4 * Copyright (c) 2005 Fabrice Bellard
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
30 #define DPRINTF(fmt, args...) \
31 do { printf("ESP: " fmt , ##args); } while (0)
33 #define DPRINTF(fmt, args...)
37 #define ESPDMA_MAXADDR (ESPDMA_REGS * 4 - 1)
38 #define ESP_MAXREG 0x3f
39 #define TI_BUFSZ 65536
40 #define DMA_VER 0xa0000000
41 #define DMA_LOADED 0x04000000
43 typedef struct ESPState {
44 BlockDriverState **bd;
45 uint8_t rregs[ESP_MAXREG];
46 uint8_t wregs[ESP_MAXREG];
48 uint32_t espdmaregs[ESPDMA_REGS];
50 uint32_t ti_rptr, ti_wptr;
52 uint8_t ti_buf[TI_BUFSZ];
73 static void handle_satn(ESPState *s)
76 uint32_t dmaptr, dmalen;
81 dmalen = s->wregs[0] | (s->wregs[1] << 8);
82 target = s->wregs[4] & 7;
83 DPRINTF("Select with ATN len %d target %d\n", dmalen, target);
85 dmaptr = iommu_translate(s->espdmaregs[1]);
86 DPRINTF("DMA Direction: %c, addr 0x%8.8x\n", s->espdmaregs[0] & 0x100? 'w': 'r', dmaptr);
87 cpu_physical_memory_read(dmaptr, buf, dmalen);
90 memcpy(&buf[1], s->ti_buf, dmalen);
93 for (i = 0; i < dmalen; i++) {
94 DPRINTF("Command %2.2x\n", buf[i]);
101 if (target > 4 || !s->bd[target]) { // No such drive
102 s->rregs[4] = STAT_IN;
103 s->rregs[5] = INTR_DC;
105 s->espdmaregs[0] |= 1;
106 pic_set_irq(s->irq, 1);
111 DPRINTF("Test Unit Ready (len %d)\n", buf[5]);
114 DPRINTF("Inquiry (len %d)\n", buf[5]);
115 memset(s->ti_buf, 0, 36);
116 if (bdrv_get_type_hint(s->bd[target]) == BDRV_TYPE_CDROM) {
118 memcpy(&s->ti_buf[16], "QEMU CDROM ", 16);
121 memcpy(&s->ti_buf[16], "QEMU HARDDISK ", 16);
123 memcpy(&s->ti_buf[8], "QEMU ", 8);
130 DPRINTF("Mode Sense(6) (page %d, len %d)\n", buf[3], buf[5]);
133 DPRINTF("Read Capacity (len %d)\n", buf[5]);
134 memset(s->ti_buf, 0, 8);
135 bdrv_get_geometry(s->bd[target], &nb_sectors);
136 s->ti_buf[0] = (nb_sectors >> 24) & 0xff;
137 s->ti_buf[1] = (nb_sectors >> 16) & 0xff;
138 s->ti_buf[2] = (nb_sectors >> 8) & 0xff;
139 s->ti_buf[3] = nb_sectors & 0xff;
142 if (bdrv_get_type_hint(s->bd[target]) == BDRV_TYPE_CDROM)
143 s->ti_buf[6] = 8; // sector size 2048
145 s->ti_buf[6] = 2; // sector size 512
154 if (bdrv_get_type_hint(s->bd[target]) == BDRV_TYPE_CDROM) {
155 offset = ((buf[3] << 24) | (buf[4] << 16) | (buf[5] << 8) | buf[6]) * 4;
156 len = ((buf[8] << 8) | buf[9]) * 4;
157 s->ti_size = len * 2048;
159 offset = (buf[3] << 24) | (buf[4] << 16) | (buf[5] << 8) | buf[6];
160 len = (buf[8] << 8) | buf[9];
161 s->ti_size = len * 512;
163 DPRINTF("Read (10) (offset %lld len %lld)\n", offset, len);
164 bdrv_read(s->bd[target], offset, s->ti_buf, len);
165 // XXX error handling
173 if (bdrv_get_type_hint(s->bd[target]) == BDRV_TYPE_CDROM) {
174 offset = ((buf[3] << 24) | (buf[4] << 16) | (buf[5] << 8) | buf[6]) * 4;
175 len = ((buf[8] << 8) | buf[9]) * 4;
176 s->ti_size = len * 2048;
