2 * linux/arch/parisc/traps.c
4 * Copyright (C) 1991, 1992 Linus Torvalds
5 * Copyright (C) 1999, 2000 Philipp Rumpf <prumpf@tux.org>
9 * 'Traps.c' handles hardware traps and faults after we have saved some
13 #include <linux/sched.h>
14 #include <linux/kernel.h>
15 #include <linux/string.h>
16 #include <linux/errno.h>
17 #include <linux/ptrace.h>
18 #include <linux/timer.h>
19 #include <linux/delay.h>
21 #include <linux/module.h>
22 #include <linux/smp.h>
23 #include <linux/smp_lock.h>
24 #include <linux/spinlock.h>
25 #include <linux/init.h>
26 #include <linux/interrupt.h>
27 #include <linux/console.h>
28 #include <linux/kallsyms.h>
30 #include <asm/assembly.h>
31 #include <asm/system.h>
32 #include <asm/uaccess.h>
35 #include <asm/traps.h>
36 #include <asm/unaligned.h>
37 #include <asm/atomic.h>
40 #include <asm/pdc_chassis.h>
41 #include <asm/unwind.h>
43 #include "../math-emu/math-emu.h" /* for handle_fpe() */
45 #define PRINT_USER_FAULTS /* (turn this on if you want user faults to be */
46 /* dumped to the console via printk) */
48 #if defined(CONFIG_SMP) || defined(CONFIG_DEBUG_SPINLOCK)
49 DEFINE_SPINLOCK(pa_dbit_lock);
52 int printbinary(char *buf, unsigned long x, int nbits)
54 unsigned long mask = 1UL << (nbits - 1);
56 *buf++ = (mask & x ? '1' : '0');
69 #define FFMT "%016llx" /* fpregs are 64-bit always */
71 #define PRINTREGS(lvl,r,f,fmt,x) \
72 printk("%s%s%02d-%02d " fmt " " fmt " " fmt " " fmt "\n", \
73 lvl, f, (x), (x+3), (r)[(x)+0], (r)[(x)+1], \
74 (r)[(x)+2], (r)[(x)+3])
76 static void print_gr(char *level, struct pt_regs *regs)
81 printk("%s\n", level);
82 printk("%s YZrvWESTHLNXBCVMcbcbcbcbOGFRQPDI\n", level);
83 printbinary(buf, regs->gr[0], 32);
84 printk("%sPSW: %s %s\n", level, buf, print_tainted());
86 for (i = 0; i < 32; i += 4)
87 PRINTREGS(level, regs->gr, "r", RFMT, i);
90 static void print_fr(char *level, struct pt_regs *regs)
94 struct { u32 sw[2]; } s;
96 /* FR are 64bit everywhere. Need to use asm to get the content
97 * of fpsr/fper1, and we assume that we won't have a FP Identify
98 * in our way, otherwise we're screwed.
99 * The fldd is used to restore the T-bit if there was one, as the
100 * store clears it anyway.
