]> git.proxmox.com Git - mirror_qemu.git/blob - hw/ppc/sam460ex.c
projects / mirror_qemu.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
sam460ex: Correct use after free error
[mirror_qemu.git] / hw / ppc / sam460ex.c
1 /*
2 * QEMU aCube Sam460ex board emulation
3 *
4 * Copyright (c) 2012 François Revol
5 * Copyright (c) 2016-2018 BALATON Zoltan
6 *
7 * This file is derived from hw/ppc440_bamboo.c,
8 * the copyright for that material belongs to the original owners.
9 *
10 * This work is licensed under the GNU GPL license version 2 or later.
11 *
12 */
13
14 #include "qemu/osdep.h"
15 #include "qemu/units.h"
16 #include "qemu-common.h"
17 #include "qemu/error-report.h"
18 #include "qapi/error.h"
19 #include "hw/hw.h"
20 #include "hw/boards.h"
21 #include "sysemu/kvm.h"
22 #include "kvm_ppc.h"
23 #include "sysemu/device_tree.h"
24 #include "sysemu/block-backend.h"
25 #include "hw/loader.h"
26 #include "elf.h"
27 #include "exec/address-spaces.h"
28 #include "exec/memory.h"
29 #include "ppc440.h"
30 #include "ppc405.h"
31 #include "hw/block/flash.h"
32 #include "sysemu/sysemu.h"
33 #include "sysemu/qtest.h"
34 #include "hw/sysbus.h"
35 #include "hw/char/serial.h"
36 #include "hw/i2c/ppc4xx_i2c.h"
37 #include "hw/i2c/smbus.h"
38 #include "hw/usb/hcd-ehci.h"
39 #include "hw/ppc/fdt.h"
40
41 #include <libfdt.h>
42
43 #define BINARY_DEVICE_TREE_FILE "canyonlands.dtb"
44 #define UBOOT_FILENAME "u-boot-sam460-20100605.bin"
45 /* to extract the official U-Boot bin from the updater: */
46 /* dd bs=1 skip=$(($(stat -c '%s' updater/updater-460) - 0x80000)) \
47 if=updater/updater-460 of=u-boot-sam460-20100605.bin */
48
49 /* from Sam460 U-Boot include/configs/Sam460ex.h */
50 #define FLASH_BASE 0xfff00000
51 #define FLASH_BASE_H 0x4
52 #define FLASH_SIZE (1 * MiB)
53 #define UBOOT_LOAD_BASE 0xfff80000
54 #define UBOOT_SIZE 0x00080000
55 #define UBOOT_ENTRY 0xfffffffc
56
57 /* from U-Boot */
58 #define EPAPR_MAGIC (0x45504150)
59 #define KERNEL_ADDR 0x1000000
60 #define FDT_ADDR 0x1800000
61 #define RAMDISK_ADDR 0x1900000
62
63 /* Sam460ex IRQ MAP:
64 IRQ0 = ETH_INT
65 IRQ1 = FPGA_INT
66 IRQ2 = PCI_INT (PCIA, PCIB, PCIC, PCIB)
67 IRQ3 = FPGA_INT2
68 IRQ11 = RTC_INT
69 IRQ12 = SM502_INT
70 */
71
72 #define CPU_FREQ 1150000000
73 #define PLB_FREQ 230000000
74 #define OPB_FREQ 115000000
75 #define EBC_FREQ 115000000
76 #define UART_FREQ 11059200
77 #define SDRAM_NR_BANKS 4
78
79 /* FIXME: See u-boot.git 8ac41e, also fix in ppc440_uc.c */
80 static const unsigned int ppc460ex_sdram_bank_sizes[] = {
81 1 * GiB, 512 * MiB, 256 * MiB, 128 * MiB, 64 * MiB, 32 * MiB, 0
82 };
83
84 struct boot_info {
85 uint32_t dt_base;
86 uint32_t dt_size;
87 uint32_t entry;
88 };
89
90 /*****************************************************************************/
91 /* SPD eeprom content from mips_malta.c */
92
93 struct _eeprom24c0x_t {
94 uint8_t tick;
95 uint8_t address;
96 uint8_t command;
97 uint8_t ack;
98 uint8_t scl;
99 uint8_t sda;
100 uint8_t data;
101 uint8_t contents[256];
102 };
103
104 typedef struct _eeprom24c0x_t eeprom24c0x_t;
105
106 static eeprom24c0x_t spd_eeprom = {
107 .contents = {
108 /* 00000000: */ 0x80, 0x08, 0xFF, 0x0D, 0x0A, 0xFF, 0x40, 0x00,
109 /* 00000008: */ 0x04, 0x75, 0x54, 0x00, 0x82, 0x08, 0x00, 0x01,
110 /* 00000010: */ 0x8F, 0x04, 0x02, 0x01, 0x01, 0x00, 0x00, 0x00,
111 /* 00000018: */ 0x00, 0x00, 0x00, 0x14, 0x0F, 0x14, 0x2D, 0xFF,
112 /* 00000020: */ 0x15, 0x08, 0x15, 0x08, 0x00, 0x00, 0x00, 0x00,
