[qemu.git] / hw / esp.c

/*
 * QEMU ESP/NCR53C9x emulation
 *
 * Copyright (c) 2005-2006 Fabrice Bellard
 *
 * Permission is hereby granted, free of charge, to any person obtaining a copy
 * of this software and associated documentation files (the "Software"), to deal
 * in the Software without restriction, including without limitation the rights
 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 * copies of the Software, and to permit persons to whom the Software is
 * furnished to do so, subject to the following conditions:
 *
 * The above copyright notice and this permission notice shall be included in
 * all copies or substantial portions of the Software.
 *
 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
 * THE SOFTWARE.
 */
#include "hw.h"
#include "block.h"
#include "scsi-disk.h"
#include "sun4m.h"
/* FIXME: Only needed for MAX_DISKS, which is probably wrong.  */
#include "sysemu.h"

/* debug ESP card */
//#define DEBUG_ESP

/*
 * On Sparc32, this is the ESP (NCR53C90) part of chip STP2000 (Master I/O),
 * also produced as NCR89C100. See
 * http://www.ibiblio.org/pub/historic-linux/early-ports/Sparc/NCR/NCR89C100.txt
 * and
 * http://www.ibiblio.org/pub/historic-linux/early-ports/Sparc/NCR/NCR53C9X.txt
 */

#ifdef DEBUG_ESP
#define DPRINTF(fmt, args...) \
do { printf("ESP: " fmt , ##args); } while (0)
#else
#define DPRINTF(fmt, args...)
#endif

#define ESP_MASK 0x3f
#define ESP_REGS 16
#define ESP_SIZE (ESP_REGS * 4)
#define TI_BUFSZ 32

typedef struct ESPState ESPState;

struct ESPState {
    qemu_irq irq;
    uint8_t rregs[ESP_REGS];
    uint8_t wregs[ESP_REGS];
    int32_t ti_size;
    uint32_t ti_rptr, ti_wptr;
    uint8_t ti_buf[TI_BUFSZ];
    int sense;
    int dma;
    SCSIDevice *scsi_dev[ESP_MAX_DEVS];
    SCSIDevice *current_dev;
    uint8_t cmdbuf[TI_BUFSZ];
    int cmdlen;
    int do_cmd;

    /* The amount of data left in the current DMA transfer.  */
    uint32_t dma_left;
    /* The size of the current DMA transfer.  Zero if no transfer is in
       progress.  */
    uint32_t dma_counter;
    uint8_t *async_buf;
    uint32_t async_len;
    void *dma_opaque;
};

#define ESP_TCLO   0x0
#define ESP_TCMID  0x1
#define ESP_FIFO   0x2
#define ESP_CMD    0x3
#define ESP_RSTAT  0x4
#define ESP_WBUSID 0x4
#define ESP_RINTR  0x5
#define ESP_WSEL   0x5
#define ESP_RSEQ   0x6
#define ESP_WSYNTP 0x6
#define ESP_RFLAGS 0x7
#define ESP_WSYNO  0x7
#define ESP_CFG1   0x8
#define ESP_RRES1  0x9
#define ESP_WCCF   0x9
#define ESP_RRES2  0xa
#define ESP_WTEST  0xa
#define ESP_CFG2   0xb
#define ESP_CFG3   0xc
#define ESP_RES3   0xd
#define ESP_TCHI   0xe
#define ESP_RES4   0xf

#define CMD_DMA 0x80
#define CMD_CMD 0x7f

#define CMD_NOP      0x00
#define CMD_FLUSH    0x01
#define CMD_RESET    0x02
#define CMD_BUSRESET 0x03
#define CMD_TI       0x10
#define CMD_ICCS     0x11
#define CMD_MSGACC   0x12
#define CMD_SATN     0x1a
#define CMD_SELATN   0x42
#define CMD_SELATNS  0x43
#define CMD_ENSEL    0x44

#define STAT_DO 0x00
#define STAT_DI 0x01
#define STAT_CD 0x02
#define STAT_ST 0x03
#define STAT_MI 0x06
#define STAT_MO 0x07
#define STAT_PIO_MASK 0x06

#define STAT_TC 0x10
#define STAT_PE 0x20
#define STAT_GE 0x40
#define STAT_IN 0x80

#define INTR_FC 0x08
#define INTR_BS 0x10
#define INTR_DC 0x20
#define INTR_RST 0x80

#define SEQ_0 0x0
#define SEQ_CD 0x4

#define CFG1_RESREPT 0x40

#define CFG2_MASK 0x15

#define TCHI_FAS100A 0x4

static int get_cmd(ESPState *s, uint8_t *buf)
{
    uint32_t dmalen;
    int target;

    dmalen = s->rregs[ESP_TCLO] | (s->rregs[ESP_TCMID] << 8);
    target = s->wregs[ESP_WBUSID] & 7;
    DPRINTF("get_cmd: len %d target %d\n", dmalen, target);
    if (s->dma) {
        espdma_memory_read(s->dma_opaque, buf, dmalen);
    } else {
        buf[0] = 0;
        memcpy(&buf[1], s->ti_buf, dmalen);
        dmalen++;
    }

    s->ti_size = 0;
    s->ti_rptr = 0;
    s->ti_wptr = 0;

    if (s->current_dev) {
        /* Started a new command before the old one finished.  Cancel it.  */
        s->current_dev->cancel_io(s->current_dev, 0);
        s->async_len = 0;
    }

    if (target >= ESP_MAX_DEVS || !s->scsi_dev[target]) {
        // No such drive
        s->rregs[ESP_RSTAT] = STAT_IN;
        s->rregs[ESP_RINTR] = INTR_DC;
        s->rregs[ESP_RSEQ] = SEQ_0;
        qemu_irq_raise(s->irq);
        return 0;
    }
    s->current_dev = s->scsi_dev[target];
    return dmalen;
}

static void do_cmd(ESPState *s, uint8_t *buf)
{
    int32_t datalen;
    int lun;

