1 /***************************************************************************
2 * Copyright (C) 2008 digenius technology GmbH. *
5 * Copyright (C) 2008,2009 Oyvind Harboe oyvind.harboe@zylin.com *
7 * This program is free software; you can redistribute it and/or modify *
8 * it under the terms of the GNU General Public License as published by *
9 * the Free Software Foundation; either version 2 of the License, or *
10 * (at your option) any later version. *
12 * This program is distributed in the hope that it will be useful, *
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
15 * GNU General Public License for more details. *
17 * You should have received a copy of the GNU General Public License *
18 * along with this program; if not, write to the *
19 * Free Software Foundation, Inc., *
20 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
21 ***************************************************************************/
29 #include "time_support.h"
32 #define JTAG_DEBUG(expr ...) DEBUG(expr)
34 #define JTAG_DEBUG(expr ...) do {} while (0)
38 This pathmove goes from Pause-IR to Shift-IR while avoiding RTI. The
39 behavior of the FTDI driver IIRC was to go via RTI.
41 Conversely there may be other places in this code where the ARM11 code relies
42 on the driver to hit through RTI when coming from Update-?R.
44 tap_state_t arm11_move_pi_to_si_via_ci[] =
46 TAP_IREXIT2, TAP_IRUPDATE, TAP_DRSELECT, TAP_IRSELECT, TAP_IRCAPTURE, TAP_IRSHIFT
50 int arm11_add_ir_scan_vc(int num_fields, scan_field_t *fields, tap_state_t state)
52 if (cmd_queue_cur_state == TAP_IRPAUSE)
53 jtag_add_pathmove(asizeof(arm11_move_pi_to_si_via_ci), arm11_move_pi_to_si_via_ci);
55 jtag_add_ir_scan(num_fields, fields, state);
59 tap_state_t arm11_move_pd_to_sd_via_cd[] =
61 TAP_DREXIT2, TAP_DRUPDATE, TAP_DRSELECT, TAP_DRCAPTURE, TAP_DRSHIFT
64 int arm11_add_dr_scan_vc(int num_fields, scan_field_t *fields, tap_state_t state)
66 if (cmd_queue_cur_state == TAP_DRPAUSE)
67 jtag_add_pathmove(asizeof(arm11_move_pd_to_sd_via_cd), arm11_move_pd_to_sd_via_cd);
69 jtag_add_dr_scan(num_fields, fields, state);
74 /** Code de-clutter: Construct scan_field_t to write out a value
76 * \param arm11 Target state variable.
77 * \param num_bits Length of the data field
78 * \param out_data pointer to the data that will be sent out
79 * <em > (data is read when it is added to the JTAG queue)</em>
80 * \param in_data pointer to the memory that will receive data that was clocked in
81 * <em > (data is written when the JTAG queue is executed)</em>
82 * \param field target data structure that will be initialized
84 void arm11_setup_field(arm11_common_t * arm11, int num_bits, void * out_data, void * in_data, scan_field_t * field)
86 field->tap = arm11->target->tap;
87 field->num_bits = num_bits;
88 field->out_value = out_data;
89 field->in_value = in_data;
93 /** Write JTAG instruction register
95 * \param arm11 Target state variable.
96 * \param instr An ARM11 DBGTAP instruction. Use enum #arm11_instructions.
97 * \param state Pass the final TAP state or ARM11_TAP_DEFAULT for the default value (Pause-IR).
99 * \remarks This adds to the JTAG command queue but does \em not execute it.
101 void arm11_add_IR(arm11_common_t * arm11, uint8_t instr, tap_state_t state)
104 tap = arm11->target->tap;
106 if (buf_get_u32(tap->cur_instr, 0, 5) == instr)
108 JTAG_DEBUG("IR <= 0x%02x SKIPPED", instr);
112 JTAG_DEBUG("IR <= 0x%02x", instr);
116 arm11_setup_field(arm11, 5, &instr, NULL, &field);
118 arm11_add_ir_scan_vc(1, &field, state == ARM11_TAP_DEFAULT ? TAP_IRPAUSE : state);
121 /** Verify shifted out data from Scan Chain Register (SCREG)
122 * Used as parameter to scan_field_t::in_handler in
123 * arm11_add_debug_SCAN_N().
