2 * QEMU Malta board support
4 * Copyright (c) 2006 Aurelien Jarno
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
34 #include "mips_cpudevs.h"
37 #include "vmware_vga.h"
38 #include "qemu-char.h"
40 #include "arch_init.h"
43 #include "mips-bios.h"
47 #include "mc146818rtc.h"
49 #include "exec-memory.h"
51 //#define DEBUG_BOARD_INIT
53 #define ENVP_ADDR 0x80002000l
54 #define ENVP_NB_ENTRIES 16
55 #define ENVP_ENTRY_SIZE 256
61 MemoryRegion iomem_lo; /* 0 - 0x900 */
62 MemoryRegion iomem_hi; /* 0xa00 - 0x100000 */
70 CharDriverState *display;
75 static ISADevice *pit;
77 static struct _loaderparams {
79 const char *kernel_filename;
80 const char *kernel_cmdline;
81 const char *initrd_filename;
85 static void malta_fpga_update_display(void *opaque)
89 MaltaFPGAState *s = opaque;
91 for (i = 7 ; i >= 0 ; i--) {
92 if (s->leds & (1 << i))
99 qemu_chr_fe_printf(s->display, "\e[H\n\n|\e[32m%-8.8s\e[00m|\r\n", leds_text);
100 qemu_chr_fe_printf(s->display, "\n\n\n\n|\e[31m%-8.8s\e[00m|", s->display_text);
104 * EEPROM 24C01 / 24C02 emulation.
106 * Emulation for serial EEPROMs:
107 * 24C01 - 1024 bit (128 x 8)
108 * 24C02 - 2048 bit (256 x 8)
110 * Typical device names include Microchip 24C02SC or SGS Thomson ST24C02.
116 # define logout(fmt, ...) fprintf(stderr, "MALTA\t%-24s" fmt, __func__, ## __VA_ARGS__)
118 # define logout(fmt, ...) ((void)0)
121 struct _eeprom24c0x_t {
130 uint8_t contents[256];
133 typedef struct _eeprom24c0x_t eeprom24c0x_t;
135 static eeprom24c0x_t eeprom = {
137 /* 00000000: */ 0x80,0x08,0x04,0x0D,0x0A,0x01,0x40,0x00,
138 /* 00000008: */ 0x01,0x75,0x54,0x00,0x82,0x08,0x00,0x01,
139 /* 00000010: */ 0x8F,0x04,0x02,0x01,0x01,0x00,0x0E,0x00,
140 /* 00000018: */ 0x00,0x00,0x00,0x14,0x0F,0x14,0x2D,0x40,
141 /* 00000020: */ 0x15,0x08,0x15,0x08,0x00,0x00,0x00,0x00,
142 /* 00000028: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
143 /* 00000030: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
144 /* 00000038: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x12,0xD0,
145 /* 00000040: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
146 /* 00000048: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
147 /* 00000050: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
148 /* 00000058: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
149 /* 00000060: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
150 /* 00000068: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
151 /* 00000070: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
152 /* 00000078: */ 0x00,0x00,0x00,0x00,0x00,0x00,0x64,0xF4,
156 static uint8_t eeprom24c0x_read(void)
158 logout("%u: scl = %u, sda = %u, data = 0x%02x\n",
159 eeprom.tick, eeprom.scl, eeprom.sda, eeprom.data);
163 static void eeprom24c0x_write(int scl, int sda)
165 if (eeprom.scl && scl && (eeprom.sda != sda)) {
