-
Notifications
You must be signed in to change notification settings - Fork 10
/
boot.S
216 lines (194 loc) · 4.84 KB
/
boot.S
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
/*
* boot.S - simple register setup code for stand-alone Linux booting
*
* Copyright (C) 2011 ARM Limited. All rights reserved.
*
* Use of this source code is governed by a BSD-style license that can be
* found in the LICENSE.txt file.
*/
.syntax unified
.arch_extension sec
.arch_extension virt
.text
.macro enter_hyp
@ We assume we're entered in Secure Supervisor mode. To
@ get to Hyp mode we have to pass through Monitor mode
@ and NS-Supervisor mode. Note that there is no way to
@ return to the Secure world once we've done this.
@
@ This will trash r10 and r11.
ldr r10, =vectors
mcr p15, 0, r10, c12, c0, 1 @ Monitor vector base address
@ Switch to monitor mode, which will set up the HVBAR and
@ then return to us in NS-SVC
smc #0
@ Now we're in NS-SVC, make a Hyp call to get into Hyp mode
hvc #0
@ We will end up here in NS-Hyp.
.endm
.align 5
/* We use the same vector table for Hyp and Monitor mode, since
* we will only use each once and they don't overlap.
*/
vectors:
.word 0 /* reset */
.word 0 /* undef */
b 2f /* smc */
.word 0 /* pabt */
.word 0 /* dabt */
b 1f
.word 0 /* irq */
.word 0 /* fiq */
/* Return directly back to the caller without leaving Hyp mode: */
1: mrs lr, elr_hyp
mov pc, lr
/* In monitor mode, set up HVBAR and SCR then return to caller in NS-SVC. */
2:
@ Set up HVBAR
mrc p15, 0, r10, c1, c1, 0 @ SCR
@ Set SCR.NS=1 (needed for setting HVBAR and also returning to NS state)
@ .IRQ,FIQ,EA=0 (don't take aborts/exceptions to Monitor mode)
@ .FW,AW=1 (CPSR.A,F modifiable in NS state)
@ .nET=0 (early termination OK)
@ .SCD=1 (SMC in NS mode is UNDEF, so accidental SMCs don't
@ cause us to leap back into this code confusingly)
@ .HCE=1 (HVC does Hyp call)
bic r10, r10, #0x07f
ldr r11, =0x1b1
orr r10, r10, r11
mcr p15, 0, r11, c1, c1, 0
isb
ldr r11, =vectors
mcr p15, 4, r11, c12, c0, 0 @ set HVBAR
@ ...and return to calling code in NS state
movs pc, lr
.globl start
start:
#ifdef SMP
#ifdef VEXPRESS
@
@ Program architected timer frequency
@
mrc p15, 0, r0, c0, c1, 1 @ CPUID_EXT_PFR1
lsr r0, r0, #16
and r0, r0, #1 @ Check generic timer support
beq 1f
ldr r0, =24000000 @ 24MHz timer frequency
mcr p15, 0, r0, c14, c0, 0 @ CNTFRQ
1:
#endif
@
@ CPU initialisation
@
mrc p15, 0, r4, c0, c0, 5 @ MPIDR (ARMv7 only)
and r4, r4, #15 @ CPU number
@
@ Hypervisor / TrustZone initialization
@
@ Set all interrupts to be non-secure
ldr r0, =0x2c001000 @ Dist GIC base
ldr r1, [r0, #0x04] @ Type Register
cmp r4, #0
andeq r1, r1, #0x1f
movne r1, #0
add r2, r0, #0x080 @ Security Register 0
mvn r3, #0
2: str r3, [r2]
sub r1, r1, #1
add r2, r2, #4 @ Next security register
cmp r1, #-1
bne 2b
@ Set GIC priority mask bit [7] = 1
ldr r0, =0x2c002000 @ CPU GIC base
mov r1, #0x80
str r1, [r0, #0x4] @ GIC ICCPMR
@ Set NSACR to allow coprocessor access from non-secure
mrc p15, 0, r0, c1, c1, 2
ldr r1, =0x43fff
orr r0, r0, r1
mcr p15, 0, r0, c1, c1, 2
@ Check CPU nr again
mrc p15, 0, r0, c0, c0, 5 @ MPIDR (ARMv7 only)
bfc r0, #24, #8 @ CPU number, taking multicluster into account
cmp r0, #0 @ primary CPU?
beq 2f
@
@ Secondary CPUs (following the RealView SMP booting protocol)
@
enter_hyp
ldr r1, =fs_start - 0x100
adr r2, 1f
ldmia r2, {r3 - r7} @ move the code to a location
stmia r1, {r3 - r7} @ less likely to be overridden
#ifdef VEXPRESS
ldr r0, =0x1c010030 @ VE SYS_FLAGS register
#else
ldr r0, =0x10000030 @ RealView SYS_FLAGS register
#endif
mov pc, r1 @ branch to the relocated code
1:
#ifdef VEXPRESS
wfe
#endif
ldr r1, [r0]
cmp r1, #0
beq 1b
mov pc, r1 @ branch to the given address
#endif
2:
@
@ UART initialisation (38400 8N1)
@
#ifdef MACH_MPS
ldr r0, =0x1f005000 @ UART3 base (MPS)
#elif defined (VEXPRESS)
ldr r0, =0x1c090000 @ UART base (Versatile Express)
#else
ldr r0, =0x10009000 @ UART base (RealView/EB)
#endif
mov r1, #0x10 @ ibrd
str r1, [r0, #0x24]
mov r1, #0xc300
orr r1, #0x0001 @ cr
str r1, [r0, #0x30]
@ Now we've got rid of the secondary CPUs, set up a stack
@ for CPU 0 so we can write most of this in C.
ldr sp, =stacktop
@ And call the C entrypoint
bl c_start
@ Never reached
1: b 1b
@
@ Function for C code to make semihosting calls:
@
.globl __semi_call
__semi_call:
#if defined(MACH_MPS)
@ M profile semihosting is via bpkt
bkpt 0xab
#elif defined(__thumb__)
@ Otherwise, different SVC numbers for ARM or Thumb mode
svc 0xab
#else
svc 0x123456
#endif
mov pc, lr
.globl __boot_kernel
__boot_kernel:
mov r4, r0
stmfd sp!, {r1-r3}
ldmia sp, {r0-r3}
enter_hyp
bx r4
.type __boot_kernel, %function
@
@ Data
@
/* The kernel boot command line for builtin kernels is defined in the Make system */
.globl kernel_cmd
.globl kernel_cmd_end
kernel_cmd:
#ifdef KCMD
.asciz KCMD
#endif
kernel_cmd_end: