1 /***************************************************************************
2 * Copyright (C) 2008 digenius technology GmbH. *
4 * Copyright (C) 2008 Oyvind Harboe oyvind.harboe@zylin.com *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the *
18 * Free Software Foundation, Inc., *
19 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
20 ***************************************************************************/
34 #define JTAG_DEBUG(expr ...) DEBUG(expr)
36 #define JTAG_DEBUG(expr ...) do {} while(0)
39 tap_state_t arm11_move_pi_to_si_via_ci[] =
41 TAP_IREXIT2, TAP_IRUPDATE, TAP_DRSELECT, TAP_IRSELECT, TAP_IRCAPTURE, TAP_IRSHIFT
45 int arm11_add_ir_scan_vc(int num_fields, scan_field_t *fields, tap_state_t state)
47 if (cmd_queue_cur_state == TAP_IRPAUSE)
48 jtag_add_pathmove(asizeof(arm11_move_pi_to_si_via_ci), arm11_move_pi_to_si_via_ci);
50 jtag_add_ir_scan(num_fields, fields, state);
54 tap_state_t arm11_move_pd_to_sd_via_cd[] =
56 TAP_DREXIT2, TAP_DRUPDATE, TAP_DRSELECT, TAP_DRCAPTURE, TAP_DRSHIFT
59 int arm11_add_dr_scan_vc(int num_fields, scan_field_t *fields, tap_state_t state)
61 if (cmd_queue_cur_state == TAP_DRPAUSE)
62 jtag_add_pathmove(asizeof(arm11_move_pd_to_sd_via_cd), arm11_move_pd_to_sd_via_cd);
64 jtag_add_dr_scan(num_fields, fields, state);
69 /** Code de-clutter: Construct scan_field_t to write out a value
71 * \param arm11 Target state variable.
72 * \param num_bits Length of the data field
73 * \param out_data pointer to the data that will be sent out
74 * <em>(data is read when it is added to the JTAG queue)</em>
75 * \param in_data pointer to the memory that will receive data that was clocked in
76 * <em>(data is written when the JTAG queue is executed)</em>
77 * \param field target data structure that will be initialized
79 void arm11_setup_field(arm11_common_t * arm11, int num_bits, void * out_data, void * in_data, scan_field_t * field)
81 field->tap = arm11->jtag_info.tap;
82 field->num_bits = num_bits;
83 field->out_mask = NULL;
84 field->in_check_mask = NULL;
85 field->in_check_value = NULL;
86 field->in_handler = NULL;
87 field->in_handler_priv = NULL;
89 field->out_value = out_data;
90 field->in_value = in_data;
94 /** Write JTAG instruction register
96 * \param arm11 Target state variable.
97 * \param instr An ARM11 DBGTAP instruction. Use enum #arm11_instructions.
98 * \param state Pass the final TAP state or ARM11_TAP_DEFAULT for the default value (Pause-IR).
100 * \remarks This adds to the JTAG command queue but does \em not execute it.
102 void arm11_add_IR(arm11_common_t * arm11, u8 instr, tap_state_t state)
105 tap = arm11->jtag_info.tap;
107 if (buf_get_u32(tap->cur_instr, 0, 5) == instr)
109 JTAG_DEBUG("IR <= 0x%02x SKIPPED", instr);
113 JTAG_DEBUG("IR <= 0x%02x", instr);
117 arm11_setup_field(arm11, 5, &instr, NULL, &field);
119 arm11_add_ir_scan_vc(1, &field, state == ARM11_TAP_DEFAULT ? TAP_IRPAUSE : state);
122 /** Verify shifted out data from Scan Chain Register (SCREG)
123 * Used as parameter to scan_field_t::in_handler in
124 * arm11_add_debug_SCAN_N().
127 static int arm11_in_handler_SCAN_N(u8 *in_value, void *priv, struct scan_field_s *field)
129 /** \todo TODO: clarify why this isnt properly masked in jtag.c jtag_read_buffer() */
130 u8 v = *in_value & 0x1F;
134 LOG_ERROR("'arm11 target' JTAG communication error SCREG SCAN OUT 0x%02x (expected 0x10)", v);
138 JTAG_DEBUG("SCREG SCAN OUT 0x%02x", v);
142 /** Select and write to Scan Chain Register (SCREG)
144 * This function sets the instruction register to SCAN_N and writes
145 * the data register with the selected chain number.
