2 * QEMU Malta board support
4 * Copyright (c) 2006 Aurelien Jarno
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
35 #include "qemu-char.h"
37 #include "audio/audio.h"
40 //#define DEBUG_BOARD_INIT
42 #ifdef TARGET_WORDS_BIGENDIAN
43 #define BIOS_FILENAME "mips_bios.bin"
45 #define BIOS_FILENAME "mipsel_bios.bin"
49 #define PHYS_TO_VIRT(x) ((x) | ~0x7fffffffULL)
51 #define PHYS_TO_VIRT(x) ((x) | ~0x7fffffffU)
54 #define ENVP_ADDR (int32_t)0x80002000
55 #define VIRT_TO_PHYS_ADDEND (-((int64_t)(int32_t)0x80000000))
57 #define ENVP_NB_ENTRIES 16
58 #define ENVP_ENTRY_SIZE 256
72 CharDriverState *display;
79 static struct _loaderparams {
81 const char *kernel_filename;
82 const char *kernel_cmdline;
83 const char *initrd_filename;
87 static void malta_fpga_update_display(void *opaque)
91 MaltaFPGAState *s = opaque;
93 for (i = 7 ; i >= 0 ; i--) {
94 if (s->leds & (1 << i))
101 qemu_chr_printf(s->display, "\e[H\n\n|\e[32m%-8.8s\e[00m|\r\n", leds_text);
102 qemu_chr_printf(s->display, "\n\n\n\n|\e[31m%-8.8s\e[00m|", s->display_text);
106 * EEPROM 24C01 / 24C02 emulation.
108 * Emulation for serial EEPROMs:
109 * 24C01 - 1024 bit (128 x 8)
110 * 24C02 - 2048 bit (256 x 8)
112 * Typical device names include Microchip 24C02SC or SGS Thomson ST24C02.
118 # define logout(fmt, args...) fprintf(stderr, "MALTA\t%-24s" fmt, __func__, ##args)
120 # define logout(fmt, args...) ((void)0)
123 struct _eeprom24c0x_t {
132 uint8_t contents[256];
135 typedef struct _eeprom24c0x_t eeprom24c0x_t;
137 static eeprom24c0x_t eeprom = {
139 /* 00000000: */ 0x80,0x08,0x04,0x0D,0x0A,0x01,0x40,0x00,
140 /* 00000008: */ 0x01,0x75,0x54,0x00,0x82,0x08,0x00,0x01,
141 /* 00000010: */ 0x8F,0x04,0x02,0x01,0x01,0x00,0x0E,0x00,
142 /* 00000018: */ 0x00,0x00,0x00,0x14,0x0F,0x14,0x2D,0x40,
143 /* 00000020: */ 0x15,0x08,0x15,0x08,0x00,0x00,0x00,0x00,
144 /* 00000028: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
145 /* 00000030: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
146 /* 00000038: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x12,0xD0,
147 /* 00000040: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
148 /* 00000048: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
149 /* 00000050: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
150 /* 00000058: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
151 /* 00000060: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
152 /* 00000068: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
153 /* 00000070: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
154 /* 00000078: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x64,0xF4,
158 static uint8_t eeprom24c0x_read()
160 logout("%u: scl = %u, sda = %u, data = 0x%02x\n",
161 eeprom.tick, eeprom.scl, eeprom.sda, eeprom.data);
165 static void eeprom24c0x_write(int scl, int sda)
167 if (eeprom.scl && scl && (eeprom.sda != sda)) {