166 logout("%u: scl = %u->%u, sda = %u->%u i2c %s\n",
167 eeprom.tick, eeprom.scl, scl, eeprom.sda, sda, sda ? "stop" : "start");
172 } else if (eeprom.tick == 0 && !eeprom.ack) {
173 /* Waiting for start. */
174 logout("%u: scl = %u->%u, sda = %u->%u wait for i2c start\n",
175 eeprom.tick, eeprom.scl, scl, eeprom.sda, sda);
176 } else if (!eeprom.scl && scl) {
177 logout("%u: scl = %u->%u, sda = %u->%u trigger bit\n",
178 eeprom.tick, eeprom.scl, scl, eeprom.sda, sda);
180 logout("\ti2c ack bit = 0\n");
183 } else if (eeprom.sda == sda) {
184 uint8_t bit = (sda != 0);
185 logout("\ti2c bit = %d\n", bit);
186 if (eeprom.tick < 9) {
187 eeprom.command <<= 1;
188 eeprom.command += bit;
190 if (eeprom.tick == 9) {
191 logout("\tcommand 0x%04x, %s\n", eeprom.command, bit ? "read" : "write");
194 } else if (eeprom.tick < 17) {
195 if (eeprom.command & 1) {
196 sda = ((eeprom.data & 0x80) != 0);
198 eeprom.address <<= 1;
199 eeprom.address += bit;
202 if (eeprom.tick == 17) {
203 eeprom.data = eeprom.contents[eeprom.address];
204 logout("\taddress 0x%04x, data 0x%02x\n", eeprom.address, eeprom.data);
208 } else if (eeprom.tick >= 17) {
212 logout("\tsda changed with raising scl\n");
215 logout("%u: scl = %u->%u, sda = %u->%u\n", eeprom.tick, eeprom.scl, scl, eeprom.sda, sda);
221 static uint64_t malta_fpga_read(void *opaque, target_phys_addr_t addr,
224 MaltaFPGAState *s = opaque;
228 saddr = (addr & 0xfffff);
232 /* SWITCH Register */
234 val = 0x00000000; /* All switches closed */
237 /* STATUS Register */
239 #ifdef TARGET_WORDS_BIGENDIAN
251 /* LEDBAR Register */
256 /* BRKRES Register */
261 /* UART Registers are handled directly by the serial device */
268 /* XXX: implement a real I2C controller */
272 /* IN = OUT until a real I2C control is implemented */
279 /* I2CINP Register */
281 val = ((s->i2cin & ~1) | eeprom24c0x_read());
289 /* I2COUT Register */
294 /* I2CSEL Register */
301 printf ("malta_fpga_read: Bad register offset 0x" TARGET_FMT_lx "\n",
309 static void malta_fpga_write(void *opaque, target_phys_addr_t addr,
310 uint64_t val, unsigned size)
312 MaltaFPGAState *s = opaque;
315 saddr = (addr & 0xfffff);
319 /* SWITCH Register */
327 /* LEDBAR Register */
328 /* XXX: implement a 8-LED array */
330 s->leds = val & 0xff;
333 /* ASCIIWORD Register */
335 snprintf(s->display_text, 9, "%08X", (uint32_t)val);
336 malta_fpga_update_display(s);
339 /* ASCIIPOS0 to ASCIIPOS7 Registers */
348 s->display_text[(saddr - 0x00418) >> 3] = (char) val;
349 malta_fpga_update_display(s);
352 /* SOFTRES Register */
355 qemu_system_reset_request ();
358 /* BRKRES Register */
363 /* UART Registers are handled directly by the serial device */
367 s->gpout = val & 0xff;
372 s->i2coe = val & 0x03;
375 /* I2COUT Register */
377 eeprom24c0x_write(val & 0x02, val & 0x01);
381 /* I2CSEL Register */
383 s->i2csel = val & 0x01;
388 printf ("malta_fpga_write: Bad register offset 0x" TARGET_FMT_lx "\n",
395 static const MemoryRegionOps malta_fpga_ops = {
396 .read = malta_fpga_read,
397 .write = malta_fpga_write,
398 .endianness = DEVICE_NATIVE_ENDIAN,
401 static void malta_fpga_reset(void *opaque)
403 MaltaFPGAState *s = opaque;
413 s->display_text[8] = '\0';
414 snprintf(s->display_text, 9, " ");
417 static void malta_fpga_led_init(CharDriverState *chr)
419 qemu_chr_fe_printf(chr, "\e[HMalta LEDBAR\r\n");
420 qemu_chr_fe_printf(chr, "+--------+\r\n");
421 qemu_chr_fe_printf(chr, "+ +\r\n");
422 qemu_chr_fe_printf(chr, "+--------+\r\n");
423 qemu_chr_fe_printf(chr, "\n");
424 qemu_chr_fe_printf(chr, "Malta ASCII\r\n");
425 qemu_chr_fe_printf(chr, "+--------+\r\n");
426 qemu_chr_fe_printf(chr, "+ +\r\n");
427 qemu_chr_fe_printf(chr, "+--------+\r\n");
430 static MaltaFPGAState *malta_fpga_init(MemoryRegion *address_space,
431 target_phys_addr_t base, qemu_irq uart_irq, CharDriverState *uart_chr)
435 s = (MaltaFPGAState *)g_malloc0(sizeof(MaltaFPGAState));
437 memory_region_init_io(&s->iomem, &malta_fpga_ops, s,
438 "malta-fpga", 0x100000);
439 memory_region_init_alias(&s->iomem_lo, "malta-fpga",
440 &s->iomem, 0, 0x900);
441 memory_region_init_alias(&s->iomem_hi, "malta-fpga",
442 &s->iomem, 0xa00, 0x10000-0xa00);
444 memory_region_add_subregion(address_space, base, &s->iomem_lo);
445 memory_region_add_subregion(address_space, base + 0xa00, &s->iomem_hi);
447 s->display = qemu_chr_new("fpga", "vc:320x200", malta_fpga_led_init);
449 s->uart = serial_mm_init(address_space, base + 0x900, 3, uart_irq,
450 230400, uart_chr, DEVICE_NATIVE_ENDIAN);
453 qemu_register_reset(malta_fpga_reset, s);
458 /* Network support */
459 static void network_init(void)
463 for(i = 0; i < nb_nics; i++) {
464 NICInfo *nd = &nd_table[i];
465 const char *default_devaddr = NULL;
467 if (i == 0 && (!nd->model || strcmp(nd->model, "pcnet") == 0))
468 /* The malta board has a PCNet card using PCI SLOT 11 */
469 default_devaddr = "0b";
471 pci_nic_init_nofail(nd, "pcnet", default_devaddr);
475 /* ROM and pseudo bootloader
477 The following code implements a very very simple bootloader. It first
478 loads the registers a0 to a3 to the values expected by the OS, and
479 then jump at the kernel address.
481 The bootloader should pass the locations of the kernel arguments and
482 environment variables tables. Those tables contain the 32-bit address
483 of NULL terminated strings. The environment variables table should be
484 terminated by a NULL address.
486 For a simpler implementation, the number of kernel arguments is fixed
487 to two (the name of the kernel and the command line), and the two
488 tables are actually the same one.
490 The registers a0 to a3 should contain the following values:
491 a0 - number of kernel arguments
492 a1 - 32-bit address of the kernel arguments table
