Code Review / openocd.git / blob
? search:
summary | shortlog | log | commit | commitdiff | review | tree
history | raw | HEAD
XScale: debug entry uses new register mapping
[openocd.git] / src / target / xscale.c
1 /***************************************************************************
2 * Copyright (C) 2006, 2007 by Dominic Rath *
3 * Dominic.Rath@gmx.de *
4 * *
5 * Copyright (C) 2007,2008 Øyvind Harboe *
6 * oyvind.harboe@zylin.com *
7 * *
8 * Copyright (C) 2009 Michael Schwingen *
9 * michael@schwingen.org *
10 * *
11 * This program is free software; you can redistribute it and/or modify *
12 * it under the terms of the GNU General Public License as published by *
13 * the Free Software Foundation; either version 2 of the License, or *
14 * (at your option) any later version. *
15 * *
16 * This program is distributed in the hope that it will be useful, *
17 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
18 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
19 * GNU General Public License for more details. *
20 * *
21 * You should have received a copy of the GNU General Public License *
22 * along with this program; if not, write to the *
23 * Free Software Foundation, Inc., *
24 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
25 ***************************************************************************/
26 #ifdef HAVE_CONFIG_H
27 #include "config.h"
28 #endif
29
30 #include "breakpoints.h"
31 #include "xscale.h"
32 #include "target_type.h"
33 #include "arm_jtag.h"
34 #include "arm_simulator.h"
35 #include "arm_disassembler.h"
36 #include "time_support.h"
37 #include "register.h"
38 #include "image.h"
39
40
41 /*
42 * Important XScale documents available as of October 2009 include:
43 *
44 * Intel XScale® Core Developer’s Manual, January 2004
45 * Order Number: 273473-002
46 * This has a chapter detailing debug facilities, and punts some
47 * details to chip-specific microarchitecture documents.
48 *
49 * Hot-Debug for Intel XScale® Core Debug White Paper, May 2005
50 * Document Number: 273539-005
51 * Less detailed than the developer's manual, but summarizes those
52 * missing details (for most XScales) and gives LOTS of notes about
53 * debugger/handler interaction issues. Presents a simpler reset
54 * and load-handler sequence than the arch doc. (Note, OpenOCD
55 * doesn't currently support "Hot-Debug" as defined there.)
56 *
57 * Chip-specific microarchitecture documents may also be useful.
58 */
59
60
61 /* forward declarations */
62 static int xscale_resume(struct target *, int current,
63 uint32_t address, int handle_breakpoints, int debug_execution);
64 static int xscale_debug_entry(struct target *);
65 static int xscale_restore_context(struct target *);
66 static int xscale_get_reg(struct reg *reg);
67 static int xscale_set_reg(struct reg *reg, uint8_t *buf);
68 static int xscale_set_breakpoint(struct target *, struct breakpoint *);
69 static int xscale_set_watchpoint(struct target *, struct watchpoint *);
70 static int xscale_unset_breakpoint(struct target *, struct breakpoint *);
71 static int xscale_read_trace(struct target *);
72
73
74 /* This XScale "debug handler" is loaded into the processor's
75 * mini-ICache, which is 2K of code writable only via JTAG.
76 *
77 * FIXME the OpenOCD "bin2char" utility currently doesn't handle
78 * binary files cleanly. It's string oriented, and terminates them
79 * with a NUL character. Better would be to generate the constants
80 * and let other code decide names, scoping, and other housekeeping.
81 */
82 static /* unsigned const char xscale_debug_handler[] = ... */
83 #include "xscale_debug.h"
84
85 static char *const xscale_reg_list[] =
86 {
87 "XSCALE_MAINID", /* 0 */
88 "XSCALE_CACHETYPE",
89 "XSCALE_CTRL",
90 "XSCALE_AUXCTRL",
91 "XSCALE_TTB",
92 "XSCALE_DAC",
93 "XSCALE_FSR",
94 "XSCALE_FAR",
95 "XSCALE_PID",
96 "XSCALE_CPACCESS",
97 "XSCALE_IBCR0", /* 10 */
98 "XSCALE_IBCR1",
99 "XSCALE_DBR0",
100 "XSCALE_DBR1",
101 "XSCALE_DBCON",
102 "XSCALE_TBREG",
103 "XSCALE_CHKPT0",
104 "XSCALE_CHKPT1",
105 "XSCALE_DCSR",
106 "XSCALE_TX",
107 "XSCALE_RX", /* 20 */
108 "XSCALE_TXRXCTRL",
109 };
110
111 static const struct xscale_reg xscale_reg_arch_info[] =
112 {
113 {XSCALE_MAINID, NULL},
114 {XSCALE_CACHETYPE, NULL},
115 {XSCALE_CTRL, NULL},
116 {XSCALE_AUXCTRL, NULL},
117 {XSCALE_TTB, NULL},
118 {XSCALE_DAC, NULL},
119 {XSCALE_FSR, NULL},
120 {XSCALE_FAR, NULL},
121 {XSCALE_PID, NULL},
122 {XSCALE_CPACCESS, NULL},
123 {XSCALE_IBCR0, NULL},
124 {XSCALE_IBCR1, NULL},
125 {XSCALE_DBR0, NULL},
126 {XSCALE_DBR1, NULL},
127 {XSCALE_DBCON, NULL},
128 {XSCALE_TBREG, NULL},
129 {XSCALE_CHKPT0, NULL},
130 {XSCALE_CHKPT1, NULL},
131 {XSCALE_DCSR, NULL}, /* DCSR accessed via JTAG or SW */
132 {-1, NULL}, /* TX accessed via JTAG */
133 {-1, NULL}, /* RX accessed via JTAG */
134 {-1, NULL}, /* TXRXCTRL implicit access via JTAG */
135 };
136
137 /* convenience wrapper to access XScale specific registers */
138 static int xscale_set_reg_u32(struct reg *reg, uint32_t value)
139 {
140 uint8_t buf[4];
141
142 buf_set_u32(buf, 0, 32, value);
143
144 return xscale_set_reg(reg, buf);
145 }
146
147 static const char xscale_not[] = "target is not an XScale";
148
149 static int xscale_verify_pointer(struct command_context *cmd_ctx,
150 struct xscale_common *xscale)
151 {
152 if (xscale->common_magic != XSCALE_COMMON_MAGIC) {
153 command_print(cmd_ctx, xscale_not);
154 return ERROR_TARGET_INVALID;
155 }
156 return ERROR_OK;
157 }
158
159 static int xscale_jtag_set_instr(struct jtag_tap *tap, uint32_t new_instr)
160 {
161 if (tap == NULL)
162 return ERROR_FAIL;
163
164 if (buf_get_u32(tap->cur_instr, 0, tap->ir_length) != new_instr)
165 {
166 struct scan_field field;
167 uint8_t scratch[4];
168
169 memset(&field, 0, sizeof field);
170 field.tap = tap;
171 field.num_bits = tap->ir_length;
172 field.out_value = scratch;
173 buf_set_u32(field.out_value, 0, field.num_bits, new_instr);
174
175 jtag_add_ir_scan(1, &field, jtag_get_end_state());
176 }
177
178 return ERROR_OK;
179 }
180
181 static int xscale_read_dcsr(struct target *target)
182 {
183 struct xscale_common *xscale = target_to_xscale(target);
184 int retval;
185 struct scan_field fields[3];
186 uint8_t field0 = 0x0;
187 uint8_t field0_check_value = 0x2;
188 uint8_t field0_check_mask = 0x7;
189 uint8_t field2 = 0x0;
190 uint8_t field2_check_value = 0x0;
191 uint8_t field2_check_mask = 0x1;
192
193 jtag_set_end_state(TAP_DRPAUSE);
194 xscale_jtag_set_instr(target->tap,
195 XSCALE_SELDCSR << xscale->xscale_variant);
196
197 buf_set_u32(&field0, 1, 1, xscale->hold_rst);
198 buf_set_u32(&field0, 2, 1, xscale->external_debug_break);
199
200 memset(&fields, 0, sizeof fields);
201
202 fields[0].tap = target->tap;
203 fields[0].num_bits = 3;
204 fields[0].out_value = &field0;
205 uint8_t tmp;
206 fields[0].in_value = &tmp;
207
208 fields[1].tap = target->tap;
209 fields[1].num_bits = 32;
210 fields[1].in_value = xscale->reg_cache->reg_list[XSCALE_DCSR].value;
211
212 fields[2].tap = target->tap;
213 fields[2].num_bits = 1;
214 fields[2].out_value = &field2;
215 uint8_t tmp2;
216 fields[2].in_value = &tmp2;
217
218 jtag_add_dr_scan(3, fields, jtag_get_end_state());
219
220 jtag_check_value_mask(fields + 0, &field0_check_value, &field0_check_mask);
221 jtag_check_value_mask(fields + 2, &field2_check_value, &field2_check_mask);
222
223 if ((retval = jtag_execute_queue()) != ERROR_OK)
224 {
225 LOG_ERROR("JTAG error while reading DCSR");
226 return retval;
227 }
228
229 xscale->reg_cache->reg_list[XSCALE_DCSR].dirty = 0;
230 xscale->reg_cache->reg_list[XSCALE_DCSR].valid = 1;
231
232 /* write the register with the value we just read
233 * on this second pass, only the first bit of field0 is guaranteed to be 0)
234 */
235 field0_check_mask = 0x1;
236 fields[1].out_value = xscale->reg_cache->reg_list[XSCALE_DCSR].value;
237 fields[1].in_value = NULL;
238
239 jtag_set_end_state(TAP_IDLE);
240
241 jtag_add_dr_scan(3, fields, jtag_get_end_state());
242
243 /* DANGER!!! this must be here. It will make sure that the arguments
244 * to jtag_set_check_value() does not go out of scope! */
245 return jtag_execute_queue();
246 }
247
248
249 static void xscale_getbuf(jtag_callback_data_t arg)
250 {
251 uint8_t *in = (uint8_t *)arg;
252 *((uint32_t *)in) = buf_get_u32(in, 0, 32);
253 }
254
255 static int xscale_receive(struct target *target, uint32_t *buffer, int num_words)
256 {
257 if (num_words == 0)
258 return ERROR_INVALID_ARGUMENTS;
259
260 struct xscale_common *xscale = target_to_xscale(target);
261 int retval = ERROR_OK;
262 tap_state_t path[3];
263 struct scan_field fields[3];
264 uint8_t *field0 = malloc(num_words * 1);
265 uint8_t field0_check_value = 0x2;
266 uint8_t field0_check_mask = 0x6;
267 uint32_t *field1 = malloc(num_words * 4);
268 uint8_t field2_check_value = 0x0;
269 uint8_t field2_check_mask = 0x1;
270 int words_done = 0;
271 int words_scheduled = 0;
272 int i;
273
274 path[0] = TAP_DRSELECT;
275 path[1] = TAP_DRCAPTURE;
276 path[2] = TAP_DRSHIFT;
277
278 memset(&fields, 0, sizeof fields);
279
280 fields[0].tap = target->tap;
281 fields[0].num_bits = 3;
282 fields[0].check_value = &field0_check_value;
283 fields[0].check_mask = &field0_check_mask;
284
285 fields[1].tap = target->tap;
286 fields[1].num_bits = 32;
287
288 fields[2].tap = target->tap;
289 fields[2].num_bits = 1;
290 fields[2].check_value = &field2_check_value;
291 fields[2].check_mask = &field2_check_mask;
292
293 jtag_set_end_state(TAP_IDLE);
294 xscale_jtag_set_instr(target->tap,
295 XSCALE_DBGTX << xscale->xscale_variant);
296 jtag_add_runtest(1, jtag_get_end_state()); /* ensures that we're in the TAP_IDLE state as the above could be a no-op */
297
298 /* repeat until all words have been collected */
299 int attempts = 0;
300 while (words_done < num_words)
301 {
302 /* schedule reads */
303 words_scheduled = 0;
304 for (i = words_done; i < num_words; i++)
305 {
306 fields[0].in_value = &field0[i];
307
308 jtag_add_pathmove(3, path);
309
310 fields[1].in_value = (uint8_t *)(field1 + i);
311
312 jtag_add_dr_scan_check(3, fields, jtag_set_end_state(TAP_IDLE));
313
314 jtag_add_callback(xscale_getbuf, (jtag_callback_data_t)(field1 + i));
315
316 words_scheduled++;
317 }
318
319 if ((retval = jtag_execute_queue()) != ERROR_OK)
320 {
321 LOG_ERROR("JTAG error while receiving data from debug handler");
322 break;
323 }
324
325 /* examine results */
326 for (i = words_done; i < num_words; i++)
327 {
328 if (!(field0[0] & 1))
329 {
330 /* move backwards if necessary */
331 int j;
332 for (j = i; j < num_words - 1; j++)
333 {
334 field0[j] = field0[j + 1];
335 field1[j] = field1[j + 1];
336 }
337 words_scheduled--;
338 }
339 }
340 if (words_scheduled == 0)
341 {
342 if (attempts++==1000)
343 {
344 LOG_ERROR("Failed to receiving data from debug handler after 1000 attempts");
345 retval = ERROR_TARGET_TIMEOUT;
346 break;
347 }
348 }
349
350 words_done += words_scheduled;
351 }
352
353 for (i = 0; i < num_words; i++)
354 *(buffer++) = buf_get_u32((uint8_t*)&field1[i], 0, 32);
355
356 free(field1);
357
358 return retval;
359 }
360
361 static int xscale_read_tx(struct target *target, int consume)
362 {
363 struct xscale_common *xscale = target_to_xscale(target);
364 tap_state_t path[3];
365 tap_state_t noconsume_path[6];
366 int retval;
367 struct timeval timeout, now;
368 struct scan_field fields[3];
369 uint8_t field0_in = 0x0;
370 uint8_t field0_check_value = 0x2;
371 uint8_t field0_check_mask = 0x6;
372 uint8_t field2_check_value = 0x0;
373 uint8_t field2_check_mask = 0x1;
374
375 jtag_set_end_state(TAP_IDLE);
376
377 xscale_jtag_set_instr(target->tap,
378 XSCALE_DBGTX << xscale->xscale_variant);
379
380 path[0] = TAP_DRSELECT;
381 path[1] = TAP_DRCAPTURE;
382 path[2] = TAP_DRSHIFT;
383
384 noconsume_path[0] = TAP_DRSELECT;
385 noconsume_path[1] = TAP_DRCAPTURE;
386 noconsume_path[2] = TAP_DREXIT1;
387 noconsume_path[3] = TAP_DRPAUSE;
388 noconsume_path[4] = TAP_DREXIT2;
389 noconsume_path[5] = TAP_DRSHIFT;
390
391 memset(&fields, 0, sizeof fields);
392
393 fields[0].tap = target->tap;
394 fields[0].num_bits = 3;
395 fields[0].in_value = &field0_in;
396
397 fields[1].tap = target->tap;
398 fields[1].num_bits = 32;
399 fields[1].in_value = xscale->reg_cache->reg_list[XSCALE_TX].value;
400
401 fields[2].tap = target->tap;
402 fields[2].num_bits = 1;
403 uint8_t tmp;
404 fields[2].in_value = &tmp;
405
406 gettimeofday(&timeout, NULL);
407 timeval_add_time(&timeout, 1, 0);
408
409 for (;;)
410 {
411 /* if we want to consume the register content (i.e. clear TX_READY),
412 * we have to go straight from Capture-DR to Shift-DR
413 * otherwise, we go from Capture-DR to Exit1-DR to Pause-DR
414 */
415 if (consume)
416 jtag_add_pathmove(3, path);
417 else
418 {
419 jtag_add_pathmove(ARRAY_SIZE(noconsume_path), noconsume_path);
420 }
421
422 jtag_add_dr_scan(3, fields, jtag_set_end_state(TAP_IDLE));
423
424 jtag_check_value_mask(fields + 0, &field0_check_value, &field0_check_mask);
425 jtag_check_value_mask(fields + 2, &field2_check_value, &field2_check_mask);
426
427 if ((retval = jtag_execute_queue()) != ERROR_OK)
428 {
429 LOG_ERROR("JTAG error while reading TX");
430 return ERROR_TARGET_TIMEOUT;
431 }
432
433 gettimeofday(&now, NULL);
434 if ((now.tv_sec > timeout.tv_sec) || ((now.tv_sec == timeout.tv_sec)&& (now.tv_usec > timeout.tv_usec)))
435 {
436 LOG_ERROR("time out reading TX register");
437 return ERROR_TARGET_TIMEOUT;
438 }
439 if (!((!(field0_in & 1)) && consume))
440 {
441 goto done;
442 }
443 if (debug_level >= 3)
444 {
445 LOG_DEBUG("waiting 100ms");