101 * PA2.0 book says "thou shall not use fstw on FPSR/FPERs" - T-Bone */
102 asm volatile ("fstd %%fr0,0(%1) \n\t"
103 "fldd 0(%1),%%fr0 \n\t"
104 : "=m" (s) : "r" (&s) : "r0");
106 printk("%s\n", level);
107 printk("%s VZOUICununcqcqcqcqcqcrmunTDVZOUI\n", level);
108 printbinary(buf, s.sw[0], 32);
109 printk("%sFPSR: %s\n", level, buf);
110 printk("%sFPER1: %08x\n", level, s.sw[1]);
112 /* here we'll print fr0 again, tho it'll be meaningless */
113 for (i = 0; i < 32; i += 4)
114 PRINTREGS(level, regs->fr, "fr", FFMT, i);
117 void show_regs(struct pt_regs *regs)
121 unsigned long cr30, cr31;
123 level = user_mode(regs) ? KERN_DEBUG : KERN_CRIT;
125 print_gr(level, regs);
127 for (i = 0; i < 8; i += 4)
128 PRINTREGS(level, regs->sr, "sr", RFMT, i);
131 print_fr(level, regs);
135 printk("%s\n", level);
136 printk("%sIASQ: " RFMT " " RFMT " IAOQ: " RFMT " " RFMT "\n",
137 level, regs->iasq[0], regs->iasq[1], regs->iaoq[0], regs->iaoq[1]);
138 printk("%s IIR: %08lx ISR: " RFMT " IOR: " RFMT "\n",
139 level, regs->iir, regs->isr, regs->ior);
140 printk("%s CPU: %8d CR30: " RFMT " CR31: " RFMT "\n",
141 level, current_thread_info()->cpu, cr30, cr31);
142 printk("%s ORIG_R28: " RFMT "\n", level, regs->orig_r28);
144 print_symbol(" IAOQ[0]: %s\n", regs->iaoq[0]);
146 print_symbol(" IAOQ[1]: %s\n", regs->iaoq[1]);
148 print_symbol(" RP(r2): %s\n", regs->gr[2]);
152 void dump_stack(void)
154 show_stack(NULL, NULL);
157 EXPORT_SYMBOL(dump_stack);
159 static void do_show_stack(struct unwind_frame_info *info)
163 printk("Backtrace:\n");
165 if (unwind_once(info) < 0 || info->ip == 0)
168 if (__kernel_text_address(info->ip)) {
169 printk(" [<" RFMT ">] ", info->ip);
170 #ifdef CONFIG_KALLSYMS
171 print_symbol("%s\n", info->ip);
182 void show_stack(struct task_struct *task, unsigned long *s)
184 struct unwind_frame_info info;
191 asm volatile ("copy %%r30, %0" : "=r"(sp));
192 r = kzalloc(sizeof(struct pt_regs), GFP_KERNEL);
195 r->iaoq[0] = (unsigned long)&&HERE;
196 r->gr[2] = (unsigned long)__builtin_return_address(0);
198 unwind_frame_init(&info, current, r);
201 unwind_frame_init_from_blocked_task(&info, task);
204 do_show_stack(&info);
207 void die_if_kernel(char *str, struct pt_regs *regs, long err)
209 if (user_mode(regs)) {
213 printk(KERN_CRIT "%s (pid %d): %s (code %ld) at " RFMT "\n",
214 current->comm, current->pid, str, err, regs->iaoq[0]);
215 #ifdef PRINT_USER_FAULTS
216 /* XXX for debugging only */
222 oops_in_progress = 1;
224 /* Amuse the user in a SPARC fashion */
226 " _______________________________ \n"
227 " < Your System ate a SPARC! Gah! >\n"
228 " ------------------------------- \n"
230 " \\ (xx)\\_______\n"
235 /* unlock the pdc lock if necessary */
236 pdc_emergency_unlock();
238 /* maybe the kernel hasn't booted very far yet and hasn't been able
239 * to initialize the serial or STI console. In that case we should
240 * re-enable the pdc console, so that the user will be able to
241 * identify the problem. */
242 if (!console_drivers)
243 pdc_console_restart();
245 printk(KERN_CRIT "%s (pid %d): %s (code %ld)\n",
246 current->comm, current->pid, str, err);
250 panic("Fatal exception in interrupt");
253 printk(KERN_EMERG "Fatal exception: panic in 5 seconds\n");
255 panic("Fatal exception");
