3 * Copyright (C) 1995-1996 Gary Thomas (gdt@linuxppc.org)
4 * Rewritten by Cort Dougan (cort@cs.nmt.edu) for PReP
5 * Copyright (C) 1996 Cort Dougan <cort@cs.nmt.edu>
6 * Low-level exception handlers and MMU support
7 * rewritten by Paul Mackerras.
8 * Copyright (C) 1996 Paul Mackerras.
9 * MPC8xx modifications by Dan Malek
10 * Copyright (C) 1997 Dan Malek (dmalek@jlc.net).
12 * This file contains low-level support and setup for PowerPC 8xx
13 * embedded processors, including trap and interrupt dispatch.
15 * This program is free software; you can redistribute it and/or
16 * modify it under the terms of the GNU General Public License
17 * as published by the Free Software Foundation; either version
18 * 2 of the License, or (at your option) any later version.
22 #include <linux/config.h>
23 #include <asm/processor.h>
26 #include <asm/cache.h>
27 #include <asm/pgtable.h>
28 #include <asm/cputable.h>
29 #include <asm/thread_info.h>
30 #include <asm/ppc_asm.h>
31 #include <asm/asm-offsets.h>
33 /* Macro to make the code more readable. */
34 #ifdef CONFIG_8xx_CPU6
35 #define DO_8xx_CPU6(val, reg) \
40 #define DO_8xx_CPU6(val, reg)
50 * This port was done on an MBX board with an 860. Right now I only
51 * support an ELF compressed (zImage) boot from EPPC-Bug because the
52 * code there loads up some registers before calling us:
53 * r3: ptr to board info data
54 * r4: initrd_start or if no initrd then 0
55 * r5: initrd_end - unused if r4 is 0
56 * r6: Start of command line string
57 * r7: End of command line string
59 * I decided to use conditional compilation instead of checking PVR and
60 * adding more processor specific branches around code I don't need.
61 * Since this is an embedded processor, I also appreciate any memory
64 * The MPC8xx does not have any BATs, but it supports large page sizes.
65 * We first initialize the MMU to support 8M byte pages, then load one
66 * entry into each of the instruction and data TLBs to map the first
67 * 8M 1:1. I also mapped an additional I/O space 1:1 so we can get to
68 * the "internal" processor registers before MMU_init is called.
70 * The TLB code currently contains a major hack. Since I use the condition
71 * code register, I have to save and restore it. I am out of registers, so
72 * I just store it in memory location 0 (the TLB handlers are not reentrant).
73 * To avoid making any decisions, I need to use the "segment" valid bit
74 * in the first level table, but that would require many changes to the
75 * Linux page directory/table functions that I don't want to do right now.
77 * I used to use SPRG2 for a temporary register in the TLB handler, but it
78 * has since been put to other uses. I now use a hack to save a register
79 * and the CCR at memory location 0.....Someday I'll fix this.....
84 mr r31,r3 /* save parameters */
90 /* We have to turn on the MMU right away so we get cache modes
95 /* We now have the lower 8 Meg mapped into TLB entries, and the caches
101 ori r0,r0,MSR_DR|MSR_IR
104 ori r0,r0,start_here@l
107 rfi /* enables MMU */
110 * Exception entry code. This code runs with address translation
111 * turned off, i.e. using physical addresses.
112 * We assume sprg3 has the physical address of the current
113 * task's thread_struct.
115 #define EXCEPTION_PROLOG \
116 mtspr SPRN_SPRG0,r10; \
117 mtspr SPRN_SPRG1,r11; \
119 EXCEPTION_PROLOG_1; \
122 #define EXCEPTION_PROLOG_1 \
123 mfspr r11,SPRN_SRR1; /* check whether user or kernel */ \
124 andi. r11,r11,MSR_PR; \
125 tophys(r11,r1); /* use tophys(r1) if kernel */ \
127 mfspr r11,SPRN_SPRG3; \
128 lwz r11,THREAD_INFO-THREAD(r11); \
129 addi r11,r11,THREAD_SIZE; \
131 1: subi r11,r11,INT_FRAME_SIZE /* alloc exc. frame */
134 #define EXCEPTION_PROLOG_2 \
136 stw r10,_CCR(r11); /* save registers */ \
137 stw r12,GPR12(r11); \
139 mfspr r10,SPRN_SPRG0; \
140 stw r10,GPR10(r11); \
141 mfspr r12,SPRN_SPRG1; \
142 stw r12,GPR11(r11); \
144 stw r10,_LINK(r11); \
145 mfspr r12,SPRN_SRR0; \
146 mfspr r9,SPRN_SRR1; \
149 tovirt(r1,r11); /* set new kernel sp */ \
150 li r10,MSR_KERNEL & ~(MSR_IR|MSR_DR); /* can take exceptions */ \
151 MTMSRD(r10); /* (except for mach check in rtas) */ \
153 SAVE_4GPRS(3, r11); \
157 * Note: code which follows this uses cr0.eq (set if from kernel),
158 * r11, r12 (SRR0), and r9 (SRR1).
