2 * QEMU IDE disk and CD-ROM Emulator
4 * Copyright (c) 2003 Fabrice Bellard
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
26 /* debug IDE devices */
28 //#define DEBUG_IDE_ATAPI
30 /* Bits of HD_STATUS */
32 #define INDEX_STAT 0x02
33 #define ECC_STAT 0x04 /* Corrected error */
35 #define SEEK_STAT 0x10
37 #define WRERR_STAT 0x20
38 #define READY_STAT 0x40
39 #define BUSY_STAT 0x80
41 /* Bits for HD_ERROR */
42 #define MARK_ERR 0x01 /* Bad address mark */
43 #define TRK0_ERR 0x02 /* couldn't find track 0 */
44 #define ABRT_ERR 0x04 /* Command aborted */
45 #define MCR_ERR 0x08 /* media change request */
46 #define ID_ERR 0x10 /* ID field not found */
47 #define MC_ERR 0x20 /* media changed */
48 #define ECC_ERR 0x40 /* Uncorrectable ECC error */
49 #define BBD_ERR 0x80 /* pre-EIDE meaning: block marked bad */
50 #define ICRC_ERR 0x80 /* new meaning: CRC error during transfer */
52 /* Bits of HD_NSECTOR */
58 #define IDE_CMD_RESET 0x04
59 #define IDE_CMD_DISABLE_IRQ 0x02
61 /* ATA/ATAPI Commands pre T13 Spec */
66 #define CFA_REQ_EXT_ERROR_CODE 0x03 /* CFA Request Extended Error Code */
70 #define WIN_SRST 0x08 /* ATAPI soft reset command */
71 #define WIN_DEVICE_RESET 0x08
75 #define WIN_RECAL 0x10
76 #define WIN_RESTORE WIN_RECAL
80 #define WIN_READ 0x20 /* 28-Bit */
81 #define WIN_READ_ONCE 0x21 /* 28-Bit without retries */
82 #define WIN_READ_LONG 0x22 /* 28-Bit */
83 #define WIN_READ_LONG_ONCE 0x23 /* 28-Bit without retries */
84 #define WIN_READ_EXT 0x24 /* 48-Bit */
85 #define WIN_READDMA_EXT 0x25 /* 48-Bit */
86 #define WIN_READDMA_QUEUED_EXT 0x26 /* 48-Bit */
87 #define WIN_READ_NATIVE_MAX_EXT 0x27 /* 48-Bit */
91 #define WIN_MULTREAD_EXT 0x29 /* 48-Bit */
95 #define WIN_WRITE 0x30 /* 28-Bit */
96 #define WIN_WRITE_ONCE 0x31 /* 28-Bit without retries */
97 #define WIN_WRITE_LONG 0x32 /* 28-Bit */
98 #define WIN_WRITE_LONG_ONCE 0x33 /* 28-Bit without retries */
99 #define WIN_WRITE_EXT 0x34 /* 48-Bit */
100 #define WIN_WRITEDMA_EXT 0x35 /* 48-Bit */
101 #define WIN_WRITEDMA_QUEUED_EXT 0x36 /* 48-Bit */
102 #define WIN_SET_MAX_EXT 0x37 /* 48-Bit */
103 #define CFA_WRITE_SECT_WO_ERASE 0x38 /* CFA Write Sectors without erase */
104 #define WIN_MULTWRITE_EXT 0x39 /* 48-Bit */
106 * 0x3A->0x3B Reserved
108 #define WIN_WRITE_VERIFY 0x3C /* 28-Bit */
110 * 0x3D->0x3F Reserved
112 #define WIN_VERIFY 0x40 /* 28-Bit - Read Verify Sectors */
113 #define WIN_VERIFY_ONCE 0x41 /* 28-Bit - without retries */
114 #define WIN_VERIFY_EXT 0x42 /* 48-Bit */
116 * 0x43->0x4F Reserved
118 #define WIN_FORMAT 0x50
120 * 0x51->0x5F Reserved
122 #define WIN_INIT 0x60
124 * 0x61->0x5F Reserved
126 #define WIN_SEEK 0x70 /* 0x70-0x7F Reserved */
127 #define CFA_TRANSLATE_SECTOR 0x87 /* CFA Translate Sector */
128 #define WIN_DIAGNOSE 0x90
129 #define WIN_SPECIFY 0x91 /* set drive geometry translation */
130 #define WIN_DOWNLOAD_MICROCODE 0x92
131 #define WIN_STANDBYNOW2 0x94
132 #define WIN_STANDBY2 0x96
133 #define WIN_SETIDLE2 0x97
134 #define WIN_CHECKPOWERMODE2 0x98
135 #define WIN_SLEEPNOW2 0x99
139 #define WIN_PACKETCMD 0xA0 /* Send a packet command. */
140 #define WIN_PIDENTIFY 0xA1 /* identify ATAPI device */
141 #define WIN_QUEUED_SERVICE 0xA2
142 #define WIN_SMART 0xB0 /* self-monitoring and reporting */
143 #define CFA_ERASE_SECTORS 0xC0
144 #define WIN_MULTREAD 0xC4 /* read sectors using multiple mode*/
145 #define WIN_MULTWRITE 0xC5 /* write sectors using multiple mode */
146 #define WIN_SETMULT 0xC6 /* enable/disable multiple mode */
147 #define WIN_READDMA_QUEUED 0xC7 /* read sectors using Queued DMA transfers */
148 #define WIN_READDMA 0xC8 /* read sectors using DMA transfers */
149 #define WIN_READDMA_ONCE 0xC9 /* 28-Bit - without retries */
150 #define WIN_WRITEDMA 0xCA /* write sectors using DMA transfers */
151 #define WIN_WRITEDMA_ONCE 0xCB /* 28-Bit - without retries */
152 #define WIN_WRITEDMA_QUEUED 0xCC /* write sectors using Queued DMA transfers */
153 #define CFA_WRITE_MULTI_WO_ERASE 0xCD /* CFA Write multiple without erase */
154 #define WIN_GETMEDIASTATUS 0xDA
155 #define WIN_ACKMEDIACHANGE 0xDB /* ATA-1, ATA-2 vendor */
156 #define WIN_POSTBOOT 0xDC
157 #define WIN_PREBOOT 0xDD
158 #define WIN_DOORLOCK 0xDE /* lock door on removable drives */
159 #define WIN_DOORUNLOCK 0xDF /* unlock door on removable drives */
160 #define WIN_STANDBYNOW1 0xE0
161 #define WIN_IDLEIMMEDIATE 0xE1 /* force drive to become "ready" */
162 #define WIN_STANDBY 0xE2 /* Set device in Standby Mode */
163 #define WIN_SETIDLE1 0xE3
164 #define WIN_READ_BUFFER 0xE4 /* force read only 1 sector */
165 #define WIN_CHECKPOWERMODE1 0xE5
166 #define WIN_SLEEPNOW1 0xE6
167 #define WIN_FLUSH_CACHE 0xE7
168 #define WIN_WRITE_BUFFER 0xE8 /* force write only 1 sector */
169 #define WIN_WRITE_SAME 0xE9 /* read ata-2 to use */
170 /* SET_FEATURES 0x22 or 0xDD */
171 #define WIN_FLUSH_CACHE_EXT 0xEA /* 48-Bit */
172 #define WIN_IDENTIFY 0xEC /* ask drive to identify itself */
173 #define WIN_MEDIAEJECT 0xED
174 #define WIN_IDENTIFY_DMA 0xEE /* same as WIN_IDENTIFY, but DMA */
175 #define WIN_SETFEATURES 0xEF /* set special drive features */
176 #define EXABYTE_ENABLE_NEST 0xF0
177 #define WIN_SECURITY_SET_PASS 0xF1
178 #define WIN_SECURITY_UNLOCK 0xF2
179 #define WIN_SECURITY_ERASE_PREPARE 0xF3
180 #define WIN_SECURITY_ERASE_UNIT 0xF4
181 #define WIN_SECURITY_FREEZE_LOCK 0xF5
182 #define WIN_SECURITY_DISABLE 0xF6
183 #define WIN_READ_NATIVE_MAX 0xF8 /* return the native maximum address */
184 #define WIN_SET_MAX 0xF9
185 #define DISABLE_SEAGATE 0xFB
187 /* set to 1 set disable mult support */
188 #define MAX_MULT_SECTORS 16
192 #define ATAPI_PACKET_SIZE 12
194 /* The generic packet command opcodes for CD/DVD Logical Units,
195 * From Table 57 of the SFF8090 Ver. 3 (Mt. Fuji) draft standard. */
196 #define GPCMD_BLANK 0xa1
197 #define GPCMD_CLOSE_TRACK 0x5b
198 #define GPCMD_FLUSH_CACHE 0x35
199 #define GPCMD_FORMAT_UNIT 0x04
200 #define GPCMD_GET_CONFIGURATION 0x46
201 #define GPCMD_GET_EVENT_STATUS_NOTIFICATION 0x4a
202 #define GPCMD_GET_PERFORMANCE 0xac
203 #define GPCMD_INQUIRY 0x12
204 #define GPCMD_LOAD_UNLOAD 0xa6
205 #define GPCMD_MECHANISM_STATUS 0xbd
206 #define GPCMD_MODE_SELECT_10 0x55
207 #define GPCMD_MODE_SENSE_10 0x5a
208 #define GPCMD_PAUSE_RESUME 0x4b
209 #define GPCMD_PLAY_AUDIO_10 0x45
210 #define GPCMD_PLAY_AUDIO_MSF 0x47
211 #define GPCMD_PLAY_AUDIO_TI 0x48
212 #define GPCMD_PLAY_CD 0xbc
213 #define GPCMD_PREVENT_ALLOW_MEDIUM_REMOVAL 0x1e
214 #define GPCMD_READ_10 0x28
215 #define GPCMD_READ_12 0xa8
216 #define GPCMD_READ_CDVD_CAPACITY 0x25
217 #define GPCMD_READ_CD 0xbe
218 #define GPCMD_READ_CD_MSF 0xb9
219 #define GPCMD_READ_DISC_INFO 0x51
220 #define GPCMD_READ_DVD_STRUCTURE 0xad
221 #define GPCMD_READ_FORMAT_CAPACITIES 0x23