446 alive_sleep(100); /* avoid flooding the logs */
447 } else
448 {
449 keep_alive();
450 }
451 }
452 done:
453
454 if (!(field0_in & 1))
455 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
456
457 return ERROR_OK;
458 }
459
460 static int xscale_write_rx(struct target *target)
461 {
462 struct xscale_common *xscale = target_to_xscale(target);
463 int retval;
464 struct timeval timeout, now;
465 struct scan_field fields[3];
466 uint8_t field0_out = 0x0;
467 uint8_t field0_in = 0x0;
468 uint8_t field0_check_value = 0x2;
469 uint8_t field0_check_mask = 0x6;
470 uint8_t field2 = 0x0;
471 uint8_t field2_check_value = 0x0;
472 uint8_t field2_check_mask = 0x1;
473
474 jtag_set_end_state(TAP_IDLE);
475
476 xscale_jtag_set_instr(target->tap,
477 XSCALE_DBGRX << xscale->xscale_variant);
478
479 memset(&fields, 0, sizeof fields);
480
481 fields[0].tap = target->tap;
482 fields[0].num_bits = 3;
483 fields[0].out_value = &field0_out;
484 fields[0].in_value = &field0_in;
485
486 fields[1].tap = target->tap;
487 fields[1].num_bits = 32;
488 fields[1].out_value = xscale->reg_cache->reg_list[XSCALE_RX].value;
489
490 fields[2].tap = target->tap;
491 fields[2].num_bits = 1;
492 fields[2].out_value = &field2;
493 uint8_t tmp;
494 fields[2].in_value = &tmp;
495
496 gettimeofday(&timeout, NULL);
497 timeval_add_time(&timeout, 1, 0);
498
499 /* poll until rx_read is low */
500 LOG_DEBUG("polling RX");
501 for (;;)
502 {
503 jtag_add_dr_scan(3, fields, jtag_set_end_state(TAP_IDLE));
504
505 jtag_check_value_mask(fields + 0, &field0_check_value, &field0_check_mask);
506 jtag_check_value_mask(fields + 2, &field2_check_value, &field2_check_mask);
507
508 if ((retval = jtag_execute_queue()) != ERROR_OK)
509 {
510 LOG_ERROR("JTAG error while writing RX");
511 return retval;
512 }
513
514 gettimeofday(&now, NULL);
515 if ((now.tv_sec > timeout.tv_sec) || ((now.tv_sec == timeout.tv_sec)&& (now.tv_usec > timeout.tv_usec)))
516 {
517 LOG_ERROR("time out writing RX register");
518 return ERROR_TARGET_TIMEOUT;
519 }
520 if (!(field0_in & 1))
521 goto done;
522 if (debug_level >= 3)
523 {
524 LOG_DEBUG("waiting 100ms");
525 alive_sleep(100); /* avoid flooding the logs */
526 } else
527 {
528 keep_alive();
529 }
530 }
531 done:
532
533 /* set rx_valid */
534 field2 = 0x1;
535 jtag_add_dr_scan(3, fields, jtag_set_end_state(TAP_IDLE));
536
537 if ((retval = jtag_execute_queue()) != ERROR_OK)
538 {
539 LOG_ERROR("JTAG error while writing RX");
540 return retval;
541 }
542
543 return ERROR_OK;
544 }
545
546 /* send count elements of size byte to the debug handler */
547 static int xscale_send(struct target *target, uint8_t *buffer, int count, int size)
548 {
549 struct xscale_common *xscale = target_to_xscale(target);
550 uint32_t t[3];
551 int bits[3];
552 int retval;
553 int done_count = 0;
554
555 jtag_set_end_state(TAP_IDLE);
556
557 xscale_jtag_set_instr(target->tap,
558 XSCALE_DBGRX << xscale->xscale_variant);
559
560 bits[0]=3;
561 t[0]=0;
562 bits[1]=32;
563 t[2]=1;
564 bits[2]=1;
565 int endianness = target->endianness;
566 while (done_count++ < count)
567 {
568 switch (size)
569 {
570 case 4:
571 if (endianness == TARGET_LITTLE_ENDIAN)
572 {
573 t[1]=le_to_h_u32(buffer);
574 } else
575 {
576 t[1]=be_to_h_u32(buffer);
577 }
578 break;
579 case 2:
580 if (endianness == TARGET_LITTLE_ENDIAN)
581 {
582 t[1]=le_to_h_u16(buffer);
583 } else
584 {
585 t[1]=be_to_h_u16(buffer);
586 }
587 break;
588 case 1:
589 t[1]=buffer[0];
590 break;
591 default:
592 LOG_ERROR("BUG: size neither 4, 2 nor 1");
593 return ERROR_INVALID_ARGUMENTS;
594 }
595 jtag_add_dr_out(target->tap,
596 3,
597 bits,
598 t,
599 jtag_set_end_state(TAP_IDLE));
600 buffer += size;
601 }
602
603 if ((retval = jtag_execute_queue()) != ERROR_OK)
604 {
605 LOG_ERROR("JTAG error while sending data to debug handler");
606 return retval;
607 }
608
609 return ERROR_OK;
610 }
611
612 static int xscale_send_u32(struct target *target, uint32_t value)
613 {
614 struct xscale_common *xscale = target_to_xscale(target);
615
616 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_RX].value, 0, 32, value);
617 return xscale_write_rx(target);
618 }
619
620 static int xscale_write_dcsr(struct target *target, int hold_rst, int ext_dbg_brk)
621 {
622 struct xscale_common *xscale = target_to_xscale(target);
623 int retval;
624 struct scan_field fields[3];
625 uint8_t field0 = 0x0;
626 uint8_t field0_check_value = 0x2;
627 uint8_t field0_check_mask = 0x7;
628 uint8_t field2 = 0x0;
629 uint8_t field2_check_value = 0x0;
630 uint8_t field2_check_mask = 0x1;
631
632 if (hold_rst != -1)
633 xscale->hold_rst = hold_rst;
634
635 if (ext_dbg_brk != -1)
636 xscale->external_debug_break = ext_dbg_brk;
637
638 jtag_set_end_state(TAP_IDLE);
639 xscale_jtag_set_instr(target->tap,
640 XSCALE_SELDCSR << xscale->xscale_variant);
641
642 buf_set_u32(&field0, 1, 1, xscale->hold_rst);
643 buf_set_u32(&field0, 2, 1, xscale->external_debug_break);
644
645 memset(&fields, 0, sizeof fields);
646
647 fields[0].tap = target->tap;
648 fields[0].num_bits = 3;
649 fields[0].out_value = &field0;
650 uint8_t tmp;
651 fields[0].in_value = &tmp;
652
653 fields[1].tap = target->tap;
654 fields[1].num_bits = 32;
655 fields[1].out_value = xscale->reg_cache->reg_list[XSCALE_DCSR].value;
656
657 fields[2].tap = target->tap;
658 fields[2].num_bits = 1;
659 fields[2].out_value = &field2;
660 uint8_t tmp2;
661 fields[2].in_value = &tmp2;
662
663 jtag_add_dr_scan(3, fields, jtag_get_end_state());
664
665 jtag_check_value_mask(fields + 0, &field0_check_value, &field0_check_mask);
666 jtag_check_value_mask(fields + 2, &field2_check_value, &field2_check_mask);
667
668 if ((retval = jtag_execute_queue()) != ERROR_OK)
669 {
670 LOG_ERROR("JTAG error while writing DCSR");
671 return retval;
672 }
673
674 xscale->reg_cache->reg_list[XSCALE_DCSR].dirty = 0;
675 xscale->reg_cache->reg_list[XSCALE_DCSR].valid = 1;
676
677 return ERROR_OK;
678 }
679
680 /* parity of the number of bits 0 if even; 1 if odd. for 32 bit words */
681 static unsigned int parity (unsigned int v)
682 {
683 // unsigned int ov = v;
684 v ^= v >> 16;
685 v ^= v >> 8;
686 v ^= v >> 4;
687 v &= 0xf;
688 // LOG_DEBUG("parity of 0x%x is %i", ov, (0x6996 >> v) & 1);
689 return (0x6996 >> v) & 1;
690 }
691
692 static int xscale_load_ic(struct target *target, uint32_t va, uint32_t buffer[8])
693 {
694 struct xscale_common *xscale = target_to_xscale(target);
695 uint8_t packet[4];
696 uint8_t cmd;
697 int word;
698 struct scan_field fields[2];
699
700 LOG_DEBUG("loading miniIC at 0x%8.8" PRIx32 "", va);
701
702 /* LDIC into IR */
703 jtag_set_end_state(TAP_IDLE);
704 xscale_jtag_set_instr(target->tap,
705 XSCALE_LDIC << xscale->xscale_variant);
706
707 /* CMD is b011 to load a cacheline into the Mini ICache.
708 * Loading into the main ICache is deprecated, and unused.
709 * It's followed by three zero bits, and 27 address bits.
710 */
711 buf_set_u32(&cmd, 0, 6, 0x3);
712
713 /* virtual address of desired cache line */
714 buf_set_u32(packet, 0, 27, va >> 5);
715
716 memset(&fields, 0, sizeof fields);
717
718 fields[0].tap = target->tap;
719 fields[0].num_bits = 6;
720 fields[0].out_value = &cmd;
721
722 fields[1].tap = target->tap;
723 fields[1].num_bits = 27;
724 fields[1].out_value = packet;
725
726 jtag_add_dr_scan(2, fields, jtag_get_end_state());
727
728 /* rest of packet is a cacheline: 8 instructions, with parity */
729 fields[0].num_bits = 32;
730 fields[0].out_value = packet;
731
732 fields[1].num_bits = 1;
733 fields[1].out_value = &cmd;
734
735 for (word = 0; word < 8; word++)
736 {
737 buf_set_u32(packet, 0, 32, buffer[word]);
738
739 uint32_t value;
740 memcpy(&value, packet, sizeof(uint32_t));
741 cmd = parity(value);
742
743 jtag_add_dr_scan(2, fields, jtag_get_end_state());
744 }
745
746 return jtag_execute_queue();
747 }
748
749 static int xscale_invalidate_ic_line(struct target *target, uint32_t va)
750 {
751 struct xscale_common *xscale = target_to_xscale(target);
752 uint8_t packet[4];
753 uint8_t cmd;
754 struct scan_field fields[2];
755
756 jtag_set_end_state(TAP_IDLE);
757 xscale_jtag_set_instr(target->tap,
758 XSCALE_LDIC << xscale->xscale_variant);
759
760 /* CMD for invalidate IC line b000, bits [6:4] b000 */
761 buf_set_u32(&cmd, 0, 6, 0x0);
762
763 /* virtual address of desired cache line */
764 buf_set_u32(packet, 0, 27, va >> 5);
765
766 memset(&fields, 0, sizeof fields);
767
768 fields[0].tap = target->tap;
769 fields[0].num_bits = 6;
770 fields[0].out_value = &cmd;
771
772 fields[1].tap = target->tap;
773 fields[1].num_bits = 27;
774 fields[1].out_value = packet;
775
776 jtag_add_dr_scan(2, fields, jtag_get_end_state());
777
778 return ERROR_OK;
779 }
780
781 static int xscale_update_vectors(struct target *target)
782 {
783 struct xscale_common *xscale = target_to_xscale(target);
784 int i;
785 int retval;
786
787 uint32_t low_reset_branch, high_reset_branch;
788
789 for (i = 1; i < 8; i++)
790 {
791 /* if there's a static vector specified for this exception, override */
792 if (xscale->static_high_vectors_set & (1 << i))
793 {
794 xscale->high_vectors[i] = xscale->static_high_vectors[i];
795 }
796 else
797 {
798 retval = target_read_u32(target, 0xffff0000 + 4*i, &xscale->high_vectors[i]);
799 if (retval == ERROR_TARGET_TIMEOUT)
800 return retval;
801 if (retval != ERROR_OK)
802 {
803 /* Some of these reads will fail as part of normal execution */
804 xscale->high_vectors[i] = ARMV4_5_B(0xfffffe, 0);
805 }
806 }
807 }
808
809 for (i = 1; i < 8; i++)
810 {
811 if (xscale->static_low_vectors_set & (1 << i))
812 {
813 xscale->low_vectors[i] = xscale->static_low_vectors[i];
814 }
815 else
816 {
817 retval = target_read_u32(target, 0x0 + 4*i, &xscale->low_vectors[i]);
818 if (retval == ERROR_TARGET_TIMEOUT)
819 return retval;
820 if (retval != ERROR_OK)
821 {
822 /* Some of these reads will fail as part of normal execution */
823 xscale->low_vectors[i] = ARMV4_5_B(0xfffffe, 0);
824 }
825 }
826 }
827
828 /* calculate branches to debug handler */
829 low_reset_branch = (xscale->handler_address + 0x20 - 0x0 - 0x8) >> 2;
830 high_reset_branch = (xscale->handler_address + 0x20 - 0xffff0000 - 0x8) >> 2;
831
832 xscale->low_vectors[0] = ARMV4_5_B((low_reset_branch & 0xffffff), 0);
833 xscale->high_vectors[0] = ARMV4_5_B((high_reset_branch & 0xffffff), 0);
834
835 /* invalidate and load exception vectors in mini i-cache */
836 xscale_invalidate_ic_line(target, 0x0);
837 xscale_invalidate_ic_line(target, 0xffff0000);
838
839 xscale_load_ic(target, 0x0, xscale->low_vectors);
840 xscale_load_ic(target, 0xffff0000, xscale->high_vectors);
841
842 return ERROR_OK;
843 }
844
845 static int xscale_arch_state(struct target *target)
846 {
847 struct xscale_common *xscale = target_to_xscale(target);
848 struct arm *armv4_5 = &xscale->armv4_5_common;
849
850 static const char *state[] =
851 {
852 "disabled", "enabled"
853 };
854
855 static const char *arch_dbg_reason[] =
856 {
857 "", "\n(processor reset)", "\n(trace buffer full)"
858 };
859
860 if (armv4_5->common_magic != ARMV4_5_COMMON_MAGIC)
861 {
862 LOG_ERROR("BUG: called for a non-ARMv4/5 target");
863 return ERROR_INVALID_ARGUMENTS;
864 }
865
866 LOG_USER("target halted in %s state due to %s, current mode: %s\n"
867 "cpsr: 0x%8.8" PRIx32 " pc: 0x%8.8" PRIx32 "\n"
868 "MMU: %s, D-Cache: %s, I-Cache: %s"
869 "%s",
870 armv4_5_state_strings[armv4_5->core_state],
871 Jim_Nvp_value2name_simple(nvp_target_debug_reason, target->debug_reason)->name ,
872 arm_mode_name(armv4_5->core_mode),
873 buf_get_u32(armv4_5->cpsr->value, 0, 32),
874 buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32),
875 state[xscale->armv4_5_mmu.mmu_enabled],
876 state[xscale->armv4_5_mmu.armv4_5_cache.d_u_cache_enabled],
877 state[xscale->armv4_5_mmu.armv4_5_cache.i_cache_enabled],
878 arch_dbg_reason[xscale->arch_debug_reason]);
879
880 return ERROR_OK;
881 }
882
883 static int xscale_poll(struct target *target)
884 {
885 int retval = ERROR_OK;
886
887 if ((target->state == TARGET_RUNNING) || (target->state == TARGET_DEBUG_RUNNING))
888 {
889 enum target_state previous_state = target->state;
890 if ((retval = xscale_read_tx(target, 0)) == ERROR_OK)
891 {
892
893 /* there's data to read from the tx register, we entered debug state */
894 target->state = TARGET_HALTED;
895
896 /* process debug entry, fetching current mode regs */
897 retval = xscale_debug_entry(target);
898 }
899 else if (retval != ERROR_TARGET_RESOURCE_NOT_AVAILABLE)
900 {
901 LOG_USER("error while polling TX register, reset CPU");
902 /* here we "lie" so GDB won't get stuck and a reset can be perfomed */
903 target->state = TARGET_HALTED;
904 }
905
906 /* debug_entry could have overwritten target state (i.e. immediate resume)
907 * don't signal event handlers in that case
908 */
909 if (target->state != TARGET_HALTED)
910 return ERROR_OK;
911
912 /* if target was running, signal that we halted
913 * otherwise we reentered from debug execution */
914 if (previous_state == TARGET_RUNNING)
915 target_call_event_callbacks(target, TARGET_EVENT_HALTED);
916 else
917 target_call_event_callbacks(target, TARGET_EVENT_DEBUG_HALTED);
918 }
919
920 return retval;
921 }
922
923 static int xscale_debug_entry(struct target *target)
924 {
925 struct xscale_common *xscale = target_to_xscale(target);
926 struct arm *armv4_5 = &xscale->armv4_5_common;
927 uint32_t pc;
928 uint32_t buffer[10];
929 int i;
930 int retval;
931 uint32_t moe;
932
933 /* clear external dbg break (will be written on next DCSR read) */
934 xscale->external_debug_break = 0;
935 if ((retval = xscale_read_dcsr(target)) != ERROR_OK)
936 return retval;
937
