bl cache_on跳转的返回-白红宇

bl cache_on跳转的返回

阅读量：2443 次

发布时间：2019-05-10

本文共 5142 字，大约阅读时间需要 17 分钟。

bl	cache_on                              	@ bl跳转会将返回地址(下一条指令的地址)保存到lr

cache_on:	mov	r3, #8			@ cache_on function //偏移为8，对应cache_on		b	call_cache_fn	@ b跳转不会将返回地址保存到lr

call_cache_fn:	adr	r12, proc_types#ifdef CONFIG_CPU_CP15		mrc	p15, 0, r9, c0, c0	@ get processor ID#else		ldr	r9, =CONFIG_PROCESSOR_ID#endif1:		ldr	r1, [r12, #0]		@ get value		ldr	r2, [r12, #4]		@ get mask		eor	r1, r1, r9		@ (real ^ match)		tst	r1, r2			@       & mask ARM(		addeq	pc, r12, r3		) @ call cache function THUMB(		addeq	r12, r3			) THUMB(		moveq	pc, r12			) @ call cache function//match到ID后就跳转到对应架构的cache_on了		add	r12, r12, #PROC_ENTRY_SIZE   @ 没有match到ID，PROC_ENTRY_SIZE为4*5，每条指令4byte,proc_types表中每个架构对应5个条目		b	1b                           @ 再跳转回tag1时， r12保存了下一个架构的条目，继续match

.align	2		.type	proc_types,#objectproc_types:		.word	0x41000000		@ old ARM ID		.word	0xff00f000		mov	pc, lr THUMB(		nop				)		mov	pc, lr THUMB(		nop				)		mov	pc, lr THUMB(		nop				)		.word	0x41007000		@ ARM7/710		.word	0xfff8fe00		mov	pc, lr THUMB(		nop				)		mov	pc, lr THUMB(		nop				)		mov	pc, lr THUMB(		nop				)		.word	0x41807200		@ ARM720T (writethrough)		.word	0xffffff00		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		mov	pc, lr THUMB(		nop				)		.word	0x41007400		@ ARM74x		.word	0xff00ff00		W(b)	__armv3_mpu_cache_on		W(b)	__armv3_mpu_cache_off		W(b)	__armv3_mpu_cache_flush				.word	0x41009400		@ ARM94x		.word	0xff00ff00		W(b)	__armv4_mpu_cache_on		W(b)	__armv4_mpu_cache_off		W(b)	__armv4_mpu_cache_flush		.word	0x41069260		@ ARM926EJ-S (v5TEJ)		.word	0xff0ffff0		W(b)	__arm926ejs_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv5tej_mmu_cache_flush		.word	0x00007000		@ ARM7 IDs		.word	0x0000f000		mov	pc, lr THUMB(		nop				)		mov	pc, lr THUMB(		nop				)		mov	pc, lr THUMB(		nop				)		@ Everything from here on will be the new ID system.		.word	0x4401a100		@ sa110 / sa1100		.word	0xffffffe0		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv4_mmu_cache_flush		.word	0x6901b110		@ sa1110		.word	0xfffffff0		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv4_mmu_cache_flush		.word	0x56056900		.word	0xffffff00		@ PXA9xx		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv4_mmu_cache_flush		.word	0x56158000		@ PXA168		.word	0xfffff000		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv5tej_mmu_cache_flush		.word	0x56050000		@ Feroceon		.word	0xff0f0000		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv5tej_mmu_cache_flush#ifdef CONFIG_CPU_FEROCEON_OLD_ID		/* this conflicts with the standard ARMv5TE entry */		.long	0x41009260		@ Old Feroceon		.long	0xff00fff0		b	__armv4_mmu_cache_on		b	__armv4_mmu_cache_off		b	__armv5tej_mmu_cache_flush#endif		.word	0x66015261		@ FA526		.word	0xff01fff1		W(b)	__fa526_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__fa526_cache_flush		@ These match on the architecture ID		.word	0x00020000		@ ARMv4T		.word	0x000f0000		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv4_mmu_cache_flush		.word	0x00050000		@ ARMv5TE		.word	0x000f0000		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv4_mmu_cache_flush		.word	0x00060000		@ ARMv5TEJ		.word	0x000f0000		W(b)	__armv4_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv5tej_mmu_cache_flush		.word	0x0007b000		@ ARMv6		.word	0x000ff000		W(b)	__armv6_mmu_cache_on		W(b)	__armv4_mmu_cache_off		W(b)	__armv6_mmu_cache_flush		.word	0x000f0000		@ new CPU Id		.word	0x000f0000		W(b)	__armv7_mmu_cache_on		W(b)	__armv7_mmu_cache_off		W(b)	__armv7_mmu_cache_flush		.word	0			@ unrecognised type		.word	0		mov	pc, lr THUMB(		nop				)		mov	pc, lr THUMB(		nop				)		mov	pc, lr THUMB(		nop				)		.size	proc_types, . - proc_types

如果ID没有match，就会查到表中的最后一个条目，mov pc, lr，跳回去。

armv7_mmu_cache_on:				mov	r12, lr			@ lr保存的是bl cache_on的下一条指令,下面还有tag的跳转，会重写lr，需要保存lr到其他寄存器#ifdef CONFIG_MMU		mrc	p15, 0, r11, c0, c1, 4	@ read ID_MMFR0		tst	r11, #0xf		@ VMSA		movne	r6, #CB_BITS | 0x02	@ !XN		blne	__setup_mmu		@ bl跳转会保存返回地址到lr		mov	r0, #0		mcr	p15, 0, r0, c7, c10, 4	@ drain write buffer		tst	r11, #0xf		@ VMSA		mcrne	p15, 0, r0, c8, c7, 0	@ flush I,D TLBs#endif		mrc	p15, 0, r0, c1, c0, 0	@ read control reg		bic	r0, r0, #1 << 28	@ clear SCTLR.TRE		orr	r0, r0, #0x5000		@ I-cache enable, RR cache replacement		orr	r0, r0, #0x003c		@ write buffer		bic	r0, r0, #2		@ A (no unaligned access fault)		orr	r0, r0, #1 << 22	@ U (v6 unaligned access model)						@ (needed for ARM1176)#ifdef CONFIG_MMU ARM_BE8(	orr	r0, r0, #1 << 25 )	@ big-endian page tables		mrcne   p15, 0, r6, c2, c0, 2   @ read ttb control reg		orrne	r0, r0, #1		@ MMU enabled		movne	r1, #0xfffffffd		@ domain 0 = client		bic     r6, r6, #1 << 31        @ 32-bit translation system		bic     r6, r6, #3 << 0         @ use only ttbr0		mcrne	p15, 0, r3, c2, c0, 0	@ load page table pointer		mcrne	p15, 0, r1, c3, c0, 0	@ load domain access control		mcrne   p15, 0, r6, c2, c0, 2   @ load ttb control#endif		mcr	p15, 0, r0, c7, c5, 4	@ ISB		mcr	p15, 0, r0, c1, c0, 0	@ load control register		mrc	p15, 0, r0, c1, c0, 0	@ and read it back		mov	r0, #0		mcr	p15, 0, r0, c7, c5, 4	@ ISB		mov	pc, r12			@ 返回到bl cache_on的下一条指令

转载地址：http://pdsqb.baihongyu.com/

你可能感兴趣的文章

python快速排序_Python快速排序

查看>>

人工神经网络导论_神经网络导论

查看>>

C ++ STL无序多集– std :: unordered_multiset

查看>>

深度学习导论

查看>>

go-back-n_iMyFone D-Back iPhone数据恢复

查看>>