2 * QEMU i8255x (PRO100) emulation
4 * Copyright (c) 2006-2007 Stefan Weil
6 * Portions of the code are copies from grub / etherboot eepro100.c
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
23 * Tested features (i82559):
24 * PXE boot (i386) no valid link
25 * Linux networking (i386) ok
33 * Intel 8255x 10/100 Mbps Ethernet Controller Family
34 * Open Source Software Developer Manual
37 #if defined(TARGET_I386)
38 # warning "PXE boot still not working!"
42 #include <stddef.h> /* offsetof */
46 #include "eeprom93xx.h"
48 /* Common declarations for all PCI devices. */
50 #define PCI_CONFIG_8(offset, value) \
51 (pci_conf[offset] = (value))
52 #define PCI_CONFIG_16(offset, value) \
53 (*(uint16_t *)&pci_conf[offset] = cpu_to_le16(value))
54 #define PCI_CONFIG_32(offset, value) \
55 (*(uint32_t *)&pci_conf[offset] = cpu_to_le32(value))
59 /* debug EEPRO100 card */
60 //~ #define DEBUG_EEPRO100
63 #define logout(fmt, args...) fprintf(stderr, "EE100\t%-24s" fmt, __func__, ##args)
65 #define logout(fmt, args...) ((void)0)
68 /* Set flags to 0 to disable debug output. */
71 #define TRACE(flag, command) ((flag) ? (command) : (void)0)
73 #define missing(text) assert(!"feature is missing in this emulation: " text)
75 #define MAX_ETH_FRAME_SIZE 1514
77 /* This driver supports several different devices which are declared here. */
78 #define i82551 0x82551
79 #define i82557B 0x82557b
80 #define i82557C 0x82557c
81 #define i82558B 0x82558b
82 #define i82559C 0x82559c
83 #define i82559ER 0x82559e
84 #define i82562 0x82562
86 #define EEPROM_SIZE 64
88 #define PCI_MEM_SIZE (4 * KiB)
89 #define PCI_IO_SIZE 64
90 #define PCI_FLASH_SIZE (128 * KiB)
92 #define BIT(n) (1 << (n))
93 #define BITS(n, m) (((0xffffffffU << (31 - n)) >> (31 - n + m)) << m)
95 /* The SCB accepts the following controls for the Tx and Rx units: */
96 #define CU_NOP 0x0000 /* No operation. */
97 #define CU_START 0x0010 /* CU start. */
98 #define CU_RESUME 0x0020 /* CU resume. */
99 #define CU_STATSADDR 0x0040 /* Load dump counters address. */
100 #define CU_SHOWSTATS 0x0050 /* Dump statistical counters. */
101 #define CU_CMD_BASE 0x0060 /* Load CU base address. */
102 #define CU_DUMPSTATS 0x0070 /* Dump and reset statistical counters. */
103 #define CU_SRESUME 0x00a0 /* CU static resume. */
105 #define RU_NOP 0x0000
106 #define RX_START 0x0001
107 #define RX_RESUME 0x0002
108 #define RX_ABORT 0x0004
109 #define RX_ADDR_LOAD 0x0006
110 #define RX_RESUMENR 0x0007
111 #define INT_MASK 0x0100
112 #define DRVR_INT 0x0200 /* Driver generated interrupt. */
114 typedef unsigned char bool;
116 /* Offsets to the various registers.
117 All accesses need not be longword aligned. */
118 enum speedo_offsets {
121 SCBCmd = 2, /* Rx/Command Unit command and status. */
123 SCBPointer = 4, /* General purpose pointer. */
124 SCBPort = 8, /* Misc. commands and operands. */
125 SCBflash = 12, SCBeeprom = 14, /* EEPROM and flash memory control. */
126 SCBCtrlMDI = 16, /* MDI interface control. */
127 SCBEarlyRx = 20, /* Early receive byte count. */
131 /* A speedo3 transmit buffer descriptor with two buffers... */
135 uint32_t link; /* void * */
136 uint32_t tx_desc_addr; /* transmit buffer decsriptor array address. */
137 uint16_t tcb_bytes; /* transmit command block byte count (in lower 14 bits */
138 uint8_t tx_threshold; /* transmit threshold */
139 uint8_t tbd_count; /* TBD number */
140 //~ /* This constitutes two "TBD" entries: hdr and data */
141 //~ uint32_t tx_buf_addr0; /* void *, header of frame to be transmitted. */
142 //~ int32_t tx_buf_size0; /* Length of Tx hdr. */
143 //~ uint32_t tx_buf_addr1; /* void *, data to be transmitted. */
144 //~ int32_t tx_buf_size1; /* Length of Tx data. */
147 /* Receive frame descriptor. */
151 uint32_t link; /* struct RxFD * */
152 uint32_t rx_buf_addr; /* void * */
155 char packet[MAX_ETH_FRAME_SIZE + 4];
159 uint32_t tx_good_frames, tx_max_collisions, tx_late_collisions,
160 tx_underruns, tx_lost_crs, tx_deferred, tx_single_collisions,
161 tx_multiple_collisions, tx_total_collisions;
162 uint32_t rx_good_frames, rx_crc_errors, rx_alignment_errors,
163 rx_resource_errors, rx_overrun_errors, rx_cdt_errors,
164 rx_short_frame_errors;
165 uint32_t fc_xmt_pause, fc_rcv_pause, fc_rcv_unsupported;
166 uint16_t xmt_tco_frames, rcv_tco_frames;
201 uint8_t phys[6]; /* mac address */
203 uint8_t mult[8]; /* multicast mask array */
208 uint8_t scb_stat; /* SCB stat/ack byte */
209 uint8_t int_stat; /* PCI interrupt status */
210 uint32_t region[3]; /* PCI region addresses */
212 uint32_t statcounter[19];
215 uint32_t device; /* device variant */
217 /* (cu_base + cu_offset) address the next command block in the command block list. */
218 uint32_t cu_base; /* CU base address */
219 uint32_t cu_offset; /* CU address offset */
220 /* (ru_base + ru_offset) address the RFD in the Receive Frame Area. */
221 uint32_t ru_base; /* RU base address */
222 uint32_t ru_offset; /* RU address offset */
223 uint32_t statsaddr; /* pointer to eepro100_stats_t */
224 eepro100_stats_t statistics; /* statistical counters */
229 /* Configuration bytes. */
230 uint8_t configuration[22];
232 /* Data in mem is always in the byte order of the controller (le). */
233 uint8_t mem[PCI_MEM_SIZE];
236 /* Default values for MDI (PHY) registers */
237 static const uint16_t eepro100_mdi_default[] = {
238 /* MDI Registers 0 - 6, 7 */
239 0x3000, 0x780d, 0x02a8, 0x0154, 0x05e1, 0x0000, 0x0000, 0x0000,
240 /* MDI Registers 8 - 15 */
241 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000,
242 /* MDI Registers 16 - 31 */
243 0x0003, 0x0000, 0x0001, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000,
244 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000,
247 /* Readonly mask for MDI (PHY) registers */
248 static const uint16_t eepro100_mdi_mask[] = {
249 0x0000, 0xffff, 0xffff, 0xffff, 0xc01f, 0xffff, 0xffff, 0x0000,
250 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000,
251 0x0fff, 0x0000, 0xffff, 0xffff, 0xffff, 0xffff, 0xffff, 0xffff,
252 0xffff, 0xffff, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000,
