[mirror_qemu.git] / hw / ppc / ppc440_bamboo.c

/*
 * QEMU PowerPC 440 Bamboo board emulation
 *
 * Copyright 2007 IBM Corporation.
 * Authors:
 *	Jerone Young <jyoung5@us.ibm.com>
 *	Christian Ehrhardt <ehrhardt@linux.vnet.ibm.com>
 *	Hollis Blanchard <hollisb@us.ibm.com>
 *
 * This work is licensed under the GNU GPL license version 2 or later.
 *
 */

#include "qemu/osdep.h"
#include "qemu-common.h"
#include "net/net.h"
#include "hw/hw.h"
#include "hw/pci/pci.h"
#include "hw/boards.h"
#include "sysemu/kvm.h"
#include "kvm_ppc.h"
#include "sysemu/device_tree.h"
#include "hw/loader.h"
#include "elf.h"
#include "exec/address-spaces.h"
#include "hw/char/serial.h"
#include "hw/ppc/ppc.h"
#include "ppc405.h"
#include "sysemu/sysemu.h"
#include "hw/sysbus.h"

#define BINARY_DEVICE_TREE_FILE "bamboo.dtb"

/* from u-boot */
#define KERNEL_ADDR  0x1000000
#define FDT_ADDR     0x1800000
#define RAMDISK_ADDR 0x1900000

#define PPC440EP_PCI_CONFIG     0xeec00000
#define PPC440EP_PCI_INTACK     0xeed00000
#define PPC440EP_PCI_SPECIAL    0xeed00000
#define PPC440EP_PCI_REGS       0xef400000
#define PPC440EP_PCI_IO         0xe8000000
#define PPC440EP_PCI_IOLEN      0x00010000

#define PPC440EP_SDRAM_NR_BANKS 4

static const unsigned int ppc440ep_sdram_bank_sizes[] = {
    256<<20, 128<<20, 64<<20, 32<<20, 16<<20, 8<<20, 0
};

static hwaddr entry;

static int bamboo_load_device_tree(hwaddr addr,
                                     uint32_t ramsize,
                                     hwaddr initrd_base,
                                     hwaddr initrd_size,
                                     const char *kernel_cmdline)
{
    int ret = -1;
    uint32_t mem_reg_property[] = { 0, 0, cpu_to_be32(ramsize) };
    char *filename;
    int fdt_size;
    void *fdt;
    uint32_t tb_freq = 400000000;
    uint32_t clock_freq = 400000000;

    filename = qemu_find_file(QEMU_FILE_TYPE_BIOS, BINARY_DEVICE_TREE_FILE);
    if (!filename) {
        goto out;
    }
    fdt = load_device_tree(filename, &fdt_size);
    g_free(filename);
    if (fdt == NULL) {
        goto out;
    }

    /* Manipulate device tree in memory. */

    ret = qemu_fdt_setprop(fdt, "/memory", "reg", mem_reg_property,
                           sizeof(mem_reg_property));
    if (ret < 0)
        fprintf(stderr, "couldn't set /memory/reg\n");

    ret = qemu_fdt_setprop_cell(fdt, "/chosen", "linux,initrd-start",
                                initrd_base);
    if (ret < 0)
        fprintf(stderr, "couldn't set /chosen/linux,initrd-start\n");

    ret = qemu_fdt_setprop_cell(fdt, "/chosen", "linux,initrd-end",
                                (initrd_base + initrd_size));
    if (ret < 0)
        fprintf(stderr, "couldn't set /chosen/linux,initrd-end\n");

    ret = qemu_fdt_setprop_string(fdt, "/chosen", "bootargs",
                                  kernel_cmdline);
    if (ret < 0)
        fprintf(stderr, "couldn't set /chosen/bootargs\n");

