1 /***************************************************************************
2 * Copyright (C) 2009 Zachary T Welch *
3 * zw@superlucidity.net *
5 * Copyright (C) 2007,2008,2009 Øyvind Harboe *
6 * oyvind.harboe@zylin.com *
8 * Copyright (C) 2009 SoftPLC Corporation *
12 * Copyright (C) 2005 by Dominic Rath *
13 * Dominic.Rath@gmx.de *
15 * This program is free software; you can redistribute it and/or modify *
16 * it under the terms of the GNU General Public License as published by *
17 * the Free Software Foundation; either version 2 of the License, or *
18 * (at your option) any later version. *
20 * This program is distributed in the hope that it will be useful, *
21 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
22 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
23 * GNU General Public License for more details. *
25 * You should have received a copy of the GNU General Public License *
26 * along with this program; if not, write to the *
27 * Free Software Foundation, Inc., *
28 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
29 ***************************************************************************/
35 #include "interface.h"
42 /// The number of JTAG queue flushes (for profiling and debugging purposes).
43 static int jtag_flush_queue_count;
45 static void jtag_add_scan_check(struct jtag_tap *active,
46 void (*jtag_add_scan)(struct jtag_tap *active, int in_num_fields, const struct scan_field *in_fields, tap_state_t state),
47 int in_num_fields, struct scan_field *in_fields, tap_state_t state);
50 * The jtag_error variable is set when an error occurs while executing
51 * the queue. Application code may set this using jtag_set_error(),
52 * when an error occurs during processing that should be reported during
53 * jtag_execute_queue().
55 * Tts value may be checked with jtag_get_error() and cleared with
56 * jtag_error_clear(). This value is returned (and cleared) by
57 * jtag_execute_queue().
59 static int jtag_error = ERROR_OK;
61 static const char *jtag_event_strings[] =
63 [JTAG_TRST_ASSERTED] = "TAP reset",
64 [JTAG_TAP_EVENT_SETUP] = "TAP setup",
65 [JTAG_TAP_EVENT_ENABLE] = "TAP enabled",
66 [JTAG_TAP_EVENT_DISABLE] = "TAP disabled",
70 * JTAG adapters must initialize with TRST and SRST de-asserted
71 * (they're negative logic, so that means *high*). But some
72 * hardware doesn't necessarily work that way ... so set things
73 * up so that jtag_init() always forces that state.
75 static int jtag_trst = -1;
76 static int jtag_srst = -1;
79 * List all TAPs that have been created.
81 static struct jtag_tap *__jtag_all_taps = NULL;
83 * The number of TAPs in the __jtag_all_taps list, used to track the
84 * assigned chain position to new TAPs
86 static unsigned jtag_num_taps = 0;
88 static enum reset_types jtag_reset_config = RESET_NONE;
89 static tap_state_t cmd_queue_end_state = TAP_RESET;
90 tap_state_t cmd_queue_cur_state = TAP_RESET;
92 static bool jtag_verify_capture_ir = true;
93 static int jtag_verify = 1;
95 /* how long the OpenOCD should wait before attempting JTAG communication after reset lines deasserted (in ms) */
96 static int jtag_nsrst_delay = 0; /* default to no nSRST delay */
97 static int jtag_ntrst_delay = 0; /* default to no nTRST delay */
98 static int jtag_nsrst_assert_width = 0; /* width of assertion */
99 static int jtag_ntrst_assert_width = 0; /* width of assertion */
102 * Contains a single callback along with a pointer that will be passed
103 * when an event occurs.
105 struct jtag_event_callback {
107 jtag_event_handler_t callback;
108 /// the private data to pass to the callback
110 /// the next callback
111 struct jtag_event_callback* next;
114 /* callbacks to inform high-level handlers about JTAG state changes */
115 static struct jtag_event_callback *jtag_event_callbacks;
118 static int speed_khz = 0;
119 /* speed to fallback to when RCLK is requested but not supported */
120 static int rclk_fallback_speed_khz = 0;
121 static enum {CLOCK_MODE_SPEED, CLOCK_MODE_KHZ, CLOCK_MODE_RCLK} clock_mode;
122 static int jtag_speed = 0;
124 static struct jtag_interface *jtag = NULL;
127 struct jtag_interface *jtag_interface = NULL;
129 void jtag_set_error(int error)
131 if ((error == ERROR_OK) || (jtag_error != ERROR_OK))
135 int jtag_get_error(void)
139 int jtag_error_clear(void)
141 int temp = jtag_error;
142 jtag_error = ERROR_OK;
148 static bool jtag_poll = 1;
150 bool is_jtag_poll_safe(void)
152 /* Polling can be disabled explicitly with set_enabled(false).
153 * It is also implicitly disabled while TRST is active and
154 * while SRST is gating the JTAG clock.
156 if (!jtag_poll || jtag_trst != 0)
158 return jtag_srst == 0 || (jtag_reset_config & RESET_SRST_NO_GATING);
161 bool jtag_poll_get_enabled(void)
166 void jtag_poll_set_enabled(bool value)
173 struct jtag_tap *jtag_all_taps(void)
175 return __jtag_all_taps;
178 unsigned jtag_tap_count(void)
180 return jtag_num_taps;
183 unsigned jtag_tap_count_enabled(void)
185 struct jtag_tap *t = jtag_all_taps();
196 /// Append a new TAP to the chain of all taps.
197 void jtag_tap_add(struct jtag_tap *t)
199 t->abs_chain_position = jtag_num_taps++;
201 struct jtag_tap **tap = &__jtag_all_taps;
203 tap = &(*tap)->next_tap;
207 /* returns a pointer to the n-th device in the scan chain */
208 static inline struct jtag_tap *jtag_tap_by_position(unsigned n)
210 struct jtag_tap *t = jtag_all_taps();
218 struct jtag_tap *jtag_tap_by_string(const char *s)
220 /* try by name first */
221 struct jtag_tap *t = jtag_all_taps();
225 if (0 == strcmp(t->dotted_name, s))
230 /* no tap found by name, so try to parse the name as a number */
232 if (parse_uint(s, &n) != ERROR_OK)
235 /* FIXME remove this numeric fallback code late June 2010, along
236 * with all info in the User's Guide that TAPs have numeric IDs.
237 * Also update "scan_chain" output to not display the numbers.
