2 * QEMU IDE disk and CD/DVD-ROM Emulator
4 * Copyright (c) 2003 Fabrice Bellard
5 * Copyright (c) 2006 Openedhand Ltd.
7 * Permission is hereby granted, free of charge, to any person obtaining a copy
8 * of this software and associated documentation files (the "Software"), to deal
9 * in the Software without restriction, including without limitation the rights
10 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
11 * copies of the Software, and to permit persons to whom the Software is
12 * furnished to do so, subject to the following conditions:
14 * The above copyright notice and this permission notice shall be included in
15 * all copies or substantial portions of the Software.
17 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
18 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
19 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
20 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
21 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
22 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
28 #include "qemu-error.h"
29 #include "qemu-timer.h"
34 #include <hw/ide/internal.h>
36 /* These values were based on a Seagate ST3500418AS but have been modified
37 to make more sense in QEMU */
38 static const int smart_attributes[][12] = {
39 /* id, flags, hflags, val, wrst, raw (6 bytes), threshold */
40 /* raw read error rate*/
41 { 0x01, 0x03, 0x00, 0x64, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x06},
43 { 0x03, 0x03, 0x00, 0x64, 0x64, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00},
44 /* start stop count */
45 { 0x04, 0x02, 0x00, 0x64, 0x64, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x14},
46 /* remapped sectors */
47 { 0x05, 0x03, 0x00, 0x64, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x24},
49 { 0x09, 0x03, 0x00, 0x64, 0x64, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00},
50 /* power cycle count */
51 { 0x0c, 0x03, 0x00, 0x64, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00},
52 /* airflow-temperature-celsius */
53 { 190, 0x03, 0x00, 0x45, 0x45, 0x1f, 0x00, 0x1f, 0x1f, 0x00, 0x00, 0x32},
55 { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00}
58 static int ide_handle_rw_error(IDEState *s, int error, int op);
59 static void ide_dummy_transfer_stop(IDEState *s);
61 static void padstr(char *str, const char *src, int len)
64 for(i = 0; i < len; i++) {
73 static void put_le16(uint16_t *p, unsigned int v)
78 static void ide_identify(IDEState *s)
82 IDEDevice *dev = s->unit ? s->bus->slave : s->bus->master;
84 if (s->identify_set) {
85 memcpy(s->io_buffer, s->identify_data, sizeof(s->identify_data));
89 memset(s->io_buffer, 0, 512);
90 p = (uint16_t *)s->io_buffer;
91 put_le16(p + 0, 0x0040);
92 put_le16(p + 1, s->cylinders);
93 put_le16(p + 3, s->heads);
94 put_le16(p + 4, 512 * s->sectors); /* XXX: retired, remove ? */
95 put_le16(p + 5, 512); /* XXX: retired, remove ? */
96 put_le16(p + 6, s->sectors);
97 padstr((char *)(p + 10), s->drive_serial_str, 20); /* serial number */
98 put_le16(p + 20, 3); /* XXX: retired, remove ? */
99 put_le16(p + 21, 512); /* cache size in sectors */
100 put_le16(p + 22, 4); /* ecc bytes */
101 padstr((char *)(p + 23), s->version, 8); /* firmware version */
102 padstr((char *)(p + 27), "QEMU HARDDISK", 40); /* model */
103 #if MAX_MULT_SECTORS > 1
104 put_le16(p + 47, 0x8000 | MAX_MULT_SECTORS);
106 put_le16(p + 48, 1); /* dword I/O */
107 put_le16(p + 49, (1 << 11) | (1 << 9) | (1 << 8)); /* DMA and LBA supported */
108 put_le16(p + 51, 0x200); /* PIO transfer cycle */
109 put_le16(p + 52, 0x200); /* DMA transfer cycle */
110 put_le16(p + 53, 1 | (1 << 1) | (1 << 2)); /* words 54-58,64-70,88 are valid */
111 put_le16(p + 54, s->cylinders);
112 put_le16(p + 55, s->heads);
113 put_le16(p + 56, s->sectors);
114 oldsize = s->cylinders * s->heads * s->sectors;
115 put_le16(p + 57, oldsize);
116 put_le16(p + 58, oldsize >> 16);
118 put_le16(p + 59, 0x100 | s->mult_sectors);
119 put_le16(p + 60, s->nb_sectors);
120 put_le16(p + 61, s->nb_sectors >> 16);
121 put_le16(p + 62, 0x07); /* single word dma0-2 supported */
122 put_le16(p + 63, 0x07); /* mdma0-2 supported */
123 put_le16(p + 64, 0x03); /* pio3-4 supported */
124 put_le16(p + 65, 120);
125 put_le16(p + 66, 120);
126 put_le16(p + 67, 120);
127 put_le16(p + 68, 120);
128 if (dev && dev->conf.discard_granularity) {
129 put_le16(p + 69, (1 << 14)); /* determinate TRIM behavior */
133 put_le16(p + 75, s->ncq_queues - 1);
135 put_le16(p + 76, (1 << 8));
138 put_le16(p + 80, 0xf0); /* ata3 -> ata6 supported */
139 put_le16(p + 81, 0x16); /* conforms to ata5 */
140 /* 14=NOP supported, 5=WCACHE supported, 0=SMART supported */
141 put_le16(p + 82, (1 << 14) | (1 << 5) | 1);
142 /* 13=flush_cache_ext,12=flush_cache,10=lba48 */
143 put_le16(p + 83, (1 << 14) | (1 << 13) | (1 <<12) | (1 << 10));
144 /* 14=set to 1, 1=SMART self test, 0=SMART error logging */
145 put_le16(p + 84, (1 << 14) | 0);
146 /* 14 = NOP supported, 5=WCACHE enabled, 0=SMART feature set enabled */
147 if (bdrv_enable_write_cache(s->bs))
148 put_le16(p + 85, (1 << 14) | (1 << 5) | 1);
150 put_le16(p + 85, (1 << 14) | 1);
151 /* 13=flush_cache_ext,12=flush_cache,10=lba48 */
152 put_le16(p + 86, (1 << 14) | (1 << 13) | (1 <<12) | (1 << 10));
153 /* 14=set to 1, 1=smart self test, 0=smart error logging */
154 put_le16(p + 87, (1 << 14) | 0);
155 put_le16(p + 88, 0x3f | (1 << 13)); /* udma5 set and supported */
156 put_le16(p + 93, 1 | (1 << 14) | 0x2000);
157 put_le16(p + 100, s->nb_sectors);
158 put_le16(p + 101, s->nb_sectors >> 16);
159 put_le16(p + 102, s->nb_sectors >> 32);
160 put_le16(p + 103, s->nb_sectors >> 48);
162 if (dev && dev->conf.physical_block_size)
163 put_le16(p + 106, 0x6000 | get_physical_block_exp(&dev->conf));
164 if (dev && dev->conf.discard_granularity) {
165 put_le16(p + 169, 1); /* TRIM support */
168 memcpy(s->identify_data, p, sizeof(s->identify_data));
172 static void ide_atapi_identify(IDEState *s)
176 if (s->identify_set) {
177 memcpy(s->io_buffer, s->identify_data, sizeof(s->identify_data));
181 memset(s->io_buffer, 0, 512);
182 p = (uint16_t *)s->io_buffer;
183 /* Removable CDROM, 50us response, 12 byte packets */
184 put_le16(p + 0, (2 << 14) | (5 << 8) | (1 << 7) | (2 << 5) | (0 << 0));
185 padstr((char *)(p + 10), s->drive_serial_str, 20); /* serial number */
186 put_le16(p + 20, 3); /* buffer type */
187 put_le16(p + 21, 512); /* cache size in sectors */
188 put_le16(p + 22, 4); /* ecc bytes */
189 padstr((char *)(p + 23), s->version, 8); /* firmware version */
190 padstr((char *)(p + 27), "QEMU DVD-ROM", 40); /* model */
191 put_le16(p + 48, 1); /* dword I/O (XXX: should not be set on CDROM) */
193 put_le16(p + 49, 1 << 9 | 1 << 8); /* DMA and LBA supported */
194 put_le16(p + 53, 7); /* words 64-70, 54-58, 88 valid */
195 put_le16(p + 62, 7); /* single word dma0-2 supported */
196 put_le16(p + 63, 7); /* mdma0-2 supported */
198 put_le16(p + 49, 1 << 9); /* LBA supported, no DMA */
199 put_le16(p + 53, 3); /* words 64-70, 54-58 valid */
200 put_le16(p + 63, 0x103); /* DMA modes XXX: may be incorrect */
202 put_le16(p + 64, 3); /* pio3-4 supported */
203 put_le16(p + 65, 0xb4); /* minimum DMA multiword tx cycle time */
204 put_le16(p + 66, 0xb4); /* recommended DMA multiword tx cycle time */
205 put_le16(p + 67, 0x12c); /* minimum PIO cycle time without flow control */
206 put_le16(p + 68, 0xb4); /* minimum PIO cycle time with IORDY flow control */
208 put_le16(p + 71, 30); /* in ns */
209 put_le16(p + 72, 30); /* in ns */
212 put_le16(p + 75, s->ncq_queues - 1);
214 put_le16(p + 76, (1 << 8));
217 put_le16(p + 80, 0x1e); /* support up to ATA/ATAPI-4 */
219 put_le16(p + 88, 0x3f | (1 << 13)); /* udma5 set and supported */
221 memcpy(s->identify_data, p, sizeof(s->identify_data));
225 static void ide_cfata_identify(IDEState *s)
230 p = (uint16_t *) s->identify_data;
234 memset(p, 0, sizeof(s->identify_data));
236 cur_sec = s->cylinders * s->heads * s->sectors;
238 put_le16(p + 0, 0x848a); /* CF Storage Card signature */
239 put_le16(p + 1, s->cylinders); /* Default cylinders */
240 put_le16(p + 3, s->heads); /* Default heads */
241 put_le16(p + 6, s->sectors); /* Default sectors per track */
242 put_le16(p + 7, s->nb_sectors >> 16); /* Sectors per card */
243 put_le16(p + 8, s->nb_sectors); /* Sectors per card */
244 padstr((char *)(p + 10), s->drive_serial_str, 20); /* serial number */
245 put_le16(p + 22, 0x0004); /* ECC bytes */
246 padstr((char *) (p + 23), s->version, 8); /* Firmware Revision */
247 padstr((char *) (p + 27), "QEMU MICRODRIVE", 40);/* Model number */
248 #if MAX_MULT_SECTORS > 1
249 put_le16(p + 47, 0x8000 | MAX_MULT_SECTORS);
251 put_le16(p + 47, 0x0000);
253 put_le16(p + 49, 0x0f00); /* Capabilities */
254 put_le16(p + 51, 0x0002); /* PIO cycle timing mode */
255 put_le16(p + 52, 0x0001); /* DMA cycle timing mode */
256 put_le16(p + 53, 0x0003); /* Translation params valid */
257 put_le16(p + 54, s->cylinders); /* Current cylinders */
258 put_le16(p + 55, s->heads); /* Current heads */
259 put_le16(p + 56, s->sectors); /* Current sectors */
260 put_le16(p + 57, cur_sec); /* Current capacity */
261 put_le16(p + 58, cur_sec >> 16); /* Current capacity */
262 if (s->mult_sectors) /* Multiple sector setting */
263 put_le16(p + 59, 0x100 | s->mult_sectors);
264 put_le16(p + 60, s->nb_sectors); /* Total LBA sectors */
265 put_le16(p + 61, s->nb_sectors >> 16); /* Total LBA sectors */
266 put_le16(p + 63, 0x0203); /* Multiword DMA capability */
267 put_le16(p + 64, 0x0001); /* Flow Control PIO support */
268 put_le16(p + 65, 0x0096); /* Min. Multiword DMA cycle */
269 put_le16(p + 66, 0x0096); /* Rec. Multiword DMA cycle */
270 put_le16(p + 68, 0x00b4); /* Min. PIO cycle time */
271 put_le16(p + 82, 0x400c); /* Command Set supported */
272 put_le16(p + 83, 0x7068); /* Command Set supported */
273 put_le16(p + 84, 0x4000); /* Features supported */
274 put_le16(p + 85, 0x000c); /* Command Set enabled */
275 put_le16(p + 86, 0x7044); /* Command Set enabled */
276 put_le16(p + 87, 0x4000); /* Features enabled */
277 put_le16(p + 91, 0x4060); /* Current APM level */
278 put_le16(p + 129, 0x0002); /* Current features option */
279 put_le16(p + 130, 0x0005); /* Reassigned sectors */
280 put_le16(p + 131, 0x0001); /* Initial power mode */
281 put_le16(p + 132, 0x0000); /* User signature */
282 put_le16(p + 160, 0x8100); /* Power requirement */
283 put_le16(p + 161, 0x8001); /* CF command set */
288 memcpy(s->io_buffer, p, sizeof(s->identify_data));
291 static void ide_set_signature(IDEState *s)
293 s->select &= 0xf0; /* clear head */
297 if (s->drive_kind == IDE_CD) {
309 typedef struct TrimAIOCB {
310 BlockDriverAIOCB common;
315 static void trim_aio_cancel(BlockDriverAIOCB *acb)
317 TrimAIOCB *iocb = container_of(acb, TrimAIOCB, common);
319 qemu_bh_delete(iocb->bh);
321 qemu_aio_release(iocb);
324 static AIOPool trim_aio_pool = {
325 .aiocb_size = sizeof(TrimAIOCB),
326 .cancel = trim_aio_cancel,
329 static void ide_trim_bh_cb(void *opaque)
331 TrimAIOCB *iocb = opaque;
333 iocb->common.cb(iocb->common.opaque, iocb->ret);
335 qemu_bh_delete(iocb->bh);
338 qemu_aio_release(iocb);
341 BlockDriverAIOCB *ide_issue_trim(BlockDriverState *bs,
342 int64_t sector_num, QEMUIOVector *qiov, int nb_sectors,
343 BlockDriverCompletionFunc *cb, void *opaque)
348 iocb = qemu_aio_get(&trim_aio_pool, bs, cb, opaque);
349 iocb->bh = qemu_bh_new(ide_trim_bh_cb, iocb);
352 for (j = 0; j < qiov->niov; j++) {
353 uint64_t *buffer = qiov->iov[j].iov_base;
355 for (i = 0; i < qiov->iov[j].iov_len / 8; i++) {
356 /* 6-byte LBA + 2-byte range per entry */
357 uint64_t entry = le64_to_cpu(buffer[i]);
358 uint64_t sector = entry & 0x0000ffffffffffffULL;
359 uint16_t count = entry >> 48;
365 ret = bdrv_discard(bs, sector, count);
372 qemu_bh_schedule(iocb->bh);
374 return &iocb->common;
377 static inline void ide_abort_command(IDEState *s)
379 s->status = READY_STAT | ERR_STAT;
383 /* prepare data transfer and tell what to do after */
384 void ide_transfer_start(IDEState *s, uint8_t *buf, int size,
385 EndTransferFunc *end_transfer_func)
387 s->end_transfer_func = end_transfer_func;
389 s->data_end = buf + size;
390 if (!(s->status & ERR_STAT)) {
391 s->status |= DRQ_STAT;
393 s->bus->dma->ops->start_transfer(s->bus->dma);
396 void ide_transfer_stop(IDEState *s)
398 s->end_transfer_func = ide_transfer_stop;
399 s->data_ptr = s->io_buffer;
400 s->data_end = s->io_buffer;
401 s->status &= ~DRQ_STAT;
404 int64_t ide_get_sector(IDEState *s)
407 if (s->select & 0x40) {
410 sector_num = ((s->select & 0x0f) << 24) | (s->hcyl << 16) |
411 (s->lcyl << 8) | s->sector;
413 sector_num = ((int64_t)s->hob_hcyl << 40) |
414 ((int64_t) s->hob_lcyl << 32) |
415 ((int64_t) s->hob_sector << 24) |
416 ((int64_t) s->hcyl << 16) |
417 ((int64_t) s->lcyl << 8) | s->sector;
420 sector_num = ((s->hcyl << 8) | s->lcyl) * s->heads * s->sectors +
421 (s->select & 0x0f) * s->sectors + (s->sector - 1);
426 void ide_set_sector(IDEState *s, int64_t sector_num)
429 if (s->select & 0x40) {
431 s->select = (s->select & 0xf0) | (sector_num >> 24);
432 s->hcyl = (sector_num >> 16);
433 s->lcyl = (sector_num >> 8);
434 s->sector = (sector_num);
436 s->sector = sector_num;
437 s->lcyl = sector_num >> 8;
438 s->hcyl = sector_num >> 16;
439 s->hob_sector = sector_num >> 24;
440 s->hob_lcyl = sector_num >> 32;
441 s->hob_hcyl = sector_num >> 40;
444 cyl = sector_num / (s->heads * s->sectors);
445 r = sector_num % (s->heads * s->sectors);
448 s->select = (s->select & 0xf0) | ((r / s->sectors) & 0x0f);
449 s->sector = (r % s->sectors) + 1;
453 static void ide_rw_error(IDEState *s) {
454 ide_abort_command(s);
458 void ide_sector_read(IDEState *s)
463 s->status = READY_STAT | SEEK_STAT;
464 s->error = 0; /* not needed by IDE spec, but needed by Windows */
465 sector_num = ide_get_sector(s);
468 /* no more sector to read from disk */
469 ide_transfer_stop(s);
471 #if defined(DEBUG_IDE)
472 printf("read sector=%" PRId64 "\n", sector_num);
474 if (n > s->req_nb_sectors)
475 n = s->req_nb_sectors;
476 ret = bdrv_read(s->bs, sector_num, s->io_buffer, n);
478 if (ide_handle_rw_error(s, -ret,
479 BM_STATUS_PIO_RETRY | BM_STATUS_RETRY_READ))
484 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_read);
486 ide_set_sector(s, sector_num + n);
491 static void dma_buf_commit(IDEState *s, int is_write)
493 qemu_sglist_destroy(&s->sg);
496 void ide_set_inactive(IDEState *s)
498 s->bus->dma->aiocb = NULL;
499 s->bus->dma->ops->set_inactive(s->bus->dma);
502 void ide_dma_error(IDEState *s)
504 ide_transfer_stop(s);
506 s->status = READY_STAT | ERR_STAT;
511 static int ide_handle_rw_error(IDEState *s, int error, int op)
513 int is_read = (op & BM_STATUS_RETRY_READ);
514 BlockErrorAction action = bdrv_get_on_error(s->bs, is_read);
516 if (action == BLOCK_ERR_IGNORE) {
517 bdrv_mon_event(s->bs, BDRV_ACTION_IGNORE, is_read);
521 if ((error == ENOSPC && action == BLOCK_ERR_STOP_ENOSPC)
522 || action == BLOCK_ERR_STOP_ANY) {
523 s->bus->dma->ops->set_unit(s->bus->dma, s->unit);
524 s->bus->error_status = op;
525 bdrv_mon_event(s->bs, BDRV_ACTION_STOP, is_read);
526 vm_stop(VMSTOP_DISKFULL);
528 if (op & BM_STATUS_DMA_RETRY) {
529 dma_buf_commit(s, 0);
534 bdrv_mon_event(s->bs, BDRV_ACTION_REPORT, is_read);
540 void ide_dma_cb(void *opaque, int ret)
542 IDEState *s = opaque;
548 int op = BM_STATUS_DMA_RETRY;
550 if (s->dma_cmd == IDE_DMA_READ)
551 op |= BM_STATUS_RETRY_READ;
552 else if (s->dma_cmd == IDE_DMA_TRIM)
553 op |= BM_STATUS_RETRY_TRIM;
555 if (ide_handle_rw_error(s, -ret, op)) {
560 n = s->io_buffer_size >> 9;
561 sector_num = ide_get_sector(s);
563 dma_buf_commit(s, ide_cmd_is_read(s));
565 ide_set_sector(s, sector_num);
569 /* end of transfer ? */
570 if (s->nsector == 0) {
571 s->status = READY_STAT | SEEK_STAT;
576 /* launch next transfer */
578 s->io_buffer_index = 0;
579 s->io_buffer_size = n * 512;
580 if (s->bus->dma->ops->prepare_buf(s->bus->dma, ide_cmd_is_read(s)) == 0) {
581 /* The PRDs were too short. Reset the Active bit, but don't raise an
587 printf("ide_dma_cb: sector_num=%" PRId64 " n=%d, cmd_cmd=%d\n",
588 sector_num, n, s->dma_cmd);
591 switch (s->dma_cmd) {
593 s->bus->dma->aiocb = dma_bdrv_read(s->bs, &s->sg, sector_num,
597 s->bus->dma->aiocb = dma_bdrv_write(s->bs, &s->sg, sector_num,
601 s->bus->dma->aiocb = dma_bdrv_io(s->bs, &s->sg, sector_num,
602 ide_issue_trim, ide_dma_cb, s, 1);
606 if (!s->bus->dma->aiocb) {
608 goto handle_rw_error;
616 static void ide_sector_start_dma(IDEState *s, enum ide_dma_cmd dma_cmd)
618 s->status = READY_STAT | SEEK_STAT | DRQ_STAT | BUSY_STAT;
619 s->io_buffer_index = 0;
620 s->io_buffer_size = 0;
621 s->dma_cmd = dma_cmd;
622 s->bus->dma->ops->start_dma(s->bus->dma, s, ide_dma_cb);
625 static void ide_sector_write_timer_cb(void *opaque)
627 IDEState *s = opaque;
631 void ide_sector_write(IDEState *s)
636 s->status = READY_STAT | SEEK_STAT;
637 sector_num = ide_get_sector(s);
638 #if defined(DEBUG_IDE)
639 printf("write sector=%" PRId64 "\n", sector_num);
642 if (n > s->req_nb_sectors)
643 n = s->req_nb_sectors;
644 ret = bdrv_write(s->bs, sector_num, s->io_buffer, n);
647 if (ide_handle_rw_error(s, -ret, BM_STATUS_PIO_RETRY))
652 if (s->nsector == 0) {
653 /* no more sectors to write */
654 ide_transfer_stop(s);
657 if (n1 > s->req_nb_sectors)
658 n1 = s->req_nb_sectors;
659 ide_transfer_start(s, s->io_buffer, 512 * n1, ide_sector_write);
661 ide_set_sector(s, sector_num + n);
663 if (win2k_install_hack && ((++s->irq_count % 16) == 0)) {
664 /* It seems there is a bug in the Windows 2000 installer HDD
665 IDE driver which fills the disk with empty logs when the
666 IDE write IRQ comes too early. This hack tries to correct
667 that at the expense of slower write performances. Use this
668 option _only_ to install Windows 2000. You must disable it
670 qemu_mod_timer(s->sector_write_timer,
671 qemu_get_clock_ns(vm_clock) + (get_ticks_per_sec() / 1000));
677 static void ide_flush_cb(void *opaque, int ret)
679 IDEState *s = opaque;
682 /* XXX: What sector number to set here? */
683 if (ide_handle_rw_error(s, -ret, BM_STATUS_RETRY_FLUSH)) {
688 s->status = READY_STAT | SEEK_STAT;
692 void ide_flush_cache(IDEState *s)
694 BlockDriverAIOCB *acb;
701 acb = bdrv_aio_flush(s->bs, ide_flush_cb, s);
703 ide_flush_cb(s, -EIO);
707 static void ide_cfata_metadata_inquiry(IDEState *s)
712 p = (uint16_t *) s->io_buffer;
714 spd = ((s->mdata_size - 1) >> 9) + 1;
716 put_le16(p + 0, 0x0001); /* Data format revision */
717 put_le16(p + 1, 0x0000); /* Media property: silicon */
718 put_le16(p + 2, s->media_changed); /* Media status */
719 put_le16(p + 3, s->mdata_size & 0xffff); /* Capacity in bytes (low) */
720 put_le16(p + 4, s->mdata_size >> 16); /* Capacity in bytes (high) */
721 put_le16(p + 5, spd & 0xffff); /* Sectors per device (low) */
722 put_le16(p + 6, spd >> 16); /* Sectors per device (high) */
725 static void ide_cfata_metadata_read(IDEState *s)
729 if (((s->hcyl << 16) | s->lcyl) << 9 > s->mdata_size + 2) {
730 s->status = ERR_STAT;
735 p = (uint16_t *) s->io_buffer;
738 put_le16(p + 0, s->media_changed); /* Media status */
739 memcpy(p + 1, s->mdata_storage + (((s->hcyl << 16) | s->lcyl) << 9),
740 MIN(MIN(s->mdata_size - (((s->hcyl << 16) | s->lcyl) << 9),
741 s->nsector << 9), 0x200 - 2));
744 static void ide_cfata_metadata_write(IDEState *s)
746 if (((s->hcyl << 16) | s->lcyl) << 9 > s->mdata_size + 2) {
747 s->status = ERR_STAT;
752 s->media_changed = 0;
754 memcpy(s->mdata_storage + (((s->hcyl << 16) | s->lcyl) << 9),
756 MIN(MIN(s->mdata_size - (((s->hcyl << 16) | s->lcyl) << 9),
757 s->nsector << 9), 0x200 - 2));
760 /* called when the inserted state of the media has changed */
761 static void cdrom_change_cb(void *opaque, int reason)
763 IDEState *s = opaque;
766 if (!(reason & CHANGE_MEDIA)) {
770 bdrv_get_geometry(s->bs, &nb_sectors);
771 s->nb_sectors = nb_sectors;
774 * First indicate to the guest that a CD has been removed. That's
775 * done on the next command the guest sends us.
