]> git.proxmox.com Git - qemu.git/blame - hw/ide.c
projects / qemu.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
ide identify fix (initial patch by Jens Axboe)
[qemu.git] / hw / ide.c
CommitLineData
5391d806
FB		 1/*
2 * QEMU IDE disk and CD-ROM Emulator
3 *
4 * Copyright (c) 2003 Fabrice Bellard
5 *
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
12 *
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
15 *
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
22 * THE SOFTWARE.
23 */
24#include <stdlib.h>
25#include <stdio.h>
26#include <stdarg.h>
27#include <string.h>
28#include <getopt.h>
29#include <inttypes.h>
30#include <unistd.h>
31#include <sys/mman.h>
32#include <fcntl.h>
33#include <signal.h>
34#include <time.h>
35#include <sys/time.h>
36#include <malloc.h>
37#include <termios.h>
38#include <sys/poll.h>
39#include <errno.h>
40#include <sys/wait.h>
41#include <netinet/in.h>
42
6b136f9e
FB		 43#define NO_THUNK_TYPE_SIZE
44#include "thunk.h"
45
5391d806
FB		 46#include "cpu.h"
47#include "exec-all.h"
48
49#include "vl.h"
50
5391d806
FB		 51/* debug IDE devices */
52//#define DEBUG_IDE
53//#define DEBUG_IDE_ATAPI
54
55/* Bits of HD_STATUS */
56#define ERR_STAT 0x01
57#define INDEX_STAT 0x02
58#define ECC_STAT 0x04 /* Corrected error */
59#define DRQ_STAT 0x08
60#define SEEK_STAT 0x10
61#define SRV_STAT 0x10
62#define WRERR_STAT 0x20
63#define READY_STAT 0x40
64#define BUSY_STAT 0x80
65
66/* Bits for HD_ERROR */
67#define MARK_ERR 0x01 /* Bad address mark */
68#define TRK0_ERR 0x02 /* couldn't find track 0 */
69#define ABRT_ERR 0x04 /* Command aborted */
70#define MCR_ERR 0x08 /* media change request */
71#define ID_ERR 0x10 /* ID field not found */
72#define MC_ERR 0x20 /* media changed */
73#define ECC_ERR 0x40 /* Uncorrectable ECC error */
74#define BBD_ERR 0x80 /* pre-EIDE meaning: block marked bad */
75#define ICRC_ERR 0x80 /* new meaning: CRC error during transfer */
76
77/* Bits of HD_NSECTOR */
78#define CD 0x01
79#define IO 0x02
80#define REL 0x04
81#define TAG_MASK 0xf8
82
83#define IDE_CMD_RESET 0x04
84#define IDE_CMD_DISABLE_IRQ 0x02
85
86/* ATA/ATAPI Commands pre T13 Spec */
87#define WIN_NOP 0x00
88/*
89 * 0x01->0x02 Reserved
90 */
91#define CFA_REQ_EXT_ERROR_CODE 0x03 /* CFA Request Extended Error Code */
92/*
93 * 0x04->0x07 Reserved
94 */
95#define WIN_SRST 0x08 /* ATAPI soft reset command */
96#define WIN_DEVICE_RESET 0x08
97/*
98 * 0x09->0x0F Reserved
99 */
100#define WIN_RECAL 0x10
101#define WIN_RESTORE WIN_RECAL
102/*
103 * 0x10->0x1F Reserved
104 */
105#define WIN_READ 0x20 /* 28-Bit */
106#define WIN_READ_ONCE 0x21 /* 28-Bit without retries */
107#define WIN_READ_LONG 0x22 /* 28-Bit */
108#define WIN_READ_LONG_ONCE 0x23 /* 28-Bit without retries */
109#define WIN_READ_EXT 0x24 /* 48-Bit */
110#define WIN_READDMA_EXT 0x25 /* 48-Bit */
111#define WIN_READDMA_QUEUED_EXT 0x26 /* 48-Bit */
112#define WIN_READ_NATIVE_MAX_EXT 0x27 /* 48-Bit */
113/*
114 * 0x28
115 */
116#define WIN_MULTREAD_EXT 0x29 /* 48-Bit */
117/*
118 * 0x2A->0x2F Reserved
119 */
120#define WIN_WRITE 0x30 /* 28-Bit */
121#define WIN_WRITE_ONCE 0x31 /* 28-Bit without retries */
122#define WIN_WRITE_LONG 0x32 /* 28-Bit */
123#define WIN_WRITE_LONG_ONCE 0x33 /* 28-Bit without retries */
124#define WIN_WRITE_EXT 0x34 /* 48-Bit */
125#define WIN_WRITEDMA_EXT 0x35 /* 48-Bit */
126#define WIN_WRITEDMA_QUEUED_EXT 0x36 /* 48-Bit */
127#define WIN_SET_MAX_EXT 0x37 /* 48-Bit */
128#define CFA_WRITE_SECT_WO_ERASE 0x38 /* CFA Write Sectors without erase */
129#define WIN_MULTWRITE_EXT 0x39 /* 48-Bit */
130/*
131 * 0x3A->0x3B Reserved
132 */
133#define WIN_WRITE_VERIFY 0x3C /* 28-Bit */
134/*
135 * 0x3D->0x3F Reserved
136 */
137#define WIN_VERIFY 0x40 /* 28-Bit - Read Verify Sectors */
138#define WIN_VERIFY_ONCE 0x41 /* 28-Bit - without retries */
139#define WIN_VERIFY_EXT 0x42 /* 48-Bit */
140/*
141 * 0x43->0x4F Reserved
142 */
143#define WIN_FORMAT 0x50
144/*
145 * 0x51->0x5F Reserved
146 */
147#define WIN_INIT 0x60
148/*
149 * 0x61->0x5F Reserved
150 */
151#define WIN_SEEK 0x70 /* 0x70-0x7F Reserved */
152#define CFA_TRANSLATE_SECTOR 0x87 /* CFA Translate Sector */
153#define WIN_DIAGNOSE 0x90
154#define WIN_SPECIFY 0x91 /* set drive geometry translation */
155#define WIN_DOWNLOAD_MICROCODE 0x92
156#define WIN_STANDBYNOW2 0x94
157#define WIN_STANDBY2 0x96
158#define WIN_SETIDLE2 0x97
159#define WIN_CHECKPOWERMODE2 0x98
160#define WIN_SLEEPNOW2 0x99
161/*
162 * 0x9A VENDOR
163 */
164#define WIN_PACKETCMD 0xA0 /* Send a packet command. */
165#define WIN_PIDENTIFY 0xA1 /* identify ATAPI device */
166#define WIN_QUEUED_SERVICE 0xA2
167#define WIN_SMART 0xB0 /* self-monitoring and reporting */
168#define CFA_ERASE_SECTORS 0xC0
