1 /***************************************************************************
2 * Copyright (C) 2011 by Mathias Kuester *
3 * Mathias Kuester <kesmtp@freenet.de> *
5 * Copyright (C) 2011 by Spencer Oliver *
6 * spen@spen-soft.co.uk *
8 * This program is free software; you can redistribute it and/or modify *
9 * it under the terms of the GNU General Public License as published by *
10 * the Free Software Foundation; either version 2 of the License, or *
11 * (at your option) any later version. *
13 * This program is distributed in the hope that it will be useful, *
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
16 * GNU General Public License for more details. *
18 * You should have received a copy of the GNU General Public License *
19 * along with this program; if not, write to the *
20 * Free Software Foundation, Inc., *
21 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
22 ***************************************************************************/
28 #include "jtag/jtag.h"
29 #include "jtag/stlink/stlink_transport.h"
30 #include "jtag/stlink/stlink_interface.h"
31 #include "jtag/stlink/stlink_layout.h"
33 #include "algorithm.h"
35 #include "breakpoints.h"
36 #include "target_type.h"
39 #include "arm_semihosting.h"
41 static inline struct stlink_interface_s *target_to_stlink(struct target *target)
43 return target->tap->priv;
46 static int stm32_stlink_load_core_reg_u32(struct target *target,
47 enum armv7m_regtype type,
48 uint32_t num, uint32_t *value)
51 struct stlink_interface_s *stlink_if = target_to_stlink(target);
53 LOG_DEBUG("%s", __func__);
55 /* NOTE: we "know" here that the register identifiers used
56 * in the v7m header match the Cortex-M3 Debug Core Register
57 * Selector values for R0..R15, xPSR, MSP, and PSP.
61 /* read a normal core register */
62 retval = stlink_if->layout->api->read_reg(stlink_if->fd, num, value);
64 if (retval != ERROR_OK) {
65 LOG_ERROR("JTAG failure %i", retval);
66 return ERROR_JTAG_DEVICE_ERROR;
68 LOG_DEBUG("load from core reg %i value 0x%" PRIx32 "",
74 case ARMV7M_FAULTMASK:
76 /* Cortex-M3 packages these four registers as bitfields
77 * in one Debug Core register. So say r0 and r2 docs;
78 * it was removed from r1 docs, but still works.
80 retval = stlink_if->layout->api->read_reg(stlink_if->fd, 20, value);
84 *value = buf_get_u32((uint8_t *) value, 0, 1);
88 *value = buf_get_u32((uint8_t *) value, 8, 8);
91 case ARMV7M_FAULTMASK:
92 *value = buf_get_u32((uint8_t *) value, 16, 1);
96 *value = buf_get_u32((uint8_t *) value, 24, 2);
100 LOG_DEBUG("load from special reg %i value 0x%" PRIx32 "",
105 return ERROR_COMMAND_SYNTAX_ERROR;
111 static int stm32_stlink_store_core_reg_u32(struct target *target,
112 enum armv7m_regtype type,
113 uint32_t num, uint32_t value)
117 struct armv7m_common *armv7m = target_to_armv7m(target);
118 struct stlink_interface_s *stlink_if = target_to_stlink(target);
120 LOG_DEBUG("%s", __func__);
122 #ifdef ARMV7_GDB_HACKS
123 /* If the LR register is being modified, make sure it will put us
124 * in "thumb" mode, or an INVSTATE exception will occur. This is a
125 * hack to deal with the fact that gdb will sometimes "forge"
126 * return addresses, and doesn't set the LSB correctly (i.e., when
127 * printing expressions containing function calls, it sets LR = 0.)
128 * Valid exception return codes have bit 0 set too.
130 if (num == ARMV7M_R14)
134 /* NOTE: we "know" here that the register identifiers used
135 * in the v7m header match the Cortex-M3 Debug Core Register
136 * Selector values for R0..R15, xPSR, MSP, and PSP.
140 retval = stlink_if->layout->api->write_reg(stlink_if->fd, num, value);
142 if (retval != ERROR_OK) {
145 LOG_ERROR("JTAG failure");
146 r = armv7m->core_cache->reg_list + num;
148 return ERROR_JTAG_DEVICE_ERROR;
150 LOG_DEBUG("write core reg %i value 0x%" PRIx32 "", (int)num, value);
155 case ARMV7M_FAULTMASK:
157 /* Cortex-M3 packages these four registers as bitfields
158 * in one Debug Core register. So say r0 and r2 docs;
159 * it was removed from r1 docs, but still works.
