2 * QEMU IDE disk and CD/DVD-ROM Emulator
4 * Copyright (c) 2003 Fabrice Bellard
5 * Copyright (c) 2006 Openedhand Ltd.
7 * Permission is hereby granted, free of charge, to any person obtaining a copy
8 * of this software and associated documentation files (the "Software"), to deal
9 * in the Software without restriction, including without limitation the rights
10 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
11 * copies of the Software, and to permit persons to whom the Software is
12 * furnished to do so, subject to the following conditions:
14 * The above copyright notice and this permission notice shall be included in
15 * all copies or substantial portions of the Software.
17 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
18 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
19 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
20 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
21 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
22 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
25 #include "qemu/osdep.h"
27 #include "hw/i386/pc.h"
28 #include "hw/pci/pci.h"
29 #include "hw/isa/isa.h"
30 #include "qemu/error-report.h"
31 #include "qemu/timer.h"
32 #include "sysemu/sysemu.h"
33 #include "sysemu/dma.h"
34 #include "hw/block/block.h"
35 #include "sysemu/block-backend.h"
36 #include "qemu/cutils.h"
38 #include "hw/ide/internal.h"
40 /* These values were based on a Seagate ST3500418AS but have been modified
41 to make more sense in QEMU */
42 static const int smart_attributes[][12] = {
43 /* id, flags, hflags, val, wrst, raw (6 bytes), threshold */
44 /* raw read error rate*/
45 { 0x01, 0x03, 0x00, 0x64, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x06},
47 { 0x03, 0x03, 0x00, 0x64, 0x64, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00},
48 /* start stop count */
49 { 0x04, 0x02, 0x00, 0x64, 0x64, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x14},
50 /* remapped sectors */
51 { 0x05, 0x03, 0x00, 0x64, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x24},
53 { 0x09, 0x03, 0x00, 0x64, 0x64, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00},
54 /* power cycle count */
55 { 0x0c, 0x03, 0x00, 0x64, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00},
56 /* airflow-temperature-celsius */
57 { 190, 0x03, 0x00, 0x45, 0x45, 0x1f, 0x00, 0x1f, 0x1f, 0x00, 0x00, 0x32},
60 static void ide_dummy_transfer_stop(IDEState *s);
62 static void padstr(char *str, const char *src, int len)
65 for(i = 0; i < len; i++) {
74 static void put_le16(uint16_t *p, unsigned int v)
79 static void ide_identify_size(IDEState *s)
81 uint16_t *p = (uint16_t *)s->identify_data;
82 put_le16(p + 60, s->nb_sectors);
83 put_le16(p + 61, s->nb_sectors >> 16);
84 put_le16(p + 100, s->nb_sectors);
85 put_le16(p + 101, s->nb_sectors >> 16);
86 put_le16(p + 102, s->nb_sectors >> 32);
87 put_le16(p + 103, s->nb_sectors >> 48);
90 static void ide_identify(IDEState *s)
94 IDEDevice *dev = s->unit ? s->bus->slave : s->bus->master;
96 p = (uint16_t *)s->identify_data;
97 if (s->identify_set) {
100 memset(p, 0, sizeof(s->identify_data));
102 put_le16(p + 0, 0x0040);
103 put_le16(p + 1, s->cylinders);
104 put_le16(p + 3, s->heads);
105 put_le16(p + 4, 512 * s->sectors); /* XXX: retired, remove ? */
106 put_le16(p + 5, 512); /* XXX: retired, remove ? */
107 put_le16(p + 6, s->sectors);
108 padstr((char *)(p + 10), s->drive_serial_str, 20); /* serial number */
109 put_le16(p + 20, 3); /* XXX: retired, remove ? */
110 put_le16(p + 21, 512); /* cache size in sectors */
111 put_le16(p + 22, 4); /* ecc bytes */
112 padstr((char *)(p + 23), s->version, 8); /* firmware version */
113 padstr((char *)(p + 27), s->drive_model_str, 40); /* model */
114 #if MAX_MULT_SECTORS > 1
115 put_le16(p + 47, 0x8000 | MAX_MULT_SECTORS);
117 put_le16(p + 48, 1); /* dword I/O */
118 put_le16(p + 49, (1 << 11) | (1 << 9) | (1 << 8)); /* DMA and LBA supported */
119 put_le16(p + 51, 0x200); /* PIO transfer cycle */
120 put_le16(p + 52, 0x200); /* DMA transfer cycle */
121 put_le16(p + 53, 1 | (1 << 1) | (1 << 2)); /* words 54-58,64-70,88 are valid */
122 put_le16(p + 54, s->cylinders);
123 put_le16(p + 55, s->heads);
124 put_le16(p + 56, s->sectors);
125 oldsize = s->cylinders * s->heads * s->sectors;
126 put_le16(p + 57, oldsize);
127 put_le16(p + 58, oldsize >> 16);
129 put_le16(p + 59, 0x100 | s->mult_sectors);
130 /* *(p + 60) := nb_sectors -- see ide_identify_size */
131 /* *(p + 61) := nb_sectors >> 16 -- see ide_identify_size */
132 put_le16(p + 62, 0x07); /* single word dma0-2 supported */
133 put_le16(p + 63, 0x07); /* mdma0-2 supported */
134 put_le16(p + 64, 0x03); /* pio3-4 supported */
135 put_le16(p + 65, 120);
136 put_le16(p + 66, 120);
137 put_le16(p + 67, 120);
138 put_le16(p + 68, 120);
139 if (dev && dev->conf.discard_granularity) {
140 put_le16(p + 69, (1 << 14)); /* determinate TRIM behavior */
144 put_le16(p + 75, s->ncq_queues - 1);
146 put_le16(p + 76, (1 << 8));
149 put_le16(p + 80, 0xf0); /* ata3 -> ata6 supported */
150 put_le16(p + 81, 0x16); /* conforms to ata5 */
151 /* 14=NOP supported, 5=WCACHE supported, 0=SMART supported */
152 put_le16(p + 82, (1 << 14) | (1 << 5) | 1);
153 /* 13=flush_cache_ext,12=flush_cache,10=lba48 */
154 put_le16(p + 83, (1 << 14) | (1 << 13) | (1 <<12) | (1 << 10));
155 /* 14=set to 1, 8=has WWN, 1=SMART self test, 0=SMART error logging */
157 put_le16(p + 84, (1 << 14) | (1 << 8) | 0);
159 put_le16(p + 84, (1 << 14) | 0);
161 /* 14 = NOP supported, 5=WCACHE enabled, 0=SMART feature set enabled */
162 if (blk_enable_write_cache(s->blk)) {
163 put_le16(p + 85, (1 << 14) | (1 << 5) | 1);
165 put_le16(p + 85, (1 << 14) | 1);
167 /* 13=flush_cache_ext,12=flush_cache,10=lba48 */
168 put_le16(p + 86, (1 << 13) | (1 <<12) | (1 << 10));
169 /* 14=set to 1, 8=has WWN, 1=SMART self test, 0=SMART error logging */
171 put_le16(p + 87, (1 << 14) | (1 << 8) | 0);
173 put_le16(p + 87, (1 << 14) | 0);
175 put_le16(p + 88, 0x3f | (1 << 13)); /* udma5 set and supported */
176 put_le16(p + 93, 1 | (1 << 14) | 0x2000);
177 /* *(p + 100) := nb_sectors -- see ide_identify_size */
178 /* *(p + 101) := nb_sectors >> 16 -- see ide_identify_size */
179 /* *(p + 102) := nb_sectors >> 32 -- see ide_identify_size */
180 /* *(p + 103) := nb_sectors >> 48 -- see ide_identify_size */
182 if (dev && dev->conf.physical_block_size)
183 put_le16(p + 106, 0x6000 | get_physical_block_exp(&dev->conf));
185 /* LE 16-bit words 111-108 contain 64-bit World Wide Name */
186 put_le16(p + 108, s->wwn >> 48);
187 put_le16(p + 109, s->wwn >> 32);
188 put_le16(p + 110, s->wwn >> 16);
189 put_le16(p + 111, s->wwn);
191 if (dev && dev->conf.discard_granularity) {
192 put_le16(p + 169, 1); /* TRIM support */
195 ide_identify_size(s);
199 memcpy(s->io_buffer, p, sizeof(s->identify_data));
202 static void ide_atapi_identify(IDEState *s)
206 p = (uint16_t *)s->identify_data;
207 if (s->identify_set) {
210 memset(p, 0, sizeof(s->identify_data));
212 /* Removable CDROM, 50us response, 12 byte packets */
213 put_le16(p + 0, (2 << 14) | (5 << 8) | (1 << 7) | (2 << 5) | (0 << 0));
214 padstr((char *)(p + 10), s->drive_serial_str, 20); /* serial number */
215 put_le16(p + 20, 3); /* buffer type */
216 put_le16(p + 21, 512); /* cache size in sectors */
217 put_le16(p + 22, 4); /* ecc bytes */
218 padstr((char *)(p + 23), s->version, 8); /* firmware version */
219 padstr((char *)(p + 27), s->drive_model_str, 40); /* model */
220 put_le16(p + 48, 1); /* dword I/O (XXX: should not be set on CDROM) */
222 put_le16(p + 49, 1 << 9 | 1 << 8); /* DMA and LBA supported */
223 put_le16(p + 53, 7); /* words 64-70, 54-58, 88 valid */
224 put_le16(p + 62, 7); /* single word dma0-2 supported */
225 put_le16(p + 63, 7); /* mdma0-2 supported */
227 put_le16(p + 49, 1 << 9); /* LBA supported, no DMA */
228 put_le16(p + 53, 3); /* words 64-70, 54-58 valid */
229 put_le16(p + 63, 0x103); /* DMA modes XXX: may be incorrect */
231 put_le16(p + 64, 3); /* pio3-4 supported */
232 put_le16(p + 65, 0xb4); /* minimum DMA multiword tx cycle time */
233 put_le16(p + 66, 0xb4); /* recommended DMA multiword tx cycle time */
234 put_le16(p + 67, 0x12c); /* minimum PIO cycle time without flow control */
235 put_le16(p + 68, 0xb4); /* minimum PIO cycle time with IORDY flow control */
237 put_le16(p + 71, 30); /* in ns */
238 put_le16(p + 72, 30); /* in ns */
241 put_le16(p + 75, s->ncq_queues - 1);
243 put_le16(p + 76, (1 << 8));
246 put_le16(p + 80, 0x1e); /* support up to ATA/ATAPI-4 */
248 put_le16(p + 84, (1 << 8)); /* supports WWN for words 108-111 */
249 put_le16(p + 87, (1 << 8)); /* WWN enabled */
253 put_le16(p + 88, 0x3f | (1 << 13)); /* udma5 set and supported */
257 /* LE 16-bit words 111-108 contain 64-bit World Wide Name */
258 put_le16(p + 108, s->wwn >> 48);
259 put_le16(p + 109, s->wwn >> 32);
260 put_le16(p + 110, s->wwn >> 16);
261 put_le16(p + 111, s->wwn);