113 /* 00000028: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
114 /* 00000030: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
115 /* 00000038: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x12, 0xD0,
116 /* 00000040: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
117 /* 00000048: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
118 /* 00000050: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
119 /* 00000058: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
120 /* 00000060: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
121 /* 00000068: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
122 /* 00000070: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
123 /* 00000078: */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x64, 0xF4,
124 },
125 };
126
127 static void generate_eeprom_spd(uint8_t *eeprom, ram_addr_t ram_size)
128 {
129 enum { SDR = 0x4, DDR1 = 0x7, DDR2 = 0x8 } type;
130 uint8_t *spd = spd_eeprom.contents;
131 uint8_t nbanks = 0;
132 uint16_t density = 0;
133 int i;
134
135 /* work in terms of MB */
136 ram_size /= MiB;
137
138 while ((ram_size >= 4) && (nbanks <= 2)) {
139 int sz_log2 = MIN(31 - clz32(ram_size), 14);
140 nbanks++;
141 density |= 1 << (sz_log2 - 2);
142 ram_size -= 1 << sz_log2;
143 }
144
145 /* split to 2 banks if possible */
146 if ((nbanks == 1) && (density > 1)) {
147 nbanks++;
148 density >>= 1;
149 }
150
151 if (density & 0xff00) {
152 density = (density & 0xe0) | ((density >> 8) & 0x1f);
153 type = DDR2;
154 } else if (!(density & 0x1f)) {
155 type = DDR2;
156 } else {
157 type = SDR;
158 }
159
160 if (ram_size) {
161 warn_report("SPD cannot represent final " RAM_ADDR_FMT "MB"
162 " of SDRAM", ram_size);
163 }
164
165 /* fill in SPD memory information */
166 spd[2] = type;
167 spd[5] = nbanks;
168 spd[31] = density;
169
170 /* XXX: this is totally random */
171 spd[9] = 0x10; /* CAS tcyc */
172 spd[18] = 0x20; /* CAS bit */
173 spd[23] = 0x10; /* CAS tcyc */
174 spd[25] = 0x10; /* CAS tcyc */
175
176 /* checksum */
177 spd[63] = 0;
178 for (i = 0; i < 63; i++) {
179 spd[63] += spd[i];
180 }
181
182 /* copy for SMBUS */
183 memcpy(eeprom, spd, sizeof(spd_eeprom.contents));
184 }
185
186 static void generate_eeprom_serial(uint8_t *eeprom)
187 {
188 int i, pos = 0;
189 uint8_t mac[6] = { 0x00 };
190 uint8_t sn[5] = { 0x01, 0x23, 0x45, 0x67, 0x89 };
191
192 /* version */
193 eeprom[pos++] = 0x01;
194
195 /* count */
196 eeprom[pos++] = 0x02;
197
198 /* MAC address */
199 eeprom[pos++] = 0x01; /* MAC */
200 eeprom[pos++] = 0x06; /* length */
201 memcpy(&eeprom[pos], mac, sizeof(mac));
202 pos += sizeof(mac);
203
204 /* serial number */
205 eeprom[pos++] = 0x02; /* serial */
206 eeprom[pos++] = 0x05; /* length */
207 memcpy(&eeprom[pos], sn, sizeof(sn));
208 pos += sizeof(sn);
209
210 /* checksum */
211 eeprom[pos] = 0;
212 for (i = 0; i < pos; i++) {
213 eeprom[pos] += eeprom[i];
214 }
215 }
216
217 /*****************************************************************************/
218
219 static int sam460ex_load_uboot(void)
220 {
221 DriveInfo *dinfo;
222 BlockBackend *blk = NULL;
223 hwaddr base = FLASH_BASE | ((hwaddr)FLASH_BASE_H << 32);
224 long bios_size = FLASH_SIZE;
225 int fl_sectors;
226
227 dinfo = drive_get(IF_PFLASH, 0, 0);
228 if (dinfo) {
229 blk = blk_by_legacy_dinfo(dinfo);
230 bios_size = blk_getlength(blk);
231 }
232 fl_sectors = (bios_size + 65535) >> 16;
233
