t address = ARM926EJS_CP15_ADDR(op1, op2, CRn, CRm);
151 struct scan_field fields[4];
152 uint8_t value_buf[4];
153 uint8_t address_buf[2] = {0, 0};
154 uint8_t nr_w_buf = 1;
155 uint8_t access = 1;
156
157 buf_set_u32(address_buf, 0, 14, address);
158 buf_set_u32(value_buf, 0, 32, value);
159
160 jtag_set_end_state(TAP_IDLE);
161 if ((retval = arm_jtag_scann(jtag_info, 0xf)) != ERROR_OK)
162 {
163 return retval;
164 }
165 arm_jtag_set_instr(jtag_info, jtag_info->intest_instr, NULL);
166
167 fields[0].tap = jtag_info->tap;
168 fields[0].num_bits = 32;
169 fields[0].out_value = value_buf;
170 fields[0].in_value = NULL;
171
172 fields[1].tap = jtag_info->tap;
173 fields[1].num_bits = 1;
174 fields[1].out_value = &access;
175 fields[1].in_value = &access;
176
177 fields[2].tap = jtag_info->tap;
178 fields[2].num_bits = 14;
179 fields[2].out_value = address_buf;
180 fields[2].in_value = NULL;
181
182 fields[3].tap = jtag_info->tap;
183 fields[3].num_bits = 1;
184 fields[3].out_value = &nr_w_buf;
185 fields[3].in_value = NULL;
186
187 jtag_add_dr_scan(4, fields, jtag_get_end_state());
188
189 long long then = timeval_ms();
190
191 for (;;)
192 {
193 /* rescan with NOP, to wait for the access to complete */
194 access = 0;
195 nr_w_buf = 0;
196 jtag_add_dr_scan(4, fields, jtag_get_end_state());
197 if ((retval = jtag_execute_queue()) != ERROR_OK)
198 {
199 return retval;
200 }
201
202 if (buf_get_u32(&access, 0, 1) == 1)
203 {
204 break;
205 }
206
207 /* 10ms timeout */
208 if ((timeval_ms()-then)>10)
209 {
210 LOG_ERROR("cp15 write operation timed out");
211 return ERROR_FAIL;
212 }
213 }
214
215 #ifdef _DEBUG_INSTRUCTION_EXECUTION_
216 LOG_DEBUG("addr: 0x%x value: %8.8x", address, value);
217 #endif
218
219 arm_jtag_set_instr(jtag_info, 0xf, NULL);
220
221 return ERROR_OK;
222 }
223
224 static int arm926ejs_mcr(struct target *target, int cpnum, uint32_t op1,
225 uint32_t op2, uint32_t CRn, uint32_t CRm, uint32_t value)
226 {
227 if (cpnum != 15) {
228 LOG_ERROR("Only cp15 is supported");
229 return ERROR_FAIL;
230 }
231 return arm926ejs_cp15_write(target, op1, op2, CRn, CRm, value);
232 }
233
234 static int arm926ejs_examine_debug_reason(struct target *target)
235 {
236 struct arm7_9_common *arm7_9 = target_to_arm7_9(target);
237 struct reg *dbg_stat = &arm7_9->eice_cache->reg_list[EICE_DBG_STAT];
238 int debug_reason;
239 int retval;
240
241 embeddedice_read_reg(dbg_stat);
242 if ((retval = jtag_execute_queue()) != ERROR_OK)
243 return retval;
244
245 /* Method-Of-Entry (MOE) field */
246 debug_reason = buf_get_u32(dbg_stat->value, 6, 4);
247
248 switch (debug_reason)
249 {
250 case 0:
251 LOG_DEBUG("no *NEW* debug entry (?missed one?)");
252 /* ... since last restart or debug reset ... */
253 target->debug_reason = DBG_REASON_DBGRQ;
254 break;
255 case 1:
256 LOG_DEBUG("breakpoint from EICE unit 0");
257 target->debug_reason = DBG_REASON_BREAKPOINT;
258 break;
259 case 2:
260 LOG_DEBUG("breakpoint from EICE unit 1");
261 target->debug_reason = DBG_REASON_BREAKPOINT;
262 break;
263 case 3:
264 LOG_DEBUG("soft breakpoint (BKPT instruction)");
