| 1 | /* SPDX-License-Identifier: GPL-2.0-only */ |
|---|
| 2 | /* |
|---|
| 3 | * Copyright (C) 1994-2002 Russell King |
|---|
| 4 | * Copyright (c) 2003, 2020 ARM Limited |
|---|
| 5 | * All Rights Reserved |
|---|
| 6 | */ |
|---|
| 7 | |
|---|
| 8 | #include <linux/init.h> |
|---|
| 9 | #include <linux/linkage.h> |
|---|
| 10 | #include <asm/assembler.h> |
|---|
| 11 | #include <asm/page.h> |
|---|
| 12 | |
|---|
| 13 | #ifdef __ARMEB__ |
|---|
| 14 | #define LOW_OFFSET 0x4 |
|---|
| 15 | #define HIGH_OFFSET 0x0 |
|---|
| 16 | #else |
|---|
| 17 | #define LOW_OFFSET 0x0 |
|---|
| 18 | #define HIGH_OFFSET 0x4 |
|---|
| 19 | #endif |
|---|
| 20 | |
|---|
| 21 | /* |
|---|
| 22 | * __fixup_pv_table - patch the stub instructions with the delta between |
|---|
| 23 | * PHYS_OFFSET and PAGE_OFFSET, which is assumed to be |
|---|
| 24 | * 2 MiB aligned. |
|---|
| 25 | * |
|---|
| 26 | * Called from head.S, which expects the following registers to be preserved: |
|---|
| 27 | * r1 = machine no, r2 = atags or dtb, |
|---|
| 28 | * r8 = phys_offset, r9 = cpuid, r10 = procinfo |
|---|
| 29 | */ |
|---|
| 30 | __HEAD |
|---|
| 31 | ENTRY(__fixup_pv_table) |
|---|
| 32 | mov r0, r8, lsr #PAGE_SHIFT @ convert to PFN |
|---|
| 33 | str_l r0, __pv_phys_pfn_offset, r3 |
|---|
| 34 | |
|---|
| 35 | adr_l r0, __pv_offset |
|---|
| 36 | subs r3, r8, #PAGE_OFFSET @ PHYS_OFFSET - PAGE_OFFSET |
|---|
| 37 | mvn ip, #0 |
|---|
| 38 | strcc ip, [r0, #HIGH_OFFSET] @ save to __pv_offset high bits |
|---|
| 39 | str r3, [r0, #LOW_OFFSET] @ save to __pv_offset low bits |
|---|
| 40 | |
|---|
| 41 | mov r0, r3, lsr #21 @ constant for add/sub instructions |
|---|
| 42 | teq r3, r0, lsl #21 @ must be 2 MiB aligned |
|---|
| 43 | bne 0f |
|---|
| 44 | |
|---|
| 45 | adr_l r4, __pv_table_begin |
|---|
| 46 | adr_l r5, __pv_table_end |
|---|
| 47 | b __fixup_a_pv_table |
|---|
| 48 | |
|---|
| 49 | 0: mov r0, r0 @ deadloop on error |
|---|
| 50 | b 0b |
|---|
| 51 | ENDPROC(__fixup_pv_table) |
|---|
| 52 | |
|---|
| 53 | .text |
|---|
| 54 | __fixup_a_pv_table: |
|---|
| 55 | adr_l r6, __pv_offset |
|---|
| 56 | ldr r0, [r6, #HIGH_OFFSET] @ pv_offset high word |
|---|
| 57 | ldr r6, [r6, #LOW_OFFSET] @ pv_offset low word |
|---|
| 58 | cmn r0, #1 |
|---|
| 59 | #ifdef CONFIG_THUMB2_KERNEL |
|---|
| 60 | @ |
|---|
| 61 | @ The Thumb-2 versions of the patchable sequences are |
|---|
| 62 | @ |
|---|
| 63 | @ phys-to-virt: movw <reg>, #offset<31:21> |
|---|
| 64 | @ lsl <reg>, #21 |
|---|
| 65 | @ sub <VA>, <PA>, <reg> |
|---|
| 66 | @ |
|---|
| 67 | @ virt-to-phys (non-LPAE): movw <reg>, #offset<31:21> |
|---|
| 68 | @ lsl <reg>, #21 |
|---|
| 69 | @ add <PA>, <VA>, <reg> |
|---|
| 70 | @ |
|---|
| 71 | @ virt-to-phys (LPAE): movw <reg>, #offset<31:21> |
|---|
| 72 | @ lsl <reg>, #21 |
