2 * QEMU PowerPC 405 embedded processors emulation
4 * Copyright (c) 2007 Jocelyn Mayer
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
41 //#define DEBUG_UNASSIGNED
43 /*****************************************************************************/
44 /* Generic PowerPC 405 processor instanciation */
45 CPUState *ppc405_init (const unsigned char *cpu_model,
46 clk_setup_t *cpu_clk, clk_setup_t *tb_clk,
54 qemu_register_reset(&cpu_ppc_reset, env);
55 register_savevm("cpu", 0, 3, cpu_save, cpu_load, env);
56 ppc_find_by_name(cpu_model, &def);
58 cpu_abort(env, "Unable to find PowerPC %s CPU definition\n",
61 cpu_ppc_register(env, def);
62 cpu_clk->cb = NULL; /* We don't care about CPU clock frequency changes */
63 cpu_clk->opaque = env;
64 /* Set time-base frequency to sysclk */
65 tb_clk->cb = ppc_emb_timers_init(env, sysclk);
67 ppc_dcr_init(env, NULL, NULL);
72 ram_addr_t ppc405_set_bootinfo (CPUState *env, ppc4xx_bd_info_t *bd)
77 /* We put the bd structure at the top of memory */
78 if (bd->bi_memsize >= 0x01000000UL)
79 bdloc = 0x01000000UL - sizeof(struct ppc4xx_bd_info_t);
81 bdloc = bd->bi_memsize - sizeof(struct ppc4xx_bd_info_t);
82 stl_raw(phys_ram_base + bdloc + 0x00, bd->bi_memstart);
83 stl_raw(phys_ram_base + bdloc + 0x04, bd->bi_memsize);
84 stl_raw(phys_ram_base + bdloc + 0x08, bd->bi_flashstart);
85 stl_raw(phys_ram_base + bdloc + 0x0C, bd->bi_flashsize);
86 stl_raw(phys_ram_base + bdloc + 0x10, bd->bi_flashoffset);
87 stl_raw(phys_ram_base + bdloc + 0x14, bd->bi_sramstart);
88 stl_raw(phys_ram_base + bdloc + 0x18, bd->bi_sramsize);
89 stl_raw(phys_ram_base + bdloc + 0x1C, bd->bi_bootflags);
90 stl_raw(phys_ram_base + bdloc + 0x20, bd->bi_ipaddr);
91 for (i = 0; i < 6; i++)
92 stb_raw(phys_ram_base + bdloc + 0x24 + i, bd->bi_enetaddr[i]);
93 stw_raw(phys_ram_base + bdloc + 0x2A, bd->bi_ethspeed);
94 stl_raw(phys_ram_base + bdloc + 0x2C, bd->bi_intfreq);
95 stl_raw(phys_ram_base + bdloc + 0x30, bd->bi_busfreq);
96 stl_raw(phys_ram_base + bdloc + 0x34, bd->bi_baudrate);
97 for (i = 0; i < 4; i++)
98 stb_raw(phys_ram_base + bdloc + 0x38 + i, bd->bi_s_version[i]);
99 for (i = 0; i < 32; i++)
100 stb_raw(phys_ram_base + bdloc + 0x3C + i, bd->bi_s_version[i]);
101 stl_raw(phys_ram_base + bdloc + 0x5C, bd->bi_plb_busfreq);
102 stl_raw(phys_ram_base + bdloc + 0x60, bd->bi_pci_busfreq);
103 for (i = 0; i < 6; i++)
104 stb_raw(phys_ram_base + bdloc + 0x64 + i, bd->bi_pci_enetaddr[i]);
106 if (env->spr[SPR_PVR] == CPU_PPC_405EP) {
107 for (i = 0; i < 6; i++)
108 stb_raw(phys_ram_base + bdloc + n++, bd->bi_pci_enetaddr2[i]);
110 stl_raw(phys_ram_base + bdloc + n, bd->bi_opbfreq);
112 for (i = 0; i < 2; i++) {
113 stl_raw(phys_ram_base + bdloc + n, bd->bi_iic_fast[i]);
120 /*****************************************************************************/
121 /* Shared peripherals */
123 /*****************************************************************************/
124 /* Fake device used to map multiple devices in a single memory page */
125 #define MMIO_AREA_BITS 8
126 #define MMIO_AREA_LEN (1 << MMIO_AREA_BITS)
127 #define MMIO_AREA_NB (1 << (TARGET_PAGE_BITS - MMIO_AREA_BITS))
128 #define MMIO_IDX(addr) (((addr) >> MMIO_AREA_BITS) & (MMIO_AREA_NB - 1))
129 struct ppc4xx_mmio_t {
130 target_phys_addr_t base;
131 CPUReadMemoryFunc **mem_read[MMIO_AREA_NB];
132 CPUWriteMemoryFunc **mem_write[MMIO_AREA_NB];
133 void *opaque[MMIO_AREA_NB];
136 static uint32_t unassigned_mmio_readb (void *opaque, target_phys_addr_t addr)
138 #ifdef DEBUG_UNASSIGNED
142 printf("Unassigned mmio read 0x" PADDRX " base " PADDRX "\n",
149 static void unassigned_mmio_writeb (void *opaque,
150 target_phys_addr_t addr, uint32_t val)
152 #ifdef DEBUG_UNASSIGNED
156 printf("Unassigned mmio write 0x" PADDRX " = 0x%x base " PADDRX "\n",
157 addr, val, mmio->base);
161 static CPUReadMemoryFunc *unassigned_mmio_read[3] = {
162 unassigned_mmio_readb,
163 unassigned_mmio_readb,
164 unassigned_mmio_readb,
167 static CPUWriteMemoryFunc *unassigned_mmio_write[3] = {
168 unassigned_mmio_writeb,
169 unassigned_mmio_writeb,
170 unassigned_mmio_writeb,
173 static uint32_t mmio_readlen (ppc4xx_mmio_t *mmio,
174 target_phys_addr_t addr, int len)
176 CPUReadMemoryFunc **mem_read;
180 idx = MMIO_IDX(addr - mmio->base);
181 #if defined(DEBUG_MMIO)
182 printf("%s: mmio %p len %d addr " PADDRX " idx %d\n", __func__,
183 mmio, len, addr, idx);
185 mem_read = mmio->mem_read[idx];
186 ret = (*mem_read[len])(mmio->opaque[idx], addr - mmio->base);
191 static void mmio_writelen (ppc4xx_mmio_t *mmio,
192 target_phys_addr_t addr, uint32_t value, int len)
194 CPUWriteMemoryFunc **mem_write;
197 idx = MMIO_IDX(addr - mmio->base);
198 #if defined(DEBUG_MMIO)
199 printf("%s: mmio %p len %d addr " PADDRX " idx %d value %08x\n", __func__,
200 mmio, len, addr, idx, value);
202 mem_write = mmio->mem_write[idx];
203 (*mem_write[len])(mmio->opaque[idx], addr - mmio->base, value);
206 static uint32_t mmio_readb (void *opaque, target_phys_addr_t addr)
208 #if defined(DEBUG_MMIO)
209 printf("%s: addr " PADDRX "\n", __func__, addr);
212 return mmio_readlen(opaque, addr, 0);
215 static void mmio_writeb (void *opaque,
216 target_phys_addr_t addr, uint32_t value)
218 #if defined(DEBUG_MMIO)
219 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
221 mmio_writelen(opaque, addr, value, 0);
224 static uint32_t mmio_readw (void *opaque, target_phys_addr_t addr)
226 #if defined(DEBUG_MMIO)
227 printf("%s: addr " PADDRX "\n", __func__, addr);
230 return mmio_readlen(opaque, addr, 1);
233 static void mmio_writew (void *opaque,
234 target_phys_addr_t addr, uint32_t value)
236 #if defined(DEBUG_MMIO)
237 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
239 mmio_writelen(opaque, addr, value, 1);
242 static uint32_t mmio_readl (void *opaque, target_phys_addr_t addr)
244 #if defined(DEBUG_MMIO)
245 printf("%s: addr " PADDRX "\n", __func__, addr);
248 return mmio_readlen(opaque, addr, 2);
251 static void mmio_writel (void *opaque,
252 target_phys_addr_t addr, uint32_t value)
254 #if defined(DEBUG_MMIO)
255 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
257 mmio_writelen(opaque, addr, value, 2);
260 static CPUReadMemoryFunc *mmio_read[] = {
266 static CPUWriteMemoryFunc *mmio_write[] = {
272 int ppc4xx_mmio_register (CPUState *env, ppc4xx_mmio_t *mmio,
273 target_phys_addr_t offset, uint32_t len,
274 CPUReadMemoryFunc **mem_read,
275 CPUWriteMemoryFunc **mem_write, void *opaque)
280 if ((offset + len) > TARGET_PAGE_SIZE)
282 idx = MMIO_IDX(offset);
283 end = offset + len - 1;
284 eidx = MMIO_IDX(end);
285 #if defined(DEBUG_MMIO)
286 printf("%s: offset %08x len %08x %08x %d %d\n", __func__, offset, len,
289 for (; idx <= eidx; idx++) {
290 mmio->mem_read[idx] = mem_read;
291 mmio->mem_write[idx] = mem_write;
292 mmio->opaque[idx] = opaque;
298 ppc4xx_mmio_t *ppc4xx_mmio_init (CPUState *env, target_phys_addr_t base)
303 mmio = qemu_mallocz(sizeof(ppc4xx_mmio_t));
306 mmio_memory = cpu_register_io_memory(0, mmio_read, mmio_write, mmio);
307 #if defined(DEBUG_MMIO)
308 printf("%s: %p base %08x len %08x %d\n", __func__,
309 mmio, base, TARGET_PAGE_SIZE, mmio_memory);
311 cpu_register_physical_memory(base, TARGET_PAGE_SIZE, mmio_memory);
312 ppc4xx_mmio_register(env, mmio, 0, TARGET_PAGE_SIZE,
313 unassigned_mmio_read, unassigned_mmio_write,
320 /*****************************************************************************/
321 /* Peripheral local bus arbitrer */
328 typedef struct ppc4xx_plb_t ppc4xx_plb_t;
329 struct ppc4xx_plb_t {
335 static target_ulong dcr_read_plb (void *opaque, int dcrn)