222 #define GPCMD_READ_HEADER 0x44
223 #define GPCMD_READ_TRACK_RZONE_INFO 0x52
224 #define GPCMD_READ_SUBCHANNEL 0x42
225 #define GPCMD_READ_TOC_PMA_ATIP 0x43
226 #define GPCMD_REPAIR_RZONE_TRACK 0x58
227 #define GPCMD_REPORT_KEY 0xa4
228 #define GPCMD_REQUEST_SENSE 0x03
229 #define GPCMD_RESERVE_RZONE_TRACK 0x53
230 #define GPCMD_SCAN 0xba
231 #define GPCMD_SEEK 0x2b
232 #define GPCMD_SEND_DVD_STRUCTURE 0xad
233 #define GPCMD_SEND_EVENT 0xa2
234 #define GPCMD_SEND_KEY 0xa3
235 #define GPCMD_SEND_OPC 0x54
236 #define GPCMD_SET_READ_AHEAD 0xa7
237 #define GPCMD_SET_STREAMING 0xb6
238 #define GPCMD_START_STOP_UNIT 0x1b
239 #define GPCMD_STOP_PLAY_SCAN 0x4e
240 #define GPCMD_TEST_UNIT_READY 0x00
241 #define GPCMD_VERIFY_10 0x2f
242 #define GPCMD_WRITE_10 0x2a
243 #define GPCMD_WRITE_AND_VERIFY_10 0x2e
244 /* This is listed as optional in ATAPI 2.6, but is (curiously)
245 * missing from Mt. Fuji, Table 57. It _is_ mentioned in Mt. Fuji
246 * Table 377 as an MMC command for SCSi devices though... Most ATAPI
247 * drives support it. */
248 #define GPCMD_SET_SPEED 0xbb
249 /* This seems to be a SCSI specific CD-ROM opcode
250 * to play data at track/index */
251 #define GPCMD_PLAYAUDIO_TI 0x48
253 * From MS Media Status Notification Support Specification. For
256 #define GPCMD_GET_MEDIA_STATUS 0xda
258 /* Mode page codes for mode sense/set */
259 #define GPMODE_R_W_ERROR_PAGE 0x01
260 #define GPMODE_WRITE_PARMS_PAGE 0x05
261 #define GPMODE_AUDIO_CTL_PAGE 0x0e
262 #define GPMODE_POWER_PAGE 0x1a
263 #define GPMODE_FAULT_FAIL_PAGE 0x1c
264 #define GPMODE_TO_PROTECT_PAGE 0x1d
265 #define GPMODE_CAPABILITIES_PAGE 0x2a
266 #define GPMODE_ALL_PAGES 0x3f
267 /* Not in Mt. Fuji, but in ATAPI 2.6 -- depricated now in favor
268 * of MODE_SENSE_POWER_PAGE */
269 #define GPMODE_CDROM_PAGE 0x0d
271 #define ATAPI_INT_REASON_CD 0x01 /* 0 = data transfer */
272 #define ATAPI_INT_REASON_IO 0x02 /* 1 = transfer to the host */
273 #define ATAPI_INT_REASON_REL 0x04
274 #define ATAPI_INT_REASON_TAG 0xf8
276 /* same constants as bochs */
277 #define ASC_ILLEGAL_OPCODE 0x20
278 #define ASC_LOGICAL_BLOCK_OOR 0x21
279 #define ASC_INV_FIELD_IN_CMD_PACKET 0x24
280 #define ASC_MEDIUM_NOT_PRESENT 0x3a
281 #define ASC_SAVING_PARAMETERS_NOT_SUPPORTED 0x39
284 #define SENSE_NOT_READY 2
285 #define SENSE_ILLEGAL_REQUEST 5
286 #define SENSE_UNIT_ATTENTION 6
290 typedef void EndTransferFunc(struct IDEState *);
292 /* NOTE: IDEState represents in fact one drive */
293 typedef struct IDEState {
296 int cylinders, heads, sectors;
300 uint16_t identify_data[256];
305 struct BMDMAState *bmdma;
310 uint16_t nsector; /* 0 is 256 to ease computations */
316 /* 0x3f6 command, only meaningful for drive 0 */
318 /* depends on bit 4 in select, only meaningful for drive 0 */
319 struct IDEState *cur_drive;
320 BlockDriverState *bs;
324 int packet_transfer_size;
325 int elementary_transfer_size;
329 int atapi_dma; /* true if dma is requested for the packet cmd */
332 /* PIO transfer handling */
333 int req_nb_sectors; /* number of sectors per interrupt */
334 EndTransferFunc *end_transfer_func;
337 uint8_t io_buffer[MAX_MULT_SECTORS*512 + 4];
338 QEMUTimer *sector_write_timer; /* only used for win2k instal hack */
341 #define BM_STATUS_DMAING 0x01
342 #define BM_STATUS_ERROR 0x02
343 #define BM_STATUS_INT 0x04
345 #define BM_CMD_START 0x01
346 #define BM_CMD_READ 0x08
348 #define IDE_TYPE_PIIX3 0
349 #define IDE_TYPE_CMD646 1
351 /* CMD646 specific */
353 #define MRDMODE_INTR_CH0 0x04
354 #define MRDMODE_INTR_CH1 0x08
355 #define MRDMODE_BLK_CH0 0x10
356 #define MRDMODE_BLK_CH1 0x20
357 #define UDIDETCR0 0x73
358 #define UDIDETCR1 0x7B
360 typedef int IDEDMAFunc(IDEState *s,
361 target_phys_addr_t phys_addr,
364 typedef struct BMDMAState {
369 struct PCIIDEState *pci_dev;
370 /* current transfer state */
375 typedef struct PCIIDEState {
379 int type; /* see IDE_TYPE_xxx */
382 static void ide_dma_start(IDEState *s, IDEDMAFunc *dma_cb);
384 static void padstr(char *str, const char *src, int len)
387 for(i = 0; i < len; i++) {
392 *(char *)((long)str ^ 1) = v;
397 static void padstr8(uint8_t *buf, int buf_size, const char *src)
400 for(i = 0; i < buf_size; i++) {
408 static void put_le16(uint16_t *p, unsigned int v)
413 static void ide_identify(IDEState *s)
416 unsigned int oldsize;
419 if (s->identify_set) {
420 memcpy(s->io_buffer, s->identify_data, sizeof(s->identify_data));
424 memset(s->io_buffer, 0, 512);
425 p = (uint16_t *)s->io_buffer;
426 put_le16(p + 0, 0x0040);
427 put_le16(p + 1, s->cylinders);
428 put_le16(p + 3, s->heads);
429 put_le16(p + 4, 512 * s->sectors); /* XXX: retired, remove ? */
430 put_le16(p + 5, 512); /* XXX: retired, remove ? */
431 put_le16(p + 6, s->sectors);
432 snprintf(buf, sizeof(buf), "QM%05d", s->drive_serial);
433 padstr((uint8_t *)(p + 10), buf, 20); /* serial number */
434 put_le16(p + 20, 3); /* XXX: retired, remove ? */
435 put_le16(p + 21, 512); /* cache size in sectors */
436 put_le16(p + 22, 4); /* ecc bytes */
437 padstr((uint8_t *)(p + 23), QEMU_VERSION, 8); /* firmware version */
438 padstr((uint8_t *)(p + 27), "QEMU HARDDISK", 40); /* model */
439 #if MAX_MULT_SECTORS > 1
440 put_le16(p + 47, 0x8000 | MAX_MULT_SECTORS);
442 put_le16(p + 48, 1); /* dword I/O */
443 put_le16(p + 49, (1 << 11) | (1 << 9) | (1 << 8)); /* DMA and LBA supported */
444 put_le16(p + 51, 0x200); /* PIO transfer cycle */
445 put_le16(p + 52, 0x200); /* DMA transfer cycle */
446 put_le16(p + 53, 1 | (1 << 1) | (1 << 2)); /* words 54-58,64-70,88 are valid */
447 put_le16(p + 54, s->cylinders);
448 put_le16(p + 55, s->heads);
449 put_le16(p + 56, s->sectors);
450 oldsize = s->cylinders * s->heads * s->sectors;
451 put_le16(p + 57, oldsize);
452 put_le16(p + 58, oldsize >> 16);
454 put_le16(p + 59, 0x100 | s->mult_sectors);
455 put_le16(p + 60, s->nb_sectors);
456 put_le16(p + 61, s->nb_sectors >> 16);
457 put_le16(p + 63, 0x07); /* mdma0-2 supported */
458 put_le16(p + 65, 120);
459 put_le16(p + 66, 120);
460 put_le16(p + 67, 120);
461 put_le16(p + 68, 120);
462 put_le16(p + 80, 0xf0); /* ata3 -> ata6 supported */
463 put_le16(p + 81, 0x16); /* conforms to ata5 */
464 put_le16(p + 82, (1 << 14));
465 put_le16(p + 83, (1 << 14));
466 put_le16(p + 84, (1 << 14));
467 put_le16(p + 85, (1 << 14));
469 put_le16(p + 87, (1 << 14));
470 put_le16(p + 88, 0x3f | (1 << 13)); /* udma5 set and supported */
471 put_le16(p + 93, 1 | (1 << 14) | 0x2000);
473 memcpy(s->identify_data, p, sizeof(s->identify_data));
477 static void ide_atapi_identify(IDEState *s)
482 if (s->identify_set) {
483 memcpy(s->io_buffer, s->identify_data, sizeof(s->identify_data));
487 memset(s->io_buffer, 0, 512);
488 p = (uint16_t *)s->io_buffer;
