Atmosphere/thermosphere/src/smc.c

#include <string.h>
#include "smc.h"
#include "core_ctx.h"
#include "arm.h"

// Currently in exception_vectors.s:
extern const u32 doSmcIndirectCallImpl[];
extern const u32 doSmcIndirectCallImplSmcInstructionOffset, doSmcIndirectCallImplSize;

// start.s
void start2(u64 contextId);

void doSmcIndirectCall(ExceptionStackFrame *frame, u32 smcId)
{
    u32 codebuf[doSmcIndirectCallImplSize / 4]; // note: potential VLA
    memcpy(codebuf, doSmcIndirectCallImpl, doSmcIndirectCallImplSize);
    codebuf[doSmcIndirectCallImplSmcInstructionOffset / 4] |= smcId << 5;

    flush_dcache_range(codebuf, codebuf + doSmcIndirectCallImplSize/4);
    invalidate_icache_all();

    ((void (*)(ExceptionStackFrame *))codebuf)(frame);
}

static void doCpuOnHook(ExceptionStackFrame *frame, u32 smcId)
{
    // Note: preserve contexId which is passed by EL3, we'll save it later
    u32 cpuId = (u32)frame->x[1]; // note: full affinity mask. Start.s checks that Aff1,2,3 are 0.
    uintptr_t ep = frame->x[2];
    // frame->x[3] is contextId
    if (cpuId < 4) {
        g_coreCtxs[cpuId].kernelEntrypoint = ep;
        frame->x[2] = (uintptr_t)start2;
    }
}

void handleSmcTrap(ExceptionStackFrame *frame, ExceptionSyndromeRegister esr)
{
    // TODO: Arm PSCI 0.2+ stuff
    u32 smcId = esr.iss;

    // Note: don't differenciate PSCI calls by smc immediate since HOS uses #1 for that
    // Note: funcId is actually u32 according to Arm PSCI. Not sure what to do if x0>>32 != 0.
    // NN doesn't truncate, Arm TF does.
    // Note: clear NN ABI-breaking bits
    u32 funcId = frame->x[0] & ~0xFF00;
    switch (funcId) {
        case 0xC4000001:
            // CPU_SUSPEND
            // TODO
            break;
        case 0x84000002:
            // CPU_OFF
            // TODO
            break;
        case 0xC4000003:
            doCpuOnHook(frame, smcId);
            break;
        case 0x84000008:
            // SYSTEM_OFF, not implemented by Nintendo
            // TODO
            break;
        case 0x84000009:
            // SYSTEM_RESET, not implemented by Nintendo
            // TODO
            break;

        default:
            // Other unimportant functions we don't care about
            break;
    }
    doSmcIndirectCall(frame, smcId);
    skipFaultingInstruction(frame, 4);
}
thermosphere: add smc trap handler 2019-07-30 23:08:09 +01:00			`#include <string.h>`
			`#include "smc.h"`
thermosphere: cpu_on hook & skeleton for other PSCI functions 2019-07-31 00:23:53 +01:00			`#include "core_ctx.h"`
thermosphere: enable EL2 stage1 translation (doesn't take much space) Identity map using 1GB L1 blocks 2019-08-01 01:58:16 +01:00			`#include "arm.h"`
thermosphere: add smc trap handler 2019-07-30 23:08:09 +01:00
			`// Currently in exception_vectors.s:`
			`extern const u32 doSmcIndirectCallImpl[];`
			`extern const u32 doSmcIndirectCallImplSmcInstructionOffset, doSmcIndirectCallImplSize;`

thermosphere: cpu_on hook & skeleton for other PSCI functions 2019-07-31 00:23:53 +01:00			`// start.s`
			`void start2(u64 contextId);`

thermosphere: add smc trap handler 2019-07-30 23:08:09 +01:00			`void doSmcIndirectCall(ExceptionStackFrame *frame, u32 smcId)`
			`{`
thermosphere: enable EL2 stage1 translation (doesn't take much space) Identity map using 1GB L1 blocks 2019-08-01 01:58:16 +01:00			`u32 codebuf[doSmcIndirectCallImplSize / 4]; // note: potential VLA`
thermosphere: add smc trap handler 2019-07-30 23:08:09 +01:00			`memcpy(codebuf, doSmcIndirectCallImpl, doSmcIndirectCallImplSize);`
thermosphere: enable EL2 stage1 translation (doesn't take much space) Identity map using 1GB L1 blocks 2019-08-01 01:58:16 +01:00			`codebuf[doSmcIndirectCallImplSmcInstructionOffset / 4] \|= smcId << 5;`
thermosphere: add smc trap handler 2019-07-30 23:08:09 +01:00
thermosphere: enable EL2 stage1 translation (doesn't take much space) Identity map using 1GB L1 blocks 2019-08-01 01:58:16 +01:00			`flush_dcache_range(codebuf, codebuf + doSmcIndirectCallImplSize/4);`
			`invalidate_icache_all();`
thermosphere: add smc trap handler 2019-07-30 23:08:09 +01:00
			`((void ()(ExceptionStackFrame ))codebuf)(frame);`
			`}`

thermosphere: cpu_on hook & skeleton for other PSCI functions 2019-07-31 00:23:53 +01:00			`static void doCpuOnHook(ExceptionStackFrame *frame, u32 smcId)`
			`{`
			`// Note: preserve contexId which is passed by EL3, we'll save it later`
			`u32 cpuId = (u32)frame->x[1]; // note: full affinity mask. Start.s checks that Aff1,2,3 are 0.`
			`uintptr_t ep = frame->x[2];`
			`// frame->x[3] is contextId`
			`if (cpuId < 4) {`
			`g_coreCtxs[cpuId].kernelEntrypoint = ep;`
			`frame->x[2] = (uintptr_t)start2;`
			`}`
			`}`

thermosphere: add smc trap handler 2019-07-30 23:08:09 +01:00			`void handleSmcTrap(ExceptionStackFrame *frame, ExceptionSyndromeRegister esr)`
			`{`
			`// TODO: Arm PSCI 0.2+ stuff`
			`u32 smcId = esr.iss;`

thermosphere: cpu_on hook & skeleton for other PSCI functions 2019-07-31 00:23:53 +01:00			`// Note: don't differenciate PSCI calls by smc immediate since HOS uses #1 for that`
			`// Note: funcId is actually u32 according to Arm PSCI. Not sure what to do if x0>>32 != 0.`
			`// NN doesn't truncate, Arm TF does.`
			`// Note: clear NN ABI-breaking bits`
			`u32 funcId = frame->x[0] & ~0xFF00;`
			`switch (funcId) {`
			`case 0xC4000001:`
			`// CPU_SUSPEND`
			`// TODO`
			`break;`
			`case 0x84000002:`
			`// CPU_OFF`
			`// TODO`
			`break;`
			`case 0xC4000003:`
			`doCpuOnHook(frame, smcId);`
			`break;`
			`case 0x84000008:`
			`// SYSTEM_OFF, not implemented by Nintendo`
			`// TODO`
			`break;`
			`case 0x84000009:`
			`// SYSTEM_RESET, not implemented by Nintendo`
			`// TODO`
			`break;`

			`default:`
			`// Other unimportant functions we don't care about`
			`break;`
			`}`
thermosphere: add smc trap handler 2019-07-30 23:08:09 +01:00			`doSmcIndirectCall(frame, smcId);`
			`skipFaultingInstruction(frame, 4);`
			`}`