|---|
| 73 | @ adds <PAlo>, <VA>, <reg> |
|---|
| 74 | @ mov <PAhi>, #offset<39:32> |
|---|
| 75 | @ adc <PAhi>, <PAhi>, #0 |
|---|
| 76 | @ |
|---|
| 77 | @ In the non-LPAE case, all patchable instructions are MOVW |
|---|
| 78 | @ instructions, where we need to patch in the offset into the |
|---|
| 79 | @ second halfword of the opcode (the 16-bit immediate is encoded |
|---|
| 80 | @ as imm4:i:imm3:imm8) |
|---|
| 81 | @ |
|---|
| 82 | @ 15 11 10 9 4 3 0 15 14 12 11 8 7 0 |
|---|
| 83 | @ +-----------+---+-------------+------++---+------+----+------+ |
|---|
| 84 | @ MOVW | 1 1 1 1 0 | i | 1 0 0 1 0 0 | imm4 || 0 | imm3 | Rd | imm8 | |
|---|
| 85 | @ +-----------+---+-------------+------++---+------+----+------+ |
|---|
| 86 | @ |
|---|
| 87 | @ In the LPAE case, we also need to patch in the high word of the |
|---|
| 88 | @ offset into the immediate field of the MOV instruction, or patch it |
|---|
| 89 | @ to a MVN instruction if the offset is negative. In this case, we |
|---|
| 90 | @ need to inspect the first halfword of the opcode, to check whether |
|---|
| 91 | @ it is MOVW or MOV/MVN, and to perform the MOV to MVN patching if |
|---|
| 92 | @ needed. The encoding of the immediate is rather complex for values |
|---|
| 93 | @ of i:imm3 != 0b0000, but fortunately, we never need more than 8 lower |
|---|
| 94 | @ order bits, which can be patched into imm8 directly (and i:imm3 |
|---|
| 95 | @ cleared) |
|---|
| 96 | @ |
|---|
| 97 | @ 15 11 10 9 5 0 15 14 12 11 8 7 0 |
|---|
| 98 | @ +-----------+---+---------------------++---+------+----+------+ |
|---|
| 99 | @ MOV | 1 1 1 1 0 | i | 0 0 0 1 0 0 1 1 1 1 || 0 | imm3 | Rd | imm8 | |
|---|
| 100 | @ MVN | 1 1 1 1 0 | i | 0 0 0 1 1 0 1 1 1 1 || 0 | imm3 | Rd | imm8 | |
|---|
| 101 | @ +-----------+---+---------------------++---+------+----+------+ |
|---|
| 102 | @ |
|---|
| 103 | moveq r0, #0x200000 @ set bit 21, mov to mvn instruction |
|---|
| 104 | lsrs r3, r6, #29 @ isolate top 3 bits of displacement |
|---|
| 105 | ubfx r6, r6, #21, #8 @ put bits 28:21 into the MOVW imm8 field |
|---|
| 106 | bfi r6, r3, #12, #3 @ put bits 31:29 into the MOVW imm3 field |
|---|
| 107 | b .Lnext |
|---|
| 108 | .Lloop: add r7, r4 |
|---|
| 109 | adds r4, #4 @ clears Z flag |
|---|
| 110 | #ifdef CONFIG_ARM_LPAE |
|---|
| 111 | ldrh ip, [r7] |
|---|
| 112 | ARM_BE8(rev16 ip, ip) |
|---|
| 113 | tst ip, #0x200 @ MOVW has bit 9 set, MVN has it clear |
|---|
| 114 | bne 0f @ skip to MOVW handling (Z flag is clear) |
|---|
| 115 | bic ip, #0x20 @ clear bit 5 (MVN -> MOV) |
|---|
| 116 | orr ip, ip, r0, lsr #16 @ MOV -> MVN if offset < 0 |
|---|
| 117 | ARM_BE8(rev16 ip, ip) |
|---|
| 118 | strh ip, [r7] |
|---|
| 119 | @ Z flag is set |
|---|
| 120 | 0: |
|---|
| 121 | #endif |
|---|