255 #define POLYNOMIAL 0x04c11db6
259 static int compute_mcast_idx(const uint8_t * ep)
266 for (i = 0; i < 6; i++) {
268 for (j = 0; j < 8; j++) {
269 carry = ((crc & 0x80000000L) ? 1 : 0) ^ (b & 0x01);
273 crc = ((crc ^ POLYNOMIAL) | carry);
279 #if defined(DEBUG_EEPRO100)
280 static const char *nic_dump(const uint8_t * buf, unsigned size)
282 static char dump[3 * 16 + 1];
287 p += sprintf(p, " %02x", *buf++);
291 #endif /* DEBUG_EEPRO100 */
294 stat_ack_not_ours = 0x00,
295 stat_ack_sw_gen = 0x04,
297 stat_ack_cu_idle = 0x20,
298 stat_ack_frame_rx = 0x40,
299 stat_ack_cu_cmd_done = 0x80,
300 stat_ack_not_present = 0xFF,
301 stat_ack_rx = (stat_ack_sw_gen | stat_ack_rnr | stat_ack_frame_rx),
302 stat_ack_tx = (stat_ack_cu_idle | stat_ack_cu_cmd_done),
305 static void disable_interrupt(EEPRO100State * s)
308 logout("interrupt disabled\n");
309 qemu_irq_lower(s->pci_dev->irq[0]);
314 static void enable_interrupt(EEPRO100State * s)
317 logout("interrupt enabled\n");
318 qemu_irq_raise(s->pci_dev->irq[0]);
323 static void eepro100_acknowledge(EEPRO100State * s)
325 s->scb_stat &= ~s->mem[SCBAck];
326 s->mem[SCBAck] = s->scb_stat;
327 if (s->scb_stat == 0) {
328 disable_interrupt(s);
332 static void eepro100_interrupt(EEPRO100State * s, uint8_t stat)
334 uint8_t mask = ~s->mem[SCBIntmask];
335 s->mem[SCBAck] |= stat;
336 stat = s->scb_stat = s->mem[SCBAck];
337 stat &= (mask | 0x0f);
338 //~ stat &= (~s->mem[SCBIntmask] | 0x0xf);
339 if (stat && (mask & 0x01)) {
340 /* SCB mask and SCB Bit M do not disable interrupt. */
342 } else if (s->int_stat) {
343 disable_interrupt(s);
347 static void eepro100_cx_interrupt(EEPRO100State * s)
349 /* CU completed action command. */
350 /* Transmit not ok (82557 only, not in emulation). */
351 eepro100_interrupt(s, 0x80);
354 static void eepro100_cna_interrupt(EEPRO100State * s)
356 /* CU left the active state. */
357 eepro100_interrupt(s, 0x20);
360 static void eepro100_fr_interrupt(EEPRO100State * s)
362 /* RU received a complete frame. */
363 eepro100_interrupt(s, 0x40);
367 static void eepro100_rnr_interrupt(EEPRO100State * s)
369 /* RU is not ready. */
370 eepro100_interrupt(s, 0x10);
374 static void eepro100_mdi_interrupt(EEPRO100State * s)
376 /* MDI completed read or write cycle. */
377 eepro100_interrupt(s, 0x08);
380 static void eepro100_swi_interrupt(EEPRO100State * s)
382 /* Software has requested an interrupt. */
383 eepro100_interrupt(s, 0x04);
387 static void eepro100_fcp_interrupt(EEPRO100State * s)
389 /* Flow control pause interrupt (82558 and later). */
390 eepro100_interrupt(s, 0x01);
394 static void pci_reset(EEPRO100State * s)
396 uint32_t device = s->device;
397 uint8_t *pci_conf = s->pci_dev->config;
402 pci_config_set_vendor_id(pci_conf, PCI_VENDOR_ID_INTEL);
404 pci_config_set_device_id(pci_conf, PCI_DEVICE_ID_INTEL_82551IT);
406 PCI_CONFIG_16(PCI_COMMAND, 0x0000);
408 PCI_CONFIG_16(PCI_STATUS, 0x2800);
409 /* PCI Revision ID */
410 PCI_CONFIG_8(PCI_REVISION_ID, 0x08);
412 PCI_CONFIG_8(0x09, 0x00);
413 pci_config_set_class(pci_conf, PCI_CLASS_NETWORK_ETHERNET);
414 /* PCI Cache Line Size */
415 /* check cache line size!!! */
416 //~ PCI_CONFIG_8(0x0c, 0x00);
417 /* PCI Latency Timer */
418 PCI_CONFIG_8(0x0d, 0x20); // latency timer = 32 clocks
419 /* PCI Header Type */
420 /* BIST (built-in self test) */
421 #if defined(TARGET_I386)
422 // !!! workaround for buggy bios
423 //~ #define PCI_ADDRESS_SPACE_MEM_PREFETCH 0
426 /* PCI Base Address Registers */
427 /* CSR Memory Mapped Base Address */
428 PCI_CONFIG_32(PCI_BASE_ADDRESS_0,
429 PCI_ADDRESS_SPACE_MEM | PCI_ADDRESS_SPACE_MEM_PREFETCH);
430 /* CSR I/O Mapped Base Address */
431 PCI_CONFIG_32(PCI_BASE_ADDRESS_1, PCI_ADDRESS_SPACE_IO);
433 /* Flash Memory Mapped Base Address */
434 PCI_CONFIG_32(PCI_BASE_ADDRESS_2, 0xfffe0000 | PCI_ADDRESS_SPACE_MEM);
437 /* Expansion ROM Base Address (depends on boot disable!!!) */
438 PCI_CONFIG_32(0x30, 0x00000000);
439 /* Capability Pointer */
440 PCI_CONFIG_8(0x34, 0xdc);
442 PCI_CONFIG_8(0x3d, 1); // interrupt pin 0
444 PCI_CONFIG_8(0x3e, 0x08);
445 /* Maximum Latency */
446 PCI_CONFIG_8(0x3f, 0x18);
447 /* Power Management Capabilities / Next Item Pointer / Capability ID */
448 PCI_CONFIG_32(0xdc, 0x7e210001);
452 //~ PCI_CONFIG_16(PCI_DEVICE_ID, 0x1209);
453 PCI_CONFIG_8(PCI_REVISION_ID, 0x0f);
456 PCI_CONFIG_16(PCI_DEVICE_ID, 0x1229);
457 PCI_CONFIG_8(PCI_REVISION_ID, 0x02);
460 PCI_CONFIG_16(PCI_DEVICE_ID, 0x1229);
461 PCI_CONFIG_8(PCI_REVISION_ID, 0x03);
464 PCI_CONFIG_16(PCI_DEVICE_ID, 0x1229);
465 PCI_CONFIG_16(PCI_STATUS, 0x2810);
466 PCI_CONFIG_8(PCI_REVISION_ID, 0x05);
469 PCI_CONFIG_16(PCI_DEVICE_ID, 0x1229);
470 PCI_CONFIG_16(PCI_STATUS, 0x2810);
471 //~ PCI_CONFIG_8(PCI_REVISION_ID, 0x08);
474 //~ PCI_CONFIG_16(PCI_DEVICE_ID, 0x1209);
475 PCI_CONFIG_16(PCI_STATUS, 0x2810);
476 PCI_CONFIG_8(PCI_REVISION_ID, 0x09);
478 //~ PCI_CONFIG_16(PCI_DEVICE_ID, 0x1029);
479 //~ PCI_CONFIG_16(PCI_DEVICE_ID, 0x1030); /* 82559 InBusiness 10/100 */
481 logout("Device %X is undefined!\n", device);
484 if (device == i82557C || device == i82558B || device == i82559C) {
485 logout("Get device id and revision from EEPROM!!!\n");
489 static void nic_selective_reset(EEPRO100State * s)
492 uint16_t *eeprom_contents = eeprom93xx_data(s->eeprom);
493 //~ eeprom93xx_reset(s->eeprom);
494 memcpy(eeprom_contents, s->macaddr, 6);
495 eeprom_contents[0xa] = 0x4000;
497 for (i = 0; i < EEPROM_SIZE - 1; i++) {
498 sum += eeprom_contents[i];
500 eeprom_contents[EEPROM_SIZE - 1] = 0xbaba - sum;
502 memset(s->mem, 0, sizeof(s->mem));
503 uint32_t val = BIT(21);
504 memcpy(&s->mem[SCBCtrlMDI], &val, sizeof(val));
506 assert(sizeof(s->mdimem) == sizeof(eepro100_mdi_default));
507 memcpy(&s->mdimem[0], &eepro100_mdi_default[0], sizeof(s->mdimem));
510 static void nic_reset(void *opaque)
512 EEPRO100State *s = (EEPRO100State *) opaque;
518 nic_selective_reset(s);
521 #if defined(DEBUG_EEPRO100)
522 static const char *reg[PCI_IO_SIZE / 4] = {
526 "EEPROM/Flash Control",
528 "Receive DMA Byte Count",
529 "Flow control register",
530 "General Status/Control"