178 offset = (buf[3] << 24) | (buf[4] << 16) | (buf[5] << 8) | buf[6];
179 len = (buf[8] << 8) | buf[9];
180 s->ti_size = len * 512;
182 DPRINTF("Write (10) (offset %lld len %lld)\n", offset, len);
183 bdrv_write(s->bd[target], offset, s->ti_buf, len);
184 // XXX error handling
189 DPRINTF("Unknown SCSI command (%2.2x)\n", buf[1]);
192 s->rregs[4] = STAT_IN | STAT_TC | STAT_DI;
193 s->rregs[5] = INTR_BS | INTR_FC;
194 s->rregs[6] = SEQ_CD;
195 s->espdmaregs[0] |= 1;
196 pic_set_irq(s->irq, 1);
199 static void dma_write(ESPState *s, const uint8_t *buf, uint32_t len)
201 uint32_t dmaptr, dmalen;
203 dmalen = s->wregs[0] | (s->wregs[1] << 8);
204 DPRINTF("Transfer status len %d\n", dmalen);
206 dmaptr = iommu_translate(s->espdmaregs[1]);
207 DPRINTF("DMA Direction: %c\n", s->espdmaregs[0] & 0x100? 'w': 'r');
208 cpu_physical_memory_write(dmaptr, buf, len);
209 s->rregs[4] = STAT_IN | STAT_TC | STAT_ST;
210 s->rregs[5] = INTR_BS | INTR_FC;
211 s->rregs[6] = SEQ_CD;
212 s->espdmaregs[0] |= 1;
214 memcpy(s->ti_buf, buf, len);
219 pic_set_irq(s->irq, 1);
223 static const uint8_t okbuf[] = {0, 0};
225 static void handle_ti(ESPState *s)
227 uint32_t dmaptr, dmalen;
230 dmalen = s->wregs[0] | (s->wregs[1] << 8);
231 DPRINTF("Transfer Information len %d\n", dmalen);
233 dmaptr = iommu_translate(s->espdmaregs[1]);
234 DPRINTF("DMA Direction: %c, addr 0x%8.8x\n", s->espdmaregs[0] & 0x100? 'w': 'r', dmaptr);
235 for (i = 0; i < s->ti_size; i++) {
236 dmaptr = iommu_translate(s->espdmaregs[1] + i);
238 cpu_physical_memory_write(dmaptr, &s->ti_buf[i], 1);
240 cpu_physical_memory_read(dmaptr, &s->ti_buf[i], 1);
242 s->rregs[4] = STAT_IN | STAT_TC | STAT_ST;
243 s->rregs[5] = INTR_BS;
245 s->espdmaregs[0] |= 1;
251 pic_set_irq(s->irq, 1);
254 static void esp_reset(void *opaque)
256 ESPState *s = opaque;
257 memset(s->rregs, 0, ESP_MAXREG);
258 s->rregs[0x0e] = 0x4; // Indicate fas100a
259 memset(s->espdmaregs, 0, ESPDMA_REGS * 4);
262 static uint32_t esp_mem_readb(void *opaque, target_phys_addr_t addr)
264 ESPState *s = opaque;
267 saddr = (addr & ESP_MAXREG) >> 2;
271 if (s->ti_size > 0) {
273 s->rregs[saddr] = s->ti_buf[s->ti_rptr++];
274 pic_set_irq(s->irq, 1);
276 if (s->ti_size == 0) {
284 DPRINTF("read reg[%d]: 0x%2.2x\n", saddr, s->rregs[saddr]);
286 return s->rregs[saddr];
289 static void esp_mem_writeb(void *opaque, target_phys_addr_t addr, uint32_t val)
291 ESPState *s = opaque;
294 saddr = (addr & ESP_MAXREG) >> 2;
295 DPRINTF("write reg[%d]: 0x%2.2x -> 0x%2.2x\n", saddr, s->wregs[saddr], val);
299 s->rregs[saddr] = val;
304 s->ti_buf[s->ti_wptr++] = val & 0xff;
307 s->rregs[saddr] = val;
316 DPRINTF("NOP (%2.2x)\n", val);
319 DPRINTF("Flush FIFO (%2.2x)\n", val);
321 s->rregs[5] = INTR_FC;
324 DPRINTF("Chip reset (%2.2x)\n", val);
328 DPRINTF("Bus reset (%2.2x)\n", val);
334 DPRINTF("Initiator Command Complete Sequence (%2.2x)\n", val);
