2 * Low leve TLB miss handlers for Book3E
4 * Copyright (C) 2008-2009
5 * Ben. Herrenschmidt (benh@kernel.crashing.org), IBM Corp.
7 * This program is free software; you can redistribute it and/or
8 * modify it under the terms of the GNU General Public License
9 * as published by the Free Software Foundation; either version
10 * 2 of the License, or (at your option) any later version.
13 #include <asm/processor.h>
17 #include <asm/ppc_asm.h>
18 #include <asm/asm-offsets.h>
19 #include <asm/cputable.h>
20 #include <asm/pgtable.h>
21 #include <asm/exception-64e.h>
22 #include <asm/ppc-opcode.h>
24 #ifdef CONFIG_PPC_64K_PAGES
25 #define VPTE_PMD_SHIFT (PTE_INDEX_SIZE+1)
27 #define VPTE_PMD_SHIFT (PTE_INDEX_SIZE)
29 #define VPTE_PUD_SHIFT (VPTE_PMD_SHIFT + PMD_INDEX_SIZE)
30 #define VPTE_PGD_SHIFT (VPTE_PUD_SHIFT + PUD_INDEX_SIZE)
31 #define VPTE_INDEX_SIZE (VPTE_PGD_SHIFT + PGD_INDEX_SIZE)
34 /**********************************************************************
36 * TLB miss handling for Book3E with TLB reservation and HES support *
38 **********************************************************************/
42 START_EXCEPTION(data_tlb_miss)
45 /* Now we handle the fault proper. We only save DEAR in normal
46 * fault case since that's the only interesting values here.
47 * We could probably also optimize by not saving SRR0/1 in the
48 * linear mapping case but I'll leave that for later
51 mfspr r16,SPRN_DEAR /* get faulting address */
52 srdi r15,r16,60 /* get region */
53 cmpldi cr0,r15,0xc /* linear mapping ? */
54 TLB_MISS_STATS_SAVE_INFO
55 beq tlb_load_linear /* yes -> go to linear map load */
57 /* The page tables are mapped virtually linear. At this point, though,
58 * we don't know whether we are trying to fault in a first level
59 * virtual address or a virtual page table address. We can get that
60 * from bit 0x1 of the region ID which we have set for a page table
63 bne- virt_page_table_tlb_miss
65 std r14,EX_TLB_ESR(r12); /* save ESR */
66 std r16,EX_TLB_DEAR(r12); /* save DEAR */
68 /* We need _PAGE_PRESENT and _PAGE_ACCESSED set */
70 oris r11,r11,_PAGE_ACCESSED@h
72 /* We do the user/kernel test for the PID here along with the RW test
74 cmpldi cr0,r15,0 /* Check for user region */
76 /* We pre-test some combination of permissions to avoid double
79 * We move the ESR:ST bit into the position of _PAGE_BAP_SW in the PTE
80 * ESR_ST is 0x00800000
81 * _PAGE_BAP_SW is 0x00000010
82 * So the shift is >> 19. This tests for supervisor writeability.
