2 * QEMU IDE disk and CD/DVD-ROM Emulator
4 * Copyright (c) 2003 Fabrice Bellard
5 * Copyright (c) 2006 Openedhand Ltd.
7 * Permission is hereby granted, free of charge, to any person obtaining a copy
8 * of this software and associated documentation files (the "Software"), to deal
9 * in the Software without restriction, including without limitation the rights
10 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
11 * copies of the Software, and to permit persons to whom the Software is
12 * furnished to do so, subject to the following conditions:
14 * The above copyright notice and this permission notice shall be included in
15 * all copies or substantial portions of the Software.
17 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
18 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
19 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
20 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
21 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
22 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
28 #include "scsi-disk.h"
31 #include "qemu-timer.h"
35 /* debug IDE devices */
37 //#define DEBUG_IDE_ATAPI
41 /* Bits of HD_STATUS */
43 #define INDEX_STAT 0x02
44 #define ECC_STAT 0x04 /* Corrected error */
46 #define SEEK_STAT 0x10
48 #define WRERR_STAT 0x20
49 #define READY_STAT 0x40
50 #define BUSY_STAT 0x80
52 /* Bits for HD_ERROR */
53 #define MARK_ERR 0x01 /* Bad address mark */
54 #define TRK0_ERR 0x02 /* couldn't find track 0 */
55 #define ABRT_ERR 0x04 /* Command aborted */
56 #define MCR_ERR 0x08 /* media change request */
57 #define ID_ERR 0x10 /* ID field not found */
58 #define MC_ERR 0x20 /* media changed */
59 #define ECC_ERR 0x40 /* Uncorrectable ECC error */
60 #define BBD_ERR 0x80 /* pre-EIDE meaning: block marked bad */
61 #define ICRC_ERR 0x80 /* new meaning: CRC error during transfer */
63 /* Bits of HD_NSECTOR */
69 #define IDE_CMD_RESET 0x04
70 #define IDE_CMD_DISABLE_IRQ 0x02
72 /* ATA/ATAPI Commands pre T13 Spec */
77 #define CFA_REQ_EXT_ERROR_CODE 0x03 /* CFA Request Extended Error Code */
81 #define WIN_SRST 0x08 /* ATAPI soft reset command */
82 #define WIN_DEVICE_RESET 0x08
86 #define WIN_RECAL 0x10
87 #define WIN_RESTORE WIN_RECAL
91 #define WIN_READ 0x20 /* 28-Bit */
92 #define WIN_READ_ONCE 0x21 /* 28-Bit without retries */
93 #define WIN_READ_LONG 0x22 /* 28-Bit */
94 #define WIN_READ_LONG_ONCE 0x23 /* 28-Bit without retries */
95 #define WIN_READ_EXT 0x24 /* 48-Bit */
96 #define WIN_READDMA_EXT 0x25 /* 48-Bit */
97 #define WIN_READDMA_QUEUED_EXT 0x26 /* 48-Bit */
98 #define WIN_READ_NATIVE_MAX_EXT 0x27 /* 48-Bit */
102 #define WIN_MULTREAD_EXT 0x29 /* 48-Bit */
104 * 0x2A->0x2F Reserved
106 #define WIN_WRITE 0x30 /* 28-Bit */
107 #define WIN_WRITE_ONCE 0x31 /* 28-Bit without retries */
108 #define WIN_WRITE_LONG 0x32 /* 28-Bit */
109 #define WIN_WRITE_LONG_ONCE 0x33 /* 28-Bit without retries */
110 #define WIN_WRITE_EXT 0x34 /* 48-Bit */
111 #define WIN_WRITEDMA_EXT 0x35 /* 48-Bit */
112 #define WIN_WRITEDMA_QUEUED_EXT 0x36 /* 48-Bit */
113 #define WIN_SET_MAX_EXT 0x37 /* 48-Bit */
114 #define CFA_WRITE_SECT_WO_ERASE 0x38 /* CFA Write Sectors without erase */
115 #define WIN_MULTWRITE_EXT 0x39 /* 48-Bit */
117 * 0x3A->0x3B Reserved
119 #define WIN_WRITE_VERIFY 0x3C /* 28-Bit */
121 * 0x3D->0x3F Reserved
123 #define WIN_VERIFY 0x40 /* 28-Bit - Read Verify Sectors */
124 #define WIN_VERIFY_ONCE 0x41 /* 28-Bit - without retries */
125 #define WIN_VERIFY_EXT 0x42 /* 48-Bit */
127 * 0x43->0x4F Reserved
129 #define WIN_FORMAT 0x50
131 * 0x51->0x5F Reserved
133 #define WIN_INIT 0x60
135 * 0x61->0x5F Reserved
137 #define WIN_SEEK 0x70 /* 0x70-0x7F Reserved */
138 #define CFA_TRANSLATE_SECTOR 0x87 /* CFA Translate Sector */
139 #define WIN_DIAGNOSE 0x90
140 #define WIN_SPECIFY 0x91 /* set drive geometry translation */
141 #define WIN_DOWNLOAD_MICROCODE 0x92
142 #define WIN_STANDBYNOW2 0x94
143 #define CFA_IDLEIMMEDIATE 0x95 /* force drive to become "ready" */
144 #define WIN_STANDBY2 0x96
145 #define WIN_SETIDLE2 0x97
146 #define WIN_CHECKPOWERMODE2 0x98
147 #define WIN_SLEEPNOW2 0x99
151 #define WIN_PACKETCMD 0xA0 /* Send a packet command. */
152 #define WIN_PIDENTIFY 0xA1 /* identify ATAPI device */
153 #define WIN_QUEUED_SERVICE 0xA2
154 #define WIN_SMART 0xB0 /* self-monitoring and reporting */
155 #define CFA_ACCESS_METADATA_STORAGE 0xB8
156 #define CFA_ERASE_SECTORS 0xC0 /* microdrives implement as NOP */
157 #define WIN_MULTREAD 0xC4 /* read sectors using multiple mode*/
158 #define WIN_MULTWRITE 0xC5 /* write sectors using multiple mode */
159 #define WIN_SETMULT 0xC6 /* enable/disable multiple mode */
160 #define WIN_READDMA_QUEUED 0xC7 /* read sectors using Queued DMA transfers */
161 #define WIN_READDMA 0xC8 /* read sectors using DMA transfers */
162 #define WIN_READDMA_ONCE 0xC9 /* 28-Bit - without retries */
163 #define WIN_WRITEDMA 0xCA /* write sectors using DMA transfers */
164 #define WIN_WRITEDMA_ONCE 0xCB /* 28-Bit - without retries */
165 #define WIN_WRITEDMA_QUEUED 0xCC /* write sectors using Queued DMA transfers */
166 #define CFA_WRITE_MULTI_WO_ERASE 0xCD /* CFA Write multiple without erase */
167 #define WIN_GETMEDIASTATUS 0xDA
168 #define WIN_ACKMEDIACHANGE 0xDB /* ATA-1, ATA-2 vendor */
169 #define WIN_POSTBOOT 0xDC
170 #define WIN_PREBOOT 0xDD
171 #define WIN_DOORLOCK 0xDE /* lock door on removable drives */
172 #define WIN_DOORUNLOCK 0xDF /* unlock door on removable drives */
173 #define WIN_STANDBYNOW1 0xE0
174 #define WIN_IDLEIMMEDIATE 0xE1 /* force drive to become "ready" */
175 #define WIN_STANDBY 0xE2 /* Set device in Standby Mode */
176 #define WIN_SETIDLE1 0xE3
177 #define WIN_READ_BUFFER 0xE4 /* force read only 1 sector */
178 #define WIN_CHECKPOWERMODE1 0xE5
179 #define WIN_SLEEPNOW1 0xE6
180 #define WIN_FLUSH_CACHE 0xE7
181 #define WIN_WRITE_BUFFER 0xE8 /* force write only 1 sector */
182 #define WIN_WRITE_SAME 0xE9 /* read ata-2 to use */
183 /* SET_FEATURES 0x22 or 0xDD */
184 #define WIN_FLUSH_CACHE_EXT 0xEA /* 48-Bit */
185 #define WIN_IDENTIFY 0xEC /* ask drive to identify itself */
186 #define WIN_MEDIAEJECT 0xED
187 #define WIN_IDENTIFY_DMA 0xEE /* same as WIN_IDENTIFY, but DMA */
188 #define WIN_SETFEATURES 0xEF /* set special drive features */
189 #define EXABYTE_ENABLE_NEST 0xF0
190 #define IBM_SENSE_CONDITION 0xF0 /* measure disk temperature */
191 #define WIN_SECURITY_SET_PASS 0xF1
192 #define WIN_SECURITY_UNLOCK 0xF2
193 #define WIN_SECURITY_ERASE_PREPARE 0xF3
194 #define WIN_SECURITY_ERASE_UNIT 0xF4
195 #define WIN_SECURITY_FREEZE_LOCK 0xF5
196 #define CFA_WEAR_LEVEL 0xF5 /* microdrives implement as NOP */
197 #define WIN_SECURITY_DISABLE 0xF6
198 #define WIN_READ_NATIVE_MAX 0xF8 /* return the native maximum address */
199 #define WIN_SET_MAX 0xF9
200 #define DISABLE_SEAGATE 0xFB
202 /* set to 1 set disable mult support */
203 #define MAX_MULT_SECTORS 16
205 #define IDE_DMA_BUF_SECTORS 256
207 #if (IDE_DMA_BUF_SECTORS < MAX_MULT_SECTORS)
208 #error "IDE_DMA_BUF_SECTORS must be bigger or equal to MAX_MULT_SECTORS"
213 #define ATAPI_PACKET_SIZE 12
215 /* The generic packet command opcodes for CD/DVD Logical Units,
216 * From Table 57 of the SFF8090 Ver. 3 (Mt. Fuji) draft standard. */
217 #define GPCMD_BLANK 0xa1
218 #define GPCMD_CLOSE_TRACK 0x5b
219 #define GPCMD_FLUSH_CACHE 0x35
220 #define GPCMD_FORMAT_UNIT 0x04
221 #define GPCMD_GET_CONFIGURATION 0x46
222 #define GPCMD_GET_EVENT_STATUS_NOTIFICATION 0x4a
223 #define GPCMD_GET_PERFORMANCE 0xac
224 #define GPCMD_INQUIRY 0x12
225 #define GPCMD_LOAD_UNLOAD 0xa6
226 #define GPCMD_MECHANISM_STATUS 0xbd
227 #define GPCMD_MODE_SELECT_10 0x55
228 #define GPCMD_MODE_SENSE_10 0x5a
229 #define GPCMD_PAUSE_RESUME 0x4b
230 #define GPCMD_PLAY_AUDIO_10 0x45
231 #define GPCMD_PLAY_AUDIO_MSF 0x47
232 #define GPCMD_PLAY_AUDIO_TI 0x48
233 #define GPCMD_PLAY_CD 0xbc
234 #define GPCMD_PREVENT_ALLOW_MEDIUM_REMOVAL 0x1e
235 #define GPCMD_READ_10 0x28
236 #define GPCMD_READ_12 0xa8
237 #define GPCMD_READ_CDVD_CAPACITY 0x25
238 #define GPCMD_READ_CD 0xbe
239 #define GPCMD_READ_CD_MSF 0xb9
240 #define GPCMD_READ_DISC_INFO 0x51
241 #define GPCMD_READ_DVD_STRUCTURE 0xad
242 #define GPCMD_READ_FORMAT_CAPACITIES 0x23
243 #define GPCMD_READ_HEADER 0x44
244 #define GPCMD_READ_TRACK_RZONE_INFO 0x52
245 #define GPCMD_READ_SUBCHANNEL 0x42
246 #define GPCMD_READ_TOC_PMA_ATIP 0x43
247 #define GPCMD_REPAIR_RZONE_TRACK 0x58
248 #define GPCMD_REPORT_KEY 0xa4
249 #define GPCMD_REQUEST_SENSE 0x03
250 #define GPCMD_RESERVE_RZONE_TRACK 0x53
251 #define GPCMD_SCAN 0xba
252 #define GPCMD_SEEK 0x2b
253 #define GPCMD_SEND_DVD_STRUCTURE 0xad
254 #define GPCMD_SEND_EVENT 0xa2
255 #define GPCMD_SEND_KEY 0xa3
256 #define GPCMD_SEND_OPC 0x54
257 #define GPCMD_SET_READ_AHEAD 0xa7
258 #define GPCMD_SET_STREAMING 0xb6
259 #define GPCMD_START_STOP_UNIT 0x1b
260 #define GPCMD_STOP_PLAY_SCAN 0x4e
261 #define GPCMD_TEST_UNIT_READY 0x00
262 #define GPCMD_VERIFY_10 0x2f
263 #define GPCMD_WRITE_10 0x2a
264 #define GPCMD_WRITE_AND_VERIFY_10 0x2e
265 /* This is listed as optional in ATAPI 2.6, but is (curiously)
266 * missing from Mt. Fuji, Table 57. It _is_ mentioned in Mt. Fuji
267 * Table 377 as an MMC command for SCSi devices though... Most ATAPI
268 * drives support it. */
269 #define GPCMD_SET_SPEED 0xbb
270 /* This seems to be a SCSI specific CD-ROM opcode
271 * to play data at track/index */
272 #define GPCMD_PLAYAUDIO_TI 0x48
274 * From MS Media Status Notification Support Specification. For
277 #define GPCMD_GET_MEDIA_STATUS 0xda
278 #define GPCMD_MODE_SENSE_6 0x1a
280 /* Mode page codes for mode sense/set */
281 #define GPMODE_R_W_ERROR_PAGE 0x01
282 #define GPMODE_WRITE_PARMS_PAGE 0x05
283 #define GPMODE_AUDIO_CTL_PAGE 0x0e
284 #define GPMODE_POWER_PAGE 0x1a
285 #define GPMODE_FAULT_FAIL_PAGE 0x1c
286 #define GPMODE_TO_PROTECT_PAGE 0x1d
287 #define GPMODE_CAPABILITIES_PAGE 0x2a
288 #define GPMODE_ALL_PAGES 0x3f
289 /* Not in Mt. Fuji, but in ATAPI 2.6 -- depricated now in favor
290 * of MODE_SENSE_POWER_PAGE */
291 #define GPMODE_CDROM_PAGE 0x0d
294 * Based on values from <linux/cdrom.h> but extending CD_MINS
295 * to the maximum common size allowed by the Orange's Book ATIP
297 * 90 and 99 min CDs are also available but using them as the
298 * upper limit reduces the effectiveness of the heuristic to
299 * detect DVDs burned to less than 25% of their maximum capacity
302 /* Some generally useful CD-ROM information */
303 #define CD_MINS 80 /* max. minutes per CD */
304 #define CD_SECS 60 /* seconds per minute */
305 #define CD_FRAMES 75 /* frames per second */
306 #define CD_FRAMESIZE 2048 /* bytes per frame, "cooked" mode */
307 #define CD_MAX_BYTES (CD_MINS * CD_SECS * CD_FRAMES * CD_FRAMESIZE)
308 #define CD_MAX_SECTORS (CD_MAX_BYTES / 512)
311 * The MMC values are not IDE specific and might need to be moved
312 * to a common header if they are also needed for the SCSI emulation
315 /* Profile list from MMC-6 revision 1 table 91 */
316 #define MMC_PROFILE_NONE 0x0000
317 #define MMC_PROFILE_CD_ROM 0x0008
318 #define MMC_PROFILE_CD_R 0x0009
319 #define MMC_PROFILE_CD_RW 0x000A
320 #define MMC_PROFILE_DVD_ROM 0x0010
321 #define MMC_PROFILE_DVD_R_SR 0x0011
322 #define MMC_PROFILE_DVD_RAM 0x0012
323 #define MMC_PROFILE_DVD_RW_RO 0x0013
324 #define MMC_PROFILE_DVD_RW_SR 0x0014
325 #define MMC_PROFILE_DVD_R_DL_SR 0x0015
326 #define MMC_PROFILE_DVD_R_DL_JR 0x0016
327 #define MMC_PROFILE_DVD_RW_DL 0x0017
328 #define MMC_PROFILE_DVD_DDR 0x0018
