Add an IRQ for execution of an undefined opcode and a test to

show how it can be used by simulation-aware firmware to request
services from the host program.  Also add new IRQ function
avr_get_memory_irq() and use it in sim_elf.c.

Author: ga

simavr/sim/sim_avr.c

@@ -97,6 +97,8 @@ int
 avr_init(
 		avr_t * avr)
 {
+	static const char *names[] = { ">avr.core.bad_opcode", }; // IRQs
+
 	avr->flash = malloc(avr->flashend + 4);
 	memset(avr->flash, 0xff, avr->flashend + 1);
 	*((uint16_t*)&avr->flash[avr->flashend + 1]) = AVR_OVERFLOW_OPCODE;
@@ -126,6 +128,7 @@ avr_init(
 	avr->state = cpu_Limbo;
 	avr->frequency = 1000000;	// can be overridden via avr_mcu_section
 	avr->irq_pool.avr = avr;
+	avr->irq = avr_alloc_irq(&avr->irq_pool, 0, AVR_CORE_IRQ_COUNT, names);
 	avr_cmd_init(avr);
 	avr_interrupt_init(avr);
 	if (avr->custom.init)
@@ -214,6 +217,47 @@ avr_sadly_crashed(
 		avr->state = cpu_Crashed;
 }
 
+/* Get a pointer to a core IRQ. */
+
+avr_irq_t *
+avr_get_core_irq(
+		avr_t * avr,
+		int     irq_no)
+{
+	return avr->irq + irq_no;
+}
+
+/* Get a pointer to a memory IRQ. */
+
+avr_irq_t *avr_get_memory_irq(avr_t * avr, uint16_t addr, int is16)
+{
+	avr_irq_t  *irq;
+	int			width;
+	char        name[32];
+	const char *names[1] = {name};
+
+	if (addr <= 31 || addr > avr->ramend) {
+		AVR_LOG(avr, LOG_ERROR,
+				"Address %#04x out of range for SRAM trace.\n", addr);
+		return NULL;
+	}
+	if (avr->sram_tracepoint_count >= ARRAY_SIZE(avr->sram_tracepoint)) {
+		AVR_LOG(avr, LOG_ERROR, "Too many SRAM traces (limit = %d)\n",
+				ARRAY_SIZE(avr->sram_tracepoint));
+		return NULL;
+	}
+
+	width = is16 ? 16 : 8;
+	sprintf(name, ">%dSRAM_tracepoint_%d", width, avr->sram_tracepoint_count);
+	irq = avr_alloc_irq(&avr->irq_pool, 0, 1, names);
+	if (!irq)
+		return NULL;
+	avr->sram_tracepoint[avr->sram_tracepoint_count].irq = irq;
+	avr->sram_tracepoint[avr->sram_tracepoint_count].width = width;
+	avr->sram_tracepoint[avr->sram_tracepoint_count++].addr = addr;
+	return irq;
+}
+
 void
 avr_set_command_register(
 		avr_t * avr,

simavr/sim/sim_avr.h

@@ -96,6 +96,13 @@ enum {
 #define AVR_TRACE(avr, ... ) \
 	AVR_LOG(avr, LOG_TRACE, __VA_ARGS__)
 
+/* The core's own IRQS. */
+
+enum {
+	AVR_CORE_BAD_OPCODE = 0,	// Execution of unknown instruction.
+	AVR_CORE_IRQ_COUNT,
+};
+
 /*
  * Core states.
  */
@@ -328,6 +335,10 @@ typedef struct avr_t {
 	// queue of io modules
 	struct avr_io_t * io_port;
 