83 * If the page happens to be supervisor writeable and not user
84 * writeable, we will take a new fault later, but that should be
87 * We also move ESR_ST in _PAGE_DIRTY position
88 * _PAGE_DIRTY is 0x00001000 so the shift is >> 11
90 * MAS1 is preset for all we need except for TID that needs to
91 * be cleared for kernel translations
93 rlwimi r11,r14,32-19,27,27
94 rlwimi r11,r14,32-16,19,19
96 /* XXX replace the RMW cycles with immediate loads + writes */
97 1: mfspr r10,SPRN_MAS1
98 cmpldi cr0,r15,8 /* Check for vmalloc region */
99 rlwinm r10,r10,0,16,1 /* Clear TID */
103 /* We got a crappy address, just fault with whatever DEAR and ESR
106 TLB_MISS_STATS_D(MMSTAT_TLB_MISS_NORM_FAULT)
107 TLB_MISS_EPILOG_ERROR
108 b exc_data_storage_book3e
110 /* Instruction TLB miss */
111 START_EXCEPTION(instruction_tlb_miss)
114 /* If we take a recursive fault, the second level handler may need
115 * to know whether we are handling a data or instruction fault in
116 * order to get to the right store fault handler. We provide that
117 * info by writing a crazy value in ESR in our exception frame
119 li r14,-1 /* store to exception frame is done later */
121 /* Now we handle the fault proper. We only save DEAR in the non
122 * linear mapping case since we know the linear mapping case will
123 * not re-enter. We could indeed optimize and also not save SRR0/1
124 * in the linear mapping case but I'll leave that for later
126 * Faulting address is SRR0 which is already in r16
128 srdi r15,r16,60 /* get region */
129 cmpldi cr0,r15,0xc /* linear mapping ? */
130 TLB_MISS_STATS_SAVE_INFO
131 beq tlb_load_linear /* yes -> go to linear map load */
133 /* We do the user/kernel test for the PID here along with the RW test
135 li r11,_PAGE_PRESENT|_PAGE_EXEC /* Base perm */
136 oris r11,r11,_PAGE_ACCESSED@h
138 cmpldi cr0,r15,0 /* Check for user region */
139 std r14,EX_TLB_ESR(r12) /* write crazy -1 to frame */
141 /* XXX replace the RMW cycles with immediate loads + writes */
142 1: mfspr r10,SPRN_MAS1
143 cmpldi cr0,r15,8 /* Check for vmalloc region */
144 rlwinm r10,r10,0,16,1 /* Clear TID */
148 /* We got a crappy address, just fault */
149 TLB_MISS_STATS_I(MMSTAT_TLB_MISS_NORM_FAULT)
150 TLB_MISS_EPILOG_ERROR
151 b exc_instruction_storage_book3e
154 * This is the guts of the first-level TLB miss handler for direct
155 * misses. We are entered with:
157 * r16 = faulting address
159 * r14 = crap (free to use)
161 * r12 = TLB exception frame in PACA
162 * r11 = PTE permission mask
163 * r10 = crap (free to use)
166 /* So we first construct the page table address. We do that by
167 * shifting the bottom of the address (not the region ID) by
168 * PAGE_SHIFT-3, clearing the bottom 3 bits (get a PTE ptr) and
169 * or'ing the fourth high bit.
171 * NOTE: For 64K pages, we do things slightly differently in
172 * order to handle the weird page table format used by linux
175 #ifdef CONFIG_PPC_64K_PAGES
176 /* For the top bits, 16 bytes per PTE */
177 rldicl r14,r16,64-(PAGE_SHIFT-4),PAGE_SHIFT-4+4
178 /* Now create the bottom bits as 0 in position 0x8000 and
179 * the rest calculated for 8 bytes per PTE
181 rldicl r15,r16,64-(PAGE_SHIFT-3),64-15
182 /* Insert the bottom bits in */
183 rlwimi r14,r15,0,16,31
185 rldicl r14,r16,64-(PAGE_SHIFT-3),PAGE_SHIFT-3+4
191 BEGIN_MMU_FTR_SECTION
192 /* Set the TLB reservation and seach for existing entry. Then load
195 PPC_TLBSRX_DOT(0,r16)
197 beq normal_tlb_miss_done