493 a2 - 32-bit address of the environment variables table
494 a3 - RAM size in bytes
497 static void write_bootloader (CPUState *env, uint8_t *base,
498 int64_t kernel_entry)
502 /* Small bootloader */
503 p = (uint32_t *)base;
504 stl_raw(p++, 0x0bf00160); /* j 0x1fc00580 */
505 stl_raw(p++, 0x00000000); /* nop */
507 /* YAMON service vector */
508 stl_raw(base + 0x500, 0xbfc00580); /* start: */
509 stl_raw(base + 0x504, 0xbfc0083c); /* print_count: */
510 stl_raw(base + 0x520, 0xbfc00580); /* start: */
511 stl_raw(base + 0x52c, 0xbfc00800); /* flush_cache: */
512 stl_raw(base + 0x534, 0xbfc00808); /* print: */
513 stl_raw(base + 0x538, 0xbfc00800); /* reg_cpu_isr: */
514 stl_raw(base + 0x53c, 0xbfc00800); /* unred_cpu_isr: */
515 stl_raw(base + 0x540, 0xbfc00800); /* reg_ic_isr: */
516 stl_raw(base + 0x544, 0xbfc00800); /* unred_ic_isr: */
517 stl_raw(base + 0x548, 0xbfc00800); /* reg_esr: */
518 stl_raw(base + 0x54c, 0xbfc00800); /* unreg_esr: */
519 stl_raw(base + 0x550, 0xbfc00800); /* getchar: */
520 stl_raw(base + 0x554, 0xbfc00800); /* syscon_read: */
523 /* Second part of the bootloader */
524 p = (uint32_t *) (base + 0x580);
525 stl_raw(p++, 0x24040002); /* addiu a0, zero, 2 */
526 stl_raw(p++, 0x3c1d0000 | (((ENVP_ADDR - 64) >> 16) & 0xffff)); /* lui sp, high(ENVP_ADDR) */
527 stl_raw(p++, 0x37bd0000 | ((ENVP_ADDR - 64) & 0xffff)); /* ori sp, sp, low(ENVP_ADDR) */
528 stl_raw(p++, 0x3c050000 | ((ENVP_ADDR >> 16) & 0xffff)); /* lui a1, high(ENVP_ADDR) */
529 stl_raw(p++, 0x34a50000 | (ENVP_ADDR & 0xffff)); /* ori a1, a1, low(ENVP_ADDR) */
530 stl_raw(p++, 0x3c060000 | (((ENVP_ADDR + 8) >> 16) & 0xffff)); /* lui a2, high(ENVP_ADDR + 8) */
531 stl_raw(p++, 0x34c60000 | ((ENVP_ADDR + 8) & 0xffff)); /* ori a2, a2, low(ENVP_ADDR + 8) */
532 stl_raw(p++, 0x3c070000 | (loaderparams.ram_size >> 16)); /* lui a3, high(ram_size) */
533 stl_raw(p++, 0x34e70000 | (loaderparams.ram_size & 0xffff)); /* ori a3, a3, low(ram_size) */
535 /* Load BAR registers as done by YAMON */
536 stl_raw(p++, 0x3c09b400); /* lui t1, 0xb400 */
538 #ifdef TARGET_WORDS_BIGENDIAN
539 stl_raw(p++, 0x3c08df00); /* lui t0, 0xdf00 */
541 stl_raw(p++, 0x340800df); /* ori t0, r0, 0x00df */
543 stl_raw(p++, 0xad280068); /* sw t0, 0x0068(t1) */
545 stl_raw(p++, 0x3c09bbe0); /* lui t1, 0xbbe0 */
547 #ifdef TARGET_WORDS_BIGENDIAN
548 stl_raw(p++, 0x3c08c000); /* lui t0, 0xc000 */
550 stl_raw(p++, 0x340800c0); /* ori t0, r0, 0x00c0 */
552 stl_raw(p++, 0xad280048); /* sw t0, 0x0048(t1) */
553 #ifdef TARGET_WORDS_BIGENDIAN
554 stl_raw(p++, 0x3c084000); /* lui t0, 0x4000 */
556 stl_raw(p++, 0x34080040); /* ori t0, r0, 0x0040 */
558 stl_raw(p++, 0xad280050); /* sw t0, 0x0050(t1) */
560 #ifdef TARGET_WORDS_BIGENDIAN
561 stl_raw(p++, 0x3c088000); /* lui t0, 0x8000 */
563 stl_raw(p++, 0x34080080); /* ori t0, r0, 0x0080 */
