1 /* SPDX-License-Identifier: GPL-2.0-or-later */
4 * Support for RISC-V, debug version 0.13, which is currently (2/4/17) the
16 #include "target/target.h"
17 #include "target/algorithm.h"
18 #include "target/target_type.h"
19 #include <helper/log.h>
20 #include "jtag/jtag.h"
21 #include "target/register.h"
22 #include "target/breakpoints.h"
23 #include "helper/time_support.h"
24 #include "helper/list.h"
26 #include "debug_defines.h"
27 #include "rtos/rtos.h"
32 static int riscv013_on_step_or_resume(struct target
*target
, bool step
);
33 static int riscv013_step_or_resume_current_hart(struct target
*target
,
34 bool step
, bool use_hasel
);
35 static void riscv013_clear_abstract_error(struct target
*target
);
37 /* Implementations of the functions in riscv_info_t. */
38 static int riscv013_get_register(struct target
*target
,
39 riscv_reg_t
*value
, int rid
);
40 static int riscv013_set_register(struct target
*target
, int regid
, uint64_t value
);
41 static int riscv013_select_current_hart(struct target
*target
);
42 static int riscv013_halt_prep(struct target
*target
);
43 static int riscv013_halt_go(struct target
*target
);
44 static int riscv013_resume_go(struct target
*target
);
45 static int riscv013_step_current_hart(struct target
*target
);
46 static int riscv013_on_halt(struct target
*target
);
47 static int riscv013_on_step(struct target
*target
);
48 static int riscv013_resume_prep(struct target
*target
);
49 static bool riscv013_is_halted(struct target
*target
);
50 static enum riscv_halt_reason
riscv013_halt_reason(struct target
*target
);
51 static int riscv013_write_debug_buffer(struct target
*target
, unsigned index
,
53 static riscv_insn_t
riscv013_read_debug_buffer(struct target
*target
, unsigned
55 static int riscv013_execute_debug_buffer(struct target
*target
);
56 static void riscv013_fill_dmi_write_u64(struct target
*target
, char *buf
, int a
, uint64_t d
);
57 static void riscv013_fill_dmi_read_u64(struct target
*target
, char *buf
, int a
);
58 static int riscv013_dmi_write_u64_bits(struct target
*target
);
59 static void riscv013_fill_dmi_nop_u64(struct target
*target
, char *buf
);
60 static int register_read(struct target
*target
, uint64_t *value
, uint32_t number
);
61 static int register_read_direct(struct target
*target
, uint64_t *value
, uint32_t number
);
62 static int register_write_direct(struct target
*target
, unsigned number
,
64 static int read_memory(struct target
*target
, target_addr_t address
,
65 uint32_t size
, uint32_t count
, uint8_t *buffer
, uint32_t increment
);
66 static int write_memory(struct target
*target
, target_addr_t address
,
67 uint32_t size
, uint32_t count
, const uint8_t *buffer
);
68 static int riscv013_test_sba_config_reg(struct target
*target
, target_addr_t legal_address
,
69 uint32_t num_words
, target_addr_t illegal_address
, bool run_sbbusyerror_test
);
70 void write_memory_sba_simple(struct target
*target
, target_addr_t addr
, uint32_t *write_data
,
71 uint32_t write_size
, uint32_t sbcs
);
72 void read_memory_sba_simple(struct target
*target
, target_addr_t addr
,
73 uint32_t *rd_buf
, uint32_t read_size
, uint32_t sbcs
);
76 * Since almost everything can be accomplish by scanning the dbus register, all
77 * functions here assume dbus is already selected. The exception are functions
78 * called directly by OpenOCD, which can't assume anything about what's
79 * currently in IR. They should set IR to dbus explicitly.
82 #define get_field(reg, mask) (((reg) & (mask)) / ((mask) & ~((mask) << 1)))
83 #define set_field(reg, mask, val) (((reg) & ~(mask)) | (((val) * ((mask) & ~((mask) << 1))) & (mask)))
85 #define CSR_DCSR_CAUSE_SWBP 1
86 #define CSR_DCSR_CAUSE_TRIGGER 2
87 #define CSR_DCSR_CAUSE_DEBUGINT 3
88 #define CSR_DCSR_CAUSE_STEP 4
89 #define CSR_DCSR_CAUSE_HALT 5
90 #define CSR_DCSR_CAUSE_GROUP 6
92 #define RISCV013_INFO(r) riscv013_info_t *r = get_info(target)
94 /*** JTAG registers. ***/
102 DMI_STATUS_SUCCESS
= 0,
103 DMI_STATUS_FAILED
= 2,
113 /*** Debug Bus registers. ***/
115 #define CMDERR_NONE 0
116 #define CMDERR_BUSY 1
117 #define CMDERR_NOT_SUPPORTED 2
118 #define CMDERR_EXCEPTION 3
119 #define CMDERR_HALT_RESUME 4
120 #define CMDERR_OTHER 7
122 /*** Info about the core being debugged. ***/
129 bool read
, write
, execute
;
140 struct list_head list
;
141 int abs_chain_position
;
143 /* The number of harts connected to this DM. */
145 /* Indicates we already reset this DM, so don't need to do it again. */
147 /* Targets that are connected to this DM. */
148 struct list_head target_list
;
149 /* The currently selected hartid on this DM. */
151 bool hasel_supported
;
153 /* The program buffer stores executable code. 0 is an illegal instruction,
154 * so we use 0 to mean the cached value is invalid. */
155 uint32_t progbuf_cache
[16];
159 struct list_head list
;
160 struct target
*target
;
164 /* The indexed used to address this hart in its DM. */
166 /* Number of address bits in the dbus register. */
168 /* Number of abstract command data registers. */
170 /* Number of words in the Program Buffer. */
171 unsigned progbufsize
;
173 /* We cache the read-only bits of sbcs here. */
176 yes_no_maybe_t progbuf_writable
;
177 /* We only need the address so that we know the alignment of the buffer. */
178 riscv_addr_t progbuf_address
;
180 /* Number of run-test/idle cycles the target requests we do after each dbus
182 unsigned int dtmcs_idle
;
184 /* This value is incremented every time a dbus access comes back as "busy".
185 * It's used to determine how many run-test/idle cycles to feed the target
186 * in between accesses. */
187 unsigned int dmi_busy_delay
;
189 /* Number of run-test/idle cycles to add between consecutive bus master
190 * reads/writes respectively. */
191 unsigned int bus_master_write_delay
, bus_master_read_delay
;
193 /* This value is increased every time we tried to execute two commands
194 * consecutively, and the second one failed because the previous hadn't
195 * completed yet. It's used to add extra run-test/idle cycles after
196 * starting a command, so we don't have to waste time checking for busy to
198 unsigned int ac_busy_delay
;
200 bool abstract_read_csr_supported
;
201 bool abstract_write_csr_supported
;
202 bool abstract_read_fpr_supported
;
203 bool abstract_write_fpr_supported
;
205 yes_no_maybe_t has_aampostincrement
;
207 /* When a function returns some error due to a failure indicated by the
208 * target in cmderr, the caller can look here to see what that error was.
209 * (Compare with errno.) */
212 /* Some fields from hartinfo. */
217 /* The width of the hartsel field. */
220 /* DM that provides access to this target. */
226 static riscv013_info_t
*get_info(const struct target
*target
)
228 riscv_info_t
*info
= (riscv_info_t
*) target
->arch_info
;
230 assert(info
->version_specific
);
231 return (riscv013_info_t
*) info
->version_specific
;
235 * Return the DM structure for this target. If there isn't one, find it in the
236 * global list of DMs. If it's not in there, then create one and initialize it
239 dm013_info_t
*get_dm(struct target
*target
)
245 int abs_chain_position
= target
->tap
->abs_chain_position
;
248 dm013_info_t
*dm
= NULL
;
249 list_for_each_entry(entry
, &dm_list
, list
) {
250 if (entry
->abs_chain_position
== abs_chain_position
) {
257 LOG_DEBUG("[%d] Allocating new DM", target
->coreid
);
258 dm
= calloc(1, sizeof(dm013_info_t
));
261 dm
->abs_chain_position
= abs_chain_position
;
262 dm
->current_hartid
= -1;
264 INIT_LIST_HEAD(&dm
->target_list
);
265 list_add(&dm
->list
, &dm_list
);
269 target_list_t
*target_entry
;
270 list_for_each_entry(target_entry
, &dm
->target_list
, list
) {
271 if (target_entry
->target
== target
)
274 target_entry
= calloc(1, sizeof(*target_entry
));
279 target_entry
->target
= target
;
280 list_add(&target_entry
->list
, &dm
->target_list
);
285 static uint32_t set_hartsel(uint32_t initial
, uint32_t index
)
287 initial
&= ~DM_DMCONTROL_HARTSELLO
;
288 initial
&= ~DM_DMCONTROL_HARTSELHI
;
290 uint32_t index_lo
= index
& ((1 << DM_DMCONTROL_HARTSELLO_LENGTH
) - 1);
291 initial
|= index_lo
<< DM_DMCONTROL_HARTSELLO_OFFSET
;
292 uint32_t index_hi
= index
>> DM_DMCONTROL_HARTSELLO_LENGTH
;
293 assert(index_hi
< 1 << DM_DMCONTROL_HARTSELHI_LENGTH
);
294 initial
|= index_hi
<< DM_DMCONTROL_HARTSELHI_OFFSET
;
299 static void decode_dmi(char *text
, unsigned address
, unsigned data
)
301 static const struct {
306 { DM_DMCONTROL
, DM_DMCONTROL_HALTREQ
, "haltreq" },
307 { DM_DMCONTROL
, DM_DMCONTROL_RESUMEREQ
, "resumereq" },
308 { DM_DMCONTROL
, DM_DMCONTROL_HARTRESET
, "hartreset" },
309 { DM_DMCONTROL
, DM_DMCONTROL_HASEL
, "hasel" },
310 { DM_DMCONTROL
, DM_DMCONTROL_HARTSELHI
, "hartselhi" },
311 { DM_DMCONTROL
, DM_DMCONTROL_HARTSELLO
, "hartsello" },
312 { DM_DMCONTROL
, DM_DMCONTROL_NDMRESET
, "ndmreset" },
313 { DM_DMCONTROL
, DM_DMCONTROL_DMACTIVE
, "dmactive" },
314 { DM_DMCONTROL
, DM_DMCONTROL_ACKHAVERESET
, "ackhavereset" },
316 { DM_DMSTATUS
, DM_DMSTATUS_IMPEBREAK
, "impebreak" },
317 { DM_DMSTATUS
, DM_DMSTATUS_ALLHAVERESET
, "allhavereset" },
318 { DM_DMSTATUS
, DM_DMSTATUS_ANYHAVERESET
, "anyhavereset" },
319 { DM_DMSTATUS
, DM_DMSTATUS_ALLRESUMEACK
, "allresumeack" },
320 { DM_DMSTATUS
, DM_DMSTATUS_ANYRESUMEACK
, "anyresumeack" },
321 { DM_DMSTATUS
, DM_DMSTATUS_ALLNONEXISTENT
, "allnonexistent" },
322 { DM_DMSTATUS
, DM_DMSTATUS_ANYNONEXISTENT
, "anynonexistent" },
323 { DM_DMSTATUS
, DM_DMSTATUS_ALLUNAVAIL
, "allunavail" },
324 { DM_DMSTATUS
, DM_DMSTATUS_ANYUNAVAIL
, "anyunavail" },
325 { DM_DMSTATUS
, DM_DMSTATUS_ALLRUNNING
, "allrunning" },
326 { DM_DMSTATUS
, DM_DMSTATUS_ANYRUNNING
, "anyrunning" },
327 { DM_DMSTATUS
, DM_DMSTATUS_ALLHALTED
, "allhalted" },
328 { DM_DMSTATUS
, DM_DMSTATUS_ANYHALTED
, "anyhalted" },
329 { DM_DMSTATUS
, DM_DMSTATUS_AUTHENTICATED
, "authenticated" },
330 { DM_DMSTATUS
, DM_DMSTATUS_AUTHBUSY
, "authbusy" },
331 { DM_DMSTATUS
, DM_DMSTATUS_HASRESETHALTREQ
, "hasresethaltreq" },
332 { DM_DMSTATUS
, DM_DMSTATUS_CONFSTRPTRVALID
, "confstrptrvalid" },
333 { DM_DMSTATUS
, DM_DMSTATUS_VERSION
, "version" },
335 { DM_ABSTRACTCS
, DM_ABSTRACTCS_PROGBUFSIZE
, "progbufsize" },
336 { DM_ABSTRACTCS
, DM_ABSTRACTCS_BUSY
, "busy" },
337 { DM_ABSTRACTCS
, DM_ABSTRACTCS_CMDERR
, "cmderr" },
338 { DM_ABSTRACTCS
, DM_ABSTRACTCS_DATACOUNT
, "datacount" },
340 { DM_COMMAND
, DM_COMMAND_CMDTYPE
, "cmdtype" },
342 { DM_SBCS
, DM_SBCS_SBVERSION
, "sbversion" },
343 { DM_SBCS
, DM_SBCS_SBBUSYERROR
, "sbbusyerror" },
344 { DM_SBCS
, DM_SBCS_SBBUSY
, "sbbusy" },
345 { DM_SBCS
, DM_SBCS_SBREADONADDR
, "sbreadonaddr" },
346 { DM_SBCS
, DM_SBCS_SBACCESS
, "sbaccess" },
347 { DM_SBCS
, DM_SBCS_SBAUTOINCREMENT
, "sbautoincrement" },
348 { DM_SBCS
, DM_SBCS_SBREADONDATA
, "sbreadondata" },
349 { DM_SBCS
, DM_SBCS_SBERROR
, "sberror" },
350 { DM_SBCS
, DM_SBCS_SBASIZE
, "sbasize" },
351 { DM_SBCS
, DM_SBCS_SBACCESS128
, "sbaccess128" },
352 { DM_SBCS
, DM_SBCS_SBACCESS64
, "sbaccess64" },
353 { DM_SBCS
, DM_SBCS_SBACCESS32
, "sbaccess32" },
354 { DM_SBCS
, DM_SBCS_SBACCESS16
, "sbaccess16" },
355 { DM_SBCS
, DM_SBCS_SBACCESS8
, "sbaccess8" },
359 for (unsigned i
= 0; i
< ARRAY_SIZE(description
); i
++) {
360 if (description
[i
].address
== address
) {
361 uint64_t mask
= description
[i
].mask
;
362 unsigned value
= get_field(data
, mask
);
366 if (mask
& (mask
>> 1)) {
367 /* If the field is more than 1 bit wide. */
368 sprintf(text
, "%s=%d", description
[i
].name
, value
);
370 strcpy(text
, description
[i
].name
);
372 text
+= strlen(text
);
378 static void dump_field(int idle
, const struct scan_field
*field
)
380 static const char * const op_string
[] = {"-", "r", "w", "?"};
381 static const char * const status_string
[] = {"+", "?", "F", "b"};
383 if (debug_level
< LOG_LVL_DEBUG
)
386 uint64_t out
= buf_get_u64(field
->out_value
, 0, field
->num_bits
);
387 unsigned int out_op
= get_field(out
, DTM_DMI_OP
);
388 unsigned int out_data
= get_field(out
, DTM_DMI_DATA
);
389 unsigned int out_address
= out
>> DTM_DMI_ADDRESS_OFFSET
;
391 uint64_t in
= buf_get_u64(field
->in_value
, 0, field
->num_bits
);
392 unsigned int in_op
= get_field(in
, DTM_DMI_OP
);
393 unsigned int in_data
= get_field(in
, DTM_DMI_DATA
);
394 unsigned int in_address
= in
>> DTM_DMI_ADDRESS_OFFSET
;
396 log_printf_lf(LOG_LVL_DEBUG
,
397 __FILE__
, __LINE__
, "scan",
398 "%db %s %08x @%02x -> %s %08x @%02x; %di",
399 field
->num_bits
, op_string
[out_op
], out_data
, out_address
,
400 status_string
[in_op
], in_data
, in_address
, idle
);
404 decode_dmi(out_text
, out_address
, out_data
);
405 decode_dmi(in_text
, in_address
, in_data
);
406 if (in_text
[0] || out_text
[0]) {
407 log_printf_lf(LOG_LVL_DEBUG
, __FILE__
, __LINE__
, "scan", "%s -> %s",
412 /*** Utility functions. ***/
414 static void select_dmi(struct target
*target
)
416 if (bscan_tunnel_ir_width
!= 0) {
417 select_dmi_via_bscan(target
);
420 jtag_add_ir_scan(target
->tap
, &select_dbus
, TAP_IDLE
);
423 static uint32_t dtmcontrol_scan(struct target
*target
, uint32_t out
)
425 struct scan_field field
;
427 uint8_t out_value
[4] = { 0 };
429 if (bscan_tunnel_ir_width
!= 0)
430 return dtmcontrol_scan_via_bscan(target
, out
);
432 buf_set_u32(out_value
, 0, 32, out
);
434 jtag_add_ir_scan(target
->tap
, &select_dtmcontrol
, TAP_IDLE
);
437 field
.out_value
= out_value
;
438 field
.in_value
= in_value
;
439 jtag_add_dr_scan(target
->tap
, 1, &field
, TAP_IDLE
);
441 /* Always return to dmi. */
444 int retval
= jtag_execute_queue();
445 if (retval
!= ERROR_OK
) {
446 LOG_ERROR("failed jtag scan: %d", retval
);
450 uint32_t in
= buf_get_u32(field
.in_value
, 0, 32);
451 LOG_DEBUG("DTMCS: 0x%x -> 0x%x", out
, in
);
456 static void increase_dmi_busy_delay(struct target
*target
)
458 riscv013_info_t
*info
= get_info(target
);
459 info
->dmi_busy_delay
+= info
->dmi_busy_delay
/ 10 + 1;
460 LOG_DEBUG("dtmcs_idle=%d, dmi_busy_delay=%d, ac_busy_delay=%d",
461 info
->dtmcs_idle
, info
->dmi_busy_delay
,
462 info
->ac_busy_delay
);
464 dtmcontrol_scan(target
, DTM_DTMCS_DMIRESET
);
468 * exec: If this is set, assume the scan results in an execution, so more
469 * run-test/idle cycles may be required.
471 static dmi_status_t
dmi_scan(struct target
*target
, uint32_t *address_in
,
472 uint32_t *data_in
, dmi_op_t op
, uint32_t address_out
, uint32_t data_out
,
475 riscv013_info_t
*info
= get_info(target
);
477 unsigned num_bits
= info
->abits
+ DTM_DMI_OP_LENGTH
+ DTM_DMI_DATA_LENGTH
;
478 size_t num_bytes
= (num_bits
+ 7) / 8;
479 uint8_t in
[num_bytes
];
480 uint8_t out
[num_bytes
];
481 struct scan_field field
= {
482 .num_bits
= num_bits
,
486 riscv_bscan_tunneled_scan_context_t bscan_ctxt
;
488 if (r
->reset_delays_wait
>= 0) {
489 r
->reset_delays_wait
--;
490 if (r
->reset_delays_wait
< 0) {
491 info
->dmi_busy_delay
= 0;
492 info
->ac_busy_delay
= 0;
496 memset(in
, 0, num_bytes
);
497 memset(out
, 0, num_bytes
);
499 assert(info
->abits
!= 0);
501 buf_set_u32(out
, DTM_DMI_OP_OFFSET
, DTM_DMI_OP_LENGTH
, op
);
502 buf_set_u32(out
, DTM_DMI_DATA_OFFSET
, DTM_DMI_DATA_LENGTH
, data_out
);
503 buf_set_u32(out
, DTM_DMI_ADDRESS_OFFSET
, info
->abits
, address_out
);
505 /* I wanted to place this code in a different function, but the way JTAG command
506 queueing works in the jtag handling functions, the scan fields either have to be
507 heap allocated, global/static, or else they need to stay on the stack until
508 the jtag_execute_queue() call. Heap or static fields in this case doesn't seem
509 the best fit. Declaring stack based field values in a subsidiary function call wouldn't
511 if (bscan_tunnel_ir_width
!= 0) {
512 riscv_add_bscan_tunneled_scan(target
, &field
, &bscan_ctxt
);
514 /* Assume dbus is already selected. */
515 jtag_add_dr_scan(target
->tap
, 1, &field
, TAP_IDLE
);
518 int idle_count
= info
->dmi_busy_delay
;
520 idle_count
+= info
->ac_busy_delay
;
523 jtag_add_runtest(idle_count
, TAP_IDLE
);
525 int retval
= jtag_execute_queue();
526 if (retval
!= ERROR_OK
) {
527 LOG_ERROR("dmi_scan failed jtag scan");
530 return DMI_STATUS_FAILED
;
533 if (bscan_tunnel_ir_width
!= 0) {
534 /* need to right-shift "in" by one bit, because of clock skew between BSCAN TAP and DM TAP */
535 buffer_shr(in
, num_bytes
, 1);
539 *data_in
= buf_get_u32(in
, DTM_DMI_DATA_OFFSET
, DTM_DMI_DATA_LENGTH
);
542 *address_in
= buf_get_u32(in
, DTM_DMI_ADDRESS_OFFSET
, info
->abits
);
543 dump_field(idle_count
, &field
);
544 return buf_get_u32(in
, DTM_DMI_OP_OFFSET
, DTM_DMI_OP_LENGTH
);
549 * @param data_in The data we received from the target.
550 * @param dmi_busy_encountered
551 * If non-NULL, will be updated to reflect whether DMI busy was
552 * encountered while executing this operation or not.
553 * @param dmi_op The operation to perform (read/write/nop).
554 * @param address The address argument to that operation.
555 * @param data_out The data to send to the target.
557 * @param exec When true, this scan will execute something, so extra RTI
558 * cycles may be added.
559 * @param ensure_success
560 * Scan a nop after the requested operation, ensuring the
561 * DMI operation succeeded.
563 static int dmi_op_timeout(struct target
*target
, uint32_t *data_in
,
564 bool *dmi_busy_encountered
, int dmi_op
, uint32_t address
,
565 uint32_t data_out
, int timeout_sec
, bool exec
, bool ensure_success
)
572 if (dmi_busy_encountered
)
573 *dmi_busy_encountered
= false;
587 LOG_ERROR("Invalid DMI operation: %d", dmi_op
);
593 time_t start
= time(NULL
);
594 /* This first loop performs the request. Note that if for some reason this
595 * stays busy, it is actually due to the previous access. */
597 status
= dmi_scan(target
, NULL
, NULL
, dmi_op
, address
, data_out
,
599 if (status
== DMI_STATUS_BUSY
) {
600 increase_dmi_busy_delay(target
);
601 if (dmi_busy_encountered
)
602 *dmi_busy_encountered
= true;
603 } else if (status
== DMI_STATUS_SUCCESS
) {
606 LOG_ERROR("failed %s at 0x%x, status=%d", op_name
, address
, status
);
609 if (time(NULL
) - start
> timeout_sec
)
610 return ERROR_TIMEOUT_REACHED
;
613 if (status
!= DMI_STATUS_SUCCESS
) {
614 LOG_ERROR("Failed %s at 0x%x; status=%d", op_name
, address
, status
);
618 if (ensure_success
) {
619 /* This second loop ensures the request succeeded, and gets back data.