938 /* get r0, pc, r1 to r7 and cpsr */
939 if ((retval = xscale_receive(target, buffer, 10)) != ERROR_OK)
940 return retval;
941
942 /* move r0 from buffer to register cache */
943 buf_set_u32(armv4_5->core_cache->reg_list[0].value, 0, 32, buffer[0]);
944 armv4_5->core_cache->reg_list[0].dirty = 1;
945 armv4_5->core_cache->reg_list[0].valid = 1;
946 LOG_DEBUG("r0: 0x%8.8" PRIx32 "", buffer[0]);
947
948 /* move pc from buffer to register cache */
949 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, buffer[1]);
950 armv4_5->core_cache->reg_list[15].dirty = 1;
951 armv4_5->core_cache->reg_list[15].valid = 1;
952 LOG_DEBUG("pc: 0x%8.8" PRIx32 "", buffer[1]);
953
954 /* move data from buffer to register cache */
955 for (i = 1; i <= 7; i++)
956 {
957 buf_set_u32(armv4_5->core_cache->reg_list[i].value, 0, 32, buffer[1 + i]);
958 armv4_5->core_cache->reg_list[i].dirty = 1;
959 armv4_5->core_cache->reg_list[i].valid = 1;
960 LOG_DEBUG("r%i: 0x%8.8" PRIx32 "", i, buffer[i + 1]);
961 }
962
963 arm_set_cpsr(armv4_5, buffer[9]);
964 LOG_DEBUG("cpsr: 0x%8.8" PRIx32 "", buffer[9]);
965
966 if (!is_arm_mode(armv4_5->core_mode))
967 {
968 target->state = TARGET_UNKNOWN;
969 LOG_ERROR("cpsr contains invalid mode value - communication failure");
970 return ERROR_TARGET_FAILURE;
971 }
972 LOG_DEBUG("target entered debug state in %s mode",
973 arm_mode_name(armv4_5->core_mode));
974
975 /* get banked registers, r8 to r14, and spsr if not in USR/SYS mode */
976 if (armv4_5->spsr) {
977 xscale_receive(target, buffer, 8);
978 buf_set_u32(armv4_5->spsr->value, 0, 32, buffer[7]);
979 armv4_5->spsr->dirty = false;
980 armv4_5->spsr->valid = true;
981 }
982 else
983 {
984 /* r8 to r14, but no spsr */
985 xscale_receive(target, buffer, 7);
986 }
987
988 /* move data from buffer to right banked register in cache */
989 for (i = 8; i <= 14; i++)
990 {
991 struct reg *r = arm_reg_current(armv4_5, i);
992
993 buf_set_u32(r->value, 0, 32, buffer[i - 8]);
994 r->dirty = false;
995 r->valid = true;
996 }
997
998 /* examine debug reason */
999 xscale_read_dcsr(target);
1000 moe = buf_get_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 2, 3);
1001
1002 /* stored PC (for calculating fixup) */
1003 pc = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
1004
1005 switch (moe)
1006 {
1007 case 0x0: /* Processor reset */
1008 target->debug_reason = DBG_REASON_DBGRQ;
1009 xscale->arch_debug_reason = XSCALE_DBG_REASON_RESET;
1010 pc -= 4;
1011 break;
1012 case 0x1: /* Instruction breakpoint hit */
1013 target->debug_reason = DBG_REASON_BREAKPOINT;
1014 xscale->arch_debug_reason = XSCALE_DBG_REASON_GENERIC;
1015 pc -= 4;
1016 break;
1017 case 0x2: /* Data breakpoint hit */
1018 target->debug_reason = DBG_REASON_WATCHPOINT;
1019 xscale->arch_debug_reason = XSCALE_DBG_REASON_GENERIC;
1020 pc -= 4;
1021 break;
1022 case 0x3: /* BKPT instruction executed */
1023 target->debug_reason = DBG_REASON_BREAKPOINT;
1024 xscale->arch_debug_reason = XSCALE_DBG_REASON_GENERIC;
1025 pc -= 4;
1026 break;
1027 case 0x4: /* Ext. debug event */
1028 target->debug_reason = DBG_REASON_DBGRQ;
1029 xscale->arch_debug_reason = XSCALE_DBG_REASON_GENERIC;
1030 pc -= 4;
1031 break;
1032 case 0x5: /* Vector trap occured */
1033 target->debug_reason = DBG_REASON_BREAKPOINT;
1034 xscale->arch_debug_reason = XSCALE_DBG_REASON_GENERIC;
1035 pc -= 4;
1036 break;
1037 case 0x6: /* Trace buffer full break */
1038 target->debug_reason = DBG_REASON_DBGRQ;
1039 xscale->arch_debug_reason = XSCALE_DBG_REASON_TB_FULL;
1040 pc -= 4;
1041 break;
1042 case 0x7: /* Reserved (may flag Hot-Debug support) */
1043 default:
1044 LOG_ERROR("Method of Entry is 'Reserved'");
1045 exit(-1);
1046 break;
1047 }
1048
1049 /* apply PC fixup */
1050 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, pc);
1051
1052 /* on the first debug entry, identify cache type */
1053 if (xscale->armv4_5_mmu.armv4_5_cache.ctype == -1)
1054 {
1055 uint32_t cache_type_reg;
1056
1057 /* read cp15 cache type register */
1058 xscale_get_reg(&xscale->reg_cache->reg_list[XSCALE_CACHETYPE]);
1059 cache_type_reg = buf_get_u32(xscale->reg_cache->reg_list[XSCALE_CACHETYPE].value, 0, 32);
1060
1061 armv4_5_identify_cache(cache_type_reg, &xscale->armv4_5_mmu.armv4_5_cache);
1062 }
1063
1064 /* examine MMU and Cache settings */
1065 /* read cp15 control register */
1066 xscale_get_reg(&xscale->reg_cache->reg_list[XSCALE_CTRL]);
1067 xscale->cp15_control_reg = buf_get_u32(xscale->reg_cache->reg_list[XSCALE_CTRL].value, 0, 32);
1068 xscale->armv4_5_mmu.mmu_enabled = (xscale->cp15_control_reg & 0x1U) ? 1 : 0;
1069 xscale->armv4_5_mmu.armv4_5_cache.d_u_cache_enabled = (xscale->cp15_control_reg & 0x4U) ? 1 : 0;
1070 xscale->armv4_5_mmu.armv4_5_cache.i_cache_enabled = (xscale->cp15_control_reg & 0x1000U) ? 1 : 0;
1071
1072 /* tracing enabled, read collected trace data */
1073 if (xscale->trace.buffer_enabled)
1074 {
1075 xscale_read_trace(target);
1076 xscale->trace.buffer_fill--;
1077
1078 /* resume if we're still collecting trace data */
1079 if ((xscale->arch_debug_reason == XSCALE_DBG_REASON_TB_FULL)
1080 && (xscale->trace.buffer_fill > 0))
1081 {
1082 xscale_resume(target, 1, 0x0, 1, 0);
1083 }
1084 else
1085 {
1086 xscale->trace.buffer_enabled = 0;
1087 }
1088 }
1089
1090 return ERROR_OK;
1091 }
1092
1093 static int xscale_halt(struct target *target)
1094 {
1095 struct xscale_common *xscale = target_to_xscale(target);
1096
1097 LOG_DEBUG("target->state: %s",
1098 target_state_name(target));
1099
1100 if (target->state == TARGET_HALTED)
1101 {
1102 LOG_DEBUG("target was already halted");
1103 return ERROR_OK;
1104 }
1105 else if (target->state == TARGET_UNKNOWN)
1106 {
1107 /* this must not happen for a xscale target */
1108 LOG_ERROR("target was in unknown state when halt was requested");
1109 return ERROR_TARGET_INVALID;
1110 }
1111 else if (target->state == TARGET_RESET)
1112 {
1113 LOG_DEBUG("target->state == TARGET_RESET");
1114 }
1115 else
1116 {
1117 /* assert external dbg break */
1118 xscale->external_debug_break = 1;
1119 xscale_read_dcsr(target);
1120
1121 target->debug_reason = DBG_REASON_DBGRQ;
1122 }
1123
1124 return ERROR_OK;
1125 }
1126
1127 static int xscale_enable_single_step(struct target *target, uint32_t next_pc)
1128 {
1129 struct xscale_common *xscale = target_to_xscale(target);
1130 struct reg *ibcr0 = &xscale->reg_cache->reg_list[XSCALE_IBCR0];
1131 int retval;
1132
1133 if (xscale->ibcr0_used)
1134 {
1135 struct breakpoint *ibcr0_bp = breakpoint_find(target, buf_get_u32(ibcr0->value, 0, 32) & 0xfffffffe);
1136
1137 if (ibcr0_bp)
1138 {
1139 xscale_unset_breakpoint(target, ibcr0_bp);
1140 }
1141 else
1142 {
1143 LOG_ERROR("BUG: xscale->ibcr0_used is set, but no breakpoint with that address found");
1144 exit(-1);
1145 }
1146 }
1147
1148 if ((retval = xscale_set_reg_u32(ibcr0, next_pc | 0x1)) != ERROR_OK)
1149 return retval;
1150
1151 return ERROR_OK;
1152 }
1153
1154 static int xscale_disable_single_step(struct target *target)
1155 {
1156 struct xscale_common *xscale = target_to_xscale(target);
1157 struct reg *ibcr0 = &xscale->reg_cache->reg_list[XSCALE_IBCR0];
1158 int retval;
1159
1160 if ((retval = xscale_set_reg_u32(ibcr0, 0x0)) != ERROR_OK)
1161 return retval;
1162
1163 return ERROR_OK;
1164 }
1165
1166 static void xscale_enable_watchpoints(struct target *target)
1167 {
1168 struct watchpoint *watchpoint = target->watchpoints;
1169
1170 while (watchpoint)
1171 {
1172 if (watchpoint->set == 0)
1173 xscale_set_watchpoint(target, watchpoint);
1174 watchpoint = watchpoint->next;
1175 }
1176 }
1177
1178 static void xscale_enable_breakpoints(struct target *target)
1179 {
1180 struct breakpoint *breakpoint = target->breakpoints;
1181
1182 /* set any pending breakpoints */
1183 while (breakpoint)
1184 {
1185 if (breakpoint->set == 0)
1186 xscale_set_breakpoint(target, breakpoint);
1187 breakpoint = breakpoint->next;
1188 }
1189 }
1190
1191 static int xscale_resume(struct target *target, int current,
1192 uint32_t address, int handle_breakpoints, int debug_execution)
1193 {
1194 struct xscale_common *xscale = target_to_xscale(target);
1195 struct arm *armv4_5 = &xscale->armv4_5_common;
1196 struct breakpoint *breakpoint = target->breakpoints;
1197 uint32_t current_pc;
1198 int retval;
1199 int i;
1200
1201 LOG_DEBUG("-");
1202
1203 if (target->state != TARGET_HALTED)
1204 {
1205 LOG_WARNING("target not halted");
1206 return ERROR_TARGET_NOT_HALTED;
1207 }
1208
1209 if (!debug_execution)
1210 {
1211 target_free_all_working_areas(target);
1212 }
1213
1214 /* update vector tables */
1215 if ((retval = xscale_update_vectors(target)) != ERROR_OK)
1216 return retval;
1217
1218 /* current = 1: continue on current pc, otherwise continue at <address> */
1219 if (!current)
1220 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, address);
1221
1222 current_pc = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
1223
1224 /* if we're at the reset vector, we have to simulate the branch */
1225 if (current_pc == 0x0)
1226 {
1227 arm_simulate_step(target, NULL);
1228 current_pc = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
1229 }
1230
1231 /* the front-end may request us not to handle breakpoints */
1232 if (handle_breakpoints)
1233 {
1234 if ((breakpoint = breakpoint_find(target, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32))))
1235 {
1236 uint32_t next_pc;
1237
1238 /* there's a breakpoint at the current PC, we have to step over it */
1239 LOG_DEBUG("unset breakpoint at 0x%8.8" PRIx32 "", breakpoint->address);
1240 xscale_unset_breakpoint(target, breakpoint);
1241
1242 /* calculate PC of next instruction */
1243 if ((retval = arm_simulate_step(target, &next_pc)) != ERROR_OK)
1244 {
1245 uint32_t current_opcode;
1246 target_read_u32(target, current_pc, &current_opcode);
1247 LOG_ERROR("BUG: couldn't calculate PC of next instruction, current opcode was 0x%8.8" PRIx32 "", current_opcode);
1248 }
1249
1250 LOG_DEBUG("enable single-step");
1251 xscale_enable_single_step(target, next_pc);
1252
1253 /* restore banked registers */
1254 xscale_restore_context(target);
1255
1256 /* send resume request (command 0x30 or 0x31)
1257 * clean the trace buffer if it is to be enabled (0x62) */
1258 if (xscale->trace.buffer_enabled)
1259 {
1260 xscale_send_u32(target, 0x62);
1261 xscale_send_u32(target, 0x31);
1262 }
1263 else
1264 xscale_send_u32(target, 0x30);
1265
1266 /* send CPSR */
1267 xscale_send_u32(target,
1268 buf_get_u32(armv4_5->cpsr->value, 0, 32));
1269 LOG_DEBUG("writing cpsr with value 0x%8.8" PRIx32,
1270 buf_get_u32(armv4_5->cpsr->value, 0, 32));
1271
1272 for (i = 7; i >= 0; i--)
1273 {
1274 /* send register */
1275 xscale_send_u32(target, buf_get_u32(armv4_5->core_cache->reg_list[i].value, 0, 32));
1276 LOG_DEBUG("writing r%i with value 0x%8.8" PRIx32 "", i, buf_get_u32(armv4_5->core_cache->reg_list[i].value, 0, 32));
1277 }
1278
1279 /* send PC */
1280 xscale_send_u32(target, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1281 LOG_DEBUG("writing PC with value 0x%8.8" PRIx32 "", buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1282
1283 /* wait for and process debug entry */
1284 xscale_debug_entry(target);
1285
1286 LOG_DEBUG("disable single-step");
1287 xscale_disable_single_step(target);
1288
1289 LOG_DEBUG("set breakpoint at 0x%8.8" PRIx32 "", breakpoint->address);
1290 xscale_set_breakpoint(target, breakpoint);
1291 }
1292 }
1293
1294 /* enable any pending breakpoints and watchpoints */
1295 xscale_enable_breakpoints(target);
1296 xscale_enable_watchpoints(target);
1297
1298 /* restore banked registers */
1299 xscale_restore_context(target);
1300
1301 /* send resume request (command 0x30 or 0x31)
1302 * clean the trace buffer if it is to be enabled (0x62) */
1303 if (xscale->trace.buffer_enabled)
1304 {
1305 xscale_send_u32(target, 0x62);
1306 xscale_send_u32(target, 0x31);
1307 }
1308 else
1309 xscale_send_u32(target, 0x30);
1310
1311 /* send CPSR */
1312 xscale_send_u32(target, buf_get_u32(armv4_5->cpsr->value, 0, 32));
1313 LOG_DEBUG("writing cpsr with value 0x%8.8" PRIx32,
1314 buf_get_u32(armv4_5->cpsr->value, 0, 32));
1315
1316 for (i = 7; i >= 0; i--)
1317 {
1318 /* send register */
1319 xscale_send_u32(target, buf_get_u32(armv4_5->core_cache->reg_list[i].value, 0, 32));
1320 LOG_DEBUG("writing r%i with value 0x%8.8" PRIx32 "", i, buf_get_u32(armv4_5->core_cache->reg_list[i].value, 0, 32));
1321 }
1322
1323 /* send PC */
1324 xscale_send_u32(target, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1325 LOG_DEBUG("writing PC with value 0x%8.8" PRIx32 "", buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1326
1327 target->debug_reason = DBG_REASON_NOTHALTED;
1328
1329 if (!debug_execution)
1330 {
1331 /* registers are now invalid */
1332 register_cache_invalidate(armv4_5->core_cache);
1333 target->state = TARGET_RUNNING;
1334 target_call_event_callbacks(target, TARGET_EVENT_RESUMED);
1335 }
1336 else
1337 {
1338 target->state = TARGET_DEBUG_RUNNING;
1339 target_call_event_callbacks(target, TARGET_EVENT_DEBUG_RESUMED);
1340 }
1341
1342 LOG_DEBUG("target resumed");
1343
1344 return ERROR_OK;
1345 }
1346
1347 static int xscale_step_inner(struct target *target, int current,
1348 uint32_t address, int handle_breakpoints)
1349 {
1350 struct xscale_common *xscale = target_to_xscale(target);
1351 struct arm *armv4_5 = &xscale->armv4_5_common;
1352 uint32_t next_pc;
1353 int retval;
1354 int i;
1355
1356 target->debug_reason = DBG_REASON_SINGLESTEP;
1357
1358 /* calculate PC of next instruction */
1359 if ((retval = arm_simulate_step(target, &next_pc)) != ERROR_OK)
1360 {