168 logout("%u: scl = %u->%u, sda = %u->%u i2c %s\n",
169 eeprom.tick, eeprom.scl, scl, eeprom.sda, sda, sda ? "stop" : "start");
174 } else if (eeprom.tick == 0 && !eeprom.ack) {
175 /* Waiting for start. */
176 logout("%u: scl = %u->%u, sda = %u->%u wait for i2c start\n",
177 eeprom.tick, eeprom.scl, scl, eeprom.sda, sda);
178 } else if (!eeprom.scl && scl) {
179 logout("%u: scl = %u->%u, sda = %u->%u trigger bit\n",
180 eeprom.tick, eeprom.scl, scl, eeprom.sda, sda);
182 logout("\ti2c ack bit = 0\n");
185 } else if (eeprom.sda == sda) {
186 uint8_t bit = (sda != 0);
187 logout("\ti2c bit = %d\n", bit);
188 if (eeprom.tick < 9) {
189 eeprom.command <<= 1;
190 eeprom.command += bit;
192 if (eeprom.tick == 9) {
193 logout("\tcommand 0x%04x, %s\n", eeprom.command, bit ? "read" : "write");
196 } else if (eeprom.tick < 17) {
197 if (eeprom.command & 1) {
198 sda = ((eeprom.data & 0x80) != 0);
200 eeprom.address <<= 1;
201 eeprom.address += bit;
204 if (eeprom.tick == 17) {
205 eeprom.data = eeprom.contents[eeprom.address];
206 logout("\taddress 0x%04x, data 0x%02x\n", eeprom.address, eeprom.data);
210 } else if (eeprom.tick >= 17) {
214 logout("\tsda changed with raising scl\n");
217 logout("%u: scl = %u->%u, sda = %u->%u\n", eeprom.tick, eeprom.scl, scl, eeprom.sda, sda);
223 static uint32_t malta_fpga_readl(void *opaque, target_phys_addr_t addr)
225 MaltaFPGAState *s = opaque;
229 saddr = (addr & 0xfffff);
233 /* SWITCH Register */
235 val = 0x00000000; /* All switches closed */
238 /* STATUS Register */
240 #ifdef TARGET_WORDS_BIGENDIAN
252 /* LEDBAR Register */
257 /* BRKRES Register */
262 /* UART Registers are handled directly by the serial device */
269 /* XXX: implement a real I2C controller */
273 /* IN = OUT until a real I2C control is implemented */
280 /* I2CINP Register */
282 val = ((s->i2cin & ~1) | eeprom24c0x_read());
290 /* I2COUT Register */
295 /* I2CSEL Register */
302 printf ("malta_fpga_read: Bad register offset 0x" TARGET_FMT_lx "\n",
310 static void malta_fpga_writel(void *opaque, target_phys_addr_t addr,
313 MaltaFPGAState *s = opaque;
316 saddr = (addr & 0xfffff);
320 /* SWITCH Register */
328 /* LEDBAR Register */
329 /* XXX: implement a 8-LED array */
331 s->leds = val & 0xff;
334 /* ASCIIWORD Register */
336 snprintf(s->display_text, 9, "%08X", val);
337 malta_fpga_update_display(s);
340 /* ASCIIPOS0 to ASCIIPOS7 Registers */
349 s->display_text[(saddr - 0x00418) >> 3] = (char) val;
350 malta_fpga_update_display(s);
353 /* SOFTRES Register */
356 qemu_system_reset_request ();
359 /* BRKRES Register */
364 /* UART Registers are handled directly by the serial device */
368 s->gpout = val & 0xff;
373 s->i2coe = val & 0x03;
376 /* I2COUT Register */
378 eeprom24c0x_write(val & 0x02, val & 0x01);
382 /* I2CSEL Register */
384 s->i2csel = val & 0x01;
389 printf ("malta_fpga_write: Bad register offset 0x" TARGET_FMT_lx "\n",