777 * Then we set SENSE_UNIT_ATTENTION, by which the guest will
778 * detect a new CD in the drive. See ide_atapi_cmd() for details.
780 s->cdrom_changed = 1;
781 s->events.new_media = true;
785 static void ide_cmd_lba48_transform(IDEState *s, int lba48)
789 /* handle the 'magic' 0 nsector count conversion here. to avoid
790 * fiddling with the rest of the read logic, we just store the
791 * full sector count in ->nsector and ignore ->hob_nsector from now
797 if (!s->nsector && !s->hob_nsector)
801 int hi = s->hob_nsector;
803 s->nsector = (hi << 8) | lo;
808 static void ide_clear_hob(IDEBus *bus)
810 /* any write clears HOB high bit of device control register */
811 bus->ifs[0].select &= ~(1 << 7);
812 bus->ifs[1].select &= ~(1 << 7);
815 void ide_ioport_write(void *opaque, uint32_t addr, uint32_t val)
817 IDEBus *bus = opaque;
820 printf("IDE: write addr=0x%x val=0x%02x\n", addr, val);
825 /* ignore writes to command block while busy with previous command */
826 if (addr != 7 && (idebus_active_if(bus)->status & (BUSY_STAT|DRQ_STAT)))
834 /* NOTE: data is written to the two drives */
835 bus->ifs[0].hob_feature = bus->ifs[0].feature;
836 bus->ifs[1].hob_feature = bus->ifs[1].feature;
837 bus->ifs[0].feature = val;
838 bus->ifs[1].feature = val;
842 bus->ifs[0].hob_nsector = bus->ifs[0].nsector;
843 bus->ifs[1].hob_nsector = bus->ifs[1].nsector;
844 bus->ifs[0].nsector = val;
845 bus->ifs[1].nsector = val;
849 bus->ifs[0].hob_sector = bus->ifs[0].sector;
850 bus->ifs[1].hob_sector = bus->ifs[1].sector;
851 bus->ifs[0].sector = val;
852 bus->ifs[1].sector = val;
856 bus->ifs[0].hob_lcyl = bus->ifs[0].lcyl;
857 bus->ifs[1].hob_lcyl = bus->ifs[1].lcyl;
858 bus->ifs[0].lcyl = val;
859 bus->ifs[1].lcyl = val;
863 bus->ifs[0].hob_hcyl = bus->ifs[0].hcyl;
864 bus->ifs[1].hob_hcyl = bus->ifs[1].hcyl;
865 bus->ifs[0].hcyl = val;
866 bus->ifs[1].hcyl = val;
869 /* FIXME: HOB readback uses bit 7 */
870 bus->ifs[0].select = (val & ~0x10) | 0xa0;
871 bus->ifs[1].select = (val | 0x10) | 0xa0;
873 bus->unit = (val >> 4) & 1;
878 ide_exec_cmd(bus, val);
884 void ide_exec_cmd(IDEBus *bus, uint32_t val)
890 #if defined(DEBUG_IDE)
891 printf("ide: CMD=%02x\n", val);
893 s = idebus_active_if(bus);
894 /* ignore commands to non existant slave */
895 if (s != bus->ifs && !s->bs)
898 /* Only DEVICE RESET is allowed while BSY or/and DRQ are set */
899 if ((s->status & (BUSY_STAT|DRQ_STAT)) && val != WIN_DEVICE_RESET)
904 switch (s->feature) {
909 ide_sector_start_dma(s, IDE_DMA_TRIM);
916 if (s->bs && s->drive_kind != IDE_CD) {
917 if (s->drive_kind != IDE_CFATA)
920 ide_cfata_identify(s);
921 s->status = READY_STAT | SEEK_STAT;
922 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
924 if (s->drive_kind == IDE_CD) {
925 ide_set_signature(s);
927 ide_abort_command(s);
934 s->status = READY_STAT | SEEK_STAT;
938 if (s->drive_kind == IDE_CFATA && s->nsector == 0) {
939 /* Disable Read and Write Multiple */
941 s->status = READY_STAT | SEEK_STAT;
942 } else if ((s->nsector & 0xff) != 0 &&
943 ((s->nsector & 0xff) > MAX_MULT_SECTORS ||
944 (s->nsector & (s->nsector - 1)) != 0)) {
945 ide_abort_command(s);
947 s->mult_sectors = s->nsector & 0xff;
948 s->status = READY_STAT | SEEK_STAT;
955 case WIN_VERIFY_ONCE:
956 /* do sector number check ? */
957 ide_cmd_lba48_transform(s, lba48);
958 s->status = READY_STAT | SEEK_STAT;
967 ide_cmd_lba48_transform(s, lba48);
968 s->req_nb_sectors = 1;
975 case CFA_WRITE_SECT_WO_ERASE:
976 case WIN_WRITE_VERIFY:
977 ide_cmd_lba48_transform(s, lba48);
979 s->status = SEEK_STAT | READY_STAT;
980 s->req_nb_sectors = 1;
981 ide_transfer_start(s, s->io_buffer, 512, ide_sector_write);
982 s->media_changed = 1;
984 case WIN_MULTREAD_EXT:
987 if (!s->mult_sectors)
989 ide_cmd_lba48_transform(s, lba48);
990 s->req_nb_sectors = s->mult_sectors;
993 case WIN_MULTWRITE_EXT:
996 case CFA_WRITE_MULTI_WO_ERASE:
997 if (!s->mult_sectors)
999 ide_cmd_lba48_transform(s, lba48);
1001 s->status = SEEK_STAT | READY_STAT;
1002 s->req_nb_sectors = s->mult_sectors;
1004 if (n > s->req_nb_sectors)
1005 n = s->req_nb_sectors;
1006 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_write);
1007 s->media_changed = 1;
1009 case WIN_READDMA_EXT:
1012 case WIN_READDMA_ONCE:
1015 ide_cmd_lba48_transform(s, lba48);
1016 ide_sector_start_dma(s, IDE_DMA_READ);
1018 case WIN_WRITEDMA_EXT:
1021 case WIN_WRITEDMA_ONCE:
1024 ide_cmd_lba48_transform(s, lba48);
1025 ide_sector_start_dma(s, IDE_DMA_WRITE);
1026 s->media_changed = 1;
1028 case WIN_READ_NATIVE_MAX_EXT:
1030 case WIN_READ_NATIVE_MAX:
1031 ide_cmd_lba48_transform(s, lba48);
1032 ide_set_sector(s, s->nb_sectors - 1);
1033 s->status = READY_STAT | SEEK_STAT;
1034 ide_set_irq(s->bus);
1036 case WIN_CHECKPOWERMODE1:
1037 case WIN_CHECKPOWERMODE2:
1039 s->nsector = 0xff; /* device active or idle */
1040 s->status = READY_STAT | SEEK_STAT;
1041 ide_set_irq(s->bus);
1043 case WIN_SETFEATURES:
1046 /* XXX: valid for CDROM ? */
1047 switch(s->feature) {
1048 case 0xcc: /* reverting to power-on defaults enable */
1049 case 0x66: /* reverting to power-on defaults disable */
1050 case 0x02: /* write cache enable */
1051 case 0x82: /* write cache disable */
1052 case 0xaa: /* read look-ahead enable */
1053 case 0x55: /* read look-ahead disable */
1054 case 0x05: /* set advanced power management mode */
1055 case 0x85: /* disable advanced power management mode */
1056 case 0x69: /* NOP */
1057 case 0x67: /* NOP */
1058 case 0x96: /* NOP */
1059 case 0x9a: /* NOP */
1060 case 0x42: /* enable Automatic Acoustic Mode */
1061 case 0xc2: /* disable Automatic Acoustic Mode */
1062 s->status = READY_STAT | SEEK_STAT;
1063 ide_set_irq(s->bus);
