2 * linux/arch/parisc/traps.c
4 * Copyright (C) 1991, 1992 Linus Torvalds
5 * Copyright (C) 1999, 2000 Philipp Rumpf <prumpf@tux.org>
9 * 'Traps.c' handles hardware traps and faults after we have saved some
13 #include <linux/sched.h>
14 #include <linux/kernel.h>
15 #include <linux/string.h>
16 #include <linux/errno.h>
17 #include <linux/ptrace.h>
18 #include <linux/timer.h>
19 #include <linux/delay.h>
21 #include <linux/module.h>
22 #include <linux/smp.h>
23 #include <linux/smp_lock.h>
24 #include <linux/spinlock.h>
25 #include <linux/init.h>
26 #include <linux/interrupt.h>
27 #include <linux/console.h>
28 #include <linux/kallsyms.h>
30 #include <asm/assembly.h>
31 #include <asm/system.h>
32 #include <asm/uaccess.h>
35 #include <asm/traps.h>
36 #include <asm/unaligned.h>
37 #include <asm/atomic.h>
40 #include <asm/pdc_chassis.h>
41 #include <asm/unwind.h>
42 #include <asm/tlbflush.h>
43 #include <asm/cacheflush.h>
45 #include "../math-emu/math-emu.h" /* for handle_fpe() */
47 #define PRINT_USER_FAULTS /* (turn this on if you want user faults to be */
48 /* dumped to the console via printk) */
50 #if defined(CONFIG_SMP) || defined(CONFIG_DEBUG_SPINLOCK)
51 DEFINE_SPINLOCK(pa_dbit_lock);
54 int printbinary(char *buf, unsigned long x, int nbits)
56 unsigned long mask = 1UL << (nbits - 1);
58 *buf++ = (mask & x ? '1' : '0');
71 #define FFMT "%016llx" /* fpregs are 64-bit always */
73 #define PRINTREGS(lvl,r,f,fmt,x) \
74 printk("%s%s%02d-%02d " fmt " " fmt " " fmt " " fmt "\n", \
75 lvl, f, (x), (x+3), (r)[(x)+0], (r)[(x)+1], \
76 (r)[(x)+2], (r)[(x)+3])
78 static void print_gr(char *level, struct pt_regs *regs)
83 printk("%s\n", level);
84 printk("%s YZrvWESTHLNXBCVMcbcbcbcbOGFRQPDI\n", level);
85 printbinary(buf, regs->gr[0], 32);
86 printk("%sPSW: %s %s\n", level, buf, print_tainted());
88 for (i = 0; i < 32; i += 4)
89 PRINTREGS(level, regs->gr, "r", RFMT, i);
92 static void print_fr(char *level, struct pt_regs *regs)
96 struct { u32 sw[2]; } s;
98 /* FR are 64bit everywhere. Need to use asm to get the content
99 * of fpsr/fper1, and we assume that we won't have a FP Identify
100 * in our way, otherwise we're screwed.
101 * The fldd is used to restore the T-bit if there was one, as the
102 * store clears it anyway.