396 static CPUReadMemoryFunc *malta_fpga_read[] = {
402 static CPUWriteMemoryFunc *malta_fpga_write[] = {
408 static void malta_fpga_reset(void *opaque)
410 MaltaFPGAState *s = opaque;
420 s->display_text[8] = '\0';
421 snprintf(s->display_text, 9, " ");
422 malta_fpga_update_display(s);
425 static MaltaFPGAState *malta_fpga_init(target_phys_addr_t base, CPUState *env)
428 CharDriverState *uart_chr;
431 s = (MaltaFPGAState *)qemu_mallocz(sizeof(MaltaFPGAState));
433 malta = cpu_register_io_memory(0, malta_fpga_read,
434 malta_fpga_write, s);
436 cpu_register_physical_memory(base, 0x900, malta);
437 cpu_register_physical_memory(base + 0xa00, 0x100000 - 0xa00, malta);
439 s->display = qemu_chr_open("vc:320x200");
440 qemu_chr_printf(s->display, "\e[HMalta LEDBAR\r\n");
441 qemu_chr_printf(s->display, "+--------+\r\n");
442 qemu_chr_printf(s->display, "+ +\r\n");
443 qemu_chr_printf(s->display, "+--------+\r\n");
444 qemu_chr_printf(s->display, "\n");
445 qemu_chr_printf(s->display, "Malta ASCII\r\n");
446 qemu_chr_printf(s->display, "+--------+\r\n");
447 qemu_chr_printf(s->display, "+ +\r\n");
448 qemu_chr_printf(s->display, "+--------+\r\n");
450 uart_chr = qemu_chr_open("vc:80Cx24C");
451 qemu_chr_printf(uart_chr, "CBUS UART\r\n");
453 serial_mm_init(base + 0x900, 3, env->irq[2], 230400, uart_chr, 1);
456 qemu_register_reset(malta_fpga_reset, s);
463 static void audio_init (PCIBus *pci_bus)
466 int audio_enabled = 0;
468 for (c = soundhw; !audio_enabled && c->name; ++c) {
469 audio_enabled = c->enabled;
477 for (c = soundhw; c->name; ++c) {
479 c->init.init_pci (pci_bus, s);
486 /* Network support */
487 static void network_init (PCIBus *pci_bus)
492 for(i = 0; i < nb_nics; i++) {
497 if (i == 0 && strcmp(nd->model, "pcnet") == 0) {
498 /* The malta board has a PCNet card using PCI SLOT 11 */
499 pci_nic_init(pci_bus, nd, 88);
501 pci_nic_init(pci_bus, nd, -1);
506 /* ROM and pseudo bootloader
508 The following code implements a very very simple bootloader. It first
509 loads the registers a0 to a3 to the values expected by the OS, and
510 then jump at the kernel address.
512 The bootloader should pass the locations of the kernel arguments and
513 environment variables tables. Those tables contain the 32-bit address
514 of NULL terminated strings. The environment variables table should be
515 terminated by a NULL address.
517 For a simpler implementation, the number of kernel arguments is fixed
518 to two (the name of the kernel and the command line), and the two
519 tables are actually the same one.
521 The registers a0 to a3 should contain the following values:
522 a0 - number of kernel arguments
523 a1 - 32-bit address of the kernel arguments table
524 a2 - 32-bit address of the environment variables table
525 a3 - RAM size in bytes
528 static void write_bootloader (CPUState *env, unsigned long bios_offset, int64_t kernel_entry)
532 /* Small bootloader */
