2 * arch/ppc/kernel/except_8xx.S
5 * Copyright (C) 1995-1996 Gary Thomas (gdt@linuxppc.org)
6 * Rewritten by Cort Dougan (cort@cs.nmt.edu) for PReP
7 * Copyright (C) 1996 Cort Dougan <cort@cs.nmt.edu>
8 * Low-level exception handlers and MMU support
9 * rewritten by Paul Mackerras.
10 * Copyright (C) 1996 Paul Mackerras.
11 * MPC8xx modifications by Dan Malek
12 * Copyright (C) 1997 Dan Malek (dmalek@jlc.net).
14 * This file contains low-level support and setup for PowerPC 8xx
15 * embedded processors, including trap and interrupt dispatch.
17 * This program is free software; you can redistribute it and/or
18 * modify it under the terms of the GNU General Public License
19 * as published by the Free Software Foundation; either version
20 * 2 of the License, or (at your option) any later version.
24 #include <linux/config.h>
25 #include <asm/processor.h>
28 #include <asm/cache.h>
29 #include <asm/pgtable.h>
30 #include <asm/cputable.h>
31 #include <asm/thread_info.h>
32 #include <asm/ppc_asm.h>
33 #include <asm/asm-offsets.h>
35 /* Macro to make the code more readable. */
36 #ifdef CONFIG_8xx_CPU6
37 #define DO_8xx_CPU6(val, reg) \
42 #define DO_8xx_CPU6(val, reg)
52 * This port was done on an MBX board with an 860. Right now I only
53 * support an ELF compressed (zImage) boot from EPPC-Bug because the
54 * code there loads up some registers before calling us:
55 * r3: ptr to board info data
56 * r4: initrd_start or if no initrd then 0
57 * r5: initrd_end - unused if r4 is 0
58 * r6: Start of command line string
59 * r7: End of command line string
61 * I decided to use conditional compilation instead of checking PVR and
62 * adding more processor specific branches around code I don't need.
63 * Since this is an embedded processor, I also appreciate any memory
66 * The MPC8xx does not have any BATs, but it supports large page sizes.
67 * We first initialize the MMU to support 8M byte pages, then load one
68 * entry into each of the instruction and data TLBs to map the first
69 * 8M 1:1. I also mapped an additional I/O space 1:1 so we can get to
70 * the "internal" processor registers before MMU_init is called.
72 * The TLB code currently contains a major hack. Since I use the condition
73 * code register, I have to save and restore it. I am out of registers, so
74 * I just store it in memory location 0 (the TLB handlers are not reentrant).
75 * To avoid making any decisions, I need to use the "segment" valid bit
76 * in the first level table, but that would require many changes to the
77 * Linux page directory/table functions that I don't want to do right now.
79 * I used to use SPRG2 for a temporary register in the TLB handler, but it
80 * has since been put to other uses. I now use a hack to save a register
81 * and the CCR at memory location 0.....Someday I'll fix this.....
86 mr r31,r3 /* save parameters */
92 /* We have to turn on the MMU right away so we get cache modes
97 /* We now have the lower 8 Meg mapped into TLB entries, and the caches
103 ori r0,r0,MSR_DR|MSR_IR
106 ori r0,r0,start_here@l
109 rfi /* enables MMU */
112 * Exception entry code. This code runs with address translation
113 * turned off, i.e. using physical addresses.
114 * We assume sprg3 has the physical address of the current
115 * task's thread_struct.
117 #define EXCEPTION_PROLOG \
118 mtspr SPRN_SPRG0,r10; \
119 mtspr SPRN_SPRG1,r11; \
121 EXCEPTION_PROLOG_1; \
124 #define EXCEPTION_PROLOG_1 \
125 mfspr r11,SPRN_SRR1; /* check whether user or kernel */ \
126 andi. r11,r11,MSR_PR; \
127 tophys(r11,r1); /* use tophys(r1) if kernel */ \
129 mfspr r11,SPRN_SPRG3; \
130 lwz r11,THREAD_INFO-THREAD(r11); \
131 addi r11,r11,THREAD_SIZE; \
133 1: subi r11,r11,INT_FRAME_SIZE /* alloc exc. frame */
136 #define EXCEPTION_PROLOG_2 \
138 stw r10,_CCR(r11); /* save registers */ \
139 stw r12,GPR12(r11); \
141 mfspr r10,SPRN_SPRG0; \
142 stw r10,GPR10(r11); \
143 mfspr r12,SPRN_SPRG1; \
144 stw r12,GPR11(r11); \
146 stw r10,_LINK(r11); \
147 mfspr r12,SPRN_SRR0; \
148 mfspr r9,SPRN_SRR1; \
151 tovirt(r1,r11); /* set new kernel sp */ \
152 li r10,MSR_KERNEL & ~(MSR_IR|MSR_DR); /* can take exceptions */ \
153 MTMSRD(r10); /* (except for mach check in rtas) */ \
155 SAVE_4GPRS(3, r11); \
159 * Note: code which follows this uses cr0.eq (set if from kernel),
160 * r11, r12 (SRR0), and r9 (SRR1).