126 static void arm11_in_handler_SCAN_N(uint8_t *in_value)
128 /** \todo TODO: clarify why this isnt properly masked in core.c jtag_read_buffer() */
129 uint8_t v = *in_value & 0x1F;
133 LOG_ERROR("'arm11 target' JTAG communication error SCREG SCAN OUT 0x%02x (expected 0x10)", v);
134 jtag_set_error(ERROR_FAIL);
137 JTAG_DEBUG("SCREG SCAN OUT 0x%02x", v);
140 /** Select and write to Scan Chain Register (SCREG)
142 * This function sets the instruction register to SCAN_N and writes
143 * the data register with the selected chain number.
145 * http://infocenter.arm.com/help/topic/com.arm.doc.ddi0301f/Cacbjhfg.html
147 * \param arm11 Target state variable.
148 * \param chain Scan chain that will be selected.
149 * \param state Pass the final TAP state or ARM11_TAP_DEFAULT for the default
152 * The chain takes effect when Update-DR is passed (usually when subsequently
153 * the INTEXT/EXTEST instructions are written).
155 * \warning (Obsolete) Using this twice in a row will \em fail. The first
156 * call will end in Pause-DR. The second call, due to the IR
157 * caching, will not go through Capture-DR when shifting in the
158 * new scan chain number. As a result the verification in
159 * arm11_in_handler_SCAN_N() must fail.
161 * \remarks This adds to the JTAG command queue but does \em not execute it.
164 void arm11_add_debug_SCAN_N(arm11_common_t * arm11, uint8_t chain, tap_state_t state)
166 JTAG_DEBUG("SCREG <= 0x%02x", chain);
168 arm11_add_IR(arm11, ARM11_SCAN_N, ARM11_TAP_DEFAULT);
173 arm11_setup_field(arm11, 5, &chain, &tmp, &field);
175 arm11_add_dr_scan_vc(1, &field, state == ARM11_TAP_DEFAULT ? TAP_DRPAUSE : state);
177 jtag_execute_queue_noclear();
179 arm11_in_handler_SCAN_N(tmp);
182 /** Write an instruction into the ITR register
184 * \param arm11 Target state variable.
185 * \param inst An ARM11 processor instruction/opcode.
186 * \param flag Optional parameter to retrieve the InstCompl flag
187 * (this will be written when the JTAG chain is executed).
188 * \param state Pass the final TAP state or ARM11_TAP_DEFAULT for the default
189 * value (Run-Test/Idle).
191 * \remarks By default this ends with Run-Test/Idle state
192 * and causes the instruction to be executed. If
193 * a subsequent write to DTR is needed before
194 * executing the instruction then TAP_DRPAUSE should be
195 * passed to \p state.
197 * \remarks This adds to the JTAG command queue but does \em not execute it.
199 void arm11_add_debug_INST(arm11_common_t * arm11, uint32_t inst, uint8_t * flag, tap_state_t state)
201 JTAG_DEBUG("INST <= 0x%08x", inst);
205 arm11_setup_field(arm11, 32, &inst, NULL, itr + 0);
206 arm11_setup_field(arm11, 1, NULL, flag, itr + 1);
208 arm11_add_dr_scan_vc(asizeof(itr), itr, state == ARM11_TAP_DEFAULT ? TAP_IDLE : state);
211 /** Read the Debug Status and Control Register (DSCR)
215 * \param arm11 Target state variable.
216 * \param value DSCR content
217 * \return Error status
219 * \remarks This is a stand-alone function that executes the JTAG command queue.
221 int arm11_read_DSCR(arm11_common_t * arm11, uint32_t *value)
223 arm11_add_debug_SCAN_N(arm11, 0x01, ARM11_TAP_DEFAULT);
225 arm11_add_IR(arm11, ARM11_INTEST, ARM11_TAP_DEFAULT);
228 scan_field_t chain1_field;
230 arm11_setup_field(arm11, 32, NULL, &dscr, &chain1_field);
232 arm11_add_dr_scan_vc(1, &chain1_field, TAP_DRPAUSE);
234 CHECK_RETVAL(jtag_execute_queue());
236 if (arm11->last_dscr != dscr)
237 JTAG_DEBUG("DSCR = %08x (OLD %08x)", dscr, arm11->last_dscr);
239 arm11->last_dscr = dscr;
246 /** Write the Debug Status and Control Register (DSCR)
250 * \param arm11 Target state variable.
251 * \param dscr DSCR content
253 * \remarks This is a stand-alone function that executes the JTAG command queue.