489 /* Removable CDROM, 50us response, 12 byte packets */
490 put_le16(p + 0, (2 << 14) | (5 << 8) | (1 << 7) | (2 << 5) | (0 << 0));
491 snprintf(buf, sizeof(buf), "QM%05d", s->drive_serial);
492 padstr((uint8_t *)(p + 10), buf, 20); /* serial number */
493 put_le16(p + 20, 3); /* buffer type */
494 put_le16(p + 21, 512); /* cache size in sectors */
495 put_le16(p + 22, 4); /* ecc bytes */
496 padstr((uint8_t *)(p + 23), QEMU_VERSION, 8); /* firmware version */
497 padstr((uint8_t *)(p + 27), "QEMU CD-ROM", 40); /* model */
498 put_le16(p + 48, 1); /* dword I/O (XXX: should not be set on CDROM) */
499 put_le16(p + 49, 1 << 9); /* LBA supported, no DMA */
500 put_le16(p + 53, 3); /* words 64-70, 54-58 valid */
501 put_le16(p + 63, 0x103); /* DMA modes XXX: may be incorrect */
502 put_le16(p + 64, 1); /* PIO modes */
503 put_le16(p + 65, 0xb4); /* minimum DMA multiword tx cycle time */
504 put_le16(p + 66, 0xb4); /* recommended DMA multiword tx cycle time */
505 put_le16(p + 67, 0x12c); /* minimum PIO cycle time without flow control */
506 put_le16(p + 68, 0xb4); /* minimum PIO cycle time with IORDY flow control */
508 put_le16(p + 71, 30); /* in ns */
509 put_le16(p + 72, 30); /* in ns */
511 put_le16(p + 80, 0x1e); /* support up to ATA/ATAPI-4 */
513 memcpy(s->identify_data, p, sizeof(s->identify_data));
517 static void ide_set_signature(IDEState *s)
519 s->select &= 0xf0; /* clear head */
535 static inline void ide_abort_command(IDEState *s)
537 s->status = READY_STAT | ERR_STAT;
541 static inline void ide_set_irq(IDEState *s)
543 BMDMAState *bm = s->bmdma;
544 if (!(s->cmd & IDE_CMD_DISABLE_IRQ)) {
546 bm->status |= BM_STATUS_INT;
548 s->set_irq(s->irq_opaque, s->irq, 1);
552 /* prepare data transfer and tell what to do after */
553 static void ide_transfer_start(IDEState *s, uint8_t *buf, int size,
554 EndTransferFunc *end_transfer_func)
556 s->end_transfer_func = end_transfer_func;
558 s->data_end = buf + size;
559 s->status |= DRQ_STAT;
562 static void ide_transfer_stop(IDEState *s)
564 s->end_transfer_func = ide_transfer_stop;
565 s->data_ptr = s->io_buffer;
566 s->data_end = s->io_buffer;
567 s->status &= ~DRQ_STAT;
570 static int64_t ide_get_sector(IDEState *s)
573 if (s->select & 0x40) {
575 sector_num = ((s->select & 0x0f) << 24) | (s->hcyl << 16) |
576 (s->lcyl << 8) | s->sector;
578 sector_num = ((s->hcyl << 8) | s->lcyl) * s->heads * s->sectors +
579 (s->select & 0x0f) * s->sectors +
585 static void ide_set_sector(IDEState *s, int64_t sector_num)
588 if (s->select & 0x40) {
589 s->select = (s->select & 0xf0) | (sector_num >> 24);
590 s->hcyl = (sector_num >> 16);
591 s->lcyl = (sector_num >> 8);
592 s->sector = (sector_num);
594 cyl = sector_num / (s->heads * s->sectors);
595 r = sector_num % (s->heads * s->sectors);
598 s->select = (s->select & 0xf0) | ((r / s->sectors) & 0x0f);
599 s->sector = (r % s->sectors) + 1;
603 static void ide_sector_read(IDEState *s)
608 s->status = READY_STAT | SEEK_STAT;
609 s->error = 0; /* not needed by IDE spec, but needed by Windows */
610 sector_num = ide_get_sector(s);
613 /* no more sector to read from disk */
614 ide_transfer_stop(s);
616 #if defined(DEBUG_IDE)
617 printf("read sector=%Ld\n", sector_num);
619 if (n > s->req_nb_sectors)
620 n = s->req_nb_sectors;
621 ret = bdrv_read(s->bs, sector_num, s->io_buffer, n);
622 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_read);
624 ide_set_sector(s, sector_num + n);
629 static int ide_read_dma_cb(IDEState *s,
630 target_phys_addr_t phys_addr,
633 int len, transfer_size, n;
636 transfer_size = transfer_size1;
637 while (transfer_size > 0) {
638 len = s->io_buffer_size - s->io_buffer_index;
640 /* transfert next data */
644 if (n > MAX_MULT_SECTORS)
645 n = MAX_MULT_SECTORS;
646 sector_num = ide_get_sector(s);
647 bdrv_read(s->bs, sector_num, s->io_buffer, n);
648 s->io_buffer_index = 0;
649 s->io_buffer_size = n * 512;
650 len = s->io_buffer_size;
652 ide_set_sector(s, sector_num);
655 if (len > transfer_size)
657 cpu_physical_memory_write(phys_addr,
658 s->io_buffer + s->io_buffer_index, len);
659 s->io_buffer_index += len;
660 transfer_size -= len;
663 if (s->io_buffer_index >= s->io_buffer_size && s->nsector == 0) {
664 s->status = READY_STAT | SEEK_STAT;
666 #ifdef DEBUG_IDE_ATAPI
667 printf("dma status=0x%x\n", s->status);
671 return transfer_size1 - transfer_size;
674 static void ide_sector_read_dma(IDEState *s)
676 s->status = READY_STAT | SEEK_STAT | DRQ_STAT;
677 s->io_buffer_index = 0;
678 s->io_buffer_size = 0;
679 ide_dma_start(s, ide_read_dma_cb);
682 static void ide_sector_write_timer_cb(void *opaque)
684 IDEState *s = opaque;
688 static void ide_sector_write(IDEState *s)
693 s->status = READY_STAT | SEEK_STAT;
694 sector_num = ide_get_sector(s);
695 #if defined(DEBUG_IDE)
696 printf("write sector=%Ld\n", sector_num);
699 if (n > s->req_nb_sectors)
700 n = s->req_nb_sectors;
701 ret = bdrv_write(s->bs, sector_num, s->io_buffer, n);
703 if (s->nsector == 0) {
704 /* no more sector to write */
705 ide_transfer_stop(s);
708 if (n1 > s->req_nb_sectors)
709 n1 = s->req_nb_sectors;
710 ide_transfer_start(s, s->io_buffer, 512 * n1, ide_sector_write);
712 ide_set_sector(s, sector_num + n);
715 if (win2k_install_hack) {
716 /* It seems there is a bug in the Windows 2000 installer HDD
717 IDE driver which fills the disk with empty logs when the
718 IDE write IRQ comes too early. This hack tries to correct
719 that at the expense of slower write performances. Use this
720 option _only_ to install Windows 2000. You must disable it
722 qemu_mod_timer(s->sector_write_timer,
723 qemu_get_clock(vm_clock) + (ticks_per_sec / 1000));
731 static int ide_write_dma_cb(IDEState *s,
732 target_phys_addr_t phys_addr,
735 int len, transfer_size, n;
738 transfer_size = transfer_size1;
740 len = s->io_buffer_size - s->io_buffer_index;
742 n = s->io_buffer_size >> 9;
743 sector_num = ide_get_sector(s);
744 bdrv_write(s->bs, sector_num, s->io_buffer,
745 s->io_buffer_size >> 9);
747 ide_set_sector(s, sector_num);
751 /* end of transfer */
752 s->status = READY_STAT | SEEK_STAT;
756 if (n > MAX_MULT_SECTORS)
757 n = MAX_MULT_SECTORS;
758 s->io_buffer_index = 0;
759 s->io_buffer_size = n * 512;
760 len = s->io_buffer_size;
762 if (transfer_size <= 0)
764 if (len > transfer_size)
766 cpu_physical_memory_read(phys_addr,
767 s->io_buffer + s->io_buffer_index, len);
768 s->io_buffer_index += len;
769 transfer_size -= len;
772 return transfer_size1 - transfer_size;
775 static void ide_sector_write_dma(IDEState *s)
778 s->status = READY_STAT | SEEK_STAT | DRQ_STAT;
780 if (n > MAX_MULT_SECTORS)
781 n = MAX_MULT_SECTORS;
782 s->io_buffer_index = 0;
783 s->io_buffer_size = n * 512;
784 ide_dma_start(s, ide_write_dma_cb);
787 static void ide_atapi_cmd_ok(IDEState *s)