169#define WIN_MULTREAD 0xC4 /* read sectors using multiple mode*/
170#define WIN_MULTWRITE 0xC5 /* write sectors using multiple mode */
171#define WIN_SETMULT 0xC6 /* enable/disable multiple mode */
172#define WIN_READDMA_QUEUED 0xC7 /* read sectors using Queued DMA transfers */
173#define WIN_READDMA 0xC8 /* read sectors using DMA transfers */
174#define WIN_READDMA_ONCE 0xC9 /* 28-Bit - without retries */
175#define WIN_WRITEDMA 0xCA /* write sectors using DMA transfers */
176#define WIN_WRITEDMA_ONCE 0xCB /* 28-Bit - without retries */
177#define WIN_WRITEDMA_QUEUED 0xCC /* write sectors using Queued DMA transfers */
178#define CFA_WRITE_MULTI_WO_ERASE 0xCD /* CFA Write multiple without erase */
179#define WIN_GETMEDIASTATUS 0xDA
180#define WIN_ACKMEDIACHANGE 0xDB /* ATA-1, ATA-2 vendor */
181#define WIN_POSTBOOT 0xDC
182#define WIN_PREBOOT 0xDD
183#define WIN_DOORLOCK 0xDE /* lock door on removable drives */
184#define WIN_DOORUNLOCK 0xDF /* unlock door on removable drives */
185#define WIN_STANDBYNOW1 0xE0
186#define WIN_IDLEIMMEDIATE 0xE1 /* force drive to become "ready" */
187#define WIN_STANDBY 0xE2 /* Set device in Standby Mode */
188#define WIN_SETIDLE1 0xE3
189#define WIN_READ_BUFFER 0xE4 /* force read only 1 sector */
190#define WIN_CHECKPOWERMODE1 0xE5
191#define WIN_SLEEPNOW1 0xE6
192#define WIN_FLUSH_CACHE 0xE7
193#define WIN_WRITE_BUFFER 0xE8 /* force write only 1 sector */
194#define WIN_WRITE_SAME 0xE9 /* read ata-2 to use */
195 /* SET_FEATURES 0x22 or 0xDD */
196#define WIN_FLUSH_CACHE_EXT 0xEA /* 48-Bit */
197#define WIN_IDENTIFY 0xEC /* ask drive to identify itself */
198#define WIN_MEDIAEJECT 0xED
199#define WIN_IDENTIFY_DMA 0xEE /* same as WIN_IDENTIFY, but DMA */
200#define WIN_SETFEATURES 0xEF /* set special drive features */
201#define EXABYTE_ENABLE_NEST 0xF0
202#define WIN_SECURITY_SET_PASS 0xF1
203#define WIN_SECURITY_UNLOCK 0xF2
204#define WIN_SECURITY_ERASE_PREPARE 0xF3
205#define WIN_SECURITY_ERASE_UNIT 0xF4
206#define WIN_SECURITY_FREEZE_LOCK 0xF5
207#define WIN_SECURITY_DISABLE 0xF6
208#define WIN_READ_NATIVE_MAX 0xF8 /* return the native maximum address */
209#define WIN_SET_MAX 0xF9
210#define DISABLE_SEAGATE 0xFB
211
212/* set to 1 set disable mult support */
213#define MAX_MULT_SECTORS 8
214
215/* ATAPI defines */
216
217#define ATAPI_PACKET_SIZE 12
218
219/* The generic packet command opcodes for CD/DVD Logical Units,
220 * From Table 57 of the SFF8090 Ver. 3 (Mt. Fuji) draft standard. */
221#define GPCMD_BLANK 0xa1
222#define GPCMD_CLOSE_TRACK 0x5b
223#define GPCMD_FLUSH_CACHE 0x35
224#define GPCMD_FORMAT_UNIT 0x04
225#define GPCMD_GET_CONFIGURATION 0x46
226#define GPCMD_GET_EVENT_STATUS_NOTIFICATION 0x4a
227#define GPCMD_GET_PERFORMANCE 0xac
228#define GPCMD_INQUIRY 0x12
229#define GPCMD_LOAD_UNLOAD 0xa6
230#define GPCMD_MECHANISM_STATUS 0xbd
231#define GPCMD_MODE_SELECT_10 0x55
232#define GPCMD_MODE_SENSE_10 0x5a
233#define GPCMD_PAUSE_RESUME 0x4b
234#define GPCMD_PLAY_AUDIO_10 0x45
235#define GPCMD_PLAY_AUDIO_MSF 0x47
236#define GPCMD_PLAY_AUDIO_TI 0x48
237#define GPCMD_PLAY_CD 0xbc
238#define GPCMD_PREVENT_ALLOW_MEDIUM_REMOVAL 0x1e
239#define GPCMD_READ_10 0x28
240#define GPCMD_READ_12 0xa8
241#define GPCMD_READ_CDVD_CAPACITY 0x25
242#define GPCMD_READ_CD 0xbe
243#define GPCMD_READ_CD_MSF 0xb9
244#define GPCMD_READ_DISC_INFO 0x51
245#define GPCMD_READ_DVD_STRUCTURE 0xad
246#define GPCMD_READ_FORMAT_CAPACITIES 0x23
247#define GPCMD_READ_HEADER 0x44
248#define GPCMD_READ_TRACK_RZONE_INFO 0x52
249#define GPCMD_READ_SUBCHANNEL 0x42
250#define GPCMD_READ_TOC_PMA_ATIP 0x43
251#define GPCMD_REPAIR_RZONE_TRACK 0x58
252#define GPCMD_REPORT_KEY 0xa4
253#define GPCMD_REQUEST_SENSE 0x03
254#define GPCMD_RESERVE_RZONE_TRACK 0x53
255#define GPCMD_SCAN 0xba
256#define GPCMD_SEEK 0x2b
257#define GPCMD_SEND_DVD_STRUCTURE 0xad
258#define GPCMD_SEND_EVENT 0xa2
259#define GPCMD_SEND_KEY 0xa3
260#define GPCMD_SEND_OPC 0x54
261#define GPCMD_SET_READ_AHEAD 0xa7
262#define GPCMD_SET_STREAMING 0xb6
263#define GPCMD_START_STOP_UNIT 0x1b
264#define GPCMD_STOP_PLAY_SCAN 0x4e
265#define GPCMD_TEST_UNIT_READY 0x00
266#define GPCMD_VERIFY_10 0x2f
267#define GPCMD_WRITE_10 0x2a
268#define GPCMD_WRITE_AND_VERIFY_10 0x2e
269/* This is listed as optional in ATAPI 2.6, but is (curiously)
270 * missing from Mt. Fuji, Table 57. It _is_ mentioned in Mt. Fuji
271 * Table 377 as an MMC command for SCSi devices though... Most ATAPI
272 * drives support it. */
273#define GPCMD_SET_SPEED 0xbb
274/* This seems to be a SCSI specific CD-ROM opcode
275 * to play data at track/index */
276#define GPCMD_PLAYAUDIO_TI 0x48
277/*
278 * From MS Media Status Notification Support Specification. For
279 * older drives only.