147 * http://infocenter.arm.com/help/topic/com.arm.doc.ddi0301f/Cacbjhfg.html
149 * \param arm11 Target state variable.
150 * \param chain Scan chain that will be selected.
151 * \param state Pass the final TAP state or ARM11_TAP_DEFAULT for the default
154 * The chain takes effect when Update-DR is passed (usually when subsequently
155 * the INTEXT/EXTEST instructions are written).
157 * \warning (Obsolete) Using this twice in a row will \em fail. The first
158 * call will end in Pause-DR. The second call, due to the IR
159 * caching, will not go through Capture-DR when shifting in the
160 * new scan chain number. As a result the verification in
161 * arm11_in_handler_SCAN_N() must fail.
163 * \remarks This adds to the JTAG command queue but does \em not execute it.
166 void arm11_add_debug_SCAN_N(arm11_common_t * arm11, u8 chain, tap_state_t state)
168 JTAG_DEBUG("SCREG <= 0x%02x", chain);
170 arm11_add_IR(arm11, ARM11_SCAN_N, ARM11_TAP_DEFAULT);
174 arm11_setup_field(arm11, 5, &chain, NULL, &field);
176 field.in_handler = arm11_in_handler_SCAN_N;
178 arm11_add_dr_scan_vc(1, &field, state == ARM11_TAP_DEFAULT ? TAP_DRPAUSE : state);
181 /** Write an instruction into the ITR register
183 * \param arm11 Target state variable.
184 * \param inst An ARM11 processor instruction/opcode.
185 * \param flag Optional parameter to retrieve the InstCompl flag
186 * (this will be written when the JTAG chain is executed).
187 * \param state Pass the final TAP state or ARM11_TAP_DEFAULT for the default
188 * value (Run-Test/Idle).
190 * \remarks By default this ends with Run-Test/Idle state
191 * and causes the instruction to be executed. If
192 * a subsequent write to DTR is needed before
193 * executing the instruction then TAP_DRPAUSE should be
194 * passed to \p state.
196 * \remarks This adds to the JTAG command queue but does \em not execute it.
198 void arm11_add_debug_INST(arm11_common_t * arm11, u32 inst, u8 * flag, tap_state_t state)
200 JTAG_DEBUG("INST <= 0x%08x", inst);
204 arm11_setup_field(arm11, 32, &inst, NULL, itr + 0);
205 arm11_setup_field(arm11, 1, NULL, flag, itr + 1);
207 arm11_add_dr_scan_vc(asizeof(itr), itr, state == ARM11_TAP_DEFAULT ? TAP_IDLE : state);
210 /** Read the Debug Status and Control Register (DSCR)
214 * \param arm11 Target state variable.
215 * \return DSCR content
217 * \remarks This is a stand-alone function that executes the JTAG command queue.
219 u32 arm11_read_DSCR(arm11_common_t * arm11)
221 arm11_add_debug_SCAN_N(arm11, 0x01, ARM11_TAP_DEFAULT);
223 arm11_add_IR(arm11, ARM11_INTEST, ARM11_TAP_DEFAULT);
226 scan_field_t chain1_field;
228 arm11_setup_field(arm11, 32, NULL, &dscr, &chain1_field);
230 arm11_add_dr_scan_vc(1, &chain1_field, TAP_DRPAUSE);
232 jtag_execute_queue();
234 if (arm11->last_dscr != dscr)
235 JTAG_DEBUG("DSCR = %08x (OLD %08x)", dscr, arm11->last_dscr);
237 arm11->last_dscr = dscr;
242 /** Write the Debug Status and Control Register (DSCR)
246 * \param arm11 Target state variable.
247 * \param dscr DSCR content
249 * \remarks This is a stand-alone function that executes the JTAG command queue.
