1 /***************************************************************************
2 * Copyright (C) 2005 by Dominic Rath *
3 * Dominic.Rath@gmx.de *
5 * Copyright (C) 2006 by Magnus Lundin *
8 * Copyright (C) 2008 by Spencer Oliver *
9 * spen@spen-soft.co.uk *
11 * Copyright (C) 2009 by Dirk Behme *
12 * dirk.behme@gmail.com - copy from cortex_m3 *
14 * Copyright (C) 2010 Øyvind Harboe *
15 * oyvind.harboe@zylin.com *
17 * Copyright (C) ST-Ericsson SA 2011 *
18 * michel.jaouen@stericsson.com : smp minimum support *
20 * Copyright (C) Broadcom 2012 *
21 * ehunter@broadcom.com : Cortex-R4 support *
23 * Copyright (C) 2013 Kamal Dasu *
24 * kdasu.kdev@gmail.com *
26 * This program is free software; you can redistribute it and/or modify *
27 * it under the terms of the GNU General Public License as published by *
28 * the Free Software Foundation; either version 2 of the License, or *
29 * (at your option) any later version. *
31 * This program is distributed in the hope that it will be useful, *
32 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
33 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
34 * GNU General Public License for more details. *
36 * You should have received a copy of the GNU General Public License *
37 * along with this program. If not, see <http://www.gnu.org/licenses/>. *
39 * Cortex-A8(tm) TRM, ARM DDI 0344H *
40 * Cortex-A9(tm) TRM, ARM DDI 0407F *
41 * Cortex-A4(tm) TRM, ARM DDI 0363E *
42 * Cortex-A15(tm)TRM, ARM DDI 0438C *
44 ***************************************************************************/
50 #include "breakpoints.h"
53 #include "target_request.h"
54 #include "target_type.h"
55 #include "arm_opcodes.h"
56 #include "arm_semihosting.h"
58 #include <helper/time_support.h>
60 static int cortex_a_poll(struct target
*target
);
61 static int cortex_a_debug_entry(struct target
*target
);
62 static int cortex_a_restore_context(struct target
*target
, bool bpwp
);
63 static int cortex_a_set_breakpoint(struct target
*target
,
64 struct breakpoint
*breakpoint
, uint8_t matchmode
);
65 static int cortex_a_set_context_breakpoint(struct target
*target
,
66 struct breakpoint
*breakpoint
, uint8_t matchmode
);
67 static int cortex_a_set_hybrid_breakpoint(struct target
*target
,
68 struct breakpoint
*breakpoint
);
69 static int cortex_a_unset_breakpoint(struct target
*target
,
70 struct breakpoint
*breakpoint
);
71 static int cortex_a_dap_read_coreregister_u32(struct target
*target
,
72 uint32_t *value
, int regnum
);
73 static int cortex_a_dap_write_coreregister_u32(struct target
*target
,
74 uint32_t value
, int regnum
);
75 static int cortex_a_mmu(struct target
*target
, int *enabled
);
76 static int cortex_a_mmu_modify(struct target
*target
, int enable
);
77 static int cortex_a_virt2phys(struct target
*target
,
78 uint32_t virt
, uint32_t *phys
);
79 static int cortex_a_read_cpu_memory(struct target
*target
,
80 uint32_t address
, uint32_t size
, uint32_t count
, uint8_t *buffer
);
83 /* restore cp15_control_reg at resume */
84 static int cortex_a_restore_cp15_control_reg(struct target
*target
)
86 int retval
= ERROR_OK
;
87 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
88 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
90 if (cortex_a
->cp15_control_reg
!= cortex_a
->cp15_control_reg_curr
) {
91 cortex_a
->cp15_control_reg_curr
= cortex_a
->cp15_control_reg
;
92 /* LOG_INFO("cp15_control_reg: %8.8" PRIx32, cortex_a->cp15_control_reg); */
93 retval
= armv7a
->arm
.mcr(target
, 15,
96 cortex_a
->cp15_control_reg
);
102 * Set up ARM core for memory access.
103 * If !phys_access, switch to SVC mode and make sure MMU is on
104 * If phys_access, switch off mmu
106 static int cortex_a_prep_memaccess(struct target
*target
, int phys_access
)
108 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
109 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
112 if (phys_access
== 0) {
113 dpm_modeswitch(&armv7a
->dpm
, ARM_MODE_SVC
);
114 cortex_a_mmu(target
, &mmu_enabled
);
116 cortex_a_mmu_modify(target
, 1);
117 if (cortex_a
->dacrfixup_mode
== CORTEX_A_DACRFIXUP_ON
) {
118 /* overwrite DACR to all-manager */
119 armv7a
->arm
.mcr(target
, 15,
124 cortex_a_mmu(target
, &mmu_enabled
);
126 cortex_a_mmu_modify(target
, 0);
132 * Restore ARM core after memory access.
133 * If !phys_access, switch to previous mode
134 * If phys_access, restore MMU setting
136 static int cortex_a_post_memaccess(struct target
*target
, int phys_access
)
138 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
139 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
141 if (phys_access
== 0) {
142 if (cortex_a
->dacrfixup_mode
== CORTEX_A_DACRFIXUP_ON
) {
144 armv7a
->arm
.mcr(target
, 15,
146 cortex_a
->cp15_dacr_reg
);
148 dpm_modeswitch(&armv7a
->dpm
, ARM_MODE_ANY
);
151 cortex_a_mmu(target
, &mmu_enabled
);
153 cortex_a_mmu_modify(target
, 1);
159 /* modify cp15_control_reg in order to enable or disable mmu for :
160 * - virt2phys address conversion
161 * - read or write memory in phys or virt address */
162 static int cortex_a_mmu_modify(struct target
*target
, int enable
)
164 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
165 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
166 int retval
= ERROR_OK
;
170 /* if mmu enabled at target stop and mmu not enable */
171 if (!(cortex_a
->cp15_control_reg
& 0x1U
)) {
172 LOG_ERROR("trying to enable mmu on target stopped with mmu disable");
175 if ((cortex_a
->cp15_control_reg_curr
& 0x1U
) == 0) {
176 cortex_a
->cp15_control_reg_curr
|= 0x1U
;
180 if ((cortex_a
->cp15_control_reg_curr
& 0x1U
) == 0x1U
) {
181 cortex_a
->cp15_control_reg_curr
&= ~0x1U
;
187 LOG_DEBUG("%s, writing cp15 ctrl: %" PRIx32
,
188 enable
? "enable mmu" : "disable mmu",
189 cortex_a
->cp15_control_reg_curr
);
191 retval
= armv7a
->arm
.mcr(target
, 15,
194 cortex_a
->cp15_control_reg_curr
);
200 * Cortex-A Basic debug access, very low level assumes state is saved
202 static int cortex_a_init_debug_access(struct target
*target
)
204 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
207 /* lock memory-mapped access to debug registers to prevent
208 * software interference */
209 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
210 armv7a
->debug_base
+ CPUDBG_LOCKACCESS
, 0);
211 if (retval
!= ERROR_OK
)
214 /* Disable cacheline fills and force cache write-through in debug state */
215 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
216 armv7a
->debug_base
+ CPUDBG_DSCCR
, 0);
217 if (retval
!= ERROR_OK
)
220 /* Disable TLB lookup and refill/eviction in debug state */
221 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
222 armv7a
->debug_base
+ CPUDBG_DSMCR
, 0);
223 if (retval
!= ERROR_OK
)
226 /* Enabling of instruction execution in debug mode is done in debug_entry code */
228 /* Resync breakpoint registers */
230 /* Since this is likely called from init or reset, update target state information*/
231 return cortex_a_poll(target
);
234 static int cortex_a_wait_instrcmpl(struct target
*target
, uint32_t *dscr
, bool force
)
236 /* Waits until InstrCmpl_l becomes 1, indicating instruction is done.
237 * Writes final value of DSCR into *dscr. Pass force to force always
238 * reading DSCR at least once. */
239 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
240 int64_t then
= timeval_ms();
241 while ((*dscr
& DSCR_INSTR_COMP
) == 0 || force
) {
243 int retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
244 armv7a
->debug_base
+ CPUDBG_DSCR
, dscr
);
245 if (retval
!= ERROR_OK
) {
246 LOG_ERROR("Could not read DSCR register");
249 if (timeval_ms() > then
+ 1000) {
250 LOG_ERROR("Timeout waiting for InstrCompl=1");
257 /* To reduce needless round-trips, pass in a pointer to the current
258 * DSCR value. Initialize it to zero if you just need to know the
259 * value on return from this function; or DSCR_INSTR_COMP if you
260 * happen to know that no instruction is pending.
262 static int cortex_a_exec_opcode(struct target
*target
,
263 uint32_t opcode
, uint32_t *dscr_p
)
267 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
269 dscr
= dscr_p
? *dscr_p
: 0;
271 LOG_DEBUG("exec opcode 0x%08" PRIx32
, opcode
);
273 /* Wait for InstrCompl bit to be set */
274 retval
= cortex_a_wait_instrcmpl(target
, dscr_p
, false);
275 if (retval
!= ERROR_OK
)
278 retval
= mem_ap_write_u32(armv7a
->debug_ap
,
279 armv7a
->debug_base
+ CPUDBG_ITR
, opcode
);
280 if (retval
!= ERROR_OK
)
283 int64_t then
= timeval_ms();
285 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
286 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
287 if (retval
!= ERROR_OK
) {
288 LOG_ERROR("Could not read DSCR register");
291 if (timeval_ms() > then
+ 1000) {
292 LOG_ERROR("Timeout waiting for cortex_a_exec_opcode");
295 } while ((dscr
& DSCR_INSTR_COMP
) == 0); /* Wait for InstrCompl bit to be set */
303 /**************************************************************************
304 Read core register with very few exec_opcode, fast but needs work_area.
305 This can cause problems with MMU active.
306 **************************************************************************/
307 static int cortex_a_read_regs_through_mem(struct target
*target
, uint32_t address
,
310 int retval
= ERROR_OK
;
311 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
313 retval
= cortex_a_dap_read_coreregister_u32(target
, regfile
, 0);
314 if (retval
!= ERROR_OK
)
316 retval
= cortex_a_dap_write_coreregister_u32(target
, address
, 0);
317 if (retval
!= ERROR_OK
)
319 retval
= cortex_a_exec_opcode(target
, ARMV4_5_STMIA(0, 0xFFFE, 0, 0), NULL
);
320 if (retval
!= ERROR_OK
)
323 retval
= mem_ap_read_buf(armv7a
->memory_ap
,
324 (uint8_t *)(®file
[1]), 4, 15, address
);
329 static int cortex_a_dap_read_coreregister_u32(struct target
*target
,
330 uint32_t *value
, int regnum
)
332 int retval
= ERROR_OK
;
333 uint8_t reg
= regnum
&0xFF;
335 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
341 /* Rn to DCCTX, "MCR p14, 0, Rn, c0, c5, 0" 0xEE00nE15 */
342 retval
= cortex_a_exec_opcode(target
,
343 ARMV4_5_MCR(14, 0, reg
, 0, 5, 0),
345 if (retval
!= ERROR_OK
)
347 } else if (reg
== 15) {
348 /* "MOV r0, r15"; then move r0 to DCCTX */
349 retval
= cortex_a_exec_opcode(target
, 0xE1A0000F, &dscr
);
350 if (retval
!= ERROR_OK
)
352 retval
= cortex_a_exec_opcode(target
,
353 ARMV4_5_MCR(14, 0, 0, 0, 5, 0),
355 if (retval
!= ERROR_OK
)
358 /* "MRS r0, CPSR" or "MRS r0, SPSR"
359 * then move r0 to DCCTX
361 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRS(0, reg
& 1), &dscr
);
362 if (retval
!= ERROR_OK
)
364 retval
= cortex_a_exec_opcode(target
,
365 ARMV4_5_MCR(14, 0, 0, 0, 5, 0),
367 if (retval
!= ERROR_OK
)
371 /* Wait for DTRRXfull then read DTRRTX */
372 int64_t then
= timeval_ms();
373 while ((dscr
& DSCR_DTR_TX_FULL
) == 0) {
374 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
375 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
376 if (retval
!= ERROR_OK
)
378 if (timeval_ms() > then
+ 1000) {
379 LOG_ERROR("Timeout waiting for cortex_a_exec_opcode");
384 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
385 armv7a
->debug_base
+ CPUDBG_DTRTX
, value
);
386 LOG_DEBUG("read DCC 0x%08" PRIx32
, *value
);
391 static int cortex_a_dap_write_coreregister_u32(struct target
*target
,
392 uint32_t value
, int regnum
)
394 int retval
= ERROR_OK
;
395 uint8_t Rd
= regnum
&0xFF;
397 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
399 LOG_DEBUG("register %i, value 0x%08" PRIx32
, regnum
, value
);
401 /* Check that DCCRX is not full */
402 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
403 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
404 if (retval
!= ERROR_OK
)
406 if (dscr
& DSCR_DTR_RX_FULL
) {
407 LOG_ERROR("DSCR_DTR_RX_FULL, dscr 0x%08" PRIx32
, dscr
);
408 /* Clear DCCRX with MRC(p14, 0, Rd, c0, c5, 0), opcode 0xEE100E15 */
409 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 0, 0, 5, 0),
411 if (retval
!= ERROR_OK
)
418 /* Write DTRRX ... sets DSCR.DTRRXfull but exec_opcode() won't care */
419 LOG_DEBUG("write DCC 0x%08" PRIx32
, value
);
420 retval
= mem_ap_write_u32(armv7a
->debug_ap
,
421 armv7a
->debug_base
+ CPUDBG_DTRRX
, value
);
422 if (retval
!= ERROR_OK
)
426 /* DCCRX to Rn, "MRC p14, 0, Rn, c0, c5, 0", 0xEE10nE15 */
427 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, Rd
, 0, 5, 0),
430 if (retval
!= ERROR_OK
)
432 } else if (Rd
== 15) {
433 /* DCCRX to R0, "MRC p14, 0, R0, c0, c5, 0", 0xEE100E15
436 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 0, 0, 5, 0),
438 if (retval
!= ERROR_OK
)
440 retval
= cortex_a_exec_opcode(target
, 0xE1A0F000, &dscr
);
441 if (retval
!= ERROR_OK
)
444 /* DCCRX to R0, "MRC p14, 0, R0, c0, c5, 0", 0xEE100E15
445 * then "MSR CPSR_cxsf, r0" or "MSR SPSR_cxsf, r0" (all fields)
447 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 0, 0, 5, 0),
449 if (retval
!= ERROR_OK
)
451 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MSR_GP(0, 0xF, Rd
& 1),
453 if (retval
!= ERROR_OK
)
456 /* "Prefetch flush" after modifying execution status in CPSR */
458 retval
= cortex_a_exec_opcode(target
,
459 ARMV4_5_MCR(15, 0, 0, 7, 5, 4),
461 if (retval
!= ERROR_OK
)
469 /* Write to memory mapped registers directly with no cache or mmu handling */
470 static int cortex_a_dap_write_memap_register_u32(struct target
*target
,
475 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
477 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
, address
, value
);
483 * Cortex-A implementation of Debug Programmer's Model
485 * NOTE the invariant: these routines return with DSCR_INSTR_COMP set,
486 * so there's no need to poll for it before executing an instruction.
488 * NOTE that in several of these cases the "stall" mode might be useful.
489 * It'd let us queue a few operations together... prepare/finish might
490 * be the places to enable/disable that mode.
