2 * Arm PrimeCell PL181 MultiMedia Card Interface
4 * Copyright (c) 2007 CodeSourcery.
5 * Written by Paul Brook
7 * This code is licenced under the GPL.
14 //#define DEBUG_PL181 1
17 #define DPRINTF(fmt, ...) \
18 do { printf("pl181: " fmt , ## __VA_ARGS__); } while (0)
20 #define DPRINTF(fmt, ...) do {} while(0)
23 #define PL181_FIFO_LEN 16
42 /* The linux 2.6.21 driver is buggy, and misbehaves if new data arrives
43 while it is reading the FIFO. We hack around this be defering
44 subsequent transfers until after the driver polls the status word.
45 http://www.arm.linux.org.uk/developer/patches/viewpatch.php?id=4446/1
48 uint32_t fifo[PL181_FIFO_LEN];
50 /* GPIO outputs for 'card is readonly' and 'card inserted' */
51 qemu_irq cardstatus[2];
54 #define PL181_CMD_INDEX 0x3f
55 #define PL181_CMD_RESPONSE (1 << 6)
56 #define PL181_CMD_LONGRESP (1 << 7)
57 #define PL181_CMD_INTERRUPT (1 << 8)
58 #define PL181_CMD_PENDING (1 << 9)
59 #define PL181_CMD_ENABLE (1 << 10)
61 #define PL181_DATA_ENABLE (1 << 0)
62 #define PL181_DATA_DIRECTION (1 << 1)
63 #define PL181_DATA_MODE (1 << 2)
64 #define PL181_DATA_DMAENABLE (1 << 3)
66 #define PL181_STATUS_CMDCRCFAIL (1 << 0)
67 #define PL181_STATUS_DATACRCFAIL (1 << 1)
68 #define PL181_STATUS_CMDTIMEOUT (1 << 2)
69 #define PL181_STATUS_DATATIMEOUT (1 << 3)
70 #define PL181_STATUS_TXUNDERRUN (1 << 4)
71 #define PL181_STATUS_RXOVERRUN (1 << 5)
72 #define PL181_STATUS_CMDRESPEND (1 << 6)
73 #define PL181_STATUS_CMDSENT (1 << 7)
74 #define PL181_STATUS_DATAEND (1 << 8)
75 #define PL181_STATUS_DATABLOCKEND (1 << 10)
76 #define PL181_STATUS_CMDACTIVE (1 << 11)
77 #define PL181_STATUS_TXACTIVE (1 << 12)
78 #define PL181_STATUS_RXACTIVE (1 << 13)
79 #define PL181_STATUS_TXFIFOHALFEMPTY (1 << 14)
80 #define PL181_STATUS_RXFIFOHALFFULL (1 << 15)
81 #define PL181_STATUS_TXFIFOFULL (1 << 16)
82 #define PL181_STATUS_RXFIFOFULL (1 << 17)
83 #define PL181_STATUS_TXFIFOEMPTY (1 << 18)
84 #define PL181_STATUS_RXFIFOEMPTY (1 << 19)
85 #define PL181_STATUS_TXDATAAVLBL (1 << 20)
86 #define PL181_STATUS_RXDATAAVLBL (1 << 21)
88 #define PL181_STATUS_TX_FIFO (PL181_STATUS_TXACTIVE \
89 |PL181_STATUS_TXFIFOHALFEMPTY \
90 |PL181_STATUS_TXFIFOFULL \
91 |PL181_STATUS_TXFIFOEMPTY \
92 |PL181_STATUS_TXDATAAVLBL)
93 #define PL181_STATUS_RX_FIFO (PL181_STATUS_RXACTIVE \
94 |PL181_STATUS_RXFIFOHALFFULL \
95 |PL181_STATUS_RXFIFOFULL \
96 |PL181_STATUS_RXFIFOEMPTY \
97 |PL181_STATUS_RXDATAAVLBL)
99 static const unsigned char pl181_id[] =
100 { 0x81, 0x11, 0x04, 0x00, 0x0d, 0xf0, 0x05, 0xb1 };
102 static void pl181_update(pl181_state *s)
105 for (i = 0; i < 2; i++) {
106 qemu_set_irq(s->irq[i], (s->status & s->mask[i]) != 0);
110 static void pl181_fifo_push(pl181_state *s, uint32_t value)
114 if (s->fifo_len == PL181_FIFO_LEN) {
115 fprintf(stderr, "pl181: FIFO overflow\n");
118 n = (s->fifo_pos + s->fifo_len) & (PL181_FIFO_LEN - 1);
121 DPRINTF("FIFO push %08x\n", (int)value);
124 static uint32_t pl181_fifo_pop(pl181_state *s)
128 if (s->fifo_len == 0) {
129 fprintf(stderr, "pl181: FIFO underflow\n");
132 value = s->fifo[s->fifo_pos];
134 s->fifo_pos = (s->fifo_pos + 1) & (PL181_FIFO_LEN - 1);
135 DPRINTF("FIFO pop %08x\n", (int)value);
139 static void pl181_send_command(pl181_state *s)
142 uint8_t response[16];
145 request.cmd = s->cmd & PL181_CMD_INDEX;
146 request.arg = s->cmdarg;
147 DPRINTF("Command %d %08x\n", request.cmd, request.arg);
148 rlen = sd_do_command(s->card, &request, response);