620 * Note that NOP can result in a 'busy' result as well, but that would be
621 * noticed on the next DMI access we do. */
623 status
= dmi_scan(target
, &address_in
, data_in
, DMI_OP_NOP
, address
, 0,
625 if (status
== DMI_STATUS_BUSY
) {
626 increase_dmi_busy_delay(target
);
627 if (dmi_busy_encountered
)
628 *dmi_busy_encountered
= true;
629 } else if (status
== DMI_STATUS_SUCCESS
) {
633 LOG_ERROR("Failed %s (NOP) at 0x%x; value=0x%x, status=%d",
634 op_name
, address
, *data_in
, status
);
636 LOG_ERROR("Failed %s (NOP) at 0x%x; status=%d", op_name
, address
,
641 if (time(NULL
) - start
> timeout_sec
)
642 return ERROR_TIMEOUT_REACHED
;
649 static int dmi_op(struct target
*target
, uint32_t *data_in
,
650 bool *dmi_busy_encountered
, int dmi_op
, uint32_t address
,
651 uint32_t data_out
, bool exec
, bool ensure_success
)
653 int result
= dmi_op_timeout(target
, data_in
, dmi_busy_encountered
, dmi_op
,
654 address
, data_out
, riscv_command_timeout_sec
, exec
, ensure_success
);
655 if (result
== ERROR_TIMEOUT_REACHED
) {
656 LOG_ERROR("DMI operation didn't complete in %d seconds. The target is "
657 "either really slow or broken. You could increase the "
658 "timeout with riscv set_command_timeout_sec.",
659 riscv_command_timeout_sec
);
665 static int dmi_read(struct target
*target
, uint32_t *value
, uint32_t address
)
667 return dmi_op(target
, value
, NULL
, DMI_OP_READ
, address
, 0, false, true);
670 static int dmi_read_exec(struct target
*target
, uint32_t *value
, uint32_t address
)
672 return dmi_op(target
, value
, NULL
, DMI_OP_READ
, address
, 0, true, true);
675 static int dmi_write(struct target
*target
, uint32_t address
, uint32_t value
)
677 return dmi_op(target
, NULL
, NULL
, DMI_OP_WRITE
, address
, value
, false, true);
680 static int dmi_write_exec(struct target
*target
, uint32_t address
,
681 uint32_t value
, bool ensure_success
)
683 return dmi_op(target
, NULL
, NULL
, DMI_OP_WRITE
, address
, value
, true, ensure_success
);
686 int dmstatus_read_timeout(struct target
*target
, uint32_t *dmstatus
,
687 bool authenticated
, unsigned timeout_sec
)
689 int result
= dmi_op_timeout(target
, dmstatus
, NULL
, DMI_OP_READ
,
690 DM_DMSTATUS
, 0, timeout_sec
, false, true);
691 if (result
!= ERROR_OK
)
693 int dmstatus_version
= get_field(*dmstatus
, DM_DMSTATUS_VERSION
);
694 if (dmstatus_version
!= 2 && dmstatus_version
!= 3) {
695 LOG_ERROR("OpenOCD only supports Debug Module version 2 (0.13) and 3 (1.0), not "
696 "%d (dmstatus=0x%x). This error might be caused by a JTAG "
697 "signal issue. Try reducing the JTAG clock speed.",
698 get_field(*dmstatus
, DM_DMSTATUS_VERSION
), *dmstatus
);
699 } else if (authenticated
&& !get_field(*dmstatus
, DM_DMSTATUS_AUTHENTICATED
)) {
700 LOG_ERROR("Debugger is not authenticated to target Debug Module. "
701 "(dmstatus=0x%x). Use `riscv authdata_read` and "
702 "`riscv authdata_write` commands to authenticate.", *dmstatus
);
708 int dmstatus_read(struct target
*target
, uint32_t *dmstatus
,
711 return dmstatus_read_timeout(target
, dmstatus
, authenticated
,
712 riscv_command_timeout_sec
);
715 static void increase_ac_busy_delay(struct target
*target
)
717 riscv013_info_t
*info
= get_info(target
);
718 info
->ac_busy_delay
+= info
->ac_busy_delay
/ 10 + 1;
719 LOG_DEBUG("dtmcs_idle=%d, dmi_busy_delay=%d, ac_busy_delay=%d",
720 info
->dtmcs_idle
, info
->dmi_busy_delay
,
721 info
->ac_busy_delay
);
724 uint32_t abstract_register_size(unsigned width
)
728 return set_field(0, AC_ACCESS_REGISTER_AARSIZE
, 2);
730 return set_field(0, AC_ACCESS_REGISTER_AARSIZE
, 3);
732 return set_field(0, AC_ACCESS_REGISTER_AARSIZE
, 4);
734 LOG_ERROR("Unsupported register width: %d", width
);
739 static int wait_for_idle(struct target
*target
, uint32_t *abstractcs
)
742 time_t start
= time(NULL
);
744 if (dmi_read(target
, abstractcs
, DM_ABSTRACTCS
) != ERROR_OK
)
747 if (get_field(*abstractcs
, DM_ABSTRACTCS_BUSY
) == 0)
750 if (time(NULL
) - start
> riscv_command_timeout_sec
) {
751 info
->cmderr
= get_field(*abstractcs
, DM_ABSTRACTCS_CMDERR
);
752 if (info
->cmderr
!= CMDERR_NONE
) {
753 const char *errors
[8] = {
763 LOG_ERROR("Abstract command ended in error '%s' (abstractcs=0x%x)",
764 errors
[info
->cmderr
], *abstractcs
);
767 LOG_ERROR("Timed out after %ds waiting for busy to go low (abstractcs=0x%x). "
768 "Increase the timeout with riscv set_command_timeout_sec.",
769 riscv_command_timeout_sec
,
776 static int execute_abstract_command(struct target
*target
, uint32_t command
)
779 if (debug_level
>= LOG_LVL_DEBUG
) {
780 switch (get_field(command
, DM_COMMAND_CMDTYPE
)) {
782 LOG_DEBUG("command=0x%x; access register, size=%d, postexec=%d, "
783 "transfer=%d, write=%d, regno=0x%x",
785 8 << get_field(command
, AC_ACCESS_REGISTER_AARSIZE
),
786 get_field(command
, AC_ACCESS_REGISTER_POSTEXEC
),
787 get_field(command
, AC_ACCESS_REGISTER_TRANSFER
),
788 get_field(command
, AC_ACCESS_REGISTER_WRITE
),
789 get_field(command
, AC_ACCESS_REGISTER_REGNO
));
792 LOG_DEBUG("command=0x%x", command
);
797 if (dmi_write_exec(target
, DM_COMMAND
, command
, false) != ERROR_OK
)
800 uint32_t abstractcs
= 0;
801 int result
= wait_for_idle(target
, &abstractcs
);
803 info
->cmderr
= get_field(abstractcs
, DM_ABSTRACTCS_CMDERR
);
804 if (info
->cmderr
!= 0 || result
!= ERROR_OK
) {
805 LOG_DEBUG("command 0x%x failed; abstractcs=0x%x", command
, abstractcs
);
806 /* Clear the error. */
807 dmi_write(target
, DM_ABSTRACTCS
, DM_ABSTRACTCS_CMDERR
);
814 static riscv_reg_t
read_abstract_arg(struct target
*target
, unsigned index
,
817 riscv_reg_t value
= 0;
819 unsigned offset
= index
* size_bits
/ 32;
822 LOG_ERROR("Unsupported size: %d bits", size_bits
);
825 dmi_read(target
, &v
, DM_DATA0
+ offset
+ 1);
826 value
|= ((uint64_t) v
) << 32;
829 dmi_read(target
, &v
, DM_DATA0
+ offset
);
835 static int write_abstract_arg(struct target
*target
, unsigned index
,
836 riscv_reg_t value
, unsigned size_bits
)
838 unsigned offset
= index
* size_bits
/ 32;
841 LOG_ERROR("Unsupported size: %d bits", size_bits
);
844 dmi_write(target
, DM_DATA0
+ offset
+ 1, value
>> 32);
847 dmi_write(target
, DM_DATA0
+ offset
, value
);
855 static uint32_t access_register_command(struct target
*target
, uint32_t number
,
856 unsigned size
, uint32_t flags
)
858 uint32_t command
= set_field(0, DM_COMMAND_CMDTYPE
, 0);
861 command
= set_field(command
, AC_ACCESS_REGISTER_AARSIZE
, 2);
864 command
= set_field(command
, AC_ACCESS_REGISTER_AARSIZE
, 3);
867 LOG_ERROR("%d-bit register %s not supported.", size
,
868 gdb_regno_name(number
));
872 if (number
<= GDB_REGNO_XPR31
) {
873 command
= set_field(command
, AC_ACCESS_REGISTER_REGNO
,
874 0x1000 + number
- GDB_REGNO_ZERO
);
875 } else if (number
>= GDB_REGNO_FPR0
&& number
<= GDB_REGNO_FPR31
) {
876 command
= set_field(command
, AC_ACCESS_REGISTER_REGNO
,
877 0x1020 + number
- GDB_REGNO_FPR0
);
878 } else if (number
>= GDB_REGNO_CSR0
&& number
<= GDB_REGNO_CSR4095
) {
879 command
= set_field(command
, AC_ACCESS_REGISTER_REGNO
,
880 number
- GDB_REGNO_CSR0
);
881 } else if (number
>= GDB_REGNO_COUNT
) {
882 /* Custom register. */
883 assert(target
->reg_cache
->reg_list
[number
].arch_info
);
884 riscv_reg_info_t
*reg_info
= target
->reg_cache
->reg_list
[number
].arch_info
;
886 command
= set_field(command
, AC_ACCESS_REGISTER_REGNO
,
887 0xc000 + reg_info
->custom_number
);
897 static int register_read_abstract(struct target
*target
, uint64_t *value
,
898 uint32_t number
, unsigned size
)
902 if (number
>= GDB_REGNO_FPR0
&& number
<= GDB_REGNO_FPR31
&&
903 !info
->abstract_read_fpr_supported
)
905 if (number
>= GDB_REGNO_CSR0
&& number
<= GDB_REGNO_CSR4095
&&
906 !info
->abstract_read_csr_supported
)
908 /* The spec doesn't define abstract register numbers for vector registers. */
909 if (number
>= GDB_REGNO_V0
&& number
<= GDB_REGNO_V31
)
912 uint32_t command
= access_register_command(target
, number
, size
,
913 AC_ACCESS_REGISTER_TRANSFER
);
915 int result
= execute_abstract_command(target
, command
);
916 if (result
!= ERROR_OK
) {
917 if (info
->cmderr
== CMDERR_NOT_SUPPORTED
) {
918 if (number
>= GDB_REGNO_FPR0
&& number
<= GDB_REGNO_FPR31
) {
919 info
->abstract_read_fpr_supported
= false;
920 LOG_INFO("Disabling abstract command reads from FPRs.");
921 } else if (number
>= GDB_REGNO_CSR0
&& number
<= GDB_REGNO_CSR4095
) {
922 info
->abstract_read_csr_supported
= false;
923 LOG_INFO("Disabling abstract command reads from CSRs.");
930 *value
= read_abstract_arg(target
, 0, size
);
935 static int register_write_abstract(struct target
*target
, uint32_t number
,
936 uint64_t value
, unsigned size
)
940 if (number
>= GDB_REGNO_FPR0
&& number
<= GDB_REGNO_FPR31
&&
941 !info
->abstract_write_fpr_supported
)
943 if (number
>= GDB_REGNO_CSR0
&& number
<= GDB_REGNO_CSR4095
&&
944 !info
->abstract_write_csr_supported
)
947 uint32_t command
= access_register_command(target
, number
, size
,
948 AC_ACCESS_REGISTER_TRANSFER
|
949 AC_ACCESS_REGISTER_WRITE
);
951 if (write_abstract_arg(target
, 0, value
, size
) != ERROR_OK
)
954 int result
= execute_abstract_command(target
, command
);
955 if (result
!= ERROR_OK
) {
956 if (info
->cmderr
== CMDERR_NOT_SUPPORTED
) {
957 if (number
>= GDB_REGNO_FPR0
&& number
<= GDB_REGNO_FPR31
) {
958 info
->abstract_write_fpr_supported
= false;
959 LOG_INFO("Disabling abstract command writes to FPRs.");
960 } else if (number
>= GDB_REGNO_CSR0
&& number
<= GDB_REGNO_CSR4095
) {
961 info
->abstract_write_csr_supported
= false;
962 LOG_INFO("Disabling abstract command writes to CSRs.");
972 * Sets the AAMSIZE field of a memory access abstract command based on
975 static uint32_t abstract_memory_size(unsigned width
)
979 return set_field(0, AC_ACCESS_MEMORY_AAMSIZE
, 0);
981 return set_field(0, AC_ACCESS_MEMORY_AAMSIZE
, 1);
983 return set_field(0, AC_ACCESS_MEMORY_AAMSIZE
, 2);
985 return set_field(0, AC_ACCESS_MEMORY_AAMSIZE
, 3);
987 return set_field(0, AC_ACCESS_MEMORY_AAMSIZE
, 4);
989 LOG_ERROR("Unsupported memory width: %d", width
);
995 * Creates a memory access abstract command.
997 static uint32_t access_memory_command(struct target
*target
, bool virtual,
998 unsigned width
, bool postincrement
, bool write
)
1000 uint32_t command
= set_field(0, AC_ACCESS_MEMORY_CMDTYPE
, 2);
1001 command
= set_field(command
, AC_ACCESS_MEMORY_AAMVIRTUAL
, virtual);
1002 command
|= abstract_memory_size(width
);
1003 command
= set_field(command
, AC_ACCESS_MEMORY_AAMPOSTINCREMENT
,
1005 command
= set_field(command
, AC_ACCESS_MEMORY_WRITE
, write
);
1010 static int examine_progbuf(struct target
*target
)
1012 riscv013_info_t
*info
= get_info(target
);
1014 if (info
->progbuf_writable
!= YNM_MAYBE
)
1017 /* Figure out if progbuf is writable. */
1019 if (info
->progbufsize
< 1) {
1020 info
->progbuf_writable
= YNM_NO
;
1021 LOG_INFO("No program buffer present.");
1026 if (register_read(target
, &s0
, GDB_REGNO_S0
) != ERROR_OK
)
1029 struct riscv_program program
;
1030 riscv_program_init(&program
, target
);
1031 riscv_program_insert(&program
, auipc(S0
));
1032 if (riscv_program_exec(&program
, target
) != ERROR_OK
)
1035 if (register_read_direct(target
, &info
->progbuf_address
, GDB_REGNO_S0
) != ERROR_OK
)
1038 riscv_program_init(&program
, target
);
1039 riscv_program_insert(&program
, sw(S0
, S0
, 0));
1040 int result
= riscv_program_exec(&program
, target
);
1042 if (register_write_direct(target
, GDB_REGNO_S0
, s0
) != ERROR_OK
)
1045 if (result
!= ERROR_OK
) {
1046 /* This program might have failed if the program buffer is not
1048 info
->progbuf_writable
= YNM_NO
;
1053 if (dmi_read(target
, &written
, DM_PROGBUF0
) != ERROR_OK
)
1055 if (written
== (uint32_t) info
->progbuf_address
) {
1056 LOG_INFO("progbuf is writable at 0x%" PRIx64
,
1057 info
->progbuf_address
);
1058 info
->progbuf_writable
= YNM_YES
;
1061 LOG_INFO("progbuf is not writeable at 0x%" PRIx64
,
1062 info
->progbuf_address
);
1063 info
->progbuf_writable
= YNM_NO
;
1069 static int is_fpu_reg(uint32_t gdb_regno
)
1071 return (gdb_regno
>= GDB_REGNO_FPR0
&& gdb_regno
<= GDB_REGNO_FPR31
) ||
1072 (gdb_regno
== GDB_REGNO_CSR0
+ CSR_FFLAGS
) ||
1073 (gdb_regno
== GDB_REGNO_CSR0
+ CSR_FRM
) ||
1074 (gdb_regno
== GDB_REGNO_CSR0
+ CSR_FCSR
);
1077 static int is_vector_reg(uint32_t gdb_regno
)
1079 return (gdb_regno
>= GDB_REGNO_V0
&& gdb_regno
<= GDB_REGNO_V31
) ||
1080 gdb_regno
== GDB_REGNO_VSTART
||
1081 gdb_regno
== GDB_REGNO_VXSAT
||
1082 gdb_regno
== GDB_REGNO_VXRM
||
1083 gdb_regno
== GDB_REGNO_VL
||
1084 gdb_regno
== GDB_REGNO_VTYPE
||
1085 gdb_regno
== GDB_REGNO_VLENB
;
1088 static int prep_for_register_access(struct target
*target
, uint64_t *mstatus
,
1091 if (is_fpu_reg(regno
) || is_vector_reg(regno
)) {
1092 if (register_read(target
, mstatus
, GDB_REGNO_MSTATUS
) != ERROR_OK
)
1094 if (is_fpu_reg(regno
) && (*mstatus
& MSTATUS_FS
) == 0) {
1095 if (register_write_direct(target
, GDB_REGNO_MSTATUS
,
1096 set_field(*mstatus
, MSTATUS_FS
, 1)) != ERROR_OK
)
1098 } else if (is_vector_reg(regno
) && (*mstatus
& MSTATUS_VS
) == 0) {
1099 if (register_write_direct(target
, GDB_REGNO_MSTATUS
,
1100 set_field(*mstatus
, MSTATUS_VS
, 1)) != ERROR_OK
)
1109 static int cleanup_after_register_access(struct target
*target
,
1110 uint64_t mstatus
, int regno
)
1112 if ((is_fpu_reg(regno
) && (mstatus
& MSTATUS_FS
) == 0) ||
1113 (is_vector_reg(regno
) && (mstatus
& MSTATUS_VS
) == 0))
1114 if (register_write_direct(target
, GDB_REGNO_MSTATUS
, mstatus
) != ERROR_OK
)
1126 /* How can the debugger access this memory? */
1127 memory_space_t memory_space
;
1128 /* Memory address to access the scratch memory from the hart. */
1129 riscv_addr_t hart_address
;
1130 /* Memory address to access the scratch memory from the debugger. */
1131 riscv_addr_t debug_address
;
1132 struct working_area
*area
;
1136 * Find some scratch memory to be used with the given program.
1138 static int scratch_reserve(struct target
*target
,
1139 scratch_mem_t
*scratch
,
1140 struct riscv_program
*program
,
1141 unsigned size_bytes
)
1143 riscv_addr_t alignment
= 1;
1144 while (alignment
< size_bytes
)
1147 scratch
->area
= NULL
;
1149 riscv013_info_t
*info
= get_info(target
);
1151 /* Option 1: See if data# registers can be used as the scratch memory */
1152 if (info
->dataaccess
== 1) {
1153 /* Sign extend dataaddr. */
1154 scratch
->hart_address
= info
->dataaddr
;
1155 if (info
->dataaddr
& (1<<11))
1156 scratch
->hart_address
|= 0xfffffffffffff000ULL
;
1158 scratch
->hart_address
= (scratch
->hart_address
+ alignment
- 1) & ~(alignment
- 1);
1160 if ((size_bytes
+ scratch
->hart_address
- info
->dataaddr
+ 3) / 4 >=
1162 scratch
->memory_space
= SPACE_DM_DATA
;
1163 scratch
->debug_address
= (scratch
->hart_address
- info
->dataaddr
) / 4;
1168 /* Option 2: See if progbuf can be used as the scratch memory */
1169 if (examine_progbuf(target
) != ERROR_OK
)
1172 /* Allow for ebreak at the end of the program. */
1173 unsigned program_size
= (program
->instruction_count
+ 1) * 4;
1174 scratch
->hart_address
= (info
->progbuf_address
+ program_size
+ alignment
- 1) &
1176 if ((info
->progbuf_writable
== YNM_YES
) &&
1177 ((size_bytes
+ scratch
->hart_address
- info
->progbuf_address
+ 3) / 4 >=
1178 info
->progbufsize
)) {
1179 scratch
->memory_space
= SPACE_DMI_PROGBUF
;
1180 scratch
->debug_address
= (scratch
->hart_address
- info
->progbuf_address
) / 4;
1184 /* Option 3: User-configured memory area as scratch RAM */
1185 if (target_alloc_working_area(target
, size_bytes
+ alignment
- 1,
1186 &scratch
->area
) == ERROR_OK
) {
1187 scratch
->hart_address
= (scratch
->area
->address
+ alignment
- 1) &
1189 scratch
->memory_space
= SPACE_DMI_RAM
;
1190 scratch
->debug_address
= scratch
->hart_address
;
1194 LOG_ERROR("Couldn't find %d bytes of scratch RAM to use. Please configure "
1195 "a work area with 'configure -work-area-phys'.", size_bytes
);
1199 static int scratch_release(struct target
*target
,
1200 scratch_mem_t
*scratch
)
1202 return target_free_working_area(target
, scratch
->area
);
1205 static int scratch_read64(struct target
*target
, scratch_mem_t
*scratch
,
1209 switch (scratch
->memory_space
) {
1211 if (dmi_read(target
, &v
, DM_DATA0
+ scratch
->debug_address
) != ERROR_OK
)
1214 if (dmi_read(target
, &v
, DM_DATA1
+ scratch
->debug_address
) != ERROR_OK
)
1216 *value
|= ((uint64_t) v
) << 32;
1218 case SPACE_DMI_PROGBUF
:
1219 if (dmi_read(target
, &v
, DM_PROGBUF0
+ scratch
->debug_address
) != ERROR_OK
)
1222 if (dmi_read(target
, &v
, DM_PROGBUF1
+ scratch
->debug_address
) != ERROR_OK
)
1224 *value
|= ((uint64_t) v
) << 32;
1228 uint8_t buffer
[8] = {0};
1229 if (read_memory(target
, scratch
->debug_address
, 4, 2, buffer
, 4) != ERROR_OK
)
1231 *value
= buffer
[0] |
1232 (((uint64_t) buffer
[1]) << 8) |
1233 (((uint64_t) buffer
[2]) << 16) |
1234 (((uint64_t) buffer
[3]) << 24) |
1235 (((uint64_t) buffer
[4]) << 32) |
1236 (((uint64_t) buffer
[5]) << 40) |
1237 (((uint64_t) buffer
[6]) << 48) |
1238 (((uint64_t) buffer
[7]) << 56);
1245 static int scratch_write64(struct target
*target
, scratch_mem_t
*scratch
,
1248 switch (scratch
->memory_space
) {
1250 dmi_write(target
, DM_DATA0
+ scratch
->debug_address
, value
);
1251 dmi_write(target
, DM_DATA1
+ scratch
->debug_address
, value
>> 32);
1253 case SPACE_DMI_PROGBUF
:
1254 dmi_write(target
, DM_PROGBUF0
+ scratch
->debug_address
, value
);
1255 dmi_write(target
, DM_PROGBUF1
+ scratch
->debug_address
, value
>> 32);
1259 uint8_t buffer
[8] = {
1269 if (write_memory(target
, scratch
->debug_address
, 4, 2, buffer
) != ERROR_OK
)
1277 /** Return register size in bits. */
1278 static unsigned register_size(struct target
*target
, unsigned number
)
1280 /* If reg_cache hasn't been initialized yet, make a guess. We need this for
1281 * when this function is called during examine(). */
1282 if (target
->reg_cache
)
1283 return target
->reg_cache
->reg_list
[number
].size
;
1285 return riscv_xlen(target
);
1288 static bool has_sufficient_progbuf(struct target
*target
, unsigned size
)
1290 RISCV013_INFO(info
);
1293 return info
->progbufsize
+ r
->impebreak
>= size
;
1297 * Immediately write the new value to the requested register. This mechanism
1298 * bypasses any caches.