493 static inline struct cortex_a_common
*dpm_to_a(struct arm_dpm
*dpm
)
495 return container_of(dpm
, struct cortex_a_common
, armv7a_common
.dpm
);
498 static int cortex_a_write_dcc(struct cortex_a_common
*a
, uint32_t data
)
500 LOG_DEBUG("write DCC 0x%08" PRIx32
, data
);
501 return mem_ap_write_u32(a
->armv7a_common
.debug_ap
,
502 a
->armv7a_common
.debug_base
+ CPUDBG_DTRRX
, data
);
505 static int cortex_a_read_dcc(struct cortex_a_common
*a
, uint32_t *data
,
508 uint32_t dscr
= DSCR_INSTR_COMP
;
514 /* Wait for DTRRXfull */
515 int64_t then
= timeval_ms();
516 while ((dscr
& DSCR_DTR_TX_FULL
) == 0) {
517 retval
= mem_ap_read_atomic_u32(a
->armv7a_common
.debug_ap
,
518 a
->armv7a_common
.debug_base
+ CPUDBG_DSCR
,
520 if (retval
!= ERROR_OK
)
522 if (timeval_ms() > then
+ 1000) {
523 LOG_ERROR("Timeout waiting for read dcc");
528 retval
= mem_ap_read_atomic_u32(a
->armv7a_common
.debug_ap
,
529 a
->armv7a_common
.debug_base
+ CPUDBG_DTRTX
, data
);
530 if (retval
!= ERROR_OK
)
532 /* LOG_DEBUG("read DCC 0x%08" PRIx32, *data); */
540 static int cortex_a_dpm_prepare(struct arm_dpm
*dpm
)
542 struct cortex_a_common
*a
= dpm_to_a(dpm
);
546 /* set up invariant: INSTR_COMP is set after ever DPM operation */
547 int64_t then
= timeval_ms();
549 retval
= mem_ap_read_atomic_u32(a
->armv7a_common
.debug_ap
,
550 a
->armv7a_common
.debug_base
+ CPUDBG_DSCR
,
552 if (retval
!= ERROR_OK
)
554 if ((dscr
& DSCR_INSTR_COMP
) != 0)
556 if (timeval_ms() > then
+ 1000) {
557 LOG_ERROR("Timeout waiting for dpm prepare");
562 /* this "should never happen" ... */
563 if (dscr
& DSCR_DTR_RX_FULL
) {
564 LOG_ERROR("DSCR_DTR_RX_FULL, dscr 0x%08" PRIx32
, dscr
);
566 retval
= cortex_a_exec_opcode(
567 a
->armv7a_common
.arm
.target
,
568 ARMV4_5_MRC(14, 0, 0, 0, 5, 0),
570 if (retval
!= ERROR_OK
)
577 static int cortex_a_dpm_finish(struct arm_dpm
*dpm
)
579 /* REVISIT what could be done here? */
583 static int cortex_a_instr_write_data_dcc(struct arm_dpm
*dpm
,
584 uint32_t opcode
, uint32_t data
)
586 struct cortex_a_common
*a
= dpm_to_a(dpm
);
588 uint32_t dscr
= DSCR_INSTR_COMP
;
590 retval
= cortex_a_write_dcc(a
, data
);
591 if (retval
!= ERROR_OK
)
594 return cortex_a_exec_opcode(
595 a
->armv7a_common
.arm
.target
,
600 static int cortex_a_instr_write_data_r0(struct arm_dpm
*dpm
,
601 uint32_t opcode
, uint32_t data
)
603 struct cortex_a_common
*a
= dpm_to_a(dpm
);
604 uint32_t dscr
= DSCR_INSTR_COMP
;
607 retval
= cortex_a_write_dcc(a
, data
);
608 if (retval
!= ERROR_OK
)
611 /* DCCRX to R0, "MCR p14, 0, R0, c0, c5, 0", 0xEE000E15 */
612 retval
= cortex_a_exec_opcode(
613 a
->armv7a_common
.arm
.target
,
614 ARMV4_5_MRC(14, 0, 0, 0, 5, 0),
616 if (retval
!= ERROR_OK
)
619 /* then the opcode, taking data from R0 */
620 retval
= cortex_a_exec_opcode(
621 a
->armv7a_common
.arm
.target
,
628 static int cortex_a_instr_cpsr_sync(struct arm_dpm
*dpm
)
630 struct target
*target
= dpm
->arm
->target
;
631 uint32_t dscr
= DSCR_INSTR_COMP
;
633 /* "Prefetch flush" after modifying execution status in CPSR */
634 return cortex_a_exec_opcode(target
,
635 ARMV4_5_MCR(15, 0, 0, 7, 5, 4),
639 static int cortex_a_instr_read_data_dcc(struct arm_dpm
*dpm
,
640 uint32_t opcode
, uint32_t *data
)
642 struct cortex_a_common
*a
= dpm_to_a(dpm
);
644 uint32_t dscr
= DSCR_INSTR_COMP
;
646 /* the opcode, writing data to DCC */
647 retval
= cortex_a_exec_opcode(
648 a
->armv7a_common
.arm
.target
,
651 if (retval
!= ERROR_OK
)
654 return cortex_a_read_dcc(a
, data
, &dscr
);
658 static int cortex_a_instr_read_data_r0(struct arm_dpm
*dpm
,
659 uint32_t opcode
, uint32_t *data
)
661 struct cortex_a_common
*a
= dpm_to_a(dpm
);
662 uint32_t dscr
= DSCR_INSTR_COMP
;
665 /* the opcode, writing data to R0 */
666 retval
= cortex_a_exec_opcode(
667 a
->armv7a_common
.arm
.target
,
670 if (retval
!= ERROR_OK
)
673 /* write R0 to DCC */
674 retval
= cortex_a_exec_opcode(
675 a
->armv7a_common
.arm
.target
,
676 ARMV4_5_MCR(14, 0, 0, 0, 5, 0),
678 if (retval
!= ERROR_OK
)
681 return cortex_a_read_dcc(a
, data
, &dscr
);
684 static int cortex_a_bpwp_enable(struct arm_dpm
*dpm
, unsigned index_t
,
685 uint32_t addr
, uint32_t control
)
687 struct cortex_a_common
*a
= dpm_to_a(dpm
);
688 uint32_t vr
= a
->armv7a_common
.debug_base
;
689 uint32_t cr
= a
->armv7a_common
.debug_base
;
693 case 0 ... 15: /* breakpoints */
694 vr
+= CPUDBG_BVR_BASE
;
695 cr
+= CPUDBG_BCR_BASE
;
697 case 16 ... 31: /* watchpoints */
698 vr
+= CPUDBG_WVR_BASE
;
699 cr
+= CPUDBG_WCR_BASE
;
708 LOG_DEBUG("A: bpwp enable, vr %08x cr %08x",
709 (unsigned) vr
, (unsigned) cr
);
711 retval
= cortex_a_dap_write_memap_register_u32(dpm
->arm
->target
,
713 if (retval
!= ERROR_OK
)
715 retval
= cortex_a_dap_write_memap_register_u32(dpm
->arm
->target
,
720 static int cortex_a_bpwp_disable(struct arm_dpm
*dpm
, unsigned index_t
)
722 struct cortex_a_common
*a
= dpm_to_a(dpm
);
727 cr
= a
->armv7a_common
.debug_base
+ CPUDBG_BCR_BASE
;
730 cr
= a
->armv7a_common
.debug_base
+ CPUDBG_WCR_BASE
;
738 LOG_DEBUG("A: bpwp disable, cr %08x", (unsigned) cr
);
740 /* clear control register */
741 return cortex_a_dap_write_memap_register_u32(dpm
->arm
->target
, cr
, 0);
744 static int cortex_a_dpm_setup(struct cortex_a_common
*a
, uint32_t didr
)
746 struct arm_dpm
*dpm
= &a
->armv7a_common
.dpm
;
749 dpm
->arm
= &a
->armv7a_common
.arm
;
752 dpm
->prepare
= cortex_a_dpm_prepare
;
753 dpm
->finish
= cortex_a_dpm_finish
;
755 dpm
->instr_write_data_dcc
= cortex_a_instr_write_data_dcc
;
756 dpm
->instr_write_data_r0
= cortex_a_instr_write_data_r0
;
757 dpm
->instr_cpsr_sync
= cortex_a_instr_cpsr_sync
;
759 dpm
->instr_read_data_dcc
= cortex_a_instr_read_data_dcc
;
760 dpm
->instr_read_data_r0
= cortex_a_instr_read_data_r0
;
762 dpm
->bpwp_enable
= cortex_a_bpwp_enable
;
763 dpm
->bpwp_disable
= cortex_a_bpwp_disable
;
765 retval
= arm_dpm_setup(dpm
);
766 if (retval
== ERROR_OK
)
767 retval
= arm_dpm_initialize(dpm
);
771 static struct target
*get_cortex_a(struct target
*target
, int32_t coreid
)
773 struct target_list
*head
;
777 while (head
!= (struct target_list
*)NULL
) {
779 if ((curr
->coreid
== coreid
) && (curr
->state
== TARGET_HALTED
))
785 static int cortex_a_halt(struct target
*target
);
787 static int cortex_a_halt_smp(struct target
*target
)
790 struct target_list
*head
;
793 while (head
!= (struct target_list
*)NULL
) {
795 if ((curr
!= target
) && (curr
->state
!= TARGET_HALTED
)
796 && target_was_examined(curr
))
797 retval
+= cortex_a_halt(curr
);
803 static int update_halt_gdb(struct target
*target
)
806 if (target
->gdb_service
&& target
->gdb_service
->core
[0] == -1) {
807 target
->gdb_service
->target
= target
;
808 target
->gdb_service
->core
[0] = target
->coreid
;
809 retval
+= cortex_a_halt_smp(target
);
815 * Cortex-A Run control
818 static int cortex_a_poll(struct target
*target
)
820 int retval
= ERROR_OK
;
822 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
823 struct armv7a_common
*armv7a
= &cortex_a
->armv7a_common
;
824 enum target_state prev_target_state
= target
->state
;
825 /* toggle to another core is done by gdb as follow */
826 /* maint packet J core_id */
828 /* the next polling trigger an halt event sent to gdb */
829 if ((target
->state
== TARGET_HALTED
) && (target
->smp
) &&
830 (target
->gdb_service
) &&
831 (target
->gdb_service
->target
== NULL
)) {
832 target
->gdb_service
->target
=
833 get_cortex_a(target
, target
->gdb_service
->core
[1]);
834 target_call_event_callbacks(target
, TARGET_EVENT_HALTED
);
837 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
838 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
839 if (retval
!= ERROR_OK
)
841 cortex_a
->cpudbg_dscr
= dscr
;
843 if (DSCR_RUN_MODE(dscr
) == (DSCR_CORE_HALTED
| DSCR_CORE_RESTARTED
)) {
844 if (prev_target_state
!= TARGET_HALTED
) {
845 /* We have a halting debug event */
846 LOG_DEBUG("Target halted");
847 target
->state
= TARGET_HALTED
;
848 if ((prev_target_state
== TARGET_RUNNING
)
849 || (prev_target_state
== TARGET_UNKNOWN
)
850 || (prev_target_state
== TARGET_RESET
)) {
851 retval
= cortex_a_debug_entry(target
);
852 if (retval
!= ERROR_OK
)
855 retval
= update_halt_gdb(target
);
856 if (retval
!= ERROR_OK
)
860 if (arm_semihosting(target
, &retval
) != 0)
863 target_call_event_callbacks(target
,
864 TARGET_EVENT_HALTED
);
866 if (prev_target_state
== TARGET_DEBUG_RUNNING
) {
869 retval
= cortex_a_debug_entry(target
);
870 if (retval
!= ERROR_OK
)
873 retval
= update_halt_gdb(target
);
874 if (retval
!= ERROR_OK
)
878 target_call_event_callbacks(target
,
879 TARGET_EVENT_DEBUG_HALTED
);
882 } else if (DSCR_RUN_MODE(dscr
) == DSCR_CORE_RESTARTED
)
883 target
->state
= TARGET_RUNNING
;
885 LOG_DEBUG("Unknown target state dscr = 0x%08" PRIx32
, dscr
);
886 target
->state
= TARGET_UNKNOWN
;
892 static int cortex_a_halt(struct target
*target
)
894 int retval
= ERROR_OK
;
896 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
899 * Tell the core to be halted by writing DRCR with 0x1
900 * and then wait for the core to be halted.
902 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
903 armv7a
->debug_base
+ CPUDBG_DRCR
, DRCR_HALT
);
904 if (retval
!= ERROR_OK
)
908 * enter halting debug mode
910 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
911 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
912 if (retval
!= ERROR_OK
)
915 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
916 armv7a
->debug_base
+ CPUDBG_DSCR
, dscr
| DSCR_HALT_DBG_MODE
);
917 if (retval
!= ERROR_OK
)
920 int64_t then
= timeval_ms();
922 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
923 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
924 if (retval
!= ERROR_OK
)
926 if ((dscr
& DSCR_CORE_HALTED
) != 0)
928 if (timeval_ms() > then
+ 1000) {
929 LOG_ERROR("Timeout waiting for halt");
934 target
->debug_reason
= DBG_REASON_DBGRQ
;
939 static int cortex_a_internal_restore(struct target
*target
, int current
,
940 uint32_t *address
, int handle_breakpoints
, int debug_execution
)
942 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
943 struct arm
*arm
= &armv7a
->arm
;
947 if (!debug_execution
)
948 target_free_all_working_areas(target
);
951 if (debug_execution
) {
952 /* Disable interrupts */
953 /* We disable interrupts in the PRIMASK register instead of
954 * masking with C_MASKINTS,
955 * This is probably the same issue as Cortex-M3 Errata 377493:
956 * C_MASKINTS in parallel with disabled interrupts can cause
957 * local faults to not be taken. */
958 buf_set_u32(armv7m
->core_cache
->reg_list
[ARMV7M_PRIMASK
].value
, 0, 32, 1);
959 armv7m
->core_cache
->reg_list
[ARMV7M_PRIMASK
].dirty
= 1;
960 armv7m
->core_cache
->reg_list
[ARMV7M_PRIMASK
].valid
= 1;
962 /* Make sure we are in Thumb mode */
963 buf_set_u32(armv7m
->core_cache
->reg_list
[ARMV7M_xPSR
].value
, 0, 32,
964 buf_get_u32(armv7m
->core_cache
->reg_list
[ARMV7M_xPSR
].value
, 0,
966 armv7m
->core_cache
->reg_list
[ARMV7M_xPSR
].dirty
= 1;
967 armv7m
->core_cache
->reg_list
[ARMV7M_xPSR
].valid
= 1;
971 /* current = 1: continue on current pc, otherwise continue at <address> */
972 resume_pc
= buf_get_u32(arm
->pc
->value
, 0, 32);
974 resume_pc
= *address
;
976 *address
= resume_pc
;
978 /* Make sure that the Armv7 gdb thumb fixups does not
979 * kill the return address
981 switch (arm
->core_state
) {
983 resume_pc
&= 0xFFFFFFFC;
985 case ARM_STATE_THUMB
:
986 case ARM_STATE_THUMB_EE
:
987 /* When the return address is loaded into PC
988 * bit 0 must be 1 to stay in Thumb state
992 case ARM_STATE_JAZELLE
:
993 LOG_ERROR("How do I resume into Jazelle state??");
996 LOG_DEBUG("resume pc = 0x%08" PRIx32
, resume_pc
);
997 buf_set_u32(arm
->pc
->value
, 0, 32, resume_pc
);
1001 /* restore dpm_mode at system halt */
1002 dpm_modeswitch(&armv7a
->dpm
, ARM_MODE_ANY
);
1003 /* called it now before restoring context because it uses cpu
1004 * register r0 for restoring cp15 control register */
1005 retval
= cortex_a_restore_cp15_control_reg(target
);
1006 if (retval
!= ERROR_OK
)
1008 retval
= cortex_a_restore_context(target
, handle_breakpoints
);
1009 if (retval
!= ERROR_OK
)
1011 target
->debug_reason
= DBG_REASON_NOTHALTED
;
1012 target
->state
= TARGET_RUNNING
;
1014 /* registers are now invalid */
1015 register_cache_invalidate(arm
->core_cache
);
1018 /* the front-end may request us not to handle breakpoints */
1019 if (handle_breakpoints
) {
1020 /* Single step past breakpoint at current address */
1021 breakpoint
= breakpoint_find(target
, resume_pc
);
1023 LOG_DEBUG("unset breakpoint at 0x%8.8x", breakpoint
->address
);
1024 cortex_m3_unset_breakpoint(target
, breakpoint
);
1025 cortex_m3_single_step_core(target
);
1026 cortex_m3_set_breakpoint(target
, breakpoint
);
1034 static int cortex_a_internal_restart(struct target
*target
)
1036 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1037 struct arm
*arm
= &armv7a
->arm
;
1041 * * Restart core and wait for it to be started. Clear ITRen and sticky
1042 * * exception flags: see ARMv7 ARM, C5.9.