234 if (!pflash_cfi01_register(base, NULL, "sam460ex.flash", bios_size,
235 blk, 64 * KiB, fl_sectors,
236 1, 0x89, 0x18, 0x0000, 0x0, 1)) {
237 error_report("qemu: Error registering flash memory.");
238 /* XXX: return an error instead? */
239 exit(1);
240 }
241
242 if (!blk) {
243 /*error_report("No flash image given with the 'pflash' parameter,"
244 " using default u-boot image");*/
245 base = UBOOT_LOAD_BASE | ((hwaddr)FLASH_BASE_H << 32);
246 rom_add_file_fixed(UBOOT_FILENAME, base, -1);
247 }
248
249 return 0;
250 }
251
252 static int sam460ex_load_device_tree(hwaddr addr,
253 uint32_t ramsize,
254 hwaddr initrd_base,
255 hwaddr initrd_size,
256 const char *kernel_cmdline)
257 {
258 uint32_t mem_reg_property[] = { 0, 0, cpu_to_be32(ramsize) };
259 char *filename;
260 int fdt_size;
261 void *fdt;
262 uint32_t tb_freq = CPU_FREQ;
263 uint32_t clock_freq = CPU_FREQ;
264 int offset;
265
266 filename = qemu_find_file(QEMU_FILE_TYPE_BIOS, BINARY_DEVICE_TREE_FILE);
267 if (!filename) {
268 error_report("Couldn't find dtb file `%s'", BINARY_DEVICE_TREE_FILE);
269 exit(1);
270 }
271 fdt = load_device_tree(filename, &fdt_size);
272 if (!fdt) {
273 error_report("Couldn't load dtb file `%s'", filename);
274 g_free(filename);
275 exit(1);
276 }
277 g_free(filename);
278
279 /* Manipulate device tree in memory. */
280
281 qemu_fdt_setprop(fdt, "/memory", "reg", mem_reg_property,
282 sizeof(mem_reg_property));
283
284 /* default FDT doesn't have a /chosen node... */
285 qemu_fdt_add_subnode(fdt, "/chosen");
286
287 qemu_fdt_setprop_cell(fdt, "/chosen", "linux,initrd-start", initrd_base);
288
289 qemu_fdt_setprop_cell(fdt, "/chosen", "linux,initrd-end",
290 (initrd_base + initrd_size));
291
292 qemu_fdt_setprop_string(fdt, "/chosen", "bootargs", kernel_cmdline);
293
294 /* Copy data from the host device tree into the guest. Since the guest can
295 * directly access the timebase without host involvement, we must expose
296 * the correct frequencies. */
297 if (kvm_enabled()) {
298 tb_freq = kvmppc_get_tbfreq();
299 clock_freq = kvmppc_get_clockfreq();
300 }
301
302 qemu_fdt_setprop_cell(fdt, "/cpus/cpu@0", "clock-frequency",
303 clock_freq);
304 qemu_fdt_setprop_cell(fdt, "/cpus/cpu@0", "timebase-frequency",
305 tb_freq);
306
307 /* Remove cpm node if it exists (it is not emulated) */
308 offset = fdt_path_offset(fdt, "/cpm");
309 if (offset >= 0) {
310 _FDT(fdt_nop_node(fdt, offset));
311 }
312
313 /* set serial port clocks */
314 offset = fdt_node_offset_by_compatible(fdt, -1, "ns16550");
315 while (offset >= 0) {
316 _FDT(fdt_setprop_cell(fdt, offset, "clock-frequency", UART_FREQ));
317 offset = fdt_node_offset_by_compatible(fdt, offset, "ns16550");
318 }
319
320 /* some more clocks */
321 qemu_fdt_setprop_cell(fdt, "/plb", "clock-frequency",
322 PLB_FREQ);
323 qemu_fdt_setprop_cell(fdt, "/plb/opb", "clock-frequency",
324 OPB_FREQ);
325 qemu_fdt_setprop_cell(fdt, "/plb/opb/ebc", "clock-frequency",
326 EBC_FREQ);
327
328 rom_add_blob_fixed(BINARY_DEVICE_TREE_FILE, fdt, fdt_size, addr);
329 g_free(fdt);
330
331 return fdt_size;
332 }
333
334 /* Create reset TLB entries for BookE, mapping only the flash memory. */
335 static void mmubooke_create_initial_mapping_uboot(CPUPPCState *env)
336 {
337 ppcemb_tlb_t *tlb = &env->tlb.tlbe[0];
338
339 /* on reset the flash is mapped by a shadow TLB,
340 * but since we don't implement them we need to use
341 * the same values U-Boot will use to avoid a fault.