265 target->debug_reason = DBG_REASON_BREAKPOINT;
266 break;
267 case 4:
268 LOG_DEBUG("vector catch breakpoint");
269 target->debug_reason = DBG_REASON_BREAKPOINT;
270 break;
271 case 5:
272 LOG_DEBUG("external breakpoint");
273 target->debug_reason = DBG_REASON_BREAKPOINT;
274 break;
275 case 6:
276 LOG_DEBUG("watchpoint from EICE unit 0");
277 target->debug_reason = DBG_REASON_WATCHPOINT;
278 break;
279 case 7:
280 LOG_DEBUG("watchpoint from EICE unit 1");
281 target->debug_reason = DBG_REASON_WATCHPOINT;
282 break;
283 case 8:
284 LOG_DEBUG("external watchpoint");
285 target->debug_reason = DBG_REASON_WATCHPOINT;
286 break;
287 case 9:
288 LOG_DEBUG("internal debug request");
289 target->debug_reason = DBG_REASON_DBGRQ;
290 break;
291 case 10:
292 LOG_DEBUG("external debug request");
293 target->debug_reason = DBG_REASON_DBGRQ;
294 break;
295 case 11:
296 LOG_DEBUG("debug re-entry from system speed access");
297 /* This is normal when connecting to something that's
298 * already halted, or in some related code paths, but
299 * otherwise is surprising (and presumably wrong).
300 */
301 switch (target->debug_reason) {
302 case DBG_REASON_DBGRQ:
303 break;
304 default:
305 LOG_ERROR("unexpected -- debug re-entry");
306 /* FALLTHROUGH */
307 case DBG_REASON_UNDEFINED:
308 target->debug_reason = DBG_REASON_DBGRQ;
309 break;
310 }
311 break;
312 case 12:
313 /* FIX!!!! here be dragons!!! We need to fail here so
314 * the target will interpreted as halted but we won't
315 * try to talk to it right now... a resume + halt seems
316 * to sync things up again. Please send an email to
317 * openocd development mailing list if you have hardware
318 * to donate to look into this problem....
319 */
320 LOG_WARNING("WARNING: mystery debug reason MOE = 0xc. Try issuing a resume + halt.");
321 target->debug_reason = DBG_REASON_DBGRQ;
322 break;
323 default:
324 LOG_WARNING("WARNING: unknown debug reason: 0x%x", debug_reason);
325 /* Oh agony! should we interpret this as a halt request or
326 * that the target stopped on it's own accord?
327 */
328 target->debug_reason = DBG_REASON_DBGRQ;
329 /* if we fail here, we won't talk to the target and it will
330 * be reported to be in the halted state */
331 break;
332 }
333
334 return ERROR_OK;
335 }
336
337 static uint32_t arm926ejs_get_ttb(struct target *target)
338 {
339 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
340 int retval;
341 uint32_t ttb = 0x0;
342
343 if ((retval = arm926ejs->read_cp15(target, 0, 0, 2, 0, &ttb)) != ERROR_OK)
344 return retval;
345
346 return ttb;
347 }
348
349 static void arm926ejs_disable_mmu_caches(struct target *target, int mmu,
350 int d_u_cache, int i_cache)
351 {
352 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
353 uint32_t cp15_control;
354
355 /* read cp15 control register */
356 arm926ejs->read_cp15(target, 0, 0, 1, 0, &cp15_control);
357 jtag_execute_queue();
358
359 if (mmu)
360 {
361 /* invalidate TLB */
362 arm926ejs->write_cp15(target, 0, 0, 8, 7, 0x0);
363
364 cp15_control &= ~0x1U;
365 }
366
367 if (d_u_cache)
368 {
369 uint32_t debug_override;
370 /* read-modify-write CP15 debug override register