267 memcpy(s->io_buffer, p, sizeof(s->identify_data));
270 static void ide_cfata_identify_size(IDEState *s)
272 uint16_t *p = (uint16_t *)s->identify_data;
273 put_le16(p + 7, s->nb_sectors >> 16); /* Sectors per card */
274 put_le16(p + 8, s->nb_sectors); /* Sectors per card */
275 put_le16(p + 60, s->nb_sectors); /* Total LBA sectors */
276 put_le16(p + 61, s->nb_sectors >> 16); /* Total LBA sectors */
279 static void ide_cfata_identify(IDEState *s)
284 p = (uint16_t *)s->identify_data;
285 if (s->identify_set) {
288 memset(p, 0, sizeof(s->identify_data));
290 cur_sec = s->cylinders * s->heads * s->sectors;
292 put_le16(p + 0, 0x848a); /* CF Storage Card signature */
293 put_le16(p + 1, s->cylinders); /* Default cylinders */
294 put_le16(p + 3, s->heads); /* Default heads */
295 put_le16(p + 6, s->sectors); /* Default sectors per track */
296 /* *(p + 7) := nb_sectors >> 16 -- see ide_cfata_identify_size */
297 /* *(p + 8) := nb_sectors -- see ide_cfata_identify_size */
298 padstr((char *)(p + 10), s->drive_serial_str, 20); /* serial number */
299 put_le16(p + 22, 0x0004); /* ECC bytes */
300 padstr((char *) (p + 23), s->version, 8); /* Firmware Revision */
301 padstr((char *) (p + 27), s->drive_model_str, 40);/* Model number */
302 #if MAX_MULT_SECTORS > 1
303 put_le16(p + 47, 0x8000 | MAX_MULT_SECTORS);
305 put_le16(p + 47, 0x0000);
307 put_le16(p + 49, 0x0f00); /* Capabilities */
308 put_le16(p + 51, 0x0002); /* PIO cycle timing mode */
309 put_le16(p + 52, 0x0001); /* DMA cycle timing mode */
310 put_le16(p + 53, 0x0003); /* Translation params valid */
311 put_le16(p + 54, s->cylinders); /* Current cylinders */
312 put_le16(p + 55, s->heads); /* Current heads */
313 put_le16(p + 56, s->sectors); /* Current sectors */
314 put_le16(p + 57, cur_sec); /* Current capacity */
315 put_le16(p + 58, cur_sec >> 16); /* Current capacity */
316 if (s->mult_sectors) /* Multiple sector setting */
317 put_le16(p + 59, 0x100 | s->mult_sectors);
318 /* *(p + 60) := nb_sectors -- see ide_cfata_identify_size */
319 /* *(p + 61) := nb_sectors >> 16 -- see ide_cfata_identify_size */
320 put_le16(p + 63, 0x0203); /* Multiword DMA capability */
321 put_le16(p + 64, 0x0001); /* Flow Control PIO support */
322 put_le16(p + 65, 0x0096); /* Min. Multiword DMA cycle */
323 put_le16(p + 66, 0x0096); /* Rec. Multiword DMA cycle */
324 put_le16(p + 68, 0x00b4); /* Min. PIO cycle time */
325 put_le16(p + 82, 0x400c); /* Command Set supported */
326 put_le16(p + 83, 0x7068); /* Command Set supported */
327 put_le16(p + 84, 0x4000); /* Features supported */
328 put_le16(p + 85, 0x000c); /* Command Set enabled */
329 put_le16(p + 86, 0x7044); /* Command Set enabled */
330 put_le16(p + 87, 0x4000); /* Features enabled */
331 put_le16(p + 91, 0x4060); /* Current APM level */
332 put_le16(p + 129, 0x0002); /* Current features option */
333 put_le16(p + 130, 0x0005); /* Reassigned sectors */
334 put_le16(p + 131, 0x0001); /* Initial power mode */
335 put_le16(p + 132, 0x0000); /* User signature */
336 put_le16(p + 160, 0x8100); /* Power requirement */
337 put_le16(p + 161, 0x8001); /* CF command set */
339 ide_cfata_identify_size(s);
343 memcpy(s->io_buffer, p, sizeof(s->identify_data));
346 static void ide_set_signature(IDEState *s)
348 s->select &= 0xf0; /* clear head */
352 if (s->drive_kind == IDE_CD) {
364 typedef struct TrimAIOCB {
374 static void trim_aio_cancel(BlockAIOCB *acb)
376 TrimAIOCB *iocb = container_of(acb, TrimAIOCB, common);
378 /* Exit the loop so ide_issue_trim_cb will not continue */
379 iocb->j = iocb->qiov->niov - 1;
380 iocb->i = (iocb->qiov->iov[iocb->j].iov_len / 8) - 1;
382 iocb->ret = -ECANCELED;
385 blk_aio_cancel_async(iocb->aiocb);
390 static const AIOCBInfo trim_aiocb_info = {
391 .aiocb_size = sizeof(TrimAIOCB),
392 .cancel_async = trim_aio_cancel,
395 static void ide_trim_bh_cb(void *opaque)
397 TrimAIOCB *iocb = opaque;
399 iocb->common.cb(iocb->common.opaque, iocb->ret);
401 qemu_bh_delete(iocb->bh);
403 qemu_aio_unref(iocb);
406 static void ide_issue_trim_cb(void *opaque, int ret)
408 TrimAIOCB *iocb = opaque;
410 while (iocb->j < iocb->qiov->niov) {
412 while (++iocb->i < iocb->qiov->iov[j].iov_len / 8) {
414 uint64_t *buffer = iocb->qiov->iov[j].iov_base;
416 /* 6-byte LBA + 2-byte range per entry */
417 uint64_t entry = le64_to_cpu(buffer[i]);
418 uint64_t sector = entry & 0x0000ffffffffffffULL;
419 uint16_t count = entry >> 48;
425 /* Got an entry! Submit and exit. */
426 iocb->aiocb = blk_aio_pdiscard(iocb->blk,
427 sector << BDRV_SECTOR_BITS,
428 count << BDRV_SECTOR_BITS,
429 ide_issue_trim_cb, opaque);
442 qemu_bh_schedule(iocb->bh);
446 BlockAIOCB *ide_issue_trim(
447 int64_t offset, QEMUIOVector *qiov,
448 BlockCompletionFunc *cb, void *cb_opaque, void *opaque)
450 BlockBackend *blk = opaque;
453 iocb = blk_aio_get(&trim_aiocb_info, blk, cb, cb_opaque);
455 iocb->bh = qemu_bh_new(ide_trim_bh_cb, iocb);
460 ide_issue_trim_cb(iocb, 0);
461 return &iocb->common;
464 void ide_abort_command(IDEState *s)
466 ide_transfer_stop(s);
467 s->status = READY_STAT | ERR_STAT;
471 static void ide_set_retry(IDEState *s)
473 s->bus->retry_unit = s->unit;
474 s->bus->retry_sector_num = ide_get_sector(s);
475 s->bus->retry_nsector = s->nsector;
478 static void ide_clear_retry(IDEState *s)
480 s->bus->retry_unit = -1;
481 s->bus->retry_sector_num = 0;
482 s->bus->retry_nsector = 0;
485 /* prepare data transfer and tell what to do after */
486 void ide_transfer_start(IDEState *s, uint8_t *buf, int size,
487 EndTransferFunc *end_transfer_func)
489 s->end_transfer_func = end_transfer_func;
491 s->data_end = buf + size;
493 if (!(s->status & ERR_STAT)) {
494 s->status |= DRQ_STAT;
496 if (s->bus->dma->ops->start_transfer) {
497 s->bus->dma->ops->start_transfer(s->bus->dma);
501 static void ide_cmd_done(IDEState *s)
503 if (s->bus->dma->ops->cmd_done) {
504 s->bus->dma->ops->cmd_done(s->bus->dma);
508 static void ide_transfer_halt(IDEState *s,
509 void(*end_transfer_func)(IDEState *),
512 s->end_transfer_func = end_transfer_func;
513 s->data_ptr = s->io_buffer;
514 s->data_end = s->io_buffer;
515 s->status &= ~DRQ_STAT;
521 void ide_transfer_stop(IDEState *s)
523 ide_transfer_halt(s, ide_transfer_stop, true);
526 static void ide_transfer_cancel(IDEState *s)
528 ide_transfer_halt(s, ide_transfer_cancel, false);
531 int64_t ide_get_sector(IDEState *s)
534 if (s->select & 0x40) {
537 sector_num = ((s->select & 0x0f) << 24) | (s->hcyl << 16) |
538 (s->lcyl << 8) | s->sector;
540 sector_num = ((int64_t)s->hob_hcyl << 40) |
541 ((int64_t) s->hob_lcyl << 32) |
542 ((int64_t) s->hob_sector << 24) |
543 ((int64_t) s->hcyl << 16) |
544 ((int64_t) s->lcyl << 8) | s->sector;
547 sector_num = ((s->hcyl << 8) | s->lcyl) * s->heads * s->sectors +
548 (s->select & 0x0f) * s->sectors + (s->sector - 1);
553 void ide_set_sector(IDEState *s, int64_t sector_num)
556 if (s->select & 0x40) {
558 s->select = (s->select & 0xf0) | (sector_num >> 24);
559 s->hcyl = (sector_num >> 16);
560 s->lcyl = (sector_num >> 8);
561 s->sector = (sector_num);
563 s->sector = sector_num;
564 s->lcyl = sector_num >> 8;
565 s->hcyl = sector_num >> 16;
566 s->hob_sector = sector_num >> 24;
567 s->hob_lcyl = sector_num >> 32;
568 s->hob_hcyl = sector_num >> 40;
571 cyl = sector_num / (s->heads * s->sectors);
572 r = sector_num % (s->heads * s->sectors);
575 s->select = (s->select & 0xf0) | ((r / s->sectors) & 0x0f);
576 s->sector = (r % s->sectors) + 1;
580 static void ide_rw_error(IDEState *s) {
581 ide_abort_command(s);
585 static bool ide_sect_range_ok(IDEState *s,
586 uint64_t sector, uint64_t nb_sectors)
588 uint64_t total_sectors;
590 blk_get_geometry(s->blk, &total_sectors);
591 if (sector > total_sectors || nb_sectors > total_sectors - sector) {
597 static void ide_buffered_readv_cb(void *opaque, int ret)
599 IDEBufferedRequest *req = opaque;
600 if (!req->orphaned) {
602 qemu_iovec_from_buf(req->original_qiov, 0, req->iov.iov_base,
603 req->original_qiov->size);
605 req->original_cb(req->original_opaque, ret);
607 QLIST_REMOVE(req, list);
608 qemu_vfree(req->iov.iov_base);
612 #define MAX_BUFFERED_REQS 16
614 BlockAIOCB *ide_buffered_readv(IDEState *s, int64_t sector_num,
615 QEMUIOVector *iov, int nb_sectors,
616 BlockCompletionFunc *cb, void *opaque)
619 IDEBufferedRequest *req;
622 QLIST_FOREACH(req, &s->buffered_requests, list) {
625 if (c > MAX_BUFFERED_REQS) {
626 return blk_abort_aio_request(s->blk, cb, opaque, -EIO);
629 req = g_new0(IDEBufferedRequest, 1);
630 req->original_qiov = iov;
631 req->original_cb = cb;
632 req->original_opaque = opaque;
633 req->iov.iov_base = qemu_blockalign(blk_bs(s->blk), iov->size);
634 req->iov.iov_len = iov->size;
635 qemu_iovec_init_external(&req->qiov, &req->iov, 1);
637 aioreq = blk_aio_preadv(s->blk, sector_num << BDRV_SECTOR_BITS,
638 &req->qiov, 0, ide_buffered_readv_cb, req);
640 QLIST_INSERT_HEAD(&s->buffered_requests, req, list);
645 * Cancel all pending DMA requests.
646 * Any buffered DMA requests are instantly canceled,
647 * but any pending unbuffered DMA requests must be waited on.
649 void ide_cancel_dma_sync(IDEState *s)
651 IDEBufferedRequest *req;
653 /* First invoke the callbacks of all buffered requests
654 * and flag those requests as orphaned. Ideally there
655 * are no unbuffered (Scatter Gather DMA Requests or
656 * write requests) pending and we can avoid to drain. */
657 QLIST_FOREACH(req, &s->buffered_requests, list) {
658 if (!req->orphaned) {
660 printf("%s: invoking cb %p of buffered request %p with"
661 " -ECANCELED\n", __func__, req->original_cb, req);
663 req->original_cb(req->original_opaque, -ECANCELED);
665 req->orphaned = true;
669 * We can't cancel Scatter Gather DMA in the middle of the
670 * operation or a partial (not full) DMA transfer would reach
671 * the storage so we wait for completion instead (we beahve
672 * like if the DMA was completed by the time the guest trying
673 * to cancel dma with bmdma_cmd_writeb with BM_CMD_START not
676 * In the future we'll be able to safely cancel the I/O if the
677 * whole DMA operation will be submitted to disk with a single
678 * aio operation with preadv/pwritev.
680 if (s->bus->dma->aiocb) {
682 printf("%s: draining all remaining requests", __func__);
685 assert(s->bus->dma->aiocb == NULL);
689 static void ide_sector_read(IDEState *s);
691 static void ide_sector_read_cb(void *opaque, int ret)
693 IDEState *s = opaque;
697 s->status &= ~BUSY_STAT;
699 if (ret == -ECANCELED) {
703 if (ide_handle_rw_error(s, -ret, IDE_RETRY_PIO |
709 block_acct_done(blk_get_stats(s->blk), &s->acct);
712 if (n > s->req_nb_sectors) {
713 n = s->req_nb_sectors;
716 ide_set_sector(s, ide_get_sector(s) + n);
718 /* Allow the guest to read the io_buffer */
719 ide_transfer_start(s, s->io_buffer, n * BDRV_SECTOR_SIZE, ide_sector_read);
723 static void ide_sector_read(IDEState *s)
728 s->status = READY_STAT | SEEK_STAT;
729 s->error = 0; /* not needed by IDE spec, but needed by Windows */
730 sector_num = ide_get_sector(s);
734 ide_transfer_stop(s);
738 s->status |= BUSY_STAT;
740 if (n > s->req_nb_sectors) {
741 n = s->req_nb_sectors;
744 #if defined(DEBUG_IDE)
745 printf("sector=%" PRId64 "\n", sector_num);
748 if (!ide_sect_range_ok(s, sector_num, n)) {
750 block_acct_invalid(blk_get_stats(s->blk), BLOCK_ACCT_READ);
754 s->iov.iov_base = s->io_buffer;
755 s->iov.iov_len = n * BDRV_SECTOR_SIZE;
756 qemu_iovec_init_external(&s->qiov, &s->iov, 1);
758 block_acct_start(blk_get_stats(s->blk), &s->acct,
759 n * BDRV_SECTOR_SIZE, BLOCK_ACCT_READ);
760 s->pio_aiocb = ide_buffered_readv(s, sector_num, &s->qiov, n,
761 ide_sector_read_cb, s);
764 void dma_buf_commit(IDEState *s, uint32_t tx_bytes)
766 if (s->bus->dma->ops->commit_buf) {
767 s->bus->dma->ops->commit_buf(s->bus->dma, tx_bytes);
769 s->io_buffer_offset += tx_bytes;
770 qemu_sglist_destroy(&s->sg);
773 void ide_set_inactive(IDEState *s, bool more)
775 s->bus->dma->aiocb = NULL;
777 if (s->bus->dma->ops->set_inactive) {
778 s->bus->dma->ops->set_inactive(s->bus->dma, more);
783 void ide_dma_error(IDEState *s)
785 dma_buf_commit(s, 0);
786 ide_abort_command(s);
787 ide_set_inactive(s, false);
791 int ide_handle_rw_error(IDEState *s, int error, int op)
793 bool is_read = (op & IDE_RETRY_READ) != 0;
794 BlockErrorAction action = blk_get_error_action(s->blk, is_read, error);
796 if (action == BLOCK_ERROR_ACTION_STOP) {
797 assert(s->bus->retry_unit == s->unit);
798 s->bus->error_status = op;
799 } else if (action == BLOCK_ERROR_ACTION_REPORT) {
800 block_acct_failed(blk_get_stats(s->blk), &s->acct);
801 if (IS_IDE_RETRY_DMA(op)) {
803 } else if (IS_IDE_RETRY_ATAPI(op)) {
804 ide_atapi_io_error(s, -error);
809 blk_error_action(s->blk, action, is_read, error);
810 return action != BLOCK_ERROR_ACTION_IGNORE;
813 static void ide_dma_cb(void *opaque, int ret)
815 IDEState *s = opaque;
819 bool stay_active = false;
821 if (ret == -ECANCELED) {
825 if (ide_handle_rw_error(s, -ret, ide_dma_cmd_to_retry(s->dma_cmd))) {
826 s->bus->dma->aiocb = NULL;
831 n = s->io_buffer_size >> 9;
832 if (n > s->nsector) {
833 /* The PRDs were longer than needed for this request. Shorten them so
834 * we don't get a negative remainder. The Active bit must remain set
835 * after the request completes. */
840 sector_num = ide_get_sector(s);
842 assert(n * 512 == s->sg.size);
843 dma_buf_commit(s, s->sg.size);
845 ide_set_sector(s, sector_num);
849 /* end of transfer ? */
850 if (s->nsector == 0) {
851 s->status = READY_STAT | SEEK_STAT;
856 /* launch next transfer */
858 s->io_buffer_index = 0;
859 s->io_buffer_size = n * 512;
860 if (s->bus->dma->ops->prepare_buf(s->bus->dma, s->io_buffer_size) < 512) {
861 /* The PRDs were too short. Reset the Active bit, but don't raise an
863 s->status = READY_STAT | SEEK_STAT;
864 dma_buf_commit(s, 0);
869 printf("ide_dma_cb: sector_num=%" PRId64 " n=%d, cmd_cmd=%d\n",
870 sector_num, n, s->dma_cmd);
873 if ((s->dma_cmd == IDE_DMA_READ || s->dma_cmd == IDE_DMA_WRITE) &&
874 !ide_sect_range_ok(s, sector_num, n)) {
876 block_acct_invalid(blk_get_stats(s->blk), s->acct.type);
880 offset = sector_num << BDRV_SECTOR_BITS;
881 switch (s->dma_cmd) {
883 s->bus->dma->aiocb = dma_blk_read(s->blk, &s->sg, offset,
887 s->bus->dma->aiocb = dma_blk_write(s->blk, &s->sg, offset,
891 s->bus->dma->aiocb = dma_blk_io(blk_get_aio_context(s->blk),
893 ide_issue_trim, s->blk, ide_dma_cb, s,
894 DMA_DIRECTION_TO_DEVICE);
902 if (s->dma_cmd == IDE_DMA_READ || s->dma_cmd == IDE_DMA_WRITE) {
903 block_acct_done(blk_get_stats(s->blk), &s->acct);
905 ide_set_inactive(s, stay_active);
908 static void ide_sector_start_dma(IDEState *s, enum ide_dma_cmd dma_cmd)
910 s->status = READY_STAT | SEEK_STAT | DRQ_STAT | BUSY_STAT;
911 s->io_buffer_size = 0;
912 s->dma_cmd = dma_cmd;
916 block_acct_start(blk_get_stats(s->blk), &s->acct,
917 s->nsector * BDRV_SECTOR_SIZE, BLOCK_ACCT_READ);
920 block_acct_start(blk_get_stats(s->blk), &s->acct,
921 s->nsector * BDRV_SECTOR_SIZE, BLOCK_ACCT_WRITE);
927 ide_start_dma(s, ide_dma_cb);
930 void ide_start_dma(IDEState *s, BlockCompletionFunc *cb)
932 s->io_buffer_index = 0;
934 if (s->bus->dma->ops->start_dma) {
935 s->bus->dma->ops->start_dma(s->bus->dma, s, cb);
939 static void ide_sector_write(IDEState *s);
941 static void ide_sector_write_timer_cb(void *opaque)
943 IDEState *s = opaque;
947 static void ide_sector_write_cb(void *opaque, int ret)
949 IDEState *s = opaque;
952 if (ret == -ECANCELED) {
957 s->status &= ~BUSY_STAT;
960 if (ide_handle_rw_error(s, -ret, IDE_RETRY_PIO)) {
965 block_acct_done(blk_get_stats(s->blk), &s->acct);
968 if (n > s->req_nb_sectors) {
969 n = s->req_nb_sectors;
973 ide_set_sector(s, ide_get_sector(s) + n);
974 if (s->nsector == 0) {
975 /* no more sectors to write */
976 ide_transfer_stop(s);
979 if (n1 > s->req_nb_sectors) {
980 n1 = s->req_nb_sectors;
982 ide_transfer_start(s, s->io_buffer, n1 * BDRV_SECTOR_SIZE,
986 if (win2k_install_hack && ((++s->irq_count % 16) == 0)) {
987 /* It seems there is a bug in the Windows 2000 installer HDD
988 IDE driver which fills the disk with empty logs when the
989 IDE write IRQ comes too early. This hack tries to correct
990 that at the expense of slower write performances. Use this
991 option _only_ to install Windows 2000. You must disable it
993 timer_mod(s->sector_write_timer, qemu_clock_get_ns(QEMU_CLOCK_VIRTUAL) +
994 (NANOSECONDS_PER_SECOND / 1000));
1000 static void ide_sector_write(IDEState *s)
1005 s->status = READY_STAT | SEEK_STAT | BUSY_STAT;
1006 sector_num = ide_get_sector(s);
1007 #if defined(DEBUG_IDE)
1008 printf("sector=%" PRId64 "\n", sector_num);
1011 if (n > s->req_nb_sectors) {
1012 n = s->req_nb_sectors;
1015 if (!ide_sect_range_ok(s, sector_num, n)) {
1017 block_acct_invalid(blk_get_stats(s->blk), BLOCK_ACCT_WRITE);
1021 s->iov.iov_base = s->io_buffer;
1022 s->iov.iov_len = n * BDRV_SECTOR_SIZE;
1023 qemu_iovec_init_external(&s->qiov, &s->iov, 1);
1025 block_acct_start(blk_get_stats(s->blk), &s->acct,
1026 n * BDRV_SECTOR_SIZE, BLOCK_ACCT_WRITE);
1027 s->pio_aiocb = blk_aio_pwritev(s->blk, sector_num << BDRV_SECTOR_BITS,