790 s->status = READY_STAT;
791 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
795 static void ide_atapi_cmd_error(IDEState *s, int sense_key, int asc)
797 #ifdef DEBUG_IDE_ATAPI
798 printf("atapi_cmd_error: sense=0x%x asc=0x%x\n", sense_key, asc);
800 s->error = sense_key << 4;
801 s->status = READY_STAT | ERR_STAT;
802 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
803 s->sense_key = sense_key;
808 static inline void cpu_to_ube16(uint8_t *buf, int val)
814 static inline void cpu_to_ube32(uint8_t *buf, unsigned int val)
822 static inline int ube16_to_cpu(const uint8_t *buf)
824 return (buf[0] << 8) | buf[1];
827 static inline int ube32_to_cpu(const uint8_t *buf)
829 return (buf[0] << 24) | (buf[1] << 16) | (buf[2] << 8) | buf[3];
832 static void lba_to_msf(uint8_t *buf, int lba)
835 buf[0] = (lba / 75) / 60;
836 buf[1] = (lba / 75) % 60;
840 static void cd_read_sector(BlockDriverState *bs, int lba, uint8_t *buf,
843 switch(sector_size) {
845 bdrv_read(bs, (int64_t)lba << 2, buf, 4);
850 memset(buf + 1, 0xff, 10);
854 lba_to_msf(buf, lba);
855 buf[3] = 0x01; /* mode 1 data */
858 bdrv_read(bs, (int64_t)lba << 2, buf, 4);
868 /* The whole ATAPI transfer logic is handled in this function */
869 static void ide_atapi_cmd_reply_end(IDEState *s)
871 int byte_count_limit, size;
872 #ifdef DEBUG_IDE_ATAPI
873 printf("reply: tx_size=%d elem_tx_size=%d index=%d\n",
874 s->packet_transfer_size,
875 s->elementary_transfer_size,
878 if (s->packet_transfer_size <= 0) {
879 /* end of transfer */
880 ide_transfer_stop(s);
881 s->status = READY_STAT;
882 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
884 #ifdef DEBUG_IDE_ATAPI
885 printf("status=0x%x\n", s->status);
888 /* see if a new sector must be read */
889 if (s->lba != -1 && s->io_buffer_index >= s->cd_sector_size) {
890 cd_read_sector(s->bs, s->lba, s->io_buffer, s->cd_sector_size);
892 s->io_buffer_index = 0;
894 if (s->elementary_transfer_size > 0) {
895 /* there are some data left to transmit in this elementary
897 size = s->cd_sector_size - s->io_buffer_index;
898 if (size > s->elementary_transfer_size)
899 size = s->elementary_transfer_size;
900 ide_transfer_start(s, s->io_buffer + s->io_buffer_index,
901 size, ide_atapi_cmd_reply_end);
902 s->packet_transfer_size -= size;
903 s->elementary_transfer_size -= size;
904 s->io_buffer_index += size;
906 /* a new transfer is needed */
907 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO;
908 byte_count_limit = s->lcyl | (s->hcyl << 8);
909 #ifdef DEBUG_IDE_ATAPI
910 printf("byte_count_limit=%d\n", byte_count_limit);
912 if (byte_count_limit == 0xffff)
914 size = s->packet_transfer_size;
915 if (size > byte_count_limit) {
916 /* byte count limit must be even if this case */
917 if (byte_count_limit & 1)
919 size = byte_count_limit;
923 s->elementary_transfer_size = size;
924 /* we cannot transmit more than one sector at a time */
926 if (size > (s->cd_sector_size - s->io_buffer_index))
927 size = (s->cd_sector_size - s->io_buffer_index);
929 ide_transfer_start(s, s->io_buffer + s->io_buffer_index,
930 size, ide_atapi_cmd_reply_end);
931 s->packet_transfer_size -= size;
932 s->elementary_transfer_size -= size;
933 s->io_buffer_index += size;
935 #ifdef DEBUG_IDE_ATAPI
936 printf("status=0x%x\n", s->status);
942 /* send a reply of 'size' bytes in s->io_buffer to an ATAPI command */
943 static void ide_atapi_cmd_reply(IDEState *s, int size, int max_size)
947 s->lba = -1; /* no sector read */
948 s->packet_transfer_size = size;
949 s->elementary_transfer_size = 0;
950 s->io_buffer_index = 0;
952 s->status = READY_STAT;
953 ide_atapi_cmd_reply_end(s);
956 /* start a CD-CDROM read command */
957 static void ide_atapi_cmd_read_pio(IDEState *s, int lba, int nb_sectors,
961 s->packet_transfer_size = nb_sectors * sector_size;
962 s->elementary_transfer_size = 0;
963 s->io_buffer_index = sector_size;
964 s->cd_sector_size = sector_size;
966 s->status = READY_STAT;
967 ide_atapi_cmd_reply_end(s);
970 /* ATAPI DMA support */
971 static int ide_atapi_cmd_read_dma_cb(IDEState *s,
972 target_phys_addr_t phys_addr,
975 int len, transfer_size;
977 transfer_size = transfer_size1;
978 while (transfer_size > 0) {
979 #ifdef DEBUG_IDE_ATAPI
980 printf("transfer_size: %d phys_addr=%08x\n", transfer_size, phys_addr);
982 if (s->packet_transfer_size <= 0)
984 len = s->cd_sector_size - s->io_buffer_index;
986 /* transfert next data */
987 cd_read_sector(s->bs, s->lba, s->io_buffer, s->cd_sector_size);
989 s->io_buffer_index = 0;
990 len = s->cd_sector_size;
992 if (len > transfer_size)
994 cpu_physical_memory_write(phys_addr,
995 s->io_buffer + s->io_buffer_index, len);
996 s->packet_transfer_size -= len;
997 s->io_buffer_index += len;
998 transfer_size -= len;
1001 if (s->packet_transfer_size <= 0) {
1002 s->status = READY_STAT;
1003 s->nsector = (s->nsector & ~7) | ATAPI_INT_REASON_IO | ATAPI_INT_REASON_CD;
1005 #ifdef DEBUG_IDE_ATAPI
1006 printf("dma status=0x%x\n", s->status);
1010 return transfer_size1 - transfer_size;
1013 /* start a CD-CDROM read command with DMA */
1014 /* XXX: test if DMA is available */
1015 static void ide_atapi_cmd_read_dma(IDEState *s, int lba, int nb_sectors,
1019 s->packet_transfer_size = nb_sectors * sector_size;
1020 s->io_buffer_index = sector_size;
1021 s->cd_sector_size = sector_size;
1023 s->status = READY_STAT | DRQ_STAT;
1024 ide_dma_start(s, ide_atapi_cmd_read_dma_cb);
1027 static void ide_atapi_cmd_read(IDEState *s, int lba, int nb_sectors,
1030 #ifdef DEBUG_IDE_ATAPI
1031 printf("read: LBA=%d nb_sectors=%d\n", lba, nb_sectors);
1034 ide_atapi_cmd_read_dma(s, lba, nb_sectors, sector_size);
1036 ide_atapi_cmd_read_pio(s, lba, nb_sectors, sector_size);
1040 /* same toc as bochs. Return -1 if error or the toc length */
1041 /* XXX: check this */
1042 static int cdrom_read_toc(IDEState *s, uint8_t *buf, int msf, int start_track)
1045 int nb_sectors, len;
1047 if (start_track > 1 && start_track != 0xaa)
1050 *q++ = 1; /* first session */
1051 *q++ = 1; /* last session */
1052 if (start_track <= 1) {
1053 *q++ = 0; /* reserved */
1054 *q++ = 0x14; /* ADR, control */
1055 *q++ = 1; /* track number */
1056 *q++ = 0; /* reserved */
1058 *q++ = 0; /* reserved */
1067 /* lead out track */
1068 *q++ = 0; /* reserved */
1069 *q++ = 0x16; /* ADR, control */
1070 *q++ = 0xaa; /* track number */
1071 *q++ = 0; /* reserved */
1072 nb_sectors = s->nb_sectors >> 2;
1074 *q++ = 0; /* reserved */
1075 lba_to_msf(q, nb_sectors);
1078 cpu_to_ube32(q, nb_sectors);
1082 cpu_to_ube16(buf, len - 2);
1086 /* mostly same info as PearPc */
1087 static int cdrom_read_toc_raw(IDEState *s, uint8_t *buf, int msf,
1091 int nb_sectors, len;
1094 *q++ = 1; /* first session */
1095 *q++ = 1; /* last session */