352 /* Avoid gcc warning */
360 static void dcr_write_plb (void *opaque, int dcrn, target_ulong val)
367 /* We don't care about the actual parameters written as
368 * we don't manage any priorities on the bus
370 plb->acr = val & 0xF8000000;
382 static void ppc4xx_plb_reset (void *opaque)
387 plb->acr = 0x00000000;
388 plb->bear = 0x00000000;
389 plb->besr = 0x00000000;
392 void ppc4xx_plb_init (CPUState *env)
396 plb = qemu_mallocz(sizeof(ppc4xx_plb_t));
398 ppc_dcr_register(env, PLB0_ACR, plb, &dcr_read_plb, &dcr_write_plb);
399 ppc_dcr_register(env, PLB0_BEAR, plb, &dcr_read_plb, &dcr_write_plb);
400 ppc_dcr_register(env, PLB0_BESR, plb, &dcr_read_plb, &dcr_write_plb);
401 ppc4xx_plb_reset(plb);
402 qemu_register_reset(ppc4xx_plb_reset, plb);
406 /*****************************************************************************/
407 /* PLB to OPB bridge */
414 typedef struct ppc4xx_pob_t ppc4xx_pob_t;
415 struct ppc4xx_pob_t {
420 static target_ulong dcr_read_pob (void *opaque, int dcrn)
432 ret = pob->besr[dcrn - POB0_BESR0];
435 /* Avoid gcc warning */
443 static void dcr_write_pob (void *opaque, int dcrn, target_ulong val)
455 pob->besr[dcrn - POB0_BESR0] &= ~val;
460 static void ppc4xx_pob_reset (void *opaque)
466 pob->bear = 0x00000000;
467 pob->besr[0] = 0x0000000;
468 pob->besr[1] = 0x0000000;
471 void ppc4xx_pob_init (CPUState *env)
475 pob = qemu_mallocz(sizeof(ppc4xx_pob_t));
477 ppc_dcr_register(env, POB0_BEAR, pob, &dcr_read_pob, &dcr_write_pob);
478 ppc_dcr_register(env, POB0_BESR0, pob, &dcr_read_pob, &dcr_write_pob);
479 ppc_dcr_register(env, POB0_BESR1, pob, &dcr_read_pob, &dcr_write_pob);
480 qemu_register_reset(ppc4xx_pob_reset, pob);
481 ppc4xx_pob_reset(env);
485 /*****************************************************************************/
487 typedef struct ppc4xx_opba_t ppc4xx_opba_t;
488 struct ppc4xx_opba_t {
489 target_phys_addr_t base;
494 static uint32_t opba_readb (void *opaque, target_phys_addr_t addr)
500 printf("%s: addr " PADDRX "\n", __func__, addr);
503 switch (addr - opba->base) {
518 static void opba_writeb (void *opaque,
519 target_phys_addr_t addr, uint32_t value)
524 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
527 switch (addr - opba->base) {
529 opba->cr = value & 0xF8;
532 opba->pr = value & 0xFF;
539 static uint32_t opba_readw (void *opaque, target_phys_addr_t addr)
544 printf("%s: addr " PADDRX "\n", __func__, addr);
546 ret = opba_readb(opaque, addr) << 8;
547 ret |= opba_readb(opaque, addr + 1);
552 static void opba_writew (void *opaque,
553 target_phys_addr_t addr, uint32_t value)
556 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
558 opba_writeb(opaque, addr, value >> 8);
559 opba_writeb(opaque, addr + 1, value);
562 static uint32_t opba_readl (void *opaque, target_phys_addr_t addr)
567 printf("%s: addr " PADDRX "\n", __func__, addr);
569 ret = opba_readb(opaque, addr) << 24;
570 ret |= opba_readb(opaque, addr + 1) << 16;
575 static void opba_writel (void *opaque,
576 target_phys_addr_t addr, uint32_t value)
579 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
581 opba_writeb(opaque, addr, value >> 24);
582 opba_writeb(opaque, addr + 1, value >> 16);
585 static CPUReadMemoryFunc *opba_read[] = {
591 static CPUWriteMemoryFunc *opba_write[] = {
597 static void ppc4xx_opba_reset (void *opaque)
602 opba->cr = 0x00; /* No dynamic priorities - park disabled */
606 void ppc4xx_opba_init (CPUState *env, ppc4xx_mmio_t *mmio,
607 target_phys_addr_t offset)
611 opba = qemu_mallocz(sizeof(ppc4xx_opba_t));
615 printf("%s: offset=" PADDRX "\n", __func__, offset);
617 ppc4xx_mmio_register(env, mmio, offset, 0x002,
618 opba_read, opba_write, opba);
619 qemu_register_reset(ppc4xx_opba_reset, opba);
620 ppc4xx_opba_reset(opba);
624 /*****************************************************************************/
625 /* "Universal" Interrupt controller */
639 #define UIC_MAX_IRQ 32
640 typedef struct ppcuic_t ppcuic_t;
644 uint32_t uicsr; /* Status register */
645 uint32_t uicer; /* Enable register */
646 uint32_t uiccr; /* Critical register */
647 uint32_t uicpr; /* Polarity register */
648 uint32_t uictr; /* Triggering register */
649 uint32_t uicvcr; /* Vector configuration register */
654 static void ppcuic_trigger_irq (ppcuic_t *uic)
657 int start, end, inc, i;
659 /* Trigger interrupt if any is pending */
660 ir = uic->uicsr & uic->uicer & (~uic->uiccr);
661 cr = uic->uicsr & uic->uicer & uic->uiccr;
663 if (loglevel & CPU_LOG_INT) {
664 fprintf(logfile, "%s: uicsr %08x uicer %08x uiccr %08x\n"
665 " %08x ir %08x cr %08x\n", __func__,
666 uic->uicsr, uic->uicer, uic->uiccr,
667 uic->uicsr & uic->uicer, ir, cr);
670 if (ir != 0x0000000) {
672 if (loglevel & CPU_LOG_INT) {
673 fprintf(logfile, "Raise UIC interrupt\n");
676 qemu_irq_raise(uic->irqs[PPCUIC_OUTPUT_INT]);
679 if (loglevel & CPU_LOG_INT) {
680 fprintf(logfile, "Lower UIC interrupt\n");
683 qemu_irq_lower(uic->irqs[PPCUIC_OUTPUT_INT]);
685 /* Trigger critical interrupt if any is pending and update vector */
686 if (cr != 0x0000000) {
687 qemu_irq_raise(uic->irqs[PPCUIC_OUTPUT_CINT]);
688 if (uic->use_vectors) {
689 /* Compute critical IRQ vector */
690 if (uic->uicvcr & 1) {
699 uic->uicvr = uic->uicvcr & 0xFFFFFFFC;
700 for (i = start; i <= end; i += inc) {
702 uic->uicvr += (i - start) * 512 * inc;
708 if (loglevel & CPU_LOG_INT) {
709 fprintf(logfile, "Raise UIC critical interrupt - vector %08x\n",
715 if (loglevel & CPU_LOG_INT) {
716 fprintf(logfile, "Lower UIC critical interrupt\n");
719 qemu_irq_lower(uic->irqs[PPCUIC_OUTPUT_CINT]);
720 uic->uicvr = 0x00000000;
724 static void ppcuic_set_irq (void *opaque, int irq_num, int level)
732 if (loglevel & CPU_LOG_INT) {
733 fprintf(logfile, "%s: irq %d level %d uicsr %08x mask %08x => %08x "
734 "%08x\n", __func__, irq_num, level,
735 uic->uicsr, mask, uic->uicsr & mask, level << irq_num);
738 if (irq_num < 0 || irq_num > 31)
741 if (!(uic->uicpr & mask)) {
742 /* Negatively asserted IRQ */
743 level = level == 0 ? 1 : 0;
745 /* Update status register */
746 if (uic->uictr & mask) {
747 /* Edge sensitive interrupt */
751 /* Level sensitive interrupt */
758 if (loglevel & CPU_LOG_INT) {
759 fprintf(logfile, "%s: irq %d level %d sr %08x => %08x\n", __func__,
760 irq_num, level, uic->uicsr, sr);
763 if (sr != uic->uicsr)
764 ppcuic_trigger_irq(uic);
767 static target_ulong dcr_read_uic (void *opaque, int dcrn)
773 dcrn -= uic->dcr_base;
792 ret = uic->uicsr & uic->uicer;
795 if (!uic->use_vectors)
800 if (!uic->use_vectors)
813 static void dcr_write_uic (void *opaque, int dcrn, target_ulong val)
818 dcrn -= uic->dcr_base;
820 if (loglevel & CPU_LOG_INT) {
821 fprintf(logfile, "%s: dcr %d val " ADDRX "\n", __func__, dcrn, val);
827 ppcuic_trigger_irq(uic);
831 ppcuic_trigger_irq(uic);
835 ppcuic_trigger_irq(uic);
839 ppcuic_trigger_irq(uic);
843 ppcuic_trigger_irq(uic);
847 ppcuic_trigger_irq(uic);
854 uic->uicvcr = val & 0xFFFFFFFD;
855 ppcuic_trigger_irq(uic);
860 static void ppcuic_reset (void *opaque)
865 uic->uiccr = 0x00000000;
866 uic->uicer = 0x00000000;
867 uic->uicpr = 0x00000000;
868 uic->uicsr = 0x00000000;
869 uic->uictr = 0x00000000;
870 if (uic->use_vectors) {
871 uic->uicvcr = 0x00000000;
872 uic->uicvr = 0x0000000;
876 qemu_irq *ppcuic_init (CPUState *env, qemu_irq *irqs,
877 uint32_t dcr_base, int has_ssr, int has_vr)
882 uic = qemu_mallocz(sizeof(ppcuic_t));
884 uic->dcr_base = dcr_base;
887 uic->use_vectors = 1;
888 for (i = 0; i < DCR_UICMAX; i++) {
889 ppc_dcr_register(env, dcr_base + i, uic,
890 &dcr_read_uic, &dcr_write_uic);