533 static char *regname(uint32_t addr)
536 if (addr < PCI_IO_SIZE) {
537 const char *r = reg[addr / 4];
539 sprintf(buf, "%s+%u", r, addr % 4);
541 sprintf(buf, "0x%02x", addr);
544 sprintf(buf, "??? 0x%08x", addr);
548 #endif /* DEBUG_EEPRO100 */
551 static uint16_t eepro100_read_status(EEPRO100State * s)
553 uint16_t val = s->status;
554 logout("val=0x%04x\n", val);
558 static void eepro100_write_status(EEPRO100State * s, uint16_t val)
560 logout("val=0x%04x\n", val);
565 /*****************************************************************************
569 ****************************************************************************/
572 static uint16_t eepro100_read_command(EEPRO100State * s)
574 uint16_t val = 0xffff;
575 //~ logout("val=0x%04x\n", val);
580 /* Commands that can be put in a command list entry. */
585 CmdMulticastList = 3,
587 CmdTDR = 5, /* load microcode */
591 /* And some extra flags: */
592 CmdSuspend = 0x4000, /* Suspend after completion. */
593 CmdIntr = 0x2000, /* Interrupt after completion. */
594 CmdTxFlex = 0x0008, /* Use "Flexible mode" for CmdTx command. */
597 static cu_state_t get_cu_state(EEPRO100State * s)
599 return ((s->mem[SCBStatus] >> 6) & 0x03);
602 static void set_cu_state(EEPRO100State * s, cu_state_t state)
604 s->mem[SCBStatus] = (s->mem[SCBStatus] & 0x3f) + (state << 6);
607 static ru_state_t get_ru_state(EEPRO100State * s)
609 return ((s->mem[SCBStatus] >> 2) & 0x0f);
612 static void set_ru_state(EEPRO100State * s, ru_state_t state)
614 s->mem[SCBStatus] = (s->mem[SCBStatus] & 0xc3) + (state << 2);
617 static void dump_statistics(EEPRO100State * s)
619 /* Dump statistical data. Most data is never changed by the emulation
620 * and always 0, so we first just copy the whole block and then those
621 * values which really matter.
622 * Number of data should check configuration!!!
624 cpu_physical_memory_write(s->statsaddr, (uint8_t *) & s->statistics, 64);
625 stl_phys(s->statsaddr + 0, s->statistics.tx_good_frames);
626 stl_phys(s->statsaddr + 36, s->statistics.rx_good_frames);
627 stl_phys(s->statsaddr + 48, s->statistics.rx_resource_errors);
628 stl_phys(s->statsaddr + 60, s->statistics.rx_short_frame_errors);
629 //~ stw_phys(s->statsaddr + 76, s->statistics.xmt_tco_frames);
630 //~ stw_phys(s->statsaddr + 78, s->statistics.rcv_tco_frames);
631 //~ missing("CU dump statistical counters");
634 static void eepro100_cu_command(EEPRO100State * s, uint8_t val)
643 if (get_cu_state(s) != cu_idle) {
644 /* Intel documentation says that CU must be idle for the CU
645 * start command. Intel driver for Linux also starts the CU
646 * from suspended state. */
647 logout("CU state is %u, should be %u\n", get_cu_state(s), cu_idle);
648 //~ assert(!"wrong CU state");
650 set_cu_state(s, cu_active);
651 s->cu_offset = s->pointer;
653 cb_address = s->cu_base + s->cu_offset;
654 cpu_physical_memory_read(cb_address, (uint8_t *) & tx, sizeof(tx));
655 uint16_t status = le16_to_cpu(tx.status);
656 uint16_t command = le16_to_cpu(tx.command);
658 ("val=0x%02x (cu start), status=0x%04x, command=0x%04x, link=0x%08x\n",
659 val, status, command, tx.link);
660 bool bit_el = ((command & 0x8000) != 0);
661 bool bit_s = ((command & 0x4000) != 0);
662 bool bit_i = ((command & 0x2000) != 0);
663 bool bit_nc = ((command & 0x0010) != 0);
664 //~ bool bit_sf = ((command & 0x0008) != 0);
665 uint16_t cmd = command & 0x0007;
666 s->cu_offset = le32_to_cpu(tx.link);
672 cpu_physical_memory_read(cb_address + 8, &s->macaddr[0], 6);
673 logout("macaddr: %s\n", nic_dump(&s->macaddr[0], 6));
676 cpu_physical_memory_read(cb_address + 8, &s->configuration[0],
677 sizeof(s->configuration));
678 logout("configuration: %s\n", nic_dump(&s->configuration[0], 16));
680 case CmdMulticastList:
681 //~ missing("multicast list");
685 uint32_t tbd_array = le32_to_cpu(tx.tx_desc_addr);
686 uint16_t tcb_bytes = (le16_to_cpu(tx.tcb_bytes) & 0x3fff);
688 ("transmit, TBD array address 0x%08x, TCB byte count 0x%04x, TBD count %u\n",
689 tbd_array, tcb_bytes, tx.tbd_count);
692 assert(tcb_bytes <= 2600);
693 /* Next assertion fails for local configuration. */
694 //~ assert((tcb_bytes > 0) || (tbd_array != 0xffffffff));
695 if (!((tcb_bytes > 0) || (tbd_array != 0xffffffff))) {
697 ("illegal values of TBD array address and TCB byte count!\n");
699 uint8_t buf[MAX_ETH_FRAME_SIZE + 4];
701 uint32_t tbd_address = cb_address + 0x10;
702 assert(tcb_bytes <= sizeof(buf));
703 while (size < tcb_bytes) {
704 uint32_t tx_buffer_address = ldl_phys(tbd_address);
705 uint16_t tx_buffer_size = lduw_phys(tbd_address + 4);
706 //~ uint16_t tx_buffer_el = lduw_phys(tbd_address + 6);
709 ("TBD (simplified mode): buffer address 0x%08x, size 0x%04x\n",
710 tx_buffer_address, tx_buffer_size);
711 cpu_physical_memory_read(tx_buffer_address, &buf[size],
713 size += tx_buffer_size;
715 if (tbd_array == 0xffffffff) {
716 /* Simplified mode. Was already handled by code above. */
719 uint8_t tbd_count = 0;
720 if (!(s->configuration[6] & BIT(4))) {
722 assert(tcb_bytes == 0);
723 for (; tbd_count < 2; tbd_count++) {
724 uint32_t tx_buffer_address = ldl_phys(tbd_address);
725 uint16_t tx_buffer_size = lduw_phys(tbd_address + 4);
726 uint16_t tx_buffer_el = lduw_phys(tbd_address + 6);
729 ("TBD (extended mode): buffer address 0x%08x, size 0x%04x\n",
730 tx_buffer_address, tx_buffer_size);
731 cpu_physical_memory_read(tx_buffer_address, &buf[size],
733 size += tx_buffer_size;
734 if (tx_buffer_el & 1) {
739 tbd_address = tbd_array;
740 for (; tbd_count < tx.tbd_count; tbd_count++) {
741 uint32_t tx_buffer_address = ldl_phys(tbd_address);
742 uint16_t tx_buffer_size = lduw_phys(tbd_address + 4);
743 uint16_t tx_buffer_el = lduw_phys(tbd_address + 6);
746 ("TBD (flexible mode): buffer address 0x%08x, size 0x%04x\n",
747 tx_buffer_address, tx_buffer_size);
748 cpu_physical_memory_read(tx_buffer_address, &buf[size],
750 size += tx_buffer_size;
751 if (tx_buffer_el & 1) {
756 qemu_send_packet(s->vc, buf, size);
757 s->statistics.tx_good_frames++;
758 /* Transmit with bad status would raise an CX/TNO interrupt.