1028 &s->qiov, 0, ide_sector_write_cb, s);
1031 static void ide_flush_cb(void *opaque, int ret)
1033 IDEState *s = opaque;
1035 s->pio_aiocb = NULL;
1037 if (ret == -ECANCELED) {
1041 /* XXX: What sector number to set here? */
1042 if (ide_handle_rw_error(s, -ret, IDE_RETRY_FLUSH)) {
1048 block_acct_done(blk_get_stats(s->blk), &s->acct);
1050 s->status = READY_STAT | SEEK_STAT;
1052 ide_set_irq(s->bus);
1055 static void ide_flush_cache(IDEState *s)
1057 if (s->blk == NULL) {
1062 s->status |= BUSY_STAT;
1064 block_acct_start(blk_get_stats(s->blk), &s->acct, 0, BLOCK_ACCT_FLUSH);
1065 s->pio_aiocb = blk_aio_flush(s->blk, ide_flush_cb, s);
1068 static void ide_cfata_metadata_inquiry(IDEState *s)
1073 p = (uint16_t *) s->io_buffer;
1074 memset(p, 0, 0x200);
1075 spd = ((s->mdata_size - 1) >> 9) + 1;
1077 put_le16(p + 0, 0x0001); /* Data format revision */
1078 put_le16(p + 1, 0x0000); /* Media property: silicon */
1079 put_le16(p + 2, s->media_changed); /* Media status */
1080 put_le16(p + 3, s->mdata_size & 0xffff); /* Capacity in bytes (low) */
1081 put_le16(p + 4, s->mdata_size >> 16); /* Capacity in bytes (high) */
1082 put_le16(p + 5, spd & 0xffff); /* Sectors per device (low) */
1083 put_le16(p + 6, spd >> 16); /* Sectors per device (high) */
1086 static void ide_cfata_metadata_read(IDEState *s)
1090 if (((s->hcyl << 16) | s->lcyl) << 9 > s->mdata_size + 2) {
1091 s->status = ERR_STAT;
1092 s->error = ABRT_ERR;
1096 p = (uint16_t *) s->io_buffer;
1097 memset(p, 0, 0x200);
1099 put_le16(p + 0, s->media_changed); /* Media status */
1100 memcpy(p + 1, s->mdata_storage + (((s->hcyl << 16) | s->lcyl) << 9),
1101 MIN(MIN(s->mdata_size - (((s->hcyl << 16) | s->lcyl) << 9),
1102 s->nsector << 9), 0x200 - 2));
1105 static void ide_cfata_metadata_write(IDEState *s)
1107 if (((s->hcyl << 16) | s->lcyl) << 9 > s->mdata_size + 2) {
1108 s->status = ERR_STAT;
1109 s->error = ABRT_ERR;
1113 s->media_changed = 0;
1115 memcpy(s->mdata_storage + (((s->hcyl << 16) | s->lcyl) << 9),
1117 MIN(MIN(s->mdata_size - (((s->hcyl << 16) | s->lcyl) << 9),
1118 s->nsector << 9), 0x200 - 2));
1121 /* called when the inserted state of the media has changed */
1122 static void ide_cd_change_cb(void *opaque, bool load)
1124 IDEState *s = opaque;
1125 uint64_t nb_sectors;
1127 s->tray_open = !load;
1128 blk_get_geometry(s->blk, &nb_sectors);
1129 s->nb_sectors = nb_sectors;
1132 * First indicate to the guest that a CD has been removed. That's
1133 * done on the next command the guest sends us.
1135 * Then we set UNIT_ATTENTION, by which the guest will
1136 * detect a new CD in the drive. See ide_atapi_cmd() for details.
1138 s->cdrom_changed = 1;
1139 s->events.new_media = true;
1140 s->events.eject_request = false;
1141 ide_set_irq(s->bus);
1144 static void ide_cd_eject_request_cb(void *opaque, bool force)
1146 IDEState *s = opaque;
1148 s->events.eject_request = true;
1150 s->tray_locked = false;
1152 ide_set_irq(s->bus);
1155 static void ide_cmd_lba48_transform(IDEState *s, int lba48)
1159 /* handle the 'magic' 0 nsector count conversion here. to avoid
1160 * fiddling with the rest of the read logic, we just store the
1161 * full sector count in ->nsector and ignore ->hob_nsector from now
1167 if (!s->nsector && !s->hob_nsector)
1170 int lo = s->nsector;
1171 int hi = s->hob_nsector;
1173 s->nsector = (hi << 8) | lo;
1178 static void ide_clear_hob(IDEBus *bus)
1180 /* any write clears HOB high bit of device control register */
1181 bus->ifs[0].select &= ~(1 << 7);
1182 bus->ifs[1].select &= ~(1 << 7);
1185 void ide_ioport_write(void *opaque, uint32_t addr, uint32_t val)
1187 IDEBus *bus = opaque;
1190 printf("IDE: write addr=0x%x val=0x%02x\n", addr, val);
1195 /* ignore writes to command block while busy with previous command */
1196 if (addr != 7 && (idebus_active_if(bus)->status & (BUSY_STAT|DRQ_STAT)))
1204 /* NOTE: data is written to the two drives */
1205 bus->ifs[0].hob_feature = bus->ifs[0].feature;
1206 bus->ifs[1].hob_feature = bus->ifs[1].feature;
1207 bus->ifs[0].feature = val;
1208 bus->ifs[1].feature = val;
1212 bus->ifs[0].hob_nsector = bus->ifs[0].nsector;
1213 bus->ifs[1].hob_nsector = bus->ifs[1].nsector;
1214 bus->ifs[0].nsector = val;
1215 bus->ifs[1].nsector = val;
1219 bus->ifs[0].hob_sector = bus->ifs[0].sector;
1220 bus->ifs[1].hob_sector = bus->ifs[1].sector;
1221 bus->ifs[0].sector = val;
1222 bus->ifs[1].sector = val;
1226 bus->ifs[0].hob_lcyl = bus->ifs[0].lcyl;
1227 bus->ifs[1].hob_lcyl = bus->ifs[1].lcyl;
1228 bus->ifs[0].lcyl = val;
1229 bus->ifs[1].lcyl = val;
1233 bus->ifs[0].hob_hcyl = bus->ifs[0].hcyl;
1234 bus->ifs[1].hob_hcyl = bus->ifs[1].hcyl;
1235 bus->ifs[0].hcyl = val;
1236 bus->ifs[1].hcyl = val;
1239 /* FIXME: HOB readback uses bit 7 */
1240 bus->ifs[0].select = (val & ~0x10) | 0xa0;
1241 bus->ifs[1].select = (val | 0x10) | 0xa0;
1243 bus->unit = (val >> 4) & 1;
1248 ide_exec_cmd(bus, val);
1253 static void ide_reset(IDEState *s)
1256 printf("ide: reset\n");
1260 blk_aio_cancel(s->pio_aiocb);
1261 s->pio_aiocb = NULL;
1264 if (s->drive_kind == IDE_CFATA)
1265 s->mult_sectors = 0;
1267 s->mult_sectors = MAX_MULT_SECTORS;
1284 s->status = READY_STAT | SEEK_STAT;
1288 /* ATAPI specific */
1291 s->cdrom_changed = 0;
1292 s->packet_transfer_size = 0;
1293 s->elementary_transfer_size = 0;
1294 s->io_buffer_index = 0;
1295 s->cd_sector_size = 0;
1300 s->io_buffer_size = 0;
1301 s->req_nb_sectors = 0;
1303 ide_set_signature(s);
1304 /* init the transfer handler so that 0xffff is returned on data
1306 s->end_transfer_func = ide_dummy_transfer_stop;
1307 ide_dummy_transfer_stop(s);
1308 s->media_changed = 0;
1311 static bool cmd_nop(IDEState *s, uint8_t cmd)
1316 static bool cmd_device_reset(IDEState *s, uint8_t cmd)
1318 /* Halt PIO (in the DRQ phase), then DMA */
1319 ide_transfer_cancel(s);
1320 ide_cancel_dma_sync(s);
1322 /* Reset any PIO commands, reset signature, etc */
1325 /* RESET: ATA8-ACS3 7.10.4 "Normal Outputs";
1326 * ATA8-ACS3 Table 184 "Device Signatures for Normal Output" */
1329 /* Do not overwrite status register */
1333 static bool cmd_data_set_management(IDEState *s, uint8_t cmd)
1335 switch (s->feature) {
1338 ide_sector_start_dma(s, IDE_DMA_TRIM);
1344 ide_abort_command(s);
1348 static bool cmd_identify(IDEState *s, uint8_t cmd)
1350 if (s->blk && s->drive_kind != IDE_CD) {
1351 if (s->drive_kind != IDE_CFATA) {
1354 ide_cfata_identify(s);
1356 s->status = READY_STAT | SEEK_STAT;
1357 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
1358 ide_set_irq(s->bus);
1361 if (s->drive_kind == IDE_CD) {
1362 ide_set_signature(s);
1364 ide_abort_command(s);
1370 static bool cmd_verify(IDEState *s, uint8_t cmd)
1372 bool lba48 = (cmd == WIN_VERIFY_EXT);
1374 /* do sector number check ? */
1375 ide_cmd_lba48_transform(s, lba48);
1380 static bool cmd_set_multiple_mode(IDEState *s, uint8_t cmd)
1382 if (s->drive_kind == IDE_CFATA && s->nsector == 0) {
1383 /* Disable Read and Write Multiple */
1384 s->mult_sectors = 0;
1385 } else if ((s->nsector & 0xff) != 0 &&
1386 ((s->nsector & 0xff) > MAX_MULT_SECTORS ||
1387 (s->nsector & (s->nsector - 1)) != 0)) {
1388 ide_abort_command(s);
1390 s->mult_sectors = s->nsector & 0xff;
1396 static bool cmd_read_multiple(IDEState *s, uint8_t cmd)
1398 bool lba48 = (cmd == WIN_MULTREAD_EXT);
1400 if (!s->blk || !s->mult_sectors) {
1401 ide_abort_command(s);
1405 ide_cmd_lba48_transform(s, lba48);
1406 s->req_nb_sectors = s->mult_sectors;
1411 static bool cmd_write_multiple(IDEState *s, uint8_t cmd)
1413 bool lba48 = (cmd == WIN_MULTWRITE_EXT);
1416 if (!s->blk || !s->mult_sectors) {
1417 ide_abort_command(s);
1421 ide_cmd_lba48_transform(s, lba48);
1423 s->req_nb_sectors = s->mult_sectors;
1424 n = MIN(s->nsector, s->req_nb_sectors);
1426 s->status = SEEK_STAT | READY_STAT;
1427 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_write);
1429 s->media_changed = 1;
1434 static bool cmd_read_pio(IDEState *s, uint8_t cmd)
1436 bool lba48 = (cmd == WIN_READ_EXT);
1438 if (s->drive_kind == IDE_CD) {
1439 ide_set_signature(s); /* odd, but ATA4 8.27.5.2 requires it */