162 * Note2: once we have set r1 we are in a position to take exceptions
163 * again, and we could thus set MSR:RI at that point.
169 #define EXCEPTION(n, label, hdlr, xfer) \
173 addi r3,r1,STACK_FRAME_OVERHEAD; \
176 #define EXC_XFER_TEMPLATE(n, hdlr, trap, copyee, tfer, ret) \
186 #define COPY_EE(d, s) rlwimi d,s,0,16,16
189 #define EXC_XFER_STD(n, hdlr) \
190 EXC_XFER_TEMPLATE(n, hdlr, n, NOCOPY, transfer_to_handler_full, \
191 ret_from_except_full)
193 #define EXC_XFER_LITE(n, hdlr) \
194 EXC_XFER_TEMPLATE(n, hdlr, n+1, NOCOPY, transfer_to_handler, \
197 #define EXC_XFER_EE(n, hdlr) \
198 EXC_XFER_TEMPLATE(n, hdlr, n, COPY_EE, transfer_to_handler_full, \
199 ret_from_except_full)
201 #define EXC_XFER_EE_LITE(n, hdlr) \
202 EXC_XFER_TEMPLATE(n, hdlr, n+1, COPY_EE, transfer_to_handler, \
206 EXCEPTION(0x100, Reset, unknown_exception, EXC_XFER_STD)
216 addi r3,r1,STACK_FRAME_OVERHEAD
217 EXC_XFER_STD(0x200, machine_check_exception)
219 /* Data access exception.
220 * This is "never generated" by the MPC8xx. We jump to it for other
221 * translation errors.
230 EXC_XFER_EE_LITE(0x300, handle_page_fault)
232 /* Instruction access exception.
233 * This is "never generated" by the MPC8xx. We jump to it for other
234 * translation errors.
241 EXC_XFER_EE_LITE(0x400, handle_page_fault)
243 /* External interrupt */
244 EXCEPTION(0x500, HardwareInterrupt, do_IRQ, EXC_XFER_LITE)
246 /* Alignment exception */
254 addi r3,r1,STACK_FRAME_OVERHEAD
255 EXC_XFER_EE(0x600, alignment_exception)
257 /* Program check exception */
258 EXCEPTION(0x700, ProgramCheck, program_check_exception, EXC_XFER_STD)
260 /* No FPU on MPC8xx. This exception is not supposed to happen.
262 EXCEPTION(0x800, FPUnavailable, unknown_exception, EXC_XFER_STD)
265 EXCEPTION(0x900, Decrementer, timer_interrupt, EXC_XFER_LITE)
267 EXCEPTION(0xa00, Trap_0a, unknown_exception, EXC_XFER_EE)
268 EXCEPTION(0xb00, Trap_0b, unknown_exception, EXC_XFER_EE)
274 EXC_XFER_EE_LITE(0xc00, DoSyscall)
276 /* Single step - not used on 601 */
277 EXCEPTION(0xd00, SingleStep, single_step_exception, EXC_XFER_STD)
278 EXCEPTION(0xe00, Trap_0e, unknown_exception, EXC_XFER_EE)
279 EXCEPTION(0xf00, Trap_0f, unknown_exception, EXC_XFER_EE)
281 /* On the MPC8xx, this is a software emulation interrupt. It occurs
282 * for all unimplemented and illegal instructions.
284 EXCEPTION(0x1000, SoftEmu, SoftwareEmulation, EXC_XFER_STD)
288 * For the MPC8xx, this is a software tablewalk to load the instruction
289 * TLB. It is modelled after the example in the Motorola manual. The task
290 * switch loads the M_TWB register with the pointer to the first level table.