329 #define MMC_PROFILE_DVD_PLUS_RW 0x001A
330 #define MMC_PROFILE_DVD_PLUS_R 0x001B
331 #define MMC_PROFILE_DVD_PLUS_RW_DL 0x002A
332 #define MMC_PROFILE_DVD_PLUS_R_DL 0x002B
333 #define MMC_PROFILE_BD_ROM 0x0040
334 #define MMC_PROFILE_BD_R_SRM 0x0041
335 #define MMC_PROFILE_BD_R_RRM 0x0042
336 #define MMC_PROFILE_BD_RE 0x0043
337 #define MMC_PROFILE_HDDVD_ROM 0x0050
338 #define MMC_PROFILE_HDDVD_R 0x0051
339 #define MMC_PROFILE_HDDVD_RAM 0x0052
340 #define MMC_PROFILE_HDDVD_RW 0x0053
341 #define MMC_PROFILE_HDDVD_R_DL 0x0058
342 #define MMC_PROFILE_HDDVD_RW_DL 0x005A
343 #define MMC_PROFILE_INVALID 0xFFFF
345 #define ATAPI_INT_REASON_CD 0x01 /* 0 = data transfer */
346 #define ATAPI_INT_REASON_IO 0x02 /* 1 = transfer to the host */
347 #define ATAPI_INT_REASON_REL 0x04
348 #define ATAPI_INT_REASON_TAG 0xf8
350 /* same constants as bochs */
351 #define ASC_ILLEGAL_OPCODE 0x20
352 #define ASC_LOGICAL_BLOCK_OOR 0x21
353 #define ASC_INV_FIELD_IN_CMD_PACKET 0x24
354 #define ASC_INCOMPATIBLE_FORMAT 0x30
355 #define ASC_MEDIUM_NOT_PRESENT 0x3a
356 #define ASC_SAVING_PARAMETERS_NOT_SUPPORTED 0x39
358 #define CFA_NO_ERROR 0x00
359 #define CFA_MISC_ERROR 0x09
360 #define CFA_INVALID_COMMAND 0x20
361 #define CFA_INVALID_ADDRESS 0x21
362 #define CFA_ADDRESS_OVERFLOW 0x2f
365 #define SENSE_NOT_READY 2
366 #define SENSE_ILLEGAL_REQUEST 5
367 #define SENSE_UNIT_ATTENTION 6
371 typedef void EndTransferFunc(struct IDEState *);
373 /* NOTE: IDEState represents in fact one drive */
374 typedef struct IDEState {
378 int cylinders, heads, sectors;
382 uint16_t identify_data[256];
385 struct BMDMAState *bmdma;
394 /* other part of tf for lba48 support */
404 /* 0x3f6 command, only meaningful for drive 0 */
406 /* set for lba48 access */
408 /* depends on bit 4 in select, only meaningful for drive 0 */
409 struct IDEState *cur_drive;
410 BlockDriverState *bs;
414 int packet_transfer_size;
415 int elementary_transfer_size;
419 int atapi_dma; /* true if dma is requested for the packet cmd */
422 /* PIO transfer handling */
423 int req_nb_sectors; /* number of sectors per interrupt */
424 EndTransferFunc *end_transfer_func;
428 QEMUTimer *sector_write_timer; /* only used for win2k install hack */
429 uint32_t irq_count; /* counts IRQs when using win2k install hack */
430 /* CF-ATA extended error */
432 /* CF-ATA metadata storage */
434 uint8_t *mdata_storage;
438 /* XXX: DVDs that could fit on a CD will be reported as a CD */
439 static inline int media_present(IDEState *s)
441 return (s->nb_sectors > 0);
444 static inline int media_is_dvd(IDEState *s)
446 return (media_present(s) && s->nb_sectors > CD_MAX_SECTORS);
449 static inline int media_is_cd(IDEState *s)
451 return (media_present(s) && s->nb_sectors <= CD_MAX_SECTORS);
454 #define BM_STATUS_DMAING 0x01
455 #define BM_STATUS_ERROR 0x02
456 #define BM_STATUS_INT 0x04
458 #define BM_CMD_START 0x01
459 #define BM_CMD_READ 0x08
461 #define IDE_TYPE_PIIX3 0
462 #define IDE_TYPE_CMD646 1
463 #define IDE_TYPE_PIIX4 2
465 /* CMD646 specific */
467 #define MRDMODE_INTR_CH0 0x04
468 #define MRDMODE_INTR_CH1 0x08
469 #define MRDMODE_BLK_CH0 0x10
470 #define MRDMODE_BLK_CH1 0x20
471 #define UDIDETCR0 0x73
472 #define UDIDETCR1 0x7B
474 typedef struct BMDMAState {
479 struct PCIIDEState *pci_dev;
480 /* current transfer state */
482 uint32_t cur_prd_last;
483 uint32_t cur_prd_addr;
484 uint32_t cur_prd_len;
486 BlockDriverCompletionFunc *dma_cb;
487 BlockDriverAIOCB *aiocb;
490 typedef struct PCIIDEState {
494 int type; /* see IDE_TYPE_xxx */
497 static void ide_dma_start(IDEState *s, BlockDriverCompletionFunc *dma_cb);
498 static void ide_atapi_cmd_read_dma_cb(void *opaque, int ret);
500 static void padstr(char *str, const char *src, int len)
503 for(i = 0; i < len; i++) {
512 static void padstr8(uint8_t *buf, int buf_size, const char *src)
515 for(i = 0; i < buf_size; i++) {
523 static void put_le16(uint16_t *p, unsigned int v)
528 static void ide_identify(IDEState *s)
531 unsigned int oldsize;
534 if (s->identify_set) {
535 memcpy(s->io_buffer, s->identify_data, sizeof(s->identify_data));
539 memset(s->io_buffer, 0, 512);
540 p = (uint16_t *)s->io_buffer;
541 put_le16(p + 0, 0x0040);
542 put_le16(p + 1, s->cylinders);
543 put_le16(p + 3, s->heads);
544 put_le16(p + 4, 512 * s->sectors); /* XXX: retired, remove ? */
545 put_le16(p + 5, 512); /* XXX: retired, remove ? */
546 put_le16(p + 6, s->sectors);
547 snprintf(buf, sizeof(buf), "QM%05d", s->drive_serial);
548 padstr((char *)(p + 10), buf, 20); /* serial number */
549 put_le16(p + 20, 3); /* XXX: retired, remove ? */
550 put_le16(p + 21, 512); /* cache size in sectors */
551 put_le16(p + 22, 4); /* ecc bytes */
552 padstr((char *)(p + 23), QEMU_VERSION, 8); /* firmware version */
553 padstr((char *)(p + 27), "QEMU HARDDISK", 40); /* model */
554 #if MAX_MULT_SECTORS > 1
555 put_le16(p + 47, 0x8000 | MAX_MULT_SECTORS);
557 put_le16(p + 48, 1); /* dword I/O */
558 put_le16(p + 49, (1 << 11) | (1 << 9) | (1 << 8)); /* DMA and LBA supported */
559 put_le16(p + 51, 0x200); /* PIO transfer cycle */
560 put_le16(p + 52, 0x200); /* DMA transfer cycle */
561 put_le16(p + 53, 1 | (1 << 1) | (1 << 2)); /* words 54-58,64-70,88 are valid */
562 put_le16(p + 54, s->cylinders);
563 put_le16(p + 55, s->heads);
564 put_le16(p + 56, s->sectors);
565 oldsize = s->cylinders * s->heads * s->sectors;
566 put_le16(p + 57, oldsize);
567 put_le16(p + 58, oldsize >> 16);
569 put_le16(p + 59, 0x100 | s->mult_sectors);
570 put_le16(p + 60, s->nb_sectors);
571 put_le16(p + 61, s->nb_sectors >> 16);
572 put_le16(p + 63, 0x07); /* mdma0-2 supported */
573 put_le16(p + 65, 120);
574 put_le16(p + 66, 120);
575 put_le16(p + 67, 120);
576 put_le16(p + 68, 120);
577 put_le16(p + 80, 0xf0); /* ata3 -> ata6 supported */
578 put_le16(p + 81, 0x16); /* conforms to ata5 */
579 put_le16(p + 82, (1 << 14));
580 /* 13=flush_cache_ext,12=flush_cache,10=lba48 */
581 put_le16(p + 83, (1 << 14) | (1 << 13) | (1 <<12) | (1 << 10));
582 put_le16(p + 84, (1 << 14));
583 put_le16(p + 85, (1 << 14));
584 /* 13=flush_cache_ext,12=flush_cache,10=lba48 */
585 put_le16(p + 86, (1 << 14) | (1 << 13) | (1 <<12) | (1 << 10));
586 put_le16(p + 87, (1 << 14));
587 put_le16(p + 88, 0x3f | (1 << 13)); /* udma5 set and supported */
588 put_le16(p + 93, 1 | (1 << 14) | 0x2000);
589 put_le16(p + 100, s->nb_sectors);
590 put_le16(p + 101, s->nb_sectors >> 16);
591 put_le16(p + 102, s->nb_sectors >> 32);
592 put_le16(p + 103, s->nb_sectors >> 48);
594 memcpy(s->identify_data, p, sizeof(s->identify_data));
598 static void ide_atapi_identify(IDEState *s)
603 if (s->identify_set) {
604 memcpy(s->io_buffer, s->identify_data, sizeof(s->identify_data));
608 memset(s->io_buffer, 0, 512);
609 p = (uint16_t *)s->io_buffer;
610 /* Removable CDROM, 50us response, 12 byte packets */
611 put_le16(p + 0, (2 << 14) | (5 << 8) | (1 << 7) | (2 << 5) | (0 << 0));
612 snprintf(buf, sizeof(buf), "QM%05d", s->drive_serial);
613 padstr((char *)(p + 10), buf, 20); /* serial number */
614 put_le16(p + 20, 3); /* buffer type */
615 put_le16(p + 21, 512); /* cache size in sectors */
616 put_le16(p + 22, 4); /* ecc bytes */
617 padstr((char *)(p + 23), QEMU_VERSION, 8); /* firmware version */
618 padstr((char *)(p + 27), "QEMU DVD-ROM", 40); /* model */
619 put_le16(p + 48, 1); /* dword I/O (XXX: should not be set on CDROM) */
621 put_le16(p + 49, 1 << 9 | 1 << 8); /* DMA and LBA supported */
622 put_le16(p + 53, 7); /* words 64-70, 54-58, 88 valid */
623 put_le16(p + 63, 7); /* mdma0-2 supported */
624 put_le16(p + 64, 0x3f); /* PIO modes supported */
626 put_le16(p + 49, 1 << 9); /* LBA supported, no DMA */
627 put_le16(p + 53, 3); /* words 64-70, 54-58 valid */
628 put_le16(p + 63, 0x103); /* DMA modes XXX: may be incorrect */
629 put_le16(p + 64, 1); /* PIO modes */
631 put_le16(p + 65, 0xb4); /* minimum DMA multiword tx cycle time */
632 put_le16(p + 66, 0xb4); /* recommended DMA multiword tx cycle time */
633 put_le16(p + 67, 0x12c); /* minimum PIO cycle time without flow control */
634 put_le16(p + 68, 0xb4); /* minimum PIO cycle time with IORDY flow control */
636 put_le16(p + 71, 30); /* in ns */
637 put_le16(p + 72, 30); /* in ns */
639 put_le16(p + 80, 0x1e); /* support up to ATA/ATAPI-4 */
641 put_le16(p + 88, 0x3f | (1 << 13)); /* udma5 set and supported */
643 memcpy(s->identify_data, p, sizeof(s->identify_data));
647 static void ide_cfata_identify(IDEState *s)
653 p = (uint16_t *) s->identify_data;
657 memset(p, 0, sizeof(s->identify_data));
659 cur_sec = s->cylinders * s->heads * s->sectors;
661 put_le16(p + 0, 0x848a); /* CF Storage Card signature */
662 put_le16(p + 1, s->cylinders); /* Default cylinders */
663 put_le16(p + 3, s->heads); /* Default heads */
664 put_le16(p + 6, s->sectors); /* Default sectors per track */
665 put_le16(p + 7, s->nb_sectors >> 16); /* Sectors per card */
666 put_le16(p + 8, s->nb_sectors); /* Sectors per card */
667 snprintf(buf, sizeof(buf), "QM%05d", s->drive_serial);
668 padstr((char *)(p + 10), buf, 20); /* Serial number in ASCII */
669 put_le16(p + 22, 0x0004); /* ECC bytes */
670 padstr((char *) (p + 23), QEMU_VERSION, 8); /* Firmware Revision */
671 padstr((char *) (p + 27), "QEMU MICRODRIVE", 40);/* Model number */
672 #if MAX_MULT_SECTORS > 1
673 put_le16(p + 47, 0x8000 | MAX_MULT_SECTORS);
675 put_le16(p + 47, 0x0000);
677 put_le16(p + 49, 0x0f00); /* Capabilities */
678 put_le16(p + 51, 0x0002); /* PIO cycle timing mode */
679 put_le16(p + 52, 0x0001); /* DMA cycle timing mode */
680 put_le16(p + 53, 0x0003); /* Translation params valid */
681 put_le16(p + 54, s->cylinders); /* Current cylinders */
682 put_le16(p + 55, s->heads); /* Current heads */
683 put_le16(p + 56, s->sectors); /* Current sectors */
684 put_le16(p + 57, cur_sec); /* Current capacity */
685 put_le16(p + 58, cur_sec >> 16); /* Current capacity */
686 if (s->mult_sectors) /* Multiple sector setting */
687 put_le16(p + 59, 0x100 | s->mult_sectors);
688 put_le16(p + 60, s->nb_sectors); /* Total LBA sectors */
689 put_le16(p + 61, s->nb_sectors >> 16); /* Total LBA sectors */
690 put_le16(p + 63, 0x0203); /* Multiword DMA capability */
691 put_le16(p + 64, 0x0001); /* Flow Control PIO support */
692 put_le16(p + 65, 0x0096); /* Min. Multiword DMA cycle */
693 put_le16(p + 66, 0x0096); /* Rec. Multiword DMA cycle */
694 put_le16(p + 68, 0x00b4); /* Min. PIO cycle time */
695 put_le16(p + 82, 0x400c); /* Command Set supported */
696 put_le16(p + 83, 0x7068); /* Command Set supported */
697 put_le16(p + 84, 0x4000); /* Features supported */
698 put_le16(p + 85, 0x000c); /* Command Set enabled */
699 put_le16(p + 86, 0x7044); /* Command Set enabled */
700 put_le16(p + 87, 0x4000); /* Features enabled */
701 put_le16(p + 91, 0x4060); /* Current APM level */
702 put_le16(p + 129, 0x0002); /* Current features option */
703 put_le16(p + 130, 0x0005); /* Reassigned sectors */
704 put_le16(p + 131, 0x0001); /* Initial power mode */
705 put_le16(p + 132, 0x0000); /* User signature */
706 put_le16(p + 160, 0x8100); /* Power requirement */
707 put_le16(p + 161, 0x8001); /* CF command set */
712 memcpy(s->io_buffer, p, sizeof(s->identify_data));
715 static void ide_set_signature(IDEState *s)
717 s->select &= 0xf0; /* clear head */
733 static inline void ide_abort_command(IDEState *s)
735 s->status = READY_STAT | ERR_STAT;
739 static inline void ide_set_irq(IDEState *s)
741 BMDMAState *bm = s->bmdma;
742 if (!(s->cmd & IDE_CMD_DISABLE_IRQ)) {
744 bm->status |= BM_STATUS_INT;