    DPRINTF("do_cmd: busid 0x%x\n", buf[0]);
    lun = buf[0] & 7;
    datalen = s->current_dev->send_command(s->current_dev, 0, &buf[1], lun);
    s->ti_size = datalen;
    if (datalen != 0) {
        s->rregs[ESP_RSTAT] = STAT_IN | STAT_TC;
        s->dma_left = 0;
        s->dma_counter = 0;
        if (datalen > 0) {
            s->rregs[ESP_RSTAT] |= STAT_DI;
            s->current_dev->read_data(s->current_dev, 0);
        } else {
            s->rregs[ESP_RSTAT] |= STAT_DO;
            s->current_dev->write_data(s->current_dev, 0);
        }
    }
    s->rregs[ESP_RINTR] = INTR_BS | INTR_FC;
    s->rregs[ESP_RSEQ] = SEQ_CD;
    qemu_irq_raise(s->irq);
}

static void handle_satn(ESPState *s)
{
    uint8_t buf[32];
    int len;

    len = get_cmd(s, buf);
    if (len)
        do_cmd(s, buf);
}

static void handle_satn_stop(ESPState *s)
{
    s->cmdlen = get_cmd(s, s->cmdbuf);
    if (s->cmdlen) {
        DPRINTF("Set ATN & Stop: cmdlen %d\n", s->cmdlen);
        s->do_cmd = 1;
        s->rregs[ESP_RSTAT] = STAT_IN | STAT_TC | STAT_CD;
        s->rregs[ESP_RINTR] = INTR_BS | INTR_FC;
        s->rregs[ESP_RSEQ] = SEQ_CD;
        qemu_irq_raise(s->irq);
    }
}

static void write_response(ESPState *s)
{
    DPRINTF("Transfer status (sense=%d)\n", s->sense);
    s->ti_buf[0] = s->sense;
    s->ti_buf[1] = 0;
    if (s->dma) {
        espdma_memory_write(s->dma_opaque, s->ti_buf, 2);
        s->rregs[ESP_RSTAT] = STAT_IN | STAT_TC | STAT_ST;
        s->rregs[ESP_RINTR] = INTR_BS | INTR_FC;
        s->rregs[ESP_RSEQ] = SEQ_CD;
    } else {
        s->ti_size = 2;
        s->ti_rptr = 0;
        s->ti_wptr = 0;
        s->rregs[ESP_RFLAGS] = 2;
    }
    qemu_irq_raise(s->irq);
}

static void esp_dma_done(ESPState *s)
{
    s->rregs[ESP_RSTAT] |= STAT_IN | STAT_TC;
    s->rregs[ESP_RINTR] = INTR_BS;
    s->rregs[ESP_RSEQ] = 0;
    s->rregs[ESP_RFLAGS] = 0;
    s->rregs[ESP_TCLO] = 0;
    s->rregs[ESP_TCMID] = 0;
    qemu_irq_raise(s->irq);
}

static void esp_do_dma(ESPState *s)
{
    uint32_t len;
    int to_device;

    to_device = (s->ti_size < 0);
    len = s->dma_left;
    if (s->do_cmd) {
        DPRINTF("command len %d + %d\n", s->cmdlen, len);
        espdma_memory_read(s->dma_opaque, &s->cmdbuf[s->cmdlen], len);
        s->ti_size = 0;
        s->cmdlen = 0;
        s->do_cmd = 0;
        do_cmd(s, s->cmdbuf);
        return;
    }
    if (s->async_len == 0) {
        /* Defer until data is available.  */
        return;
    }
    if (len > s->async_len) {
        len = s->async_len;
    }
    if (to_device) {
        espdma_memory_read(s->dma_opaque, s->async_buf, len);
    } else {
        espdma_memory_write(s->dma_opaque, s->async_buf, len);
    }
    s->dma_left -= len;
    s->async_buf += len;
    s->async_len -= len;
    if (to_device)
        s->ti_size += len;
    else
        s->ti_size -= len;
    if (s->async_len == 0) {
        if (to_device) {
            // ti_size is negative
            s->current_dev->write_data(s->current_dev, 0);
        } else {
            s->current_dev->read_data(s->current_dev, 0);
            /* If there is still data to be read from the device then
               complete the DMA operation immeriately.  Otherwise defer
               until the scsi layer has completed.  */
            if (s->dma_left == 0 && s->ti_size > 0) {
                esp_dma_done(s);
            }
        }
    } else {
        /* Partially filled a scsi buffer. Complete immediately.  */
        esp_dma_done(s);
    }
}

static void esp_command_complete(void *opaque, int reason, uint32_t tag,
                                 uint32_t arg)
{
    ESPState *s = (ESPState *)opaque;

    if (reason == SCSI_REASON_DONE) {
        DPRINTF("SCSI Command complete\n");
        if (s->ti_size != 0)
            DPRINTF("SCSI command completed unexpectedly\n");
        s->ti_size = 0;
        s->dma_left = 0;
        s->async_len = 0;
        if (arg)
            DPRINTF("Command failed\n");
        s->sense = arg;
        s->rregs[ESP_RSTAT] = STAT_ST;
        esp_dma_done(s);
        s->current_dev = NULL;
    } else {
        DPRINTF("transfer %d/%d\n", s->dma_left, s->ti_size);
        s->async_len = arg;
        s->async_buf = s->current_dev->get_buf(s->current_dev, 0);
        if (s->dma_left) {
            esp_do_dma(s);
        } else if (s->dma_counter != 0 && s->ti_size <= 0) {
            /* If this was the last part of a DMA transfer then the
               completion interrupt is deferred to here.  */
            esp_dma_done(s);
        }
    }
}

static void handle_ti(ESPState *s)
{
    uint32_t dmalen, minlen;

    dmalen = s->rregs[ESP_TCLO] | (s->rregs[ESP_TCMID] << 8);
    if (dmalen==0) {
      dmalen=0x10000;
    }
    s->dma_counter = dmalen;

    if (s->do_cmd)
        minlen = (dmalen < 32) ? dmalen : 32;
    else if (s->ti_size < 0)
        minlen = (dmalen < -s->ti_size) ? dmalen : -s->ti_size;
    else
        minlen = (dmalen < s->ti_size) ? dmalen : s->ti_size;
    DPRINTF("Transfer Information len %d\n", minlen);
    if (s->dma) {
        s->dma_left = minlen;
        s->rregs[ESP_RSTAT] &= ~STAT_TC;
        esp_do_dma(s);
    } else if (s->do_cmd) {
        DPRINTF("command len %d\n", s->cmdlen);
        s->ti_size = 0;
        s->cmdlen = 0;
        s->do_cmd = 0;
        do_cmd(s, s->cmdbuf);
        return;
    }
}

static void esp_reset(void *opaque)
{
    ESPState *s = opaque;

    memset(s->rregs, 0, ESP_REGS);
    memset(s->wregs, 0, ESP_REGS);
    s->rregs[ESP_TCHI] = TCHI_FAS100A; // Indicate fas100a
    s->ti_size = 0;
    s->ti_rptr = 0;
    s->ti_wptr = 0;
    s->dma = 0;
    s->do_cmd = 0;
}

static void parent_esp_reset(void *opaque, int irq, int level)
{
    if (level)
        esp_reset(opaque);
}

static uint32_t esp_mem_readb(void *opaque, target_phys_addr_t addr)
{
    ESPState *s = opaque;
    uint32_t saddr;