    /* Copy data from the host device tree into the guest. Since the guest can
     * directly access the timebase without host involvement, we must expose
     * the correct frequencies. */
    if (kvm_enabled()) {
        tb_freq = kvmppc_get_tbfreq();
        clock_freq = kvmppc_get_clockfreq();
    }

    qemu_fdt_setprop_cell(fdt, "/cpus/cpu@0", "clock-frequency",
                          clock_freq);
    qemu_fdt_setprop_cell(fdt, "/cpus/cpu@0", "timebase-frequency",
                          tb_freq);

    rom_add_blob_fixed(BINARY_DEVICE_TREE_FILE, fdt, fdt_size, addr);
    g_free(fdt);
    return 0;

out:

    return ret;
}

/* Create reset TLB entries for BookE, spanning the 32bit addr space.  */
static void mmubooke_create_initial_mapping(CPUPPCState *env,
                                     target_ulong va,
                                     hwaddr pa)
{
    ppcemb_tlb_t *tlb = &env->tlb.tlbe[0];

    tlb->attr = 0;
    tlb->prot = PAGE_VALID | ((PAGE_READ | PAGE_WRITE | PAGE_EXEC) << 4);
    tlb->size = 1U << 31; /* up to 0x80000000  */
    tlb->EPN = va & TARGET_PAGE_MASK;
    tlb->RPN = pa & TARGET_PAGE_MASK;
    tlb->PID = 0;

    tlb = &env->tlb.tlbe[1];
    tlb->attr = 0;
    tlb->prot = PAGE_VALID | ((PAGE_READ | PAGE_WRITE | PAGE_EXEC) << 4);
    tlb->size = 1U << 31; /* up to 0xffffffff  */
    tlb->EPN = 0x80000000 & TARGET_PAGE_MASK;
    tlb->RPN = 0x80000000 & TARGET_PAGE_MASK;
    tlb->PID = 0;
}

static void main_cpu_reset(void *opaque)
{
    PowerPCCPU *cpu = opaque;
    CPUPPCState *env = &cpu->env;

    cpu_reset(CPU(cpu));
    env->gpr[1] = (16<<20) - 8;
    env->gpr[3] = FDT_ADDR;
    env->nip = entry;

    /* Create a mapping for the kernel.  */
    mmubooke_create_initial_mapping(env, 0, 0);
}

static void bamboo_init(MachineState *machine)
{
    ram_addr_t ram_size = machine->ram_size;
    const char *kernel_filename = machine->kernel_filename;
    const char *kernel_cmdline = machine->kernel_cmdline;
    const char *initrd_filename = machine->initrd_filename;
    unsigned int pci_irq_nrs[4] = { 28, 27, 26, 25 };
    MemoryRegion *address_space_mem = get_system_memory();
    MemoryRegion *isa = g_new(MemoryRegion, 1);
    MemoryRegion *ram_memories
        = g_malloc(PPC440EP_SDRAM_NR_BANKS * sizeof(*ram_memories));
    hwaddr ram_bases[PPC440EP_SDRAM_NR_BANKS];
    hwaddr ram_sizes[PPC440EP_SDRAM_NR_BANKS];
    qemu_irq *pic;
    qemu_irq *irqs;
    PCIBus *pcibus;
    PowerPCCPU *cpu;
    CPUPPCState *env;
    uint64_t elf_entry;
    uint64_t elf_lowaddr;
    hwaddr loadaddr = 0;
    target_long initrd_size = 0;
    DeviceState *dev;
    int success;
    int i;

    /* Setup CPU. */
    if (machine->cpu_model == NULL) {
        machine->cpu_model = "440EP";
    }
    cpu = POWERPC_CPU(cpu_generic_init(TYPE_POWERPC_CPU, machine->cpu_model));
    env = &cpu->env;

    if (env->mmu_model != POWERPC_MMU_BOOKE) {
        fprintf(stderr, "MMU model %i not supported by this machine.\n",
            env->mmu_model);
        exit(1);
    }

    qemu_register_reset(main_cpu_reset, cpu);
    ppc_booke_timers_init(cpu, 400000000, 0);
    ppc_dcr_init(env, NULL, NULL);

    /* interrupt controller */
    irqs = g_malloc0(sizeof(qemu_irq) * PPCUIC_OUTPUT_NB);
    irqs[PPCUIC_OUTPUT_INT] = ((qemu_irq *)env->irq_inputs)[PPC40x_INPUT_INT];
    irqs[PPCUIC_OUTPUT_CINT] = ((qemu_irq *)env->irq_inputs)[PPC40x_INPUT_CINT];
    pic = ppcuic_init(env, irqs, 0x0C0, 0, 1);