258 /* Wot's wrong wif bein' racy? */
259 if (current->thread.flags & PARISC_KERNEL_DEATH) {
260 printk(KERN_CRIT "%s() recursion detected.\n", __FUNCTION__);
265 current->thread.flags |= PARISC_KERNEL_DEATH;
269 int syscall_ipi(int (*syscall) (struct pt_regs *), struct pt_regs *regs)
271 return syscall(regs);
274 /* gdb uses break 4,8 */
275 #define GDB_BREAK_INSN 0x10004
276 void handle_gdb_break(struct pt_regs *regs, int wot)
281 si.si_addr = (void __user *) (regs->iaoq[0] & ~3);
282 si.si_signo = SIGTRAP;
284 force_sig_info(SIGTRAP, &si, current);
287 void handle_break(unsigned iir, struct pt_regs *regs)
293 #ifdef PRINT_USER_FAULTS
294 printk(KERN_DEBUG "break 0,0: pid=%d command='%s'\n",
295 current->pid, current->comm);
297 die_if_kernel("Breakpoint", regs, 0);
298 #ifdef PRINT_USER_FAULTS
301 si.si_code = TRAP_BRKPT;
302 si.si_addr = (void __user *) (regs->iaoq[0] & ~3);
303 si.si_signo = SIGTRAP;
304 force_sig_info(SIGTRAP, &si, current);
308 die_if_kernel("Breakpoint", regs, 0);
309 handle_gdb_break(regs, TRAP_BRKPT);
313 #ifdef PRINT_USER_FAULTS
314 printk(KERN_DEBUG "break %#08x: pid=%d command='%s'\n",
315 iir, current->pid, current->comm);
318 si.si_signo = SIGTRAP;
319 si.si_code = TRAP_BRKPT;
320 si.si_addr = (void __user *) (regs->iaoq[0] & ~3);
321 force_sig_info(SIGTRAP, &si, current);
329 printk(KERN_CRIT "TOC call.\n");
333 static void default_trap(int code, struct pt_regs *regs)
335 printk(KERN_ERR "Trap %d on CPU %d\n", code, smp_processor_id());
339 void (*cpu_lpmc) (int code, struct pt_regs *regs) = default_trap;
342 void transfer_pim_to_trap_frame(struct pt_regs *regs)
345 extern unsigned int hpmc_pim_data[];
346 struct pdc_hpmc_pim_11 *pim_narrow;
347 struct pdc_hpmc_pim_20 *pim_wide;
349 if (boot_cpu_data.cpu_type >= pcxu) {
351 pim_wide = (struct pdc_hpmc_pim_20 *)hpmc_pim_data;
354 * Note: The following code will probably generate a
355 * bunch of truncation error warnings from the compiler.
356 * Could be handled with an ifdef, but perhaps there
360 regs->gr[0] = pim_wide->cr[22];
362 for (i = 1; i < 32; i++)
363 regs->gr[i] = pim_wide->gr[i];
365 for (i = 0; i < 32; i++)
366 regs->fr[i] = pim_wide->fr[i];
368 for (i = 0; i < 8; i++)
369 regs->sr[i] = pim_wide->sr[i];
371 regs->iasq[0] = pim_wide->cr[17];
372 regs->iasq[1] = pim_wide->iasq_back;
373 regs->iaoq[0] = pim_wide->cr[18];
374 regs->iaoq[1] = pim_wide->iaoq_back;
376 regs->sar = pim_wide->cr[11];
377 regs->iir = pim_wide->cr[19];
378 regs->isr = pim_wide->cr[20];
379 regs->ior = pim_wide->cr[21];
382 pim_narrow = (struct pdc_hpmc_pim_11 *)hpmc_pim_data;
384 regs->gr[0] = pim_narrow->cr[22];
386 for (i = 1; i < 32; i++)
387 regs->gr[i] = pim_narrow->gr[i];
389 for (i = 0; i < 32; i++)
390 regs->fr[i] = pim_narrow->fr[i];
392 for (i = 0; i < 8; i++)
393 regs->sr[i] = pim_narrow->sr[i];
395 regs->iasq[0] = pim_narrow->cr[17];
396 regs->iasq[1] = pim_narrow->iasq_back;
397 regs->iaoq[0] = pim_narrow->cr[18];
398 regs->iaoq[1] = pim_narrow->iaoq_back;
400 regs->sar = pim_narrow->cr[11];
401 regs->iir = pim_narrow->cr[19];
402 regs->isr = pim_narrow->cr[20];
403 regs->ior = pim_narrow->cr[21];
407 * The following fields only have meaning if we came through
408 * another path. So just zero them here.