291 * If we discover there is no second level table (value is zero) or if there
292 * is an invalid pte, we load that into the TLB, which causes another fault
293 * into the TLB Error interrupt where we can handle such problems.
294 * We have to use the MD_xxx registers for the tablewalk because the
295 * equivalent MI_xxx registers only perform the attribute functions.
298 #ifdef CONFIG_8xx_CPU6
301 DO_8xx_CPU6(0x3f80, r3)
302 mtspr SPRN_M_TW, r10 /* Save a couple of working registers */
306 mfspr r10, SPRN_SRR0 /* Get effective address of fault */
307 DO_8xx_CPU6(0x3780, r3)
308 mtspr SPRN_MD_EPN, r10 /* Have to use MD_EPN for walk, MI_EPN can't */
309 mfspr r10, SPRN_M_TWB /* Get level 1 table entry address */
311 /* If we are faulting a kernel address, we have to use the
312 * kernel page tables.
314 andi. r11, r10, 0x0800 /* Address >= 0x80000000 */
316 lis r11, swapper_pg_dir@h
317 ori r11, r11, swapper_pg_dir@l
318 rlwimi r10, r11, 0, 2, 19
320 lwz r11, 0(r10) /* Get the level 1 entry */
321 rlwinm. r10, r11,0,0,19 /* Extract page descriptor page address */
322 beq 2f /* If zero, don't try to find a pte */
324 /* We have a pte table, so load the MI_TWC with the attributes
325 * for this "segment."
327 ori r11,r11,1 /* Set valid bit */
328 DO_8xx_CPU6(0x2b80, r3)
329 mtspr SPRN_MI_TWC, r11 /* Set segment attributes */
330 DO_8xx_CPU6(0x3b80, r3)
331 mtspr SPRN_MD_TWC, r11 /* Load pte table base address */
332 mfspr r11, SPRN_MD_TWC /* ....and get the pte address */
333 lwz r10, 0(r11) /* Get the pte */
335 ori r10, r10, _PAGE_ACCESSED
338 /* The Linux PTE won't go exactly into the MMU TLB.
339 * Software indicator bits 21, 22 and 28 must be clear.
340 * Software indicator bits 24, 25, 26, and 27 must be
341 * set. All other Linux PTE bits control the behavior
345 rlwimi r10, r11, 0, 24, 28 /* Set 24-27, clear 28 */
346 DO_8xx_CPU6(0x2d80, r3)
347 mtspr SPRN_MI_RPN, r10 /* Update TLB entry */
349 mfspr r10, SPRN_M_TW /* Restore registers */
353 #ifdef CONFIG_8xx_CPU6
360 #ifdef CONFIG_8xx_CPU6
363 DO_8xx_CPU6(0x3f80, r3)
364 mtspr SPRN_M_TW, r10 /* Save a couple of working registers */
368 mfspr r10, SPRN_M_TWB /* Get level 1 table entry address */
370 /* If we are faulting a kernel address, we have to use the
371 * kernel page tables.
373 andi. r11, r10, 0x0800
375 lis r11, swapper_pg_dir@h
376 ori r11, r11, swapper_pg_dir@l
377 rlwimi r10, r11, 0, 2, 19
381 lwz r11, 0(r10) /* Get the level 1 entry */
382 rlwinm. r10, r11,0,0,19 /* Extract page descriptor page address */
383 beq 2f /* If zero, don't try to find a pte */
385 /* We have a pte table, so load fetch the pte from the table.
387 ori r11, r11, 1 /* Set valid bit in physical L2 page */
388 DO_8xx_CPU6(0x3b80, r3)
389 mtspr SPRN_MD_TWC, r11 /* Load pte table base address */
390 mfspr r10, SPRN_MD_TWC /* ....and get the pte address */
391 lwz r10, 0(r10) /* Get the pte */
393 /* Insert the Guarded flag into the TWC from the Linux PTE.
394 * It is bit 27 of both the Linux PTE and the TWC (at least
395 * I got that right :-). It will be better when we can put
396 * this into the Linux pgd/pmd and load it in the operation
399 rlwimi r11, r10, 0, 27, 27
400 DO_8xx_CPU6(0x3b80, r3)
401 mtspr SPRN_MD_TWC, r11
403 mfspr r11, SPRN_MD_TWC /* get the pte address again */
404 ori r10, r10, _PAGE_ACCESSED
407 /* The Linux PTE won't go exactly into the MMU TLB.