1361 uint32_t current_opcode, current_pc;
1362 current_pc = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
1363
1364 target_read_u32(target, current_pc, &current_opcode);
1365 LOG_ERROR("BUG: couldn't calculate PC of next instruction, current opcode was 0x%8.8" PRIx32 "", current_opcode);
1366 return retval;
1367 }
1368
1369 LOG_DEBUG("enable single-step");
1370 if ((retval = xscale_enable_single_step(target, next_pc)) != ERROR_OK)
1371 return retval;
1372
1373 /* restore banked registers */
1374 if ((retval = xscale_restore_context(target)) != ERROR_OK)
1375 return retval;
1376
1377 /* send resume request (command 0x30 or 0x31)
1378 * clean the trace buffer if it is to be enabled (0x62) */
1379 if (xscale->trace.buffer_enabled)
1380 {
1381 if ((retval = xscale_send_u32(target, 0x62)) != ERROR_OK)
1382 return retval;
1383 if ((retval = xscale_send_u32(target, 0x31)) != ERROR_OK)
1384 return retval;
1385 }
1386 else
1387 if ((retval = xscale_send_u32(target, 0x30)) != ERROR_OK)
1388 return retval;
1389
1390 /* send CPSR */
1391 retval = xscale_send_u32(target,
1392 buf_get_u32(armv4_5->cpsr->value, 0, 32));
1393 if (retval != ERROR_OK)
1394 return retval;
1395 LOG_DEBUG("writing cpsr with value 0x%8.8" PRIx32,
1396 buf_get_u32(armv4_5->cpsr->value, 0, 32));
1397
1398 for (i = 7; i >= 0; i--)
1399 {
1400 /* send register */
1401 if ((retval = xscale_send_u32(target, buf_get_u32(armv4_5->core_cache->reg_list[i].value, 0, 32))) != ERROR_OK)
1402 return retval;
1403 LOG_DEBUG("writing r%i with value 0x%8.8" PRIx32 "", i, buf_get_u32(armv4_5->core_cache->reg_list[i].value, 0, 32));
1404 }
1405
1406 /* send PC */
1407 if ((retval = xscale_send_u32(target, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32))) != ERROR_OK)
1408 return retval;
1409 LOG_DEBUG("writing PC with value 0x%8.8" PRIx32, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1410
1411 target_call_event_callbacks(target, TARGET_EVENT_RESUMED);
1412
1413 /* registers are now invalid */
1414 register_cache_invalidate(armv4_5->core_cache);
1415
1416 /* wait for and process debug entry */
1417 if ((retval = xscale_debug_entry(target)) != ERROR_OK)
1418 return retval;
1419
1420 LOG_DEBUG("disable single-step");
1421 if ((retval = xscale_disable_single_step(target)) != ERROR_OK)
1422 return retval;
1423
1424 target_call_event_callbacks(target, TARGET_EVENT_HALTED);
1425
1426 return ERROR_OK;
1427 }
1428
1429 static int xscale_step(struct target *target, int current,
1430 uint32_t address, int handle_breakpoints)
1431 {
1432 struct arm *armv4_5 = target_to_armv4_5(target);
1433 struct breakpoint *breakpoint = target->breakpoints;
1434
1435 uint32_t current_pc;
1436 int retval;
1437
1438 if (target->state != TARGET_HALTED)
1439 {
1440 LOG_WARNING("target not halted");
1441 return ERROR_TARGET_NOT_HALTED;
1442 }
1443
1444 /* current = 1: continue on current pc, otherwise continue at <address> */
1445 if (!current)
1446 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, address);
1447
1448 current_pc = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
1449
1450 /* if we're at the reset vector, we have to simulate the step */
1451 if (current_pc == 0x0)
1452 {
1453 if ((retval = arm_simulate_step(target, NULL)) != ERROR_OK)
1454 return retval;
1455 current_pc = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
1456
1457 target->debug_reason = DBG_REASON_SINGLESTEP;
1458 target_call_event_callbacks(target, TARGET_EVENT_HALTED);
1459
1460 return ERROR_OK;
1461 }
1462
1463 /* the front-end may request us not to handle breakpoints */
1464 if (handle_breakpoints)
1465 if ((breakpoint = breakpoint_find(target, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32))))
1466 {
1467 if ((retval = xscale_unset_breakpoint(target, breakpoint)) != ERROR_OK)
1468 return retval;
1469 }
1470
1471 retval = xscale_step_inner(target, current, address, handle_breakpoints);
1472
1473 if (breakpoint)
1474 {
1475 xscale_set_breakpoint(target, breakpoint);
1476 }
1477
1478 LOG_DEBUG("target stepped");
1479
1480 return ERROR_OK;
1481
1482 }
1483
1484 static int xscale_assert_reset(struct target *target)
1485 {
1486 struct xscale_common *xscale = target_to_xscale(target);
1487
1488 LOG_DEBUG("target->state: %s",
1489 target_state_name(target));
1490
1491 /* select DCSR instruction (set endstate to R-T-I to ensure we don't
1492 * end up in T-L-R, which would reset JTAG
1493 */
1494 jtag_set_end_state(TAP_IDLE);
1495 xscale_jtag_set_instr(target->tap,
1496 XSCALE_SELDCSR << xscale->xscale_variant);
1497
1498 /* set Hold reset, Halt mode and Trap Reset */
1499 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 30, 1, 0x1);
1500 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 16, 1, 0x1);
1501 xscale_write_dcsr(target, 1, 0);
1502
1503 /* select BYPASS, because having DCSR selected caused problems on the PXA27x */
1504 xscale_jtag_set_instr(target->tap, 0x7f);
1505 jtag_execute_queue();
1506
1507 /* assert reset */
1508 jtag_add_reset(0, 1);
1509
1510 /* sleep 1ms, to be sure we fulfill any requirements */
1511 jtag_add_sleep(1000);
1512 jtag_execute_queue();
1513
1514 target->state = TARGET_RESET;
1515
1516 if (target->reset_halt)
1517 {
1518 int retval;
1519 if ((retval = target_halt(target)) != ERROR_OK)
1520 return retval;
1521 }
1522
1523 return ERROR_OK;
1524 }
1525
1526 static int xscale_deassert_reset(struct target *target)
1527 {
1528 struct xscale_common *xscale = target_to_xscale(target);
1529 struct breakpoint *breakpoint = target->breakpoints;
1530
1531 LOG_DEBUG("-");
1532
1533 xscale->ibcr_available = 2;
1534 xscale->ibcr0_used = 0;
1535 xscale->ibcr1_used = 0;
1536
1537 xscale->dbr_available = 2;
1538 xscale->dbr0_used = 0;
1539 xscale->dbr1_used = 0;
1540
1541 /* mark all hardware breakpoints as unset */
1542 while (breakpoint)
1543 {
1544 if (breakpoint->type == BKPT_HARD)
1545 {
1546 breakpoint->set = 0;
1547 }
1548 breakpoint = breakpoint->next;
1549 }
1550
1551 register_cache_invalidate(xscale->armv4_5_common.core_cache);
1552
1553 /* FIXME mark hardware watchpoints got unset too. Also,
1554 * at least some of the XScale registers are invalid...
1555 */
1556
1557 /*
1558 * REVISIT: *assumes* we had a SRST+TRST reset so the mini-icache
1559 * contents got invalidated. Safer to force that, so writing new
1560 * contents can't ever fail..
1561 */
1562 {
1563 uint32_t address;
1564 unsigned buf_cnt;
1565 const uint8_t *buffer = xscale_debug_handler;
1566 int retval;
1567
1568 /* release SRST */
1569 jtag_add_reset(0, 0);
1570
1571 /* wait 300ms; 150 and 100ms were not enough */
1572 jtag_add_sleep(300*1000);
1573
1574 jtag_add_runtest(2030, jtag_set_end_state(TAP_IDLE));
1575 jtag_execute_queue();
1576
1577 /* set Hold reset, Halt mode and Trap Reset */
1578 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 30, 1, 0x1);
1579 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 16, 1, 0x1);
1580 xscale_write_dcsr(target, 1, 0);
1581
1582 /* Load the debug handler into the mini-icache. Since
1583 * it's using halt mode (not monitor mode), it runs in
1584 * "Special Debug State" for access to registers, memory,
1585 * coprocessors, trace data, etc.
1586 */
1587 address = xscale->handler_address;
1588 for (unsigned binary_size = sizeof xscale_debug_handler - 1;
1589 binary_size > 0;
1590 binary_size -= buf_cnt, buffer += buf_cnt)
1591 {
1592 uint32_t cache_line[8];
1593 unsigned i;
1594
1595 buf_cnt = binary_size;
1596 if (buf_cnt > 32)
1597 buf_cnt = 32;
1598
1599 for (i = 0; i < buf_cnt; i += 4)
1600 {
1601 /* convert LE buffer to host-endian uint32_t */
1602 cache_line[i / 4] = le_to_h_u32(&buffer[i]);
1603 }
1604
1605 for (; i < 32; i += 4)
1606 {
1607 cache_line[i / 4] = 0xe1a08008;
1608 }
1609
1610 /* only load addresses other than the reset vectors */
1611 if ((address % 0x400) != 0x0)
1612 {
1613 retval = xscale_load_ic(target, address,
1614 cache_line);
1615 if (retval != ERROR_OK)
1616 return retval;
1617 }
1618
1619 address += buf_cnt;
1620 };
1621
1622 retval = xscale_load_ic(target, 0x0,
1623 xscale->low_vectors);
1624 if (retval != ERROR_OK)
1625 return retval;
1626 retval = xscale_load_ic(target, 0xffff0000,
1627 xscale->high_vectors);
1628 if (retval != ERROR_OK)
1629 return retval;
1630
1631 jtag_add_runtest(30, jtag_set_end_state(TAP_IDLE));
1632
1633 jtag_add_sleep(100000);
1634
1635 /* set Hold reset, Halt mode and Trap Reset */
1636 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 30, 1, 0x1);
1637 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 16, 1, 0x1);
1638 xscale_write_dcsr(target, 1, 0);
1639
1640 /* clear Hold reset to let the target run (should enter debug handler) */
1641 xscale_write_dcsr(target, 0, 1);
1642 target->state = TARGET_RUNNING;
1643
1644 if (!target->reset_halt)
1645 {
1646 jtag_add_sleep(10000);
1647
1648 /* we should have entered debug now */
1649 xscale_debug_entry(target);
1650 target->state = TARGET_HALTED;
1651
1652 /* resume the target */
1653 xscale_resume(target, 1, 0x0, 1, 0);
1654 }
1655 }
1656
1657 return ERROR_OK;
1658 }
1659
1660 static int xscale_read_core_reg(struct target *target, struct reg *r,
1661 int num, enum armv4_5_mode mode)
1662 {
1663 /** \todo add debug handler support for core register reads */
1664 LOG_ERROR("not implemented");
1665 return ERROR_OK;
1666 }
1667
1668 static int xscale_write_core_reg(struct target *target, struct reg *r,
1669 int num, enum armv4_5_mode mode, uint32_t value)
1670 {
1671 /** \todo add debug handler support for core register writes */
1672 LOG_ERROR("not implemented");
1673 return ERROR_OK;
1674 }
1675
1676 static int xscale_full_context(struct target *target)
1677 {
1678 struct arm *armv4_5 = target_to_armv4_5(target);
1679
1680 uint32_t *buffer;
1681
1682 int i, j;
1683
1684 LOG_DEBUG("-");
1685
1686 if (target->state != TARGET_HALTED)
1687 {
1688 LOG_WARNING("target not halted");
1689 return ERROR_TARGET_NOT_HALTED;
1690 }
1691
1692 buffer = malloc(4 * 8);
1693
1694 /* iterate through processor modes (FIQ, IRQ, SVC, ABT, UND and SYS)
1695 * we can't enter User mode on an XScale (unpredictable),
1696 * but User shares registers with SYS
1697 */
1698 for (i = 1; i < 7; i++)
1699 {
1700 int valid = 1;
1701
1702 /* check if there are invalid registers in the current mode
1703 */
1704 for (j = 0; j <= 16; j++)
1705 {
1706 if (ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).valid == 0)
1707 valid = 0;
1708 }
1709
1710 if (!valid)
1711 {
1712 uint32_t tmp_cpsr;
1713
1714 /* request banked registers */
1715 xscale_send_u32(target, 0x0);
1716
1717 tmp_cpsr = 0x0;
1718 tmp_cpsr |= armv4_5_number_to_mode(i);
1719 tmp_cpsr |= 0xc0; /* I/F bits */
1720
1721 /* send CPSR for desired mode */
1722 xscale_send_u32(target, tmp_cpsr);
1723
1724 /* get banked registers, r8 to r14, and spsr if not in USR/SYS mode */
1725 if ((armv4_5_number_to_mode(i) != ARMV4_5_MODE_USR) && (armv4_5_number_to_mode(i) != ARMV4_5_MODE_SYS))
1726 {
1727 xscale_receive(target, buffer, 8);
1728 buf_set_u32(ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 16).value, 0, 32, buffer[7]);
1729 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16).dirty = 0;
1730 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16).valid = 1;
1731 }
1732 else
1733 {
1734 xscale_receive(target, buffer, 7);
1735 }
1736
1737 /* move data from buffer to register cache */
1738 for (j = 8; j <= 14; j++)
1739 {
1740 buf_set_u32(ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).value, 0, 32, buffer[j - 8]);
1741 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).dirty = 0;
1742 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).valid = 1;
1743 }
1744 }
1745 }
1746
1747 free(buffer);
1748
1749 return ERROR_OK;
1750 }
1751
1752 static int xscale_restore_context(struct target *target)
1753 {
1754 struct arm *armv4_5 = target_to_armv4_5(target);
1755
1756 int i, j;
1757
1758 if (target->state != TARGET_HALTED)
1759 {
1760 LOG_WARNING("target not halted");
1761 return ERROR_TARGET_NOT_HALTED;
1762 }
1763
1764 /* iterate through processor modes (FIQ, IRQ, SVC, ABT, UND and SYS)
1765 * we can't enter User mode on an XScale (unpredictable),
1766 * but User shares registers with SYS
1767 */
1768 for (i = 1; i < 7; i++)
1769 {
1770 int dirty = 0;
1771
1772 /* check if there are invalid registers in the current mode
1773 */
1774 for (j = 8; j <= 14; j++)
1775 {
1776 if (ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).dirty == 1)
1777 dirty = 1;
1778 }
1779
1780 /* if not USR/SYS, check if the SPSR needs to be written */
1781 if ((armv4_5_number_to_mode(i) != ARMV4_5_MODE_USR) && (armv4_5_number_to_mode(i) != ARMV4_5_MODE_SYS))
1782 {
1783 if (ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16).dirty == 1)
1784 dirty = 1;
1785 }
1786
1787 if (dirty)
1788 {
1789 uint32_t tmp_cpsr;
1790
1791 /* send banked registers */
1792 xscale_send_u32(target, 0x1);
1793
1794 tmp_cpsr = 0x0;
1795 tmp_cpsr |= armv4_5_number_to_mode(i);
1796 tmp_cpsr |= 0xc0; /* I/F bits */
1797
1798 /* send CPSR for desired mode */
1799 xscale_send_u32(target, tmp_cpsr);
1800
1801 /* send banked registers, r8 to r14, and spsr if not in USR/SYS mode */
1802 for (j = 8; j <= 14; j++)
1803 {
1804 xscale_send_u32(target, buf_get_u32(ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, j).value, 0, 32));
1805 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).dirty = 0;
1806 }
1807
1808 if ((armv4_5_number_to_mode(i) != ARMV4_5_MODE_USR) && (armv4_5_number_to_mode(i) != ARMV4_5_MODE_SYS))
1809 {
1810 xscale_send_u32(target, buf_get_u32(ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 16).value, 0, 32));
