sys/arch/sh/sh/trap.c

root/sys/arch/sh/sh/trap.c
/*      $OpenBSD: trap.c,v 1.58 2026/03/08 17:07:31 deraadt Exp $       */
/*      $NetBSD: exception.c,v 1.32 2006/09/04 23:57:52 uwe Exp $       */
/*      $NetBSD: syscall.c,v 1.6 2006/03/07 07:21:50 thorpej Exp $      */

/*-
 * Copyright (c) 2002 The NetBSD Foundation, Inc. All rights reserved.
 * Copyright (c) 1990 The Regents of the University of California.
 * All rights reserved.
 *
 * This code is derived from software contributed to Berkeley by
 * the University of Utah, and William Jolitz.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. Neither the name of the University nor the names of its contributors
 *    may be used to endorse or promote products derived from this software
 *    without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 *
 *      @(#)trap.c      7.4 (Berkeley) 5/13/91
 */

/*-
 * Copyright (c) 1995 Charles M. Hannum.  All rights reserved.
 *
 * This code is derived from software contributed to Berkeley by
 * the University of Utah, and William Jolitz.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *      This product includes software developed by the University of
 *      California, Berkeley and its contributors.
 * 4. Neither the name of the University nor the names of its contributors
 *    may be used to endorse or promote products derived from this software
 *    without specific prior written permission.
 *
 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 *
 *      @(#)trap.c      7.4 (Berkeley) 5/13/91
 */

/*
 * SH3 Trap and System call handling
 *
 * T.Horiuchi 1998.06.8
 */

#include <sys/param.h>
#include <sys/systm.h>
#include <sys/proc.h>
#include <sys/pool.h>
#include <sys/kernel.h>
#include <sys/signal.h>
#include <sys/resourcevar.h>
#include <sys/signalvar.h>
#include <uvm/uvm_extern.h>
#include <sys/syscall.h>
#include <sys/syscall_mi.h>

#include <sh/cache.h>
#include <sh/cpu.h>
#include <sh/mmu.h>
#include <sh/pcb.h>
#include <sh/trap.h>
#ifdef SH4
#include <sh/fpu.h>
#endif

#ifdef DDB
#include <machine/db_machdep.h>
#endif

const char * const exp_type[] = {
        NULL,                                   /* 000 (reset vector) */
        NULL,                                   /* 020 (reset vector) */
        "TLB miss/invalid (load)",              /* 040 EXPEVT_TLB_MISS_LD */
        "TLB miss/invalid (store)",             /* 060 EXPEVT_TLB_MISS_ST */
        "initial page write",                   /* 080 EXPEVT_TLB_MOD */
        "TLB protection violation (load)",      /* 0a0 EXPEVT_TLB_PROT_LD */
        "TLB protection violation (store)",     /* 0c0 EXPEVT_TLB_PROT_ST */
        "address error (load)",                 /* 0e0 EXPEVT_ADDR_ERR_LD */
        "address error (store)",                /* 100 EXPEVT_ADDR_ERR_ST */
        "FPU",                                  /* 120 EXPEVT_FPU */
        NULL,                                   /* 140 (reset vector) */
        "unconditional trap (TRAPA)",           /* 160 EXPEVT_TRAPA */
        "reserved instruction code exception",  /* 180 EXPEVT_RES_INST */
        "illegal slot instruction exception",   /* 1a0 EXPEVT_SLOT_INST */
        NULL,                                   /* 1c0 (external interrupt) */
        "user break point trap",                /* 1e0 EXPEVT_BREAK */
        NULL, NULL, NULL, NULL,                 /* 200-260 */
        NULL, NULL, NULL, NULL,                 /* 280-2e0 */
        NULL, NULL, NULL, NULL,                 /* 300-360 */
        NULL, NULL, NULL, NULL,                 /* 380-3e0 */
        NULL, NULL, NULL, NULL,                 /* 400-460 */
        NULL, NULL, NULL, NULL,                 /* 480-4e0 */
        NULL, NULL, NULL, NULL,                 /* 500-560 */
        NULL, NULL, NULL, NULL,                 /* 580-5e0 */
        NULL, NULL, NULL, NULL,                 /* 600-660 */
        NULL, NULL, NULL, NULL,                 /* 680-6e0 */
        NULL, NULL, NULL, NULL,                 /* 700-760 */
        NULL, NULL, NULL, NULL,                 /* 780-7e0 */
        "FPU disabled",                         /* 800 EXPEVT_FPU_DISABLE */
        "slot FPU disabled"                     /* 820 EXPEVT_FPU_SLOT_DISABLE */
};
const int exp_types = sizeof exp_type / sizeof exp_type[0];