200 ALT_MMU_FTR_SECTION_END_IFSET(MMU_FTR_USE_TLBRSRV)
202 finish_normal_tlb_miss:
203 /* Check if required permissions are met */
205 bne- normal_tlb_miss_access_fault
207 /* Now we build the MAS:
209 * MAS 0 : Fully setup with defaults in MAS4 and TLBnCFG
210 * MAS 1 : Almost fully setup
211 * - PID already updated by caller if necessary
212 * - TSIZE need change if !base page size, not
213 * yet implemented for now
214 * MAS 2 : Defaults not useful, need to be redone
215 * MAS 3+7 : Needs to be done
217 * TODO: mix up code below for better scheduling
219 clrrdi r11,r16,12 /* Clear low crap in EA */
220 rlwimi r11,r14,32-19,27,31 /* Insert WIMGE */
223 /* Check page size, if not standard, update MAS1 */
224 rldicl r11,r14,64-8,64-8
225 #ifdef CONFIG_PPC_64K_PAGES
226 cmpldi cr0,r11,BOOK3E_PAGESZ_64K
228 cmpldi cr0,r11,BOOK3E_PAGESZ_4K
232 rlwimi r11,r14,31,21,24
233 rlwinm r11,r11,0,21,19
236 /* Move RPN in position */
237 rldicr r11,r14,64-(PTE_RPN_SHIFT-PAGE_SHIFT),63-PAGE_SHIFT
238 clrldi r15,r11,12 /* Clear crap at the top */
239 rlwimi r15,r14,32-8,22,25 /* Move in U bits */
240 rlwimi r15,r14,32-2,26,31 /* Move in BAP bits */
242 /* Mask out SW and UW if !DIRTY (XXX optimize this !) */
243 andi. r11,r14,_PAGE_DIRTY
245 li r11,MAS3_SW|MAS3_UW
248 BEGIN_MMU_FTR_SECTION
253 mtspr SPRN_MAS7_MAS3,r15
254 ALT_MMU_FTR_SECTION_END_IFCLR(MMU_FTR_USE_PAIRED_MAS)
258 normal_tlb_miss_done:
259 /* We don't bother with restoring DEAR or ESR since we know we are
260 * level 0 and just going back to userland. They are only needed
261 * if you are going to take an access fault
263 TLB_MISS_STATS_X(MMSTAT_TLB_MISS_NORM_OK)
264 TLB_MISS_EPILOG_SUCCESS
267 normal_tlb_miss_access_fault:
268 /* We need to check if it was an instruction miss */
269 andi. r10,r11,_PAGE_EXEC
271 ld r14,EX_TLB_DEAR(r12)
272 ld r15,EX_TLB_ESR(r12)
275 TLB_MISS_STATS_D(MMSTAT_TLB_MISS_NORM_FAULT)
276 TLB_MISS_EPILOG_ERROR
277 b exc_data_storage_book3e
278 1: TLB_MISS_STATS_I(MMSTAT_TLB_MISS_NORM_FAULT)
279 TLB_MISS_EPILOG_ERROR
280 b exc_instruction_storage_book3e
284 * This is the guts of the second-level TLB miss handler for direct
285 * misses. We are entered with:
287 * r16 = virtual page table faulting address
288 * r15 = region (top 4 bits of address)
289 * r14 = crap (free to use)
291 * r12 = TLB exception frame in PACA
292 * r11 = crap (free to use)
293 * r10 = crap (free to use)
295 * Note that this should only ever be called as a second level handler
296 * with the current scheme when using SW load.
297 * That means we can always get the original fault DEAR at
298 * EX_TLB_DEAR-EX_TLB_SIZE(r12)
300 * It can be re-entered by the linear mapping miss handler. However, to
301 * avoid too much complication, it will restart the whole fault at level
302 * 0 so we don't care too much about clobbers
304 * XXX That code was written back when we couldn't clobber r14. We can now,
305 * so we could probably optimize things a bit
307 virt_page_table_tlb_miss:
308 /* Are we hitting a kernel page table ? */
311 /* The cool thing now is that r10 contains 0 for user and 8 for kernel,
312 * and we happen to have the swapper_pg_dir at offset 8 from the user
313 * pgdir in the PACA :-).
317 /* If kernel, we need to clear MAS1 TID */
319 /* XXX replace the RMW cycles with immediate loads + writes */
321 rlwinm r10,r10,0,16,1 /* Clear TID */
324 BEGIN_MMU_FTR_SECTION
325 /* Search if we already have a TLB entry for that virtual address, and
326 * if we do, bail out.