160 * Note2: once we have set r1 we are in a position to take exceptions
161 * again, and we could thus set MSR:RI at that point.
167 #define EXCEPTION(n, label, hdlr, xfer) \
171 addi r3,r1,STACK_FRAME_OVERHEAD; \
174 #define EXC_XFER_TEMPLATE(n, hdlr, trap, copyee, tfer, ret) \
184 #define COPY_EE(d, s) rlwimi d,s,0,16,16
187 #define EXC_XFER_STD(n, hdlr) \
188 EXC_XFER_TEMPLATE(n, hdlr, n, NOCOPY, transfer_to_handler_full, \
189 ret_from_except_full)
191 #define EXC_XFER_LITE(n, hdlr) \
192 EXC_XFER_TEMPLATE(n, hdlr, n+1, NOCOPY, transfer_to_handler, \
195 #define EXC_XFER_EE(n, hdlr) \
196 EXC_XFER_TEMPLATE(n, hdlr, n, COPY_EE, transfer_to_handler_full, \
197 ret_from_except_full)
199 #define EXC_XFER_EE_LITE(n, hdlr) \
200 EXC_XFER_TEMPLATE(n, hdlr, n+1, COPY_EE, transfer_to_handler, \
204 EXCEPTION(0x100, Reset, unknown_exception, EXC_XFER_STD)
214 addi r3,r1,STACK_FRAME_OVERHEAD
215 EXC_XFER_STD(0x200, machine_check_exception)
217 /* Data access exception.
218 * This is "never generated" by the MPC8xx. We jump to it for other
219 * translation errors.
228 EXC_XFER_EE_LITE(0x300, handle_page_fault)
230 /* Instruction access exception.
231 * This is "never generated" by the MPC8xx. We jump to it for other
232 * translation errors.
239 EXC_XFER_EE_LITE(0x400, handle_page_fault)
241 /* External interrupt */
242 EXCEPTION(0x500, HardwareInterrupt, do_IRQ, EXC_XFER_LITE)
244 /* Alignment exception */
252 addi r3,r1,STACK_FRAME_OVERHEAD
253 EXC_XFER_EE(0x600, alignment_exception)
255 /* Program check exception */
256 EXCEPTION(0x700, ProgramCheck, program_check_exception, EXC_XFER_STD)
258 /* No FPU on MPC8xx. This exception is not supposed to happen.
260 EXCEPTION(0x800, FPUnavailable, unknown_exception, EXC_XFER_STD)
263 EXCEPTION(0x900, Decrementer, timer_interrupt, EXC_XFER_LITE)
265 EXCEPTION(0xa00, Trap_0a, unknown_exception, EXC_XFER_EE)
266 EXCEPTION(0xb00, Trap_0b, unknown_exception, EXC_XFER_EE)
272 EXC_XFER_EE_LITE(0xc00, DoSyscall)
274 /* Single step - not used on 601 */
275 EXCEPTION(0xd00, SingleStep, single_step_exception, EXC_XFER_STD)
276 EXCEPTION(0xe00, Trap_0e, unknown_exception, EXC_XFER_EE)
277 EXCEPTION(0xf00, Trap_0f, unknown_exception, EXC_XFER_EE)
279 /* On the MPC8xx, this is a software emulation interrupt. It occurs
280 * for all unimplemented and illegal instructions.
282 EXCEPTION(0x1000, SoftEmu, SoftwareEmulation, EXC_XFER_STD)
286 * For the MPC8xx, this is a software tablewalk to load the instruction
287 * TLB. It is modelled after the example in the Motorola manual. The task
288 * switch loads the M_TWB register with the pointer to the first level table.