371 * to enable "test and clean all" */
372 arm926ejs->read_cp15(target, 0, 0, 15, 0, &debug_override);
373 debug_override |= 0x80000;
374 arm926ejs->write_cp15(target, 0, 0, 15, 0, debug_override);
375
376 /* clean and invalidate DCache */
377 arm926ejs->write_cp15(target, 0, 0, 7, 5, 0x0);
378
379 /* write CP15 debug override register
380 * to disable "test and clean all" */
381 debug_override &= ~0x80000;
382 arm926ejs->write_cp15(target, 0, 0, 15, 0, debug_override);
383
384 cp15_control &= ~0x4U;
385 }
386
387 if (i_cache)
388 {
389 /* invalidate ICache */
390 arm926ejs->write_cp15(target, 0, 0, 7, 5, 0x0);
391
392 cp15_control &= ~0x1000U;
393 }
394
395 arm926ejs->write_cp15(target, 0, 0, 1, 0, cp15_control);
396 }
397
398 static void arm926ejs_enable_mmu_caches(struct target *target, int mmu,
399 int d_u_cache, int i_cache)
400 {
401 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
402 uint32_t cp15_control;
403
404 /* read cp15 control register */
405 arm926ejs->read_cp15(target, 0, 0, 1, 0, &cp15_control);
406 jtag_execute_queue();
407
408 if (mmu)
409 cp15_control |= 0x1U;
410
411 if (d_u_cache)
412 cp15_control |= 0x4U;
413
414 if (i_cache)
415 cp15_control |= 0x1000U;
416
417 arm926ejs->write_cp15(target, 0, 0, 1, 0, cp15_control);
418 }
419
420 static void arm926ejs_post_debug_entry(struct target *target)
421 {
422 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
423
424 /* examine cp15 control reg */
425 arm926ejs->read_cp15(target, 0, 0, 1, 0, &arm926ejs->cp15_control_reg);
426 jtag_execute_queue();
427 LOG_DEBUG("cp15_control_reg: %8.8" PRIx32 "", arm926ejs->cp15_control_reg);
428
429 if (arm926ejs->armv4_5_mmu.armv4_5_cache.ctype == -1)
430 {
431 uint32_t cache_type_reg;
432 /* identify caches */
433 arm926ejs->read_cp15(target, 0, 1, 0, 0, &cache_type_reg);
434 jtag_execute_queue();
435 armv4_5_identify_cache(cache_type_reg, &arm926ejs->armv4_5_mmu.armv4_5_cache);
436 }
437
438 arm926ejs->armv4_5_mmu.mmu_enabled = (arm926ejs->cp15_control_reg & 0x1U) ? 1 : 0;
439 arm926ejs->armv4_5_mmu.armv4_5_cache.d_u_cache_enabled = (arm926ejs->cp15_control_reg & 0x4U) ? 1 : 0;
440 arm926ejs->armv4_5_mmu.armv4_5_cache.i_cache_enabled = (arm926ejs->cp15_control_reg & 0x1000U) ? 1 : 0;
441
442 /* save i/d fault status and address register */
443 arm926ejs->read_cp15(target, 0, 0, 5, 0, &arm926ejs->d_fsr);
444 arm926ejs->read_cp15(target, 0, 1, 5, 0, &arm926ejs->i_fsr);
445 arm926ejs->read_cp15(target, 0, 0, 6, 0, &arm926ejs->d_far);
446
447 LOG_DEBUG("D FSR: 0x%8.8" PRIx32 ", D FAR: 0x%8.8" PRIx32 ", I FSR: 0x%8.8" PRIx32 "",
448 arm926ejs->d_fsr, arm926ejs->d_far, arm926ejs->i_fsr);
449
450 uint32_t cache_dbg_ctrl;
451
452 /* read-modify-write CP15 cache debug control register
453 * to disable I/D-cache linefills and force WT */
454 arm926ejs->read_cp15(target, 7, 0, 15, 0, &cache_dbg_ctrl);
455 cache_dbg_ctrl |= 0x7;
456 arm926ejs->write_cp15(target, 7, 0, 15, 0, cache_dbg_ctrl);
457 }
458
459 static void arm926ejs_pre_restore_context(struct target *target)
460 {
461 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