759 * (82557 only). Emulation never has bad status. */
760 //~ eepro100_cx_interrupt(s);
763 logout("load microcode\n");
764 /* Starting with offset 8, the command contains
765 * 64 dwords microcode which we just ignore here. */
768 missing("undefined command");
770 /* Write new status (success). */
771 stw_phys(cb_address, status | 0x8000 | 0x2000);
773 /* CU completed action. */
774 eepro100_cx_interrupt(s);
777 /* CU becomes idle. */
778 set_cu_state(s, cu_idle);
779 eepro100_cna_interrupt(s);
781 /* CU becomes suspended. */
782 set_cu_state(s, cu_suspended);
783 eepro100_cna_interrupt(s);
785 /* More entries in list. */
786 logout("CU list with at least one more entry\n");
789 logout("CU list empty\n");
790 /* List is empty. Now CU is idle or suspended. */
793 if (get_cu_state(s) != cu_suspended) {
794 logout("bad CU resume from CU state %u\n", get_cu_state(s));
795 /* Workaround for bad Linux eepro100 driver which resumes
796 * from idle state. */
797 //~ missing("cu resume");
798 set_cu_state(s, cu_suspended);
800 if (get_cu_state(s) == cu_suspended) {
801 logout("CU resuming\n");
802 set_cu_state(s, cu_active);
807 /* Load dump counters address. */
808 s->statsaddr = s->pointer;
809 logout("val=0x%02x (status address)\n", val);
812 /* Dump statistical counters. */
817 logout("val=0x%02x (CU base address)\n", val);
818 s->cu_base = s->pointer;
821 /* Dump and reset statistical counters. */
823 memset(&s->statistics, 0, sizeof(s->statistics));
826 /* CU static resume. */
827 missing("CU static resume");
830 missing("Undefined CU command");
834 static void eepro100_ru_command(EEPRO100State * s, uint8_t val)
842 if (get_ru_state(s) != ru_idle) {
843 logout("RU state is %u, should be %u\n", get_ru_state(s), ru_idle);
844 //~ assert(!"wrong RU state");
846 set_ru_state(s, ru_ready);
847 s->ru_offset = s->pointer;
848 logout("val=0x%02x (rx start)\n", val);
852 if (get_ru_state(s) != ru_suspended) {
853 logout("RU state is %u, should be %u\n", get_ru_state(s),
855 //~ assert(!"wrong RU state");
857 set_ru_state(s, ru_ready);
861 logout("val=0x%02x (RU base address)\n", val);
862 s->ru_base = s->pointer;
865 logout("val=0x%02x (undefined RU command)\n", val);
866 missing("Undefined SU command");
870 static void eepro100_write_command(EEPRO100State * s, uint8_t val)
872 eepro100_ru_command(s, val & 0x0f);
873 eepro100_cu_command(s, val & 0xf0);
875 logout("val=0x%02x\n", val);
877 /* Clear command byte after command was accepted. */
881 /*****************************************************************************
885 ****************************************************************************/
887 #define EEPROM_CS 0x02
888 #define EEPROM_SK 0x01
889 #define EEPROM_DI 0x04
890 #define EEPROM_DO 0x08
892 static uint16_t eepro100_read_eeprom(EEPRO100State * s)
895 memcpy(&val, &s->mem[SCBeeprom], sizeof(val));
896 if (eeprom93xx_read(s->eeprom)) {
904 static void eepro100_write_eeprom(eeprom_t * eeprom, uint8_t val)
906 logout("write val=0x%02x\n", val);
908 /* mask unwriteable bits */
909 //~ val = SET_MASKED(val, 0x31, eeprom->value);
911 int eecs = ((val & EEPROM_CS) != 0);
912 int eesk = ((val & EEPROM_SK) != 0);
913 int eedi = ((val & EEPROM_DI) != 0);
914 eeprom93xx_write(eeprom, eecs, eesk, eedi);
917 static void eepro100_write_pointer(EEPRO100State * s, uint32_t val)
919 s->pointer = le32_to_cpu(val);
920 logout("val=0x%08x\n", val);
923 /*****************************************************************************
927 ****************************************************************************/
929 #if defined(DEBUG_EEPRO100)
930 static const char *mdi_op_name[] = {
937 static const char *mdi_reg_name[] = {
940 "PHY Identification (Word 1)",
941 "PHY Identification (Word 2)",
942 "Auto-Negotiation Advertisement",
943 "Auto-Negotiation Link Partner Ability",
944 "Auto-Negotiation Expansion"
946 #endif /* DEBUG_EEPRO100 */
948 static uint32_t eepro100_read_mdi(EEPRO100State * s)
951 memcpy(&val, &s->mem[0x10], sizeof(val));
953 #ifdef DEBUG_EEPRO100
954 uint8_t raiseint = (val & BIT(29)) >> 29;
955 uint8_t opcode = (val & BITS(27, 26)) >> 26;
956 uint8_t phy = (val & BITS(25, 21)) >> 21;
957 uint8_t reg = (val & BITS(20, 16)) >> 16;
958 uint16_t data = (val & BITS(15, 0));
960 /* Emulation takes no time to finish MDI transaction. */
962 TRACE(MDI, logout("val=0x%08x (int=%u, %s, phy=%u, %s, data=0x%04x\n",
963 val, raiseint, mdi_op_name[opcode], phy,
964 mdi_reg_name[reg], data));
968 //~ #define BITS(val, upper, lower) (val & ???)