408 * Software indicator bits 21, 22 and 28 must be clear.
409 * Software indicator bits 24, 25, 26, and 27 must be
410 * set. All other Linux PTE bits control the behavior
414 rlwimi r10, r11, 0, 24, 28 /* Set 24-27, clear 28 */
415 DO_8xx_CPU6(0x3d80, r3)
416 mtspr SPRN_MD_RPN, r10 /* Update TLB entry */
418 mfspr r10, SPRN_M_TW /* Restore registers */
422 #ifdef CONFIG_8xx_CPU6
427 /* This is an instruction TLB error on the MPC8xx. This could be due
428 * to many reasons, such as executing guarded memory or illegal instruction
429 * addresses. There is nothing to do but handle a big time error fault.
437 lwz r11, 0(r10) /* Get the level 1 entry */
438 rlwinm. r10, r11,0,0,19 /* Extract page descriptor page address */
439 beq 3f /* If zero, don't try to find a pte */
441 /* We have a pte table, so load fetch the pte from the table.
443 ori r11, r11, 1 /* Set valid bit in physical L2 page */
444 DO_8xx_CPU6(0x3b80, r3)
445 mtspr SPRN_MD_TWC, r11 /* Load pte table base address */
446 mfspr r10, SPRN_MD_TWC /* ....and get the pte address */
447 lwz r10, 0(r10) /* Get the pte */
449 /* Insert the Guarded flag into the TWC from the Linux PTE.
450 * It is bit 27 of both the Linux PTE and the TWC (at least
451 * I got that right :-). It will be better when we can put
452 * this into the Linux pgd/pmd and load it in the operation
455 rlwimi r11, r10, 0, 27, 27
457 rlwimi r12, r10, 0, 0, 9 /* extract phys. addr */
458 mfspr r3, SPRN_MD_EPN
459 rlwinm r3, r3, 0, 0, 9 /* extract virtual address */
461 cmpw r3, r12 /* only use 8M page if it is a direct
464 ori r11, r11, MD_PS8MEG
468 li r12, 0 /* can't use 8MB TLB, so zero r12. */
470 DO_8xx_CPU6(0x3b80, r3)
471 mtspr SPRN_MD_TWC, r11
473 /* The Linux PTE won't go exactly into the MMU TLB.
474 * Software indicator bits 21, 22 and 28 must be clear.
475 * Software indicator bits 24, 25, 26, and 27 must be
476 * set. All other Linux PTE bits control the behavior
480 rlwimi r10, r11, 0, 24, 28 /* Set 24-27, clear 28 */
485 mfspr r12, SPRN_MD_EPN
486 lis r3, 0xff80 /* 10-19 must be clear for 8MB TLB */
489 DO_8xx_CPU6(0x3780, r3)
490 mtspr SPRN_MD_EPN, r12
492 lis r3, 0xff80 /* 10-19 must be clear for 8MB TLB */
496 DO_8xx_CPU6(0x3d80, r3)
497 mtspr SPRN_MD_RPN, r10 /* Update TLB entry */
499 mfspr r10, SPRN_M_TW /* Restore registers */
505 #ifdef CONFIG_8xx_CPU6
510 /* This is the data TLB error on the MPC8xx. This could be due to
511 * many reasons, including a dirty update to a pte. We can catch that
512 * one here, but anything else is an error. First, we track down the
513 * Linux pte. If it is valid, write access is allowed, but the
514 * page dirty bit is not set, we will set it and reload the TLB. For
515 * any other case, we bail out to a higher level function that can
520 #ifdef CONFIG_8xx_CPU6
523 DO_8xx_CPU6(0x3f80, r3)
524 mtspr SPRN_M_TW, r10 /* Save a couple of working registers */
529 /* First, make sure this was a store operation.
531 mfspr r10, SPRN_DSISR
532 andis. r11, r10, 0x0200 /* If set, indicates store op */
535 /* The EA of a data TLB miss is automatically stored in the MD_EPN
536 * register. The EA of a data TLB error is automatically stored in
537 * the DAR, but not the MD_EPN register. We must copy the 20 most
538 * significant bits of the EA from the DAR to MD_EPN before we
539 * start walking the page tables. We also need to copy the CASID
540 * value from the M_CASID register.