462
463 /* restore i/d fault status and address register */
464 arm926ejs->write_cp15(target, 0, 0, 5, 0, arm926ejs->d_fsr);
465 arm926ejs->write_cp15(target, 0, 1, 5, 0, arm926ejs->i_fsr);
466 arm926ejs->write_cp15(target, 0, 0, 6, 0, arm926ejs->d_far);
467
468 uint32_t cache_dbg_ctrl;
469
470 /* read-modify-write CP15 cache debug control register
471 * to reenable I/D-cache linefills and disable WT */
472 arm926ejs->read_cp15(target, 7, 0, 15, 0, &cache_dbg_ctrl);
473 cache_dbg_ctrl &= ~0x7;
474 arm926ejs->write_cp15(target, 7, 0, 15, 0, cache_dbg_ctrl);
475 }
476
477 static const char arm926_not[] = "target is not an ARM926";
478
479 static int arm926ejs_verify_pointer(struct command_context *cmd_ctx,
480 struct arm926ejs_common *arm926)
481 {
482 if (arm926->common_magic != ARM926EJS_COMMON_MAGIC) {
483 command_print(cmd_ctx, arm926_not);
484 return ERROR_TARGET_INVALID;
485 }
486 return ERROR_OK;
487 }
488
489 /** Logs summary of ARM926 state for a halted target. */
490 int arm926ejs_arch_state(struct target *target)
491 {
492 static const char *state[] =
493 {
494 "disabled", "enabled"
495 };
496
497 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
498 struct arm *armv4_5;
499
500 if (arm926ejs->common_magic != ARM926EJS_COMMON_MAGIC)
501 {
502 LOG_ERROR("BUG: %s", arm926_not);
503 return ERROR_TARGET_INVALID;
504 }
505
506 armv4_5 = &arm926ejs->arm7_9_common.armv4_5_common;
507
508 arm_arch_state(target);
509 LOG_USER("MMU: %s, D-Cache: %s, I-Cache: %s",
510 state[arm926ejs->armv4_5_mmu.mmu_enabled],
511 state[arm926ejs->armv4_5_mmu.armv4_5_cache.d_u_cache_enabled],
512 state[arm926ejs->armv4_5_mmu.armv4_5_cache.i_cache_enabled]);
513
514 return ERROR_OK;
515 }
516
517 int arm926ejs_soft_reset_halt(struct target *target)
518 {
519 int retval = ERROR_OK;
520 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
521 struct arm7_9_common *arm7_9 = target_to_arm7_9(target);
522 struct arm *armv4_5 = &arm7_9->armv4_5_common;
523 struct reg *dbg_stat = &arm7_9->eice_cache->reg_list[EICE_DBG_STAT];
524
525 if ((retval = target_halt(target)) != ERROR_OK)
526 {
527 return retval;
528 }
529
530 long long then = timeval_ms();
531 int timeout;
532 while (!(timeout = ((timeval_ms()-then) > 1000)))
533 {
534 if (buf_get_u32(dbg_stat->value, EICE_DBG_STATUS_DBGACK, 1) == 0)
535 {
536 embeddedice_read_reg(dbg_stat);
537 if ((retval = jtag_execute_queue()) != ERROR_OK)
538 {
539 return retval;
540 }
541 } else
542 {
543 break;
544 }
545 if (debug_level >= 1)
546 {
547 /* do not eat all CPU, time out after 1 se*/
548 alive_sleep(100);
549 } else
550 {
551 keep_alive();
552 }
553 }
554 if (timeout)
555 {
556 LOG_ERROR("Failed to halt CPU after 1 sec");
557 return ERROR_TARGET_TIMEOUT;
558 }
559
560 target->state = TARGET_HALTED;
561
562 /* SVC, ARM state, IRQ and FIQ disabled */
563 uint32_t cpsr;
564
565 cpsr = buf_get_u32(armv4_5->cpsr->value, 0, 32);
566 cpsr &= ~0xff;
567 cpsr |= 0xd3;
568 arm_set_cpsr(armv4_5, cpsr);
569 armv4_5->cpsr->dirty = 1;
570
571 /* start fetching from 0x0 */
572 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, 0x0);