335 dma_write(s, okbuf, 2);
338 DPRINTF("Message Accepted (%2.2x)\n", val);
339 dma_write(s, okbuf, 2);
340 s->rregs[5] = INTR_DC;
344 DPRINTF("Set ATN (%2.2x)\n", val);
350 DPRINTF("Set ATN & stop (%2.2x)\n", val);
354 DPRINTF("Unhandled ESP command (%2.2x)\n", val);
361 s->rregs[saddr] = val;
366 s->rregs[saddr] = val;
371 s->wregs[saddr] = val;
374 static CPUReadMemoryFunc *esp_mem_read[3] = {
380 static CPUWriteMemoryFunc *esp_mem_write[3] = {
386 static uint32_t espdma_mem_readl(void *opaque, target_phys_addr_t addr)
388 ESPState *s = opaque;
391 saddr = (addr & ESPDMA_MAXADDR) >> 2;
392 DPRINTF("read dmareg[%d]: 0x%8.8x\n", saddr, s->espdmaregs[saddr]);
394 return s->espdmaregs[saddr];
397 static void espdma_mem_writel(void *opaque, target_phys_addr_t addr, uint32_t val)
399 ESPState *s = opaque;
402 saddr = (addr & ESPDMA_MAXADDR) >> 2;
403 DPRINTF("write dmareg[%d]: 0x%8.8x -> 0x%8.8x\n", saddr, s->espdmaregs[saddr], val);
407 pic_set_irq(s->irq, 0);
410 } else if (val & 0x40) {
418 s->espdmaregs[0] = DMA_LOADED;
423 s->espdmaregs[saddr] = val;
426 static CPUReadMemoryFunc *espdma_mem_read[3] = {
432 static CPUWriteMemoryFunc *espdma_mem_write[3] = {
438 static void esp_save(QEMUFile *f, void *opaque)
440 ESPState *s = opaque;
443 qemu_put_buffer(f, s->rregs, ESP_MAXREG);
444 qemu_put_buffer(f, s->wregs, ESP_MAXREG);
445 qemu_put_be32s(f, &s->irq);
446 for (i = 0; i < ESPDMA_REGS; i++)
447 qemu_put_be32s(f, &s->espdmaregs[i]);
448 qemu_put_be32s(f, &s->ti_size);
449 qemu_put_be32s(f, &s->ti_rptr);
450 qemu_put_be32s(f, &s->ti_wptr);
451 qemu_put_be32s(f, &s->ti_dir);
452 qemu_put_buffer(f, s->ti_buf, TI_BUFSZ);
453 qemu_put_be32s(f, &s->dma);
456 static int esp_load(QEMUFile *f, void *opaque, int version_id)
458 ESPState *s = opaque;
464 qemu_get_buffer(f, s->rregs, ESP_MAXREG);
465 qemu_get_buffer(f, s->wregs, ESP_MAXREG);
466 qemu_get_be32s(f, &s->irq);
467 for (i = 0; i < ESPDMA_REGS; i++)
468 qemu_get_be32s(f, &s->espdmaregs[i]);
469 qemu_get_be32s(f, &s->ti_size);
470 qemu_get_be32s(f, &s->ti_rptr);
471 qemu_get_be32s(f, &s->ti_wptr);
472 qemu_get_be32s(f, &s->ti_dir);
473 qemu_get_buffer(f, s->ti_buf, TI_BUFSZ);
474 qemu_get_be32s(f, &s->dma);
479 void esp_init(BlockDriverState **bd, int irq, uint32_t espaddr, uint32_t espdaddr)
482 int esp_io_memory, espdma_io_memory;
484 s = qemu_mallocz(sizeof(ESPState));
491 esp_io_memory = cpu_register_io_memory(0, esp_mem_read, esp_mem_write, s);
492 cpu_register_physical_memory(espaddr, ESP_MAXREG*4, esp_io_memory);
494 espdma_io_memory = cpu_register_io_memory(0, espdma_mem_read, espdma_mem_write, s);
495 cpu_register_physical_memory(espdaddr, 16, espdma_io_memory);
499 register_savevm("esp", espaddr, 1, esp_save, esp_load, s);
500 qemu_register_reset(esp_reset, s);
projects / qemu / blob