251 void arm11_write_DSCR(arm11_common_t * arm11, u32 dscr)
253 arm11_add_debug_SCAN_N(arm11, 0x01, ARM11_TAP_DEFAULT);
255 arm11_add_IR(arm11, ARM11_EXTEST, ARM11_TAP_DEFAULT);
257 scan_field_t chain1_field;
259 arm11_setup_field(arm11, 32, &dscr, NULL, &chain1_field);
261 arm11_add_dr_scan_vc(1, &chain1_field, TAP_DRPAUSE);
263 jtag_execute_queue();
265 JTAG_DEBUG("DSCR <= %08x (OLD %08x)", dscr, arm11->last_dscr);
267 arm11->last_dscr = dscr;
272 /** Get the debug reason from Debug Status and Control Register (DSCR)
274 * \param dscr DSCR value to analyze
275 * \return Debug reason
278 enum target_debug_reason arm11_get_DSCR_debug_reason(u32 dscr)
280 switch (dscr & ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_MASK)
282 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_HALT:
283 LOG_INFO("Debug entry: JTAG HALT");
284 return DBG_REASON_DBGRQ;
286 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_BREAKPOINT:
287 LOG_INFO("Debug entry: breakpoint");
288 return DBG_REASON_BREAKPOINT;
290 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_WATCHPOINT:
291 LOG_INFO("Debug entry: watchpoint");
292 return DBG_REASON_WATCHPOINT;
294 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_BKPT_INSTRUCTION:
295 LOG_INFO("Debug entry: BKPT instruction");
296 return DBG_REASON_BREAKPOINT;
298 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_EDBGRQ:
299 LOG_INFO("Debug entry: EDBGRQ signal");
300 return DBG_REASON_DBGRQ;
302 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_VECTOR_CATCH:
303 LOG_INFO("Debug entry: VCR vector catch");
304 return DBG_REASON_BREAKPOINT;
307 LOG_INFO("Debug entry: unknown");
308 return DBG_REASON_DBGRQ;
314 /** Prepare the stage for ITR/DTR operations
315 * from the arm11_run_instr... group of functions.
317 * Put arm11_run_instr_data_prepare() and arm11_run_instr_data_finish()
318 * around a block of arm11_run_instr_... calls.
320 * Select scan chain 5 to allow quick access to DTR. When scan
321 * chain 4 is needed to put in a register the ITRSel instruction
322 * shortcut is used instead of actually changing the Scan_N
325 * \param arm11 Target state variable.
328 void arm11_run_instr_data_prepare(arm11_common_t * arm11)
330 arm11_add_debug_SCAN_N(arm11, 0x05, ARM11_TAP_DEFAULT);
333 /** Cleanup after ITR/DTR operations
334 * from the arm11_run_instr... group of functions
336 * Put arm11_run_instr_data_prepare() and arm11_run_instr_data_finish()
337 * around a block of arm11_run_instr_... calls.
339 * Any IDLE can lead to an instruction execution when
340 * scan chains 4 or 5 are selected and the IR holds
341 * INTEST or EXTEST. So we must disable that before
342 * any following activities lead to an IDLE.
344 * \param arm11 Target state variable.
347 void arm11_run_instr_data_finish(arm11_common_t * arm11)
349 arm11_add_debug_SCAN_N(arm11, 0x00, ARM11_TAP_DEFAULT);
353 /** Execute one or multiple instructions via ITR
355 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
357 * \param arm11 Target state variable.
358 * \param opcode Pointer to sequence of ARM opcodes
359 * \param count Number of opcodes to execute
362 void arm11_run_instr_no_data(arm11_common_t * arm11, u32 * opcode, size_t count)
364 arm11_add_IR(arm11, ARM11_ITRSEL, ARM11_TAP_DEFAULT);
368 arm11_add_debug_INST(arm11, *opcode++, NULL, TAP_IDLE);
374 arm11_add_debug_INST(arm11, 0, &flag, count ? TAP_IDLE : TAP_DRPAUSE);
376 jtag_execute_queue();
384 /** Execute one instruction via ITR
386 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
388 * \param arm11 Target state variable.
