1 /***************************************************************************
2 * Copyright (C) 2005 by Dominic Rath *
3 * Dominic.Rath@gmx.de *
5 * Copyright (C) 2007,2008 Øyvind Harboe *
6 * oyvind.harboe@zylin.com *
8 * This program is free software; you can redistribute it and/or modify *
9 * it under the terms of the GNU General Public License as published by *
10 * the Free Software Foundation; either version 2 of the License, or *
11 * (at your option) any later version. *
13 * This program is distributed in the hope that it will be useful, *
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
16 * GNU General Public License for more details. *
18 * You should have received a copy of the GNU General Public License *
19 * along with this program; if not, write to the *
20 * Free Software Foundation, Inc., *
21 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
22 ***************************************************************************/
27 #include "replacements.h"
29 #include "embeddedice.h"
31 #include "target_request.h"
36 #include "arm7_9_common.h"
37 #include "breakpoints.h"
43 #include <sys/types.h>
48 int arm7_9_debug_entry(target_t *target);
49 int arm7_9_enable_sw_bkpts(struct target_s *target);
51 /* command handler forward declarations */
52 int handle_arm7_9_write_xpsr_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
53 int handle_arm7_9_write_xpsr_im8_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
54 int handle_arm7_9_read_core_reg_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
55 int handle_arm7_9_write_core_reg_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
56 int handle_arm7_9_sw_bkpts_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
57 int handle_arm7_9_force_hw_bkpts_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
58 int handle_arm7_9_dbgrq_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
59 int handle_arm7_9_fast_memory_access_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
60 int handle_arm7_9_dcc_downloads_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
61 int handle_arm7_9_etm_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc);
63 int arm7_9_reinit_embeddedice(target_t *target)
65 armv4_5_common_t *armv4_5 = target->arch_info;
66 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
68 breakpoint_t *breakpoint = target->breakpoints;
70 arm7_9->wp_available = 2;
74 /* mark all hardware breakpoints as unset */
77 if (breakpoint->type == BKPT_HARD)
81 breakpoint = breakpoint->next;
84 if (arm7_9->sw_bkpts_enabled && arm7_9->sw_bkpts_use_wp)
86 arm7_9->sw_bkpts_enabled = 0;
87 arm7_9_enable_sw_bkpts(target);
93 /* set things up after a reset / on startup */
94 int arm7_9_setup(target_t *target)
96 /* a test-logic reset have occured
97 * the EmbeddedICE registers have been reset
98 * hardware breakpoints have been cleared
100 return arm7_9_reinit_embeddedice(target);
103 int arm7_9_get_arch_pointers(target_t *target, armv4_5_common_t **armv4_5_p, arm7_9_common_t **arm7_9_p)
105 armv4_5_common_t *armv4_5 = target->arch_info;
106 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
108 if (armv4_5->common_magic != ARMV4_5_COMMON_MAGIC)
113 if (arm7_9->common_magic != ARM7_9_COMMON_MAGIC)
118 *armv4_5_p = armv4_5;
124 int arm7_9_set_breakpoint(struct target_s *target, breakpoint_t *breakpoint)
126 armv4_5_common_t *armv4_5 = target->arch_info;
127 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
129 if (target->state != TARGET_HALTED)
131 LOG_WARNING("target not halted");
132 return ERROR_TARGET_NOT_HALTED;
135 if (arm7_9->force_hw_bkpts)
136 breakpoint->type = BKPT_HARD;
140 LOG_WARNING("breakpoint already set");
144 if (breakpoint->type == BKPT_HARD)
146 /* either an ARM (4 byte) or Thumb (2 byte) breakpoint */
147 u32 mask = (breakpoint->length == 4) ? 0x3u : 0x1u;
148 if (!arm7_9->wp0_used)
150 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_VALUE], breakpoint->address);
151 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_MASK], mask);
152 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_MASK], 0xffffffffu);
153 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_MASK], ~EICE_W_CTRL_nOPC & 0xff);
154 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], EICE_W_CTRL_ENABLE);
156 jtag_execute_queue();
157 arm7_9->wp0_used = 1;
160 else if (!arm7_9->wp1_used)
162 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_VALUE], breakpoint->address);
163 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_MASK], mask);
164 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_DATA_MASK], 0xffffffffu);
165 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_MASK], ~EICE_W_CTRL_nOPC & 0xff);
166 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_VALUE], EICE_W_CTRL_ENABLE);
168 jtag_execute_queue();
169 arm7_9->wp1_used = 1;
174 LOG_ERROR("BUG: no hardware comparator available");
178 else if (breakpoint->type == BKPT_SOFT)
180 if (breakpoint->length == 4)
182 u32 verify = 0xffffffff;
183 /* keep the original instruction in target endianness */
184 target->type->read_memory(target, breakpoint->address, 4, 1, breakpoint->orig_instr);
185 /* write the breakpoint instruction in target endianness (arm7_9->arm_bkpt is host endian) */
186 target_write_u32(target, breakpoint->address, arm7_9->arm_bkpt);
188 target->type->read_memory(target, breakpoint->address, 4, 1, (u8 *)&verify);
189 if (verify != arm7_9->arm_bkpt)
191 LOG_ERROR("Unable to set 32 bit software breakpoint at address %08x - check that memory is read/writable", breakpoint->address);
198 /* keep the original instruction in target endianness */
199 target->type->read_memory(target, breakpoint->address, 2, 1, breakpoint->orig_instr);
200 /* write the breakpoint instruction in target endianness (arm7_9->thumb_bkpt is host endian) */
201 target_write_u16(target, breakpoint->address, arm7_9->thumb_bkpt);
203 target->type->read_memory(target, breakpoint->address, 2, 1, (u8 *)&verify);
204 if (verify != arm7_9->thumb_bkpt)
206 LOG_ERROR("Unable to set thumb software breakpoint at address %08x - check that memory is read/writable", breakpoint->address);
217 int arm7_9_unset_breakpoint(struct target_s *target, breakpoint_t *breakpoint)
219 armv4_5_common_t *armv4_5 = target->arch_info;
220 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
222 if (target->state != TARGET_HALTED)
224 LOG_WARNING("target not halted");
225 return ERROR_TARGET_NOT_HALTED;
228 if (!breakpoint->set)
230 LOG_WARNING("breakpoint not set");
234 if (breakpoint->type == BKPT_HARD)
236 if (breakpoint->set == 1)
238 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], 0x0);
239 jtag_execute_queue();
240 arm7_9->wp0_used = 0;
242 else if (breakpoint->set == 2)
244 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_VALUE], 0x0);
245 jtag_execute_queue();
246 arm7_9->wp1_used = 0;
252 /* restore original instruction (kept in target endianness) */
253 if (breakpoint->length == 4)
256 /* check that user program as not modified breakpoint instruction */
257 target->type->read_memory(target, breakpoint->address, 4, 1, (u8*)¤t_instr);
258 if (current_instr==arm7_9->arm_bkpt)
259 target->type->write_memory(target, breakpoint->address, 4, 1, breakpoint->orig_instr);
264 /* check that user program as not modified breakpoint instruction */
265 target->type->read_memory(target, breakpoint->address, 2, 1, (u8*)¤t_instr);
266 if (current_instr==arm7_9->thumb_bkpt)
267 target->type->write_memory(target, breakpoint->address, 2, 1, breakpoint->orig_instr);
275 int arm7_9_add_breakpoint(struct target_s *target, breakpoint_t *breakpoint)
277 armv4_5_common_t *armv4_5 = target->arch_info;
278 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
280 if (target->state != TARGET_HALTED)
282 LOG_WARNING("target not halted");
283 return ERROR_TARGET_NOT_HALTED;
286 if (arm7_9->force_hw_bkpts)
288 LOG_DEBUG("forcing use of hardware breakpoint at address 0x%8.8x", breakpoint->address);
289 breakpoint->type = BKPT_HARD;
292 if ((breakpoint->type == BKPT_SOFT) && (arm7_9->sw_bkpts_enabled == 0))
294 LOG_INFO("sw breakpoint requested, but software breakpoints not enabled");
295 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
298 if ((breakpoint->type == BKPT_HARD) && (arm7_9->wp_available < 1))
300 LOG_INFO("no watchpoint unit available for hardware breakpoint");
301 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
304 if ((breakpoint->length != 2) && (breakpoint->length != 4))
306 LOG_INFO("only breakpoints of two (Thumb) or four (ARM) bytes length supported");
307 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
310 if (breakpoint->type == BKPT_HARD)
311 arm7_9->wp_available--;
316 int arm7_9_remove_breakpoint(struct target_s *target, breakpoint_t *breakpoint)
318 armv4_5_common_t *armv4_5 = target->arch_info;
319 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
321 if (target->state != TARGET_HALTED)
323 LOG_WARNING("target not halted");
324 return ERROR_TARGET_NOT_HALTED;
329 arm7_9_unset_breakpoint(target, breakpoint);
332 if (breakpoint->type == BKPT_HARD)
333 arm7_9->wp_available++;
338 int arm7_9_set_watchpoint(struct target_s *target, watchpoint_t *watchpoint)
340 armv4_5_common_t *armv4_5 = target->arch_info;
341 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
345 mask = watchpoint->length - 1;
347 if (target->state != TARGET_HALTED)
349 LOG_WARNING("target not halted");
350 return ERROR_TARGET_NOT_HALTED;
353 if (watchpoint->rw == WPT_ACCESS)
358 if (!arm7_9->wp0_used)
360 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_VALUE], watchpoint->address);
361 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_MASK], mask);
362 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_MASK], watchpoint->mask);
363 if( watchpoint->mask != 0xffffffffu )
364 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_VALUE], watchpoint->value);
365 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_MASK], 0xff & ~EICE_W_CTRL_nOPC & ~rw_mask);
366 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], EICE_W_CTRL_ENABLE | EICE_W_CTRL_nOPC | (watchpoint->rw & 1));
368 jtag_execute_queue();
370 arm7_9->wp0_used = 2;