289 * If we discover there is no second level table (value is zero) or if there
290 * is an invalid pte, we load that into the TLB, which causes another fault
291 * into the TLB Error interrupt where we can handle such problems.
292 * We have to use the MD_xxx registers for the tablewalk because the
293 * equivalent MI_xxx registers only perform the attribute functions.
296 #ifdef CONFIG_8xx_CPU6
299 DO_8xx_CPU6(0x3f80, r3)
300 mtspr SPRN_M_TW, r10 /* Save a couple of working registers */
304 mfspr r10, SPRN_SRR0 /* Get effective address of fault */
305 DO_8xx_CPU6(0x3780, r3)
306 mtspr SPRN_MD_EPN, r10 /* Have to use MD_EPN for walk, MI_EPN can't */
307 mfspr r10, SPRN_M_TWB /* Get level 1 table entry address */
309 /* If we are faulting a kernel address, we have to use the
310 * kernel page tables.
312 andi. r11, r10, 0x0800 /* Address >= 0x80000000 */
314 lis r11, swapper_pg_dir@h
315 ori r11, r11, swapper_pg_dir@l
316 rlwimi r10, r11, 0, 2, 19
318 lwz r11, 0(r10) /* Get the level 1 entry */
319 rlwinm. r10, r11,0,0,19 /* Extract page descriptor page address */
320 beq 2f /* If zero, don't try to find a pte */
322 /* We have a pte table, so load the MI_TWC with the attributes
323 * for this "segment."
325 ori r11,r11,1 /* Set valid bit */
326 DO_8xx_CPU6(0x2b80, r3)
327 mtspr SPRN_MI_TWC, r11 /* Set segment attributes */
328 DO_8xx_CPU6(0x3b80, r3)
329 mtspr SPRN_MD_TWC, r11 /* Load pte table base address */
330 mfspr r11, SPRN_MD_TWC /* ....and get the pte address */
331 lwz r10, 0(r11) /* Get the pte */
333 ori r10, r10, _PAGE_ACCESSED
336 /* The Linux PTE won't go exactly into the MMU TLB.
337 * Software indicator bits 21, 22 and 28 must be clear.
338 * Software indicator bits 24, 25, 26, and 27 must be
339 * set. All other Linux PTE bits control the behavior
343 rlwimi r10, r11, 0, 24, 28 /* Set 24-27, clear 28 */
344 DO_8xx_CPU6(0x2d80, r3)
345 mtspr SPRN_MI_RPN, r10 /* Update TLB entry */
347 mfspr r10, SPRN_M_TW /* Restore registers */
351 #ifdef CONFIG_8xx_CPU6
358 #ifdef CONFIG_8xx_CPU6
361 DO_8xx_CPU6(0x3f80, r3)
362 mtspr SPRN_M_TW, r10 /* Save a couple of working registers */
366 mfspr r10, SPRN_M_TWB /* Get level 1 table entry address */
368 /* If we are faulting a kernel address, we have to use the
369 * kernel page tables.
371 andi. r11, r10, 0x0800
373 lis r11, swapper_pg_dir@h
374 ori r11, r11, swapper_pg_dir@l
375 rlwimi r10, r11, 0, 2, 19
379 lwz r11, 0(r10) /* Get the level 1 entry */
380 rlwinm. r10, r11,0,0,19 /* Extract page descriptor page address */
381 beq 2f /* If zero, don't try to find a pte */
383 /* We have a pte table, so load fetch the pte from the table.
385 ori r11, r11, 1 /* Set valid bit in physical L2 page */
386 DO_8xx_CPU6(0x3b80, r3)
387 mtspr SPRN_MD_TWC, r11 /* Load pte table base address */
388 mfspr r10, SPRN_MD_TWC /* ....and get the pte address */
389 lwz r10, 0(r10) /* Get the pte */
391 /* Insert the Guarded flag into the TWC from the Linux PTE.
392 * It is bit 27 of both the Linux PTE and the TWC (at least
393 * I got that right :-). It will be better when we can put
394 * this into the Linux pgd/pmd and load it in the operation
397 rlwimi r11, r10, 0, 27, 27
398 DO_8xx_CPU6(0x3b80, r3)
399 mtspr SPRN_MD_TWC, r11
401 mfspr r11, SPRN_MD_TWC /* get the pte address again */
402 ori r10, r10, _PAGE_ACCESSED
405 /* The Linux PTE won't go exactly into the MMU TLB.