342 */
343 tlb->attr = 0;
344 tlb->prot = PAGE_VALID | ((PAGE_READ | PAGE_WRITE | PAGE_EXEC) << 4);
345 tlb->size = 0x10000000; /* up to 0xffffffff */
346 tlb->EPN = 0xf0000000 & TARGET_PAGE_MASK;
347 tlb->RPN = (0xf0000000 & TARGET_PAGE_MASK) | 0x4;
348 tlb->PID = 0;
349 }
350
351 /* Create reset TLB entries for BookE, spanning the 32bit addr space. */
352 static void mmubooke_create_initial_mapping(CPUPPCState *env,
353 target_ulong va,
354 hwaddr pa)
355 {
356 ppcemb_tlb_t *tlb = &env->tlb.tlbe[0];
357
358 tlb->attr = 0;
359 tlb->prot = PAGE_VALID | ((PAGE_READ | PAGE_WRITE | PAGE_EXEC) << 4);
360 tlb->size = 1 << 31; /* up to 0x80000000 */
361 tlb->EPN = va & TARGET_PAGE_MASK;
362 tlb->RPN = pa & TARGET_PAGE_MASK;
363 tlb->PID = 0;
364 }
365
366 static void main_cpu_reset(void *opaque)
367 {
368 PowerPCCPU *cpu = opaque;
369 CPUPPCState *env = &cpu->env;
370 struct boot_info *bi = env->load_info;
371
372 cpu_reset(CPU(cpu));
373
374 /* either we have a kernel to boot or we jump to U-Boot */
375 if (bi->entry != UBOOT_ENTRY) {
376 env->gpr[1] = (16 * MiB) - 8;
377 env->gpr[3] = FDT_ADDR;
378 env->nip = bi->entry;
379
380 /* Create a mapping for the kernel. */
381 mmubooke_create_initial_mapping(env, 0, 0);
382 env->gpr[6] = tswap32(EPAPR_MAGIC);
383 env->gpr[7] = (16 * MiB) - 8; /* bi->ima_size; */
384
385 } else {
386 env->nip = UBOOT_ENTRY;
387 mmubooke_create_initial_mapping_uboot(env);
388 }
389 }
390
391 static void sam460ex_init(MachineState *machine)
392 {
393 MemoryRegion *address_space_mem = get_system_memory();
394 MemoryRegion *isa = g_new(MemoryRegion, 1);
395 MemoryRegion *ram_memories = g_new(MemoryRegion, SDRAM_NR_BANKS);
396 hwaddr ram_bases[SDRAM_NR_BANKS];
397 hwaddr ram_sizes[SDRAM_NR_BANKS];
398 MemoryRegion *l2cache_ram = g_new(MemoryRegion, 1);
399 qemu_irq *irqs, *uic[4];
400 PCIBus *pci_bus;
401 PowerPCCPU *cpu;
402 CPUPPCState *env;
403 PPC4xxI2CState *i2c[2];
404 hwaddr entry = UBOOT_ENTRY;
405 hwaddr loadaddr = 0;
406 target_long initrd_size = 0;
407 DeviceState *dev;
408 SysBusDevice *sbdev;
409 int success;
410 int i;
411 struct boot_info *boot_info;
412 const size_t smbus_eeprom_size = 8 * 256;
413 uint8_t *smbus_eeprom_buf = g_malloc0(smbus_eeprom_size);
414
415 cpu = POWERPC_CPU(cpu_create(machine->cpu_type));
416 env = &cpu->env;
417 if (env->mmu_model != POWERPC_MMU_BOOKE) {
418 error_report("Only MMU model BookE is supported by this machine.");
419 exit(1);
420 }
421
422 #ifdef TARGET_PPCEMB
423 if (!qtest_enabled()) {
424 warn_report("qemu-system-ppcemb is deprecated, "
425 "please use qemu-system-ppc instead.");
426 }
427 #endif
428
429 qemu_register_reset(main_cpu_reset, cpu);
430 boot_info = g_malloc0(sizeof(*boot_info));
431 env->load_info = boot_info;
432
433 ppc_booke_timers_init(cpu, CPU_FREQ, 0);
434 ppc_dcr_init(env, NULL, NULL);
435
436 /* PLB arbitrer */
437 ppc4xx_plb_init(env);
438
439 /* interrupt controllers */