151 if (s->cmd & PL181_CMD_RESPONSE) {
152 #define RWORD(n) ((response[n] << 24) | (response[n + 1] << 16) \
153 | (response[n + 2] << 8) | response[n + 3])
154 if (rlen == 0 || (rlen == 4 && (s->cmd & PL181_CMD_LONGRESP)))
156 if (rlen != 4 && rlen != 16)
158 s->response[0] = RWORD(0);
160 s->response[1] = s->response[2] = s->response[3] = 0;
162 s->response[1] = RWORD(4);
163 s->response[2] = RWORD(8);
164 s->response[3] = RWORD(12) & ~1;
166 DPRINTF("Response received\n");
167 s->status |= PL181_STATUS_CMDRESPEND;
170 DPRINTF("Command sent\n");
171 s->status |= PL181_STATUS_CMDSENT;
176 DPRINTF("Timeout\n");
177 s->status |= PL181_STATUS_CMDTIMEOUT;
180 /* Transfer data between the card and the FIFO. This is complicated by
181 the FIFO holding 32-bit words and the card taking data in single byte
182 chunks. FIFO bytes are transferred in little-endian order. */
184 static void pl181_fifo_run(pl181_state *s)
191 is_read = (s->datactrl & PL181_DATA_DIRECTION) != 0;
192 if (s->datacnt != 0 && (!is_read || sd_data_ready(s->card))
196 while (s->datacnt && s->fifo_len < PL181_FIFO_LEN) {
197 value |= (uint32_t)sd_read_data(s->card) << (n * 8);
201 pl181_fifo_push(s, value);
207 pl181_fifo_push(s, value);
211 while (s->datacnt > 0 && (s->fifo_len > 0 || n > 0)) {
213 value = pl181_fifo_pop(s);
218 sd_write_data(s->card, value & 0xff);
223 s->status &= ~(PL181_STATUS_RX_FIFO | PL181_STATUS_TX_FIFO);
224 if (s->datacnt == 0) {
225 s->status |= PL181_STATUS_DATAEND;
227 s->status |= PL181_STATUS_DATABLOCKEND;
228 DPRINTF("Transfer Complete\n");
230 if (s->datacnt == 0 && s->fifo_len == 0) {
231 s->datactrl &= ~PL181_DATA_ENABLE;
232 DPRINTF("Data engine idle\n");
234 /* Update FIFO bits. */
235 bits = PL181_STATUS_TXACTIVE | PL181_STATUS_RXACTIVE;
236 if (s->fifo_len == 0) {
237 bits |= PL181_STATUS_TXFIFOEMPTY;
238 bits |= PL181_STATUS_RXFIFOEMPTY;
240 bits |= PL181_STATUS_TXDATAAVLBL;
241 bits |= PL181_STATUS_RXDATAAVLBL;
243 if (s->fifo_len == 16) {
244 bits |= PL181_STATUS_TXFIFOFULL;
245 bits |= PL181_STATUS_RXFIFOFULL;
247 if (s->fifo_len <= 8) {
248 bits |= PL181_STATUS_TXFIFOHALFEMPTY;
250 if (s->fifo_len >= 8) {
251 bits |= PL181_STATUS_RXFIFOHALFFULL;
253 if (s->datactrl & PL181_DATA_DIRECTION) {
254 bits &= PL181_STATUS_RX_FIFO;
256 bits &= PL181_STATUS_TX_FIFO;
262 static uint32_t pl181_read(void *opaque, target_phys_addr_t offset)
264 pl181_state *s = (pl181_state *)opaque;
267 if (offset >= 0xfe0 && offset < 0x1000) {
268 return pl181_id[(offset - 0xfe0) >> 2];
271 case 0x00: /* Power */
273 case 0x04: /* Clock */
275 case 0x08: /* Argument */
277 case 0x0c: /* Command */
279 case 0x10: /* RespCmd */
281 case 0x14: /* Response0 */
282 return s->response[0];
283 case 0x18: /* Response1 */
284 return s->response[1];
285 case 0x1c: /* Response2 */
286 return s->response[2];
287 case 0x20: /* Response3 */
288 return s->response[3];
289 case 0x24: /* DataTimer */
291 case 0x28: /* DataLength */
292 return s->datalength;
293 case 0x2c: /* DataCtrl */
295 case 0x30: /* DataCnt */
297 case 0x34: /* Status */
305 case 0x3c: /* Mask0 */
307 case 0x40: /* Mask1 */
309 case 0x48: /* FifoCnt */
310 /* The documentation is somewhat vague about exactly what FifoCnt
311 does. On real hardware it appears to be when decrememnted
312 when a word is transfered between the FIFO and the serial
313 data engine. DataCnt is decremented after each byte is
314 transfered between the serial engine and the card.