    saddr = (addr & ESP_MASK) >> 2;
    DPRINTF("read reg[%d]: 0x%2.2x\n", saddr, s->rregs[saddr]);
    switch (saddr) {
    case ESP_FIFO:
        if (s->ti_size > 0) {
            s->ti_size--;
            if ((s->rregs[ESP_RSTAT] & STAT_PIO_MASK) == 0) {
                /* Data in/out.  */
                fprintf(stderr, "esp: PIO data read not implemented\n");
                s->rregs[ESP_FIFO] = 0;
            } else {
                s->rregs[ESP_FIFO] = s->ti_buf[s->ti_rptr++];
            }
            qemu_irq_raise(s->irq);
        }
        if (s->ti_size == 0) {
            s->ti_rptr = 0;
            s->ti_wptr = 0;
        }
        break;
    case ESP_RINTR:
        // Clear interrupt/error status bits
        s->rregs[ESP_RSTAT] &= ~(STAT_IN | STAT_GE | STAT_PE);
        qemu_irq_lower(s->irq);
        break;
    default:
        break;
    }
    return s->rregs[saddr];
}

static void esp_mem_writeb(void *opaque, target_phys_addr_t addr, uint32_t val)
{
    ESPState *s = opaque;
    uint32_t saddr;

    saddr = (addr & ESP_MASK) >> 2;
    DPRINTF("write reg[%d]: 0x%2.2x -> 0x%2.2x\n", saddr, s->wregs[saddr],
            val);
    switch (saddr) {
    case ESP_TCLO:
    case ESP_TCMID:
        s->rregs[ESP_RSTAT] &= ~STAT_TC;
        break;
    case ESP_FIFO:
        if (s->do_cmd) {
            s->cmdbuf[s->cmdlen++] = val & 0xff;
        } else if ((s->rregs[ESP_RSTAT] & STAT_PIO_MASK) == 0) {
            uint8_t buf;
            buf = val & 0xff;
            s->ti_size--;
            fprintf(stderr, "esp: PIO data write not implemented\n");
        } else {
            s->ti_size++;
            s->ti_buf[s->ti_wptr++] = val & 0xff;
        }
        break;
    case ESP_CMD:
        s->rregs[saddr] = val;
        if (val & CMD_DMA) {
            s->dma = 1;
            /* Reload DMA counter.  */
            s->rregs[ESP_TCLO] = s->wregs[ESP_TCLO];
            s->rregs[ESP_TCMID] = s->wregs[ESP_TCMID];
        } else {
            s->dma = 0;
        }
        switch(val & CMD_CMD) {
        case CMD_NOP:
            DPRINTF("NOP (%2.2x)\n", val);
            break;
        case CMD_FLUSH:
            DPRINTF("Flush FIFO (%2.2x)\n", val);
            //s->ti_size = 0;
            s->rregs[ESP_RINTR] = INTR_FC;
            s->rregs[ESP_RSEQ] = 0;
            break;
        case CMD_RESET:
            DPRINTF("Chip reset (%2.2x)\n", val);
            esp_reset(s);
            break;
        case CMD_BUSRESET:
            DPRINTF("Bus reset (%2.2x)\n", val);
            s->rregs[ESP_RINTR] = INTR_RST;
            if (!(s->wregs[ESP_CFG1] & CFG1_RESREPT)) {
                qemu_irq_raise(s->irq);
            }
            break;
        case CMD_TI:
            handle_ti(s);
            break;
        case CMD_ICCS:
            DPRINTF("Initiator Command Complete Sequence (%2.2x)\n", val);
            write_response(s);
            break;
        case CMD_MSGACC:
            DPRINTF("Message Accepted (%2.2x)\n", val);
            write_response(s);
            s->rregs[ESP_RINTR] = INTR_DC;
            s->rregs[ESP_RSEQ] = 0;
            break;
        case CMD_SATN:
            DPRINTF("Set ATN (%2.2x)\n", val);
            break;
        case CMD_SELATN:
            DPRINTF("Set ATN (%2.2x)\n", val);
            handle_satn(s);
            break;
        case CMD_SELATNS:
            DPRINTF("Set ATN & stop (%2.2x)\n", val);
            handle_satn_stop(s);
            break;
        case CMD_ENSEL:
            DPRINTF("Enable selection (%2.2x)\n", val);
            break;
        default:
            DPRINTF("Unhandled ESP command (%2.2x)\n", val);
            break;
        }
        break;
    case ESP_WBUSID ... ESP_WSYNO:
        break;
    case ESP_CFG1:
        s->rregs[saddr] = val;
        break;
    case ESP_WCCF ... ESP_WTEST:
        break;
    case ESP_CFG2:
        s->rregs[saddr] = val & CFG2_MASK;
        break;
    case ESP_CFG3 ... ESP_RES4:
        s->rregs[saddr] = val;
        break;
    default:
        break;
    }
    s->wregs[saddr] = val;
}

static CPUReadMemoryFunc *esp_mem_read[3] = {
    esp_mem_readb,
    esp_mem_readb,
    esp_mem_readb,
};

static CPUWriteMemoryFunc *esp_mem_write[3] = {
    esp_mem_writeb,
    esp_mem_writeb,
    esp_mem_writeb,
};

static void esp_save(QEMUFile *f, void *opaque)
{
    ESPState *s = opaque;

    qemu_put_buffer(f, s->rregs, ESP_REGS);
    qemu_put_buffer(f, s->wregs, ESP_REGS);
    qemu_put_be32s(f, &s->ti_size);
    qemu_put_be32s(f, &s->ti_rptr);
    qemu_put_be32s(f, &s->ti_wptr);
    qemu_put_buffer(f, s->ti_buf, TI_BUFSZ);
    qemu_put_be32s(f, &s->sense);
    qemu_put_be32s(f, &s->dma);
    qemu_put_buffer(f, s->cmdbuf, TI_BUFSZ);
    qemu_put_be32s(f, &s->cmdlen);
    qemu_put_be32s(f, &s->do_cmd);
    qemu_put_be32s(f, &s->dma_left);
    // There should be no transfers in progress, so dma_counter is not saved
}

static int esp_load(QEMUFile *f, void *opaque, int version_id)
{
    ESPState *s = opaque;

    if (version_id != 3)
        return -EINVAL; // Cannot emulate 2

    qemu_get_buffer(f, s->rregs, ESP_REGS);
    qemu_get_buffer(f, s->wregs, ESP_REGS);
    qemu_get_be32s(f, &s->ti_size);
    qemu_get_be32s(f, &s->ti_rptr);
    qemu_get_be32s(f, &s->ti_wptr);
    qemu_get_buffer(f, s->ti_buf, TI_BUFSZ);
    qemu_get_be32s(f, &s->sense);
    qemu_get_be32s(f, &s->dma);
    qemu_get_buffer(f, s->cmdbuf, TI_BUFSZ);
    qemu_get_be32s(f, &s->cmdlen);
    qemu_get_be32s(f, &s->do_cmd);
    qemu_get_be32s(f, &s->dma_left);

    return 0;
}

void esp_scsi_attach(void *opaque, BlockDriverState *bd, int id)
{
    ESPState *s = (ESPState *)opaque;