162 stlink_if->layout->api->read_reg(stlink_if->fd, 20, ®);
166 buf_set_u32((uint8_t *) ®, 0, 1, value);
170 buf_set_u32((uint8_t *) ®, 8, 8, value);
173 case ARMV7M_FAULTMASK:
174 buf_set_u32((uint8_t *) ®, 16, 1, value);
178 buf_set_u32((uint8_t *) ®, 24, 2, value);
182 stlink_if->layout->api->write_reg(stlink_if->fd, 20, reg);
184 LOG_DEBUG("write special reg %i value 0x%" PRIx32 " ", (int)num, value);
188 return ERROR_COMMAND_SYNTAX_ERROR;
194 static int stm32_stlink_examine_debug_reason(struct target *target)
196 if ((target->debug_reason != DBG_REASON_DBGRQ)
197 && (target->debug_reason != DBG_REASON_SINGLESTEP)) {
198 target->debug_reason = DBG_REASON_BREAKPOINT;
204 static int stm32_stlink_init_arch_info(struct target *target,
205 struct cortex_m3_common *cortex_m3,
206 struct jtag_tap *tap)
208 struct armv7m_common *armv7m;
210 LOG_DEBUG("%s", __func__);
212 armv7m = &cortex_m3->armv7m;
213 armv7m_init_arch_info(target, armv7m);
215 armv7m->load_core_reg_u32 = stm32_stlink_load_core_reg_u32;
216 armv7m->store_core_reg_u32 = stm32_stlink_store_core_reg_u32;
218 armv7m->examine_debug_reason = stm32_stlink_examine_debug_reason;
223 static int stm32_stlink_init_target(struct command_context *cmd_ctx,
224 struct target *target)
226 LOG_DEBUG("%s", __func__);
228 armv7m_build_reg_cache(target);
233 static int stm32_stlink_target_create(struct target *target,
236 LOG_DEBUG("%s", __func__);
238 struct cortex_m3_common *cortex_m3 = calloc(1, sizeof(struct cortex_m3_common));
241 return ERROR_COMMAND_SYNTAX_ERROR;
243 stm32_stlink_init_arch_info(target, cortex_m3, target->tap);
248 static int stm32_stlink_examine(struct target *target)
251 uint32_t cpuid, fpcr;
252 struct cortex_m3_common *cortex_m3 = target_to_cm3(target);
254 LOG_DEBUG("%s", __func__);
256 if (target->tap->hasidcode == false) {
257 LOG_ERROR("no IDCODE present on device");
259 return ERROR_COMMAND_SYNTAX_ERROR;
262 if (!target_was_examined(target)) {
263 target_set_examined(target);
265 LOG_INFO("IDCODE %x", target->tap->idcode);
267 /* Read from Device Identification Registers */
268 retval = target_read_u32(target, CPUID, &cpuid);
269 if (retval != ERROR_OK)
272 if (((cpuid >> 4) & 0xc3f) == 0xc23)
273 LOG_DEBUG("Cortex-M3 r%" PRId8 "p%" PRId8 " processor detected",
274 (uint8_t)((cpuid >> 20) & 0xf), (uint8_t)((cpuid >> 0) & 0xf));
275 LOG_DEBUG("cpuid: 0x%8.8" PRIx32 "", cpuid);
278 target_read_u32(target, FP_CTRL, &fpcr);
279 cortex_m3->auto_bp_type = 1;
280 cortex_m3->fp_num_code = ((fpcr >> 8) & 0x70) |
281 ((fpcr >> 4) & 0xF); /* bits [14:12] and [7:4] */
282 cortex_m3->fp_num_lit = (fpcr >> 8) & 0xF;
283 cortex_m3->fp_code_available = cortex_m3->fp_num_code;
284 cortex_m3->fp_comparator_list = calloc(cortex_m3->fp_num_code +
285 cortex_m3->fp_num_lit, sizeof(struct cortex_m3_fp_comparator));
286 cortex_m3->fpb_enabled = fpcr & 1;
287 for (i = 0; i < cortex_m3->fp_num_code + cortex_m3->fp_num_lit; i++) {
288 cortex_m3->fp_comparator_list[i].type =
289 (i < cortex_m3->fp_num_code) ? FPCR_CODE : FPCR_LITERAL;
290 cortex_m3->fp_comparator_list[i].fpcr_address = FP_COMP0 + 4 * i;
292 LOG_DEBUG("FPB fpcr 0x%" PRIx32 ", numcode %i, numlit %i", fpcr,
293 cortex_m3->fp_num_code, cortex_m3->fp_num_lit);