void general_exception(struct proc *, struct trapframe *, uint32_t);
void tlb_exception(struct proc *, struct trapframe *, uint32_t);
void ast(struct proc *, struct trapframe *);
void syscall(struct proc *, struct trapframe *);
void cachectl(struct proc *, struct trapframe *);

/*
 * void general_exception(struct proc *p, struct trapframe *tf):
 *      p  ... curproc when exception occurred.
 *      tf ... full user context.
 *      va ... fault va for user mode EXPEVT_ADDR_ERR_{LD,ST}
 */
void
general_exception(struct proc *p, struct trapframe *tf, uint32_t va)
{
        int expevt = tf->tf_expevt;
        int tra = _reg_read_4(SH_(TRA));
        int usermode = !KERNELMODE(tf->tf_ssr);
        union sigval sv;

        atomic_inc_int(&uvmexp.traps);

        /*
         * This function is entered at splhigh. Restore the interrupt
         * level to what it was when the trap occurred.
         */
        splx(tf->tf_ssr & PSL_IMASK);

        if (usermode) {
                if (p == NULL)
                        goto do_panic;
                KDASSERT(p->p_md.md_regs == tf); /* check exception depth */
                expevt |= EXP_USER;
                refreshcreds(p);
        }

        switch (expevt) {
        case EXPEVT_BREAK:
#ifdef DDB
                if (db_ktrap(EXPEVT_BREAK, 0, tf))
                        return;
                else
#endif
                        goto do_panic;
                break;
        case EXPEVT_TRAPA:
#ifdef DDB
                /* Check for ddb request */
                if (tra == (_SH_TRA_BREAK << 2) &&
                    db_ktrap(expevt, tra, tf))
                        return;
                else
#endif
                        goto do_panic;
                break;
        case EXPEVT_TRAPA | EXP_USER:
                /* Check for debugger break */
                switch (tra) {
                case _SH_TRA_BREAK << 2:
                        tf->tf_spc -= 2; /* back to the breakpoint address */
                        sv.sival_ptr = (void *)tf->tf_spc;
                        trapsignal(p, SIGTRAP, expevt & ~EXP_USER, TRAP_BRKPT,
                            sv);
                        goto out;
                case _SH_TRA_SYSCALL << 2:
                        syscall(p, tf);
                        return;
                case _SH_TRA_CACHECTL << 2:
                        cachectl(p, tf);
                        return;
                default:
                        sv.sival_ptr = (void *)tf->tf_spc;
                        trapsignal(p, SIGILL, expevt & ~EXP_USER, ILL_ILLTRP,
                            sv);
                        goto out;
                }
                break;

        case EXPEVT_ADDR_ERR_LD: /* FALLTHROUGH */
        case EXPEVT_ADDR_ERR_ST:
                KDASSERT(p && p->p_md.md_pcb->pcb_onfault != NULL);
                if (p == NULL || p->p_md.md_pcb->pcb_onfault == 0)
                        goto do_panic;
                tf->tf_spc = (int)p->p_md.md_pcb->pcb_onfault;
                break;

        case EXPEVT_ADDR_ERR_LD | EXP_USER: /* FALLTHROUGH */
        case EXPEVT_ADDR_ERR_ST | EXP_USER:
                sv.sival_ptr = (void *)va;
                if (((int)va) < 0)
                        trapsignal(p, SIGSEGV, expevt & ~EXP_USER, SEGV_ACCERR,
                            sv);
                else
                        trapsignal(p, SIGBUS, expevt & ~EXP_USER, BUS_ADRALN,
                            sv);
                goto out;

        case EXPEVT_RES_INST | EXP_USER: /* FALLTHROUGH */
        case EXPEVT_SLOT_INST | EXP_USER:
                sv.sival_ptr = (void *)tf->tf_spc;
                trapsignal(p, SIGILL, expevt & ~EXP_USER, ILL_ILLOPC, sv);
                goto out;

        case EXPEVT_BREAK | EXP_USER:
                sv.sival_ptr = (void *)tf->tf_spc;
                trapsignal(p, SIGTRAP, expevt & ~EXP_USER, TRAP_TRACE, sv);
                goto out;