406 * Software indicator bits 21, 22 and 28 must be clear.
407 * Software indicator bits 24, 25, 26, and 27 must be
408 * set. All other Linux PTE bits control the behavior
412 rlwimi r10, r11, 0, 24, 28 /* Set 24-27, clear 28 */
413 DO_8xx_CPU6(0x3d80, r3)
414 mtspr SPRN_MD_RPN, r10 /* Update TLB entry */
416 mfspr r10, SPRN_M_TW /* Restore registers */
420 #ifdef CONFIG_8xx_CPU6
425 /* This is an instruction TLB error on the MPC8xx. This could be due
426 * to many reasons, such as executing guarded memory or illegal instruction
427 * addresses. There is nothing to do but handle a big time error fault.
435 lwz r11, 0(r10) /* Get the level 1 entry */
436 rlwinm. r10, r11,0,0,19 /* Extract page descriptor page address */
437 beq 3f /* If zero, don't try to find a pte */
439 /* We have a pte table, so load fetch the pte from the table.
441 ori r11, r11, 1 /* Set valid bit in physical L2 page */
442 DO_8xx_CPU6(0x3b80, r3)
443 mtspr SPRN_MD_TWC, r11 /* Load pte table base address */
444 mfspr r10, SPRN_MD_TWC /* ....and get the pte address */
445 lwz r10, 0(r10) /* Get the pte */
447 /* Insert the Guarded flag into the TWC from the Linux PTE.
448 * It is bit 27 of both the Linux PTE and the TWC (at least
449 * I got that right :-). It will be better when we can put
450 * this into the Linux pgd/pmd and load it in the operation
453 rlwimi r11, r10, 0, 27, 27
455 rlwimi r12, r10, 0, 0, 9 /* extract phys. addr */
456 mfspr r3, SPRN_MD_EPN
457 rlwinm r3, r3, 0, 0, 9 /* extract virtual address */
459 cmpw r3, r12 /* only use 8M page if it is a direct
462 ori r11, r11, MD_PS8MEG
466 li r12, 0 /* can't use 8MB TLB, so zero r12. */
468 DO_8xx_CPU6(0x3b80, r3)
469 mtspr SPRN_MD_TWC, r11
471 /* The Linux PTE won't go exactly into the MMU TLB.
472 * Software indicator bits 21, 22 and 28 must be clear.
473 * Software indicator bits 24, 25, 26, and 27 must be
474 * set. All other Linux PTE bits control the behavior
478 rlwimi r10, r11, 0, 24, 28 /* Set 24-27, clear 28 */
483 mfspr r12, SPRN_MD_EPN
484 lis r3, 0xff80 /* 10-19 must be clear for 8MB TLB */
487 DO_8xx_CPU6(0x3780, r3)
488 mtspr SPRN_MD_EPN, r12
490 lis r3, 0xff80 /* 10-19 must be clear for 8MB TLB */
494 DO_8xx_CPU6(0x3d80, r3)
495 mtspr SPRN_MD_RPN, r10 /* Update TLB entry */
497 mfspr r10, SPRN_M_TW /* Restore registers */
503 #ifdef CONFIG_8xx_CPU6
508 /* This is the data TLB error on the MPC8xx. This could be due to
509 * many reasons, including a dirty update to a pte. We can catch that
510 * one here, but anything else is an error. First, we track down the
511 * Linux pte. If it is valid, write access is allowed, but the
512 * page dirty bit is not set, we will set it and reload the TLB. For
513 * any other case, we bail out to a higher level function that can
518 #ifdef CONFIG_8xx_CPU6
521 DO_8xx_CPU6(0x3f80, r3)
522 mtspr SPRN_M_TW, r10 /* Save a couple of working registers */
527 /* First, make sure this was a store operation.
529 mfspr r10, SPRN_DSISR
530 andis. r11, r10, 0x0200 /* If set, indicates store op */
533 /* The EA of a data TLB miss is automatically stored in the MD_EPN
534 * register. The EA of a data TLB error is automatically stored in
535 * the DAR, but not the MD_EPN register. We must copy the 20 most
536 * significant bits of the EA from the DAR to MD_EPN before we
537 * start walking the page tables. We also need to copy the CASID
538 * value from the M_CASID register.