255 int arm11_write_DSCR(arm11_common_t * arm11, uint32_t dscr)
257 arm11_add_debug_SCAN_N(arm11, 0x01, ARM11_TAP_DEFAULT);
259 arm11_add_IR(arm11, ARM11_EXTEST, ARM11_TAP_DEFAULT);
261 scan_field_t chain1_field;
263 arm11_setup_field(arm11, 32, &dscr, NULL, &chain1_field);
265 arm11_add_dr_scan_vc(1, &chain1_field, TAP_DRPAUSE);
267 CHECK_RETVAL(jtag_execute_queue());
269 JTAG_DEBUG("DSCR <= %08x (OLD %08x)", dscr, arm11->last_dscr);
271 arm11->last_dscr = dscr;
278 /** Get the debug reason from Debug Status and Control Register (DSCR)
280 * \param dscr DSCR value to analyze
281 * \return Debug reason
284 enum target_debug_reason arm11_get_DSCR_debug_reason(uint32_t dscr)
286 switch (dscr & ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_MASK)
288 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_HALT:
289 LOG_INFO("Debug entry: JTAG HALT");
290 return DBG_REASON_DBGRQ;
292 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_BREAKPOINT:
293 LOG_INFO("Debug entry: breakpoint");
294 return DBG_REASON_BREAKPOINT;
296 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_WATCHPOINT:
297 LOG_INFO("Debug entry: watchpoint");
298 return DBG_REASON_WATCHPOINT;
300 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_BKPT_INSTRUCTION:
301 LOG_INFO("Debug entry: BKPT instruction");
302 return DBG_REASON_BREAKPOINT;
304 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_EDBGRQ:
305 LOG_INFO("Debug entry: EDBGRQ signal");
306 return DBG_REASON_DBGRQ;
308 case ARM11_DSCR_METHOD_OF_DEBUG_ENTRY_VECTOR_CATCH:
309 LOG_INFO("Debug entry: VCR vector catch");
310 return DBG_REASON_BREAKPOINT;
313 LOG_INFO("Debug entry: unknown");
314 return DBG_REASON_DBGRQ;
320 /** Prepare the stage for ITR/DTR operations
321 * from the arm11_run_instr... group of functions.
323 * Put arm11_run_instr_data_prepare() and arm11_run_instr_data_finish()
324 * around a block of arm11_run_instr_... calls.
326 * Select scan chain 5 to allow quick access to DTR. When scan
327 * chain 4 is needed to put in a register the ITRSel instruction
328 * shortcut is used instead of actually changing the Scan_N
331 * \param arm11 Target state variable.
334 void arm11_run_instr_data_prepare(arm11_common_t * arm11)
336 arm11_add_debug_SCAN_N(arm11, 0x05, ARM11_TAP_DEFAULT);
339 /** Cleanup after ITR/DTR operations
340 * from the arm11_run_instr... group of functions
342 * Put arm11_run_instr_data_prepare() and arm11_run_instr_data_finish()
343 * around a block of arm11_run_instr_... calls.
345 * Any IDLE can lead to an instruction execution when
346 * scan chains 4 or 5 are selected and the IR holds
347 * INTEST or EXTEST. So we must disable that before
348 * any following activities lead to an IDLE.
350 * \param arm11 Target state variable.
353 void arm11_run_instr_data_finish(arm11_common_t * arm11)
355 arm11_add_debug_SCAN_N(arm11, 0x00, ARM11_TAP_DEFAULT);
360 /** Execute one or multiple instructions via ITR
362 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
364 * \param arm11 Target state variable.
365 * \param opcode Pointer to sequence of ARM opcodes
366 * \param count Number of opcodes to execute
369 int arm11_run_instr_no_data(arm11_common_t * arm11, uint32_t * opcode, size_t count)
371 arm11_add_IR(arm11, ARM11_ITRSEL, ARM11_TAP_DEFAULT);
375 arm11_add_debug_INST(arm11, *opcode++, NULL, TAP_IDLE);
382 arm11_add_debug_INST(arm11, 0, &flag, count ? TAP_IDLE : TAP_DRPAUSE);
384 CHECK_RETVAL(jtag_execute_queue());
396 if ((timeval_ms()-then) > 1000)
398 LOG_WARNING("Timeout (1000ms) waiting for instructions to complete");
410 /** Execute one instruction via ITR
412 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
414 * \param arm11 Target state variable.
415 * \param opcode ARM opcode
418 int arm11_run_instr_no_data1(arm11_common_t * arm11, uint32_t opcode)
420 return arm11_run_instr_no_data(arm11, &opcode, 1);
424 /** Execute one instruction via ITR repeatedly while
425 * passing data to the core via DTR on each execution.