1065 case 0x03: { /* set transfer mode */
1066 uint8_t val = s->nsector & 0x07;
1067 uint16_t *identify_data = (uint16_t *)s->identify_data;
1069 switch (s->nsector >> 3) {
1070 case 0x00: /* pio default */
1071 case 0x01: /* pio mode */
1072 put_le16(identify_data + 62,0x07);
1073 put_le16(identify_data + 63,0x07);
1074 put_le16(identify_data + 88,0x3f);
1076 case 0x02: /* sigle word dma mode*/
1077 put_le16(identify_data + 62,0x07 | (1 << (val + 8)));
1078 put_le16(identify_data + 63,0x07);
1079 put_le16(identify_data + 88,0x3f);
1081 case 0x04: /* mdma mode */
1082 put_le16(identify_data + 62,0x07);
1083 put_le16(identify_data + 63,0x07 | (1 << (val + 8)));
1084 put_le16(identify_data + 88,0x3f);
1086 case 0x08: /* udma mode */
1087 put_le16(identify_data + 62,0x07);
1088 put_le16(identify_data + 63,0x07);
1089 put_le16(identify_data + 88,0x3f | (1 << (val + 8)));
1094 s->status = READY_STAT | SEEK_STAT;
1095 ide_set_irq(s->bus);
1102 case WIN_FLUSH_CACHE:
1103 case WIN_FLUSH_CACHE_EXT:
1108 case WIN_STANDBYNOW1:
1109 case WIN_STANDBYNOW2:
1110 case WIN_IDLEIMMEDIATE:
1111 case CFA_IDLEIMMEDIATE:
1116 s->status = READY_STAT;
1117 ide_set_irq(s->bus);
1120 if(s->drive_kind == IDE_CD)
1122 /* XXX: Check that seek is within bounds */
1123 s->status = READY_STAT | SEEK_STAT;
1124 ide_set_irq(s->bus);
1126 /* ATAPI commands */
1128 if (s->drive_kind == IDE_CD) {
1129 ide_atapi_identify(s);
1130 s->status = READY_STAT | SEEK_STAT;
1131 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
1133 ide_abort_command(s);
1135 ide_set_irq(s->bus);
1138 ide_set_signature(s);
1139 if (s->drive_kind == IDE_CD)
1140 s->status = 0; /* ATAPI spec (v6) section 9.10 defines packet
1141 * devices to return a clear status register
1142 * with READY_STAT *not* set. */
1144 s->status = READY_STAT | SEEK_STAT;
1145 s->error = 0x01; /* Device 0 passed, Device 1 passed or not
1148 ide_set_irq(s->bus);
1151 if (s->drive_kind != IDE_CD)
1153 ide_set_signature(s);
1154 s->status = 0x00; /* NOTE: READY is _not_ set */
1158 if (s->drive_kind != IDE_CD)
1160 /* overlapping commands not supported */
1161 if (s->feature & 0x02)
1163 s->status = READY_STAT | SEEK_STAT;
1164 s->atapi_dma = s->feature & 1;
1166 ide_transfer_start(s, s->io_buffer, ATAPI_PACKET_SIZE,
1169 /* CF-ATA commands */
1170 case CFA_REQ_EXT_ERROR_CODE:
1171 if (s->drive_kind != IDE_CFATA)
1173 s->error = 0x09; /* miscellaneous error */
1174 s->status = READY_STAT | SEEK_STAT;
1175 ide_set_irq(s->bus);
1177 case CFA_ERASE_SECTORS:
1178 case CFA_WEAR_LEVEL:
1179 if (s->drive_kind != IDE_CFATA)
1181 if (val == CFA_WEAR_LEVEL)
1183 if (val == CFA_ERASE_SECTORS)
1184 s->media_changed = 1;
1186 s->status = READY_STAT | SEEK_STAT;
1187 ide_set_irq(s->bus);
1189 case CFA_TRANSLATE_SECTOR:
1190 if (s->drive_kind != IDE_CFATA)
1193 s->status = READY_STAT | SEEK_STAT;
1194 memset(s->io_buffer, 0, 0x200);
1195 s->io_buffer[0x00] = s->hcyl; /* Cyl MSB */
1196 s->io_buffer[0x01] = s->lcyl; /* Cyl LSB */
1197 s->io_buffer[0x02] = s->select; /* Head */
1198 s->io_buffer[0x03] = s->sector; /* Sector */
1199 s->io_buffer[0x04] = ide_get_sector(s) >> 16; /* LBA MSB */
1200 s->io_buffer[0x05] = ide_get_sector(s) >> 8; /* LBA */
1201 s->io_buffer[0x06] = ide_get_sector(s) >> 0; /* LBA LSB */
1202 s->io_buffer[0x13] = 0x00; /* Erase flag */
1203 s->io_buffer[0x18] = 0x00; /* Hot count */
1204 s->io_buffer[0x19] = 0x00; /* Hot count */
1205 s->io_buffer[0x1a] = 0x01; /* Hot count */
1206 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1207 ide_set_irq(s->bus);
1209 case CFA_ACCESS_METADATA_STORAGE:
1210 if (s->drive_kind != IDE_CFATA)
1212 switch (s->feature) {
1213 case 0x02: /* Inquiry Metadata Storage */
1214 ide_cfata_metadata_inquiry(s);
1216 case 0x03: /* Read Metadata Storage */
1217 ide_cfata_metadata_read(s);
1219 case 0x04: /* Write Metadata Storage */
1220 ide_cfata_metadata_write(s);
1225 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1226 s->status = 0x00; /* NOTE: READY is _not_ set */
1227 ide_set_irq(s->bus);
1229 case IBM_SENSE_CONDITION:
1230 if (s->drive_kind != IDE_CFATA)
1232 switch (s->feature) {
1233 case 0x01: /* sense temperature in device */
1234 s->nsector = 0x50; /* +20 C */
1239 s->status = READY_STAT | SEEK_STAT;
1240 ide_set_irq(s->bus);
1244 if (s->drive_kind == IDE_CD)
1246 if (s->hcyl != 0xc2 || s->lcyl != 0x4f)
1248 if (!s->smart_enabled && s->feature != SMART_ENABLE)
1250 switch (s->feature) {
1252 s->smart_enabled = 0;
1253 s->status = READY_STAT | SEEK_STAT;
1254 ide_set_irq(s->bus);
1257 s->smart_enabled = 1;
1258 s->status = READY_STAT | SEEK_STAT;
1259 ide_set_irq(s->bus);
1261 case SMART_ATTR_AUTOSAVE:
1262 switch (s->sector) {
1264 s->smart_autosave = 0;
1267 s->smart_autosave = 1;
1272 s->status = READY_STAT | SEEK_STAT;
1273 ide_set_irq(s->bus);
1276 if (!s->smart_errors) {
1283 s->status = READY_STAT | SEEK_STAT;
1284 ide_set_irq(s->bus);
1286 case SMART_READ_THRESH:
1287 memset(s->io_buffer, 0, 0x200);
1288 s->io_buffer[0] = 0x01; /* smart struct version */
1289 for (n=0; n<30; n++) {
1290 if (smart_attributes[n][0] == 0)
1292 s->io_buffer[2+0+(n*12)] = smart_attributes[n][0];
1293 s->io_buffer[2+1+(n*12)] = smart_attributes[n][11];
1295 for (n=0; n<511; n++) /* checksum */
1296 s->io_buffer[511] += s->io_buffer[n];
1297 s->io_buffer[511] = 0x100 - s->io_buffer[511];
1298 s->status = READY_STAT | SEEK_STAT;
1299 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1300 ide_set_irq(s->bus);
1302 case SMART_READ_DATA:
1303 memset(s->io_buffer, 0, 0x200);
1304 s->io_buffer[0] = 0x01; /* smart struct version */
1305 for (n=0; n<30; n++) {
1306 if (smart_attributes[n][0] == 0) {