533 p = (uint32_t *) (phys_ram_base + bios_offset);
534 stl_raw(p++, 0x0bf00160); /* j 0x1fc00580 */
535 stl_raw(p++, 0x00000000); /* nop */
537 /* YAMON service vector */
538 stl_raw(phys_ram_base + bios_offset + 0x500, 0xbfc00580); /* start: */
539 stl_raw(phys_ram_base + bios_offset + 0x504, 0xbfc0083c); /* print_count: */
540 stl_raw(phys_ram_base + bios_offset + 0x520, 0xbfc00580); /* start: */
541 stl_raw(phys_ram_base + bios_offset + 0x52c, 0xbfc00800); /* flush_cache: */
542 stl_raw(phys_ram_base + bios_offset + 0x534, 0xbfc00808); /* print: */
543 stl_raw(phys_ram_base + bios_offset + 0x538, 0xbfc00800); /* reg_cpu_isr: */
544 stl_raw(phys_ram_base + bios_offset + 0x53c, 0xbfc00800); /* unred_cpu_isr: */
545 stl_raw(phys_ram_base + bios_offset + 0x540, 0xbfc00800); /* reg_ic_isr: */
546 stl_raw(phys_ram_base + bios_offset + 0x544, 0xbfc00800); /* unred_ic_isr: */
547 stl_raw(phys_ram_base + bios_offset + 0x548, 0xbfc00800); /* reg_esr: */
548 stl_raw(phys_ram_base + bios_offset + 0x54c, 0xbfc00800); /* unreg_esr: */
549 stl_raw(phys_ram_base + bios_offset + 0x550, 0xbfc00800); /* getchar: */
550 stl_raw(phys_ram_base + bios_offset + 0x554, 0xbfc00800); /* syscon_read: */
553 /* Second part of the bootloader */
554 p = (uint32_t *) (phys_ram_base + bios_offset + 0x580);
555 stl_raw(p++, 0x24040002); /* addiu a0, zero, 2 */
556 stl_raw(p++, 0x3c1d0000 | (((ENVP_ADDR - 64) >> 16) & 0xffff)); /* lui sp, high(ENVP_ADDR) */
557 stl_raw(p++, 0x37bd0000 | ((ENVP_ADDR - 64) & 0xffff)); /* ori sp, sp, low(ENVP_ADDR) */
558 stl_raw(p++, 0x3c050000 | ((ENVP_ADDR >> 16) & 0xffff)); /* lui a1, high(ENVP_ADDR) */
559 stl_raw(p++, 0x34a50000 | (ENVP_ADDR & 0xffff)); /* ori a1, a1, low(ENVP_ADDR) */
560 stl_raw(p++, 0x3c060000 | (((ENVP_ADDR + 8) >> 16) & 0xffff)); /* lui a2, high(ENVP_ADDR + 8) */
561 stl_raw(p++, 0x34c60000 | ((ENVP_ADDR + 8) & 0xffff)); /* ori a2, a2, low(ENVP_ADDR + 8) */
562 stl_raw(p++, 0x3c070000 | (loaderparams.ram_size >> 16)); /* lui a3, high(ram_size) */
563 stl_raw(p++, 0x34e70000 | (loaderparams.ram_size & 0xffff)); /* ori a3, a3, low(ram_size) */
565 /* Load BAR registers as done by YAMON */
566 stl_raw(p++, 0x3c09b400); /* lui t1, 0xb400 */
568 #ifdef TARGET_WORDS_BIGENDIAN
569 stl_raw(p++, 0x3c08df00); /* lui t0, 0xdf00 */
571 stl_raw(p++, 0x340800df); /* ori t0, r0, 0x00df */
573 stl_raw(p++, 0xad280068); /* sw t0, 0x0068(t1) */
575 stl_raw(p++, 0x3c09bbe0); /* lui t1, 0xbbe0 */
577 #ifdef TARGET_WORDS_BIGENDIAN
578 stl_raw(p++, 0x3c08c000); /* lui t0, 0xc000 */
580 stl_raw(p++, 0x340800c0); /* ori t0, r0, 0x00c0 */
582 stl_raw(p++, 0xad280048); /* sw t0, 0x0048(t1) */
583 #ifdef TARGET_WORDS_BIGENDIAN
584 stl_raw(p++, 0x3c084000); /* lui t0, 0x4000 */
586 stl_raw(p++, 0x34080040); /* ori t0, r0, 0x0040 */
588 stl_raw(p++, 0xad280050); /* sw t0, 0x0050(t1) */
590 #ifdef TARGET_WORDS_BIGENDIAN
591 stl_raw(p++, 0x3c088000); /* lui t0, 0x8000 */