239 t = jtag_tap_by_position(n);
241 LOG_WARNING("Specify TAP '%s' by name, not number %u",
247 struct jtag_tap* jtag_tap_next_enabled(struct jtag_tap* p)
249 p = p ? p->next_tap : jtag_all_taps();
259 const char *jtag_tap_name(const struct jtag_tap *tap)
261 return (tap == NULL) ? "(unknown)" : tap->dotted_name;
265 int jtag_register_event_callback(jtag_event_handler_t callback, void *priv)
267 struct jtag_event_callback **callbacks_p = &jtag_event_callbacks;
269 if (callback == NULL)
271 return ERROR_INVALID_ARGUMENTS;
276 while ((*callbacks_p)->next)
277 callbacks_p = &((*callbacks_p)->next);
278 callbacks_p = &((*callbacks_p)->next);
281 (*callbacks_p) = malloc(sizeof(struct jtag_event_callback));
282 (*callbacks_p)->callback = callback;
283 (*callbacks_p)->priv = priv;
284 (*callbacks_p)->next = NULL;
289 int jtag_unregister_event_callback(jtag_event_handler_t callback, void *priv)
291 struct jtag_event_callback **callbacks_p;
292 struct jtag_event_callback **next;
294 if (callback == NULL)
296 return ERROR_INVALID_ARGUMENTS;
299 for (callbacks_p = &jtag_event_callbacks;
300 *callbacks_p != NULL;
303 next = &((*callbacks_p)->next);
305 if ((*callbacks_p)->priv != priv)
308 if ((*callbacks_p)->callback == callback)
311 *callbacks_p = *next;
318 int jtag_call_event_callbacks(enum jtag_event event)
320 struct jtag_event_callback *callback = jtag_event_callbacks;
322 LOG_DEBUG("jtag event: %s", jtag_event_strings[event]);
326 struct jtag_event_callback *next;
328 /* callback may remove itself */
329 next = callback->next;
330 callback->callback(event, callback->priv);
337 static void jtag_checks(void)
339 assert(jtag_trst == 0);
342 static void jtag_prelude(tap_state_t state)
346 assert(state != TAP_INVALID);
348 cmd_queue_cur_state = state;
351 void jtag_alloc_in_value32(struct scan_field *field)
353 interface_jtag_alloc_in_value32(field);
356 void jtag_add_ir_scan_noverify(struct jtag_tap *active, const struct scan_field *in_fields,
361 int retval = interface_jtag_add_ir_scan(active, in_fields, state);
362 jtag_set_error(retval);
365 static void jtag_add_ir_scan_noverify_callback(struct jtag_tap *active, int dummy, const struct scan_field *in_fields,
368 jtag_add_ir_scan_noverify(active, in_fields, state);
371 void jtag_add_ir_scan(struct jtag_tap *active, struct scan_field *in_fields, tap_state_t state)
373 assert(state != TAP_RESET);
375 if (jtag_verify && jtag_verify_capture_ir)
377 /* 8 x 32 bit id's is enough for all invocations */
379 /* if we are to run a verification of the ir scan, we need to get the input back.
380 * We may have to allocate space if the caller didn't ask for the input back.
382 in_fields->check_value = active->expected;
383 in_fields->check_mask = active->expected_mask;
384 jtag_add_scan_check(active, jtag_add_ir_scan_noverify_callback, 1, in_fields, state);
387 jtag_add_ir_scan_noverify(active, in_fields, state);
391 void jtag_add_plain_ir_scan(int num_bits, const uint8_t *out_bits, uint8_t *in_bits,
394 assert(out_bits != NULL);
395 assert(state != TAP_RESET);
399 int retval = interface_jtag_add_plain_ir_scan(
400 num_bits, out_bits, in_bits, state);
401 jtag_set_error(retval);
404 static int jtag_check_value_inner(uint8_t *captured, uint8_t *in_check_value,
405 uint8_t *in_check_mask, int num_bits);
407 static int jtag_check_value_mask_callback(jtag_callback_data_t data0, jtag_callback_data_t data1, jtag_callback_data_t data2, jtag_callback_data_t data3)
409 return jtag_check_value_inner((uint8_t *)data0, (uint8_t *)data1, (uint8_t *)data2, (int)data3);
412 static void jtag_add_scan_check(struct jtag_tap *active, void (*jtag_add_scan)(struct jtag_tap *active, int in_num_fields, const struct scan_field *in_fields, tap_state_t state),
413 int in_num_fields, struct scan_field *in_fields, tap_state_t state)
415 for (int i = 0; i < in_num_fields; i++)
417 struct scan_field *field = &in_fields[i];
418 field->allocated = 0;
420 if (field->check_value || field->in_value)
422 interface_jtag_add_scan_check_alloc(field);
426 jtag_add_scan(active, in_num_fields, in_fields, state);
428 for (int i = 0; i < in_num_fields; i++)
430 if ((in_fields[i].check_value != NULL) && (in_fields[i].in_value != NULL))
432 /* this is synchronous for a minidriver */
433 jtag_add_callback4(jtag_check_value_mask_callback, (jtag_callback_data_t)in_fields[i].in_value,
434 (jtag_callback_data_t)in_fields[i].check_value,
435 (jtag_callback_data_t)in_fields[i].check_mask,
436 (jtag_callback_data_t)in_fields[i].num_bits);
438 if (in_fields[i].allocated)
440 free(in_fields[i].in_value);
442 if (in_fields[i].modified)
444 in_fields[i].in_value = NULL;
449 void jtag_add_dr_scan_check(struct jtag_tap *active, int in_num_fields, struct scan_field *in_fields, tap_state_t state)
453 jtag_add_scan_check(active, jtag_add_dr_scan, in_num_fields, in_fields, state);
456 jtag_add_dr_scan(active, in_num_fields, in_fields, state);
461 void jtag_add_dr_scan(struct jtag_tap *active, int in_num_fields, const struct scan_field *in_fields,
464 assert(state != TAP_RESET);
469 retval = interface_jtag_add_dr_scan(active, in_num_fields, in_fields, state);
470 jtag_set_error(retval);
473 void jtag_add_plain_dr_scan(int num_bits, const uint8_t *out_bits, uint8_t *in_bits,
476 assert(out_bits != NULL);
477 assert(state != TAP_RESET);
482 retval = interface_jtag_add_plain_dr_scan(num_bits, out_bits, in_bits, state);
483 jtag_set_error(retval);
486 void jtag_add_tlr(void)
488 jtag_prelude(TAP_RESET);
489 jtag_set_error(interface_jtag_add_tlr());
491 /* NOTE: order here matches TRST path in jtag_add_reset() */
492 jtag_call_event_callbacks(JTAG_TRST_ASSERTED);
493 jtag_notify_event(JTAG_TRST_ASSERTED);
497 * If supported by the underlying adapter, this clocks a raw bit sequence
498 * onto TMS for switching betwen JTAG and SWD modes.