103 * PA2.0 book says "thou shall not use fstw on FPSR/FPERs" - T-Bone */
104 asm volatile ("fstd %%fr0,0(%1) \n\t"
105 "fldd 0(%1),%%fr0 \n\t"
106 : "=m" (s) : "r" (&s) : "r0");
108 printk("%s\n", level);
109 printk("%s VZOUICununcqcqcqcqcqcrmunTDVZOUI\n", level);
110 printbinary(buf, s.sw[0], 32);
111 printk("%sFPSR: %s\n", level, buf);
112 printk("%sFPER1: %08x\n", level, s.sw[1]);
114 /* here we'll print fr0 again, tho it'll be meaningless */
115 for (i = 0; i < 32; i += 4)
116 PRINTREGS(level, regs->fr, "fr", FFMT, i);
119 void show_regs(struct pt_regs *regs)
123 unsigned long cr30, cr31;
125 level = user_mode(regs) ? KERN_DEBUG : KERN_CRIT;
127 print_gr(level, regs);
129 for (i = 0; i < 8; i += 4)
130 PRINTREGS(level, regs->sr, "sr", RFMT, i);
133 print_fr(level, regs);
137 printk("%s\n", level);
138 printk("%sIASQ: " RFMT " " RFMT " IAOQ: " RFMT " " RFMT "\n",
139 level, regs->iasq[0], regs->iasq[1], regs->iaoq[0], regs->iaoq[1]);
140 printk("%s IIR: %08lx ISR: " RFMT " IOR: " RFMT "\n",
141 level, regs->iir, regs->isr, regs->ior);
142 printk("%s CPU: %8d CR30: " RFMT " CR31: " RFMT "\n",
143 level, current_thread_info()->cpu, cr30, cr31);
144 printk("%s ORIG_R28: " RFMT "\n", level, regs->orig_r28);
146 print_symbol(" IAOQ[0]: %s\n", regs->iaoq[0]);
148 print_symbol(" IAOQ[1]: %s\n", regs->iaoq[1]);
150 print_symbol(" RP(r2): %s\n", regs->gr[2]);
154 void dump_stack(void)
156 show_stack(NULL, NULL);
159 EXPORT_SYMBOL(dump_stack);
161 static void do_show_stack(struct unwind_frame_info *info)
165 printk("Backtrace:\n");
167 if (unwind_once(info) < 0 || info->ip == 0)
170 if (__kernel_text_address(info->ip)) {
171 printk(" [<" RFMT ">] ", info->ip);
172 #ifdef CONFIG_KALLSYMS
173 print_symbol("%s\n", info->ip);
184 void show_stack(struct task_struct *task, unsigned long *s)
186 struct unwind_frame_info info;
192 asm volatile ("copy %%r30, %0" : "=r"(sp));
196 memset(&r, 0, sizeof(struct pt_regs));
197 r.iaoq[0] = (unsigned long)&&HERE;
198 r.gr[2] = (unsigned long)__builtin_return_address(0);
201 unwind_frame_init(&info, current, &r);
204 unwind_frame_init_from_blocked_task(&info, task);
207 do_show_stack(&info);
210 void die_if_kernel(char *str, struct pt_regs *regs, long err)
212 if (user_mode(regs)) {
216 printk(KERN_CRIT "%s (pid %d): %s (code %ld) at " RFMT "\n",
217 current->comm, current->pid, str, err, regs->iaoq[0]);
218 #ifdef PRINT_USER_FAULTS
219 /* XXX for debugging only */
225 oops_in_progress = 1;
227 /* Amuse the user in a SPARC fashion */
229 " _______________________________ \n"
230 " < Your System ate a SPARC! Gah! >\n"
231 " ------------------------------- \n"
233 " \\ (xx)\\_______\n"
238 /* unlock the pdc lock if necessary */
239 pdc_emergency_unlock();
241 /* maybe the kernel hasn't booted very far yet and hasn't been able
242 * to initialize the serial or STI console. In that case we should
243 * re-enable the pdc console, so that the user will be able to
244 * identify the problem. */
245 if (!console_drivers)
246 pdc_console_restart();
248 printk(KERN_CRIT "%s (pid %d): %s (code %ld)\n",
249 current->comm, current->pid, str, err);
253 panic("Fatal exception in interrupt");
256 printk(KERN_EMERG "Fatal exception: panic in 5 seconds\n");
258 panic("Fatal exception");