| 122 | ldrh ip, [r7, #2] |
|---|
| 123 | ARM_BE8(rev16 ip, ip) |
|---|
| 124 | and ip, #0xf00 @ clear everything except Rd field |
|---|
| 125 | orreq ip, r0 @ Z flag set -> MOV/MVN -> patch in high bits |
|---|
| 126 | orrne ip, r6 @ Z flag clear -> MOVW -> patch in low bits |
|---|
| 127 | ARM_BE8(rev16 ip, ip) |
|---|
| 128 | strh ip, [r7, #2] |
|---|
| 129 | #else |
|---|
| 130 | #ifdef CONFIG_CPU_ENDIAN_BE8 |
|---|
| 131 | @ in BE8, we load data in BE, but instructions still in LE |
|---|
| 132 | #define PV_BIT24 0x00000001 |
|---|
| 133 | #define PV_IMM8_MASK 0xff000000 |
|---|
| 134 | #define PV_IMMR_MSB 0x00080000 |
|---|
| 135 | #else |
|---|
| 136 | #define PV_BIT24 0x01000000 |
|---|
| 137 | #define PV_IMM8_MASK 0x000000ff |
|---|
| 138 | #define PV_IMMR_MSB 0x00000800 |
|---|
| 139 | #endif |
|---|
| 140 | |
|---|
| 141 | @ |
|---|
| 142 | @ The ARM versions of the patchable sequences are |
|---|
| 143 | @ |
|---|
| 144 | @ phys-to-virt: sub <VA>, <PA>, #offset<31:24>, lsl #24 |
|---|
| 145 | @ sub <VA>, <PA>, #offset<23:16>, lsl #16 |
|---|
| 146 | @ |
|---|
| 147 | @ virt-to-phys (non-LPAE): add <PA>, <VA>, #offset<31:24>, lsl #24 |
|---|
| 148 | @ add <PA>, <VA>, #offset<23:16>, lsl #16 |
|---|
| 149 | @ |
|---|
| 150 | @ virt-to-phys (LPAE): movw <reg>, #offset<31:20> |
|---|
| 151 | @ adds <PAlo>, <VA>, <reg>, lsl #20 |
|---|
| 152 | @ mov <PAhi>, #offset<39:32> |
|---|
| 153 | @ adc <PAhi>, <PAhi>, #0 |
|---|
| 154 | @ |
|---|
| 155 | @ In the non-LPAE case, all patchable instructions are ADD or SUB |
|---|
| 156 | @ instructions, where we need to patch in the offset into the |
|---|
| 157 | @ immediate field of the opcode, which is emitted with the correct |
|---|
| 158 | @ rotation value. (The effective value of the immediate is imm12<7:0> |
|---|
| 159 | @ rotated right by [2 * imm12<11:8>] bits) |
|---|
| 160 | @ |
|---|
| 161 | @ 31 28 27 23 22 20 19 16 15 12 11 0 |
|---|
| 162 | @ +------+-----------------+------+------+-------+ |
|---|
| 163 | @ ADD | cond | 0 0 1 0 1 0 0 0 | Rn | Rd | imm12 | |
|---|
| 164 | @ SUB | cond | 0 0 1 0 0 1 0 0 | Rn | Rd | imm12 | |
|---|
| 165 | @ MOV | cond | 0 0 1 1 1 0 1 0 | Rn | Rd | imm12 | |
|---|
| 166 | @ MVN | cond | 0 0 1 1 1 1 1 0 | Rn | Rd | imm12 | |
|---|
| 167 | @ +------+-----------------+------+------+-------+ |
|---|
| 168 | @ |
|---|
| 169 | @ In the LPAE case, we use a MOVW instruction to carry the low offset |
|---|
| 170 | @ word, and patch in the high word of the offset into the immediate |
|---|
| 171 | @ field of the subsequent MOV instruction, or patch it to a MVN |
|---|
| 172 | @ instruction if the offset is negative. We can distinguish MOVW |
|---|
| 173 | @ instructions based on bits 23:22 of the opcode, and ADD/SUB can be |
|---|