280 */
281#define GPCMD_GET_MEDIA_STATUS 0xda
282
283/* Mode page codes for mode sense/set */
284#define GPMODE_R_W_ERROR_PAGE 0x01
285#define GPMODE_WRITE_PARMS_PAGE 0x05
286#define GPMODE_AUDIO_CTL_PAGE 0x0e
287#define GPMODE_POWER_PAGE 0x1a
288#define GPMODE_FAULT_FAIL_PAGE 0x1c
289#define GPMODE_TO_PROTECT_PAGE 0x1d
290#define GPMODE_CAPABILITIES_PAGE 0x2a
291#define GPMODE_ALL_PAGES 0x3f
292/* Not in Mt. Fuji, but in ATAPI 2.6 -- depricated now in favor
293 * of MODE_SENSE_POWER_PAGE */
294#define GPMODE_CDROM_PAGE 0x0d
295
296#define ATAPI_INT_REASON_CD 0x01 /* 0 = data transfer */
297#define ATAPI_INT_REASON_IO 0x02 /* 1 = transfer to the host */
298#define ATAPI_INT_REASON_REL 0x04
299#define ATAPI_INT_REASON_TAG 0xf8
300
301/* same constants as bochs */
7f777bf3 302#define ASC_ILLEGAL_OPCODE 0x20
5391d806
FB		 303#define ASC_LOGICAL_BLOCK_OOR 0x21
304#define ASC_INV_FIELD_IN_CMD_PACKET 0x24
305#define ASC_MEDIUM_NOT_PRESENT 0x3a
306#define ASC_SAVING_PARAMETERS_NOT_SUPPORTED 0x39
307
308#define SENSE_NONE 0
309#define SENSE_NOT_READY 2
310#define SENSE_ILLEGAL_REQUEST 5
311#define SENSE_UNIT_ATTENTION 6
312
313struct IDEState;
314
315typedef void EndTransferFunc(struct IDEState *);
316
317typedef struct IDEState {
318 /* ide config */
319 int is_cdrom;
320 int cdrom_locked;
321 int cylinders, heads, sectors;
322 int64_t nb_sectors;
323 int mult_sectors;
324 int irq;
325 /* ide regs */
326 uint8_t feature;
327 uint8_t error;
328 uint16_t nsector; /* 0 is 256 to ease computations */
329 uint8_t sector;
330 uint8_t lcyl;
331 uint8_t hcyl;
332 uint8_t select;
333 uint8_t status;
334 /* 0x3f6 command, only meaningful for drive 0 */
335 uint8_t cmd;
336 /* depends on bit 4 in select, only meaningful for drive 0 */
337 struct IDEState *cur_drive;
338 BlockDriverState *bs;
339 /* ATAPI specific */
340 uint8_t sense_key;
341 uint8_t asc;
342 int packet_transfer_size;
343 int elementary_transfer_size;
344 int io_buffer_index;
345 int lba;
346 /* transfer handling */
347 int req_nb_sectors; /* number of sectors per interrupt */
348 EndTransferFunc *end_transfer_func;
349 uint8_t *data_ptr;
350 uint8_t *data_end;
351 uint8_t io_buffer[MAX_MULT_SECTORS*512 + 4];
352} IDEState;
353
354IDEState ide_state[MAX_DISKS];
355IDEState *ide_table[0x400 >> 3];
356
357static inline IDEState *get_ide_interface(uint32_t addr)
358{
359 return ide_table[addr >> 3];
360}
361
362static void padstr(char *str, const char *src, int len)
363{
364 int i, v;
365 for(i = 0; i < len; i++) {
366 if (*src)
367 v = *src++;
368 else
369 v = ' ';
370 *(char *)((long)str ^ 1) = v;
371 str++;
372 }
373}
374
bd0d90b2
FB		 375static void padstr8(uint8_t *buf, int buf_size, const char *src)
376{
377 int i;
378 for(i = 0; i < buf_size; i++) {
379 if (*src)
380 buf[i] = *src++;
381 else
382 buf[i] = ' ';
383 }
384}
385
5391d806
FB		 386static void ide_identify(IDEState *s)
387{
388 uint16_t *p;
389 unsigned int oldsize;
390
391 memset(s->io_buffer, 0, 512);
392 p = (uint16_t *)s->io_buffer;
393 stw_raw(p + 0, 0x0040);
394 stw_raw(p + 1, s->cylinders);
395 stw_raw(p + 3, s->heads);
3ad9a57e
FB		 396 stw_raw(p + 4, 512 * s->sectors); /* XXX: retired, remove ? */
397 stw_raw(p + 5, 512); /* XXX: retired, remove ? */
5391d806
FB		 398 stw_raw(p + 6, s->sectors);
399 padstr((uint8_t *)(p + 10), "QM00001", 20); /* serial number */
3ad9a57e 400 stw_raw(p + 20, 3); /* XXX: retired, remove ? */
5391d806
FB		 401 stw_raw(p + 21, 512); /* cache size in sectors */
402 stw_raw(p + 22, 4); /* ecc bytes */
403 padstr((uint8_t *)(p + 23), QEMU_VERSION, 8); /* firmware version */
404 padstr((uint8_t *)(p + 27), "QEMU HARDDISK", 40); /* model */
405#if MAX_MULT_SECTORS > 1
3ad9a57e 406 stw_raw(p + 47, 0x8000 | MAX_MULT_SECTORS);
5391d806
FB		 407#endif
408 stw_raw(p + 48, 1); /* dword I/O */
409 stw_raw(p + 49, 1 << 9); /* LBA supported, no DMA */
410 stw_raw(p + 51, 0x200); /* PIO transfer cycle */
411 stw_raw(p + 52, 0x200); /* DMA transfer cycle */
3ad9a57e 412 stw_raw(p + 53, 1); /* words 54-58 are valid */
5391d806
FB		 413 stw_raw(p + 54, s->cylinders);
414 stw_raw(p + 55, s->heads);
415 stw_raw(p + 56, s->sectors);
416 oldsize = s->cylinders * s->heads * s->sectors;
417 stw_raw(p + 57, oldsize);
418 stw_raw(p + 58, oldsize >> 16);
419 if (s->mult_sectors)
420 stw_raw(p + 59, 0x100 | s->mult_sectors);
421 stw_raw(p + 60, s->nb_sectors);
422 stw_raw(p + 61, s->nb_sectors >> 16);
423 stw_raw(p + 80, (1 << 1) | (1 << 2));
424 stw_raw(p + 82, (1 << 14));
425 stw_raw(p + 83, (1 << 14));
426 stw_raw(p + 84, (1 << 14));
427 stw_raw(p + 85, (1 << 14));
428 stw_raw(p + 86, 0);
429 stw_raw(p + 87, (1 << 14));
430}
431
432static void ide_atapi_identify(IDEState *s)
433{
434 uint16_t *p;
435
436 memset(s->io_buffer, 0, 512);
437 p = (uint16_t *)s->io_buffer;
438 /* Removable CDROM, 50us response, 12 byte packets */
439 stw_raw(p + 0, (2 << 14) | (5 << 8) | (1 << 7) | (2 << 5) | (0 << 0));
440 stw_raw(p + 1, s->cylinders);
441 stw_raw(p + 3, s->heads);
442 stw_raw(p + 4, 512 * s->sectors); /* sectors */
443 stw_raw(p + 5, 512); /* sector size */
444 stw_raw(p + 6, s->sectors);
445 padstr((uint8_t *)(p + 10), "QM00001", 20); /* serial number */
446 stw_raw(p + 20, 3); /* buffer type */
447 stw_raw(p + 21, 512); /* cache size in sectors */
448 stw_raw(p + 22, 4); /* ecc bytes */
449 padstr((uint8_t *)(p + 23), QEMU_VERSION, 8); /* firmware version */