#ifdef SH4
        case EXPEVT_FPU_DISABLE | EXP_USER: /* FALLTHROUGH */
        case EXPEVT_FPU_SLOT_DISABLE | EXP_USER:
                sv.sival_ptr = (void *)tf->tf_spc;
                trapsignal(p, SIGILL, expevt & ~EXP_USER, ILL_COPROC, sv);
                goto out;

        case EXPEVT_FPU | EXP_USER:
            {
                int fpscr, sigi;

                /* XXX worth putting in the trapframe? */
                __asm__ volatile ("sts fpscr, %0" : "=r" (fpscr));
                fpscr = (fpscr & FPSCR_CAUSE_MASK) >> FPSCR_CAUSE_SHIFT;
                if (fpscr & FPEXC_E)
                        sigi = FPE_FLTINV;      /* XXX any better value? */
                else if (fpscr & FPEXC_V)
                        sigi = FPE_FLTINV;
                else if (fpscr & FPEXC_Z)
                        sigi = FPE_FLTDIV;
                else if (fpscr & FPEXC_O)
                        sigi = FPE_FLTOVF;
                else if (fpscr & FPEXC_U)
                        sigi = FPE_FLTUND;
                else if (fpscr & FPEXC_I)
                        sigi = FPE_FLTRES;
                else
                        sigi = 0;       /* shouldn't happen */
                sv.sival_ptr = (void *)tf->tf_spc;
                trapsignal(p, SIGFPE, expevt & ~EXP_USER, sigi, sv);
            }
                goto out;
#endif

        default:
                goto do_panic;
        }

        if (!usermode)
                return;
out:
        userret(p);
        return;

do_panic:
        if ((expevt >> 5) < exp_types && exp_type[expevt >> 5] != NULL)
                printf("fatal %s", exp_type[expevt >> 5]);
        else
                printf("EXPEVT 0x%03x", expevt);
        printf(" in %s mode\n", expevt & EXP_USER ? "user" : "kernel");
        printf("va 0x%x spc 0x%x ssr 0x%x pr 0x%x \n",
            va, tf->tf_spc, tf->tf_ssr, tf->tf_pr);

        panic("general_exception");
        /* NOTREACHED */
}


/*
 * void tlb_exception(struct proc *p, struct trapframe *tf, uint32_t va):
 *      p  ... curproc when exception occurred.
 *      tf ... full user context.
 *      va ... fault address.
 */
void
tlb_exception(struct proc *p, struct trapframe *tf, uint32_t va)
{
        struct vm_map *map;
        pmap_t pmap;
        union sigval sv;
        int usermode;
        int err, track, access_type;
        const char *panic_msg;

#define TLB_ASSERT(assert, msg)                         \
                do {                                    \
                        if (!(assert)) {                \
                                panic_msg =  msg;       \
                                goto tlb_panic;         \
                        }                               \
                } while(/*CONSTCOND*/0)

        /*
         * This function is entered at splhigh. Restore the interrupt
         * level to what it was when the trap occurred.
         */
        splx(tf->tf_ssr & PSL_IMASK);

        usermode = !KERNELMODE(tf->tf_ssr);
        if (usermode) {
                KDASSERT(p->p_md.md_regs == tf);
                refreshcreds(p);
        } else {
                KDASSERT(p == NULL ||           /* idle */
                    p == &proc0 ||              /* kthread */
                    p->p_md.md_regs != tf);     /* other */
        }