573 armv4_5->core_cache->reg_list[15].dirty = 1;
574 armv4_5->core_cache->reg_list[15].valid = 1;
575
576 arm926ejs_disable_mmu_caches(target, 1, 1, 1);
577 arm926ejs->armv4_5_mmu.mmu_enabled = 0;
578 arm926ejs->armv4_5_mmu.armv4_5_cache.d_u_cache_enabled = 0;
579 arm926ejs->armv4_5_mmu.armv4_5_cache.i_cache_enabled = 0;
580
581 return target_call_event_callbacks(target, TARGET_EVENT_HALTED);
582 }
583
584 /** Writes a buffer, in the specified word size, with current MMU settings. */
585 int arm926ejs_write_memory(struct target *target, uint32_t address,
586 uint32_t size, uint32_t count, uint8_t *buffer)
587 {
588 int retval;
589 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
590
591 /* FIX!!!! this should be cleaned up and made much more general. The
592 * plan is to write up and test on arm926ejs specifically and
593 * then generalize and clean up afterwards. */
594 if (arm926ejs->armv4_5_mmu.mmu_enabled && (count == 1) && ((size==2) || (size==4)))
595 {
596 /* special case the handling of single word writes to bypass MMU
597 * to allow implementation of breakpoints in memory marked read only
598 * by MMU */
599 if (arm926ejs->armv4_5_mmu.armv4_5_cache.d_u_cache_enabled)
600 {
601 /* flush and invalidate data cache
602 *
603 * MCR p15,0,p,c7,c10,1 - clean cache line using virtual address
604 *
605 */
606 retval = arm926ejs->write_cp15(target, 0, 1, 7, 10, address&~0x3);
607 if (retval != ERROR_OK)
608 return retval;
609 }
610
611 uint32_t pa;
612 retval = target->type->virt2phys(target, address, &pa);
613 if (retval != ERROR_OK)
614 return retval;
615
616 /* write directly to physical memory bypassing any read only MMU bits, etc. */
617 retval = armv4_5_mmu_write_physical(target, &arm926ejs->armv4_5_mmu, pa, size, count, buffer);
618 if (retval != ERROR_OK)
619 return retval;
620 } else
621 {
622 if ((retval = arm7_9_write_memory(target, address, size, count, buffer)) != ERROR_OK)
623 return retval;
624 }
625
626 /* If ICache is enabled, we have to invalidate affected ICache lines
627 * the DCache is forced to write-through, so we don't have to clean it here
628 */
629 if (arm926ejs->armv4_5_mmu.armv4_5_cache.i_cache_enabled)
630 {
631 if (count <= 1)
632 {
633 /* invalidate ICache single entry with MVA */
634 arm926ejs->write_cp15(target, 0, 1, 7, 5, address);
635 }
636 else
637 {
638 /* invalidate ICache */
639 arm926ejs->write_cp15(target, 0, 0, 7, 5, address);
640 }
641 }
642
643 return retval;
644 }
645
646 static int arm926ejs_write_phys_memory(struct target *target,
647 uint32_t address, uint32_t size,
648 uint32_t count, uint8_t *buffer)
649 {
650 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
651
652 return armv4_5_mmu_write_physical(target, &arm926ejs->armv4_5_mmu,
653 address, size, count, buffer);
654 }
655
656 static int arm926ejs_read_phys_memory(struct target *target,
657 uint32_t address, uint32_t size,
658 uint32_t count, uint8_t *buffer)
659 {
660 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
661
662 return armv4_5_mmu_read_physical(target, &arm926ejs->armv4_5_mmu,
663 address, size, count, buffer);
664 }
665