427 * The executed instruction \em must read data from DTR.
429 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
431 * \param arm11 Target state variable.
432 * \param opcode ARM opcode
433 * \param data Pointer to the data words to be passed to the core
434 * \param count Number of data words and instruction repetitions
437 int arm11_run_instr_data_to_core(arm11_common_t * arm11, uint32_t opcode, uint32_t * data, size_t count)
439 arm11_add_IR(arm11, ARM11_ITRSEL, ARM11_TAP_DEFAULT);
441 arm11_add_debug_INST(arm11, opcode, NULL, TAP_DRPAUSE);
443 arm11_add_IR(arm11, ARM11_EXTEST, ARM11_TAP_DEFAULT);
445 scan_field_t chain5_fields[3];
451 arm11_setup_field(arm11, 32, &Data, NULL, chain5_fields + 0);
452 arm11_setup_field(arm11, 1, NULL, &Ready, chain5_fields + 1);
453 arm11_setup_field(arm11, 1, NULL, &nRetry, chain5_fields + 2);
462 arm11_add_dr_scan_vc(asizeof(chain5_fields), chain5_fields, jtag_set_end_state(TAP_IDLE));
464 CHECK_RETVAL(jtag_execute_queue());
466 JTAG_DEBUG("DTR Ready %d nRetry %d", Ready, nRetry);
475 if ((timeval_ms()-then) > 1000)
477 LOG_WARNING("Timeout (1000ms) waiting for instructions to complete");
489 arm11_add_IR(arm11, ARM11_INTEST, ARM11_TAP_DEFAULT);
496 arm11_add_dr_scan_vc(asizeof(chain5_fields), chain5_fields, TAP_DRPAUSE);
498 CHECK_RETVAL(jtag_execute_queue());
500 JTAG_DEBUG("DTR Data %08x Ready %d nRetry %d", Data, Ready, nRetry);
509 if ((timeval_ms()-then) > 1000)
511 LOG_WARNING("Timeout (1000ms) waiting for instructions to complete");
523 /** JTAG path for arm11_run_instr_data_to_core_noack
525 * The repeated TAP_IDLE's do not cause a repeated execution
526 * if passed without leaving the state.
528 * Since this is more than 7 bits (adjustable via adding more
529 * TAP_IDLE's) it produces an artificial delay in the lower
530 * layer (FT2232) that is long enough to finish execution on
531 * the core but still shorter than any manually inducible delays.
533 * To disable this code, try "memwrite burst false"
535 * FIX!!! should we use multiple TAP_IDLE here or not???
537 * https://lists.berlios.de/pipermail/openocd-development/2009-July/009698.html
538 * https://lists.berlios.de/pipermail/openocd-development/2009-August/009865.html
540 tap_state_t arm11_MOVE_DRPAUSE_IDLE_DRPAUSE_with_delay[] =
542 TAP_DREXIT2, TAP_DRUPDATE, TAP_IDLE, TAP_IDLE, TAP_IDLE, TAP_DRSELECT, TAP_DRCAPTURE, TAP_DRSHIFT
547 /** Execute one instruction via ITR repeatedly while
548 * passing data to the core via DTR on each execution.
550 * No Ready check during transmission.
552 * The executed instruction \em must read data from DTR.
554 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
556 * \param arm11 Target state variable.
557 * \param opcode ARM opcode
558 * \param data Pointer to the data words to be passed to the core
559 * \param count Number of data words and instruction repetitions
562 int arm11_run_instr_data_to_core_noack(arm11_common_t * arm11, uint32_t opcode, uint32_t * data, size_t count)
564 arm11_add_IR(arm11, ARM11_ITRSEL, ARM11_TAP_DEFAULT);
566 arm11_add_debug_INST(arm11, opcode, NULL, TAP_DRPAUSE);
568 arm11_add_IR(arm11, ARM11_EXTEST, ARM11_TAP_DEFAULT);
570 scan_field_t chain5_fields[3];
572 arm11_setup_field(arm11, 32, NULL/*&Data*/, NULL, chain5_fields + 0);
573 arm11_setup_field(arm11, 1, NULL, NULL /*&Ready*/, chain5_fields + 1);
574 arm11_setup_field(arm11, 1, NULL, NULL, chain5_fields + 2);
576 uint8_t Readies[count + 1];
577 uint8_t * ReadyPos = Readies;
581 chain5_fields[0].out_value = (void *)(data++);
582 chain5_fields[1].in_value = ReadyPos++;
586 jtag_add_dr_scan(asizeof(chain5_fields), chain5_fields, jtag_set_end_state(TAP_DRPAUSE));
587 jtag_add_pathmove(asizeof(arm11_MOVE_DRPAUSE_IDLE_DRPAUSE_with_delay),
588 arm11_MOVE_DRPAUSE_IDLE_DRPAUSE_with_delay);
592 jtag_add_dr_scan(asizeof(chain5_fields), chain5_fields, jtag_set_end_state(TAP_IDLE));
596 arm11_add_IR(arm11, ARM11_INTEST, ARM11_TAP_DEFAULT);
598 chain5_fields[0].out_value = 0;
599 chain5_fields[1].in_value = ReadyPos++;
601 arm11_add_dr_scan_vc(asizeof(chain5_fields), chain5_fields, TAP_DRPAUSE);
603 CHECK_RETVAL(jtag_execute_queue());
605 size_t error_count = 0;
607 for (size_t i = 0; i < asizeof(Readies); i++)
616 LOG_ERROR("Transfer errors " ZU, error_count);
622 /** Execute an instruction via ITR while handing data into the core via DTR.