372 else if (!arm7_9->wp1_used)
374 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_VALUE], watchpoint->address);
375 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_MASK], mask);
376 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_DATA_MASK], watchpoint->mask);
377 if( watchpoint->mask != 0xffffffffu )
378 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_DATA_VALUE], watchpoint->value);
379 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_MASK], 0xff & ~EICE_W_CTRL_nOPC & ~rw_mask);
380 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_VALUE], EICE_W_CTRL_ENABLE | EICE_W_CTRL_nOPC | (watchpoint->rw & 1));
382 jtag_execute_queue();
384 arm7_9->wp1_used = 2;
388 LOG_ERROR("BUG: no hardware comparator available");
395 int arm7_9_unset_watchpoint(struct target_s *target, watchpoint_t *watchpoint)
397 armv4_5_common_t *armv4_5 = target->arch_info;
398 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
400 if (target->state != TARGET_HALTED)
402 LOG_WARNING("target not halted");
403 return ERROR_TARGET_NOT_HALTED;
406 if (!watchpoint->set)
408 LOG_WARNING("breakpoint not set");
412 if (watchpoint->set == 1)
414 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], 0x0);
415 jtag_execute_queue();
416 arm7_9->wp0_used = 0;
418 else if (watchpoint->set == 2)
420 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_VALUE], 0x0);
421 jtag_execute_queue();
422 arm7_9->wp1_used = 0;
429 int arm7_9_add_watchpoint(struct target_s *target, watchpoint_t *watchpoint)
431 armv4_5_common_t *armv4_5 = target->arch_info;
432 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
434 if (target->state != TARGET_HALTED)
436 LOG_WARNING("target not halted");
437 return ERROR_TARGET_NOT_HALTED;
440 if (arm7_9->wp_available < 1)
442 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
445 if ((watchpoint->length != 1) && (watchpoint->length != 2) && (watchpoint->length != 4))
447 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
450 arm7_9->wp_available--;
455 int arm7_9_remove_watchpoint(struct target_s *target, watchpoint_t *watchpoint)
457 armv4_5_common_t *armv4_5 = target->arch_info;
458 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
460 if (target->state != TARGET_HALTED)
462 LOG_WARNING("target not halted");
463 return ERROR_TARGET_NOT_HALTED;
468 arm7_9_unset_watchpoint(target, watchpoint);
471 arm7_9->wp_available++;
476 int arm7_9_enable_sw_bkpts(struct target_s *target)
478 armv4_5_common_t *armv4_5 = target->arch_info;
479 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
482 if (arm7_9->sw_bkpts_enabled)
485 if (arm7_9->wp_available < 1)
487 LOG_WARNING("can't enable sw breakpoints with no watchpoint unit available");
488 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
490 arm7_9->wp_available--;
492 if (!arm7_9->wp0_used)
494 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_VALUE], arm7_9->arm_bkpt);
495 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_MASK], 0x0);
496 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_MASK], 0xffffffffu);
497 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_MASK], ~EICE_W_CTRL_nOPC & 0xff);
498 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], EICE_W_CTRL_ENABLE);
499 arm7_9->sw_bkpts_enabled = 1;
500 arm7_9->wp0_used = 3;
502 else if (!arm7_9->wp1_used)
504 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_DATA_VALUE], arm7_9->arm_bkpt);
505 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_DATA_MASK], 0x0);
506 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_MASK], 0xffffffffu);
507 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_MASK], ~EICE_W_CTRL_nOPC & 0xff);
508 embeddedice_set_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_VALUE], EICE_W_CTRL_ENABLE);
509 arm7_9->sw_bkpts_enabled = 2;
510 arm7_9->wp1_used = 3;
514 LOG_ERROR("BUG: both watchpoints used, but wp_available >= 1");
518 if ((retval = jtag_execute_queue()) != ERROR_OK)
520 LOG_ERROR("error writing EmbeddedICE registers to enable sw breakpoints");
527 int arm7_9_disable_sw_bkpts(struct target_s *target)
529 armv4_5_common_t *armv4_5 = target->arch_info;
530 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
532 if (!arm7_9->sw_bkpts_enabled)
535 if (arm7_9->sw_bkpts_enabled == 1)
537 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], 0x0);
538 arm7_9->sw_bkpts_enabled = 0;
539 arm7_9->wp0_used = 0;
540 arm7_9->wp_available++;
542 else if (arm7_9->sw_bkpts_enabled == 2)
544 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_VALUE], 0x0);
545 arm7_9->sw_bkpts_enabled = 0;
546 arm7_9->wp1_used = 0;
547 arm7_9->wp_available++;
553 int arm7_9_execute_sys_speed(struct target_s *target)
558 armv4_5_common_t *armv4_5 = target->arch_info;
559 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
560 arm_jtag_t *jtag_info = &arm7_9->jtag_info;
561 reg_t *dbg_stat = &arm7_9->eice_cache->reg_list[EICE_DBG_STAT];
563 /* set RESTART instruction */
564 jtag_add_end_state(TAP_RTI);
565 if (arm7_9->need_bypass_before_restart) {
566 arm7_9->need_bypass_before_restart = 0;
567 arm_jtag_set_instr(jtag_info, 0xf, NULL);
569 arm_jtag_set_instr(jtag_info, 0x4, NULL);
571 for (timeout=0; timeout<50; timeout++)
573 /* read debug status register */
574 embeddedice_read_reg(dbg_stat);
575 if ((retval = jtag_execute_queue()) != ERROR_OK)
577 if ((buf_get_u32(dbg_stat->value, EICE_DBG_STATUS_DBGACK, 1))
578 && (buf_get_u32(dbg_stat->value, EICE_DBG_STATUS_SYSCOMP, 1)))
584 LOG_ERROR("timeout waiting for SYSCOMP & DBGACK, last DBG_STATUS: %x", buf_get_u32(dbg_stat->value, 0, dbg_stat->size));
585 return ERROR_TARGET_TIMEOUT;
591 int arm7_9_execute_fast_sys_speed(struct target_s *target)
594 static u8 check_value[4], check_mask[4];
596 armv4_5_common_t *armv4_5 = target->arch_info;
597 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
598 arm_jtag_t *jtag_info = &arm7_9->jtag_info;
599 reg_t *dbg_stat = &arm7_9->eice_cache->reg_list[EICE_DBG_STAT];
601 /* set RESTART instruction */
602 jtag_add_end_state(TAP_RTI);
603 if (arm7_9->need_bypass_before_restart) {
604 arm7_9->need_bypass_before_restart = 0;
605 arm_jtag_set_instr(jtag_info, 0xf, NULL);
607 arm_jtag_set_instr(jtag_info, 0x4, NULL);
611 /* check for DBGACK and SYSCOMP set (others don't care) */
613 /* NB! These are constants that must be available until after next jtag_execute() and
614 we evaluate the values upon first execution in lieu of setting up these constants
617 buf_set_u32(check_value, 0, 32, 0x9);
618 buf_set_u32(check_mask, 0, 32, 0x9);
622 /* read debug status register */
623 embeddedice_read_reg_w_check(dbg_stat, check_value, check_value);
628 int arm7_9_target_request_data(target_t *target, u32 size, u8 *buffer)
630 armv4_5_common_t *armv4_5 = target->arch_info;
631 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
632 arm_jtag_t *jtag_info = &arm7_9->jtag_info;
636 data = malloc(size * (sizeof(u32)));
638 embeddedice_receive(jtag_info, data, size);
640 for (i = 0; i < size; i++)
642 h_u32_to_le(buffer + (i * 4), data[i]);
650 int arm7_9_handle_target_request(void *priv)
652 target_t *target = priv;
653 if (!target->type->examined)
655 armv4_5_common_t *armv4_5 = target->arch_info;
656 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
657 arm_jtag_t *jtag_info = &arm7_9->jtag_info;
658 reg_t *dcc_control = &arm7_9->eice_cache->reg_list[EICE_COMMS_CTRL];
661 if (!target->dbg_msg_enabled)
664 if (target->state == TARGET_RUNNING)
666 /* read DCC control register */
667 embeddedice_read_reg(dcc_control);
668 jtag_execute_queue();
671 if (buf_get_u32(dcc_control->value, 1, 1) == 1)
675 embeddedice_receive(jtag_info, &request, 1);
676 target_request(target, request);
683 int arm7_9_poll(target_t *target)
686 armv4_5_common_t *armv4_5 = target->arch_info;
687 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
688 reg_t *dbg_stat = &arm7_9->eice_cache->reg_list[EICE_DBG_STAT];
690 /* read debug status register */
691 embeddedice_read_reg(dbg_stat);
692 if ((retval = jtag_execute_queue()) != ERROR_OK)
697 if (buf_get_u32(dbg_stat->value, EICE_DBG_STATUS_DBGACK, 1))
699 /* LOG_DEBUG("DBGACK set, dbg_state->value: 0x%x", buf_get_u32(dbg_stat->value, 0, 32));*/
700 if (target->state == TARGET_UNKNOWN)
702 target->state = TARGET_RUNNING;
703 LOG_WARNING("DBGACK set while target was in unknown state. Reset or initialize target.");
705 if ((target->state == TARGET_RUNNING) || (target->state == TARGET_RESET))
708 if (target->state == TARGET_RESET)
710 if (target->reset_halt)
712 if ((jtag_reset_config & RESET_SRST_PULLS_TRST)==0)
719 target->state = TARGET_HALTED;
721 if ((retval = arm7_9_debug_entry(target)) != ERROR_OK)
726 reg_t *reg = register_get_by_name(target->reg_cache, "pc", 1);
727 u32 t=*((u32 *)reg->value);
730 LOG_ERROR("PC was not 0. Does this target need srst_pulls_trst?");
734 target_call_event_callbacks(target, TARGET_EVENT_HALTED);
736 if (target->state == TARGET_DEBUG_RUNNING)
738 target->state = TARGET_HALTED;
739 if ((retval = arm7_9_debug_entry(target)) != ERROR_OK)
742 target_call_event_callbacks(target, TARGET_EVENT_DEBUG_HALTED);
744 if (target->state != TARGET_HALTED)
746 LOG_WARNING("DBGACK set, but the target did not end up in the halted stated %d", target->state);
751 if (target->state != TARGET_DEBUG_RUNNING)
752 target->state = TARGET_RUNNING;
759 Some -S targets (ARM966E-S in the STR912 isn't affected, ARM926EJ-S
760 in the LPC3180 and AT91SAM9260 is affected) completely stop the JTAG clock
761 while the core is held in reset(SRST). It isn't possible to program the halt
762 condition once reset was asserted, hence a hook that allows the target to set
763 up its reset-halt condition prior to asserting reset.
766 int arm7_9_assert_reset(target_t *target)
768 armv4_5_common_t *armv4_5 = target->arch_info;
769 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
770 LOG_DEBUG("target->state: %s", target_state_strings[target->state]);
772 if (!(jtag_reset_config & RESET_HAS_SRST))
774 LOG_ERROR("Can't assert SRST");
778 if (target->reset_halt)
781 * Some targets do not support communication while SRST is asserted. We need to
782 * set up the reset vector catch here.