        switch (tf->tf_expevt) {
        case EXPEVT_TLB_MISS_LD:
                track = PG_PMAP_REF;
                access_type = PROT_READ;
                break;
        case EXPEVT_TLB_MISS_ST:
                track = PG_PMAP_REF;
                access_type = PROT_WRITE;
                break;
        case EXPEVT_TLB_MOD:
                track = PG_PMAP_REF | PG_PMAP_MOD;
                access_type = PROT_WRITE;
                break;
        case EXPEVT_TLB_PROT_LD:
                TLB_ASSERT((int)va > 0,
                    "kernel virtual protection fault (load)");
                if (usermode) {
                        sv.sival_ptr = (void *)va;
                        trapsignal(p, SIGSEGV, tf->tf_expevt, SEGV_ACCERR, sv);
                        goto out;
                } else {
                        TLB_ASSERT(p->p_md.md_pcb->pcb_onfault != NULL,
                            "no copyin/out fault handler (load protection)");
                        tf->tf_spc = (int)p->p_md.md_pcb->pcb_onfault;
                }
                return;

        case EXPEVT_TLB_PROT_ST:
                track = 0;      /* call uvm_fault first. (COW) */
                access_type = PROT_WRITE;
                break;

        default:
                TLB_ASSERT(0, "impossible expevt");
        }

        /* Select address space */
        if (usermode) {
                if (!uvm_map_inentry(p, &p->p_spinentry, PROC_STACK(p),
                    "[%s]%d/%d sp=%lx inside %lx-%lx: not MAP_STACK\n",
                    uvm_map_inentry_sp, p->p_vmspace->vm_map.sserial))
                        goto out;

                TLB_ASSERT(p != NULL, "no curproc");
                map = &p->p_vmspace->vm_map;
                pmap = map->pmap;
        } else {
                if ((int)va < 0) {
                        map = kernel_map;
                        pmap = pmap_kernel();
                } else {
                        TLB_ASSERT(p != NULL &&
                            p->p_md.md_pcb->pcb_onfault != NULL,
                            "invalid user-space access from kernel mode");
                        if (va == 0) {
                                tf->tf_spc = (int)p->p_md.md_pcb->pcb_onfault;
                                return;
                        }
                        map = &p->p_vmspace->vm_map;
                        pmap = map->pmap;
                }
        }

        /* Lookup page table. if entry found, load it. */
        if (track && __pmap_pte_load(pmap, va, track)) {
                if (usermode)
                        userret(p);
                return;
        }

        err = uvm_fault(map, va, 0, access_type);
        if (usermode && access_type == PROT_READ && err == EACCES) {
                access_type = PROT_EXEC;
                err = uvm_fault(map, va, 0, access_type);
        }

        /* User stack extension */
        if (err == 0 && map != kernel_map)
                uvm_grow(p, va);

        /* Page in. load PTE to TLB. */
        if (err == 0) {
                int loaded = __pmap_pte_load(pmap, va, track);
                TLB_ASSERT(loaded, "page table entry not found");
                if (usermode)
                        userret(p);
                return;
        }

        /* Page not found. */
        if (usermode) {
                sv.sival_ptr = (void *)va;
                if (err == ENOMEM) {
                        printf("UVM: pid %d (%s), uid %d killed: out of swap\n",
                            p->p_p->ps_pid, p->p_p->ps_comm,
                            p->p_ucred ? (int)p->p_ucred->cr_uid : -1);
                        trapsignal(p, SIGKILL, tf->tf_expevt, SEGV_MAPERR, sv);
                } else
                        trapsignal(p, SIGSEGV, tf->tf_expevt, SEGV_MAPERR, sv);
                goto out;
        } else {
                TLB_ASSERT(p->p_md.md_pcb->pcb_onfault,
                    "no copyin/out fault handler (page not found)");
                tf->tf_spc = (int)p->p_md.md_pcb->pcb_onfault;
        }
        return;

out:
        userret(p);
        ast(p, tf);
        return;

tlb_panic:
        panic("tlb_exception: %s\n"
              "expevt=%x va=%08x ssr=%08x spc=%08x proc=%p onfault=%p",
              panic_msg, tf->tf_expevt, va, tf->tf_ssr, tf->tf_spc,
              p, p ? p->p_md.md_pcb->pcb_onfault : NULL);
#undef  TLB_ASSERT
}