539 * Addendum: The EA of a data TLB error is _supposed_ to be stored
540 * in DAR, but it seems that this doesn't happen in some cases, such
541 * as when the error is due to a dcbi instruction to a page with a
542 * TLB that doesn't have the changed bit set. In such cases, there
543 * does not appear to be any way to recover the EA of the error
544 * since it is neither in DAR nor MD_EPN. As a workaround, the
545 * _PAGE_HWWRITE bit is set for all kernel data pages when the PTEs
546 * are initialized in mapin_ram(). This will avoid the problem,
547 * assuming we only use the dcbi instruction on kernel addresses.
550 rlwinm r11, r10, 0, 0, 19
551 ori r11, r11, MD_EVALID
552 mfspr r10, SPRN_M_CASID
553 rlwimi r11, r10, 0, 28, 31
554 DO_8xx_CPU6(0x3780, r3)
555 mtspr SPRN_MD_EPN, r11
557 mfspr r10, SPRN_M_TWB /* Get level 1 table entry address */
559 /* If we are faulting a kernel address, we have to use the
560 * kernel page tables.
562 andi. r11, r10, 0x0800
564 lis r11, swapper_pg_dir@h
565 ori r11, r11, swapper_pg_dir@l
566 rlwimi r10, r11, 0, 2, 19
568 lwz r11, 0(r10) /* Get the level 1 entry */
569 rlwinm. r10, r11,0,0,19 /* Extract page descriptor page address */
570 beq 2f /* If zero, bail */
572 /* We have a pte table, so fetch the pte from the table.
574 ori r11, r11, 1 /* Set valid bit in physical L2 page */
575 DO_8xx_CPU6(0x3b80, r3)
576 mtspr SPRN_MD_TWC, r11 /* Load pte table base address */
577 mfspr r11, SPRN_MD_TWC /* ....and get the pte address */
578 lwz r10, 0(r11) /* Get the pte */
580 andi. r11, r10, _PAGE_RW /* Is it writeable? */
581 beq 2f /* Bail out if not */
583 /* Update 'changed', among others.
585 ori r10, r10, _PAGE_DIRTY|_PAGE_ACCESSED|_PAGE_HWWRITE
586 mfspr r11, SPRN_MD_TWC /* Get pte address again */
587 stw r10, 0(r11) /* and update pte in table */
589 /* The Linux PTE won't go exactly into the MMU TLB.
590 * Software indicator bits 21, 22 and 28 must be clear.
591 * Software indicator bits 24, 25, 26, and 27 must be
592 * set. All other Linux PTE bits control the behavior
596 rlwimi r10, r11, 0, 24, 28 /* Set 24-27, clear 28 */
597 DO_8xx_CPU6(0x3d80, r3)
598 mtspr SPRN_MD_RPN, r10 /* Update TLB entry */
600 mfspr r10, SPRN_M_TW /* Restore registers */
604 #ifdef CONFIG_8xx_CPU6
609 mfspr r10, SPRN_M_TW /* Restore registers */
613 #ifdef CONFIG_8xx_CPU6
618 EXCEPTION(0x1500, Trap_15, unknown_exception, EXC_XFER_EE)
619 EXCEPTION(0x1600, Trap_16, unknown_exception, EXC_XFER_EE)
620 EXCEPTION(0x1700, Trap_17, unknown_exception, EXC_XFER_EE)
621 EXCEPTION(0x1800, Trap_18, unknown_exception, EXC_XFER_EE)
622 EXCEPTION(0x1900, Trap_19, unknown_exception, EXC_XFER_EE)
623 EXCEPTION(0x1a00, Trap_1a, unknown_exception, EXC_XFER_EE)
624 EXCEPTION(0x1b00, Trap_1b, unknown_exception, EXC_XFER_EE)
626 /* On the MPC8xx, these next four traps are used for development
627 * support of breakpoints and such. Someday I will get around to
630 EXCEPTION(0x1c00, Trap_1c, unknown_exception, EXC_XFER_EE)
631 EXCEPTION(0x1d00, Trap_1d, unknown_exception, EXC_XFER_EE)
632 EXCEPTION(0x1e00, Trap_1e, unknown_exception, EXC_XFER_EE)
633 EXCEPTION(0x1f00, Trap_1f, unknown_exception, EXC_XFER_EE)
642 * This is where the main kernel code starts.