328 PPC_TLBSRX_DOT(0,r16)
329 beq virt_page_table_tlb_miss_done
330 END_MMU_FTR_SECTION_IFSET(MMU_FTR_USE_TLBRSRV)
332 /* Now, we need to walk the page tables. First check if we are in
335 rldicl. r10,r16,64-(VPTE_INDEX_SIZE+3),VPTE_INDEX_SIZE+3+4
336 bne- virt_page_table_tlb_miss_fault
338 /* Get the PGD pointer */
341 beq- virt_page_table_tlb_miss_fault
343 /* Get to PGD entry */
344 rldicl r11,r16,64-VPTE_PGD_SHIFT,64-PGD_INDEX_SIZE-3
348 beq virt_page_table_tlb_miss_fault
350 #ifndef CONFIG_PPC_64K_PAGES
351 /* Get to PUD entry */
352 rldicl r11,r16,64-VPTE_PUD_SHIFT,64-PUD_INDEX_SIZE-3
356 beq virt_page_table_tlb_miss_fault
357 #endif /* CONFIG_PPC_64K_PAGES */
359 /* Get to PMD entry */
360 rldicl r11,r16,64-VPTE_PMD_SHIFT,64-PMD_INDEX_SIZE-3
364 beq virt_page_table_tlb_miss_fault
366 /* Ok, we're all right, we can now create a kernel translation for
367 * a 4K or 64K page from r16 -> r15.
369 /* Now we build the MAS:
371 * MAS 0 : Fully setup with defaults in MAS4 and TLBnCFG
372 * MAS 1 : Almost fully setup
373 * - PID already updated by caller if necessary
374 * - TSIZE for now is base page size always
375 * MAS 2 : Use defaults
376 * MAS 3+7 : Needs to be done
378 * So we only do MAS 2 and 3 for now...
380 clrldi r11,r15,4 /* remove region ID from RPN */
381 ori r10,r11,1 /* Or-in SR */
383 BEGIN_MMU_FTR_SECTION
388 mtspr SPRN_MAS7_MAS3,r10
389 ALT_MMU_FTR_SECTION_END_IFCLR(MMU_FTR_USE_PAIRED_MAS)
393 BEGIN_MMU_FTR_SECTION
394 virt_page_table_tlb_miss_done:
396 /* We have overriden MAS2:EPN but currently our primary TLB miss
397 * handler will always restore it so that should not be an issue,
398 * if we ever optimize the primary handler to not write MAS2 on
399 * some cases, we'll have to restore MAS2:EPN here based on the
400 * original fault's DEAR. If we do that we have to modify the
401 * ITLB miss handler to also store SRR0 in the exception frame
404 * However, one nasty thing we did is we cleared the reservation
405 * (well, potentially we did). We do a trick here thus if we
406 * are not a level 0 exception (we interrupted the TLB miss) we
407 * offset the return address by -4 in order to replay the tlbsrx
411 cmpldi cr0,r10,PACA_EXTLB+EX_TLB_SIZE
413 ld r11,PACA_EXTLB+EX_TLB_SIZE+EX_TLB_SRR0(r13)
415 std r10,PACA_EXTLB+EX_TLB_SIZE+EX_TLB_SRR0(r13)
417 END_MMU_FTR_SECTION_IFSET(MMU_FTR_USE_TLBRSRV)
418 /* Return to caller, normal case */
419 TLB_MISS_STATS_X(MMSTAT_TLB_MISS_PT_OK);
420 TLB_MISS_EPILOG_SUCCESS
423 virt_page_table_tlb_miss_fault:
424 /* If we fault here, things are a little bit tricky. We need to call
425 * either data or instruction store fault, and we need to retreive
426 * the original fault address and ESR (for data).
428 * The thing is, we know that in normal circumstances, this is
429 * always called as a second level tlb miss for SW load or as a first
430 * level TLB miss for HW load, so we should be able to peek at the
431 * relevant informations in the first exception frame in the PACA.