500 * DO NOT use this to bypass the integrity checks and logging provided
501 * by the jtag_add_pathmove() and jtag_add_statemove() calls.
503 * @param nbits How many bits to clock out.
504 * @param seq The bit sequence. The LSB is bit 0 of seq[0].
505 * @param state The JTAG tap state to record on completion. Use
506 * TAP_INVALID to represent being in in SWD mode.
508 * @todo Update naming conventions to stop assuming everything is JTAG.
510 int jtag_add_tms_seq(unsigned nbits, const uint8_t *seq, enum tap_state state)
514 if (!(jtag->supported & DEBUG_CAP_TMS_SEQ))
515 return ERROR_JTAG_NOT_IMPLEMENTED;
518 cmd_queue_cur_state = state;
520 retval = interface_add_tms_seq(nbits, seq, state);
521 jtag_set_error(retval);
525 void jtag_add_pathmove(int num_states, const tap_state_t *path)
527 tap_state_t cur_state = cmd_queue_cur_state;
529 /* the last state has to be a stable state */
530 if (!tap_is_state_stable(path[num_states - 1]))
532 LOG_ERROR("BUG: TAP path doesn't finish in a stable state");
533 jtag_set_error(ERROR_JTAG_NOT_STABLE_STATE);
537 for (int i = 0; i < num_states; i++)
539 if (path[i] == TAP_RESET)
541 LOG_ERROR("BUG: TAP_RESET is not a valid state for pathmove sequences");
542 jtag_set_error(ERROR_JTAG_STATE_INVALID);
546 if (tap_state_transition(cur_state, true) != path[i]
547 && tap_state_transition(cur_state, false) != path[i])
549 LOG_ERROR("BUG: %s -> %s isn't a valid TAP transition",
550 tap_state_name(cur_state), tap_state_name(path[i]));
551 jtag_set_error(ERROR_JTAG_TRANSITION_INVALID);
559 jtag_set_error(interface_jtag_add_pathmove(num_states, path));
560 cmd_queue_cur_state = path[num_states - 1];
563 int jtag_add_statemove(tap_state_t goal_state)
565 tap_state_t cur_state = cmd_queue_cur_state;
567 if (goal_state != cur_state)
569 LOG_DEBUG("cur_state=%s goal_state=%s",
570 tap_state_name(cur_state),
571 tap_state_name(goal_state));
574 /* If goal is RESET, be paranoid and force that that transition
575 * (e.g. five TCK cycles, TMS high). Else trust "cur_state".
577 if (goal_state == TAP_RESET)
579 else if (goal_state == cur_state)
580 /* nothing to do */ ;
582 else if (tap_is_state_stable(cur_state) && tap_is_state_stable(goal_state))
584 unsigned tms_bits = tap_get_tms_path(cur_state, goal_state);
585 unsigned tms_count = tap_get_tms_path_len(cur_state, goal_state);
586 tap_state_t moves[8];
587 assert(tms_count < ARRAY_SIZE(moves));
589 for (unsigned i = 0; i < tms_count; i++, tms_bits >>= 1)
591 bool bit = tms_bits & 1;
593 cur_state = tap_state_transition(cur_state, bit);
594 moves[i] = cur_state;
597 jtag_add_pathmove(tms_count, moves);
599 else if (tap_state_transition(cur_state, true) == goal_state
600 || tap_state_transition(cur_state, false) == goal_state)
602 jtag_add_pathmove(1, &goal_state);
611 void jtag_add_runtest(int num_cycles, tap_state_t state)
614 jtag_set_error(interface_jtag_add_runtest(num_cycles, state));
618 void jtag_add_clocks(int num_cycles)
620 if (!tap_is_state_stable(cmd_queue_cur_state))
622 LOG_ERROR("jtag_add_clocks() called with TAP in unstable state \"%s\"",
623 tap_state_name(cmd_queue_cur_state));
624 jtag_set_error(ERROR_JTAG_NOT_STABLE_STATE);
631 jtag_set_error(interface_jtag_add_clocks(num_cycles));
635 void jtag_add_reset(int req_tlr_or_trst, int req_srst)
637 int trst_with_tlr = 0;
641 /* Without SRST, we must use target-specific JTAG operations
642 * on each target; callers should not be requesting SRST when
643 * that signal doesn't exist.
645 * RESET_SRST_PULLS_TRST is a board or chip level quirk, which
646 * can kick in even if the JTAG adapter can't drive TRST.
649 if (!(jtag_reset_config & RESET_HAS_SRST)) {
650 LOG_ERROR("BUG: can't assert SRST");
651 jtag_set_error(ERROR_FAIL);
654 if ((jtag_reset_config & RESET_SRST_PULLS_TRST) != 0
655 && !req_tlr_or_trst) {
656 LOG_ERROR("BUG: can't assert only SRST");
657 jtag_set_error(ERROR_FAIL);
663 /* JTAG reset (entry to TAP_RESET state) can always be achieved
664 * using TCK and TMS; that may go through a TAP_{IR,DR}UPDATE
665 * state first. TRST accelerates it, and bypasses those states.
667 * RESET_TRST_PULLS_SRST is a board or chip level quirk, which
668 * can kick in even if the JTAG adapter can't drive SRST.