389 * \param opcode ARM opcode
392 void arm11_run_instr_no_data1(arm11_common_t * arm11, u32 opcode)
394 arm11_run_instr_no_data(arm11, &opcode, 1);
398 /** Execute one instruction via ITR repeatedly while
399 * passing data to the core via DTR on each execution.
401 * The executed instruction \em must read data from DTR.
403 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
405 * \param arm11 Target state variable.
406 * \param opcode ARM opcode
407 * \param data Pointer to the data words to be passed to the core
408 * \param count Number of data words and instruction repetitions
411 void arm11_run_instr_data_to_core(arm11_common_t * arm11, u32 opcode, u32 * data, size_t count)
413 arm11_add_IR(arm11, ARM11_ITRSEL, ARM11_TAP_DEFAULT);
415 arm11_add_debug_INST(arm11, opcode, NULL, TAP_DRPAUSE);
417 arm11_add_IR(arm11, ARM11_EXTEST, ARM11_TAP_DEFAULT);
419 scan_field_t chain5_fields[3];
425 arm11_setup_field(arm11, 32, &Data, NULL, chain5_fields + 0);
426 arm11_setup_field(arm11, 1, NULL, &Ready, chain5_fields + 1);
427 arm11_setup_field(arm11, 1, NULL, &nRetry, chain5_fields + 2);
435 arm11_add_dr_scan_vc(asizeof(chain5_fields), chain5_fields, TAP_IDLE);
436 jtag_execute_queue();
438 JTAG_DEBUG("DTR Ready %d nRetry %d", Ready, nRetry);
445 arm11_add_IR(arm11, ARM11_INTEST, ARM11_TAP_DEFAULT);
451 arm11_add_dr_scan_vc(asizeof(chain5_fields), chain5_fields, TAP_DRPAUSE);
452 jtag_execute_queue();
454 JTAG_DEBUG("DTR Data %08x Ready %d nRetry %d", Data, Ready, nRetry);
459 /** JTAG path for arm11_run_instr_data_to_core_noack
461 * The repeated TAP_IDLE's do not cause a repeated execution
462 * if passed without leaving the state.
464 * Since this is more than 7 bits (adjustable via adding more
465 * TAP_IDLE's) it produces an artificial delay in the lower
466 * layer (FT2232) that is long enough to finish execution on
467 * the core but still shorter than any manually inducible delays.
470 tap_state_t arm11_MOVE_DRPAUSE_IDLE_DRPAUSE_with_delay[] =
472 TAP_DREXIT2, TAP_DRUPDATE, TAP_IDLE, TAP_IDLE, TAP_IDLE, TAP_DRSELECT, TAP_DRCAPTURE, TAP_DRSHIFT
477 /** Execute one instruction via ITR repeatedly while
478 * passing data to the core via DTR on each execution.
480 * No Ready check during transmission.
482 * The executed instruction \em must read data from DTR.
484 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
486 * \param arm11 Target state variable.
487 * \param opcode ARM opcode
488 * \param data Pointer to the data words to be passed to the core
489 * \param count Number of data words and instruction repetitions
492 void arm11_run_instr_data_to_core_noack(arm11_common_t * arm11, u32 opcode, u32 * data, size_t count)
494 arm11_add_IR(arm11, ARM11_ITRSEL, ARM11_TAP_DEFAULT);
496 arm11_add_debug_INST(arm11, opcode, NULL, TAP_DRPAUSE);
498 arm11_add_IR(arm11, ARM11_EXTEST, ARM11_TAP_DEFAULT);
500 scan_field_t chain5_fields[3];
502 arm11_setup_field(arm11, 32, NULL/*&Data*/, NULL, chain5_fields + 0);
503 arm11_setup_field(arm11, 1, NULL, NULL /*&Ready*/, chain5_fields + 1);
504 arm11_setup_field(arm11, 1, NULL, NULL, chain5_fields + 2);
506 u8 Readies[count + 1];
507 u8 * ReadyPos = Readies;
511 chain5_fields[0].out_value = (void *)(data++);
512 chain5_fields[1].in_value = ReadyPos++;
516 jtag_add_dr_scan(asizeof(chain5_fields), chain5_fields, TAP_DRPAUSE);
517 jtag_add_pathmove(asizeof(arm11_MOVE_DRPAUSE_IDLE_DRPAUSE_with_delay),
518 arm11_MOVE_DRPAUSE_IDLE_DRPAUSE_with_delay);
522 jtag_add_dr_scan(asizeof(chain5_fields), chain5_fields, TAP_IDLE);
526 arm11_add_IR(arm11, ARM11_INTEST, ARM11_TAP_DEFAULT);
528 chain5_fields[0].out_value = 0;
529 chain5_fields[1].in_value = ReadyPos++;
531 arm11_add_dr_scan_vc(asizeof(chain5_fields), chain5_fields, TAP_DRPAUSE);
533 jtag_execute_queue();
535 size_t error_count = 0;
538 for (i = 0; i < asizeof(Readies); i++)
547 LOG_ERROR("Transfer errors " ZU, error_count);
551 /** Execute an instruction via ITR while handing data into the core via DTR.