892 qemu_register_reset(ppcuic_reset, uic);
896 return qemu_allocate_irqs(&ppcuic_set_irq, uic, UIC_MAX_IRQ);
899 /*****************************************************************************/
900 /* Code decompression controller */
903 /*****************************************************************************/
904 /* SDRAM controller */
905 typedef struct ppc4xx_sdram_t ppc4xx_sdram_t;
906 struct ppc4xx_sdram_t {
909 target_phys_addr_t ram_bases[4];
910 target_phys_addr_t ram_sizes[4];
926 SDRAM0_CFGADDR = 0x010,
927 SDRAM0_CFGDATA = 0x011,
930 static uint32_t sdram_bcr (target_phys_addr_t ram_base,
931 target_phys_addr_t ram_size)
936 case (4 * 1024 * 1024):
939 case (8 * 1024 * 1024):
942 case (16 * 1024 * 1024):
945 case (32 * 1024 * 1024):
948 case (64 * 1024 * 1024):
951 case (128 * 1024 * 1024):
954 case (256 * 1024 * 1024):
958 printf("%s: invalid RAM size " TARGET_FMT_plx "\n",
962 bcr |= ram_base & 0xFF800000;
968 static inline target_phys_addr_t sdram_base (uint32_t bcr)
970 return bcr & 0xFF800000;
973 static target_ulong sdram_size (uint32_t bcr)
978 sh = (bcr >> 17) & 0x7;
982 size = (4 * 1024 * 1024) << sh;
987 static void sdram_set_bcr (uint32_t *bcrp, uint32_t bcr, int enabled)
989 if (*bcrp & 0x00000001) {
992 printf("%s: unmap RAM area " TARGET_FMT_plx " " TARGET_FMT_lx "\n",
993 __func__, sdram_base(*bcrp), sdram_size(*bcrp));
995 cpu_register_physical_memory(sdram_base(*bcrp), sdram_size(*bcrp),
998 *bcrp = bcr & 0xFFDEE001;
999 if (enabled && (bcr & 0x00000001)) {
1001 printf("%s: Map RAM area " TARGET_FMT_plx " " TARGET_FMT_lx "\n",
1002 __func__, sdram_base(bcr), sdram_size(bcr));
1004 cpu_register_physical_memory(sdram_base(bcr), sdram_size(bcr),
1005 sdram_base(bcr) | IO_MEM_RAM);
1009 static void sdram_map_bcr (ppc4xx_sdram_t *sdram)
1013 for (i = 0; i < sdram->nbanks; i++) {
1014 if (sdram->ram_sizes[i] != 0) {
1015 sdram_set_bcr(&sdram->bcr[i],
1016 sdram_bcr(sdram->ram_bases[i], sdram->ram_sizes[i]),
1019 sdram_set_bcr(&sdram->bcr[i], 0x00000000, 0);
1024 static void sdram_unmap_bcr (ppc4xx_sdram_t *sdram)
1028 for (i = 0; i < sdram->nbanks; i++) {
1030 printf("%s: Unmap RAM area " TARGET_FMT_plx " " TARGET_FMT_lx "\n",
1031 __func__, sdram_base(sdram->bcr[i]), sdram_size(sdram->bcr[i]));
1033 cpu_register_physical_memory(sdram_base(sdram->bcr[i]),
1034 sdram_size(sdram->bcr[i]),
1039 static target_ulong dcr_read_sdram (void *opaque, int dcrn)
1041 ppc4xx_sdram_t *sdram;
1046 case SDRAM0_CFGADDR:
1049 case SDRAM0_CFGDATA:
1050 switch (sdram->addr) {
1051 case 0x00: /* SDRAM_BESR0 */
1054 case 0x08: /* SDRAM_BESR1 */
1057 case 0x10: /* SDRAM_BEAR */
1060 case 0x20: /* SDRAM_CFG */
1063 case 0x24: /* SDRAM_STATUS */
1064 ret = sdram->status;
1066 case 0x30: /* SDRAM_RTR */
1069 case 0x34: /* SDRAM_PMIT */
1072 case 0x40: /* SDRAM_B0CR */
1073 ret = sdram->bcr[0];
1075 case 0x44: /* SDRAM_B1CR */
1076 ret = sdram->bcr[1];
1078 case 0x48: /* SDRAM_B2CR */
1079 ret = sdram->bcr[2];
1081 case 0x4C: /* SDRAM_B3CR */
1082 ret = sdram->bcr[3];
1084 case 0x80: /* SDRAM_TR */
1087 case 0x94: /* SDRAM_ECCCFG */
1088 ret = sdram->ecccfg;
1090 case 0x98: /* SDRAM_ECCESR */
1091 ret = sdram->eccesr;
1093 default: /* Error */
1099 /* Avoid gcc warning */
1107 static void dcr_write_sdram (void *opaque, int dcrn, target_ulong val)
1109 ppc4xx_sdram_t *sdram;
1113 case SDRAM0_CFGADDR:
1116 case SDRAM0_CFGDATA:
1117 switch (sdram->addr) {
1118 case 0x00: /* SDRAM_BESR0 */
1119 sdram->besr0 &= ~val;
1121 case 0x08: /* SDRAM_BESR1 */
1122 sdram->besr1 &= ~val;
1124 case 0x10: /* SDRAM_BEAR */
1127 case 0x20: /* SDRAM_CFG */
1129 if (!(sdram->cfg & 0x80000000) && (val & 0x80000000)) {
1131 printf("%s: enable SDRAM controller\n", __func__);
1133 /* validate all RAM mappings */
1134 sdram_map_bcr(sdram);
1135 sdram->status &= ~0x80000000;
1136 } else if ((sdram->cfg & 0x80000000) && !(val & 0x80000000)) {
1138 printf("%s: disable SDRAM controller\n", __func__);
1140 /* invalidate all RAM mappings */
1141 sdram_unmap_bcr(sdram);
1142 sdram->status |= 0x80000000;
1144 if (!(sdram->cfg & 0x40000000) && (val & 0x40000000))
1145 sdram->status |= 0x40000000;
1146 else if ((sdram->cfg & 0x40000000) && !(val & 0x40000000))
1147 sdram->status &= ~0x40000000;
1150 case 0x24: /* SDRAM_STATUS */
1151 /* Read-only register */
1153 case 0x30: /* SDRAM_RTR */
1154 sdram->rtr = val & 0x3FF80000;
1156 case 0x34: /* SDRAM_PMIT */
1157 sdram->pmit = (val & 0xF8000000) | 0x07C00000;
1159 case 0x40: /* SDRAM_B0CR */
1160 sdram_set_bcr(&sdram->bcr[0], val, sdram->cfg & 0x80000000);
1162 case 0x44: /* SDRAM_B1CR */
1163 sdram_set_bcr(&sdram->bcr[1], val, sdram->cfg & 0x80000000);
1165 case 0x48: /* SDRAM_B2CR */
1166 sdram_set_bcr(&sdram->bcr[2], val, sdram->cfg & 0x80000000);
1168 case 0x4C: /* SDRAM_B3CR */
1169 sdram_set_bcr(&sdram->bcr[3], val, sdram->cfg & 0x80000000);
1171 case 0x80: /* SDRAM_TR */
1172 sdram->tr = val & 0x018FC01F;
1174 case 0x94: /* SDRAM_ECCCFG */
1175 sdram->ecccfg = val & 0x00F00000;
1177 case 0x98: /* SDRAM_ECCESR */
1179 if (sdram->eccesr == 0 && val != 0)
1180 qemu_irq_raise(sdram->irq);
1181 else if (sdram->eccesr != 0 && val == 0)
1182 qemu_irq_lower(sdram->irq);
1183 sdram->eccesr = val;
1185 default: /* Error */
1192 static void sdram_reset (void *opaque)
1194 ppc4xx_sdram_t *sdram;
1197 sdram->addr = 0x00000000;
1198 sdram->bear = 0x00000000;
1199 sdram->besr0 = 0x00000000; /* No error */
1200 sdram->besr1 = 0x00000000; /* No error */
1201 sdram->cfg = 0x00000000;
1202 sdram->ecccfg = 0x00000000; /* No ECC */
1203 sdram->eccesr = 0x00000000; /* No error */
1204 sdram->pmit = 0x07C00000;
1205 sdram->rtr = 0x05F00000;
1206 sdram->tr = 0x00854009;
1207 /* We pre-initialize RAM banks */
1208 sdram->status = 0x00000000;
1209 sdram->cfg = 0x00800000;
1210 sdram_unmap_bcr(sdram);
1213 void ppc405_sdram_init (CPUState *env, qemu_irq irq, int nbanks,
1214 target_phys_addr_t *ram_bases,
1215 target_phys_addr_t *ram_sizes,
1218 ppc4xx_sdram_t *sdram;
1220 sdram = qemu_mallocz(sizeof(ppc4xx_sdram_t));
1221 if (sdram != NULL) {
1223 sdram->nbanks = nbanks;
1224 memset(sdram->ram_bases, 0, 4 * sizeof(target_phys_addr_t));
1225 memcpy(sdram->ram_bases, ram_bases,
1226 nbanks * sizeof(target_phys_addr_t));
1227 memset(sdram->ram_sizes, 0, 4 * sizeof(target_phys_addr_t));
1228 memcpy(sdram->ram_sizes, ram_sizes,
1229 nbanks * sizeof(target_phys_addr_t));
1231 qemu_register_reset(&sdram_reset, sdram);
1232 ppc_dcr_register(env, SDRAM0_CFGADDR,
1233 sdram, &dcr_read_sdram, &dcr_write_sdram);
1234 ppc_dcr_register(env, SDRAM0_CFGDATA,
1235 sdram, &dcr_read_sdram, &dcr_write_sdram);
1237 sdram_map_bcr(sdram);
1241 /*****************************************************************************/
1242 /* Peripheral controller */
1243 typedef struct ppc4xx_ebc_t ppc4xx_ebc_t;
1244 struct ppc4xx_ebc_t {
1255 EBC0_CFGADDR = 0x012,
1256 EBC0_CFGDATA = 0x013,
1259 static target_ulong dcr_read_ebc (void *opaque, int dcrn)
1270 switch (ebc->addr) {
1271 case 0x00: /* B0CR */
1274 case 0x01: /* B1CR */
1277 case 0x02: /* B2CR */
1280 case 0x03: /* B3CR */
1283 case 0x04: /* B4CR */
1286 case 0x05: /* B5CR */
1289 case 0x06: /* B6CR */
1292 case 0x07: /* B7CR */
1295 case 0x10: /* B0AP */
1298 case 0x11: /* B1AP */
1301 case 0x12: /* B2AP */
1304 case 0x13: /* B3AP */
1307 case 0x14: /* B4AP */
1310 case 0x15: /* B5AP */
1313 case 0x16: /* B6AP */
1316 case 0x17: /* B7AP */
1319 case 0x20: /* BEAR */
1322 case 0x21: /* BESR0 */
1325 case 0x22: /* BESR1 */
1328 case 0x23: /* CFG */
1343 static void dcr_write_ebc (void *opaque, int dcrn, target_ulong val)