593 stl_raw(p++, 0x34080080); /* ori t0, r0, 0x0080 */
595 stl_raw(p++, 0xad280058); /* sw t0, 0x0058(t1) */
596 #ifdef TARGET_WORDS_BIGENDIAN
597 stl_raw(p++, 0x3c083f00); /* lui t0, 0x3f00 */
599 stl_raw(p++, 0x3408003f); /* ori t0, r0, 0x003f */
601 stl_raw(p++, 0xad280060); /* sw t0, 0x0060(t1) */
603 #ifdef TARGET_WORDS_BIGENDIAN
604 stl_raw(p++, 0x3c08c100); /* lui t0, 0xc100 */
606 stl_raw(p++, 0x340800c1); /* ori t0, r0, 0x00c1 */
608 stl_raw(p++, 0xad280080); /* sw t0, 0x0080(t1) */
609 #ifdef TARGET_WORDS_BIGENDIAN
610 stl_raw(p++, 0x3c085e00); /* lui t0, 0x5e00 */
612 stl_raw(p++, 0x3408005e); /* ori t0, r0, 0x005e */
614 stl_raw(p++, 0xad280088); /* sw t0, 0x0088(t1) */
616 /* Jump to kernel code */
617 stl_raw(p++, 0x3c1f0000 | ((kernel_entry >> 16) & 0xffff)); /* lui ra, high(kernel_entry) */
618 stl_raw(p++, 0x37ff0000 | (kernel_entry & 0xffff)); /* ori ra, ra, low(kernel_entry) */
619 stl_raw(p++, 0x03e00008); /* jr ra */
620 stl_raw(p++, 0x00000000); /* nop */
622 /* YAMON subroutines */
623 p = (uint32_t *) (phys_ram_base + bios_offset + 0x800);
624 stl_raw(p++, 0x03e00008); /* jr ra */
625 stl_raw(p++, 0x24020000); /* li v0,0 */
626 /* 808 YAMON print */
627 stl_raw(p++, 0x03e06821); /* move t5,ra */
628 stl_raw(p++, 0x00805821); /* move t3,a0 */
629 stl_raw(p++, 0x00a05021); /* move t2,a1 */
630 stl_raw(p++, 0x91440000); /* lbu a0,0(t2) */
631 stl_raw(p++, 0x254a0001); /* addiu t2,t2,1 */
632 stl_raw(p++, 0x10800005); /* beqz a0,834 */
633 stl_raw(p++, 0x00000000); /* nop */
634 stl_raw(p++, 0x0ff0021c); /* jal 870 */
635 stl_raw(p++, 0x00000000); /* nop */
636 stl_raw(p++, 0x08000205); /* j 814 */
637 stl_raw(p++, 0x00000000); /* nop */
638 stl_raw(p++, 0x01a00008); /* jr t5 */
639 stl_raw(p++, 0x01602021); /* move a0,t3 */
640 /* 0x83c YAMON print_count */
641 stl_raw(p++, 0x03e06821); /* move t5,ra */
642 stl_raw(p++, 0x00805821); /* move t3,a0 */
643 stl_raw(p++, 0x00a05021); /* move t2,a1 */
644 stl_raw(p++, 0x00c06021); /* move t4,a2 */
645 stl_raw(p++, 0x91440000); /* lbu a0,0(t2) */
646 stl_raw(p++, 0x0ff0021c); /* jal 870 */
647 stl_raw(p++, 0x00000000); /* nop */
648 stl_raw(p++, 0x254a0001); /* addiu t2,t2,1 */
649 stl_raw(p++, 0x258cffff); /* addiu t4,t4,-1 */
650 stl_raw(p++, 0x1580fffa); /* bnez t4,84c */
651 stl_raw(p++, 0x00000000); /* nop */
652 stl_raw(p++, 0x01a00008); /* jr t5 */
653 stl_raw(p++, 0x01602021); /* move a0,t3 */
655 stl_raw(p++, 0x3c08b800); /* lui t0,0xb400 */
656 stl_raw(p++, 0x350803f8); /* ori t0,t0,0x3f8 */
657 stl_raw(p++, 0x91090005); /* lbu t1,5(t0) */
658 stl_raw(p++, 0x00000000); /* nop */
659 stl_raw(p++, 0x31290040); /* andi t1,t1,0x40 */
660 stl_raw(p++, 0x1120fffc); /* beqz t1,878 <outch+0x8> */
661 stl_raw(p++, 0x00000000); /* nop */
662 stl_raw(p++, 0x03e00008); /* jr ra */
663 stl_raw(p++, 0xa1040000); /* sb a0,0(t0) */
667 static void prom_set(int index, const char *string, ...)