647 ori r2,r2,init_task@l
649 /* ptr to phys current thread */
651 addi r4,r4,THREAD /* init task's THREAD */
654 mtspr SPRN_SPRG2,r3 /* 0 => r1 has kernel sp */
657 lis r1,init_thread_union@ha
658 addi r1,r1,init_thread_union@l
660 stwu r0,THREAD_SIZE-STACK_FRAME_OVERHEAD(r1)
662 bl early_init /* We have to do this with MMU on */
665 * Decide what sort of machine this is and initialize the MMU.
676 * Go back to running unmapped so we can load up new values
677 * and change to using our exception vectors.
678 * On the 8xx, all we have to do is invalidate the TLB to clear
679 * the old 8M byte TLB mappings and load the page table base register.
681 /* The right way to do this would be to track it down through
682 * init's THREAD like the context switch code does, but this is
683 * easier......until someone changes init's static structures.
685 lis r6, swapper_pg_dir@h
686 ori r6, r6, swapper_pg_dir@l
688 #ifdef CONFIG_8xx_CPU6
689 lis r4, cpu6_errata_word@h
690 ori r4, r4, cpu6_errata_word@l
699 li r3,MSR_KERNEL & ~(MSR_IR|MSR_DR)
703 /* Load up the kernel context */
705 SYNC /* Force all PTE updates to finish */
706 tlbia /* Clear all TLB entries */
707 sync /* wait for tlbia/tlbie to finish */
708 TLBSYNC /* ... on all CPUs */
710 /* set up the PTE pointers for the Abatron bdiGDB.
713 lis r5, abatron_pteptrs@h
714 ori r5, r5, abatron_pteptrs@l
715 stw r5, 0xf0(r0) /* Must match your Abatron config file */
719 /* Now turn on the MMU for real! */
721 lis r3,start_kernel@h
722 ori r3,r3,start_kernel@l
725 rfi /* enable MMU and jump to start_kernel */
727 /* Set up the initial MMU state so we can do the first level of
728 * kernel initialization. This maps the first 8 MBytes of memory 1:1
729 * virtual to physical. Also, set the cache mode since that is defined
730 * by TLB entries and perform any additional mapping (like of the IMMR).
731 * If configured to pin some TLBs, we pin the first 8 Mbytes of kernel,
732 * 24 Mbytes of data, and the 8M IMMR space. Anything not covered by
733 * these mappings is mapped by page tables.
736 tlbia /* Invalidate all TLB entries */
737 #ifdef CONFIG_PIN_TLB
743 mtspr SPRN_MI_CTR, r8 /* Set instruction MMU control */
745 #ifdef CONFIG_PIN_TLB
746 lis r10, (MD_RSV4I | MD_RESETVAL)@h
750 lis r10, MD_RESETVAL@h
752 #ifndef CONFIG_8xx_COPYBACK
753 oris r10, r10, MD_WTDEF@h
755 mtspr SPRN_MD_CTR, r10 /* Set data TLB control */
757 /* Now map the lower 8 Meg into the TLBs. For this quick hack,
758 * we can load the instruction and data TLB registers with the
761 lis r8, KERNELBASE@h /* Create vaddr for TLB */
762 ori r8, r8, MI_EVALID /* Mark it valid */
763 mtspr SPRN_MI_EPN, r8
764 mtspr SPRN_MD_EPN, r8
765 li r8, MI_PS8MEG /* Set 8M byte page */
766 ori r8, r8, MI_SVALID /* Make it valid */
767 mtspr SPRN_MI_TWC, r8
768 mtspr SPRN_MD_TWC, r8
769 li r8, MI_BOOTINIT /* Create RPN for address 0 */
770 mtspr SPRN_MI_RPN, r8 /* Store TLB entry */
771 mtspr SPRN_MD_RPN, r8
772 lis r8, MI_Kp@h /* Set the protection mode */
776 /* Map another 8 MByte at the IMMR to get the processor
777 * internal registers (among other things).