1440 ide_abort_command(s);
1445 ide_abort_command(s);
1449 ide_cmd_lba48_transform(s, lba48);
1450 s->req_nb_sectors = 1;
1456 static bool cmd_write_pio(IDEState *s, uint8_t cmd)
1458 bool lba48 = (cmd == WIN_WRITE_EXT);
1461 ide_abort_command(s);
1465 ide_cmd_lba48_transform(s, lba48);
1467 s->req_nb_sectors = 1;
1468 s->status = SEEK_STAT | READY_STAT;
1469 ide_transfer_start(s, s->io_buffer, 512, ide_sector_write);
1471 s->media_changed = 1;
1476 static bool cmd_read_dma(IDEState *s, uint8_t cmd)
1478 bool lba48 = (cmd == WIN_READDMA_EXT);
1481 ide_abort_command(s);
1485 ide_cmd_lba48_transform(s, lba48);
1486 ide_sector_start_dma(s, IDE_DMA_READ);
1491 static bool cmd_write_dma(IDEState *s, uint8_t cmd)
1493 bool lba48 = (cmd == WIN_WRITEDMA_EXT);
1496 ide_abort_command(s);
1500 ide_cmd_lba48_transform(s, lba48);
1501 ide_sector_start_dma(s, IDE_DMA_WRITE);
1503 s->media_changed = 1;
1508 static bool cmd_flush_cache(IDEState *s, uint8_t cmd)
1514 static bool cmd_seek(IDEState *s, uint8_t cmd)
1516 /* XXX: Check that seek is within bounds */
1520 static bool cmd_read_native_max(IDEState *s, uint8_t cmd)
1522 bool lba48 = (cmd == WIN_READ_NATIVE_MAX_EXT);
1524 /* Refuse if no sectors are addressable (e.g. medium not inserted) */
1525 if (s->nb_sectors == 0) {
1526 ide_abort_command(s);
1530 ide_cmd_lba48_transform(s, lba48);
1531 ide_set_sector(s, s->nb_sectors - 1);
1536 static bool cmd_check_power_mode(IDEState *s, uint8_t cmd)
1538 s->nsector = 0xff; /* device active or idle */
1542 static bool cmd_set_features(IDEState *s, uint8_t cmd)
1544 uint16_t *identify_data;
1547 ide_abort_command(s);
1551 /* XXX: valid for CDROM ? */
1552 switch (s->feature) {
1553 case 0x02: /* write cache enable */
1554 blk_set_enable_write_cache(s->blk, true);
1555 identify_data = (uint16_t *)s->identify_data;
1556 put_le16(identify_data + 85, (1 << 14) | (1 << 5) | 1);
1558 case 0x82: /* write cache disable */
1559 blk_set_enable_write_cache(s->blk, false);
1560 identify_data = (uint16_t *)s->identify_data;
1561 put_le16(identify_data + 85, (1 << 14) | 1);
1564 case 0xcc: /* reverting to power-on defaults enable */
1565 case 0x66: /* reverting to power-on defaults disable */
1566 case 0xaa: /* read look-ahead enable */
1567 case 0x55: /* read look-ahead disable */
1568 case 0x05: /* set advanced power management mode */
1569 case 0x85: /* disable advanced power management mode */
1570 case 0x69: /* NOP */
1571 case 0x67: /* NOP */
1572 case 0x96: /* NOP */
1573 case 0x9a: /* NOP */
1574 case 0x42: /* enable Automatic Acoustic Mode */
1575 case 0xc2: /* disable Automatic Acoustic Mode */
1577 case 0x03: /* set transfer mode */
1579 uint8_t val = s->nsector & 0x07;
1580 identify_data = (uint16_t *)s->identify_data;
1582 switch (s->nsector >> 3) {
1583 case 0x00: /* pio default */
1584 case 0x01: /* pio mode */
1585 put_le16(identify_data + 62, 0x07);
1586 put_le16(identify_data + 63, 0x07);
1587 put_le16(identify_data + 88, 0x3f);
1589 case 0x02: /* sigle word dma mode*/
1590 put_le16(identify_data + 62, 0x07 | (1 << (val + 8)));
1591 put_le16(identify_data + 63, 0x07);
1592 put_le16(identify_data + 88, 0x3f);
1594 case 0x04: /* mdma mode */
1595 put_le16(identify_data + 62, 0x07);
1596 put_le16(identify_data + 63, 0x07 | (1 << (val + 8)));
1597 put_le16(identify_data + 88, 0x3f);
1599 case 0x08: /* udma mode */
1600 put_le16(identify_data + 62, 0x07);
1601 put_le16(identify_data + 63, 0x07);
1602 put_le16(identify_data + 88, 0x3f | (1 << (val + 8)));
1612 ide_abort_command(s);
1617 /*** ATAPI commands ***/
1619 static bool cmd_identify_packet(IDEState *s, uint8_t cmd)
1621 ide_atapi_identify(s);
1622 s->status = READY_STAT | SEEK_STAT;
1623 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
1624 ide_set_irq(s->bus);
1628 static bool cmd_exec_dev_diagnostic(IDEState *s, uint8_t cmd)
1630 ide_set_signature(s);
1632 if (s->drive_kind == IDE_CD) {
1633 s->status = 0; /* ATAPI spec (v6) section 9.10 defines packet
1634 * devices to return a clear status register
1635 * with READY_STAT *not* set. */
1638 s->status = READY_STAT | SEEK_STAT;
1639 /* The bits of the error register are not as usual for this command!
1640 * They are part of the regular output (this is why ERR_STAT isn't set)
1641 * Device 0 passed, Device 1 passed or not present. */
1643 ide_set_irq(s->bus);
1649 static bool cmd_packet(IDEState *s, uint8_t cmd)
1651 /* overlapping commands not supported */
1652 if (s->feature & 0x02) {
1653 ide_abort_command(s);
1657 s->status = READY_STAT | SEEK_STAT;
1658 s->atapi_dma = s->feature & 1;
1660 s->dma_cmd = IDE_DMA_ATAPI;
1663 ide_transfer_start(s, s->io_buffer, ATAPI_PACKET_SIZE,
1669 /*** CF-ATA commands ***/
1671 static bool cmd_cfa_req_ext_error_code(IDEState *s, uint8_t cmd)
1673 s->error = 0x09; /* miscellaneous error */
1674 s->status = READY_STAT | SEEK_STAT;
1675 ide_set_irq(s->bus);
1680 static bool cmd_cfa_erase_sectors(IDEState *s, uint8_t cmd)
1682 /* WIN_SECURITY_FREEZE_LOCK has the same ID as CFA_WEAR_LEVEL and is
1683 * required for Windows 8 to work with AHCI */
1685 if (cmd == CFA_WEAR_LEVEL) {
1689 if (cmd == CFA_ERASE_SECTORS) {
1690 s->media_changed = 1;
1696 static bool cmd_cfa_translate_sector(IDEState *s, uint8_t cmd)
1698 s->status = READY_STAT | SEEK_STAT;
1700 memset(s->io_buffer, 0, 0x200);
1701 s->io_buffer[0x00] = s->hcyl; /* Cyl MSB */
1702 s->io_buffer[0x01] = s->lcyl; /* Cyl LSB */
1703 s->io_buffer[0x02] = s->select; /* Head */
1704 s->io_buffer[0x03] = s->sector; /* Sector */
1705 s->io_buffer[0x04] = ide_get_sector(s) >> 16; /* LBA MSB */
1706 s->io_buffer[0x05] = ide_get_sector(s) >> 8; /* LBA */
1707 s->io_buffer[0x06] = ide_get_sector(s) >> 0; /* LBA LSB */
1708 s->io_buffer[0x13] = 0x00; /* Erase flag */
1709 s->io_buffer[0x18] = 0x00; /* Hot count */
1710 s->io_buffer[0x19] = 0x00; /* Hot count */
1711 s->io_buffer[0x1a] = 0x01; /* Hot count */
1713 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1714 ide_set_irq(s->bus);
1719 static bool cmd_cfa_access_metadata_storage(IDEState *s, uint8_t cmd)
1721 switch (s->feature) {
1722 case 0x02: /* Inquiry Metadata Storage */
1723 ide_cfata_metadata_inquiry(s);
1725 case 0x03: /* Read Metadata Storage */
1726 ide_cfata_metadata_read(s);
1728 case 0x04: /* Write Metadata Storage */
1729 ide_cfata_metadata_write(s);
1732 ide_abort_command(s);
1736 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1737 s->status = 0x00; /* NOTE: READY is _not_ set */
1738 ide_set_irq(s->bus);
1743 static bool cmd_ibm_sense_condition(IDEState *s, uint8_t cmd)
1745 switch (s->feature) {
1746 case 0x01: /* sense temperature in device */
1747 s->nsector = 0x50; /* +20 C */
1750 ide_abort_command(s);
1758 /*** SMART commands ***/
1760 static bool cmd_smart(IDEState *s, uint8_t cmd)
1764 if (s->hcyl != 0xc2 || s->lcyl != 0x4f) {
1768 if (!s->smart_enabled && s->feature != SMART_ENABLE) {
1772 switch (s->feature) {
1774 s->smart_enabled = 0;
1778 s->smart_enabled = 1;
1781 case SMART_ATTR_AUTOSAVE:
1782 switch (s->sector) {
1784 s->smart_autosave = 0;
1787 s->smart_autosave = 1;
1795 if (!s->smart_errors) {
1804 case SMART_READ_THRESH:
1805 memset(s->io_buffer, 0, 0x200);
1806 s->io_buffer[0] = 0x01; /* smart struct version */
1808 for (n = 0; n < ARRAY_SIZE(smart_attributes); n++) {
1809 s->io_buffer[2 + 0 + (n * 12)] = smart_attributes[n][0];
1810 s->io_buffer[2 + 1 + (n * 12)] = smart_attributes[n][11];
1814 for (n = 0; n < 511; n++) {
1815 s->io_buffer[511] += s->io_buffer[n];
1817 s->io_buffer[511] = 0x100 - s->io_buffer[511];
1819 s->status = READY_STAT | SEEK_STAT;
1820 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1821 ide_set_irq(s->bus);
1824 case SMART_READ_DATA:
1825 memset(s->io_buffer, 0, 0x200);
1826 s->io_buffer[0] = 0x01; /* smart struct version */
1828 for (n = 0; n < ARRAY_SIZE(smart_attributes); n++) {
1830 for (i = 0; i < 11; i++) {
1831 s->io_buffer[2 + i + (n * 12)] = smart_attributes[n][i];
1835 s->io_buffer[362] = 0x02 | (s->smart_autosave ? 0x80 : 0x00);
1836 if (s->smart_selftest_count == 0) {
1837 s->io_buffer[363] = 0;