    if (id < 0) {
        for (id = 0; id < ESP_MAX_DEVS; id++) {
            if (s->scsi_dev[id] == NULL)
                break;
        }
    }
    if (id >= ESP_MAX_DEVS) {
        DPRINTF("Bad Device ID %d\n", id);
        return;
    }
    if (s->scsi_dev[id]) {
        DPRINTF("Destroying device %d\n", id);
        s->scsi_dev[id]->destroy(s->scsi_dev[id]);
    }
    DPRINTF("Attaching block device %d\n", id);
    /* Command queueing is not implemented.  */
    s->scsi_dev[id] = scsi_generic_init(bd, 0, esp_command_complete, s);
    if (s->scsi_dev[id] == NULL)
        s->scsi_dev[id] = scsi_disk_init(bd, 0, esp_command_complete, s);
}

void *esp_init(target_phys_addr_t espaddr,
               void *dma_opaque, qemu_irq irq, qemu_irq *reset)
{
    ESPState *s;
    int esp_io_memory;

    s = qemu_mallocz(sizeof(ESPState));
    if (!s)
        return NULL;

    s->irq = irq;
    s->dma_opaque = dma_opaque;

    esp_io_memory = cpu_register_io_memory(0, esp_mem_read, esp_mem_write, s);
    cpu_register_physical_memory(espaddr, ESP_SIZE, esp_io_memory);

    esp_reset(s);

    register_savevm("esp", espaddr, 3, esp_save, esp_load, s);
    qemu_register_reset(esp_reset, s);

    *reset = *qemu_allocate_irqs(parent_esp_reset, s, 1);