440 irqs = g_malloc0(sizeof(*irqs) * PPCUIC_OUTPUT_NB);
441 irqs[PPCUIC_OUTPUT_INT] = ((qemu_irq *)env->irq_inputs)[PPC40x_INPUT_INT];
442 irqs[PPCUIC_OUTPUT_CINT] = ((qemu_irq *)env->irq_inputs)[PPC40x_INPUT_CINT];
443 uic[0] = ppcuic_init(env, irqs, 0xc0, 0, 1);
444 uic[1] = ppcuic_init(env, &uic[0][30], 0xd0, 0, 1);
445 uic[2] = ppcuic_init(env, &uic[0][10], 0xe0, 0, 1);
446 uic[3] = ppcuic_init(env, &uic[0][16], 0xf0, 0, 1);
447
448 /* SDRAM controller */
449 memset(ram_bases, 0, sizeof(ram_bases));
450 memset(ram_sizes, 0, sizeof(ram_sizes));
451 /* put all RAM on first bank because board has one slot
452 * and firmware only checks that */
453 machine->ram_size = ppc4xx_sdram_adjust(machine->ram_size, 1,
454 ram_memories, ram_bases, ram_sizes,
455 ppc460ex_sdram_bank_sizes);
456
457 /* FIXME: does 460EX have ECC interrupts? */
458 ppc440_sdram_init(env, SDRAM_NR_BANKS, ram_memories,
459 ram_bases, ram_sizes, 1);
460
461 /* generate SPD EEPROM data */
462 for (i = 0; i < SDRAM_NR_BANKS; i++) {
463 generate_eeprom_spd(&smbus_eeprom_buf[i * 256], ram_sizes[i]);
464 }
465 generate_eeprom_serial(&smbus_eeprom_buf[4 * 256]);
466 generate_eeprom_serial(&smbus_eeprom_buf[6 * 256]);
467
468 /* IIC controllers */
469 dev = sysbus_create_simple(TYPE_PPC4xx_I2C, 0x4ef600700, uic[0][2]);
470 i2c[0] = PPC4xx_I2C(dev);
471 object_property_set_bool(OBJECT(dev), true, "realized", NULL);
472 smbus_eeprom_init(i2c[0]->bus, 8, smbus_eeprom_buf, smbus_eeprom_size);
473 g_free(smbus_eeprom_buf);
474 i2c_create_slave(i2c[0]->bus, "m41t80", 0x68);
475
476 dev = sysbus_create_simple(TYPE_PPC4xx_I2C, 0x4ef600800, uic[0][3]);
477 i2c[1] = PPC4xx_I2C(dev);
478
479 /* External bus controller */
480 ppc405_ebc_init(env);
481
482 /* CPR */
483 ppc4xx_cpr_init(env);
484
485 /* PLB to AHB bridge */
486 ppc4xx_ahb_init(env);
487
488 /* System DCRs */
489 ppc4xx_sdr_init(env);
490
491 /* MAL */
492 ppc4xx_mal_init(env, 4, 16, &uic[2][3]);
493
494 /* DMA */
495 ppc4xx_dma_init(env, 0x200);
496
497 /* 256K of L2 cache as memory */
498 ppc4xx_l2sram_init(env);
499 /* FIXME: remove this after fixing l2sram mapping in ppc440_uc.c? */
500 memory_region_init_ram(l2cache_ram, NULL, "ppc440.l2cache_ram", 256 * KiB,
501 &error_abort);
502 memory_region_add_subregion(address_space_mem, 0x400000000LL, l2cache_ram);
503
504 /* USB */
505 sysbus_create_simple(TYPE_PPC4xx_EHCI, 0x4bffd0400, uic[2][29]);
506 dev = qdev_create(NULL, "sysbus-ohci");
507 qdev_prop_set_string(dev, "masterbus", "usb-bus.0");
508 qdev_prop_set_uint32(dev, "num-ports", 6);
509 qdev_init_nofail(dev);
510 sbdev = SYS_BUS_DEVICE(dev);
511 sysbus_mmio_map(sbdev, 0, 0x4bffd0000);
512 sysbus_connect_irq(sbdev, 0, uic[2][30]);
513 usb_create_simple(usb_bus_find(-1), "usb-kbd");
514 usb_create_simple(usb_bus_find(-1), "usb-mouse");
515
516 /* PCI bus */
517 ppc460ex_pcie_init(env);
518 /* FIXME: is this correct? */
519 dev = sysbus_create_varargs("ppc440-pcix-host", 0xc0ec00000,