1353 switch (ebc->addr) {
1354 case 0x00: /* B0CR */
1356 case 0x01: /* B1CR */
1358 case 0x02: /* B2CR */
1360 case 0x03: /* B3CR */
1362 case 0x04: /* B4CR */
1364 case 0x05: /* B5CR */
1366 case 0x06: /* B6CR */
1368 case 0x07: /* B7CR */
1370 case 0x10: /* B0AP */
1372 case 0x11: /* B1AP */
1374 case 0x12: /* B2AP */
1376 case 0x13: /* B3AP */
1378 case 0x14: /* B4AP */
1380 case 0x15: /* B5AP */
1382 case 0x16: /* B6AP */
1384 case 0x17: /* B7AP */
1386 case 0x20: /* BEAR */
1388 case 0x21: /* BESR0 */
1390 case 0x22: /* BESR1 */
1392 case 0x23: /* CFG */
1403 static void ebc_reset (void *opaque)
1409 ebc->addr = 0x00000000;
1410 ebc->bap[0] = 0x7F8FFE80;
1411 ebc->bcr[0] = 0xFFE28000;
1412 for (i = 0; i < 8; i++) {
1413 ebc->bap[i] = 0x00000000;
1414 ebc->bcr[i] = 0x00000000;
1416 ebc->besr0 = 0x00000000;
1417 ebc->besr1 = 0x00000000;
1418 ebc->cfg = 0x80400000;
1421 void ppc405_ebc_init (CPUState *env)
1425 ebc = qemu_mallocz(sizeof(ppc4xx_ebc_t));
1428 qemu_register_reset(&ebc_reset, ebc);
1429 ppc_dcr_register(env, EBC0_CFGADDR,
1430 ebc, &dcr_read_ebc, &dcr_write_ebc);
1431 ppc_dcr_register(env, EBC0_CFGDATA,
1432 ebc, &dcr_read_ebc, &dcr_write_ebc);
1436 /*****************************************************************************/
1437 /* DMA controller */
1465 typedef struct ppc405_dma_t ppc405_dma_t;
1466 struct ppc405_dma_t {
1479 static target_ulong dcr_read_dma (void *opaque, int dcrn)
1488 static void dcr_write_dma (void *opaque, int dcrn, target_ulong val)
1495 static void ppc405_dma_reset (void *opaque)
1501 for (i = 0; i < 4; i++) {
1502 dma->cr[i] = 0x00000000;
1503 dma->ct[i] = 0x00000000;
1504 dma->da[i] = 0x00000000;
1505 dma->sa[i] = 0x00000000;
1506 dma->sg[i] = 0x00000000;
1508 dma->sr = 0x00000000;
1509 dma->sgc = 0x00000000;
1510 dma->slp = 0x7C000000;
1511 dma->pol = 0x00000000;
1514 void ppc405_dma_init (CPUState *env, qemu_irq irqs[4])
1518 dma = qemu_mallocz(sizeof(ppc405_dma_t));
1520 memcpy(dma->irqs, irqs, 4 * sizeof(qemu_irq));
1521 ppc405_dma_reset(dma);
1522 qemu_register_reset(&ppc405_dma_reset, dma);
1523 ppc_dcr_register(env, DMA0_CR0,
1524 dma, &dcr_read_dma, &dcr_write_dma);
1525 ppc_dcr_register(env, DMA0_CT0,
1526 dma, &dcr_read_dma, &dcr_write_dma);
1527 ppc_dcr_register(env, DMA0_DA0,
1528 dma, &dcr_read_dma, &dcr_write_dma);
1529 ppc_dcr_register(env, DMA0_SA0,
1530 dma, &dcr_read_dma, &dcr_write_dma);
1531 ppc_dcr_register(env, DMA0_SG0,
1532 dma, &dcr_read_dma, &dcr_write_dma);
1533 ppc_dcr_register(env, DMA0_CR1,
1534 dma, &dcr_read_dma, &dcr_write_dma);
1535 ppc_dcr_register(env, DMA0_CT1,
1536 dma, &dcr_read_dma, &dcr_write_dma);
1537 ppc_dcr_register(env, DMA0_DA1,
1538 dma, &dcr_read_dma, &dcr_write_dma);
1539 ppc_dcr_register(env, DMA0_SA1,
1540 dma, &dcr_read_dma, &dcr_write_dma);
1541 ppc_dcr_register(env, DMA0_SG1,
1542 dma, &dcr_read_dma, &dcr_write_dma);
1543 ppc_dcr_register(env, DMA0_CR2,
1544 dma, &dcr_read_dma, &dcr_write_dma);
1545 ppc_dcr_register(env, DMA0_CT2,
1546 dma, &dcr_read_dma, &dcr_write_dma);
1547 ppc_dcr_register(env, DMA0_DA2,
1548 dma, &dcr_read_dma, &dcr_write_dma);
1549 ppc_dcr_register(env, DMA0_SA2,
1550 dma, &dcr_read_dma, &dcr_write_dma);
1551 ppc_dcr_register(env, DMA0_SG2,
1552 dma, &dcr_read_dma, &dcr_write_dma);
1553 ppc_dcr_register(env, DMA0_CR3,
1554 dma, &dcr_read_dma, &dcr_write_dma);
1555 ppc_dcr_register(env, DMA0_CT3,
1556 dma, &dcr_read_dma, &dcr_write_dma);
1557 ppc_dcr_register(env, DMA0_DA3,
1558 dma, &dcr_read_dma, &dcr_write_dma);
1559 ppc_dcr_register(env, DMA0_SA3,
1560 dma, &dcr_read_dma, &dcr_write_dma);
1561 ppc_dcr_register(env, DMA0_SG3,
1562 dma, &dcr_read_dma, &dcr_write_dma);
1563 ppc_dcr_register(env, DMA0_SR,
1564 dma, &dcr_read_dma, &dcr_write_dma);
1565 ppc_dcr_register(env, DMA0_SGC,
1566 dma, &dcr_read_dma, &dcr_write_dma);
1567 ppc_dcr_register(env, DMA0_SLP,
1568 dma, &dcr_read_dma, &dcr_write_dma);
1569 ppc_dcr_register(env, DMA0_POL,
1570 dma, &dcr_read_dma, &dcr_write_dma);
1574 /*****************************************************************************/
1576 typedef struct ppc405_gpio_t ppc405_gpio_t;
1577 struct ppc405_gpio_t {
1578 target_phys_addr_t base;
1592 static uint32_t ppc405_gpio_readb (void *opaque, target_phys_addr_t addr)
1594 ppc405_gpio_t *gpio;
1598 printf("%s: addr " PADDRX "\n", __func__, addr);
1604 static void ppc405_gpio_writeb (void *opaque,
1605 target_phys_addr_t addr, uint32_t value)
1607 ppc405_gpio_t *gpio;
1611 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
1615 static uint32_t ppc405_gpio_readw (void *opaque, target_phys_addr_t addr)
1617 ppc405_gpio_t *gpio;
1621 printf("%s: addr " PADDRX "\n", __func__, addr);
1627 static void ppc405_gpio_writew (void *opaque,
1628 target_phys_addr_t addr, uint32_t value)
1630 ppc405_gpio_t *gpio;
1634 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
1638 static uint32_t ppc405_gpio_readl (void *opaque, target_phys_addr_t addr)
1640 ppc405_gpio_t *gpio;
1644 printf("%s: addr " PADDRX "\n", __func__, addr);
1650 static void ppc405_gpio_writel (void *opaque,
1651 target_phys_addr_t addr, uint32_t value)
1653 ppc405_gpio_t *gpio;
1657 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
1661 static CPUReadMemoryFunc *ppc405_gpio_read[] = {
1667 static CPUWriteMemoryFunc *ppc405_gpio_write[] = {
1668 &ppc405_gpio_writeb,
1669 &ppc405_gpio_writew,
1670 &ppc405_gpio_writel,
1673 static void ppc405_gpio_reset (void *opaque)
1675 ppc405_gpio_t *gpio;
1680 void ppc405_gpio_init (CPUState *env, ppc4xx_mmio_t *mmio,
1681 target_phys_addr_t offset)
1683 ppc405_gpio_t *gpio;
1685 gpio = qemu_mallocz(sizeof(ppc405_gpio_t));
1687 gpio->base = offset;
1688 ppc405_gpio_reset(gpio);
1689 qemu_register_reset(&ppc405_gpio_reset, gpio);
1691 printf("%s: offset=" PADDRX "\n", __func__, offset);
1693 ppc4xx_mmio_register(env, mmio, offset, 0x038,
1694 ppc405_gpio_read, ppc405_gpio_write, gpio);
1698 /*****************************************************************************/
1700 static CPUReadMemoryFunc *serial_mm_read[] = {
1706 static CPUWriteMemoryFunc *serial_mm_write[] = {
1712 void ppc405_serial_init (CPUState *env, ppc4xx_mmio_t *mmio,
1713 target_phys_addr_t offset, qemu_irq irq,
1714 CharDriverState *chr)
1719 printf("%s: offset=" PADDRX "\n", __func__, offset);
1721 serial = serial_mm_init(offset, 0, irq, chr, 0);
1722 ppc4xx_mmio_register(env, mmio, offset, 0x008,
1723 serial_mm_read, serial_mm_write, serial);
1726 /*****************************************************************************/
1727 /* On Chip Memory */
1730 OCM0_ISACNTL = 0x019,
1732 OCM0_DSACNTL = 0x01B,
1735 typedef struct ppc405_ocm_t ppc405_ocm_t;
1736 struct ppc405_ocm_t {
1737 target_ulong offset;
1744 static void ocm_update_mappings (ppc405_ocm_t *ocm,
1745 uint32_t isarc, uint32_t isacntl,
1746 uint32_t dsarc, uint32_t dsacntl)
1749 printf("OCM update ISA %08x %08x (%08x %08x) DSA %08x %08x (%08x %08x)\n",
1750 isarc, isacntl, dsarc, dsacntl,
1751 ocm->isarc, ocm->isacntl, ocm->dsarc, ocm->dsacntl);
1753 if (ocm->isarc != isarc ||
1754 (ocm->isacntl & 0x80000000) != (isacntl & 0x80000000)) {
1755 if (ocm->isacntl & 0x80000000) {
1756 /* Unmap previously assigned memory region */
1757 printf("OCM unmap ISA %08x\n", ocm->isarc);
1758 cpu_register_physical_memory(ocm->isarc, 0x04000000,
1761 if (isacntl & 0x80000000) {
1762 /* Map new instruction memory region */
1764 printf("OCM map ISA %08x\n", isarc);
1766 cpu_register_physical_memory(isarc, 0x04000000,
1767 ocm->offset | IO_MEM_RAM);
1770 if (ocm->dsarc != dsarc ||
