2 * Intel XScale PXA255/270 processor support.
4 * Copyright (c) 2006 Openedhand Ltd.
5 * Written by Andrzej Zaborowski <balrog@zabor.org>
7 * This code is licenced under the GPL.
13 target_phys_addr_t io_base;
16 { 0x40100000, PXA2XX_PIC_FFUART },
17 { 0x40200000, PXA2XX_PIC_BTUART },
18 { 0x40700000, PXA2XX_PIC_STUART },
19 { 0x41600000, PXA25X_PIC_HWUART },
21 }, pxa270_serial[] = {
22 { 0x40100000, PXA2XX_PIC_FFUART },
23 { 0x40200000, PXA2XX_PIC_BTUART },
24 { 0x40700000, PXA2XX_PIC_STUART },
29 target_phys_addr_t io_base;
32 { 0x41000000, PXA2XX_PIC_SSP },
35 { 0x41000000, PXA2XX_PIC_SSP },
36 { 0x41400000, PXA25X_PIC_NSSP },
39 { 0x41000000, PXA2XX_PIC_SSP },
40 { 0x41400000, PXA25X_PIC_NSSP },
41 { 0x41500000, PXA26X_PIC_ASSP },
44 { 0x41000000, PXA2XX_PIC_SSP },
45 { 0x41700000, PXA27X_PIC_SSP2 },
46 { 0x41900000, PXA2XX_PIC_SSP3 },
50 #define PMCR 0x00 /* Power Manager Control register */
51 #define PSSR 0x04 /* Power Manager Sleep Status register */
52 #define PSPR 0x08 /* Power Manager Scratch-Pad register */
53 #define PWER 0x0c /* Power Manager Wake-Up Enable register */
54 #define PRER 0x10 /* Power Manager Rising-Edge Detect Enable register */
55 #define PFER 0x14 /* Power Manager Falling-Edge Detect Enable register */
56 #define PEDR 0x18 /* Power Manager Edge-Detect Status register */
57 #define PCFR 0x1c /* Power Manager General Configuration register */
58 #define PGSR0 0x20 /* Power Manager GPIO Sleep-State register 0 */
59 #define PGSR1 0x24 /* Power Manager GPIO Sleep-State register 1 */
60 #define PGSR2 0x28 /* Power Manager GPIO Sleep-State register 2 */
61 #define PGSR3 0x2c /* Power Manager GPIO Sleep-State register 3 */
62 #define RCSR 0x30 /* Reset Controller Status register */
63 #define PSLR 0x34 /* Power Manager Sleep Configuration register */
64 #define PTSR 0x38 /* Power Manager Standby Configuration register */
65 #define PVCR 0x40 /* Power Manager Voltage Change Control register */
66 #define PUCR 0x4c /* Power Manager USIM Card Control/Status register */
67 #define PKWR 0x50 /* Power Manager Keyboard Wake-Up Enable register */
68 #define PKSR 0x54 /* Power Manager Keyboard Level-Detect Status */
69 #define PCMD0 0x80 /* Power Manager I2C Command register File 0 */
70 #define PCMD31 0xfc /* Power Manager I2C Command register File 31 */
72 static uint32_t pxa2xx_pm_read(void *opaque, target_phys_addr_t addr)
74 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
82 return s->pm_regs[addr >> 2];
85 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
91 static void pxa2xx_pm_write(void *opaque, target_phys_addr_t addr,
94 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
99 s->pm_regs[addr >> 2] &= 0x15 & ~(value & 0x2a);
100 s->pm_regs[addr >> 2] |= value & 0x15;
103 case PSSR: /* Read-clean registers */
106 s->pm_regs[addr >> 2] &= ~value;
109 default: /* Read-write registers */
110 if (addr >= PMCR && addr <= PCMD31 && !(addr & 3)) {
111 s->pm_regs[addr >> 2] = value;
115 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
120 static CPUReadMemoryFunc *pxa2xx_pm_readfn[] = {
126 static CPUWriteMemoryFunc *pxa2xx_pm_writefn[] = {
132 static void pxa2xx_pm_save(QEMUFile *f, void *opaque)
134 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