969 static void eepro100_write_mdi(EEPRO100State * s, uint32_t val)
971 uint8_t raiseint = (val & BIT(29)) >> 29;
972 uint8_t opcode = (val & BITS(27, 26)) >> 26;
973 uint8_t phy = (val & BITS(25, 21)) >> 21;
974 uint8_t reg = (val & BITS(20, 16)) >> 16;
975 uint16_t data = (val & BITS(15, 0));
977 /* Unsupported PHY address. */
978 //~ logout("phy must be 1 but is %u\n", phy);
980 } else if (opcode != 1 && opcode != 2) {
981 /* Unsupported opcode. */
982 logout("opcode must be 1 or 2 but is %u\n", opcode);
984 } else if (reg > 6) {
985 /* Unsupported register. */
986 logout("register must be 0...6 but is %u\n", reg);
989 TRACE(MDI, logout("val=0x%08x (int=%u, %s, phy=%u, %s, data=0x%04x\n",
990 val, raiseint, mdi_op_name[opcode], phy,
991 mdi_reg_name[reg], data));
995 case 0: /* Control Register */
997 /* Reset status and control registers to default. */
998 s->mdimem[0] = eepro100_mdi_default[0];
999 s->mdimem[1] = eepro100_mdi_default[1];
1000 data = s->mdimem[reg];
1002 /* Restart Auto Configuration = Normal Operation */
1006 case 1: /* Status Register */
1007 missing("not writable");
1008 data = s->mdimem[reg];
1010 case 2: /* PHY Identification Register (Word 1) */
1011 case 3: /* PHY Identification Register (Word 2) */
1012 missing("not implemented");
1014 case 4: /* Auto-Negotiation Advertisement Register */
1015 case 5: /* Auto-Negotiation Link Partner Ability Register */
1017 case 6: /* Auto-Negotiation Expansion Register */
1019 missing("not implemented");
1021 s->mdimem[reg] = data;
1022 } else if (opcode == 2) {
1025 case 0: /* Control Register */
1026 if (data & 0x8000) {
1027 /* Reset status and control registers to default. */
1028 s->mdimem[0] = eepro100_mdi_default[0];
1029 s->mdimem[1] = eepro100_mdi_default[1];
1032 case 1: /* Status Register */
1033 s->mdimem[reg] |= 0x0020;
1035 case 2: /* PHY Identification Register (Word 1) */
1036 case 3: /* PHY Identification Register (Word 2) */
1037 case 4: /* Auto-Negotiation Advertisement Register */
1039 case 5: /* Auto-Negotiation Link Partner Ability Register */
1040 s->mdimem[reg] = 0x41fe;
1042 case 6: /* Auto-Negotiation Expansion Register */
1043 s->mdimem[reg] = 0x0001;
1046 data = s->mdimem[reg];
1048 /* Emulation takes no time to finish MDI transaction.
1049 * Set MDI bit in SCB status register. */
1050 s->mem[SCBAck] |= 0x08;
1053 eepro100_mdi_interrupt(s);
1056 val = (val & 0xffff0000) + data;
1057 memcpy(&s->mem[0x10], &val, sizeof(val));
1060 /*****************************************************************************
1064 ****************************************************************************/
1066 #define PORT_SOFTWARE_RESET 0
1067 #define PORT_SELFTEST 1
1068 #define PORT_SELECTIVE_RESET 2
1070 #define PORT_SELECTION_MASK 3
1073 uint32_t st_sign; /* Self Test Signature */
1074 uint32_t st_result; /* Self Test Results */
1075 } eepro100_selftest_t;
1077 static uint32_t eepro100_read_port(EEPRO100State * s)
1082 static void eepro100_write_port(EEPRO100State * s, uint32_t val)
1084 val = le32_to_cpu(val);
1085 uint32_t address = (val & ~PORT_SELECTION_MASK);
1086 uint8_t selection = (val & PORT_SELECTION_MASK);
1087 switch (selection) {
1088 case PORT_SOFTWARE_RESET:
1092 logout("selftest address=0x%08x\n", address);
1093 eepro100_selftest_t data;
1094 cpu_physical_memory_read(address, (uint8_t *) & data, sizeof(data));
1095 data.st_sign = 0xffffffff;
1097 cpu_physical_memory_write(address, (uint8_t *) & data, sizeof(data));
1099 case PORT_SELECTIVE_RESET:
1100 logout("selective reset, selftest address=0x%08x\n", address);
1101 nic_selective_reset(s);
1104 logout("val=0x%08x\n", val);
1105 missing("unknown port selection");
1109 /*****************************************************************************
1111 * General hardware emulation.
1113 ****************************************************************************/
1115 static uint8_t eepro100_read1(EEPRO100State * s, uint32_t addr)
1118 if (addr <= sizeof(s->mem) - sizeof(val)) {
1119 memcpy(&val, &s->mem[addr], sizeof(val));
1124 //~ val = eepro100_read_status(s);
1125 logout("addr=%s val=0x%02x\n", regname(addr), val);
1128 //~ val = eepro100_read_status(s);
1129 logout("addr=%s val=0x%02x\n", regname(addr), val);
1132 logout("addr=%s val=0x%02x\n", regname(addr), val);
1133 //~ val = eepro100_read_command(s);
1136 logout("addr=%s val=0x%02x\n", regname(addr), val);
1139 logout("addr=%s val=0x%02x\n", regname(addr), val);
1142 val = eepro100_read_eeprom(s);
1144 case 0x1b: /* PMDR (power management driver register) */
1146 logout("addr=%s val=0x%02x\n", regname(addr), val);
1148 case 0x1d: /* general status register */
1149 /* 100 Mbps full duplex, valid link */
1151 logout("addr=General Status val=%02x\n", val);
1154 logout("addr=%s val=0x%02x\n", regname(addr), val);
1155 missing("unknown byte read");
1160 static uint16_t eepro100_read2(EEPRO100State * s, uint32_t addr)
1163 if (addr <= sizeof(s->mem) - sizeof(val)) {
1164 memcpy(&val, &s->mem[addr], sizeof(val));
1167 logout("addr=%s val=0x%04x\n", regname(addr), val);
1171 //~ val = eepro100_read_status(s);
1174 val = eepro100_read_eeprom(s);
1177 logout("addr=%s val=0x%04x\n", regname(addr), val);
1178 missing("unknown word read");
1183 static uint32_t eepro100_read4(EEPRO100State * s, uint32_t addr)
1186 if (addr <= sizeof(s->mem) - sizeof(val)) {
1187 memcpy(&val, &s->mem[addr], sizeof(val));
1192 //~ val = eepro100_read_status(s);
1193 logout("addr=%s val=0x%08x\n", regname(addr), val);
1196 //~ val = eepro100_read_pointer(s);
1197 logout("addr=%s val=0x%08x\n", regname(addr), val);
1200 val = eepro100_read_port(s);
1201 logout("addr=%s val=0x%08x\n", regname(addr), val);
1204 val = eepro100_read_mdi(s);
1207 logout("addr=%s val=0x%08x\n", regname(addr), val);
1208 missing("unknown longword read");
1213 static void eepro100_write1(EEPRO100State * s, uint32_t addr, uint8_t val)
1215 if (addr <= sizeof(s->mem) - sizeof(val)) {
1216 memcpy(&s->mem[addr], &val, sizeof(val));
1219 logout("addr=%s val=0x%02x\n", regname(addr), val);
1223 //~ eepro100_write_status(s, val);
1226 eepro100_acknowledge(s);
1229 eepro100_write_command(s, val);
1233 eepro100_swi_interrupt(s);
1235 eepro100_interrupt(s, 0);