1310 for(i = 0; i < 11; i++) {
1311 s->io_buffer[2+i+(n*12)] = smart_attributes[n][i];
1314 s->io_buffer[362] = 0x02 | (s->smart_autosave?0x80:0x00);
1315 if (s->smart_selftest_count == 0) {
1316 s->io_buffer[363] = 0;
1319 s->smart_selftest_data[3 +
1320 (s->smart_selftest_count - 1) *
1323 s->io_buffer[364] = 0x20;
1324 s->io_buffer[365] = 0x01;
1325 /* offline data collection capacity: execute + self-test*/
1326 s->io_buffer[367] = (1<<4 | 1<<3 | 1);
1327 s->io_buffer[368] = 0x03; /* smart capability (1) */
1328 s->io_buffer[369] = 0x00; /* smart capability (2) */
1329 s->io_buffer[370] = 0x01; /* error logging supported */
1330 s->io_buffer[372] = 0x02; /* minutes for poll short test */
1331 s->io_buffer[373] = 0x36; /* minutes for poll ext test */
1332 s->io_buffer[374] = 0x01; /* minutes for poll conveyance */
1334 for (n=0; n<511; n++)
1335 s->io_buffer[511] += s->io_buffer[n];
1336 s->io_buffer[511] = 0x100 - s->io_buffer[511];
1337 s->status = READY_STAT | SEEK_STAT;
1338 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1339 ide_set_irq(s->bus);
1341 case SMART_READ_LOG:
1342 switch (s->sector) {
1343 case 0x01: /* summary smart error log */
1344 memset(s->io_buffer, 0, 0x200);
1345 s->io_buffer[0] = 0x01;
1346 s->io_buffer[1] = 0x00; /* no error entries */
1347 s->io_buffer[452] = s->smart_errors & 0xff;
1348 s->io_buffer[453] = (s->smart_errors & 0xff00) >> 8;
1350 for (n=0; n<511; n++)
1351 s->io_buffer[511] += s->io_buffer[n];
1352 s->io_buffer[511] = 0x100 - s->io_buffer[511];
1354 case 0x06: /* smart self test log */
1355 memset(s->io_buffer, 0, 0x200);
1356 s->io_buffer[0] = 0x01;
1357 if (s->smart_selftest_count == 0) {
1358 s->io_buffer[508] = 0;
1360 s->io_buffer[508] = s->smart_selftest_count;
1361 for (n=2; n<506; n++)
1362 s->io_buffer[n] = s->smart_selftest_data[n];
1364 for (n=0; n<511; n++)
1365 s->io_buffer[511] += s->io_buffer[n];
1366 s->io_buffer[511] = 0x100 - s->io_buffer[511];
1371 s->status = READY_STAT | SEEK_STAT;
1372 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1373 ide_set_irq(s->bus);
1375 case SMART_EXECUTE_OFFLINE:
1376 switch (s->sector) {
1377 case 0: /* off-line routine */
1378 case 1: /* short self test */
1379 case 2: /* extended self test */
1380 s->smart_selftest_count++;
1381 if(s->smart_selftest_count > 21)
1382 s->smart_selftest_count = 0;
1383 n = 2 + (s->smart_selftest_count - 1) * 24;
1384 s->smart_selftest_data[n] = s->sector;
1385 s->smart_selftest_data[n+1] = 0x00; /* OK and finished */
1386 s->smart_selftest_data[n+2] = 0x34; /* hour count lsb */
1387 s->smart_selftest_data[n+3] = 0x12; /* hour count msb */
1388 s->status = READY_STAT | SEEK_STAT;
1389 ide_set_irq(s->bus);
1401 ide_abort_command(s);
1402 ide_set_irq(s->bus);
1407 uint32_t ide_ioport_read(void *opaque, uint32_t addr1)
1409 IDEBus *bus = opaque;
1410 IDEState *s = idebus_active_if(bus);
1415 /* FIXME: HOB readback uses bit 7, but it's always set right now */
1416 //hob = s->select & (1 << 7);
1423 if ((!bus->ifs[0].bs && !bus->ifs[1].bs) ||
1424 (s != bus->ifs && !s->bs))
1429 ret = s->hob_feature;
1432 if (!bus->ifs[0].bs && !bus->ifs[1].bs)
1435 ret = s->nsector & 0xff;
1437 ret = s->hob_nsector;
1440 if (!bus->ifs[0].bs && !bus->ifs[1].bs)
1445 ret = s->hob_sector;
1448 if (!bus->ifs[0].bs && !bus->ifs[1].bs)
1456 if (!bus->ifs[0].bs && !bus->ifs[1].bs)
1464 if (!bus->ifs[0].bs && !bus->ifs[1].bs)
1471 if ((!bus->ifs[0].bs && !bus->ifs[1].bs) ||
1472 (s != bus->ifs && !s->bs))
1476 qemu_irq_lower(bus->irq);
1480 printf("ide: read addr=0x%x val=%02x\n", addr1, ret);
1485 uint32_t ide_status_read(void *opaque, uint32_t addr)
1487 IDEBus *bus = opaque;
1488 IDEState *s = idebus_active_if(bus);
1491 if ((!bus->ifs[0].bs && !bus->ifs[1].bs) ||
1492 (s != bus->ifs && !s->bs))
1497 printf("ide: read status addr=0x%x val=%02x\n", addr, ret);
1502 void ide_cmd_write(void *opaque, uint32_t addr, uint32_t val)
1504 IDEBus *bus = opaque;
1509 printf("ide: write control addr=0x%x val=%02x\n", addr, val);
1511 /* common for both drives */
1512 if (!(bus->cmd & IDE_CMD_RESET) &&
1513 (val & IDE_CMD_RESET)) {
1514 /* reset low to high */
1515 for(i = 0;i < 2; i++) {
1517 s->status = BUSY_STAT | SEEK_STAT;
1520 } else if ((bus->cmd & IDE_CMD_RESET) &&
1521 !(val & IDE_CMD_RESET)) {
1523 for(i = 0;i < 2; i++) {
1525 if (s->drive_kind == IDE_CD)
1526 s->status = 0x00; /* NOTE: READY is _not_ set */
1528 s->status = READY_STAT | SEEK_STAT;
1529 ide_set_signature(s);
1537 * Returns true if the running PIO transfer is a PIO out (i.e. data is
1538 * transferred from the device to the guest), false if it's a PIO in
1540 static bool ide_is_pio_out(IDEState *s)
1542 if (s->end_transfer_func == ide_sector_write ||
1543 s->end_transfer_func == ide_atapi_cmd) {
1545 } else if (s->end_transfer_func == ide_sector_read ||
1546 s->end_transfer_func == ide_transfer_stop ||
1547 s->end_transfer_func == ide_atapi_cmd_reply_end ||
1548 s->end_transfer_func == ide_dummy_transfer_stop) {
1555 void ide_data_writew(void *opaque, uint32_t addr, uint32_t val)
1557 IDEBus *bus = opaque;
1558 IDEState *s = idebus_active_if(bus);
1561 /* PIO data access allowed only when DRQ bit is set. The result of a write
1562 * during PIO out is indeterminate, just ignore it. */
1563 if (!(s->status & DRQ_STAT) || ide_is_pio_out(s)) {
1568 *(uint16_t *)p = le16_to_cpu(val);
1571 if (p >= s->data_end)
1572 s->end_transfer_func(s);
1575 uint32_t ide_data_readw(void *opaque, uint32_t addr)
1577 IDEBus *bus = opaque;
1578 IDEState *s = idebus_active_if(bus);
1582 /* PIO data access allowed only when DRQ bit is set. The result of a read