137 for (i = 0; i < 0x40; i ++)
138 qemu_put_be32s(f, &s->pm_regs[i]);
141 static int pxa2xx_pm_load(QEMUFile *f, void *opaque, int version_id)
143 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
146 for (i = 0; i < 0x40; i ++)
147 qemu_get_be32s(f, &s->pm_regs[i]);
152 #define CCCR 0x00 /* Core Clock Configuration register */
153 #define CKEN 0x04 /* Clock Enable register */
154 #define OSCC 0x08 /* Oscillator Configuration register */
155 #define CCSR 0x0c /* Core Clock Status register */
157 static uint32_t pxa2xx_cm_read(void *opaque, target_phys_addr_t addr)
159 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
166 return s->cm_regs[addr >> 2];
169 return s->cm_regs[CCCR >> 2] | (3 << 28);
172 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
178 static void pxa2xx_cm_write(void *opaque, target_phys_addr_t addr,
181 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
187 s->cm_regs[addr >> 2] = value;
191 s->cm_regs[addr >> 2] &= ~0x6c;
192 s->cm_regs[addr >> 2] |= value & 0x6e;
193 if ((value >> 1) & 1) /* OON */
194 s->cm_regs[addr >> 2] |= 1 << 0; /* Oscillator is now stable */
198 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
203 static CPUReadMemoryFunc *pxa2xx_cm_readfn[] = {
209 static CPUWriteMemoryFunc *pxa2xx_cm_writefn[] = {
215 static void pxa2xx_cm_save(QEMUFile *f, void *opaque)
217 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
220 for (i = 0; i < 4; i ++)
221 qemu_put_be32s(f, &s->cm_regs[i]);
222 qemu_put_be32s(f, &s->clkcfg);
223 qemu_put_be32s(f, &s->pmnc);
226 static int pxa2xx_cm_load(QEMUFile *f, void *opaque, int version_id)
228 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
231 for (i = 0; i < 4; i ++)
232 qemu_get_be32s(f, &s->cm_regs[i]);
233 qemu_get_be32s(f, &s->clkcfg);
234 qemu_get_be32s(f, &s->pmnc);
239 static uint32_t pxa2xx_clkpwr_read(void *opaque, int op2, int reg, int crm)
241 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
244 case 6: /* Clock Configuration register */
247 case 7: /* Power Mode register */
251 printf("%s: Bad register 0x%x\n", __FUNCTION__, reg);
257 static void pxa2xx_clkpwr_write(void *opaque, int op2, int reg, int crm,
260 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
261 static const char *pwrmode[8] = {
262 "Normal", "Idle", "Deep-idle", "Standby",
263 "Sleep", "reserved (!)", "reserved (!)", "Deep-sleep",
267 case 6: /* Clock Configuration register */
268 s->clkcfg = value & 0xf;
270 printf("%s: CPU frequency change attempt\n", __FUNCTION__);
273 case 7: /* Power Mode register */
275 printf("%s: CPU voltage change attempt\n", __FUNCTION__);
283 if (!(s->cm_regs[CCCR >> 2] & (1 << 31))) { /* CPDIS */
284 cpu_interrupt(s->env, CPU_INTERRUPT_HALT);
291 cpu_interrupt(s->env, CPU_INTERRUPT_HALT);
292 s->pm_regs[RCSR >> 2] |= 0x8; /* Set GPR */
296 s->env->uncached_cpsr =
297 ARM_CPU_MODE_SVC | CPSR_A | CPSR_F | CPSR_I;
298 s->env->cp15.c1_sys = 0;
299 s->env->cp15.c1_coproc = 0;
300 s->env->cp15.c2_base = 0;
302 s->pm_regs[PSSR >> 2] |= 0x8; /* Set STS */
303 s->pm_regs[RCSR >> 2] |= 0x8; /* Set GPR */
306 * The scratch-pad register is almost universally used
307 * for storing the return address on suspend. For the
308 * lack of a resuming bootloader, perform a jump
309 * directly to that address.