1097 *q++ = 1; /* session number */
1098 *q++ = 0x14; /* data track */
1099 *q++ = 0; /* track number */
1100 *q++ = 0xa0; /* lead-in */
1103 *q++ = 0; /* frame */
1105 *q++ = 1; /* first track */
1106 *q++ = 0x00; /* disk type */
1109 *q++ = 1; /* session number */
1110 *q++ = 0x14; /* data track */
1111 *q++ = 0; /* track number */
1115 *q++ = 0; /* frame */
1117 *q++ = 1; /* last track */
1121 *q++ = 1; /* session number */
1122 *q++ = 0x14; /* data track */
1123 *q++ = 0; /* track number */
1124 *q++ = 0xa2; /* lead-out */
1127 *q++ = 0; /* frame */
1128 nb_sectors = s->nb_sectors >> 2;
1130 *q++ = 0; /* reserved */
1131 lba_to_msf(q, nb_sectors);
1134 cpu_to_ube32(q, nb_sectors);
1138 *q++ = 1; /* session number */
1139 *q++ = 0x14; /* ADR, control */
1140 *q++ = 0; /* track number */
1141 *q++ = 1; /* point */
1144 *q++ = 0; /* frame */
1157 cpu_to_ube16(buf, len - 2);
1161 static void ide_atapi_cmd(IDEState *s)
1163 const uint8_t *packet;
1167 packet = s->io_buffer;
1169 #ifdef DEBUG_IDE_ATAPI
1172 printf("ATAPI limit=0x%x packet:", s->lcyl | (s->hcyl << 8));
1173 for(i = 0; i < ATAPI_PACKET_SIZE; i++) {
1174 printf(" %02x", packet[i]);
1179 switch(s->io_buffer[0]) {
1180 case GPCMD_TEST_UNIT_READY:
1181 if (bdrv_is_inserted(s->bs)) {
1182 ide_atapi_cmd_ok(s);
1184 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1185 ASC_MEDIUM_NOT_PRESENT);
1188 case GPCMD_MODE_SENSE_10:
1191 max_len = ube16_to_cpu(packet + 7);
1192 action = packet[2] >> 6;
1193 code = packet[2] & 0x3f;
1195 case 0: /* current values */
1197 case 0x01: /* error recovery */
1198 cpu_to_ube16(&buf[0], 16 + 6);
1214 ide_atapi_cmd_reply(s, 16, max_len);
1217 cpu_to_ube16(&buf[0], 28 + 6);
1232 buf[14] = (1 << 0) | (1 << 3) | (1 << 5);
1233 if (bdrv_is_locked(s->bs))
1236 cpu_to_ube16(&buf[16], 706);
1239 cpu_to_ube16(&buf[20], 512);
1240 cpu_to_ube16(&buf[22], 706);
1245 ide_atapi_cmd_reply(s, 28, max_len);
1251 case 1: /* changeable values */
1253 case 2: /* default values */
1256 case 3: /* saved values */
1257 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1258 ASC_SAVING_PARAMETERS_NOT_SUPPORTED);
1263 case GPCMD_REQUEST_SENSE:
1264 max_len = packet[4];
1266 buf[0] = 0x70 | (1 << 7);
1267 buf[2] = s->sense_key;
1270 ide_atapi_cmd_reply(s, 18, max_len);
1272 case GPCMD_PREVENT_ALLOW_MEDIUM_REMOVAL:
1273 if (bdrv_is_inserted(s->bs)) {
1274 bdrv_set_locked(s->bs, packet[4] & 1);
1275 ide_atapi_cmd_ok(s);
1277 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1278 ASC_MEDIUM_NOT_PRESENT);
1284 int nb_sectors, lba;
1286 if (!bdrv_is_inserted(s->bs)) {
1287 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1288 ASC_MEDIUM_NOT_PRESENT);
1291 if (packet[0] == GPCMD_READ_10)
1292 nb_sectors = ube16_to_cpu(packet + 7);
1294 nb_sectors = ube32_to_cpu(packet + 6);
1295 lba = ube32_to_cpu(packet + 2);
1296 if (nb_sectors == 0) {
1297 ide_atapi_cmd_ok(s);
1300 if (((int64_t)(lba + nb_sectors) << 2) > s->nb_sectors) {
1301 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1302 ASC_LOGICAL_BLOCK_OOR);
1305 ide_atapi_cmd_read(s, lba, nb_sectors, 2048);
1310 int nb_sectors, lba, transfer_request;
1312 if (!bdrv_is_inserted(s->bs)) {
1313 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1314 ASC_MEDIUM_NOT_PRESENT);
1317 nb_sectors = (packet[6] << 16) | (packet[7] << 8) | packet[8];
1318 lba = ube32_to_cpu(packet + 2);
1319 if (nb_sectors == 0) {
1320 ide_atapi_cmd_ok(s);
1323 if (((int64_t)(lba + nb_sectors) << 2) > s->nb_sectors) {
1324 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1325 ASC_LOGICAL_BLOCK_OOR);
1328 transfer_request = packet[9];
1329 switch(transfer_request & 0xf8) {
1332 ide_atapi_cmd_ok(s);
1336 ide_atapi_cmd_read(s, lba, nb_sectors, 2048);
1340 ide_atapi_cmd_read(s, lba, nb_sectors, 2352);
1343 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1344 ASC_INV_FIELD_IN_CMD_PACKET);
1352 if (!bdrv_is_inserted(s->bs)) {
1353 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1354 ASC_MEDIUM_NOT_PRESENT);
1357 lba = ube32_to_cpu(packet + 2);
1358 if (((int64_t)lba << 2) > s->nb_sectors) {
1359 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1360 ASC_LOGICAL_BLOCK_OOR);
1363 ide_atapi_cmd_ok(s);
1366 case GPCMD_START_STOP_UNIT:
1369 start = packet[4] & 1;
1370 eject = (packet[4] >> 1) & 1;
1372 if (eject && !start) {
1373 /* eject the disk */
1376 ide_atapi_cmd_ok(s);
1379 case GPCMD_MECHANISM_STATUS:
1381 max_len = ube16_to_cpu(packet + 8);
1382 cpu_to_ube16(buf, 0);
1383 /* no current LBA */
1388 cpu_to_ube16(buf + 6, 0);
1389 ide_atapi_cmd_reply(s, 8, max_len);
1392 case GPCMD_READ_TOC_PMA_ATIP:
1394 int format, msf, start_track, len;
1396 if (!bdrv_is_inserted(s->bs)) {
1397 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1398 ASC_MEDIUM_NOT_PRESENT);
1401 max_len = ube16_to_cpu(packet + 7);
1402 format = packet[9] >> 6;
1403 msf = (packet[1] >> 1) & 1;
1404 start_track = packet[6];
1407 len = cdrom_read_toc(s, buf, msf, start_track);
1410 ide_atapi_cmd_reply(s, len, max_len);
1413 /* multi session : only a single session defined */
1418 ide_atapi_cmd_reply(s, 12, max_len);
1421 len = cdrom_read_toc_raw(s, buf, msf, start_track);
1424 ide_atapi_cmd_reply(s, len, max_len);
1428 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1429 ASC_INV_FIELD_IN_CMD_PACKET);
1434 case GPCMD_READ_CDVD_CAPACITY:
1435 if (!bdrv_is_inserted(s->bs)) {
1436 ide_atapi_cmd_error(s, SENSE_NOT_READY,
1437 ASC_MEDIUM_NOT_PRESENT);
1440 /* NOTE: it is really the number of sectors minus 1 */
1441 cpu_to_ube32(buf, (s->nb_sectors >> 2) - 1);
1442 cpu_to_ube32(buf + 4, 2048);
1443 ide_atapi_cmd_reply(s, 8, 8);
1446 max_len = packet[4];
1447 buf[0] = 0x05; /* CD-ROM */
1448 buf[1] = 0x80; /* removable */
1449 buf[2] = 0x00; /* ISO */
1450 buf[3] = 0x21; /* ATAPI-2 (XXX: put ATAPI-4 ?) */
1451 buf[4] = 31; /* additionnal length */
1452 buf[5] = 0; /* reserved */
1453 buf[6] = 0; /* reserved */
1454 buf[7] = 0; /* reserved */
1455 padstr8(buf + 8, 8, "QEMU");
1456 padstr8(buf + 16, 16, "QEMU CD-ROM");
1457 padstr8(buf + 32, 4, QEMU_VERSION);
1458 ide_atapi_cmd_reply(s, 36, max_len);
1461 ide_atapi_cmd_error(s, SENSE_ILLEGAL_REQUEST,
1462 ASC_ILLEGAL_OPCODE);
1467 /* called when the inserted state of the media has changed */
1468 static void cdrom_change_cb(void *opaque)
1470 IDEState *s = opaque;
1473 /* XXX: send interrupt too */
1474 bdrv_get_geometry(s->bs, &nb_sectors);
1475 s->nb_sectors = nb_sectors;
1478 static void ide_ioport_write(void *opaque, uint32_t addr, uint32_t val)
1480 IDEState *ide_if = opaque;
1485 printf("IDE: write addr=0x%x val=0x%02x\n", addr, val);
1492 /* NOTE: data is written to the two drives */
1493 ide_if[0].feature = val;
1494 ide_if[1].feature = val;
1499 ide_if[0].nsector = val;