779 #ifdef CONFIG_PIN_TLB
780 addi r10, r10, 0x0100
781 mtspr SPRN_MD_CTR, r10
783 mfspr r9, 638 /* Get current IMMR */
784 andis. r9, r9, 0xff80 /* Get 8Mbyte boundary */
786 mr r8, r9 /* Create vaddr for TLB */
787 ori r8, r8, MD_EVALID /* Mark it valid */
788 mtspr SPRN_MD_EPN, r8
789 li r8, MD_PS8MEG /* Set 8M byte page */
790 ori r8, r8, MD_SVALID /* Make it valid */
791 mtspr SPRN_MD_TWC, r8
792 mr r8, r9 /* Create paddr for TLB */
793 ori r8, r8, MI_BOOTINIT|0x2 /* Inhibit cache -- Cort */
794 mtspr SPRN_MD_RPN, r8
796 #ifdef CONFIG_PIN_TLB
797 /* Map two more 8M kernel data pages.
799 addi r10, r10, 0x0100
800 mtspr SPRN_MD_CTR, r10
802 lis r8, KERNELBASE@h /* Create vaddr for TLB */
803 addis r8, r8, 0x0080 /* Add 8M */
804 ori r8, r8, MI_EVALID /* Mark it valid */
805 mtspr SPRN_MD_EPN, r8
806 li r9, MI_PS8MEG /* Set 8M byte page */
807 ori r9, r9, MI_SVALID /* Make it valid */
808 mtspr SPRN_MD_TWC, r9
809 li r11, MI_BOOTINIT /* Create RPN for address 0 */
810 addis r11, r11, 0x0080 /* Add 8M */
811 mtspr SPRN_MD_RPN, r11
813 addi r10, r10, 0x0100
814 mtspr SPRN_MD_CTR, r10
816 addis r8, r8, 0x0080 /* Add 8M */
817 mtspr SPRN_MD_EPN, r8
818 mtspr SPRN_MD_TWC, r9
819 addis r11, r11, 0x0080 /* Add 8M */
820 mtspr SPRN_MD_RPN, r11
823 /* Since the cache is enabled according to the information we
824 * just loaded into the TLB, invalidate and enable the caches here.
825 * We should probably check/set other modes....later.
828 mtspr SPRN_IC_CST, r8
829 mtspr SPRN_DC_CST, r8
831 mtspr SPRN_IC_CST, r8
832 #ifdef CONFIG_8xx_COPYBACK
833 mtspr SPRN_DC_CST, r8
835 /* For a debug option, I left this here to easily enable
836 * the write through cache mode
839 mtspr SPRN_DC_CST, r8
841 mtspr SPRN_DC_CST, r8
847 * Set up to use a given MMU context.
848 * r3 is context number, r4 is PGD pointer.
850 * We place the physical address of the new task page directory loaded
851 * into the MMU base register, and set the ASID compare register with
856 #ifdef CONFIG_BDI_SWITCH
857 /* Context switch the PTE pointer for the Abatron BDI2000.
858 * The PGDIR is passed as second argument.
865 #ifdef CONFIG_8xx_CPU6
866 lis r6, cpu6_errata_word@h
867 ori r6, r6, cpu6_errata_word@l
872 mtspr SPRN_M_TWB, r4 /* Update MMU base address */
876 mtspr SPRN_M_CASID, r3 /* Update context */
878 mtspr SPRN_M_CASID,r3 /* Update context */
880 mtspr SPRN_M_TWB, r4 /* and pgd */
885 #ifdef CONFIG_8xx_CPU6
886 /* It's here because it is unique to the 8xx.
887 * It is important we get called with interrupts disabled. I used to
888 * do that, but it appears that all code that calls this already had
889 * interrupt disabled.
893 lis r7, cpu6_errata_word@h
894 ori r7, r7, cpu6_errata_word@l
898 mtspr 22, r3 /* Update Decrementer */
904 * We put a few things here that have to be page-aligned.
905 * This stuff goes at the beginning of the data segment,
906 * which is page-aligned.
911 .globl empty_zero_page
915 .globl swapper_pg_dir
920 * This space gets a copy of optional info passed to us by the bootstrap
921 * Used to pass parameters into the kernel like root=/dev/sda1, etc.
927 /* Room for two PTE table poiners, usually the kernel and current user
928 * pointer to their respective root page table (pgdir).
933 #ifdef CONFIG_8xx_CPU6
934 .globl cpu6_errata_word
projects / linux-2.6 / blob