1811 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16).dirty = 0;
1812 }
1813 }
1814 }
1815
1816 return ERROR_OK;
1817 }
1818
1819 static int xscale_read_memory(struct target *target, uint32_t address,
1820 uint32_t size, uint32_t count, uint8_t *buffer)
1821 {
1822 struct xscale_common *xscale = target_to_xscale(target);
1823 uint32_t *buf32;
1824 uint32_t i;
1825 int retval;
1826
1827 LOG_DEBUG("address: 0x%8.8" PRIx32 ", size: 0x%8.8" PRIx32 ", count: 0x%8.8" PRIx32, address, size, count);
1828
1829 if (target->state != TARGET_HALTED)
1830 {
1831 LOG_WARNING("target not halted");
1832 return ERROR_TARGET_NOT_HALTED;
1833 }
1834
1835 /* sanitize arguments */
1836 if (((size != 4) && (size != 2) && (size != 1)) || (count == 0) || !(buffer))
1837 return ERROR_INVALID_ARGUMENTS;
1838
1839 if (((size == 4) && (address & 0x3u)) || ((size == 2) && (address & 0x1u)))
1840 return ERROR_TARGET_UNALIGNED_ACCESS;
1841
1842 /* send memory read request (command 0x1n, n: access size) */
1843 if ((retval = xscale_send_u32(target, 0x10 | size)) != ERROR_OK)
1844 return retval;
1845
1846 /* send base address for read request */
1847 if ((retval = xscale_send_u32(target, address)) != ERROR_OK)
1848 return retval;
1849
1850 /* send number of requested data words */
1851 if ((retval = xscale_send_u32(target, count)) != ERROR_OK)
1852 return retval;
1853
1854 /* receive data from target (count times 32-bit words in host endianness) */
1855 buf32 = malloc(4 * count);
1856 if ((retval = xscale_receive(target, buf32, count)) != ERROR_OK)
1857 return retval;
1858
1859 /* extract data from host-endian buffer into byte stream */
1860 for (i = 0; i < count; i++)
1861 {
1862 switch (size)
1863 {
1864 case 4:
1865 target_buffer_set_u32(target, buffer, buf32[i]);
1866 buffer += 4;
1867 break;
1868 case 2:
1869 target_buffer_set_u16(target, buffer, buf32[i] & 0xffff);
1870 buffer += 2;
1871 break;
1872 case 1:
1873 *buffer++ = buf32[i] & 0xff;
1874 break;
1875 default:
1876 LOG_ERROR("invalid read size");
1877 return ERROR_INVALID_ARGUMENTS;
1878 }
1879 }
1880
1881 free(buf32);
1882
1883 /* examine DCSR, to see if Sticky Abort (SA) got set */
1884 if ((retval = xscale_read_dcsr(target)) != ERROR_OK)
1885 return retval;
1886 if (buf_get_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 5, 1) == 1)
1887 {
1888 /* clear SA bit */
1889 if ((retval = xscale_send_u32(target, 0x60)) != ERROR_OK)
1890 return retval;
1891
1892 return ERROR_TARGET_DATA_ABORT;
1893 }
1894
1895 return ERROR_OK;
1896 }
1897
1898 static int xscale_read_phys_memory(struct target *target, uint32_t address,
1899 uint32_t size, uint32_t count, uint8_t *buffer)
1900 {
1901 /** \todo: provide a non-stub implementtion of this routine. */
1902 LOG_ERROR("%s: %s is not implemented. Disable MMU?",
1903 target_name(target), __func__);
1904 return ERROR_FAIL;
1905 }
1906
1907 static int xscale_write_memory(struct target *target, uint32_t address,
1908 uint32_t size, uint32_t count, uint8_t *buffer)
1909 {
1910 struct xscale_common *xscale = target_to_xscale(target);
1911 int retval;
1912
1913 LOG_DEBUG("address: 0x%8.8" PRIx32 ", size: 0x%8.8" PRIx32 ", count: 0x%8.8" PRIx32, address, size, count);
1914
1915 if (target->state != TARGET_HALTED)
1916 {
1917 LOG_WARNING("target not halted");
1918 return ERROR_TARGET_NOT_HALTED;
1919 }
1920
1921 /* sanitize arguments */
1922 if (((size != 4) && (size != 2) && (size != 1)) || (count == 0) || !(buffer))
1923 return ERROR_INVALID_ARGUMENTS;
1924
1925 if (((size == 4) && (address & 0x3u)) || ((size == 2) && (address & 0x1u)))
1926 return ERROR_TARGET_UNALIGNED_ACCESS;
1927
1928 /* send memory write request (command 0x2n, n: access size) */
1929 if ((retval = xscale_send_u32(target, 0x20 | size)) != ERROR_OK)
1930 return retval;
1931
1932 /* send base address for read request */
1933 if ((retval = xscale_send_u32(target, address)) != ERROR_OK)
1934 return retval;
1935
1936 /* send number of requested data words to be written*/
1937 if ((retval = xscale_send_u32(target, count)) != ERROR_OK)
1938 return retval;
1939
1940 /* extract data from host-endian buffer into byte stream */
1941 #if 0
1942 for (i = 0; i < count; i++)
1943 {
1944 switch (size)
1945 {
1946 case 4:
1947 value = target_buffer_get_u32(target, buffer);
1948 xscale_send_u32(target, value);
1949 buffer += 4;
1950 break;
1951 case 2:
1952 value = target_buffer_get_u16(target, buffer);
1953 xscale_send_u32(target, value);
1954 buffer += 2;
1955 break;
1956 case 1:
1957 value = *buffer;
1958 xscale_send_u32(target, value);
1959 buffer += 1;
1960 break;
1961 default:
1962 LOG_ERROR("should never get here");
1963 exit(-1);
1964 }
1965 }
1966 #endif
1967 if ((retval = xscale_send(target, buffer, count, size)) != ERROR_OK)
1968 return retval;
1969
1970 /* examine DCSR, to see if Sticky Abort (SA) got set */
1971 if ((retval = xscale_read_dcsr(target)) != ERROR_OK)
1972 return retval;
1973 if (buf_get_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 5, 1) == 1)
1974 {
1975 /* clear SA bit */
1976 if ((retval = xscale_send_u32(target, 0x60)) != ERROR_OK)
1977 return retval;
1978
1979 return ERROR_TARGET_DATA_ABORT;
1980 }
1981
1982 return ERROR_OK;
1983 }
1984
1985 static int xscale_write_phys_memory(struct target *target, uint32_t address,
1986 uint32_t size, uint32_t count, uint8_t *buffer)
1987 {
1988 /** \todo: provide a non-stub implementtion of this routine. */
1989 LOG_ERROR("%s: %s is not implemented. Disable MMU?",
1990 target_name(target), __func__);
1991 return ERROR_FAIL;
1992 }
1993
1994 static int xscale_bulk_write_memory(struct target *target, uint32_t address,
1995 uint32_t count, uint8_t *buffer)
1996 {
1997 return xscale_write_memory(target, address, 4, count, buffer);
1998 }
1999
2000 static uint32_t xscale_get_ttb(struct target *target)
2001 {
2002 struct xscale_common *xscale = target_to_xscale(target);
2003 uint32_t ttb;
2004
2005 xscale_get_reg(&xscale->reg_cache->reg_list[XSCALE_TTB]);
2006 ttb = buf_get_u32(xscale->reg_cache->reg_list[XSCALE_TTB].value, 0, 32);
2007
2008 return ttb;
2009 }
2010
2011 static void xscale_disable_mmu_caches(struct target *target, int mmu,
2012 int d_u_cache, int i_cache)
2013 {
2014 struct xscale_common *xscale = target_to_xscale(target);
2015 uint32_t cp15_control;
2016
2017 /* read cp15 control register */
2018 xscale_get_reg(&xscale->reg_cache->reg_list[XSCALE_CTRL]);
2019 cp15_control = buf_get_u32(xscale->reg_cache->reg_list[XSCALE_CTRL].value, 0, 32);
2020
2021 if (mmu)
2022 cp15_control &= ~0x1U;
2023
2024 if (d_u_cache)
2025 {
2026 /* clean DCache */
2027 xscale_send_u32(target, 0x50);
2028 xscale_send_u32(target, xscale->cache_clean_address);
2029
2030 /* invalidate DCache */
2031 xscale_send_u32(target, 0x51);
2032
2033 cp15_control &= ~0x4U;
2034 }
2035
2036 if (i_cache)
2037 {
2038 /* invalidate ICache */
2039 xscale_send_u32(target, 0x52);
2040 cp15_control &= ~0x1000U;
2041 }
2042
2043 /* write new cp15 control register */
2044 xscale_set_reg_u32(&xscale->reg_cache->reg_list[XSCALE_CTRL], cp15_control);
2045
2046 /* execute cpwait to ensure outstanding operations complete */
2047 xscale_send_u32(target, 0x53);
2048 }
2049
2050 static void xscale_enable_mmu_caches(struct target *target, int mmu,
2051 int d_u_cache, int i_cache)
2052 {
2053 struct xscale_common *xscale = target_to_xscale(target);
2054 uint32_t cp15_control;
2055
2056 /* read cp15 control register */
2057 xscale_get_reg(&xscale->reg_cache->reg_list[XSCALE_CTRL]);
2058 cp15_control = buf_get_u32(xscale->reg_cache->reg_list[XSCALE_CTRL].value, 0, 32);
2059
2060 if (mmu)
2061 cp15_control |= 0x1U;
2062
2063 if (d_u_cache)
2064 cp15_control |= 0x4U;
2065
2066 if (i_cache)
2067 cp15_control |= 0x1000U;
2068
2069 /* write new cp15 control register */
2070 xscale_set_reg_u32(&xscale->reg_cache->reg_list[XSCALE_CTRL], cp15_control);
2071
2072 /* execute cpwait to ensure outstanding operations complete */
2073 xscale_send_u32(target, 0x53);
2074 }
2075
2076 static int xscale_set_breakpoint(struct target *target,
2077 struct breakpoint *breakpoint)
2078 {
2079 int retval;
2080 struct xscale_common *xscale = target_to_xscale(target);
2081
2082 if (target->state != TARGET_HALTED)
2083 {
2084 LOG_WARNING("target not halted");
2085 return ERROR_TARGET_NOT_HALTED;
2086 }
2087
2088 if (breakpoint->set)
2089 {
2090 LOG_WARNING("breakpoint already set");
2091 return ERROR_OK;
2092 }
2093
2094 if (breakpoint->type == BKPT_HARD)
2095 {
2096 uint32_t value = breakpoint->address | 1;
2097 if (!xscale->ibcr0_used)
2098 {
2099 xscale_set_reg_u32(&xscale->reg_cache->reg_list[XSCALE_IBCR0], value);
2100 xscale->ibcr0_used = 1;
2101 breakpoint->set = 1; /* breakpoint set on first breakpoint register */
2102 }
2103 else if (!xscale->ibcr1_used)
2104 {
2105 xscale_set_reg_u32(&xscale->reg_cache->reg_list[XSCALE_IBCR1], value);
2106 xscale->ibcr1_used = 1;
2107 breakpoint->set = 2; /* breakpoint set on second breakpoint register */
2108 }
2109 else
2110 {
2111 LOG_ERROR("BUG: no hardware comparator available");
2112 return ERROR_OK;
2113 }
2114 }
2115 else if (breakpoint->type == BKPT_SOFT)
2116 {
2117 if (breakpoint->length == 4)
2118 {
2119 /* keep the original instruction in target endianness */
2120 if ((retval = target_read_memory(target, breakpoint->address, 4, 1, breakpoint->orig_instr)) != ERROR_OK)
2121 {
2122 return retval;
2123 }
2124 /* write the original instruction in target endianness (arm7_9->arm_bkpt is host endian) */
2125 if ((retval = target_write_u32(target, breakpoint->address, xscale->arm_bkpt)) != ERROR_OK)
2126 {
2127 return retval;
2128 }
2129 }
2130 else
2131 {
2132 /* keep the original instruction in target endianness */
2133 if ((retval = target_read_memory(target, breakpoint->address, 2, 1, breakpoint->orig_instr)) != ERROR_OK)
2134 {
2135 return retval;
2136 }
2137 /* write the original instruction in target endianness (arm7_9->arm_bkpt is host endian) */
2138 if ((retval = target_write_u32(target, breakpoint->address, xscale->thumb_bkpt)) != ERROR_OK)
2139 {
2140 return retval;
2141 }
2142 }
2143 breakpoint->set = 1;
2144 }
2145
2146 return ERROR_OK;
2147 }
2148
2149 static int xscale_add_breakpoint(struct target *target,
2150 struct breakpoint *breakpoint)
2151 {
2152 struct xscale_common *xscale = target_to_xscale(target);
2153
2154 if ((breakpoint->type == BKPT_HARD) && (xscale->ibcr_available < 1))
2155 {
2156 LOG_INFO("no breakpoint unit available for hardware breakpoint");
2157 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
2158 }
2159
2160 if ((breakpoint->length != 2) && (breakpoint->length != 4))
2161 {
2162 LOG_INFO("only breakpoints of two (Thumb) or four (ARM) bytes length supported");
2163 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
2164 }
2165
2166 if (breakpoint->type == BKPT_HARD)
2167 {
2168 xscale->ibcr_available--;
2169 }
2170
2171 return ERROR_OK;
2172 }
2173
2174 static int xscale_unset_breakpoint(struct target *target,
2175 struct breakpoint *breakpoint)
2176 {
2177 int retval;
2178 struct xscale_common *xscale = target_to_xscale(target);
2179
2180 if (target->state != TARGET_HALTED)
2181 {
2182 LOG_WARNING("target not halted");
2183 return ERROR_TARGET_NOT_HALTED;
2184 }
2185
2186 if (!breakpoint->set)
2187 {
2188 LOG_WARNING("breakpoint not set");
2189 return ERROR_OK;
2190 }
2191
2192 if (breakpoint->type == BKPT_HARD)
2193 {
2194 if (breakpoint->set == 1)
2195 {
2196 xscale_set_reg_u32(&xscale->reg_cache->reg_list[XSCALE_IBCR0], 0x0);
2197 xscale->ibcr0_used = 0;
2198 }
2199 else if (breakpoint->set == 2)
2200 {
2201 xscale_set_reg_u32(&xscale->reg_cache->reg_list[XSCALE_IBCR1], 0x0);
2202 xscale->ibcr1_used = 0;
2203 }
2204 breakpoint->set = 0;
2205 }
2206 else
2207 {
2208 /* restore original instruction (kept in target endianness) */
2209 if (breakpoint->length == 4)
2210 {
2211 if ((retval = target_write_memory(target, breakpoint->address, 4, 1, breakpoint->orig_instr)) != ERROR_OK)
2212 {
2213 return retval;
2214 }
2215 }
2216 else
2217 {
2218 if ((retval = target_write_memory(target, breakpoint->address, 2, 1, breakpoint->orig_instr)) != ERROR_OK)
2219 {
2220 return retval;
2221 }
2222 }
2223 breakpoint->set = 0;
2224 }
2225
2226 return ERROR_OK;
2227 }
2228
2229 static int xscale_remove_breakpoint(struct target *target, struct breakpoint *breakpoint)
2230 {
2231 struct xscale_common *xscale = target_to_xscale(target);
2232
2233 if (target->state != TARGET_HALTED)
2234 {
2235 LOG_WARNING("target not halted");
2236 return ERROR_TARGET_NOT_HALTED;
2237 }
2238
2239 if (breakpoint->set)
2240 {
2241 xscale_unset_breakpoint(target, breakpoint);
2242 }
2243
2244 if (breakpoint->type == BKPT_HARD)
2245 xscale->ibcr_available++;
2246
2247 return ERROR_OK;
2248 }
2249
2250 static int xscale_set_watchpoint(struct target *target,
2251 struct watchpoint *watchpoint)
2252 {
2253 struct xscale_common *xscale = target_to_xscale(target);
2254 uint8_t enable = 0;
2255 struct reg *dbcon = &xscale->reg_cache->reg_list[XSCALE_DBCON];
2256 uint32_t dbcon_value = buf_get_u32(dbcon->value, 0, 32);
2257
2258 if (target->state != TARGET_HALTED)
2259 {
2260 LOG_WARNING("target not halted");
2261 return ERROR_TARGET_NOT_HALTED;
2262 }
2263
2264 xscale_get_reg(dbcon);
2265
2266 switch (watchpoint->rw)
2267 {
2268 case WPT_READ:
2269 enable = 0x3;
2270 break;
2271 case WPT_ACCESS:
2272 enable = 0x2;
2273 break;
2274 case WPT_WRITE:
2275 enable = 0x1;
2276 break;
2277 default:
2278 LOG_ERROR("BUG: watchpoint->rw neither read, write nor access");
2279 }
2280
2281 if (!xscale->dbr0_used)
2282 {
2283 xscale_set_reg_u32(&xscale->reg_cache->reg_list[XSCALE_DBR0], watchpoint->address);