+	// Core IRQs
+
+	avr_irq_t * irq;
+
 	// Builtin and user-defined commands
 	avr_cmd_table_t commands;
 	// cycle timers tracking & delivery
@@ -401,6 +412,21 @@ avr_core_allocate(
 void
 avr_reset(
 		avr_t * avr);
+
+// Get a pointer to a core IRQ.
+
+avr_irq_t *
+avr_get_core_irq(
+		avr_t * avr,
+		int     irq_no);
+
+/* Get a pointer to a memory IRQ. */
+
+avr_irq_t *avr_get_memory_irq(
+		avr_t   * avr,
+		uint16_t  addr,
+		int		  is16);
+
 // run one cycle of the AVR, sleep if necessary
 int
 avr_run(

simavr/sim/sim_core.c

@@ -441,10 +441,28 @@ const char * avr_regname(avr_t * avr, unsigned int reg)
 }
 
 /*
- * Called when an invalid opcode is decoded
+ * Called when an invalid opcode is decoded.  Updating avr->pc will work.
  */
 static void _avr_invalid_opcode(avr_t * avr)
 {
+	/* This could be an attempt by simulation-aware firmware to summon a demon,
+	 * or other assistance. Raise an IRQ and if the CPU state is changed by
+	 * the call, do not show an error messgae.  In that case a new PC may be
+	 * supplied.
+	 */
+
+	avr_raise_irq(avr->irq + AVR_CORE_BAD_OPCODE,
+				  _avr_flash_read16le(avr, avr->pc));
+	if (avr->state != cpu_Running) {
+		/* The IRQ may sleep or finish simulation. But if it performed
+		 * a service and now wants to resume, just suppress the error message.
+		 */
+
+		if (avr->state == cpu_StepDone) // Re-use special value for GDB.
+			avr->state = cpu_Running;
+		return;
+	}
+	avr->pc += 2;	// Step over.
 #if CONFIG_SIMAVR_TRACE
 	printf( FONT_RED "*** %04x: %-25s Invalid Opcode SP=%04x O=%04x \n" FONT_DEFAULT,
                 avr->pc,
@@ -841,7 +859,10 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 									avr->sreg[S_Z] = res == 0;
 									SREG();
 								}	break;
-								default: _avr_invalid_opcode(avr);
+								default:
+									_avr_invalid_opcode(avr);
+									new_pc = avr->pc;
+									break;
 							}
 					}
 				}
@@ -889,7 +910,7 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 					_avr_flags_add_zns(avr, res, vd, vr);
 					SREG();
 				}	break;
-				default: _avr_invalid_opcode(avr);
+				default: _avr_invalid_opcode(avr); new_pc = avr->pc;
 			}
 		}	break;
 
@@ -933,7 +954,7 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 					STATE("mov %s, %s[%02x] = %02x\n", AVR_REGNAME(d), AVR_REGNAME(r), vr, res);
 					_avr_set_r(avr, d, res);
 				}	break;
-				default: _avr_invalid_opcode(avr);
+				default: _avr_invalid_opcode(avr); new_pc = avr->pc;
 			}
 		}	break;
 
@@ -1022,7 +1043,7 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 					}
 					cycle += 1; // 2 cycles, 3 for tinyavr
 				}	break;
-				default: _avr_invalid_opcode(avr);
+				default: _avr_invalid_opcode(avr); new_pc = avr->pc;
 			}
 		}	break;
 