784 * If TRST is asserted, then these settings will be reset anyway, so setting them
787 if (arm7_9->has_vector_catch)
789 /* program vector catch register to catch reset vector */
790 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_VEC_CATCH], 0x1);
794 /* program watchpoint unit to match on reset vector address */
795 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_VALUE], 0x0);
796 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_MASK], 0x3);
797 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_MASK], 0xffffffff);
798 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], EICE_W_CTRL_ENABLE);
799 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_MASK], ~EICE_W_CTRL_nOPC & 0xff);
803 /* here we should issue a srst only, but we may have to assert trst as well */
804 if (jtag_reset_config & RESET_SRST_PULLS_TRST)
806 jtag_add_reset(1, 1);
809 jtag_add_reset(0, 1);
813 target->state = TARGET_RESET;
814 jtag_add_sleep(50000);
816 armv4_5_invalidate_core_regs(target);
822 int arm7_9_deassert_reset(target_t *target)
824 LOG_DEBUG("target->state: %s", target_state_strings[target->state]);
826 /* deassert reset lines */
827 jtag_add_reset(0, 0);
832 int arm7_9_clear_halt(target_t *target)
834 armv4_5_common_t *armv4_5 = target->arch_info;
835 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
836 reg_t *dbg_ctrl = &arm7_9->eice_cache->reg_list[EICE_DBG_CTRL];
838 /* we used DBGRQ only if we didn't come out of reset */
839 if (!arm7_9->debug_entry_from_reset && arm7_9->use_dbgrq)
841 /* program EmbeddedICE Debug Control Register to deassert DBGRQ
843 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGRQ, 1, 0);
844 embeddedice_store_reg(dbg_ctrl);
848 if (arm7_9->debug_entry_from_reset && arm7_9->has_vector_catch)
850 /* if we came out of reset, and vector catch is supported, we used
851 * vector catch to enter debug state
852 * restore the register in that case
854 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_VEC_CATCH]);
858 /* restore registers if watchpoint unit 0 was in use
860 if (arm7_9->wp0_used)
862 if (arm7_9->debug_entry_from_reset)
864 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_VALUE]);
866 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_MASK]);
867 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_MASK]);
868 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_MASK]);
870 /* control value always has to be restored, as it was either disabled,
871 * or enabled with possibly different bits
873 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE]);
880 int arm7_9_soft_reset_halt(struct target_s *target)
882 armv4_5_common_t *armv4_5 = target->arch_info;
883 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
884 reg_t *dbg_stat = &arm7_9->eice_cache->reg_list[EICE_DBG_STAT];
885 reg_t *dbg_ctrl = &arm7_9->eice_cache->reg_list[EICE_DBG_CTRL];
889 if ((retval=target_halt(target))!=ERROR_OK)
894 if (buf_get_u32(dbg_stat->value, EICE_DBG_STATUS_DBGACK, 1) != 0)
896 embeddedice_read_reg(dbg_stat);
897 if ((retval=jtag_execute_queue())!=ERROR_OK)
899 /* do not eat all CPU, time out after 1 se*/
905 LOG_ERROR("Failed to halt CPU after 1 sec");
906 return ERROR_TARGET_TIMEOUT;
908 target->state = TARGET_HALTED;
910 /* program EmbeddedICE Debug Control Register to assert DBGACK and INTDIS
911 * ensure that DBGRQ is cleared
913 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGACK, 1, 1);
914 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGRQ, 1, 0);
915 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_INTDIS, 1, 1);
916 embeddedice_store_reg(dbg_ctrl);
918 arm7_9_clear_halt(target);
920 /* if the target is in Thumb state, change to ARM state */
921 if (buf_get_u32(dbg_stat->value, EICE_DBG_STATUS_ITBIT, 1))
923 u32 r0_thumb, pc_thumb;
924 LOG_DEBUG("target entered debug from Thumb state, changing to ARM");
925 /* Entered debug from Thumb mode */
926 armv4_5->core_state = ARMV4_5_STATE_THUMB;
927 arm7_9->change_to_arm(target, &r0_thumb, &pc_thumb);
930 /* all register content is now invalid */
931 armv4_5_invalidate_core_regs(target);
933 /* SVC, ARM state, IRQ and FIQ disabled */
934 buf_set_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8, 0xd3);
935 armv4_5->core_cache->reg_list[ARMV4_5_CPSR].dirty = 1;
936 armv4_5->core_cache->reg_list[ARMV4_5_CPSR].valid = 1;
938 /* start fetching from 0x0 */
939 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, 0x0);
940 armv4_5->core_cache->reg_list[15].dirty = 1;
941 armv4_5->core_cache->reg_list[15].valid = 1;
943 armv4_5->core_mode = ARMV4_5_MODE_SVC;
944 armv4_5->core_state = ARMV4_5_STATE_ARM;
946 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
949 /* reset registers */
950 for (i = 0; i <= 14; i++)
952 buf_set_u32(ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).value, 0, 32, 0xffffffff);
953 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).dirty = 1;
954 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).valid = 1;
957 target_call_event_callbacks(target, TARGET_EVENT_HALTED);
962 int arm7_9_halt(target_t *target)
964 armv4_5_common_t *armv4_5 = target->arch_info;
965 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
966 reg_t *dbg_ctrl = &arm7_9->eice_cache->reg_list[EICE_DBG_CTRL];
968 LOG_DEBUG("target->state: %s", target_state_strings[target->state]);
970 if (target->state == TARGET_HALTED)
972 LOG_DEBUG("target was already halted");
976 if (target->state == TARGET_UNKNOWN)
978 LOG_WARNING("target was in unknown state when halt was requested");
981 if (target->state == TARGET_RESET)
983 if ((jtag_reset_config & RESET_SRST_PULLS_TRST) && jtag_srst)
985 LOG_ERROR("can't request a halt while in reset if nSRST pulls nTRST");
986 return ERROR_TARGET_FAILURE;
990 /* we came here in a reset_halt or reset_init sequence
991 * debug entry was already prepared in arm7_9_assert_reset()
993 target->debug_reason = DBG_REASON_DBGRQ;
999 if (arm7_9->use_dbgrq)
1001 /* program EmbeddedICE Debug Control Register to assert DBGRQ
1003 if (arm7_9->set_special_dbgrq) {
1004 arm7_9->set_special_dbgrq(target);
1006 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGRQ, 1, 1);
1007 embeddedice_store_reg(dbg_ctrl);
1012 /* program watchpoint unit to match on any address
1014 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_MASK], 0xffffffff);
1015 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_MASK], 0xffffffff);
1016 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], EICE_W_CTRL_ENABLE);
1017 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_MASK], ~EICE_W_CTRL_nOPC & 0xff);
1020 target->debug_reason = DBG_REASON_DBGRQ;
1025 int arm7_9_debug_entry(target_t *target)
1030 u32 r0_thumb, pc_thumb;
1033 /* get pointers to arch-specific information */
1034 armv4_5_common_t *armv4_5 = target->arch_info;
1035 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1036 reg_t *dbg_stat = &arm7_9->eice_cache->reg_list[EICE_DBG_STAT];
1037 reg_t *dbg_ctrl = &arm7_9->eice_cache->reg_list[EICE_DBG_CTRL];
1039 #ifdef _DEBUG_ARM7_9_
1043 if (arm7_9->pre_debug_entry)
1044 arm7_9->pre_debug_entry(target);
1046 /* program EmbeddedICE Debug Control Register to assert DBGACK and INTDIS
1047 * ensure that DBGRQ is cleared
1049 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGACK, 1, 1);
1050 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGRQ, 1, 0);
1051 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_INTDIS, 1, 1);
1052 embeddedice_store_reg(dbg_ctrl);
1054 arm7_9_clear_halt(target);
1056 if ((retval = jtag_execute_queue()) != ERROR_OK)
1061 if ((retval = arm7_9->examine_debug_reason(target)) != ERROR_OK)
1065 if (target->state != TARGET_HALTED)
1067 LOG_WARNING("target not halted");
1068 return ERROR_TARGET_NOT_HALTED;
1071 /* if the target is in Thumb state, change to ARM state */
1072 if (buf_get_u32(dbg_stat->value, EICE_DBG_STATUS_ITBIT, 1))
1074 LOG_DEBUG("target entered debug from Thumb state");
1075 /* Entered debug from Thumb mode */
1076 armv4_5->core_state = ARMV4_5_STATE_THUMB;
1077 arm7_9->change_to_arm(target, &r0_thumb, &pc_thumb);
1078 LOG_DEBUG("r0_thumb: 0x%8.8x, pc_thumb: 0x%8.8x", r0_thumb, pc_thumb);
1082 LOG_DEBUG("target entered debug from ARM state");
1083 /* Entered debug from ARM mode */
1084 armv4_5->core_state = ARMV4_5_STATE_ARM;
1087 for (i = 0; i < 16; i++)
1088 context_p[i] = &context[i];
1089 /* save core registers (r0 - r15 of current core mode) */
1090 arm7_9->read_core_regs(target, 0xffff, context_p);
1092 arm7_9->read_xpsr(target, &cpsr, 0);
1094 if ((retval = jtag_execute_queue()) != ERROR_OK)
1097 /* if the core has been executing in Thumb state, set the T bit */
1098 if (armv4_5->core_state == ARMV4_5_STATE_THUMB)
1101 buf_set_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 32, cpsr);
1102 armv4_5->core_cache->reg_list[ARMV4_5_CPSR].dirty = 0;
1103 armv4_5->core_cache->reg_list[ARMV4_5_CPSR].valid = 1;
1105 armv4_5->core_mode = cpsr & 0x1f;
1107 if (armv4_5_mode_to_number(armv4_5->core_mode) == -1)
1109 target->state = TARGET_UNKNOWN;
1110 LOG_ERROR("cpsr contains invalid mode value - communication failure");
1111 return ERROR_TARGET_FAILURE;
1114 LOG_DEBUG("target entered debug state in %s mode", armv4_5_mode_strings[armv4_5_mode_to_number(armv4_5->core_mode)]);
1116 if (armv4_5->core_state == ARMV4_5_STATE_THUMB)
1118 LOG_DEBUG("thumb state, applying fixups");
1119 context[0] = r0_thumb;
1120 context[15] = pc_thumb;
1121 } else if (armv4_5->core_state == ARMV4_5_STATE_ARM)
1123 /* adjust value stored by STM */
1124 context[15] -= 3 * 4;
1127 if ((target->debug_reason == DBG_REASON_BREAKPOINT)
1128 || (target->debug_reason == DBG_REASON_SINGLESTEP)
1129 || (target->debug_reason == DBG_REASON_WATCHPOINT)
1130 || (target->debug_reason == DBG_REASON_WPTANDBKPT)