418 * This routine is called as a last resort when everything else
419 * has gone clearly wrong. We get called for faults in kernel space,
422 void parisc_terminate(char *msg, struct pt_regs *regs, int code, unsigned long offset)
424 static DEFINE_SPINLOCK(terminate_lock);
426 oops_in_progress = 1;
430 spin_lock(&terminate_lock);
432 /* unlock the pdc lock if necessary */
433 pdc_emergency_unlock();
435 /* restart pdc console if necessary */
436 if (!console_drivers)
437 pdc_console_restart();
439 /* Not all paths will gutter the processor... */
443 transfer_pim_to_trap_frame(regs);
453 /* show_stack(NULL, (unsigned long *)regs->gr[30]); */
454 struct unwind_frame_info info;
455 unwind_frame_init(&info, current, regs);
456 do_show_stack(&info);
460 printk(KERN_CRIT "%s: Code=%d regs=%p (Addr=" RFMT ")\n",
461 msg, code, regs, offset);
464 spin_unlock(&terminate_lock);
466 /* put soft power button back under hardware control;
467 * if the user had pressed it once at any time, the
468 * system will shut down immediately right here. */
469 pdc_soft_power_button(0);
471 /* Call kernel panic() so reboot timeouts work properly
472 * FIXME: This function should be on the list of
473 * panic notifiers, and we should call panic
474 * directly from the location that we wish.
475 * e.g. We should not call panic from
476 * parisc_terminate, but rather the oter way around.
477 * This hack works, prints the panic message twice,
478 * and it enables reboot timers!
483 void handle_interruption(int code, struct pt_regs *regs)
485 unsigned long fault_address = 0;
486 unsigned long fault_space = 0;
490 pdc_console_restart(); /* switch back to pdc if HPMC */
495 * If the priority level is still user, and the
496 * faulting space is not equal to the active space
497 * then the user is attempting something in a space
498 * that does not belong to them. Kill the process.
500 * This is normally the situation when the user
501 * attempts to jump into the kernel space at the
502 * wrong offset, be it at the gateway page or a
505 * We cannot normally signal the process because it
506 * could *be* on the gateway page, and processes
507 * executing on the gateway page can't have signals
510 * We merely readjust the address into the users
511 * space, at a destination address of zero, and
512 * allow processing to continue.
514 if (((unsigned long)regs->iaoq[0] & 3) &&
515 ((unsigned long)regs->iasq[0] != (unsigned long)regs->sr[7])) {
516 /* Kill the user process later */
517 regs->iaoq[0] = 0 | 3;
518 regs->iaoq[1] = regs->iaoq[0] + 4;
519 regs->iasq[0] = regs->iasq[0] = regs->sr[7];
520 regs->gr[0] &= ~PSW_B;
525 printk(KERN_CRIT "Interruption # %d\n", code);
531 /* High-priority machine check (HPMC) */
533 /* set up a new led state on systems shipped with a LED State panel */
534 pdc_chassis_send_status(PDC_CHASSIS_DIRECT_HPMC);
536 parisc_terminate("High Priority Machine Check (HPMC)",
541 /* Power failure interrupt */
542 printk(KERN_CRIT "Power failure interrupt !\n");
546 /* Recovery counter trap */
547 regs->gr[0] &= ~PSW_R;
548 if (user_space(regs))
549 handle_gdb_break(regs, TRAP_TRACE);
550 /* else this must be the start of a syscall - just let it run */
554 /* Low-priority machine check */
555 pdc_chassis_send_status(PDC_CHASSIS_DIRECT_LPMC);
562 /* Instruction TLB miss fault/Instruction page fault */
563 fault_address = regs->iaoq[0];
564 fault_space = regs->iasq[0];
568 /* Illegal instruction trap */
569 die_if_kernel("Illegal instruction", regs, code);
570 si.si_code = ILL_ILLOPC;
574 /* Break instruction trap */
575 handle_break(regs->iir,regs);
579 /* Privileged operation trap */
580 die_if_kernel("Privileged operation", regs, code);
581 si.si_code = ILL_PRVOPC;
585 /* Privileged register trap */
586 if ((regs->iir & 0xffdfffe0) == 0x034008a0) {
588 /* This is a MFCTL cr26/cr27 to gr instruction.