1771 (ocm->dsacntl & 0x80000000) != (dsacntl & 0x80000000)) {
1772 if (ocm->dsacntl & 0x80000000) {
1773 /* Beware not to unmap the region we just mapped */
1774 if (!(isacntl & 0x80000000) || ocm->dsarc != isarc) {
1775 /* Unmap previously assigned memory region */
1777 printf("OCM unmap DSA %08x\n", ocm->dsarc);
1779 cpu_register_physical_memory(ocm->dsarc, 0x04000000,
1783 if (dsacntl & 0x80000000) {
1784 /* Beware not to remap the region we just mapped */
1785 if (!(isacntl & 0x80000000) || dsarc != isarc) {
1786 /* Map new data memory region */
1788 printf("OCM map DSA %08x\n", dsarc);
1790 cpu_register_physical_memory(dsarc, 0x04000000,
1791 ocm->offset | IO_MEM_RAM);
1797 static target_ulong dcr_read_ocm (void *opaque, int dcrn)
1824 static void dcr_write_ocm (void *opaque, int dcrn, target_ulong val)
1827 uint32_t isarc, dsarc, isacntl, dsacntl;
1832 isacntl = ocm->isacntl;
1833 dsacntl = ocm->dsacntl;
1836 isarc = val & 0xFC000000;
1839 isacntl = val & 0xC0000000;
1842 isarc = val & 0xFC000000;
1845 isacntl = val & 0xC0000000;
1848 ocm_update_mappings(ocm, isarc, isacntl, dsarc, dsacntl);
1851 ocm->isacntl = isacntl;
1852 ocm->dsacntl = dsacntl;
1855 static void ocm_reset (void *opaque)
1858 uint32_t isarc, dsarc, isacntl, dsacntl;
1862 isacntl = 0x00000000;
1864 dsacntl = 0x00000000;
1865 ocm_update_mappings(ocm, isarc, isacntl, dsarc, dsacntl);
1868 ocm->isacntl = isacntl;
1869 ocm->dsacntl = dsacntl;
1872 void ppc405_ocm_init (CPUState *env, unsigned long offset)
1876 ocm = qemu_mallocz(sizeof(ppc405_ocm_t));
1878 ocm->offset = offset;
1880 qemu_register_reset(&ocm_reset, ocm);
1881 ppc_dcr_register(env, OCM0_ISARC,
1882 ocm, &dcr_read_ocm, &dcr_write_ocm);
1883 ppc_dcr_register(env, OCM0_ISACNTL,
1884 ocm, &dcr_read_ocm, &dcr_write_ocm);
1885 ppc_dcr_register(env, OCM0_DSARC,
1886 ocm, &dcr_read_ocm, &dcr_write_ocm);
1887 ppc_dcr_register(env, OCM0_DSACNTL,
1888 ocm, &dcr_read_ocm, &dcr_write_ocm);
1892 /*****************************************************************************/
1893 /* I2C controller */
1894 typedef struct ppc4xx_i2c_t ppc4xx_i2c_t;
1895 struct ppc4xx_i2c_t {
1896 target_phys_addr_t base;
1915 static uint32_t ppc4xx_i2c_readb (void *opaque, target_phys_addr_t addr)
1921 printf("%s: addr " PADDRX "\n", __func__, addr);
1924 switch (addr - i2c->base) {
1926 // i2c_readbyte(&i2c->mdata);
1966 ret = i2c->xtcntlss;
1969 ret = i2c->directcntl;
1976 printf("%s: addr " PADDRX " %02x\n", __func__, addr, ret);
1982 static void ppc4xx_i2c_writeb (void *opaque,
1983 target_phys_addr_t addr, uint32_t value)
1988 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
1991 switch (addr - i2c->base) {
1994 // i2c_sendbyte(&i2c->mdata);
2009 i2c->mdcntl = value & 0xDF;
2012 i2c->sts &= ~(value & 0x0A);
2015 i2c->extsts &= ~(value & 0x8F);
2024 i2c->clkdiv = value;
2027 i2c->intrmsk = value;
2030 i2c->xfrcnt = value & 0x77;
2033 i2c->xtcntlss = value;
2036 i2c->directcntl = value & 0x7;
2041 static uint32_t ppc4xx_i2c_readw (void *opaque, target_phys_addr_t addr)
2046 printf("%s: addr " PADDRX "\n", __func__, addr);
2048 ret = ppc4xx_i2c_readb(opaque, addr) << 8;
2049 ret |= ppc4xx_i2c_readb(opaque, addr + 1);
2054 static void ppc4xx_i2c_writew (void *opaque,
2055 target_phys_addr_t addr, uint32_t value)
2058 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
2060 ppc4xx_i2c_writeb(opaque, addr, value >> 8);
2061 ppc4xx_i2c_writeb(opaque, addr + 1, value);
2064 static uint32_t ppc4xx_i2c_readl (void *opaque, target_phys_addr_t addr)
2069 printf("%s: addr " PADDRX "\n", __func__, addr);
2071 ret = ppc4xx_i2c_readb(opaque, addr) << 24;
2072 ret |= ppc4xx_i2c_readb(opaque, addr + 1) << 16;
2073 ret |= ppc4xx_i2c_readb(opaque, addr + 2) << 8;
2074 ret |= ppc4xx_i2c_readb(opaque, addr + 3);
2079 static void ppc4xx_i2c_writel (void *opaque,
2080 target_phys_addr_t addr, uint32_t value)
2083 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
2085 ppc4xx_i2c_writeb(opaque, addr, value >> 24);
2086 ppc4xx_i2c_writeb(opaque, addr + 1, value >> 16);
2087 ppc4xx_i2c_writeb(opaque, addr + 2, value >> 8);
2088 ppc4xx_i2c_writeb(opaque, addr + 3, value);
2091 static CPUReadMemoryFunc *i2c_read[] = {
2097 static CPUWriteMemoryFunc *i2c_write[] = {
2103 static void ppc4xx_i2c_reset (void *opaque)
2116 i2c->directcntl = 0x0F;
2119 void ppc405_i2c_init (CPUState *env, ppc4xx_mmio_t *mmio,
2120 target_phys_addr_t offset, qemu_irq irq)
2124 i2c = qemu_mallocz(sizeof(ppc4xx_i2c_t));
2128 ppc4xx_i2c_reset(i2c);
2130 printf("%s: offset=" PADDRX "\n", __func__, offset);
2132 ppc4xx_mmio_register(env, mmio, offset, 0x011,
2133 i2c_read, i2c_write, i2c);
2134 qemu_register_reset(ppc4xx_i2c_reset, i2c);
2138 /*****************************************************************************/
2139 /* General purpose timers */
2140 typedef struct ppc4xx_gpt_t ppc4xx_gpt_t;
2141 struct ppc4xx_gpt_t {
2142 target_phys_addr_t base;
2145 struct QEMUTimer *timer;
2156 static uint32_t ppc4xx_gpt_readb (void *opaque, target_phys_addr_t addr)
2159 printf("%s: addr " PADDRX "\n", __func__, addr);
2161 /* XXX: generate a bus fault */
2165 static void ppc4xx_gpt_writeb (void *opaque,
2166 target_phys_addr_t addr, uint32_t value)
2169 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
2171 /* XXX: generate a bus fault */
2174 static uint32_t ppc4xx_gpt_readw (void *opaque, target_phys_addr_t addr)
2177 printf("%s: addr " PADDRX "\n", __func__, addr);
2179 /* XXX: generate a bus fault */
2183 static void ppc4xx_gpt_writew (void *opaque,
2184 target_phys_addr_t addr, uint32_t value)
2187 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
2189 /* XXX: generate a bus fault */
2192 static int ppc4xx_gpt_compare (ppc4xx_gpt_t *gpt, int n)
2198 static void ppc4xx_gpt_set_output (ppc4xx_gpt_t *gpt, int n, int level)
2203 static void ppc4xx_gpt_set_outputs (ppc4xx_gpt_t *gpt)
2209 for (i = 0; i < 5; i++) {
2210 if (gpt->oe & mask) {
2211 /* Output is enabled */
2212 if (ppc4xx_gpt_compare(gpt, i)) {
2213 /* Comparison is OK */
2214 ppc4xx_gpt_set_output(gpt, i, gpt->ol & mask);
2216 /* Comparison is KO */
2217 ppc4xx_gpt_set_output(gpt, i, gpt->ol & mask ? 0 : 1);
2224 static void ppc4xx_gpt_set_irqs (ppc4xx_gpt_t *gpt)
2230 for (i = 0; i < 5; i++) {
2231 if (gpt->is & gpt->im & mask)
2232 qemu_irq_raise(gpt->irqs[i]);
2234 qemu_irq_lower(gpt->irqs[i]);
2239 static void ppc4xx_gpt_compute_timer (ppc4xx_gpt_t *gpt)
2244 static uint32_t ppc4xx_gpt_readl (void *opaque, target_phys_addr_t addr)
2251 printf("%s: addr " PADDRX "\n", __func__, addr);
2254 switch (addr - gpt->base) {
2256 /* Time base counter */
2257 ret = muldiv64(qemu_get_clock(vm_clock) + gpt->tb_offset,
2258 gpt->tb_freq, ticks_per_sec);
2269 /* Interrupt mask */
2274 /* Interrupt status */
2278 /* Interrupt enable */
2283 idx = ((addr - gpt->base) - 0x80) >> 2;
2284 ret = gpt->comp[idx];
2288 idx = ((addr - gpt->base) - 0xC0) >> 2;
2289 ret = gpt->mask[idx];
2299 static void ppc4xx_gpt_writel (void *opaque,
2300 target_phys_addr_t addr, uint32_t value)
2306 printf("%s: addr " PADDRX " val %08x\n", __func__, addr, value);
2309 switch (addr - gpt->base) {
2311 /* Time base counter */
2312 gpt->tb_offset = muldiv64(value, ticks_per_sec, gpt->tb_freq)
2313 - qemu_get_clock(vm_clock);
2314 ppc4xx_gpt_compute_timer(gpt);
2318 gpt->oe = value & 0xF8000000;
2319 ppc4xx_gpt_set_outputs(gpt);
2323 gpt->ol = value & 0xF8000000;
2324 ppc4xx_gpt_set_outputs(gpt);
2327 /* Interrupt mask */
2328 gpt->im = value & 0x0000F800;
2331 /* Interrupt status set */
2332 gpt->is |= value & 0x0000F800;
2333 ppc4xx_gpt_set_irqs(gpt);