553 * The executed instruction \em must read data from DTR.
555 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
557 * \param arm11 Target state variable.
558 * \param opcode ARM opcode
559 * \param data Data word to be passed to the core via DTR
562 void arm11_run_instr_data_to_core1(arm11_common_t * arm11, u32 opcode, u32 data)
564 arm11_run_instr_data_to_core(arm11, opcode, &data, 1);
568 /** Execute one instruction via ITR repeatedly while
569 * reading data from the core via DTR on each execution.
571 * The executed instruction \em must write data to DTR.
573 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
575 * \param arm11 Target state variable.
576 * \param opcode ARM opcode
577 * \param data Pointer to an array that receives the data words from the core
578 * \param count Number of data words and instruction repetitions
581 void arm11_run_instr_data_from_core(arm11_common_t * arm11, u32 opcode, u32 * data, size_t count)
583 arm11_add_IR(arm11, ARM11_ITRSEL, ARM11_TAP_DEFAULT);
585 arm11_add_debug_INST(arm11, opcode, NULL, TAP_IDLE);
587 arm11_add_IR(arm11, ARM11_INTEST, ARM11_TAP_DEFAULT);
589 scan_field_t chain5_fields[3];
595 arm11_setup_field(arm11, 32, NULL, &Data, chain5_fields + 0);
596 arm11_setup_field(arm11, 1, NULL, &Ready, chain5_fields + 1);
597 arm11_setup_field(arm11, 1, NULL, &nRetry, chain5_fields + 2);
603 arm11_add_dr_scan_vc(asizeof(chain5_fields), chain5_fields, count ? TAP_IDLE : TAP_DRPAUSE);
604 jtag_execute_queue();
606 JTAG_DEBUG("DTR Data %08x Ready %d nRetry %d", Data, Ready, nRetry);
614 /** Execute one instruction via ITR
615 * then load r0 into DTR and read DTR from core.
617 * The first executed instruction (\p opcode) should write data to r0.
619 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
621 * \param arm11 Target state variable.
622 * \param opcode ARM opcode to write r0 with the value of interest
623 * \param data Pointer to a data word that receives the value from r0 after \p opcode was executed.
626 void arm11_run_instr_data_from_core_via_r0(arm11_common_t * arm11, u32 opcode, u32 * data)
628 arm11_run_instr_no_data1(arm11, opcode);
630 /* MCR p14,0,R0,c0,c5,0 (move r0 -> wDTR -> local var) */
631 arm11_run_instr_data_from_core(arm11, 0xEE000E15, data, 1);
634 /** Load data into core via DTR then move it to r0 then
635 * execute one instruction via ITR
637 * The final executed instruction (\p opcode) should read data from r0.
639 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
641 * \param arm11 Target state variable.
642 * \param opcode ARM opcode to read r0 act upon it
643 * \param data Data word that will be written to r0 before \p opcode is executed
646 void arm11_run_instr_data_to_core_via_r0(arm11_common_t * arm11, u32 opcode, u32 data)
648 /* MRC p14,0,r0,c0,c5,0 */
649 arm11_run_instr_data_to_core1(arm11, 0xEE100E15, data);
651 arm11_run_instr_no_data1(arm11, opcode);
654 /** Apply reads and writes to scan chain 7
656 * \see arm11_sc7_action_t
658 * \param arm11 Target state variable.