    /* SDRAM controller */
    memset(ram_bases, 0, sizeof(ram_bases));
    memset(ram_sizes, 0, sizeof(ram_sizes));
    ram_size = ppc4xx_sdram_adjust(ram_size, PPC440EP_SDRAM_NR_BANKS,
                                   ram_memories,
                                   ram_bases, ram_sizes,
                                   ppc440ep_sdram_bank_sizes);
    /* XXX 440EP's ECC interrupts are on UIC1, but we've only created UIC0. */
    ppc4xx_sdram_init(env, pic[14], PPC440EP_SDRAM_NR_BANKS, ram_memories,
                      ram_bases, ram_sizes, 1);

    /* PCI */
    dev = sysbus_create_varargs(TYPE_PPC4xx_PCI_HOST_BRIDGE,
                                PPC440EP_PCI_CONFIG,
                                pic[pci_irq_nrs[0]], pic[pci_irq_nrs[1]],
                                pic[pci_irq_nrs[2]], pic[pci_irq_nrs[3]],
                                NULL);
    pcibus = (PCIBus *)qdev_get_child_bus(dev, "pci.0");
    if (!pcibus) {
        fprintf(stderr, "couldn't create PCI controller!\n");
        exit(1);
    }

    memory_region_init_alias(isa, NULL, "isa_mmio",
                             get_system_io(), 0, PPC440EP_PCI_IOLEN);
    memory_region_add_subregion(get_system_memory(), PPC440EP_PCI_IO, isa);

    if (serial_hds[0] != NULL) {
        serial_mm_init(address_space_mem, 0xef600300, 0, pic[0],
                       PPC_SERIAL_MM_BAUDBASE, serial_hds[0],
                       DEVICE_BIG_ENDIAN);
    }
    if (serial_hds[1] != NULL) {
        serial_mm_init(address_space_mem, 0xef600400, 0, pic[1],
                       PPC_SERIAL_MM_BAUDBASE, serial_hds[1],
                       DEVICE_BIG_ENDIAN);
    }

    if (pcibus) {
        /* Register network interfaces. */
        for (i = 0; i < nb_nics; i++) {
            /* There are no PCI NICs on the Bamboo board, but there are
             * PCI slots, so we can pick whatever default model we want. */
            pci_nic_init_nofail(&nd_table[i], pcibus, "e1000", NULL);
        }
    }

    /* Load kernel. */
    if (kernel_filename) {
        success = load_uimage(kernel_filename, &entry, &loadaddr, NULL,
                              NULL, NULL);
        if (success < 0) {
            success = load_elf(kernel_filename, NULL, NULL, &elf_entry,
                               &elf_lowaddr, NULL, 1, PPC_ELF_MACHINE,
                               0, 0);
            entry = elf_entry;
            loadaddr = elf_lowaddr;
        }
        /* XXX try again as binary */
        if (success < 0) {
            fprintf(stderr, "qemu: could not load kernel '%s'\n",
                    kernel_filename);
            exit(1);
        }
    }

    /* Load initrd. */
    if (initrd_filename) {
        initrd_size = load_image_targphys(initrd_filename, RAMDISK_ADDR,
                                          ram_size - RAMDISK_ADDR);

        if (initrd_size < 0) {
            fprintf(stderr, "qemu: could not load ram disk '%s' at %x\n",
                    initrd_filename, RAMDISK_ADDR);
            exit(1);
        }
    }

    /* If we're loading a kernel directly, we must load the device tree too. */
    if (kernel_filename) {
        if (bamboo_load_device_tree(FDT_ADDR, ram_size, RAMDISK_ADDR,
                                    initrd_size, kernel_cmdline) < 0) {
            fprintf(stderr, "couldn't load device tree\n");
            exit(1);
        }
    }
}

static void bamboo_machine_init(MachineClass *mc)
{
    mc->desc = "bamboo";
    mc->init = bamboo_init;
}