1131 || ((target->debug_reason == DBG_REASON_DBGRQ) && (arm7_9->use_dbgrq == 0)))
1132 context[15] -= 3 * ((armv4_5->core_state == ARMV4_5_STATE_ARM) ? 4 : 2);
1133 else if (target->debug_reason == DBG_REASON_DBGRQ)
1134 context[15] -= arm7_9->dbgreq_adjust_pc * ((armv4_5->core_state == ARMV4_5_STATE_ARM) ? 4 : 2);
1137 LOG_ERROR("unknown debug reason: %i", target->debug_reason);
1140 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
1143 for (i=0; i<=15; i++)
1145 LOG_DEBUG("r%i: 0x%8.8x", i, context[i]);
1146 buf_set_u32(ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).value, 0, 32, context[i]);
1147 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).dirty = 0;
1148 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).valid = 1;
1151 LOG_DEBUG("entered debug state at PC 0x%x", context[15]);
1153 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
1156 /* exceptions other than USR & SYS have a saved program status register */
1157 if ((armv4_5->core_mode != ARMV4_5_MODE_USR) && (armv4_5->core_mode != ARMV4_5_MODE_SYS))
1160 arm7_9->read_xpsr(target, &spsr, 1);
1161 jtag_execute_queue();
1162 buf_set_u32(ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 16).value, 0, 32, spsr);
1163 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 16).dirty = 0;
1164 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 16).valid = 1;
1167 /* r0 and r15 (pc) have to be restored later */
1168 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 0).dirty = ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 0).valid;
1169 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 15).dirty = ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, 15).valid;
1171 if ((retval = jtag_execute_queue()) != ERROR_OK)
1174 if (arm7_9->post_debug_entry)
1175 arm7_9->post_debug_entry(target);
1180 int arm7_9_full_context(target_t *target)
1184 armv4_5_common_t *armv4_5 = target->arch_info;
1185 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1189 if (target->state != TARGET_HALTED)
1191 LOG_WARNING("target not halted");
1192 return ERROR_TARGET_NOT_HALTED;
1195 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
1198 /* iterate through processor modes (User, FIQ, IRQ, SVC, ABT, UND)
1199 * SYS shares registers with User, so we don't touch SYS
1201 for(i = 0; i < 6; i++)
1208 /* check if there are invalid registers in the current mode
1210 for (j = 0; j <= 16; j++)
1212 if (ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).valid == 0)
1220 /* change processor mode (and mask T bit) */
1221 tmp_cpsr = buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & 0xE0;
1222 tmp_cpsr |= armv4_5_number_to_mode(i);
1224 arm7_9->write_xpsr_im8(target, tmp_cpsr & 0xff, 0, 0);
1226 for (j = 0; j < 15; j++)
1228 if (ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).valid == 0)
1230 reg_p[j] = (u32*)ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).value;
1232 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).valid = 1;
1233 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j).dirty = 0;
1237 /* if only the PSR is invalid, mask is all zeroes */
1239 arm7_9->read_core_regs(target, mask, reg_p);
1241 /* check if the PSR has to be read */
1242 if (ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16).valid == 0)
1244 arm7_9->read_xpsr(target, (u32*)ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16).value, 1);
1245 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16).valid = 1;
1246 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16).dirty = 0;
1251 /* restore processor mode (mask T bit) */
1252 arm7_9->write_xpsr_im8(target, buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & ~0x20, 0, 0);
1254 if ((retval = jtag_execute_queue()) != ERROR_OK)
1261 int arm7_9_restore_context(target_t *target)
1263 armv4_5_common_t *armv4_5 = target->arch_info;
1264 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1266 armv4_5_core_reg_t *reg_arch_info;
1267 enum armv4_5_mode current_mode = armv4_5->core_mode;
1274 if (target->state != TARGET_HALTED)
1276 LOG_WARNING("target not halted");
1277 return ERROR_TARGET_NOT_HALTED;
1280 if (arm7_9->pre_restore_context)
1281 arm7_9->pre_restore_context(target);
1283 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
1286 /* iterate through processor modes (User, FIQ, IRQ, SVC, ABT, UND)
1287 * SYS shares registers with User, so we don't touch SYS
1289 for (i = 0; i < 6; i++)
1291 LOG_DEBUG("examining %s mode", armv4_5_mode_strings[i]);
1294 /* check if there are dirty registers in the current mode
1296 for (j = 0; j <= 16; j++)
1298 reg = &ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j);
1299 reg_arch_info = reg->arch_info;
1300 if (reg->dirty == 1)
1302 if (reg->valid == 1)
1305 LOG_DEBUG("examining dirty reg: %s", reg->name);
1306 if ((reg_arch_info->mode != ARMV4_5_MODE_ANY)
1307 && (reg_arch_info->mode != current_mode)
1308 && !((reg_arch_info->mode == ARMV4_5_MODE_USR) && (armv4_5->core_mode == ARMV4_5_MODE_SYS))
1309 && !((reg_arch_info->mode == ARMV4_5_MODE_SYS) && (armv4_5->core_mode == ARMV4_5_MODE_USR)))
1312 LOG_DEBUG("require mode change");
1317 LOG_ERROR("BUG: dirty register '%s', but no valid data", reg->name);
1332 /* change processor mode (mask T bit) */
1333 tmp_cpsr = buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & 0xE0;
1334 tmp_cpsr |= armv4_5_number_to_mode(i);
1336 arm7_9->write_xpsr_im8(target, tmp_cpsr & 0xff, 0, 0);
1337 current_mode = armv4_5_number_to_mode(i);
1340 for (j = 0; j <= 14; j++)
1342 reg = &ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), j);
1343 reg_arch_info = reg->arch_info;
1346 if (reg->dirty == 1)
1348 regs[j] = buf_get_u32(reg->value, 0, 32);
1353 LOG_DEBUG("writing register %i of mode %s with value 0x%8.8x", j, armv4_5_mode_strings[i], regs[j]);
1359 arm7_9->write_core_regs(target, mask, regs);
1362 reg = &ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5_number_to_mode(i), 16);
1363 reg_arch_info = reg->arch_info;
1364 if ((reg->dirty) && (reg_arch_info->mode != ARMV4_5_MODE_ANY))
1366 LOG_DEBUG("writing SPSR of mode %i with value 0x%8.8x", i, buf_get_u32(reg->value, 0, 32));
1367 arm7_9->write_xpsr(target, buf_get_u32(reg->value, 0, 32), 1);
1372 if ((armv4_5->core_cache->reg_list[ARMV4_5_CPSR].dirty == 0) && (armv4_5->core_mode != current_mode))
1374 /* restore processor mode (mask T bit) */
1377 tmp_cpsr = buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & 0xE0;
1378 tmp_cpsr |= armv4_5_number_to_mode(i);
1380 LOG_DEBUG("writing lower 8 bit of cpsr with value 0x%2.2x", tmp_cpsr);
1381 arm7_9->write_xpsr_im8(target, tmp_cpsr & 0xff, 0, 0);
1383 else if (armv4_5->core_cache->reg_list[ARMV4_5_CPSR].dirty == 1)
1385 /* CPSR has been changed, full restore necessary (mask T bit) */
1386 LOG_DEBUG("writing cpsr with value 0x%8.8x", buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 32));
1387 arm7_9->write_xpsr(target, buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 32) & ~0x20, 0);
1388 armv4_5->core_cache->reg_list[ARMV4_5_CPSR].dirty = 0;
1389 armv4_5->core_cache->reg_list[ARMV4_5_CPSR].valid = 1;
1393 LOG_DEBUG("writing PC with value 0x%8.8x", buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1394 arm7_9->write_pc(target, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1395 armv4_5->core_cache->reg_list[15].dirty = 0;
1397 if (arm7_9->post_restore_context)
1398 arm7_9->post_restore_context(target);
1403 int arm7_9_restart_core(struct target_s *target)
1405 armv4_5_common_t *armv4_5 = target->arch_info;
1406 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1407 arm_jtag_t *jtag_info = &arm7_9->jtag_info;
1409 /* set RESTART instruction */
1410 jtag_add_end_state(TAP_RTI);
1411 if (arm7_9->need_bypass_before_restart) {
1412 arm7_9->need_bypass_before_restart = 0;
1413 arm_jtag_set_instr(jtag_info, 0xf, NULL);
1415 arm_jtag_set_instr(jtag_info, 0x4, NULL);
1417 jtag_add_runtest(1, TAP_RTI);
1418 return jtag_execute_queue();
1421 void arm7_9_enable_watchpoints(struct target_s *target)
1423 watchpoint_t *watchpoint = target->watchpoints;
1427 if (watchpoint->set == 0)
1428 arm7_9_set_watchpoint(target, watchpoint);
1429 watchpoint = watchpoint->next;
1433 void arm7_9_enable_breakpoints(struct target_s *target)
1435 breakpoint_t *breakpoint = target->breakpoints;
1437 /* set any pending breakpoints */
1440 if (breakpoint->set == 0)
1441 arm7_9_set_breakpoint(target, breakpoint);
1442 breakpoint = breakpoint->next;
1446 void arm7_9_disable_bkpts_and_wpts(struct target_s *target)
1448 breakpoint_t *breakpoint = target->breakpoints;
1449 watchpoint_t *watchpoint = target->watchpoints;
1451 /* set any pending breakpoints */
1454 if (breakpoint->set != 0)
1455 arm7_9_unset_breakpoint(target, breakpoint);
1456 breakpoint = breakpoint->next;
1461 if (watchpoint->set != 0)
1462 arm7_9_unset_watchpoint(target, watchpoint);
1463 watchpoint = watchpoint->next;
1467 int arm7_9_resume(struct target_s *target, int current, u32 address, int handle_breakpoints, int debug_execution)
1469 armv4_5_common_t *armv4_5 = target->arch_info;
1470 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1471 breakpoint_t *breakpoint = target->breakpoints;
1472 reg_t *dbg_ctrl = &arm7_9->eice_cache->reg_list[EICE_DBG_CTRL];
1477 if (target->state != TARGET_HALTED)
1479 LOG_WARNING("target not halted");
1480 return ERROR_TARGET_NOT_HALTED;
1483 if (!debug_execution)
1485 target_free_all_working_areas(target);
1488 /* current = 1: continue on current pc, otherwise continue at <address> */
1490 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, address);
1492 /* the front-end may request us not to handle breakpoints */
1493 if (handle_breakpoints)
1495 if ((breakpoint = breakpoint_find(target, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32))))