261 /* Wot's wrong wif bein' racy? */
262 if (current->thread.flags & PARISC_KERNEL_DEATH) {
263 printk(KERN_CRIT "%s() recursion detected.\n", __FUNCTION__);
268 current->thread.flags |= PARISC_KERNEL_DEATH;
272 int syscall_ipi(int (*syscall) (struct pt_regs *), struct pt_regs *regs)
274 return syscall(regs);
277 /* gdb uses break 4,8 */
278 #define GDB_BREAK_INSN 0x10004
279 void handle_gdb_break(struct pt_regs *regs, int wot)
284 si.si_addr = (void __user *) (regs->iaoq[0] & ~3);
285 si.si_signo = SIGTRAP;
287 force_sig_info(SIGTRAP, &si, current);
290 void handle_break(unsigned iir, struct pt_regs *regs)
296 #ifdef PRINT_USER_FAULTS
297 printk(KERN_DEBUG "break 0,0: pid=%d command='%s'\n",
298 current->pid, current->comm);
300 die_if_kernel("Breakpoint", regs, 0);
301 #ifdef PRINT_USER_FAULTS
304 si.si_code = TRAP_BRKPT;
305 si.si_addr = (void __user *) (regs->iaoq[0] & ~3);
306 si.si_signo = SIGTRAP;
307 force_sig_info(SIGTRAP, &si, current);
311 die_if_kernel("Breakpoint", regs, 0);
312 handle_gdb_break(regs, TRAP_BRKPT);
316 #ifdef PRINT_USER_FAULTS
317 printk(KERN_DEBUG "break %#08x: pid=%d command='%s'\n",
318 iir, current->pid, current->comm);
321 si.si_signo = SIGTRAP;
322 si.si_code = TRAP_BRKPT;
323 si.si_addr = (void __user *) (regs->iaoq[0] & ~3);
324 force_sig_info(SIGTRAP, &si, current);
332 printk(KERN_CRIT "TOC call.\n");
336 static void default_trap(int code, struct pt_regs *regs)
338 printk(KERN_ERR "Trap %d on CPU %d\n", code, smp_processor_id());
342 void (*cpu_lpmc) (int code, struct pt_regs *regs) = default_trap;
345 void transfer_pim_to_trap_frame(struct pt_regs *regs)
348 extern unsigned int hpmc_pim_data[];
349 struct pdc_hpmc_pim_11 *pim_narrow;
350 struct pdc_hpmc_pim_20 *pim_wide;
352 if (boot_cpu_data.cpu_type >= pcxu) {
354 pim_wide = (struct pdc_hpmc_pim_20 *)hpmc_pim_data;
357 * Note: The following code will probably generate a
358 * bunch of truncation error warnings from the compiler.
359 * Could be handled with an ifdef, but perhaps there
363 regs->gr[0] = pim_wide->cr[22];
365 for (i = 1; i < 32; i++)
366 regs->gr[i] = pim_wide->gr[i];
368 for (i = 0; i < 32; i++)
369 regs->fr[i] = pim_wide->fr[i];
371 for (i = 0; i < 8; i++)
372 regs->sr[i] = pim_wide->sr[i];
374 regs->iasq[0] = pim_wide->cr[17];
375 regs->iasq[1] = pim_wide->iasq_back;
376 regs->iaoq[0] = pim_wide->cr[18];
377 regs->iaoq[1] = pim_wide->iaoq_back;
379 regs->sar = pim_wide->cr[11];
380 regs->iir = pim_wide->cr[19];
381 regs->isr = pim_wide->cr[20];
382 regs->ior = pim_wide->cr[21];
385 pim_narrow = (struct pdc_hpmc_pim_11 *)hpmc_pim_data;
387 regs->gr[0] = pim_narrow->cr[22];
389 for (i = 1; i < 32; i++)
390 regs->gr[i] = pim_narrow->gr[i];
392 for (i = 0; i < 32; i++)
393 regs->fr[i] = pim_narrow->fr[i];
395 for (i = 0; i < 8; i++)
396 regs->sr[i] = pim_narrow->sr[i];
398 regs->iasq[0] = pim_narrow->cr[17];
399 regs->iasq[1] = pim_narrow->iasq_back;
400 regs->iaoq[0] = pim_narrow->cr[18];
401 regs->iaoq[1] = pim_narrow->iaoq_back;
403 regs->sar = pim_narrow->cr[11];
404 regs->iir = pim_narrow->cr[19];
405 regs->isr = pim_narrow->cr[20];
406 regs->ior = pim_narrow->cr[21];
410 * The following fields only have meaning if we came through
411 * another path. So just zero them here.