@@ -1065,8 +1086,11 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 				case 0x9519: { // EICALL -- Indirect Call to Subroutine -- 1001 0101 0001 1001   bit 8 is "push pc"
 					int e = opcode & 0x10;
 					int p = opcode & 0x100;
-					if (e && !avr->eind)
+					if (e && !avr->eind) {
 						_avr_invalid_opcode(avr);
+						new_pc = avr->pc;
+					}
+
 					uint32_t z = avr->data[R_ZL] | (avr->data[R_ZH] << 8);
 					if (e)
 						z |= avr->data[avr->eind] << 16;
@@ -1098,9 +1122,14 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 					cycle += 2; // 3 cycles
 				}	break;
 				case 0x95d8: {	// ELPM -- Load Program Memory R0 <- (Z) -- 1001 0101 1101 1000
-					if (!avr->rampz)
+					if (!avr->rampz) {
 						_avr_invalid_opcode(avr);
-					uint32_t z = avr->data[R_ZL] | (avr->data[R_ZH] << 8) | (avr->data[avr->rampz] << 16);
+						new_pc = avr->pc;
+					}
+
+					uint32_t z;
+					z = avr->data[R_ZL] | (avr->data[R_ZH] << 8) |
+						(avr->data[avr->rampz] << 16);
 					STATE("elpm %s, (Z[%02x:%04x] \t%s)\n",
 					      AVR_REGNAME(0), z >> 16,
 					      z & 0xffff, FAS(z));
@@ -1138,9 +1167,14 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 						}	break;
 						case 0x9006:
 						case 0x9007: {	// ELPM -- Extended Load Program Memory -- 1001 000d dddd 01oo
-							if (!avr->rampz)
+							if (!avr->rampz) {
 								_avr_invalid_opcode(avr);
-							uint32_t z = avr->data[R_ZL] | (avr->data[R_ZH] << 8) | (avr->data[avr->rampz] << 16);
+								new_pc = avr->pc;
+							}
+
+							uint32_t z;
+							z = avr->data[R_ZL] | (avr->data[R_ZH] << 8) |
+								(avr->data[avr->rampz] << 16);
 							get_d5(opcode);
 							int op = opcode & 1;
 							STATE("elpm %s, (Z[%02x:%04x]%s)\t\t%s\n",
@@ -1442,6 +1476,8 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 											SREG();
 										}	break;
 										default: _avr_invalid_opcode(avr);
+											new_pc = avr->pc;
+											break;
 									}
 							}
 						}	break;
@@ -1462,7 +1498,7 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 					STATE("in %s, %s[%02x]\n", AVR_REGNAME(d), AVR_REGNAME(A), avr->data[A]);
 					_avr_set_r(avr, d, _avr_get_ram(avr, A));
 				}	break;
-				default: _avr_invalid_opcode(avr);
+				default: _avr_invalid_opcode(avr); new_pc = avr->pc;
 			}
 		}	break;
 
@@ -1551,11 +1587,11 @@ avr_flashaddr_t avr_run_one(avr_t * avr)
 						}
 					}
 				}	break;
-				default: _avr_invalid_opcode(avr);
+				default: _avr_invalid_opcode(avr); new_pc = avr->pc;
 			}
 		}	break;
 
-		default: _avr_invalid_opcode(avr);
+		default: _avr_invalid_opcode(avr); new_pc = avr->pc;
 
 	}
 	avr->cycle += cycle;

simavr/sim/sim_elf.c

@@ -336,27 +336,29 @@ avr_load_firmware(
 				avr_vcd_add_signal(avr->vcd, irq, 8, firmware->trace[ti].name);
 		} else if ( (firmware->trace[ti].kind == AVR_MMCU_TAG_VCD_SRAM_8) ||
 		    (firmware->trace[ti].kind == AVR_MMCU_TAG_VCD_SRAM_16) ) {
-			if ((firmware->trace[ti].addr <= 31) || (firmware->trace[ti].addr > avr->ramend)) {
-				AVR_LOG(avr, LOG_ERROR, "ELF: *** Invalid SRAM trace address (0x20 < 0x%04x < 0x%04x )\n", firmware->trace[ti].addr, avr->ramend);
-			} else if (avr->sram_tracepoint_count >= ARRAY_SIZE(avr->sram_tracepoint)) {
-				AVR_LOG(avr, LOG_ERROR, "ELF: *** Too many SRAM traces (limit = %d)\n", ARRAY_SIZE(avr->sram_tracepoint));
+			avr_irq_t *irq;
+
+			irq = avr_get_memory_irq(
+				avr, firmware->trace[ti].addr,
+				firmware->trace[ti].kind == AVR_MMCU_TAG_VCD_SRAM_16);
+			if (!irq) {
+				AVR_LOG(avr, LOG_ERROR,
+						"ELF: *** Invalid SRAM trace address "
+						"(0x20 < 0x%04x < 0x%04x) or trace table overflow.\n",
+						firmware->trace[ti].addr, avr->ramend);
 			} else {
-				char name[20];
-				sprintf(name, "sram_tracepoint_%d", avr->sram_tracepoint_count);
-				const char *names[1] = {name};
-				avr_irq_t *irq = avr_alloc_irq(&avr->irq_pool, 0, 1, names);
-				if (irq) {
-					AVR_LOG(avr, LOG_OUTPUT, "ELF: SRAM tracepoint added at '0x%04x' (%s, %d bits)\n", firmware->trace[ti].addr, firmware->trace[ti].name, firmware->trace[ti].kind == AVR_MMCU_TAG_VCD_SRAM_8 ? 8 : 16);
-					avr->sram_tracepoint[avr->sram_tracepoint_count].irq = irq;
-					avr->sram_tracepoint[avr->sram_tracepoint_count].width = firmware->trace[ti].kind == AVR_MMCU_TAG_VCD_SRAM_8 ? 8 : 16;
-					avr->sram_tracepoint[avr->sram_tracepoint_count].addr = firmware->trace[ti].addr;
-					avr_vcd_add_signal(avr->vcd,
-						irq,
-						avr->sram_tracepoint[avr->sram_tracepoint_count].width,
-						firmware->trace[ti].name[0] ? firmware->trace[ti].name : names[0]
-					);
-					avr->sram_tracepoint_count++;
-				}
+				AVR_LOG(avr, LOG_OUTPUT,
+						"ELF: SRAM tracepoint added at '0x%04x' "
+						"(%s, %d bits)\n",
+						firmware->trace[ti].addr, firmware->trace[ti].name,
+						firmware->trace[ti].kind == AVR_MMCU_TAG_VCD_SRAM_8 ?
+							8 : 16);
+				avr_vcd_add_signal(
+					avr->vcd,
+					irq,
+					avr->sram_tracepoint[avr->sram_tracepoint_count].width,
+					firmware->trace[ti].name[0] ?
+					firmware->trace[ti].name : irq->name);
 			}
 		} else if (firmware->trace[ti].mask == 0xff ||
 					firmware->trace[ti].mask == 0) {