450 padstr((uint8_t *)(p + 27), "QEMU CD-ROM", 40); /* model */
451 stw_raw(p + 48, 1); /* dword I/O (XXX: should not be set on CDROM) */
452 stw_raw(p + 49, 1 << 9); /* LBA supported, no DMA */
453 stw_raw(p + 53, 3); /* words 64-70, 54-58 valid */
454 stw_raw(p + 63, 0x103); /* DMA modes XXX: may be incorrect */
455 stw_raw(p + 64, 1); /* PIO modes */
456 stw_raw(p + 65, 0xb4); /* minimum DMA multiword tx cycle time */
457 stw_raw(p + 66, 0xb4); /* recommended DMA multiword tx cycle time */
458 stw_raw(p + 67, 0x12c); /* minimum PIO cycle time without flow control */
459 stw_raw(p + 68, 0xb4); /* minimum PIO cycle time with IORDY flow control */
460
461 stw_raw(p + 71, 30); /* in ns */
462 stw_raw(p + 72, 30); /* in ns */
463
464 stw_raw(p + 80, 0x1e); /* support up to ATA/ATAPI-4 */
465}
466
467static void ide_set_signature(IDEState *s)
468{
469 s->select &= 0xf0; /* clear head */
470 /* put signature */
471 s->nsector = 1;
472 s->sector = 1;
473 if (s->is_cdrom) {
474 s->lcyl = 0x14;
475 s->hcyl = 0xeb;
476 } else if (s->bs) {
477 s->lcyl = 0;
478 s->hcyl = 0;
479 } else {
480 s->lcyl = 0xff;
481 s->hcyl = 0xff;
482 }
483}
484
485static inline void ide_abort_command(IDEState *s)
486{
487 s->status = READY_STAT | ERR_STAT;
488 s->error = ABRT_ERR;
489}
490
491static inline void ide_set_irq(IDEState *s)
492{
493 if (!(s->cmd & IDE_CMD_DISABLE_IRQ)) {
494 pic_set_irq(s->irq, 1);
495 }
496}
497
498/* prepare data transfer and tell what to do after */
499static void ide_transfer_start(IDEState *s, uint8_t *buf, int size,
500 EndTransferFunc *end_transfer_func)
501{
502 s->end_transfer_func = end_transfer_func;
503 s->data_ptr = buf;
504 s->data_end = buf + size;
505 s->status |= DRQ_STAT;
506}
507
508static void ide_transfer_stop(IDEState *s)
509{
510 s->end_transfer_func = ide_transfer_stop;
511 s->data_ptr = s->io_buffer;
512 s->data_end = s->io_buffer;
513 s->status &= ~DRQ_STAT;
514}
515
516static int64_t ide_get_sector(IDEState *s)
517{
518 int64_t sector_num;
519 if (s->select & 0x40) {
520 /* lba */
521 sector_num = ((s->select & 0x0f) << 24) | (s->hcyl << 16) |
522 (s->lcyl << 8) | s->sector;
523 } else {
524 sector_num = ((s->hcyl << 8) | s->lcyl) * s->heads * s->sectors +
525 (s->select & 0x0f) * s->sectors +
526 (s->sector - 1);
527 }
528 return sector_num;
529}
530
531static void ide_set_sector(IDEState *s, int64_t sector_num)
532{
533 unsigned int cyl, r;
534 if (s->select & 0x40) {
535 s->select = (s->select & 0xf0) | (sector_num >> 24);
536 s->hcyl = (sector_num >> 16);
537 s->lcyl = (sector_num >> 8);
538 s->sector = (sector_num);
539 } else {
540 cyl = sector_num / (s->heads * s->sectors);
541 r = sector_num % (s->heads * s->sectors);
542 s->hcyl = cyl >> 8;
543 s->lcyl = cyl;
544 s->select = (s->select & 0xf0) | (r / s->sectors);
545 s->sector = (r % s->sectors) + 1;
546 }
547}
548
549static void ide_sector_read(IDEState *s)
550{
551 int64_t sector_num;
552 int ret, n;
553
554 s->status = READY_STAT | SEEK_STAT;
a136e5a8 555 s->error = 0; /* not needed by IDE spec, but needed by Windows */
5391d806
FB		 556 sector_num = ide_get_sector(s);
557 n = s->nsector;
558 if (n == 0) {
559 /* no more sector to read from disk */
560 ide_transfer_stop(s);
561 } else {
562#if defined(DEBUG_IDE)
563 printf("read sector=%Ld\n", sector_num);
564#endif
565 if (n > s->req_nb_sectors)
566 n = s->req_nb_sectors;
567 ret = bdrv_read(s->bs, sector_num, s->io_buffer, n);
568 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_read);
569 ide_set_irq(s);
570 ide_set_sector(s, sector_num + n);
571 s->nsector -= n;
572 }
573}
574
575static void ide_sector_write(IDEState *s)
576{
577 int64_t sector_num;
578 int ret, n, n1;
579
580 s->status = READY_STAT | SEEK_STAT;
581 sector_num = ide_get_sector(s);
582#if defined(DEBUG_IDE)
583 printf("write sector=%Ld\n", sector_num);
584#endif
585 n = s->nsector;
586 if (n > s->req_nb_sectors)
587 n = s->req_nb_sectors;
588 ret = bdrv_write(s->bs, sector_num, s->io_buffer, n);
589 s->nsector -= n;
590 if (s->nsector == 0) {
591 /* no more sector to write */
592 ide_transfer_stop(s);
593 } else {
594 n1 = s->nsector;
595 if (n1 > s->req_nb_sectors)
596 n1 = s->req_nb_sectors;
597 ide_transfer_start(s, s->io_buffer, 512 * n1, ide_sector_write);
598 }
599 ide_set_sector(s, sector_num + n);
600 ide_set_irq(s);
601}
602
603static void ide_atapi_cmd_ok(IDEState *s)
604{
605 s->error = 0;
606 s->status = READY_STAT;
607 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
608 ide_set_irq(s);
609}
610
611static void ide_atapi_cmd_error(IDEState *s, int sense_key, int asc)
612{
613#ifdef DEBUG_IDE_ATAPI
614 printf("atapi_cmd_error: sense=0x%x asc=0x%x\n", sense_key, asc);
615#endif
616 s->error = sense_key << 4;
617 s->status = READY_STAT | ERR_STAT;
618 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
619 s->sense_key = sense_key;
620 s->asc = asc;
621 ide_set_irq(s);
622}
623
624static inline void cpu_to_ube16(uint8_t *buf, int val)
625{
626 buf[0] = val >> 8;
627 buf[1] = val;
628}
629
630static inline void cpu_to_ube32(uint8_t *buf, unsigned int val)
631{
632 buf[0] = val >> 24;
633 buf[1] = val >> 16;
634 buf[2] = val >> 8;
635 buf[3] = val;
636}
637
638static inline int ube16_to_cpu(const uint8_t *buf)
639{
640 return (buf[0] << 8) | buf[1];
641}
642
643static inline int ube32_to_cpu(const uint8_t *buf)
644{