433 * However, we do need to double check that, because we may just hit
434 * a stray kernel pointer or a userland attack trying to hit those
435 * areas. If that is the case, we do a data fault. (We can't get here
436 * from an instruction tlb miss anyway).
438 * Note also that when going to a fault, we must unwind the previous
439 * level as well. Since we are doing that, we don't need to clear or
440 * restore the TLB reservation neither.
443 cmpldi cr0,r10,PACA_EXTLB+EX_TLB_SIZE
444 bne- virt_page_table_tlb_miss_whacko_fault
446 /* We dig the original DEAR and ESR from slot 0 */
447 ld r15,EX_TLB_DEAR+PACA_EXTLB(r13)
448 ld r16,EX_TLB_ESR+PACA_EXTLB(r13)
450 /* We check for the "special" ESR value for instruction faults */
455 TLB_MISS_STATS_D(MMSTAT_TLB_MISS_PT_FAULT);
456 TLB_MISS_EPILOG_ERROR
457 b exc_data_storage_book3e
458 1: TLB_MISS_STATS_I(MMSTAT_TLB_MISS_PT_FAULT);
459 TLB_MISS_EPILOG_ERROR
460 b exc_instruction_storage_book3e
462 virt_page_table_tlb_miss_whacko_fault:
463 /* The linear fault will restart everything so ESR and DEAR will
464 * not have been clobbered, let's just fault with what we have
466 TLB_MISS_STATS_X(MMSTAT_TLB_MISS_PT_FAULT);
467 TLB_MISS_EPILOG_ERROR
468 b exc_data_storage_book3e
471 /**************************************************************
473 * TLB miss handling for Book3E with hw page table support *
475 **************************************************************/
479 START_EXCEPTION(data_tlb_miss_htw)
482 /* Now we handle the fault proper. We only save DEAR in normal
483 * fault case since that's the only interesting values here.
484 * We could probably also optimize by not saving SRR0/1 in the
485 * linear mapping case but I'll leave that for later
488 mfspr r16,SPRN_DEAR /* get faulting address */
489 srdi r11,r16,60 /* get region */
490 cmpldi cr0,r11,0xc /* linear mapping ? */
491 TLB_MISS_STATS_SAVE_INFO
492 beq tlb_load_linear /* yes -> go to linear map load */
494 /* We do the user/kernel test for the PID here along with the RW test
496 cmpldi cr0,r11,0 /* Check for user region */
497 ld r15,PACAPGD(r13) /* Load user pgdir */
500 /* XXX replace the RMW cycles with immediate loads + writes */
501 1: mfspr r10,SPRN_MAS1
502 cmpldi cr0,r11,8 /* Check for vmalloc region */
503 rlwinm r10,r10,0,16,1 /* Clear TID */
505 ld r15,PACA_KERNELPGD(r13) /* Load kernel pgdir */
508 /* We got a crappy address, just fault with whatever DEAR and ESR
511 TLB_MISS_STATS_D(MMSTAT_TLB_MISS_NORM_FAULT)
512 TLB_MISS_EPILOG_ERROR
513 b exc_data_storage_book3e
515 /* Instruction TLB miss */
516 START_EXCEPTION(instruction_tlb_miss_htw)
519 /* If we take a recursive fault, the second level handler may need
520 * to know whether we are handling a data or instruction fault in
521 * order to get to the right store fault handler. We provide that