1840 s->smart_selftest_data[3 +
1841 (s->smart_selftest_count - 1) *
1844 s->io_buffer[364] = 0x20;
1845 s->io_buffer[365] = 0x01;
1846 /* offline data collection capacity: execute + self-test*/
1847 s->io_buffer[367] = (1 << 4 | 1 << 3 | 1);
1848 s->io_buffer[368] = 0x03; /* smart capability (1) */
1849 s->io_buffer[369] = 0x00; /* smart capability (2) */
1850 s->io_buffer[370] = 0x01; /* error logging supported */
1851 s->io_buffer[372] = 0x02; /* minutes for poll short test */
1852 s->io_buffer[373] = 0x36; /* minutes for poll ext test */
1853 s->io_buffer[374] = 0x01; /* minutes for poll conveyance */
1855 for (n = 0; n < 511; n++) {
1856 s->io_buffer[511] += s->io_buffer[n];
1858 s->io_buffer[511] = 0x100 - s->io_buffer[511];
1860 s->status = READY_STAT | SEEK_STAT;
1861 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1862 ide_set_irq(s->bus);
1865 case SMART_READ_LOG:
1866 switch (s->sector) {
1867 case 0x01: /* summary smart error log */
1868 memset(s->io_buffer, 0, 0x200);
1869 s->io_buffer[0] = 0x01;
1870 s->io_buffer[1] = 0x00; /* no error entries */
1871 s->io_buffer[452] = s->smart_errors & 0xff;
1872 s->io_buffer[453] = (s->smart_errors & 0xff00) >> 8;
1874 for (n = 0; n < 511; n++) {
1875 s->io_buffer[511] += s->io_buffer[n];
1877 s->io_buffer[511] = 0x100 - s->io_buffer[511];
1879 case 0x06: /* smart self test log */
1880 memset(s->io_buffer, 0, 0x200);
1881 s->io_buffer[0] = 0x01;
1882 if (s->smart_selftest_count == 0) {
1883 s->io_buffer[508] = 0;
1885 s->io_buffer[508] = s->smart_selftest_count;
1886 for (n = 2; n < 506; n++) {
1887 s->io_buffer[n] = s->smart_selftest_data[n];
1891 for (n = 0; n < 511; n++) {
1892 s->io_buffer[511] += s->io_buffer[n];
1894 s->io_buffer[511] = 0x100 - s->io_buffer[511];
1899 s->status = READY_STAT | SEEK_STAT;
1900 ide_transfer_start(s, s->io_buffer, 0x200, ide_transfer_stop);
1901 ide_set_irq(s->bus);
1904 case SMART_EXECUTE_OFFLINE:
1905 switch (s->sector) {
1906 case 0: /* off-line routine */
1907 case 1: /* short self test */
1908 case 2: /* extended self test */
1909 s->smart_selftest_count++;
1910 if (s->smart_selftest_count > 21) {
1911 s->smart_selftest_count = 1;
1913 n = 2 + (s->smart_selftest_count - 1) * 24;
1914 s->smart_selftest_data[n] = s->sector;
1915 s->smart_selftest_data[n + 1] = 0x00; /* OK and finished */
1916 s->smart_selftest_data[n + 2] = 0x34; /* hour count lsb */
1917 s->smart_selftest_data[n + 3] = 0x12; /* hour count msb */
1926 ide_abort_command(s);
1930 #define HD_OK (1u << IDE_HD)
1931 #define CD_OK (1u << IDE_CD)
1932 #define CFA_OK (1u << IDE_CFATA)
1933 #define HD_CFA_OK (HD_OK | CFA_OK)
1934 #define ALL_OK (HD_OK | CD_OK | CFA_OK)
1936 /* Set the Disk Seek Completed status bit during completion */
1937 #define SET_DSC (1u << 8)
1939 /* See ACS-2 T13/2015-D Table B.2 Command codes */
1940 static const struct {
1941 /* Returns true if the completion code should be run */
1942 bool (*handler)(IDEState *s, uint8_t cmd);
1944 } ide_cmd_table[0x100] = {
1945 /* NOP not implemented, mandatory for CD */
1946 [CFA_REQ_EXT_ERROR_CODE] = { cmd_cfa_req_ext_error_code, CFA_OK },
1947 [WIN_DSM] = { cmd_data_set_management, HD_CFA_OK },
1948 [WIN_DEVICE_RESET] = { cmd_device_reset, CD_OK },
1949 [WIN_RECAL] = { cmd_nop, HD_CFA_OK | SET_DSC},
1950 [WIN_READ] = { cmd_read_pio, ALL_OK },
1951 [WIN_READ_ONCE] = { cmd_read_pio, HD_CFA_OK },
1952 [WIN_READ_EXT] = { cmd_read_pio, HD_CFA_OK },
1953 [WIN_READDMA_EXT] = { cmd_read_dma, HD_CFA_OK },
1954 [WIN_READ_NATIVE_MAX_EXT] = { cmd_read_native_max, HD_CFA_OK | SET_DSC },
1955 [WIN_MULTREAD_EXT] = { cmd_read_multiple, HD_CFA_OK },
1956 [WIN_WRITE] = { cmd_write_pio, HD_CFA_OK },
1957 [WIN_WRITE_ONCE] = { cmd_write_pio, HD_CFA_OK },
1958 [WIN_WRITE_EXT] = { cmd_write_pio, HD_CFA_OK },
1959 [WIN_WRITEDMA_EXT] = { cmd_write_dma, HD_CFA_OK },
1960 [CFA_WRITE_SECT_WO_ERASE] = { cmd_write_pio, CFA_OK },
1961 [WIN_MULTWRITE_EXT] = { cmd_write_multiple, HD_CFA_OK },
1962 [WIN_WRITE_VERIFY] = { cmd_write_pio, HD_CFA_OK },
1963 [WIN_VERIFY] = { cmd_verify, HD_CFA_OK | SET_DSC },
1964 [WIN_VERIFY_ONCE] = { cmd_verify, HD_CFA_OK | SET_DSC },
1965 [WIN_VERIFY_EXT] = { cmd_verify, HD_CFA_OK | SET_DSC },
1966 [WIN_SEEK] = { cmd_seek, HD_CFA_OK | SET_DSC },
1967 [CFA_TRANSLATE_SECTOR] = { cmd_cfa_translate_sector, CFA_OK },
1968 [WIN_DIAGNOSE] = { cmd_exec_dev_diagnostic, ALL_OK },
1969 [WIN_SPECIFY] = { cmd_nop, HD_CFA_OK | SET_DSC },
1970 [WIN_STANDBYNOW2] = { cmd_nop, HD_CFA_OK },
1971 [WIN_IDLEIMMEDIATE2] = { cmd_nop, HD_CFA_OK },
1972 [WIN_STANDBY2] = { cmd_nop, HD_CFA_OK },
1973 [WIN_SETIDLE2] = { cmd_nop, HD_CFA_OK },
1974 [WIN_CHECKPOWERMODE2] = { cmd_check_power_mode, HD_CFA_OK | SET_DSC },
1975 [WIN_SLEEPNOW2] = { cmd_nop, HD_CFA_OK },
1976 [WIN_PACKETCMD] = { cmd_packet, CD_OK },
1977 [WIN_PIDENTIFY] = { cmd_identify_packet, CD_OK },
1978 [WIN_SMART] = { cmd_smart, HD_CFA_OK | SET_DSC },
1979 [CFA_ACCESS_METADATA_STORAGE] = { cmd_cfa_access_metadata_storage, CFA_OK },
1980 [CFA_ERASE_SECTORS] = { cmd_cfa_erase_sectors, CFA_OK | SET_DSC },
1981 [WIN_MULTREAD] = { cmd_read_multiple, HD_CFA_OK },
1982 [WIN_MULTWRITE] = { cmd_write_multiple, HD_CFA_OK },
1983 [WIN_SETMULT] = { cmd_set_multiple_mode, HD_CFA_OK | SET_DSC },
1984 [WIN_READDMA] = { cmd_read_dma, HD_CFA_OK },
1985 [WIN_READDMA_ONCE] = { cmd_read_dma, HD_CFA_OK },
1986 [WIN_WRITEDMA] = { cmd_write_dma, HD_CFA_OK },
1987 [WIN_WRITEDMA_ONCE] = { cmd_write_dma, HD_CFA_OK },
1988 [CFA_WRITE_MULTI_WO_ERASE] = { cmd_write_multiple, CFA_OK },
1989 [WIN_STANDBYNOW1] = { cmd_nop, HD_CFA_OK },
1990 [WIN_IDLEIMMEDIATE] = { cmd_nop, HD_CFA_OK },
1991 [WIN_STANDBY] = { cmd_nop, HD_CFA_OK },
1992 [WIN_SETIDLE1] = { cmd_nop, HD_CFA_OK },
1993 [WIN_CHECKPOWERMODE1] = { cmd_check_power_mode, HD_CFA_OK | SET_DSC },
1994 [WIN_SLEEPNOW1] = { cmd_nop, HD_CFA_OK },
1995 [WIN_FLUSH_CACHE] = { cmd_flush_cache, ALL_OK },
1996 [WIN_FLUSH_CACHE_EXT] = { cmd_flush_cache, HD_CFA_OK },
1997 [WIN_IDENTIFY] = { cmd_identify, ALL_OK },
1998 [WIN_SETFEATURES] = { cmd_set_features, ALL_OK | SET_DSC },
1999 [IBM_SENSE_CONDITION] = { cmd_ibm_sense_condition, CFA_OK | SET_DSC },
2000 [CFA_WEAR_LEVEL] = { cmd_cfa_erase_sectors, HD_CFA_OK | SET_DSC },
2001 [WIN_READ_NATIVE_MAX] = { cmd_read_native_max, HD_CFA_OK | SET_DSC },
2004 static bool ide_cmd_permitted(IDEState *s, uint32_t cmd)
2006 return cmd < ARRAY_SIZE(ide_cmd_table)
2007 && (ide_cmd_table[cmd].flags & (1u << s->drive_kind));
2010 void ide_exec_cmd(IDEBus *bus, uint32_t val)
2015 #if defined(DEBUG_IDE)
2016 printf("ide: CMD=%02x\n", val);
2018 s = idebus_active_if(bus);
2019 /* ignore commands to non existent slave */
2020 if (s != bus->ifs && !s->blk) {
2024 /* Only RESET is allowed while BSY and/or DRQ are set,
2025 * and only to ATAPI devices. */
2026 if (s->status & (BUSY_STAT|DRQ_STAT)) {
2027 if (val != WIN_DEVICE_RESET || s->drive_kind != IDE_CD) {
2032 if (!ide_cmd_permitted(s, val)) {
2033 ide_abort_command(s);
2034 ide_set_irq(s->bus);
2038 s->status = READY_STAT | BUSY_STAT;
2040 s->io_buffer_offset = 0;
2042 complete = ide_cmd_table[val].handler(s, val);
2044 s->status &= ~BUSY_STAT;
2045 assert(!!s->error == !!(s->status & ERR_STAT));
2047 if ((ide_cmd_table[val].flags & SET_DSC) && !s->error) {
2048 s->status |= SEEK_STAT;
2052 ide_set_irq(s->bus);
2056 uint32_t ide_ioport_read(void *opaque, uint32_t addr1)
2058 IDEBus *bus = opaque;
2059 IDEState *s = idebus_active_if(bus);
2064 /* FIXME: HOB readback uses bit 7, but it's always set right now */
2065 //hob = s->select & (1 << 7);
2072 if ((!bus->ifs[0].blk && !bus->ifs[1].blk) ||
2073 (s != bus->ifs && !s->blk)) {
2078 ret = s->hob_feature;
2082 if (!bus->ifs[0].blk && !bus->ifs[1].blk) {
2085 ret = s->nsector & 0xff;
2087 ret = s->hob_nsector;
2091 if (!bus->ifs[0].blk && !bus->ifs[1].blk) {
2096 ret = s->hob_sector;
2100 if (!bus->ifs[0].blk && !bus->ifs[1].blk) {
2109 if (!bus->ifs[0].blk && !bus->ifs[1].blk) {
2118 if (!bus->ifs[0].blk && !bus->ifs[1].blk) {
2126 if ((!bus->ifs[0].blk && !bus->ifs[1].blk) ||
2127 (s != bus->ifs && !s->blk)) {
2132 qemu_irq_lower(bus->irq);