    return s;
}
Commit	Line	Data
6f7e9aec	1	/*
67e999be	2	* QEMU ESP/NCR53C9x emulation
5fafdf24	3	*
4e9aec74	4	* Copyright (c) 2005-2006 Fabrice Bellard
5fafdf24	5	*
6f7e9aec FB	6	* Permission is hereby granted, free of charge, to any person obtaining a copy
	7	* of this software and associated documentation files (the "Software"), to deal
	8	* in the Software without restriction, including without limitation the rights
	9	* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
	10	* copies of the Software, and to permit persons to whom the Software is
	11	* furnished to do so, subject to the following conditions:
	12	*
	13	* The above copyright notice and this permission notice shall be included in
	14	* all copies or substantial portions of the Software.
	15	*
	16	* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
	17	* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
	18	* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
	19	* THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
	20	* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
	21	* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
	22	* THE SOFTWARE.
	23	*/
87ecb68b PB	24	#include "hw.h"
	25	#include "block.h"
	26	#include "scsi-disk.h"
	27	#include "sun4m.h"
	28	/* FIXME: Only needed for MAX_DISKS, which is probably wrong. */
	29	#include "sysemu.h"
6f7e9aec FB	30
6f7e9aec FB	31	/* debug ESP card */
2f275b8f	32	//#define DEBUG_ESP
6f7e9aec	33
67e999be	34	/*
5ad6bb97 BS	35	* On Sparc32, this is the ESP (NCR53C90) part of chip STP2000 (Master I/O),
5ad6bb97 BS	36	* also produced as NCR89C100. See
67e999be FB	37	* http://www.ibiblio.org/pub/historic-linux/early-ports/Sparc/NCR/NCR89C100.txt
	38	* and
	39	* http://www.ibiblio.org/pub/historic-linux/early-ports/Sparc/NCR/NCR53C9X.txt
	40	*/
	41
6f7e9aec FB	42	#ifdef DEBUG_ESP
	43	#define DPRINTF(fmt, args...) \
	44	do { printf("ESP: " fmt , ##args); } while (0)
	45	#else
	46	#define DPRINTF(fmt, args...)
	47	#endif
	48
5aca8c3b BS	49	#define ESP_MASK 0x3f
	50	#define ESP_REGS 16
	51	#define ESP_SIZE (ESP_REGS * 4)
2e5d83bb	52	#define TI_BUFSZ 32
67e999be	53
4e9aec74	54	typedef struct ESPState ESPState;
6f7e9aec	55
4e9aec74	56	struct ESPState {
70c0de96	57	qemu_irq irq;
5aca8c3b BS	58	uint8_t rregs[ESP_REGS];
5aca8c3b BS	59	uint8_t wregs[ESP_REGS];
67e999be	60	int32_t ti_size;
4f6200f0	61	uint32_t ti_rptr, ti_wptr;
4f6200f0	62	uint8_t ti_buf[TI_BUFSZ];
0fc5c15a	63	int sense;
4f6200f0	64	int dma;
e4bcb14c	65	SCSIDevice *scsi_dev[ESP_MAX_DEVS];
2e5d83bb	66	SCSIDevice *current_dev;
9f149aa9 PB	67	uint8_t cmdbuf[TI_BUFSZ];
	68	int cmdlen;
	69	int do_cmd;
4d611c9a	70
6787f5fa	71	/* The amount of data left in the current DMA transfer. */
4d611c9a	72	uint32_t dma_left;
6787f5fa PB	73	/* The size of the current DMA transfer. Zero if no transfer is in
	74	progress. */
	75	uint32_t dma_counter;
a917d384	76	uint8_t *async_buf;
4d611c9a	77	uint32_t async_len;
67e999be	78	void *dma_opaque;
4e9aec74	79	};
6f7e9aec	80
5ad6bb97 BS	81	#define ESP_TCLO 0x0
	82	#define ESP_TCMID 0x1
	83	#define ESP_FIFO 0x2
	84	#define ESP_CMD 0x3
	85	#define ESP_RSTAT 0x4
	86	#define ESP_WBUSID 0x4
	87	#define ESP_RINTR 0x5
	88	#define ESP_WSEL 0x5
	89	#define ESP_RSEQ 0x6
	90	#define ESP_WSYNTP 0x6
	91	#define ESP_RFLAGS 0x7
	92	#define ESP_WSYNO 0x7
	93	#define ESP_CFG1 0x8
	94	#define ESP_RRES1 0x9
	95	#define ESP_WCCF 0x9
	96	#define ESP_RRES2 0xa
	97	#define ESP_WTEST 0xa
	98	#define ESP_CFG2 0xb
	99	#define ESP_CFG3 0xc
	100	#define ESP_RES3 0xd
	101	#define ESP_TCHI 0xe
	102	#define ESP_RES4 0xf
	103
	104	#define CMD_DMA 0x80
	105	#define CMD_CMD 0x7f
	106
	107	#define CMD_NOP 0x00
	108	#define CMD_FLUSH 0x01
	109	#define CMD_RESET 0x02
	110	#define CMD_BUSRESET 0x03
	111	#define CMD_TI 0x10
	112	#define CMD_ICCS 0x11
	113	#define CMD_MSGACC 0x12
	114	#define CMD_SATN 0x1a
	115	#define CMD_SELATN 0x42
	116	#define CMD_SELATNS 0x43
	117	#define CMD_ENSEL 0x44
	118
2f275b8f FB	119	#define STAT_DO 0x00
	120	#define STAT_DI 0x01
	121	#define STAT_CD 0x02
	122	#define STAT_ST 0x03
	123	#define STAT_MI 0x06
	124	#define STAT_MO 0x07
5ad6bb97	125	#define STAT_PIO_MASK 0x06
2f275b8f FB	126
2f275b8f FB	127	#define STAT_TC 0x10
4d611c9a PB	128	#define STAT_PE 0x20
4d611c9a PB	129	#define STAT_GE 0x40
2f275b8f FB	130	#define STAT_IN 0x80
	131
	132	#define INTR_FC 0x08
	133	#define INTR_BS 0x10
	134	#define INTR_DC 0x20
9e61bde5	135	#define INTR_RST 0x80
2f275b8f FB	136
	137	#define SEQ_0 0x0
	138	#define SEQ_CD 0x4
	139
5ad6bb97 BS	140	#define CFG1_RESREPT 0x40
	141
	142	#define CFG2_MASK 0x15
	143
	144	#define TCHI_FAS100A 0x4
	145
9f149aa9	146	static int get_cmd(ESPState s, uint8_t buf)
2f275b8f	147	{
a917d384	148	uint32_t dmalen;
2f275b8f FB	149	int target;
2f275b8f FB	150
5ad6bb97 BS	151	dmalen = s->rregs[ESP_TCLO] \| (s->rregs[ESP_TCMID] << 8);
5ad6bb97 BS	152	target = s->wregs[ESP_WBUSID] & 7;
9f149aa9	153	DPRINTF("get_cmd: len %d target %d\n", dmalen, target);
4f6200f0	154	if (s->dma) {
67e999be	155	espdma_memory_read(s->dma_opaque, buf, dmalen);
4f6200f0	156	} else {
f930d07e BS	157	buf[0] = 0;
	158	memcpy(&buf[1], s->ti_buf, dmalen);
	159	dmalen++;
4f6200f0	160	}
2e5d83bb	161
2f275b8f	162	s->ti_size = 0;
4f6200f0 FB	163	s->ti_rptr = 0;
4f6200f0 FB	164	s->ti_wptr = 0;