296 cortex_m3_dwt_setup(cortex_m3, target);
298 /* These hardware breakpoints only work for code in flash! */
299 LOG_INFO("%s: hardware has %d breakpoints, %d watchpoints",
301 cortex_m3->fp_num_code,
302 cortex_m3->dwt_num_comp);
308 static int stm32_stlink_load_context(struct target *target)
310 struct armv7m_common *armv7m = target_to_armv7m(target);
311 int num_regs = armv7m->core_cache->num_regs;
313 for (int i = 0; i < num_regs; i++) {
314 if (!armv7m->core_cache->reg_list[i].valid)
315 armv7m->read_core_reg(target, i);
321 static int stlink_debug_entry(struct target *target)
323 struct armv7m_common *armv7m = target_to_armv7m(target);
324 struct arm *arm = &armv7m->arm;
329 retval = armv7m->examine_debug_reason(target);
330 if (retval != ERROR_OK)
333 stm32_stlink_load_context(target);
335 r = armv7m->core_cache->reg_list + ARMV7M_xPSR;
336 xPSR = buf_get_u32(r->value, 0, 32);
338 /* Are we in an exception handler */
340 armv7m->core_mode = ARMV7M_MODE_HANDLER;
341 armv7m->exception_number = (xPSR & 0x1FF);
343 arm->core_mode = ARM_MODE_HANDLER;
344 arm->map = armv7m_msp_reg_map;
346 unsigned control = buf_get_u32(armv7m->core_cache
347 ->reg_list[ARMV7M_CONTROL].value, 0, 2);
349 /* is this thread privileged? */
350 armv7m->core_mode = control & 1;
351 arm->core_mode = armv7m->core_mode
352 ? ARM_MODE_USER_THREAD
355 /* which stack is it using? */
357 arm->map = armv7m_psp_reg_map;
359 arm->map = armv7m_msp_reg_map;
361 armv7m->exception_number = 0;
364 LOG_DEBUG("entered debug state in core mode: %s at PC 0x%" PRIx32 ", target->state: %s",
365 armv7m_mode_strings[armv7m->core_mode],
366 *(uint32_t *)(arm->pc->value),
367 target_state_name(target));
372 static int stm32_stlink_poll(struct target *target)
374 enum target_state state;
375 struct stlink_interface_s *stlink_if = target_to_stlink(target);
376 struct armv7m_common *armv7m = target_to_armv7m(target);
378 state = stlink_if->layout->api->state(stlink_if->fd);
380 if (state == TARGET_UNKNOWN) {
381 LOG_ERROR("jtag status contains invalid mode value - communication failure");
382 return ERROR_TARGET_FAILURE;
385 if (target->state == state)
388 if (state == TARGET_HALTED) {
389 target->state = state;
391 int retval = stlink_debug_entry(target);
392 if (retval != ERROR_OK)
395 if (arm_semihosting(target, &retval) != 0)
398 target_call_event_callbacks(target, TARGET_EVENT_HALTED);
399 LOG_DEBUG("halted: PC: 0x%x", buf_get_u32(armv7m->arm.pc->value, 0, 32));
405 static int stm32_stlink_assert_reset(struct target *target)
408 struct stlink_interface_s *stlink_if = target_to_stlink(target);
409 struct armv7m_common *armv7m = target_to_armv7m(target);
411 LOG_DEBUG("%s", __func__);
413 res = stlink_if->layout->api->reset(stlink_if->fd);
418 /* virtual assert reset, we need it for the internal
421 jtag_add_reset(1, 1);
423 /* registers are now invalid */
424 register_cache_invalidate(armv7m->core_cache);
426 if (target->reset_halt) {
427 target->state = TARGET_RESET;
428 target->debug_reason = DBG_REASON_DBGRQ;
430 target->state = TARGET_HALTED;
436 static int stm32_stlink_deassert_reset(struct target *target)
440 LOG_DEBUG("%s", __func__);
442 /* virtual deassert reset, we need it for the internal
445 jtag_add_reset(0, 0);