2136 printf("ide: read addr=0x%x val=%02x\n", addr1, ret);
2141 uint32_t ide_status_read(void *opaque, uint32_t addr)
2143 IDEBus *bus = opaque;
2144 IDEState *s = idebus_active_if(bus);
2147 if ((!bus->ifs[0].blk && !bus->ifs[1].blk) ||
2148 (s != bus->ifs && !s->blk)) {
2154 printf("ide: read status addr=0x%x val=%02x\n", addr, ret);
2159 void ide_cmd_write(void *opaque, uint32_t addr, uint32_t val)
2161 IDEBus *bus = opaque;
2166 printf("ide: write control addr=0x%x val=%02x\n", addr, val);
2168 /* common for both drives */
2169 if (!(bus->cmd & IDE_CMD_RESET) &&
2170 (val & IDE_CMD_RESET)) {
2171 /* reset low to high */
2172 for(i = 0;i < 2; i++) {
2174 s->status = BUSY_STAT | SEEK_STAT;
2177 } else if ((bus->cmd & IDE_CMD_RESET) &&
2178 !(val & IDE_CMD_RESET)) {
2180 for(i = 0;i < 2; i++) {
2182 if (s->drive_kind == IDE_CD)
2183 s->status = 0x00; /* NOTE: READY is _not_ set */
2185 s->status = READY_STAT | SEEK_STAT;
2186 ide_set_signature(s);
2194 * Returns true if the running PIO transfer is a PIO out (i.e. data is
2195 * transferred from the device to the guest), false if it's a PIO in
2197 static bool ide_is_pio_out(IDEState *s)
2199 if (s->end_transfer_func == ide_sector_write ||
2200 s->end_transfer_func == ide_atapi_cmd) {
2202 } else if (s->end_transfer_func == ide_sector_read ||
2203 s->end_transfer_func == ide_transfer_stop ||
2204 s->end_transfer_func == ide_atapi_cmd_reply_end ||
2205 s->end_transfer_func == ide_dummy_transfer_stop) {
2212 void ide_data_writew(void *opaque, uint32_t addr, uint32_t val)
2214 IDEBus *bus = opaque;
2215 IDEState *s = idebus_active_if(bus);
2218 /* PIO data access allowed only when DRQ bit is set. The result of a write
2219 * during PIO out is indeterminate, just ignore it. */
2220 if (!(s->status & DRQ_STAT) || ide_is_pio_out(s)) {
2225 if (p + 2 > s->data_end) {
2229 *(uint16_t *)p = le16_to_cpu(val);
2232 if (p >= s->data_end) {
2233 s->status &= ~DRQ_STAT;
2234 s->end_transfer_func(s);
2238 uint32_t ide_data_readw(void *opaque, uint32_t addr)
2240 IDEBus *bus = opaque;
2241 IDEState *s = idebus_active_if(bus);
2245 /* PIO data access allowed only when DRQ bit is set. The result of a read
2246 * during PIO in is indeterminate, return 0 and don't move forward. */
2247 if (!(s->status & DRQ_STAT) || !ide_is_pio_out(s)) {
2252 if (p + 2 > s->data_end) {
2256 ret = cpu_to_le16(*(uint16_t *)p);
2259 if (p >= s->data_end) {
2260 s->status &= ~DRQ_STAT;
2261 s->end_transfer_func(s);
2266 void ide_data_writel(void *opaque, uint32_t addr, uint32_t val)
2268 IDEBus *bus = opaque;
2269 IDEState *s = idebus_active_if(bus);
2272 /* PIO data access allowed only when DRQ bit is set. The result of a write
2273 * during PIO out is indeterminate, just ignore it. */
2274 if (!(s->status & DRQ_STAT) || ide_is_pio_out(s)) {
2279 if (p + 4 > s->data_end) {
2283 *(uint32_t *)p = le32_to_cpu(val);
2286 if (p >= s->data_end) {
2287 s->status &= ~DRQ_STAT;
2288 s->end_transfer_func(s);
2292 uint32_t ide_data_readl(void *opaque, uint32_t addr)
2294 IDEBus *bus = opaque;
2295 IDEState *s = idebus_active_if(bus);
2299 /* PIO data access allowed only when DRQ bit is set. The result of a read
2300 * during PIO in is indeterminate, return 0 and don't move forward. */
2301 if (!(s->status & DRQ_STAT) || !ide_is_pio_out(s)) {
2306 if (p + 4 > s->data_end) {
2310 ret = cpu_to_le32(*(uint32_t *)p);
2313 if (p >= s->data_end) {
2314 s->status &= ~DRQ_STAT;
2315 s->end_transfer_func(s);
2320 static void ide_dummy_transfer_stop(IDEState *s)
2322 s->data_ptr = s->io_buffer;
2323 s->data_end = s->io_buffer;
2324 s->io_buffer[0] = 0xff;
2325 s->io_buffer[1] = 0xff;
2326 s->io_buffer[2] = 0xff;
2327 s->io_buffer[3] = 0xff;
2330 void ide_bus_reset(IDEBus *bus)
2334 ide_reset(&bus->ifs[0]);
2335 ide_reset(&bus->ifs[1]);
2338 /* pending async DMA */
2339 if (bus->dma->aiocb) {
2341 printf("aio_cancel\n");
2343 blk_aio_cancel(bus->dma->aiocb);
2344 bus->dma->aiocb = NULL;
2347 /* reset dma provider too */
2348 if (bus->dma->ops->reset) {
2349 bus->dma->ops->reset(bus->dma);
2353 static bool ide_cd_is_tray_open(void *opaque)
2355 return ((IDEState *)opaque)->tray_open;
2358 static bool ide_cd_is_medium_locked(void *opaque)
2360 return ((IDEState *)opaque)->tray_locked;
2363 static void ide_resize_cb(void *opaque)
2365 IDEState *s = opaque;
2366 uint64_t nb_sectors;
2368 if (!s->identify_set) {
2372 blk_get_geometry(s->blk, &nb_sectors);
2373 s->nb_sectors = nb_sectors;
2375 /* Update the identify data buffer. */
2376 if (s->drive_kind == IDE_CFATA) {
2377 ide_cfata_identify_size(s);
2379 /* IDE_CD uses a different set of callbacks entirely. */
2380 assert(s->drive_kind != IDE_CD);
2381 ide_identify_size(s);
2385 static const BlockDevOps ide_cd_block_ops = {
2386 .change_media_cb = ide_cd_change_cb,
2387 .eject_request_cb = ide_cd_eject_request_cb,
2388 .is_tray_open = ide_cd_is_tray_open,
2389 .is_medium_locked = ide_cd_is_medium_locked,
2392 static const BlockDevOps ide_hd_block_ops = {
2393 .resize_cb = ide_resize_cb,
2396 int ide_init_drive(IDEState *s, BlockBackend *blk, IDEDriveKind kind,
2397 const char *version, const char *serial, const char *model,
2399 uint32_t cylinders, uint32_t heads, uint32_t secs,
2402 uint64_t nb_sectors;
2405 s->drive_kind = kind;
2407 blk_get_geometry(blk, &nb_sectors);
2408 s->cylinders = cylinders;
2411 s->chs_trans = chs_trans;
2412 s->nb_sectors = nb_sectors;
2414 /* The SMART values should be preserved across power cycles
2416 s->smart_enabled = 1;
2417 s->smart_autosave = 1;
2418 s->smart_errors = 0;
2419 s->smart_selftest_count = 0;
2420 if (kind == IDE_CD) {
2421 blk_set_dev_ops(blk, &ide_cd_block_ops, s);
2422 blk_set_guest_block_size(blk, 2048);
2424 if (!blk_is_inserted(s->blk)) {
2425 error_report("Device needs media, but drive is empty");
2428 if (blk_is_read_only(blk)) {
2429 error_report("Can't use a read-only drive");
2432 blk_set_dev_ops(blk, &ide_hd_block_ops, s);
2435 pstrcpy(s->drive_serial_str, sizeof(s->drive_serial_str), serial);
2437 snprintf(s->drive_serial_str, sizeof(s->drive_serial_str),
2438 "QM%05d", s->drive_serial);
2441 pstrcpy(s->drive_model_str, sizeof(s->drive_model_str), model);
2445 strcpy(s->drive_model_str, "QEMU DVD-ROM");
2448 strcpy(s->drive_model_str, "QEMU MICRODRIVE");
2451 strcpy(s->drive_model_str, "QEMU HARDDISK");
2457 pstrcpy(s->version, sizeof(s->version), version);
2459 pstrcpy(s->version, sizeof(s->version), qemu_hw_version());
2463 blk_iostatus_enable(blk);
2467 static void ide_init1(IDEBus *bus, int unit)
2469 static int drive_serial = 1;
2470 IDEState *s = &bus->ifs[unit];
2474 s->drive_serial = drive_serial++;
2475 /* we need at least 2k alignment for accessing CDROMs using O_DIRECT */
2476 s->io_buffer_total_len = IDE_DMA_BUF_SECTORS*512 + 4;
2477 s->io_buffer = qemu_memalign(2048, s->io_buffer_total_len);
2478 memset(s->io_buffer, 0, s->io_buffer_total_len);
2480 s->smart_selftest_data = blk_blockalign(s->blk, 512);
2481 memset(s->smart_selftest_data, 0, 512);
2483 s->sector_write_timer = timer_new_ns(QEMU_CLOCK_VIRTUAL,
2484 ide_sector_write_timer_cb, s);
2487 static int ide_nop_int(IDEDMA *dma, int x)
2492 static void ide_nop(IDEDMA *dma)
2496 static int32_t ide_nop_int32(IDEDMA *dma, int32_t l)
2501 static const IDEDMAOps ide_dma_nop_ops = {
2502 .prepare_buf = ide_nop_int32,
2503 .restart_dma = ide_nop,
2504 .rw_buf = ide_nop_int,
2507 static void ide_restart_dma(IDEState *s, enum ide_dma_cmd dma_cmd)
2509 s->unit = s->bus->retry_unit;
2510 ide_set_sector(s, s->bus->retry_sector_num);
2511 s->nsector = s->bus->retry_nsector;
2512 s->bus->dma->ops->restart_dma(s->bus->dma);
2513 s->io_buffer_size = 0;
2514 s->dma_cmd = dma_cmd;
2515 ide_start_dma(s, ide_dma_cb);
2518 static void ide_restart_bh(void *opaque)
2520 IDEBus *bus = opaque;
2525 qemu_bh_delete(bus->bh);
2528 error_status = bus->error_status;
2529 if (bus->error_status == 0) {
2533 s = idebus_active_if(bus);
2534 is_read = (bus->error_status & IDE_RETRY_READ) != 0;
2536 /* The error status must be cleared before resubmitting the request: The
2537 * request may fail again, and this case can only be distinguished if the