670 if (req_tlr_or_trst) {
671 if (!(jtag_reset_config & RESET_HAS_TRST))
673 else if ((jtag_reset_config & RESET_TRST_PULLS_SRST) != 0
680 /* Maybe change TRST and/or SRST signal state */
681 if (jtag_srst != new_srst || jtag_trst != new_trst) {
684 retval = interface_jtag_add_reset(new_trst, new_srst);
685 if (retval != ERROR_OK)
686 jtag_set_error(retval);
688 retval = jtag_execute_queue();
690 if (retval != ERROR_OK) {
691 LOG_ERROR("TRST/SRST error %d", retval);
696 /* SRST resets everything hooked up to that signal */
697 if (jtag_srst != new_srst) {
698 jtag_srst = new_srst;
701 LOG_DEBUG("SRST line asserted");
702 if (jtag_nsrst_assert_width)
703 jtag_add_sleep(jtag_nsrst_assert_width * 1000);
706 LOG_DEBUG("SRST line released");
707 if (jtag_nsrst_delay)
708 jtag_add_sleep(jtag_nsrst_delay * 1000);
712 /* Maybe enter the JTAG TAP_RESET state ...
713 * - using only TMS, TCK, and the JTAG state machine
714 * - or else more directly, using TRST
716 * TAP_RESET should be invisible to non-debug parts of the system.
719 LOG_DEBUG("JTAG reset with TLR instead of TRST");
720 jtag_set_end_state(TAP_RESET);
723 } else if (jtag_trst != new_trst) {
724 jtag_trst = new_trst;
726 LOG_DEBUG("TRST line asserted");
727 tap_set_state(TAP_RESET);
728 if (jtag_ntrst_assert_width)
729 jtag_add_sleep(jtag_ntrst_assert_width * 1000);
731 LOG_DEBUG("TRST line released");
732 if (jtag_ntrst_delay)
733 jtag_add_sleep(jtag_ntrst_delay * 1000);
735 /* We just asserted nTRST, so we're now in TAP_RESET.
736 * Inform possible listeners about this, now that
737 * JTAG instructions and data can be shifted. This
738 * sequence must match jtag_add_tlr().
740 jtag_call_event_callbacks(JTAG_TRST_ASSERTED);
741 jtag_notify_event(JTAG_TRST_ASSERTED);
746 tap_state_t jtag_set_end_state(tap_state_t state)
748 if ((state == TAP_DRSHIFT)||(state == TAP_IRSHIFT))
750 LOG_ERROR("BUG: TAP_DRSHIFT/IRSHIFT can't be end state. Calling code should use a larger scan field");
753 if (state != TAP_INVALID)
754 cmd_queue_end_state = state;
755 return cmd_queue_end_state;
758 tap_state_t jtag_get_end_state(void)
760 return cmd_queue_end_state;
763 void jtag_add_sleep(uint32_t us)
765 /// @todo Here, keep_alive() appears to be a layering violation!!!
767 jtag_set_error(interface_jtag_add_sleep(us));
770 static int jtag_check_value_inner(uint8_t *captured, uint8_t *in_check_value,
771 uint8_t *in_check_mask, int num_bits)
773 int retval = ERROR_OK;
777 compare_failed = buf_cmp_mask(captured, in_check_value, in_check_mask, num_bits);
779 compare_failed = buf_cmp(captured, in_check_value, num_bits);
781 if (compare_failed) {
782 char *captured_str, *in_check_value_str;
783 int bits = (num_bits > DEBUG_JTAG_IOZ)
787 /* NOTE: we've lost diagnostic context here -- 'which tap' */
789 captured_str = buf_to_str(captured, bits, 16);
790 in_check_value_str = buf_to_str(in_check_value, bits, 16);
792 LOG_WARNING("Bad value '%s' captured during DR or IR scan:",
794 LOG_WARNING(" check_value: 0x%s", in_check_value_str);
797 free(in_check_value_str);
800 char *in_check_mask_str;
802 in_check_mask_str = buf_to_str(in_check_mask, bits, 16);
803 LOG_WARNING(" check_mask: 0x%s", in_check_mask_str);
804 free(in_check_mask_str);
807 retval = ERROR_JTAG_QUEUE_FAILED;
812 void jtag_check_value_mask(struct scan_field *field, uint8_t *value, uint8_t *mask)
814 assert(field->in_value != NULL);
818 /* no checking to do */
822 jtag_execute_queue_noclear();
824 int retval = jtag_check_value_inner(field->in_value, value, mask, field->num_bits);
825 jtag_set_error(retval);
830 int default_interface_jtag_execute_queue(void)
834 LOG_ERROR("No JTAG interface configured yet. "
835 "Issue 'init' command in startup scripts "
836 "before communicating with targets.");
840 return jtag->execute_queue();
843 void jtag_execute_queue_noclear(void)
845 jtag_flush_queue_count++;
846 jtag_set_error(interface_jtag_execute_queue());
849 int jtag_get_flush_queue_count(void)
851 return jtag_flush_queue_count;
854 int jtag_execute_queue(void)
856 jtag_execute_queue_noclear();
857 return jtag_error_clear();
860 static int jtag_reset_callback(enum jtag_event event, void *priv)
862 struct jtag_tap *tap = priv;
864 if (event == JTAG_TRST_ASSERTED)
866 tap->enabled = !tap->disabled_after_reset;
868 /* current instruction is either BYPASS or IDCODE */
869 buf_set_ones(tap->cur_instr, tap->ir_length);
876 void jtag_sleep(uint32_t us)
878 alive_sleep(us/1000);
881 /* Maximum number of enabled JTAG devices we expect in the scan chain,
882 * plus one (to detect garbage at the end). Devices that don't support
883 * IDCODE take up fewer bits, possibly allowing a few more devices.
885 #define JTAG_MAX_CHAIN_SIZE 20
887 #define EXTRACT_MFG(X) (((X) & 0xffe) >> 1)
888 #define EXTRACT_PART(X) (((X) & 0xffff000) >> 12)
889 #define EXTRACT_VER(X) (((X) & 0xf0000000) >> 28)
891 /* A reserved manufacturer ID is used in END_OF_CHAIN_FLAG, so we
892 * know that no valid TAP will have it as an IDCODE value.