1300 static int register_write_direct(struct target
*target
, unsigned number
,
1303 LOG_DEBUG("{%d} %s <- 0x%" PRIx64
, riscv_current_hartid(target
),
1304 gdb_regno_name(number
), value
);
1306 int result
= register_write_abstract(target
, number
, value
,
1307 register_size(target
, number
));
1308 if (result
== ERROR_OK
|| !has_sufficient_progbuf(target
, 2) ||
1309 !riscv_is_halted(target
))
1312 struct riscv_program program
;
1313 riscv_program_init(&program
, target
);
1316 if (register_read(target
, &s0
, GDB_REGNO_S0
) != ERROR_OK
)
1320 if (prep_for_register_access(target
, &mstatus
, number
) != ERROR_OK
)
1323 scratch_mem_t scratch
;
1324 bool use_scratch
= false;
1325 if (number
>= GDB_REGNO_FPR0
&& number
<= GDB_REGNO_FPR31
&&
1326 riscv_supports_extension(target
, 'D') &&
1327 riscv_xlen(target
) < 64) {
1328 /* There are no instructions to move all the bits from a register, so
1329 * we need to use some scratch RAM. */
1331 riscv_program_insert(&program
, fld(number
- GDB_REGNO_FPR0
, S0
, 0));
1333 if (scratch_reserve(target
, &scratch
, &program
, 8) != ERROR_OK
)
1336 if (register_write_direct(target
, GDB_REGNO_S0
, scratch
.hart_address
)
1338 scratch_release(target
, &scratch
);
1342 if (scratch_write64(target
, &scratch
, value
) != ERROR_OK
) {
1343 scratch_release(target
, &scratch
);
1347 } else if (number
== GDB_REGNO_VTYPE
) {
1348 riscv_program_insert(&program
, csrr(S0
, CSR_VL
));
1349 riscv_program_insert(&program
, vsetvli(ZERO
, S0
, value
));
1352 if (register_write_direct(target
, GDB_REGNO_S0
, value
) != ERROR_OK
)
1355 if (number
>= GDB_REGNO_FPR0
&& number
<= GDB_REGNO_FPR31
) {
1356 if (riscv_supports_extension(target
, 'D'))
1357 riscv_program_insert(&program
, fmv_d_x(number
- GDB_REGNO_FPR0
, S0
));
1359 riscv_program_insert(&program
, fmv_w_x(number
- GDB_REGNO_FPR0
, S0
));
1360 } else if (number
== GDB_REGNO_VL
) {
1361 /* "The XLEN-bit-wide read-only vl CSR can only be updated by the
1362 * vsetvli and vsetvl instructions, and the fault-only-rst vector
1363 * load instruction variants." */
1365 if (register_read(target
, &vtype
, GDB_REGNO_VTYPE
) != ERROR_OK
)
1367 if (riscv_program_insert(&program
, vsetvli(ZERO
, S0
, vtype
)) != ERROR_OK
)
1369 } else if (number
>= GDB_REGNO_CSR0
&& number
<= GDB_REGNO_CSR4095
) {
1370 riscv_program_csrw(&program
, S0
, number
);
1372 LOG_ERROR("Unsupported register (enum gdb_regno)(%d)", number
);
1377 int exec_out
= riscv_program_exec(&program
, target
);
1378 /* Don't message on error. Probably the register doesn't exist. */
1379 if (exec_out
== ERROR_OK
&& target
->reg_cache
) {
1380 struct reg
*reg
= &target
->reg_cache
->reg_list
[number
];
1381 buf_set_u64(reg
->value
, 0, reg
->size
, value
);
1385 scratch_release(target
, &scratch
);
1387 if (cleanup_after_register_access(target
, mstatus
, number
) != ERROR_OK
)
1391 if (register_write_direct(target
, GDB_REGNO_S0
, s0
) != ERROR_OK
)
1397 /** Read register value from the target. Also update the cached value. */
1398 static int register_read(struct target
*target
, uint64_t *value
, uint32_t number
)
1400 if (number
== GDB_REGNO_ZERO
) {
1404 int result
= register_read_direct(target
, value
, number
);
1405 if (result
!= ERROR_OK
)
1407 if (target
->reg_cache
) {
1408 struct reg
*reg
= &target
->reg_cache
->reg_list
[number
];
1409 buf_set_u64(reg
->value
, 0, reg
->size
, *value
);
1414 /** Actually read registers from the target right now. */
1415 static int register_read_direct(struct target
*target
, uint64_t *value
, uint32_t number
)
1417 int result
= register_read_abstract(target
, value
, number
,
1418 register_size(target
, number
));
1420 if (result
!= ERROR_OK
&&
1421 has_sufficient_progbuf(target
, 2) &&
1422 number
> GDB_REGNO_XPR31
) {
1423 struct riscv_program program
;
1424 riscv_program_init(&program
, target
);
1426 scratch_mem_t scratch
;
1427 bool use_scratch
= false;
1430 if (register_read(target
, &s0
, GDB_REGNO_S0
) != ERROR_OK
)
1433 /* Write program to move data into s0. */
1436 if (prep_for_register_access(target
, &mstatus
, number
) != ERROR_OK
)
1439 if (number
>= GDB_REGNO_FPR0
&& number
<= GDB_REGNO_FPR31
) {
1440 if (riscv_supports_extension(target
, 'D')
1441 && riscv_xlen(target
) < 64) {
1442 /* There are no instructions to move all the bits from a
1443 * register, so we need to use some scratch RAM. */
1444 riscv_program_insert(&program
, fsd(number
- GDB_REGNO_FPR0
, S0
,
1447 if (scratch_reserve(target
, &scratch
, &program
, 8) != ERROR_OK
)
1451 if (register_write_direct(target
, GDB_REGNO_S0
,
1452 scratch
.hart_address
) != ERROR_OK
) {
1453 scratch_release(target
, &scratch
);
1456 } else if (riscv_supports_extension(target
, 'D')) {
1457 riscv_program_insert(&program
, fmv_x_d(S0
, number
- GDB_REGNO_FPR0
));
1459 riscv_program_insert(&program
, fmv_x_w(S0
, number
- GDB_REGNO_FPR0
));
1461 } else if (number
>= GDB_REGNO_CSR0
&& number
<= GDB_REGNO_CSR4095
) {
1462 riscv_program_csrr(&program
, S0
, number
);
1464 LOG_ERROR("Unsupported register: %s", gdb_regno_name(number
));
1468 /* Execute program. */
1469 result
= riscv_program_exec(&program
, target
);
1470 /* Don't message on error. Probably the register doesn't exist. */
1473 result
= scratch_read64(target
, &scratch
, value
);
1474 scratch_release(target
, &scratch
);
1475 if (result
!= ERROR_OK
)
1479 if (register_read_direct(target
, value
, GDB_REGNO_S0
) != ERROR_OK
)
1483 if (cleanup_after_register_access(target
, mstatus
, number
) != ERROR_OK
)
1487 if (register_write_direct(target
, GDB_REGNO_S0
, s0
) != ERROR_OK
)
1491 if (result
== ERROR_OK
) {
1492 LOG_DEBUG("{%d} %s = 0x%" PRIx64
, riscv_current_hartid(target
),
1493 gdb_regno_name(number
), *value
);
1499 static int wait_for_authbusy(struct target
*target
, uint32_t *dmstatus
)
1501 time_t start
= time(NULL
);
1504 if (dmstatus_read(target
, &value
, false) != ERROR_OK
)
1508 if (!get_field(value
, DM_DMSTATUS_AUTHBUSY
))
1510 if (time(NULL
) - start
> riscv_command_timeout_sec
) {
1511 LOG_ERROR("Timed out after %ds waiting for authbusy to go low (dmstatus=0x%x). "
1512 "Increase the timeout with riscv set_command_timeout_sec.",
1513 riscv_command_timeout_sec
,
1522 /*** OpenOCD target functions. ***/
1524 static void deinit_target(struct target
*target
)
1526 LOG_DEBUG("riscv_deinit_target()");
1527 riscv_info_t
*info
= (riscv_info_t
*) target
->arch_info
;
1528 free(info
->version_specific
);
1529 /* TODO: free register arch_info */
1530 info
->version_specific
= NULL
;
1533 static int set_haltgroup(struct target
*target
, bool *supported
)
1535 uint32_t write
= set_field(DM_DMCS2_HGWRITE
, DM_DMCS2_GROUP
, target
->smp
);
1536 if (dmi_write(target
, DM_DMCS2
, write
) != ERROR_OK
)
1539 if (dmi_read(target
, &read
, DM_DMCS2
) != ERROR_OK
)
1541 *supported
= get_field(read
, DM_DMCS2_GROUP
) == (unsigned)target
->smp
;
1545 static int discover_vlenb(struct target
*target
)
1550 if (register_read(target
, &vlenb
, GDB_REGNO_VLENB
) != ERROR_OK
) {
1551 LOG_WARNING("Couldn't read vlenb for %s; vector register access won't work.",
1552 target_name(target
));
1558 LOG_INFO("Vector support with vlenb=%d", r
->vlenb
);
1563 static int examine(struct target
*target
)
1565 /* Don't need to select dbus, since the first thing we do is read dtmcontrol. */
1567 uint32_t dtmcontrol
= dtmcontrol_scan(target
, 0);
1568 LOG_DEBUG("dtmcontrol=0x%x", dtmcontrol
);
1569 LOG_DEBUG(" dmireset=%d", get_field(dtmcontrol
, DTM_DTMCS_DMIRESET
));
1570 LOG_DEBUG(" idle=%d", get_field(dtmcontrol
, DTM_DTMCS_IDLE
));
1571 LOG_DEBUG(" dmistat=%d", get_field(dtmcontrol
, DTM_DTMCS_DMISTAT
));
1572 LOG_DEBUG(" abits=%d", get_field(dtmcontrol
, DTM_DTMCS_ABITS
));
1573 LOG_DEBUG(" version=%d", get_field(dtmcontrol
, DTM_DTMCS_VERSION
));
1574 if (dtmcontrol
== 0) {
1575 LOG_ERROR("dtmcontrol is 0. Check JTAG connectivity/board power.");
1578 if (get_field(dtmcontrol
, DTM_DTMCS_VERSION
) != 1) {
1579 LOG_ERROR("Unsupported DTM version %d. (dtmcontrol=0x%x)",
1580 get_field(dtmcontrol
, DTM_DTMCS_VERSION
), dtmcontrol
);
1584 riscv013_info_t
*info
= get_info(target
);
1585 /* TODO: This won't be true if there are multiple DMs. */
1586 info
->index
= target
->coreid
;
1587 info
->abits
= get_field(dtmcontrol
, DTM_DTMCS_ABITS
);
1588 info
->dtmcs_idle
= get_field(dtmcontrol
, DTM_DTMCS_IDLE
);
1590 /* Reset the Debug Module. */
1591 dm013_info_t
*dm
= get_dm(target
);
1594 if (!dm
->was_reset
) {
1595 dmi_write(target
, DM_DMCONTROL
, 0);
1596 dmi_write(target
, DM_DMCONTROL
, DM_DMCONTROL_DMACTIVE
);
1597 dm
->was_reset
= true;
1600 dmi_write(target
, DM_DMCONTROL
, DM_DMCONTROL_HARTSELLO
|
1601 DM_DMCONTROL_HARTSELHI
| DM_DMCONTROL_DMACTIVE
|
1602 DM_DMCONTROL_HASEL
);
1604 if (dmi_read(target
, &dmcontrol
, DM_DMCONTROL
) != ERROR_OK
)
1607 if (!get_field(dmcontrol
, DM_DMCONTROL_DMACTIVE
)) {
1608 LOG_ERROR("Debug Module did not become active. dmcontrol=0x%x",
1613 dm
->hasel_supported
= get_field(dmcontrol
, DM_DMCONTROL_HASEL
);
1616 if (dmstatus_read(target
, &dmstatus
, false) != ERROR_OK
)
1618 LOG_DEBUG("dmstatus: 0x%08x", dmstatus
);
1619 int dmstatus_version
= get_field(dmstatus
, DM_DMSTATUS_VERSION
);
1620 if (dmstatus_version
!= 2 && dmstatus_version
!= 3) {
1621 /* Error was already printed out in dmstatus_read(). */
1626 (get_field(dmcontrol
, DM_DMCONTROL_HARTSELHI
) <<
1627 DM_DMCONTROL_HARTSELLO_LENGTH
) |
1628 get_field(dmcontrol
, DM_DMCONTROL_HARTSELLO
);
1629 info
->hartsellen
= 0;
1630 while (hartsel
& 1) {
1634 LOG_DEBUG("hartsellen=%d", info
->hartsellen
);
1637 if (dmi_read(target
, &hartinfo
, DM_HARTINFO
) != ERROR_OK
)
1640 info
->datasize
= get_field(hartinfo
, DM_HARTINFO_DATASIZE
);
1641 info
->dataaccess
= get_field(hartinfo
, DM_HARTINFO_DATAACCESS
);
1642 info
->dataaddr
= get_field(hartinfo
, DM_HARTINFO_DATAADDR
);
1644 if (!get_field(dmstatus
, DM_DMSTATUS_AUTHENTICATED
)) {
1645 LOG_ERROR("Debugger is not authenticated to target Debug Module. "
1646 "(dmstatus=0x%x). Use `riscv authdata_read` and "
1647 "`riscv authdata_write` commands to authenticate.", dmstatus
);
1648 /* If we return ERROR_FAIL here, then in a multicore setup the next
1649 * core won't be examined, which means we won't set up the
1650 * authentication commands for them, which means the config script
1651 * needs to be a lot more complex. */
1655 if (dmi_read(target
, &info
->sbcs
, DM_SBCS
) != ERROR_OK
)
1658 /* Check that abstract data registers are accessible. */
1659 uint32_t abstractcs
;
1660 if (dmi_read(target
, &abstractcs
, DM_ABSTRACTCS
) != ERROR_OK
)
1662 info
->datacount
= get_field(abstractcs
, DM_ABSTRACTCS_DATACOUNT
);
1663 info
->progbufsize
= get_field(abstractcs
, DM_ABSTRACTCS_PROGBUFSIZE
);
1665 LOG_INFO("datacount=%d progbufsize=%d", info
->datacount
, info
->progbufsize
);
1668 r
->impebreak
= get_field(dmstatus
, DM_DMSTATUS_IMPEBREAK
);
1670 if (!has_sufficient_progbuf(target
, 2)) {
1671 LOG_WARNING("We won't be able to execute fence instructions on this "
1672 "target. Memory may not always appear consistent. "
1673 "(progbufsize=%d, impebreak=%d)", info
->progbufsize
,
1677 if (info
->progbufsize
< 4 && riscv_enable_virtual
) {
1678 LOG_ERROR("set_enable_virtual is not available on this target. It "
1679 "requires a program buffer size of at least 4. (progbufsize=%d) "
1680 "Use `riscv set_enable_virtual off` to continue."
1681 , info
->progbufsize
);
1684 /* Before doing anything else we must first enumerate the harts. */
1685 if (dm
->hart_count
< 0) {
1686 for (int i
= 0; i
< MIN(RISCV_MAX_HARTS
, 1 << info
->hartsellen
); ++i
) {
1687 r
->current_hartid
= i
;
1688 if (riscv013_select_current_hart(target
) != ERROR_OK
)
1692 if (dmstatus_read(target
, &s
, true) != ERROR_OK
)
1694 if (get_field(s
, DM_DMSTATUS_ANYNONEXISTENT
))
1696 dm
->hart_count
= i
+ 1;
1698 if (get_field(s
, DM_DMSTATUS_ANYHAVERESET
))
1699 dmi_write(target
, DM_DMCONTROL
,
1700 set_hartsel(DM_DMCONTROL_DMACTIVE
| DM_DMCONTROL_ACKHAVERESET
, i
));
1703 LOG_DEBUG("Detected %d harts.", dm
->hart_count
);
1706 r
->current_hartid
= target
->coreid
;
1708 if (dm
->hart_count
== 0) {
1709 LOG_ERROR("No harts found!");
1713 /* Don't call any riscv_* functions until after we've counted the number of
1714 * cores and initialized registers. */
1716 if (riscv013_select_current_hart(target
) != ERROR_OK
)
1719 bool halted
= riscv_is_halted(target
);
1721 if (riscv013_halt_go(target
) != ERROR_OK
) {
1722 LOG_ERROR("Fatal: Hart %d failed to halt during examine()", r
->current_hartid
);
1727 /* Without knowing anything else we can at least mess with the
1728 * program buffer. */
1729 r
->debug_buffer_size
= info
->progbufsize
;
1731 int result
= register_read_abstract(target
, NULL
, GDB_REGNO_S0
, 64);
1732 if (result
== ERROR_OK
)
1737 if (register_read(target
, &r
->misa
, GDB_REGNO_MISA
)) {
1738 LOG_ERROR("Fatal: Failed to read MISA from hart %d.", r
->current_hartid
);
1742 if (riscv_supports_extension(target
, 'V')) {
1743 if (discover_vlenb(target
) != ERROR_OK
)
1747 /* Now init registers based on what we discovered. */
1748 if (riscv_init_registers(target
) != ERROR_OK
)
1751 /* Display this as early as possible to help people who are using
1752 * really slow simulators. */
1753 LOG_DEBUG(" hart %d: XLEN=%d, misa=0x%" PRIx64
, r
->current_hartid
, r
->xlen
,
1757 riscv013_step_or_resume_current_hart(target
, false, false);
1759 target_set_examined(target
);
1762 bool haltgroup_supported
;
1763 if (set_haltgroup(target
, &haltgroup_supported
) != ERROR_OK
)
1765 if (haltgroup_supported
)
1766 LOG_INFO("Core %d made part of halt group %d.", target
->coreid
,
1769 LOG_INFO("Core %d could not be made part of halt group %d.",
1770 target
->coreid
, target
->smp
);
1773 /* Some regression suites rely on seeing 'Examined RISC-V core' to know
1774 * when they can connect with gdb/telnet.
1775 * We will need to update those suites if we want to change that text. */
1776 LOG_INFO("Examined RISC-V core; found %d harts",
1777 riscv_count_harts(target
));
1778 LOG_INFO(" hart %d: XLEN=%d, misa=0x%" PRIx64
, r
->current_hartid
, r
->xlen
,
1783 static int riscv013_authdata_read(struct target
*target
, uint32_t *value
, unsigned int index
)
1786 LOG_ERROR("Spec 0.13 only has a single authdata register.");
1790 if (wait_for_authbusy(target
, NULL
) != ERROR_OK
)
1793 return dmi_read(target
, value
, DM_AUTHDATA
);
1796 static int riscv013_authdata_write(struct target
*target
, uint32_t value
, unsigned int index
)
1799 LOG_ERROR("Spec 0.13 only has a single authdata register.");
1803 uint32_t before
, after
;
1804 if (wait_for_authbusy(target
, &before
) != ERROR_OK
)
1807 dmi_write(target
, DM_AUTHDATA
, value
);
1809 if (wait_for_authbusy(target
, &after
) != ERROR_OK
)
1812 if (!get_field(before
, DM_DMSTATUS_AUTHENTICATED
) &&
1813 get_field(after
, DM_DMSTATUS_AUTHENTICATED
)) {
1814 LOG_INFO("authdata_write resulted in successful authentication");
1815 int result
= ERROR_OK
;
1816 dm013_info_t
*dm
= get_dm(target
);
1819 target_list_t
*entry
;
1820 list_for_each_entry(entry
, &dm
->target_list
, list
) {
1821 if (examine(entry
->target
) != ERROR_OK
)
1822 result
= ERROR_FAIL
;
1830 static int riscv013_hart_count(struct target
*target
)
1832 dm013_info_t
*dm
= get_dm(target
);
1834 return dm
->hart_count
;
1837 /* Try to find out the widest memory access size depending on the selected memory access methods. */
1838 static unsigned riscv013_data_bits(struct target
*target
)
1840 RISCV013_INFO(info
);
1843 for (unsigned int i
= 0; i
< RISCV_NUM_MEM_ACCESS_METHODS
; i
++) {
1844 int method
= r
->mem_access_methods
[i
];
1846 if (method
== RISCV_MEM_ACCESS_PROGBUF
) {
1847 if (has_sufficient_progbuf(target
, 3))
1848 return riscv_xlen(target
);
1849 } else if (method
== RISCV_MEM_ACCESS_SYSBUS
) {
1850 if (get_field(info
->sbcs
, DM_SBCS_SBACCESS128
))
1852 if (get_field(info
->sbcs
, DM_SBCS_SBACCESS64
))
1854 if (get_field(info
->sbcs
, DM_SBCS_SBACCESS32
))
1856 if (get_field(info
->sbcs
, DM_SBCS_SBACCESS16
))
1858 if (get_field(info
->sbcs
, DM_SBCS_SBACCESS8
))
1860 } else if (method
== RISCV_MEM_ACCESS_ABSTRACT
) {
1861 /* TODO: Once there is a spec for discovering abstract commands, we can
1862 * take those into account as well. For now we assume abstract commands
1863 * support XLEN-wide accesses. */
1864 return riscv_xlen(target
);
1865 } else if (method
== RISCV_MEM_ACCESS_UNSPECIFIED
)
1866 /* No further mem access method to try. */
1869 LOG_ERROR("Unable to determine supported data bits on this target. Assuming 32 bits.");
1873 COMMAND_HELPER(riscv013_print_info
, struct target
*target
)
1875 RISCV013_INFO(info
);
1877 /* Abstract description. */
1878 riscv_print_info_line(CMD
, "target", "memory.read_while_running8", get_field(info
->sbcs
, DM_SBCS_SBACCESS8
));
1879 riscv_print_info_line(CMD
, "target", "memory.write_while_running8", get_field(info
->sbcs
, DM_SBCS_SBACCESS8
));
1880 riscv_print_info_line(CMD
, "target", "memory.read_while_running16", get_field(info
->sbcs
, DM_SBCS_SBACCESS16
));
1881 riscv_print_info_line(CMD
, "target", "memory.write_while_running16", get_field(info
->sbcs
, DM_SBCS_SBACCESS16
));
1882 riscv_print_info_line(CMD
, "target", "memory.read_while_running32", get_field(info
->sbcs
, DM_SBCS_SBACCESS32
));
1883 riscv_print_info_line(CMD
, "target", "memory.write_while_running32", get_field(info
->sbcs
, DM_SBCS_SBACCESS32
));
1884 riscv_print_info_line(CMD
, "target", "memory.read_while_running64", get_field(info
->sbcs
, DM_SBCS_SBACCESS64
));
1885 riscv_print_info_line(CMD
, "target", "memory.write_while_running64", get_field(info
->sbcs
, DM_SBCS_SBACCESS64
));
1886 riscv_print_info_line(CMD
, "target", "memory.read_while_running128", get_field(info
->sbcs
, DM_SBCS_SBACCESS128
));
1887 riscv_print_info_line(CMD
, "target", "memory.write_while_running128", get_field(info
->sbcs
, DM_SBCS_SBACCESS128
));
1889 /* Lower level description. */
1890 riscv_print_info_line(CMD
, "dm", "abits", info
->abits
);
1891 riscv_print_info_line(CMD
, "dm", "progbufsize", info
->progbufsize
);
1892 riscv_print_info_line(CMD
, "dm", "sbversion", get_field(info
->sbcs
, DM_SBCS_SBVERSION
));
1893 riscv_print_info_line(CMD
, "dm", "sbasize", get_field(info
->sbcs
, DM_SBCS_SBASIZE
));
1894 riscv_print_info_line(CMD
, "dm", "sbaccess128", get_field(info
->sbcs
, DM_SBCS_SBACCESS128
));
1895 riscv_print_info_line(CMD
, "dm", "sbaccess64", get_field(info
->sbcs
, DM_SBCS_SBACCESS64
));
1896 riscv_print_info_line(CMD
, "dm", "sbaccess32", get_field(info
->sbcs
, DM_SBCS_SBACCESS32
));
1897 riscv_print_info_line(CMD
, "dm", "sbaccess16", get_field(info
->sbcs
, DM_SBCS_SBACCESS16
));
1898 riscv_print_info_line(CMD
, "dm", "sbaccess8", get_field(info
->sbcs
, DM_SBCS_SBACCESS8
));
1901 if (dmstatus_read(target
, &dmstatus
, false) == ERROR_OK
)
1902 riscv_print_info_line(CMD
, "dm", "authenticated", get_field(dmstatus
, DM_DMSTATUS_AUTHENTICATED
));
1907 static int prep_for_vector_access(struct target
*target
, uint64_t *vtype
,
1908 uint64_t *vl
, unsigned *debug_vl
)
1911 /* TODO: this continuous save/restore is terrible for performance. */
1912 /* Write vtype and vl. */
1913 unsigned encoded_vsew
;
1914 switch (riscv_xlen(target
)) {
1922 LOG_ERROR("Unsupported xlen: %d", riscv_xlen(target
));
1926 /* Save vtype and vl. */
1927 if (register_read(target
, vtype
, GDB_REGNO_VTYPE
) != ERROR_OK
)
1929 if (register_read(target
, vl
, GDB_REGNO_VL
) != ERROR_OK
)
1932 if (register_write_direct(target
, GDB_REGNO_VTYPE
, encoded_vsew
<< 3) != ERROR_OK
)
1934 *debug_vl
= DIV_ROUND_UP(r
->vlenb
* 8, riscv_xlen(target
));
1935 if (register_write_direct(target
, GDB_REGNO_VL
, *debug_vl
) != ERROR_OK
)
1941 static int cleanup_after_vector_access(struct target
*target
, uint64_t vtype
,
1944 /* Restore vtype and vl. */
1945 if (register_write_direct(target
, GDB_REGNO_VTYPE
, vtype
) != ERROR_OK
)
1947 if (register_write_direct(target
, GDB_REGNO_VL
, vl
) != ERROR_OK
)
1952 static int riscv013_get_register_buf(struct target
*target
,
1953 uint8_t *value
, int regno
)
1955 assert(regno
>= GDB_REGNO_V0
&& regno
<= GDB_REGNO_V31
);
1957 if (riscv_select_current_hart(target
) != ERROR_OK
)
1961 if (register_read(target
, &s0
, GDB_REGNO_S0
) != ERROR_OK
)
1965 if (prep_for_register_access(target
, &mstatus
, regno
) != ERROR_OK
)
1970 if (prep_for_vector_access(target
, &vtype
, &vl
, &debug_vl
) != ERROR_OK
)
1973 unsigned vnum
= regno
- GDB_REGNO_V0
;
1974 unsigned xlen
= riscv_xlen(target
);
1976 struct riscv_program program
;
1977 riscv_program_init(&program
, target
);
1978 riscv_program_insert(&program
, vmv_x_s(S0
, vnum
));
1979 riscv_program_insert(&program
, vslide1down_vx(vnum
, vnum
, S0
, true));
1981 int result
= ERROR_OK
;
1982 for (unsigned i
= 0; i
< debug_vl
; i
++) {
1983 /* Executing the program might result in an exception if there is some
1984 * issue with the vector implementation/instructions we're using. If that
1985 * happens, attempt to restore as usual. We may have clobbered the
1986 * vector register we tried to read already.