2538 * called function can set a new error status. */
2539 bus->error_status = 0;
2541 /* The HBA has generically asked to be kicked on retry */
2542 if (error_status & IDE_RETRY_HBA) {
2543 if (s->bus->dma->ops->restart) {
2544 s->bus->dma->ops->restart(s->bus->dma);
2546 } else if (IS_IDE_RETRY_DMA(error_status)) {
2547 if (error_status & IDE_RETRY_TRIM) {
2548 ide_restart_dma(s, IDE_DMA_TRIM);
2550 ide_restart_dma(s, is_read ? IDE_DMA_READ : IDE_DMA_WRITE);
2552 } else if (IS_IDE_RETRY_PIO(error_status)) {
2556 ide_sector_write(s);
2558 } else if (error_status & IDE_RETRY_FLUSH) {
2560 } else if (IS_IDE_RETRY_ATAPI(error_status)) {
2561 assert(s->end_transfer_func == ide_atapi_cmd);
2562 ide_atapi_dma_restart(s);
2568 static void ide_restart_cb(void *opaque, int running, RunState state)
2570 IDEBus *bus = opaque;
2576 bus->bh = qemu_bh_new(ide_restart_bh, bus);
2577 qemu_bh_schedule(bus->bh);
2581 void ide_register_restart_cb(IDEBus *bus)
2583 if (bus->dma->ops->restart_dma) {
2584 qemu_add_vm_change_state_handler(ide_restart_cb, bus);
2588 static IDEDMA ide_dma_nop = {
2589 .ops = &ide_dma_nop_ops,
2593 void ide_init2(IDEBus *bus, qemu_irq irq)
2597 for(i = 0; i < 2; i++) {
2599 ide_reset(&bus->ifs[i]);
2602 bus->dma = &ide_dma_nop;
2605 static const MemoryRegionPortio ide_portio_list[] = {
2606 { 0, 8, 1, .read = ide_ioport_read, .write = ide_ioport_write },
2607 { 0, 1, 2, .read = ide_data_readw, .write = ide_data_writew },
2608 { 0, 1, 4, .read = ide_data_readl, .write = ide_data_writel },
2609 PORTIO_END_OF_LIST(),
2612 static const MemoryRegionPortio ide_portio2_list[] = {
2613 { 0, 1, 1, .read = ide_status_read, .write = ide_cmd_write },
2614 PORTIO_END_OF_LIST(),
2617 void ide_init_ioport(IDEBus *bus, ISADevice *dev, int iobase, int iobase2)
2619 /* ??? Assume only ISA and PCI configurations, and that the PCI-ISA
2620 bridge has been setup properly to always register with ISA. */
2621 isa_register_portio_list(dev, iobase, ide_portio_list, bus, "ide");
2624 isa_register_portio_list(dev, iobase2, ide_portio2_list, bus, "ide");
2628 static bool is_identify_set(void *opaque, int version_id)
2630 IDEState *s = opaque;
2632 return s->identify_set != 0;
2635 static EndTransferFunc* transfer_end_table[] = {
2639 ide_atapi_cmd_reply_end,
2641 ide_dummy_transfer_stop,
2644 static int transfer_end_table_idx(EndTransferFunc *fn)
2648 for (i = 0; i < ARRAY_SIZE(transfer_end_table); i++)
2649 if (transfer_end_table[i] == fn)
2655 static int ide_drive_post_load(void *opaque, int version_id)
2657 IDEState *s = opaque;
2659 if (s->blk && s->identify_set) {
2660 blk_set_enable_write_cache(s->blk, !!(s->identify_data[85] & (1 << 5)));
2665 static int ide_drive_pio_post_load(void *opaque, int version_id)
2667 IDEState *s = opaque;
2669 if (s->end_transfer_fn_idx >= ARRAY_SIZE(transfer_end_table)) {
2672 s->end_transfer_func = transfer_end_table[s->end_transfer_fn_idx];
2673 s->data_ptr = s->io_buffer + s->cur_io_buffer_offset;
2674 s->data_end = s->data_ptr + s->cur_io_buffer_len;
2675 s->atapi_dma = s->feature & 1; /* as per cmd_packet */
2680 static void ide_drive_pio_pre_save(void *opaque)
2682 IDEState *s = opaque;
2685 s->cur_io_buffer_offset = s->data_ptr - s->io_buffer;
2686 s->cur_io_buffer_len = s->data_end - s->data_ptr;
2688 idx = transfer_end_table_idx(s->end_transfer_func);
2690 fprintf(stderr, "%s: invalid end_transfer_func for DRQ_STAT\n",
2692 s->end_transfer_fn_idx = 2;
2694 s->end_transfer_fn_idx = idx;
2698 static bool ide_drive_pio_state_needed(void *opaque)
2700 IDEState *s = opaque;
2702 return ((s->status & DRQ_STAT) != 0)
2703 || (s->bus->error_status & IDE_RETRY_PIO);
2706 static bool ide_tray_state_needed(void *opaque)
2708 IDEState *s = opaque;
2710 return s->tray_open || s->tray_locked;
2713 static bool ide_atapi_gesn_needed(void *opaque)
2715 IDEState *s = opaque;
2717 return s->events.new_media || s->events.eject_request;
2720 static bool ide_error_needed(void *opaque)
2722 IDEBus *bus = opaque;
2724 return (bus->error_status != 0);
2727 /* Fields for GET_EVENT_STATUS_NOTIFICATION ATAPI command */
2728 static const VMStateDescription vmstate_ide_atapi_gesn_state = {
2729 .name ="ide_drive/atapi/gesn_state",
2731 .minimum_version_id = 1,
2732 .needed = ide_atapi_gesn_needed,
2733 .fields = (VMStateField[]) {
2734 VMSTATE_BOOL(events.new_media, IDEState),
2735 VMSTATE_BOOL(events.eject_request, IDEState),
2736 VMSTATE_END_OF_LIST()
2740 static const VMStateDescription vmstate_ide_tray_state = {
2741 .name = "ide_drive/tray_state",
2743 .minimum_version_id = 1,
2744 .needed = ide_tray_state_needed,
2745 .fields = (VMStateField[]) {
2746 VMSTATE_BOOL(tray_open, IDEState),
2747 VMSTATE_BOOL(tray_locked, IDEState),
2748 VMSTATE_END_OF_LIST()
2752 static const VMStateDescription vmstate_ide_drive_pio_state = {
2753 .name = "ide_drive/pio_state",
2755 .minimum_version_id = 1,
2756 .pre_save = ide_drive_pio_pre_save,
2757 .post_load = ide_drive_pio_post_load,
2758 .needed = ide_drive_pio_state_needed,
2759 .fields = (VMStateField[]) {
2760 VMSTATE_INT32(req_nb_sectors, IDEState),
2761 VMSTATE_VARRAY_INT32(io_buffer, IDEState, io_buffer_total_len, 1,
2762 vmstate_info_uint8, uint8_t),
2763 VMSTATE_INT32(cur_io_buffer_offset, IDEState),
2764 VMSTATE_INT32(cur_io_buffer_len, IDEState),
2765 VMSTATE_UINT8(end_transfer_fn_idx, IDEState),
2766 VMSTATE_INT32(elementary_transfer_size, IDEState),
2767 VMSTATE_INT32(packet_transfer_size, IDEState),
2768 VMSTATE_END_OF_LIST()
2772 const VMStateDescription vmstate_ide_drive = {
2773 .name = "ide_drive",
2775 .minimum_version_id = 0,
2776 .post_load = ide_drive_post_load,
2777 .fields = (VMStateField[]) {
2778 VMSTATE_INT32(mult_sectors, IDEState),
2779 VMSTATE_INT32(identify_set, IDEState),
2780 VMSTATE_BUFFER_TEST(identify_data, IDEState, is_identify_set),
2781 VMSTATE_UINT8(feature, IDEState),
2782 VMSTATE_UINT8(error, IDEState),
2783 VMSTATE_UINT32(nsector, IDEState),
2784 VMSTATE_UINT8(sector, IDEState),
2785 VMSTATE_UINT8(lcyl, IDEState),
2786 VMSTATE_UINT8(hcyl, IDEState),
2787 VMSTATE_UINT8(hob_feature, IDEState),
2788 VMSTATE_UINT8(hob_sector, IDEState),
2789 VMSTATE_UINT8(hob_nsector, IDEState),
2790 VMSTATE_UINT8(hob_lcyl, IDEState),
2791 VMSTATE_UINT8(hob_hcyl, IDEState),
2792 VMSTATE_UINT8(select, IDEState),
2793 VMSTATE_UINT8(status, IDEState),
2794 VMSTATE_UINT8(lba48, IDEState),
2795 VMSTATE_UINT8(sense_key, IDEState),
2796 VMSTATE_UINT8(asc, IDEState),
2797 VMSTATE_UINT8_V(cdrom_changed, IDEState, 3),
2798 VMSTATE_END_OF_LIST()
2800 .subsections = (const VMStateDescription*[]) {
2801 &vmstate_ide_drive_pio_state,
2802 &vmstate_ide_tray_state,
2803 &vmstate_ide_atapi_gesn_state,
2808 static const VMStateDescription vmstate_ide_error_status = {
2809 .name ="ide_bus/error",
2811 .minimum_version_id = 1,
2812 .needed = ide_error_needed,
2813 .fields = (VMStateField[]) {
2814 VMSTATE_INT32(error_status, IDEBus),
2815 VMSTATE_INT64_V(retry_sector_num, IDEBus, 2),
2816 VMSTATE_UINT32_V(retry_nsector, IDEBus, 2),
2817 VMSTATE_UINT8_V(retry_unit, IDEBus, 2),
2818 VMSTATE_END_OF_LIST()
2822 const VMStateDescription vmstate_ide_bus = {
2825 .minimum_version_id = 1,
2826 .fields = (VMStateField[]) {
2827 VMSTATE_UINT8(cmd, IDEBus),
2828 VMSTATE_UINT8(unit, IDEBus),
2829 VMSTATE_END_OF_LIST()
2831 .subsections = (const VMStateDescription*[]) {
2832 &vmstate_ide_error_status,
2837 void ide_drive_get(DriveInfo **hd, int n)
2840 int highest_bus = drive_get_max_bus(IF_IDE) + 1;
2841 int max_devs = drive_get_max_devs(IF_IDE);
2842 int n_buses = max_devs ? (n / max_devs) : n;
2845 * Note: The number of actual buses available is not known.
2846 * We compute this based on the size of the DriveInfo* array, n.
2847 * If it is less than max_devs * <num_real_buses>,
2848 * We will stop looking for drives prematurely instead of overfilling
2852 if (highest_bus > n_buses) {
2853 error_report("Too many IDE buses defined (%d > %d)",
2854 highest_bus, n_buses);
2858 for (i = 0; i < n; i++) {
2859 hd[i] = drive_get_by_index(IF_IDE, i);
projects / qemu.git / blob