746 qemu_irq_raise(s->irq);
750 /* prepare data transfer and tell what to do after */
751 static void ide_transfer_start(IDEState *s, uint8_t *buf, int size,
752 EndTransferFunc *end_transfer_func)
754 s->end_transfer_func = end_transfer_func;
756 s->data_end = buf + size;
757 if (!(s->status & ERR_STAT))
758 s->status |= DRQ_STAT;
761 static void ide_transfer_stop(IDEState *s)
763 s->end_transfer_func = ide_transfer_stop;
764 s->data_ptr = s->io_buffer;
765 s->data_end = s->io_buffer;
766 s->status &= ~DRQ_STAT;
769 static int64_t ide_get_sector(IDEState *s)
772 if (s->select & 0x40) {
775 sector_num = ((s->select & 0x0f) << 24) | (s->hcyl << 16) |
776 (s->lcyl << 8) | s->sector;
778 sector_num = ((int64_t)s->hob_hcyl << 40) |
779 ((int64_t) s->hob_lcyl << 32) |
780 ((int64_t) s->hob_sector << 24) |
781 ((int64_t) s->hcyl << 16) |
782 ((int64_t) s->lcyl << 8) | s->sector;
785 sector_num = ((s->hcyl << 8) | s->lcyl) * s->heads * s->sectors +
786 (s->select & 0x0f) * s->sectors + (s->sector - 1);
791 static void ide_set_sector(IDEState *s, int64_t sector_num)
794 if (s->select & 0x40) {
796 s->select = (s->select & 0xf0) | (sector_num >> 24);
797 s->hcyl = (sector_num >> 16);
798 s->lcyl = (sector_num >> 8);
799 s->sector = (sector_num);
801 s->sector = sector_num;
802 s->lcyl = sector_num >> 8;
803 s->hcyl = sector_num >> 16;
804 s->hob_sector = sector_num >> 24;
805 s->hob_lcyl = sector_num >> 32;
806 s->hob_hcyl = sector_num >> 40;
809 cyl = sector_num / (s->heads * s->sectors);
810 r = sector_num % (s->heads * s->sectors);
813 s->select = (s->select & 0xf0) | ((r / s->sectors) & 0x0f);
814 s->sector = (r % s->sectors) + 1;
818 static void ide_sector_read(IDEState *s)
823 s->status = READY_STAT | SEEK_STAT;
824 s->error = 0; /* not needed by IDE spec, but needed by Windows */
825 sector_num = ide_get_sector(s);
828 /* no more sector to read from disk */
829 ide_transfer_stop(s);
831 #if defined(DEBUG_IDE)
832 printf("read sector=%Ld\n", sector_num);
834 if (n > s->req_nb_sectors)
835 n = s->req_nb_sectors;
836 ret = bdrv_read(s->bs, sector_num, s->io_buffer, n);
837 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_read);
839 ide_set_sector(s, sector_num + n);
844 /* return 0 if buffer completed */
845 static int dma_buf_rw(BMDMAState *bm, int is_write)
847 IDEState *s = bm->ide_if;
855 l = s->io_buffer_size - s->io_buffer_index;
858 if (bm->cur_prd_len == 0) {
859 /* end of table (with a fail safe of one page) */
860 if (bm->cur_prd_last ||
861 (bm->cur_addr - bm->addr) >= 4096)
863 cpu_physical_memory_read(bm->cur_addr, (uint8_t *)&prd, 8);
865 prd.addr = le32_to_cpu(prd.addr);
866 prd.size = le32_to_cpu(prd.size);
867 len = prd.size & 0xfffe;
870 bm->cur_prd_len = len;
871 bm->cur_prd_addr = prd.addr;
872 bm->cur_prd_last = (prd.size & 0x80000000);
874 if (l > bm->cur_prd_len)
878 cpu_physical_memory_write(bm->cur_prd_addr,
879 s->io_buffer + s->io_buffer_index, l);
881 cpu_physical_memory_read(bm->cur_prd_addr,
882 s->io_buffer + s->io_buffer_index, l);
884 bm->cur_prd_addr += l;
885 bm->cur_prd_len -= l;
886 s->io_buffer_index += l;
892 /* XXX: handle errors */
893 static void ide_read_dma_cb(void *opaque, int ret)
895 BMDMAState *bm = opaque;
896 IDEState *s = bm->ide_if;
900 n = s->io_buffer_size >> 9;
901 sector_num = ide_get_sector(s);
904 ide_set_sector(s, sector_num);
906 if (dma_buf_rw(bm, 1) == 0)
910 /* end of transfer ? */
911 if (s->nsector == 0) {
912 s->status = READY_STAT | SEEK_STAT;
915 bm->status &= ~BM_STATUS_DMAING;
916 bm->status |= BM_STATUS_INT;
923 /* launch next transfer */
925 if (n > IDE_DMA_BUF_SECTORS)
926 n = IDE_DMA_BUF_SECTORS;
927 s->io_buffer_index = 0;
928 s->io_buffer_size = n * 512;
930 printf("aio_read: sector_num=%lld n=%d\n", sector_num, n);
932 bm->aiocb = bdrv_aio_read(s->bs, sector_num, s->io_buffer, n,
933 ide_read_dma_cb, bm);
936 static void ide_sector_read_dma(IDEState *s)
938 s->status = READY_STAT | SEEK_STAT | DRQ_STAT | BUSY_STAT;
939 s->io_buffer_index = 0;
940 s->io_buffer_size = 0;
941 ide_dma_start(s, ide_read_dma_cb);
944 static void ide_sector_write_timer_cb(void *opaque)
946 IDEState *s = opaque;
950 static void ide_sector_write(IDEState *s)
955 s->status = READY_STAT | SEEK_STAT;
956 sector_num = ide_get_sector(s);
957 #if defined(DEBUG_IDE)
958 printf("write sector=%Ld\n", sector_num);
961 if (n > s->req_nb_sectors)
962 n = s->req_nb_sectors;
963 ret = bdrv_write(s->bs, sector_num, s->io_buffer, n);
965 if (s->nsector == 0) {
966 /* no more sectors to write */
967 ide_transfer_stop(s);
970 if (n1 > s->req_nb_sectors)
971 n1 = s->req_nb_sectors;
972 ide_transfer_start(s, s->io_buffer, 512 * n1, ide_sector_write);
974 ide_set_sector(s, sector_num + n);
977 if (win2k_install_hack && ((++s->irq_count % 16) == 0)) {
978 /* It seems there is a bug in the Windows 2000 installer HDD
979 IDE driver which fills the disk with empty logs when the
980 IDE write IRQ comes too early. This hack tries to correct
981 that at the expense of slower write performances. Use this
982 option _only_ to install Windows 2000. You must disable it
984 qemu_mod_timer(s->sector_write_timer,
985 qemu_get_clock(vm_clock) + (ticks_per_sec / 1000));
993 /* XXX: handle errors */
994 static void ide_write_dma_cb(void *opaque, int ret)
996 BMDMAState *bm = opaque;
997 IDEState *s = bm->ide_if;
1001 n = s->io_buffer_size >> 9;
1002 sector_num = ide_get_sector(s);
1005 ide_set_sector(s, sector_num);
1009 /* end of transfer ? */
1010 if (s->nsector == 0) {
1011 s->status = READY_STAT | SEEK_STAT;
1014 bm->status &= ~BM_STATUS_DMAING;
1015 bm->status |= BM_STATUS_INT;
1022 /* launch next transfer */
1024 if (n > IDE_DMA_BUF_SECTORS)
1025 n = IDE_DMA_BUF_SECTORS;
1026 s->io_buffer_index = 0;
1027 s->io_buffer_size = n * 512;
1029 if (dma_buf_rw(bm, 0) == 0)
1032 printf("aio_write: sector_num=%lld n=%d\n", sector_num, n);
1034 bm->aiocb = bdrv_aio_write(s->bs, sector_num, s->io_buffer, n,
1035 ide_write_dma_cb, bm);
1038 static void ide_sector_write_dma(IDEState *s)
1040 s->status = READY_STAT | SEEK_STAT | DRQ_STAT | BUSY_STAT;
1041 s->io_buffer_index = 0;
1042 s->io_buffer_size = 0;
1043 ide_dma_start(s, ide_write_dma_cb);
1046 static void ide_atapi_cmd_ok(IDEState *s)
1049 s->status = READY_STAT;
1050 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
1054 static void ide_atapi_cmd_error(IDEState *s, int sense_key, int asc)
1056 #ifdef DEBUG_IDE_ATAPI
1057 printf("atapi_cmd_error: sense=0x%x asc=0x%x\n", sense_key, asc);
1059 s->error = sense_key << 4;
1060 s->status = READY_STAT | ERR_STAT;
1061 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
1062 s->sense_key = sense_key;
1067 static inline void cpu_to_ube16(uint8_t *buf, int val)
1073 static inline void cpu_to_ube32(uint8_t *buf, unsigned int val)
1081 static inline int ube16_to_cpu(const uint8_t *buf)
1083 return (buf[0] << 8) | buf[1];
1086 static inline int ube32_to_cpu(const uint8_t *buf)
1088 return (buf[0] << 24) | (buf[1] << 16) | (buf[2] << 8) | buf[3];
1091 static void lba_to_msf(uint8_t *buf, int lba)
1094 buf[0] = (lba / 75) / 60;
1095 buf[1] = (lba / 75) % 60;
1099 static void cd_data_to_raw(uint8_t *buf, int lba)
1103 memset(buf + 1, 0xff, 10);
1107 lba_to_msf(buf, lba);
1108 buf[3] = 0x01; /* mode 1 data */
1112 /* XXX: ECC not computed */
1113 memset(buf, 0, 288);
1116 static int cd_read_sector(BlockDriverState *bs, int lba, uint8_t *buf,
1121 switch(sector_size) {
1123 ret = bdrv_read(bs, (int64_t)lba << 2, buf, 4);
1126 ret = bdrv_read(bs, (int64_t)lba << 2, buf + 16, 4);
1129 cd_data_to_raw(buf, lba);
1138 static void ide_atapi_io_error(IDEState *s, int ret)
1140 /* XXX: handle more errors */
1141 if (ret == -ENOMEDIUM) {
1142 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1143 ASC_MEDIUM_NOT_PRESENT);
1145 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1146 ASC_LOGICAL_BLOCK_OOR);
1150 /* The whole ATAPI transfer logic is handled in this function */
1151 static void ide_atapi_cmd_reply_end(IDEState *s)
1153 int byte_count_limit, size, ret;
1154 #ifdef DEBUG_IDE_ATAPI
1155 printf("reply: tx_size=%d elem_tx_size=%d index=%d\n",
1156 s->packet_transfer_size,
1157 s->elementary_transfer_size,
1158 s->io_buffer_index);
1160 if (s->packet_transfer_size <= 0) {
1161 /* end of transfer */
1162 ide_transfer_stop(s);
1163 s->status = READY_STAT;
1164 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
1166 #ifdef DEBUG_IDE_ATAPI
1167 printf("status=0x%x\n", s->status);
1170 /* see if a new sector must be read */
1171 if (s->lba != -1 && s->io_buffer_index >= s->cd_sector_size) {
1172 ret = cd_read_sector(s->bs, s->lba, s->io_buffer, s->cd_sector_size);
1174 ide_transfer_stop(s);
1175 ide_atapi_io_error(s, ret);
1179 s->io_buffer_index = 0;
1181 if (s->elementary_transfer_size > 0) {
1182 /* there are some data left to transmit in this elementary
1184 size = s->cd_sector_size - s->io_buffer_index;
1185 if (size > s->elementary_transfer_size)
1186 size = s->elementary_transfer_size;
1187 ide_transfer_start(s, s->io_buffer + s->io_buffer_index,
1188 size, ide_atapi_cmd_reply_end);
1189 s->packet_transfer_size -= size;
1190 s->elementary_transfer_size -= size;
1191 s->io_buffer_index += size;
1193 /* a new transfer is needed */
1194 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO;
1195 byte_count_limit = s->lcyl | (s->hcyl << 8);
1196 #ifdef DEBUG_IDE_ATAPI
1197 printf("byte_count_limit=%d\n", byte_count_limit);
1199 if (byte_count_limit == 0xffff)
1201 size = s->packet_transfer_size;
1202 if (size > byte_count_limit) {
1203 /* byte count limit must be even if this case */
1204 if (byte_count_limit & 1)
1206 size = byte_count_limit;
1209 s->hcyl = size >> 8;
1210 s->elementary_transfer_size = size;
1211 /* we cannot transmit more than one sector at a time */
1213 if (size > (s->cd_sector_size - s->io_buffer_index))
1214 size = (s->cd_sector_size - s->io_buffer_index);
1216 ide_transfer_start(s, s->io_buffer + s->io_buffer_index,
1217 size, ide_atapi_cmd_reply_end);
1218 s->packet_transfer_size -= size;
1219 s->elementary_transfer_size -= size;
1220 s->io_buffer_index += size;
1222 #ifdef DEBUG_IDE_ATAPI
1223 printf("status=0x%x\n", s->status);
1229 /* send a reply of 'size' bytes in s->io_buffer to an ATAPI command */
1230 static void ide_atapi_cmd_reply(IDEState *s, int size, int max_size)
1232 if (size > max_size)
1234 s->lba = -1; /* no sector read */
1235 s->packet_transfer_size = size;
1236 s->io_buffer_size = size; /* dma: send the reply data as one chunk */
1237 s->elementary_transfer_size = 0;
1238 s->io_buffer_index = 0;
1241 s->status = READY_STAT | DRQ_STAT;
1242 ide_dma_start(s, ide_atapi_cmd_read_dma_cb);
1244 s->status = READY_STAT;
1245 ide_atapi_cmd_reply_end(s);
1249 /* start a CD-CDROM read command */
1250 static void ide_atapi_cmd_read_pio(IDEState *s, int lba, int nb_sectors,
1254 s->packet_transfer_size = nb_sectors * sector_size;
1255 s->elementary_transfer_size = 0;
1256 s->io_buffer_index = sector_size;
1257 s->cd_sector_size = sector_size;
1259 s->status = READY_STAT;
1260 ide_atapi_cmd_reply_end(s);
1263 /* ATAPI DMA support */
1265 /* XXX: handle read errors */
1266 static void ide_atapi_cmd_read_dma_cb(void *opaque, int ret)
1268 BMDMAState *bm = opaque;
1269 IDEState *s = bm->ide_if;
1273 ide_atapi_io_error(s, ret);
1277 if (s->io_buffer_size > 0) {
1279 * For a cdrom read sector command (s->lba != -1),
1280 * adjust the lba for the next s->io_buffer_size chunk
1281 * and dma the current chunk.