1242 logout("addr=%s val=0x%02x\n", regname(addr), val);
1245 eepro100_write_eeprom(s->eeprom, val);
1248 logout("addr=%s val=0x%02x\n", regname(addr), val);
1249 missing("unknown byte write");
1253 static void eepro100_write2(EEPRO100State * s, uint32_t addr, uint16_t val)
1255 if (addr <= sizeof(s->mem) - sizeof(val)) {
1256 memcpy(&s->mem[addr], &val, sizeof(val));
1259 logout("addr=%s val=0x%04x\n", regname(addr), val);
1263 //~ eepro100_write_status(s, val);
1264 eepro100_acknowledge(s);
1267 eepro100_write_command(s, val);
1268 eepro100_write1(s, SCBIntmask, val >> 8);
1271 eepro100_write_eeprom(s->eeprom, val);
1274 logout("addr=%s val=0x%04x\n", regname(addr), val);
1275 missing("unknown word write");
1279 static void eepro100_write4(EEPRO100State * s, uint32_t addr, uint32_t val)
1281 if (addr <= sizeof(s->mem) - sizeof(val)) {
1282 memcpy(&s->mem[addr], &val, sizeof(val));
1287 eepro100_write_pointer(s, val);
1290 logout("addr=%s val=0x%08x\n", regname(addr), val);
1291 eepro100_write_port(s, val);
1294 eepro100_write_mdi(s, val);
1297 logout("addr=%s val=0x%08x\n", regname(addr), val);
1298 missing("unknown longword write");
1302 static uint32_t ioport_read1(void *opaque, uint32_t addr)
1304 EEPRO100State *s = opaque;
1305 //~ logout("addr=%s\n", regname(addr));
1306 return eepro100_read1(s, addr - s->region[1]);
1309 static uint32_t ioport_read2(void *opaque, uint32_t addr)
1311 EEPRO100State *s = opaque;
1312 return eepro100_read2(s, addr - s->region[1]);
1315 static uint32_t ioport_read4(void *opaque, uint32_t addr)
1317 EEPRO100State *s = opaque;
1318 return eepro100_read4(s, addr - s->region[1]);
1321 static void ioport_write1(void *opaque, uint32_t addr, uint32_t val)
1323 EEPRO100State *s = opaque;
1324 //~ logout("addr=%s val=0x%02x\n", regname(addr), val);
1325 eepro100_write1(s, addr - s->region[1], val);
1328 static void ioport_write2(void *opaque, uint32_t addr, uint32_t val)
1330 EEPRO100State *s = opaque;
1331 eepro100_write2(s, addr - s->region[1], val);
1334 static void ioport_write4(void *opaque, uint32_t addr, uint32_t val)
1336 EEPRO100State *s = opaque;
1337 eepro100_write4(s, addr - s->region[1], val);
1340 /***********************************************************/
1341 /* PCI EEPRO100 definitions */
1343 typedef struct PCIEEPRO100State {
1345 EEPRO100State eepro100;
1348 static void pci_map(PCIDevice * pci_dev, int region_num,
1349 uint32_t addr, uint32_t size, int type)
1351 PCIEEPRO100State *d = (PCIEEPRO100State *) pci_dev;
1352 EEPRO100State *s = &d->eepro100;
1354 logout("region %d, addr=0x%08x, size=0x%08x, type=%d\n",
1355 region_num, addr, size, type);
1357 assert(region_num == 1);
1358 register_ioport_write(addr, size, 1, ioport_write1, s);
1359 register_ioport_read(addr, size, 1, ioport_read1, s);
1360 register_ioport_write(addr, size, 2, ioport_write2, s);
1361 register_ioport_read(addr, size, 2, ioport_read2, s);
1362 register_ioport_write(addr, size, 4, ioport_write4, s);
1363 register_ioport_read(addr, size, 4, ioport_read4, s);
1365 s->region[region_num] = addr;
1368 static void pci_mmio_writeb(void *opaque, target_phys_addr_t addr, uint32_t val)
1370 EEPRO100State *s = opaque;
1371 //~ logout("addr=%s val=0x%02x\n", regname(addr), val);
1372 eepro100_write1(s, addr, val);
1375 static void pci_mmio_writew(void *opaque, target_phys_addr_t addr, uint32_t val)
1377 EEPRO100State *s = opaque;
1378 //~ logout("addr=%s val=0x%02x\n", regname(addr), val);
1379 eepro100_write2(s, addr, val);
1382 static void pci_mmio_writel(void *opaque, target_phys_addr_t addr, uint32_t val)
1384 EEPRO100State *s = opaque;
1385 //~ logout("addr=%s val=0x%02x\n", regname(addr), val);
1386 eepro100_write4(s, addr, val);
1389 static uint32_t pci_mmio_readb(void *opaque, target_phys_addr_t addr)
1391 EEPRO100State *s = opaque;
1392 //~ logout("addr=%s\n", regname(addr));
1393 return eepro100_read1(s, addr);
1396 static uint32_t pci_mmio_readw(void *opaque, target_phys_addr_t addr)
1398 EEPRO100State *s = opaque;
1399 //~ logout("addr=%s\n", regname(addr));
1400 return eepro100_read2(s, addr);
1403 static uint32_t pci_mmio_readl(void *opaque, target_phys_addr_t addr)
1405 EEPRO100State *s = opaque;
1406 //~ logout("addr=%s\n", regname(addr));
1407 return eepro100_read4(s, addr);
1410 static CPUWriteMemoryFunc *pci_mmio_write[] = {
1416 static CPUReadMemoryFunc *pci_mmio_read[] = {
1422 static void pci_mmio_map(PCIDevice * pci_dev, int region_num,
1423 uint32_t addr, uint32_t size, int type)
1425 PCIEEPRO100State *d = (PCIEEPRO100State *) pci_dev;
1427 logout("region %d, addr=0x%08x, size=0x%08x, type=%d\n",
1428 region_num, addr, size, type);
1430 if (region_num == 0) {
1431 /* Map control / status registers. */
1432 cpu_register_physical_memory(addr, size, d->eepro100.mmio_index);
1433 d->eepro100.region[region_num] = addr;
1437 static int nic_can_receive(void *opaque)
1439 EEPRO100State *s = opaque;
1441 return get_ru_state(s) == ru_ready;
1442 //~ return !eepro100_buffer_full(s);
1445 static void nic_receive(void *opaque, const uint8_t * buf, int size)
1448 * - Magic packets should set bit 30 in power management driver register.
1449 * - Interesting packets should set bit 29 in power management driver register.
1451 EEPRO100State *s = opaque;
1452 uint16_t rfd_status = 0xa000;
1453 static const uint8_t broadcast_macaddr[6] =
1454 { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff };
1456 /* TODO: check multiple IA bit. */
1457 assert(!(s->configuration[20] & BIT(6)));
1459 if (s->configuration[8] & 0x80) {
1460 /* CSMA is disabled. */
1461 logout("%p received while CSMA is disabled\n", s);
1463 } else if (size < 64 && (s->configuration[7] & 1)) {
1464 /* Short frame and configuration byte 7/0 (discard short receive) set:
1465 * Short frame is discarded */
1466 logout("%p received short frame (%d byte)\n", s, size);
1467 s->statistics.rx_short_frame_errors++;
1469 } else if ((size > MAX_ETH_FRAME_SIZE + 4) && !(s->configuration[18] & 8)) {
1470 /* Long frame and configuration byte 18/3 (long receive ok) not set:
1471 * Long frames are discarded. */
1472 logout("%p received long frame (%d byte), ignored\n", s, size);
1474 } else if (memcmp(buf, s->macaddr, 6) == 0) { // !!!