/*
 * void ast(struct proc *p, struct trapframe *tf):
 *      p  ... curproc when exception occurred.
 *      tf ... full user context.
 *      This is called upon exception return. if return from kernel to user,
 *      handle asynchronous software traps and context switch if needed.
 */
void
ast(struct proc *p, struct trapframe *tf)
{
        if (KERNELMODE(tf->tf_ssr))
                return;
        KDASSERT(p != NULL);
        KDASSERT(p->p_md.md_regs == tf);

        while (p->p_md.md_astpending) {
                p->p_md.md_astpending = 0;
                refreshcreds(p);
                atomic_inc_int(&uvmexp.softs);
                mi_ast(p, curcpu()->ci_want_resched);
                userret(p);
        }
}

void
cachectl(struct proc *p, struct trapframe *tf)
{
        vaddr_t va;
        vsize_t len;

        if (!SH_HAS_UNIFIED_CACHE) {
                va = (vaddr_t)tf->tf_r4;
                len = (vsize_t)tf->tf_r5;

                if (va < VM_MIN_ADDRESS || va >= VM_MAXUSER_ADDRESS ||
                    va + len <= va || va + len >= VM_MAXUSER_ADDRESS)
                        len = 0;

                if (len != 0)
                        sh_icache_sync_range_index(va, len);
        }

        userret(p);
}

void
syscall(struct proc *p, struct trapframe *tf)
{
        caddr_t params;
        const struct sysent *callp = sysent;
        int error, opc;
        int argsize;
        register_t code, args[8], rval[2];

        atomic_inc_int(&uvmexp.syscalls);

        opc = tf->tf_spc;
        params = (caddr_t)tf->tf_r15;

        code = tf->tf_r0;
        // XXX out of range stays on syscall0, which we assume is enosys
        if (code > 0 && code < SYS_MAXSYSCALL)
                callp += code;

        argsize = callp->sy_argsize;

        if (argsize) {
                register_t *ap;
                int off_t_arg;

                switch (code) {
                default:                off_t_arg = 0;  break;
                case SYS_lseek:
                case SYS_truncate:
                case SYS_ftruncate:     off_t_arg = 1;  break;
                case SYS_preadv:
                case SYS_pwritev:
                case SYS_pread:
                case SYS_pwrite:        off_t_arg = 3;  break;
                }

                ap = args;

                *ap++ = tf->tf_r4; argsize -= sizeof(int);
                *ap++ = tf->tf_r5; argsize -= sizeof(int);
                *ap++ = tf->tf_r6; argsize -= sizeof(int);
                /*
                 * off_t args aren't split between register
                 * and stack, but rather r7 is skipped and
                 * the entire off_t is on the stack.
                 */
                if (off_t_arg != 3) {
                        *ap++ = tf->tf_r7;
                        argsize -= sizeof(int);
                }

                if (argsize > 0) {
                        if ((error = copyin(params, ap, argsize)))
                                goto bad;
                }
        }

        rval[0] = 0;
        rval[1] = tf->tf_r1;

        error = mi_syscall(p, code, callp, args, rval);

        switch (error) {
        case 0:
                tf->tf_r0 = rval[0];
                tf->tf_r1 = rval[1];
                tf->tf_ssr |= PSL_TBIT; /* T bit */
                break;
        case ERESTART:
                /* 2 = TRAPA instruction size */
                tf->tf_spc = opc - 2;
                break;
        case EJUSTRETURN:
                /* nothing to do */
                break;
        default:
        bad:
                tf->tf_r0 = error;
                tf->tf_ssr &= ~PSL_TBIT;        /* T bit */
                break;
        }

        mi_syscall_return(p, code, error, rval);
}

/*
 * void child_return(void *arg):
 *
 *      uvm_fork sets this routine to proc_trampoline's service function.
 *      when returning from here, jump to userland.
 */
void
child_return(void *arg)
{
        struct proc *p = arg;
        struct trapframe *tf = p->p_md.md_regs;

        tf->tf_r0 = 0;
        tf->tf_ssr |= PSL_TBIT; /* This indicates no error. */

        mi_child_return(p);
}