645 return (buf[0] << 24) | (buf[1] << 16) | (buf[2] << 8) | buf[3];
646}
647
648/* The whole ATAPI transfer logic is handled in this function */
649static void ide_atapi_cmd_reply_end(IDEState *s)
650{
651 int byte_count_limit, size;
652#ifdef DEBUG_IDE_ATAPI
653 printf("reply: tx_size=%d elem_tx_size=%d index=%d\n",
654 s->packet_transfer_size,
655 s->elementary_transfer_size,
656 s->io_buffer_index);
657#endif
658 if (s->packet_transfer_size <= 0) {
659 /* end of transfer */
660 ide_transfer_stop(s);
661 s->status = READY_STAT;
662 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
663 ide_set_irq(s);
664#ifdef DEBUG_IDE_ATAPI
665 printf("status=0x%x\n", s->status);
666#endif
667 } else {
668 /* see if a new sector must be read */
669 if (s->lba != -1 && s->io_buffer_index >= 2048) {
670 bdrv_read(s->bs, (int64_t)s->lba << 2, s->io_buffer, 4);
671 s->lba++;
672 s->io_buffer_index = 0;
673 }
674 if (s->elementary_transfer_size > 0) {
675 /* there are some data left to transmit in this elementary
676 transfer */
677 size = 2048 - s->io_buffer_index;
678 if (size > s->elementary_transfer_size)
679 size = s->elementary_transfer_size;
680 ide_transfer_start(s, s->io_buffer + s->io_buffer_index,
681 size, ide_atapi_cmd_reply_end);
682 s->packet_transfer_size -= size;
683 s->elementary_transfer_size -= size;
684 s->io_buffer_index += size;
685 } else {
686 /* a new transfer is needed */
687 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO;
688 byte_count_limit = s->lcyl | (s->hcyl << 8);
689#ifdef DEBUG_IDE_ATAPI
690 printf("byte_count_limit=%d\n", byte_count_limit);
691#endif
692 if (byte_count_limit == 0xffff)
693 byte_count_limit--;
694 size = s->packet_transfer_size;
695 if (size > byte_count_limit) {
696 /* byte count limit must be even if this case */
697 if (byte_count_limit & 1)
698 byte_count_limit--;
699 size = byte_count_limit;
5391d806 700 }
a136e5a8
FB		 701 s->lcyl = size;
702 s->hcyl = size >> 8;
5391d806
FB		 703 s->elementary_transfer_size = size;
704 /* we cannot transmit more than one sector at a time */
705 if (s->lba != -1) {
706 if (size > (2048 - s->io_buffer_index))
707 size = (2048 - s->io_buffer_index);
708 }
709 ide_transfer_start(s, s->io_buffer + s->io_buffer_index,
710 size, ide_atapi_cmd_reply_end);
711 s->packet_transfer_size -= size;
712 s->elementary_transfer_size -= size;
713 s->io_buffer_index += size;
714 ide_set_irq(s);
715#ifdef DEBUG_IDE_ATAPI
716 printf("status=0x%x\n", s->status);
717#endif
718 }
719 }
720}
721
722/* send a reply of 'size' bytes in s->io_buffer to an ATAPI command */
723static void ide_atapi_cmd_reply(IDEState *s, int size, int max_size)
724{
725 if (size > max_size)
726 size = max_size;
727 s->lba = -1; /* no sector read */
728 s->packet_transfer_size = size;
729 s->elementary_transfer_size = 0;
730 s->io_buffer_index = 0;
731
732 s->status = READY_STAT;
733 ide_atapi_cmd_reply_end(s);
734}
735
736/* start a CD-CDROM read command */
737static void ide_atapi_cmd_read(IDEState *s, int lba, int nb_sectors)
738{
739#ifdef DEBUG_IDE_ATAPI
740 printf("read: LBA=%d nb_sectors=%d\n", lba, nb_sectors);
741#endif
742 s->lba = lba;
743 s->packet_transfer_size = nb_sectors * 2048;
744 s->elementary_transfer_size = 0;
745 s->io_buffer_index = 2048;
746
747 s->status = READY_STAT;
748 ide_atapi_cmd_reply_end(s);
749}
750
751/* same toc as bochs. Return -1 if error or the toc length */
752static int cdrom_read_toc(IDEState *s, uint8_t *buf, int msf, int start_track)
753{
754 uint8_t *q;
755 int nb_sectors, len;
756
757 if (start_track > 1 && start_track != 0xaa)
758 return -1;
759 q = buf + 2;
760 *q++ = 1;
761 *q++ = 1;
762 if (start_track <= 1) {
763 *q++ = 0; /* reserved */
764 *q++ = 0x14; /* ADR, control */
765 *q++ = 1; /* track number */
766 *q++ = 0; /* reserved */
767 if (msf) {
768 *q++ = 0; /* reserved */
769 *q++ = 0; /* minute */
770 *q++ = 2; /* second */
771 *q++ = 0; /* frame */
772 } else {
773 /* sector 0 */
774 cpu_to_ube32(q, 0);
775 q += 4;
776 }
777 }
778 /* lead out track */
779 *q++ = 0; /* reserved */
780 *q++ = 0x16; /* ADR, control */
781 *q++ = 0xaa; /* track number */
782 *q++ = 0; /* reserved */
783 nb_sectors = s->nb_sectors >> 2;
784 if (msf) {
785 *q++ = 0; /* reserved */
786 *q++ = ((nb_sectors + 150) / 75) / 60;
787 *q++ = ((nb_sectors + 150) / 75) % 60;
788 *q++ = (nb_sectors + 150) % 75;
789 } else {
790 cpu_to_ube32(q, nb_sectors);
791 q += 4;
792 }
793 len = q - buf;
794 cpu_to_ube16(buf, len - 2);
795 return len;
796}
797
798static void ide_atapi_cmd(IDEState *s)
799{
800 const uint8_t *packet;
801 uint8_t *buf;
802 int max_len;
803
804 packet = s->io_buffer;
805 buf = s->io_buffer;
806#ifdef DEBUG_IDE_ATAPI
807 {
808 int i;
809 printf("ATAPI limit=0x%x packet:", s->lcyl | (s->hcyl << 8));
810 for(i = 0; i < ATAPI_PACKET_SIZE; i++) {
811 printf(" %02x", packet[i]);
812 }
813 printf("\n");
814 }
815#endif
816 switch(s->io_buffer[0]) {
817 case GPCMD_TEST_UNIT_READY:
818 if (s->bs) {
819 ide_atapi_cmd_ok(s);
820 } else {
821 ide_atapi_cmd_error(s, SENSE_NOT_READY,
822 ASC_MEDIUM_NOT_PRESENT);
823 }
824 break;
825 case GPCMD_MODE_SENSE_10:
826 {
827 int action, code;
828 max_len = ube16_to_cpu(packet + 7);
829 action = packet[2] >> 6;
830 code = packet[2] & 0x3f;
831 switch(action) {
832 case 0: /* current values */
833 switch(code) {
834 case 0x01: /* error recovery */
835 cpu_to_ube16(&buf[0], 16 + 6);
836 buf[2] = 0x70;