DEFINE_MACHINE("bamboo", bamboo_machine_init)
Commit	Line	Data
2c9fade2	1	/*
5cbdb3a3	2	* QEMU PowerPC 440 Bamboo board emulation
2c9fade2 AJ	3	*
	4	* Copyright 2007 IBM Corporation.
	5	* Authors:
acd1bf90 AG	6	* Jerone Young <jyoung5@us.ibm.com>
	7	* Christian Ehrhardt <ehrhardt@linux.vnet.ibm.com>
	8	* Hollis Blanchard <hollisb@us.ibm.com>
2c9fade2 AJ	9	*
	10	* This work is licensed under the GNU GPL license version 2 or later.
	11	*
	12	*/
	13
0d75590d	14	#include "qemu/osdep.h"
2c9fade2	15	#include "qemu-common.h"
1422e32d	16	#include "net/net.h"
83c9f4ca PB	17	#include "hw/hw.h"
	18	#include "hw/pci/pci.h"
	19	#include "hw/boards.h"
9c17d615	20	#include "sysemu/kvm.h"
2c9fade2	21	#include "kvm_ppc.h"
9c17d615	22	#include "sysemu/device_tree.h"
83c9f4ca	23	#include "hw/loader.h"
ca20cf32	24	#include "elf.h"
022c62cb	25	#include "exec/address-spaces.h"
0d09e41a PB	26	#include "hw/char/serial.h"
0d09e41a PB	27	#include "hw/ppc/ppc.h"
47b43a1f	28	#include "ppc405.h"
9c17d615	29	#include "sysemu/sysemu.h"
83c9f4ca	30	#include "hw/sysbus.h"
2c9fade2 AJ	31
	32	#define BINARY_DEVICE_TREE_FILE "bamboo.dtb"
	33
ceee6da6 HB	34	/* from u-boot */
	35	#define KERNEL_ADDR 0x1000000
	36	#define FDT_ADDR 0x1800000
	37	#define RAMDISK_ADDR 0x1900000
	38
3960b04d AG	39	#define PPC440EP_PCI_CONFIG 0xeec00000
	40	#define PPC440EP_PCI_INTACK 0xeed00000
	41	#define PPC440EP_PCI_SPECIAL 0xeed00000
	42	#define PPC440EP_PCI_REGS 0xef400000
	43	#define PPC440EP_PCI_IO 0xe8000000
	44	#define PPC440EP_PCI_IOLEN 0x00010000
	45
	46	#define PPC440EP_SDRAM_NR_BANKS 4
	47
	48	static const unsigned int ppc440ep_sdram_bank_sizes[] = {
	49	256<<20, 128<<20, 64<<20, 32<<20, 16<<20, 8<<20, 0
	50	};
	51
a8170e5e	52	static hwaddr entry;
b10a04b5	53
a8170e5e	54	static int bamboo_load_device_tree(hwaddr addr,
2c9fade2	55	uint32_t ramsize,
a8170e5e AK	56	hwaddr initrd_base,
a8170e5e AK	57	hwaddr initrd_size,
2c9fade2 AJ	58	const char *kernel_cmdline)
2c9fade2 AJ	59	{
dbf916d8	60	int ret = -1;
5232fa59	61	uint32_t mem_reg_property[] = { 0, 0, cpu_to_be32(ramsize) };
5cea8590	62	char *filename;
7ec632b4	63	int fdt_size;
dbf916d8	64	void *fdt;
7dadd40c AG	65	uint32_t tb_freq = 400000000;
7dadd40c AG	66	uint32_t clock_freq = 400000000;
2c9fade2	67
5cea8590 PB	68	filename = qemu_find_file(QEMU_FILE_TYPE_BIOS, BINARY_DEVICE_TREE_FILE);
	69	if (!filename) {
	70	goto out;
	71	}
	72	fdt = load_device_tree(filename, &fdt_size);
7267c094	73	g_free(filename);
5cea8590	74	if (fdt == NULL) {
2c9fade2	75	goto out;
5cea8590	76	}
2c9fade2 AJ	77
	78	/* Manipulate device tree in memory. */
	79
5a4348d1 PC	80	ret = qemu_fdt_setprop(fdt, "/memory", "reg", mem_reg_property,
5a4348d1 PC	81	sizeof(mem_reg_property));
2c9fade2 AJ	82	if (ret < 0)