2336 /* Interrupt status clear */
2337 gpt->is &= ~(value & 0x0000F800);
2338 ppc4xx_gpt_set_irqs(gpt);
2341 /* Interrupt enable */
2342 gpt->ie = value & 0x0000F800;
2343 ppc4xx_gpt_set_irqs(gpt);
2347 idx = ((addr - gpt->base) - 0x80) >> 2;
2348 gpt->comp[idx] = value & 0xF8000000;
2349 ppc4xx_gpt_compute_timer(gpt);
2353 idx = ((addr - gpt->base) - 0xC0) >> 2;
2354 gpt->mask[idx] = value & 0xF8000000;
2355 ppc4xx_gpt_compute_timer(gpt);
2360 static CPUReadMemoryFunc *gpt_read[] = {
2366 static CPUWriteMemoryFunc *gpt_write[] = {
2372 static void ppc4xx_gpt_cb (void *opaque)
2377 ppc4xx_gpt_set_irqs(gpt);
2378 ppc4xx_gpt_set_outputs(gpt);
2379 ppc4xx_gpt_compute_timer(gpt);
2382 static void ppc4xx_gpt_reset (void *opaque)
2388 qemu_del_timer(gpt->timer);
2389 gpt->oe = 0x00000000;
2390 gpt->ol = 0x00000000;
2391 gpt->im = 0x00000000;
2392 gpt->is = 0x00000000;
2393 gpt->ie = 0x00000000;
2394 for (i = 0; i < 5; i++) {
2395 gpt->comp[i] = 0x00000000;
2396 gpt->mask[i] = 0x00000000;
2400 void ppc4xx_gpt_init (CPUState *env, ppc4xx_mmio_t *mmio,
2401 target_phys_addr_t offset, qemu_irq irqs[5])
2406 gpt = qemu_mallocz(sizeof(ppc4xx_gpt_t));
2409 for (i = 0; i < 5; i++)
2410 gpt->irqs[i] = irqs[i];
2411 gpt->timer = qemu_new_timer(vm_clock, &ppc4xx_gpt_cb, gpt);
2412 ppc4xx_gpt_reset(gpt);
2414 printf("%s: offset=" PADDRX "\n", __func__, offset);
2416 ppc4xx_mmio_register(env, mmio, offset, 0x0D4,
2417 gpt_read, gpt_write, gpt);
2418 qemu_register_reset(ppc4xx_gpt_reset, gpt);
2422 /*****************************************************************************/
2428 MAL0_TXCASR = 0x184,
2429 MAL0_TXCARR = 0x185,
2430 MAL0_TXEOBISR = 0x186,
2431 MAL0_TXDEIR = 0x187,
2432 MAL0_RXCASR = 0x190,
2433 MAL0_RXCARR = 0x191,
2434 MAL0_RXEOBISR = 0x192,
2435 MAL0_RXDEIR = 0x193,
2436 MAL0_TXCTP0R = 0x1A0,
2437 MAL0_TXCTP1R = 0x1A1,
2438 MAL0_TXCTP2R = 0x1A2,
2439 MAL0_TXCTP3R = 0x1A3,
2440 MAL0_RXCTP0R = 0x1C0,
2441 MAL0_RXCTP1R = 0x1C1,
2446 typedef struct ppc40x_mal_t ppc40x_mal_t;
2447 struct ppc40x_mal_t {
2465 static void ppc40x_mal_reset (void *opaque);
2467 static target_ulong dcr_read_mal (void *opaque, int dcrn)
2490 ret = mal->txeobisr;
2502 ret = mal->rxeobisr;
2508 ret = mal->txctpr[0];
2511 ret = mal->txctpr[1];
2514 ret = mal->txctpr[2];
2517 ret = mal->txctpr[3];
2520 ret = mal->rxctpr[0];
2523 ret = mal->rxctpr[1];
2539 static void dcr_write_mal (void *opaque, int dcrn, target_ulong val)
2547 if (val & 0x80000000)
2548 ppc40x_mal_reset(mal);
2549 mal->cfg = val & 0x00FFC087;
2556 mal->ier = val & 0x0000001F;
2559 mal->txcasr = val & 0xF0000000;
2562 mal->txcarr = val & 0xF0000000;
2566 mal->txeobisr &= ~val;
2570 mal->txdeir &= ~val;
2573 mal->rxcasr = val & 0xC0000000;
2576 mal->rxcarr = val & 0xC0000000;
2580 mal->rxeobisr &= ~val;
2584 mal->rxdeir &= ~val;
2598 mal->txctpr[idx] = val;
2606 mal->rxctpr[idx] = val;
2610 goto update_rx_size;
2614 mal->rcbs[idx] = val & 0x000000FF;
2619 static void ppc40x_mal_reset (void *opaque)
2624 mal->cfg = 0x0007C000;
2625 mal->esr = 0x00000000;
2626 mal->ier = 0x00000000;
2627 mal->rxcasr = 0x00000000;
2628 mal->rxdeir = 0x00000000;
2629 mal->rxeobisr = 0x00000000;
2630 mal->txcasr = 0x00000000;
2631 mal->txdeir = 0x00000000;
2632 mal->txeobisr = 0x00000000;
2635 void ppc405_mal_init (CPUState *env, qemu_irq irqs[4])
2640 mal = qemu_mallocz(sizeof(ppc40x_mal_t));
2642 for (i = 0; i < 4; i++)
2643 mal->irqs[i] = irqs[i];
2644 ppc40x_mal_reset(mal);
2645 qemu_register_reset(&ppc40x_mal_reset, mal);
2646 ppc_dcr_register(env, MAL0_CFG,
2647 mal, &dcr_read_mal, &dcr_write_mal);
2648 ppc_dcr_register(env, MAL0_ESR,
2649 mal, &dcr_read_mal, &dcr_write_mal);
2650 ppc_dcr_register(env, MAL0_IER,
2651 mal, &dcr_read_mal, &dcr_write_mal);
2652 ppc_dcr_register(env, MAL0_TXCASR,
2653 mal, &dcr_read_mal, &dcr_write_mal);
2654 ppc_dcr_register(env, MAL0_TXCARR,
2655 mal, &dcr_read_mal, &dcr_write_mal);
2656 ppc_dcr_register(env, MAL0_TXEOBISR,
2657 mal, &dcr_read_mal, &dcr_write_mal);
2658 ppc_dcr_register(env, MAL0_TXDEIR,
2659 mal, &dcr_read_mal, &dcr_write_mal);
2660 ppc_dcr_register(env, MAL0_RXCASR,
2661 mal, &dcr_read_mal, &dcr_write_mal);
2662 ppc_dcr_register(env, MAL0_RXCARR,
2663 mal, &dcr_read_mal, &dcr_write_mal);
2664 ppc_dcr_register(env, MAL0_RXEOBISR,
2665 mal, &dcr_read_mal, &dcr_write_mal);
2666 ppc_dcr_register(env, MAL0_RXDEIR,
2667 mal, &dcr_read_mal, &dcr_write_mal);
2668 ppc_dcr_register(env, MAL0_TXCTP0R,
2669 mal, &dcr_read_mal, &dcr_write_mal);
2670 ppc_dcr_register(env, MAL0_TXCTP1R,
2671 mal, &dcr_read_mal, &dcr_write_mal);
2672 ppc_dcr_register(env, MAL0_TXCTP2R,
2673 mal, &dcr_read_mal, &dcr_write_mal);
2674 ppc_dcr_register(env, MAL0_TXCTP3R,
2675 mal, &dcr_read_mal, &dcr_write_mal);
2676 ppc_dcr_register(env, MAL0_RXCTP0R,
2677 mal, &dcr_read_mal, &dcr_write_mal);
2678 ppc_dcr_register(env, MAL0_RXCTP1R,
2679 mal, &dcr_read_mal, &dcr_write_mal);
2680 ppc_dcr_register(env, MAL0_RCBS0,
2681 mal, &dcr_read_mal, &dcr_write_mal);
2682 ppc_dcr_register(env, MAL0_RCBS1,
2683 mal, &dcr_read_mal, &dcr_write_mal);
2687 /*****************************************************************************/
2689 void ppc40x_core_reset (CPUState *env)
2693 printf("Reset PowerPC core\n");
2695 dbsr = env->spr[SPR_40x_DBSR];
2696 dbsr &= ~0x00000300;
2698 env->spr[SPR_40x_DBSR] = dbsr;
2702 void ppc40x_chip_reset (CPUState *env)
2706 printf("Reset PowerPC chip\n");
2708 /* XXX: TODO reset all internal peripherals */
2709 dbsr = env->spr[SPR_40x_DBSR];
2710 dbsr &= ~0x00000300;
2712 env->spr[SPR_40x_DBSR] = dbsr;
2716 void ppc40x_system_reset (CPUState *env)
2718 printf("Reset PowerPC system\n");
2719 qemu_system_reset_request();
2722 void store_40x_dbcr0 (CPUState *env, uint32_t val)
2724 switch ((val >> 28) & 0x3) {
2730 ppc40x_core_reset(env);
2734 ppc40x_chip_reset(env);
2738 ppc40x_system_reset(env);
2743 /*****************************************************************************/
2746 PPC405CR_CPC0_PLLMR = 0x0B0,
2747 PPC405CR_CPC0_CR0 = 0x0B1,
2748 PPC405CR_CPC0_CR1 = 0x0B2,
2749 PPC405CR_CPC0_PSR = 0x0B4,
2750 PPC405CR_CPC0_JTAGID = 0x0B5,
2751 PPC405CR_CPC0_ER = 0x0B9,
2752 PPC405CR_CPC0_FR = 0x0BA,
2753 PPC405CR_CPC0_SR = 0x0BB,
2757 PPC405CR_CPU_CLK = 0,
2758 PPC405CR_TMR_CLK = 1,
2759 PPC405CR_PLB_CLK = 2,
2760 PPC405CR_SDRAM_CLK = 3,
2761 PPC405CR_OPB_CLK = 4,
2762 PPC405CR_EXT_CLK = 5,
2763 PPC405CR_UART_CLK = 6,
2764 PPC405CR_CLK_NB = 7,
2767 typedef struct ppc405cr_cpc_t ppc405cr_cpc_t;
2768 struct ppc405cr_cpc_t {
2769 clk_setup_t clk_setup[PPC405CR_CLK_NB];
2780 static void ppc405cr_clk_setup (ppc405cr_cpc_t *cpc)
2782 uint64_t VCO_out, PLL_out;
2783 uint32_t CPU_clk, TMR_clk, SDRAM_clk, PLB_clk, OPB_clk, EXT_clk, UART_clk;
2786 D0 = ((cpc->pllmr >> 26) & 0x3) + 1; /* CBDV */
2787 if (cpc->pllmr & 0x80000000) {
2788 D1 = (((cpc->pllmr >> 20) - 1) & 0xF) + 1; /* FBDV */
2789 D2 = 8 - ((cpc->pllmr >> 16) & 0x7); /* FWDVA */
2791 VCO_out = cpc->sysclk * M;
2792 if (VCO_out < 400000000 || VCO_out > 800000000) {
2793 /* PLL cannot lock */
2794 cpc->pllmr &= ~0x80000000;
2797 PLL_out = VCO_out / D2;
2802 PLL_out = cpc->sysclk * M;
2805 if (cpc->cr1 & 0x00800000)
2806 TMR_clk = cpc->sysclk; /* Should have a separate clock */
2809 PLB_clk = CPU_clk / D0;
2810 SDRAM_clk = PLB_clk;
2811 D0 = ((cpc->pllmr >> 10) & 0x3) + 1;
2812 OPB_clk = PLB_clk / D0;
2813 D0 = ((cpc->pllmr >> 24) & 0x3) + 2;
2814 EXT_clk = PLB_clk / D0;
2815 D0 = ((cpc->cr0 >> 1) & 0x1F) + 1;
2816 UART_clk = CPU_clk / D0;
2817 /* Setup CPU clocks */
2818 clk_setup(&cpc->clk_setup[PPC405CR_CPU_CLK], CPU_clk);