837 buf[3] = 0;
838 buf[4] = 0;
839 buf[5] = 0;
840 buf[6] = 0;
841 buf[7] = 0;
842
843 buf[8] = 0x01;
844 buf[9] = 0x06;
845 buf[10] = 0x00;
846 buf[11] = 0x05;
847 buf[12] = 0x00;
848 buf[13] = 0x00;
849 buf[14] = 0x00;
850 buf[15] = 0x00;
851 ide_atapi_cmd_reply(s, 16, max_len);
852 break;
853 case 0x2a:
854 cpu_to_ube16(&buf[0], 28 + 6);
855 buf[2] = 0x70;
856 buf[3] = 0;
857 buf[4] = 0;
858 buf[5] = 0;
859 buf[6] = 0;
860 buf[7] = 0;
861
862 buf[8] = 0x2a;
863 buf[9] = 0x12;
864 buf[10] = 0x00;
865 buf[11] = 0x00;
866
867 buf[12] = 0x70;
868 buf[13] = 3 << 5;
869 buf[14] = (1 << 0) | (1 << 3) | (1 << 5);
870 if (s->cdrom_locked)
871 buf[6] |= 1 << 1;
872 buf[15] = 0x00;
873 cpu_to_ube16(&buf[16], 706);
874 buf[18] = 0;
875 buf[19] = 2;
876 cpu_to_ube16(&buf[20], 512);
877 cpu_to_ube16(&buf[22], 706);
878 buf[24] = 0;
879 buf[25] = 0;
880 buf[26] = 0;
881 buf[27] = 0;
882 ide_atapi_cmd_reply(s, 28, max_len);
883 break;
884 default:
885 goto error_cmd;
886 }
887 break;
888 case 1: /* changeable values */
889 goto error_cmd;
890 case 2: /* default values */
891 goto error_cmd;
892 default:
893 case 3: /* saved values */
894 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
895 ASC_SAVING_PARAMETERS_NOT_SUPPORTED);
896 break;
897 }
898 }
899 break;
900 case GPCMD_REQUEST_SENSE:
901 max_len = packet[4];
902 memset(buf, 0, 18);
903 buf[0] = 0x70 | (1 << 7);
904 buf[2] = s->sense_key;
905 buf[7] = 10;
906 buf[12] = s->asc;
907 ide_atapi_cmd_reply(s, 18, max_len);
908 break;
909 case GPCMD_PREVENT_ALLOW_MEDIUM_REMOVAL:
910 if (s->bs) {
911 s->cdrom_locked = packet[4] & 1;
912 ide_atapi_cmd_ok(s);
913 } else {
914 ide_atapi_cmd_error(s, SENSE_NOT_READY,
915 ASC_MEDIUM_NOT_PRESENT);
916 }
917 break;
918 case GPCMD_READ_10:
919 case GPCMD_READ_12:
920 {
921 int nb_sectors, lba;
922
923 if (!s->bs) {
924 ide_atapi_cmd_error(s, SENSE_NOT_READY,
925 ASC_MEDIUM_NOT_PRESENT);
926 break;
927 }
928 if (packet[0] == GPCMD_READ_10)
929 nb_sectors = ube16_to_cpu(packet + 7);
930 else
931 nb_sectors = ube32_to_cpu(packet + 6);
932 lba = ube32_to_cpu(packet + 2);
933 if (nb_sectors == 0) {
934 ide_atapi_cmd_ok(s);
935 break;
936 }
937 if (((int64_t)(lba + nb_sectors) << 2) > s->nb_sectors) {
938 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
939 ASC_LOGICAL_BLOCK_OOR);
940 break;
941 }
942 ide_atapi_cmd_read(s, lba, nb_sectors);
943 }
944 break;
945 case GPCMD_SEEK:
946 {
947 int lba;
948 if (!s->bs) {
949 ide_atapi_cmd_error(s, SENSE_NOT_READY,
950 ASC_MEDIUM_NOT_PRESENT);
951 break;
952 }
953 lba = ube32_to_cpu(packet + 2);
954 if (((int64_t)lba << 2) > s->nb_sectors) {
955 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
956 ASC_LOGICAL_BLOCK_OOR);
957 break;
958 }
959 ide_atapi_cmd_ok(s);
960 }
961 break;
962 case GPCMD_START_STOP_UNIT:
963 {
964 int start, eject;
965 start = packet[4] & 1;
966 eject = (packet[4] >> 1) & 1;
967
968 /* XXX: currently none implemented */
969 ide_atapi_cmd_ok(s);
970 }
971 break;
972 case GPCMD_MECHANISM_STATUS:
973 {
974 max_len = ube16_to_cpu(packet + 8);
975 cpu_to_ube16(buf, 0);
976 /* no current LBA */
977 buf[2] = 0;
978 buf[3] = 0;
979 buf[4] = 0;
980 buf[5] = 1;
981 cpu_to_ube16(buf + 6, 0);
982 ide_atapi_cmd_reply(s, 8, max_len);
983 }
984 break;
985 case GPCMD_READ_TOC_PMA_ATIP:
986 {
987 int format, msf, start_track, len;
988
989 if (!s->bs) {
990 ide_atapi_cmd_error(s, SENSE_NOT_READY,
991 ASC_MEDIUM_NOT_PRESENT);
992 break;
993 }
994 max_len = ube16_to_cpu(packet + 7);
995 format = packet[9] >> 6;
996 msf = (packet[1] >> 1) & 1;
997 start_track = packet[6];
998 switch(format) {
999 case 0:
1000 len = cdrom_read_toc(s, buf, msf, start_track);
1001 if (len < 0)
1002 goto error_cmd;
1003 ide_atapi_cmd_reply(s, len, max_len);
1004 break;
1005 case 1:
1006 /* multi session : only a single session defined */
1007 memset(buf, 0, 12);
1008 buf[1] = 0x0a;
1009 buf[2] = 0x01;
1010 buf[3] = 0x01;
1011 ide_atapi_cmd_reply(s, 12, max_len);
1012 break;
1013 default:
7f777bf3
FB		 1014 error_cmd:
1015 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1016 ASC_INV_FIELD_IN_CMD_PACKET);
1017 break;
5391d806
FB		 1018 }
1019 }
1020 break;
1021 case GPCMD_READ_CDVD_CAPACITY:
1022 if (!s->bs) {
1023 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1024 ASC_MEDIUM_NOT_PRESENT);
1025 break;
1026 }
1027 /* NOTE: it is really the number of sectors minus 1 */
1028 cpu_to_ube32(buf, (s->nb_sectors >> 2) - 1);
1029 cpu_to_ube32(buf + 4, 2048);
1030 ide_atapi_cmd_reply(s, 8, 8);
1031 break;
bd0d90b2
FB		 1032 case GPCMD_INQUIRY:
1033 max_len = packet[4];
1034 buf[0] = 0x05; /* CD-ROM */
1035 buf[1] = 0x80; /* removable */
1036 buf[2] = 0x00; /* ISO */
1037 buf[3] = 0x21; /* ATAPI-2 (XXX: put ATAPI-4 ?) */
1038 buf[4] = 31; /* additionnal length */
1039 buf[5] = 0; /* reserved */
1040 buf[6] = 0; /* reserved */
1041 buf[7] = 0; /* reserved */
1042 padstr8(buf + 8, 8, "QEMU");
1043 padstr8(buf + 16, 16, "QEMU CD-ROM");
1044 padstr8(buf + 32, 4, QEMU_VERSION);
1045 ide_atapi_cmd_reply(s, 36, max_len);
1046 break;
5391d806 1047 default:
5391d806 1048 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
7f777bf3 1049 ASC_ILLEGAL_OPCODE);
5391d806
FB		 1050 break;
1051 }
1052}
1053
7138fcfb 1054static void ide_ioport_write(CPUState *env, uint32_t addr, uint32_t val)
5391d806
FB		 1055{
1056 IDEState *ide_if = get_ide_interface(addr);
1057 IDEState *s = ide_if->cur_drive;