2284 dbcon_value |= enable;
2285 xscale_set_reg_u32(dbcon, dbcon_value);
2286 watchpoint->set = 1;
2287 xscale->dbr0_used = 1;
2288 }
2289 else if (!xscale->dbr1_used)
2290 {
2291 xscale_set_reg_u32(&xscale->reg_cache->reg_list[XSCALE_DBR1], watchpoint->address);
2292 dbcon_value |= enable << 2;
2293 xscale_set_reg_u32(dbcon, dbcon_value);
2294 watchpoint->set = 2;
2295 xscale->dbr1_used = 1;
2296 }
2297 else
2298 {
2299 LOG_ERROR("BUG: no hardware comparator available");
2300 return ERROR_OK;
2301 }
2302
2303 return ERROR_OK;
2304 }
2305
2306 static int xscale_add_watchpoint(struct target *target,
2307 struct watchpoint *watchpoint)
2308 {
2309 struct xscale_common *xscale = target_to_xscale(target);
2310
2311 if (xscale->dbr_available < 1)
2312 {
2313 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
2314 }
2315
2316 if ((watchpoint->length != 1) && (watchpoint->length != 2) && (watchpoint->length != 4))
2317 {
2318 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
2319 }
2320
2321 xscale->dbr_available--;
2322
2323 return ERROR_OK;
2324 }
2325
2326 static int xscale_unset_watchpoint(struct target *target,
2327 struct watchpoint *watchpoint)
2328 {
2329 struct xscale_common *xscale = target_to_xscale(target);
2330 struct reg *dbcon = &xscale->reg_cache->reg_list[XSCALE_DBCON];
2331 uint32_t dbcon_value = buf_get_u32(dbcon->value, 0, 32);
2332
2333 if (target->state != TARGET_HALTED)
2334 {
2335 LOG_WARNING("target not halted");
2336 return ERROR_TARGET_NOT_HALTED;
2337 }
2338
2339 if (!watchpoint->set)
2340 {
2341 LOG_WARNING("breakpoint not set");
2342 return ERROR_OK;
2343 }
2344
2345 if (watchpoint->set == 1)
2346 {
2347 dbcon_value &= ~0x3;
2348 xscale_set_reg_u32(dbcon, dbcon_value);
2349 xscale->dbr0_used = 0;
2350 }
2351 else if (watchpoint->set == 2)
2352 {
2353 dbcon_value &= ~0xc;
2354 xscale_set_reg_u32(dbcon, dbcon_value);
2355 xscale->dbr1_used = 0;
2356 }
2357 watchpoint->set = 0;
2358
2359 return ERROR_OK;
2360 }
2361
2362 static int xscale_remove_watchpoint(struct target *target, struct watchpoint *watchpoint)
2363 {
2364 struct xscale_common *xscale = target_to_xscale(target);
2365
2366 if (target->state != TARGET_HALTED)
2367 {
2368 LOG_WARNING("target not halted");
2369 return ERROR_TARGET_NOT_HALTED;
2370 }
2371
2372 if (watchpoint->set)
2373 {
2374 xscale_unset_watchpoint(target, watchpoint);
2375 }
2376
2377 xscale->dbr_available++;
2378
2379 return ERROR_OK;
2380 }
2381
2382 static int xscale_get_reg(struct reg *reg)
2383 {
2384 struct xscale_reg *arch_info = reg->arch_info;
2385 struct target *target = arch_info->target;
2386 struct xscale_common *xscale = target_to_xscale(target);
2387
2388 /* DCSR, TX and RX are accessible via JTAG */
2389 if (strcmp(reg->name, "XSCALE_DCSR") == 0)
2390 {
2391 return xscale_read_dcsr(arch_info->target);
2392 }
2393 else if (strcmp(reg->name, "XSCALE_TX") == 0)
2394 {
2395 /* 1 = consume register content */
2396 return xscale_read_tx(arch_info->target, 1);
2397 }
2398 else if (strcmp(reg->name, "XSCALE_RX") == 0)
2399 {
2400 /* can't read from RX register (host -> debug handler) */
2401 return ERROR_OK;
2402 }
2403 else if (strcmp(reg->name, "XSCALE_TXRXCTRL") == 0)
2404 {
2405 /* can't (explicitly) read from TXRXCTRL register */
2406 return ERROR_OK;
2407 }
2408 else /* Other DBG registers have to be transfered by the debug handler */
2409 {
2410 /* send CP read request (command 0x40) */
2411 xscale_send_u32(target, 0x40);
2412
2413 /* send CP register number */
2414 xscale_send_u32(target, arch_info->dbg_handler_number);
2415
2416 /* read register value */
2417 xscale_read_tx(target, 1);
2418 buf_cpy(xscale->reg_cache->reg_list[XSCALE_TX].value, reg->value, 32);
2419
2420 reg->dirty = 0;
2421 reg->valid = 1;
2422 }
2423
2424 return ERROR_OK;
2425 }
2426
2427 static int xscale_set_reg(struct reg *reg, uint8_t* buf)
2428 {
2429 struct xscale_reg *arch_info = reg->arch_info;
2430 struct target *target = arch_info->target;
2431 struct xscale_common *xscale = target_to_xscale(target);
2432 uint32_t value = buf_get_u32(buf, 0, 32);
2433
2434 /* DCSR, TX and RX are accessible via JTAG */
2435 if (strcmp(reg->name, "XSCALE_DCSR") == 0)
2436 {
2437 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 0, 32, value);
2438 return xscale_write_dcsr(arch_info->target, -1, -1);
2439 }
2440 else if (strcmp(reg->name, "XSCALE_RX") == 0)
2441 {
2442 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_RX].value, 0, 32, value);
2443 return xscale_write_rx(arch_info->target);
2444 }
2445 else if (strcmp(reg->name, "XSCALE_TX") == 0)
2446 {
2447 /* can't write to TX register (debug-handler -> host) */
2448 return ERROR_OK;
2449 }
2450 else if (strcmp(reg->name, "XSCALE_TXRXCTRL") == 0)
2451 {
2452 /* can't (explicitly) write to TXRXCTRL register */
2453 return ERROR_OK;
2454 }
2455 else /* Other DBG registers have to be transfered by the debug handler */
2456 {
2457 /* send CP write request (command 0x41) */
2458 xscale_send_u32(target, 0x41);
2459
2460 /* send CP register number */
2461 xscale_send_u32(target, arch_info->dbg_handler_number);
2462
2463 /* send CP register value */
2464 xscale_send_u32(target, value);
2465 buf_set_u32(reg->value, 0, 32, value);
2466 }
2467
2468 return ERROR_OK;
2469 }
2470
2471 static int xscale_write_dcsr_sw(struct target *target, uint32_t value)
2472 {
2473 struct xscale_common *xscale = target_to_xscale(target);
2474 struct reg *dcsr = &xscale->reg_cache->reg_list[XSCALE_DCSR];
2475 struct xscale_reg *dcsr_arch_info = dcsr->arch_info;
2476
2477 /* send CP write request (command 0x41) */
2478 xscale_send_u32(target, 0x41);
2479
2480 /* send CP register number */
2481 xscale_send_u32(target, dcsr_arch_info->dbg_handler_number);
2482
2483 /* send CP register value */
2484 xscale_send_u32(target, value);
2485 buf_set_u32(dcsr->value, 0, 32, value);
2486
2487 return ERROR_OK;
2488 }
2489
2490 static int xscale_read_trace(struct target *target)
2491 {
2492 struct xscale_common *xscale = target_to_xscale(target);
2493 struct arm *armv4_5 = &xscale->armv4_5_common;
2494 struct xscale_trace_data **trace_data_p;
2495
2496 /* 258 words from debug handler
2497 * 256 trace buffer entries
2498 * 2 checkpoint addresses
2499 */
2500 uint32_t trace_buffer[258];
2501 int is_address[256];
2502 int i, j;
2503
2504 if (target->state != TARGET_HALTED)
2505 {
2506 LOG_WARNING("target must be stopped to read trace data");
2507 return ERROR_TARGET_NOT_HALTED;
2508 }
2509
2510 /* send read trace buffer command (command 0x61) */
2511 xscale_send_u32(target, 0x61);
2512
2513 /* receive trace buffer content */
2514 xscale_receive(target, trace_buffer, 258);
2515
2516 /* parse buffer backwards to identify address entries */
2517 for (i = 255; i >= 0; i--)
2518 {
2519 is_address[i] = 0;
2520 if (((trace_buffer[i] & 0xf0) == 0x90) ||
2521 ((trace_buffer[i] & 0xf0) == 0xd0))
2522 {
2523 if (i >= 3)
2524 is_address[--i] = 1;
2525 if (i >= 2)
2526 is_address[--i] = 1;
2527 if (i >= 1)
2528 is_address[--i] = 1;
2529 if (i >= 0)
2530 is_address[--i] = 1;
2531 }
2532 }
2533
2534
2535 /* search first non-zero entry */
2536 for (j = 0; (j < 256) && (trace_buffer[j] == 0) && (!is_address[j]); j++)
2537 ;
2538
2539 if (j == 256)
2540 {
2541 LOG_DEBUG("no trace data collected");
2542 return ERROR_XSCALE_NO_TRACE_DATA;
2543 }
2544
2545 for (trace_data_p = &xscale->trace.data; *trace_data_p; trace_data_p = &(*trace_data_p)->next)
2546 ;
2547
2548 *trace_data_p = malloc(sizeof(struct xscale_trace_data));
2549 (*trace_data_p)->next = NULL;
2550 (*trace_data_p)->chkpt0 = trace_buffer[256];
2551 (*trace_data_p)->chkpt1 = trace_buffer[257];
2552 (*trace_data_p)->last_instruction = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
2553 (*trace_data_p)->entries = malloc(sizeof(struct xscale_trace_entry) * (256 - j));
2554 (*trace_data_p)->depth = 256 - j;
2555
2556 for (i = j; i < 256; i++)
2557 {
2558 (*trace_data_p)->entries[i - j].data = trace_buffer[i];
2559 if (is_address[i])
2560 (*trace_data_p)->entries[i - j].type = XSCALE_TRACE_ADDRESS;
2561 else
2562 (*trace_data_p)->entries[i - j].type = XSCALE_TRACE_MESSAGE;
2563 }
2564
2565 return ERROR_OK;
2566 }
2567
2568 static int xscale_read_instruction(struct target *target,
2569 struct arm_instruction *instruction)
2570 {
2571 struct xscale_common *xscale = target_to_xscale(target);
2572 int i;
2573 int section = -1;
2574 size_t size_read;
2575 uint32_t opcode;
2576 int retval;
2577
2578 if (!xscale->trace.image)
2579 return ERROR_TRACE_IMAGE_UNAVAILABLE;
2580
2581 /* search for the section the current instruction belongs to */
2582 for (i = 0; i < xscale->trace.image->num_sections; i++)
2583 {
2584 if ((xscale->trace.image->sections[i].base_address <= xscale->trace.current_pc) &&
2585 (xscale->trace.image->sections[i].base_address + xscale->trace.image->sections[i].size > xscale->trace.current_pc))
2586 {
2587 section = i;
2588 break;
2589 }
2590 }
2591
2592 if (section == -1)
2593 {
2594 /* current instruction couldn't be found in the image */
2595 return ERROR_TRACE_INSTRUCTION_UNAVAILABLE;
2596 }
2597
2598 if (xscale->trace.core_state == ARMV4_5_STATE_ARM)
2599 {
2600 uint8_t buf[4];
2601 if ((retval = image_read_section(xscale->trace.image, section,
2602 xscale->trace.current_pc - xscale->trace.image->sections[section].base_address,
2603 4, buf, &size_read)) != ERROR_OK)
2604 {
2605 LOG_ERROR("error while reading instruction: %i", retval);
2606 return ERROR_TRACE_INSTRUCTION_UNAVAILABLE;
2607 }
2608 opcode = target_buffer_get_u32(target, buf);
2609 arm_evaluate_opcode(opcode, xscale->trace.current_pc, instruction);
2610 }
2611 else if (xscale->trace.core_state == ARMV4_5_STATE_THUMB)
2612 {
2613 uint8_t buf[2];
2614 if ((retval = image_read_section(xscale->trace.image, section,
2615 xscale->trace.current_pc - xscale->trace.image->sections[section].base_address,
2616 2, buf, &size_read)) != ERROR_OK)
2617 {
2618 LOG_ERROR("error while reading instruction: %i", retval);
2619 return ERROR_TRACE_INSTRUCTION_UNAVAILABLE;
2620 }
2621 opcode = target_buffer_get_u16(target, buf);
2622 thumb_evaluate_opcode(opcode, xscale->trace.current_pc, instruction);
2623 }
2624 else
2625 {
2626 LOG_ERROR("BUG: unknown core state encountered");
2627 exit(-1);
2628 }
2629
2630 return ERROR_OK;
2631 }
2632
2633 static int xscale_branch_address(struct xscale_trace_data *trace_data,
2634 int i, uint32_t *target)
2635 {
2636 /* if there are less than four entries prior to the indirect branch message
2637 * we can't extract the address */
2638 if (i < 4)
2639 {
2640 return -1;
2641 }
2642
2643 *target = (trace_data->entries[i-1].data) | (trace_data->entries[i-2].data << 8) |
2644 (trace_data->entries[i-3].data << 16) | (trace_data->entries[i-4].data << 24);
2645
2646 return 0;
2647 }
2648
2649 static int xscale_analyze_trace(struct target *target, struct command_context *cmd_ctx)
2650 {
2651 struct xscale_common *xscale = target_to_xscale(target);
2652 int next_pc_ok = 0;
2653 uint32_t next_pc = 0x0;
2654 struct xscale_trace_data *trace_data = xscale->trace.data;
2655 int retval;
2656
2657 while (trace_data)
2658 {
2659 int i, chkpt;
2660 int rollover;
2661 int branch;
2662 int exception;
2663 xscale->trace.core_state = ARMV4_5_STATE_ARM;
2664
2665 chkpt = 0;
2666 rollover = 0;
2667
2668 for (i = 0; i < trace_data->depth; i++)
2669 {
2670 next_pc_ok = 0;
2671 branch = 0;
2672 exception = 0;
2673
2674 if (trace_data->entries[i].type == XSCALE_TRACE_ADDRESS)
2675 continue;
2676
2677 switch ((trace_data->entries[i].data & 0xf0) >> 4)
2678 {
2679 case 0: /* Exceptions */
2680 case 1:
2681 case 2:
2682 case 3:
2683 case 4:
2684 case 5:
2685 case 6:
2686 case 7:
2687 exception = (trace_data->entries[i].data & 0x70) >> 4;
2688 next_pc_ok = 1;
2689 next_pc = (trace_data->entries[i].data & 0xf0) >> 2;
2690 command_print(cmd_ctx, "--- exception %i ---", (trace_data->entries[i].data & 0xf0) >> 4);
2691 break;
2692 case 8: /* Direct Branch */
2693 branch = 1;
2694 break;
2695 case 9: /* Indirect Branch */
2696 branch = 1;
2697 if (xscale_branch_address(trace_data, i, &next_pc) == 0)
2698 {
2699 next_pc_ok = 1;
2700 }
2701 break;
2702 case 13: /* Checkpointed Indirect Branch */
2703 if (xscale_branch_address(trace_data, i, &next_pc) == 0)
2704 {
2705 next_pc_ok = 1;
2706 if (((chkpt == 0) && (next_pc != trace_data->chkpt0))
2707 || ((chkpt == 1) && (next_pc != trace_data->chkpt1)))
2708 LOG_WARNING("checkpointed indirect branch target address doesn't match checkpoint");
2709 }
2710 /* explicit fall-through */
2711 case 12: /* Checkpointed Direct Branch */
2712 branch = 1;
2713 if (chkpt == 0)
2714 {
2715 next_pc_ok = 1;
2716 next_pc = trace_data->chkpt0;
2717 chkpt++;
2718 }
2719 else if (chkpt == 1)
2720 {
2721 next_pc_ok = 1;
2722 next_pc = trace_data->chkpt0;
2723 chkpt++;
2724 }
2725 else
2726 {
2727 LOG_WARNING("more than two checkpointed branches encountered");
2728 }
2729 break;
2730 case 15: /* Roll-over */
2731 rollover++;
2732 continue;
2733 default: /* Reserved */
2734 command_print(cmd_ctx, "--- reserved trace message ---");
2735 LOG_ERROR("BUG: trace message %i is reserved", (trace_data->entries[i].data & 0xf0) >> 4);
2736 return ERROR_OK;
2737 }
2738
2739 if (xscale->trace.pc_ok)
2740 {
2741 int executed = (trace_data->entries[i].data & 0xf) + rollover * 16;
2742 struct arm_instruction instruction;
2743
2744 if ((exception == 6) || (exception == 7))
2745 {
2746 /* IRQ or FIQ exception, no instruction executed */
2747 executed -= 1;
2748 }
2749
2750 while (executed-- >= 0)
2751 {
2752 if ((retval = xscale_read_instruction(target, &instruction)) != ERROR_OK)