421 * This routine is called as a last resort when everything else
422 * has gone clearly wrong. We get called for faults in kernel space,
425 void parisc_terminate(char *msg, struct pt_regs *regs, int code, unsigned long offset)
427 static DEFINE_SPINLOCK(terminate_lock);
429 oops_in_progress = 1;
433 spin_lock(&terminate_lock);
435 /* unlock the pdc lock if necessary */
436 pdc_emergency_unlock();
438 /* restart pdc console if necessary */
439 if (!console_drivers)
440 pdc_console_restart();
442 /* Not all paths will gutter the processor... */
446 transfer_pim_to_trap_frame(regs);
456 /* show_stack(NULL, (unsigned long *)regs->gr[30]); */
457 struct unwind_frame_info info;
458 unwind_frame_init(&info, current, regs);
459 do_show_stack(&info);
463 printk(KERN_CRIT "%s: Code=%d regs=%p (Addr=" RFMT ")\n",
464 msg, code, regs, offset);
467 spin_unlock(&terminate_lock);
469 /* put soft power button back under hardware control;
470 * if the user had pressed it once at any time, the
471 * system will shut down immediately right here. */
472 pdc_soft_power_button(0);
474 /* Call kernel panic() so reboot timeouts work properly
475 * FIXME: This function should be on the list of
476 * panic notifiers, and we should call panic
477 * directly from the location that we wish.
478 * e.g. We should not call panic from
479 * parisc_terminate, but rather the oter way around.
480 * This hack works, prints the panic message twice,
481 * and it enables reboot timers!
486 void handle_interruption(int code, struct pt_regs *regs)
488 unsigned long fault_address = 0;
489 unsigned long fault_space = 0;
493 pdc_console_restart(); /* switch back to pdc if HPMC */
498 * If the priority level is still user, and the
499 * faulting space is not equal to the active space
500 * then the user is attempting something in a space
501 * that does not belong to them. Kill the process.
503 * This is normally the situation when the user
504 * attempts to jump into the kernel space at the
505 * wrong offset, be it at the gateway page or a
508 * We cannot normally signal the process because it
509 * could *be* on the gateway page, and processes
510 * executing on the gateway page can't have signals
513 * We merely readjust the address into the users
514 * space, at a destination address of zero, and
515 * allow processing to continue.
517 if (((unsigned long)regs->iaoq[0] & 3) &&
518 ((unsigned long)regs->iasq[0] != (unsigned long)regs->sr[7])) {
519 /* Kill the user process later */
520 regs->iaoq[0] = 0 | 3;
521 regs->iaoq[1] = regs->iaoq[0] + 4;
522 regs->iasq[0] = regs->iasq[0] = regs->sr[7];
523 regs->gr[0] &= ~PSW_B;
528 printk(KERN_CRIT "Interruption # %d\n", code);
534 /* High-priority machine check (HPMC) */
536 /* set up a new led state on systems shipped with a LED State panel */
537 pdc_chassis_send_status(PDC_CHASSIS_DIRECT_HPMC);
539 parisc_terminate("High Priority Machine Check (HPMC)",
544 /* Power failure interrupt */
545 printk(KERN_CRIT "Power failure interrupt !\n");
549 /* Recovery counter trap */
550 regs->gr[0] &= ~PSW_R;
551 if (user_space(regs))
552 handle_gdb_break(regs, TRAP_TRACE);
553 /* else this must be the start of a syscall - just let it run */
557 /* Low-priority machine check */
558 pdc_chassis_send_status(PDC_CHASSIS_DIRECT_LPMC);
566 /* Instruction TLB miss fault/Instruction page fault */
567 fault_address = regs->iaoq[0];
568 fault_space = regs->iasq[0];
572 /* Illegal instruction trap */
573 die_if_kernel("Illegal instruction", regs, code);
574 si.si_code = ILL_ILLOPC;
578 /* Break instruction trap */
579 handle_break(regs->iir,regs);
583 /* Privileged operation trap */
584 die_if_kernel("Privileged operation", regs, code);
585 si.si_code = ILL_PRVOPC;
589 /* Privileged register trap */
590 if ((regs->iir & 0xffdfffe0) == 0x034008a0) {
592 /* This is a MFCTL cr26/cr27 to gr instruction.