589 * PCXS traps on this, so we need to emulate it.
592 if (regs->iir & 0x00200000)
593 regs->gr[regs->iir & 0x1f] = mfctl(27);
595 regs->gr[regs->iir & 0x1f] = mfctl(26);
597 regs->iaoq[0] = regs->iaoq[1];
599 regs->iasq[0] = regs->iasq[1];
603 die_if_kernel("Privileged register usage", regs, code);
604 si.si_code = ILL_PRVREG;
606 si.si_signo = SIGILL;
608 si.si_addr = (void __user *) regs->iaoq[0];
609 force_sig_info(SIGILL, &si, current);
613 /* Overflow Trap, let the userland signal handler do the cleanup */
614 si.si_signo = SIGFPE;
615 si.si_code = FPE_INTOVF;
616 si.si_addr = (void __user *) regs->iaoq[0];
617 force_sig_info(SIGFPE, &si, current);
622 The condition succees in an instruction which traps
625 si.si_signo = SIGFPE;
626 /* Set to zero, and let the userspace app figure it out from
627 the insn pointed to by si_addr */
629 si.si_addr = (void __user *) regs->iaoq[0];
630 force_sig_info(SIGFPE, &si, current);
633 /* The kernel doesn't want to handle condition codes */
637 /* Assist Exception Trap, i.e. floating point exception. */
638 die_if_kernel("Floating point exception", regs, 0); /* quiet */
643 /* Data TLB miss fault/Data page fault */
646 /* Non-access instruction TLB miss fault */
647 /* The instruction TLB entry needed for the target address of the FIC
648 is absent, and hardware can't find it, so we get to cleanup */
651 /* Non-access data TLB miss fault/Non-access data page fault */
653 Still need to add slow path emulation code here!
654 If the insn used a non-shadow register, then the tlb
655 handlers could not have their side-effect (e.g. probe
656 writing to a target register) emulated since rfir would
657 erase the changes to said register. Instead we have to
658 setup everything, call this function we are in, and emulate
659 by hand. Technically we need to emulate:
660 fdc,fdce,pdc,"fic,4f",prober,probeir,probew, probeiw
662 fault_address = regs->ior;
663 fault_space = regs->isr;
667 /* PCXS only -- later cpu's split this into types 26,27 & 28 */
668 /* Check for unaligned access */
669 if (check_unaligned(regs)) {
670 handle_unaligned(regs);
675 /* PCXL: Data memory access rights trap */
676 fault_address = regs->ior;
677 fault_space = regs->isr;
681 /* Data memory break trap */
682 regs->gr[0] |= PSW_X; /* So we can single-step over the trap */
685 /* Page reference trap */
686 handle_gdb_break(regs, TRAP_HWBKPT);
690 /* Taken branch trap */
691 regs->gr[0] &= ~PSW_T;
692 if (user_space(regs))
693 handle_gdb_break(regs, TRAP_BRANCH);
694 /* else this must be the start of a syscall - just let it
700 /* Instruction access rights */
701 /* PCXL: Instruction memory protection trap */
704 * This could be caused by either: 1) a process attempting
705 * to execute within a vma that does not have execute
706 * permission, or 2) an access rights violation caused by a
707 * flush only translation set up by ptep_get_and_clear().