2f275b8f	165
a917d384 PB	166	if (s->current_dev) {
a917d384 PB	167	/* Started a new command before the old one finished. Cancel it. */
8ccc2ace	168	s->current_dev->cancel_io(s->current_dev, 0);
a917d384 PB	169	s->async_len = 0;
	170	}
	171
e4bcb14c	172	if (target >= ESP_MAX_DEVS \|\| !s->scsi_dev[target]) {
2e5d83bb	173	// No such drive
5ad6bb97 BS	174	s->rregs[ESP_RSTAT] = STAT_IN;
	175	s->rregs[ESP_RINTR] = INTR_DC;
	176	s->rregs[ESP_RSEQ] = SEQ_0;
f930d07e BS	177	qemu_irq_raise(s->irq);
f930d07e BS	178	return 0;
2f275b8f	179	}
2e5d83bb	180	s->current_dev = s->scsi_dev[target];
9f149aa9 PB	181	return dmalen;
	182	}
	183
	184	static void do_cmd(ESPState s, uint8_t buf)
	185	{
	186	int32_t datalen;
	187	int lun;
	188
	189	DPRINTF("do_cmd: busid 0x%x\n", buf[0]);
	190	lun = buf[0] & 7;
8ccc2ace	191	datalen = s->current_dev->send_command(s->current_dev, 0, &buf[1], lun);
67e999be FB	192	s->ti_size = datalen;
67e999be FB	193	if (datalen != 0) {
5ad6bb97	194	s->rregs[ESP_RSTAT] = STAT_IN \| STAT_TC;
a917d384	195	s->dma_left = 0;
6787f5fa	196	s->dma_counter = 0;
2e5d83bb	197	if (datalen > 0) {
5ad6bb97	198	s->rregs[ESP_RSTAT] \|= STAT_DI;
8ccc2ace	199	s->current_dev->read_data(s->current_dev, 0);
2e5d83bb	200	} else {
5ad6bb97	201	s->rregs[ESP_RSTAT] \|= STAT_DO;
8ccc2ace	202	s->current_dev->write_data(s->current_dev, 0);
b9788fc4	203	}
2f275b8f	204	}
5ad6bb97 BS	205	s->rregs[ESP_RINTR] = INTR_BS \| INTR_FC;
5ad6bb97 BS	206	s->rregs[ESP_RSEQ] = SEQ_CD;
70c0de96	207	qemu_irq_raise(s->irq);
2f275b8f FB	208	}
2f275b8f FB	209
9f149aa9 PB	210	static void handle_satn(ESPState *s)
	211	{
	212	uint8_t buf[32];
	213	int len;
	214
	215	len = get_cmd(s, buf);
	216	if (len)
	217	do_cmd(s, buf);
	218	}
	219
	220	static void handle_satn_stop(ESPState *s)
	221	{
	222	s->cmdlen = get_cmd(s, s->cmdbuf);
	223	if (s->cmdlen) {
	224	DPRINTF("Set ATN & Stop: cmdlen %d\n", s->cmdlen);
	225	s->do_cmd = 1;
5ad6bb97 BS	226	s->rregs[ESP_RSTAT] = STAT_IN \| STAT_TC \| STAT_CD;
	227	s->rregs[ESP_RINTR] = INTR_BS \| INTR_FC;
	228	s->rregs[ESP_RSEQ] = SEQ_CD;
70c0de96	229	qemu_irq_raise(s->irq);
9f149aa9 PB	230	}
	231	}
	232
0fc5c15a	233	static void write_response(ESPState *s)
2f275b8f	234	{
0fc5c15a PB	235	DPRINTF("Transfer status (sense=%d)\n", s->sense);
	236	s->ti_buf[0] = s->sense;
	237	s->ti_buf[1] = 0;
4f6200f0	238	if (s->dma) {
67e999be	239	espdma_memory_write(s->dma_opaque, s->ti_buf, 2);
5ad6bb97 BS	240	s->rregs[ESP_RSTAT] = STAT_IN \| STAT_TC \| STAT_ST;
	241	s->rregs[ESP_RINTR] = INTR_BS \| INTR_FC;
	242	s->rregs[ESP_RSEQ] = SEQ_CD;
4f6200f0	243	} else {
f930d07e BS	244	s->ti_size = 2;
	245	s->ti_rptr = 0;
	246	s->ti_wptr = 0;
5ad6bb97	247	s->rregs[ESP_RFLAGS] = 2;
4f6200f0	248	}
70c0de96	249	qemu_irq_raise(s->irq);
2f275b8f	250	}
4f6200f0	251
a917d384 PB	252	static void esp_dma_done(ESPState *s)
a917d384 PB	253	{
5ad6bb97 BS	254	s->rregs[ESP_RSTAT] \|= STAT_IN \| STAT_TC;
	255	s->rregs[ESP_RINTR] = INTR_BS;
	256	s->rregs[ESP_RSEQ] = 0;
	257	s->rregs[ESP_RFLAGS] = 0;
	258	s->rregs[ESP_TCLO] = 0;
	259	s->rregs[ESP_TCMID] = 0;
70c0de96	260	qemu_irq_raise(s->irq);
a917d384 PB	261	}
a917d384 PB	262
4d611c9a PB	263	static void esp_do_dma(ESPState *s)
4d611c9a PB	264	{
67e999be	265	uint32_t len;
4d611c9a	266	int to_device;
a917d384	267
67e999be	268	to_device = (s->ti_size < 0);
a917d384	269	len = s->dma_left;
4d611c9a	270	if (s->do_cmd) {
4d611c9a	271	DPRINTF("command len %d + %d\n", s->cmdlen, len);
67e999be	272	espdma_memory_read(s->dma_opaque, &s->cmdbuf[s->cmdlen], len);
4d611c9a PB	273	s->ti_size = 0;
	274	s->cmdlen = 0;
	275	s->do_cmd = 0;
	276	do_cmd(s, s->cmdbuf);
	277	return;
a917d384 PB	278	}
	279	if (s->async_len == 0) {
	280	/* Defer until data is available. */
	281	return;
	282	}
	283	if (len > s->async_len) {
	284	len = s->async_len;
	285	}
	286	if (to_device) {
67e999be	287	espdma_memory_read(s->dma_opaque, s->async_buf, len);
4d611c9a	288	} else {
67e999be	289	espdma_memory_write(s->dma_opaque, s->async_buf, len);
a917d384	290	}
a917d384 PB	291	s->dma_left -= len;
	292	s->async_buf += len;
	293	s->async_len -= len;
6787f5fa PB	294	if (to_device)
	295	s->ti_size += len;
	296	else
	297	s->ti_size -= len;
a917d384	298	if (s->async_len == 0) {
4d611c9a	299	if (to_device) {
67e999be	300	// ti_size is negative
8ccc2ace	301	s->current_dev->write_data(s->current_dev, 0);
4d611c9a	302	} else {
8ccc2ace	303	s->current_dev->read_data(s->current_dev, 0);
6787f5fa PB	304	/* If there is still data to be read from the device then
	305	complete the DMA operation immeriately. Otherwise defer
	306	until the scsi layer has completed. */
	307	if (s->dma_left == 0 && s->ti_size > 0) {
	308	esp_dma_done(s);
	309	}
4d611c9a	310	}
6787f5fa PB	311	} else {
6787f5fa PB	312	/* Partially filled a scsi buffer. Complete immediately. */
a917d384 PB	313	esp_dma_done(s);
a917d384 PB	314	}
4d611c9a PB	315	}
4d611c9a PB	316
a917d384 PB	317	static void esp_command_complete(void *opaque, int reason, uint32_t tag,
a917d384 PB	318	uint32_t arg)
2e5d83bb PB	319	{
	320	ESPState s = (ESPState )opaque;
	321
4d611c9a PB	322	if (reason == SCSI_REASON_DONE) {
	323	DPRINTF("SCSI Command complete\n");
	324	if (s->ti_size != 0)
	325	DPRINTF("SCSI command completed unexpectedly\n");
	326	s->ti_size = 0;
a917d384 PB	327	s->dma_left = 0;