1987 * For other failures, we just return error because things are probably
1988 * so messed up that attempting to restore isn't going to help. */
1989 result
= riscv_program_exec(&program
, target
);
1990 if (result
== ERROR_OK
) {
1992 if (register_read_direct(target
, &v
, GDB_REGNO_S0
) != ERROR_OK
)
1994 buf_set_u64(value
, xlen
* i
, xlen
, v
);
2000 if (cleanup_after_vector_access(target
, vtype
, vl
) != ERROR_OK
)
2003 if (cleanup_after_register_access(target
, mstatus
, regno
) != ERROR_OK
)
2005 if (register_write_direct(target
, GDB_REGNO_S0
, s0
) != ERROR_OK
)
2011 static int riscv013_set_register_buf(struct target
*target
,
2012 int regno
, const uint8_t *value
)
2014 assert(regno
>= GDB_REGNO_V0
&& regno
<= GDB_REGNO_V31
);
2016 if (riscv_select_current_hart(target
) != ERROR_OK
)
2020 if (register_read(target
, &s0
, GDB_REGNO_S0
) != ERROR_OK
)
2024 if (prep_for_register_access(target
, &mstatus
, regno
) != ERROR_OK
)
2029 if (prep_for_vector_access(target
, &vtype
, &vl
, &debug_vl
) != ERROR_OK
)
2032 unsigned vnum
= regno
- GDB_REGNO_V0
;
2033 unsigned xlen
= riscv_xlen(target
);
2035 struct riscv_program program
;
2036 riscv_program_init(&program
, target
);
2037 riscv_program_insert(&program
, vslide1down_vx(vnum
, vnum
, S0
, true));
2038 int result
= ERROR_OK
;
2039 for (unsigned i
= 0; i
< debug_vl
; i
++) {
2040 if (register_write_direct(target
, GDB_REGNO_S0
,
2041 buf_get_u64(value
, xlen
* i
, xlen
)) != ERROR_OK
)
2043 result
= riscv_program_exec(&program
, target
);
2044 if (result
!= ERROR_OK
)
2048 if (cleanup_after_vector_access(target
, vtype
, vl
) != ERROR_OK
)
2051 if (cleanup_after_register_access(target
, mstatus
, regno
) != ERROR_OK
)
2053 if (register_write_direct(target
, GDB_REGNO_S0
, s0
) != ERROR_OK
)
2059 static uint32_t sb_sbaccess(unsigned int size_bytes
)
2061 switch (size_bytes
) {
2063 return set_field(0, DM_SBCS_SBACCESS
, 0);
2065 return set_field(0, DM_SBCS_SBACCESS
, 1);
2067 return set_field(0, DM_SBCS_SBACCESS
, 2);
2069 return set_field(0, DM_SBCS_SBACCESS
, 3);
2071 return set_field(0, DM_SBCS_SBACCESS
, 4);
2077 static int sb_write_address(struct target
*target
, target_addr_t address
,
2078 bool ensure_success
)
2080 RISCV013_INFO(info
);
2081 unsigned int sbasize
= get_field(info
->sbcs
, DM_SBCS_SBASIZE
);
2082 /* There currently is no support for >64-bit addresses in OpenOCD. */
2084 dmi_op(target
, NULL
, NULL
, DMI_OP_WRITE
, DM_SBADDRESS3
, 0, false, false);
2086 dmi_op(target
, NULL
, NULL
, DMI_OP_WRITE
, DM_SBADDRESS2
, 0, false, false);
2088 dmi_op(target
, NULL
, NULL
, DMI_OP_WRITE
, DM_SBADDRESS1
, address
>> 32, false, false);
2089 return dmi_op(target
, NULL
, NULL
, DMI_OP_WRITE
, DM_SBADDRESS0
, address
,
2090 false, ensure_success
);
2093 static int batch_run(const struct target
*target
, struct riscv_batch
*batch
)
2095 RISCV013_INFO(info
);
2097 if (r
->reset_delays_wait
>= 0) {
2098 r
->reset_delays_wait
-= batch
->used_scans
;
2099 if (r
->reset_delays_wait
<= 0) {
2100 batch
->idle_count
= 0;
2101 info
->dmi_busy_delay
= 0;
2102 info
->ac_busy_delay
= 0;
2105 return riscv_batch_run(batch
);
2108 static int sba_supports_access(struct target
*target
, unsigned int size_bytes
)
2110 RISCV013_INFO(info
);
2111 switch (size_bytes
) {
2113 return get_field(info
->sbcs
, DM_SBCS_SBACCESS8
);
2115 return get_field(info
->sbcs
, DM_SBCS_SBACCESS16
);
2117 return get_field(info
->sbcs
, DM_SBCS_SBACCESS32
);
2119 return get_field(info
->sbcs
, DM_SBCS_SBACCESS64
);
2121 return get_field(info
->sbcs
, DM_SBCS_SBACCESS128
);
2127 static int sample_memory_bus_v1(struct target
*target
,
2128 struct riscv_sample_buf
*buf
,
2129 const riscv_sample_config_t
*config
,
2132 RISCV013_INFO(info
);
2133 unsigned int sbasize
= get_field(info
->sbcs
, DM_SBCS_SBASIZE
);
2135 LOG_ERROR("Memory sampling is only implemented for sbasize <= 64.");
2136 return ERROR_NOT_IMPLEMENTED
;
2139 if (get_field(info
->sbcs
, DM_SBCS_SBVERSION
) != 1) {
2140 LOG_ERROR("Memory sampling is only implemented for SBA version 1.");
2141 return ERROR_NOT_IMPLEMENTED
;
2145 uint32_t sbcs_valid
= false;
2147 uint32_t sbaddress0
= 0;
2148 bool sbaddress0_valid
= false;
2149 uint32_t sbaddress1
= 0;
2150 bool sbaddress1_valid
= false;
2152 /* How often to read each value in a batch. */
2153 const unsigned int repeat
= 5;
2155 unsigned int enabled_count
= 0;
2156 for (unsigned int i
= 0; i
< ARRAY_SIZE(config
->bucket
); i
++) {
2157 if (config
->bucket
[i
].enabled
)
2161 while (timeval_ms() < until_ms
) {
2163 * batch_run() adds to the batch, so we can't simply reuse the same
2164 * batch over and over. So we create a new one every time through the
2167 struct riscv_batch
*batch
= riscv_batch_alloc(
2168 target
, 1 + enabled_count
* 5 * repeat
,
2169 info
->dmi_busy_delay
+ info
->bus_master_read_delay
);
2173 unsigned int result_bytes
= 0;
2174 for (unsigned int n
= 0; n
< repeat
; n
++) {
2175 for (unsigned int i
= 0; i
< ARRAY_SIZE(config
->bucket
); i
++) {
2176 if (config
->bucket
[i
].enabled
) {
2177 if (!sba_supports_access(target
, config
->bucket
[i
].size_bytes
)) {
2178 LOG_ERROR("Hardware does not support SBA access for %d-byte memory sampling.",
2179 config
->bucket
[i
].size_bytes
);
2180 return ERROR_NOT_IMPLEMENTED
;
2183 uint32_t sbcs_write
= DM_SBCS_SBREADONADDR
;
2184 if (enabled_count
== 1)
2185 sbcs_write
|= DM_SBCS_SBREADONDATA
;
2186 sbcs_write
|= sb_sbaccess(config
->bucket
[i
].size_bytes
);
2187 if (!sbcs_valid
|| sbcs_write
!= sbcs
) {
2188 riscv_batch_add_dmi_write(batch
, DM_SBCS
, sbcs_write
);
2194 (!sbaddress1_valid
||
2195 sbaddress1
!= config
->bucket
[i
].address
>> 32)) {
2196 sbaddress1
= config
->bucket
[i
].address
>> 32;
2197 riscv_batch_add_dmi_write(batch
, DM_SBADDRESS1
, sbaddress1
);
2198 sbaddress1_valid
= true;
2200 if (!sbaddress0_valid
||
2201 sbaddress0
!= (config
->bucket
[i
].address
& 0xffffffff)) {
2202 sbaddress0
= config
->bucket
[i
].address
;
2203 riscv_batch_add_dmi_write(batch
, DM_SBADDRESS0
, sbaddress0
);
2204 sbaddress0_valid
= true;
2206 if (config
->bucket
[i
].size_bytes
> 4)
2207 riscv_batch_add_dmi_read(batch
, DM_SBDATA1
);
2208 riscv_batch_add_dmi_read(batch
, DM_SBDATA0
);
2209 result_bytes
+= 1 + config
->bucket
[i
].size_bytes
;
2214 if (buf
->used
+ result_bytes
>= buf
->size
) {
2215 riscv_batch_free(batch
);
2219 size_t sbcs_key
= riscv_batch_add_dmi_read(batch
, DM_SBCS
);
2221 int result
= batch_run(target
, batch
);
2222 if (result
!= ERROR_OK
)
2225 uint32_t sbcs_read
= riscv_batch_get_dmi_read_data(batch
, sbcs_key
);
2226 if (get_field(sbcs_read
, DM_SBCS_SBBUSYERROR
)) {
2227 /* Discard this batch (too much hassle to try to recover partial
2228 * data) and try again with a larger delay. */
2229 info
->bus_master_read_delay
+= info
->bus_master_read_delay
/ 10 + 1;
2230 dmi_write(target
, DM_SBCS
, sbcs_read
| DM_SBCS_SBBUSYERROR
| DM_SBCS_SBERROR
);
2231 riscv_batch_free(batch
);
2234 if (get_field(sbcs_read
, DM_SBCS_SBERROR
)) {
2235 /* The memory we're sampling was unreadable, somehow. Give up. */
2236 dmi_write(target
, DM_SBCS
, DM_SBCS_SBBUSYERROR
| DM_SBCS_SBERROR
);
2237 riscv_batch_free(batch
);
2241 unsigned int read
= 0;
2242 for (unsigned int n
= 0; n
< repeat
; n
++) {
2243 for (unsigned int i
= 0; i
< ARRAY_SIZE(config
->bucket
); i
++) {
2244 if (config
->bucket
[i
].enabled
) {
2245 assert(i
< RISCV_SAMPLE_BUF_TIMESTAMP_BEFORE
);
2247 if (config
->bucket
[i
].size_bytes
> 4)
2248 value
= ((uint64_t)riscv_batch_get_dmi_read_data(batch
, read
++)) << 32;
2249 value
|= riscv_batch_get_dmi_read_data(batch
, read
++);
2251 buf
->buf
[buf
->used
] = i
;
2252 buf_set_u64(buf
->buf
+ buf
->used
+ 1, 0, config
->bucket
[i
].size_bytes
* 8, value
);
2253 buf
->used
+= 1 + config
->bucket
[i
].size_bytes
;
2258 riscv_batch_free(batch
);
2264 static int sample_memory(struct target
*target
,
2265 struct riscv_sample_buf
*buf
,
2266 riscv_sample_config_t
*config
,
2269 if (!config
->enabled
)
2272 return sample_memory_bus_v1(target
, buf
, config
, until_ms
);
2275 static int init_target(struct command_context
*cmd_ctx
,
2276 struct target
*target
)
2279 RISCV_INFO(generic_info
);
2281 generic_info
->get_register
= &riscv013_get_register
;
2282 generic_info
->set_register
= &riscv013_set_register
;
2283 generic_info
->get_register_buf
= &riscv013_get_register_buf
;
2284 generic_info
->set_register_buf
= &riscv013_set_register_buf
;
2285 generic_info
->select_current_hart
= &riscv013_select_current_hart
;
2286 generic_info
->is_halted
= &riscv013_is_halted
;
2287 generic_info
->resume_go
= &riscv013_resume_go
;
2288 generic_info
->step_current_hart
= &riscv013_step_current_hart
;
2289 generic_info
->on_halt
= &riscv013_on_halt
;
2290 generic_info
->resume_prep
= &riscv013_resume_prep
;
2291 generic_info
->halt_prep
= &riscv013_halt_prep
;
2292 generic_info
->halt_go
= &riscv013_halt_go
;
2293 generic_info
->on_step
= &riscv013_on_step
;
2294 generic_info
->halt_reason
= &riscv013_halt_reason
;
2295 generic_info
->read_debug_buffer
= &riscv013_read_debug_buffer
;
2296 generic_info
->write_debug_buffer
= &riscv013_write_debug_buffer
;
2297 generic_info
->execute_debug_buffer
= &riscv013_execute_debug_buffer
;
2298 generic_info
->fill_dmi_write_u64
= &riscv013_fill_dmi_write_u64
;
2299 generic_info
->fill_dmi_read_u64
= &riscv013_fill_dmi_read_u64
;
2300 generic_info
->fill_dmi_nop_u64
= &riscv013_fill_dmi_nop_u64
;
2301 generic_info
->dmi_write_u64_bits
= &riscv013_dmi_write_u64_bits
;
2302 generic_info
->authdata_read
= &riscv013_authdata_read
;
2303 generic_info
->authdata_write
= &riscv013_authdata_write
;
2304 generic_info
->dmi_read
= &dmi_read
;
2305 generic_info
->dmi_write
= &dmi_write
;
2306 generic_info
->read_memory
= read_memory
;
2307 generic_info
->test_sba_config_reg
= &riscv013_test_sba_config_reg
;
2308 generic_info
->hart_count
= &riscv013_hart_count
;
2309 generic_info
->data_bits
= &riscv013_data_bits
;
2310 generic_info
->print_info
= &riscv013_print_info
;
2311 if (!generic_info
->version_specific
) {
2312 generic_info
->version_specific
= calloc(1, sizeof(riscv013_info_t
));
2313 if (!generic_info
->version_specific
)
2316 generic_info
->sample_memory
= sample_memory
;
2317 riscv013_info_t
*info
= get_info(target
);
2319 info
->progbufsize
= -1;
2321 info
->dmi_busy_delay
= 0;
2322 info
->bus_master_read_delay
= 0;
2323 info
->bus_master_write_delay
= 0;
2324 info
->ac_busy_delay
= 0;
2326 /* Assume all these abstract commands are supported until we learn
2328 * TODO: The spec allows eg. one CSR to be able to be accessed abstractly
2329 * while another one isn't. We don't track that this closely here, but in
2330 * the future we probably should. */
2331 info
->abstract_read_csr_supported
= true;
2332 info
->abstract_write_csr_supported
= true;
2333 info
->abstract_read_fpr_supported
= true;
2334 info
->abstract_write_fpr_supported
= true;
2336 info
->has_aampostincrement
= YNM_MAYBE
;
2341 static int assert_reset(struct target
*target
)
2347 uint32_t control_base
= set_field(0, DM_DMCONTROL_DMACTIVE
, 1);
2349 if (target_has_event_action(target
, TARGET_EVENT_RESET_ASSERT
)) {
2350 /* Run the user-supplied script if there is one. */
2351 target_handle_event(target
, TARGET_EVENT_RESET_ASSERT
);
2352 } else if (target
->rtos
) {
2353 /* There's only one target, and OpenOCD thinks each hart is a thread.