659 * \param actions A list of read and/or write instructions
660 * \param count Number of instructions in the list.
663 void arm11_sc7_run(arm11_common_t * arm11, arm11_sc7_action_t * actions, size_t count)
665 arm11_add_debug_SCAN_N(arm11, 0x07, ARM11_TAP_DEFAULT);
667 arm11_add_IR(arm11, ARM11_EXTEST, ARM11_TAP_DEFAULT);
669 scan_field_t chain7_fields[3];
678 arm11_setup_field(arm11, 1, &nRW, &Ready, chain7_fields + 0);
679 arm11_setup_field(arm11, 32, &DataOut, &DataIn, chain7_fields + 1);
680 arm11_setup_field(arm11, 7, &AddressOut, &AddressIn, chain7_fields + 2);
683 for (i = 0; i < count + 1; i++)
687 nRW = actions[i].write ? 1 : 0;
688 DataOut = actions[i].value;
689 AddressOut = actions[i].address;
700 JTAG_DEBUG("SC7 <= Address %02x Data %08x nRW %d", AddressOut, DataOut, nRW);
702 arm11_add_dr_scan_vc(asizeof(chain7_fields), chain7_fields, TAP_DRPAUSE);
703 jtag_execute_queue();
705 JTAG_DEBUG("SC7 => Address %02x Data %08x Ready %d", AddressIn, DataIn, Ready);
707 while (!Ready); /* 'nRW' is 'Ready' on read out */
711 if (actions[i - 1].address != AddressIn)
713 LOG_WARNING("Scan chain 7 shifted out unexpected address");
716 if (!actions[i - 1].write)
718 actions[i - 1].value = DataIn;
722 if (actions[i - 1].value != DataIn)
724 LOG_WARNING("Scan chain 7 shifted out unexpected data");
731 for (i = 0; i < count; i++)
733 JTAG_DEBUG("SC7 %02d: %02x %s %08x", i, actions[i].address, actions[i].write ? "<=" : "=>", actions[i].value);
737 /** Clear VCR and all breakpoints and watchpoints via scan chain 7
739 * \param arm11 Target state variable.
742 void arm11_sc7_clear_vbw(arm11_common_t * arm11)
744 arm11_sc7_action_t clear_bw[arm11->brp + arm11->wrp + 1];
745 arm11_sc7_action_t * pos = clear_bw;
748 for (i = 0; i < asizeof(clear_bw); i++)
750 clear_bw[i].write = true;
751 clear_bw[i].value = 0;
755 for (i = 0; i < arm11->brp; i++)
756 (pos++)->address = ARM11_SC7_BCR0 + i;
760 for (i = 0; i < arm11->wrp; i++)
761 (pos++)->address = ARM11_SC7_WCR0 + i;
764 (pos++)->address = ARM11_SC7_VCR;
766 arm11_sc7_run(arm11, clear_bw, asizeof(clear_bw));
769 /** Write VCR register
771 * \param arm11 Target state variable.
772 * \param value Value to be written
774 void arm11_sc7_set_vcr(arm11_common_t * arm11, u32 value)
776 arm11_sc7_action_t set_vcr;
778 set_vcr.write = true;
779 set_vcr.address = ARM11_SC7_VCR;
780 set_vcr.value = value;
783 arm11_sc7_run(arm11, &set_vcr, 1);
788 /** Read word from address
790 * \param arm11 Target state variable.
791 * \param address Memory address to be read
792 * \param result Pointer where to store result
795 void arm11_read_memory_word(arm11_common_t * arm11, u32 address, u32 * result)
797 arm11_run_instr_data_prepare(arm11);
799 /* MRC p14,0,r0,c0,c5,0 (r0 = address) */
800 arm11_run_instr_data_to_core1(arm11, 0xee100e15, address);
802 /* LDC p14,c5,[R0],#4 (DTR = [r0]) */
803 arm11_run_instr_data_from_core(arm11, 0xecb05e01, result, 1);
805 arm11_run_instr_data_finish(arm11);
projects / fw / openocd / blob