	328	s->async_len = 0;
	329	if (arg)
4d611c9a	330	DPRINTF("Command failed\n");
a917d384	331	s->sense = arg;
5ad6bb97	332	s->rregs[ESP_RSTAT] = STAT_ST;
a917d384 PB	333	esp_dma_done(s);
a917d384 PB	334	s->current_dev = NULL;
4d611c9a PB	335	} else {
4d611c9a PB	336	DPRINTF("transfer %d/%d\n", s->dma_left, s->ti_size);
a917d384	337	s->async_len = arg;
8ccc2ace	338	s->async_buf = s->current_dev->get_buf(s->current_dev, 0);
6787f5fa	339	if (s->dma_left) {
a917d384	340	esp_do_dma(s);
6787f5fa PB	341	} else if (s->dma_counter != 0 && s->ti_size <= 0) {
	342	/* If this was the last part of a DMA transfer then the
	343	completion interrupt is deferred to here. */
	344	esp_dma_done(s);
	345	}
4d611c9a	346	}
2e5d83bb PB	347	}
2e5d83bb PB	348
2f275b8f FB	349	static void handle_ti(ESPState *s)
2f275b8f FB	350	{
4d611c9a	351	uint32_t dmalen, minlen;
2f275b8f	352
5ad6bb97	353	dmalen = s->rregs[ESP_TCLO] \| (s->rregs[ESP_TCMID] << 8);
db59203d PB	354	if (dmalen==0) {
	355	dmalen=0x10000;
	356	}
6787f5fa	357	s->dma_counter = dmalen;
db59203d	358
9f149aa9 PB	359	if (s->do_cmd)
9f149aa9 PB	360	minlen = (dmalen < 32) ? dmalen : 32;
67e999be FB	361	else if (s->ti_size < 0)
67e999be FB	362	minlen = (dmalen < -s->ti_size) ? dmalen : -s->ti_size;
9f149aa9 PB	363	else
9f149aa9 PB	364	minlen = (dmalen < s->ti_size) ? dmalen : s->ti_size;
db59203d	365	DPRINTF("Transfer Information len %d\n", minlen);
4f6200f0	366	if (s->dma) {
4d611c9a	367	s->dma_left = minlen;
5ad6bb97	368	s->rregs[ESP_RSTAT] &= ~STAT_TC;
4d611c9a	369	esp_do_dma(s);
9f149aa9 PB	370	} else if (s->do_cmd) {
	371	DPRINTF("command len %d\n", s->cmdlen);
	372	s->ti_size = 0;
	373	s->cmdlen = 0;
	374	s->do_cmd = 0;
	375	do_cmd(s, s->cmdbuf);
	376	return;
	377	}
2f275b8f FB	378	}
2f275b8f FB	379
5aca8c3b	380	static void esp_reset(void *opaque)
6f7e9aec FB	381	{
6f7e9aec FB	382	ESPState *s = opaque;
67e999be	383
5aca8c3b BS	384	memset(s->rregs, 0, ESP_REGS);
5aca8c3b BS	385	memset(s->wregs, 0, ESP_REGS);
5ad6bb97	386	s->rregs[ESP_TCHI] = TCHI_FAS100A; // Indicate fas100a
4e9aec74 PB	387	s->ti_size = 0;
	388	s->ti_rptr = 0;
	389	s->ti_wptr = 0;
4e9aec74	390	s->dma = 0;
9f149aa9	391	s->do_cmd = 0;
6f7e9aec FB	392	}
6f7e9aec FB	393
2d069bab BS	394	static void parent_esp_reset(void *opaque, int irq, int level)
	395	{
	396	if (level)
	397	esp_reset(opaque);
	398	}
	399
6f7e9aec FB	400	static uint32_t esp_mem_readb(void *opaque, target_phys_addr_t addr)
	401	{
	402	ESPState *s = opaque;
	403	uint32_t saddr;
	404
5aca8c3b	405	saddr = (addr & ESP_MASK) >> 2;
9e61bde5	406	DPRINTF("read reg[%d]: 0x%2.2x\n", saddr, s->rregs[saddr]);
6f7e9aec	407	switch (saddr) {
5ad6bb97	408	case ESP_FIFO:
f930d07e BS	409	if (s->ti_size > 0) {
f930d07e BS	410	s->ti_size--;
5ad6bb97	411	if ((s->rregs[ESP_RSTAT] & STAT_PIO_MASK) == 0) {
2e5d83bb	412	/* Data in/out. */
a917d384	413	fprintf(stderr, "esp: PIO data read not implemented\n");
5ad6bb97	414	s->rregs[ESP_FIFO] = 0;
2e5d83bb	415	} else {
5ad6bb97	416	s->rregs[ESP_FIFO] = s->ti_buf[s->ti_rptr++];
2e5d83bb	417	}
70c0de96	418	qemu_irq_raise(s->irq);
f930d07e BS	419	}
f930d07e BS	420	if (s->ti_size == 0) {
4f6200f0 FB	421	s->ti_rptr = 0;
	422	s->ti_wptr = 0;
	423	}
f930d07e	424	break;
5ad6bb97	425	case ESP_RINTR:
4d611c9a	426	// Clear interrupt/error status bits
5ad6bb97	427	s->rregs[ESP_RSTAT] &= ~(STAT_IN \| STAT_GE \| STAT_PE);
f930d07e	428	qemu_irq_lower(s->irq);
9e61bde5	429	break;
6f7e9aec	430	default:
f930d07e	431	break;
6f7e9aec	432	}
2f275b8f	433	return s->rregs[saddr];
6f7e9aec FB	434	}
	435
	436	static void esp_mem_writeb(void *opaque, target_phys_addr_t addr, uint32_t val)
	437	{
	438	ESPState *s = opaque;
	439	uint32_t saddr;
	440
5aca8c3b	441	saddr = (addr & ESP_MASK) >> 2;
5ad6bb97 BS	442	DPRINTF("write reg[%d]: 0x%2.2x -> 0x%2.2x\n", saddr, s->wregs[saddr],
5ad6bb97 BS	443	val);
6f7e9aec	444	switch (saddr) {
5ad6bb97 BS	445	case ESP_TCLO:
	446	case ESP_TCMID:
	447	s->rregs[ESP_RSTAT] &= ~STAT_TC;
4f6200f0	448	break;
5ad6bb97	449	case ESP_FIFO:
9f149aa9 PB	450	if (s->do_cmd) {
9f149aa9 PB	451	s->cmdbuf[s->cmdlen++] = val & 0xff;
5ad6bb97	452	} else if ((s->rregs[ESP_RSTAT] & STAT_PIO_MASK) == 0) {
2e5d83bb PB	453	uint8_t buf;
	454	buf = val & 0xff;
	455	s->ti_size--;
a917d384	456	fprintf(stderr, "esp: PIO data write not implemented\n");
2e5d83bb PB	457	} else {
	458	s->ti_size++;
	459	s->ti_buf[s->ti_wptr++] = val & 0xff;
	460	}
f930d07e	461	break;
5ad6bb97	462	case ESP_CMD:
4f6200f0	463	s->rregs[saddr] = val;
5ad6bb97	464	if (val & CMD_DMA) {
f930d07e	465	s->dma = 1;
6787f5fa	466	/* Reload DMA counter. */
5ad6bb97 BS	467	s->rregs[ESP_TCLO] = s->wregs[ESP_TCLO];
5ad6bb97 BS	468	s->rregs[ESP_TCMID] = s->wregs[ESP_TCMID];
f930d07e BS	469	} else {
	470	s->dma = 0;
	471	}
5ad6bb97 BS	472	switch(val & CMD_CMD) {
5ad6bb97 BS	473	case CMD_NOP:
f930d07e BS	474	DPRINTF("NOP (%2.2x)\n", val);
f930d07e BS	475	break;
5ad6bb97	476	case CMD_FLUSH:
f930d07e	477	DPRINTF("Flush FIFO (%2.2x)\n", val);
9e61bde5	478	//s->ti_size = 0;
5ad6bb97 BS	479	s->rregs[ESP_RINTR] = INTR_FC;
5ad6bb97 BS	480	s->rregs[ESP_RSEQ] = 0;
f930d07e	481	break;
5ad6bb97	482	case CMD_RESET:
f930d07e BS	483	DPRINTF("Chip reset (%2.2x)\n", val);
	484	esp_reset(s);
	485	break;
5ad6bb97	486	case CMD_BUSRESET:
f930d07e	487	DPRINTF("Bus reset (%2.2x)\n", val);
5ad6bb97 BS	488	s->rregs[ESP_RINTR] = INTR_RST;
5ad6bb97 BS	489	if (!(s->wregs[ESP_CFG1] & CFG1_RESREPT)) {
70c0de96	490	qemu_irq_raise(s->irq);
9e61bde5	491	}
f930d07e	492	break;
5ad6bb97	493	case CMD_TI:
f930d07e BS	494	handle_ti(s);
f930d07e BS	495	break;
5ad6bb97	496	case CMD_ICCS:
f930d07e BS	497	DPRINTF("Initiator Command Complete Sequence (%2.2x)\n", val);
	498	write_response(s);
	499	break;
5ad6bb97	500	case CMD_MSGACC:
f930d07e BS	501	DPRINTF("Message Accepted (%2.2x)\n", val);
f930d07e BS	502	write_response(s);
5ad6bb97 BS	503	s->rregs[ESP_RINTR] = INTR_DC;
5ad6bb97 BS	504	s->rregs[ESP_RSEQ] = 0;
f930d07e	505	break;
5ad6bb97	506	case CMD_SATN:
f930d07e BS	507	DPRINTF("Set ATN (%2.2x)\n", val);
f930d07e BS	508	break;
5ad6bb97	509	case CMD_SELATN:
f930d07e BS	510	DPRINTF("Set ATN (%2.2x)\n", val);
	511	handle_satn(s);
	512	break;
5ad6bb97	513	case CMD_SELATNS:
f930d07e BS	514	DPRINTF("Set ATN & stop (%2.2x)\n", val);
	515	handle_satn_stop(s);
	516	break;
5ad6bb97	517	case CMD_ENSEL:
74ec6048 BS	518	DPRINTF("Enable selection (%2.2x)\n", val);
74ec6048 BS	519	break;
f930d07e BS	520	default:
	521	DPRINTF("Unhandled ESP command (%2.2x)\n", val);
	522	break;
	523	}
	524	break;
5ad6bb97	525	case ESP_WBUSID ... ESP_WSYNO:
f930d07e	526	break;
5ad6bb97	527	case ESP_CFG1:
4f6200f0 FB	528	s->rregs[saddr] = val;
4f6200f0 FB	529	break;
5ad6bb97	530	case ESP_WCCF ... ESP_WTEST:
4f6200f0	531	break;
5ad6bb97 BS	532	case ESP_CFG2:
5ad6bb97 BS	533	s->rregs[saddr] = val & CFG2_MASK;
9e61bde5	534	break;
5ad6bb97	535	case ESP_CFG3 ... ESP_RES4:
4f6200f0 FB	536	s->rregs[saddr] = val;
4f6200f0 FB	537	break;
6f7e9aec	538	default:
f930d07e	539	break;
6f7e9aec	540	}
2f275b8f	541	s->wregs[saddr] = val;
6f7e9aec FB	542	}
	543
	544	static CPUReadMemoryFunc *esp_mem_read[3] = {
	545	esp_mem_readb,
	546	esp_mem_readb,
	547	esp_mem_readb,
	548	};
	549
	550	static CPUWriteMemoryFunc *esp_mem_write[3] = {
	551	esp_mem_writeb,
	552	esp_mem_writeb,
	553	esp_mem_writeb,
	554	};
	555
6f7e9aec FB	556	static void esp_save(QEMUFile f, void opaque)
	557	{
	558	ESPState *s = opaque;
2f275b8f	559
5aca8c3b BS	560	qemu_put_buffer(f, s->rregs, ESP_REGS);
5aca8c3b BS	561	qemu_put_buffer(f, s->wregs, ESP_REGS);
4f6200f0 FB	562	qemu_put_be32s(f, &s->ti_size);
	563	qemu_put_be32s(f, &s->ti_rptr);
	564	qemu_put_be32s(f, &s->ti_wptr);
4f6200f0	565	qemu_put_buffer(f, s->ti_buf, TI_BUFSZ);
5425a216	566	qemu_put_be32s(f, &s->sense);
4f6200f0	567	qemu_put_be32s(f, &s->dma);
5425a216 BS	568	qemu_put_buffer(f, s->cmdbuf, TI_BUFSZ);
	569	qemu_put_be32s(f, &s->cmdlen);
	570	qemu_put_be32s(f, &s->do_cmd);
	571	qemu_put_be32s(f, &s->dma_left);
	572	// There should be no transfers in progress, so dma_counter is not saved
6f7e9aec FB	573	}
	574
	575	static int esp_load(QEMUFile f, void opaque, int version_id)
	576	{
	577	ESPState *s = opaque;
3b46e624	578
5425a216 BS	579	if (version_id != 3)
5425a216 BS	580	return -EINVAL; // Cannot emulate 2
6f7e9aec	581
5aca8c3b BS	582	qemu_get_buffer(f, s->rregs, ESP_REGS);
5aca8c3b BS	583	qemu_get_buffer(f, s->wregs, ESP_REGS);
4f6200f0 FB	584	qemu_get_be32s(f, &s->ti_size);
	585	qemu_get_be32s(f, &s->ti_rptr);
	586	qemu_get_be32s(f, &s->ti_wptr);
4f6200f0	587	qemu_get_buffer(f, s->ti_buf, TI_BUFSZ);
5425a216	588	qemu_get_be32s(f, &s->sense);
4f6200f0	589	qemu_get_be32s(f, &s->dma);
5425a216 BS	590	qemu_get_buffer(f, s->cmdbuf, TI_BUFSZ);
	591	qemu_get_be32s(f, &s->cmdlen);
	592	qemu_get_be32s(f, &s->do_cmd);
	593	qemu_get_be32s(f, &s->dma_left);
2f275b8f	594
6f7e9aec FB	595	return 0;
	596	}
	597
fa1fb14c TS	598	void esp_scsi_attach(void opaque, BlockDriverState bd, int id)
	599	{
	600	ESPState s = (ESPState )opaque;
	601
	602	if (id < 0) {
	603	for (id = 0; id < ESP_MAX_DEVS; id++) {
	604	if (s->scsi_dev[id] == NULL)
	605	break;
	606	}
	607	}
	608	if (id >= ESP_MAX_DEVS) {
	609	DPRINTF("Bad Device ID %d\n", id);
	610	return;
	611	}
	612	if (s->scsi_dev[id]) {
	613	DPRINTF("Destroying device %d\n", id);
8ccc2ace	614	s->scsi_dev[id]->destroy(s->scsi_dev[id]);
fa1fb14c TS	615	}
	616	DPRINTF("Attaching block device %d\n", id);
	617	/* Command queueing is not implemented. */
985a03b0 TS	618	s->scsi_dev[id] = scsi_generic_init(bd, 0, esp_command_complete, s);
	619	if (s->scsi_dev[id] == NULL)
	620	s->scsi_dev[id] = scsi_disk_init(bd, 0, esp_command_complete, s);
fa1fb14c TS	621	}
fa1fb14c TS	622
e4bcb14c	623	void *esp_init(target_phys_addr_t espaddr,
2d069bab	624	void dma_opaque, qemu_irq irq, qemu_irq reset)
6f7e9aec FB	625	{
6f7e9aec FB	626	ESPState *s;
67e999be	627	int esp_io_memory;
6f7e9aec FB	628
	629	s = qemu_mallocz(sizeof(ESPState));
	630	if (!s)
67e999be	631	return NULL;
6f7e9aec	632
70c0de96	633	s->irq = irq;
67e999be	634	s->dma_opaque = dma_opaque;
6f7e9aec FB	635
6f7e9aec FB	636	esp_io_memory = cpu_register_io_memory(0, esp_mem_read, esp_mem_write, s);
5aca8c3b	637	cpu_register_physical_memory(espaddr, ESP_SIZE, esp_io_memory);
6f7e9aec	638
6f7e9aec FB	639	esp_reset(s);
6f7e9aec FB	640
5425a216	641	register_savevm("esp", espaddr, 3, esp_save, esp_load, s);
6f7e9aec	642	qemu_register_reset(esp_reset, s);
6f7e9aec	643
2d069bab BS	644	reset = qemu_allocate_irqs(parent_esp_reset, s, 1);
2d069bab BS	645
67e999be FB	646	return s;
67e999be FB	647	}