1044 * REVISIT: for single stepping, we probably want to
1045 * disable IRQs by default, with optional override...
1048 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
1049 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
1050 if (retval
!= ERROR_OK
)
1053 if ((dscr
& DSCR_INSTR_COMP
) == 0)
1054 LOG_ERROR("DSCR InstrCompl must be set before leaving debug!");
1056 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
1057 armv7a
->debug_base
+ CPUDBG_DSCR
, dscr
& ~DSCR_ITR_EN
);
1058 if (retval
!= ERROR_OK
)
1061 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
1062 armv7a
->debug_base
+ CPUDBG_DRCR
, DRCR_RESTART
|
1063 DRCR_CLEAR_EXCEPTIONS
);
1064 if (retval
!= ERROR_OK
)
1067 int64_t then
= timeval_ms();
1069 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
1070 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
1071 if (retval
!= ERROR_OK
)
1073 if ((dscr
& DSCR_CORE_RESTARTED
) != 0)
1075 if (timeval_ms() > then
+ 1000) {
1076 LOG_ERROR("Timeout waiting for resume");
1081 target
->debug_reason
= DBG_REASON_NOTHALTED
;
1082 target
->state
= TARGET_RUNNING
;
1084 /* registers are now invalid */
1085 register_cache_invalidate(arm
->core_cache
);
1090 static int cortex_a_restore_smp(struct target
*target
, int handle_breakpoints
)
1093 struct target_list
*head
;
1094 struct target
*curr
;
1096 head
= target
->head
;
1097 while (head
!= (struct target_list
*)NULL
) {
1098 curr
= head
->target
;
1099 if ((curr
!= target
) && (curr
->state
!= TARGET_RUNNING
)
1100 && target_was_examined(curr
)) {
1101 /* resume current address , not in step mode */
1102 retval
+= cortex_a_internal_restore(curr
, 1, &address
,
1103 handle_breakpoints
, 0);
1104 retval
+= cortex_a_internal_restart(curr
);
1112 static int cortex_a_resume(struct target
*target
, int current
,
1113 uint32_t address
, int handle_breakpoints
, int debug_execution
)
1116 /* dummy resume for smp toggle in order to reduce gdb impact */
1117 if ((target
->smp
) && (target
->gdb_service
->core
[1] != -1)) {
1118 /* simulate a start and halt of target */
1119 target
->gdb_service
->target
= NULL
;
1120 target
->gdb_service
->core
[0] = target
->gdb_service
->core
[1];
1121 /* fake resume at next poll we play the target core[1], see poll*/
1122 target_call_event_callbacks(target
, TARGET_EVENT_RESUMED
);
1125 cortex_a_internal_restore(target
, current
, &address
, handle_breakpoints
, debug_execution
);
1127 target
->gdb_service
->core
[0] = -1;
1128 retval
= cortex_a_restore_smp(target
, handle_breakpoints
);
1129 if (retval
!= ERROR_OK
)
1132 cortex_a_internal_restart(target
);
1134 if (!debug_execution
) {
1135 target
->state
= TARGET_RUNNING
;
1136 target_call_event_callbacks(target
, TARGET_EVENT_RESUMED
);
1137 LOG_DEBUG("target resumed at 0x%" PRIx32
, address
);
1139 target
->state
= TARGET_DEBUG_RUNNING
;
1140 target_call_event_callbacks(target
, TARGET_EVENT_DEBUG_RESUMED
);
1141 LOG_DEBUG("target debug resumed at 0x%" PRIx32
, address
);
1147 static int cortex_a_debug_entry(struct target
*target
)
1150 uint32_t regfile
[16], cpsr
, spsr
, dscr
;
1151 int retval
= ERROR_OK
;
1152 struct working_area
*regfile_working_area
= NULL
;
1153 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1154 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1155 struct arm
*arm
= &armv7a
->arm
;
1158 LOG_DEBUG("dscr = 0x%08" PRIx32
, cortex_a
->cpudbg_dscr
);
1160 /* REVISIT surely we should not re-read DSCR !! */
1161 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
1162 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
1163 if (retval
!= ERROR_OK
)
1166 /* REVISIT see A TRM 12.11.4 steps 2..3 -- make sure that any
1167 * imprecise data aborts get discarded by issuing a Data
1168 * Synchronization Barrier: ARMV4_5_MCR(15, 0, 0, 7, 10, 4).
1171 /* Enable the ITR execution once we are in debug mode */
1172 dscr
|= DSCR_ITR_EN
;
1173 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
1174 armv7a
->debug_base
+ CPUDBG_DSCR
, dscr
);
1175 if (retval
!= ERROR_OK
)
1178 /* Examine debug reason */
1179 arm_dpm_report_dscr(&armv7a
->dpm
, cortex_a
->cpudbg_dscr
);
1181 /* save address of instruction that triggered the watchpoint? */
1182 if (target
->debug_reason
== DBG_REASON_WATCHPOINT
) {
1185 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
1186 armv7a
->debug_base
+ CPUDBG_WFAR
,
1188 if (retval
!= ERROR_OK
)
1190 arm_dpm_report_wfar(&armv7a
->dpm
, wfar
);
1193 /* REVISIT fast_reg_read is never set ... */
1195 /* Examine target state and mode */
1196 if (cortex_a
->fast_reg_read
)
1197 target_alloc_working_area(target
, 64, ®file_working_area
);
1200 /* First load register acessible through core debug port*/
1201 if (!regfile_working_area
)
1202 retval
= arm_dpm_read_current_registers(&armv7a
->dpm
);
1204 retval
= cortex_a_read_regs_through_mem(target
,
1205 regfile_working_area
->address
, regfile
);
1207 target_free_working_area(target
, regfile_working_area
);
1208 if (retval
!= ERROR_OK
)
1211 /* read Current PSR */
1212 retval
= cortex_a_dap_read_coreregister_u32(target
, &cpsr
, 16);
1213 /* store current cpsr */
1214 if (retval
!= ERROR_OK
)
1217 LOG_DEBUG("cpsr: %8.8" PRIx32
, cpsr
);
1219 arm_set_cpsr(arm
, cpsr
);
1222 for (i
= 0; i
<= ARM_PC
; i
++) {
1223 reg
= arm_reg_current(arm
, i
);
1225 buf_set_u32(reg
->value
, 0, 32, regfile
[i
]);
1230 /* Fixup PC Resume Address */
1231 if (cpsr
& (1 << 5)) {
1232 /* T bit set for Thumb or ThumbEE state */
1233 regfile
[ARM_PC
] -= 4;
1236 regfile
[ARM_PC
] -= 8;
1240 buf_set_u32(reg
->value
, 0, 32, regfile
[ARM_PC
]);
1241 reg
->dirty
= reg
->valid
;
1244 /* read Saved PSR */
1245 retval
= cortex_a_dap_read_coreregister_u32(target
, &spsr
, 17);
1246 /* store current spsr */
1247 if (retval
!= ERROR_OK
)
1251 buf_set_u32(reg
->value
, 0, 32, spsr
);
1256 /* TODO, Move this */
1257 uint32_t cp15_control_register
, cp15_cacr
, cp15_nacr
;
1258 cortex_a_read_cp(target
, &cp15_control_register
, 15, 0, 1, 0, 0);
1259 LOG_DEBUG("cp15_control_register = 0x%08x", cp15_control_register
);
1261 cortex_a_read_cp(target
, &cp15_cacr
, 15, 0, 1, 0, 2);
1262 LOG_DEBUG("cp15 Coprocessor Access Control Register = 0x%08x", cp15_cacr
);
1264 cortex_a_read_cp(target
, &cp15_nacr
, 15, 0, 1, 1, 2);
1265 LOG_DEBUG("cp15 Nonsecure Access Control Register = 0x%08x", cp15_nacr
);
1268 /* Are we in an exception handler */
1269 /* armv4_5->exception_number = 0; */
1270 if (armv7a
->post_debug_entry
) {
1271 retval
= armv7a
->post_debug_entry(target
);
1272 if (retval
!= ERROR_OK
)
1279 static int cortex_a_post_debug_entry(struct target
*target
)
1281 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1282 struct armv7a_common
*armv7a
= &cortex_a
->armv7a_common
;
1285 /* MRC p15,0,<Rt>,c1,c0,0 ; Read CP15 System Control Register */
1286 retval
= armv7a
->arm
.mrc(target
, 15,
1287 0, 0, /* op1, op2 */
1288 1, 0, /* CRn, CRm */
1289 &cortex_a
->cp15_control_reg
);
1290 if (retval
!= ERROR_OK
)
1292 LOG_DEBUG("cp15_control_reg: %8.8" PRIx32
, cortex_a
->cp15_control_reg
);
1293 cortex_a
->cp15_control_reg_curr
= cortex_a
->cp15_control_reg
;
1295 if (armv7a
->armv7a_mmu
.armv7a_cache
.info
== -1)
1296 armv7a_identify_cache(target
);
1298 if (armv7a
->is_armv7r
) {
1299 armv7a
->armv7a_mmu
.mmu_enabled
= 0;
1301 armv7a
->armv7a_mmu
.mmu_enabled
=
1302 (cortex_a
->cp15_control_reg
& 0x1U
) ? 1 : 0;
1304 armv7a
->armv7a_mmu
.armv7a_cache
.d_u_cache_enabled
=
1305 (cortex_a
->cp15_control_reg
& 0x4U
) ? 1 : 0;
1306 armv7a
->armv7a_mmu
.armv7a_cache
.i_cache_enabled
=
1307 (cortex_a
->cp15_control_reg
& 0x1000U
) ? 1 : 0;
1308 cortex_a
->curr_mode
= armv7a
->arm
.core_mode
;
1310 /* switch to SVC mode to read DACR */
1311 dpm_modeswitch(&armv7a
->dpm
, ARM_MODE_SVC
);
1312 armv7a
->arm
.mrc(target
, 15,
1314 &cortex_a
->cp15_dacr_reg
);
1316 LOG_DEBUG("cp15_dacr_reg: %8.8" PRIx32
,
1317 cortex_a
->cp15_dacr_reg
);
1319 dpm_modeswitch(&armv7a
->dpm
, ARM_MODE_ANY
);
1323 int cortex_a_set_dscr_bits(struct target
*target
, unsigned long bit_mask
, unsigned long value
)
1325 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1329 int retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
1330 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
1331 if (ERROR_OK
!= retval
)
1334 /* clear bitfield */
1337 dscr
|= value
& bit_mask
;
1339 /* write new DSCR */
1340 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
1341 armv7a
->debug_base
+ CPUDBG_DSCR
, dscr
);
1345 static int cortex_a_step(struct target
*target
, int current
, uint32_t address
,
1346 int handle_breakpoints
)
1348 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1349 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1350 struct arm
*arm
= &armv7a
->arm
;
1351 struct breakpoint
*breakpoint
= NULL
;
1352 struct breakpoint stepbreakpoint
;
1356 if (target
->state
!= TARGET_HALTED
) {
1357 LOG_WARNING("target not halted");
1358 return ERROR_TARGET_NOT_HALTED
;
1361 /* current = 1: continue on current pc, otherwise continue at <address> */
1364 buf_set_u32(r
->value
, 0, 32, address
);
1366 address
= buf_get_u32(r
->value
, 0, 32);
1368 /* The front-end may request us not to handle breakpoints.
1369 * But since Cortex-A uses breakpoint for single step,
1370 * we MUST handle breakpoints.