1583 * during PIO in is indeterminate, return 0 and don't move forward. */
1584 if (!(s->status & DRQ_STAT) || !ide_is_pio_out(s)) {
1589 ret = cpu_to_le16(*(uint16_t *)p);
1592 if (p >= s->data_end)
1593 s->end_transfer_func(s);
1597 void ide_data_writel(void *opaque, uint32_t addr, uint32_t val)
1599 IDEBus *bus = opaque;
1600 IDEState *s = idebus_active_if(bus);
1603 /* PIO data access allowed only when DRQ bit is set. The result of a write
1604 * during PIO out is indeterminate, just ignore it. */
1605 if (!(s->status & DRQ_STAT) || ide_is_pio_out(s)) {
1610 *(uint32_t *)p = le32_to_cpu(val);
1613 if (p >= s->data_end)
1614 s->end_transfer_func(s);
1617 uint32_t ide_data_readl(void *opaque, uint32_t addr)
1619 IDEBus *bus = opaque;
1620 IDEState *s = idebus_active_if(bus);
1624 /* PIO data access allowed only when DRQ bit is set. The result of a read
1625 * during PIO in is indeterminate, return 0 and don't move forward. */
1626 if (!(s->status & DRQ_STAT) || !ide_is_pio_out(s)) {
1631 ret = cpu_to_le32(*(uint32_t *)p);
1634 if (p >= s->data_end)
1635 s->end_transfer_func(s);
1639 static void ide_dummy_transfer_stop(IDEState *s)
1641 s->data_ptr = s->io_buffer;
1642 s->data_end = s->io_buffer;
1643 s->io_buffer[0] = 0xff;
1644 s->io_buffer[1] = 0xff;
1645 s->io_buffer[2] = 0xff;
1646 s->io_buffer[3] = 0xff;
1649 static void ide_reset(IDEState *s)
1652 printf("ide: reset\n");
1654 if (s->drive_kind == IDE_CFATA)
1655 s->mult_sectors = 0;
1657 s->mult_sectors = MAX_MULT_SECTORS;
1674 s->status = READY_STAT | SEEK_STAT;
1678 /* ATAPI specific */
1681 s->cdrom_changed = 0;
1682 s->packet_transfer_size = 0;
1683 s->elementary_transfer_size = 0;
1684 s->io_buffer_index = 0;
1685 s->cd_sector_size = 0;
1688 s->io_buffer_size = 0;
1689 s->req_nb_sectors = 0;
1691 ide_set_signature(s);
1692 /* init the transfer handler so that 0xffff is returned on data
1694 s->end_transfer_func = ide_dummy_transfer_stop;
1695 ide_dummy_transfer_stop(s);
1696 s->media_changed = 0;
1699 void ide_bus_reset(IDEBus *bus)
1703 ide_reset(&bus->ifs[0]);
1704 ide_reset(&bus->ifs[1]);
1707 /* pending async DMA */
1708 if (bus->dma->aiocb) {
1710 printf("aio_cancel\n");
1712 bdrv_aio_cancel(bus->dma->aiocb);
1713 bus->dma->aiocb = NULL;
1716 /* reset dma provider too */
1717 bus->dma->ops->reset(bus->dma);
1720 int ide_init_drive(IDEState *s, BlockDriverState *bs, IDEDriveKind kind,
1721 const char *version, const char *serial)
1723 int cylinders, heads, secs;
1724 uint64_t nb_sectors;
1727 s->drive_kind = kind;
1729 bdrv_get_geometry(bs, &nb_sectors);
1730 bdrv_guess_geometry(bs, &cylinders, &heads, &secs);
1731 if (cylinders < 1 || cylinders > 16383) {
1732 error_report("cyls must be between 1 and 16383");
1735 if (heads < 1 || heads > 16) {
1736 error_report("heads must be between 1 and 16");
1739 if (secs < 1 || secs > 63) {
1740 error_report("secs must be between 1 and 63");
1743 s->cylinders = cylinders;
1746 s->nb_sectors = nb_sectors;
1747 /* The SMART values should be preserved across power cycles
1749 s->smart_enabled = 1;
1750 s->smart_autosave = 1;
1751 s->smart_errors = 0;
1752 s->smart_selftest_count = 0;
1753 if (kind == IDE_CD) {
1754 bdrv_set_change_cb(bs, cdrom_change_cb, s);
1755 bs->buffer_alignment = 2048;
1757 if (!bdrv_is_inserted(s->bs)) {
1758 error_report("Device needs media, but drive is empty");
1761 if (bdrv_is_read_only(bs)) {
1762 error_report("Can't use a read-only drive");
1767 strncpy(s->drive_serial_str, serial, sizeof(s->drive_serial_str));
1769 snprintf(s->drive_serial_str, sizeof(s->drive_serial_str),
1770 "QM%05d", s->drive_serial);
1773 pstrcpy(s->version, sizeof(s->version), version);
1775 pstrcpy(s->version, sizeof(s->version), QEMU_VERSION);
1779 bdrv_set_removable(bs, s->drive_kind == IDE_CD);
1783 static void ide_init1(IDEBus *bus, int unit)
1785 static int drive_serial = 1;
1786 IDEState *s = &bus->ifs[unit];
1790 s->drive_serial = drive_serial++;
1791 /* we need at least 2k alignment for accessing CDROMs using O_DIRECT */
1792 s->io_buffer_total_len = IDE_DMA_BUF_SECTORS*512 + 4;
1793 s->io_buffer = qemu_memalign(2048, s->io_buffer_total_len);
1794 memset(s->io_buffer, 0, s->io_buffer_total_len);
1796 s->smart_selftest_data = qemu_blockalign(s->bs, 512);
1797 memset(s->smart_selftest_data, 0, 512);
1799 s->sector_write_timer = qemu_new_timer_ns(vm_clock,
1800 ide_sector_write_timer_cb, s);
1803 static void ide_nop_start(IDEDMA *dma, IDEState *s,
1804 BlockDriverCompletionFunc *cb)
1808 static int ide_nop(IDEDMA *dma)
1813 static int ide_nop_int(IDEDMA *dma, int x)
1818 static void ide_nop_restart(void *opaque, int x, int y)
1822 static const IDEDMAOps ide_dma_nop_ops = {
1823 .start_dma = ide_nop_start,
1824 .start_transfer = ide_nop,
1825 .prepare_buf = ide_nop_int,
1826 .rw_buf = ide_nop_int,
1827 .set_unit = ide_nop_int,
1828 .add_status = ide_nop_int,
1829 .set_inactive = ide_nop,
1830 .restart_cb = ide_nop_restart,
1834 static IDEDMA ide_dma_nop = {
1835 .ops = &ide_dma_nop_ops,
1839 void ide_init2(IDEBus *bus, qemu_irq irq)
1843 for(i = 0; i < 2; i++) {
1845 ide_reset(&bus->ifs[i]);
1848 bus->dma = &ide_dma_nop;
1851 /* TODO convert users to qdev and remove */
1852 void ide_init2_with_non_qdev_drives(IDEBus *bus, DriveInfo *hd0,
1853 DriveInfo *hd1, qemu_irq irq)
1858 for(i = 0; i < 2; i++) {
1859 dinfo = i == 0 ? hd0 : hd1;
1862 if (ide_init_drive(&bus->ifs[i], dinfo->bdrv,
1863 dinfo->media_cd ? IDE_CD : IDE_HD, NULL,
1864 *dinfo->serial ? dinfo->serial : NULL) < 0) {
1865 error_report("Can't set up IDE drive %s", dinfo->id);
1869 ide_reset(&bus->ifs[i]);
1873 bus->dma = &ide_dma_nop;
1876 void ide_init_ioport(IDEBus *bus, int iobase, int iobase2)