565 stl_raw(p++, 0xad280058); /* sw t0, 0x0058(t1) */
566 #ifdef TARGET_WORDS_BIGENDIAN
567 stl_raw(p++, 0x3c083f00); /* lui t0, 0x3f00 */
569 stl_raw(p++, 0x3408003f); /* ori t0, r0, 0x003f */
571 stl_raw(p++, 0xad280060); /* sw t0, 0x0060(t1) */
573 #ifdef TARGET_WORDS_BIGENDIAN
574 stl_raw(p++, 0x3c08c100); /* lui t0, 0xc100 */
576 stl_raw(p++, 0x340800c1); /* ori t0, r0, 0x00c1 */
578 stl_raw(p++, 0xad280080); /* sw t0, 0x0080(t1) */
579 #ifdef TARGET_WORDS_BIGENDIAN
580 stl_raw(p++, 0x3c085e00); /* lui t0, 0x5e00 */
582 stl_raw(p++, 0x3408005e); /* ori t0, r0, 0x005e */
584 stl_raw(p++, 0xad280088); /* sw t0, 0x0088(t1) */
586 /* Jump to kernel code */
587 stl_raw(p++, 0x3c1f0000 | ((kernel_entry >> 16) & 0xffff)); /* lui ra, high(kernel_entry) */
588 stl_raw(p++, 0x37ff0000 | (kernel_entry & 0xffff)); /* ori ra, ra, low(kernel_entry) */
589 stl_raw(p++, 0x03e00008); /* jr ra */
590 stl_raw(p++, 0x00000000); /* nop */
592 /* YAMON subroutines */
593 p = (uint32_t *) (base + 0x800);
594 stl_raw(p++, 0x03e00008); /* jr ra */
595 stl_raw(p++, 0x24020000); /* li v0,0 */
596 /* 808 YAMON print */
597 stl_raw(p++, 0x03e06821); /* move t5,ra */
598 stl_raw(p++, 0x00805821); /* move t3,a0 */
599 stl_raw(p++, 0x00a05021); /* move t2,a1 */
600 stl_raw(p++, 0x91440000); /* lbu a0,0(t2) */
601 stl_raw(p++, 0x254a0001); /* addiu t2,t2,1 */
602 stl_raw(p++, 0x10800005); /* beqz a0,834 */
603 stl_raw(p++, 0x00000000); /* nop */
604 stl_raw(p++, 0x0ff0021c); /* jal 870 */
605 stl_raw(p++, 0x00000000); /* nop */
606 stl_raw(p++, 0x08000205); /* j 814 */
607 stl_raw(p++, 0x00000000); /* nop */
608 stl_raw(p++, 0x01a00008); /* jr t5 */
609 stl_raw(p++, 0x01602021); /* move a0,t3 */
610 /* 0x83c YAMON print_count */
611 stl_raw(p++, 0x03e06821); /* move t5,ra */
612 stl_raw(p++, 0x00805821); /* move t3,a0 */
613 stl_raw(p++, 0x00a05021); /* move t2,a1 */
614 stl_raw(p++, 0x00c06021); /* move t4,a2 */
615 stl_raw(p++, 0x91440000); /* lbu a0,0(t2) */
616 stl_raw(p++, 0x0ff0021c); /* jal 870 */
617 stl_raw(p++, 0x00000000); /* nop */
618 stl_raw(p++, 0x254a0001); /* addiu t2,t2,1 */
619 stl_raw(p++, 0x258cffff); /* addiu t4,t4,-1 */
620 stl_raw(p++, 0x1580fffa); /* bnez t4,84c */
621 stl_raw(p++, 0x00000000); /* nop */
622 stl_raw(p++, 0x01a00008); /* jr t5 */
623 stl_raw(p++, 0x01602021); /* move a0,t3 */
625 stl_raw(p++, 0x3c08b800); /* lui t0,0xb400 */
626 stl_raw(p++, 0x350803f8); /* ori t0,t0,0x3f8 */
627 stl_raw(p++, 0x91090005); /* lbu t1,5(t0) */
628 stl_raw(p++, 0x00000000); /* nop */
629 stl_raw(p++, 0x31290040); /* andi t1,t1,0x40 */
630 stl_raw(p++, 0x1120fffc); /* beqz t1,878 <outch+0x8> */
631 stl_raw(p++, 0x00000000); /* nop */
632 stl_raw(p++, 0x03e00008); /* jr ra */
633 stl_raw(p++, 0xa1040000); /* sb a0,0(t0) */
637 static void GCC_FMT_ATTR(3, 4) prom_set(uint32_t* prom_buf, int index,
638 const char *string, ...)