2819 /* Setup time-base clock */
2820 clk_setup(&cpc->clk_setup[PPC405CR_TMR_CLK], TMR_clk);
2821 /* Setup PLB clock */
2822 clk_setup(&cpc->clk_setup[PPC405CR_PLB_CLK], PLB_clk);
2823 /* Setup SDRAM clock */
2824 clk_setup(&cpc->clk_setup[PPC405CR_SDRAM_CLK], SDRAM_clk);
2825 /* Setup OPB clock */
2826 clk_setup(&cpc->clk_setup[PPC405CR_OPB_CLK], OPB_clk);
2827 /* Setup external clock */
2828 clk_setup(&cpc->clk_setup[PPC405CR_EXT_CLK], EXT_clk);
2829 /* Setup UART clock */
2830 clk_setup(&cpc->clk_setup[PPC405CR_UART_CLK], UART_clk);
2833 static target_ulong dcr_read_crcpc (void *opaque, int dcrn)
2835 ppc405cr_cpc_t *cpc;
2840 case PPC405CR_CPC0_PLLMR:
2843 case PPC405CR_CPC0_CR0:
2846 case PPC405CR_CPC0_CR1:
2849 case PPC405CR_CPC0_PSR:
2852 case PPC405CR_CPC0_JTAGID:
2855 case PPC405CR_CPC0_ER:
2858 case PPC405CR_CPC0_FR:
2861 case PPC405CR_CPC0_SR:
2862 ret = ~(cpc->er | cpc->fr) & 0xFFFF0000;
2865 /* Avoid gcc warning */
2873 static void dcr_write_crcpc (void *opaque, int dcrn, target_ulong val)
2875 ppc405cr_cpc_t *cpc;
2879 case PPC405CR_CPC0_PLLMR:
2880 cpc->pllmr = val & 0xFFF77C3F;
2882 case PPC405CR_CPC0_CR0:
2883 cpc->cr0 = val & 0x0FFFFFFE;
2885 case PPC405CR_CPC0_CR1:
2886 cpc->cr1 = val & 0x00800000;
2888 case PPC405CR_CPC0_PSR:
2891 case PPC405CR_CPC0_JTAGID:
2894 case PPC405CR_CPC0_ER:
2895 cpc->er = val & 0xBFFC0000;
2897 case PPC405CR_CPC0_FR:
2898 cpc->fr = val & 0xBFFC0000;
2900 case PPC405CR_CPC0_SR:
2906 static void ppc405cr_cpc_reset (void *opaque)
2908 ppc405cr_cpc_t *cpc;
2912 /* Compute PLLMR value from PSR settings */
2913 cpc->pllmr = 0x80000000;
2915 switch ((cpc->psr >> 30) & 3) {
2918 cpc->pllmr &= ~0x80000000;
2922 cpc->pllmr |= 5 << 16;
2926 cpc->pllmr |= 4 << 16;
2930 cpc->pllmr |= 2 << 16;
2934 D = (cpc->psr >> 28) & 3;
2935 cpc->pllmr |= (D + 1) << 20;
2937 D = (cpc->psr >> 25) & 7;
2952 D = (cpc->psr >> 23) & 3;
2953 cpc->pllmr |= D << 26;
2955 D = (cpc->psr >> 21) & 3;
2956 cpc->pllmr |= D << 10;
2958 D = (cpc->psr >> 17) & 3;
2959 cpc->pllmr |= D << 24;
2960 cpc->cr0 = 0x0000003C;
2961 cpc->cr1 = 0x2B0D8800;
2962 cpc->er = 0x00000000;
2963 cpc->fr = 0x00000000;
2964 ppc405cr_clk_setup(cpc);
2967 static void ppc405cr_clk_init (ppc405cr_cpc_t *cpc)
2971 /* XXX: this should be read from IO pins */
2972 cpc->psr = 0x00000000; /* 8 bits ROM */
2974 D = 0x2; /* Divide by 4 */
2975 cpc->psr |= D << 30;
2977 D = 0x1; /* Divide by 2 */
2978 cpc->psr |= D << 28;
2980 D = 0x1; /* Divide by 2 */
2981 cpc->psr |= D << 23;
2983 D = 0x5; /* M = 16 */
2984 cpc->psr |= D << 25;
2986 D = 0x1; /* Divide by 2 */
2987 cpc->psr |= D << 21;
2989 D = 0x2; /* Divide by 4 */
2990 cpc->psr |= D << 17;
2993 static void ppc405cr_cpc_init (CPUState *env, clk_setup_t clk_setup[7],
2996 ppc405cr_cpc_t *cpc;
2998 cpc = qemu_mallocz(sizeof(ppc405cr_cpc_t));
3000 memcpy(cpc->clk_setup, clk_setup,
3001 PPC405CR_CLK_NB * sizeof(clk_setup_t));
3002 cpc->sysclk = sysclk;
3003 cpc->jtagid = 0x42051049;
3004 ppc_dcr_register(env, PPC405CR_CPC0_PSR, cpc,
3005 &dcr_read_crcpc, &dcr_write_crcpc);
3006 ppc_dcr_register(env, PPC405CR_CPC0_CR0, cpc,
3007 &dcr_read_crcpc, &dcr_write_crcpc);
3008 ppc_dcr_register(env, PPC405CR_CPC0_CR1, cpc,
3009 &dcr_read_crcpc, &dcr_write_crcpc);
3010 ppc_dcr_register(env, PPC405CR_CPC0_JTAGID, cpc,
3011 &dcr_read_crcpc, &dcr_write_crcpc);
3012 ppc_dcr_register(env, PPC405CR_CPC0_PLLMR, cpc,
3013 &dcr_read_crcpc, &dcr_write_crcpc);
3014 ppc_dcr_register(env, PPC405CR_CPC0_ER, cpc,
3015 &dcr_read_crcpc, &dcr_write_crcpc);
3016 ppc_dcr_register(env, PPC405CR_CPC0_FR, cpc,
3017 &dcr_read_crcpc, &dcr_write_crcpc);
3018 ppc_dcr_register(env, PPC405CR_CPC0_SR, cpc,
3019 &dcr_read_crcpc, &dcr_write_crcpc);
3020 ppc405cr_clk_init(cpc);
3021 qemu_register_reset(ppc405cr_cpc_reset, cpc);
3022 ppc405cr_cpc_reset(cpc);
3026 CPUState *ppc405cr_init (target_phys_addr_t ram_bases[4],
3027 target_phys_addr_t ram_sizes[4],
3028 uint32_t sysclk, qemu_irq **picp,
3029 ram_addr_t *offsetp, int do_init)
3031 clk_setup_t clk_setup[PPC405CR_CLK_NB];
3032 qemu_irq dma_irqs[4];
3034 ppc4xx_mmio_t *mmio;
3035 qemu_irq *pic, *irqs;
3039 memset(clk_setup, 0, sizeof(clk_setup));
3040 env = ppc405_init("405cr", &clk_setup[PPC405CR_CPU_CLK],
3041 &clk_setup[PPC405CR_TMR_CLK], sysclk);
3042 /* Memory mapped devices registers */
3043 mmio = ppc4xx_mmio_init(env, 0xEF600000);
3045 ppc4xx_plb_init(env);
3046 /* PLB to OPB bridge */
3047 ppc4xx_pob_init(env);
3049 ppc4xx_opba_init(env, mmio, 0x600);
3050 /* Universal interrupt controller */
3051 irqs = qemu_mallocz(sizeof(qemu_irq) * PPCUIC_OUTPUT_NB);
3052 irqs[PPCUIC_OUTPUT_INT] =
3053 ((qemu_irq *)env->irq_inputs)[PPC405_INPUT_INT];
3054 irqs[PPCUIC_OUTPUT_CINT] =
3055 ((qemu_irq *)env->irq_inputs)[PPC405_INPUT_CINT];
3056 pic = ppcuic_init(env, irqs, 0x0C0, 0, 1);
3058 /* SDRAM controller */
3059 ppc405_sdram_init(env, pic[14], 1, ram_bases, ram_sizes, do_init);
3061 for (i = 0; i < 4; i++)
3062 offset += ram_sizes[i];
3063 /* External bus controller */
3064 ppc405_ebc_init(env);
3065 /* DMA controller */
3066 dma_irqs[0] = pic[26];
3067 dma_irqs[1] = pic[25];
3068 dma_irqs[2] = pic[24];
3069 dma_irqs[3] = pic[23];
3070 ppc405_dma_init(env, dma_irqs);
3072 if (serial_hds[0] != NULL) {
3073 ppc405_serial_init(env, mmio, 0x300, pic[31], serial_hds[0]);
3075 if (serial_hds[1] != NULL) {
3076 ppc405_serial_init(env, mmio, 0x400, pic[30], serial_hds[1]);
3078 /* IIC controller */
3079 ppc405_i2c_init(env, mmio, 0x500, pic[29]);
3081 ppc405_gpio_init(env, mmio, 0x700);
3083 ppc405cr_cpc_init(env, clk_setup, sysclk);
3089 /*****************************************************************************/
3093 PPC405EP_CPC0_PLLMR0 = 0x0F0,
3094 PPC405EP_CPC0_BOOT = 0x0F1,
3095 PPC405EP_CPC0_EPCTL = 0x0F3,
3096 PPC405EP_CPC0_PLLMR1 = 0x0F4,
3097 PPC405EP_CPC0_UCR = 0x0F5,
3098 PPC405EP_CPC0_SRR = 0x0F6,
3099 PPC405EP_CPC0_JTAGID = 0x0F7,
3100 PPC405EP_CPC0_PCI = 0x0F9,
3102 PPC405EP_CPC0_ER = xxx,
3103 PPC405EP_CPC0_FR = xxx,
3104 PPC405EP_CPC0_SR = xxx,
3109 PPC405EP_CPU_CLK = 0,
3110 PPC405EP_PLB_CLK = 1,
3111 PPC405EP_OPB_CLK = 2,
3112 PPC405EP_EBC_CLK = 3,
3113 PPC405EP_MAL_CLK = 4,
3114 PPC405EP_PCI_CLK = 5,
3115 PPC405EP_UART0_CLK = 6,
3116 PPC405EP_UART1_CLK = 7,
3117 PPC405EP_CLK_NB = 8,
3120 typedef struct ppc405ep_cpc_t ppc405ep_cpc_t;
3121 struct ppc405ep_cpc_t {
3123 clk_setup_t clk_setup[PPC405EP_CLK_NB];
3131 /* Clock and power management */
3137 static void ppc405ep_compute_clocks (ppc405ep_cpc_t *cpc)
3139 uint32_t CPU_clk, PLB_clk, OPB_clk, EBC_clk, MAL_clk, PCI_clk;
3140 uint32_t UART0_clk, UART1_clk;
3141 uint64_t VCO_out, PLL_out;
3145 if ((cpc->pllmr[1] & 0x80000000) && !(cpc->pllmr[1] & 0x40000000)) {
3146 M = (((cpc->pllmr[1] >> 20) - 1) & 0xF) + 1; /* FBMUL */
3147 // printf("FBMUL %01x %d\n", (cpc->pllmr[1] >> 20) & 0xF, M);
3148 D = 8 - ((cpc->pllmr[1] >> 16) & 0x7); /* FWDA */
3149 // printf("FWDA %01x %d\n", (cpc->pllmr[1] >> 16) & 0x7, D);
3150 VCO_out = cpc->sysclk * M * D;
3151 if (VCO_out < 500000000UL || VCO_out > 1000000000UL) {
3152 /* Error - unlock the PLL */
3153 printf("VCO out of range %" PRIu64 "\n", VCO_out);
3155 cpc->pllmr[1] &= ~0x80000000;
3159 PLL_out = VCO_out / D;
3160 /* Pretend the PLL is locked */
3161 cpc->boot |= 0x00000001;
3166 PLL_out = cpc->sysclk;
3167 if (cpc->pllmr[1] & 0x40000000) {
3168 /* Pretend the PLL is not locked */
3169 cpc->boot &= ~0x00000001;
3172 /* Now, compute all other clocks */
3173 D = ((cpc->pllmr[0] >> 20) & 0x3) + 1; /* CCDV */
3175 // printf("CCDV %01x %d\n", (cpc->pllmr[0] >> 20) & 0x3, D);
3177 CPU_clk = PLL_out / D;