tests/atmega328pb_jsys.c

@@ -0,0 +1,62 @@
+/*
+ * atmega328pb_jsys.c: a small demonstaration of using an illegal
+ * instruction code to raise an IRQ and invoke a service from the
+ * surrounding application.  In this case a simple sleep/wake.
+ * The technique allows low-overhead simulation of busy-waiting.
+ *
+ * Derived from atmega48_enabled.c.
+ */
+
+#include <avr/io.h>
+#include <avr/interrupt.h>
+#include <avr/sleep.h>
+
+#include "avr_mcu_section.h"
+AVR_MCU(F_CPU, "atmega328pb");
+
+uint8_t count, ext_count;
+
+int main(void)
+{
+	// Set up timer0 - do not start yet
+
+	TCCR0A |= (1 << WGM01);                   // Configure timer 0 for CTC mode
+	OCR0A   = 0xAA;                           // CTC compare value
+	
+	TCCR0B |= (1 << CS00) | (1 << CS01);      // Start timer: clk/64
+
+	sei();									  // But none are enabled!
+	do {
+		while ((TIFR0 & (1 << OCF0A)) == 0) {
+			++count;
+			asm volatile ("\t.word 0xff\n\t"  // JSYS requesting sleep.
+						  ".byte 1, 0\n");
+		}
+		TIFR0 |= (1 << OCF0A);                // Clear it
+		++ext_count;
+	} while (count < 20);
+	cli();
+
+	/* Try an output JSYS.  It will not normally be seen as tests.c suppresses
+	 * stdout, but may be enabled there.
+	 *
+	 * This might be extended to mimic printf(), but with no stdio in the AVR.
+	 * The format strings might be placed in the .mmcu section,
+	 * further reducing flash use.
+	 *
+	 * Gcc is extremely sensitive about guessing the size of the ASM output.
+	 */
+
+	asm volatile ("\t.word 0xff\n\t"	  // JSYS requesting output.
+				  ".byte 2, 'H'\n\t"      // Stupid, but .asciz fails.
+				  ".byte 'e', 'l'\n\t"
+				  ".byte 'l', 'o'\n\t"
+				  ".byte ' ', 'f'\n\t"
+				  ".byte 'r', 'o'\n\t"
+				  ".byte 'm', ' '\n\t"
+				  ".byte 'A', 'V'\n\t"
+				  ".byte 'R', '.'\n\t"
+				  ".byte '\n', 0\n\t"
+				  ".byte 0, 0\n");
+	sleep_cpu();
+}