447 if (!target->reset_halt) {
448 res = target_resume(target, 1, 0, 0, 0);
457 static int stm32_stlink_soft_reset_halt(struct target *target)
459 LOG_DEBUG("%s", __func__);
463 static int stm32_stlink_halt(struct target *target)
466 struct stlink_interface_s *stlink_if = target_to_stlink(target);
468 LOG_DEBUG("%s", __func__);
470 if (target->state == TARGET_HALTED) {
471 LOG_DEBUG("target was already halted");
475 if (target->state == TARGET_UNKNOWN)
476 LOG_WARNING("target was in unknown state when halt was requested");
478 res = stlink_if->layout->api->halt(stlink_if->fd);
483 target->debug_reason = DBG_REASON_DBGRQ;
488 static int stm32_stlink_resume(struct target *target, int current,
489 uint32_t address, int handle_breakpoints,
493 struct stlink_interface_s *stlink_if = target_to_stlink(target);
494 struct armv7m_common *armv7m = target_to_armv7m(target);
496 struct breakpoint *breakpoint = NULL;
499 LOG_DEBUG("%s %d %x %d %d", __func__, current, address,
500 handle_breakpoints, debug_execution);
502 if (target->state != TARGET_HALTED) {
503 LOG_WARNING("target not halted");
504 return ERROR_TARGET_NOT_HALTED;
509 buf_set_u32(pc->value, 0, 32, address);
514 if (!breakpoint_find(target, buf_get_u32(pc->value, 0, 32))
515 && !debug_execution) {
516 armv7m_maybe_skip_bkpt_inst(target, NULL);
519 resume_pc = buf_get_u32(pc->value, 0, 32);
521 armv7m_restore_context(target);
523 /* registers are now invalid */
524 register_cache_invalidate(armv7m->core_cache);
526 /* the front-end may request us not to handle breakpoints */
527 if (handle_breakpoints) {
528 /* Single step past breakpoint at current address */
529 breakpoint = breakpoint_find(target, resume_pc);
531 LOG_DEBUG("unset breakpoint at 0x%8.8" PRIx32 " (ID: %d)",
533 breakpoint->unique_id);
534 cortex_m3_unset_breakpoint(target, breakpoint);
536 res = stlink_if->layout->api->step(stlink_if->fd);
541 cortex_m3_set_breakpoint(target, breakpoint);
545 res = stlink_if->layout->api->run(stlink_if->fd);
550 target->state = TARGET_RUNNING;
552 target_call_event_callbacks(target, TARGET_EVENT_RESUMED);
557 static int stm32_stlink_step(struct target *target, int current,
558 uint32_t address, int handle_breakpoints)
561 struct stlink_interface_s *stlink_if = target_to_stlink(target);
562 struct armv7m_common *armv7m = target_to_armv7m(target);
563 struct breakpoint *breakpoint = NULL;
564 struct reg *pc = armv7m->arm.pc;
565 bool bkpt_inst_found = false;
567 LOG_DEBUG("%s", __func__);
569 if (target->state != TARGET_HALTED) {
570 LOG_WARNING("target not halted");
571 return ERROR_TARGET_NOT_HALTED;
575 buf_set_u32(pc->value, 0, 32, address);
580 uint32_t pc_value = buf_get_u32(pc->value, 0, 32);
582 /* the front-end may request us not to handle breakpoints */
583 if (handle_breakpoints) {
584 breakpoint = breakpoint_find(target, pc_value);
586 cortex_m3_unset_breakpoint(target, breakpoint);
589 armv7m_maybe_skip_bkpt_inst(target, &bkpt_inst_found);
591 target->debug_reason = DBG_REASON_SINGLESTEP;
593 armv7m_restore_context(target);
595 target_call_event_callbacks(target, TARGET_EVENT_RESUMED);
597 res = stlink_if->layout->api->step(stlink_if->fd);
602 /* registers are now invalid */
603 register_cache_invalidate(armv7m->core_cache);