1372 handle_breakpoints
= 1;
1373 if (handle_breakpoints
) {
1374 breakpoint
= breakpoint_find(target
, address
);
1376 cortex_a_unset_breakpoint(target
, breakpoint
);
1379 /* Setup single step breakpoint */
1380 stepbreakpoint
.address
= address
;
1381 stepbreakpoint
.length
= (arm
->core_state
== ARM_STATE_THUMB
)
1383 stepbreakpoint
.type
= BKPT_HARD
;
1384 stepbreakpoint
.set
= 0;
1386 /* Disable interrupts during single step if requested */
1387 if (cortex_a
->isrmasking_mode
== CORTEX_A_ISRMASK_ON
) {
1388 retval
= cortex_a_set_dscr_bits(target
, DSCR_INT_DIS
, DSCR_INT_DIS
);
1389 if (ERROR_OK
!= retval
)
1393 /* Break on IVA mismatch */
1394 cortex_a_set_breakpoint(target
, &stepbreakpoint
, 0x04);
1396 target
->debug_reason
= DBG_REASON_SINGLESTEP
;
1398 retval
= cortex_a_resume(target
, 1, address
, 0, 0);
1399 if (retval
!= ERROR_OK
)
1402 int64_t then
= timeval_ms();
1403 while (target
->state
!= TARGET_HALTED
) {
1404 retval
= cortex_a_poll(target
);
1405 if (retval
!= ERROR_OK
)
1407 if (timeval_ms() > then
+ 1000) {
1408 LOG_ERROR("timeout waiting for target halt");
1413 cortex_a_unset_breakpoint(target
, &stepbreakpoint
);
1415 /* Re-enable interrupts if they were disabled */
1416 if (cortex_a
->isrmasking_mode
== CORTEX_A_ISRMASK_ON
) {
1417 retval
= cortex_a_set_dscr_bits(target
, DSCR_INT_DIS
, 0);
1418 if (ERROR_OK
!= retval
)
1423 target
->debug_reason
= DBG_REASON_BREAKPOINT
;
1426 cortex_a_set_breakpoint(target
, breakpoint
, 0);
1428 if (target
->state
!= TARGET_HALTED
)
1429 LOG_DEBUG("target stepped");
1434 static int cortex_a_restore_context(struct target
*target
, bool bpwp
)
1436 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1440 if (armv7a
->pre_restore_context
)
1441 armv7a
->pre_restore_context(target
);
1443 return arm_dpm_write_dirty_registers(&armv7a
->dpm
, bpwp
);
1447 * Cortex-A Breakpoint and watchpoint functions
1450 /* Setup hardware Breakpoint Register Pair */
1451 static int cortex_a_set_breakpoint(struct target
*target
,
1452 struct breakpoint
*breakpoint
, uint8_t matchmode
)
1457 uint8_t byte_addr_select
= 0x0F;
1458 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1459 struct armv7a_common
*armv7a
= &cortex_a
->armv7a_common
;
1460 struct cortex_a_brp
*brp_list
= cortex_a
->brp_list
;
1462 if (breakpoint
->set
) {
1463 LOG_WARNING("breakpoint already set");
1467 if (breakpoint
->type
== BKPT_HARD
) {
1468 while (brp_list
[brp_i
].used
&& (brp_i
< cortex_a
->brp_num
))
1470 if (brp_i
>= cortex_a
->brp_num
) {
1471 LOG_ERROR("ERROR Can not find free Breakpoint Register Pair");
1472 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE
;
1474 breakpoint
->set
= brp_i
+ 1;
1475 if (breakpoint
->length
== 2)
1476 byte_addr_select
= (3 << (breakpoint
->address
& 0x02));
1477 control
= ((matchmode
& 0x7) << 20)
1478 | (byte_addr_select
<< 5)
1480 brp_list
[brp_i
].used
= 1;
1481 brp_list
[brp_i
].value
= (breakpoint
->address
& 0xFFFFFFFC);
1482 brp_list
[brp_i
].control
= control
;
1483 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1484 + CPUDBG_BVR_BASE
+ 4 * brp_list
[brp_i
].BRPn
,
1485 brp_list
[brp_i
].value
);
1486 if (retval
!= ERROR_OK
)
1488 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1489 + CPUDBG_BCR_BASE
+ 4 * brp_list
[brp_i
].BRPn
,
1490 brp_list
[brp_i
].control
);
1491 if (retval
!= ERROR_OK
)
1493 LOG_DEBUG("brp %i control 0x%0" PRIx32
" value 0x%0" PRIx32
, brp_i
,
1494 brp_list
[brp_i
].control
,
1495 brp_list
[brp_i
].value
);
1496 } else if (breakpoint
->type
== BKPT_SOFT
) {
1498 if (breakpoint
->length
== 2)
1499 buf_set_u32(code
, 0, 32, ARMV5_T_BKPT(0x11));
1501 buf_set_u32(code
, 0, 32, ARMV5_BKPT(0x11));
1502 retval
= target_read_memory(target
,
1503 breakpoint
->address
& 0xFFFFFFFE,
1504 breakpoint
->length
, 1,
1505 breakpoint
->orig_instr
);
1506 if (retval
!= ERROR_OK
)
1509 /* make sure data cache is cleaned & invalidated down to PoC */
1510 if (!armv7a
->armv7a_mmu
.armv7a_cache
.auto_cache_enabled
) {
1511 armv7a_cache_flush_virt(target
, breakpoint
->address
,
1512 breakpoint
->length
);
1515 retval
= target_write_memory(target
,
1516 breakpoint
->address
& 0xFFFFFFFE,
1517 breakpoint
->length
, 1, code
);
1518 if (retval
!= ERROR_OK
)
1521 /* update i-cache at breakpoint location */
1522 armv7a_l1_d_cache_inval_virt(target
, breakpoint
->address
,
1523 breakpoint
->length
);
1524 armv7a_l1_i_cache_inval_virt(target
, breakpoint
->address
,
1525 breakpoint
->length
);
1527 breakpoint
->set
= 0x11; /* Any nice value but 0 */
1533 static int cortex_a_set_context_breakpoint(struct target
*target
,
1534 struct breakpoint
*breakpoint
, uint8_t matchmode
)
1536 int retval
= ERROR_FAIL
;
1539 uint8_t byte_addr_select
= 0x0F;
1540 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1541 struct armv7a_common
*armv7a
= &cortex_a
->armv7a_common
;
1542 struct cortex_a_brp
*brp_list
= cortex_a
->brp_list
;
1544 if (breakpoint
->set
) {
1545 LOG_WARNING("breakpoint already set");
1548 /*check available context BRPs*/
1549 while ((brp_list
[brp_i
].used
||
1550 (brp_list
[brp_i
].type
!= BRP_CONTEXT
)) && (brp_i
< cortex_a
->brp_num
))
1553 if (brp_i
>= cortex_a
->brp_num
) {
1554 LOG_ERROR("ERROR Can not find free Breakpoint Register Pair");
1558 breakpoint
->set
= brp_i
+ 1;
1559 control
= ((matchmode
& 0x7) << 20)
1560 | (byte_addr_select
<< 5)
1562 brp_list
[brp_i
].used
= 1;
1563 brp_list
[brp_i
].value
= (breakpoint
->asid
);
1564 brp_list
[brp_i
].control
= control
;
1565 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1566 + CPUDBG_BVR_BASE
+ 4 * brp_list
[brp_i
].BRPn
,
1567 brp_list
[brp_i
].value
);
1568 if (retval
!= ERROR_OK
)
1570 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1571 + CPUDBG_BCR_BASE
+ 4 * brp_list
[brp_i
].BRPn
,
1572 brp_list
[brp_i
].control
);
1573 if (retval
!= ERROR_OK
)
1575 LOG_DEBUG("brp %i control 0x%0" PRIx32
" value 0x%0" PRIx32
, brp_i
,
1576 brp_list
[brp_i
].control
,
1577 brp_list
[brp_i
].value
);
1582 static int cortex_a_set_hybrid_breakpoint(struct target
*target
, struct breakpoint
*breakpoint
)
1584 int retval
= ERROR_FAIL
;
1585 int brp_1
= 0; /* holds the contextID pair */
1586 int brp_2
= 0; /* holds the IVA pair */
1587 uint32_t control_CTX
, control_IVA
;
1588 uint8_t CTX_byte_addr_select
= 0x0F;
1589 uint8_t IVA_byte_addr_select
= 0x0F;
1590 uint8_t CTX_machmode
= 0x03;
1591 uint8_t IVA_machmode
= 0x01;
1592 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1593 struct armv7a_common
*armv7a
= &cortex_a
->armv7a_common
;
1594 struct cortex_a_brp
*brp_list
= cortex_a
->brp_list
;
1596 if (breakpoint
->set
) {
1597 LOG_WARNING("breakpoint already set");
1600 /*check available context BRPs*/
1601 while ((brp_list
[brp_1
].used
||
1602 (brp_list
[brp_1
].type
!= BRP_CONTEXT
)) && (brp_1
< cortex_a
->brp_num
))
1605 printf("brp(CTX) found num: %d\n", brp_1
);
1606 if (brp_1
>= cortex_a
->brp_num
) {
1607 LOG_ERROR("ERROR Can not find free Breakpoint Register Pair");
1611 while ((brp_list
[brp_2
].used
||
1612 (brp_list
[brp_2
].type
!= BRP_NORMAL
)) && (brp_2
< cortex_a
->brp_num
))
1615 printf("brp(IVA) found num: %d\n", brp_2
);
1616 if (brp_2
>= cortex_a
->brp_num
) {
1617 LOG_ERROR("ERROR Can not find free Breakpoint Register Pair");
1621 breakpoint
->set
= brp_1
+ 1;
1622 breakpoint
->linked_BRP
= brp_2
;
1623 control_CTX
= ((CTX_machmode
& 0x7) << 20)
1626 | (CTX_byte_addr_select
<< 5)
1628 brp_list
[brp_1
].used
= 1;
1629 brp_list
[brp_1
].value
= (breakpoint
->asid
);
1630 brp_list
[brp_1
].control
= control_CTX
;
1631 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1632 + CPUDBG_BVR_BASE
+ 4 * brp_list
[brp_1
].BRPn
,
1633 brp_list
[brp_1
].value
);
1634 if (retval
!= ERROR_OK
)
1636 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1637 + CPUDBG_BCR_BASE
+ 4 * brp_list
[brp_1
].BRPn
,
1638 brp_list
[brp_1
].control
);
1639 if (retval
!= ERROR_OK
)
1642 control_IVA
= ((IVA_machmode
& 0x7) << 20)
1644 | (IVA_byte_addr_select
<< 5)
1646 brp_list
[brp_2
].used
= 1;
1647 brp_list
[brp_2
].value
= (breakpoint
->address
& 0xFFFFFFFC);
1648 brp_list
[brp_2
].control
= control_IVA
;
1649 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1650 + CPUDBG_BVR_BASE
+ 4 * brp_list
[brp_2
].BRPn
,
1651 brp_list
[brp_2
].value
);
1652 if (retval
!= ERROR_OK
)
1654 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1655 + CPUDBG_BCR_BASE
+ 4 * brp_list
[brp_2
].BRPn
,
1656 brp_list
[brp_2
].control
);
1657 if (retval
!= ERROR_OK
)
1663 static int cortex_a_unset_breakpoint(struct target
*target
, struct breakpoint
*breakpoint
)
1666 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1667 struct armv7a_common
*armv7a
= &cortex_a
->armv7a_common
;
1668 struct cortex_a_brp
*brp_list
= cortex_a
->brp_list
;
1670 if (!breakpoint
->set
) {
1671 LOG_WARNING("breakpoint not set");
1675 if (breakpoint
->type
== BKPT_HARD
) {
1676 if ((breakpoint
->address
!= 0) && (breakpoint
->asid
!= 0)) {
1677 int brp_i
= breakpoint
->set
- 1;
1678 int brp_j
= breakpoint
->linked_BRP
;
1679 if ((brp_i
< 0) || (brp_i
>= cortex_a
->brp_num
)) {
1680 LOG_DEBUG("Invalid BRP number in breakpoint");
1683 LOG_DEBUG("rbp %i control 0x%0" PRIx32
" value 0x%0" PRIx32
, brp_i
,
1684 brp_list
[brp_i
].control
, brp_list
[brp_i
].value
);
1685 brp_list
[brp_i
].used
= 0;
1686 brp_list
[brp_i
].value
= 0;
1687 brp_list
[brp_i
].control
= 0;
1688 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1689 + CPUDBG_BCR_BASE
+ 4 * brp_list
[brp_i
].BRPn
,
1690 brp_list
[brp_i
].control
);
1691 if (retval
!= ERROR_OK
)
1693 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1694 + CPUDBG_BVR_BASE
+ 4 * brp_list
[brp_i
].BRPn
,
1695 brp_list
[brp_i
].value
);
1696 if (retval
!= ERROR_OK
)
1698 if ((brp_j
< 0) || (brp_j
>= cortex_a
->brp_num
)) {
1699 LOG_DEBUG("Invalid BRP number in breakpoint");
1702 LOG_DEBUG("rbp %i control 0x%0" PRIx32
" value 0x%0" PRIx32
, brp_j
,
1703 brp_list
[brp_j
].control
, brp_list
[brp_j
].value
);
1704 brp_list
[brp_j
].used
= 0;
1705 brp_list
[brp_j
].value
= 0;
1706 brp_list
[brp_j
].control
= 0;
1707 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1708 + CPUDBG_BCR_BASE
+ 4 * brp_list
[brp_j
].BRPn
,
1709 brp_list
[brp_j
].control
);
1710 if (retval
!= ERROR_OK
)
1712 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1713 + CPUDBG_BVR_BASE
+ 4 * brp_list
[brp_j
].BRPn
,
1714 brp_list
[brp_j
].value
);
1715 if (retval
!= ERROR_OK
)
1717 breakpoint
->linked_BRP
= 0;
1718 breakpoint
->set
= 0;
1722 int brp_i
= breakpoint
->set
- 1;
1723 if ((brp_i
< 0) || (brp_i
>= cortex_a
->brp_num
)) {
1724 LOG_DEBUG("Invalid BRP number in breakpoint");
1727 LOG_DEBUG("rbp %i control 0x%0" PRIx32
" value 0x%0" PRIx32
, brp_i
,
1728 brp_list
[brp_i
].control
, brp_list
[brp_i
].value
);
1729 brp_list
[brp_i
].used
= 0;
1730 brp_list
[brp_i
].value
= 0;
1731 brp_list
[brp_i
].control
= 0;
1732 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1733 + CPUDBG_BCR_BASE
+ 4 * brp_list
[brp_i
].BRPn
,
1734 brp_list
[brp_i
].control
);
1735 if (retval
!= ERROR_OK
)
1737 retval
= cortex_a_dap_write_memap_register_u32(target
, armv7a
->debug_base
1738 + CPUDBG_BVR_BASE
+ 4 * brp_list
[brp_i
].BRPn
,
1739 brp_list
[brp_i
].value
);
1740 if (retval
!= ERROR_OK
)
1742 breakpoint
->set
= 0;
1747 /* make sure data cache is cleaned & invalidated down to PoC */
1748 if (!armv7a
->armv7a_mmu
.armv7a_cache
.auto_cache_enabled
) {
1749 armv7a_cache_flush_virt(target
, breakpoint
->address
,
1750 breakpoint
->length
);
1753 /* restore original instruction (kept in target endianness) */
1754 if (breakpoint
->length
== 4) {
1755 retval
= target_write_memory(target
,
1756 breakpoint
->address
& 0xFFFFFFFE,
1757 4, 1, breakpoint
->orig_instr
);
1758 if (retval
!= ERROR_OK
)
1761 retval
= target_write_memory(target
,
1762 breakpoint
->address
& 0xFFFFFFFE,
1763 2, 1, breakpoint
->orig_instr
);
1764 if (retval
!= ERROR_OK
)
1768 /* update i-cache at breakpoint location */
1769 armv7a_l1_d_cache_inval_virt(target
, breakpoint
->address
,
1770 breakpoint
->length
);
1771 armv7a_l1_i_cache_inval_virt(target
, breakpoint
->address
,
1772 breakpoint
->length
);
1774 breakpoint
->set
= 0;
1779 static int cortex_a_add_breakpoint(struct target
*target
,
1780 struct breakpoint
*breakpoint
)
1782 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1784 if ((breakpoint
->type
== BKPT_HARD
) && (cortex_a
->brp_num_available
< 1)) {
1785 LOG_INFO("no hardware breakpoint available");
1786 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE
;
1789 if (breakpoint
->type
== BKPT_HARD
)
1790 cortex_a
->brp_num_available
--;
1792 return cortex_a_set_breakpoint(target
, breakpoint
, 0x00); /* Exact match */
1795 static int cortex_a_add_context_breakpoint(struct target
*target
,
1796 struct breakpoint
*breakpoint
)
1798 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1800 if ((breakpoint
->type
== BKPT_HARD
) && (cortex_a
->brp_num_available
< 1)) {
1801 LOG_INFO("no hardware breakpoint available");
1802 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE
;
1805 if (breakpoint
->type
== BKPT_HARD
)
1806 cortex_a
->brp_num_available
--;
1808 return cortex_a_set_context_breakpoint(target
, breakpoint
, 0x02); /* asid match */
1811 static int cortex_a_add_hybrid_breakpoint(struct target
*target
,
1812 struct breakpoint
*breakpoint
)
1814 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1816 if ((breakpoint
->type
== BKPT_HARD
) && (cortex_a
->brp_num_available
< 1)) {
1817 LOG_INFO("no hardware breakpoint available");
1818 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE
;
1821 if (breakpoint
->type
== BKPT_HARD
)
1822 cortex_a
->brp_num_available
--;
1824 return cortex_a_set_hybrid_breakpoint(target
, breakpoint
); /* ??? */
1828 static int cortex_a_remove_breakpoint(struct target
*target
, struct breakpoint
*breakpoint
)
1830 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
1833 /* It is perfectly possible to remove breakpoints while the target is running */
1834 if (target
->state
!= TARGET_HALTED
) {
1835 LOG_WARNING("target not halted");
1836 return ERROR_TARGET_NOT_HALTED
;
1840 if (breakpoint
->set
) {
1841 cortex_a_unset_breakpoint(target
, breakpoint
);
1842 if (breakpoint
->type
== BKPT_HARD
)
1843 cortex_a
->brp_num_available
++;
1851 * Cortex-A Reset functions
1854 static int cortex_a_assert_reset(struct target
*target
)
1856 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1860 /* FIXME when halt is requested, make it work somehow... */
1862 /* This function can be called in "target not examined" state */
1864 /* Issue some kind of warm reset. */
1865 if (target_has_event_action(target
, TARGET_EVENT_RESET_ASSERT
))
1866 target_handle_event(target
, TARGET_EVENT_RESET_ASSERT
);
1867 else if (jtag_get_reset_config() & RESET_HAS_SRST
) {
1868 /* REVISIT handle "pulls" cases, if there's
1869 * hardware that needs them to work.