2354 * We must reset them all. */
2356 /* TODO: Try to use hasel in dmcontrol */
2358 /* Set haltreq for each hart. */
2359 uint32_t control
= control_base
;
2361 control
= set_hartsel(control_base
, target
->coreid
);
2362 control
= set_field(control
, DM_DMCONTROL_HALTREQ
,
2363 target
->reset_halt
? 1 : 0);
2364 dmi_write(target
, DM_DMCONTROL
, control
);
2366 /* Assert ndmreset */
2367 control
= set_field(control
, DM_DMCONTROL_NDMRESET
, 1);
2368 dmi_write(target
, DM_DMCONTROL
, control
);
2371 /* Reset just this hart. */
2372 uint32_t control
= set_hartsel(control_base
, r
->current_hartid
);
2373 control
= set_field(control
, DM_DMCONTROL_HALTREQ
,
2374 target
->reset_halt
? 1 : 0);
2375 control
= set_field(control
, DM_DMCONTROL_NDMRESET
, 1);
2376 dmi_write(target
, DM_DMCONTROL
, control
);
2379 target
->state
= TARGET_RESET
;
2381 dm013_info_t
*dm
= get_dm(target
);
2385 /* The DM might have gotten reset if OpenOCD called us in some reset that
2386 * involves SRST being toggled. So clear our cache which may be out of
2388 memset(dm
->progbuf_cache
, 0, sizeof(dm
->progbuf_cache
));
2393 static int deassert_reset(struct target
*target
)
2396 RISCV013_INFO(info
);
2399 /* Clear the reset, but make sure haltreq is still set */
2400 uint32_t control
= 0, control_haltreq
;
2401 control
= set_field(control
, DM_DMCONTROL_DMACTIVE
, 1);
2402 control_haltreq
= set_field(control
, DM_DMCONTROL_HALTREQ
, target
->reset_halt
? 1 : 0);
2403 dmi_write(target
, DM_DMCONTROL
,
2404 set_hartsel(control_haltreq
, r
->current_hartid
));
2407 int dmi_busy_delay
= info
->dmi_busy_delay
;
2408 time_t start
= time(NULL
);
2410 for (int i
= 0; i
< riscv_count_harts(target
); ++i
) {
2413 if (index
!= target
->coreid
)
2415 dmi_write(target
, DM_DMCONTROL
,
2416 set_hartsel(control_haltreq
, index
));
2418 index
= r
->current_hartid
;
2421 LOG_DEBUG("Waiting for hart %d to come out of reset.", index
);
2423 int result
= dmstatus_read_timeout(target
, &dmstatus
, true,
2424 riscv_reset_timeout_sec
);
2425 if (result
== ERROR_TIMEOUT_REACHED
)
2426 LOG_ERROR("Hart %d didn't complete a DMI read coming out of "
2427 "reset in %ds; Increase the timeout with riscv "
2428 "set_reset_timeout_sec.",
2429 index
, riscv_reset_timeout_sec
);
2430 if (result
!= ERROR_OK
)
2432 /* Certain debug modules, like the one in GD32VF103
2433 * MCUs, violate the specification's requirement that
2434 * each hart is in "exactly one of four states" and,
2435 * during reset, report harts as both unavailable and
2436 * halted/running. To work around this, we check for
2437 * the absence of the unavailable state rather than
2438 * the presence of any other state. */
2439 if (!get_field(dmstatus
, DM_DMSTATUS_ALLUNAVAIL
))
2441 if (time(NULL
) - start
> riscv_reset_timeout_sec
) {
2442 LOG_ERROR("Hart %d didn't leave reset in %ds; "
2444 "Increase the timeout with riscv set_reset_timeout_sec.",
2445 index
, riscv_reset_timeout_sec
, dmstatus
);
2449 target
->state
= TARGET_HALTED
;
2451 if (get_field(dmstatus
, DM_DMSTATUS_ALLHAVERESET
)) {
2452 /* Ack reset and clear DM_DMCONTROL_HALTREQ if previously set */
2453 dmi_write(target
, DM_DMCONTROL
,
2454 set_hartsel(control
, index
) |
2455 DM_DMCONTROL_ACKHAVERESET
);
2461 info
->dmi_busy_delay
= dmi_busy_delay
;
2465 static int execute_fence(struct target
*target
)
2467 /* FIXME: For non-coherent systems we need to flush the caches right
2468 * here, but there's no ISA-defined way of doing that. */
2470 struct riscv_program program
;
2471 riscv_program_init(&program
, target
);
2472 riscv_program_fence_i(&program
);
2473 riscv_program_fence(&program
);
2474 int result
= riscv_program_exec(&program
, target
);
2475 if (result
!= ERROR_OK
)
2476 LOG_DEBUG("Unable to execute pre-fence");
2482 static void log_memory_access(target_addr_t address
, uint64_t value
,
2483 unsigned size_bytes
, bool read
)
2485 if (debug_level
< LOG_LVL_DEBUG
)
2489 sprintf(fmt
, "M[0x%" TARGET_PRIxADDR
"] %ss 0x%%0%d" PRIx64
,
2490 address
, read
? "read" : "write", size_bytes
* 2);
2491 switch (size_bytes
) {
2499 value
&= 0xffffffffUL
;
2506 LOG_DEBUG(fmt
, value
);
2509 /* Read the relevant sbdata regs depending on size, and put the results into
2511 static int read_memory_bus_word(struct target
*target
, target_addr_t address
,
2512 uint32_t size
, uint8_t *buffer
)
2516 static int sbdata
[4] = { DM_SBDATA0
, DM_SBDATA1
, DM_SBDATA2
, DM_SBDATA3
};
2518 for (int i
= (size
- 1) / 4; i
>= 0; i
--) {
2519 result
= dmi_op(target
, &value
, NULL
, DMI_OP_READ
, sbdata
[i
], 0, false, true);
2520 if (result
!= ERROR_OK
)
2522 buf_set_u32(buffer
+ i
* 4, 0, 8 * MIN(size
, 4), value
);
2523 log_memory_access(address
+ i
* 4, value
, MIN(size
, 4), true);
2528 static target_addr_t
sb_read_address(struct target
*target
)
2530 RISCV013_INFO(info
);
2531 unsigned sbasize
= get_field(info
->sbcs
, DM_SBCS_SBASIZE
);
2532 target_addr_t address
= 0;
2535 dmi_read(target
, &v
, DM_SBADDRESS1
);
2539 dmi_read(target
, &v
, DM_SBADDRESS0
);
2544 static int read_sbcs_nonbusy(struct target
*target
, uint32_t *sbcs
)
2546 time_t start
= time(NULL
);
2548 if (dmi_read(target
, sbcs
, DM_SBCS
) != ERROR_OK
)
2550 if (!get_field(*sbcs
, DM_SBCS_SBBUSY
))
2552 if (time(NULL
) - start
> riscv_command_timeout_sec
) {
2553 LOG_ERROR("Timed out after %ds waiting for sbbusy to go low (sbcs=0x%x). "
2554 "Increase the timeout with riscv set_command_timeout_sec.",
2555 riscv_command_timeout_sec
, *sbcs
);
2561 static int modify_privilege(struct target
*target
, uint64_t *mstatus
, uint64_t *mstatus_old
)
2563 if (riscv_enable_virtual
&& has_sufficient_progbuf(target
, 5)) {
2566 if (register_read(target
, &dcsr
, GDB_REGNO_DCSR
) != ERROR_OK
)
2569 /* Read and save MSTATUS */
2570 if (register_read(target
, mstatus
, GDB_REGNO_MSTATUS
) != ERROR_OK
)
2572 *mstatus_old
= *mstatus
;
2574 /* If we come from m-mode with mprv set, we want to keep mpp */
2575 if (get_field(dcsr
, DCSR_PRV
) < 3) {
2577 *mstatus
= set_field(*mstatus
, MSTATUS_MPP
, get_field(dcsr
, DCSR_PRV
));
2580 *mstatus
= set_field(*mstatus
, MSTATUS_MPRV
, 1);
2583 if (*mstatus
!= *mstatus_old
)
2584 if (register_write_direct(target
, GDB_REGNO_MSTATUS
, *mstatus
) != ERROR_OK
)
2592 static int read_memory_bus_v0(struct target
*target
, target_addr_t address
,
2593 uint32_t size
, uint32_t count
, uint8_t *buffer
, uint32_t increment
)
2595 if (size
!= increment
) {
2596 LOG_ERROR("sba v0 reads only support size==increment");
2597 return ERROR_NOT_IMPLEMENTED
;
2600 LOG_DEBUG("System Bus Access: size: %d\tcount:%d\tstart address: 0x%08"
2601 TARGET_PRIxADDR
, size
, count
, address
);
2602 uint8_t *t_buffer
= buffer
;
2603 riscv_addr_t cur_addr
= address
;
2604 riscv_addr_t fin_addr
= address
+ (count
* size
);
2605 uint32_t access
= 0;
2607 const int DM_SBCS_SBSINGLEREAD_OFFSET
= 20;
2608 const uint32_t DM_SBCS_SBSINGLEREAD
= (0x1U
<< DM_SBCS_SBSINGLEREAD_OFFSET
);
2610 const int DM_SBCS_SBAUTOREAD_OFFSET
= 15;
2611 const uint32_t DM_SBCS_SBAUTOREAD
= (0x1U
<< DM_SBCS_SBAUTOREAD_OFFSET
);
2613 /* ww favorise one off reading if there is an issue */
2615 for (uint32_t i
= 0; i
< count
; i
++) {
2616 if (dmi_read(target
, &access
, DM_SBCS
) != ERROR_OK
)
2618 dmi_write(target
, DM_SBADDRESS0
, cur_addr
);
2619 /* size/2 matching the bit access of the spec 0.13 */
2620 access
= set_field(access
, DM_SBCS_SBACCESS
, size
/2);
2621 access
= set_field(access
, DM_SBCS_SBSINGLEREAD
, 1);
2622 LOG_DEBUG("\r\nread_memory: sab: access: 0x%08x", access
);
2623 dmi_write(target
, DM_SBCS
, access
);
2626 if (dmi_read(target
, &value
, DM_SBDATA0
) != ERROR_OK
)
2628 LOG_DEBUG("\r\nread_memory: sab: value: 0x%08x", value
);
2629 buf_set_u32(t_buffer
, 0, 8 * size
, value
);
2636 /* has to be the same size if we want to read a block */
2637 LOG_DEBUG("reading block until final address 0x%" PRIx64
, fin_addr
);
2638 if (dmi_read(target
, &access
, DM_SBCS
) != ERROR_OK
)
2640 /* set current address */
2641 dmi_write(target
, DM_SBADDRESS0
, cur_addr
);
2642 /* 2) write sbaccess=2, sbsingleread,sbautoread,sbautoincrement
2643 * size/2 matching the bit access of the spec 0.13 */
2644 access
= set_field(access
, DM_SBCS_SBACCESS
, size
/2);
2645 access
= set_field(access
, DM_SBCS_SBAUTOREAD
, 1);
2646 access
= set_field(access
, DM_SBCS_SBSINGLEREAD
, 1);
2647 access
= set_field(access
, DM_SBCS_SBAUTOINCREMENT
, 1);
2648 LOG_DEBUG("\r\naccess: 0x%08x", access
);
2649 dmi_write(target
, DM_SBCS
, access
);
2651 while (cur_addr
< fin_addr
) {
2652 LOG_DEBUG("\r\nsab:autoincrement: \r\n size: %d\tcount:%d\taddress: 0x%08"
2653 PRIx64
, size
, count
, cur_addr
);
2656 if (dmi_read(target
, &value
, DM_SBDATA0
) != ERROR_OK
)
2658 buf_set_u32(t_buffer
, 0, 8 * size
, value
);
2662 /* if we are reaching last address, we must clear autoread */
2663 if (cur_addr
== fin_addr
&& count
!= 1) {
2664 dmi_write(target
, DM_SBCS
, 0);
2665 if (dmi_read(target
, &value
, DM_SBDATA0
) != ERROR_OK
)
2667 buf_set_u32(t_buffer
, 0, 8 * size
, value
);
2672 if (dmi_read(target
, &sbcs
, DM_SBCS
) != ERROR_OK
)
2679 * Read the requested memory using the system bus interface.
2681 static int read_memory_bus_v1(struct target
*target
, target_addr_t address
,
2682 uint32_t size
, uint32_t count
, uint8_t *buffer
, uint32_t increment
)
2684 if (increment
!= size
&& increment
!= 0) {
2685 LOG_ERROR("sba v1 reads only support increment of size or 0");
2686 return ERROR_NOT_IMPLEMENTED
;
2689 RISCV013_INFO(info
);
2690 target_addr_t next_address
= address
;
2691 target_addr_t end_address
= address
+ count
* size
;
2693 while (next_address
< end_address
) {
2694 uint32_t sbcs_write
= set_field(0, DM_SBCS_SBREADONADDR
, 1);
2695 sbcs_write
|= sb_sbaccess(size
);
2696 if (increment
== size
)
2697 sbcs_write
= set_field(sbcs_write
, DM_SBCS_SBAUTOINCREMENT
, 1);
2699 sbcs_write
= set_field(sbcs_write
, DM_SBCS_SBREADONDATA
, count
> 1);
2700 if (dmi_write(target
, DM_SBCS
, sbcs_write
) != ERROR_OK
)
2703 /* This address write will trigger the first read. */
2704 if (sb_write_address(target
, next_address
, true) != ERROR_OK
)
2707 if (info
->bus_master_read_delay
) {
2708 jtag_add_runtest(info
->bus_master_read_delay
, TAP_IDLE
);
2709 if (jtag_execute_queue() != ERROR_OK
) {
2710 LOG_ERROR("Failed to scan idle sequence");
2715 /* First value has been read, and is waiting for us to issue a DMI read
2718 static int sbdata
[4] = {DM_SBDATA0
, DM_SBDATA1
, DM_SBDATA2
, DM_SBDATA3
};
2720 target_addr_t next_read
= address
- 1;
2721 for (uint32_t i
= (next_address
- address
) / size
; i
< count
- 1; i
++) {
2722 for (int j
= (size
- 1) / 4; j
>= 0; j
--) {
2724 unsigned attempt
= 0;
2726 if (attempt
++ > 100) {
2727 LOG_ERROR("DMI keeps being busy in while reading memory just past " TARGET_ADDR_FMT
,
2732 dmi_status_t status
= dmi_scan(target
, NULL
, &value
,
2733 DMI_OP_READ
, sbdata
[j
], 0, false);
2734 if (status
== DMI_STATUS_BUSY
)
2735 increase_dmi_busy_delay(target
);
2736 else if (status
== DMI_STATUS_SUCCESS
)
2741 if (next_read
!= address
- 1) {
2742 buf_set_u32(buffer
+ next_read
- address
, 0, 8 * MIN(size
, 4), value
);
2743 log_memory_access(next_read
, value
, MIN(size
, 4), true);
2745 next_read
= address
+ i
* size
+ j
* 4;
2749 uint32_t sbcs_read
= 0;
2752 unsigned attempt
= 0;
2754 if (attempt
++ > 100) {
2755 LOG_ERROR("DMI keeps being busy in while reading memory just past " TARGET_ADDR_FMT
,
2759 dmi_status_t status
= dmi_scan(target
, NULL
, &value
, DMI_OP_NOP
, 0, 0, false);
2760 if (status
== DMI_STATUS_BUSY
)
2761 increase_dmi_busy_delay(target
);
2762 else if (status
== DMI_STATUS_SUCCESS
)
2767 buf_set_u32(buffer
+ next_read
- address
, 0, 8 * MIN(size
, 4), value
);
2768 log_memory_access(next_read
, value
, MIN(size
, 4), true);
2770 /* "Writes to sbcs while sbbusy is high result in undefined behavior.
2771 * A debugger must not write to sbcs until it reads sbbusy as 0." */
2772 if (read_sbcs_nonbusy(target
, &sbcs_read
) != ERROR_OK
)
2775 sbcs_write
= set_field(sbcs_write
, DM_SBCS_SBREADONDATA
, 0);
2776 if (dmi_write(target
, DM_SBCS
, sbcs_write
) != ERROR_OK
)
2780 /* Read the last word, after we disabled sbreadondata if necessary. */
2781 if (!get_field(sbcs_read
, DM_SBCS_SBERROR
) &&
2782 !get_field(sbcs_read
, DM_SBCS_SBBUSYERROR
)) {
2783 if (read_memory_bus_word(target
, address
+ (count
- 1) * size
, size
,
2784 buffer
+ (count
- 1) * size
) != ERROR_OK
)
2787 if (read_sbcs_nonbusy(target
, &sbcs_read
) != ERROR_OK
)
2791 if (get_field(sbcs_read
, DM_SBCS_SBBUSYERROR
)) {
2792 /* We read while the target was busy. Slow down and try again. */
2793 if (dmi_write(target
, DM_SBCS
, sbcs_read
| DM_SBCS_SBBUSYERROR
) != ERROR_OK
)
2795 next_address
= sb_read_address(target
);
2796 info
->bus_master_read_delay
+= info
->bus_master_read_delay
/ 10 + 1;
2800 unsigned error
= get_field(sbcs_read
, DM_SBCS_SBERROR
);
2802 next_address
= end_address
;
2804 /* Some error indicating the bus access failed, but not because of
2805 * something we did wrong. */
2806 if (dmi_write(target
, DM_SBCS
, DM_SBCS_SBERROR
) != ERROR_OK
)
2815 static void log_mem_access_result(struct target
*target
, bool success
, int method
, bool read
)
2821 /* Compose the message */
2822 snprintf(msg
, 60, "%s to %s memory via %s.",
2823 success
? "Succeeded" : "Failed",
2824 read
? "read" : "write",
2825 (method
== RISCV_MEM_ACCESS_PROGBUF
) ? "program buffer" :
2826 (method
== RISCV_MEM_ACCESS_SYSBUS
) ? "system bus" : "abstract access");
2828 /* Determine the log message severity. Show warnings only once. */
2830 if (method
== RISCV_MEM_ACCESS_PROGBUF
) {
2831 warn
= r
->mem_access_progbuf_warn
;
2832 r
->mem_access_progbuf_warn
= false;
2834 if (method
== RISCV_MEM_ACCESS_SYSBUS
) {
2835 warn
= r
->mem_access_sysbus_warn
;
2836 r
->mem_access_sysbus_warn
= false;
2838 if (method
== RISCV_MEM_ACCESS_ABSTRACT
) {
2839 warn
= r
->mem_access_abstract_warn
;
2840 r
->mem_access_abstract_warn
= false;
2845 LOG_WARNING("%s", msg
);
2847 LOG_DEBUG("%s", msg
);
2850 static bool mem_should_skip_progbuf(struct target
*target
, target_addr_t address
,
2851 uint32_t size
, bool read
, char **skip_reason
)
2853 assert(skip_reason
);
2855 if (!has_sufficient_progbuf(target
, 3)) {
2856 LOG_DEBUG("Skipping mem %s via progbuf - insufficient progbuf size.",
2857 read
? "read" : "write");
2858 *skip_reason
= "skipped (insufficient progbuf)";
2861 if (target
->state
!= TARGET_HALTED
) {
2862 LOG_DEBUG("Skipping mem %s via progbuf - target not halted.",
2863 read
? "read" : "write");
2864 *skip_reason
= "skipped (target not halted)";
2867 if (riscv_xlen(target
) < size
* 8) {
2868 LOG_DEBUG("Skipping mem %s via progbuf - XLEN (%d) is too short for %d-bit memory access.",
2869 read
? "read" : "write", riscv_xlen(target
), size
* 8);
2870 *skip_reason
= "skipped (XLEN too short)";
2874 LOG_DEBUG("Skipping mem %s via progbuf - unsupported size.",
2875 read
? "read" : "write");
2876 *skip_reason
= "skipped (unsupported size)";
2879 if ((sizeof(address
) * 8 > riscv_xlen(target
)) && (address
>> riscv_xlen(target
))) {
2880 LOG_DEBUG("Skipping mem %s via progbuf - progbuf only supports %u-bit address.",
2881 read
? "read" : "write", riscv_xlen(target
));
2882 *skip_reason
= "skipped (too large address)";
2889 static bool mem_should_skip_sysbus(struct target
*target
, target_addr_t address
,
2890 uint32_t size
, uint32_t increment
, bool read
, char **skip_reason
)
2892 assert(skip_reason
);
2894 RISCV013_INFO(info
);
2895 if (!sba_supports_access(target
, size
)) {
2896 LOG_DEBUG("Skipping mem %s via system bus - unsupported size.",
2897 read
? "read" : "write");
2898 *skip_reason
= "skipped (unsupported size)";
2901 unsigned int sbasize
= get_field(info
->sbcs
, DM_SBCS_SBASIZE
);
2902 if ((sizeof(address
) * 8 > sbasize
) && (address
>> sbasize
)) {
2903 LOG_DEBUG("Skipping mem %s via system bus - sba only supports %u-bit address.",
2904 read
? "read" : "write", sbasize
);
2905 *skip_reason
= "skipped (too large address)";
2908 if (read
&& increment
!= size
&& (get_field(info
->sbcs
, DM_SBCS_SBVERSION
) == 0 || increment
!= 0)) {
2909 LOG_DEBUG("Skipping mem read via system bus - "
2910 "sba reads only support size==increment or also size==0 for sba v1.");
2911 *skip_reason
= "skipped (unsupported increment)";
2918 static bool mem_should_skip_abstract(struct target
*target
, target_addr_t address
,
2919 uint32_t size
, uint32_t increment
, bool read
, char **skip_reason
)
2921 assert(skip_reason
);
2924 /* TODO: Add 128b support if it's ever used. Involves modifying
2925 read/write_abstract_arg() to work on two 64b values. */
2926 LOG_DEBUG("Skipping mem %s via abstract access - unsupported size: %d bits",
2927 read
? "read" : "write", size
* 8);
2928 *skip_reason
= "skipped (unsupported size)";
2931 if ((sizeof(address
) * 8 > riscv_xlen(target
)) && (address
>> riscv_xlen(target
))) {
2932 LOG_DEBUG("Skipping mem %s via abstract access - abstract access only supports %u-bit address.",
2933 read
? "read" : "write", riscv_xlen(target
));
2934 *skip_reason
= "skipped (too large address)";
2937 if (read
&& size
!= increment
) {
2938 LOG_ERROR("Skipping mem read via abstract access - "
2939 "abstract command reads only support size==increment.");
2940 *skip_reason
= "skipped (unsupported increment)";
2948 * Performs a memory read using memory access abstract commands. The read sizes
2949 * supported are 1, 2, and 4 bytes despite the spec's support of 8 and 16 byte
2950 * aamsize fields in the memory access abstract command.
2952 static int read_memory_abstract(struct target
*target
, target_addr_t address
,
2953 uint32_t size
, uint32_t count
, uint8_t *buffer
, uint32_t increment
)
2955 RISCV013_INFO(info
);
2957 int result
= ERROR_OK
;
2958 bool use_aampostincrement
= info
->has_aampostincrement
!= YNM_NO
;
2960 LOG_DEBUG("reading %d words of %d bytes from 0x%" TARGET_PRIxADDR
, count
,
2963 memset(buffer
, 0, count
* size
);
2965 /* Convert the size (bytes) to width (bits) */
2966 unsigned width
= size
<< 3;
2968 /* Create the command (physical address, postincrement, read) */
2969 uint32_t command
= access_memory_command(target
, false, width
, use_aampostincrement
, false);
2971 /* Execute the reads */
2972 uint8_t *p
= buffer
;
2973 bool updateaddr
= true;
2974 unsigned int width32
= (width
< 32) ? 32 : width
;
2975 for (uint32_t c
= 0; c
< count
; c
++) {
2976 /* Update the address if it is the first time or aampostincrement is not supported by the target. */
2978 /* Set arg1 to the address: address + c * size */
2979 result
= write_abstract_arg(target
, 1, address
+ c
* size
, riscv_xlen(target
));
2980 if (result
!= ERROR_OK
) {
2981 LOG_ERROR("Failed to write arg1 during read_memory_abstract().");
2986 /* Execute the command */
2987 result
= execute_abstract_command(target
, command
);
2989 if (info
->has_aampostincrement
== YNM_MAYBE
) {
2990 if (result
== ERROR_OK
) {
2991 /* Safety: double-check that the address was really auto-incremented */
2992 riscv_reg_t new_address
= read_abstract_arg(target
, 1, riscv_xlen(target
));
2993 if (new_address
== address
+ size
) {
2994 LOG_DEBUG("aampostincrement is supported on this target.");
2995 info
->has_aampostincrement
= YNM_YES
;
2997 LOG_WARNING("Buggy aampostincrement! Address not incremented correctly.");
2998 info
->has_aampostincrement
= YNM_NO
;
3001 /* Try the same access but with postincrement disabled. */
3002 command
= access_memory_command(target
, false, width
, false, false);
3003 result
= execute_abstract_command(target
, command
);
3004 if (result
== ERROR_OK
) {
3005 LOG_DEBUG("aampostincrement is not supported on this target.");
3006 info
->has_aampostincrement
= YNM_NO
;
3011 if (result
!= ERROR_OK
)
3014 /* Copy arg0 to buffer (rounded width up to nearest 32) */
3015 riscv_reg_t value
= read_abstract_arg(target
, 0, width32
);
3016 buf_set_u64(p
, 0, 8 * size
, value
);
3018 if (info
->has_aampostincrement
== YNM_YES
)
3027 * Performs a memory write using memory access abstract commands. The write
3028 * sizes supported are 1, 2, and 4 bytes despite the spec's support of 8 and 16
3029 * byte aamsize fields in the memory access abstract command.
3031 static int write_memory_abstract(struct target
*target
, target_addr_t address
,
3032 uint32_t size
, uint32_t count
, const uint8_t *buffer
)
3034 RISCV013_INFO(info
);
3035 int result
= ERROR_OK
;
3036 bool use_aampostincrement
= info
->has_aampostincrement
!= YNM_NO
;
3038 LOG_DEBUG("writing %d words of %d bytes from 0x%" TARGET_PRIxADDR
, count
,
3041 /* Convert the size (bytes) to width (bits) */
3042 unsigned width
= size
<< 3;
3044 /* Create the command (physical address, postincrement, write) */
3045 uint32_t command
= access_memory_command(target
, false, width
, use_aampostincrement
, true);
3047 /* Execute the writes */
3048 const uint8_t *p
= buffer
;
3049 bool updateaddr
= true;
3050 for (uint32_t c
= 0; c
< count
; c
++) {
3051 /* Move data to arg0 */
3052 riscv_reg_t value
= buf_get_u64(p
, 0, 8 * size
);
3053 result
= write_abstract_arg(target
, 0, value
, riscv_xlen(target
));
3054 if (result
!= ERROR_OK
) {
3055 LOG_ERROR("Failed to write arg0 during write_memory_abstract().");
3059 /* Update the address if it is the first time or aampostincrement is not supported by the target. */
3061 /* Set arg1 to the address: address + c * size */
3062 result
= write_abstract_arg(target
, 1, address
+ c
* size
, riscv_xlen(target
));
3063 if (result
!= ERROR_OK
) {
3064 LOG_ERROR("Failed to write arg1 during write_memory_abstract().");
3069 /* Execute the command */
3070 result
= execute_abstract_command(target
, command
);
3072 if (info
->has_aampostincrement
== YNM_MAYBE
) {
3073 if (result
== ERROR_OK
) {
3074 /* Safety: double-check that the address was really auto-incremented */
3075 riscv_reg_t new_address
= read_abstract_arg(target
, 1, riscv_xlen(target
));
3076 if (new_address
== address
+ size
) {
3077 LOG_DEBUG("aampostincrement is supported on this target.");
3078 info
->has_aampostincrement
= YNM_YES
;
3080 LOG_WARNING("Buggy aampostincrement! Address not incremented correctly.");
3081 info
->has_aampostincrement
= YNM_NO
;
3084 /* Try the same access but with postincrement disabled. */
3085 command
= access_memory_command(target
, false, width
, false, true);
3086 result
= execute_abstract_command(target
, command
);
3087 if (result
== ERROR_OK
) {
3088 LOG_DEBUG("aampostincrement is not supported on this target.");
3089 info
->has_aampostincrement
= YNM_NO
;
3094 if (result
!= ERROR_OK
)
3097 if (info
->has_aampostincrement
== YNM_YES
)
3106 * Read the requested memory, taking care to execute every read exactly once,
3107 * even if cmderr=busy is encountered.