1282 * For a command != read (s->lba == -1), just transfer
1286 if (s->cd_sector_size == 2352) {
1288 cd_data_to_raw(s->io_buffer, s->lba);
1290 n = s->io_buffer_size >> 11;
1294 s->packet_transfer_size -= s->io_buffer_size;
1295 if (dma_buf_rw(bm, 1) == 0)
1299 if (s->packet_transfer_size <= 0) {
1300 s->status = READY_STAT;
1301 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
1304 bm->status &= ~BM_STATUS_DMAING;
1305 bm->status |= BM_STATUS_INT;
1312 s->io_buffer_index = 0;
1313 if (s->cd_sector_size == 2352) {
1315 s->io_buffer_size = s->cd_sector_size;
1318 n = s->packet_transfer_size >> 11;
1319 if (n > (IDE_DMA_BUF_SECTORS / 4))
1320 n = (IDE_DMA_BUF_SECTORS / 4);
1321 s->io_buffer_size = n * 2048;
1325 printf("aio_read_cd: lba=%u n=%d\n", s->lba, n);
1327 bm->aiocb = bdrv_aio_read(s->bs, (int64_t)s->lba << 2,
1328 s->io_buffer + data_offset, n * 4,
1329 ide_atapi_cmd_read_dma_cb, bm);
1331 /* Note: media not present is the most likely case */
1332 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1333 ASC_MEDIUM_NOT_PRESENT);
1338 /* start a CD-CDROM read command with DMA */
1339 /* XXX: test if DMA is available */
1340 static void ide_atapi_cmd_read_dma(IDEState *s, int lba, int nb_sectors,
1344 s->packet_transfer_size = nb_sectors * sector_size;
1345 s->io_buffer_index = 0;
1346 s->io_buffer_size = 0;
1347 s->cd_sector_size = sector_size;
1349 /* XXX: check if BUSY_STAT should be set */
1350 s->status = READY_STAT | DRQ_STAT | BUSY_STAT;
1351 ide_dma_start(s, ide_atapi_cmd_read_dma_cb);
1354 static void ide_atapi_cmd_read(IDEState *s, int lba, int nb_sectors,
1357 #ifdef DEBUG_IDE_ATAPI
1358 printf("read %s: LBA=%d nb_sectors=%d\n", s->atapi_dma ? "dma" : "pio",
1362 ide_atapi_cmd_read_dma(s, lba, nb_sectors, sector_size);
1364 ide_atapi_cmd_read_pio(s, lba, nb_sectors, sector_size);
1368 static inline uint8_t ide_atapi_set_profile(uint8_t *buf, uint8_t *index,
1371 uint8_t *buf_profile = buf + 12; /* start of profiles */
1373 buf_profile += ((*index) * 4); /* start of indexed profile */
1374 cpu_to_ube16 (buf_profile, profile);
1375 buf_profile[2] = ((buf_profile[0] == buf[6]) && (buf_profile[1] == buf[7]));
1377 /* each profile adds 4 bytes to the response */
1379 buf[11] += 4; /* Additional Length */
1384 static int ide_dvd_read_structure(IDEState *s, int format,
1385 const uint8_t *packet, uint8_t *buf)
1388 case 0x0: /* Physical format information */
1390 int layer = packet[6];
1391 uint64_t total_sectors;
1394 return -ASC_INV_FIELD_IN_CMD_PACKET;
1396 bdrv_get_geometry(s->bs, &total_sectors);
1397 total_sectors >>= 2;
1398 if (total_sectors == 0)
1399 return -ASC_MEDIUM_NOT_PRESENT;
1401 buf[4] = 1; /* DVD-ROM, part version 1 */
1402 buf[5] = 0xf; /* 120mm disc, minimum rate unspecified */
1403 buf[6] = 1; /* one layer, read-only (per MMC-2 spec) */
1404 buf[7] = 0; /* default densities */
1406 /* FIXME: 0x30000 per spec? */
1407 cpu_to_ube32(buf + 8, 0); /* start sector */
1408 cpu_to_ube32(buf + 12, total_sectors - 1); /* end sector */
1409 cpu_to_ube32(buf + 16, total_sectors - 1); /* l0 end sector */
1411 /* Size of buffer, not including 2 byte size field */
1412 cpu_to_be16wu((uint16_t *)buf, 2048 + 2);
1414 /* 2k data + 4 byte header */
1418 case 0x01: /* DVD copyright information */
1419 buf[4] = 0; /* no copyright data */
1420 buf[5] = 0; /* no region restrictions */
1422 /* Size of buffer, not including 2 byte size field */
1423 cpu_to_be16wu((uint16_t *)buf, 4 + 2);
1425 /* 4 byte header + 4 byte data */
1428 case 0x03: /* BCA information - invalid field for no BCA info */
1429 return -ASC_INV_FIELD_IN_CMD_PACKET;
1431 case 0x04: /* DVD disc manufacturing information */
1432 /* Size of buffer, not including 2 byte size field */
1433 cpu_to_be16wu((uint16_t *)buf, 2048 + 2);
1435 /* 2k data + 4 byte header */
1440 * This lists all the command capabilities above. Add new ones
1441 * in order and update the length and buffer return values.
1444 buf[4] = 0x00; /* Physical format */
1445 buf[5] = 0x40; /* Not writable, is readable */
1446 cpu_to_be16wu((uint16_t *)(buf + 6), 2048 + 4);
1448 buf[8] = 0x01; /* Copyright info */
1449 buf[9] = 0x40; /* Not writable, is readable */
1450 cpu_to_be16wu((uint16_t *)(buf + 10), 4 + 4);
1452 buf[12] = 0x03; /* BCA info */
1453 buf[13] = 0x40; /* Not writable, is readable */
1454 cpu_to_be16wu((uint16_t *)(buf + 14), 188 + 4);
1456 buf[16] = 0x04; /* Manufacturing info */
1457 buf[17] = 0x40; /* Not writable, is readable */
1458 cpu_to_be16wu((uint16_t *)(buf + 18), 2048 + 4);
1460 /* Size of buffer, not including 2 byte size field */
1461 cpu_to_be16wu((uint16_t *)buf, 16 + 2);
1463 /* data written + 4 byte header */
1466 default: /* TODO: formats beyond DVD-ROM requires */
1467 return -ASC_INV_FIELD_IN_CMD_PACKET;
1471 static void ide_atapi_cmd(IDEState *s)
1473 const uint8_t *packet;
1477 packet = s->io_buffer;
1479 #ifdef DEBUG_IDE_ATAPI
1482 printf("ATAPI limit=0x%x packet:", s->lcyl | (s->hcyl << 8));
1483 for(i = 0; i < ATAPI_PACKET_SIZE; i++) {
1484 printf(" %02x", packet[i]);
1489 switch(s->io_buffer[0]) {
1490 case GPCMD_TEST_UNIT_READY:
1491 if (bdrv_is_inserted(s->bs)) {
1492 ide_atapi_cmd_ok(s);
1494 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1495 ASC_MEDIUM_NOT_PRESENT);
1498 case GPCMD_MODE_SENSE_6:
1499 case GPCMD_MODE_SENSE_10:
1502 if (packet[0] == GPCMD_MODE_SENSE_10)
1503 max_len = ube16_to_cpu(packet + 7);
1505 max_len = packet[4];
1506 action = packet[2] >> 6;
1507 code = packet[2] & 0x3f;
1509 case 0: /* current values */
1511 case 0x01: /* error recovery */
1512 cpu_to_ube16(&buf[0], 16 + 6);
1528 ide_atapi_cmd_reply(s, 16, max_len);
1531 cpu_to_ube16(&buf[0], 28 + 6);
1546 buf[14] = (1 << 0) | (1 << 3) | (1 << 5);
1547 if (bdrv_is_locked(s->bs))
1550 cpu_to_ube16(&buf[16], 706);
1553 cpu_to_ube16(&buf[20], 512);
1554 cpu_to_ube16(&buf[22], 706);
1559 ide_atapi_cmd_reply(s, 28, max_len);
1565 case 1: /* changeable values */
1567 case 2: /* default values */
1570 case 3: /* saved values */
1571 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1572 ASC_SAVING_PARAMETERS_NOT_SUPPORTED);
1577 case GPCMD_REQUEST_SENSE:
1578 max_len = packet[4];
1580 buf[0] = 0x70 | (1 << 7);
1581 buf[2] = s->sense_key;
1584 ide_atapi_cmd_reply(s, 18, max_len);
1586 case GPCMD_PREVENT_ALLOW_MEDIUM_REMOVAL:
1587 if (bdrv_is_inserted(s->bs)) {
1588 bdrv_set_locked(s->bs, packet[4] & 1);
1589 ide_atapi_cmd_ok(s);
1591 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1592 ASC_MEDIUM_NOT_PRESENT);
1598 int nb_sectors, lba;
1600 if (packet[0] == GPCMD_READ_10)
1601 nb_sectors = ube16_to_cpu(packet + 7);
1603 nb_sectors = ube32_to_cpu(packet + 6);
1604 lba = ube32_to_cpu(packet + 2);
1605 if (nb_sectors == 0) {
1606 ide_atapi_cmd_ok(s);
1609 ide_atapi_cmd_read(s, lba, nb_sectors, 2048);
1614 int nb_sectors, lba, transfer_request;
1616 nb_sectors = (packet[6] << 16) | (packet[7] << 8) | packet[8];
1617 lba = ube32_to_cpu(packet + 2);
1618 if (nb_sectors == 0) {
1619 ide_atapi_cmd_ok(s);
1622 transfer_request = packet[9];
1623 switch(transfer_request & 0xf8) {
1626 ide_atapi_cmd_ok(s);
1630 ide_atapi_cmd_read(s, lba, nb_sectors, 2048);
1634 ide_atapi_cmd_read(s, lba, nb_sectors, 2352);
1637 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1638 ASC_INV_FIELD_IN_CMD_PACKET);
1646 uint64_t total_sectors;
1648 bdrv_get_geometry(s->bs, &total_sectors);
1649 total_sectors >>= 2;
1650 if (total_sectors == 0) {
1651 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1652 ASC_MEDIUM_NOT_PRESENT);
1655 lba = ube32_to_cpu(packet + 2);
1656 if (lba >= total_sectors) {
1657 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1658 ASC_LOGICAL_BLOCK_OOR);
1661 ide_atapi_cmd_ok(s);
1664 case GPCMD_START_STOP_UNIT:
1667 start = packet[4] & 1;
1668 eject = (packet[4] >> 1) & 1;
1670 if (eject && !start) {
1671 /* eject the disk */
1672 bdrv_eject(s->bs, 1);
1673 } else if (eject && start) {
1674 /* close the tray */
1675 bdrv_eject(s->bs, 0);
1677 ide_atapi_cmd_ok(s);
1680 case GPCMD_MECHANISM_STATUS:
1682 max_len = ube16_to_cpu(packet + 8);
1683 cpu_to_ube16(buf, 0);
1684 /* no current LBA */
1689 cpu_to_ube16(buf + 6, 0);
1690 ide_atapi_cmd_reply(s, 8, max_len);
1693 case GPCMD_READ_TOC_PMA_ATIP:
1695 int format, msf, start_track, len;
1696 uint64_t total_sectors;
1698 bdrv_get_geometry(s->bs, &total_sectors);
1699 total_sectors >>= 2;
1700 if (total_sectors == 0) {
1701 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1702 ASC_MEDIUM_NOT_PRESENT);
1705 max_len = ube16_to_cpu(packet + 7);
1706 format = packet[9] >> 6;
1707 msf = (packet[1] >> 1) & 1;
1708 start_track = packet[6];
1711 len = cdrom_read_toc(total_sectors, buf, msf, start_track);
1714 ide_atapi_cmd_reply(s, len, max_len);
1717 /* multi session : only a single session defined */
1722 ide_atapi_cmd_reply(s, 12, max_len);
1725 len = cdrom_read_toc_raw(total_sectors, buf, msf, start_track);
1728 ide_atapi_cmd_reply(s, len, max_len);
1732 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1733 ASC_INV_FIELD_IN_CMD_PACKET);
1738 case GPCMD_READ_CDVD_CAPACITY:
1740 uint64_t total_sectors;
1742 bdrv_get_geometry(s->bs, &total_sectors);
1743 total_sectors >>= 2;
1744 if (total_sectors == 0) {
1745 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1746 ASC_MEDIUM_NOT_PRESENT);
1749 /* NOTE: it is really the number of sectors minus 1 */
1750 cpu_to_ube32(buf, total_sectors - 1);
1751 cpu_to_ube32(buf + 4, 2048);
1752 ide_atapi_cmd_reply(s, 8, 8);
1755 case GPCMD_READ_DVD_STRUCTURE:
1757 int media = packet[1];
1758 int format = packet[7];
1761 max_len = ube16_to_cpu(packet + 8);
1763 if (format < 0xff) {
1764 if (media_is_cd(s)) {
1765 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1766 ASC_INCOMPATIBLE_FORMAT);
1768 } else if (!media_present(s)) {
1769 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1770 ASC_INV_FIELD_IN_CMD_PACKET);
1775 memset(buf, 0, max_len > IDE_DMA_BUF_SECTORS * 512 + 4 ?
1776 IDE_DMA_BUF_SECTORS * 512 + 4 : max_len);
1782 ret = ide_dvd_read_structure(s, format, packet, buf);
1785 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST, -ret);
1787 ide_atapi_cmd_reply(s, ret, max_len);
1791 /* TODO: BD support, fall through for now */
1793 /* Generic disk structures */
1794 case 0x80: /* TODO: AACS volume identifier */
1795 case 0x81: /* TODO: AACS media serial number */
1796 case 0x82: /* TODO: AACS media identifier */
1797 case 0x83: /* TODO: AACS media key block */
1798 case 0x90: /* TODO: List of recognized format layers */
1799 case 0xc0: /* TODO: Write protection status */
1801 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1802 ASC_INV_FIELD_IN_CMD_PACKET);
1807 case GPCMD_SET_SPEED:
1808 ide_atapi_cmd_ok(s);
1811 max_len = packet[4];
1812 buf[0] = 0x05; /* CD-ROM */
1813 buf[1] = 0x80; /* removable */
1814 buf[2] = 0x00; /* ISO */
1815 buf[3] = 0x21; /* ATAPI-2 (XXX: put ATAPI-4 ?) */
1816 buf[4] = 31; /* additional length */
1817 buf[5] = 0; /* reserved */
1818 buf[6] = 0; /* reserved */
1819 buf[7] = 0; /* reserved */
1820 padstr8(buf + 8, 8, "QEMU");
1821 padstr8(buf + 16, 16, "QEMU DVD-ROM");
1822 padstr8(buf + 32, 4, QEMU_VERSION);
1823 ide_atapi_cmd_reply(s, 36, max_len);
1825 case GPCMD_GET_CONFIGURATION:
1830 /* only feature 0 is supported */
1831 if (packet[2] != 0 || packet[3] != 0) {
1832 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1833 ASC_INV_FIELD_IN_CMD_PACKET);
1837 /* XXX: could result in alignment problems in some architectures */
1838 max_len = ube16_to_cpu(packet + 7);
1841 * XXX: avoid overflow for io_buffer if max_len is bigger than
1842 * the size of that buffer (dimensioned to max number of
1843 * sectors to transfer at once)
1845 * Only a problem if the feature/profiles grow.