593 * PCXS traps on this, so we need to emulate it.
596 if (regs->iir & 0x00200000)
597 regs->gr[regs->iir & 0x1f] = mfctl(27);
599 regs->gr[regs->iir & 0x1f] = mfctl(26);
601 regs->iaoq[0] = regs->iaoq[1];
603 regs->iasq[0] = regs->iasq[1];
607 die_if_kernel("Privileged register usage", regs, code);
608 si.si_code = ILL_PRVREG;
610 si.si_signo = SIGILL;
612 si.si_addr = (void __user *) regs->iaoq[0];
613 force_sig_info(SIGILL, &si, current);
617 /* Overflow Trap, let the userland signal handler do the cleanup */
618 si.si_signo = SIGFPE;
619 si.si_code = FPE_INTOVF;
620 si.si_addr = (void __user *) regs->iaoq[0];
621 force_sig_info(SIGFPE, &si, current);
626 The condition succees in an instruction which traps
629 si.si_signo = SIGFPE;
630 /* Set to zero, and let the userspace app figure it out from
631 the insn pointed to by si_addr */
633 si.si_addr = (void __user *) regs->iaoq[0];
634 force_sig_info(SIGFPE, &si, current);
637 /* The kernel doesn't want to handle condition codes */
641 /* Assist Exception Trap, i.e. floating point exception. */
642 die_if_kernel("Floating point exception", regs, 0); /* quiet */
647 /* Data TLB miss fault/Data page fault */
650 /* Non-access instruction TLB miss fault */
651 /* The instruction TLB entry needed for the target address of the FIC
652 is absent, and hardware can't find it, so we get to cleanup */
655 /* Non-access data TLB miss fault/Non-access data page fault */
657 Still need to add slow path emulation code here!
658 If the insn used a non-shadow register, then the tlb
659 handlers could not have their side-effect (e.g. probe
660 writing to a target register) emulated since rfir would
661 erase the changes to said register. Instead we have to
662 setup everything, call this function we are in, and emulate
663 by hand. Technically we need to emulate:
664 fdc,fdce,pdc,"fic,4f",prober,probeir,probew, probeiw
666 fault_address = regs->ior;
667 fault_space = regs->isr;
671 /* PCXS only -- later cpu's split this into types 26,27 & 28 */
672 /* Check for unaligned access */
673 if (check_unaligned(regs)) {
674 handle_unaligned(regs);
679 /* PCXL: Data memory access rights trap */
680 fault_address = regs->ior;
681 fault_space = regs->isr;
685 /* Data memory break trap */
686 regs->gr[0] |= PSW_X; /* So we can single-step over the trap */
689 /* Page reference trap */
690 handle_gdb_break(regs, TRAP_HWBKPT);
694 /* Taken branch trap */
695 regs->gr[0] &= ~PSW_T;
696 if (user_space(regs))
697 handle_gdb_break(regs, TRAP_BRANCH);
698 /* else this must be the start of a syscall - just let it
704 /* Instruction access rights */
705 /* PCXL: Instruction memory protection trap */
708 * This could be caused by either: 1) a process attempting
709 * to execute within a vma that does not have execute
710 * permission, or 2) an access rights violation caused by a
711 * flush only translation set up by ptep_get_and_clear().