541 * Addendum: The EA of a data TLB error is _supposed_ to be stored
542 * in DAR, but it seems that this doesn't happen in some cases, such
543 * as when the error is due to a dcbi instruction to a page with a
544 * TLB that doesn't have the changed bit set. In such cases, there
545 * does not appear to be any way to recover the EA of the error
546 * since it is neither in DAR nor MD_EPN. As a workaround, the
547 * _PAGE_HWWRITE bit is set for all kernel data pages when the PTEs
548 * are initialized in mapin_ram(). This will avoid the problem,
549 * assuming we only use the dcbi instruction on kernel addresses.
552 rlwinm r11, r10, 0, 0, 19
553 ori r11, r11, MD_EVALID
554 mfspr r10, SPRN_M_CASID
555 rlwimi r11, r10, 0, 28, 31
556 DO_8xx_CPU6(0x3780, r3)
557 mtspr SPRN_MD_EPN, r11
559 mfspr r10, SPRN_M_TWB /* Get level 1 table entry address */
561 /* If we are faulting a kernel address, we have to use the
562 * kernel page tables.
564 andi. r11, r10, 0x0800
566 lis r11, swapper_pg_dir@h
567 ori r11, r11, swapper_pg_dir@l
568 rlwimi r10, r11, 0, 2, 19
570 lwz r11, 0(r10) /* Get the level 1 entry */
571 rlwinm. r10, r11,0,0,19 /* Extract page descriptor page address */
572 beq 2f /* If zero, bail */
574 /* We have a pte table, so fetch the pte from the table.
576 ori r11, r11, 1 /* Set valid bit in physical L2 page */
577 DO_8xx_CPU6(0x3b80, r3)
578 mtspr SPRN_MD_TWC, r11 /* Load pte table base address */
579 mfspr r11, SPRN_MD_TWC /* ....and get the pte address */
580 lwz r10, 0(r11) /* Get the pte */
582 andi. r11, r10, _PAGE_RW /* Is it writeable? */
583 beq 2f /* Bail out if not */
585 /* Update 'changed', among others.
587 ori r10, r10, _PAGE_DIRTY|_PAGE_ACCESSED|_PAGE_HWWRITE
588 mfspr r11, SPRN_MD_TWC /* Get pte address again */
589 stw r10, 0(r11) /* and update pte in table */
591 /* The Linux PTE won't go exactly into the MMU TLB.
592 * Software indicator bits 21, 22 and 28 must be clear.
593 * Software indicator bits 24, 25, 26, and 27 must be
594 * set. All other Linux PTE bits control the behavior
598 rlwimi r10, r11, 0, 24, 28 /* Set 24-27, clear 28 */
599 DO_8xx_CPU6(0x3d80, r3)
600 mtspr SPRN_MD_RPN, r10 /* Update TLB entry */
602 mfspr r10, SPRN_M_TW /* Restore registers */
606 #ifdef CONFIG_8xx_CPU6
611 mfspr r10, SPRN_M_TW /* Restore registers */
615 #ifdef CONFIG_8xx_CPU6
620 EXCEPTION(0x1500, Trap_15, unknown_exception, EXC_XFER_EE)
621 EXCEPTION(0x1600, Trap_16, unknown_exception, EXC_XFER_EE)
622 EXCEPTION(0x1700, Trap_17, unknown_exception, EXC_XFER_EE)
623 EXCEPTION(0x1800, Trap_18, unknown_exception, EXC_XFER_EE)
624 EXCEPTION(0x1900, Trap_19, unknown_exception, EXC_XFER_EE)
625 EXCEPTION(0x1a00, Trap_1a, unknown_exception, EXC_XFER_EE)
626 EXCEPTION(0x1b00, Trap_1b, unknown_exception, EXC_XFER_EE)
628 /* On the MPC8xx, these next four traps are used for development
629 * support of breakpoints and such. Someday I will get around to
632 EXCEPTION(0x1c00, Trap_1c, unknown_exception, EXC_XFER_EE)
633 EXCEPTION(0x1d00, Trap_1d, unknown_exception, EXC_XFER_EE)
634 EXCEPTION(0x1e00, Trap_1e, unknown_exception, EXC_XFER_EE)
635 EXCEPTION(0x1f00, Trap_1f, unknown_exception, EXC_XFER_EE)
644 * This is where the main kernel code starts.