1847 if (max_len > 512) /* XXX: assume 1 sector */
1850 memset(buf, 0, max_len);
1852 * the number of sectors from the media tells us which profile
1853 * to use as current. 0 means there is no media
1855 if (media_is_dvd(s))
1856 cpu_to_ube16(buf + 6, MMC_PROFILE_DVD_ROM);
1857 else if (media_is_cd(s))
1858 cpu_to_ube16(buf + 6, MMC_PROFILE_CD_ROM);
1860 buf[10] = 0x02 | 0x01; /* persistent and current */
1861 len = 12; /* headers: 8 + 4 */
1862 len += ide_atapi_set_profile(buf, &index, MMC_PROFILE_DVD_ROM);
1863 len += ide_atapi_set_profile(buf, &index, MMC_PROFILE_CD_ROM);
1864 cpu_to_ube32(buf, len - 4); /* data length */
1866 ide_atapi_cmd_reply(s, len, max_len);
1870 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1871 ASC_ILLEGAL_OPCODE);
1876 static void ide_cfata_metadata_inquiry(IDEState *s)
1881 p = (uint16_t *) s->io_buffer;
1882 memset(p, 0, 0x200);
1883 spd = ((s->mdata_size - 1) >> 9) + 1;
1885 put_le16(p + 0, 0x0001); /* Data format revision */
1886 put_le16(p + 1, 0x0000); /* Media property: silicon */
1887 put_le16(p + 2, s->media_changed); /* Media status */
1888 put_le16(p + 3, s->mdata_size & 0xffff); /* Capacity in bytes (low) */
1889 put_le16(p + 4, s->mdata_size >> 16); /* Capacity in bytes (high) */
1890 put_le16(p + 5, spd & 0xffff); /* Sectors per device (low) */
1891 put_le16(p + 6, spd >> 16); /* Sectors per device (high) */
1894 static void ide_cfata_metadata_read(IDEState *s)
1898 if (((s->hcyl << 16) | s->lcyl) << 9 > s->mdata_size + 2) {
1899 s->status = ERR_STAT;
1900 s->error = ABRT_ERR;
1904 p = (uint16_t *) s->io_buffer;
1905 memset(p, 0, 0x200);
1907 put_le16(p + 0, s->media_changed); /* Media status */
1908 memcpy(p + 1, s->mdata_storage + (((s->hcyl << 16) | s->lcyl) << 9),
1909 MIN(MIN(s->mdata_size - (((s->hcyl << 16) | s->lcyl) << 9),
1910 s->nsector << 9), 0x200 - 2));
1913 static void ide_cfata_metadata_write(IDEState *s)
1915 if (((s->hcyl << 16) | s->lcyl) << 9 > s->mdata_size + 2) {
1916 s->status = ERR_STAT;
1917 s->error = ABRT_ERR;
1921 s->media_changed = 0;
1923 memcpy(s->mdata_storage + (((s->hcyl << 16) | s->lcyl) << 9),
1925 MIN(MIN(s->mdata_size - (((s->hcyl << 16) | s->lcyl) << 9),
1926 s->nsector << 9), 0x200 - 2));
1929 /* called when the inserted state of the media has changed */
1930 static void cdrom_change_cb(void *opaque)
1932 IDEState *s = opaque;
1933 uint64_t nb_sectors;
1935 /* XXX: send interrupt too */
1936 bdrv_get_geometry(s->bs, &nb_sectors);
1937 s->nb_sectors = nb_sectors;
1940 static void ide_cmd_lba48_transform(IDEState *s, int lba48)
1944 /* handle the 'magic' 0 nsector count conversion here. to avoid
1945 * fiddling with the rest of the read logic, we just store the
1946 * full sector count in ->nsector and ignore ->hob_nsector from now
1952 if (!s->nsector && !s->hob_nsector)
1955 int lo = s->nsector;
1956 int hi = s->hob_nsector;
1958 s->nsector = (hi << 8) | lo;
1963 static void ide_clear_hob(IDEState *ide_if)
1965 /* any write clears HOB high bit of device control register */
1966 ide_if[0].select &= ~(1 << 7);
1967 ide_if[1].select &= ~(1 << 7);
1970 static void ide_ioport_write(void *opaque, uint32_t addr, uint32_t val)
1972 IDEState *ide_if = opaque;
1978 printf("IDE: write addr=0x%x val=0x%02x\n", addr, val);
1986 ide_clear_hob(ide_if);
1987 /* NOTE: data is written to the two drives */
1988 ide_if[0].hob_feature = ide_if[0].feature;
1989 ide_if[1].hob_feature = ide_if[1].feature;
1990 ide_if[0].feature = val;
1991 ide_if[1].feature = val;
1994 ide_clear_hob(ide_if);
1995 ide_if[0].hob_nsector = ide_if[0].nsector;
1996 ide_if[1].hob_nsector = ide_if[1].nsector;
1997 ide_if[0].nsector = val;
1998 ide_if[1].nsector = val;
2001 ide_clear_hob(ide_if);
2002 ide_if[0].hob_sector = ide_if[0].sector;
2003 ide_if[1].hob_sector = ide_if[1].sector;
2004 ide_if[0].sector = val;
2005 ide_if[1].sector = val;
2008 ide_clear_hob(ide_if);
2009 ide_if[0].hob_lcyl = ide_if[0].lcyl;
2010 ide_if[1].hob_lcyl = ide_if[1].lcyl;
2011 ide_if[0].lcyl = val;
2012 ide_if[1].lcyl = val;
2015 ide_clear_hob(ide_if);
2016 ide_if[0].hob_hcyl = ide_if[0].hcyl;
2017 ide_if[1].hob_hcyl = ide_if[1].hcyl;
2018 ide_if[0].hcyl = val;
2019 ide_if[1].hcyl = val;
2022 /* FIXME: HOB readback uses bit 7 */
2023 ide_if[0].select = (val & ~0x10) | 0xa0;
2024 ide_if[1].select = (val | 0x10) | 0xa0;
2026 unit = (val >> 4) & 1;
2028 ide_if->cur_drive = s;
2033 #if defined(DEBUG_IDE)
2034 printf("ide: CMD=%02x\n", val);
2036 s = ide_if->cur_drive;
2037 /* ignore commands to non existant slave */
2038 if (s != ide_if && !s->bs)
2043 if (s->bs && !s->is_cdrom) {
2047 ide_cfata_identify(s);
2048 s->status = READY_STAT | SEEK_STAT;
2049 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
2052 ide_set_signature(s);
2054 ide_abort_command(s);
2061 s->status = READY_STAT | SEEK_STAT;
2065 if (s->is_cf && s->nsector == 0) {
2066 /* Disable Read and Write Multiple */
2067 s->mult_sectors = 0;
2068 s->status = READY_STAT;
2069 } else if ((s->nsector & 0xff) != 0 &&
2070 ((s->nsector & 0xff) > MAX_MULT_SECTORS ||
2071 (s->nsector & (s->nsector - 1)) != 0)) {
2072 ide_abort_command(s);
2074 s->mult_sectors = s->nsector & 0xff;
2075 s->status = READY_STAT;
2079 case WIN_VERIFY_EXT:
2082 case WIN_VERIFY_ONCE:
2083 /* do sector number check ? */
2084 ide_cmd_lba48_transform(s, lba48);
2085 s->status = READY_STAT;
2094 ide_cmd_lba48_transform(s, lba48);
2095 s->req_nb_sectors = 1;
2101 case WIN_WRITE_ONCE:
2102 case CFA_WRITE_SECT_WO_ERASE:
2103 case WIN_WRITE_VERIFY:
2104 ide_cmd_lba48_transform(s, lba48);
2106 s->status = SEEK_STAT | READY_STAT;
2107 s->req_nb_sectors = 1;
2108 ide_transfer_start(s, s->io_buffer, 512, ide_sector_write);
2109 s->media_changed = 1;
2111 case WIN_MULTREAD_EXT:
2114 if (!s->mult_sectors)
2116 ide_cmd_lba48_transform(s, lba48);
2117 s->req_nb_sectors = s->mult_sectors;
2120 case WIN_MULTWRITE_EXT:
2123 case CFA_WRITE_MULTI_WO_ERASE:
2124 if (!s->mult_sectors)
2126 ide_cmd_lba48_transform(s, lba48);
2128 s->status = SEEK_STAT | READY_STAT;
2129 s->req_nb_sectors = s->mult_sectors;
2131 if (n > s->req_nb_sectors)
2132 n = s->req_nb_sectors;
2133 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_write);
2134 s->media_changed = 1;
2136 case WIN_READDMA_EXT:
2139 case WIN_READDMA_ONCE:
2142 ide_cmd_lba48_transform(s, lba48);
2143 ide_sector_read_dma(s);
2145 case WIN_WRITEDMA_EXT:
2148 case WIN_WRITEDMA_ONCE:
2151 ide_cmd_lba48_transform(s, lba48);
2152 ide_sector_write_dma(s);
2153 s->media_changed = 1;
2155 case WIN_READ_NATIVE_MAX_EXT:
2157 case WIN_READ_NATIVE_MAX:
2158 ide_cmd_lba48_transform(s, lba48);
2159 ide_set_sector(s, s->nb_sectors - 1);
2160 s->status = READY_STAT;
2163 case WIN_CHECKPOWERMODE1:
2164 case WIN_CHECKPOWERMODE2:
2165 s->nsector = 0xff; /* device active or idle */
2166 s->status = READY_STAT;
2169 case WIN_SETFEATURES:
2172 /* XXX: valid for CDROM ? */
2173 switch(s->feature) {
2174 case 0xcc: /* reverting to power-on defaults enable */
2175 case 0x66: /* reverting to power-on defaults disable */
2176 case 0x02: /* write cache enable */
2177 case 0x82: /* write cache disable */
2178 case 0xaa: /* read look-ahead enable */
2179 case 0x55: /* read look-ahead disable */
2180 case 0x05: /* set advanced power management mode */
2181 case 0x85: /* disable advanced power management mode */
2182 case 0x69: /* NOP */
2183 case 0x67: /* NOP */
2184 case 0x96: /* NOP */
2185 case 0x9a: /* NOP */
2186 case 0x42: /* enable Automatic Acoustic Mode */
2187 case 0xc2: /* disable Automatic Acoustic Mode */
2188 s->status = READY_STAT | SEEK_STAT;
2191 case 0x03: { /* set transfer mode */
2192 uint8_t val = s->nsector & 0x07;
2194 switch (s->nsector >> 3) {
2195 case 0x00: /* pio default */
2196 case 0x01: /* pio mode */
2197 put_le16(s->identify_data + 63,0x07);
2198 put_le16(s->identify_data + 88,0x3f);
2200 case 0x04: /* mdma mode */
2201 put_le16(s->identify_data + 63,0x07 | (1 << (val + 8)));
2202 put_le16(s->identify_data + 88,0x3f);
2204 case 0x08: /* udma mode */
2205 put_le16(s->identify_data + 63,0x07);
2206 put_le16(s->identify_data + 88,0x3f | (1 << (val + 8)));
2211 s->status = READY_STAT | SEEK_STAT;
2219 case WIN_FLUSH_CACHE:
2220 case WIN_FLUSH_CACHE_EXT:
2223 s->status = READY_STAT;
2228 case WIN_STANDBYNOW1:
2229 case WIN_STANDBYNOW2:
2230 case WIN_IDLEIMMEDIATE:
2231 case CFA_IDLEIMMEDIATE:
2236 s->status = READY_STAT;
2239 /* ATAPI commands */
2242 ide_atapi_identify(s);
2243 s->status = READY_STAT | SEEK_STAT;
2244 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
2246 ide_abort_command(s);
2251 ide_set_signature(s);
2252 s->status = READY_STAT;
2259 ide_set_signature(s);
2260 s->status = 0x00; /* NOTE: READY is _not_ set */
2266 /* overlapping commands not supported */
2267 if (s->feature & 0x02)
2269 s->status = READY_STAT;
2270 s->atapi_dma = s->feature & 1;
2272 ide_transfer_start(s, s->io_buffer, ATAPI_PACKET_SIZE,
2275 /* CF-ATA commands */
2276 case CFA_REQ_EXT_ERROR_CODE:
2279 s->error = 0x09; /* miscellaneous error */
2280 s->status = READY_STAT;
2283 case CFA_ERASE_SECTORS:
2284 case CFA_WEAR_LEVEL:
2287 if (val == CFA_WEAR_LEVEL)
2289 if (val == CFA_ERASE_SECTORS)
2290 s->media_changed = 1;
2292 s->status = READY_STAT;
2295 case CFA_TRANSLATE_SECTOR:
2299 s->status = READY_STAT;
2300 memset(s->io_buffer, 0, 0x200);
2301 s->io_buffer[0x00] = s->hcyl; /* Cyl MSB */
2302 s->io_buffer[0x01] = s->lcyl; /* Cyl LSB */
2303 s->io_buffer[0x02] = s->select; /* Head */
2304 s->io_buffer[0x03] = s->sector; /* Sector */
2305 s->io_buffer[0x04] = ide_get_sector(s) >> 16; /* LBA MSB */
2306 s->io_buffer[0x05] = ide_get_sector(s) >> 8; /* LBA */
2307 s->io_buffer[0x06] = ide_get_sector(s) >> 0; /* LBA LSB */
2308 s->io_buffer[0x13] = 0x00; /* Erase flag */
2309 s->io_buffer[0x18] = 0x00; /* Hot count */
2310 s->io_buffer[0x19] = 0x00; /* Hot count */
2311 s->io_buffer[0x1a] = 0x01; /* Hot count */
2312 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
2315 case CFA_ACCESS_METADATA_STORAGE:
2318 switch (s->feature) {
2319 case 0x02: /* Inquiry Metadata Storage */
2320 ide_cfata_metadata_inquiry(s);
2322 case 0x03: /* Read Metadata Storage */
2323 ide_cfata_metadata_read(s);
2325 case 0x04: /* Write Metadata Storage */
2326 ide_cfata_metadata_write(s);
2331 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
2332 s->status = 0x00; /* NOTE: READY is _not_ set */
2335 case IBM_SENSE_CONDITION:
2338 switch (s->feature) {
2339 case 0x01: /* sense temperature in device */
2340 s->nsector = 0x50; /* +20 C */
2345 s->status = READY_STAT;
2350 ide_abort_command(s);
2357 static uint32_t ide_ioport_read(void *opaque, uint32_t addr1)
2359 IDEState *ide_if = opaque;
2360 IDEState *s = ide_if->cur_drive;
2365 /* FIXME: HOB readback uses bit 7, but it's always set right now */
2366 //hob = s->select & (1 << 7);
2373 if (!ide_if[0].bs && !ide_if[1].bs)
2378 ret = s->hob_feature;
2381 if (!ide_if[0].bs && !ide_if[1].bs)
2384 ret = s->nsector & 0xff;
2386 ret = s->hob_nsector;
2389 if (!ide_if[0].bs && !ide_if[1].bs)
2394 ret = s->hob_sector;
2397 if (!ide_if[0].bs && !ide_if[1].bs)
2405 if (!ide_if[0].bs && !ide_if[1].bs)
2413 if (!ide_if[0].bs && !ide_if[1].bs)
2420 if ((!ide_if[0].bs && !ide_if[1].bs) ||
2421 (s != ide_if && !s->bs))
2425 qemu_irq_lower(s->irq);
2429 printf("ide: read addr=0x%x val=%02x\n", addr1, ret);
2434 static uint32_t ide_status_read(void *opaque, uint32_t addr)
2436 IDEState *ide_if = opaque;
2437 IDEState *s = ide_if->cur_drive;
2440 if ((!ide_if[0].bs && !ide_if[1].bs) ||
2441 (s != ide_if && !s->bs))
2446 printf("ide: read status addr=0x%x val=%02x\n", addr, ret);
2451 static void ide_cmd_write(void *opaque, uint32_t addr, uint32_t val)
2453 IDEState *ide_if = opaque;
2458 printf("ide: write control addr=0x%x val=%02x\n", addr, val);