894 #define END_OF_CHAIN_FLAG 0x000000ff
896 /* a larger IR length than we ever expect to autoprobe */
897 #define JTAG_IRLEN_MAX 60
899 static int jtag_examine_chain_execute(uint8_t *idcode_buffer, unsigned num_idcode)
901 struct scan_field field = {
902 .num_bits = num_idcode * 32,
903 .out_value = idcode_buffer,
904 .in_value = idcode_buffer,
907 // initialize to the end of chain ID value
908 for (unsigned i = 0; i < JTAG_MAX_CHAIN_SIZE; i++)
909 buf_set_u32(idcode_buffer, i * 32, 32, END_OF_CHAIN_FLAG);
911 jtag_add_plain_dr_scan(field.num_bits, field.out_value, field.in_value, TAP_DRPAUSE);
913 return jtag_execute_queue();
916 static bool jtag_examine_chain_check(uint8_t *idcodes, unsigned count)
918 uint8_t zero_check = 0x0;
919 uint8_t one_check = 0xff;
921 for (unsigned i = 0; i < count * 4; i++)
923 zero_check |= idcodes[i];
924 one_check &= idcodes[i];
927 /* if there wasn't a single non-zero bit or if all bits were one,
928 * the scan is not valid. We wrote a mix of both values; either
930 * - There's a hardware issue (almost certainly):
931 * + all-zeroes can mean a target stuck in JTAG reset
932 * + all-ones tends to mean no target
933 * - The scan chain is WAY longer than we can handle, *AND* either
934 * + there are several hundreds of TAPs in bypass, or
935 * + at least a few dozen TAPs all have an all-ones IDCODE
937 if (zero_check == 0x00 || one_check == 0xff)
939 LOG_ERROR("JTAG scan chain interrogation failed: all %s",
940 (zero_check == 0x00) ? "zeroes" : "ones");
941 LOG_ERROR("Check JTAG interface, timings, target power, etc.");
947 static void jtag_examine_chain_display(enum log_levels level, const char *msg,
948 const char *name, uint32_t idcode)
950 log_printf_lf(level, __FILE__, __LINE__, __FUNCTION__,
951 "JTAG tap: %s %16.16s: 0x%08x "
952 "(mfg: 0x%3.3x, part: 0x%4.4x, ver: 0x%1.1x)",
954 (unsigned int)idcode,
955 (unsigned int)EXTRACT_MFG(idcode),
956 (unsigned int)EXTRACT_PART(idcode),
957 (unsigned int)EXTRACT_VER(idcode));
960 static bool jtag_idcode_is_final(uint32_t idcode)
963 * Some devices, such as AVR8, will output all 1's instead
964 * of TDI input value at end of chain. Allow those values
965 * instead of failing.
967 return idcode == END_OF_CHAIN_FLAG || idcode == 0xFFFFFFFF;
971 * This helper checks that remaining bits in the examined chain data are
972 * all as expected, but a single JTAG device requires only 64 bits to be
973 * read back correctly. This can help identify and diagnose problems
974 * with the JTAG chain earlier, gives more helpful/explicit error messages.
975 * Returns TRUE iff garbage was found.
977 static bool jtag_examine_chain_end(uint8_t *idcodes, unsigned count, unsigned max)
979 bool triggered = false;
980 for (; count < max - 31; count += 32)
982 uint32_t idcode = buf_get_u32(idcodes, count, 32);
984 /* do not trigger the warning if the data looks good */
985 if (jtag_idcode_is_final(idcode))
987 LOG_WARNING("Unexpected idcode after end of chain: %d 0x%08x",
988 count, (unsigned int)idcode);
994 static bool jtag_examine_chain_match_tap(const struct jtag_tap *tap)
996 uint32_t idcode = tap->idcode;
998 /* ignore expected BYPASS codes; warn otherwise */
999 if (0 == tap->expected_ids_cnt && !idcode)
1002 /* optionally ignore the JTAG version field */
1003 uint32_t mask = tap->ignore_version ? ~(0xff << 24) : ~0;
1007 /* Loop over the expected identification codes and test for a match */
1008 unsigned ii, limit = tap->expected_ids_cnt;
1010 for (ii = 0; ii < limit; ii++)
1012 uint32_t expected = tap->expected_ids[ii] & mask;
1014 if (idcode == expected)
1017 /* treat "-expected-id 0" as a "don't-warn" wildcard */
1018 if (0 == tap->expected_ids[ii])
1022 /* If none of the expected ids matched, warn */
1023 jtag_examine_chain_display(LOG_LVL_WARNING, "UNEXPECTED",
1024 tap->dotted_name, tap->idcode);
1025 for (ii = 0; ii < limit; ii++)
1029 snprintf(msg, sizeof(msg), "expected %u of %u", ii + 1, limit);
1030 jtag_examine_chain_display(LOG_LVL_ERROR, msg,
1031 tap->dotted_name, tap->expected_ids[ii]);
1036 /* Try to examine chain layout according to IEEE 1149.1 §12
1037 * This is called a "blind interrogation" of the scan chain.
1039 static int jtag_examine_chain(void)
1041 uint8_t idcode_buffer[JTAG_MAX_CHAIN_SIZE * 4];
1045 bool autoprobe = false;
1047 /* DR scan to collect BYPASS or IDCODE register contents.
1048 * Then make sure the scan data has both ones and zeroes.
1050 LOG_DEBUG("DR scan interrogation for IDCODE/BYPASS");
1051 retval = jtag_examine_chain_execute(idcode_buffer, JTAG_MAX_CHAIN_SIZE);
1052 if (retval != ERROR_OK)
1054 if (!jtag_examine_chain_check(idcode_buffer, JTAG_MAX_CHAIN_SIZE))
1055 return ERROR_JTAG_INIT_FAILED;
1057 /* point at the 1st tap */
1058 struct jtag_tap *tap = jtag_tap_next_enabled(NULL);
1064 tap && bit_count < (JTAG_MAX_CHAIN_SIZE * 32) - 31;
1065 tap = jtag_tap_next_enabled(tap))
1067 uint32_t idcode = buf_get_u32(idcode_buffer, bit_count, 32);
1069 if ((idcode & 1) == 0)
1071 /* Zero for LSB indicates a device in bypass */
1072 LOG_INFO("TAP %s does not have IDCODE",
1075 tap->hasidcode = false;
1081 /* Friendly devices support IDCODE */
1082 tap->hasidcode = true;
1083 jtag_examine_chain_display(LOG_LVL_INFO,
1085 tap->dotted_name, idcode);
1089 tap->idcode = idcode;
1091 /* ensure the TAP ID matches what was expected */
1092 if (!jtag_examine_chain_match_tap(tap))
1093 retval = ERROR_JTAG_INIT_SOFT_FAIL;
1096 /* Fail if too many TAPs were enabled for us to verify them all. */
1098 LOG_ERROR("Too many TAPs enabled; '%s' ignored.",
1100 return ERROR_JTAG_INIT_FAILED;
1103 /* if autoprobing, the tap list is still empty ... populate it! */
1104 while (autoprobe && bit_count < (JTAG_MAX_CHAIN_SIZE * 32) - 31) {
1108 /* Is there another TAP? */
1109 idcode = buf_get_u32(idcode_buffer, bit_count, 32);
1110 if (jtag_idcode_is_final(idcode))
1113 /* Default everything in this TAP except IR length.