3109 static int read_memory_progbuf_inner(struct target
*target
, target_addr_t address
,
3110 uint32_t size
, uint32_t count
, uint8_t *buffer
, uint32_t increment
)
3112 RISCV013_INFO(info
);
3114 int result
= ERROR_OK
;
3116 /* Write address to S0. */
3117 result
= register_write_direct(target
, GDB_REGNO_S0
, address
);
3118 if (result
!= ERROR_OK
)
3121 if (increment
== 0 &&
3122 register_write_direct(target
, GDB_REGNO_S2
, 0) != ERROR_OK
)
3125 uint32_t command
= access_register_command(target
, GDB_REGNO_S1
,
3127 AC_ACCESS_REGISTER_TRANSFER
| AC_ACCESS_REGISTER_POSTEXEC
);
3128 if (execute_abstract_command(target
, command
) != ERROR_OK
)
3131 /* First read has just triggered. Result is in s1. */
3134 if (register_read_direct(target
, &value
, GDB_REGNO_S1
) != ERROR_OK
)
3136 buf_set_u64(buffer
, 0, 8 * size
, value
);
3137 log_memory_access(address
, value
, size
, true);
3141 if (dmi_write(target
, DM_ABSTRACTAUTO
,
3142 1 << DM_ABSTRACTAUTO_AUTOEXECDATA_OFFSET
) != ERROR_OK
)
3144 /* Read garbage from dmi_data0, which triggers another execution of the
3145 * program. Now dmi_data0 contains the first good result, and s1 the next
3147 if (dmi_read_exec(target
, NULL
, DM_DATA0
) != ERROR_OK
)
3150 /* read_addr is the next address that the hart will read from, which is the
3153 while (index
< count
) {
3154 riscv_addr_t read_addr
= address
+ index
* increment
;
3155 LOG_DEBUG("i=%d, count=%d, read_addr=0x%" PRIx64
, index
, count
, read_addr
);
3156 /* The pipeline looks like this:
3157 * memory -> s1 -> dm_data0 -> debugger
3159 * s0 contains read_addr
3160 * s1 contains mem[read_addr-size]
3161 * dm_data0 contains[read_addr-size*2]
3164 struct riscv_batch
*batch
= riscv_batch_alloc(target
, 32,
3165 info
->dmi_busy_delay
+ info
->ac_busy_delay
);
3170 for (unsigned j
= index
; j
< count
; j
++) {
3172 riscv_batch_add_dmi_read(batch
, DM_DATA1
);
3173 riscv_batch_add_dmi_read(batch
, DM_DATA0
);
3176 if (riscv_batch_full(batch
))
3180 batch_run(target
, batch
);
3182 /* Wait for the target to finish performing the last abstract command,
3183 * and update our copy of cmderr. If we see that DMI is busy here,
3184 * dmi_busy_delay will be incremented. */
3185 uint32_t abstractcs
;
3186 if (dmi_read(target
, &abstractcs
, DM_ABSTRACTCS
) != ERROR_OK
)
3188 while (get_field(abstractcs
, DM_ABSTRACTCS_BUSY
))
3189 if (dmi_read(target
, &abstractcs
, DM_ABSTRACTCS
) != ERROR_OK
)
3191 info
->cmderr
= get_field(abstractcs
, DM_ABSTRACTCS_CMDERR
);
3193 unsigned next_index
;
3194 unsigned ignore_last
= 0;
3195 switch (info
->cmderr
) {
3197 LOG_DEBUG("successful (partial?) memory read");
3198 next_index
= index
+ reads
;
3201 LOG_DEBUG("memory read resulted in busy response");
3203 increase_ac_busy_delay(target
);
3204 riscv013_clear_abstract_error(target
);
3206 dmi_write(target
, DM_ABSTRACTAUTO
, 0);
3208 uint32_t dmi_data0
, dmi_data1
= 0;
3209 /* This is definitely a good version of the value that we
3210 * attempted to read when we discovered that the target was
3212 if (dmi_read(target
, &dmi_data0
, DM_DATA0
) != ERROR_OK
) {
3213 riscv_batch_free(batch
);
3216 if (size
> 4 && dmi_read(target
, &dmi_data1
, DM_DATA1
) != ERROR_OK
) {
3217 riscv_batch_free(batch
);
3221 /* See how far we got, clobbering dmi_data0. */
3222 if (increment
== 0) {
3224 result
= register_read_direct(target
, &counter
, GDB_REGNO_S2
);
3225 next_index
= counter
;
3227 uint64_t next_read_addr
;
3228 result
= register_read_direct(target
, &next_read_addr
,
3230 next_index
= (next_read_addr
- address
) / increment
;
3232 if (result
!= ERROR_OK
) {
3233 riscv_batch_free(batch
);
3237 uint64_t value64
= (((uint64_t)dmi_data1
) << 32) | dmi_data0
;
3238 buf_set_u64(buffer
+ (next_index
- 2) * size
, 0, 8 * size
, value64
);
3239 log_memory_access(address
+ (next_index
- 2) * size
, value64
, size
, true);
3241 /* Restore the command, and execute it.
3242 * Now DM_DATA0 contains the next value just as it would if no
3243 * error had occurred. */
3244 dmi_write_exec(target
, DM_COMMAND
, command
, true);
3247 dmi_write(target
, DM_ABSTRACTAUTO
,
3248 1 << DM_ABSTRACTAUTO_AUTOEXECDATA_OFFSET
);
3254 LOG_DEBUG("error when reading memory, abstractcs=0x%08lx", (long)abstractcs
);
3255 riscv013_clear_abstract_error(target
);
3256 riscv_batch_free(batch
);
3257 result
= ERROR_FAIL
;
3261 /* Now read whatever we got out of the batch. */
3262 dmi_status_t status
= DMI_STATUS_SUCCESS
;
3265 for (unsigned j
= index
- 2; j
< index
+ reads
; j
++) {
3267 LOG_DEBUG("index=%d, reads=%d, next_index=%d, ignore_last=%d, j=%d",
3268 index
, reads
, next_index
, ignore_last
, j
);
3269 if (j
+ 3 + ignore_last
> next_index
)
3272 status
= riscv_batch_get_dmi_read_op(batch
, read
);
3273 uint64_t value
= riscv_batch_get_dmi_read_data(batch
, read
);
3275 if (status
!= DMI_STATUS_SUCCESS
) {
3276 /* If we're here because of busy count, dmi_busy_delay will
3277 * already have been increased and busy state will have been
3278 * cleared in dmi_read(). */
3279 /* In at least some implementations, we issue a read, and then
3280 * can get busy back when we try to scan out the read result,
3281 * and the actual read value is lost forever. Since this is
3282 * rare in any case, we return error here and rely on our
3283 * caller to reread the entire block. */
3284 LOG_WARNING("Batch memory read encountered DMI error %d. "
3285 "Falling back on slower reads.", status
);
3286 riscv_batch_free(batch
);
3287 result
= ERROR_FAIL
;
3291 status
= riscv_batch_get_dmi_read_op(batch
, read
);
3292 if (status
!= DMI_STATUS_SUCCESS
) {
3293 LOG_WARNING("Batch memory read encountered DMI error %d. "
3294 "Falling back on slower reads.", status
);
3295 riscv_batch_free(batch
);
3296 result
= ERROR_FAIL
;
3300 value
|= riscv_batch_get_dmi_read_data(batch
, read
);
3303 riscv_addr_t offset
= j
* size
;
3304 buf_set_u64(buffer
+ offset
, 0, 8 * size
, value
);
3305 log_memory_access(address
+ j
* increment
, value
, size
, true);
3310 riscv_batch_free(batch
);
3313 dmi_write(target
, DM_ABSTRACTAUTO
, 0);
3316 /* Read the penultimate word. */
3317 uint32_t dmi_data0
, dmi_data1
= 0;
3318 if (dmi_read(target
, &dmi_data0
, DM_DATA0
) != ERROR_OK
)
3320 if (size
> 4 && dmi_read(target
, &dmi_data1
, DM_DATA1
) != ERROR_OK
)
3322 uint64_t value64
= (((uint64_t)dmi_data1
) << 32) | dmi_data0
;
3323 buf_set_u64(buffer
+ size
* (count
- 2), 0, 8 * size
, value64
);
3324 log_memory_access(address
+ size
* (count
- 2), value64
, size
, true);
3327 /* Read the last word. */
3329 result
= register_read_direct(target
, &value
, GDB_REGNO_S1
);
3330 if (result
!= ERROR_OK
)
3332 buf_set_u64(buffer
+ size
* (count
-1), 0, 8 * size
, value
);
3333 log_memory_access(address
+ size
* (count
-1), value
, size
, true);
3338 dmi_write(target
, DM_ABSTRACTAUTO
, 0);
3343 /* Only need to save/restore one GPR to read a single word, and the progbuf
3344 * program doesn't need to increment. */
3345 static int read_memory_progbuf_one(struct target
*target
, target_addr_t address
,
3346 uint32_t size
, uint8_t *buffer
)
3348 uint64_t mstatus
= 0;
3349 uint64_t mstatus_old
= 0;
3350 if (modify_privilege(target
, &mstatus
, &mstatus_old
) != ERROR_OK
)
3354 int result
= ERROR_FAIL
;
3356 if (register_read(target
, &s0
, GDB_REGNO_S0
) != ERROR_OK
)
3357 goto restore_mstatus
;
3359 /* Write the program (load, increment) */
3360 struct riscv_program program
;
3361 riscv_program_init(&program
, target
);
3362 if (riscv_enable_virtual
&& has_sufficient_progbuf(target
, 5) && get_field(mstatus
, MSTATUS_MPRV
))
3363 riscv_program_csrrsi(&program
, GDB_REGNO_ZERO
, CSR_DCSR_MPRVEN
, GDB_REGNO_DCSR
);
3366 riscv_program_lbr(&program
, GDB_REGNO_S0
, GDB_REGNO_S0
, 0);
3369 riscv_program_lhr(&program
, GDB_REGNO_S0
, GDB_REGNO_S0
, 0);
3372 riscv_program_lwr(&program
, GDB_REGNO_S0
, GDB_REGNO_S0
, 0);
3375 riscv_program_ldr(&program
, GDB_REGNO_S0
, GDB_REGNO_S0
, 0);
3378 LOG_ERROR("Unsupported size: %d", size
);
3379 goto restore_mstatus
;
3381 if (riscv_enable_virtual
&& has_sufficient_progbuf(target
, 5) && get_field(mstatus
, MSTATUS_MPRV
))
3382 riscv_program_csrrci(&program
, GDB_REGNO_ZERO
, CSR_DCSR_MPRVEN
, GDB_REGNO_DCSR
);
3384 if (riscv_program_ebreak(&program
) != ERROR_OK
)
3385 goto restore_mstatus
;
3386 if (riscv_program_write(&program
) != ERROR_OK
)
3387 goto restore_mstatus
;
3389 /* Write address to S0, and execute buffer. */
3390 if (write_abstract_arg(target
, 0, address
, riscv_xlen(target
)) != ERROR_OK
)
3391 goto restore_mstatus
;
3392 uint32_t command
= access_register_command(target
, GDB_REGNO_S0
,
3393 riscv_xlen(target
), AC_ACCESS_REGISTER_WRITE
|
3394 AC_ACCESS_REGISTER_TRANSFER
| AC_ACCESS_REGISTER_POSTEXEC
);
3395 if (execute_abstract_command(target
, command
) != ERROR_OK
)
3399 if (register_read(target
, &value
, GDB_REGNO_S0
) != ERROR_OK
)
3401 buf_set_u64(buffer
, 0, 8 * size
, value
);
3402 log_memory_access(address
, value
, size
, true);
3406 if (riscv_set_register(target
, GDB_REGNO_S0
, s0
) != ERROR_OK
)
3407 result
= ERROR_FAIL
;
3410 if (mstatus
!= mstatus_old
)
3411 if (register_write_direct(target
, GDB_REGNO_MSTATUS
, mstatus_old
))
3412 result
= ERROR_FAIL
;
3418 * Read the requested memory, silently handling memory access errors.
3420 static int read_memory_progbuf(struct target
*target
, target_addr_t address
,
3421 uint32_t size
, uint32_t count
, uint8_t *buffer
, uint32_t increment
)
3423 if (riscv_xlen(target
) < size
* 8) {
3424 LOG_ERROR("XLEN (%d) is too short for %d-bit memory read.",
3425 riscv_xlen(target
), size
* 8);
3429 int result
= ERROR_OK
;
3431 LOG_DEBUG("reading %d words of %d bytes from 0x%" TARGET_PRIxADDR
, count
,
3436 memset(buffer
, 0, count
*size
);
3438 if (execute_fence(target
) != ERROR_OK
)
3442 return read_memory_progbuf_one(target
, address
, size
, buffer
);
3444 uint64_t mstatus
= 0;
3445 uint64_t mstatus_old
= 0;
3446 if (modify_privilege(target
, &mstatus
, &mstatus_old
) != ERROR_OK
)
3449 /* s0 holds the next address to read from
3450 * s1 holds the next data value read
3451 * s2 is a counter in case increment is 0
3453 uint64_t s0
, s1
, s2
;
3454 if (register_read(target
, &s0
, GDB_REGNO_S0
) != ERROR_OK
)
3456 if (register_read(target
, &s1
, GDB_REGNO_S1
) != ERROR_OK
)
3458 if (increment
== 0 && register_read(target
, &s2
, GDB_REGNO_S2
) != ERROR_OK
)
3461 /* Write the program (load, increment) */
3462 struct riscv_program program
;
3463 riscv_program_init(&program
, target
);
3464 if (riscv_enable_virtual
&& has_sufficient_progbuf(target
, 5) && get_field(mstatus
, MSTATUS_MPRV
))
3465 riscv_program_csrrsi(&program
, GDB_REGNO_ZERO
, CSR_DCSR_MPRVEN
, GDB_REGNO_DCSR
);
3469 riscv_program_lbr(&program
, GDB_REGNO_S1
, GDB_REGNO_S0
, 0);
3472 riscv_program_lhr(&program
, GDB_REGNO_S1
, GDB_REGNO_S0
, 0);
3475 riscv_program_lwr(&program
, GDB_REGNO_S1
, GDB_REGNO_S0
, 0);
3478 riscv_program_ldr(&program
, GDB_REGNO_S1
, GDB_REGNO_S0
, 0);
3481 LOG_ERROR("Unsupported size: %d", size
);
3485 if (riscv_enable_virtual
&& has_sufficient_progbuf(target
, 5) && get_field(mstatus
, MSTATUS_MPRV
))
3486 riscv_program_csrrci(&program
, GDB_REGNO_ZERO
, CSR_DCSR_MPRVEN
, GDB_REGNO_DCSR
);
3488 riscv_program_addi(&program
, GDB_REGNO_S2
, GDB_REGNO_S2
, 1);
3490 riscv_program_addi(&program
, GDB_REGNO_S0
, GDB_REGNO_S0
, increment
);
3492 if (riscv_program_ebreak(&program
) != ERROR_OK
)
3494 if (riscv_program_write(&program
) != ERROR_OK
)
3497 result
= read_memory_progbuf_inner(target
, address
, size
, count
, buffer
, increment
);
3499 if (result
!= ERROR_OK
) {
3500 /* The full read did not succeed, so we will try to read each word individually. */
3501 /* This will not be fast, but reading outside actual memory is a special case anyway. */
3502 /* It will make the toolchain happier, especially Eclipse Memory View as it reads ahead. */
3503 target_addr_t address_i
= address
;
3504 uint32_t count_i
= 1;
3505 uint8_t *buffer_i
= buffer
;
3507 for (uint32_t i
= 0; i
< count
; i
++, address_i
+= increment
, buffer_i
+= size
) {
3508 /* TODO: This is much slower than it needs to be because we end up
3509 * writing the address to read for every word we read. */
3510 result
= read_memory_progbuf_inner(target
, address_i
, size
, count_i
, buffer_i
, increment
);
3512 /* The read of a single word failed, so we will just return 0 for that instead */
3513 if (result
!= ERROR_OK
) {
3514 LOG_DEBUG("error reading single word of %d bytes from 0x%" TARGET_PRIxADDR
,
3517 buf_set_u64(buffer_i
, 0, 8 * size
, 0);
3523 riscv_set_register(target
, GDB_REGNO_S0
, s0
);
3524 riscv_set_register(target
, GDB_REGNO_S1
, s1
);
3526 riscv_set_register(target
, GDB_REGNO_S2
, s2
);
3528 /* Restore MSTATUS */
3529 if (mstatus
!= mstatus_old
)
3530 if (register_write_direct(target
, GDB_REGNO_MSTATUS
, mstatus_old
))
3536 static int read_memory(struct target
*target
, target_addr_t address
,
3537 uint32_t size
, uint32_t count
, uint8_t *buffer
, uint32_t increment
)
3542 if (size
!= 1 && size
!= 2 && size
!= 4 && size
!= 8 && size
!= 16) {
3543 LOG_ERROR("BUG: Unsupported size for memory read: %d", size
);
3547 int ret
= ERROR_FAIL
;
3549 RISCV013_INFO(info
);
3551 char *progbuf_result
= "disabled";
3552 char *sysbus_result
= "disabled";
3553 char *abstract_result
= "disabled";
3555 for (unsigned int i
= 0; i
< RISCV_NUM_MEM_ACCESS_METHODS
; i
++) {
3556 int method
= r
->mem_access_methods
[i
];
3558 if (method
== RISCV_MEM_ACCESS_PROGBUF
) {
3559 if (mem_should_skip_progbuf(target
, address
, size
, true, &progbuf_result
))
3562 ret
= read_memory_progbuf(target
, address
, size
, count
, buffer
, increment
);
3564 if (ret
!= ERROR_OK
)
3565 progbuf_result
= "failed";
3566 } else if (method
== RISCV_MEM_ACCESS_SYSBUS
) {
3567 if (mem_should_skip_sysbus(target
, address
, size
, increment
, true, &sysbus_result
))
3570 if (get_field(info
->sbcs
, DM_SBCS_SBVERSION
) == 0)
3571 ret
= read_memory_bus_v0(target
, address
, size
, count
, buffer
, increment
);
3572 else if (get_field(info
->sbcs
, DM_SBCS_SBVERSION
) == 1)
3573 ret
= read_memory_bus_v1(target
, address
, size
, count
, buffer
, increment
);
3575 if (ret
!= ERROR_OK
)
3576 sysbus_result
= "failed";
3577 } else if (method
== RISCV_MEM_ACCESS_ABSTRACT
) {
3578 if (mem_should_skip_abstract(target
, address
, size
, increment
, true, &abstract_result
))
3581 ret
= read_memory_abstract(target
, address
, size
, count
, buffer
, increment
);
3583 if (ret
!= ERROR_OK
)
3584 abstract_result
= "failed";
3585 } else if (method
== RISCV_MEM_ACCESS_UNSPECIFIED
)
3586 /* No further mem access method to try. */
3589 log_mem_access_result(target
, ret
== ERROR_OK
, method
, true);
3591 if (ret
== ERROR_OK
)
3595 LOG_ERROR("Target %s: Failed to read memory (addr=0x%" PRIx64
")", target_name(target
), address
);
3596 LOG_ERROR(" progbuf=%s, sysbus=%s, abstract=%s", progbuf_result
, sysbus_result
, abstract_result
);
3600 static int write_memory_bus_v0(struct target
*target
, target_addr_t address
,
3601 uint32_t size
, uint32_t count
, const uint8_t *buffer
)
3603 /*1) write sbaddress: for singlewrite and autoincrement, we need to write the address once*/
3604 LOG_DEBUG("System Bus Access: size: %d\tcount:%d\tstart address: 0x%08"
3605 TARGET_PRIxADDR
, size
, count
, address
);
3606 dmi_write(target
, DM_SBADDRESS0
, address
);
3609 riscv_addr_t offset
= 0;
3610 riscv_addr_t t_addr
= 0;
3611 const uint8_t *t_buffer
= buffer
+ offset
;
3613 /* B.8 Writing Memory, single write check if we write in one go */
3614 if (count
== 1) { /* count is in bytes here */
3615 value
= buf_get_u64(t_buffer
, 0, 8 * size
);
3618 access
= set_field(access
, DM_SBCS_SBACCESS
, size
/2);
3619 dmi_write(target
, DM_SBCS
, access
);
3620 LOG_DEBUG("\r\naccess: 0x%08" PRIx64
, access
);
3621 LOG_DEBUG("\r\nwrite_memory:SAB: ONE OFF: value 0x%08" PRIx64
, value
);
3622 dmi_write(target
, DM_SBDATA0
, value
);
3626 /*B.8 Writing Memory, using autoincrement*/
3629 access
= set_field(access
, DM_SBCS_SBACCESS
, size
/2);
3630 access
= set_field(access
, DM_SBCS_SBAUTOINCREMENT
, 1);
3631 LOG_DEBUG("\r\naccess: 0x%08" PRIx64
, access
);
3632 dmi_write(target
, DM_SBCS
, access
);
3634 /*2)set the value according to the size required and write*/
3635 for (riscv_addr_t i
= 0; i
< count
; ++i
) {
3637 /* for monitoring only */
3638 t_addr
= address
+ offset
;
3639 t_buffer
= buffer
+ offset
;
3641 value
= buf_get_u64(t_buffer
, 0, 8 * size
);
3642 LOG_DEBUG("SAB:autoincrement: expected address: 0x%08x value: 0x%08x"
3643 PRIx64
, (uint32_t)t_addr
, (uint32_t)value
);
3644 dmi_write(target
, DM_SBDATA0
, value
);
3646 /*reset the autoincrement when finished (something weird is happening if this is not done at the end*/
3647 access
= set_field(access
, DM_SBCS_SBAUTOINCREMENT
, 0);
3648 dmi_write(target
, DM_SBCS
, access
);
3653 static int write_memory_bus_v1(struct target
*target
, target_addr_t address
,
3654 uint32_t size
, uint32_t count
, const uint8_t *buffer
)
3656 RISCV013_INFO(info
);
3657 uint32_t sbcs
= sb_sbaccess(size
);
3658 sbcs
= set_field(sbcs
, DM_SBCS_SBAUTOINCREMENT
, 1);
3659 dmi_write(target
, DM_SBCS
, sbcs
);
3661 target_addr_t next_address
= address
;
3662 target_addr_t end_address
= address
+ count
* size
;
3666 sb_write_address(target
, next_address
, true);
3667 while (next_address
< end_address
) {
3668 LOG_DEBUG("transferring burst starting at address 0x%" TARGET_PRIxADDR
,
3671 struct riscv_batch
*batch
= riscv_batch_alloc(
3674 info
->dmi_busy_delay
+ info
->bus_master_write_delay
);
3678 for (uint32_t i
= (next_address
- address
) / size
; i
< count
; i
++) {
3679 const uint8_t *p
= buffer
+ i
* size
;
3681 if (riscv_batch_available_scans(batch
) < (size
+ 3) / 4)
3685 riscv_batch_add_dmi_write(batch
, DM_SBDATA3
,
3686 ((uint32_t) p
[12]) |
3687 (((uint32_t) p
[13]) << 8) |
3688 (((uint32_t) p
[14]) << 16) |
3689 (((uint32_t) p
[15]) << 24));
3692 riscv_batch_add_dmi_write(batch
, DM_SBDATA2
,
3694 (((uint32_t) p
[9]) << 8) |
3695 (((uint32_t) p
[10]) << 16) |
3696 (((uint32_t) p
[11]) << 24));
3698 riscv_batch_add_dmi_write(batch
, DM_SBDATA1
,
3700 (((uint32_t) p
[5]) << 8) |
3701 (((uint32_t) p
[6]) << 16) |
3702 (((uint32_t) p
[7]) << 24));
3703 uint32_t value
= p
[0];
3705 value
|= ((uint32_t) p
[2]) << 16;
3706 value
|= ((uint32_t) p
[3]) << 24;
3709 value
|= ((uint32_t) p
[1]) << 8;
3710 riscv_batch_add_dmi_write(batch
, DM_SBDATA0
, value
);
3712 log_memory_access(address
+ i
* size
, value
, size
, false);
3713 next_address
+= size
;
3716 /* Execute the batch of writes */
3717 result
= batch_run(target
, batch
);
3718 riscv_batch_free(batch
);
3719 if (result
!= ERROR_OK
)
3723 * At the same time, detect if DMI busy has occurred during the batch write. */
3724 bool dmi_busy_encountered
;
3725 if (dmi_op(target
, &sbcs
, &dmi_busy_encountered
, DMI_OP_READ
,
3726 DM_SBCS
, 0, false, true) != ERROR_OK
)
3728 if (dmi_busy_encountered
)
3729 LOG_DEBUG("DMI busy encountered during system bus write.");
3731 /* Wait until sbbusy goes low */
3732 time_t start
= time(NULL
);
3733 while (get_field(sbcs
, DM_SBCS_SBBUSY
)) {
3734 if (time(NULL
) - start
> riscv_command_timeout_sec
) {
3735 LOG_ERROR("Timed out after %ds waiting for sbbusy to go low (sbcs=0x%x). "
3736 "Increase the timeout with riscv set_command_timeout_sec.",
3737 riscv_command_timeout_sec
, sbcs
);
3740 if (dmi_read(target
, &sbcs
, DM_SBCS
) != ERROR_OK
)
3744 if (get_field(sbcs
, DM_SBCS_SBBUSYERROR
)) {
3745 /* We wrote while the target was busy. */
3746 LOG_DEBUG("Sbbusyerror encountered during system bus write.");
3747 /* Clear the sticky error flag. */
3748 dmi_write(target
, DM_SBCS
, sbcs
| DM_SBCS_SBBUSYERROR
);
3749 /* Slow down before trying again. */
3750 info
->bus_master_write_delay
+= info
->bus_master_write_delay
/ 10 + 1;
3753 if (get_field(sbcs
, DM_SBCS_SBBUSYERROR
) || dmi_busy_encountered
) {
3754 /* Recover from the case when the write commands were issued too fast.