1497 LOG_DEBUG("unset breakpoint at 0x%8.8x", breakpoint->address);
1498 arm7_9_unset_breakpoint(target, breakpoint);
1500 LOG_DEBUG("enable single-step");
1501 arm7_9->enable_single_step(target);
1503 target->debug_reason = DBG_REASON_SINGLESTEP;
1505 arm7_9_restore_context(target);
1507 if (armv4_5->core_state == ARMV4_5_STATE_ARM)
1508 arm7_9->branch_resume(target);
1509 else if (armv4_5->core_state == ARMV4_5_STATE_THUMB)
1511 arm7_9->branch_resume_thumb(target);
1515 LOG_ERROR("unhandled core state");
1519 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGACK, 1, 0);
1520 embeddedice_write_reg(dbg_ctrl, buf_get_u32(dbg_ctrl->value, 0, dbg_ctrl->size));
1521 err = arm7_9_execute_sys_speed(target);
1523 LOG_DEBUG("disable single-step");
1524 arm7_9->disable_single_step(target);
1526 if (err != ERROR_OK)
1528 arm7_9_set_breakpoint(target, breakpoint);
1529 target->state = TARGET_UNKNOWN;
1533 arm7_9_debug_entry(target);
1534 LOG_DEBUG("new PC after step: 0x%8.8x", buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1536 LOG_DEBUG("set breakpoint at 0x%8.8x", breakpoint->address);
1537 arm7_9_set_breakpoint(target, breakpoint);
1541 /* enable any pending breakpoints and watchpoints */
1542 arm7_9_enable_breakpoints(target);
1543 arm7_9_enable_watchpoints(target);
1545 arm7_9_restore_context(target);
1547 if (armv4_5->core_state == ARMV4_5_STATE_ARM)
1549 arm7_9->branch_resume(target);
1551 else if (armv4_5->core_state == ARMV4_5_STATE_THUMB)
1553 arm7_9->branch_resume_thumb(target);
1557 LOG_ERROR("unhandled core state");
1561 /* deassert DBGACK and INTDIS */
1562 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGACK, 1, 0);
1563 /* INTDIS only when we really resume, not during debug execution */
1564 if (!debug_execution)
1565 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_INTDIS, 1, 0);
1566 embeddedice_write_reg(dbg_ctrl, buf_get_u32(dbg_ctrl->value, 0, dbg_ctrl->size));
1568 arm7_9_restart_core(target);
1570 target->debug_reason = DBG_REASON_NOTHALTED;
1572 if (!debug_execution)
1574 /* registers are now invalid */
1575 armv4_5_invalidate_core_regs(target);
1576 target->state = TARGET_RUNNING;
1577 target_call_event_callbacks(target, TARGET_EVENT_RESUMED);
1581 target->state = TARGET_DEBUG_RUNNING;
1582 target_call_event_callbacks(target, TARGET_EVENT_DEBUG_RESUMED);
1585 LOG_DEBUG("target resumed");
1590 void arm7_9_enable_eice_step(target_t *target)
1592 armv4_5_common_t *armv4_5 = target->arch_info;
1593 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1595 /* setup an inverse breakpoint on the current PC
1596 * - comparator 1 matches the current address
1597 * - rangeout from comparator 1 is connected to comparator 0 rangein
1598 * - comparator 0 matches any address, as long as rangein is low */
1599 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_MASK], 0xffffffff);
1600 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_MASK], 0xffffffff);
1601 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE], EICE_W_CTRL_ENABLE);
1602 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_MASK], ~(EICE_W_CTRL_RANGE|EICE_W_CTRL_nOPC) & 0xff);
1603 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_VALUE], buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32));
1604 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_MASK], 0);
1605 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W1_DATA_MASK], 0xffffffff);
1606 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_VALUE], 0x0);
1607 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_MASK], ~EICE_W_CTRL_nOPC & 0xff);
1610 void arm7_9_disable_eice_step(target_t *target)
1612 armv4_5_common_t *armv4_5 = target->arch_info;
1613 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1615 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_ADDR_MASK]);
1616 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_DATA_MASK]);
1617 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_VALUE]);
1618 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W0_CONTROL_MASK]);
1619 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_VALUE]);
1620 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W1_ADDR_MASK]);
1621 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W1_DATA_MASK]);
1622 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_MASK]);
1623 embeddedice_store_reg(&arm7_9->eice_cache->reg_list[EICE_W1_CONTROL_VALUE]);
1626 int arm7_9_step(struct target_s *target, int current, u32 address, int handle_breakpoints)
1628 armv4_5_common_t *armv4_5 = target->arch_info;
1629 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1630 breakpoint_t *breakpoint = NULL;
1633 if (target->state != TARGET_HALTED)
1635 LOG_WARNING("target not halted");
1636 return ERROR_TARGET_NOT_HALTED;
1639 /* current = 1: continue on current pc, otherwise continue at <address> */
1641 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, address);
1643 /* the front-end may request us not to handle breakpoints */
1644 if (handle_breakpoints)
1645 if ((breakpoint = breakpoint_find(target, buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32))))
1646 arm7_9_unset_breakpoint(target, breakpoint);
1648 target->debug_reason = DBG_REASON_SINGLESTEP;
1650 arm7_9_restore_context(target);
1652 arm7_9->enable_single_step(target);
1654 if (armv4_5->core_state == ARMV4_5_STATE_ARM)
1656 arm7_9->branch_resume(target);
1658 else if (armv4_5->core_state == ARMV4_5_STATE_THUMB)
1660 arm7_9->branch_resume_thumb(target);
1664 LOG_ERROR("unhandled core state");
1668 target_call_event_callbacks(target, TARGET_EVENT_RESUMED);
1670 err = arm7_9_execute_sys_speed(target);
1671 arm7_9->disable_single_step(target);
1673 /* registers are now invalid */
1674 armv4_5_invalidate_core_regs(target);
1676 if (err != ERROR_OK)
1678 target->state = TARGET_UNKNOWN;
1680 arm7_9_debug_entry(target);
1681 target_call_event_callbacks(target, TARGET_EVENT_HALTED);
1682 LOG_DEBUG("target stepped");
1686 arm7_9_set_breakpoint(target, breakpoint);
1692 int arm7_9_read_core_reg(struct target_s *target, int num, enum armv4_5_mode mode)
1697 armv4_5_common_t *armv4_5 = target->arch_info;
1698 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1700 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
1703 enum armv4_5_mode reg_mode = ((armv4_5_core_reg_t*)ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).arch_info)->mode;
1705 if ((num < 0) || (num > 16))
1706 return ERROR_INVALID_ARGUMENTS;
1708 if ((mode != ARMV4_5_MODE_ANY)
1709 && (mode != armv4_5->core_mode)
1710 && (reg_mode != ARMV4_5_MODE_ANY))
1714 /* change processor mode (mask T bit) */
1715 tmp_cpsr = buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & 0xE0;
1718 arm7_9->write_xpsr_im8(target, tmp_cpsr & 0xff, 0, 0);
1721 if ((num >= 0) && (num <= 15))
1723 /* read a normal core register */
1724 reg_p[num] = &value;
1726 arm7_9->read_core_regs(target, 1 << num, reg_p);
1730 /* read a program status register
1731 * if the register mode is MODE_ANY, we read the cpsr, otherwise a spsr
1733 armv4_5_core_reg_t *arch_info = ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).arch_info;
1734 int spsr = (arch_info->mode == ARMV4_5_MODE_ANY) ? 0 : 1;
1736 arm7_9->read_xpsr(target, &value, spsr);
1739 if ((retval = jtag_execute_queue()) != ERROR_OK)
1744 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).valid = 1;
1745 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).dirty = 0;
1746 buf_set_u32(ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).value, 0, 32, value);
1748 if ((mode != ARMV4_5_MODE_ANY)
1749 && (mode != armv4_5->core_mode)
1750 && (reg_mode != ARMV4_5_MODE_ANY)) {
1751 /* restore processor mode (mask T bit) */
1752 arm7_9->write_xpsr_im8(target, buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & ~0x20, 0, 0);
1759 int arm7_9_write_core_reg(struct target_s *target, int num, enum armv4_5_mode mode, u32 value)
1762 armv4_5_common_t *armv4_5 = target->arch_info;
1763 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1765 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
1768 enum armv4_5_mode reg_mode = ((armv4_5_core_reg_t*)ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).arch_info)->mode;
1770 if ((num < 0) || (num > 16))
1771 return ERROR_INVALID_ARGUMENTS;
1773 if ((mode != ARMV4_5_MODE_ANY)
1774 && (mode != armv4_5->core_mode)
1775 && (reg_mode != ARMV4_5_MODE_ANY)) {
1778 /* change processor mode (mask T bit) */
1779 tmp_cpsr = buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & 0xE0;
1782 arm7_9->write_xpsr_im8(target, tmp_cpsr & 0xff, 0, 0);
1785 if ((num >= 0) && (num <= 15))
1787 /* write a normal core register */
1790 arm7_9->write_core_regs(target, 1 << num, reg);
1794 /* write a program status register
1795 * if the register mode is MODE_ANY, we write the cpsr, otherwise a spsr
1797 armv4_5_core_reg_t *arch_info = ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).arch_info;
1798 int spsr = (arch_info->mode == ARMV4_5_MODE_ANY) ? 0 : 1;
1800 /* if we're writing the CPSR, mask the T bit */
1804 arm7_9->write_xpsr(target, value, spsr);
1807 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).valid = 1;
1808 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, mode, num).dirty = 0;
1810 if ((mode != ARMV4_5_MODE_ANY)
1811 && (mode != armv4_5->core_mode)
1812 && (reg_mode != ARMV4_5_MODE_ANY)) {
1813 /* restore processor mode (mask T bit) */
1814 arm7_9->write_xpsr_im8(target, buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & ~0x20, 0, 0);
1817 return jtag_execute_queue();
1820 int arm7_9_read_memory(struct target_s *target, u32 address, u32 size, u32 count, u8 *buffer)
1822 armv4_5_common_t *armv4_5 = target->arch_info;