666 int arm926ejs_init_arch_info(struct target *target, struct arm926ejs_common *arm926ejs,
667 struct jtag_tap *tap)
668 {
669 struct arm7_9_common *arm7_9 = &arm926ejs->arm7_9_common;
670
671 arm7_9->armv4_5_common.mrc = arm926ejs_mrc;
672 arm7_9->armv4_5_common.mcr = arm926ejs_mcr;
673
674 /* initialize arm7/arm9 specific info (including armv4_5) */
675 arm9tdmi_init_arch_info(target, arm7_9, tap);
676
677 arm926ejs->common_magic = ARM926EJS_COMMON_MAGIC;
678
679 arm7_9->post_debug_entry = arm926ejs_post_debug_entry;
680 arm7_9->pre_restore_context = arm926ejs_pre_restore_context;
681
682 arm926ejs->read_cp15 = arm926ejs_cp15_read;
683 arm926ejs->write_cp15 = arm926ejs_cp15_write;
684 arm926ejs->armv4_5_mmu.armv4_5_cache.ctype = -1;
685 arm926ejs->armv4_5_mmu.get_ttb = arm926ejs_get_ttb;
686 arm926ejs->armv4_5_mmu.read_memory = arm7_9_read_memory;
687 arm926ejs->armv4_5_mmu.write_memory = arm7_9_write_memory;
688 arm926ejs->armv4_5_mmu.disable_mmu_caches = arm926ejs_disable_mmu_caches;
689 arm926ejs->armv4_5_mmu.enable_mmu_caches = arm926ejs_enable_mmu_caches;
690 arm926ejs->armv4_5_mmu.has_tiny_pages = 1;
691 arm926ejs->armv4_5_mmu.mmu_enabled = 0;
692
693 arm7_9->examine_debug_reason = arm926ejs_examine_debug_reason;
694
695 /* The ARM926EJ-S implements the ARMv5TE architecture which
696 * has the BKPT instruction, so we don't have to use a watchpoint comparator
697 */
698 arm7_9->arm_bkpt = ARMV5_BKPT(0x0);
699 arm7_9->thumb_bkpt = ARMV5_T_BKPT(0x0) & 0xffff;
700
701 return ERROR_OK;
702 }
703
704 static int arm926ejs_target_create(struct target *target, Jim_Interp *interp)
705 {
706 struct arm926ejs_common *arm926ejs = calloc(1,sizeof(struct arm926ejs_common));
707
708 /* ARM9EJ-S core always reports 0x1 in Capture-IR */
709 target->tap->ir_capture_mask = 0x0f;
710
711 return arm926ejs_init_arch_info(target, arm926ejs, target->tap);
712 }
713
714 COMMAND_HANDLER(arm926ejs_handle_cache_info_command)
715 {
716 int retval;
717 struct target *target = get_current_target(CMD_CTX);
718 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
719
720 retval = arm926ejs_verify_pointer(CMD_CTX, arm926ejs);
721 if (retval != ERROR_OK)
722 return retval;
723
724 return armv4_5_handle_cache_info_command(CMD_CTX, &arm926ejs->armv4_5_mmu.armv4_5_cache);
725 }
726
727 static int arm926ejs_virt2phys(struct target *target, uint32_t virtual, uint32_t *physical)
728 {
729 int type;
730 uint32_t cb;
731 int domain;
732 uint32_t ap;
733 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
734
735 uint32_t ret = armv4_5_mmu_translate_va(target, &arm926ejs->armv4_5_mmu, virtual, &type, &cb, &domain, &ap);
736 if (type == -1)
737 {
738 return ret;
739 }
740 *physical = ret;
741 return ERROR_OK;
742 }
743
744 static int arm926ejs_mmu(struct target *target, int *enabled)
745 {
746 struct arm926ejs_common *arm926ejs = target_to_arm926(target);
747
748 if (target->state != TARGET_HALTED)
749 {
750 LOG_ERROR("Target not halted");
751 return ERROR_TARGET_INVALID;
752 }
753 *enabled = arm926ejs->armv4_5_mmu.mmu_enabled;
754 return ERROR_OK;
755 }
756