1475 /* Frame matches individual address. */
1476 /* TODO: check configuration byte 15/4 (ignore U/L). */
1477 logout("%p received frame for me, len=%d\n", s, size);
1478 } else if (memcmp(buf, broadcast_macaddr, 6) == 0) {
1479 /* Broadcast frame. */
1480 logout("%p received broadcast, len=%d\n", s, size);
1481 rfd_status |= 0x0002;
1482 } else if (buf[0] & 0x01) { // !!!
1483 /* Multicast frame. */
1484 logout("%p received multicast, len=%d\n", s, size);
1485 /* TODO: check multicast all bit. */
1486 assert(!(s->configuration[21] & BIT(3)));
1487 int mcast_idx = compute_mcast_idx(buf);
1488 if (!(s->mult[mcast_idx >> 3] & (1 << (mcast_idx & 7)))) {
1491 rfd_status |= 0x0002;
1492 } else if (s->configuration[15] & 1) {
1493 /* Promiscuous: receive all. */
1494 logout("%p received frame in promiscuous mode, len=%d\n", s, size);
1495 rfd_status |= 0x0004;
1497 logout("%p received frame, ignored, len=%d,%s\n", s, size,
1498 nic_dump(buf, size));
1502 if (get_ru_state(s) != ru_ready) {
1503 /* No ressources available. */
1504 logout("no ressources, state=%u\n", get_ru_state(s));
1505 s->statistics.rx_resource_errors++;
1506 //~ assert(!"no ressources");
1510 //~ $3 = {status = 0x0, command = 0xc000, link = 0x2d220, rx_buf_addr = 0x207dc, count = 0x0, size = 0x5f8, packet = {0x0 <repeats 1518 times>}}
1512 cpu_physical_memory_read(s->ru_base + s->ru_offset, (uint8_t *) & rx,
1513 offsetof(eepro100_rx_t, packet));
1514 uint16_t rfd_command = le16_to_cpu(rx.command);
1515 uint16_t rfd_size = le16_to_cpu(rx.size);
1516 assert(size <= rfd_size);
1518 rfd_status |= 0x0080;
1520 logout("command 0x%04x, link 0x%08x, addr 0x%08x, size %u\n", rfd_command,
1521 rx.link, rx.rx_buf_addr, rfd_size);
1522 stw_phys(s->ru_base + s->ru_offset + offsetof(eepro100_rx_t, status),
1524 stw_phys(s->ru_base + s->ru_offset + offsetof(eepro100_rx_t, count), size);
1525 /* Early receive interrupt not supported. */
1526 //~ eepro100_er_interrupt(s);
1527 /* Receive CRC Transfer not supported. */
1528 assert(!(s->configuration[18] & 4));
1529 /* TODO: check stripping enable bit. */
1530 //~ assert(!(s->configuration[17] & 1));
1531 cpu_physical_memory_write(s->ru_base + s->ru_offset +
1532 offsetof(eepro100_rx_t, packet), buf, size);
1533 s->statistics.rx_good_frames++;
1534 eepro100_fr_interrupt(s);
1535 s->ru_offset = le32_to_cpu(rx.link);
1536 if (rfd_command & 0x8000) {
1537 /* EL bit is set, so this was the last frame. */
1540 if (rfd_command & 0x4000) {
1542 set_ru_state(s, ru_suspended);
1546 static int nic_load(QEMUFile * f, void *opaque, int version_id)
1548 EEPRO100State *s = (EEPRO100State *) opaque;
1555 if (s->pci_dev && version_id >= 3) {
1556 ret = pci_device_load(s->pci_dev, f);
1561 if (version_id >= 2) {
1562 qemu_get_8s(f, &s->rxcr);
1567 qemu_get_8s(f, &s->cmd);
1568 qemu_get_be32s(f, &s->start);
1569 qemu_get_be32s(f, &s->stop);
1570 qemu_get_8s(f, &s->boundary);
1571 qemu_get_8s(f, &s->tsr);
1572 qemu_get_8s(f, &s->tpsr);
1573 qemu_get_be16s(f, &s->tcnt);
1574 qemu_get_be16s(f, &s->rcnt);
1575 qemu_get_be32s(f, &s->rsar);
1576 qemu_get_8s(f, &s->rsr);
1577 qemu_get_8s(f, &s->isr);
1578 qemu_get_8s(f, &s->dcfg);
1579 qemu_get_8s(f, &s->imr);
1580 qemu_get_buffer(f, s->phys, 6);
1581 qemu_get_8s(f, &s->curpag);
1582 qemu_get_buffer(f, s->mult, 8);
1583 qemu_get_buffer(f, s->mem, sizeof(s->mem));
1585 /* Restore all members of struct between scv_stat and mem */
1586 qemu_get_8s(f, &s->scb_stat);
1587 qemu_get_8s(f, &s->int_stat);
1588 for (i = 0; i < 3; i++)
1589 qemu_get_be32s(f, &s->region[i]);
1590 qemu_get_buffer(f, s->macaddr, 6);
1591 for (i = 0; i < 19; i++)
1592 qemu_get_be32s(f, &s->statcounter[i]);
1593 for (i = 0; i < 32; i++)
1594 qemu_get_be16s(f, &s->mdimem[i]);
1595 /* The eeprom should be saved and restored by its own routines */
1596 qemu_get_be32s(f, &s->device);
1597 qemu_get_be32s(f, &s->pointer);
1598 qemu_get_be32s(f, &s->cu_base);
1599 qemu_get_be32s(f, &s->cu_offset);
1600 qemu_get_be32s(f, &s->ru_base);
1601 qemu_get_be32s(f, &s->ru_offset);
1602 qemu_get_be32s(f, &s->statsaddr);
1603 /* Restore epro100_stats_t statistics */
1604 qemu_get_be32s(f, &s->statistics.tx_good_frames);
1605 qemu_get_be32s(f, &s->statistics.tx_max_collisions);
1606 qemu_get_be32s(f, &s->statistics.tx_late_collisions);
1607 qemu_get_be32s(f, &s->statistics.tx_underruns);
1608 qemu_get_be32s(f, &s->statistics.tx_lost_crs);
1609 qemu_get_be32s(f, &s->statistics.tx_deferred);
1610 qemu_get_be32s(f, &s->statistics.tx_single_collisions);
1611 qemu_get_be32s(f, &s->statistics.tx_multiple_collisions);
1612 qemu_get_be32s(f, &s->statistics.tx_total_collisions);
1613 qemu_get_be32s(f, &s->statistics.rx_good_frames);
1614 qemu_get_be32s(f, &s->statistics.rx_crc_errors);
1615 qemu_get_be32s(f, &s->statistics.rx_alignment_errors);
1616 qemu_get_be32s(f, &s->statistics.rx_resource_errors);
1617 qemu_get_be32s(f, &s->statistics.rx_overrun_errors);
1618 qemu_get_be32s(f, &s->statistics.rx_cdt_errors);
1619 qemu_get_be32s(f, &s->statistics.rx_short_frame_errors);
1620 qemu_get_be32s(f, &s->statistics.fc_xmt_pause);
1621 qemu_get_be32s(f, &s->statistics.fc_rcv_pause);
1622 qemu_get_be32s(f, &s->statistics.fc_rcv_unsupported);