2753 {
2754 /* can't continue tracing with no image available */
2755 if (retval == ERROR_TRACE_IMAGE_UNAVAILABLE)
2756 {
2757 return retval;
2758 }
2759 else if (retval == ERROR_TRACE_INSTRUCTION_UNAVAILABLE)
2760 {
2761 /* TODO: handle incomplete images */
2762 }
2763 }
2764
2765 /* a precise abort on a load to the PC is included in the incremental
2766 * word count, other instructions causing data aborts are not included
2767 */
2768 if ((executed == 0) && (exception == 4)
2769 && ((instruction.type >= ARM_LDR) && (instruction.type <= ARM_LDM)))
2770 {
2771 if ((instruction.type == ARM_LDM)
2772 && ((instruction.info.load_store_multiple.register_list & 0x8000) == 0))
2773 {
2774 executed--;
2775 }
2776 else if (((instruction.type >= ARM_LDR) && (instruction.type <= ARM_LDRSH))
2777 && (instruction.info.load_store.Rd != 15))
2778 {
2779 executed--;
2780 }
2781 }
2782
2783 /* only the last instruction executed
2784 * (the one that caused the control flow change)
2785 * could be a taken branch
2786 */
2787 if (((executed == -1) && (branch == 1)) &&
2788 (((instruction.type == ARM_B) ||
2789 (instruction.type == ARM_BL) ||
2790 (instruction.type == ARM_BLX)) &&
2791 (instruction.info.b_bl_bx_blx.target_address != 0xffffffff)))
2792 {
2793 xscale->trace.current_pc = instruction.info.b_bl_bx_blx.target_address;
2794 }
2795 else
2796 {
2797 xscale->trace.current_pc += (xscale->trace.core_state == ARMV4_5_STATE_ARM) ? 4 : 2;
2798 }
2799 command_print(cmd_ctx, "%s", instruction.text);
2800 }
2801
2802 rollover = 0;
2803 }
2804
2805 if (next_pc_ok)
2806 {
2807 xscale->trace.current_pc = next_pc;
2808 xscale->trace.pc_ok = 1;
2809 }
2810 }
2811
2812 for (; xscale->trace.current_pc < trace_data->last_instruction; xscale->trace.current_pc += (xscale->trace.core_state == ARMV4_5_STATE_ARM) ? 4 : 2)
2813 {
2814 struct arm_instruction instruction;
2815 if ((retval = xscale_read_instruction(target, &instruction)) != ERROR_OK)
2816 {
2817 /* can't continue tracing with no image available */
2818 if (retval == ERROR_TRACE_IMAGE_UNAVAILABLE)
2819 {
2820 return retval;
2821 }
2822 else if (retval == ERROR_TRACE_INSTRUCTION_UNAVAILABLE)
2823 {
2824 /* TODO: handle incomplete images */
2825 }
2826 }
2827 command_print(cmd_ctx, "%s", instruction.text);
2828 }
2829
2830 trace_data = trace_data->next;
2831 }
2832
2833 return ERROR_OK;
2834 }
2835
2836 static const struct reg_arch_type xscale_reg_type = {
2837 .get = xscale_get_reg,
2838 .set = xscale_set_reg,
2839 };
2840
2841 static void xscale_build_reg_cache(struct target *target)
2842 {
2843 struct xscale_common *xscale = target_to_xscale(target);
2844 struct arm *armv4_5 = &xscale->armv4_5_common;
2845 struct reg_cache **cache_p = register_get_last_cache_p(&target->reg_cache);
2846 struct xscale_reg *arch_info = malloc(sizeof(xscale_reg_arch_info));
2847 int i;
2848 int num_regs = ARRAY_SIZE(xscale_reg_arch_info);
2849
2850 (*cache_p) = armv4_5_build_reg_cache(target, armv4_5);
2851
2852 (*cache_p)->next = malloc(sizeof(struct reg_cache));
2853 cache_p = &(*cache_p)->next;
2854
2855 /* fill in values for the xscale reg cache */
2856 (*cache_p)->name = "XScale registers";
2857 (*cache_p)->next = NULL;
2858 (*cache_p)->reg_list = malloc(num_regs * sizeof(struct reg));
2859 (*cache_p)->num_regs = num_regs;
2860
2861 for (i = 0; i < num_regs; i++)
2862 {
2863 (*cache_p)->reg_list[i].name = xscale_reg_list[i];
2864 (*cache_p)->reg_list[i].value = calloc(4, 1);
2865 (*cache_p)->reg_list[i].dirty = 0;
2866 (*cache_p)->reg_list[i].valid = 0;
2867 (*cache_p)->reg_list[i].size = 32;
2868 (*cache_p)->reg_list[i].arch_info = &arch_info[i];
2869 (*cache_p)->reg_list[i].type = &xscale_reg_type;
2870 arch_info[i] = xscale_reg_arch_info[i];
2871 arch_info[i].target = target;
2872 }
2873
2874 xscale->reg_cache = (*cache_p);
2875 }
2876
2877 static int xscale_init_target(struct command_context *cmd_ctx,
2878 struct target *target)
2879 {
2880 xscale_build_reg_cache(target);
2881 return ERROR_OK;
2882 }
2883
2884 static int xscale_init_arch_info(struct target *target,
2885 struct xscale_common *xscale, struct jtag_tap *tap, const char *variant)
2886 {
2887 struct arm *armv4_5;
2888 uint32_t high_reset_branch, low_reset_branch;
2889 int i;
2890
2891 armv4_5 = &xscale->armv4_5_common;
2892
2893 /* store architecture specfic data */
2894 xscale->common_magic = XSCALE_COMMON_MAGIC;
2895
2896 /* we don't really *need* a variant param ... */
2897 if (variant) {
2898 int ir_length = 0;
2899
2900 if (strcmp(variant, "pxa250") == 0
2901 || strcmp(variant, "pxa255") == 0
2902 || strcmp(variant, "pxa26x") == 0)
2903 ir_length = 5;
2904 else if (strcmp(variant, "pxa27x") == 0
2905 || strcmp(variant, "ixp42x") == 0
2906 || strcmp(variant, "ixp45x") == 0
2907 || strcmp(variant, "ixp46x") == 0)
2908 ir_length = 7;
2909 else if (strcmp(variant, "pxa3xx") == 0)
2910 ir_length = 11;
2911 else
2912 LOG_WARNING("%s: unrecognized variant %s",
2913 tap->dotted_name, variant);
2914
2915 if (ir_length && ir_length != tap->ir_length) {
2916 LOG_WARNING("%s: IR length for %s is %d; fixing",
2917 tap->dotted_name, variant, ir_length);
2918 tap->ir_length = ir_length;
2919 }
2920 }
2921
2922 /* PXA3xx shifts the JTAG instructions */
2923 if (tap->ir_length == 11)
2924 xscale->xscale_variant = XSCALE_PXA3XX;
2925 else
2926 xscale->xscale_variant = XSCALE_IXP4XX_PXA2XX;
2927
2928 /* the debug handler isn't installed (and thus not running) at this time */
2929 xscale->handler_address = 0xfe000800;
2930
2931 /* clear the vectors we keep locally for reference */
2932 memset(xscale->low_vectors, 0, sizeof(xscale->low_vectors));
2933 memset(xscale->high_vectors, 0, sizeof(xscale->high_vectors));
2934
2935 /* no user-specified vectors have been configured yet */
2936 xscale->static_low_vectors_set = 0x0;
2937 xscale->static_high_vectors_set = 0x0;
2938
2939 /* calculate branches to debug handler */
2940 low_reset_branch = (xscale->handler_address + 0x20 - 0x0 - 0x8) >> 2;
2941 high_reset_branch = (xscale->handler_address + 0x20 - 0xffff0000 - 0x8) >> 2;
2942
2943 xscale->low_vectors[0] = ARMV4_5_B((low_reset_branch & 0xffffff), 0);
2944 xscale->high_vectors[0] = ARMV4_5_B((high_reset_branch & 0xffffff), 0);
2945
2946 for (i = 1; i <= 7; i++)
2947 {
2948 xscale->low_vectors[i] = ARMV4_5_B(0xfffffe, 0);
2949 xscale->high_vectors[i] = ARMV4_5_B(0xfffffe, 0);
2950 }
2951
2952 /* 64kB aligned region used for DCache cleaning */
2953 xscale->cache_clean_address = 0xfffe0000;
2954
2955 xscale->hold_rst = 0;
2956 xscale->external_debug_break = 0;
2957
2958 xscale->ibcr_available = 2;
2959 xscale->ibcr0_used = 0;
2960 xscale->ibcr1_used = 0;
2961
2962 xscale->dbr_available = 2;
2963 xscale->dbr0_used = 0;
2964 xscale->dbr1_used = 0;
2965
2966 xscale->arm_bkpt = ARMV5_BKPT(0x0);
2967 xscale->thumb_bkpt = ARMV5_T_BKPT(0x0) & 0xffff;
2968
2969 xscale->vector_catch = 0x1;
2970
2971 xscale->trace.capture_status = TRACE_IDLE;
2972 xscale->trace.data = NULL;
2973 xscale->trace.image = NULL;
2974 xscale->trace.buffer_enabled = 0;
2975 xscale->trace.buffer_fill = 0;
2976
2977 /* prepare ARMv4/5 specific information */
2978 armv4_5->arch_info = xscale;
2979 armv4_5->read_core_reg = xscale_read_core_reg;
2980 armv4_5->write_core_reg = xscale_write_core_reg;
2981 armv4_5->full_context = xscale_full_context;
2982
2983 armv4_5_init_arch_info(target, armv4_5);
2984
2985 xscale->armv4_5_mmu.armv4_5_cache.ctype = -1;
2986 xscale->armv4_5_mmu.get_ttb = xscale_get_ttb;
2987 xscale->armv4_5_mmu.read_memory = xscale_read_memory;
2988 xscale->armv4_5_mmu.write_memory = xscale_write_memory;
2989 xscale->armv4_5_mmu.disable_mmu_caches = xscale_disable_mmu_caches;
2990 xscale->armv4_5_mmu.enable_mmu_caches = xscale_enable_mmu_caches;
2991 xscale->armv4_5_mmu.has_tiny_pages = 1;
2992 xscale->armv4_5_mmu.mmu_enabled = 0;
2993
2994 return ERROR_OK;
2995 }
2996
2997 static int xscale_target_create(struct target *target, Jim_Interp *interp)
2998 {
2999 struct xscale_common *xscale;
3000
3001 if (sizeof xscale_debug_handler - 1 > 0x800) {
3002 LOG_ERROR("debug_handler.bin: larger than 2kb");
3003 return ERROR_FAIL;
3004 }
3005
3006 xscale = calloc(1, sizeof(*xscale));
3007 if (!xscale)
3008 return ERROR_FAIL;
3009
3010 return xscale_init_arch_info(target, xscale, target->tap,
3011 target->variant);
3012 }
3013
3014 COMMAND_HANDLER(xscale_handle_debug_handler_command)
3015 {
3016 struct target *target = NULL;
3017 struct xscale_common *xscale;
3018 int retval;
3019 uint32_t handler_address;
3020
3021 if (CMD_ARGC < 2)
3022 {
3023 LOG_ERROR("'xscale debug_handler <target#> <address>' command takes two required operands");
3024 return ERROR_OK;
3025 }
3026
3027 if ((target = get_target(CMD_ARGV[0])) == NULL)
3028 {
3029 LOG_ERROR("target '%s' not defined", CMD_ARGV[0]);
3030 return ERROR_FAIL;
3031 }
3032
3033 xscale = target_to_xscale(target);
3034 retval = xscale_verify_pointer(CMD_CTX, xscale);
3035 if (retval != ERROR_OK)
3036 return retval;
3037
3038 COMMAND_PARSE_NUMBER(u32, CMD_ARGV[1], handler_address);
3039
3040 if (((handler_address >= 0x800) && (handler_address <= 0x1fef800)) ||
3041 ((handler_address >= 0xfe000800) && (handler_address <= 0xfffff800)))
3042 {
3043 xscale->handler_address = handler_address;
3044 }
3045 else
3046 {
3047 LOG_ERROR("xscale debug_handler <address> must be between 0x800 and 0x1fef800 or between 0xfe000800 and 0xfffff800");
3048 return ERROR_FAIL;
3049 }
3050
3051 return ERROR_OK;
3052 }
3053
3054 COMMAND_HANDLER(xscale_handle_cache_clean_address_command)
3055 {
3056 struct target *target = NULL;
3057 struct xscale_common *xscale;
3058 int retval;
3059 uint32_t cache_clean_address;
3060
3061 if (CMD_ARGC < 2)
3062 {
3063 return ERROR_COMMAND_SYNTAX_ERROR;
3064 }
3065
3066 target = get_target(CMD_ARGV[0]);
3067 if (target == NULL)
3068 {
3069 LOG_ERROR("target '%s' not defined", CMD_ARGV[0]);
3070 return ERROR_FAIL;
3071 }
3072 xscale = target_to_xscale(target);
3073 retval = xscale_verify_pointer(CMD_CTX, xscale);
3074 if (retval != ERROR_OK)
3075 return retval;
3076
3077 COMMAND_PARSE_NUMBER(u32, CMD_ARGV[1], cache_clean_address);
3078
3079 if (cache_clean_address & 0xffff)
3080 {
3081 LOG_ERROR("xscale cache_clean_address <address> must be 64kb aligned");
3082 }
3083 else
3084 {
3085 xscale->cache_clean_address = cache_clean_address;
3086 }
3087
3088 return ERROR_OK;
3089 }
3090
3091 COMMAND_HANDLER(xscale_handle_cache_info_command)
3092 {
3093 struct target *target = get_current_target(CMD_CTX);
3094 struct xscale_common *xscale = target_to_xscale(target);
3095 int retval;
3096
3097 retval = xscale_verify_pointer(CMD_CTX, xscale);
3098 if (retval != ERROR_OK)
3099 return retval;
3100
3101 return armv4_5_handle_cache_info_command(CMD_CTX, &xscale->armv4_5_mmu.armv4_5_cache);
3102 }
3103
3104 static int xscale_virt2phys(struct target *target,
3105 uint32_t virtual, uint32_t *physical)
3106 {
3107 struct xscale_common *xscale = target_to_xscale(target);
3108 int type;
3109 uint32_t cb;
3110 int domain;
3111 uint32_t ap;
3112
3113 if (xscale->common_magic != XSCALE_COMMON_MAGIC) {
3114 LOG_ERROR(xscale_not);
3115 return ERROR_TARGET_INVALID;
3116 }
3117
3118 uint32_t ret = armv4_5_mmu_translate_va(target, &xscale->armv4_5_mmu, virtual, &type, &cb, &domain, &ap);
3119 if (type == -1)
3120 {
3121 return ret;
3122 }
3123 *physical = ret;
3124 return ERROR_OK;
3125 }
3126
3127 static int xscale_mmu(struct target *target, int *enabled)
3128 {
3129 struct xscale_common *xscale = target_to_xscale(target);
3130
3131 if (target->state != TARGET_HALTED)
3132 {
3133 LOG_ERROR("Target not halted");
3134 return ERROR_TARGET_INVALID;
3135 }
3136 *enabled = xscale->armv4_5_mmu.mmu_enabled;
3137 return ERROR_OK;
3138 }
3139
3140 COMMAND_HANDLER(xscale_handle_mmu_command)
3141 {
3142 struct target *target = get_current_target(CMD_CTX);
3143 struct xscale_common *xscale = target_to_xscale(target);
3144 int retval;
3145
3146 retval = xscale_verify_pointer(CMD_CTX, xscale);
3147 if (retval != ERROR_OK)
3148 return retval;
3149
3150 if (target->state != TARGET_HALTED)
3151 {
3152 command_print(CMD_CTX, "target must be stopped for \"%s\" command", CMD_NAME);
3153 return ERROR_OK;
3154 }
3155
3156 if (CMD_ARGC >= 1)
3157 {
3158 bool enable;
3159 COMMAND_PARSE_ENABLE(CMD_ARGV[0], enable);
3160 if (enable)
3161 xscale_enable_mmu_caches(target, 1, 0, 0);
3162 else
3163 xscale_disable_mmu_caches(target, 1, 0, 0);
3164 xscale->armv4_5_mmu.mmu_enabled = enable;
3165 }
3166
3167 command_print(CMD_CTX, "mmu %s", (xscale->armv4_5_mmu.mmu_enabled) ? "enabled" : "disabled");
3168
3169 return ERROR_OK;
3170 }
3171
3172 COMMAND_HANDLER(xscale_handle_idcache_command)
3173 {
3174 struct target *target = get_current_target(CMD_CTX);
3175 struct xscale_common *xscale = target_to_xscale(target);
3176
3177 int retval = xscale_verify_pointer(CMD_CTX, xscale);
3178 if (retval != ERROR_OK)
3179 return retval;
3180
3181 if (target->state != TARGET_HALTED)
3182 {
3183 command_print(CMD_CTX, "target must be stopped for \"%s\" command", CMD_NAME);
3184 return ERROR_OK;
3185 }
3186
3187 bool icache;
3188 COMMAND_PARSE_BOOL(CMD_NAME, icache, "icache", "dcache");
3189
3190 if (CMD_ARGC >= 1)
3191 {
3192 bool enable;
3193 COMMAND_PARSE_ENABLE(CMD_ARGV[0], enable);
3194 if (enable)
3195 xscale_enable_mmu_caches(target, 1, 0, 0);
3196 else
3197 xscale_disable_mmu_caches(target, 1, 0, 0);
3198 if (icache)
3199 xscale->armv4_5_mmu.armv4_5_cache.i_cache_enabled = enable;
3200 else
3201 xscale->armv4_5_mmu.armv4_5_cache.d_u_cache_enabled = enable;
3202 }
3203
3204 bool enabled = icache ?