	83	fprintf(stderr, "couldn't set /memory/reg\n");
	84
5a4348d1 PC	85	ret = qemu_fdt_setprop_cell(fdt, "/chosen", "linux,initrd-start",
5a4348d1 PC	86	initrd_base);
2c9fade2 AJ	87	if (ret < 0)
	88	fprintf(stderr, "couldn't set /chosen/linux,initrd-start\n");
	89
5a4348d1 PC	90	ret = qemu_fdt_setprop_cell(fdt, "/chosen", "linux,initrd-end",
5a4348d1 PC	91	(initrd_base + initrd_size));
2c9fade2 AJ	92	if (ret < 0)
	93	fprintf(stderr, "couldn't set /chosen/linux,initrd-end\n");
	94
5a4348d1 PC	95	ret = qemu_fdt_setprop_string(fdt, "/chosen", "bootargs",
5a4348d1 PC	96	kernel_cmdline);
2c9fade2 AJ	97	if (ret < 0)
	98	fprintf(stderr, "couldn't set /chosen/bootargs\n");
	99
7dadd40c AG	100	/* Copy data from the host device tree into the guest. Since the guest can
	101	* directly access the timebase without host involvement, we must expose
	102	* the correct frequencies. */
a489f7f7	103	if (kvm_enabled()) {
7dadd40c AG	104	tb_freq = kvmppc_get_tbfreq();
7dadd40c AG	105	clock_freq = kvmppc_get_clockfreq();
a489f7f7	106	}
2c9fade2	107
5a4348d1 PC	108	qemu_fdt_setprop_cell(fdt, "/cpus/cpu@0", "clock-frequency",
	109	clock_freq);
	110	qemu_fdt_setprop_cell(fdt, "/cpus/cpu@0", "timebase-frequency",
	111	tb_freq);
2c9fade2	112
fe1479aa	113	rom_add_blob_fixed(BINARY_DEVICE_TREE_FILE, fdt, fdt_size, addr);
7267c094	114	g_free(fdt);
fe1479aa	115	return 0;
7ec632b4	116
2c9fade2	117	out:
2c9fade2	118
04088adb	119	return ret;
2c9fade2 AJ	120	}
2c9fade2 AJ	121
72718e9a	122	/* Create reset TLB entries for BookE, spanning the 32bit addr space. */
e2684c0b	123	static void mmubooke_create_initial_mapping(CPUPPCState *env,
72718e9a	124	target_ulong va,
a8170e5e	125	hwaddr pa)
72718e9a AG	126	{
	127	ppcemb_tlb_t *tlb = &env->tlb.tlbe[0];
	128
	129	tlb->attr = 0;
	130	tlb->prot = PAGE_VALID \| ((PAGE_READ \| PAGE_WRITE \| PAGE_EXEC) << 4);
a1f7f97b	131	tlb->size = 1U << 31; /* up to 0x80000000 */
72718e9a AG	132	tlb->EPN = va & TARGET_PAGE_MASK;
	133	tlb->RPN = pa & TARGET_PAGE_MASK;
	134	tlb->PID = 0;
	135
	136	tlb = &env->tlb.tlbe[1];
	137	tlb->attr = 0;
	138	tlb->prot = PAGE_VALID \| ((PAGE_READ \| PAGE_WRITE \| PAGE_EXEC) << 4);
a1f7f97b	139	tlb->size = 1U << 31; /* up to 0xffffffff */
72718e9a AG	140	tlb->EPN = 0x80000000 & TARGET_PAGE_MASK;
	141	tlb->RPN = 0x80000000 & TARGET_PAGE_MASK;
	142	tlb->PID = 0;
	143	}
	144
b10a04b5 AG	145	static void main_cpu_reset(void *opaque)
b10a04b5 AG	146	{
182fbbf2 AF	147	PowerPCCPU *cpu = opaque;
182fbbf2 AF	148	CPUPPCState *env = &cpu->env;
b10a04b5	149
182fbbf2	150	cpu_reset(CPU(cpu));
b10a04b5 AG	151	env->gpr[1] = (16<<20) - 8;
	152	env->gpr[3] = FDT_ADDR;
	153	env->nip = entry;
72718e9a AG	154
	155	/* Create a mapping for the kernel. */
	156	mmubooke_create_initial_mapping(env, 0, 0);
b10a04b5 AG	157	}