1500 ide_if[1].nsector = val;
1503 ide_if[0].sector = val;
1504 ide_if[1].sector = val;
1507 ide_if[0].lcyl = val;
1508 ide_if[1].lcyl = val;
1511 ide_if[0].hcyl = val;
1512 ide_if[1].hcyl = val;
1515 ide_if[0].select = (val & ~0x10) | 0xa0;
1516 ide_if[1].select = (val | 0x10) | 0xa0;
1518 unit = (val >> 4) & 1;
1520 ide_if->cur_drive = s;
1525 #if defined(DEBUG_IDE)
1526 printf("ide: CMD=%02x\n", val);
1528 s = ide_if->cur_drive;
1529 /* ignore commands to non existant slave */
1530 if (s != ide_if && !s->bs)
1534 if (s->bs && !s->is_cdrom) {
1536 s->status = READY_STAT | SEEK_STAT;
1537 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
1540 ide_set_signature(s);
1542 ide_abort_command(s);
1549 s->status = READY_STAT | SEEK_STAT;
1553 if (s->nsector > MAX_MULT_SECTORS ||
1555 (s->nsector & (s->nsector - 1)) != 0) {
1556 ide_abort_command(s);
1558 s->mult_sectors = s->nsector;
1559 s->status = READY_STAT;
1564 case WIN_VERIFY_ONCE:
1565 /* do sector number check ? */
1566 s->status = READY_STAT;
1573 s->req_nb_sectors = 1;
1577 case WIN_WRITE_ONCE:
1579 s->status = SEEK_STAT | READY_STAT;
1580 s->req_nb_sectors = 1;
1581 ide_transfer_start(s, s->io_buffer, 512, ide_sector_write);
1584 if (!s->mult_sectors)
1586 s->req_nb_sectors = s->mult_sectors;
1590 if (!s->mult_sectors)
1593 s->status = SEEK_STAT | READY_STAT;
1594 s->req_nb_sectors = s->mult_sectors;
1596 if (n > s->req_nb_sectors)
1597 n = s->req_nb_sectors;
1598 ide_transfer_start(s, s->io_buffer, 512 * n, ide_sector_write);
1601 case WIN_READDMA_ONCE:
1604 ide_sector_read_dma(s);
1607 case WIN_WRITEDMA_ONCE:
1610 ide_sector_write_dma(s);
1612 case WIN_READ_NATIVE_MAX:
1613 ide_set_sector(s, s->nb_sectors - 1);
1614 s->status = READY_STAT;
1617 case WIN_CHECKPOWERMODE1:
1618 s->nsector = 0xff; /* device active or idle */
1619 s->status = READY_STAT;
1622 case WIN_SETFEATURES:
1625 /* XXX: valid for CDROM ? */
1626 switch(s->feature) {
1627 case 0x02: /* write cache enable */
1628 case 0x82: /* write cache disable */
1629 case 0xaa: /* read look-ahead enable */
1630 case 0x55: /* read look-ahead disable */
1631 s->status = READY_STAT | SEEK_STAT;
1634 case 0x03: { /* set transfer mode */
1635 uint8_t val = s->nsector & 0x07;
1637 switch (s->nsector >> 3) {
1638 case 0x00: /* pio default */
1639 case 0x01: /* pio mode */
1640 put_le16(s->identify_data + 63,0x07);
1641 put_le16(s->identify_data + 88,0x3f);
1643 case 0x04: /* mdma mode */
1644 put_le16(s->identify_data + 63,0x07 | (1 << (val + 8)));
1645 put_le16(s->identify_data + 88,0x3f);
1647 case 0x08: /* udma mode */
1648 put_le16(s->identify_data + 63,0x07);
1649 put_le16(s->identify_data + 88,0x3f | (1 << (val + 8)));
1654 s->status = READY_STAT | SEEK_STAT;
1662 case WIN_STANDBYNOW1:
1663 case WIN_IDLEIMMEDIATE:
1664 case WIN_FLUSH_CACHE:
1665 s->status = READY_STAT;
1668 /* ATAPI commands */
1671 ide_atapi_identify(s);
1672 s->status = READY_STAT;
1673 ide_transfer_start(s, s->io_buffer, 512, ide_transfer_stop);
1675 ide_abort_command(s);
1680 ide_set_signature(s);
1681 s->status = 0x00; /* NOTE: READY is _not_ set */
1687 ide_set_signature(s);
1688 s->status = 0x00; /* NOTE: READY is _not_ set */
1694 /* overlapping commands not supported */
1695 if (s->feature & 0x02)
1697 s->atapi_dma = s->feature & 1;
1699 ide_transfer_start(s, s->io_buffer, ATAPI_PACKET_SIZE,
1704 ide_abort_command(s);
1711 static uint32_t ide_ioport_read(void *opaque, uint32_t addr1)
1713 IDEState *ide_if = opaque;
1714 IDEState *s = ide_if->cur_drive;
1724 if (!ide_if[0].bs && !ide_if[1].bs)
1730 if (!ide_if[0].bs && !ide_if[1].bs)
1733 ret = s->nsector & 0xff;
1736 if (!ide_if[0].bs && !ide_if[1].bs)
1742 if (!ide_if[0].bs && !ide_if[1].bs)
1748 if (!ide_if[0].bs && !ide_if[1].bs)
1754 if (!ide_if[0].bs && !ide_if[1].bs)
1761 if ((!ide_if[0].bs && !ide_if[1].bs) ||
1762 (s != ide_if && !s->bs))
1766 s->set_irq(s->irq_opaque, s->irq, 0);
1770 printf("ide: read addr=0x%x val=%02x\n", addr1, ret);
1775 static uint32_t ide_status_read(void *opaque, uint32_t addr)
1777 IDEState *ide_if = opaque;
1778 IDEState *s = ide_if->cur_drive;
1781 if ((!ide_if[0].bs && !ide_if[1].bs) ||
1782 (s != ide_if && !s->bs))
1787 printf("ide: read status addr=0x%x val=%02x\n", addr, ret);
1792 static void ide_cmd_write(void *opaque, uint32_t addr, uint32_t val)
1794 IDEState *ide_if = opaque;
1799 printf("ide: write control addr=0x%x val=%02x\n", addr, val);
1801 /* common for both drives */
1802 if (!(ide_if[0].cmd & IDE_CMD_RESET) &&
1803 (val & IDE_CMD_RESET)) {
1804 /* reset low to high */
1805 for(i = 0;i < 2; i++) {
1807 s->status = BUSY_STAT | SEEK_STAT;
1810 } else if ((ide_if[0].cmd & IDE_CMD_RESET) &&
1811 !(val & IDE_CMD_RESET)) {
1813 for(i = 0;i < 2; i++) {
1816 s->status = 0x00; /* NOTE: READY is _not_ set */
1818 s->status = READY_STAT | SEEK_STAT;
1819 ide_set_signature(s);
1823 ide_if[0].cmd = val;
1824 ide_if[1].cmd = val;
1827 static void ide_data_writew(void *opaque, uint32_t addr, uint32_t val)
1829 IDEState *s = ((IDEState *)opaque)->cur_drive;
1833 *(uint16_t *)p = le16_to_cpu(val);
1836 if (p >= s->data_end)
1837 s->end_transfer_func(s);
1840 static uint32_t ide_data_readw(void *opaque, uint32_t addr)
1842 IDEState *s = ((IDEState *)opaque)->cur_drive;
1846 ret = cpu_to_le16(*(uint16_t *)p);
1849 if (p >= s->data_end)
1850 s->end_transfer_func(s);
1854 static void ide_data_writel(void *opaque, uint32_t addr, uint32_t val)
1856 IDEState *s = ((IDEState *)opaque)->cur_drive;
1860 *(uint32_t *)p = le32_to_cpu(val);
1863 if (p >= s->data_end)
1864 s->end_transfer_func(s);
1867 static uint32_t ide_data_readl(void *opaque, uint32_t addr)
1869 IDEState *s = ((IDEState *)opaque)->cur_drive;
1874 ret = cpu_to_le32(*(uint32_t *)p);
1877 if (p >= s->data_end)
1878 s->end_transfer_func(s);
1882 static void ide_dummy_transfer_stop(IDEState *s)
1884 s->data_ptr = s->io_buffer;
1885 s->data_end = s->io_buffer;
1886 s->io_buffer[0] = 0xff;
1887 s->io_buffer[1] = 0xff;
1888 s->io_buffer[2] = 0xff;
1889 s->io_buffer[3] = 0xff;
1892 static void ide_reset(IDEState *s)
1894 s->mult_sectors = MAX_MULT_SECTORS;
1897 s->status = READY_STAT;
1898 ide_set_signature(s);
1899 /* init the transfer handler so that 0xffff is returned on data
1901 s->end_transfer_func = ide_dummy_transfer_stop;
1902 ide_dummy_transfer_stop(s);
1906 uint8_t boot_ind; /* 0x80 - active */
1907 uint8_t head; /* starting head */
1908 uint8_t sector; /* starting sector */
1909 uint8_t cyl; /* starting cylinder */
1910 uint8_t sys_ind; /* What partition type */
1911 uint8_t end_head; /* end head */
1912 uint8_t end_sector; /* end sector */
1913 uint8_t end_cyl; /* end cylinder */
1914 uint32_t start_sect; /* starting sector counting from 0 */
1915 uint32_t nr_sects; /* nr of sectors in partition */