649 ori r2,r2,init_task@l
651 /* ptr to phys current thread */
653 addi r4,r4,THREAD /* init task's THREAD */
656 mtspr SPRN_SPRG2,r3 /* 0 => r1 has kernel sp */
659 lis r1,init_thread_union@ha
660 addi r1,r1,init_thread_union@l
662 stwu r0,THREAD_SIZE-STACK_FRAME_OVERHEAD(r1)
664 bl early_init /* We have to do this with MMU on */
667 * Decide what sort of machine this is and initialize the MMU.
678 * Go back to running unmapped so we can load up new values
679 * and change to using our exception vectors.
680 * On the 8xx, all we have to do is invalidate the TLB to clear
681 * the old 8M byte TLB mappings and load the page table base register.
683 /* The right way to do this would be to track it down through
684 * init's THREAD like the context switch code does, but this is
685 * easier......until someone changes init's static structures.
687 lis r6, swapper_pg_dir@h
688 ori r6, r6, swapper_pg_dir@l
690 #ifdef CONFIG_8xx_CPU6
691 lis r4, cpu6_errata_word@h
692 ori r4, r4, cpu6_errata_word@l
701 li r3,MSR_KERNEL & ~(MSR_IR|MSR_DR)
705 /* Load up the kernel context */
707 SYNC /* Force all PTE updates to finish */
708 tlbia /* Clear all TLB entries */
709 sync /* wait for tlbia/tlbie to finish */
710 TLBSYNC /* ... on all CPUs */
712 /* set up the PTE pointers for the Abatron bdiGDB.
715 lis r5, abatron_pteptrs@h
716 ori r5, r5, abatron_pteptrs@l
717 stw r5, 0xf0(r0) /* Must match your Abatron config file */
721 /* Now turn on the MMU for real! */
723 lis r3,start_kernel@h
724 ori r3,r3,start_kernel@l
727 rfi /* enable MMU and jump to start_kernel */
729 /* Set up the initial MMU state so we can do the first level of
730 * kernel initialization. This maps the first 8 MBytes of memory 1:1
731 * virtual to physical. Also, set the cache mode since that is defined
732 * by TLB entries and perform any additional mapping (like of the IMMR).
733 * If configured to pin some TLBs, we pin the first 8 Mbytes of kernel,
734 * 24 Mbytes of data, and the 8M IMMR space. Anything not covered by
735 * these mappings is mapped by page tables.
738 tlbia /* Invalidate all TLB entries */
739 #ifdef CONFIG_PIN_TLB
745 mtspr SPRN_MI_CTR, r8 /* Set instruction MMU control */
747 #ifdef CONFIG_PIN_TLB
748 lis r10, (MD_RSV4I | MD_RESETVAL)@h
752 lis r10, MD_RESETVAL@h
754 #ifndef CONFIG_8xx_COPYBACK
755 oris r10, r10, MD_WTDEF@h
757 mtspr SPRN_MD_CTR, r10 /* Set data TLB control */
759 /* Now map the lower 8 Meg into the TLBs. For this quick hack,
760 * we can load the instruction and data TLB registers with the
763 lis r8, KERNELBASE@h /* Create vaddr for TLB */
764 ori r8, r8, MI_EVALID /* Mark it valid */
765 mtspr SPRN_MI_EPN, r8
766 mtspr SPRN_MD_EPN, r8
767 li r8, MI_PS8MEG /* Set 8M byte page */
768 ori r8, r8, MI_SVALID /* Make it valid */
769 mtspr SPRN_MI_TWC, r8
770 mtspr SPRN_MD_TWC, r8
771 li r8, MI_BOOTINIT /* Create RPN for address 0 */
772 mtspr SPRN_MI_RPN, r8 /* Store TLB entry */
773 mtspr SPRN_MD_RPN, r8
774 lis r8, MI_Kp@h /* Set the protection mode */
778 /* Map another 8 MByte at the IMMR to get the processor
779 * internal registers (among other things).