757 static const struct command_registration arm926ejs_exec_command_handlers[] = {
758 {
759 .name = "cache_info",
760 .handler = arm926ejs_handle_cache_info_command,
761 .mode = COMMAND_EXEC,
762 .help = "display information about target caches",
763
764 },
765 COMMAND_REGISTRATION_DONE
766 };
767 const struct command_registration arm926ejs_command_handlers[] = {
768 {
769 .chain = arm9tdmi_command_handlers,
770 },
771 {
772 .name = "arm926ejs",
773 .mode = COMMAND_ANY,
774 .help = "arm926ejs command group",
775 .chain = arm926ejs_exec_command_handlers,
776 },
777 COMMAND_REGISTRATION_DONE
778 };
779
780 /** Holds methods for ARM926 targets. */
781 struct target_type arm926ejs_target =
782 {
783 .name = "arm926ejs",
784
785 .poll = arm7_9_poll,
786 .arch_state = arm926ejs_arch_state,
787
788 .target_request_data = arm7_9_target_request_data,
789
790 .halt = arm7_9_halt,
791 .resume = arm7_9_resume,
792 .step = arm7_9_step,
793
794 .assert_reset = arm7_9_assert_reset,
795 .deassert_reset = arm7_9_deassert_reset,
796 .soft_reset_halt = arm926ejs_soft_reset_halt,
797
798 .get_gdb_reg_list = arm_get_gdb_reg_list,
799
800 .read_memory = arm7_9_read_memory,
801 .write_memory = arm926ejs_write_memory,
802 .bulk_write_memory = arm7_9_bulk_write_memory,
803
804 .checksum_memory = arm_checksum_memory,
805 .blank_check_memory = arm_blank_check_memory,
806
807 .run_algorithm = armv4_5_run_algorithm,
808
809 .add_breakpoint = arm7_9_add_breakpoint,
810 .remove_breakpoint = arm7_9_remove_breakpoint,
811 .add_watchpoint = arm7_9_add_watchpoint,
812 .remove_watchpoint = arm7_9_remove_watchpoint,
813
814 .commands = arm926ejs_command_handlers,
815 .target_create = arm926ejs_target_create,
816 .init_target = arm9tdmi_init_target,
817 .examine = arm7_9_examine,
818 .check_reset = arm7_9_check_reset,
819 .virt2phys = arm926ejs_virt2phys,
820 .mmu = arm926ejs_mmu,
821
822 .read_phys_memory = arm926ejs_read_phys_memory,
823 .write_phys_memory = arm926ejs_write_phys_memory,
824 };
Open On-Chip Debugger

Linking to existing account procedure

If you already have an account and want to add another login method you MUST first sign in with your existing account and then change URL to read https://review.openocd.org/login/?link to get to this page again but this time it'll work for linking. Thank you.

SSH host keys fingerprints

1024 SHA256:YKx8b7u5ZWdcbp7/4AeXNaqElP49m6QrwfXaqQGJAOk gerrit-code-review@openocd.zylin.com (DSA)
384 SHA256:jHIbSQa4REvwCFG4cq5LBlBLxmxSqelQPem/EXIrxjk gerrit-code-review@openocd.org (ECDSA)
521 SHA256:UAOPYkU9Fjtcao0Ul/Rrlnj/OsQvt+pgdYSZ4jOYdgs gerrit-code-review@openocd.org (ECDSA)
256 SHA256:A13M5QlnozFOvTllybRZH6vm7iSt0XLxbA48yfc2yfY gerrit-code-review@openocd.org (ECDSA)
256 SHA256:spYMBqEYoAOtK7yZBrcwE8ZpYt6b68Cfh9yEVetvbXg gerrit-code-review@openocd.org (ED25519)
+--[ED25519 256]--+
|=..              |
|+o..   .         |
|*.o   . .        |
|+B . . .         |
|Bo. = o S        |
|Oo.+ + =         |
|oB=.* = . o      |
| =+=.+   + E     |
|. .=o   . o      |
+----[SHA256]-----+
2048 SHA256:0Onrb7/PHjpo6iVZ7xQX2riKN83FJ3KGU0TvI0TaFG4 gerrit-code-review@openocd.zylin.com (RSA)