1878 register_ioport_write(iobase, 8, 1, ide_ioport_write, bus);
1879 register_ioport_read(iobase, 8, 1, ide_ioport_read, bus);
1881 register_ioport_read(iobase2, 1, 1, ide_status_read, bus);
1882 register_ioport_write(iobase2, 1, 1, ide_cmd_write, bus);
1886 register_ioport_write(iobase, 2, 2, ide_data_writew, bus);
1887 register_ioport_read(iobase, 2, 2, ide_data_readw, bus);
1888 register_ioport_write(iobase, 4, 4, ide_data_writel, bus);
1889 register_ioport_read(iobase, 4, 4, ide_data_readl, bus);
1892 static bool is_identify_set(void *opaque, int version_id)
1894 IDEState *s = opaque;
1896 return s->identify_set != 0;
1899 static EndTransferFunc* transfer_end_table[] = {
1903 ide_atapi_cmd_reply_end,
1905 ide_dummy_transfer_stop,
1908 static int transfer_end_table_idx(EndTransferFunc *fn)
1912 for (i = 0; i < ARRAY_SIZE(transfer_end_table); i++)
1913 if (transfer_end_table[i] == fn)
1919 static int ide_drive_post_load(void *opaque, int version_id)
1921 IDEState *s = opaque;
1923 if (version_id < 3) {
1924 if (s->sense_key == SENSE_UNIT_ATTENTION &&
1925 s->asc == ASC_MEDIUM_MAY_HAVE_CHANGED) {
1926 s->cdrom_changed = 1;
1932 static int ide_drive_pio_post_load(void *opaque, int version_id)
1934 IDEState *s = opaque;
1936 if (s->end_transfer_fn_idx > ARRAY_SIZE(transfer_end_table)) {
1939 s->end_transfer_func = transfer_end_table[s->end_transfer_fn_idx];
1940 s->data_ptr = s->io_buffer + s->cur_io_buffer_offset;
1941 s->data_end = s->data_ptr + s->cur_io_buffer_len;
1946 static void ide_drive_pio_pre_save(void *opaque)
1948 IDEState *s = opaque;
1951 s->cur_io_buffer_offset = s->data_ptr - s->io_buffer;
1952 s->cur_io_buffer_len = s->data_end - s->data_ptr;
1954 idx = transfer_end_table_idx(s->end_transfer_func);
1956 fprintf(stderr, "%s: invalid end_transfer_func for DRQ_STAT\n",
1958 s->end_transfer_fn_idx = 2;
1960 s->end_transfer_fn_idx = idx;
1964 static bool ide_drive_pio_state_needed(void *opaque)
1966 IDEState *s = opaque;
1968 return ((s->status & DRQ_STAT) != 0)
1969 || (s->bus->error_status & BM_STATUS_PIO_RETRY);
1972 static bool ide_atapi_gesn_needed(void *opaque)
1974 IDEState *s = opaque;
1976 return s->events.new_media || s->events.eject_request;
1979 static bool ide_error_needed(void *opaque)
1981 IDEBus *bus = opaque;
1983 return (bus->error_status != 0);
1986 /* Fields for GET_EVENT_STATUS_NOTIFICATION ATAPI command */
1987 const VMStateDescription vmstate_ide_atapi_gesn_state = {
1988 .name ="ide_drive/atapi/gesn_state",
1990 .minimum_version_id = 1,
1991 .minimum_version_id_old = 1,
1992 .fields = (VMStateField []) {
1993 VMSTATE_BOOL(events.new_media, IDEState),
1994 VMSTATE_BOOL(events.eject_request, IDEState),
1995 VMSTATE_END_OF_LIST()
1999 const VMStateDescription vmstate_ide_drive_pio_state = {
2000 .name = "ide_drive/pio_state",
2002 .minimum_version_id = 1,
2003 .minimum_version_id_old = 1,
2004 .pre_save = ide_drive_pio_pre_save,
2005 .post_load = ide_drive_pio_post_load,
2006 .fields = (VMStateField []) {
2007 VMSTATE_INT32(req_nb_sectors, IDEState),
2008 VMSTATE_VARRAY_INT32(io_buffer, IDEState, io_buffer_total_len, 1,
2009 vmstate_info_uint8, uint8_t),
2010 VMSTATE_INT32(cur_io_buffer_offset, IDEState),
2011 VMSTATE_INT32(cur_io_buffer_len, IDEState),
2012 VMSTATE_UINT8(end_transfer_fn_idx, IDEState),
2013 VMSTATE_INT32(elementary_transfer_size, IDEState),
2014 VMSTATE_INT32(packet_transfer_size, IDEState),
2015 VMSTATE_END_OF_LIST()
2019 const VMStateDescription vmstate_ide_drive = {
2020 .name = "ide_drive",
2022 .minimum_version_id = 0,
2023 .minimum_version_id_old = 0,
2024 .post_load = ide_drive_post_load,
2025 .fields = (VMStateField []) {
2026 VMSTATE_INT32(mult_sectors, IDEState),
2027 VMSTATE_INT32(identify_set, IDEState),
2028 VMSTATE_BUFFER_TEST(identify_data, IDEState, is_identify_set),
2029 VMSTATE_UINT8(feature, IDEState),
2030 VMSTATE_UINT8(error, IDEState),
2031 VMSTATE_UINT32(nsector, IDEState),
2032 VMSTATE_UINT8(sector, IDEState),
2033 VMSTATE_UINT8(lcyl, IDEState),
2034 VMSTATE_UINT8(hcyl, IDEState),
2035 VMSTATE_UINT8(hob_feature, IDEState),
2036 VMSTATE_UINT8(hob_sector, IDEState),
2037 VMSTATE_UINT8(hob_nsector, IDEState),
2038 VMSTATE_UINT8(hob_lcyl, IDEState),
2039 VMSTATE_UINT8(hob_hcyl, IDEState),
2040 VMSTATE_UINT8(select, IDEState),
2041 VMSTATE_UINT8(status, IDEState),
2042 VMSTATE_UINT8(lba48, IDEState),
2043 VMSTATE_UINT8(sense_key, IDEState),
2044 VMSTATE_UINT8(asc, IDEState),
2045 VMSTATE_UINT8_V(cdrom_changed, IDEState, 3),
2046 VMSTATE_END_OF_LIST()
2048 .subsections = (VMStateSubsection []) {
2050 .vmsd = &vmstate_ide_drive_pio_state,
2051 .needed = ide_drive_pio_state_needed,
2053 .vmsd = &vmstate_ide_atapi_gesn_state,
2054 .needed = ide_atapi_gesn_needed,
2061 const VMStateDescription vmstate_ide_error_status = {
2062 .name ="ide_bus/error",
2064 .minimum_version_id = 1,
2065 .minimum_version_id_old = 1,
2066 .fields = (VMStateField []) {
2067 VMSTATE_INT32(error_status, IDEBus),
2068 VMSTATE_END_OF_LIST()
2072 const VMStateDescription vmstate_ide_bus = {
2075 .minimum_version_id = 1,
2076 .minimum_version_id_old = 1,
2077 .fields = (VMStateField []) {
2078 VMSTATE_UINT8(cmd, IDEBus),
2079 VMSTATE_UINT8(unit, IDEBus),
2080 VMSTATE_END_OF_LIST()
2082 .subsections = (VMStateSubsection []) {
2084 .vmsd = &vmstate_ide_error_status,
2085 .needed = ide_error_needed,
2092 void ide_drive_get(DriveInfo **hd, int max_bus)
2096 if (drive_get_max_bus(IF_IDE) >= max_bus) {
2097 fprintf(stderr, "qemu: too many IDE bus: %d\n", max_bus);
2101 for(i = 0; i < max_bus * MAX_IDE_DEVS; i++) {
2102 hd[i] = drive_get(IF_IDE, i / MAX_IDE_DEVS, i % MAX_IDE_DEVS);
projects / qemu.git / blob