674 if (index >= ENVP_NB_ENTRIES)
677 p = (int32_t *) (phys_ram_base + ENVP_ADDR + VIRT_TO_PHYS_ADDEND);
680 if (string == NULL) {
685 table_addr = ENVP_ADDR + sizeof(int32_t) * ENVP_NB_ENTRIES + index * ENVP_ENTRY_SIZE;
686 s = (char *) (phys_ram_base + VIRT_TO_PHYS_ADDEND + table_addr);
688 stl_raw(p, table_addr);
690 va_start(ap, string);
691 vsnprintf (s, ENVP_ENTRY_SIZE, string, ap);
696 static int64_t load_kernel (CPUState *env)
698 int64_t kernel_entry, kernel_low, kernel_high;
701 ram_addr_t initrd_offset;
703 if (load_elf(loaderparams.kernel_filename, VIRT_TO_PHYS_ADDEND,
704 &kernel_entry, &kernel_low, &kernel_high) < 0) {
705 fprintf(stderr, "qemu: could not load kernel '%s'\n",
706 loaderparams.kernel_filename);
713 if (loaderparams.initrd_filename) {
714 initrd_size = get_image_size (loaderparams.initrd_filename);
715 if (initrd_size > 0) {
716 initrd_offset = (kernel_high + ~TARGET_PAGE_MASK) & TARGET_PAGE_MASK;
717 if (initrd_offset + initrd_size > ram_size) {
719 "qemu: memory too small for initial ram disk '%s'\n",
720 loaderparams.initrd_filename);
723 initrd_size = load_image(loaderparams.initrd_filename,
724 phys_ram_base + initrd_offset);
726 if (initrd_size == (target_ulong) -1) {
727 fprintf(stderr, "qemu: could not load initial ram disk '%s'\n",
728 loaderparams.initrd_filename);
733 /* Store command line. */
734 prom_set(index++, loaderparams.kernel_filename);
736 prom_set(index++, "rd_start=0x" TARGET_FMT_lx " rd_size=%li %s",
737 PHYS_TO_VIRT(initrd_offset), initrd_size,
738 loaderparams.kernel_cmdline);
740 prom_set(index++, loaderparams.kernel_cmdline);
742 /* Setup minimum environment variables */
743 prom_set(index++, "memsize");
744 prom_set(index++, "%i", loaderparams.ram_size);
745 prom_set(index++, "modetty0");
746 prom_set(index++, "38400n8r");
747 prom_set(index++, NULL);
752 static void main_cpu_reset(void *opaque)
754 CPUState *env = opaque;
757 /* The bootload does not need to be rewritten as it is located in a
758 read only location. The kernel location and the arguments table
759 location does not change. */
760 if (loaderparams.kernel_filename) {
761 env->CP0_Status &= ~((1 << CP0St_BEV) | (1 << CP0St_ERL));
767 void mips_malta_init (ram_addr_t ram_size, int vga_ram_size,
768 const char *boot_device, DisplayState *ds,
769 const char *kernel_filename, const char *kernel_cmdline,
770 const char *initrd_filename, const char *cpu_model)
773 unsigned long bios_offset;
774 target_long bios_size;
775 int64_t kernel_entry;
779 fdctrl_t *floppy_controller;
780 MaltaFPGAState *malta_fpga;
787 BlockDriverState *hd[MAX_IDE_BUS * MAX_IDE_DEVS];
788 BlockDriverState *fd[MAX_FD];
793 if (cpu_model == NULL) {
800 env = cpu_init(cpu_model);
802 fprintf(stderr, "Unable to find CPU definition\n");
805 qemu_register_reset(main_cpu_reset, env);
808 cpu_register_physical_memory(0, ram_size, IO_MEM_RAM);
810 /* Map the bios at two physical locations, as on the real board. */
811 bios_offset = ram_size + vga_ram_size;
812 cpu_register_physical_memory(0x1e000000LL,
813 BIOS_SIZE, bios_offset | IO_MEM_ROM);
814 cpu_register_physical_memory(0x1fc00000LL,
815 BIOS_SIZE, bios_offset | IO_MEM_ROM);
818 malta_fpga = malta_fpga_init(0x1f000000LL, env);
820 /* Load firmware in flash / BIOS unless we boot directly into a kernel. */
821 if (kernel_filename) {
822 /* Write a small bootloader to the flash location. */
823 loaderparams.ram_size = ram_size;
824 loaderparams.kernel_filename = kernel_filename;