1873 * FIXME: fix reset when transport is SWD. This is a temporary
1874 * work-around for release v0.10 that is not intended to stay!
1876 if (transport_is_swd() ||
1877 (target
->reset_halt
&& (jtag_get_reset_config() & RESET_SRST_NO_GATING
)))
1878 jtag_add_reset(0, 1);
1881 LOG_ERROR("%s: how to reset?", target_name(target
));
1885 /* registers are now invalid */
1886 if (target_was_examined(target
))
1887 register_cache_invalidate(armv7a
->arm
.core_cache
);
1889 target
->state
= TARGET_RESET
;
1894 static int cortex_a_deassert_reset(struct target
*target
)
1900 /* be certain SRST is off */
1901 jtag_add_reset(0, 0);
1903 if (target_was_examined(target
)) {
1904 retval
= cortex_a_poll(target
);
1905 if (retval
!= ERROR_OK
)
1909 if (target
->reset_halt
) {
1910 if (target
->state
!= TARGET_HALTED
) {
1911 LOG_WARNING("%s: ran after reset and before halt ...",
1912 target_name(target
));
1913 if (target_was_examined(target
)) {
1914 retval
= target_halt(target
);
1915 if (retval
!= ERROR_OK
)
1918 target
->state
= TARGET_UNKNOWN
;
1925 static int cortex_a_set_dcc_mode(struct target
*target
, uint32_t mode
, uint32_t *dscr
)
1927 /* Changes the mode of the DCC between non-blocking, stall, and fast mode.
1928 * New desired mode must be in mode. Current value of DSCR must be in
1929 * *dscr, which is updated with new value.
1931 * This function elides actually sending the mode-change over the debug
1932 * interface if the mode is already set as desired.
1934 uint32_t new_dscr
= (*dscr
& ~DSCR_EXT_DCC_MASK
) | mode
;
1935 if (new_dscr
!= *dscr
) {
1936 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1937 int retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
1938 armv7a
->debug_base
+ CPUDBG_DSCR
, new_dscr
);
1939 if (retval
== ERROR_OK
)
1947 static int cortex_a_wait_dscr_bits(struct target
*target
, uint32_t mask
,
1948 uint32_t value
, uint32_t *dscr
)
1950 /* Waits until the specified bit(s) of DSCR take on a specified value. */
1951 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1952 int64_t then
= timeval_ms();
1955 while ((*dscr
& mask
) != value
) {
1956 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
1957 armv7a
->debug_base
+ CPUDBG_DSCR
, dscr
);
1958 if (retval
!= ERROR_OK
)
1960 if (timeval_ms() > then
+ 1000) {
1961 LOG_ERROR("timeout waiting for DSCR bit change");
1968 static int cortex_a_read_copro(struct target
*target
, uint32_t opcode
,
1969 uint32_t *data
, uint32_t *dscr
)
1972 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
1974 /* Move from coprocessor to R0. */
1975 retval
= cortex_a_exec_opcode(target
, opcode
, dscr
);
1976 if (retval
!= ERROR_OK
)
1979 /* Move from R0 to DTRTX. */
1980 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MCR(14, 0, 0, 0, 5, 0), dscr
);
1981 if (retval
!= ERROR_OK
)
1984 /* Wait until DTRTX is full (according to ARMv7-A/-R architecture
1985 * manual section C8.4.3, checking InstrCmpl_l is not sufficient; one
1986 * must also check TXfull_l). Most of the time this will be free
1987 * because TXfull_l will be set immediately and cached in dscr. */
1988 retval
= cortex_a_wait_dscr_bits(target
, DSCR_DTRTX_FULL_LATCHED
,
1989 DSCR_DTRTX_FULL_LATCHED
, dscr
);
1990 if (retval
!= ERROR_OK
)
1993 /* Read the value transferred to DTRTX. */
1994 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
1995 armv7a
->debug_base
+ CPUDBG_DTRTX
, data
);
1996 if (retval
!= ERROR_OK
)
2002 static int cortex_a_read_dfar_dfsr(struct target
*target
, uint32_t *dfar
,
2003 uint32_t *dfsr
, uint32_t *dscr
)
2008 retval
= cortex_a_read_copro(target
, ARMV4_5_MRC(15, 0, 0, 6, 0, 0), dfar
, dscr
);
2009 if (retval
!= ERROR_OK
)
2014 retval
= cortex_a_read_copro(target
, ARMV4_5_MRC(15, 0, 0, 5, 0, 0), dfsr
, dscr
);
2015 if (retval
!= ERROR_OK
)
2022 static int cortex_a_write_copro(struct target
*target
, uint32_t opcode
,
2023 uint32_t data
, uint32_t *dscr
)
2026 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2028 /* Write the value into DTRRX. */
2029 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2030 armv7a
->debug_base
+ CPUDBG_DTRRX
, data
);
2031 if (retval
!= ERROR_OK
)
2034 /* Move from DTRRX to R0. */
2035 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 0, 0, 5, 0), dscr
);
2036 if (retval
!= ERROR_OK
)
2039 /* Move from R0 to coprocessor. */
2040 retval
= cortex_a_exec_opcode(target
, opcode
, dscr
);
2041 if (retval
!= ERROR_OK
)
2044 /* Wait until DTRRX is empty (according to ARMv7-A/-R architecture manual
2045 * section C8.4.3, checking InstrCmpl_l is not sufficient; one must also
2046 * check RXfull_l). Most of the time this will be free because RXfull_l
2047 * will be cleared immediately and cached in dscr. */
2048 retval
= cortex_a_wait_dscr_bits(target
, DSCR_DTRRX_FULL_LATCHED
, 0, dscr
);
2049 if (retval
!= ERROR_OK
)
2055 static int cortex_a_write_dfar_dfsr(struct target
*target
, uint32_t dfar
,
2056 uint32_t dfsr
, uint32_t *dscr
)
2060 retval
= cortex_a_write_copro(target
, ARMV4_5_MCR(15, 0, 0, 6, 0, 0), dfar
, dscr
);
2061 if (retval
!= ERROR_OK
)
2064 retval
= cortex_a_write_copro(target
, ARMV4_5_MCR(15, 0, 0, 5, 0, 0), dfsr
, dscr
);
2065 if (retval
!= ERROR_OK
)
2071 static int cortex_a_dfsr_to_error_code(uint32_t dfsr
)
2073 uint32_t status
, upper4
;
2075 if (dfsr
& (1 << 9)) {
2077 status
= dfsr
& 0x3f;
2078 upper4
= status
>> 2;
2079 if (upper4
== 1 || upper4
== 2 || upper4
== 3 || upper4
== 15)
2080 return ERROR_TARGET_TRANSLATION_FAULT
;
2081 else if (status
== 33)
2082 return ERROR_TARGET_UNALIGNED_ACCESS
;
2084 return ERROR_TARGET_DATA_ABORT
;
2086 /* Normal format. */
2087 status
= ((dfsr
>> 6) & 0x10) | (dfsr
& 0xf);
2089 return ERROR_TARGET_UNALIGNED_ACCESS
;
2090 else if (status
== 5 || status
== 7 || status
== 3 || status
== 6 ||
2091 status
== 9 || status
== 11 || status
== 13 || status
== 15)
2092 return ERROR_TARGET_TRANSLATION_FAULT
;
2094 return ERROR_TARGET_DATA_ABORT
;
2098 static int cortex_a_write_cpu_memory_slow(struct target
*target
,
2099 uint32_t size
, uint32_t count
, const uint8_t *buffer
, uint32_t *dscr
)
2101 /* Writes count objects of size size from *buffer. Old value of DSCR must
2102 * be in *dscr; updated to new value. This is slow because it works for
2103 * non-word-sized objects and (maybe) unaligned accesses. If size == 4 and
2104 * the address is aligned, cortex_a_write_cpu_memory_fast should be
2107 * - Address is in R0.
2108 * - R0 is marked dirty.
2110 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2111 struct arm
*arm
= &armv7a
->arm
;
2114 /* Mark register R1 as dirty, to use for transferring data. */
2115 arm_reg_current(arm
, 1)->dirty
= true;
2117 /* Switch to non-blocking mode if not already in that mode. */
2118 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_NON_BLOCKING
, dscr
);
2119 if (retval
!= ERROR_OK
)
2122 /* Go through the objects. */
2124 /* Write the value to store into DTRRX. */
2125 uint32_t data
, opcode
;
2129 data
= target_buffer_get_u16(target
, buffer
);
2131 data
= target_buffer_get_u32(target
, buffer
);
2132 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2133 armv7a
->debug_base
+ CPUDBG_DTRRX
, data
);
2134 if (retval
!= ERROR_OK
)
2137 /* Transfer the value from DTRRX to R1. */
2138 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 1, 0, 5, 0), dscr
);
2139 if (retval
!= ERROR_OK
)
2142 /* Write the value transferred to R1 into memory. */
2144 opcode
= ARMV4_5_STRB_IP(1, 0);
2146 opcode
= ARMV4_5_STRH_IP(1, 0);
2148 opcode
= ARMV4_5_STRW_IP(1, 0);
2149 retval
= cortex_a_exec_opcode(target
, opcode
, dscr
);
2150 if (retval
!= ERROR_OK
)
2153 /* Check for faults and return early. */
2154 if (*dscr
& (DSCR_STICKY_ABORT_PRECISE
| DSCR_STICKY_ABORT_IMPRECISE
))
2155 return ERROR_OK
; /* A data fault is not considered a system failure. */
2157 /* Wait until DTRRX is empty (according to ARMv7-A/-R architecture
2158 * manual section C8.4.3, checking InstrCmpl_l is not sufficient; one
2159 * must also check RXfull_l). Most of the time this will be free
2160 * because RXfull_l will be cleared immediately and cached in dscr. */
2161 retval
= cortex_a_wait_dscr_bits(target
, DSCR_DTRRX_FULL_LATCHED
, 0, dscr
);
2162 if (retval
!= ERROR_OK
)
2173 static int cortex_a_write_cpu_memory_fast(struct target
*target
,
2174 uint32_t count
, const uint8_t *buffer
, uint32_t *dscr
)
2176 /* Writes count objects of size 4 from *buffer. Old value of DSCR must be
2177 * in *dscr; updated to new value. This is fast but only works for
2178 * word-sized objects at aligned addresses.
2180 * - Address is in R0 and must be a multiple of 4.
2181 * - R0 is marked dirty.
2183 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2186 /* Switch to fast mode if not already in that mode. */
2187 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_FAST_MODE
, dscr
);
2188 if (retval
!= ERROR_OK
)
2191 /* Latch STC instruction. */
2192 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2193 armv7a
->debug_base
+ CPUDBG_ITR
, ARMV4_5_STC(0, 1, 0, 1, 14, 5, 0, 4));
2194 if (retval
!= ERROR_OK
)
2197 /* Transfer all the data and issue all the instructions. */
2198 return mem_ap_write_buf_noincr(armv7a
->debug_ap
, buffer
,
2199 4, count
, armv7a
->debug_base
+ CPUDBG_DTRRX
);
2202 static int cortex_a_write_cpu_memory(struct target
*target
,
2203 uint32_t address
, uint32_t size
,
2204 uint32_t count
, const uint8_t *buffer
)
2206 /* Write memory through the CPU. */
2207 int retval
, final_retval
;
2208 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2209 struct arm
*arm
= &armv7a
->arm
;
2210 uint32_t dscr
, orig_dfar
, orig_dfsr
, fault_dscr
, fault_dfar
, fault_dfsr
;
2212 LOG_DEBUG("Writing CPU memory address 0x%" PRIx32
" size %" PRIu32
" count %" PRIu32
,
2213 address
, size
, count
);
2214 if (target
->state
!= TARGET_HALTED
) {
2215 LOG_WARNING("target not halted");
2216 return ERROR_TARGET_NOT_HALTED
;
2222 /* Clear any abort. */
2223 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2224 armv7a
->debug_base
+ CPUDBG_DRCR
, DRCR_CLEAR_EXCEPTIONS
);
2225 if (retval
!= ERROR_OK
)
2229 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2230 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
2231 if (retval
!= ERROR_OK
)
2234 /* Switch to non-blocking mode if not already in that mode. */
2235 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_NON_BLOCKING
, &dscr
);
2236 if (retval
!= ERROR_OK
)
2239 /* Mark R0 as dirty. */
2240 arm_reg_current(arm
, 0)->dirty
= true;
2242 /* Read DFAR and DFSR, as they will be modified in the event of a fault. */
2243 retval
= cortex_a_read_dfar_dfsr(target
, &orig_dfar
, &orig_dfsr
, &dscr
);
2244 if (retval
!= ERROR_OK
)
2247 /* Get the memory address into R0. */
2248 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2249 armv7a
->debug_base
+ CPUDBG_DTRRX
, address
);
2250 if (retval
!= ERROR_OK
)
2252 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 0, 0, 5, 0), &dscr
);
2253 if (retval
!= ERROR_OK
)
2256 if (size
== 4 && (address
% 4) == 0) {
2257 /* We are doing a word-aligned transfer, so use fast mode. */
2258 retval
= cortex_a_write_cpu_memory_fast(target
, count
, buffer
, &dscr
);
2260 /* Use slow path. */
2261 retval
= cortex_a_write_cpu_memory_slow(target
, size
, count
, buffer
, &dscr
);
2265 final_retval
= retval
;
2267 /* Switch to non-blocking mode if not already in that mode. */
2268 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_NON_BLOCKING
, &dscr
);
2269 if (final_retval
== ERROR_OK
)
2270 final_retval
= retval
;
2272 /* Wait for last issued instruction to complete. */
2273 retval
= cortex_a_wait_instrcmpl(target
, &dscr
, true);
2274 if (final_retval
== ERROR_OK
)
2275 final_retval
= retval
;
2277 /* Wait until DTRRX is empty (according to ARMv7-A/-R architecture manual
2278 * section C8.4.3, checking InstrCmpl_l is not sufficient; one must also
2279 * check RXfull_l). Most of the time this will be free because RXfull_l
2280 * will be cleared immediately and cached in dscr. However, don't do this
2281 * if there is fault, because then the instruction might not have completed
2283 if (!(dscr
& DSCR_STICKY_ABORT_PRECISE
)) {
2284 retval
= cortex_a_wait_dscr_bits(target
, DSCR_DTRRX_FULL_LATCHED
, 0, &dscr
);
2285 if (retval
!= ERROR_OK
)
2289 /* If there were any sticky abort flags, clear them. */
2290 if (dscr
& (DSCR_STICKY_ABORT_PRECISE
| DSCR_STICKY_ABORT_IMPRECISE
)) {
2292 mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2293 armv7a
->debug_base
+ CPUDBG_DRCR
, DRCR_CLEAR_EXCEPTIONS
);
2294 dscr
&= ~(DSCR_STICKY_ABORT_PRECISE
| DSCR_STICKY_ABORT_IMPRECISE
);
2299 /* Handle synchronous data faults. */
2300 if (fault_dscr
& DSCR_STICKY_ABORT_PRECISE
) {
2301 if (final_retval
== ERROR_OK
) {
2302 /* Final return value will reflect cause of fault. */
2303 retval
= cortex_a_read_dfar_dfsr(target
, &fault_dfar
, &fault_dfsr
, &dscr
);
2304 if (retval
== ERROR_OK
) {
2305 LOG_ERROR("data abort at 0x%08" PRIx32
", dfsr = 0x%08" PRIx32
, fault_dfar
, fault_dfsr
);
2306 final_retval
= cortex_a_dfsr_to_error_code(fault_dfsr
);
2308 final_retval
= retval
;
2310 /* Fault destroyed DFAR/DFSR; restore them. */
2311 retval
= cortex_a_write_dfar_dfsr(target
, orig_dfar
, orig_dfsr
, &dscr
);
2312 if (retval
!= ERROR_OK
)
2313 LOG_ERROR("error restoring dfar/dfsr - dscr = 0x%08" PRIx32
, dscr
);
2316 /* Handle asynchronous data faults. */
2317 if (fault_dscr
& DSCR_STICKY_ABORT_IMPRECISE
) {
2318 if (final_retval
== ERROR_OK
)
2319 /* No other error has been recorded so far, so keep this one. */
2320 final_retval
= ERROR_TARGET_DATA_ABORT
;
2323 /* If the DCC is nonempty, clear it. */
2324 if (dscr
& DSCR_DTRTX_FULL_LATCHED
) {
2326 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2327 armv7a
->debug_base
+ CPUDBG_DTRTX
, &dummy
);
2328 if (final_retval
== ERROR_OK
)
2329 final_retval
= retval
;
2331 if (dscr
& DSCR_DTRRX_FULL_LATCHED
) {
2332 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 1, 0, 5, 0), &dscr
);
2333 if (final_retval
== ERROR_OK
)
2334 final_retval
= retval
;
2338 return final_retval
;
2341 static int cortex_a_read_cpu_memory_slow(struct target
*target
,
2342 uint32_t size
, uint32_t count
, uint8_t *buffer
, uint32_t *dscr
)
2344 /* Reads count objects of size size into *buffer. Old value of DSCR must be
2345 * in *dscr; updated to new value. This is slow because it works for
2346 * non-word-sized objects and (maybe) unaligned accesses. If size == 4 and
2347 * the address is aligned, cortex_a_read_cpu_memory_fast should be
2350 * - Address is in R0.