643 if (index >= ENVP_NB_ENTRIES)
646 if (string == NULL) {
651 table_addr = sizeof(int32_t) * ENVP_NB_ENTRIES + index * ENVP_ENTRY_SIZE;
652 prom_buf[index] = tswap32(ENVP_ADDR + table_addr);
654 va_start(ap, string);
655 vsnprintf((char *)prom_buf + table_addr, ENVP_ENTRY_SIZE, string, ap);
660 static int64_t load_kernel (void)
662 int64_t kernel_entry, kernel_high;
664 ram_addr_t initrd_offset;
670 #ifdef TARGET_WORDS_BIGENDIAN
676 if (load_elf(loaderparams.kernel_filename, cpu_mips_kseg0_to_phys, NULL,
677 (uint64_t *)&kernel_entry, NULL, (uint64_t *)&kernel_high,
678 big_endian, ELF_MACHINE, 1) < 0) {
679 fprintf(stderr, "qemu: could not load kernel '%s'\n",
680 loaderparams.kernel_filename);
687 if (loaderparams.initrd_filename) {
688 initrd_size = get_image_size (loaderparams.initrd_filename);
689 if (initrd_size > 0) {
690 initrd_offset = (kernel_high + ~TARGET_PAGE_MASK) & TARGET_PAGE_MASK;
691 if (initrd_offset + initrd_size > ram_size) {
693 "qemu: memory too small for initial ram disk '%s'\n",
694 loaderparams.initrd_filename);
697 initrd_size = load_image_targphys(loaderparams.initrd_filename,
699 ram_size - initrd_offset);
701 if (initrd_size == (target_ulong) -1) {
702 fprintf(stderr, "qemu: could not load initial ram disk '%s'\n",
703 loaderparams.initrd_filename);
708 /* Setup prom parameters. */
709 prom_size = ENVP_NB_ENTRIES * (sizeof(int32_t) + ENVP_ENTRY_SIZE);
710 prom_buf = g_malloc(prom_size);
712 prom_set(prom_buf, prom_index++, "%s", loaderparams.kernel_filename);
713 if (initrd_size > 0) {
714 prom_set(prom_buf, prom_index++, "rd_start=0x%" PRIx64 " rd_size=%li %s",
715 cpu_mips_phys_to_kseg0(NULL, initrd_offset), initrd_size,
716 loaderparams.kernel_cmdline);
718 prom_set(prom_buf, prom_index++, "%s", loaderparams.kernel_cmdline);
721 prom_set(prom_buf, prom_index++, "memsize");
722 prom_set(prom_buf, prom_index++, "%i", loaderparams.ram_size);
723 prom_set(prom_buf, prom_index++, "modetty0");
724 prom_set(prom_buf, prom_index++, "38400n8r");
725 prom_set(prom_buf, prom_index++, NULL);
727 rom_add_blob_fixed("prom", prom_buf, prom_size,
728 cpu_mips_kseg0_to_phys(NULL, ENVP_ADDR));
733 static void malta_mips_config(CPUState *env)
735 env->mvp->CP0_MVPConf0 |= ((smp_cpus - 1) << CP0MVPC0_PVPE) |
736 ((smp_cpus * env->nr_threads - 1) << CP0MVPC0_PTC);
739 static void main_cpu_reset(void *opaque)
741 CPUState *env = opaque;
744 /* The bootloader does not need to be rewritten as it is located in a
745 read only location. The kernel location and the arguments table
746 location does not change. */
747 if (loaderparams.kernel_filename) {
748 env->CP0_Status &= ~((1 << CP0St_BEV) | (1 << CP0St_ERL));
751 malta_mips_config(env);
754 static void cpu_request_exit(void *opaque, int irq, int level)
756 CPUState *env = cpu_single_env;
764 void mips_malta_init (ram_addr_t ram_size,
765 const char *boot_device,
766 const char *kernel_filename, const char *kernel_cmdline,
767 const char *initrd_filename, const char *cpu_model)
771 MemoryRegion *system_memory = get_system_memory();
772 MemoryRegion *ram = g_new(MemoryRegion, 1);