b10a04b5 AG	158
3ef96221	159	static void bamboo_init(MachineState *machine)
2c9fade2	160	{
3ef96221	161	ram_addr_t ram_size = machine->ram_size;
3ef96221 MA	162	const char *kernel_filename = machine->kernel_filename;
	163	const char *kernel_cmdline = machine->kernel_cmdline;
	164	const char *initrd_filename = machine->initrd_filename;
2c9fade2	165	unsigned int pci_irq_nrs[4] = { 28, 27, 26, 25 };
3e9f0113	166	MemoryRegion *address_space_mem = get_system_memory();
68501502	167	MemoryRegion *isa = g_new(MemoryRegion, 1);
34ba1dc8 AG	168	MemoryRegion *ram_memories
34ba1dc8 AG	169	= g_malloc(PPC440EP_SDRAM_NR_BANKS * sizeof(*ram_memories));
a8170e5e AK	170	hwaddr ram_bases[PPC440EP_SDRAM_NR_BANKS];
a8170e5e AK	171	hwaddr ram_sizes[PPC440EP_SDRAM_NR_BANKS];
34ba1dc8 AG	172	qemu_irq *pic;
34ba1dc8 AG	173	qemu_irq *irqs;
2c9fade2	174	PCIBus *pcibus;
322164e0	175	PowerPCCPU *cpu;
e2684c0b	176	CPUPPCState *env;
2c9fade2 AJ	177	uint64_t elf_entry;
2c9fade2 AJ	178	uint64_t elf_lowaddr;
a8170e5e	179	hwaddr loadaddr = 0;
2c9fade2	180	target_long initrd_size = 0;
34ba1dc8	181	DeviceState *dev;
ceee6da6	182	int success;
2c9fade2 AJ	183	int i;
	184
	185	/* Setup CPU. */
19fb2c36 BR	186	if (machine->cpu_model == NULL) {
19fb2c36 BR	187	machine->cpu_model = "440EP";
34ba1dc8	188	}
84efa64c	189	cpu = POWERPC_CPU(cpu_generic_init(TYPE_POWERPC_CPU, machine->cpu_model));
322164e0	190	env = &cpu->env;
34ba1dc8	191
00469dc3 VP	192	if (env->mmu_model != POWERPC_MMU_BOOKE) {
	193	fprintf(stderr, "MMU model %i not supported by this machine.\n",
	194	env->mmu_model);
	195	exit(1);
	196	}
	197
182fbbf2	198	qemu_register_reset(main_cpu_reset, cpu);
a34a92b9	199	ppc_booke_timers_init(cpu, 400000000, 0);
34ba1dc8 AG	200	ppc_dcr_init(env, NULL, NULL);
	201
	202	/* interrupt controller */
	203	irqs = g_malloc0(sizeof(qemu_irq) * PPCUIC_OUTPUT_NB);
	204	irqs[PPCUIC_OUTPUT_INT] = ((qemu_irq *)env->irq_inputs)[PPC40x_INPUT_INT];
	205	irqs[PPCUIC_OUTPUT_CINT] = ((qemu_irq *)env->irq_inputs)[PPC40x_INPUT_CINT];
	206	pic = ppcuic_init(env, irqs, 0x0C0, 0, 1);
	207
	208	/* SDRAM controller */
	209	memset(ram_bases, 0, sizeof(ram_bases));
	210	memset(ram_sizes, 0, sizeof(ram_sizes));
	211	ram_size = ppc4xx_sdram_adjust(ram_size, PPC440EP_SDRAM_NR_BANKS,
	212	ram_memories,
	213	ram_bases, ram_sizes,
	214	ppc440ep_sdram_bank_sizes);
	215	/* XXX 440EP's ECC interrupts are on UIC1, but we've only created UIC0. */
	216	ppc4xx_sdram_init(env, pic[14], PPC440EP_SDRAM_NR_BANKS, ram_memories,
	217	ram_bases, ram_sizes, 1);
	218
	219	/* PCI */
42c281a2 AF	220	dev = sysbus_create_varargs(TYPE_PPC4xx_PCI_HOST_BRIDGE,
42c281a2 AF	221	PPC440EP_PCI_CONFIG,
34ba1dc8 AG	222	pic[pci_irq_nrs[0]], pic[pci_irq_nrs[1]],
	223	pic[pci_irq_nrs[2]], pic[pci_irq_nrs[3]],