2351 * - R0 is marked dirty.
2353 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2354 struct arm
*arm
= &armv7a
->arm
;
2357 /* Mark register R1 as dirty, to use for transferring data. */
2358 arm_reg_current(arm
, 1)->dirty
= true;
2360 /* Switch to non-blocking mode if not already in that mode. */
2361 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_NON_BLOCKING
, dscr
);
2362 if (retval
!= ERROR_OK
)
2365 /* Go through the objects. */
2367 /* Issue a load of the appropriate size to R1. */
2368 uint32_t opcode
, data
;
2370 opcode
= ARMV4_5_LDRB_IP(1, 0);
2372 opcode
= ARMV4_5_LDRH_IP(1, 0);
2374 opcode
= ARMV4_5_LDRW_IP(1, 0);
2375 retval
= cortex_a_exec_opcode(target
, opcode
, dscr
);
2376 if (retval
!= ERROR_OK
)
2379 /* Issue a write of R1 to DTRTX. */
2380 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MCR(14, 0, 1, 0, 5, 0), dscr
);
2381 if (retval
!= ERROR_OK
)
2384 /* Check for faults and return early. */
2385 if (*dscr
& (DSCR_STICKY_ABORT_PRECISE
| DSCR_STICKY_ABORT_IMPRECISE
))
2386 return ERROR_OK
; /* A data fault is not considered a system failure. */
2388 /* Wait until DTRTX is full (according to ARMv7-A/-R architecture
2389 * manual section C8.4.3, checking InstrCmpl_l is not sufficient; one
2390 * must also check TXfull_l). Most of the time this will be free
2391 * because TXfull_l will be set immediately and cached in dscr. */
2392 retval
= cortex_a_wait_dscr_bits(target
, DSCR_DTRTX_FULL_LATCHED
,
2393 DSCR_DTRTX_FULL_LATCHED
, dscr
);
2394 if (retval
!= ERROR_OK
)
2397 /* Read the value transferred to DTRTX into the buffer. */
2398 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2399 armv7a
->debug_base
+ CPUDBG_DTRTX
, &data
);
2400 if (retval
!= ERROR_OK
)
2403 *buffer
= (uint8_t) data
;
2405 target_buffer_set_u16(target
, buffer
, (uint16_t) data
);
2407 target_buffer_set_u32(target
, buffer
, data
);
2417 static int cortex_a_read_cpu_memory_fast(struct target
*target
,
2418 uint32_t count
, uint8_t *buffer
, uint32_t *dscr
)
2420 /* Reads count objects of size 4 into *buffer. Old value of DSCR must be in
2421 * *dscr; updated to new value. This is fast but only works for word-sized
2422 * objects at aligned addresses.
2424 * - Address is in R0 and must be a multiple of 4.
2425 * - R0 is marked dirty.
2427 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2431 /* Switch to non-blocking mode if not already in that mode. */
2432 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_NON_BLOCKING
, dscr
);
2433 if (retval
!= ERROR_OK
)
2436 /* Issue the LDC instruction via a write to ITR. */
2437 retval
= cortex_a_exec_opcode(target
, ARMV4_5_LDC(0, 1, 0, 1, 14, 5, 0, 4), dscr
);
2438 if (retval
!= ERROR_OK
)
2444 /* Switch to fast mode if not already in that mode. */
2445 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_FAST_MODE
, dscr
);
2446 if (retval
!= ERROR_OK
)
2449 /* Latch LDC instruction. */
2450 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2451 armv7a
->debug_base
+ CPUDBG_ITR
, ARMV4_5_LDC(0, 1, 0, 1, 14, 5, 0, 4));
2452 if (retval
!= ERROR_OK
)
2455 /* Read the value transferred to DTRTX into the buffer. Due to fast
2456 * mode rules, this blocks until the instruction finishes executing and
2457 * then reissues the read instruction to read the next word from
2458 * memory. The last read of DTRTX in this call reads the second-to-last
2459 * word from memory and issues the read instruction for the last word.
2461 retval
= mem_ap_read_buf_noincr(armv7a
->debug_ap
, buffer
,
2462 4, count
, armv7a
->debug_base
+ CPUDBG_DTRTX
);
2463 if (retval
!= ERROR_OK
)
2467 buffer
+= count
* 4;
2470 /* Wait for last issued instruction to complete. */
2471 retval
= cortex_a_wait_instrcmpl(target
, dscr
, false);
2472 if (retval
!= ERROR_OK
)
2475 /* Switch to non-blocking mode if not already in that mode. */
2476 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_NON_BLOCKING
, dscr
);
2477 if (retval
!= ERROR_OK
)
2480 /* Check for faults and return early. */
2481 if (*dscr
& (DSCR_STICKY_ABORT_PRECISE
| DSCR_STICKY_ABORT_IMPRECISE
))
2482 return ERROR_OK
; /* A data fault is not considered a system failure. */
2484 /* Wait until DTRTX is full (according to ARMv7-A/-R architecture manual
2485 * section C8.4.3, checking InstrCmpl_l is not sufficient; one must also
2486 * check TXfull_l). Most of the time this will be free because TXfull_l
2487 * will be set immediately and cached in dscr. */
2488 retval
= cortex_a_wait_dscr_bits(target
, DSCR_DTRTX_FULL_LATCHED
,
2489 DSCR_DTRTX_FULL_LATCHED
, dscr
);
2490 if (retval
!= ERROR_OK
)
2493 /* Read the value transferred to DTRTX into the buffer. This is the last
2495 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2496 armv7a
->debug_base
+ CPUDBG_DTRTX
, &u32
);
2497 if (retval
!= ERROR_OK
)
2499 target_buffer_set_u32(target
, buffer
, u32
);
2504 static int cortex_a_read_cpu_memory(struct target
*target
,
2505 uint32_t address
, uint32_t size
,
2506 uint32_t count
, uint8_t *buffer
)
2508 /* Read memory through the CPU. */
2509 int retval
, final_retval
;
2510 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2511 struct arm
*arm
= &armv7a
->arm
;
2512 uint32_t dscr
, orig_dfar
, orig_dfsr
, fault_dscr
, fault_dfar
, fault_dfsr
;
2514 LOG_DEBUG("Reading CPU memory address 0x%" PRIx32
" size %" PRIu32
" count %" PRIu32
,
2515 address
, size
, count
);
2516 if (target
->state
!= TARGET_HALTED
) {
2517 LOG_WARNING("target not halted");
2518 return ERROR_TARGET_NOT_HALTED
;
2524 /* Clear any abort. */
2525 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2526 armv7a
->debug_base
+ CPUDBG_DRCR
, DRCR_CLEAR_EXCEPTIONS
);
2527 if (retval
!= ERROR_OK
)
2531 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2532 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
2533 if (retval
!= ERROR_OK
)
2536 /* Switch to non-blocking mode if not already in that mode. */
2537 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_NON_BLOCKING
, &dscr
);
2538 if (retval
!= ERROR_OK
)
2541 /* Mark R0 as dirty. */
2542 arm_reg_current(arm
, 0)->dirty
= true;
2544 /* Read DFAR and DFSR, as they will be modified in the event of a fault. */
2545 retval
= cortex_a_read_dfar_dfsr(target
, &orig_dfar
, &orig_dfsr
, &dscr
);
2546 if (retval
!= ERROR_OK
)
2549 /* Get the memory address into R0. */
2550 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2551 armv7a
->debug_base
+ CPUDBG_DTRRX
, address
);
2552 if (retval
!= ERROR_OK
)
2554 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 0, 0, 5, 0), &dscr
);
2555 if (retval
!= ERROR_OK
)
2558 if (size
== 4 && (address
% 4) == 0) {
2559 /* We are doing a word-aligned transfer, so use fast mode. */
2560 retval
= cortex_a_read_cpu_memory_fast(target
, count
, buffer
, &dscr
);
2562 /* Use slow path. */
2563 retval
= cortex_a_read_cpu_memory_slow(target
, size
, count
, buffer
, &dscr
);
2567 final_retval
= retval
;
2569 /* Switch to non-blocking mode if not already in that mode. */
2570 retval
= cortex_a_set_dcc_mode(target
, DSCR_EXT_DCC_NON_BLOCKING
, &dscr
);
2571 if (final_retval
== ERROR_OK
)
2572 final_retval
= retval
;
2574 /* Wait for last issued instruction to complete. */
2575 retval
= cortex_a_wait_instrcmpl(target
, &dscr
, true);
2576 if (final_retval
== ERROR_OK
)
2577 final_retval
= retval
;
2579 /* If there were any sticky abort flags, clear them. */
2580 if (dscr
& (DSCR_STICKY_ABORT_PRECISE
| DSCR_STICKY_ABORT_IMPRECISE
)) {
2582 mem_ap_write_atomic_u32(armv7a
->debug_ap
,
2583 armv7a
->debug_base
+ CPUDBG_DRCR
, DRCR_CLEAR_EXCEPTIONS
);
2584 dscr
&= ~(DSCR_STICKY_ABORT_PRECISE
| DSCR_STICKY_ABORT_IMPRECISE
);
2589 /* Handle synchronous data faults. */
2590 if (fault_dscr
& DSCR_STICKY_ABORT_PRECISE
) {
2591 if (final_retval
== ERROR_OK
) {
2592 /* Final return value will reflect cause of fault. */
2593 retval
= cortex_a_read_dfar_dfsr(target
, &fault_dfar
, &fault_dfsr
, &dscr
);
2594 if (retval
== ERROR_OK
) {
2595 LOG_ERROR("data abort at 0x%08" PRIx32
", dfsr = 0x%08" PRIx32
, fault_dfar
, fault_dfsr
);
2596 final_retval
= cortex_a_dfsr_to_error_code(fault_dfsr
);
2598 final_retval
= retval
;
2600 /* Fault destroyed DFAR/DFSR; restore them. */
2601 retval
= cortex_a_write_dfar_dfsr(target
, orig_dfar
, orig_dfsr
, &dscr
);
2602 if (retval
!= ERROR_OK
)
2603 LOG_ERROR("error restoring dfar/dfsr - dscr = 0x%08" PRIx32
, dscr
);
2606 /* Handle asynchronous data faults. */
2607 if (fault_dscr
& DSCR_STICKY_ABORT_IMPRECISE
) {
2608 if (final_retval
== ERROR_OK
)
2609 /* No other error has been recorded so far, so keep this one. */
2610 final_retval
= ERROR_TARGET_DATA_ABORT
;
2613 /* If the DCC is nonempty, clear it. */
2614 if (dscr
& DSCR_DTRTX_FULL_LATCHED
) {
2616 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2617 armv7a
->debug_base
+ CPUDBG_DTRTX
, &dummy
);
2618 if (final_retval
== ERROR_OK
)
2619 final_retval
= retval
;
2621 if (dscr
& DSCR_DTRRX_FULL_LATCHED
) {
2622 retval
= cortex_a_exec_opcode(target
, ARMV4_5_MRC(14, 0, 1, 0, 5, 0), &dscr
);
2623 if (final_retval
== ERROR_OK
)
2624 final_retval
= retval
;
2628 return final_retval
;
2633 * Cortex-A Memory access
2635 * This is same Cortex-M3 but we must also use the correct
2636 * ap number for every access.