1823 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1826 int num_accesses = 0;
1827 int thisrun_accesses;
1833 LOG_DEBUG("address: 0x%8.8x, size: 0x%8.8x, count: 0x%8.8x", address, size, count);
1835 if (target->state != TARGET_HALTED)
1837 LOG_WARNING("target not halted");
1838 return ERROR_TARGET_NOT_HALTED;
1841 /* sanitize arguments */
1842 if (((size != 4) && (size != 2) && (size != 1)) || (count == 0) || !(buffer))
1843 return ERROR_INVALID_ARGUMENTS;
1845 if (((size == 4) && (address & 0x3u)) || ((size == 2) && (address & 0x1u)))
1846 return ERROR_TARGET_UNALIGNED_ACCESS;
1848 /* load the base register with the address of the first word */
1850 arm7_9->write_core_regs(target, 0x1, reg);
1855 while (num_accesses < count)
1858 thisrun_accesses = ((count - num_accesses) >= 14) ? 14 : (count - num_accesses);
1859 reg_list = (0xffff >> (15 - thisrun_accesses)) & 0xfffe;
1861 if (last_reg <= thisrun_accesses)
1862 last_reg = thisrun_accesses;
1864 arm7_9->load_word_regs(target, reg_list);
1866 /* fast memory reads are only safe when the target is running
1867 * from a sufficiently high clock (32 kHz is usually too slow)
1869 if (arm7_9->fast_memory_access)
1870 arm7_9_execute_fast_sys_speed(target);
1872 arm7_9_execute_sys_speed(target);
1874 arm7_9->read_core_regs_target_buffer(target, reg_list, buffer, 4);
1876 /* advance buffer, count number of accesses */
1877 buffer += thisrun_accesses * 4;
1878 num_accesses += thisrun_accesses;
1882 while (num_accesses < count)
1885 thisrun_accesses = ((count - num_accesses) >= 14) ? 14 : (count - num_accesses);
1886 reg_list = (0xffff >> (15 - thisrun_accesses)) & 0xfffe;
1888 for (i = 1; i <= thisrun_accesses; i++)
1892 arm7_9->load_hword_reg(target, i);
1893 /* fast memory reads are only safe when the target is running
1894 * from a sufficiently high clock (32 kHz is usually too slow)
1896 if (arm7_9->fast_memory_access)
1897 arm7_9_execute_fast_sys_speed(target);
1899 arm7_9_execute_sys_speed(target);
1902 arm7_9->read_core_regs_target_buffer(target, reg_list, buffer, 2);
1904 /* advance buffer, count number of accesses */
1905 buffer += thisrun_accesses * 2;
1906 num_accesses += thisrun_accesses;
1910 while (num_accesses < count)
1913 thisrun_accesses = ((count - num_accesses) >= 14) ? 14 : (count - num_accesses);
1914 reg_list = (0xffff >> (15 - thisrun_accesses)) & 0xfffe;
1916 for (i = 1; i <= thisrun_accesses; i++)
1920 arm7_9->load_byte_reg(target, i);
1921 /* fast memory reads are only safe when the target is running
1922 * from a sufficiently high clock (32 kHz is usually too slow)
1924 if (arm7_9->fast_memory_access)
1925 arm7_9_execute_fast_sys_speed(target);
1927 arm7_9_execute_sys_speed(target);
1930 arm7_9->read_core_regs_target_buffer(target, reg_list, buffer, 1);
1932 /* advance buffer, count number of accesses */
1933 buffer += thisrun_accesses * 1;
1934 num_accesses += thisrun_accesses;
1938 LOG_ERROR("BUG: we shouldn't get here");
1943 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
1946 for (i=0; i<=last_reg; i++)
1947 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).dirty = ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).valid;
1949 arm7_9->read_xpsr(target, &cpsr, 0);
1950 if ((retval = jtag_execute_queue()) != ERROR_OK)
1952 LOG_ERROR("JTAG error while reading cpsr");
1953 return ERROR_TARGET_DATA_ABORT;
1956 if (((cpsr & 0x1f) == ARMV4_5_MODE_ABT) && (armv4_5->core_mode != ARMV4_5_MODE_ABT))
1958 LOG_WARNING("memory read caused data abort (address: 0x%8.8x, size: 0x%x, count: 0x%x)", address, size, count);
1960 arm7_9->write_xpsr_im8(target, buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & ~0x20, 0, 0);
1962 return ERROR_TARGET_DATA_ABORT;
1968 int arm7_9_write_memory(struct target_s *target, u32 address, u32 size, u32 count, u8 *buffer)
1970 armv4_5_common_t *armv4_5 = target->arch_info;
1971 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
1972 reg_t *dbg_ctrl = &arm7_9->eice_cache->reg_list[EICE_DBG_CTRL];
1975 int num_accesses = 0;
1976 int thisrun_accesses;
1982 #ifdef _DEBUG_ARM7_9_
1983 LOG_DEBUG("address: 0x%8.8x, size: 0x%8.8x, count: 0x%8.8x", address, size, count);
1986 if (target->state != TARGET_HALTED)
1988 LOG_WARNING("target not halted");
1989 return ERROR_TARGET_NOT_HALTED;
1992 /* sanitize arguments */
1993 if (((size != 4) && (size != 2) && (size != 1)) || (count == 0) || !(buffer))
1994 return ERROR_INVALID_ARGUMENTS;
1996 if (((size == 4) && (address & 0x3u)) || ((size == 2) && (address & 0x1u)))
1997 return ERROR_TARGET_UNALIGNED_ACCESS;
1999 /* load the base register with the address of the first word */
2001 arm7_9->write_core_regs(target, 0x1, reg);
2003 /* Clear DBGACK, to make sure memory fetches work as expected */
2004 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGACK, 1, 0);
2005 embeddedice_store_reg(dbg_ctrl);
2010 while (num_accesses < count)
2013 thisrun_accesses = ((count - num_accesses) >= 14) ? 14 : (count - num_accesses);
2014 reg_list = (0xffff >> (15 - thisrun_accesses)) & 0xfffe;
2016 for (i = 1; i <= thisrun_accesses; i++)
2020 reg[i] = target_buffer_get_u32(target, buffer);
2024 arm7_9->write_core_regs(target, reg_list, reg);
2026 arm7_9->store_word_regs(target, reg_list);
2028 /* fast memory writes are only safe when the target is running
2029 * from a sufficiently high clock (32 kHz is usually too slow)
2031 if (arm7_9->fast_memory_access)
2032 arm7_9_execute_fast_sys_speed(target);
2034 arm7_9_execute_sys_speed(target);
2036 num_accesses += thisrun_accesses;
2040 while (num_accesses < count)
2043 thisrun_accesses = ((count - num_accesses) >= 14) ? 14 : (count - num_accesses);
2044 reg_list = (0xffff >> (15 - thisrun_accesses)) & 0xfffe;
2046 for (i = 1; i <= thisrun_accesses; i++)
2050 reg[i] = target_buffer_get_u16(target, buffer) & 0xffff;
2054 arm7_9->write_core_regs(target, reg_list, reg);
2056 for (i = 1; i <= thisrun_accesses; i++)
2058 arm7_9->store_hword_reg(target, i);
2060 /* fast memory writes are only safe when the target is running
2061 * from a sufficiently high clock (32 kHz is usually too slow)
2063 if (arm7_9->fast_memory_access)
2064 arm7_9_execute_fast_sys_speed(target);
2066 arm7_9_execute_sys_speed(target);
2069 num_accesses += thisrun_accesses;
2073 while (num_accesses < count)
2076 thisrun_accesses = ((count - num_accesses) >= 14) ? 14 : (count - num_accesses);
2077 reg_list = (0xffff >> (15 - thisrun_accesses)) & 0xfffe;
2079 for (i = 1; i <= thisrun_accesses; i++)
2083 reg[i] = *buffer++ & 0xff;
2086 arm7_9->write_core_regs(target, reg_list, reg);
2088 for (i = 1; i <= thisrun_accesses; i++)
2090 arm7_9->store_byte_reg(target, i);
2091 /* fast memory writes are only safe when the target is running
2092 * from a sufficiently high clock (32 kHz is usually too slow)
2094 if (arm7_9->fast_memory_access)
2095 arm7_9_execute_fast_sys_speed(target);
2097 arm7_9_execute_sys_speed(target);
2100 num_accesses += thisrun_accesses;
2104 LOG_ERROR("BUG: we shouldn't get here");
2110 buf_set_u32(dbg_ctrl->value, EICE_DBG_CONTROL_DBGACK, 1, 1);
2111 embeddedice_store_reg(dbg_ctrl);
2113 if (armv4_5_mode_to_number(armv4_5->core_mode)==-1)
2116 for (i=0; i<=last_reg; i++)
2117 ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).dirty = ARMV4_5_CORE_REG_MODE(armv4_5->core_cache, armv4_5->core_mode, i).valid;
2119 arm7_9->read_xpsr(target, &cpsr, 0);
2120 if ((retval = jtag_execute_queue()) != ERROR_OK)
2122 LOG_ERROR("JTAG error while reading cpsr");
2123 return ERROR_TARGET_DATA_ABORT;
2126 if (((cpsr & 0x1f) == ARMV4_5_MODE_ABT) && (armv4_5->core_mode != ARMV4_5_MODE_ABT))
2128 LOG_WARNING("memory write caused data abort (address: 0x%8.8x, size: 0x%x, count: 0x%x)", address, size, count);
2130 arm7_9->write_xpsr_im8(target, buf_get_u32(armv4_5->core_cache->reg_list[ARMV4_5_CPSR].value, 0, 8) & ~0x20, 0, 0);
2132 return ERROR_TARGET_DATA_ABORT;
2138 static const u32 dcc_code[] =
2140 /* MRC TST BNE MRC STR B */
2141 0xee101e10, 0xe3110001, 0x0afffffc, 0xee111e10, 0xe4801004, 0xeafffff9
2144 int arm7_9_bulk_write_memory(target_t *target, u32 address, u32 count, u8 *buffer)
2146 armv4_5_common_t *armv4_5 = target->arch_info;
2147 arm7_9_common_t *arm7_9 = armv4_5->arch_info;
2148 enum armv4_5_state core_state = armv4_5->core_state;
2149 u32 r0 = buf_get_u32(armv4_5->core_cache->reg_list[0].value, 0, 32);
2150 u32 r1 = buf_get_u32(armv4_5->core_cache->reg_list[1].value, 0, 32);
2151 u32 pc = buf_get_u32(armv4_5->core_cache->reg_list[15].value, 0, 32);
2154 if (!arm7_9->dcc_downloads)
2155 return target->type->write_memory(target, address, 4, count, buffer);
2157 /* regrab previously allocated working_area, or allocate a new one */
2158 if (!arm7_9->dcc_working_area)
2160 u8 dcc_code_buf[6 * 4];
2162 /* make sure we have a working area */
2163 if (target_alloc_working_area(target, 24, &arm7_9->dcc_working_area) != ERROR_OK)
2165 LOG_INFO("no working area available, falling back to memory writes");
2166 return target->type->write_memory(target, address, 4, count, buffer);
2169 /* copy target instructions to target endianness */
2170 for (i = 0; i < 6; i++)
2172 target_buffer_set_u32(target, dcc_code_buf + i*4, dcc_code[i]);
2175 /* write DCC code to working area */
2176 target->type->write_memory(target, arm7_9->dcc_working_area->address, 4, 6, dcc_code_buf);
2179 buf_set_u32(armv4_5->core_cache->reg_list[0].value, 0, 32, address);
2180 armv4_5->core_cache->reg_list[0].valid = 1;
2181 armv4_5->core_cache->reg_list[0].dirty = 1;
2182 armv4_5->core_state = ARMV4_5_STATE_ARM;
2184 arm7_9_resume(target, 0, arm7_9->dcc_working_area->address, 1, 1);
2186 int little=target->endianness==TARGET_LITTLE_ENDIAN;
2189 /* Handle first & last using standard embeddedice_write_reg and the middle ones w/the
2190 core function repeated.
2192 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_COMMS_DATA], fast_target_buffer_get_u32(buffer, little));
2195 embeddedice_reg_t *ice_reg = arm7_9->eice_cache->reg_list[EICE_COMMS_DATA].arch_info;
2196 u8 reg_addr = ice_reg->addr & 0x1f;
2197 int chain_pos = ice_reg->jtag_info->chain_pos;
2198 /* we want the compiler to duplicate the code, which it does not
2203 for (i = 1; i < count - 1; i++)
2205 embeddedice_write_reg_inner(chain_pos, reg_addr, fast_target_buffer_get_u32(buffer, little));
2210 for (i = 1; i < count - 1; i++)
2212 embeddedice_write_reg_inner(chain_pos, reg_addr, fast_target_buffer_get_u32(buffer, little));
2216 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_COMMS_DATA], fast_target_buffer_get_u32(buffer, little));
2219 for (i = 0; i < count; i++)
2221 embeddedice_write_reg(&arm7_9->eice_cache->reg_list[EICE_COMMS_DATA], fast_target_buffer_get_u32(buffer, little));
2226 target_halt(target);
2228 for (i=0; i<100; i++)
2230 target_poll(target);
2231 if (target->state == TARGET_HALTED)
2233 usleep(1000); /* sleep 1ms */
2237 LOG_ERROR("bulk write timed out, target not halted");
2238 return ERROR_TARGET_TIMEOUT;
2241 /* restore target state */
2242 buf_set_u32(armv4_5->core_cache->reg_list[0].value, 0, 32, r0);
2243 armv4_5->core_cache->reg_list[0].valid = 1;
2244 armv4_5->core_cache->reg_list[0].dirty = 1;
2245 buf_set_u32(armv4_5->core_cache->reg_list[1].value, 0, 32, r1);
2246 armv4_5->core_cache->reg_list[1].valid = 1;
2247 armv4_5->core_cache->reg_list[1].dirty = 1;
2248 buf_set_u32(armv4_5->core_cache->reg_list[15].value, 0, 32, pc);
2249 armv4_5->core_cache->reg_list[15].valid = 1;
2250 armv4_5->core_cache->reg_list[15].dirty = 1;
2251 armv4_5->core_state = core_state;
2256 int arm7_9_checksum_memory(struct target_s *target, u32 address, u32 count, u32* checksum)
2258 working_area_t *crc_algorithm;
2259 armv4_5_algorithm_t armv4_5_info;
2260 reg_param_t reg_params[2];
2263 u32 arm7_9_crc_code[] = {
2264 0xE1A02000, /* mov r2, r0 */
2265 0xE3E00000, /* mov r0, #0xffffffff */
2266 0xE1A03001, /* mov r3, r1 */
2267 0xE3A04000, /* mov r4, #0 */
2268 0xEA00000B, /* b ncomp */
2270 0xE7D21004, /* ldrb r1, [r2, r4] */
2271 0xE59F7030, /* ldr r7, CRC32XOR */
2272 0xE0200C01, /* eor r0, r0, r1, asl 24 */
2273 0xE3A05000, /* mov r5, #0 */
2275 0xE3500000, /* cmp r0, #0 */
2276 0xE1A06080, /* mov r6, r0, asl #1 */
2277 0xE2855001, /* add r5, r5, #1 */
2278 0xE1A00006, /* mov r0, r6 */
2279 0xB0260007, /* eorlt r0, r6, r7 */
2280 0xE3550008, /* cmp r5, #8 */
2281 0x1AFFFFF8, /* bne loop */
2282 0xE2844001, /* add r4, r4, #1 */
2284 0xE1540003, /* cmp r4, r3 */
2285 0x1AFFFFF1, /* bne nbyte */
2287 0xEAFFFFFE, /* b end */
2288 0x04C11DB7 /* CRC32XOR: .word 0x04C11DB7 */
2293 if (target_alloc_working_area(target, sizeof(arm7_9_crc_code), &crc_algorithm) != ERROR_OK)
2295 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
2298 /* convert flash writing code into a buffer in target endianness */
2299 for (i = 0; i < (sizeof(arm7_9_crc_code)/sizeof(u32)); i++)
2300 target_write_u32(target, crc_algorithm->address + i*sizeof(u32), arm7_9_crc_code[i]);
2302 armv4_5_info.common_magic = ARMV4_5_COMMON_MAGIC;
2303 armv4_5_info.core_mode = ARMV4_5_MODE_SVC;
2304 armv4_5_info.core_state = ARMV4_5_STATE_ARM;
2306 init_reg_param(®_params[0], "r0", 32, PARAM_IN_OUT);
2307 init_reg_param(®_params[1], "r1", 32, PARAM_OUT);
2309 buf_set_u32(reg_params[0].value, 0, 32, address);
2310 buf_set_u32(reg_params[1].value, 0, 32, count);
2312 if ((retval = target->type->run_algorithm(target, 0, NULL, 2, reg_params,
2313 crc_algorithm->address, crc_algorithm->address + (sizeof(arm7_9_crc_code) - 8), 20000, &armv4_5_info)) != ERROR_OK)
2315 LOG_ERROR("error executing arm7_9 crc algorithm");
2316 destroy_reg_param(®_params[0]);
2317 destroy_reg_param(®_params[1]);
2318 target_free_working_area(target, crc_algorithm);
2322 *checksum = buf_get_u32(reg_params[0].value, 0, 32);
2324 destroy_reg_param(®_params[0]);
2325 destroy_reg_param(®_params[1]);
2327 target_free_working_area(target, crc_algorithm);
2332 int arm7_9_blank_check_memory(struct target_s *target, u32 address, u32 count, u32* blank)
2334 working_area_t *erase_check_algorithm;
2335 reg_param_t reg_params[3];
2336 armv4_5_algorithm_t armv4_5_info;
2340 u32 erase_check_code[] =
2343 0xe4d03001, /* ldrb r3, [r0], #1 */
2344 0xe0022003, /* and r2, r2, r3 */
2345 0xe2511001, /* subs r1, r1, #1 */
2346 0x1afffffb, /* bne loop */
2348 0xeafffffe /* b end */
2351 /* make sure we have a working area */
2352 if (target_alloc_working_area(target, sizeof(erase_check_code), &erase_check_algorithm) != ERROR_OK)
2354 return ERROR_TARGET_RESOURCE_NOT_AVAILABLE;
2357 /* convert flash writing code into a buffer in target endianness */
2358 for (i = 0; i < (sizeof(erase_check_code)/sizeof(u32)); i++)
2359 target_write_u32(target, erase_check_algorithm->address + i*sizeof(u32), erase_check_code[i]);
2361 armv4_5_info.common_magic = ARMV4_5_COMMON_MAGIC;
2362 armv4_5_info.core_mode = ARMV4_5_MODE_SVC;
2363 armv4_5_info.core_state = ARMV4_5_STATE_ARM;
2365 init_reg_param(®_params[0], "r0", 32, PARAM_OUT);
2366 buf_set_u32(reg_params[0].value, 0, 32, address);
2368 init_reg_param(®_params[1], "r1", 32, PARAM_OUT);
2369 buf_set_u32(reg_params[1].value, 0, 32, count);
2371 init_reg_param(®_params[2], "r2", 32, PARAM_IN_OUT);
2372 buf_set_u32(reg_params[2].value, 0, 32, 0xff);
2374 if ((retval = target->type->run_algorithm(target, 0, NULL, 3, reg_params,
2375 erase_check_algorithm->address, erase_check_algorithm->address + (sizeof(erase_check_code) - 4), 10000, &armv4_5_info)) != ERROR_OK)
2377 destroy_reg_param(®_params[0]);
2378 destroy_reg_param(®_params[1]);
2379 destroy_reg_param(®_params[2]);
2380 target_free_working_area(target, erase_check_algorithm);
2384 *blank = buf_get_u32(reg_params[2].value, 0, 32);
2386 destroy_reg_param(®_params[0]);
2387 destroy_reg_param(®_params[1]);
2388 destroy_reg_param(®_params[2]);
2390 target_free_working_area(target, erase_check_algorithm);
2395 int arm7_9_register_commands(struct command_context_s *cmd_ctx)
2397 command_t *arm7_9_cmd;
2399 arm7_9_cmd = register_command(cmd_ctx, NULL, "arm7_9", NULL, COMMAND_ANY, "arm7/9 specific commands");
2401 register_command(cmd_ctx, arm7_9_cmd, "write_xpsr", handle_arm7_9_write_xpsr_command, COMMAND_EXEC, "write program status register <value> <not cpsr|spsr>");
2402 register_command(cmd_ctx, arm7_9_cmd, "write_xpsr_im8", handle_arm7_9_write_xpsr_im8_command, COMMAND_EXEC, "write program status register <8bit immediate> <rotate> <not cpsr|spsr>");
2404 register_command(cmd_ctx, arm7_9_cmd, "write_core_reg", handle_arm7_9_write_core_reg_command, COMMAND_EXEC, "write core register <num> <mode> <value>");
2406 register_command(cmd_ctx, arm7_9_cmd, "sw_bkpts", handle_arm7_9_sw_bkpts_command, COMMAND_EXEC, "support for software breakpoints <enable|disable>");
2407 register_command(cmd_ctx, arm7_9_cmd, "force_hw_bkpts", handle_arm7_9_force_hw_bkpts_command, COMMAND_EXEC, "use hardware breakpoints for all breakpoints (disables sw breakpoint support) <enable|disable>");
2408 register_command(cmd_ctx, arm7_9_cmd, "dbgrq", handle_arm7_9_dbgrq_command,
2409 COMMAND_ANY, "use EmbeddedICE dbgrq instead of breakpoint for target halt requests <enable|disable>");
2410 register_command(cmd_ctx, arm7_9_cmd, "fast_writes", handle_arm7_9_fast_memory_access_command,
2411 COMMAND_ANY, "(deprecated, see: arm7_9 fast_memory_access)");
2412 register_command(cmd_ctx, arm7_9_cmd, "fast_memory_access", handle_arm7_9_fast_memory_access_command,
2413 COMMAND_ANY, "use fast memory accesses instead of slower but potentially unsafe slow accesses <enable|disable>");