1058 int unit, n;
1059
1060#ifdef DEBUG_IDE
1061 printf("IDE: write addr=0x%x val=0x%02x\n", addr, val);
1062#endif
1063 addr &= 7;
1064 switch(addr) {
1065 case 0:
1066 break;
1067 case 1:
1068 s->feature = val;
1069 break;
1070 case 2:
1071 if (val == 0)
1072 val = 256;
1073 s->nsector = val;
1074 break;
1075 case 3:
1076 s->sector = val;
1077 break;
1078 case 4:
1079 s->lcyl = val;
1080 break;
1081 case 5:
1082 s->hcyl = val;
1083 break;
1084 case 6:
1085 /* select drive */
1086 unit = (val >> 4) & 1;
1087 s = ide_if + unit;
1088 ide_if->cur_drive = s;
1089 s->select = val;
1090 break;
1091 default:
1092 case 7:
1093 /* command */
1094#if defined(DEBUG_IDE)
1095 printf("ide: CMD=%02x\n", val);
1096#endif
1097 switch(val) {
1098 case WIN_IDENTIFY:
1099 if (s->bs && !s->is_cdrom) {
1100 ide_identify(s);
1101 s->status = READY_STAT;
1102 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
1103 } else {
1104 if (s->is_cdrom) {
1105 ide_set_signature(s);
1106 }
1107 ide_abort_command(s);
1108 }
1109 ide_set_irq(s);
1110 break;
1111 case WIN_SPECIFY:
1112 case WIN_RECAL:
a136e5a8 1113 s->error = 0;
5391d806
FB		 1114 s->status = READY_STAT;
1115 ide_set_irq(s);
1116 break;
1117 case WIN_SETMULT:
1118 if (s->nsector > MAX_MULT_SECTORS ||
1119 s->nsector == 0 ||
1120 (s->nsector & (s->nsector - 1)) != 0) {
1121 ide_abort_command(s);
1122 } else {
1123 s->mult_sectors = s->nsector;
1124 s->status = READY_STAT;
1125 }
1126 ide_set_irq(s);
1127 break;
4ce900b4
FB		 1128 case WIN_VERIFY:
1129 case WIN_VERIFY_ONCE:
1130 /* do sector number check ? */
1131 s->status = READY_STAT;
1132 ide_set_irq(s);
1133 break;
5391d806
FB		 1134 case WIN_READ:
1135 case WIN_READ_ONCE:
6b136f9e
FB		 1136 if (!s->bs)
1137 goto abort_cmd;
5391d806
FB		 1138 s->req_nb_sectors = 1;
1139 ide_sector_read(s);
1140 break;
1141 case WIN_WRITE:
1142 case WIN_WRITE_ONCE:
a136e5a8 1143 s->error = 0;
5391d806
FB		 1144 s->status = SEEK_STAT;
1145 s->req_nb_sectors = 1;
1146 ide_transfer_start(s, s->io_buffer, 512, ide_sector_write);
1147 break;
1148 case WIN_MULTREAD:
1149 if (!s->mult_sectors)
1150 goto abort_cmd;
1151 s->req_nb_sectors = s->mult_sectors;
1152 ide_sector_read(s);
1153 break;
1154 case WIN_MULTWRITE:
1155 if (!s->mult_sectors)
1156 goto abort_cmd;
a136e5a8 1157 s->error = 0;
5391d806
FB		 1158 s->status = SEEK_STAT;
1159 s->req_nb_sectors = s->mult_sectors;
1160 n = s->nsector;
1161 if (n > s->req_nb_sectors)
1162 n = s->req_nb_sectors;
1163 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_write);
1164 break;
1165 case WIN_READ_NATIVE_MAX:
1166 ide_set_sector(s, s->nb_sectors - 1);
1167 s->status = READY_STAT;
1168 ide_set_irq(s);
1169 break;
a136e5a8
FB		 1170 case WIN_CHECKPOWERMODE1:
1171 s->nsector = 0xff; /* device active or idle */
1172 s->status = READY_STAT;
1173 ide_set_irq(s);
1174 break;
5391d806
FB		 1175
1176 /* ATAPI commands */
1177 case WIN_PIDENTIFY:
1178 if (s->is_cdrom) {
1179 ide_atapi_identify(s);
1180 s->status = READY_STAT;
1181 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
1182 } else {
1183 ide_abort_command(s);
1184 }
1185 ide_set_irq(s);
1186 break;
1187 case WIN_SRST:
1188 if (!s->is_cdrom)
1189 goto abort_cmd;
1190 ide_set_signature(s);
6b136f9e 1191 s->status = 0x00; /* NOTE: READY is _not_ set */
5391d806
FB		 1192 s->error = 0x01;
1193 break;
1194 case WIN_PACKETCMD:
1195 if (!s->is_cdrom)
1196 goto abort_cmd;
1197 /* DMA or overlapping commands not supported */
1198 if ((s->feature & 0x03) != 0)
1199 goto abort_cmd;
1200 s->nsector = 1;
1201 ide_transfer_start(s, s->io_buffer, ATAPI_PACKET_SIZE,
1202 ide_atapi_cmd);
1203 break;
1204 default:
1205 abort_cmd:
1206 ide_abort_command(s);
1207 ide_set_irq(s);
1208 break;
1209 }
1210 }
1211}
1212
7138fcfb 1213static uint32_t ide_ioport_read(CPUState *env, uint32_t addr1)
5391d806
FB		 1214{
1215 IDEState *s = get_ide_interface(addr1)->cur_drive;
1216 uint32_t addr;
1217 int ret;
1218
1219 addr = addr1 & 7;
1220 switch(addr) {
1221 case 0:
1222 ret = 0xff;
1223 break;
1224 case 1:
1225 ret = s->error;
1226 break;
1227 case 2:
1228 ret = s->nsector & 0xff;
1229 break;
1230 case 3:
1231 ret = s->sector;
1232 break;
1233 case 4:
1234 ret = s->lcyl;
1235 break;
1236 case 5:
1237 ret = s->hcyl;
1238 break;
1239 case 6:
1240 ret = s->select;
1241 break;
1242 default:
1243 case 7:
1244 ret = s->status;
1245 pic_set_irq(s->irq, 0);
1246 break;
1247 }
1248#ifdef DEBUG_IDE
1249 printf("ide: read addr=0x%x val=%02x\n", addr1, ret);
1250#endif
1251 return ret;
1252}
1253
7138fcfb 1254static uint32_t ide_status_read(CPUState *env, uint32_t addr)
5391d806
FB		 1255{
1256 IDEState *s = get_ide_interface(addr)->cur_drive;
1257 int ret;
1258 ret = s->status;
1259#ifdef DEBUG_IDE
1260 printf("ide: read status addr=0x%x val=%02x\n", addr, ret);
1261#endif
1262 return ret;
1263}
1264
7138fcfb 1265static void ide_cmd_write(CPUState *env, uint32_t addr, uint32_t val)
5391d806
FB		 1266{
1267 IDEState *ide_if = get_ide_interface(addr);
1268 IDEState *s;
1269 int i;
1270
1271#ifdef DEBUG_IDE
1272 printf("ide: write control addr=0x%x val=%02x\n", addr, val);
1273#endif
1274 /* common for both drives */
1275 if (!(ide_if[0].cmd & IDE_CMD_RESET) &&
1276 (val & IDE_CMD_RESET)) {
1277 /* reset low to high */
1278 for(i = 0;i < 2; i++) {
1279 s = &ide_if[i];
1280 s->status = BUSY_STAT | SEEK_STAT;
1281 s->error = 0x01;
1282 }