606 cortex_m3_set_breakpoint(target, breakpoint);
608 stlink_debug_entry(target);
609 target_call_event_callbacks(target, TARGET_EVENT_HALTED);
611 LOG_INFO("halted: PC: 0x%x", buf_get_u32(armv7m->arm.pc->value, 0, 32));
616 static int stm32_stlink_read_memory(struct target *target, uint32_t address,
617 uint32_t size, uint32_t count,
621 uint32_t buffer_threshold = 128;
622 uint32_t addr_increment = 4;
623 uint8_t *dst = buffer;
625 struct stlink_interface_s *stlink_if = target_to_stlink(target);
627 if (!count || !buffer)
628 return ERROR_COMMAND_SYNTAX_ERROR;
630 LOG_DEBUG("%s %x %d %d", __func__, address, size, count);
632 /* prepare byte count, buffer threshold
633 * and address increment for none 32bit access
637 buffer_threshold = 64;
642 if (count > buffer_threshold)
643 c = buffer_threshold;
648 res = stlink_if->layout->api->read_mem8(stlink_if->fd,
651 res = stlink_if->layout->api->read_mem32(stlink_if->fd,
652 address, c, (uint32_t *)dst);
657 address += (c * addr_increment);
658 dst += (c * addr_increment);
665 static int stm32_stlink_write_memory(struct target *target, uint32_t address,
666 uint32_t size, uint32_t count,
667 const uint8_t *buffer)
670 uint32_t buffer_threshold = 128;
671 uint32_t addr_increment = 4;
672 const uint8_t *dst = buffer;
674 struct stlink_interface_s *stlink_if = target_to_stlink(target);
676 if (!count || !buffer)
677 return ERROR_COMMAND_SYNTAX_ERROR;
679 LOG_DEBUG("%s %x %d %d", __func__, address, size, count);
681 /* prepare byte count, buffer threshold
682 * and address increment for none 32bit access
686 buffer_threshold = 64;
691 if (count > buffer_threshold)
692 c = buffer_threshold;
697 res = stlink_if->layout->api->write_mem8(stlink_if->fd,
700 res = stlink_if->layout->api->write_mem32(stlink_if->fd,
701 address, c, (uint32_t *)dst);
706 address += (c * addr_increment);
707 dst += (c * addr_increment);
714 static int stm32_stlink_bulk_write_memory(struct target *target,
715 uint32_t address, uint32_t count,
716 const uint8_t *buffer)
718 return stm32_stlink_write_memory(target, address, 4, count, buffer);
721 struct target_type stm32_stlink_target = {
722 .name = "stm32_stlink",
724 .init_target = stm32_stlink_init_target,
725 .target_create = stm32_stlink_target_create,
726 .examine = stm32_stlink_examine,
728 .poll = stm32_stlink_poll,
729 .arch_state = armv7m_arch_state,
731 .assert_reset = stm32_stlink_assert_reset,
732 .deassert_reset = stm32_stlink_deassert_reset,
733 .soft_reset_halt = stm32_stlink_soft_reset_halt,
735 .halt = stm32_stlink_halt,
736 .resume = stm32_stlink_resume,
737 .step = stm32_stlink_step,
739 .get_gdb_reg_list = armv7m_get_gdb_reg_list,
741 .read_memory = stm32_stlink_read_memory,
742 .write_memory = stm32_stlink_write_memory,
743 .bulk_write_memory = stm32_stlink_bulk_write_memory,
744 .checksum_memory = armv7m_checksum_memory,
745 .blank_check_memory = armv7m_blank_check_memory,
747 .run_algorithm = armv7m_run_algorithm,
748 .start_algorithm = armv7m_start_algorithm,
749 .wait_algorithm = armv7m_wait_algorithm,
751 .add_breakpoint = cortex_m3_add_breakpoint,
752 .remove_breakpoint = cortex_m3_remove_breakpoint,
753 .add_watchpoint = cortex_m3_add_watchpoint,
754 .remove_watchpoint = cortex_m3_remove_watchpoint,