2414 register_command(cmd_ctx, arm7_9_cmd, "dcc_downloads", handle_arm7_9_dcc_downloads_command,
2415 COMMAND_ANY, "use DCC downloads for larger memory writes <enable|disable>");
2417 armv4_5_register_commands(cmd_ctx);
2419 etm_register_commands(cmd_ctx);
2424 int handle_arm7_9_write_xpsr_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc)
2429 target_t *target = get_current_target(cmd_ctx);
2430 armv4_5_common_t *armv4_5;
2431 arm7_9_common_t *arm7_9;
2433 if (arm7_9_get_arch_pointers(target, &armv4_5, &arm7_9) != ERROR_OK)
2435 command_print(cmd_ctx, "current target isn't an ARM7/ARM9 target");
2439 if (target->state != TARGET_HALTED)
2441 command_print(cmd_ctx, "can't write registers while running");
2447 command_print(cmd_ctx, "usage: write_xpsr <value> <not cpsr|spsr>");
2451 value = strtoul(args[0], NULL, 0);
2452 spsr = strtol(args[1], NULL, 0);
2454 /* if we're writing the CPSR, mask the T bit */
2458 arm7_9->write_xpsr(target, value, spsr);
2459 if ((retval = jtag_execute_queue()) != ERROR_OK)
2461 LOG_ERROR("JTAG error while writing to xpsr");
2468 int handle_arm7_9_write_xpsr_im8_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc)
2474 target_t *target = get_current_target(cmd_ctx);
2475 armv4_5_common_t *armv4_5;
2476 arm7_9_common_t *arm7_9;
2478 if (arm7_9_get_arch_pointers(target, &armv4_5, &arm7_9) != ERROR_OK)
2480 command_print(cmd_ctx, "current target isn't an ARM7/ARM9 target");
2484 if (target->state != TARGET_HALTED)
2486 command_print(cmd_ctx, "can't write registers while running");
2492 command_print(cmd_ctx, "usage: write_xpsr_im8 <im8> <rotate> <not cpsr|spsr>");
2496 value = strtoul(args[0], NULL, 0);
2497 rotate = strtol(args[1], NULL, 0);
2498 spsr = strtol(args[2], NULL, 0);
2500 arm7_9->write_xpsr_im8(target, value, rotate, spsr);
2501 if ((retval = jtag_execute_queue()) != ERROR_OK)
2503 LOG_ERROR("JTAG error while writing 8-bit immediate to xpsr");
2510 int handle_arm7_9_write_core_reg_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc)
2515 target_t *target = get_current_target(cmd_ctx);
2516 armv4_5_common_t *armv4_5;
2517 arm7_9_common_t *arm7_9;
2519 if (arm7_9_get_arch_pointers(target, &armv4_5, &arm7_9) != ERROR_OK)
2521 command_print(cmd_ctx, "current target isn't an ARM7/ARM9 target");
2525 if (target->state != TARGET_HALTED)
2527 command_print(cmd_ctx, "can't write registers while running");
2533 command_print(cmd_ctx, "usage: write_core_reg <num> <mode> <value>");
2537 num = strtol(args[0], NULL, 0);
2538 mode = strtoul(args[1], NULL, 0);
2539 value = strtoul(args[2], NULL, 0);
2541 arm7_9_write_core_reg(target, num, mode, value);
2546 int handle_arm7_9_sw_bkpts_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc)
2548 target_t *target = get_current_target(cmd_ctx);
2549 armv4_5_common_t *armv4_5;
2550 arm7_9_common_t *arm7_9;
2552 if (target->state != TARGET_HALTED)
2554 LOG_ERROR("target not halted");
2555 return ERROR_TARGET_NOT_HALTED;
2558 if (arm7_9_get_arch_pointers(target, &armv4_5, &arm7_9) != ERROR_OK)
2560 command_print(cmd_ctx, "current target isn't an ARM7/ARM9 target");
2566 command_print(cmd_ctx, "software breakpoints %s", (arm7_9->sw_bkpts_enabled) ? "enabled" : "disabled");
2570 if (strcmp("enable", args[0]) == 0)
2572 if (arm7_9->sw_bkpts_use_wp)
2574 arm7_9_enable_sw_bkpts(target);
2578 arm7_9->sw_bkpts_enabled = 1;
2581 else if (strcmp("disable", args[0]) == 0)
2583 if (arm7_9->sw_bkpts_use_wp)
2585 arm7_9_disable_sw_bkpts(target);
2589 arm7_9->sw_bkpts_enabled = 0;
2594 command_print(cmd_ctx, "usage: arm7_9 sw_bkpts <enable|disable>");
2597 command_print(cmd_ctx, "software breakpoints %s", (arm7_9->sw_bkpts_enabled) ? "enabled" : "disabled");
2602 int handle_arm7_9_force_hw_bkpts_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc)
2604 target_t *target = get_current_target(cmd_ctx);
2605 armv4_5_common_t *armv4_5;
2606 arm7_9_common_t *arm7_9;
2608 if (arm7_9_get_arch_pointers(target, &armv4_5, &arm7_9) != ERROR_OK)
2610 command_print(cmd_ctx, "current target isn't an ARM7/ARM9 target");
2614 if ((argc >= 1) && (strcmp("enable", args[0]) == 0))
2616 arm7_9->force_hw_bkpts = 1;
2617 if (arm7_9->sw_bkpts_use_wp)
2619 arm7_9_disable_sw_bkpts(target);
2622 else if ((argc >= 1) && (strcmp("disable", args[0]) == 0))
2624 arm7_9->force_hw_bkpts = 0;
2628 command_print(cmd_ctx, "usage: arm7_9 force_hw_bkpts <enable|disable>");
2631 command_print(cmd_ctx, "force hardware breakpoints %s", (arm7_9->force_hw_bkpts) ? "enabled" : "disabled");
2636 int handle_arm7_9_dbgrq_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc)
2638 target_t *target = get_current_target(cmd_ctx);
2639 armv4_5_common_t *armv4_5;
2640 arm7_9_common_t *arm7_9;
2642 if (arm7_9_get_arch_pointers(target, &armv4_5, &arm7_9) != ERROR_OK)
2644 command_print(cmd_ctx, "current target isn't an ARM7/ARM9 target");
2650 if (strcmp("enable", args[0]) == 0)
2652 arm7_9->use_dbgrq = 1;
2654 else if (strcmp("disable", args[0]) == 0)
2656 arm7_9->use_dbgrq = 0;
2660 command_print(cmd_ctx, "usage: arm7_9 dbgrq <enable|disable>");
2664 command_print(cmd_ctx, "use of EmbeddedICE dbgrq instead of breakpoint for target halt %s", (arm7_9->use_dbgrq) ? "enabled" : "disabled");
2669 int handle_arm7_9_fast_memory_access_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc)
2671 target_t *target = get_current_target(cmd_ctx);
2672 armv4_5_common_t *armv4_5;
2673 arm7_9_common_t *arm7_9;
2675 if (arm7_9_get_arch_pointers(target, &armv4_5, &arm7_9) != ERROR_OK)
2677 command_print(cmd_ctx, "current target isn't an ARM7/ARM9 target");
2683 if (strcmp("enable", args[0]) == 0)
2685 arm7_9->fast_memory_access = 1;
2687 else if (strcmp("disable", args[0]) == 0)
2689 arm7_9->fast_memory_access = 0;
2693 command_print(cmd_ctx, "usage: arm7_9 fast_memory_access <enable|disable>");
2697 command_print(cmd_ctx, "fast memory access is %s", (arm7_9->fast_memory_access) ? "enabled" : "disabled");
2702 int handle_arm7_9_dcc_downloads_command(struct command_context_s *cmd_ctx, char *cmd, char **args, int argc)
2704 target_t *target = get_current_target(cmd_ctx);
2705 armv4_5_common_t *armv4_5;
2706 arm7_9_common_t *arm7_9;
2708 if (arm7_9_get_arch_pointers(target, &armv4_5, &arm7_9) != ERROR_OK)
2710 command_print(cmd_ctx, "current target isn't an ARM7/ARM9 target");
2716 if (strcmp("enable", args[0]) == 0)
2718 arm7_9->dcc_downloads = 1;
2720 else if (strcmp("disable", args[0]) == 0)
2722 arm7_9->dcc_downloads = 0;
2726 command_print(cmd_ctx, "usage: arm7_9 dcc_downloads <enable|disable>");
2730 command_print(cmd_ctx, "dcc downloads are %s", (arm7_9->dcc_downloads) ? "enabled" : "disabled");
2735 int arm7_9_init_arch_info(target_t *target, arm7_9_common_t *arm7_9)
2737 armv4_5_common_t *armv4_5 = &arm7_9->armv4_5_common;
2739 arm7_9->common_magic = ARM7_9_COMMON_MAGIC;
2741 arm_jtag_setup_connection(&arm7_9->jtag_info);
2742 arm7_9->wp_available = 2;
2743 arm7_9->wp0_used = 0;
2744 arm7_9->wp1_used = 0;
2745 arm7_9->force_hw_bkpts = 0;
2746 arm7_9->use_dbgrq = 0;
2748 arm7_9->etm_ctx = NULL;
2749 arm7_9->has_single_step = 0;
2750 arm7_9->has_monitor_mode = 0;
2751 arm7_9->has_vector_catch = 0;
2753 arm7_9->debug_entry_from_reset = 0;
2755 arm7_9->dcc_working_area = NULL;
2757 arm7_9->fast_memory_access = fast_and_dangerous;
2758 arm7_9->dcc_downloads = fast_and_dangerous;
2760 arm7_9->need_bypass_before_restart = 0;
2762 armv4_5->arch_info = arm7_9;
2763 armv4_5->read_core_reg = arm7_9_read_core_reg;
2764 armv4_5->write_core_reg = arm7_9_write_core_reg;
2765 armv4_5->full_context = arm7_9_full_context;
2767 armv4_5_init_arch_info(target, armv4_5);
2769 target_register_timer_callback(arm7_9_handle_target_request, 1, 1, target);
projects / fw / openocd / blob