| 174 | @ distinguished from MOV/MVN (all using the encodings above) using |
|---|
| 175 | @ bit 24. |
|---|
| 176 | @ |
|---|
| 177 | @ 31 28 27 23 22 20 19 16 15 12 11 0 |
|---|
| 178 | @ +------+-----------------+------+------+-------+ |
|---|
| 179 | @ MOVW | cond | 0 0 1 1 0 0 0 0 | imm4 | Rd | imm12 | |
|---|
| 180 | @ +------+-----------------+------+------+-------+ |
|---|
| 181 | @ |
|---|
| 182 | moveq r0, #0x400000 @ set bit 22, mov to mvn instruction |
|---|
| 183 | mov r3, r6, lsr #16 @ put offset bits 31-16 into r3 |
|---|
| 184 | mov r6, r6, lsr #24 @ put offset bits 31-24 into r6 |
|---|
| 185 | and r3, r3, #0xf0 @ only keep offset bits 23-20 in r3 |
|---|
| 186 | b .Lnext |
|---|
| 187 | .Lloop: ldr ip, [r7, r4] |
|---|
| 188 | #ifdef CONFIG_ARM_LPAE |
|---|
| 189 | tst ip, #PV_BIT24 @ ADD/SUB have bit 24 clear |
|---|
| 190 | beq 1f |
|---|
| 191 | ARM_BE8(rev ip, ip) |
|---|
| 192 | tst ip, #0xc00000 @ MOVW has bits 23:22 clear |
|---|
| 193 | bic ip, ip, #0x400000 @ clear bit 22 |
|---|
| 194 | bfc ip, #0, #12 @ clear imm12 field of MOV[W] instruction |
|---|
| 195 | orreq ip, ip, r6, lsl #4 @ MOVW -> mask in offset bits 31-24 |
|---|
| 196 | orreq ip, ip, r3, lsr #4 @ MOVW -> mask in offset bits 23-20 |
|---|
| 197 | orrne ip, ip, r0 @ MOV -> mask in offset bits 7-0 (or bit 22) |
|---|
| 198 | ARM_BE8(rev ip, ip) |
|---|
| 199 | b 2f |
|---|
| 200 | 1: |
|---|
| 201 | #endif |
|---|
| 202 | tst ip, #PV_IMMR_MSB @ rotation value >= 16 ? |
|---|
| 203 | bic ip, ip, #PV_IMM8_MASK |
|---|
| 204 | orreq ip, ip, r6 ARM_BE8(, lsl #24) @ mask in offset bits 31-24 |
|---|
| 205 | orrne ip, ip, r3 ARM_BE8(, lsl #24) @ mask in offset bits 23-20 |
|---|
| 206 | 2: |
|---|
| 207 | str ip, [r7, r4] |
|---|
| 208 | add r4, r4, #4 |
|---|
| 209 | #endif |
|---|
| 210 | |
|---|
| 211 | .Lnext: |
|---|
| 212 | cmp r4, r5 |
|---|
| 213 | ldrcc r7, [r4] @ use branch for delay slot |
|---|
| 214 | bcc .Lloop |
|---|
| 215 | ret lr |
|---|
| 216 | ENDPROC(__fixup_a_pv_table) |
|---|
| 217 | |
|---|
| 218 | ENTRY(fixup_pv_table) |
|---|
| 219 | stmfd sp!, {r4 - r7, lr} |
|---|
| 220 | mov r4, r0 @ r0 = table start |
|---|
| 221 | add r5, r0, r1 @ r1 = table size |
|---|
| 222 | bl __fixup_a_pv_table |
|---|
| 223 | ldmfd sp!, {r4 - r7, pc} |
|---|
| 224 | ENDPROC(fixup_pv_table) |
|---|
| 225 | |
|---|
| 226 | .data |
|---|
| 227 | .align 2 |
|---|
| 228 | .globl __pv_phys_pfn_offset |
|---|
| 229 | .type __pv_phys_pfn_offset, %object |
|---|
| 230 | __pv_phys_pfn_offset: |
|---|
| 231 | .word 0 |
|---|
| 232 | .size __pv_phys_pfn_offset, . -__pv_phys_pfn_offset |
|---|
| 233 | |
|---|
| 234 | .globl __pv_offset |
|---|
| 235 | .type __pv_offset, %object |
|---|
| 236 | __pv_offset: |
|---|
| 237 | .quad 0 |
|---|
| 238 | .size __pv_offset, . -__pv_offset |
|---|
| 239 | |
|---|