2460 /* common for both drives */
2461 if (!(ide_if[0].cmd & IDE_CMD_RESET) &&
2462 (val & IDE_CMD_RESET)) {
2463 /* reset low to high */
2464 for(i = 0;i < 2; i++) {
2466 s->status = BUSY_STAT | SEEK_STAT;
2469 } else if ((ide_if[0].cmd & IDE_CMD_RESET) &&
2470 !(val & IDE_CMD_RESET)) {
2472 for(i = 0;i < 2; i++) {
2475 s->status = 0x00; /* NOTE: READY is _not_ set */
2477 s->status = READY_STAT | SEEK_STAT;
2478 ide_set_signature(s);
2482 ide_if[0].cmd = val;
2483 ide_if[1].cmd = val;
2486 static void ide_data_writew(void *opaque, uint32_t addr, uint32_t val)
2488 IDEState *s = ((IDEState *)opaque)->cur_drive;
2492 *(uint16_t *)p = le16_to_cpu(val);
2495 if (p >= s->data_end)
2496 s->end_transfer_func(s);
2499 static uint32_t ide_data_readw(void *opaque, uint32_t addr)
2501 IDEState *s = ((IDEState *)opaque)->cur_drive;
2505 ret = cpu_to_le16(*(uint16_t *)p);
2508 if (p >= s->data_end)
2509 s->end_transfer_func(s);
2513 static void ide_data_writel(void *opaque, uint32_t addr, uint32_t val)
2515 IDEState *s = ((IDEState *)opaque)->cur_drive;
2519 *(uint32_t *)p = le32_to_cpu(val);
2522 if (p >= s->data_end)
2523 s->end_transfer_func(s);
2526 static uint32_t ide_data_readl(void *opaque, uint32_t addr)
2528 IDEState *s = ((IDEState *)opaque)->cur_drive;
2533 ret = cpu_to_le32(*(uint32_t *)p);
2536 if (p >= s->data_end)
2537 s->end_transfer_func(s);
2541 static void ide_dummy_transfer_stop(IDEState *s)
2543 s->data_ptr = s->io_buffer;
2544 s->data_end = s->io_buffer;
2545 s->io_buffer[0] = 0xff;
2546 s->io_buffer[1] = 0xff;
2547 s->io_buffer[2] = 0xff;
2548 s->io_buffer[3] = 0xff;
2551 static void ide_reset(IDEState *s)
2554 s->mult_sectors = 0;
2556 s->mult_sectors = MAX_MULT_SECTORS;
2559 s->status = READY_STAT;
2560 ide_set_signature(s);
2561 /* init the transfer handler so that 0xffff is returned on data
2563 s->end_transfer_func = ide_dummy_transfer_stop;
2564 ide_dummy_transfer_stop(s);
2565 s->media_changed = 0;
2569 uint8_t boot_ind; /* 0x80 - active */
2570 uint8_t head; /* starting head */
2571 uint8_t sector; /* starting sector */
2572 uint8_t cyl; /* starting cylinder */
2573 uint8_t sys_ind; /* What partition type */
2574 uint8_t end_head; /* end head */
2575 uint8_t end_sector; /* end sector */
2576 uint8_t end_cyl; /* end cylinder */
2577 uint32_t start_sect; /* starting sector counting from 0 */
2578 uint32_t nr_sects; /* nr of sectors in partition */
2579 } __attribute__((packed));
2581 /* try to guess the disk logical geometry from the MSDOS partition table. Return 0 if OK, -1 if could not guess */
2582 static int guess_disk_lchs(IDEState *s,
2583 int *pcylinders, int *pheads, int *psectors)
2585 uint8_t *buf = s->io_buffer;
2586 int ret, i, heads, sectors, cylinders;
2587 struct partition *p;
2590 ret = bdrv_read(s->bs, 0, buf, 1);
2594 /* test msdos magic */
2595 if (buf[510] != 0x55 || buf[511] != 0xaa) {
2598 for(i = 0; i < 4; i++) {
2599 p = ((struct partition *)(buf + 0x1be)) + i;
2600 nr_sects = le32_to_cpu(p->nr_sects);
2601 if (nr_sects && p->end_head) {
2602 /* We make the assumption that the partition terminates on
2603 a cylinder boundary */
2604 heads = p->end_head + 1;
2605 sectors = p->end_sector & 63;
2608 cylinders = s->nb_sectors / (heads * sectors);
2609 if (cylinders < 1 || cylinders > 16383)
2612 *psectors = sectors;
2613 *pcylinders = cylinders;
2615 printf("guessed geometry: LCHS=%d %d %d\n",
2616 cylinders, heads, sectors);
2624 static void ide_init2(IDEState *ide_state,
2625 BlockDriverState *hd0, BlockDriverState *hd1,
2629 static int drive_serial = 1;
2630 int i, cylinders, heads, secs, translation, lba_detected = 0;
2631 uint64_t nb_sectors;
2633 for(i = 0; i < 2; i++) {
2635 s->io_buffer = qemu_memalign(512, IDE_DMA_BUF_SECTORS*512 + 4);
2641 bdrv_get_geometry(s->bs, &nb_sectors);
2642 s->nb_sectors = nb_sectors;
2643 /* if a geometry hint is available, use it */
2644 bdrv_get_geometry_hint(s->bs, &cylinders, &heads, &secs);
2645 translation = bdrv_get_translation_hint(s->bs);
2646 if (cylinders != 0) {
2647 s->cylinders = cylinders;
2651 if (guess_disk_lchs(s, &cylinders, &heads, &secs) == 0) {
2653 /* if heads > 16, it means that a BIOS LBA
2654 translation was active, so the default
2655 hardware geometry is OK */
2657 goto default_geometry;
2659 s->cylinders = cylinders;
2662 /* disable any translation to be in sync with
2663 the logical geometry */
2664 if (translation == BIOS_ATA_TRANSLATION_AUTO) {
2665 bdrv_set_translation_hint(s->bs,
2666 BIOS_ATA_TRANSLATION_NONE);
2671 /* if no geometry, use a standard physical disk geometry */
2672 cylinders = nb_sectors / (16 * 63);
2673 if (cylinders > 16383)
2675 else if (cylinders < 2)
2677 s->cylinders = cylinders;
2680 if ((lba_detected == 1) && (translation == BIOS_ATA_TRANSLATION_AUTO)) {
2681 if ((s->cylinders * s->heads) <= 131072) {
2682 bdrv_set_translation_hint(s->bs,
2683 BIOS_ATA_TRANSLATION_LARGE);
2685 bdrv_set_translation_hint(s->bs,
2686 BIOS_ATA_TRANSLATION_LBA);
2690 bdrv_set_geometry_hint(s->bs, s->cylinders, s->heads, s->sectors);
2692 if (bdrv_get_type_hint(s->bs) == BDRV_TYPE_CDROM) {
2694 bdrv_set_change_cb(s->bs, cdrom_change_cb, s);
2697 s->drive_serial = drive_serial++;
2699 s->sector_write_timer = qemu_new_timer(vm_clock,
2700 ide_sector_write_timer_cb, s);
2705 static void ide_init_ioport(IDEState *ide_state, int iobase, int iobase2)
2707 register_ioport_write(iobase, 8, 1, ide_ioport_write, ide_state);
2708 register_ioport_read(iobase, 8, 1, ide_ioport_read, ide_state);
2710 register_ioport_read(iobase2, 1, 1, ide_status_read, ide_state);
2711 register_ioport_write(iobase2, 1, 1, ide_cmd_write, ide_state);
2715 register_ioport_write(iobase, 2, 2, ide_data_writew, ide_state);
2716 register_ioport_read(iobase, 2, 2, ide_data_readw, ide_state);
2717 register_ioport_write(iobase, 4, 4, ide_data_writel, ide_state);
2718 register_ioport_read(iobase, 4, 4, ide_data_readl, ide_state);
2721 /* save per IDE drive data */
2722 static void ide_save(QEMUFile* f, IDEState *s)
2724 qemu_put_be32(f, s->mult_sectors);
2725 qemu_put_be32(f, s->identify_set);
2726 if (s->identify_set) {
2727 qemu_put_buffer(f, (const uint8_t *)s->identify_data, 512);
2729 qemu_put_8s(f, &s->feature);
2730 qemu_put_8s(f, &s->error);
2731 qemu_put_be32s(f, &s->nsector);
2732 qemu_put_8s(f, &s->sector);
2733 qemu_put_8s(f, &s->lcyl);
2734 qemu_put_8s(f, &s->hcyl);
2735 qemu_put_8s(f, &s->hob_feature);
2736 qemu_put_8s(f, &s->hob_nsector);
2737 qemu_put_8s(f, &s->hob_sector);
2738 qemu_put_8s(f, &s->hob_lcyl);
2739 qemu_put_8s(f, &s->hob_hcyl);
2740 qemu_put_8s(f, &s->select);
2741 qemu_put_8s(f, &s->status);
2742 qemu_put_8s(f, &s->lba48);
2744 qemu_put_8s(f, &s->sense_key);
2745 qemu_put_8s(f, &s->asc);
2746 /* XXX: if a transfer is pending, we do not save it yet */
2749 /* load per IDE drive data */
2750 static void ide_load(QEMUFile* f, IDEState *s)
2752 s->mult_sectors=qemu_get_be32(f);
2753 s->identify_set=qemu_get_be32(f);
2754 if (s->identify_set) {
2755 qemu_get_buffer(f, (uint8_t *)s->identify_data, 512);
2757 qemu_get_8s(f, &s->feature);
2758 qemu_get_8s(f, &s->error);
2759 qemu_get_be32s(f, &s->nsector);
2760 qemu_get_8s(f, &s->sector);
2761 qemu_get_8s(f, &s->lcyl);
2762 qemu_get_8s(f, &s->hcyl);
2763 qemu_get_8s(f, &s->hob_feature);
2764 qemu_get_8s(f, &s->hob_nsector);
2765 qemu_get_8s(f, &s->hob_sector);
2766 qemu_get_8s(f, &s->hob_lcyl);
2767 qemu_get_8s(f, &s->hob_hcyl);
2768 qemu_get_8s(f, &s->select);
2769 qemu_get_8s(f, &s->status);
2770 qemu_get_8s(f, &s->lba48);
2772 qemu_get_8s(f, &s->sense_key);
2773 qemu_get_8s(f, &s->asc);
2774 /* XXX: if a transfer is pending, we do not save it yet */
2777 /***********************************************************/
2778 /* ISA IDE definitions */
2780 void isa_ide_init(int iobase, int iobase2, qemu_irq irq,
2781 BlockDriverState *hd0, BlockDriverState *hd1)
2783 IDEState *ide_state;
2785 ide_state = qemu_mallocz(sizeof(IDEState) * 2);
2789 ide_init2(ide_state, hd0, hd1, irq);
2790 ide_init_ioport(ide_state, iobase, iobase2);
2793 /***********************************************************/
2794 /* PCI IDE definitions */
2796 static void cmd646_update_irq(PCIIDEState *d);
2798 static void ide_map(PCIDevice *pci_dev, int region_num,
2799 uint32_t addr, uint32_t size, int type)
2801 PCIIDEState *d = (PCIIDEState *)pci_dev;
2802 IDEState *ide_state;
2804 if (region_num <= 3) {
2805 ide_state = &d->ide_if[(region_num >> 1) * 2];
2806 if (region_num & 1) {
2807 register_ioport_read(addr + 2, 1, 1, ide_status_read, ide_state);
2808 register_ioport_write(addr + 2, 1, 1, ide_cmd_write, ide_state);
2810 register_ioport_write(addr, 8, 1, ide_ioport_write, ide_state);
2811 register_ioport_read(addr, 8, 1, ide_ioport_read, ide_state);
2814 register_ioport_write(addr, 2, 2, ide_data_writew, ide_state);
2815 register_ioport_read(addr, 2, 2, ide_data_readw, ide_state);
2816 register_ioport_write(addr, 4, 4, ide_data_writel, ide_state);
2817 register_ioport_read(addr, 4, 4, ide_data_readl, ide_state);
2822 static void ide_dma_start(IDEState *s, BlockDriverCompletionFunc *dma_cb)
2824 BMDMAState *bm = s->bmdma;
2828 bm->dma_cb = dma_cb;
2829 bm->cur_prd_last = 0;
2830 bm->cur_prd_addr = 0;
2831 bm->cur_prd_len = 0;
2832 if (bm->status & BM_STATUS_DMAING) {
2837 static void bmdma_cmd_writeb(void *opaque, uint32_t addr, uint32_t val)
2839 BMDMAState *bm = opaque;
2841 printf("%s: 0x%08x\n", __func__, val);
2843 if (!(val & BM_CMD_START)) {
2844 /* XXX: do it better */
2845 if (bm->status & BM_STATUS_DMAING) {
2846 bm->status &= ~BM_STATUS_DMAING;
2847 /* cancel DMA request */
2852 printf("aio_cancel\n");
2854 bdrv_aio_cancel(bm->aiocb);
2858 bm->cmd = val & 0x09;
2860 if (!(bm->status & BM_STATUS_DMAING)) {
2861 bm->status |= BM_STATUS_DMAING;
2862 /* start dma transfer if possible */
2866 bm->cmd = val & 0x09;
2870 static uint32_t bmdma_readb(void *opaque, uint32_t addr)
2872 BMDMAState *bm = opaque;
2873 PCIIDEState *pci_dev;
2881 pci_dev = bm->pci_dev;
2882 if (pci_dev->type == IDE_TYPE_CMD646) {
2883 val = pci_dev->dev.config[MRDMODE];
2892 pci_dev = bm->pci_dev;
2893 if (pci_dev->type == IDE_TYPE_CMD646) {
2894 if (bm == &pci_dev->bmdma[0])
2895 val = pci_dev->dev.config[UDIDETCR0];
2897 val = pci_dev->dev.config[UDIDETCR1];
2907 printf("bmdma: readb 0x%02x : 0x%02x\n", addr, val);
2912 static void bmdma_writeb(void *opaque, uint32_t addr, uint32_t val)
2914 BMDMAState *bm = opaque;
2915 PCIIDEState *pci_dev;
2917 printf("bmdma: writeb 0x%02x : 0x%02x\n", addr, val);
2921 pci_dev = bm->pci_dev;
2922 if (pci_dev->type == IDE_TYPE_CMD646) {
2923 pci_dev->dev.config[MRDMODE] =
2924 (pci_dev->dev.config[MRDMODE] & ~0x30) | (val & 0x30);
2925 cmd646_update_irq(pci_dev);
2929 bm->status = (val & 0x60) | (bm->status & 1) | (bm->status & ~val & 0x06);
2932 pci_dev = bm->pci_dev;
2933 if (pci_dev->type == IDE_TYPE_CMD646) {
2934 if (bm == &pci_dev->bmdma[0])
2935 pci_dev->dev.config[UDIDETCR0] = val;
2937 pci_dev->dev.config[UDIDETCR1] = val;
2943 static uint32_t bmdma_addr_readb(void *opaque, uint32_t addr)
2945 BMDMAState *bm = opaque;
2947 val = (bm->addr >> ((addr & 3) * 8)) & 0xff;
2949 printf("%s: 0x%08x\n", __func__, val);
2954 static void bmdma_addr_writeb(void *opaque, uint32_t addr, uint32_t val)
2956 BMDMAState *bm = opaque;
2957 int shift = (addr & 3) * 8;
2959 printf("%s: 0x%08x\n", __func__, val);
2961 bm->addr &= ~(0xFF << shift);
2962 bm->addr |= ((val & 0xFF) << shift) & ~3;
2963 bm->cur_addr = bm->addr;
2966 static uint32_t bmdma_addr_readw(void *opaque, uint32_t addr)
2968 BMDMAState *bm = opaque;
2970 val = (bm->addr >> ((addr & 3) * 8)) & 0xffff;
2972 printf("%s: 0x%08x\n", __func__, val);
2977 static void bmdma_addr_writew(void *opaque, uint32_t addr, uint32_t val)
2979 BMDMAState *bm = opaque;