	224	NULL);
	225	pcibus = (PCIBus *)qdev_get_child_bus(dev, "pci.0");
	226	if (!pcibus) {
	227	fprintf(stderr, "couldn't create PCI controller!\n");
	228	exit(1);
	229	}
	230
68501502 PB	231	memory_region_init_alias(isa, NULL, "isa_mmio",
	232	get_system_io(), 0, PPC440EP_PCI_IOLEN);
	233	memory_region_add_subregion(get_system_memory(), PPC440EP_PCI_IO, isa);
34ba1dc8 AG	234
	235	if (serial_hds[0] != NULL) {
	236	serial_mm_init(address_space_mem, 0xef600300, 0, pic[0],
	237	PPC_SERIAL_MM_BAUDBASE, serial_hds[0],
	238	DEVICE_BIG_ENDIAN);
	239	}
	240	if (serial_hds[1] != NULL) {
	241	serial_mm_init(address_space_mem, 0xef600400, 0, pic[1],
	242	PPC_SERIAL_MM_BAUDBASE, serial_hds[1],
	243	DEVICE_BIG_ENDIAN);
	244	}
2c9fade2 AJ	245
2c9fade2 AJ	246	if (pcibus) {
2c9fade2 AJ	247	/* Register network interfaces. */
2c9fade2 AJ	248	for (i = 0; i < nb_nics; i++) {
cb457d76 AL	249	/* There are no PCI NICs on the Bamboo board, but there are
cb457d76 AL	250	* PCI slots, so we can pick whatever default model we want. */
29b358f9	251	pci_nic_init_nofail(&nd_table[i], pcibus, "e1000", NULL);
2c9fade2 AJ	252	}
	253	}
	254
	255	/* Load kernel. */
	256	if (kernel_filename) {
25bda50a MF	257	success = load_uimage(kernel_filename, &entry, &loadaddr, NULL,
25bda50a MF	258	NULL, NULL);
ceee6da6 HB	259	if (success < 0) {
ceee6da6 HB	260	success = load_elf(kernel_filename, NULL, NULL, &elf_entry,
7ef295ea PC	261	&elf_lowaddr, NULL, 1, PPC_ELF_MACHINE,
7ef295ea PC	262	0, 0);
2c9fade2 AJ	263	entry = elf_entry;
	264	loadaddr = elf_lowaddr;
	265	}
	266	/* XXX try again as binary */
ceee6da6	267	if (success < 0) {
2c9fade2 AJ	268	fprintf(stderr, "qemu: could not load kernel '%s'\n",
	269	kernel_filename);
	270	exit(1);
	271	}
	272	}
	273
	274	/* Load initrd. */
	275	if (initrd_filename) {
ceee6da6 HB	276	initrd_size = load_image_targphys(initrd_filename, RAMDISK_ADDR,
ceee6da6 HB	277	ram_size - RAMDISK_ADDR);
2c9fade2 AJ	278
2c9fade2 AJ	279	if (initrd_size < 0) {
ceee6da6 HB	280	fprintf(stderr, "qemu: could not load ram disk '%s' at %x\n",
ceee6da6 HB	281	initrd_filename, RAMDISK_ADDR);
2c9fade2 AJ	282	exit(1);
	283	}
	284	}
	285
	286	/* If we're loading a kernel directly, we must load the device tree too. */
	287	if (kernel_filename) {
ceee6da6 HB	288	if (bamboo_load_device_tree(FDT_ADDR, ram_size, RAMDISK_ADDR,
ceee6da6 HB	289	initrd_size, kernel_cmdline) < 0) {
2c9fade2 AJ	290	fprintf(stderr, "couldn't load device tree\n");
	291	exit(1);
	292	}
2c9fade2	293	}
2c9fade2 AJ	294	}
2c9fade2 AJ	295
e264d29d	296	static void bamboo_machine_init(MachineClass *mc)
f80f9ec9	297	{
e264d29d EH	298	mc->desc = "bamboo";
e264d29d EH	299	mc->init = bamboo_init;
f80f9ec9 AL	300	}
f80f9ec9 AL	301
e264d29d	302	DEFINE_MACHINE("bamboo", bamboo_machine_init)