1916 } __attribute__((packed));
1918 /* try to guess the disk logical geometry from the MSDOS partition table. Return 0 if OK, -1 if could not guess */
1919 static int guess_disk_lchs(IDEState *s,
1920 int *pcylinders, int *pheads, int *psectors)
1923 int ret, i, heads, sectors, cylinders;
1924 struct partition *p;
1927 ret = bdrv_read(s->bs, 0, buf, 1);
1930 /* test msdos magic */
1931 if (buf[510] != 0x55 || buf[511] != 0xaa)
1933 for(i = 0; i < 4; i++) {
1934 p = ((struct partition *)(buf + 0x1be)) + i;
1935 nr_sects = le32_to_cpu(p->nr_sects);
1936 if (nr_sects && p->end_head) {
1937 /* We make the assumption that the partition terminates on
1938 a cylinder boundary */
1939 heads = p->end_head + 1;
1940 sectors = p->end_sector & 63;
1943 cylinders = s->nb_sectors / (heads * sectors);
1944 if (cylinders < 1 || cylinders > 16383)
1947 *psectors = sectors;
1948 *pcylinders = cylinders;
1950 printf("guessed geometry: LCHS=%d %d %d\n",
1951 cylinders, heads, sectors);
1959 static void ide_init2(IDEState *ide_state,
1960 BlockDriverState *hd0, BlockDriverState *hd1,
1961 SetIRQFunc *set_irq, void *irq_opaque, int irq)
1964 static int drive_serial = 1;
1965 int i, cylinders, heads, secs, translation;
1968 for(i = 0; i < 2; i++) {
1975 bdrv_get_geometry(s->bs, &nb_sectors);
1976 s->nb_sectors = nb_sectors;
1977 /* if a geometry hint is available, use it */
1978 bdrv_get_geometry_hint(s->bs, &cylinders, &heads, &secs);
1979 if (cylinders != 0) {
1980 s->cylinders = cylinders;
1984 if (guess_disk_lchs(s, &cylinders, &heads, &secs) == 0) {
1986 /* if heads > 16, it means that a BIOS LBA
1987 translation was active, so the default
1988 hardware geometry is OK */
1989 goto default_geometry;
1991 s->cylinders = cylinders;
1994 /* disable any translation to be in sync with
1995 the logical geometry */
1996 translation = bdrv_get_translation_hint(s->bs);
1997 if (translation == BIOS_ATA_TRANSLATION_AUTO) {
1998 bdrv_set_translation_hint(s->bs,
1999 BIOS_ATA_TRANSLATION_NONE);
2004 /* if no geometry, use a standard physical disk geometry */
2005 cylinders = nb_sectors / (16 * 63);
2006 if (cylinders > 16383)
2008 else if (cylinders < 2)
2010 s->cylinders = cylinders;
2014 bdrv_set_geometry_hint(s->bs, s->cylinders, s->heads, s->sectors);
2016 if (bdrv_get_type_hint(s->bs) == BDRV_TYPE_CDROM) {
2018 bdrv_set_change_cb(s->bs, cdrom_change_cb, s);
2021 s->drive_serial = drive_serial++;
2022 s->set_irq = set_irq;
2023 s->irq_opaque = irq_opaque;
2025 s->sector_write_timer = qemu_new_timer(vm_clock,
2026 ide_sector_write_timer_cb, s);
2031 static void ide_init_ioport(IDEState *ide_state, int iobase, int iobase2)
2033 register_ioport_write(iobase, 8, 1, ide_ioport_write, ide_state);
2034 register_ioport_read(iobase, 8, 1, ide_ioport_read, ide_state);
2036 register_ioport_read(iobase2, 1, 1, ide_status_read, ide_state);
2037 register_ioport_write(iobase2, 1, 1, ide_cmd_write, ide_state);
2041 register_ioport_write(iobase, 2, 2, ide_data_writew, ide_state);
2042 register_ioport_read(iobase, 2, 2, ide_data_readw, ide_state);
2043 register_ioport_write(iobase, 4, 4, ide_data_writel, ide_state);
2044 register_ioport_read(iobase, 4, 4, ide_data_readl, ide_state);
2047 /***********************************************************/
2048 /* ISA IDE definitions */
2050 void isa_ide_init(int iobase, int iobase2, int irq,
2051 BlockDriverState *hd0, BlockDriverState *hd1)
2053 IDEState *ide_state;
2055 ide_state = qemu_mallocz(sizeof(IDEState) * 2);
2059 ide_init2(ide_state, hd0, hd1, pic_set_irq_new, isa_pic, irq);
2060 ide_init_ioport(ide_state, iobase, iobase2);
2063 /***********************************************************/
2064 /* PCI IDE definitions */
2066 static void cmd646_update_irq(PCIIDEState *d);
2068 static void ide_map(PCIDevice *pci_dev, int region_num,
2069 uint32_t addr, uint32_t size, int type)
2071 PCIIDEState *d = (PCIIDEState *)pci_dev;
2072 IDEState *ide_state;
2074 if (region_num <= 3) {
2075 ide_state = &d->ide_if[(region_num >> 1) * 2];
2076 if (region_num & 1) {
2077 register_ioport_read(addr + 2, 1, 1, ide_status_read, ide_state);
2078 register_ioport_write(addr + 2, 1, 1, ide_cmd_write, ide_state);
2080 register_ioport_write(addr, 8, 1, ide_ioport_write, ide_state);
2081 register_ioport_read(addr, 8, 1, ide_ioport_read, ide_state);
2084 register_ioport_write(addr, 2, 2, ide_data_writew, ide_state);
2085 register_ioport_read(addr, 2, 2, ide_data_readw, ide_state);
2086 register_ioport_write(addr, 4, 4, ide_data_writel, ide_state);
2087 register_ioport_read(addr, 4, 4, ide_data_readl, ide_state);
2092 /* XXX: full callback usage to prepare non blocking I/Os support -
2094 static void ide_dma_loop(BMDMAState *bm)
2100 target_phys_addr_t cur_addr;
2103 cur_addr = bm->addr;
2104 /* at most one page to avoid hanging if erroneous parameters */
2105 for(i = 0; i < 512; i++) {
2106 cpu_physical_memory_read(cur_addr, (uint8_t *)&prd, 8);
2107 prd.addr = le32_to_cpu(prd.addr);
2108 prd.size = le32_to_cpu(prd.size);
2110 printf("ide: dma: prd: %08x: addr=0x%08x size=0x%08x\n",
2111 (int)cur_addr, prd.addr, prd.size);
2113 len = prd.size & 0xfffe;
2117 len1 = bm->dma_cb(bm->ide_if, prd.addr, len);
2123 /* end of transfer */
2124 if (prd.size & 0x80000000)
2128 /* end of transfer */
2130 bm->status &= ~BM_STATUS_DMAING;
2131 bm->status |= BM_STATUS_INT;
2136 static void ide_dma_start(IDEState *s, IDEDMAFunc *dma_cb)
2138 BMDMAState *bm = s->bmdma;
2142 bm->dma_cb = dma_cb;
2143 if (bm->status & BM_STATUS_DMAING) {
2148 static void bmdma_cmd_writeb(void *opaque, uint32_t addr, uint32_t val)
2150 BMDMAState *bm = opaque;
2152 printf("%s: 0x%08x\n", __func__, val);
2154 if (!(val & BM_CMD_START)) {
2155 /* XXX: do it better */
2156 bm->status &= ~BM_STATUS_DMAING;
2157 bm->cmd = val & 0x09;
2159 bm->status |= BM_STATUS_DMAING;
2160 bm->cmd = val & 0x09;
2161 /* start dma transfer if possible */
2167 static uint32_t bmdma_readb(void *opaque, uint32_t addr)
2169 BMDMAState *bm = opaque;
2170 PCIIDEState *pci_dev;
2178 pci_dev = bm->pci_dev;
2179 if (pci_dev->type == IDE_TYPE_CMD646) {
2180 val = pci_dev->dev.config[MRDMODE];
2189 pci_dev = bm->pci_dev;
2190 if (pci_dev->type == IDE_TYPE_CMD646) {
2191 if (bm == &pci_dev->bmdma[0])
2192 val = pci_dev->dev.config[UDIDETCR0];
2194 val = pci_dev->dev.config[UDIDETCR1];
2204 printf("bmdma: readb 0x%02x : 0x%02x\n", addr, val);
2209 static void bmdma_writeb(void *opaque, uint32_t addr, uint32_t val)
2211 BMDMAState *bm = opaque;
2212 PCIIDEState *pci_dev;
2214 printf("bmdma: writeb 0x%02x : 0x%02x\n", addr, val);
2218 pci_dev = bm->pci_dev;
2219 if (pci_dev->type == IDE_TYPE_CMD646) {
2220 pci_dev->dev.config[MRDMODE] =
2221 (pci_dev->dev.config[MRDMODE] & ~0x30) | (val & 0x30);