2980 int shift = (addr & 3) * 8;
2982 printf("%s: 0x%08x\n", __func__, val);
2984 bm->addr &= ~(0xFFFF << shift);
2985 bm->addr |= ((val & 0xFFFF) << shift) & ~3;
2986 bm->cur_addr = bm->addr;
2989 static uint32_t bmdma_addr_readl(void *opaque, uint32_t addr)
2991 BMDMAState *bm = opaque;
2995 printf("%s: 0x%08x\n", __func__, val);
3000 static void bmdma_addr_writel(void *opaque, uint32_t addr, uint32_t val)
3002 BMDMAState *bm = opaque;
3004 printf("%s: 0x%08x\n", __func__, val);
3006 bm->addr = val & ~3;
3007 bm->cur_addr = bm->addr;
3010 static void bmdma_map(PCIDevice *pci_dev, int region_num,
3011 uint32_t addr, uint32_t size, int type)
3013 PCIIDEState *d = (PCIIDEState *)pci_dev;
3016 for(i = 0;i < 2; i++) {
3017 BMDMAState *bm = &d->bmdma[i];
3018 d->ide_if[2 * i].bmdma = bm;
3019 d->ide_if[2 * i + 1].bmdma = bm;
3020 bm->pci_dev = (PCIIDEState *)pci_dev;
3022 register_ioport_write(addr, 1, 1, bmdma_cmd_writeb, bm);
3024 register_ioport_write(addr + 1, 3, 1, bmdma_writeb, bm);
3025 register_ioport_read(addr, 4, 1, bmdma_readb, bm);
3027 register_ioport_write(addr + 4, 4, 1, bmdma_addr_writeb, bm);
3028 register_ioport_read(addr + 4, 4, 1, bmdma_addr_readb, bm);
3029 register_ioport_write(addr + 4, 4, 2, bmdma_addr_writew, bm);
3030 register_ioport_read(addr + 4, 4, 2, bmdma_addr_readw, bm);
3031 register_ioport_write(addr + 4, 4, 4, bmdma_addr_writel, bm);
3032 register_ioport_read(addr + 4, 4, 4, bmdma_addr_readl, bm);
3037 /* XXX: call it also when the MRDMODE is changed from the PCI config
3039 static void cmd646_update_irq(PCIIDEState *d)
3042 pci_level = ((d->dev.config[MRDMODE] & MRDMODE_INTR_CH0) &&
3043 !(d->dev.config[MRDMODE] & MRDMODE_BLK_CH0)) ||
3044 ((d->dev.config[MRDMODE] & MRDMODE_INTR_CH1) &&
3045 !(d->dev.config[MRDMODE] & MRDMODE_BLK_CH1));
3046 qemu_set_irq(d->dev.irq[0], pci_level);
3049 /* the PCI irq level is the logical OR of the two channels */
3050 static void cmd646_set_irq(void *opaque, int channel, int level)
3052 PCIIDEState *d = opaque;
3055 irq_mask = MRDMODE_INTR_CH0 << channel;
3057 d->dev.config[MRDMODE] |= irq_mask;
3059 d->dev.config[MRDMODE] &= ~irq_mask;
3060 cmd646_update_irq(d);
3063 /* CMD646 PCI IDE controller */
3064 void pci_cmd646_ide_init(PCIBus *bus, BlockDriverState **hd_table,
3065 int secondary_ide_enabled)
3072 d = (PCIIDEState *)pci_register_device(bus, "CMD646 IDE",
3073 sizeof(PCIIDEState),
3076 d->type = IDE_TYPE_CMD646;
3077 pci_conf = d->dev.config;
3078 pci_conf[0x00] = 0x95; // CMD646
3079 pci_conf[0x01] = 0x10;
3080 pci_conf[0x02] = 0x46;
3081 pci_conf[0x03] = 0x06;
3083 pci_conf[0x08] = 0x07; // IDE controller revision
3084 pci_conf[0x09] = 0x8f;
3086 pci_conf[0x0a] = 0x01; // class_sub = PCI_IDE
3087 pci_conf[0x0b] = 0x01; // class_base = PCI_mass_storage
3088 pci_conf[0x0e] = 0x00; // header_type
3090 if (secondary_ide_enabled) {
3091 /* XXX: if not enabled, really disable the seconday IDE controller */
3092 pci_conf[0x51] = 0x80; /* enable IDE1 */
3095 pci_register_io_region((PCIDevice *)d, 0, 0x8,
3096 PCI_ADDRESS_SPACE_IO, ide_map);
3097 pci_register_io_region((PCIDevice *)d, 1, 0x4,
3098 PCI_ADDRESS_SPACE_IO, ide_map);
3099 pci_register_io_region((PCIDevice *)d, 2, 0x8,
3100 PCI_ADDRESS_SPACE_IO, ide_map);
3101 pci_register_io_region((PCIDevice *)d, 3, 0x4,
3102 PCI_ADDRESS_SPACE_IO, ide_map);
3103 pci_register_io_region((PCIDevice *)d, 4, 0x10,
3104 PCI_ADDRESS_SPACE_IO, bmdma_map);
3106 pci_conf[0x3d] = 0x01; // interrupt on pin 1
3108 for(i = 0; i < 4; i++)
3109 d->ide_if[i].pci_dev = (PCIDevice *)d;
3111 irq = qemu_allocate_irqs(cmd646_set_irq, d, 2);
3112 ide_init2(&d->ide_if[0], hd_table[0], hd_table[1], irq[0]);
3113 ide_init2(&d->ide_if[2], hd_table[2], hd_table[3], irq[1]);
3116 static void pci_ide_save(QEMUFile* f, void *opaque)
3118 PCIIDEState *d = opaque;
3121 pci_device_save(&d->dev, f);
3123 for(i = 0; i < 2; i++) {
3124 BMDMAState *bm = &d->bmdma[i];
3125 qemu_put_8s(f, &bm->cmd);
3126 qemu_put_8s(f, &bm->status);
3127 qemu_put_be32s(f, &bm->addr);
3128 /* XXX: if a transfer is pending, we do not save it yet */
3131 /* per IDE interface data */
3132 for(i = 0; i < 2; i++) {
3133 IDEState *s = &d->ide_if[i * 2];
3134 uint8_t drive1_selected;
3135 qemu_put_8s(f, &s->cmd);
3136 drive1_selected = (s->cur_drive != s);
3137 qemu_put_8s(f, &drive1_selected);
3140 /* per IDE drive data */
3141 for(i = 0; i < 4; i++) {
3142 ide_save(f, &d->ide_if[i]);
3146 static int pci_ide_load(QEMUFile* f, void *opaque, int version_id)
3148 PCIIDEState *d = opaque;
3151 if (version_id != 1)
3153 ret = pci_device_load(&d->dev, f);
3157 for(i = 0; i < 2; i++) {
3158 BMDMAState *bm = &d->bmdma[i];
3159 qemu_get_8s(f, &bm->cmd);
3160 qemu_get_8s(f, &bm->status);
3161 qemu_get_be32s(f, &bm->addr);
3162 /* XXX: if a transfer is pending, we do not save it yet */
3165 /* per IDE interface data */
3166 for(i = 0; i < 2; i++) {
3167 IDEState *s = &d->ide_if[i * 2];
3168 uint8_t drive1_selected;
3169 qemu_get_8s(f, &s->cmd);
3170 qemu_get_8s(f, &drive1_selected);
3171 s->cur_drive = &d->ide_if[i * 2 + (drive1_selected != 0)];
3174 /* per IDE drive data */
3175 for(i = 0; i < 4; i++) {
3176 ide_load(f, &d->ide_if[i]);
3181 static void piix3_reset(PCIIDEState *d)
3183 uint8_t *pci_conf = d->dev.config;
3185 pci_conf[0x04] = 0x00;
3186 pci_conf[0x05] = 0x00;
3187 pci_conf[0x06] = 0x80; /* FBC */
3188 pci_conf[0x07] = 0x02; // PCI_status_devsel_medium
3189 pci_conf[0x20] = 0x01; /* BMIBA: 20-23h */
3192 /* hd_table must contain 4 block drivers */
3193 /* NOTE: for the PIIX3, the IRQs and IOports are hardcoded */
3194 void pci_piix3_ide_init(PCIBus *bus, BlockDriverState **hd_table, int devfn,
3200 /* register a function 1 of PIIX3 */
3201 d = (PCIIDEState *)pci_register_device(bus, "PIIX3 IDE",
3202 sizeof(PCIIDEState),
3205 d->type = IDE_TYPE_PIIX3;
3207 pci_conf = d->dev.config;
3208 pci_conf[0x00] = 0x86; // Intel
3209 pci_conf[0x01] = 0x80;
3210 pci_conf[0x02] = 0x10;
3211 pci_conf[0x03] = 0x70;
3212 pci_conf[0x09] = 0x80; // legacy ATA mode
3213 pci_conf[0x0a] = 0x01; // class_sub = PCI_IDE
3214 pci_conf[0x0b] = 0x01; // class_base = PCI_mass_storage
3215 pci_conf[0x0e] = 0x00; // header_type
3219 pci_register_io_region((PCIDevice *)d, 4, 0x10,
3220 PCI_ADDRESS_SPACE_IO, bmdma_map);
3222 ide_init2(&d->ide_if[0], hd_table[0], hd_table[1], pic[14]);
3223 ide_init2(&d->ide_if[2], hd_table[2], hd_table[3], pic[15]);
3224 ide_init_ioport(&d->ide_if[0], 0x1f0, 0x3f6);
3225 ide_init_ioport(&d->ide_if[2], 0x170, 0x376);
3227 register_savevm("ide", 0, 1, pci_ide_save, pci_ide_load, d);
3230 /* hd_table must contain 4 block drivers */
3231 /* NOTE: for the PIIX4, the IRQs and IOports are hardcoded */
3232 void pci_piix4_ide_init(PCIBus *bus, BlockDriverState **hd_table, int devfn,
3238 /* register a function 1 of PIIX4 */
3239 d = (PCIIDEState *)pci_register_device(bus, "PIIX4 IDE",
3240 sizeof(PCIIDEState),
3243 d->type = IDE_TYPE_PIIX4;
3245 pci_conf = d->dev.config;
3246 pci_conf[0x00] = 0x86; // Intel
3247 pci_conf[0x01] = 0x80;
3248 pci_conf[0x02] = 0x11;
3249 pci_conf[0x03] = 0x71;
3250 pci_conf[0x09] = 0x80; // legacy ATA mode
3251 pci_conf[0x0a] = 0x01; // class_sub = PCI_IDE
3252 pci_conf[0x0b] = 0x01; // class_base = PCI_mass_storage
3253 pci_conf[0x0e] = 0x00; // header_type
3257 pci_register_io_region((PCIDevice *)d, 4, 0x10,
3258 PCI_ADDRESS_SPACE_IO, bmdma_map);
3260 ide_init2(&d->ide_if[0], hd_table[0], hd_table[1], pic[14]);
3261 ide_init2(&d->ide_if[2], hd_table[2], hd_table[3], pic[15]);
3262 ide_init_ioport(&d->ide_if[0], 0x1f0, 0x3f6);
3263 ide_init_ioport(&d->ide_if[2], 0x170, 0x376);
3265 register_savevm("ide", 0, 1, pci_ide_save, pci_ide_load, d);
3268 /***********************************************************/
3269 /* MacIO based PowerPC IDE */
3271 /* PowerMac IDE memory IO */
3272 static void pmac_ide_writeb (void *opaque,
3273 target_phys_addr_t addr, uint32_t val)
3275 addr = (addr & 0xFFF) >> 4;
3278 ide_ioport_write(opaque, addr, val);
3282 ide_cmd_write(opaque, 0, val);
3289 static uint32_t pmac_ide_readb (void *opaque,target_phys_addr_t addr)
3293 addr = (addr & 0xFFF) >> 4;
3296 retval = ide_ioport_read(opaque, addr);
3300 retval = ide_status_read(opaque, 0);
3309 static void pmac_ide_writew (void *opaque,
3310 target_phys_addr_t addr, uint32_t val)
3312 addr = (addr & 0xFFF) >> 4;
3313 #ifdef TARGET_WORDS_BIGENDIAN
3317 ide_data_writew(opaque, 0, val);
3321 static uint32_t pmac_ide_readw (void *opaque,target_phys_addr_t addr)
3325 addr = (addr & 0xFFF) >> 4;
3327 retval = ide_data_readw(opaque, 0);
3331 #ifdef TARGET_WORDS_BIGENDIAN
3332 retval = bswap16(retval);
3337 static void pmac_ide_writel (void *opaque,
3338 target_phys_addr_t addr, uint32_t val)
3340 addr = (addr & 0xFFF) >> 4;
3341 #ifdef TARGET_WORDS_BIGENDIAN
3345 ide_data_writel(opaque, 0, val);
3349 static uint32_t pmac_ide_readl (void *opaque,target_phys_addr_t addr)
3353 addr = (addr & 0xFFF) >> 4;
3355 retval = ide_data_readl(opaque, 0);
3357 retval = 0xFFFFFFFF;
3359 #ifdef TARGET_WORDS_BIGENDIAN
3360 retval = bswap32(retval);
3365 static CPUWriteMemoryFunc *pmac_ide_write[] = {
3371 static CPUReadMemoryFunc *pmac_ide_read[] = {
3377 /* hd_table must contain 4 block drivers */
3378 /* PowerMac uses memory mapped registers, not I/O. Return the memory
3379 I/O index to access the ide. */
3380 int pmac_ide_init (BlockDriverState **hd_table, qemu_irq irq)
3383 int pmac_ide_memory;
3385 ide_if = qemu_mallocz(sizeof(IDEState) * 2);
3386 ide_init2(&ide_if[0], hd_table[0], hd_table[1], irq);
3388 pmac_ide_memory = cpu_register_io_memory(0, pmac_ide_read,
3389 pmac_ide_write, &ide_if[0]);
3390 return pmac_ide_memory;
3393 /***********************************************************/
3394 /* CF-ATA Microdrive */
3396 #define METADATA_SIZE 0x20
3398 /* DSCM-1XXXX Microdrive hard disk with CF+ II / PCMCIA interface. */
3401 struct pcmcia_card_s card;
3415 /* Register bitfields */
3418 OPT_MODE_IOMAP16 = 1,
3419 OPT_MODE_IOMAP1 = 2,
3420 OPT_MODE_IOMAP2 = 3,
3431 STAT_CHANGED = 0x80,
3442 static inline void md_interrupt_update(struct md_s *s)
3447 qemu_set_irq(s->card.slot->irq,
3448 !(s->stat & STAT_INT) && /* Inverted */
3449 !(s->ctrl & (CTRL_IEN | CTRL_SRST)) &&
3450 !(s->opt & OPT_SRESET));
3453 static void md_set_irq(void *opaque, int irq, int level)
3455 struct md_s *s = (struct md_s *) opaque;
3457 s->stat |= STAT_INT;
3459 s->stat &= ~STAT_INT;
3461 md_interrupt_update(s);
3464 static void md_reset(struct md_s *s)
3466 s->opt = OPT_MODE_MMAP;
3474 static uint8_t md_attr_read(void *opaque, uint32_t at)
3476 struct md_s *s = (struct md_s *) opaque;
3477 if (at < s->attr_base) {
3478 if (at < s->card.cis_len)
3479 return s->card.cis[at];
3487 case 0x00: /* Configuration Option Register */
3489 case 0x02: /* Card Configuration Status Register */
3490 if (s->ctrl & CTRL_IEN)
3491 return s->stat & ~STAT_INT;
3494 case 0x04: /* Pin Replacement Register */
3495 return (s->pins & PINS_CRDY) | 0x0c;
3496 case 0x06: /* Socket and Copy Register */
3500 printf("%s: Bad attribute space register %02x\n", __FUNCTION__, at);
3507 static void md_attr_write(void *opaque, uint32_t at, uint8_t value)
3509 struct md_s *s = (struct md_s *) opaque;
3513 case 0x00: /* Configuration Option Register */
3514 s->opt = value & 0xcf;
3515 if (value & OPT_SRESET)
3517 md_interrupt_update(s);
3519 case 0x02: /* Card Configuration Status Register */
3520 if ((s->stat ^ value) & STAT_PWRDWN)
3521 s->pins |= PINS_CRDY;
3523 s->stat |= value & 0x74;
3524 md_interrupt_update(s);
3525 /* Word 170 in Identify Device must be equal to STAT_XE */
3527 case 0x04: /* Pin Replacement Register */
3528 s->pins &= PINS_CRDY;
3529 s->pins |= value & PINS_MRDY;
3531 case 0x06: /* Socket and Copy Register */
3534 printf("%s: Bad attribute space register %02x\n", __FUNCTION__, at);