2639 static int cortex_a_read_phys_memory(struct target
*target
,
2640 uint32_t address
, uint32_t size
,
2641 uint32_t count
, uint8_t *buffer
)
2643 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2644 struct adiv5_dap
*swjdp
= armv7a
->arm
.dap
;
2645 uint8_t apsel
= swjdp
->apsel
;
2648 if (!count
|| !buffer
)
2649 return ERROR_COMMAND_SYNTAX_ERROR
;
2651 LOG_DEBUG("Reading memory at real address 0x%" PRIx32
"; size %" PRId32
"; count %" PRId32
,
2652 address
, size
, count
);
2654 if (armv7a
->memory_ap_available
&& (apsel
== armv7a
->memory_ap
->ap_num
))
2655 return mem_ap_read_buf(armv7a
->memory_ap
, buffer
, size
, count
, address
);
2657 /* read memory through the CPU */
2658 cortex_a_prep_memaccess(target
, 1);
2659 retval
= cortex_a_read_cpu_memory(target
, address
, size
, count
, buffer
);
2660 cortex_a_post_memaccess(target
, 1);
2665 static int cortex_a_read_memory(struct target
*target
, uint32_t address
,
2666 uint32_t size
, uint32_t count
, uint8_t *buffer
)
2670 /* cortex_a handles unaligned memory access */
2671 LOG_DEBUG("Reading memory at address 0x%" PRIx32
"; size %" PRId32
"; count %" PRId32
, address
,
2674 cortex_a_prep_memaccess(target
, 0);
2675 retval
= cortex_a_read_cpu_memory(target
, address
, size
, count
, buffer
);
2676 cortex_a_post_memaccess(target
, 0);
2681 static int cortex_a_read_memory_ahb(struct target
*target
, uint32_t address
,
2682 uint32_t size
, uint32_t count
, uint8_t *buffer
)
2684 int mmu_enabled
= 0;
2685 uint32_t virt
, phys
;
2687 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2688 struct adiv5_dap
*swjdp
= armv7a
->arm
.dap
;
2689 uint8_t apsel
= swjdp
->apsel
;
2691 if (!armv7a
->memory_ap_available
|| (apsel
!= armv7a
->memory_ap
->ap_num
))
2692 return target_read_memory(target
, address
, size
, count
, buffer
);
2694 /* cortex_a handles unaligned memory access */
2695 LOG_DEBUG("Reading memory at address 0x%" PRIx32
"; size %" PRId32
"; count %" PRId32
, address
,
2698 /* determine if MMU was enabled on target stop */
2699 if (!armv7a
->is_armv7r
) {
2700 retval
= cortex_a_mmu(target
, &mmu_enabled
);
2701 if (retval
!= ERROR_OK
)
2707 retval
= cortex_a_virt2phys(target
, virt
, &phys
);
2708 if (retval
!= ERROR_OK
)
2711 LOG_DEBUG("Reading at virtual address. Translating v:0x%" PRIx32
" to r:0x%" PRIx32
,
2716 if (!count
|| !buffer
)
2717 return ERROR_COMMAND_SYNTAX_ERROR
;
2719 retval
= mem_ap_read_buf(armv7a
->memory_ap
, buffer
, size
, count
, address
);
2724 static int cortex_a_write_phys_memory(struct target
*target
,
2725 uint32_t address
, uint32_t size
,
2726 uint32_t count
, const uint8_t *buffer
)
2728 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2729 struct adiv5_dap
*swjdp
= armv7a
->arm
.dap
;
2730 uint8_t apsel
= swjdp
->apsel
;
2733 if (!count
|| !buffer
)
2734 return ERROR_COMMAND_SYNTAX_ERROR
;
2736 LOG_DEBUG("Writing memory to real address 0x%" PRIx32
"; size %" PRId32
"; count %" PRId32
, address
,
2739 if (armv7a
->memory_ap_available
&& (apsel
== armv7a
->memory_ap
->ap_num
))
2740 return mem_ap_write_buf(armv7a
->memory_ap
, buffer
, size
, count
, address
);
2742 /* write memory through the CPU */
2743 cortex_a_prep_memaccess(target
, 1);
2744 retval
= cortex_a_write_cpu_memory(target
, address
, size
, count
, buffer
);
2745 cortex_a_post_memaccess(target
, 1);
2750 static int cortex_a_write_memory(struct target
*target
, uint32_t address
,
2751 uint32_t size
, uint32_t count
, const uint8_t *buffer
)
2755 /* cortex_a handles unaligned memory access */
2756 LOG_DEBUG("Writing memory at address 0x%" PRIx32
"; size %" PRId32
"; count %" PRId32
, address
,
2759 /* memory writes bypass the caches, must flush before writing */
2760 armv7a_cache_auto_flush_on_write(target
, address
, size
* count
);
2762 cortex_a_prep_memaccess(target
, 0);
2763 retval
= cortex_a_write_cpu_memory(target
, address
, size
, count
, buffer
);
2764 cortex_a_post_memaccess(target
, 0);
2768 static int cortex_a_write_memory_ahb(struct target
*target
, uint32_t address
,
2769 uint32_t size
, uint32_t count
, const uint8_t *buffer
)
2771 int mmu_enabled
= 0;
2772 uint32_t virt
, phys
;
2774 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2775 struct adiv5_dap
*swjdp
= armv7a
->arm
.dap
;
2776 uint8_t apsel
= swjdp
->apsel
;
2778 if (!armv7a
->memory_ap_available
|| (apsel
!= armv7a
->memory_ap
->ap_num
))
2779 return target_write_memory(target
, address
, size
, count
, buffer
);
2781 /* cortex_a handles unaligned memory access */
2782 LOG_DEBUG("Writing memory at address 0x%" PRIx32
"; size %" PRId32
"; count %" PRId32
, address
,
2785 /* determine if MMU was enabled on target stop */
2786 if (!armv7a
->is_armv7r
) {
2787 retval
= cortex_a_mmu(target
, &mmu_enabled
);
2788 if (retval
!= ERROR_OK
)
2794 retval
= cortex_a_virt2phys(target
, virt
, &phys
);
2795 if (retval
!= ERROR_OK
)
2798 LOG_DEBUG("Writing to virtual address. Translating v:0x%" PRIx32
" to r:0x%" PRIx32
,
2804 if (!count
|| !buffer
)
2805 return ERROR_COMMAND_SYNTAX_ERROR
;
2807 retval
= mem_ap_write_buf(armv7a
->memory_ap
, buffer
, size
, count
, address
);
2812 static int cortex_a_read_buffer(struct target
*target
, uint32_t address
,
2813 uint32_t count
, uint8_t *buffer
)
2817 /* Align up to maximum 4 bytes. The loop condition makes sure the next pass
2818 * will have something to do with the size we leave to it. */
2819 for (size
= 1; size
< 4 && count
>= size
* 2 + (address
& size
); size
*= 2) {
2820 if (address
& size
) {
2821 int retval
= cortex_a_read_memory_ahb(target
, address
, size
, 1, buffer
);
2822 if (retval
!= ERROR_OK
)
2830 /* Read the data with as large access size as possible. */
2831 for (; size
> 0; size
/= 2) {
2832 uint32_t aligned
= count
- count
% size
;
2834 int retval
= cortex_a_read_memory_ahb(target
, address
, size
, aligned
/ size
, buffer
);
2835 if (retval
!= ERROR_OK
)
2846 static int cortex_a_write_buffer(struct target
*target
, uint32_t address
,
2847 uint32_t count
, const uint8_t *buffer
)
2851 /* Align up to maximum 4 bytes. The loop condition makes sure the next pass
2852 * will have something to do with the size we leave to it. */
2853 for (size
= 1; size
< 4 && count
>= size
* 2 + (address
& size
); size
*= 2) {
2854 if (address
& size
) {
2855 int retval
= cortex_a_write_memory_ahb(target
, address
, size
, 1, buffer
);
2856 if (retval
!= ERROR_OK
)
2864 /* Write the data with as large access size as possible. */
2865 for (; size
> 0; size
/= 2) {
2866 uint32_t aligned
= count
- count
% size
;
2868 int retval
= cortex_a_write_memory_ahb(target
, address
, size
, aligned
/ size
, buffer
);
2869 if (retval
!= ERROR_OK
)
2880 static int cortex_a_handle_target_request(void *priv
)
2882 struct target
*target
= priv
;
2883 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
2886 if (!target_was_examined(target
))
2888 if (!target
->dbg_msg_enabled
)
2891 if (target
->state
== TARGET_RUNNING
) {
2894 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2895 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
2897 /* check if we have data */
2898 int64_t then
= timeval_ms();
2899 while ((dscr
& DSCR_DTR_TX_FULL
) && (retval
== ERROR_OK
)) {
2900 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2901 armv7a
->debug_base
+ CPUDBG_DTRTX
, &request
);
2902 if (retval
== ERROR_OK
) {
2903 target_request(target
, request
);
2904 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2905 armv7a
->debug_base
+ CPUDBG_DSCR
, &dscr
);
2907 if (timeval_ms() > then
+ 1000) {
2908 LOG_ERROR("Timeout waiting for dtr tx full");
2918 * Cortex-A target information and configuration
2921 static int cortex_a_examine_first(struct target
*target
)
2923 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
2924 struct armv7a_common
*armv7a
= &cortex_a
->armv7a_common
;
2925 struct adiv5_dap
*swjdp
= armv7a
->arm
.dap
;
2928 int retval
= ERROR_OK
;
2929 uint32_t didr
, cpuid
, dbg_osreg
;
2931 retval
= dap_dp_init(swjdp
);
2932 if (retval
!= ERROR_OK
) {
2933 LOG_ERROR("Could not initialize the debug port");
2937 /* Search for the APB-AP - it is needed for access to debug registers */
2938 retval
= dap_find_ap(swjdp
, AP_TYPE_APB_AP
, &armv7a
->debug_ap
);
2939 if (retval
!= ERROR_OK
) {
2940 LOG_ERROR("Could not find APB-AP for debug access");
2944 retval
= mem_ap_init(armv7a
->debug_ap
);
2945 if (retval
!= ERROR_OK
) {
2946 LOG_ERROR("Could not initialize the APB-AP");
2950 armv7a
->debug_ap
->memaccess_tck
= 80;
2952 /* Search for the AHB-AB.
2953 * REVISIT: We should search for AXI-AP as well and make sure the AP's MEMTYPE says it
2954 * can access system memory. */
2955 armv7a
->memory_ap_available
= false;
2956 retval
= dap_find_ap(swjdp
, AP_TYPE_AHB_AP
, &armv7a
->memory_ap
);
2957 if (retval
== ERROR_OK
) {
2958 retval
= mem_ap_init(armv7a
->memory_ap
);
2959 if (retval
== ERROR_OK
)
2960 armv7a
->memory_ap_available
= true;
2962 if (retval
!= ERROR_OK
) {
2963 /* AHB-AP not found or unavailable - use the CPU */
2964 LOG_DEBUG("No AHB-AP available for memory access");
2967 if (!target
->dbgbase_set
) {
2969 /* Get ROM Table base */
2971 int32_t coreidx
= target
->coreid
;
2972 LOG_DEBUG("%s's dbgbase is not set, trying to detect using the ROM table",
2974 retval
= dap_get_debugbase(armv7a
->debug_ap
, &dbgbase
, &apid
);
2975 if (retval
!= ERROR_OK
)
2977 /* Lookup 0x15 -- Processor DAP */
2978 retval
= dap_lookup_cs_component(armv7a
->debug_ap
, dbgbase
, 0x15,
2979 &armv7a
->debug_base
, &coreidx
);
2980 if (retval
!= ERROR_OK
) {
2981 LOG_ERROR("Can't detect %s's dbgbase from the ROM table; you need to specify it explicitly.",
2985 LOG_DEBUG("Detected core %" PRId32
" dbgbase: %08" PRIx32
,
2986 target
->coreid
, armv7a
->debug_base
);
2988 armv7a
->debug_base
= target
->dbgbase
;
2990 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2991 armv7a
->debug_base
+ CPUDBG_DIDR
, &didr
);
2992 if (retval
!= ERROR_OK
) {
2993 LOG_DEBUG("Examine %s failed", "DIDR");
2997 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
2998 armv7a
->debug_base
+ CPUDBG_CPUID
, &cpuid
);
2999 if (retval
!= ERROR_OK
) {
3000 LOG_DEBUG("Examine %s failed", "CPUID");
3004 LOG_DEBUG("didr = 0x%08" PRIx32
, didr
);
3005 LOG_DEBUG("cpuid = 0x%08" PRIx32
, cpuid
);
3007 cortex_a
->didr
= didr
;
3008 cortex_a
->cpuid
= cpuid
;
3010 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
3011 armv7a
->debug_base
+ CPUDBG_PRSR
, &dbg_osreg
);
3012 if (retval
!= ERROR_OK
)
3014 LOG_DEBUG("target->coreid %" PRId32
" DBGPRSR 0x%" PRIx32
, target
->coreid
, dbg_osreg
);
3016 if ((dbg_osreg
& PRSR_POWERUP_STATUS
) == 0) {
3017 LOG_ERROR("target->coreid %" PRId32
" powered down!", target
->coreid
);
3018 target
->state
= TARGET_UNKNOWN
; /* TARGET_NO_POWER? */
3019 return ERROR_TARGET_INIT_FAILED
;
3022 if (dbg_osreg
& PRSR_STICKY_RESET_STATUS
)
3023 LOG_DEBUG("target->coreid %" PRId32
" was reset!", target
->coreid
);
3025 /* Read DBGOSLSR and check if OSLK is implemented */
3026 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
3027 armv7a
->debug_base
+ CPUDBG_OSLSR
, &dbg_osreg
);
3028 if (retval
!= ERROR_OK
)
3030 LOG_DEBUG("target->coreid %" PRId32
" DBGOSLSR 0x%" PRIx32
, target
->coreid
, dbg_osreg
);
3032 /* check if OS Lock is implemented */
3033 if ((dbg_osreg
& OSLSR_OSLM
) == OSLSR_OSLM0
|| (dbg_osreg
& OSLSR_OSLM
) == OSLSR_OSLM1
) {
3034 /* check if OS Lock is set */
3035 if (dbg_osreg
& OSLSR_OSLK
) {
3036 LOG_DEBUG("target->coreid %" PRId32
" OSLock set! Trying to unlock", target
->coreid
);
3038 retval
= mem_ap_write_atomic_u32(armv7a
->debug_ap
,
3039 armv7a
->debug_base
+ CPUDBG_OSLAR
,
3041 if (retval
== ERROR_OK
)
3042 retval
= mem_ap_read_atomic_u32(armv7a
->debug_ap
,
3043 armv7a
->debug_base
+ CPUDBG_OSLSR
, &dbg_osreg
);
3045 /* if we fail to access the register or cannot reset the OSLK bit, bail out */
3046 if (retval
!= ERROR_OK
|| (dbg_osreg
& OSLSR_OSLK
) != 0) {
3047 LOG_ERROR("target->coreid %" PRId32
" OSLock sticky, core not powered?",
3049 target
->state
= TARGET_UNKNOWN
; /* TARGET_NO_POWER? */
3050 return ERROR_TARGET_INIT_FAILED
;
3055 armv7a
->arm
.core_type
= ARM_MODE_MON
;
3057 /* Avoid recreating the registers cache */
3058 if (!target_was_examined(target
)) {
3059 retval
= cortex_a_dpm_setup(cortex_a
, didr
);
3060 if (retval
!= ERROR_OK
)
3064 /* Setup Breakpoint Register Pairs */
3065 cortex_a
->brp_num
= ((didr
>> 24) & 0x0F) + 1;
3066 cortex_a
->brp_num_context
= ((didr
>> 20) & 0x0F) + 1;
3067 cortex_a
->brp_num_available
= cortex_a
->brp_num
;
3068 free(cortex_a
->brp_list
);
3069 cortex_a
->brp_list