712 * So we check the vma permissions to differentiate the two.
713 * If the vma indicates we have execute permission, then
714 * the cause is the latter one. In this case, we need to
715 * call do_page_fault() to fix the problem.
718 if (user_mode(regs)) {
719 struct vm_area_struct *vma;
721 down_read(¤t->mm->mmap_sem);
722 vma = find_vma(current->mm,regs->iaoq[0]);
723 if (vma && (regs->iaoq[0] >= vma->vm_start)
724 && (vma->vm_flags & VM_EXEC)) {
726 fault_address = regs->iaoq[0];
727 fault_space = regs->iasq[0];
729 up_read(¤t->mm->mmap_sem);
730 break; /* call do_page_fault() */
732 up_read(¤t->mm->mmap_sem);
736 /* Data memory protection ID trap */
737 die_if_kernel("Protection id trap", regs, code);
738 si.si_code = SEGV_MAPERR;
739 si.si_signo = SIGSEGV;
742 si.si_addr = (void __user *) regs->iaoq[0];
744 si.si_addr = (void __user *) regs->ior;
745 force_sig_info(SIGSEGV, &si, current);
749 /* Unaligned data reference trap */
750 handle_unaligned(regs);
754 if (user_mode(regs)) {
755 #ifdef PRINT_USER_FAULTS
756 printk(KERN_DEBUG "\nhandle_interruption() pid=%d command='%s'\n",
757 current->pid, current->comm);
760 /* SIGBUS, for lack of a better one. */
761 si.si_signo = SIGBUS;
762 si.si_code = BUS_OBJERR;
764 si.si_addr = (void __user *) regs->ior;
765 force_sig_info(SIGBUS, &si, current);
768 pdc_chassis_send_status(PDC_CHASSIS_DIRECT_PANIC);
770 parisc_terminate("Unexpected interruption", regs, code, 0);
774 if (user_mode(regs)) {
775 if ((fault_space >> SPACEID_SHIFT) != (regs->sr[7] >> SPACEID_SHIFT)) {
776 #ifdef PRINT_USER_FAULTS
777 if (fault_space == 0)
778 printk(KERN_DEBUG "User Fault on Kernel Space ");
780 printk(KERN_DEBUG "User Fault (long pointer) (fault %d) ",
782 printk("pid=%d command='%s'\n", current->pid, current->comm);
785 si.si_signo = SIGSEGV;
787 si.si_code = SEGV_MAPERR;
788 si.si_addr = (void __user *) regs->ior;
789 force_sig_info(SIGSEGV, &si, current);
796 * The kernel should never fault on its own address space.
799 if (fault_space == 0)
801 pdc_chassis_send_status(PDC_CHASSIS_DIRECT_PANIC);
802 parisc_terminate("Kernel Fault", regs, code, fault_address);
807 do_page_fault(regs, code, fault_address);
811 int __init check_ivt(void *iva)
818 extern void os_hpmc(void);
819 extern void os_hpmc_end(void);
821 if (strcmp((char *)iva, "cows can fly"))
826 for (i = 0; i < 8; i++)
829 /* Compute Checksum for HPMC handler */
831 length = (u32)((unsigned long)os_hpmc_end - (unsigned long)os_hpmc);
834 hpmcp = (u32 *)os_hpmc;
836 for (i=0; i<length/4; i++)
848 extern const void fault_vector_11;
850 extern const void fault_vector_20;
852 void __init trap_init(void)
856 if (boot_cpu_data.cpu_type >= pcxu)
857 iva = (void *) &fault_vector_20;
860 panic("Can't boot 64-bit OS on PA1.1 processor!");
862 iva = (void *) &fault_vector_11;
866 panic("IVT invalid");
projects / ~andy / linux / blob