624 * The executed instruction \em must read data from DTR.
626 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
628 * \param arm11 Target state variable.
629 * \param opcode ARM opcode
630 * \param data Data word to be passed to the core via DTR
633 int arm11_run_instr_data_to_core1(arm11_common_t * arm11, uint32_t opcode, uint32_t data)
635 return arm11_run_instr_data_to_core(arm11, opcode, &data, 1);
639 /** Execute one instruction via ITR repeatedly while
640 * reading data from the core via DTR on each execution.
642 * The executed instruction \em must write data to DTR.
644 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
646 * \param arm11 Target state variable.
647 * \param opcode ARM opcode
648 * \param data Pointer to an array that receives the data words from the core
649 * \param count Number of data words and instruction repetitions
652 int arm11_run_instr_data_from_core(arm11_common_t * arm11, uint32_t opcode, uint32_t * data, size_t count)
654 arm11_add_IR(arm11, ARM11_ITRSEL, ARM11_TAP_DEFAULT);
656 arm11_add_debug_INST(arm11, opcode, NULL, TAP_IDLE);
658 arm11_add_IR(arm11, ARM11_INTEST, ARM11_TAP_DEFAULT);
660 scan_field_t chain5_fields[3];
666 arm11_setup_field(arm11, 32, NULL, &Data, chain5_fields + 0);
667 arm11_setup_field(arm11, 1, NULL, &Ready, chain5_fields + 1);
668 arm11_setup_field(arm11, 1, NULL, &nRetry, chain5_fields + 2);
675 arm11_add_dr_scan_vc(asizeof(chain5_fields), chain5_fields, count ? TAP_IDLE : TAP_DRPAUSE);
677 CHECK_RETVAL(jtag_execute_queue());
679 JTAG_DEBUG("DTR Data %08x Ready %d nRetry %d", Data, Ready, nRetry);
688 if ((timeval_ms()-then) > 1000)
690 LOG_WARNING("Timeout (1000ms) waiting for instructions to complete");
705 /** Execute one instruction via ITR
706 * then load r0 into DTR and read DTR from core.
708 * The first executed instruction (\p opcode) should write data to r0.
710 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
712 * \param arm11 Target state variable.
713 * \param opcode ARM opcode to write r0 with the value of interest
714 * \param data Pointer to a data word that receives the value from r0 after \p opcode was executed.
717 int arm11_run_instr_data_from_core_via_r0(arm11_common_t * arm11, uint32_t opcode, uint32_t * data)
720 retval = arm11_run_instr_no_data1(arm11, opcode);
721 if (retval != ERROR_OK)
724 /* MCR p14,0,R0,c0,c5,0 (move r0 -> wDTR -> local var) */
725 arm11_run_instr_data_from_core(arm11, 0xEE000E15, data, 1);
730 /** Load data into core via DTR then move it to r0 then
731 * execute one instruction via ITR
733 * The final executed instruction (\p opcode) should read data from r0.
735 * \pre arm11_run_instr_data_prepare() / arm11_run_instr_data_finish() block
737 * \param arm11 Target state variable.