520 uic[1][0], uic[1][20], uic[1][21], uic[1][22],
521 NULL);
522 pci_bus = (PCIBus *)qdev_get_child_bus(dev, "pci.0");
523 if (!pci_bus) {
524 error_report("couldn't create PCI controller!");
525 exit(1);
526 }
527 memory_region_init_alias(isa, NULL, "isa_mmio", get_system_io(),
528 0, 0x10000);
529 memory_region_add_subregion(get_system_memory(), 0xc08000000, isa);
530
531 /* PCI devices */
532 pci_create_simple(pci_bus, PCI_DEVFN(6, 0), "sm501");
533 /* SoC has a single SATA port but we don't emulate that yet
534 * However, firmware and usual clients have driver for SiI311x
535 * so add one for convenience by default */
536 if (defaults_enabled()) {
537 pci_create_simple(pci_bus, -1, "sii3112");
538 }
539
540 /* SoC has 4 UARTs
541 * but board has only one wired and two are present in fdt */
542 if (serial_hd(0) != NULL) {
543 serial_mm_init(address_space_mem, 0x4ef600300, 0, uic[1][1],
544 PPC_SERIAL_MM_BAUDBASE, serial_hd(0),
545 DEVICE_BIG_ENDIAN);
546 }
547 if (serial_hd(1) != NULL) {
548 serial_mm_init(address_space_mem, 0x4ef600400, 0, uic[0][1],
549 PPC_SERIAL_MM_BAUDBASE, serial_hd(1),
550 DEVICE_BIG_ENDIAN);
551 }
552
553 /* Load U-Boot image. */
554 if (!machine->kernel_filename) {
555 success = sam460ex_load_uboot();
556 if (success < 0) {
557 error_report("qemu: could not load firmware");
558 exit(1);
559 }
560 }
561
562 /* Load kernel. */
563 if (machine->kernel_filename) {
564 success = load_uimage(machine->kernel_filename, &entry, &loadaddr,
565 NULL, NULL, NULL);
566 if (success < 0) {
567 uint64_t elf_entry, elf_lowaddr;
568
569 success = load_elf(machine->kernel_filename, NULL, NULL, &elf_entry,
570 &elf_lowaddr, NULL, 1, PPC_ELF_MACHINE, 0, 0);
571 entry = elf_entry;
572 loadaddr = elf_lowaddr;
573 }
574 /* XXX try again as binary */
575 if (success < 0) {
576 error_report("qemu: could not load kernel '%s'",
577 machine->kernel_filename);
578 exit(1);
579 }
580 }
581
582 /* Load initrd. */
583 if (machine->initrd_filename) {
584 initrd_size = load_image_targphys(machine->initrd_filename,
585 RAMDISK_ADDR,
586 machine->ram_size - RAMDISK_ADDR);
587 if (initrd_size < 0) {
588 error_report("qemu: could not load ram disk '%s' at %x",
589 machine->initrd_filename, RAMDISK_ADDR);
590 exit(1);
591 }
592 }
593
594 /* If we're loading a kernel directly, we must load the device tree too. */
595 if (machine->kernel_filename) {
596 int dt_size;
597
598 dt_size = sam460ex_load_device_tree(FDT_ADDR, machine->ram_size,
599 RAMDISK_ADDR, initrd_size,
600 machine->kernel_cmdline);
601
602 boot_info->dt_base = FDT_ADDR;
603 boot_info->dt_size = dt_size;
604 }
605
606 boot_info->entry = entry;
607 }
608
609 static void sam460ex_machine_init(MachineClass *mc)
610 {
611 mc->desc = "aCube Sam460ex";
612 mc->init = sam460ex_init;
613 mc->default_cpu_type = POWERPC_CPU_TYPE_NAME("460exb");
614 mc->default_ram_size = 512 * MiB;
615 }
616
617 DEFINE_MACHINE("sam460ex", sam460ex_machine_init)
QEMU mirror