3538 static uint16_t md_common_read(void *opaque, uint32_t at)
3540 struct md_s *s = (struct md_s *) opaque;
3544 switch (s->opt & OPT_MODE) {
3546 if ((at & ~0x3ff) == 0x400)
3549 case OPT_MODE_IOMAP16:
3552 case OPT_MODE_IOMAP1:
3553 if ((at & ~0xf) == 0x3f0)
3555 else if ((at & ~0xf) == 0x1f0)
3558 case OPT_MODE_IOMAP2:
3559 if ((at & ~0xf) == 0x370)
3561 else if ((at & ~0xf) == 0x170)
3566 case 0x0: /* Even RD Data */
3568 return ide_data_readw(s->ide, 0);
3570 /* TODO: 8-bit accesses */
3574 s->io = ide_data_readw(s->ide, 0);
3577 s->cycle = !s->cycle;
3579 case 0x9: /* Odd RD Data */
3581 case 0xd: /* Error */
3582 return ide_ioport_read(s->ide, 0x1);
3583 case 0xe: /* Alternate Status */
3584 if (s->ide->cur_drive->bs)
3585 return s->ide->cur_drive->status;
3588 case 0xf: /* Device Address */
3589 return 0xc2 | ((~s->ide->select << 2) & 0x3c);
3591 return ide_ioport_read(s->ide, at);
3597 static void md_common_write(void *opaque, uint32_t at, uint16_t value)
3599 struct md_s *s = (struct md_s *) opaque;
3602 switch (s->opt & OPT_MODE) {
3604 if ((at & ~0x3ff) == 0x400)
3607 case OPT_MODE_IOMAP16:
3610 case OPT_MODE_IOMAP1:
3611 if ((at & ~0xf) == 0x3f0)
3613 else if ((at & ~0xf) == 0x1f0)
3616 case OPT_MODE_IOMAP2:
3617 if ((at & ~0xf) == 0x370)
3619 else if ((at & ~0xf) == 0x170)
3624 case 0x0: /* Even WR Data */
3626 ide_data_writew(s->ide, 0, value);
3629 /* TODO: 8-bit accesses */
3631 ide_data_writew(s->ide, 0, s->io | (value << 8));
3633 s->io = value & 0xff;
3634 s->cycle = !s->cycle;
3637 s->io = value & 0xff;
3638 s->cycle = !s->cycle;
3640 case 0xd: /* Features */
3641 ide_ioport_write(s->ide, 0x1, value);
3643 case 0xe: /* Device Control */
3645 if (value & CTRL_SRST)
3647 md_interrupt_update(s);
3650 if (s->stat & STAT_PWRDWN) {
3651 s->pins |= PINS_CRDY;
3652 s->stat &= ~STAT_PWRDWN;
3654 ide_ioport_write(s->ide, at, value);
3658 static void md_save(QEMUFile *f, void *opaque)
3660 struct md_s *s = (struct md_s *) opaque;
3662 uint8_t drive1_selected;
3664 qemu_put_8s(f, &s->opt);
3665 qemu_put_8s(f, &s->stat);
3666 qemu_put_8s(f, &s->pins);
3668 qemu_put_8s(f, &s->ctrl);
3669 qemu_put_be16s(f, &s->io);
3670 qemu_put_byte(f, s->cycle);
3672 drive1_selected = (s->ide->cur_drive != s->ide);
3673 qemu_put_8s(f, &s->ide->cmd);
3674 qemu_put_8s(f, &drive1_selected);
3676 for (i = 0; i < 2; i ++)
3677 ide_save(f, &s->ide[i]);
3680 static int md_load(QEMUFile *f, void *opaque, int version_id)
3682 struct md_s *s = (struct md_s *) opaque;
3684 uint8_t drive1_selected;
3686 qemu_get_8s(f, &s->opt);
3687 qemu_get_8s(f, &s->stat);
3688 qemu_get_8s(f, &s->pins);
3690 qemu_get_8s(f, &s->ctrl);
3691 qemu_get_be16s(f, &s->io);
3692 s->cycle = qemu_get_byte(f);
3694 qemu_get_8s(f, &s->ide->cmd);
3695 qemu_get_8s(f, &drive1_selected);
3696 s->ide->cur_drive = &s->ide[(drive1_selected != 0)];
3698 for (i = 0; i < 2; i ++)
3699 ide_load(f, &s->ide[i]);
3704 static const uint8_t dscm1xxxx_cis[0x14a] = {
3705 [0x000] = CISTPL_DEVICE, /* 5V Device Information */
3706 [0x002] = 0x03, /* Tuple length = 4 bytes */
3707 [0x004] = 0xdb, /* ID: DTYPE_FUNCSPEC, non WP, DSPEED_150NS */
3708 [0x006] = 0x01, /* Size = 2K bytes */
3709 [0x008] = CISTPL_ENDMARK,
3711 [0x00a] = CISTPL_DEVICE_OC, /* Additional Device Information */
3712 [0x00c] = 0x04, /* Tuple length = 4 byest */
3713 [0x00e] = 0x03, /* Conditions: Ext = 0, Vcc 3.3V, MWAIT = 1 */
3714 [0x010] = 0xdb, /* ID: DTYPE_FUNCSPEC, non WP, DSPEED_150NS */
3715 [0x012] = 0x01, /* Size = 2K bytes */
3716 [0x014] = CISTPL_ENDMARK,
3718 [0x016] = CISTPL_JEDEC_C, /* JEDEC ID */
3719 [0x018] = 0x02, /* Tuple length = 2 bytes */
3720 [0x01a] = 0xdf, /* PC Card ATA with no Vpp required */
3723 [0x01e] = CISTPL_MANFID, /* Manufacture ID */
3724 [0x020] = 0x04, /* Tuple length = 4 bytes */
3725 [0x022] = 0xa4, /* TPLMID_MANF = 00a4 (IBM) */
3727 [0x026] = 0x00, /* PLMID_CARD = 0000 */
3730 [0x02a] = CISTPL_VERS_1, /* Level 1 Version */
3731 [0x02c] = 0x12, /* Tuple length = 23 bytes */
3732 [0x02e] = 0x04, /* Major Version = JEIDA 4.2 / PCMCIA 2.1 */
3733 [0x030] = 0x01, /* Minor Version = 1 */
3749 [0x050] = CISTPL_ENDMARK,
3751 [0x052] = CISTPL_FUNCID, /* Function ID */
3752 [0x054] = 0x02, /* Tuple length = 2 bytes */
3753 [0x056] = 0x04, /* TPLFID_FUNCTION = Fixed Disk */
3754 [0x058] = 0x01, /* TPLFID_SYSINIT: POST = 1, ROM = 0 */
3756 [0x05a] = CISTPL_FUNCE, /* Function Extension */
3757 [0x05c] = 0x02, /* Tuple length = 2 bytes */
3758 [0x05e] = 0x01, /* TPLFE_TYPE = Disk Device Interface */
3759 [0x060] = 0x01, /* TPLFE_DATA = PC Card ATA Interface */
3761 [0x062] = CISTPL_FUNCE, /* Function Extension */
3762 [0x064] = 0x03, /* Tuple length = 3 bytes */
3763 [0x066] = 0x02, /* TPLFE_TYPE = Basic PC Card ATA Interface */
3764 [0x068] = 0x08, /* TPLFE_DATA: Rotating, Unique, Single */
3765 [0x06a] = 0x0f, /* TPLFE_DATA: Sleep, Standby, Idle, Auto */
3767 [0x06c] = CISTPL_CONFIG, /* Configuration */
3768 [0x06e] = 0x05, /* Tuple length = 5 bytes */
3769 [0x070] = 0x01, /* TPCC_RASZ = 2 bytes, TPCC_RMSZ = 1 byte */
3770 [0x072] = 0x07, /* TPCC_LAST = 7 */
3771 [0x074] = 0x00, /* TPCC_RADR = 0200 */
3773 [0x078] = 0x0f, /* TPCC_RMSK = 200, 202, 204, 206 */
3775 [0x07a] = CISTPL_CFTABLE_ENTRY, /* 16-bit PC Card Configuration */
3776 [0x07c] = 0x0b, /* Tuple length = 11 bytes */
3777 [0x07e] = 0xc0, /* TPCE_INDX = Memory Mode, Default, Iface */
3778 [0x080] = 0xc0, /* TPCE_IF = Memory, no BVDs, no WP, READY */
3779 [0x082] = 0xa1, /* TPCE_FS = Vcc only, no I/O, Memory, Misc */
3780 [0x084] = 0x27, /* NomV = 1, MinV = 1, MaxV = 1, Peakl = 1 */
3781 [0x086] = 0x55, /* NomV: 5.0 V */
3782 [0x088] = 0x4d, /* MinV: 4.5 V */
3783 [0x08a] = 0x5d, /* MaxV: 5.5 V */
3784 [0x08c] = 0x4e, /* Peakl: 450 mA */
3785 [0x08e] = 0x08, /* TPCE_MS = 1 window, 1 byte, Host address */
3786 [0x090] = 0x00, /* Window descriptor: Window length = 0 */
3787 [0x092] = 0x20, /* TPCE_MI: support power down mode, RW */
3789 [0x094] = CISTPL_CFTABLE_ENTRY, /* 16-bit PC Card Configuration */
3790 [0x096] = 0x06, /* Tuple length = 6 bytes */
3791 [0x098] = 0x00, /* TPCE_INDX = Memory Mode, no Default */
3792 [0x09a] = 0x01, /* TPCE_FS = Vcc only, no I/O, no Memory */
3793 [0x09c] = 0x21, /* NomV = 1, MinV = 0, MaxV = 0, Peakl = 1 */
3794 [0x09e] = 0xb5, /* NomV: 3.3 V */
3796 [0x0a2] = 0x3e, /* Peakl: 350 mA */
3798 [0x0a4] = CISTPL_CFTABLE_ENTRY, /* 16-bit PC Card Configuration */
3799 [0x0a6] = 0x0d, /* Tuple length = 13 bytes */
3800 [0x0a8] = 0xc1, /* TPCE_INDX = I/O and Memory Mode, Default */
3801 [0x0aa] = 0x41, /* TPCE_IF = I/O and Memory, no BVD, no WP */
3802 [0x0ac] = 0x99, /* TPCE_FS = Vcc only, I/O, Interrupt, Misc */
3803 [0x0ae] = 0x27, /* NomV = 1, MinV = 1, MaxV = 1, Peakl = 1 */
3804 [0x0b0] = 0x55, /* NomV: 5.0 V */
3805 [0x0b2] = 0x4d, /* MinV: 4.5 V */
3806 [0x0b4] = 0x5d, /* MaxV: 5.5 V */
3807 [0x0b6] = 0x4e, /* Peakl: 450 mA */
3808 [0x0b8] = 0x64, /* TPCE_IO = 16-byte boundary, 16/8 accesses */
3809 [0x0ba] = 0xf0, /* TPCE_IR = MASK, Level, Pulse, Share */
3810 [0x0bc] = 0xff, /* IRQ0..IRQ7 supported */
3811 [0x0be] = 0xff, /* IRQ8..IRQ15 supported */
3812 [0x0c0] = 0x20, /* TPCE_MI = support power down mode */
3814 [0x0c2] = CISTPL_CFTABLE_ENTRY, /* 16-bit PC Card Configuration */
3815 [0x0c4] = 0x06, /* Tuple length = 6 bytes */
3816 [0x0c6] = 0x01, /* TPCE_INDX = I/O and Memory Mode */
3817 [0x0c8] = 0x01, /* TPCE_FS = Vcc only, no I/O, no Memory */
3818 [0x0ca] = 0x21, /* NomV = 1, MinV = 0, MaxV = 0, Peakl = 1 */
3819 [0x0cc] = 0xb5, /* NomV: 3.3 V */
3821 [0x0d0] = 0x3e, /* Peakl: 350 mA */
3823 [0x0d2] = CISTPL_CFTABLE_ENTRY, /* 16-bit PC Card Configuration */
3824 [0x0d4] = 0x12, /* Tuple length = 18 bytes */
3825 [0x0d6] = 0xc2, /* TPCE_INDX = I/O Primary Mode */
3826 [0x0d8] = 0x41, /* TPCE_IF = I/O and Memory, no BVD, no WP */
3827 [0x0da] = 0x99, /* TPCE_FS = Vcc only, I/O, Interrupt, Misc */
3828 [0x0dc] = 0x27, /* NomV = 1, MinV = 1, MaxV = 1, Peakl = 1 */
3829 [0x0de] = 0x55, /* NomV: 5.0 V */
3830 [0x0e0] = 0x4d, /* MinV: 4.5 V */
3831 [0x0e2] = 0x5d, /* MaxV: 5.5 V */
3832 [0x0e4] = 0x4e, /* Peakl: 450 mA */
3833 [0x0e6] = 0xea, /* TPCE_IO = 1K boundary, 16/8 access, Range */
3834 [0x0e8] = 0x61, /* Range: 2 fields, 2 bytes addr, 1 byte len */
3835 [0x0ea] = 0xf0, /* Field 1 address = 0x01f0 */
3837 [0x0ee] = 0x07, /* Address block length = 8 */
3838 [0x0f0] = 0xf6, /* Field 2 address = 0x03f6 */
3840 [0x0f4] = 0x01, /* Address block length = 2 */
3841 [0x0f6] = 0xee, /* TPCE_IR = IRQ E, Level, Pulse, Share */
3842 [0x0f8] = 0x20, /* TPCE_MI = support power down mode */
3844 [0x0fa] = CISTPL_CFTABLE_ENTRY, /* 16-bit PC Card Configuration */
3845 [0x0fc] = 0x06, /* Tuple length = 6 bytes */
3846 [0x0fe] = 0x02, /* TPCE_INDX = I/O Primary Mode, no Default */
3847 [0x100] = 0x01, /* TPCE_FS = Vcc only, no I/O, no Memory */
3848 [0x102] = 0x21, /* NomV = 1, MinV = 0, MaxV = 0, Peakl = 1 */
3849 [0x104] = 0xb5, /* NomV: 3.3 V */
3851 [0x108] = 0x3e, /* Peakl: 350 mA */
3853 [0x10a] = CISTPL_CFTABLE_ENTRY, /* 16-bit PC Card Configuration */
3854 [0x10c] = 0x12, /* Tuple length = 18 bytes */
3855 [0x10e] = 0xc3, /* TPCE_INDX = I/O Secondary Mode, Default */
3856 [0x110] = 0x41, /* TPCE_IF = I/O and Memory, no BVD, no WP */
3857 [0x112] = 0x99, /* TPCE_FS = Vcc only, I/O, Interrupt, Misc */
3858 [0x114] = 0x27, /* NomV = 1, MinV = 1, MaxV = 1, Peakl = 1 */
3859 [0x116] = 0x55, /* NomV: 5.0 V */
3860 [0x118] = 0x4d, /* MinV: 4.5 V */
3861 [0x11a] = 0x5d, /* MaxV: 5.5 V */
3862 [0x11c] = 0x4e, /* Peakl: 450 mA */
3863 [0x11e] = 0xea, /* TPCE_IO = 1K boundary, 16/8 access, Range */
3864 [0x120] = 0x61, /* Range: 2 fields, 2 byte addr, 1 byte len */
3865 [0x122] = 0x70, /* Field 1 address = 0x0170 */
3867 [0x126] = 0x07, /* Address block length = 8 */
3868 [0x128] = 0x76, /* Field 2 address = 0x0376 */
3870 [0x12c] = 0x01, /* Address block length = 2 */
3871 [0x12e] = 0xee, /* TPCE_IR = IRQ E, Level, Pulse, Share */
3872 [0x130] = 0x20, /* TPCE_MI = support power down mode */
3874 [0x132] = CISTPL_CFTABLE_ENTRY, /* 16-bit PC Card Configuration */
3875 [0x134] = 0x06, /* Tuple length = 6 bytes */
3876 [0x136] = 0x03, /* TPCE_INDX = I/O Secondary Mode */
3877 [0x138] = 0x01, /* TPCE_FS = Vcc only, no I/O, no Memory */
3878 [0x13a] = 0x21, /* NomV = 1, MinV = 0, MaxV = 0, Peakl = 1 */
3879 [0x13c] = 0xb5, /* NomV: 3.3 V */
3881 [0x140] = 0x3e, /* Peakl: 350 mA */
3883 [0x142] = CISTPL_NO_LINK, /* No Link */
3884 [0x144] = 0x00, /* Tuple length = 0 bytes */
3886 [0x146] = CISTPL_END, /* Tuple End */
3889 static int dscm1xxxx_attach(void *opaque)
3891 struct md_s *md = (struct md_s *) opaque;
3892 md->card.attr_read = md_attr_read;
3893 md->card.attr_write = md_attr_write;
3894 md->card.common_read = md_common_read;
3895 md->card.common_write = md_common_write;
3896 md->card.io_read = md_common_read;
3897 md->card.io_write = md_common_write;
3899 md->attr_base = md->card.cis[0x74] | (md->card.cis[0x76] << 8);
3903 md_interrupt_update(md);
3905 md->card.slot->card_string = "DSCM-1xxxx Hitachi Microdrive";
3909 static int dscm1xxxx_detach(void *opaque)
3911 struct md_s *md = (struct md_s *) opaque;
3916 struct pcmcia_card_s *dscm1xxxx_init(BlockDriverState *bdrv)
3918 struct md_s *md = (struct md_s *) qemu_mallocz(sizeof(struct md_s));
3919 md->card.state = md;
3920 md->card.attach = dscm1xxxx_attach;
3921 md->card.detach = dscm1xxxx_detach;
3922 md->card.cis = dscm1xxxx_cis;
3923 md->card.cis_len = sizeof(dscm1xxxx_cis);
3925 ide_init2(md->ide, bdrv, 0, qemu_allocate_irqs(md_set_irq, md, 1)[0]);
3927 md->ide->mdata_size = METADATA_SIZE;
3928 md->ide->mdata_storage = (uint8_t *) qemu_mallocz(METADATA_SIZE);
3930 register_savevm("microdrive", -1, 0, md_save, md_load, md);
projects / qemu.git / blob