1283 } else if ((ide_if[0].cmd & IDE_CMD_RESET) &&
1284 !(val & IDE_CMD_RESET)) {
1285 /* high to low */
1286 for(i = 0;i < 2; i++) {
1287 s = &ide_if[i];
6b136f9e
FB		 1288 if (s->is_cdrom)
1289 s->status = 0x00; /* NOTE: READY is _not_ set */
1290 else
56bf1d37 1291 s->status = READY_STAT | SEEK_STAT;
5391d806
FB		 1292 ide_set_signature(s);
1293 }
1294 }
1295
1296 ide_if[0].cmd = val;
1297 ide_if[1].cmd = val;
1298}
1299
7138fcfb 1300static void ide_data_writew(CPUState *env, uint32_t addr, uint32_t val)
5391d806
FB		 1301{
1302 IDEState *s = get_ide_interface(addr)->cur_drive;
1303 uint8_t *p;
1304
1305 p = s->data_ptr;
1306 *(uint16_t *)p = tswap16(val);
1307 p += 2;
1308 s->data_ptr = p;
1309 if (p >= s->data_end)
1310 s->end_transfer_func(s);
1311}
1312
7138fcfb 1313static uint32_t ide_data_readw(CPUState *env, uint32_t addr)
5391d806
FB		 1314{
1315 IDEState *s = get_ide_interface(addr)->cur_drive;
1316 uint8_t *p;
1317 int ret;
1318 p = s->data_ptr;
1319 ret = tswap16(*(uint16_t *)p);
1320 p += 2;
1321 s->data_ptr = p;
1322 if (p >= s->data_end)
1323 s->end_transfer_func(s);
1324 return ret;
1325}
1326
7138fcfb 1327static void ide_data_writel(CPUState *env, uint32_t addr, uint32_t val)
5391d806
FB		 1328{
1329 IDEState *s = get_ide_interface(addr)->cur_drive;
1330 uint8_t *p;
1331
1332 p = s->data_ptr;
1333 *(uint32_t *)p = tswap32(val);
1334 p += 4;
1335 s->data_ptr = p;
1336 if (p >= s->data_end)
1337 s->end_transfer_func(s);
1338}
1339
7138fcfb 1340static uint32_t ide_data_readl(CPUState *env, uint32_t addr)
5391d806
FB		 1341{
1342 IDEState *s = get_ide_interface(addr)->cur_drive;
1343 uint8_t *p;
1344 int ret;
1345
1346 p = s->data_ptr;
1347 ret = tswap32(*(uint32_t *)p);
1348 p += 4;
1349 s->data_ptr = p;
1350 if (p >= s->data_end)
1351 s->end_transfer_func(s);
1352 return ret;
1353}
1354
1355static void ide_reset(IDEState *s)
1356{
1357 s->mult_sectors = MAX_MULT_SECTORS;
1358 s->cur_drive = s;
1359 s->select = 0xa0;
1360 s->status = READY_STAT;
1361 ide_set_signature(s);
1362}
1363
1364struct partition {
1365 uint8_t boot_ind; /* 0x80 - active */
1366 uint8_t head; /* starting head */
1367 uint8_t sector; /* starting sector */
1368 uint8_t cyl; /* starting cylinder */
1369 uint8_t sys_ind; /* What partition type */
1370 uint8_t end_head; /* end head */
1371 uint8_t end_sector; /* end sector */
1372 uint8_t end_cyl; /* end cylinder */
1373 uint32_t start_sect; /* starting sector counting from 0 */
1374 uint32_t nr_sects; /* nr of sectors in partition */
1375} __attribute__((packed));
1376
1377/* try to guess the IDE geometry from the MSDOS partition table */
1378static void ide_guess_geometry(IDEState *s)
1379{
1380 uint8_t buf[512];
1381 int ret, i;
1382 struct partition *p;
1383 uint32_t nr_sects;
1384
1385 if (s->cylinders != 0)
1386 return;
1387 ret = bdrv_read(s->bs, 0, buf, 1);
1388 if (ret < 0)
1389 return;
1390 /* test msdos magic */
1391 if (buf[510] != 0x55 || buf[511] != 0xaa)
1392 return;
1393 for(i = 0; i < 4; i++) {
1394 p = ((struct partition *)(buf + 0x1be)) + i;
1395 nr_sects = tswap32(p->nr_sects);
1396 if (nr_sects && p->end_head) {
1397 /* We make the assumption that the partition terminates on
1398 a cylinder boundary */
1399 s->heads = p->end_head + 1;
1400 s->sectors = p->end_sector & 63;
1401 s->cylinders = s->nb_sectors / (s->heads * s->sectors);
1402#if 0
1403 printf("guessed partition: CHS=%d %d %d\n",
1404 s->cylinders, s->heads, s->sectors);
1405#endif
1406 }
1407 }
1408}
1409
1410void ide_init(void)
1411{
1412 IDEState *s;
1413 int i, cylinders, iobase, iobase2;
1414 int64_t nb_sectors;
1415 static const int ide_iobase[2] = { 0x1f0, 0x170 };
1416 static const int ide_iobase2[2] = { 0x3f6, 0x376 };
1417 static const int ide_irq[2] = { 14, 15 };
1418
1419 for(i = 0; i < MAX_DISKS; i++) {
1420 s = &ide_state[i];
1421 s->bs = bs_table[i];
1422 if (s->bs) {
1423 bdrv_get_geometry(s->bs, &nb_sectors);
1424 s->nb_sectors = nb_sectors;
1425 ide_guess_geometry(s);
1426 if (s->cylinders == 0) {
1427 /* if no geometry, use a LBA compatible one */
1428 cylinders = nb_sectors / (16 * 63);
1429 if (cylinders > 16383)
1430 cylinders = 16383;
1431 else if (cylinders < 2)
1432 cylinders = 2;
1433 s->cylinders = cylinders;
1434 s->heads = 16;
1435 s->sectors = 63;
1436 }
1437 }
1438 s->irq = ide_irq[i >> 1];
1439 ide_reset(s);
1440 }
1441 for(i = 0; i < (MAX_DISKS / 2); i++) {
1442 iobase = ide_iobase[i];
1443 iobase2 = ide_iobase2[i];
1444 ide_table[iobase >> 3] = &ide_state[2 * i];
1445 if (ide_iobase2[i])
1446 ide_table[iobase2 >> 3] = &ide_state[2 * i];
1447 register_ioport_write(iobase, 8, ide_ioport_write, 1);
1448 register_ioport_read(iobase, 8, ide_ioport_read, 1);
1449 register_ioport_read(iobase2, 1, ide_status_read, 1);
1450 register_ioport_write(iobase2, 1, ide_cmd_write, 1);
1451
1452 /* data ports */
1453 register_ioport_write(iobase, 2, ide_data_writew, 2);
1454 register_ioport_read(iobase, 2, ide_data_readw, 2);
1455 register_ioport_write(iobase, 4, ide_data_writel, 4);
1456 register_ioport_read(iobase, 4, ide_data_readl, 4);
1457 }
1458}
1459
1460void ide_set_geometry(int n, int cyls, int heads, int secs)
1461{
1462 ide_state[n].cylinders = cyls;
1463 ide_state[n].heads = heads;
1464 ide_state[n].sectors = secs;
1465}
1466
1467void ide_set_cdrom(int n, int is_cdrom)
1468{
1469 ide_state[n].is_cdrom = is_cdrom;
1470}
Qemu copy for testing