3178 D = ((cpc->pllmr[0] >> 16) & 0x3) + 1; /* CBDV */
3180 // printf("CBDV %01x %d\n", (cpc->pllmr[0] >> 16) & 0x3, D);
3182 PLB_clk = CPU_clk / D;
3183 D = ((cpc->pllmr[0] >> 12) & 0x3) + 1; /* OPDV */
3185 // printf("OPDV %01x %d\n", (cpc->pllmr[0] >> 12) & 0x3, D);
3187 OPB_clk = PLB_clk / D;
3188 D = ((cpc->pllmr[0] >> 8) & 0x3) + 2; /* EPDV */
3190 // printf("EPDV %01x %d\n", (cpc->pllmr[0] >> 8) & 0x3, D);
3192 EBC_clk = PLB_clk / D;
3193 D = ((cpc->pllmr[0] >> 4) & 0x3) + 1; /* MPDV */
3195 // printf("MPDV %01x %d\n", (cpc->pllmr[0] >> 4) & 0x3, D);
3197 MAL_clk = PLB_clk / D;
3198 D = (cpc->pllmr[0] & 0x3) + 1; /* PPDV */
3200 // printf("PPDV %01x %d\n", cpc->pllmr[0] & 0x3, D);
3202 PCI_clk = PLB_clk / D;
3203 D = ((cpc->ucr - 1) & 0x7F) + 1; /* U0DIV */
3205 // printf("U0DIV %01x %d\n", cpc->ucr & 0x7F, D);
3207 UART0_clk = PLL_out / D;
3208 D = (((cpc->ucr >> 8) - 1) & 0x7F) + 1; /* U1DIV */
3210 // printf("U1DIV %01x %d\n", (cpc->ucr >> 8) & 0x7F, D);
3212 UART1_clk = PLL_out / D;
3214 printf("Setup PPC405EP clocks - sysclk %d VCO %" PRIu64
3215 " PLL out %" PRIu64 " Hz\n", cpc->sysclk, VCO_out, PLL_out);
3216 printf("CPU %d PLB %d OPB %d EBC %d MAL %d PCI %d UART0 %d UART1 %d\n",
3217 CPU_clk, PLB_clk, OPB_clk, EBC_clk, MAL_clk, PCI_clk,
3218 UART0_clk, UART1_clk);
3219 printf("CB %p opaque %p\n", cpc->clk_setup[PPC405EP_CPU_CLK].cb,
3220 cpc->clk_setup[PPC405EP_CPU_CLK].opaque);
3222 /* Setup CPU clocks */
3223 clk_setup(&cpc->clk_setup[PPC405EP_CPU_CLK], CPU_clk);
3224 /* Setup PLB clock */
3225 clk_setup(&cpc->clk_setup[PPC405EP_PLB_CLK], PLB_clk);
3226 /* Setup OPB clock */
3227 clk_setup(&cpc->clk_setup[PPC405EP_OPB_CLK], OPB_clk);
3228 /* Setup external clock */
3229 clk_setup(&cpc->clk_setup[PPC405EP_EBC_CLK], EBC_clk);
3230 /* Setup MAL clock */
3231 clk_setup(&cpc->clk_setup[PPC405EP_MAL_CLK], MAL_clk);
3232 /* Setup PCI clock */
3233 clk_setup(&cpc->clk_setup[PPC405EP_PCI_CLK], PCI_clk);
3234 /* Setup UART0 clock */
3235 clk_setup(&cpc->clk_setup[PPC405EP_UART0_CLK], UART0_clk);
3236 /* Setup UART1 clock */
3237 clk_setup(&cpc->clk_setup[PPC405EP_UART1_CLK], UART1_clk);
3240 static target_ulong dcr_read_epcpc (void *opaque, int dcrn)
3242 ppc405ep_cpc_t *cpc;
3247 case PPC405EP_CPC0_BOOT:
3250 case PPC405EP_CPC0_EPCTL:
3253 case PPC405EP_CPC0_PLLMR0:
3254 ret = cpc->pllmr[0];
3256 case PPC405EP_CPC0_PLLMR1:
3257 ret = cpc->pllmr[1];
3259 case PPC405EP_CPC0_UCR:
3262 case PPC405EP_CPC0_SRR:
3265 case PPC405EP_CPC0_JTAGID:
3268 case PPC405EP_CPC0_PCI:
3272 /* Avoid gcc warning */
3280 static void dcr_write_epcpc (void *opaque, int dcrn, target_ulong val)
3282 ppc405ep_cpc_t *cpc;
3286 case PPC405EP_CPC0_BOOT:
3287 /* Read-only register */
3289 case PPC405EP_CPC0_EPCTL:
3290 /* Don't care for now */
3291 cpc->epctl = val & 0xC00000F3;
3293 case PPC405EP_CPC0_PLLMR0:
3294 cpc->pllmr[0] = val & 0x00633333;
3295 ppc405ep_compute_clocks(cpc);
3297 case PPC405EP_CPC0_PLLMR1:
3298 cpc->pllmr[1] = val & 0xC0F73FFF;
3299 ppc405ep_compute_clocks(cpc);
3301 case PPC405EP_CPC0_UCR:
3302 /* UART control - don't care for now */
3303 cpc->ucr = val & 0x003F7F7F;
3305 case PPC405EP_CPC0_SRR:
3308 case PPC405EP_CPC0_JTAGID:
3311 case PPC405EP_CPC0_PCI:
3317 static void ppc405ep_cpc_reset (void *opaque)
3319 ppc405ep_cpc_t *cpc = opaque;
3321 cpc->boot = 0x00000010; /* Boot from PCI - IIC EEPROM disabled */
3322 cpc->epctl = 0x00000000;
3323 cpc->pllmr[0] = 0x00011010;
3324 cpc->pllmr[1] = 0x40000000;
3325 cpc->ucr = 0x00000000;
3326 cpc->srr = 0x00040000;
3327 cpc->pci = 0x00000000;
3328 cpc->er = 0x00000000;
3329 cpc->fr = 0x00000000;
3330 cpc->sr = 0x00000000;
3331 ppc405ep_compute_clocks(cpc);
3334 /* XXX: sysclk should be between 25 and 100 MHz */
3335 static void ppc405ep_cpc_init (CPUState *env, clk_setup_t clk_setup[8],
3338 ppc405ep_cpc_t *cpc;
3340 cpc = qemu_mallocz(sizeof(ppc405ep_cpc_t));
3342 memcpy(cpc->clk_setup, clk_setup,
3343 PPC405EP_CLK_NB * sizeof(clk_setup_t));
3344 cpc->jtagid = 0x20267049;
3345 cpc->sysclk = sysclk;
3346 ppc405ep_cpc_reset(cpc);
3347 qemu_register_reset(&ppc405ep_cpc_reset, cpc);
3348 ppc_dcr_register(env, PPC405EP_CPC0_BOOT, cpc,
3349 &dcr_read_epcpc, &dcr_write_epcpc);
3350 ppc_dcr_register(env, PPC405EP_CPC0_EPCTL, cpc,
3351 &dcr_read_epcpc, &dcr_write_epcpc);
3352 ppc_dcr_register(env, PPC405EP_CPC0_PLLMR0, cpc,
3353 &dcr_read_epcpc, &dcr_write_epcpc);
3354 ppc_dcr_register(env, PPC405EP_CPC0_PLLMR1, cpc,
3355 &dcr_read_epcpc, &dcr_write_epcpc);
3356 ppc_dcr_register(env, PPC405EP_CPC0_UCR, cpc,
3357 &dcr_read_epcpc, &dcr_write_epcpc);
3358 ppc_dcr_register(env, PPC405EP_CPC0_SRR, cpc,
3359 &dcr_read_epcpc, &dcr_write_epcpc);
3360 ppc_dcr_register(env, PPC405EP_CPC0_JTAGID, cpc,
3361 &dcr_read_epcpc, &dcr_write_epcpc);
3362 ppc_dcr_register(env, PPC405EP_CPC0_PCI, cpc,
3363 &dcr_read_epcpc, &dcr_write_epcpc);
3365 ppc_dcr_register(env, PPC405EP_CPC0_ER, cpc,
3366 &dcr_read_epcpc, &dcr_write_epcpc);
3367 ppc_dcr_register(env, PPC405EP_CPC0_FR, cpc,
3368 &dcr_read_epcpc, &dcr_write_epcpc);
3369 ppc_dcr_register(env, PPC405EP_CPC0_SR, cpc,
3370 &dcr_read_epcpc, &dcr_write_epcpc);
3375 CPUState *ppc405ep_init (target_phys_addr_t ram_bases[2],
3376 target_phys_addr_t ram_sizes[2],
3377 uint32_t sysclk, qemu_irq **picp,
3378 ram_addr_t *offsetp, int do_init)
3380 clk_setup_t clk_setup[PPC405EP_CLK_NB], tlb_clk_setup;
3381 qemu_irq dma_irqs[4], gpt_irqs[5], mal_irqs[4];
3383 ppc4xx_mmio_t *mmio;
3384 qemu_irq *pic, *irqs;
3388 memset(clk_setup, 0, sizeof(clk_setup));
3390 env = ppc405_init("405ep", &clk_setup[PPC405EP_CPU_CLK],
3391 &tlb_clk_setup, sysclk);
3392 clk_setup[PPC405EP_CPU_CLK].cb = tlb_clk_setup.cb;
3393 clk_setup[PPC405EP_CPU_CLK].opaque = tlb_clk_setup.opaque;
3394 /* Internal devices init */
3395 /* Memory mapped devices registers */
3396 mmio = ppc4xx_mmio_init(env, 0xEF600000);
3398 ppc4xx_plb_init(env);
3399 /* PLB to OPB bridge */
3400 ppc4xx_pob_init(env);
3402 ppc4xx_opba_init(env, mmio, 0x600);
3403 /* Universal interrupt controller */
3404 irqs = qemu_mallocz(sizeof(qemu_irq) * PPCUIC_OUTPUT_NB);
3405 irqs[PPCUIC_OUTPUT_INT] =
3406 ((qemu_irq *)env->irq_inputs)[PPC405_INPUT_INT];
3407 irqs[PPCUIC_OUTPUT_CINT] =
3408 ((qemu_irq *)env->irq_inputs)[PPC405_INPUT_CINT];
3409 pic = ppcuic_init(env, irqs, 0x0C0, 0, 1);
3411 /* SDRAM controller */
3412 ppc405_sdram_init(env, pic[14], 2, ram_bases, ram_sizes, do_init);
3414 for (i = 0; i < 2; i++)
3415 offset += ram_sizes[i];
3416 /* External bus controller */
3417 ppc405_ebc_init(env);
3418 /* DMA controller */
3419 dma_irqs[0] = pic[26];
3420 dma_irqs[1] = pic[25];
3421 dma_irqs[2] = pic[24];
3422 dma_irqs[3] = pic[23];
3423 ppc405_dma_init(env, dma_irqs);
3424 /* IIC controller */
3425 ppc405_i2c_init(env, mmio, 0x500, pic[29]);
3427 ppc405_gpio_init(env, mmio, 0x700);
3429 if (serial_hds[0] != NULL) {
3430 ppc405_serial_init(env, mmio, 0x300, pic[31], serial_hds[0]);
3432 if (serial_hds[1] != NULL) {
3433 ppc405_serial_init(env, mmio, 0x400, pic[30], serial_hds[1]);
3436 ppc405_ocm_init(env, ram_sizes[0] + ram_sizes[1]);
3439 gpt_irqs[0] = pic[12];
3440 gpt_irqs[1] = pic[11];
3441 gpt_irqs[2] = pic[10];
3442 gpt_irqs[3] = pic[9];
3443 gpt_irqs[4] = pic[8];
3444 ppc4xx_gpt_init(env, mmio, 0x000, gpt_irqs);
3446 /* Uses pic[28], pic[15], pic[13] */
3448 mal_irqs[0] = pic[20];
3449 mal_irqs[1] = pic[19];
3450 mal_irqs[2] = pic[18];
3451 mal_irqs[3] = pic[17];
3452 ppc405_mal_init(env, mal_irqs);
3454 /* Uses pic[22], pic[16], pic[14] */
3456 ppc405ep_cpc_init(env, clk_setup, sysclk);
projects / qemu / blob