3205 xscale->armv4_5_mmu.armv4_5_cache.i_cache_enabled :
3206 xscale->armv4_5_mmu.armv4_5_cache.d_u_cache_enabled;
3207 const char *msg = enabled ? "enabled" : "disabled";
3208 command_print(CMD_CTX, "%s %s", CMD_NAME, msg);
3209
3210 return ERROR_OK;
3211 }
3212
3213 COMMAND_HANDLER(xscale_handle_vector_catch_command)
3214 {
3215 struct target *target = get_current_target(CMD_CTX);
3216 struct xscale_common *xscale = target_to_xscale(target);
3217 int retval;
3218
3219 retval = xscale_verify_pointer(CMD_CTX, xscale);
3220 if (retval != ERROR_OK)
3221 return retval;
3222
3223 if (CMD_ARGC < 1)
3224 {
3225 command_print(CMD_CTX, "usage: xscale vector_catch [mask]");
3226 }
3227 else
3228 {
3229 COMMAND_PARSE_NUMBER(u8, CMD_ARGV[0], xscale->vector_catch);
3230 buf_set_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 16, 8, xscale->vector_catch);
3231 xscale_write_dcsr(target, -1, -1);
3232 }
3233
3234 command_print(CMD_CTX, "vector catch mask: 0x%2.2x", xscale->vector_catch);
3235
3236 return ERROR_OK;
3237 }
3238
3239
3240 COMMAND_HANDLER(xscale_handle_vector_table_command)
3241 {
3242 struct target *target = get_current_target(CMD_CTX);
3243 struct xscale_common *xscale = target_to_xscale(target);
3244 int err = 0;
3245 int retval;
3246
3247 retval = xscale_verify_pointer(CMD_CTX, xscale);
3248 if (retval != ERROR_OK)
3249 return retval;
3250
3251 if (CMD_ARGC == 0) /* print current settings */
3252 {
3253 int idx;
3254
3255 command_print(CMD_CTX, "active user-set static vectors:");
3256 for (idx = 1; idx < 8; idx++)
3257 if (xscale->static_low_vectors_set & (1 << idx))
3258 command_print(CMD_CTX, "low %d: 0x%" PRIx32, idx, xscale->static_low_vectors[idx]);
3259 for (idx = 1; idx < 8; idx++)
3260 if (xscale->static_high_vectors_set & (1 << idx))
3261 command_print(CMD_CTX, "high %d: 0x%" PRIx32, idx, xscale->static_high_vectors[idx]);
3262 return ERROR_OK;
3263 }
3264
3265 if (CMD_ARGC != 3)
3266 err = 1;
3267 else
3268 {
3269 int idx;
3270 COMMAND_PARSE_NUMBER(int, CMD_ARGV[1], idx);
3271 uint32_t vec;
3272 COMMAND_PARSE_NUMBER(u32, CMD_ARGV[2], vec);
3273
3274 if (idx < 1 || idx >= 8)
3275 err = 1;
3276
3277 if (!err && strcmp(CMD_ARGV[0], "low") == 0)
3278 {
3279 xscale->static_low_vectors_set |= (1<<idx);
3280 xscale->static_low_vectors[idx] = vec;
3281 }
3282 else if (!err && (strcmp(CMD_ARGV[0], "high") == 0))
3283 {
3284 xscale->static_high_vectors_set |= (1<<idx);
3285 xscale->static_high_vectors[idx] = vec;
3286 }
3287 else
3288 err = 1;
3289 }
3290
3291 if (err)
3292 command_print(CMD_CTX, "usage: xscale vector_table <high|low> <index> <code>");
3293
3294 return ERROR_OK;
3295 }
3296
3297
3298 COMMAND_HANDLER(xscale_handle_trace_buffer_command)
3299 {
3300 struct target *target = get_current_target(CMD_CTX);
3301 struct xscale_common *xscale = target_to_xscale(target);
3302 struct arm *armv4_5 = &xscale->armv4_5_common;
3303 uint32_t dcsr_value;
3304 int retval;
3305
3306 retval = xscale_verify_pointer(CMD_CTX, xscale);
3307 if (retval != ERROR_OK)
3308 return retval;
3309
3310 if (target->state != TARGET_HALTED)
3311 {
3312 command_print(CMD_CTX, "target must be stopped for \"%s\" command", CMD_NAME);
3313 return ERROR_OK;
3314 }
3315
3316 if ((CMD_ARGC >= 1) && (strcmp("enable", CMD_ARGV[0]) == 0))
3317 {
3318 struct xscale_trace_data *td, *next_td;
3319 xscale->trace.buffer_enabled = 1;
3320
3321 /* free old trace data */
3322 td = xscale->trace.data;
3323 while (td)
3324 {
3325 next_td = td->next;
3326
3327 if (td->entries)
3328 free(td->entries);
3329 free(td);
3330 td = next_td;
3331 }
3332 xscale->trace.data = NULL;
3333 }
3334 else if ((CMD_ARGC >= 1) && (strcmp("disable", CMD_ARGV[0]) == 0))
3335 {
3336 xscale->trace.buffer_enabled = 0;
3337 }
3338
3339 if ((CMD_ARGC >= 2) && (strcmp("fill", CMD_ARGV[1]) == 0))
3340 {
3341 uint32_t fill = 1;
3342 if (CMD_ARGC >= 3)
3343 COMMAND_PARSE_NUMBER(u32, CMD_ARGV[2], fill);
3344 xscale->trace.buffer_fill = fill;
3345 }
3346 else if ((CMD_ARGC >= 2) && (strcmp("wrap", CMD_ARGV[1]) == 0))
3347 {
3348 xscale->trace.buffer_fill = -1;
3349 }
3350
3351 if (xscale->trace.buffer_enabled)
3352 {
3353 /* if we enable the trace buffer in fill-once
3354 * mode we know the address of the first instruction */
3355 xscale->trace.pc_ok = 1;
3356 xscale->trace.current_pc = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
3357 }
3358 else
3359 {
3360 /* otherwise the address is unknown, and we have no known good PC */
3361 xscale->trace.pc_ok = 0;
3362 }
3363
3364 command_print(CMD_CTX, "trace buffer %s (%s)",
3365 (xscale->trace.buffer_enabled) ? "enabled" : "disabled",
3366 (xscale->trace.buffer_fill > 0) ? "fill" : "wrap");
3367
3368 dcsr_value = buf_get_u32(xscale->reg_cache->reg_list[XSCALE_DCSR].value, 0, 32);
3369 if (xscale->trace.buffer_fill >= 0)
3370 xscale_write_dcsr_sw(target, (dcsr_value & 0xfffffffc) | 2);
3371 else
3372 xscale_write_dcsr_sw(target, dcsr_value & 0xfffffffc);
3373
3374 return ERROR_OK;
3375 }
3376
3377 COMMAND_HANDLER(xscale_handle_trace_image_command)
3378 {
3379 struct target *target = get_current_target(CMD_CTX);
3380 struct xscale_common *xscale = target_to_xscale(target);
3381 int retval;
3382
3383 if (CMD_ARGC < 1)
3384 {
3385 command_print(CMD_CTX, "usage: xscale trace_image <file> [base address] [type]");
3386 return ERROR_OK;
3387 }
3388
3389 retval = xscale_verify_pointer(CMD_CTX, xscale);
3390 if (retval != ERROR_OK)
3391 return retval;
3392
3393 if (xscale->trace.image)
3394 {
3395 image_close(xscale->trace.image);
3396 free(xscale->trace.image);
3397 command_print(CMD_CTX, "previously loaded image found and closed");
3398 }
3399
3400 xscale->trace.image = malloc(sizeof(struct image));
3401 xscale->trace.image->base_address_set = 0;
3402 xscale->trace.image->start_address_set = 0;
3403
3404 /* a base address isn't always necessary, default to 0x0 (i.e. don't relocate) */
3405 if (CMD_ARGC >= 2)
3406 {
3407 xscale->trace.image->base_address_set = 1;
3408 COMMAND_PARSE_NUMBER(int, CMD_ARGV[1], xscale->trace.image->base_address);
3409 }
3410 else
3411 {
3412 xscale->trace.image->base_address_set = 0;
3413 }
3414
3415 if (image_open(xscale->trace.image, CMD_ARGV[0], (CMD_ARGC >= 3) ? CMD_ARGV[2] : NULL) != ERROR_OK)
3416 {
3417 free(xscale->trace.image);
3418 xscale->trace.image = NULL;
3419 return ERROR_OK;
3420 }
3421
3422 return ERROR_OK;
3423 }
3424
3425 COMMAND_HANDLER(xscale_handle_dump_trace_command)
3426 {
3427 struct target *target = get_current_target(CMD_CTX);
3428 struct xscale_common *xscale = target_to_xscale(target);
3429 struct xscale_trace_data *trace_data;
3430 struct fileio file;
3431 int retval;
3432
3433 retval = xscale_verify_pointer(CMD_CTX, xscale);
3434 if (retval != ERROR_OK)
3435 return retval;
3436
3437 if (target->state != TARGET_HALTED)
3438 {
3439 command_print(CMD_CTX, "target must be stopped for \"%s\" command", CMD_NAME);
3440 return ERROR_OK;
3441 }
3442
3443 if (CMD_ARGC < 1)
3444 {
3445 command_print(CMD_CTX, "usage: xscale dump_trace <file>");
3446 return ERROR_OK;
3447 }
3448
3449 trace_data = xscale->trace.data;
3450
3451 if (!trace_data)
3452 {
3453 command_print(CMD_CTX, "no trace data collected");
3454 return ERROR_OK;
3455 }
3456
3457 if (fileio_open(&file, CMD_ARGV[0], FILEIO_WRITE, FILEIO_BINARY) != ERROR_OK)
3458 {
3459 return ERROR_OK;
3460 }
3461
3462 while (trace_data)
3463 {
3464 int i;
3465
3466 fileio_write_u32(&file, trace_data->chkpt0);
3467 fileio_write_u32(&file, trace_data->chkpt1);
3468 fileio_write_u32(&file, trace_data->last_instruction);
3469 fileio_write_u32(&file, trace_data->depth);
3470
3471 for (i = 0; i < trace_data->depth; i++)
3472 fileio_write_u32(&file, trace_data->entries[i].data | ((trace_data->entries[i].type & 0xffff) << 16));
3473
3474 trace_data = trace_data->next;
3475 }
3476
3477 fileio_close(&file);
3478
3479 return ERROR_OK;
3480 }
3481
3482 COMMAND_HANDLER(xscale_handle_analyze_trace_buffer_command)
3483 {
3484 struct target *target = get_current_target(CMD_CTX);
3485 struct xscale_common *xscale = target_to_xscale(target);
3486 int retval;
3487
3488 retval = xscale_verify_pointer(CMD_CTX, xscale);
3489 if (retval != ERROR_OK)
3490 return retval;
3491
3492 xscale_analyze_trace(target, CMD_CTX);
3493
3494 return ERROR_OK;
3495 }
3496
3497 COMMAND_HANDLER(xscale_handle_cp15)
3498 {
3499 struct target *target = get_current_target(CMD_CTX);
3500 struct xscale_common *xscale = target_to_xscale(target);
3501 int retval;
3502
3503 retval = xscale_verify_pointer(CMD_CTX, xscale);
3504 if (retval != ERROR_OK)
3505 return retval;
3506
3507 if (target->state != TARGET_HALTED)
3508 {
3509 command_print(CMD_CTX, "target must be stopped for \"%s\" command", CMD_NAME);
3510 return ERROR_OK;
3511 }
3512 uint32_t reg_no = 0;
3513 struct reg *reg = NULL;
3514 if (CMD_ARGC > 0)
3515 {
3516 COMMAND_PARSE_NUMBER(u32, CMD_ARGV[0], reg_no);
3517 /*translate from xscale cp15 register no to openocd register*/
3518 switch (reg_no)
3519 {
3520 case 0:
3521 reg_no = XSCALE_MAINID;
3522 break;
3523 case 1:
3524 reg_no = XSCALE_CTRL;
3525 break;
3526 case 2:
3527 reg_no = XSCALE_TTB;
3528 break;
3529 case 3:
3530 reg_no = XSCALE_DAC;
3531 break;
3532 case 5:
3533 reg_no = XSCALE_FSR;
3534 break;
3535 case 6:
3536 reg_no = XSCALE_FAR;
3537 break;
3538 case 13:
3539 reg_no = XSCALE_PID;
3540 break;
3541 case 15:
3542 reg_no = XSCALE_CPACCESS;
3543 break;
3544 default:
3545 command_print(CMD_CTX, "invalid register number");
3546 return ERROR_INVALID_ARGUMENTS;
3547 }
3548 reg = &xscale->reg_cache->reg_list[reg_no];
3549
3550 }
3551 if (CMD_ARGC == 1)
3552 {
3553 uint32_t value;
3554
3555 /* read cp15 control register */
3556 xscale_get_reg(reg);
3557 value = buf_get_u32(reg->value, 0, 32);
3558 command_print(CMD_CTX, "%s (/%i): 0x%" PRIx32 "", reg->name, (int)(reg->size), value);
3559 }
3560 else if (CMD_ARGC == 2)
3561 {
3562 uint32_t value;
3563 COMMAND_PARSE_NUMBER(u32, CMD_ARGV[1], value);
3564
3565 /* send CP write request (command 0x41) */
3566 xscale_send_u32(target, 0x41);
3567
3568 /* send CP register number */
3569 xscale_send_u32(target, reg_no);
3570
3571 /* send CP register value */
3572 xscale_send_u32(target, value);
3573
3574 /* execute cpwait to ensure outstanding operations complete */
3575 xscale_send_u32(target, 0x53);
3576 }
3577 else
3578 {
3579 command_print(CMD_CTX, "usage: cp15 [register]<, [value]>");
3580 }
3581
3582 return ERROR_OK;
3583 }
3584
3585 static const struct command_registration xscale_exec_command_handlers[] = {
3586 {
3587 .name = "cache_info",
3588 .handler = &xscale_handle_cache_info_command,
3589 .mode = COMMAND_EXEC, NULL,
3590 },
3591
3592 {
3593 .name = "mmu",
3594 .handler = &xscale_handle_mmu_command,
3595 .mode = COMMAND_EXEC,
3596 .usage = "[enable|disable]",
3597 .help = "enable or disable the MMU",
3598 },
3599 {
3600 .name = "icache",
3601 .handler = &xscale_handle_idcache_command,
3602 .mode = COMMAND_EXEC,
3603 .usage = "[enable|disable]",
3604 .help = "enable or disable the ICache",
3605 },
3606 {
3607 .name = "dcache",
3608 .handler = &xscale_handle_idcache_command,
3609 .mode = COMMAND_EXEC,
3610 .usage = "[enable|disable]",
3611 .help = "enable or disable the DCache",
3612 },
3613
3614 {
3615 .name = "vector_catch",
3616 .handler = &xscale_handle_vector_catch_command,
3617 .mode = COMMAND_EXEC,
3618 .help = "mask of vectors that should be caught",
3619 .usage = "[<mask>]",
3620 },
3621 {
3622 .name = "vector_table",
3623 .handler = &xscale_handle_vector_table_command,
3624 .mode = COMMAND_EXEC,
3625 .usage = "<high|low> <index> <code>",
3626 .help = "set static code for exception handler entry",
3627 },
3628
3629 {
3630 .name = "trace_buffer",
3631 .handler = &xscale_handle_trace_buffer_command,
3632 .mode = COMMAND_EXEC,
3633 .usage = "<enable | disable> [fill [n]|wrap]",
3634 },
3635 {
3636 .name = "dump_trace",
3637 .handler = &xscale_handle_dump_trace_command,
3638 .mode = COMMAND_EXEC,
3639 .help = "dump content of trace buffer to <file>",
3640 .usage = "<file>",
3641 },
3642 {
3643 .name = "analyze_trace",
3644 .handler = &xscale_handle_analyze_trace_buffer_command,
3645 .mode = COMMAND_EXEC,
3646 .help = "analyze content of trace buffer",
3647 },
3648 {
3649 .name = "trace_image",
3650 .handler = &xscale_handle_trace_image_command,
3651 COMMAND_EXEC,
3652 .help = "load image from <file> [base address]",
3653 .usage = "<file> [address] [type]",
3654 },
3655
3656 {
3657 .name = "cp15",
3658 .handler = &xscale_handle_cp15,
3659 .mode = COMMAND_EXEC,
3660 .help = "access coproc 15",
3661 .usage = "<register> [value]",
3662 },
3663 COMMAND_REGISTRATION_DONE
3664 };
3665 static const struct command_registration xscale_any_command_handlers[] = {
3666 {
3667 .name = "debug_handler",
3668 .handler = &xscale_handle_debug_handler_command,
3669 .mode = COMMAND_ANY,
3670 .usage = "<target#> <address>",
3671 },
3672 {
3673 .name = "cache_clean_address",
3674 .handler = &xscale_handle_cache_clean_address_command,
3675 .mode = COMMAND_ANY,
3676 },
3677 {
3678 .chain = xscale_exec_command_handlers,
3679 },
3680 COMMAND_REGISTRATION_DONE
3681 };
3682 static const struct command_registration xscale_command_handlers[] = {
3683 {
3684 .chain = arm_command_handlers,
3685 },
3686 {
3687 .name = "xscale",
3688 .mode = COMMAND_ANY,
3689 .help = "xscale command group",
3690 .chain = xscale_any_command_handlers,
3691 },
3692 COMMAND_REGISTRATION_DONE
3693 };
3694
3695 struct target_type xscale_target =
3696 {
3697 .name = "xscale",
3698
3699 .poll = xscale_poll,
3700 .arch_state = xscale_arch_state,
3701
3702 .target_request_data = NULL,
3703
3704 .halt = xscale_halt,
3705 .resume = xscale_resume,
3706 .step = xscale_step,
3707
3708 .assert_reset = xscale_assert_reset,
3709 .deassert_reset = xscale_deassert_reset,
3710 .soft_reset_halt = NULL,
3711
3712 .get_gdb_reg_list = armv4_5_get_gdb_reg_list,
3713
3714 .read_memory = xscale_read_memory,
3715 .read_phys_memory = xscale_read_phys_memory,
3716 .write_memory = xscale_write_memory,
3717 .write_phys_memory = xscale_write_phys_memory,
3718 .bulk_write_memory = xscale_bulk_write_memory,
3719
3720 .checksum_memory = arm_checksum_memory,
3721 .blank_check_memory = arm_blank_check_memory,
3722
3723 .run_algorithm = armv4_5_run_algorithm,
3724
3725 .add_breakpoint = xscale_add_breakpoint,
3726 .remove_breakpoint = xscale_remove_breakpoint,
3727 .add_watchpoint = xscale_add_watchpoint,
3728 .remove_watchpoint = xscale_remove_watchpoint,
3729
3730 .commands = xscale_command_handlers,
3731 .target_create = xscale_target_create,
3732 .init_target = xscale_init_target,
3733
3734 .virt2phys = xscale_virt2phys,
3735 .mmu = xscale_mmu
3736 };
Open On-Chip Debugger

Linking to existing account procedure

If you already have an account and want to add another login method you MUST first sign in with your existing account and then change URL to read https://review.openocd.org/login/?link to get to this page again but this time it'll work for linking. Thank you.

SSH host keys fingerprints

1024 SHA256:YKx8b7u5ZWdcbp7/4AeXNaqElP49m6QrwfXaqQGJAOk gerrit-code-review@openocd.zylin.com (DSA)
384 SHA256:jHIbSQa4REvwCFG4cq5LBlBLxmxSqelQPem/EXIrxjk gerrit-code-review@openocd.org (ECDSA)
521 SHA256:UAOPYkU9Fjtcao0Ul/Rrlnj/OsQvt+pgdYSZ4jOYdgs gerrit-code-review@openocd.org (ECDSA)
256 SHA256:A13M5QlnozFOvTllybRZH6vm7iSt0XLxbA48yfc2yfY gerrit-code-review@openocd.org (ECDSA)
256 SHA256:spYMBqEYoAOtK7yZBrcwE8ZpYt6b68Cfh9yEVetvbXg gerrit-code-review@openocd.org (ED25519)
+--[ED25519 256]--+
|=..              |
|+o..   .         |
|*.o   . .        |
|+B . . .         |
|Bo. = o S        |
|Oo.+ + =         |
|oB=.* = . o      |
| =+=.+   + E     |
|. .=o   . o      |
+----[SHA256]-----+
2048 SHA256:0Onrb7/PHjpo6iVZ7xQX2riKN83FJ3KGU0TvI0TaFG4 gerrit-code-review@openocd.zylin.com (RSA)