781 #ifdef CONFIG_PIN_TLB
782 addi r10, r10, 0x0100
783 mtspr SPRN_MD_CTR, r10
785 mfspr r9, 638 /* Get current IMMR */
786 andis. r9, r9, 0xff80 /* Get 8Mbyte boundary */
788 mr r8, r9 /* Create vaddr for TLB */
789 ori r8, r8, MD_EVALID /* Mark it valid */
790 mtspr SPRN_MD_EPN, r8
791 li r8, MD_PS8MEG /* Set 8M byte page */
792 ori r8, r8, MD_SVALID /* Make it valid */
793 mtspr SPRN_MD_TWC, r8
794 mr r8, r9 /* Create paddr for TLB */
795 ori r8, r8, MI_BOOTINIT|0x2 /* Inhibit cache -- Cort */
796 mtspr SPRN_MD_RPN, r8
798 #ifdef CONFIG_PIN_TLB
799 /* Map two more 8M kernel data pages.
801 addi r10, r10, 0x0100
802 mtspr SPRN_MD_CTR, r10
804 lis r8, KERNELBASE@h /* Create vaddr for TLB */
805 addis r8, r8, 0x0080 /* Add 8M */
806 ori r8, r8, MI_EVALID /* Mark it valid */
807 mtspr SPRN_MD_EPN, r8
808 li r9, MI_PS8MEG /* Set 8M byte page */
809 ori r9, r9, MI_SVALID /* Make it valid */
810 mtspr SPRN_MD_TWC, r9
811 li r11, MI_BOOTINIT /* Create RPN for address 0 */
812 addis r11, r11, 0x0080 /* Add 8M */
813 mtspr SPRN_MD_RPN, r8
815 addis r8, r8, 0x0080 /* Add 8M */
816 mtspr SPRN_MD_EPN, r8
817 mtspr SPRN_MD_TWC, r9
818 addis r11, r11, 0x0080 /* Add 8M */
819 mtspr SPRN_MD_RPN, r8
822 /* Since the cache is enabled according to the information we
823 * just loaded into the TLB, invalidate and enable the caches here.
824 * We should probably check/set other modes....later.
827 mtspr SPRN_IC_CST, r8
828 mtspr SPRN_DC_CST, r8
830 mtspr SPRN_IC_CST, r8
831 #ifdef CONFIG_8xx_COPYBACK
832 mtspr SPRN_DC_CST, r8
834 /* For a debug option, I left this here to easily enable
835 * the write through cache mode
838 mtspr SPRN_DC_CST, r8
840 mtspr SPRN_DC_CST, r8
846 * Set up to use a given MMU context.
847 * r3 is context number, r4 is PGD pointer.
849 * We place the physical address of the new task page directory loaded
850 * into the MMU base register, and set the ASID compare register with
855 #ifdef CONFIG_BDI_SWITCH
856 /* Context switch the PTE pointer for the Abatron BDI2000.
857 * The PGDIR is passed as second argument.
864 #ifdef CONFIG_8xx_CPU6
865 lis r6, cpu6_errata_word@h
866 ori r6, r6, cpu6_errata_word@l
871 mtspr SPRN_M_TWB, r4 /* Update MMU base address */
875 mtspr SPRN_M_CASID, r3 /* Update context */
877 mtspr SPRN_M_CASID,r3 /* Update context */
879 mtspr SPRN_M_TWB, r4 /* and pgd */
884 #ifdef CONFIG_8xx_CPU6
885 /* It's here because it is unique to the 8xx.
886 * It is important we get called with interrupts disabled. I used to
887 * do that, but it appears that all code that calls this already had
888 * interrupt disabled.
892 lis r7, cpu6_errata_word@h
893 ori r7, r7, cpu6_errata_word@l
897 mtspr 22, r3 /* Update Decrementer */
903 * We put a few things here that have to be page-aligned.
904 * This stuff goes at the beginning of the data segment,
905 * which is page-aligned.
910 .globl empty_zero_page
914 .globl swapper_pg_dir
919 * This space gets a copy of optional info passed to us by the bootstrap
920 * Used to pass parameters into the kernel like root=/dev/sda1, etc.
926 /* Room for two PTE table poiners, usually the kernel and current user
927 * pointer to their respective root page table (pgdir).
932 #ifdef CONFIG_8xx_CPU6
933 .globl cpu6_errata_word
git.openpandora.org / pandora-kernel.git / blob