3755 * Determine the address from which to resume writing. */
3756 next_address
= sb_read_address(target
);
3757 if (next_address
< address
) {
3758 /* This should never happen, probably buggy hardware. */
3759 LOG_DEBUG("unexpected sbaddress=0x%" TARGET_PRIxADDR
3760 " - buggy sbautoincrement in hw?", next_address
);
3761 /* Fail the whole operation. */
3764 /* Try again - resume writing. */
3768 unsigned int sberror
= get_field(sbcs
, DM_SBCS_SBERROR
);
3770 /* Sberror indicates the bus access failed, but not because we issued the writes
3771 * too fast. Cannot recover. Sbaddress holds the address where the error occurred
3772 * (unless sbautoincrement in the HW is buggy).
3774 target_addr_t sbaddress
= sb_read_address(target
);
3775 LOG_DEBUG("System bus access failed with sberror=%u (sbaddress=0x%" TARGET_PRIxADDR
")",
3776 sberror
, sbaddress
);
3777 if (sbaddress
< address
) {
3778 /* This should never happen, probably buggy hardware.
3779 * Make a note to the user not to trust the sbaddress value. */
3780 LOG_DEBUG("unexpected sbaddress=0x%" TARGET_PRIxADDR
3781 " - buggy sbautoincrement in hw?", next_address
);
3783 /* Clear the sticky error flag */
3784 dmi_write(target
, DM_SBCS
, DM_SBCS_SBERROR
);
3785 /* Fail the whole operation */
3793 static int write_memory_progbuf(struct target
*target
, target_addr_t address
,
3794 uint32_t size
, uint32_t count
, const uint8_t *buffer
)
3796 RISCV013_INFO(info
);
3798 if (riscv_xlen(target
) < size
* 8) {
3799 LOG_ERROR("XLEN (%d) is too short for %d-bit memory write.",
3800 riscv_xlen(target
), size
* 8);
3804 LOG_DEBUG("writing %d words of %d bytes to 0x%08lx", count
, size
, (long)address
);
3808 uint64_t mstatus
= 0;
3809 uint64_t mstatus_old
= 0;
3810 if (modify_privilege(target
, &mstatus
, &mstatus_old
) != ERROR_OK
)
3813 /* s0 holds the next address to write to
3814 * s1 holds the next data value to write
3817 int result
= ERROR_OK
;
3819 if (register_read(target
, &s0
, GDB_REGNO_S0
) != ERROR_OK
)
3821 if (register_read(target
, &s1
, GDB_REGNO_S1
) != ERROR_OK
)
3824 /* Write the program (store, increment) */
3825 struct riscv_program program
;
3826 riscv_program_init(&program
, target
);
3827 if (riscv_enable_virtual
&& has_sufficient_progbuf(target
, 5) && get_field(mstatus
, MSTATUS_MPRV
))
3828 riscv_program_csrrsi(&program
, GDB_REGNO_ZERO
, CSR_DCSR_MPRVEN
, GDB_REGNO_DCSR
);
3832 riscv_program_sbr(&program
, GDB_REGNO_S1
, GDB_REGNO_S0
, 0);
3835 riscv_program_shr(&program
, GDB_REGNO_S1
, GDB_REGNO_S0
, 0);
3838 riscv_program_swr(&program
, GDB_REGNO_S1
, GDB_REGNO_S0
, 0);
3841 riscv_program_sdr(&program
, GDB_REGNO_S1
, GDB_REGNO_S0
, 0);
3844 LOG_ERROR("write_memory_progbuf(): Unsupported size: %d", size
);
3845 result
= ERROR_FAIL
;
3849 if (riscv_enable_virtual
&& has_sufficient_progbuf(target
, 5) && get_field(mstatus
, MSTATUS_MPRV
))
3850 riscv_program_csrrci(&program
, GDB_REGNO_ZERO
, CSR_DCSR_MPRVEN
, GDB_REGNO_DCSR
);
3851 riscv_program_addi(&program
, GDB_REGNO_S0
, GDB_REGNO_S0
, size
);
3853 result
= riscv_program_ebreak(&program
);
3854 if (result
!= ERROR_OK
)
3856 riscv_program_write(&program
);
3858 riscv_addr_t cur_addr
= address
;
3859 riscv_addr_t fin_addr
= address
+ (count
* size
);
3860 bool setup_needed
= true;
3861 LOG_DEBUG("writing until final address 0x%016" PRIx64
, fin_addr
);
3862 while (cur_addr
< fin_addr
) {
3863 LOG_DEBUG("transferring burst starting at address 0x%016" PRIx64
,
3866 struct riscv_batch
*batch
= riscv_batch_alloc(
3869 info
->dmi_busy_delay
+ info
->ac_busy_delay
);
3873 /* To write another word, we put it in S1 and execute the program. */
3874 unsigned start
= (cur_addr
- address
) / size
;
3875 for (unsigned i
= start
; i
< count
; ++i
) {
3876 unsigned offset
= size
*i
;
3877 const uint8_t *t_buffer
= buffer
+ offset
;
3879 uint64_t value
= buf_get_u64(t_buffer
, 0, 8 * size
);
3881 log_memory_access(address
+ offset
, value
, size
, false);
3885 result
= register_write_direct(target
, GDB_REGNO_S0
,
3887 if (result
!= ERROR_OK
) {
3888 riscv_batch_free(batch
);
3894 dmi_write(target
, DM_DATA1
, value
>> 32);
3895 dmi_write(target
, DM_DATA0
, value
);
3897 /* Write and execute command that moves value into S1 and
3898 * executes program buffer. */
3899 uint32_t command
= access_register_command(target
,
3900 GDB_REGNO_S1
, riscv_xlen(target
),
3901 AC_ACCESS_REGISTER_POSTEXEC
|
3902 AC_ACCESS_REGISTER_TRANSFER
|
3903 AC_ACCESS_REGISTER_WRITE
);
3904 result
= execute_abstract_command(target
, command
);
3905 if (result
!= ERROR_OK
) {
3906 riscv_batch_free(batch
);
3910 /* Turn on autoexec */
3911 dmi_write(target
, DM_ABSTRACTAUTO
,
3912 1 << DM_ABSTRACTAUTO_AUTOEXECDATA_OFFSET
);
3914 setup_needed
= false;
3917 riscv_batch_add_dmi_write(batch
, DM_DATA1
, value
>> 32);
3918 riscv_batch_add_dmi_write(batch
, DM_DATA0
, value
);
3919 if (riscv_batch_full(batch
))
3924 result
= batch_run(target
, batch
);
3925 riscv_batch_free(batch
);
3926 if (result
!= ERROR_OK
)
3929 /* Note that if the scan resulted in a Busy DMI response, it
3930 * is this read to abstractcs that will cause the dmi_busy_delay
3931 * to be incremented if necessary. */
3933 uint32_t abstractcs
;
3934 bool dmi_busy_encountered
;
3935 result
= dmi_op(target
, &abstractcs
, &dmi_busy_encountered
,
3936 DMI_OP_READ
, DM_ABSTRACTCS
, 0, false, true);
3937 if (result
!= ERROR_OK
)
3939 while (get_field(abstractcs
, DM_ABSTRACTCS_BUSY
))
3940 if (dmi_read(target
, &abstractcs
, DM_ABSTRACTCS
) != ERROR_OK
)
3942 info
->cmderr
= get_field(abstractcs
, DM_ABSTRACTCS_CMDERR
);
3943 if (info
->cmderr
== CMDERR_NONE
&& !dmi_busy_encountered
) {
3944 LOG_DEBUG("successful (partial?) memory write");
3945 } else if (info
->cmderr
== CMDERR_BUSY
|| dmi_busy_encountered
) {
3946 if (info
->cmderr
== CMDERR_BUSY
)
3947 LOG_DEBUG("Memory write resulted in abstract command busy response.");
3948 else if (dmi_busy_encountered
)
3949 LOG_DEBUG("Memory write resulted in DMI busy response.");
3950 riscv013_clear_abstract_error(target
);
3951 increase_ac_busy_delay(target
);
3953 dmi_write(target
, DM_ABSTRACTAUTO
, 0);
3954 result
= register_read_direct(target
, &cur_addr
, GDB_REGNO_S0
);
3955 if (result
!= ERROR_OK
)
3957 setup_needed
= true;
3959 LOG_ERROR("error when writing memory, abstractcs=0x%08lx", (long)abstractcs
);
3960 riscv013_clear_abstract_error(target
);
3961 result
= ERROR_FAIL
;
3967 dmi_write(target
, DM_ABSTRACTAUTO
, 0);
3969 if (register_write_direct(target
, GDB_REGNO_S1
, s1
) != ERROR_OK
)
3971 if (register_write_direct(target
, GDB_REGNO_S0
, s0
) != ERROR_OK
)
3974 /* Restore MSTATUS */
3975 if (mstatus
!= mstatus_old
)
3976 if (register_write_direct(target
, GDB_REGNO_MSTATUS
, mstatus_old
))
3979 if (execute_fence(target
) != ERROR_OK
)
3985 static int write_memory(struct target
*target
, target_addr_t address
,
3986 uint32_t size
, uint32_t count
, const uint8_t *buffer
)
3988 if (size
!= 1 && size
!= 2 && size
!= 4 && size
!= 8 && size
!= 16) {
3989 LOG_ERROR("BUG: Unsupported size for memory write: %d", size
);
3993 int ret
= ERROR_FAIL
;
3995 RISCV013_INFO(info
);
3997 char *progbuf_result
= "disabled";
3998 char *sysbus_result
= "disabled";
3999 char *abstract_result
= "disabled";
4001 for (unsigned int i
= 0; i
< RISCV_NUM_MEM_ACCESS_METHODS
; i
++) {
4002 int method
= r
->mem_access_methods
[i
];
4004 if (method
== RISCV_MEM_ACCESS_PROGBUF
) {
4005 if (mem_should_skip_progbuf(target
, address
, size
, false, &progbuf_result
))
4008 ret
= write_memory_progbuf(target
, address
, size
, count
, buffer
);
4010 if (ret
!= ERROR_OK
)
4011 progbuf_result
= "failed";
4012 } else if (method
== RISCV_MEM_ACCESS_SYSBUS
) {
4013 if (mem_should_skip_sysbus(target
, address
, size
, 0, false, &sysbus_result
))
4016 if (get_field(info
->sbcs
, DM_SBCS_SBVERSION
) == 0)
4017 ret
= write_memory_bus_v0(target
, address
, size
, count
, buffer
);
4018 else if (get_field(info
->sbcs
, DM_SBCS_SBVERSION
) == 1)
4019 ret
= write_memory_bus_v1(target
, address
, size
, count
, buffer
);
4021 if (ret
!= ERROR_OK
)
4022 sysbus_result
= "failed";
4023 } else if (method
== RISCV_MEM_ACCESS_ABSTRACT
) {
4024 if (mem_should_skip_abstract(target
, address
, size
, 0, false, &abstract_result
))
4027 ret
= write_memory_abstract(target
, address
, size
, count
, buffer
);
4029 if (ret
!= ERROR_OK
)
4030 abstract_result
= "failed";
4031 } else if (method
== RISCV_MEM_ACCESS_UNSPECIFIED
)
4032 /* No further mem access method to try. */
4035 log_mem_access_result(target
, ret
== ERROR_OK
, method
, false);
4037 if (ret
== ERROR_OK
)
4041 LOG_ERROR("Target %s: Failed to write memory (addr=0x%" PRIx64
")", target_name(target
), address
);
4042 LOG_ERROR(" progbuf=%s, sysbus=%s, abstract=%s", progbuf_result
, sysbus_result
, abstract_result
);
4046 static int arch_state(struct target
*target
)
4051 struct target_type riscv013_target
= {
4054 .init_target
= init_target
,
4055 .deinit_target
= deinit_target
,
4058 .poll
= &riscv_openocd_poll
,
4059 .halt
= &riscv_halt
,
4060 .step
= &riscv_openocd_step
,
4062 .assert_reset
= assert_reset
,
4063 .deassert_reset
= deassert_reset
,
4065 .write_memory
= write_memory
,
4067 .arch_state
= arch_state
4070 /*** 0.13-specific implementations of various RISC-V helper functions. ***/
4071 static int riscv013_get_register(struct target
*target
,
4072 riscv_reg_t
*value
, int rid
)
4074 LOG_DEBUG("[%s] reading register %s", target_name(target
),
4075 gdb_regno_name(rid
));
4077 if (riscv_select_current_hart(target
) != ERROR_OK
)
4080 int result
= ERROR_OK
;
4081 if (rid
== GDB_REGNO_PC
) {
4082 /* TODO: move this into riscv.c. */
4083 result
= register_read(target
, value
, GDB_REGNO_DPC
);
4084 LOG_DEBUG("[%d] read PC from DPC: 0x%" PRIx64
, target
->coreid
, *value
);
4085 } else if (rid
== GDB_REGNO_PRIV
) {
4087 /* TODO: move this into riscv.c. */
4088 result
= register_read(target
, &dcsr
, GDB_REGNO_DCSR
);
4089 *value
= set_field(0, VIRT_PRIV_V
, get_field(dcsr
, CSR_DCSR_V
));
4090 *value
= set_field(*value
, VIRT_PRIV_PRV
, get_field(dcsr
, CSR_DCSR_PRV
));
4092 result
= register_read(target
, value
, rid
);
4093 if (result
!= ERROR_OK
)
4100 static int riscv013_set_register(struct target
*target
, int rid
, uint64_t value
)
4102 riscv013_select_current_hart(target
);
4103 LOG_DEBUG("[%d] writing 0x%" PRIx64
" to register %s",
4104 target
->coreid
, value
, gdb_regno_name(rid
));
4106 if (rid
<= GDB_REGNO_XPR31
) {
4107 return register_write_direct(target
, rid
, value
);
4108 } else if (rid
== GDB_REGNO_PC
) {
4109 LOG_DEBUG("[%d] writing PC to DPC: 0x%" PRIx64
, target
->coreid
, value
);
4110 register_write_direct(target
, GDB_REGNO_DPC
, value
);
4111 uint64_t actual_value
;
4112 register_read_direct(target
, &actual_value
, GDB_REGNO_DPC
);
4113 LOG_DEBUG("[%d] actual DPC written: 0x%016" PRIx64
, target
->coreid
, actual_value
);
4114 if (value
!= actual_value
) {
4115 LOG_ERROR("Written PC (0x%" PRIx64
") does not match read back "
4116 "value (0x%" PRIx64
")", value
, actual_value
);
4119 } else if (rid
== GDB_REGNO_PRIV
) {
4121 register_read(target
, &dcsr
, GDB_REGNO_DCSR
);
4122 dcsr
= set_field(dcsr
, CSR_DCSR_PRV
, get_field(value
, VIRT_PRIV_PRV
));
4123 dcsr
= set_field(dcsr
, CSR_DCSR_V
, get_field(value
, VIRT_PRIV_V
));
4124 return register_write_direct(target
, GDB_REGNO_DCSR
, dcsr
);
4126 return register_write_direct(target
, rid
, value
);
4132 static int riscv013_select_current_hart(struct target
*target
)
4136 dm013_info_t
*dm
= get_dm(target
);
4139 if (r
->current_hartid
== dm
->current_hartid
)
4143 /* TODO: can't we just "dmcontrol = DMI_DMACTIVE"? */
4144 if (dmi_read(target
, &dmcontrol
, DM_DMCONTROL
) != ERROR_OK
)
4146 dmcontrol
= set_hartsel(dmcontrol
, r
->current_hartid
);
4147 int result
= dmi_write(target
, DM_DMCONTROL
, dmcontrol
);
4148 dm
->current_hartid
= r
->current_hartid
;
4152 /* Select all harts that were prepped and that are selectable, clearing the
4153 * prepped flag on the harts that actually were selected. */
4154 static int select_prepped_harts(struct target
*target
, bool *use_hasel
)
4156 dm013_info_t
*dm
= get_dm(target
);
4159 if (!dm
->hasel_supported
) {
4166 assert(dm
->hart_count
);
4167 unsigned hawindow_count
= (dm
->hart_count
+ 31) / 32;
4168 uint32_t hawindow
[hawindow_count
];
4170 memset(hawindow
, 0, sizeof(uint32_t) * hawindow_count
);
4172 target_list_t
*entry
;
4173 unsigned total_selected
= 0;
4174 list_for_each_entry(entry
, &dm
->target_list
, list
) {
4175 struct target
*t
= entry
->target
;
4176 riscv_info_t
*r
= riscv_info(t
);
4177 riscv013_info_t
*info
= get_info(t
);
4178 unsigned index
= info
->index
;
4179 LOG_DEBUG("index=%d, coreid=%d, prepped=%d", index
, t
->coreid
, r
->prepped
);
4180 r
->selected
= r
->prepped
;
4182 hawindow
[index
/ 32] |= 1 << (index
% 32);
4189 /* Don't use hasel if we only need to talk to one hart. */
4190 if (total_selected
<= 1) {
4195 for (unsigned i
= 0; i
< hawindow_count
; i
++) {
4196 if (dmi_write(target
, DM_HAWINDOWSEL
, i
) != ERROR_OK
)
4198 if (dmi_write(target
, DM_HAWINDOW
, hawindow
[i
]) != ERROR_OK
)
4206 static int riscv013_halt_prep(struct target
*target
)
4211 static int riscv013_halt_go(struct target
*target
)
4213 bool use_hasel
= false;
4214 if (select_prepped_harts(target
, &use_hasel
) != ERROR_OK
)
4218 LOG_DEBUG("halting hart %d", r
->current_hartid
);
4220 /* Issue the halt command, and then wait for the current hart to halt. */
4221 uint32_t dmcontrol
= DM_DMCONTROL_DMACTIVE
| DM_DMCONTROL_HALTREQ
;
4223 dmcontrol
|= DM_DMCONTROL_HASEL
;
4224 dmcontrol
= set_hartsel(dmcontrol
, r
->current_hartid
);
4225 dmi_write(target
, DM_DMCONTROL
, dmcontrol
);
4226 for (size_t i
= 0; i
< 256; ++i
)
4227 if (riscv_is_halted(target
))
4230 if (!riscv_is_halted(target
)) {
4232 if (dmstatus_read(target
, &dmstatus
, true) != ERROR_OK
)
4234 if (dmi_read(target
, &dmcontrol
, DM_DMCONTROL
) != ERROR_OK
)
4237 LOG_ERROR("unable to halt hart %d", r
->current_hartid
);
4238 LOG_ERROR(" dmcontrol=0x%08x", dmcontrol
);
4239 LOG_ERROR(" dmstatus =0x%08x", dmstatus
);
4243 dmcontrol
= set_field(dmcontrol
, DM_DMCONTROL_HALTREQ
, 0);
4244 dmi_write(target
, DM_DMCONTROL
, dmcontrol
);
4247 target_list_t
*entry
;
4248 dm013_info_t
*dm
= get_dm(target
);
4251 list_for_each_entry(entry
, &dm
->target_list
, list
) {
4252 struct target
*t
= entry
->target
;
4253 t
->state
= TARGET_HALTED
;
4254 if (t
->debug_reason
== DBG_REASON_NOTHALTED
)
4255 t
->debug_reason
= DBG_REASON_DBGRQ
;
4258 /* The "else" case is handled in halt_go(). */
4263 static int riscv013_resume_go(struct target
*target
)
4265 bool use_hasel
= false;
4266 if (select_prepped_harts(target
, &use_hasel
) != ERROR_OK
)
4269 return riscv013_step_or_resume_current_hart(target
, false, use_hasel
);
4272 static int riscv013_step_current_hart(struct target
*target
)
4274 return riscv013_step_or_resume_current_hart(target
, true, false);
4277 static int riscv013_resume_prep(struct target
*target
)
4279 return riscv013_on_step_or_resume(target
, false);
4282 static int riscv013_on_step(struct target
*target
)
4284 return riscv013_on_step_or_resume(target
, true);
4287 static int riscv013_on_halt(struct target
*target
)
4292 static bool riscv013_is_halted(struct target
*target
)
4295 if (dmstatus_read(target
, &dmstatus
, true) != ERROR_OK
)
4297 if (get_field(dmstatus
, DM_DMSTATUS_ANYUNAVAIL
))
4298 LOG_ERROR("Hart %d is unavailable.", riscv_current_hartid(target
));
4299 if (get_field(dmstatus
, DM_DMSTATUS_ANYNONEXISTENT
))
4300 LOG_ERROR("Hart %d doesn't exist.", riscv_current_hartid(target
));
4301 if (get_field(dmstatus
, DM_DMSTATUS_ANYHAVERESET
)) {
4302 int hartid
= riscv_current_hartid(target
);
4303 LOG_INFO("Hart %d unexpectedly reset!", hartid
);
4304 /* TODO: Can we make this more obvious to eg. a gdb user? */
4305 uint32_t dmcontrol
= DM_DMCONTROL_DMACTIVE
|
4306 DM_DMCONTROL_ACKHAVERESET
;
4307 dmcontrol
= set_hartsel(dmcontrol
, hartid
);
4308 /* If we had been halted when we reset, request another halt. If we
4309 * ended up running out of reset, then the user will (hopefully) get a
4310 * message that a reset happened, that the target is running, and then
4311 * that it is halted again once the request goes through.