315 We don't emulate this level of detail, so both can be the same. */
316 tmp = (s->datacnt + 3) >> 2;
323 case 0x80: case 0x84: case 0x88: case 0x8c: /* FifoData */
324 case 0x90: case 0x94: case 0x98: case 0x9c:
325 case 0xa0: case 0xa4: case 0xa8: case 0xac:
326 case 0xb0: case 0xb4: case 0xb8: case 0xbc:
327 if (s->fifo_len == 0) {
328 fprintf(stderr, "pl181: Unexpected FIFO read\n");
332 value = pl181_fifo_pop(s);
339 hw_error("pl181_read: Bad offset %x\n", (int)offset);
344 static void pl181_write(void *opaque, target_phys_addr_t offset,
347 pl181_state *s = (pl181_state *)opaque;
350 case 0x00: /* Power */
351 s->power = value & 0xff;
353 case 0x04: /* Clock */
354 s->clock = value & 0xff;
356 case 0x08: /* Argument */
359 case 0x0c: /* Command */
361 if (s->cmd & PL181_CMD_ENABLE) {
362 if (s->cmd & PL181_CMD_INTERRUPT) {
363 fprintf(stderr, "pl181: Interrupt mode not implemented\n");
365 } if (s->cmd & PL181_CMD_PENDING) {
366 fprintf(stderr, "pl181: Pending commands not implemented\n");
369 pl181_send_command(s);
372 /* The command has completed one way or the other. */
373 s->cmd &= ~PL181_CMD_ENABLE;
376 case 0x24: /* DataTimer */
377 s->datatimer = value;
379 case 0x28: /* DataLength */
380 s->datalength = value & 0xffff;
382 case 0x2c: /* DataCtrl */
383 s->datactrl = value & 0xff;
384 if (value & PL181_DATA_ENABLE) {
385 s->datacnt = s->datalength;
389 case 0x38: /* Clear */
390 s->status &= ~(value & 0x7ff);
392 case 0x3c: /* Mask0 */
395 case 0x40: /* Mask1 */
398 case 0x80: case 0x84: case 0x88: case 0x8c: /* FifoData */
399 case 0x90: case 0x94: case 0x98: case 0x9c:
400 case 0xa0: case 0xa4: case 0xa8: case 0xac:
401 case 0xb0: case 0xb4: case 0xb8: case 0xbc:
402 if (s->datacnt == 0) {
403 fprintf(stderr, "pl181: Unexpected FIFO write\n");
405 pl181_fifo_push(s, value);
410 hw_error("pl181_write: Bad offset %x\n", (int)offset);
415 static CPUReadMemoryFunc * const pl181_readfn[] = {
421 static CPUWriteMemoryFunc * const pl181_writefn[] = {
427 static void pl181_reset(void *opaque)
429 pl181_state *s = (pl181_state *)opaque;
450 /* We can assume our GPIO outputs have been wired up now */
451 sd_set_cb(s->card, s->cardstatus[0], s->cardstatus[1]);
454 static int pl181_init(SysBusDevice *dev)
457 pl181_state *s = FROM_SYSBUS(pl181_state, dev);
460 iomemtype = cpu_register_io_memory(pl181_readfn, pl181_writefn, s,
461 DEVICE_NATIVE_ENDIAN);
462 sysbus_init_mmio(dev, 0x1000, iomemtype);
463 sysbus_init_irq(dev, &s->irq[0]);
464 sysbus_init_irq(dev, &s->irq[1]);
465 qdev_init_gpio_out(&s->busdev.qdev, s->cardstatus, 2);
466 dinfo = drive_get_next(IF_SD);
467 s->card = sd_init(dinfo ? dinfo->bdrv : NULL, 0);
468 qemu_register_reset(pl181_reset, s);
470 /* ??? Save/restore. */
474 static void pl181_register_devices(void)
476 sysbus_register_dev("pl181", sizeof(pl181_state), pl181_init);
479 device_init(pl181_register_devices)
projects / qemu.git / blob