522 * info by keeping a crazy value for ESR in r14
524 li r14,-1 /* store to exception frame is done later */
526 /* Now we handle the fault proper. We only save DEAR in the non
527 * linear mapping case since we know the linear mapping case will
528 * not re-enter. We could indeed optimize and also not save SRR0/1
529 * in the linear mapping case but I'll leave that for later
531 * Faulting address is SRR0 which is already in r16
533 srdi r11,r16,60 /* get region */
534 cmpldi cr0,r11,0xc /* linear mapping ? */
535 TLB_MISS_STATS_SAVE_INFO
536 beq tlb_load_linear /* yes -> go to linear map load */
538 /* We do the user/kernel test for the PID here along with the RW test
540 cmpldi cr0,r11,0 /* Check for user region */
541 ld r15,PACAPGD(r13) /* Load user pgdir */
544 /* XXX replace the RMW cycles with immediate loads + writes */
545 1: mfspr r10,SPRN_MAS1
546 cmpldi cr0,r11,8 /* Check for vmalloc region */
547 rlwinm r10,r10,0,16,1 /* Clear TID */
549 ld r15,PACA_KERNELPGD(r13) /* Load kernel pgdir */
552 /* We got a crappy address, just fault */
553 TLB_MISS_STATS_I(MMSTAT_TLB_MISS_NORM_FAULT)
554 TLB_MISS_EPILOG_ERROR
555 b exc_instruction_storage_book3e
559 * This is the guts of the second-level TLB miss handler for direct
560 * misses. We are entered with:
562 * r16 = virtual page table faulting address
566 * r12 = TLB exception frame in PACA
567 * r11 = crap (free to use)
568 * r10 = crap (free to use)
570 * It can be re-entered by the linear mapping miss handler. However, to
571 * avoid too much complication, it will save/restore things for us
574 /* Search if we already have a TLB entry for that virtual address, and
575 * if we do, bail out.
577 * MAS1:IND should be already set based on MAS4
579 PPC_TLBSRX_DOT(0,r16)
580 beq htw_tlb_miss_done
582 /* Now, we need to walk the page tables. First check if we are in
585 rldicl. r10,r16,64-PGTABLE_EADDR_SIZE,PGTABLE_EADDR_SIZE+4
586 bne- htw_tlb_miss_fault
588 /* Get the PGD pointer */
590 beq- htw_tlb_miss_fault
592 /* Get to PGD entry */
593 rldicl r11,r16,64-(PGDIR_SHIFT-3),64-PGD_INDEX_SIZE-3
597 beq htw_tlb_miss_fault
599 #ifndef CONFIG_PPC_64K_PAGES
600 /* Get to PUD entry */
601 rldicl r11,r16,64-(PUD_SHIFT-3),64-PUD_INDEX_SIZE-3
605 beq htw_tlb_miss_fault
606 #endif /* CONFIG_PPC_64K_PAGES */
608 /* Get to PMD entry */
609 rldicl r11,r16,64-(PMD_SHIFT-3),64-PMD_INDEX_SIZE-3
613 beq htw_tlb_miss_fault
615 /* Ok, we're all right, we can now create an indirect entry for
618 * The last trick is now that because we use "half" pages for
619 * the HTW (1M IND is 2K and 256M IND is 32K) we need to account
620 * for an added LSB bit to the RPN. For 64K pages, there is no
621 * problem as we already use 32K arrays (half PTE pages), but for
622 * 4K page we need to extract a bit from the virtual address and
623 * insert it into the "PA52" bit of the RPN.