1623 qemu_get_be16s(f, &s->statistics.xmt_tco_frames);
1624 qemu_get_be16s(f, &s->statistics.rcv_tco_frames);
1625 qemu_get_be32s(f, &s->statistics.complete);
1627 qemu_get_be16s(f, &s->status);
1630 /* Configuration bytes. */
1631 qemu_get_buffer(f, s->configuration, sizeof(s->configuration));
1636 static void nic_save(QEMUFile * f, void *opaque)
1638 EEPRO100State *s = (EEPRO100State *) opaque;
1642 pci_device_save(s->pci_dev, f);
1644 qemu_put_8s(f, &s->rxcr);
1646 qemu_put_8s(f, &s->cmd);
1647 qemu_put_be32s(f, &s->start);
1648 qemu_put_be32s(f, &s->stop);
1649 qemu_put_8s(f, &s->boundary);
1650 qemu_put_8s(f, &s->tsr);
1651 qemu_put_8s(f, &s->tpsr);
1652 qemu_put_be16s(f, &s->tcnt);
1653 qemu_put_be16s(f, &s->rcnt);
1654 qemu_put_be32s(f, &s->rsar);
1655 qemu_put_8s(f, &s->rsr);
1656 qemu_put_8s(f, &s->isr);
1657 qemu_put_8s(f, &s->dcfg);
1658 qemu_put_8s(f, &s->imr);
1659 qemu_put_buffer(f, s->phys, 6);
1660 qemu_put_8s(f, &s->curpag);
1661 qemu_put_buffer(f, s->mult, 8);
1662 qemu_put_buffer(f, s->mem, sizeof(s->mem));
1664 /* Save all members of struct between scv_stat and mem */
1665 qemu_put_8s(f, &s->scb_stat);
1666 qemu_put_8s(f, &s->int_stat);
1667 for (i = 0; i < 3; i++)
1668 qemu_put_be32s(f, &s->region[i]);
1669 qemu_put_buffer(f, s->macaddr, 6);
1670 for (i = 0; i < 19; i++)
1671 qemu_put_be32s(f, &s->statcounter[i]);
1672 for (i = 0; i < 32; i++)
1673 qemu_put_be16s(f, &s->mdimem[i]);
1674 /* The eeprom should be saved and restored by its own routines */
1675 qemu_put_be32s(f, &s->device);
1676 qemu_put_be32s(f, &s->pointer);
1677 qemu_put_be32s(f, &s->cu_base);
1678 qemu_put_be32s(f, &s->cu_offset);
1679 qemu_put_be32s(f, &s->ru_base);
1680 qemu_put_be32s(f, &s->ru_offset);
1681 qemu_put_be32s(f, &s->statsaddr);
1682 /* Save epro100_stats_t statistics */
1683 qemu_put_be32s(f, &s->statistics.tx_good_frames);
1684 qemu_put_be32s(f, &s->statistics.tx_max_collisions);
1685 qemu_put_be32s(f, &s->statistics.tx_late_collisions);
1686 qemu_put_be32s(f, &s->statistics.tx_underruns);
1687 qemu_put_be32s(f, &s->statistics.tx_lost_crs);
1688 qemu_put_be32s(f, &s->statistics.tx_deferred);
1689 qemu_put_be32s(f, &s->statistics.tx_single_collisions);
1690 qemu_put_be32s(f, &s->statistics.tx_multiple_collisions);
1691 qemu_put_be32s(f, &s->statistics.tx_total_collisions);
1692 qemu_put_be32s(f, &s->statistics.rx_good_frames);
1693 qemu_put_be32s(f, &s->statistics.rx_crc_errors);
1694 qemu_put_be32s(f, &s->statistics.rx_alignment_errors);
1695 qemu_put_be32s(f, &s->statistics.rx_resource_errors);
1696 qemu_put_be32s(f, &s->statistics.rx_overrun_errors);
1697 qemu_put_be32s(f, &s->statistics.rx_cdt_errors);
1698 qemu_put_be32s(f, &s->statistics.rx_short_frame_errors);
1699 qemu_put_be32s(f, &s->statistics.fc_xmt_pause);
1700 qemu_put_be32s(f, &s->statistics.fc_rcv_pause);
1701 qemu_put_be32s(f, &s->statistics.fc_rcv_unsupported);
1702 qemu_put_be16s(f, &s->statistics.xmt_tco_frames);
1703 qemu_put_be16s(f, &s->statistics.rcv_tco_frames);
1704 qemu_put_be32s(f, &s->statistics.complete);
1706 qemu_put_be16s(f, &s->status);
1709 /* Configuration bytes. */
1710 qemu_put_buffer(f, s->configuration, sizeof(s->configuration));
1713 static void nic_cleanup(VLANClientState *vc)
1715 EEPRO100State *s = vc->opaque;
1717 unregister_savevm(vc->model, s);
1719 eeprom93xx_free(s->eeprom);
1722 static int pci_nic_uninit(PCIDevice *dev)
1724 PCIEEPRO100State *d = (PCIEEPRO100State *) dev;
1725 EEPRO100State *s = &d->eepro100;
1727 cpu_unregister_io_memory(s->mmio_index);
1732 static PCIDevice *nic_init(PCIBus * bus, NICInfo * nd, uint32_t device)
1734 PCIEEPRO100State *d;
1739 d = (PCIEEPRO100State *) pci_register_device(bus, nd->model,
1740 sizeof(PCIEEPRO100State), -1,
1742 d->dev.unregister = pci_nic_uninit;
1746 s->pci_dev = &d->dev;
1750 /* Add 64 * 2 EEPROM. i82557 and i82558 support a 64 word EEPROM,
1751 * i82559 and later support 64 or 256 word EEPROM. */
1752 s->eeprom = eeprom93xx_new(EEPROM_SIZE);
1754 /* Handler for memory-mapped I/O */
1755 d->eepro100.mmio_index =
1756 cpu_register_io_memory(0, pci_mmio_read, pci_mmio_write, s);
1758 pci_register_io_region(&d->dev, 0, PCI_MEM_SIZE,
1759 PCI_ADDRESS_SPACE_MEM |
1760 PCI_ADDRESS_SPACE_MEM_PREFETCH, pci_mmio_map);
1761 pci_register_io_region(&d->dev, 1, PCI_IO_SIZE, PCI_ADDRESS_SPACE_IO,
1763 pci_register_io_region(&d->dev, 2, PCI_FLASH_SIZE, PCI_ADDRESS_SPACE_MEM,
1766 memcpy(s->macaddr, nd->macaddr, 6);
1767 logout("macaddr: %s\n", nic_dump(&s->macaddr[0], 6));
1768 assert(s->region[1] == 0);
1772 s->vc = qemu_new_vlan_client(nd->vlan, nd->model, nd->name,
1773 nic_receive, nic_can_receive,
1776 qemu_format_nic_info_str(s->vc, s->macaddr);
1778 qemu_register_reset(nic_reset, s);
1780 register_savevm(s->vc->model, -1, 3, nic_save, nic_load, s);
1781 return (PCIDevice *)d;
1784 PCIDevice *pci_i82551_init(PCIBus * bus, NICInfo * nd, int devfn)
1786 return nic_init(bus, nd, i82551);
1789 PCIDevice *pci_i82557b_init(PCIBus * bus, NICInfo * nd, int devfn)
1791 return nic_init(bus, nd, i82557B);
1794 PCIDevice *pci_i82559er_init(PCIBus * bus, NICInfo * nd, int devfn)
1796 return nic_init(bus, nd, i82559ER);
projects / qemu / blob