773 MemoryRegion *bios, *bios_alias = g_new(MemoryRegion, 1);
774 target_long bios_size;
775 int64_t kernel_entry;
779 qemu_irq *i8259 = NULL, *isa_irq;
780 qemu_irq *cpu_exit_irq;
785 DriveInfo *hd[MAX_IDE_BUS * MAX_IDE_DEVS];
786 DriveInfo *fd[MAX_FD];
791 /* Make sure the first 3 serial ports are associated with a device. */
792 for(i = 0; i < 3; i++) {
793 if (!serial_hds[i]) {
795 snprintf(label, sizeof(label), "serial%d", i);
796 serial_hds[i] = qemu_chr_new(label, "null", NULL);
801 if (cpu_model == NULL) {
809 for (i = 0; i < smp_cpus; i++) {
810 env = cpu_init(cpu_model);
812 fprintf(stderr, "Unable to find CPU definition\n");
815 /* Init internal devices */
816 cpu_mips_irq_init_cpu(env);
817 cpu_mips_clock_init(env);
818 qemu_register_reset(main_cpu_reset, env);
823 if (ram_size > (256 << 20)) {
825 "qemu: Too much memory for this machine: %d MB, maximum 256 MB\n",
826 ((unsigned int)ram_size / (1 << 20)));
829 memory_region_init_ram(ram, NULL, "mips_malta.ram", ram_size);
830 memory_region_add_subregion(system_memory, 0, ram);
832 #ifdef TARGET_WORDS_BIGENDIAN
838 malta_fpga_init(system_memory, 0x1f000000LL, env->irq[2], serial_hds[2]);
840 /* Load firmware in flash / BIOS unless we boot directly into a kernel. */
841 if (kernel_filename) {
842 /* Write a small bootloader to the flash location. */
843 bios = g_new(MemoryRegion, 1);
844 memory_region_init_ram(bios, NULL, "mips_malta.bios", BIOS_SIZE);
845 memory_region_set_readonly(bios, true);
846 memory_region_init_alias(bios_alias, "bios.1fc", bios, 0, BIOS_SIZE);
847 /* Map the bios at two physical locations, as on the real board. */
848 memory_region_add_subregion(system_memory, 0x1e000000LL, bios);
849 memory_region_add_subregion(system_memory, 0x1fc00000LL, bios_alias);
850 loaderparams.ram_size = ram_size;
851 loaderparams.kernel_filename = kernel_filename;
852 loaderparams.kernel_cmdline = kernel_cmdline;
853 loaderparams.initrd_filename = initrd_filename;
854 kernel_entry = load_kernel();
855 write_bootloader(env, memory_region_get_ram_ptr(bios), kernel_entry);
857 dinfo = drive_get(IF_PFLASH, 0, fl_idx);
859 /* Load firmware from flash. */
860 bios_size = 0x400000;
861 fl_sectors = bios_size >> 16;
862 #ifdef DEBUG_BOARD_INIT
863 printf("Register parallel flash %d size " TARGET_FMT_lx " at "
864 "addr %08llx '%s' %x\n",
865 fl_idx, bios_size, 0x1e000000LL,
866 bdrv_get_device_name(dinfo->bdrv), fl_sectors);
868 fl = pflash_cfi01_register(0x1e000000LL,
869 NULL, "mips_malta.bios", BIOS_SIZE,
870 dinfo->bdrv, 65536, fl_sectors,
871 4, 0x0000, 0x0000, 0x0000, 0x0000, be);
872 bios = pflash_cfi01_get_memory(fl);
873 /* Map the bios at two physical locations, as on the real board. */
874 memory_region_init_alias(bios_alias, "bios.1fc",
876 memory_region_add_subregion(system_memory, 0x1fc00000LL,
880 bios = g_new(MemoryRegion, 1);
881 memory_region_init_ram(bios, NULL, "mips_malta.bios", BIOS_SIZE);
882 memory_region_set_readonly(bios, true);
883 memory_region_init_alias(bios_alias, "bios.1fc",
885 /* Map the bios at two physical locations, as on the real board. */
886 memory_region_add_subregion(system_memory, 0x1e000000LL, bios);