2222 cmd646_update_irq(pci_dev);
2226 bm->status = (val & 0x60) | (bm->status & 1) | (bm->status & ~val & 0x06);
2229 pci_dev = bm->pci_dev;
2230 if (pci_dev->type == IDE_TYPE_CMD646) {
2231 if (bm == &pci_dev->bmdma[0])
2232 pci_dev->dev.config[UDIDETCR0] = val;
2234 pci_dev->dev.config[UDIDETCR1] = val;
2240 static uint32_t bmdma_addr_readl(void *opaque, uint32_t addr)
2242 BMDMAState *bm = opaque;
2246 printf("%s: 0x%08x\n", __func__, val);
2251 static void bmdma_addr_writel(void *opaque, uint32_t addr, uint32_t val)
2253 BMDMAState *bm = opaque;
2255 printf("%s: 0x%08x\n", __func__, val);
2257 bm->addr = val & ~3;
2260 static void bmdma_map(PCIDevice *pci_dev, int region_num,
2261 uint32_t addr, uint32_t size, int type)
2263 PCIIDEState *d = (PCIIDEState *)pci_dev;
2266 for(i = 0;i < 2; i++) {
2267 BMDMAState *bm = &d->bmdma[i];
2268 d->ide_if[2 * i].bmdma = bm;
2269 d->ide_if[2 * i + 1].bmdma = bm;
2270 bm->pci_dev = (PCIIDEState *)pci_dev;
2272 register_ioport_write(addr, 1, 1, bmdma_cmd_writeb, bm);
2274 register_ioport_write(addr + 1, 3, 1, bmdma_writeb, bm);
2275 register_ioport_read(addr, 4, 1, bmdma_readb, bm);
2277 register_ioport_write(addr + 4, 4, 4, bmdma_addr_writel, bm);
2278 register_ioport_read(addr + 4, 4, 4, bmdma_addr_readl, bm);
2283 /* XXX: call it also when the MRDMODE is changed from the PCI config
2285 static void cmd646_update_irq(PCIIDEState *d)
2288 pci_level = ((d->dev.config[MRDMODE] & MRDMODE_INTR_CH0) &&
2289 !(d->dev.config[MRDMODE] & MRDMODE_BLK_CH0)) ||
2290 ((d->dev.config[MRDMODE] & MRDMODE_INTR_CH1) &&
2291 !(d->dev.config[MRDMODE] & MRDMODE_BLK_CH1));
2292 pci_set_irq((PCIDevice *)d, 0, pci_level);
2295 /* the PCI irq level is the logical OR of the two channels */
2296 static void cmd646_set_irq(void *opaque, int channel, int level)
2298 PCIIDEState *d = opaque;
2301 irq_mask = MRDMODE_INTR_CH0 << channel;
2303 d->dev.config[MRDMODE] |= irq_mask;
2305 d->dev.config[MRDMODE] &= ~irq_mask;
2306 cmd646_update_irq(d);
2309 /* CMD646 PCI IDE controller */
2310 void pci_cmd646_ide_init(PCIBus *bus, BlockDriverState **hd_table,
2311 int secondary_ide_enabled)
2317 d = (PCIIDEState *)pci_register_device(bus, "CMD646 IDE",
2318 sizeof(PCIIDEState),
2321 d->type = IDE_TYPE_CMD646;
2322 pci_conf = d->dev.config;
2323 pci_conf[0x00] = 0x95; // CMD646
2324 pci_conf[0x01] = 0x10;
2325 pci_conf[0x02] = 0x46;
2326 pci_conf[0x03] = 0x06;
2328 pci_conf[0x08] = 0x07; // IDE controller revision
2329 pci_conf[0x09] = 0x8f;
2331 pci_conf[0x0a] = 0x01; // class_sub = PCI_IDE
2332 pci_conf[0x0b] = 0x01; // class_base = PCI_mass_storage
2333 pci_conf[0x0e] = 0x00; // header_type
2335 if (secondary_ide_enabled) {
2336 /* XXX: if not enabled, really disable the seconday IDE controller */
2337 pci_conf[0x51] = 0x80; /* enable IDE1 */
2340 pci_register_io_region((PCIDevice *)d, 0, 0x8,
2341 PCI_ADDRESS_SPACE_IO, ide_map);
2342 pci_register_io_region((PCIDevice *)d, 1, 0x4,
2343 PCI_ADDRESS_SPACE_IO, ide_map);
2344 pci_register_io_region((PCIDevice *)d, 2, 0x8,
2345 PCI_ADDRESS_SPACE_IO, ide_map);
2346 pci_register_io_region((PCIDevice *)d, 3, 0x4,
2347 PCI_ADDRESS_SPACE_IO, ide_map);
2348 pci_register_io_region((PCIDevice *)d, 4, 0x10,
2349 PCI_ADDRESS_SPACE_IO, bmdma_map);
2351 pci_conf[0x3d] = 0x01; // interrupt on pin 1
2353 for(i = 0; i < 4; i++)
2354 d->ide_if[i].pci_dev = (PCIDevice *)d;
2355 ide_init2(&d->ide_if[0], hd_table[0], hd_table[1],
2356 cmd646_set_irq, d, 0);
2357 ide_init2(&d->ide_if[2], hd_table[2], hd_table[3],
2358 cmd646_set_irq, d, 1);
2361 /* hd_table must contain 4 block drivers */
2362 /* NOTE: for the PIIX3, the IRQs and IOports are hardcoded */
2363 void pci_piix3_ide_init(PCIBus *bus, BlockDriverState **hd_table)
2368 /* register a function 1 of PIIX3 */
2369 d = (PCIIDEState *)pci_register_device(bus, "PIIX3 IDE",
2370 sizeof(PCIIDEState),
2371 ((PCIDevice *)piix3_state)->devfn + 1,
2373 d->type = IDE_TYPE_PIIX3;
2375 pci_conf = d->dev.config;
2376 pci_conf[0x00] = 0x86; // Intel
2377 pci_conf[0x01] = 0x80;
2378 pci_conf[0x02] = 0x10;
2379 pci_conf[0x03] = 0x70;
2380 pci_conf[0x09] = 0x80; // legacy ATA mode
2381 pci_conf[0x0a] = 0x01; // class_sub = PCI_IDE
2382 pci_conf[0x0b] = 0x01; // class_base = PCI_mass_storage
2383 pci_conf[0x0e] = 0x00; // header_type
2385 pci_register_io_region((PCIDevice *)d, 4, 0x10,
2386 PCI_ADDRESS_SPACE_IO, bmdma_map);
2388 ide_init2(&d->ide_if[0], hd_table[0], hd_table[1],
2389 pic_set_irq_new, isa_pic, 14);
2390 ide_init2(&d->ide_if[2], hd_table[2], hd_table[3],
2391 pic_set_irq_new, isa_pic, 15);
2392 ide_init_ioport(&d->ide_if[0], 0x1f0, 0x3f6);
2393 ide_init_ioport(&d->ide_if[2], 0x170, 0x376);
2396 /***********************************************************/
2397 /* MacIO based PowerPC IDE */
2399 /* PowerMac IDE memory IO */
2400 static void pmac_ide_writeb (void *opaque,
2401 target_phys_addr_t addr, uint32_t val)
2403 addr = (addr & 0xFFF) >> 4;
2406 ide_ioport_write(opaque, addr, val);
2410 ide_cmd_write(opaque, 0, val);
2417 static uint32_t pmac_ide_readb (void *opaque,target_phys_addr_t addr)
2421 addr = (addr & 0xFFF) >> 4;
2424 retval = ide_ioport_read(opaque, addr);
2428 retval = ide_status_read(opaque, 0);
2437 static void pmac_ide_writew (void *opaque,
2438 target_phys_addr_t addr, uint32_t val)
2440 addr = (addr & 0xFFF) >> 4;
2441 #ifdef TARGET_WORDS_BIGENDIAN
2445 ide_data_writew(opaque, 0, val);
2449 static uint32_t pmac_ide_readw (void *opaque,target_phys_addr_t addr)
2453 addr = (addr & 0xFFF) >> 4;
2455 retval = ide_data_readw(opaque, 0);
2459 #ifdef TARGET_WORDS_BIGENDIAN
2460 retval = bswap16(retval);
2465 static void pmac_ide_writel (void *opaque,
2466 target_phys_addr_t addr, uint32_t val)
2468 addr = (addr & 0xFFF) >> 4;
2469 #ifdef TARGET_WORDS_BIGENDIAN
2473 ide_data_writel(opaque, 0, val);
2477 static uint32_t pmac_ide_readl (void *opaque,target_phys_addr_t addr)
2481 addr = (addr & 0xFFF) >> 4;
2483 retval = ide_data_readl(opaque, 0);
2485 retval = 0xFFFFFFFF;
2487 #ifdef TARGET_WORDS_BIGENDIAN
2488 retval = bswap32(retval);
2493 static CPUWriteMemoryFunc *pmac_ide_write[] = {
2499 static CPUReadMemoryFunc *pmac_ide_read[] = {
2505 /* hd_table must contain 4 block drivers */
2506 /* PowerMac uses memory mapped registers, not I/O. Return the memory
2507 I/O index to access the ide. */
2508 int pmac_ide_init (BlockDriverState **hd_table,
2509 SetIRQFunc *set_irq, void *irq_opaque, int irq)
2512 int pmac_ide_memory;
2514 ide_if = qemu_mallocz(sizeof(IDEState) * 2);
2515 ide_init2(&ide_if[0], hd_table[0], hd_table[1],
2516 set_irq, irq_opaque, irq);
2518 pmac_ide_memory = cpu_register_io_memory(0, pmac_ide_read,
2519 pmac_ide_write, &ide_if[0]);
2520 return pmac_ide_memory;
projects / qemu / blob