825 loaderparams.kernel_cmdline = kernel_cmdline;
826 loaderparams.initrd_filename = initrd_filename;
827 kernel_entry = load_kernel(env);
828 env->CP0_Status &= ~((1 << CP0St_BEV) | (1 << CP0St_ERL));
829 write_bootloader(env, bios_offset, kernel_entry);
831 index = drive_get_index(IF_PFLASH, 0, fl_idx);
833 /* Load firmware from flash. */
834 bios_size = 0x400000;
835 fl_sectors = bios_size >> 16;
836 #ifdef DEBUG_BOARD_INIT
837 printf("Register parallel flash %d size " TARGET_FMT_lx " at "
838 "offset %08lx addr %08llx '%s' %x\n",
839 fl_idx, bios_size, bios_offset, 0x1e000000LL,
840 bdrv_get_device_name(drives_table[index].bdrv), fl_sectors);
842 pflash_cfi01_register(0x1e000000LL, bios_offset,
843 drives_table[index].bdrv, 65536, fl_sectors,
844 4, 0x0000, 0x0000, 0x0000, 0x0000);
847 /* Load a BIOS image. */
848 if (bios_name == NULL)
849 bios_name = BIOS_FILENAME;
850 snprintf(buf, sizeof(buf), "%s/%s", bios_dir, bios_name);
851 bios_size = load_image(buf, phys_ram_base + bios_offset);
852 if ((bios_size < 0 || bios_size > BIOS_SIZE) && !kernel_filename) {
854 "qemu: Could not load MIPS bios '%s', and no -kernel argument was specified\n",
859 /* In little endian mode the 32bit words in the bios are swapped,
860 a neat trick which allows bi-endian firmware. */
861 #ifndef TARGET_WORDS_BIGENDIAN
864 for (addr = (uint32_t *)(phys_ram_base + bios_offset);
865 addr < (uint32_t *)(phys_ram_base + bios_offset + bios_size);
867 *addr = bswap32(*addr);
873 /* Board ID = 0x420 (Malta Board with CoreLV)
874 XXX: theoretically 0x1e000010 should map to flash and 0x1fc00010 should
875 map to the board ID. */
876 stl_raw(phys_ram_base + bios_offset + 0x10, 0x00000420);
878 /* Init internal devices */
879 cpu_mips_irq_init_cpu(env);
880 cpu_mips_clock_init(env);
881 cpu_mips_irqctrl_init();
883 /* Interrupt controller */
884 /* The 8259 is attached to the MIPS CPU INT0 pin, ie interrupt 2 */
885 i8259 = i8259_init(env->irq[2]);
888 pci_bus = pci_gt64120_init(i8259);
892 if (drive_get_max_bus(IF_IDE) >= MAX_IDE_BUS) {
893 fprintf(stderr, "qemu: too many IDE bus\n");
897 for(i = 0; i < MAX_IDE_BUS * MAX_IDE_DEVS; i++) {
898 index = drive_get_index(IF_IDE, i / MAX_IDE_DEVS, i % MAX_IDE_DEVS);
900 hd[i] = drives_table[index].bdrv;
905 piix4_devfn = piix4_init(pci_bus, 80);
906 pci_piix4_ide_init(pci_bus, hd, piix4_devfn + 1, i8259);
907 usb_uhci_piix4_init(pci_bus, piix4_devfn + 2);
908 smbus = piix4_pm_init(pci_bus, piix4_devfn + 3, 0x1100, i8259[9]);
909 eeprom_buf = qemu_mallocz(8 * 256); /* XXX: make this persistent */
910 for (i = 0; i < 8; i++) {
911 /* TODO: Populate SPD eeprom data. */
912 smbus_eeprom_device_init(smbus, 0x50 + i, eeprom_buf + (i * 256));
914 pit = pit_init(0x40, i8259[0]);
918 i8042_init(i8259[1], i8259[12], 0x60);
919 rtc_state = rtc_init(0x70, i8259[8]);
921 serial_init(0x3f8, i8259[4], 115200, serial_hds[0]);
923 serial_init(0x2f8, i8259[3], 115200, serial_hds[1]);
925 parallel_init(0x378, i8259[7], parallel_hds[0]);
926 for(i = 0; i < MAX_FD; i++) {
927 index = drive_get_index(IF_FLOPPY, 0, i);
929 fd[i] = drives_table[index].bdrv;
933 floppy_controller = fdctrl_init(i8259[6], 2, 0, 0x3f0, fd);
941 network_init(pci_bus);
943 /* Optional PCI video card */
944 pci_cirrus_vga_init(pci_bus, ds, phys_ram_base + ram_size,
945 ram_size, vga_ram_size);
948 QEMUMachine mips_malta_machine = {
950 .desc = "MIPS Malta Core LV",
951 .init = mips_malta_init,
952 .ram_require = VGA_RAM_SIZE + BIOS_SIZE,
projects / qemu / blob