738 * \param opcode ARM opcode to read r0 act upon it
739 * \param data Data word that will be written to r0 before \p opcode is executed
742 void arm11_run_instr_data_to_core_via_r0(arm11_common_t * arm11, uint32_t opcode, uint32_t data)
744 /* MRC p14,0,r0,c0,c5,0 */
745 arm11_run_instr_data_to_core1(arm11, 0xEE100E15, data);
747 arm11_run_instr_no_data1(arm11, opcode);
750 /** Apply reads and writes to scan chain 7
752 * \see arm11_sc7_action_t
754 * \param arm11 Target state variable.
755 * \param actions A list of read and/or write instructions
756 * \param count Number of instructions in the list.
759 int arm11_sc7_run(arm11_common_t * arm11, arm11_sc7_action_t * actions, size_t count)
761 arm11_add_debug_SCAN_N(arm11, 0x07, ARM11_TAP_DEFAULT);
763 arm11_add_IR(arm11, ARM11_EXTEST, ARM11_TAP_DEFAULT);
765 scan_field_t chain7_fields[3];
774 arm11_setup_field(arm11, 1, &nRW, &Ready, chain7_fields + 0);
775 arm11_setup_field(arm11, 32, &DataOut, &DataIn, chain7_fields + 1);
776 arm11_setup_field(arm11, 7, &AddressOut, &AddressIn, chain7_fields + 2);
778 for (size_t i = 0; i < count + 1; i++)
782 nRW = actions[i].write ? 1 : 0;
783 DataOut = actions[i].value;
784 AddressOut = actions[i].address;
795 JTAG_DEBUG("SC7 <= Address %02x Data %08x nRW %d", AddressOut, DataOut, nRW);
797 arm11_add_dr_scan_vc(asizeof(chain7_fields), chain7_fields, TAP_DRPAUSE);
799 CHECK_RETVAL(jtag_execute_queue());
801 JTAG_DEBUG("SC7 => Address %02x Data %08x Ready %d", AddressIn, DataIn, Ready);
803 while (!Ready); /* 'nRW' is 'Ready' on read out */
807 if (actions[i - 1].address != AddressIn)
809 LOG_WARNING("Scan chain 7 shifted out unexpected address");
812 if (!actions[i - 1].write)
814 actions[i - 1].value = DataIn;
818 if (actions[i - 1].value != DataIn)
820 LOG_WARNING("Scan chain 7 shifted out unexpected data");
826 for (size_t i = 0; i < count; i++)
828 JTAG_DEBUG("SC7 %02d: %02x %s %08x", i, actions[i].address, actions[i].write ? "<=" : "=>", actions[i].value);
834 /** Clear VCR and all breakpoints and watchpoints via scan chain 7
836 * \param arm11 Target state variable.
839 void arm11_sc7_clear_vbw(arm11_common_t * arm11)
841 arm11_sc7_action_t clear_bw[arm11->brp + arm11->wrp + 1];
842 arm11_sc7_action_t * pos = clear_bw;
844 for (size_t i = 0; i < asizeof(clear_bw); i++)
846 clear_bw[i].write = true;
847 clear_bw[i].value = 0;
850 for (size_t i = 0; i < arm11->brp; i++)
851 (pos++)->address = ARM11_SC7_BCR0 + i;
854 for (size_t i = 0; i < arm11->wrp; i++)
855 (pos++)->address = ARM11_SC7_WCR0 + i;
858 (pos++)->address = ARM11_SC7_VCR;
860 arm11_sc7_run(arm11, clear_bw, asizeof(clear_bw));
863 /** Write VCR register
865 * \param arm11 Target state variable.
866 * \param value Value to be written
868 void arm11_sc7_set_vcr(arm11_common_t * arm11, uint32_t value)
870 arm11_sc7_action_t set_vcr;
872 set_vcr.write = true;
873 set_vcr.address = ARM11_SC7_VCR;
874 set_vcr.value = value;
877 arm11_sc7_run(arm11, &set_vcr, 1);
882 /** Read word from address
884 * \param arm11 Target state variable.
885 * \param address Memory address to be read
886 * \param result Pointer where to store result
889 int arm11_read_memory_word(arm11_common_t * arm11, uint32_t address, uint32_t * result)
891 arm11_run_instr_data_prepare(arm11);
893 /* MRC p14,0,r0,c0,c5,0 (r0 = address) */
894 CHECK_RETVAL(arm11_run_instr_data_to_core1(arm11, 0xee100e15, address));
896 /* LDC p14,c5,[R0],#4 (DTR = [r0]) */
897 CHECK_RETVAL(arm11_run_instr_data_from_core(arm11, 0xecb05e01, result, 1));
899 arm11_run_instr_data_finish(arm11);
projects / openocd / blob