1115 * REVISIT create a jtag_alloc(chip, tap) routine, and
1116 * share it with jim_newtap_cmd().
1118 tap = calloc(1, sizeof *tap);
1122 sprintf(buf, "auto%d", tapcount++);
1123 tap->chip = strdup(buf);
1124 tap->tapname = strdup("tap");
1126 sprintf(buf, "%s.%s", tap->chip, tap->tapname);
1127 tap->dotted_name = strdup(buf);
1129 /* tap->ir_length == 0 ... signifying irlen autoprobe */
1130 tap->ir_capture_mask = 0x03;
1131 tap->ir_capture_value = 0x01;
1133 tap->enabled = true;
1135 if ((idcode & 1) == 0) {
1137 tap->hasidcode = false;
1140 tap->hasidcode = true;
1141 tap->idcode = idcode;
1143 tap->expected_ids_cnt = 1;
1144 tap->expected_ids = malloc(sizeof(uint32_t));
1145 tap->expected_ids[0] = idcode;
1148 LOG_WARNING("AUTO %s - use \"jtag newtap "
1149 "%s %s -expected-id 0x%8.8" PRIx32 " ...\"",
1150 tap->dotted_name, tap->chip, tap->tapname,
1156 /* After those IDCODE or BYPASS register values should be
1157 * only the data we fed into the scan chain.
1159 if (jtag_examine_chain_end(idcode_buffer, bit_count,
1160 8 * sizeof(idcode_buffer))) {
1161 LOG_ERROR("double-check your JTAG setup (interface, "
1162 "speed, missing TAPs, ...)");
1163 return ERROR_JTAG_INIT_FAILED;
1166 /* Return success or, for backwards compatibility if only
1167 * some IDCODE values mismatched, a soft/continuable fault.
1173 * Validate the date loaded by entry to the Capture-IR state, to help
1174 * find errors related to scan chain configuration (wrong IR lengths)
1177 * Entry state can be anything. On non-error exit, all TAPs are in
1178 * bypass mode. On error exits, the scan chain is reset.
1180 static int jtag_validate_ircapture(void)
1182 struct jtag_tap *tap;
1183 int total_ir_length = 0;
1184 uint8_t *ir_test = NULL;
1185 struct scan_field field;
1190 /* when autoprobing, accomodate huge IR lengths */
1191 for (tap = NULL, total_ir_length = 0;
1192 (tap = jtag_tap_next_enabled(tap)) != NULL;
1193 total_ir_length += tap->ir_length) {
1194 if (tap->ir_length == 0)
1195 total_ir_length += JTAG_IRLEN_MAX;
1198 /* increase length to add 2 bit sentinel after scan */
1199 total_ir_length += 2;
1201 ir_test = malloc(DIV_ROUND_UP(total_ir_length, 8));
1202 if (ir_test == NULL)
1205 /* after this scan, all TAPs will capture BYPASS instructions */
1206 buf_set_ones(ir_test, total_ir_length);
1208 field.num_bits = total_ir_length;
1209 field.out_value = ir_test;
1210 field.in_value = ir_test;
1212 jtag_add_plain_ir_scan(field.num_bits, field.out_value, field.in_value, TAP_IDLE);
1214 LOG_DEBUG("IR capture validation scan");
1215 retval = jtag_execute_queue();
1216 if (retval != ERROR_OK)
1223 tap = jtag_tap_next_enabled(tap);
1228 /* If we're autoprobing, guess IR lengths. They must be at
1229 * least two bits. Guessing will fail if (a) any TAP does
1230 * not conform to the JTAG spec; or (b) when the upper bits
1231 * captured from some conforming TAP are nonzero. Or if
1232 * (c) an IR length is longer than 32 bits -- which is only
1233 * an implementation limit, which could someday be raised.
1235 * REVISIT optimization: if there's a *single* TAP we can
1236 * lift restrictions (a) and (b) by scanning a recognizable
1237 * pattern before the all-ones BYPASS. Check for where the
1238 * pattern starts in the result, instead of an 0...01 value.
1240 * REVISIT alternative approach: escape to some tcl code
1241 * which could provide more knowledge, based on IDCODE; and
1242 * only guess when that has no success.
1244 if (tap->ir_length == 0) {
1246 while ((val = buf_get_u32(ir_test, chain_pos,
1247 tap->ir_length + 1)) == 1
1248 && tap->ir_length <= 32) {
1251 LOG_WARNING("AUTO %s - use \"... -irlen %d\"",
1252 jtag_tap_name(tap), tap->ir_length);
1255 /* Validate the two LSBs, which must be 01 per JTAG spec.
1257 * Or ... more bits could be provided by TAP declaration.
1258 * Plus, some taps (notably in i.MX series chips) violate
1259 * this part of the JTAG spec, so their capture mask/value
1260 * attributes might disable this test.