708 * So we check the vma permissions to differentiate the two.
709 * If the vma indicates we have execute permission, then
710 * the cause is the latter one. In this case, we need to
711 * call do_page_fault() to fix the problem.
714 if (user_mode(regs)) {
715 struct vm_area_struct *vma;
717 down_read(¤t->mm->mmap_sem);
718 vma = find_vma(current->mm,regs->iaoq[0]);
719 if (vma && (regs->iaoq[0] >= vma->vm_start)
720 && (vma->vm_flags & VM_EXEC)) {
722 fault_address = regs->iaoq[0];
723 fault_space = regs->iasq[0];
725 up_read(¤t->mm->mmap_sem);
726 break; /* call do_page_fault() */
728 up_read(¤t->mm->mmap_sem);
732 /* Data memory protection ID trap */
733 die_if_kernel("Protection id trap", regs, code);
734 si.si_code = SEGV_MAPERR;
735 si.si_signo = SIGSEGV;
738 si.si_addr = (void __user *) regs->iaoq[0];
740 si.si_addr = (void __user *) regs->ior;
741 force_sig_info(SIGSEGV, &si, current);
745 /* Unaligned data reference trap */
746 handle_unaligned(regs);
750 if (user_mode(regs)) {
751 #ifdef PRINT_USER_FAULTS
752 printk(KERN_DEBUG "\nhandle_interruption() pid=%d command='%s'\n",
753 current->pid, current->comm);
756 /* SIGBUS, for lack of a better one. */
757 si.si_signo = SIGBUS;
758 si.si_code = BUS_OBJERR;
760 si.si_addr = (void __user *) regs->ior;
761 force_sig_info(SIGBUS, &si, current);
764 pdc_chassis_send_status(PDC_CHASSIS_DIRECT_PANIC);
766 parisc_terminate("Unexpected interruption", regs, code, 0);
770 if (user_mode(regs)) {
771 if ((fault_space >> SPACEID_SHIFT) != (regs->sr[7] >> SPACEID_SHIFT)) {
772 #ifdef PRINT_USER_FAULTS
773 if (fault_space == 0)
774 printk(KERN_DEBUG "User Fault on Kernel Space ");
776 printk(KERN_DEBUG "User Fault (long pointer) (fault %d) ",
778 printk("pid=%d command='%s'\n", current->pid, current->comm);
781 si.si_signo = SIGSEGV;
783 si.si_code = SEGV_MAPERR;
784 si.si_addr = (void __user *) regs->ior;
785 force_sig_info(SIGSEGV, &si, current);
792 * The kernel should never fault on its own address space.
795 if (fault_space == 0)
797 pdc_chassis_send_status(PDC_CHASSIS_DIRECT_PANIC);
798 parisc_terminate("Kernel Fault", regs, code, fault_address);
803 do_page_fault(regs, code, fault_address);
807 int __init check_ivt(void *iva)
814 extern void os_hpmc(void);
815 extern void os_hpmc_end(void);
817 if (strcmp((char *)iva, "cows can fly"))
822 for (i = 0; i < 8; i++)
825 /* Compute Checksum for HPMC handler */
827 length = (u32)((unsigned long)os_hpmc_end - (unsigned long)os_hpmc);
830 hpmcp = (u32 *)os_hpmc;
832 for (i=0; i<length/4; i++)
844 extern const void fault_vector_11;
846 extern const void fault_vector_20;
848 void __init trap_init(void)
852 if (boot_cpu_data.cpu_type >= pcxu)
853 iva = (void *) &fault_vector_20;
856 panic("Can't boot 64-bit OS on PA1.1 processor!");
858 iva = (void *) &fault_vector_11;
862 panic("IVT invalid");
git.samba.org / sfrench / cifs-2.6.git / blob