4313 if (target
->state
== TARGET_HALTED
)
4314 dmcontrol
|= DM_DMCONTROL_HALTREQ
;
4315 dmi_write(target
, DM_DMCONTROL
, dmcontrol
);
4317 return get_field(dmstatus
, DM_DMSTATUS_ALLHALTED
);
4320 static enum riscv_halt_reason
riscv013_halt_reason(struct target
*target
)
4323 int result
= register_read(target
, &dcsr
, GDB_REGNO_DCSR
);
4324 if (result
!= ERROR_OK
)
4325 return RISCV_HALT_UNKNOWN
;
4327 LOG_DEBUG("dcsr.cause: 0x%" PRIx64
, get_field(dcsr
, CSR_DCSR_CAUSE
));
4329 switch (get_field(dcsr
, CSR_DCSR_CAUSE
)) {
4330 case CSR_DCSR_CAUSE_SWBP
:
4331 return RISCV_HALT_BREAKPOINT
;
4332 case CSR_DCSR_CAUSE_TRIGGER
:
4333 /* We could get here before triggers are enumerated if a trigger was
4334 * already set when we connected. Force enumeration now, which has the
4335 * side effect of clearing any triggers we did not set. */
4336 riscv_enumerate_triggers(target
);
4337 LOG_DEBUG("{%d} halted because of trigger", target
->coreid
);
4338 return RISCV_HALT_TRIGGER
;
4339 case CSR_DCSR_CAUSE_STEP
:
4340 return RISCV_HALT_SINGLESTEP
;
4341 case CSR_DCSR_CAUSE_DEBUGINT
:
4342 case CSR_DCSR_CAUSE_HALT
:
4343 return RISCV_HALT_INTERRUPT
;
4344 case CSR_DCSR_CAUSE_GROUP
:
4345 return RISCV_HALT_GROUP
;
4348 LOG_ERROR("Unknown DCSR cause field: 0x%" PRIx64
, get_field(dcsr
, CSR_DCSR_CAUSE
));
4349 LOG_ERROR(" dcsr=0x%016lx", (long)dcsr
);
4350 return RISCV_HALT_UNKNOWN
;
4353 int riscv013_write_debug_buffer(struct target
*target
, unsigned index
, riscv_insn_t data
)
4355 dm013_info_t
*dm
= get_dm(target
);
4358 if (dm
->progbuf_cache
[index
] != data
) {
4359 if (dmi_write(target
, DM_PROGBUF0
+ index
, data
) != ERROR_OK
)
4361 dm
->progbuf_cache
[index
] = data
;
4363 LOG_DEBUG("cache hit for 0x%" PRIx32
" @%d", data
, index
);
4368 riscv_insn_t
riscv013_read_debug_buffer(struct target
*target
, unsigned index
)
4371 dmi_read(target
, &value
, DM_PROGBUF0
+ index
);
4375 int riscv013_execute_debug_buffer(struct target
*target
)
4377 uint32_t run_program
= 0;
4378 run_program
= set_field(run_program
, AC_ACCESS_REGISTER_AARSIZE
, 2);
4379 run_program
= set_field(run_program
, AC_ACCESS_REGISTER_POSTEXEC
, 1);
4380 run_program
= set_field(run_program
, AC_ACCESS_REGISTER_TRANSFER
, 0);
4381 run_program
= set_field(run_program
, AC_ACCESS_REGISTER_REGNO
, 0x1000);
4383 return execute_abstract_command(target
, run_program
);
4386 void riscv013_fill_dmi_write_u64(struct target
*target
, char *buf
, int a
, uint64_t d
)
4388 RISCV013_INFO(info
);
4389 buf_set_u64((unsigned char *)buf
, DTM_DMI_OP_OFFSET
, DTM_DMI_OP_LENGTH
, DMI_OP_WRITE
);
4390 buf_set_u64((unsigned char *)buf
, DTM_DMI_DATA_OFFSET
, DTM_DMI_DATA_LENGTH
, d
);
4391 buf_set_u64((unsigned char *)buf
, DTM_DMI_ADDRESS_OFFSET
, info
->abits
, a
);
4394 void riscv013_fill_dmi_read_u64(struct target
*target
, char *buf
, int a
)
4396 RISCV013_INFO(info
);
4397 buf_set_u64((unsigned char *)buf
, DTM_DMI_OP_OFFSET
, DTM_DMI_OP_LENGTH
, DMI_OP_READ
);
4398 buf_set_u64((unsigned char *)buf
, DTM_DMI_DATA_OFFSET
, DTM_DMI_DATA_LENGTH
, 0);
4399 buf_set_u64((unsigned char *)buf
, DTM_DMI_ADDRESS_OFFSET
, info
->abits
, a
);
4402 void riscv013_fill_dmi_nop_u64(struct target
*target
, char *buf
)
4404 RISCV013_INFO(info
);
4405 buf_set_u64((unsigned char *)buf
, DTM_DMI_OP_OFFSET
, DTM_DMI_OP_LENGTH
, DMI_OP_NOP
);
4406 buf_set_u64((unsigned char *)buf
, DTM_DMI_DATA_OFFSET
, DTM_DMI_DATA_LENGTH
, 0);
4407 buf_set_u64((unsigned char *)buf
, DTM_DMI_ADDRESS_OFFSET
, info
->abits
, 0);
4410 /* Helper function for riscv013_test_sba_config_reg */
4411 static int get_max_sbaccess(struct target
*target
)
4413 RISCV013_INFO(info
);
4415 uint32_t sbaccess128
= get_field(info
->sbcs
, DM_SBCS_SBACCESS128
);
4416 uint32_t sbaccess64
= get_field(info
->sbcs
, DM_SBCS_SBACCESS64
);
4417 uint32_t sbaccess32
= get_field(info
->sbcs
, DM_SBCS_SBACCESS32
);
4418 uint32_t sbaccess16
= get_field(info
->sbcs
, DM_SBCS_SBACCESS16
);
4419 uint32_t sbaccess8
= get_field(info
->sbcs
, DM_SBCS_SBACCESS8
);
4423 else if (sbaccess64
)
4425 else if (sbaccess32
)
4427 else if (sbaccess16
)
4435 static uint32_t get_num_sbdata_regs(struct target
*target
)
4437 RISCV013_INFO(info
);
4439 uint32_t sbaccess128
= get_field(info
->sbcs
, DM_SBCS_SBACCESS128
);
4440 uint32_t sbaccess64
= get_field(info
->sbcs
, DM_SBCS_SBACCESS64
);
4441 uint32_t sbaccess32
= get_field(info
->sbcs
, DM_SBCS_SBACCESS32
);
4445 else if (sbaccess64
)
4447 else if (sbaccess32
)
4453 static int riscv013_test_sba_config_reg(struct target
*target
,
4454 target_addr_t legal_address
, uint32_t num_words
,
4455 target_addr_t illegal_address
, bool run_sbbusyerror_test
)
4457 LOG_INFO("Testing System Bus Access as defined by RISC-V Debug Spec v0.13");
4459 uint32_t tests_failed
= 0;
4463 dmi_read(target
, &sbcs_orig
, DM_SBCS
);
4465 uint32_t sbcs
= sbcs_orig
;
4468 int max_sbaccess
= get_max_sbaccess(target
);
4470 if (max_sbaccess
== -1) {
4471 LOG_ERROR("System Bus Access not supported in this config.");
4475 if (get_field(sbcs
, DM_SBCS_SBVERSION
) != 1) {
4476 LOG_ERROR("System Bus Access unsupported SBVERSION (%d). Only version 1 is supported.",
4477 get_field(sbcs
, DM_SBCS_SBVERSION
));
4481 uint32_t num_sbdata_regs
= get_num_sbdata_regs(target
);
4482 assert(num_sbdata_regs
);
4484 uint32_t rd_buf
[num_sbdata_regs
];
4486 /* Test 1: Simple write/read test */
4488 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBAUTOINCREMENT
, 0);
4489 dmi_write(target
, DM_SBCS
, sbcs
);
4491 uint32_t test_patterns
[4] = {0xdeadbeef, 0xfeedbabe, 0x12345678, 0x08675309};
4492 for (uint32_t sbaccess
= 0; sbaccess
<= (uint32_t)max_sbaccess
; sbaccess
++) {
4493 sbcs
= set_field(sbcs
, DM_SBCS_SBACCESS
, sbaccess
);
4494 dmi_write(target
, DM_SBCS
, sbcs
);
4496 uint32_t compare_mask
= (sbaccess
== 0) ? 0xff : (sbaccess
== 1) ? 0xffff : 0xffffffff;
4498 for (uint32_t i
= 0; i
< num_words
; i
++) {
4499 uint32_t addr
= legal_address
+ (i
<< sbaccess
);
4500 uint32_t wr_data
[num_sbdata_regs
];
4501 for (uint32_t j
= 0; j
< num_sbdata_regs
; j
++)
4502 wr_data
[j
] = test_patterns
[j
] + i
;
4503 write_memory_sba_simple(target
, addr
, wr_data
, num_sbdata_regs
, sbcs
);
4506 for (uint32_t i
= 0; i
< num_words
; i
++) {
4507 uint32_t addr
= legal_address
+ (i
<< sbaccess
);
4508 read_memory_sba_simple(target
, addr
, rd_buf
, num_sbdata_regs
, sbcs
);
4509 for (uint32_t j
= 0; j
< num_sbdata_regs
; j
++) {
4510 if (((test_patterns
[j
]+i
)&compare_mask
) != (rd_buf
[j
]&compare_mask
)) {
4511 LOG_ERROR("System Bus Access Test 1: Error reading non-autoincremented address %x,"
4512 "expected val = %x, read val = %x", addr
, test_patterns
[j
]+i
, rd_buf
[j
]);
4513 test_passed
= false;
4520 LOG_INFO("System Bus Access Test 1: Simple write/read test PASSED.");
4522 /* Test 2: Address autoincrement test */
4523 target_addr_t curr_addr
;
4524 target_addr_t prev_addr
;
4526 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBAUTOINCREMENT
, 1);
4527 dmi_write(target
, DM_SBCS
, sbcs
);
4529 for (uint32_t sbaccess
= 0; sbaccess
<= (uint32_t)max_sbaccess
; sbaccess
++) {
4530 sbcs
= set_field(sbcs
, DM_SBCS_SBACCESS
, sbaccess
);
4531 dmi_write(target
, DM_SBCS
, sbcs
);
4533 dmi_write(target
, DM_SBADDRESS0
, legal_address
);
4534 read_sbcs_nonbusy(target
, &sbcs
);
4535 curr_addr
= legal_address
;
4536 for (uint32_t i
= 0; i
< num_words
; i
++) {
4537 prev_addr
= curr_addr
;
4538 read_sbcs_nonbusy(target
, &sbcs
);
4539 curr_addr
= sb_read_address(target
);
4540 if ((curr_addr
- prev_addr
!= (uint32_t)(1 << sbaccess
)) && (i
!= 0)) {
4541 LOG_ERROR("System Bus Access Test 2: Error with address auto-increment, sbaccess = %x.", sbaccess
);
4542 test_passed
= false;
4545 dmi_write(target
, DM_SBDATA0
, i
);
4548 read_sbcs_nonbusy(target
, &sbcs
);
4550 dmi_write(target
, DM_SBADDRESS0
, legal_address
);
4553 sbcs
= set_field(sbcs
, DM_SBCS_SBREADONDATA
, 1);
4554 dmi_write(target
, DM_SBCS
, sbcs
);
4555 dmi_read(target
, &val
, DM_SBDATA0
); /* Dummy read to trigger first system bus read */
4556 curr_addr
= legal_address
;
4557 for (uint32_t i
= 0; i
< num_words
; i
++) {
4558 prev_addr
= curr_addr
;
4559 read_sbcs_nonbusy(target
, &sbcs
);
4560 curr_addr
= sb_read_address(target
);
4561 if ((curr_addr
- prev_addr
!= (uint32_t)(1 << sbaccess
)) && (i
!= 0)) {
4562 LOG_ERROR("System Bus Access Test 2: Error with address auto-increment, sbaccess = %x", sbaccess
);
4563 test_passed
= false;
4566 dmi_read(target
, &val
, DM_SBDATA0
);
4567 read_sbcs_nonbusy(target
, &sbcs
);
4569 LOG_ERROR("System Bus Access Test 2: Error reading auto-incremented address,"
4570 "expected val = %x, read val = %x.", i
, val
);
4571 test_passed
= false;
4577 LOG_INFO("System Bus Access Test 2: Address auto-increment test PASSED.");
4579 /* Test 3: Read from illegal address */
4580 read_memory_sba_simple(target
, illegal_address
, rd_buf
, 1, sbcs_orig
);
4582 dmi_read(target
, &rd_val
, DM_SBCS
);
4583 if (get_field(rd_val
, DM_SBCS_SBERROR
) == 2) {
4584 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBERROR
, 2);
4585 dmi_write(target
, DM_SBCS
, sbcs
);
4586 dmi_read(target
, &rd_val
, DM_SBCS
);
4587 if (get_field(rd_val
, DM_SBCS_SBERROR
) == 0)
4588 LOG_INFO("System Bus Access Test 3: Illegal address read test PASSED.");
4590 LOG_ERROR("System Bus Access Test 3: Illegal address read test FAILED, unable to clear to 0.");
4592 LOG_ERROR("System Bus Access Test 3: Illegal address read test FAILED, unable to set error code.");
4595 /* Test 4: Write to illegal address */
4596 write_memory_sba_simple(target
, illegal_address
, test_patterns
, 1, sbcs_orig
);
4598 dmi_read(target
, &rd_val
, DM_SBCS
);
4599 if (get_field(rd_val
, DM_SBCS_SBERROR
) == 2) {
4600 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBERROR
, 2);
4601 dmi_write(target
, DM_SBCS
, sbcs
);
4602 dmi_read(target
, &rd_val
, DM_SBCS
);
4603 if (get_field(rd_val
, DM_SBCS_SBERROR
) == 0)
4604 LOG_INFO("System Bus Access Test 4: Illegal address write test PASSED.");
4606 LOG_ERROR("System Bus Access Test 4: Illegal address write test FAILED, unable to clear to 0.");
4610 LOG_ERROR("System Bus Access Test 4: Illegal address write test FAILED, unable to set error code.");
4614 /* Test 5: Write with unsupported sbaccess size */
4615 uint32_t sbaccess128
= get_field(sbcs_orig
, DM_SBCS_SBACCESS128
);
4618 LOG_INFO("System Bus Access Test 5: SBCS sbaccess error test PASSED, all sbaccess sizes supported.");
4620 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBACCESS
, 4);
4622 write_memory_sba_simple(target
, legal_address
, test_patterns
, 1, sbcs
);
4624 dmi_read(target
, &rd_val
, DM_SBCS
);
4625 if (get_field(rd_val
, DM_SBCS_SBERROR
) == 4) {
4626 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBERROR
, 4);
4627 dmi_write(target
, DM_SBCS
, sbcs
);
4628 dmi_read(target
, &rd_val
, DM_SBCS
);
4629 if (get_field(rd_val
, DM_SBCS_SBERROR
) == 0)
4630 LOG_INFO("System Bus Access Test 5: SBCS sbaccess error test PASSED.");
4632 LOG_ERROR("System Bus Access Test 5: SBCS sbaccess error test FAILED, unable to clear to 0.");
4636 LOG_ERROR("System Bus Access Test 5: SBCS sbaccess error test FAILED, unable to set error code.");
4641 /* Test 6: Write to misaligned address */
4642 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBACCESS
, 1);
4644 write_memory_sba_simple(target
, legal_address
+1, test_patterns
, 1, sbcs
);
4646 dmi_read(target
, &rd_val
, DM_SBCS
);
4647 if (get_field(rd_val
, DM_SBCS_SBERROR
) == 3) {
4648 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBERROR
, 3);
4649 dmi_write(target
, DM_SBCS
, sbcs
);
4650 dmi_read(target
, &rd_val
, DM_SBCS
);
4651 if (get_field(rd_val
, DM_SBCS_SBERROR
) == 0)
4652 LOG_INFO("System Bus Access Test 6: SBCS address alignment error test PASSED");
4654 LOG_ERROR("System Bus Access Test 6: SBCS address alignment error test FAILED, unable to clear to 0.");
4658 LOG_ERROR("System Bus Access Test 6: SBCS address alignment error test FAILED, unable to set error code.");
4662 /* Test 7: Set sbbusyerror, only run this case in simulation as it is likely
4663 * impossible to hit otherwise */
4664 if (run_sbbusyerror_test
) {
4665 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBREADONADDR
, 1);
4666 dmi_write(target
, DM_SBCS
, sbcs
);
4668 for (int i
= 0; i
< 16; i
++)
4669 dmi_write(target
, DM_SBDATA0
, 0xdeadbeef);
4671 for (int i
= 0; i
< 16; i
++)
4672 dmi_write(target
, DM_SBADDRESS0
, legal_address
);
4674 dmi_read(target
, &rd_val
, DM_SBCS
);
4675 if (get_field(rd_val
, DM_SBCS_SBBUSYERROR
)) {
4676 sbcs
= set_field(sbcs_orig
, DM_SBCS_SBBUSYERROR
, 1);
4677 dmi_write(target
, DM_SBCS
, sbcs
);
4678 dmi_read(target
, &rd_val
, DM_SBCS
);
4679 if (get_field(rd_val
, DM_SBCS_SBBUSYERROR
) == 0)
4680 LOG_INFO("System Bus Access Test 7: SBCS sbbusyerror test PASSED.");
4682 LOG_ERROR("System Bus Access Test 7: SBCS sbbusyerror test FAILED, unable to clear to 0.");
4686 LOG_ERROR("System Bus Access Test 7: SBCS sbbusyerror test FAILED, unable to set error code.");
4691 if (tests_failed
== 0) {
4692 LOG_INFO("ALL TESTS PASSED");
4695 LOG_ERROR("%d TESTS FAILED", tests_failed
);
4701 void write_memory_sba_simple(struct target
*target
, target_addr_t addr
,
4702 uint32_t *write_data
, uint32_t write_size
, uint32_t sbcs
)
4704 RISCV013_INFO(info
);
4707 uint32_t masked_addr
;
4709 uint32_t sba_size
= get_field(info
->sbcs
, DM_SBCS_SBASIZE
);
4711 read_sbcs_nonbusy(target
, &rd_sbcs
);
4713 uint32_t sbcs_no_readonaddr
= set_field(sbcs
, DM_SBCS_SBREADONADDR
, 0);
4714 dmi_write(target
, DM_SBCS
, sbcs_no_readonaddr
);
4716 for (uint32_t i
= 0; i
< sba_size
/32; i
++) {
4717 masked_addr
= (addr
>> 32*i
) & 0xffffffff;
4720 dmi_write(target
, DM_SBADDRESS0
+i
, masked_addr
);
4722 dmi_write(target
, DM_SBADDRESS3
, masked_addr
);
4725 /* Write SBDATA registers starting with highest address, since write to
4726 * SBDATA0 triggers write */
4727 for (int i
= write_size
-1; i
>= 0; i
--)
4728 dmi_write(target
, DM_SBDATA0
+i
, write_data
[i
]);
4731 void read_memory_sba_simple(struct target
*target
, target_addr_t addr
,
4732 uint32_t *rd_buf
, uint32_t read_size
, uint32_t sbcs
)
4734 RISCV013_INFO(info
);
4737 uint32_t masked_addr
;
4739 uint32_t sba_size
= get_field(info
->sbcs
, DM_SBCS_SBASIZE
);
4741 read_sbcs_nonbusy(target
, &rd_sbcs
);
4743 uint32_t sbcs_readonaddr
= set_field(sbcs
, DM_SBCS_SBREADONADDR
, 1);
4744 dmi_write(target
, DM_SBCS
, sbcs_readonaddr
);
4746 /* Write addresses starting with highest address register */
4747 for (int i
= sba_size
/32-1; i
>= 0; i
--) {
4748 masked_addr
= (addr
>> 32*i
) & 0xffffffff;
4751 dmi_write(target
, DM_SBADDRESS0
+i
, masked_addr
);
4753 dmi_write(target
, DM_SBADDRESS3
, masked_addr
);
4756 read_sbcs_nonbusy(target
, &rd_sbcs
);
4758 for (uint32_t i
= 0; i
< read_size
; i
++)
4759 dmi_read(target
, &(rd_buf
[i
]), DM_SBDATA0
+i
);
4762 int riscv013_dmi_write_u64_bits(struct target
*target
)
4764 RISCV013_INFO(info
);
4765 return info
->abits
+ DTM_DMI_DATA_LENGTH
+ DTM_DMI_OP_LENGTH
;
4768 static int maybe_execute_fence_i(struct target
*target
)
4770 if (has_sufficient_progbuf(target
, 3))
4771 return execute_fence(target
);
4775 /* Helper Functions. */
4776 static int riscv013_on_step_or_resume(struct target
*target
, bool step
)
4778 if (maybe_execute_fence_i(target
) != ERROR_OK
)
4781 /* We want to twiddle some bits in the debug CSR so debugging works. */
4783 int result
= register_read(target
, &dcsr
, GDB_REGNO_DCSR
);
4784 if (result
!= ERROR_OK
)
4786 dcsr
= set_field(dcsr
, CSR_DCSR_STEP
, step
);
4787 dcsr
= set_field(dcsr
, CSR_DCSR_EBREAKM
, riscv_ebreakm
);
4788 dcsr
= set_field(dcsr
, CSR_DCSR_EBREAKS
, riscv_ebreaks
);
4789 dcsr
= set_field(dcsr
, CSR_DCSR_EBREAKU
, riscv_ebreaku
);
4790 return riscv_set_register(target
, GDB_REGNO_DCSR
, dcsr
);
4793 static int riscv013_step_or_resume_current_hart(struct target
*target
,
4794 bool step
, bool use_hasel
)
4797 LOG_DEBUG("resuming hart %d (for step?=%d)", r
->current_hartid
, step
);
4798 if (!riscv_is_halted(target
)) {
4799 LOG_ERROR("Hart %d is not halted!", r
->current_hartid
);
4803 /* Issue the resume command, and then wait for the current hart to resume. */
4804 uint32_t dmcontrol
= DM_DMCONTROL_DMACTIVE
| DM_DMCONTROL_RESUMEREQ
;
4806 dmcontrol
|= DM_DMCONTROL_HASEL
;
4807 dmcontrol
= set_hartsel(dmcontrol
, r
->current_hartid
);
4808 dmi_write(target
, DM_DMCONTROL
, dmcontrol
);
4810 dmcontrol
= set_field(dmcontrol
, DM_DMCONTROL_HASEL
, 0);
4811 dmcontrol
= set_field(dmcontrol
, DM_DMCONTROL_RESUMEREQ
, 0);
4814 for (size_t i
= 0; i
< 256; ++i
) {
4816 if (dmstatus_read(target
, &dmstatus
, true) != ERROR_OK
)
4818 if (get_field(dmstatus
, DM_DMSTATUS_ALLRESUMEACK
) == 0)
4820 if (step
&& get_field(dmstatus
, DM_DMSTATUS_ALLHALTED
) == 0)
4823 dmi_write(target
, DM_DMCONTROL
, dmcontrol
);
4827 dmi_write(target
, DM_DMCONTROL
, dmcontrol
);
4829 LOG_ERROR("unable to resume hart %d", r
->current_hartid
);
4830 if (dmstatus_read(target
, &dmstatus
, true) != ERROR_OK
)
4832 LOG_ERROR(" dmstatus =0x%08x", dmstatus
);
4835 LOG_ERROR(" was stepping, halting");
4843 void riscv013_clear_abstract_error(struct target
*target
)
4845 /* Wait for busy to go away. */
4846 time_t start
= time(NULL
);
4847 uint32_t abstractcs
;
4848 dmi_read(target
, &abstractcs
, DM_ABSTRACTCS
);
4849 while (get_field(abstractcs
, DM_ABSTRACTCS_BUSY
)) {
4850 dmi_read(target
, &abstractcs
, DM_ABSTRACTCS
);
4852 if (time(NULL
) - start
> riscv_command_timeout_sec
) {
4853 LOG_ERROR("abstractcs.busy is not going low after %d seconds "
4854 "(abstractcs=0x%x). The target is either really slow or "
4855 "broken. You could increase the timeout with riscv "
4856 "set_command_timeout_sec.",
4857 riscv_command_timeout_sec
, abstractcs
);
4861 /* Clear the error status. */
4862 dmi_write(target
, DM_ABSTRACTCS
, DM_ABSTRACTCS_CMDERR
);