1262 val = buf_get_u32(ir_test, chain_pos, tap->ir_length);
1263 if ((val & tap->ir_capture_mask) != tap->ir_capture_value) {
1264 LOG_ERROR("%s: IR capture error; saw 0x%0*x not 0x%0*x",
1266 (tap->ir_length + 7) / tap->ir_length,
1268 (tap->ir_length + 7) / tap->ir_length,
1269 (unsigned) tap->ir_capture_value);
1271 retval = ERROR_JTAG_INIT_FAILED;
1274 LOG_DEBUG("%s: IR capture 0x%0*x", jtag_tap_name(tap),
1275 (tap->ir_length + 7) / tap->ir_length, val);
1276 chain_pos += tap->ir_length;
1279 /* verify the '11' sentinel we wrote is returned at the end */
1280 val = buf_get_u32(ir_test, chain_pos, 2);
1283 char *cbuf = buf_to_str(ir_test, total_ir_length, 16);
1285 LOG_ERROR("IR capture error at bit %d, saw 0x%s not 0x...3",
1288 retval = ERROR_JTAG_INIT_FAILED;
1293 if (retval != ERROR_OK) {
1295 jtag_execute_queue();
1301 void jtag_tap_init(struct jtag_tap *tap)
1303 unsigned ir_len_bits;
1304 unsigned ir_len_bytes;
1306 /* if we're autoprobing, cope with potentially huge ir_length */
1307 ir_len_bits = tap->ir_length ? : JTAG_IRLEN_MAX;
1308 ir_len_bytes = DIV_ROUND_UP(ir_len_bits, 8);
1310 tap->expected = calloc(1, ir_len_bytes);
1311 tap->expected_mask = calloc(1, ir_len_bytes);
1312 tap->cur_instr = malloc(ir_len_bytes);
1314 /// @todo cope better with ir_length bigger than 32 bits
1315 if (ir_len_bits > 32)
1318 buf_set_u32(tap->expected, 0, ir_len_bits, tap->ir_capture_value);
1319 buf_set_u32(tap->expected_mask, 0, ir_len_bits, tap->ir_capture_mask);
1321 // TAP will be in bypass mode after jtag_validate_ircapture()
1323 buf_set_ones(tap->cur_instr, tap->ir_length);
1325 // register the reset callback for the TAP
1326 jtag_register_event_callback(&jtag_reset_callback, tap);
1328 LOG_DEBUG("Created Tap: %s @ abs position %d, "
1329 "irlen %d, capture: 0x%x mask: 0x%x", tap->dotted_name,
1330 tap->abs_chain_position, tap->ir_length,
1331 (unsigned) tap->ir_capture_value,
1332 (unsigned) tap->ir_capture_mask);
1336 void jtag_tap_free(struct jtag_tap *tap)
1338 jtag_unregister_event_callback(&jtag_reset_callback, tap);
1340 /// @todo is anything missing? no memory leaks please
1341 free((void *)tap->expected);
1342 free((void *)tap->expected_ids);
1343 free((void *)tap->chip);
1344 free((void *)tap->tapname);
1345 free((void *)tap->dotted_name);
1349 int jtag_interface_init(struct command_context *cmd_ctx)
1354 if (!jtag_interface)
1356 /* nothing was previously specified by "interface" command */
1357 LOG_ERROR("JTAG interface has to be specified, see \"interface\" command");
1358 return ERROR_JTAG_INVALID_INTERFACE;
1361 jtag = jtag_interface;
1362 if (jtag_interface->init() != ERROR_OK)
1365 return ERROR_JTAG_INIT_FAILED;
1368 int requested_khz = jtag_get_speed_khz();
1369 int actual_khz = requested_khz;
1370 int retval = jtag_get_speed_readable(&actual_khz);
1371 if (ERROR_OK != retval)
1372 LOG_INFO("interface specific clock speed value %d", jtag_get_speed());
1373 else if (actual_khz)
1375 if ((CLOCK_MODE_RCLK == clock_mode)
1376 || ((CLOCK_MODE_KHZ == clock_mode) && !requested_khz))
1378 LOG_INFO("RCLK (adaptive clock speed) not supported - fallback to %d kHz"
1382 LOG_INFO("clock speed %d kHz", actual_khz);
1385 LOG_INFO("RCLK (adaptive clock speed)");
1390 int jtag_init_inner(struct command_context *cmd_ctx)
1392 struct jtag_tap *tap;
1394 bool issue_setup = true;
1396 LOG_DEBUG("Init JTAG chain");
1398 tap = jtag_tap_next_enabled(NULL);
1400 /* Once JTAG itself is properly set up, and the scan chain
1401 * isn't absurdly large, IDCODE autoprobe should work fine.
1403 * But ... IRLEN autoprobe can fail even on systems which
1404 * are fully conformant to JTAG. Also, JTAG setup can be
1405 * quite finicky on some systems.
1407 * REVISIT: if TAP autoprobe works OK, then in many cases
1408 * we could escape to tcl code and set up targets based on
1409 * the TAP's IDCODE values.
1411 LOG_WARNING("There are no enabled taps. "
1412 "AUTO PROBING MIGHT NOT WORK!!");
1414 /* REVISIT default clock will often be too fast ... */
1418 if ((retval = jtag_execute_queue()) != ERROR_OK)
1421 /* Examine DR values first. This discovers problems which will
1422 * prevent communication ... hardware issues like TDO stuck, or
1423 * configuring the wrong number of (enabled) TAPs.
1425 retval = jtag_examine_chain();
1428 /* complete success */
1430 case ERROR_JTAG_INIT_SOFT_FAIL:
1431 /* For backward compatibility reasons, try coping with
1432 * configuration errors involving only ID mismatches.
1433 * We might be able to talk to the devices.
1435 LOG_ERROR("Trying to use configured scan chain anyway...");
1436 issue_setup = false;
1439 /* some hard error; already issued diagnostics */
1443 /* Now look at IR values. Problems here will prevent real
1444 * communication. They mostly mean that the IR length is
1445 * wrong ... or that the IR capture value is wrong. (The
1446 * latter is uncommon, but easily worked around: provide
1447 * ircapture/irmask values during TAP setup.)
1449 retval = jtag_validate_ircapture();
1450 if (retval != ERROR_OK)
1454 jtag_notify_event(JTAG_TAP_EVENT_SETUP);
1456 LOG_WARNING("Bypassing JTAG setup events due to errors");
1462 int jtag_interface_quit(void)
1464 if (!jtag || !jtag->quit)
1467 // close the JTAG interface
1468 int result = jtag->quit();
1469 if (ERROR_OK != result)
1470 LOG_ERROR("failed: %d", result);
1476 int jtag_init_reset(struct command_context *cmd_ctx)
1480 if ((retval = jtag_interface_init(cmd_ctx)) != ERROR_OK)
1483 LOG_DEBUG("Initializing with hard TRST+SRST reset");
1486 * This procedure is used by default when OpenOCD triggers a reset.
1487 * It's now done through an overridable Tcl "init_reset" wrapper.