625 #ifndef CONFIG_PPC_64K_PAGES
626 rlwimi r15,r16,32-9,20,20
628 /* Now we build the MAS:
630 * MAS 0 : Fully setup with defaults in MAS4 and TLBnCFG
631 * MAS 1 : Almost fully setup
632 * - PID already updated by caller if necessary
633 * - TSIZE for now is base ind page size always
634 * MAS 2 : Use defaults
635 * MAS 3+7 : Needs to be done
637 #ifdef CONFIG_PPC_64K_PAGES
638 ori r10,r15,(BOOK3E_PAGESZ_64K << MAS3_SPSIZE_SHIFT)
640 ori r10,r15,(BOOK3E_PAGESZ_4K << MAS3_SPSIZE_SHIFT)
643 BEGIN_MMU_FTR_SECTION
648 mtspr SPRN_MAS7_MAS3,r10
649 ALT_MMU_FTR_SECTION_END_IFCLR(MMU_FTR_USE_PAIRED_MAS)
654 /* We don't bother with restoring DEAR or ESR since we know we are
655 * level 0 and just going back to userland. They are only needed
656 * if you are going to take an access fault
658 TLB_MISS_STATS_X(MMSTAT_TLB_MISS_PT_OK)
659 TLB_MISS_EPILOG_SUCCESS
663 /* We need to check if it was an instruction miss. We know this
664 * though because r14 would contain -1
670 TLB_MISS_STATS_D(MMSTAT_TLB_MISS_PT_FAULT)
671 TLB_MISS_EPILOG_ERROR
672 b exc_data_storage_book3e
673 1: TLB_MISS_STATS_I(MMSTAT_TLB_MISS_PT_FAULT)
674 TLB_MISS_EPILOG_ERROR
675 b exc_instruction_storage_book3e
678 * This is the guts of "any" level TLB miss handler for kernel linear
679 * mapping misses. We are entered with:
682 * r16 = faulting address
683 * r15 = crap (free to use)
684 * r14 = ESR (data) or -1 (instruction)
686 * r12 = TLB exception frame in PACA
687 * r11 = crap (free to use)
688 * r10 = crap (free to use)
690 * In addition we know that we will not re-enter, so in theory, we could
691 * use a simpler epilog not restoring SRR0/1 etc.. but we'll do that later.
693 * We also need to be careful about MAS registers here & TLB reservation,
694 * as we know we'll have clobbered them if we interrupt the main TLB miss
695 * handlers in which case we probably want to do a full restart at level
696 * 0 rather than saving / restoring the MAS.
698 * Note: If we care about performance of that core, we can easily shuffle
699 * a few things around
702 /* For now, we assume the linear mapping is contiguous and stops at
703 * linear_map_top. We also assume the size is a multiple of 1G, thus
704 * we only use 1G pages for now. That might have to be changed in a
705 * final implementation, especially when dealing with hypervisors
708 ld r11,linear_map_top@got(r11)
711 bge tlb_load_linear_fault
713 /* MAS1 need whole new setup. */
714 li r15,(BOOK3E_PAGESZ_1GB<<MAS1_TSIZE_SHIFT)
715 oris r15,r15,MAS1_VALID@h /* MAS1 needs V and TSIZE */
718 /* Already somebody there ? */
719 PPC_TLBSRX_DOT(0,r16)
720 beq tlb_load_linear_done
722 /* Now we build the remaining MAS. MAS0 and 2 should be fine
723 * with their defaults, which leaves us with MAS 3 and 7. The
724 * mapping is linear, so we just take the address, clear the
725 * region bits, and or in the permission bits which are currently
728 clrrdi r10,r16,30 /* 1G page index */
729 clrldi r10,r10,4 /* clear region bits */
730 ori r10,r10,MAS3_SR|MAS3_SW|MAS3_SX
732 BEGIN_MMU_FTR_SECTION
737 mtspr SPRN_MAS7_MAS3,r10
738 ALT_MMU_FTR_SECTION_END_IFCLR(MMU_FTR_USE_PAIRED_MAS)
742 tlb_load_linear_done:
743 /* We use the "error" epilog for success as we do want to
744 * restore to the initial faulting context, whatever it was.
745 * We do that because we can't resume a fault within a TLB
746 * miss handler, due to MAS and TLB reservation being clobbered.
748 TLB_MISS_STATS_X(MMSTAT_TLB_MISS_LINEAR)
749 TLB_MISS_EPILOG_ERROR
752 tlb_load_linear_fault:
753 /* We keep the DEAR and ESR around, this shouldn't have happened */
756 TLB_MISS_EPILOG_ERROR_SPECIAL
757 b exc_data_storage_book3e
758 1: TLB_MISS_EPILOG_ERROR_SPECIAL
759 b exc_instruction_storage_book3e
762 #ifdef CONFIG_BOOK3E_MMU_TLB_STATS
git.openpandora.org / pandora-kernel.git / blob