887 memory_region_add_subregion(system_memory, 0x1fc00000LL,
889 /* Load a BIOS image. */
890 if (bios_name == NULL)
891 bios_name = BIOS_FILENAME;
892 filename = qemu_find_file(QEMU_FILE_TYPE_BIOS, bios_name);
894 bios_size = load_image_targphys(filename, 0x1fc00000LL,
900 if ((bios_size < 0 || bios_size > BIOS_SIZE) && !kernel_filename) {
902 "qemu: Could not load MIPS bios '%s', and no -kernel argument was specified\n",
907 /* In little endian mode the 32bit words in the bios are swapped,
908 a neat trick which allows bi-endian firmware. */
909 #ifndef TARGET_WORDS_BIGENDIAN
911 uint32_t *addr = memory_region_get_ram_ptr(bios);
912 uint32_t *end = addr + bios_size;
921 /* Board ID = 0x420 (Malta Board with CoreLV)
922 XXX: theoretically 0x1e000010 should map to flash and 0x1fc00010 should
923 map to the board ID. */
924 stl_p(memory_region_get_ram_ptr(bios) + 0x10, 0x00000420);
926 /* Init internal devices */
927 cpu_mips_irq_init_cpu(env);
928 cpu_mips_clock_init(env);
931 * We have a circular dependency problem: pci_bus depends on isa_irq,
932 * isa_irq is provided by i8259, i8259 depends on ISA, ISA depends
933 * on piix4, and piix4 depends on pci_bus. To stop the cycle we have
934 * qemu_irq_proxy() adds an extra bit of indirection, allowing us
935 * to resolve the isa_irq -> i8259 dependency after i8259 is initialized.
937 isa_irq = qemu_irq_proxy(&i8259, 16);
940 pci_bus = gt64120_register(isa_irq);
943 ide_drive_get(hd, MAX_IDE_BUS);
945 piix4_devfn = piix4_init(pci_bus, &isa_bus, 80);
947 /* Interrupt controller */
948 /* The 8259 is attached to the MIPS CPU INT0 pin, ie interrupt 2 */
949 i8259 = i8259_init(isa_bus, env->irq[2]);
951 isa_bus_irqs(isa_bus, i8259);
952 pci_piix4_ide_init(pci_bus, hd, piix4_devfn + 1);
953 usb_uhci_piix4_init(pci_bus, piix4_devfn + 2);
954 smbus = piix4_pm_init(pci_bus, piix4_devfn + 3, 0x1100,
955 isa_get_irq(NULL, 9), NULL, NULL, 0);
956 /* TODO: Populate SPD eeprom data. */
957 smbus_eeprom_init(smbus, 8, NULL, 0);
958 pit = pit_init(isa_bus, 0x40, 0);
959 cpu_exit_irq = qemu_allocate_irqs(cpu_request_exit, NULL, 1);
960 DMA_init(0, cpu_exit_irq);
963 isa_create_simple(isa_bus, "i8042");
965 rtc_init(isa_bus, 2000, NULL);
966 serial_isa_init(isa_bus, 0, serial_hds[0]);
967 serial_isa_init(isa_bus, 1, serial_hds[1]);
969 parallel_init(isa_bus, 0, parallel_hds[0]);
970 for(i = 0; i < MAX_FD; i++) {
971 fd[i] = drive_get(IF_FLOPPY, 0, i);
973 fdctrl_init_isa(isa_bus, fd);
976 audio_init(isa_bus, NULL, pci_bus);
981 /* Optional PCI video card */
982 if (cirrus_vga_enabled) {
983 pci_cirrus_vga_init(pci_bus);
984 } else if (vmsvga_enabled) {
985 if (!pci_vmsvga_init(pci_bus)) {
986 fprintf(stderr, "Warning: vmware_vga not available,"
987 " using standard VGA instead\n");
988 pci_vga_init(pci_bus);
990 } else if (std_vga_enabled) {
991 pci_vga_init(pci_bus);
995 static QEMUMachine mips_malta_machine = {
997 .desc = "MIPS Malta Core LV",
998 .init = mips_malta_init,
1003 static void mips_malta_machine_init(void)
1005 qemu_register_machine(&mips_malta_machine);
1008 machine_init(mips_malta_machine_init);
projects / qemu.git / blob