1489 * This started out as a more powerful "get JTAG working" reset than
1490 * jtag_init_inner(), applying TRST because some chips won't activate
1491 * JTAG without a TRST cycle (presumed to be async, though some of
1492 * those chips synchronize JTAG activation using TCK).
1494 * But some chips only activate JTAG as part of an SRST cycle; SRST
1495 * got mixed in. So it became a hard reset routine, which got used
1496 * in more places, and which coped with JTAG reset being forced as
1497 * part of SRST (srst_pulls_trst).
1499 * And even more corner cases started to surface: TRST and/or SRST
1500 * assertion timings matter; some chips need other JTAG operations;
1501 * TRST/SRST sequences can need to be different from these, etc.
1503 * Systems should override that wrapper to support system-specific
1504 * requirements that this not-fully-generic code doesn't handle.
1506 * REVISIT once Tcl code can read the reset_config modes, this won't
1507 * need to be a C routine at all...
1509 jtag_add_reset(1, 0); /* TAP_RESET, using TMS+TCK or TRST */
1510 if (jtag_reset_config & RESET_HAS_SRST)
1512 jtag_add_reset(1, 1);
1513 if ((jtag_reset_config & RESET_SRST_PULLS_TRST) == 0)
1514 jtag_add_reset(0, 1);
1516 jtag_add_reset(0, 0);
1517 if ((retval = jtag_execute_queue()) != ERROR_OK)
1520 /* Check that we can communication on the JTAG chain + eventually we want to
1521 * be able to perform enumeration only after OpenOCD has started
1522 * telnet and GDB server
1524 * That would allow users to more easily perform any magic they need to before
1527 return jtag_init_inner(cmd_ctx);
1530 int jtag_init(struct command_context *cmd_ctx)
1534 if ((retval = jtag_interface_init(cmd_ctx)) != ERROR_OK)
1537 /* guard against oddball hardware: force resets to be inactive */
1538 jtag_add_reset(0, 0);
1539 if ((retval = jtag_execute_queue()) != ERROR_OK)
1542 if (Jim_Eval_Named(cmd_ctx->interp, "jtag_init", __FILE__, __LINE__) != JIM_OK)
1548 unsigned jtag_get_speed_khz(void)
1553 static int jtag_khz_to_speed(unsigned khz, int* speed)
1555 LOG_DEBUG("convert khz to interface specific speed value");
1559 LOG_DEBUG("have interface set up");
1561 int retval = jtag->khz(jtag_get_speed_khz(), &speed_div1);
1562 if (ERROR_OK != retval)
1566 *speed = speed_div1;
1571 static int jtag_rclk_to_speed(unsigned fallback_speed_khz, int* speed)
1573 int retval = jtag_khz_to_speed(0, speed);
1574 if ((ERROR_OK != retval) && fallback_speed_khz)
1576 LOG_DEBUG("trying fallback speed...");
1577 retval = jtag_khz_to_speed(fallback_speed_khz, speed);
1582 static int jtag_set_speed(int speed)
1585 /* this command can be called during CONFIG,
1586 * in which case jtag isn't initialized */
1587 return jtag ? jtag->speed(speed) : ERROR_OK;
1590 int jtag_config_khz(unsigned khz)
1592 LOG_DEBUG("handle jtag khz");
1593 clock_mode = CLOCK_MODE_KHZ;
1595 int retval = jtag_khz_to_speed(khz, &speed);
1596 return (ERROR_OK != retval) ? retval : jtag_set_speed(speed);
1599 int jtag_config_rclk(unsigned fallback_speed_khz)
1601 LOG_DEBUG("handle jtag rclk");
1602 clock_mode = CLOCK_MODE_RCLK;
1603 rclk_fallback_speed_khz = fallback_speed_khz;
1605 int retval = jtag_rclk_to_speed(fallback_speed_khz, &speed);
1606 return (ERROR_OK != retval) ? retval : jtag_set_speed(speed);
1609 int jtag_get_speed(void)
1614 case CLOCK_MODE_SPEED:
1617 case CLOCK_MODE_KHZ:
1618 jtag_khz_to_speed(jtag_get_speed_khz(), &speed);
1620 case CLOCK_MODE_RCLK:
1621 jtag_rclk_to_speed(rclk_fallback_speed_khz, &speed);
1624 LOG_ERROR("BUG: unknown jtag clock mode");
1631 int jtag_get_speed_readable(int *khz)
1633 return jtag ? jtag->speed_div(jtag_get_speed(), khz) : ERROR_OK;
1636 void jtag_set_verify(bool enable)
1638 jtag_verify = enable;
1641 bool jtag_will_verify()
1646 void jtag_set_verify_capture_ir(bool enable)
1648 jtag_verify_capture_ir = enable;
1651 bool jtag_will_verify_capture_ir()
1653 return jtag_verify_capture_ir;
1656 int jtag_power_dropout(int *dropout)
1660 /* TODO: as the jtag interface is not valid all
1661 * we can do at the moment is exit OpenOCD */
1662 LOG_ERROR("No Valid JTAG Interface Configured.");
1665 return jtag->power_dropout(dropout);
1668 int jtag_srst_asserted(int *srst_asserted)
1670 return jtag->srst_asserted(srst_asserted);
1673 enum reset_types jtag_get_reset_config(void)
1675 return jtag_reset_config;
1677 void jtag_set_reset_config(enum reset_types type)
1679 jtag_reset_config = type;
1682 int jtag_get_trst(void)
1686 int jtag_get_srst(void)
1691 void jtag_set_nsrst_delay(unsigned delay)
1693 jtag_nsrst_delay = delay;
1695 unsigned jtag_get_nsrst_delay(void)
1697 return jtag_nsrst_delay;
1699 void jtag_set_ntrst_delay(unsigned delay)
1701 jtag_ntrst_delay = delay;
1703 unsigned jtag_get_ntrst_delay(void)
1705 return jtag_ntrst_delay;
1709 void jtag_set_nsrst_assert_width(unsigned delay)
1711 jtag_nsrst_assert_width = delay;
1713 unsigned jtag_get_nsrst_assert_width(void)
1715 return jtag_nsrst_assert_width;
1717 void jtag_set_ntrst_assert_width(unsigned delay)
1719 jtag_ntrst_assert_width = delay;
1721 unsigned jtag_get_ntrst_assert_width(void)
1723 return jtag_ntrst_assert_width;
projects / fw / openocd / blob