= calloc(cortex_a
->brp_num
, sizeof(struct cortex_a_brp
));
3070 /* cortex_a->brb_enabled = ????; */
3071 for (i
= 0; i
< cortex_a
->brp_num
; i
++) {
3072 cortex_a
->brp_list
[i
].used
= 0;
3073 if (i
< (cortex_a
->brp_num
-cortex_a
->brp_num_context
))
3074 cortex_a
->brp_list
[i
].type
= BRP_NORMAL
;
3076 cortex_a
->brp_list
[i
].type
= BRP_CONTEXT
;
3077 cortex_a
->brp_list
[i
].value
= 0;
3078 cortex_a
->brp_list
[i
].control
= 0;
3079 cortex_a
->brp_list
[i
].BRPn
= i
;
3082 LOG_DEBUG("Configured %i hw breakpoints", cortex_a
->brp_num
);
3084 /* select debug_ap as default */
3085 swjdp
->apsel
= armv7a
->debug_ap
->ap_num
;
3087 target_set_examined(target
);
3091 static int cortex_a_examine(struct target
*target
)
3093 int retval
= ERROR_OK
;
3095 /* Reestablish communication after target reset */
3096 retval
= cortex_a_examine_first(target
);
3098 /* Configure core debug access */
3099 if (retval
== ERROR_OK
)
3100 retval
= cortex_a_init_debug_access(target
);
3106 * Cortex-A target creation and initialization
3109 static int cortex_a_init_target(struct command_context
*cmd_ctx
,
3110 struct target
*target
)
3112 /* examine_first() does a bunch of this */
3113 arm_semihosting_init(target
);
3117 static int cortex_a_init_arch_info(struct target
*target
,
3118 struct cortex_a_common
*cortex_a
, struct jtag_tap
*tap
)
3120 struct armv7a_common
*armv7a
= &cortex_a
->armv7a_common
;
3122 /* Setup struct cortex_a_common */
3123 cortex_a
->common_magic
= CORTEX_A_COMMON_MAGIC
;
3125 /* tap has no dap initialized */
3127 tap
->dap
= dap_init();
3129 /* Leave (only) generic DAP stuff for debugport_init() */
3130 tap
->dap
->tap
= tap
;
3133 armv7a
->arm
.dap
= tap
->dap
;
3135 cortex_a
->fast_reg_read
= 0;
3137 /* register arch-specific functions */
3138 armv7a
->examine_debug_reason
= NULL
;
3140 armv7a
->post_debug_entry
= cortex_a_post_debug_entry
;
3142 armv7a
->pre_restore_context
= NULL
;
3144 armv7a
->armv7a_mmu
.read_physical_memory
= cortex_a_read_phys_memory
;
3147 /* arm7_9->handle_target_request = cortex_a_handle_target_request; */
3149 /* REVISIT v7a setup should be in a v7a-specific routine */
3150 armv7a_init_arch_info(target
, armv7a
);
3151 target_register_timer_callback(cortex_a_handle_target_request
, 1, 1, target
);
3156 static int cortex_a_target_create(struct target
*target
, Jim_Interp
*interp
)
3158 struct cortex_a_common
*cortex_a
= calloc(1, sizeof(struct cortex_a_common
));
3160 cortex_a
->armv7a_common
.is_armv7r
= false;
3162 return cortex_a_init_arch_info(target
, cortex_a
, target
->tap
);
3165 static int cortex_r4_target_create(struct target
*target
, Jim_Interp
*interp
)
3167 struct cortex_a_common
*cortex_a
= calloc(1, sizeof(struct cortex_a_common
));
3169 cortex_a
->armv7a_common
.is_armv7r
= true;
3171 return cortex_a_init_arch_info(target
, cortex_a
, target
->tap
);
3174 static void cortex_a_deinit_target(struct target
*target
)
3176 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
3177 struct arm_dpm
*dpm
= &cortex_a
->armv7a_common
.dpm
;
3179 free(cortex_a
->brp_list
);
3185 static int cortex_a_mmu(struct target
*target
, int *enabled
)
3187 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
3189 if (target
->state
!= TARGET_HALTED
) {
3190 LOG_ERROR("%s: target not halted", __func__
);
3191 return ERROR_TARGET_INVALID
;
3194 if (armv7a
->is_armv7r
)
3197 *enabled
= target_to_cortex_a(target
)->armv7a_common
.armv7a_mmu
.mmu_enabled
;
3202 static int cortex_a_virt2phys(struct target
*target
,
3203 uint32_t virt
, uint32_t *phys
)
3205 int retval
= ERROR_FAIL
;
3206 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
3207 struct adiv5_dap
*swjdp
= armv7a
->arm
.dap
;
3208 uint8_t apsel
= swjdp
->apsel
;
3209 if (armv7a
->memory_ap_available
&& (apsel
== armv7a
->memory_ap
->ap_num
)) {
3211 retval
= armv7a_mmu_translate_va(target
,
3213 if (retval
!= ERROR_OK
)
3216 } else {/* use this method if armv7a->memory_ap not selected
3217 * mmu must be enable in order to get a correct translation */
3218 retval
= cortex_a_mmu_modify(target
, 1);
3219 if (retval
!= ERROR_OK
)
3221 retval
= armv7a_mmu_translate_va_pa(target
, virt
, phys
, 1);
3227 COMMAND_HANDLER(cortex_a_handle_cache_info_command
)
3229 struct target
*target
= get_current_target(CMD_CTX
);
3230 struct armv7a_common
*armv7a
= target_to_armv7a(target
);
3232 return armv7a_handle_cache_info_command(CMD_CTX
,
3233 &armv7a
->armv7a_mmu
.armv7a_cache
);
3237 COMMAND_HANDLER(cortex_a_handle_dbginit_command
)
3239 struct target
*target
= get_current_target(CMD_CTX
);
3240 if (!target_was_examined(target
)) {
3241 LOG_ERROR("target not examined yet");
3245 return cortex_a_init_debug_access(target
);
3247 COMMAND_HANDLER(cortex_a_handle_smp_off_command
)
3249 struct target
*target
= get_current_target(CMD_CTX
);
3250 /* check target is an smp target */
3251 struct target_list
*head
;
3252 struct target
*curr
;
3253 head
= target
->head
;
3255 if (head
!= (struct target_list
*)NULL
) {
3256 while (head
!= (struct target_list
*)NULL
) {
3257 curr
= head
->target
;
3261 /* fixes the target display to the debugger */
3262 target
->gdb_service
->target
= target
;
3267 COMMAND_HANDLER(cortex_a_handle_smp_on_command
)
3269 struct target
*target
= get_current_target(CMD_CTX
);
3270 struct target_list
*head
;
3271 struct target
*curr
;
3272 head
= target
->head
;
3273 if (head
!= (struct target_list
*)NULL
) {
3275 while (head
!= (struct target_list
*)NULL
) {
3276 curr
= head
->target
;
3284 COMMAND_HANDLER(cortex_a_handle_smp_gdb_command
)
3286 struct target
*target
= get_current_target(CMD_CTX
);
3287 int retval
= ERROR_OK
;
3288 struct target_list
*head
;
3289 head
= target
->head
;
3290 if (head
!= (struct target_list
*)NULL
) {
3291 if (CMD_ARGC
== 1) {
3293 COMMAND_PARSE_NUMBER(int, CMD_ARGV
[0], coreid
);
3294 if (ERROR_OK
!= retval
)
3296 target
->gdb_service
->core
[1] = coreid
;
3299 command_print(CMD_CTX
, "gdb coreid %" PRId32
" -> %" PRId32
, target
->gdb_service
->core
[0]
3300 , target
->gdb_service
->core
[1]);
3305 COMMAND_HANDLER(handle_cortex_a_mask_interrupts_command
)
3307 struct target
*target
= get_current_target(CMD_CTX
);
3308 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
3310 static const Jim_Nvp nvp_maskisr_modes
[] = {
3311 { .name
= "off", .value
= CORTEX_A_ISRMASK_OFF
},
3312 { .name
= "on", .value
= CORTEX_A_ISRMASK_ON
},
3313 { .name
= NULL
, .value
= -1 },
3318 n
= Jim_Nvp_name2value_simple(nvp_maskisr_modes
, CMD_ARGV
[0]);
3319 if (n
->name
== NULL
) {
3320 LOG_ERROR("Unknown parameter: %s - should be off or on", CMD_ARGV
[0]);
3321 return ERROR_COMMAND_SYNTAX_ERROR
;
3324 cortex_a
->isrmasking_mode
= n
->value
;
3327 n
= Jim_Nvp_value2name_simple(nvp_maskisr_modes
, cortex_a
->isrmasking_mode
);
3328 command_print(CMD_CTX
, "cortex_a interrupt mask %s", n
->name
);
3333 COMMAND_HANDLER(handle_cortex_a_dacrfixup_command
)
3335 struct target
*target
= get_current_target(CMD_CTX
);
3336 struct cortex_a_common
*cortex_a
= target_to_cortex_a(target
);
3338 static const Jim_Nvp nvp_dacrfixup_modes
[] = {
3339 { .name
= "off", .value
= CORTEX_A_DACRFIXUP_OFF
},
3340 { .name
= "on", .value
= CORTEX_A_DACRFIXUP_ON
},
3341 { .name
= NULL
, .value
= -1 },
3346 n
= Jim_Nvp_name2value_simple(nvp_dacrfixup_modes
, CMD_ARGV
[0]);
3347 if (n
->name
== NULL
)
3348 return ERROR_COMMAND_SYNTAX_ERROR
;
3349 cortex_a
->dacrfixup_mode
= n
->value
;
3353 n
= Jim_Nvp_value2name_simple(nvp_dacrfixup_modes
, cortex_a
->dacrfixup_mode
);
3354 command_print(CMD_CTX
, "cortex_a domain access control fixup %s", n
->name
);
3359 static const struct command_registration cortex_a_exec_command_handlers
[] = {
3361 .name
= "cache_info",
3362 .handler
= cortex_a_handle_cache_info_command
,
3363 .mode
= COMMAND_EXEC
,
3364 .help
= "display information about target caches",
3369 .handler
= cortex_a_handle_dbginit_command
,
3370 .mode
= COMMAND_EXEC
,
3371 .help
= "Initialize core debug",
3374 { .name
= "smp_off",
3375 .handler
= cortex_a_handle_smp_off_command
,
3376 .mode
= COMMAND_EXEC
,
3377 .help
= "Stop smp handling",
3381 .handler
= cortex_a_handle_smp_on_command
,
3382 .mode
= COMMAND_EXEC
,
3383 .help
= "Restart smp handling",
3388 .handler
= cortex_a_handle_smp_gdb_command
,
3389 .mode
= COMMAND_EXEC
,
3390 .help
= "display/fix current core played to gdb",
3395 .handler
= handle_cortex_a_mask_interrupts_command
,
3396 .mode
= COMMAND_ANY
,
3397 .help
= "mask cortex_a interrupts",
3398 .usage
= "['on'|'off']",
3401 .name
= "dacrfixup",
3402 .handler
= handle_cortex_a_dacrfixup_command
,
3403 .mode
= COMMAND_EXEC
,
3404 .help
= "set domain access control (DACR) to all-manager "
3406 .usage
= "['on'|'off']",
3409 COMMAND_REGISTRATION_DONE
3411 static const struct command_registration cortex_a_command_handlers
[] = {
3413 .chain
= arm_command_handlers
,
3416 .chain
= armv7a_command_handlers
,
3420 .mode
= COMMAND_ANY
,
3421 .help
= "Cortex-A command group",
3423 .chain
= cortex_a_exec_command_handlers
,
3425 COMMAND_REGISTRATION_DONE
3428 struct target_type cortexa_target
= {
3430 .deprecated_name
= "cortex_a8",
3432 .poll
= cortex_a_poll
,
3433 .arch_state
= armv7a_arch_state
,
3435 .halt
= cortex_a_halt
,
3436 .resume
= cortex_a_resume
,
3437 .step
= cortex_a_step
,
3439 .assert_reset
= cortex_a_assert_reset
,
3440 .deassert_reset
= cortex_a_deassert_reset
,
3442 /* REVISIT allow exporting VFP3 registers ... */
3443 .get_gdb_reg_list
= arm_get_gdb_reg_list
,
3445 .read_memory
= cortex_a_read_memory
,
3446 .write_memory
= cortex_a_write_memory
,
3448 .read_buffer
= cortex_a_read_buffer
,
3449 .write_buffer
= cortex_a_write_buffer
,
3451 .checksum_memory
= arm_checksum_memory
,
3452 .blank_check_memory
= arm_blank_check_memory
,
3454 .run_algorithm
= armv4_5_run_algorithm
,
3456 .add_breakpoint
= cortex_a_add_breakpoint
,
3457 .add_context_breakpoint
= cortex_a_add_context_breakpoint
,
3458 .add_hybrid_breakpoint
= cortex_a_add_hybrid_breakpoint
,
3459 .remove_breakpoint
= cortex_a_remove_breakpoint
,
3460 .add_watchpoint
= NULL
,
3461 .remove_watchpoint
= NULL
,
3463 .commands
= cortex_a_command_handlers
,
3464 .target_create
= cortex_a_target_create
,
3465 .init_target
= cortex_a_init_target
,
3466 .examine
= cortex_a_examine
,
3467 .deinit_target
= cortex_a_deinit_target
,
3469 .read_phys_memory
= cortex_a_read_phys_memory
,
3470 .write_phys_memory
= cortex_a_write_phys_memory
,
3471 .mmu
= cortex_a_mmu
,
3472 .virt2phys
= cortex_a_virt2phys
,
3475 static const struct command_registration cortex_r4_exec_command_handlers
[] = {
3477 .name
= "cache_info",
3478 .handler
= cortex_a_handle_cache_info_command
,
3479 .mode
= COMMAND_EXEC
,
3480 .help
= "display information about target caches",
3485 .handler
= cortex_a_handle_dbginit_command
,
3486 .mode
= COMMAND_EXEC
,
3487 .help
= "Initialize core debug",
3492 .handler
= handle_cortex_a_mask_interrupts_command
,
3493 .mode
= COMMAND_EXEC
,
3494 .help
= "mask cortex_r4 interrupts",
3495 .usage
= "['on'|'off']",
3498 COMMAND_REGISTRATION_DONE
3500 static const struct command_registration cortex_r4_command_handlers
[] = {
3502 .chain
= arm_command_handlers
,
3505 .chain
= armv7a_command_handlers
,
3508 .name
= "cortex_r4",
3509 .mode
= COMMAND_ANY
,
3510 .help
= "Cortex-R4 command group",
3512 .chain
= cortex_r4_exec_command_handlers
,
3514 COMMAND_REGISTRATION_DONE
3517 struct target_type cortexr4_target
= {
3518 .name
= "cortex_r4",
3520 .poll
= cortex_a_poll
,
3521 .arch_state
= armv7a_arch_state
,
3523 .halt
= cortex_a_halt
,
3524 .resume
= cortex_a_resume
,
3525 .step
= cortex_a_step
,
3527 .assert_reset
= cortex_a_assert_reset
,
3528 .deassert_reset
= cortex_a_deassert_reset
,
3530 /* REVISIT allow exporting VFP3 registers ... */
3531 .get_gdb_reg_list
= arm_get_gdb_reg_list
,
3533 .read_memory
= cortex_a_read_phys_memory
,
3534 .write_memory
= cortex_a_write_phys_memory
,
3536 .checksum_memory
= arm_checksum_memory
,
3537 .blank_check_memory
= arm_blank_check_memory
,
3539 .run_algorithm
= armv4_5_run_algorithm
,
3541 .add_breakpoint
= cortex_a_add_breakpoint
,
3542 .add_context_breakpoint
= cortex_a_add_context_breakpoint
,
3543 .add_hybrid_breakpoint
= cortex_a_add_hybrid_breakpoint
,
3544 .remove_breakpoint
= cortex_a_remove_breakpoint
,
3545 .add_watchpoint
= NULL
,
3546 .remove_watchpoint
= NULL
,
3548 .commands
= cortex_r4_command_handlers
,
3549 .target_create
= cortex_r4_target_create
,
3550 .init_target
= cortex_a_init_target
,
3551 .examine
= cortex_a_examine
,
3552 .deinit_target
= cortex_a_deinit_target
,
Code Review / openocd.git / blob