311 memset(s->env->regs, 0, 4 * 15);
312 s->env->regs[15] = s->pm_regs[PSPR >> 2];
315 buffer = 0xe59ff000; /* ldr pc, [pc, #0] */
316 cpu_physical_memory_write(0, &buffer, 4);
317 buffer = s->pm_regs[PSPR >> 2];
318 cpu_physical_memory_write(8, &buffer, 4);
322 cpu_interrupt(cpu_single_env, CPU_INTERRUPT_HALT);
328 printf("%s: machine entered %s mode\n", __FUNCTION__,
334 printf("%s: Bad register 0x%x\n", __FUNCTION__, reg);
339 /* Performace Monitoring Registers */
340 #define CPPMNC 0 /* Performance Monitor Control register */
341 #define CPCCNT 1 /* Clock Counter register */
342 #define CPINTEN 4 /* Interrupt Enable register */
343 #define CPFLAG 5 /* Overflow Flag register */
344 #define CPEVTSEL 8 /* Event Selection register */
346 #define CPPMN0 0 /* Performance Count register 0 */
347 #define CPPMN1 1 /* Performance Count register 1 */
348 #define CPPMN2 2 /* Performance Count register 2 */
349 #define CPPMN3 3 /* Performance Count register 3 */
351 static uint32_t pxa2xx_perf_read(void *opaque, int op2, int reg, int crm)
353 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
360 return qemu_get_clock(vm_clock);
369 printf("%s: Bad register 0x%x\n", __FUNCTION__, reg);
375 static void pxa2xx_perf_write(void *opaque, int op2, int reg, int crm,
378 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
392 printf("%s: Bad register 0x%x\n", __FUNCTION__, reg);
397 static uint32_t pxa2xx_cp14_read(void *opaque, int op2, int reg, int crm)
401 return pxa2xx_clkpwr_read(opaque, op2, reg, crm);
403 return pxa2xx_perf_read(opaque, op2, reg, crm);
414 printf("%s: Bad register 0x%x\n", __FUNCTION__, reg);
420 static void pxa2xx_cp14_write(void *opaque, int op2, int reg, int crm,
425 pxa2xx_clkpwr_write(opaque, op2, reg, crm, value);
428 pxa2xx_perf_write(opaque, op2, reg, crm, value);
440 printf("%s: Bad register 0x%x\n", __FUNCTION__, reg);
445 #define MDCNFG 0x00 /* SDRAM Configuration register */
446 #define MDREFR 0x04 /* SDRAM Refresh Control register */
447 #define MSC0 0x08 /* Static Memory Control register 0 */
448 #define MSC1 0x0c /* Static Memory Control register 1 */
449 #define MSC2 0x10 /* Static Memory Control register 2 */
450 #define MECR 0x14 /* Expansion Memory Bus Config register */
451 #define SXCNFG 0x1c /* Synchronous Static Memory Config register */
452 #define MCMEM0 0x28 /* PC Card Memory Socket 0 Timing register */
453 #define MCMEM1 0x2c /* PC Card Memory Socket 1 Timing register */
454 #define MCATT0 0x30 /* PC Card Attribute Socket 0 register */
455 #define MCATT1 0x34 /* PC Card Attribute Socket 1 register */
456 #define MCIO0 0x38 /* PC Card I/O Socket 0 Timing register */
457 #define MCIO1 0x3c /* PC Card I/O Socket 1 Timing register */
458 #define MDMRS 0x40 /* SDRAM Mode Register Set Config register */
459 #define BOOT_DEF 0x44 /* Boot-time Default Configuration register */
460 #define ARB_CNTL 0x48 /* Arbiter Control register */
461 #define BSCNTR0 0x4c /* Memory Buffer Strength Control register 0 */
462 #define BSCNTR1 0x50 /* Memory Buffer Strength Control register 1 */
463 #define LCDBSCNTR 0x54 /* LCD Buffer Strength Control register */
464 #define MDMRSLP 0x58 /* Low Power SDRAM Mode Set Config register */
465 #define BSCNTR2 0x5c /* Memory Buffer Strength Control register 2 */
466 #define BSCNTR3 0x60 /* Memory Buffer Strength Control register 3 */
467 #define SA1110 0x64 /* SA-1110 Memory Compatibility register */
469 static uint32_t pxa2xx_mm_read(void *opaque, target_phys_addr_t addr)
471 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
475 case MDCNFG ... SA1110:
477 return s->mm_regs[addr >> 2];
480 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
486 static void pxa2xx_mm_write(void *opaque, target_phys_addr_t addr,
489 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
493 case MDCNFG ... SA1110:
494 if ((addr & 3) == 0) {
495 s->mm_regs[addr >> 2] = value;
500 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
505 static CPUReadMemoryFunc *pxa2xx_mm_readfn[] = {
511 static CPUWriteMemoryFunc *pxa2xx_mm_writefn[] = {
517 static void pxa2xx_mm_save(QEMUFile *f, void *opaque)
519 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
522 for (i = 0; i < 0x1a; i ++)
523 qemu_put_be32s(f, &s->mm_regs[i]);
526 static int pxa2xx_mm_load(QEMUFile *f, void *opaque, int version_id)
528 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
531 for (i = 0; i < 0x1a; i ++)
532 qemu_get_be32s(f, &s->mm_regs[i]);
537 /* Synchronous Serial Ports */
538 struct pxa2xx_ssp_s {
539 target_phys_addr_t base;
552 uint32_t rx_fifo[16];
556 uint32_t (*readfn)(void *opaque);
557 void (*writefn)(void *opaque, uint32_t value);
561 #define SSCR0 0x00 /* SSP Control register 0 */
562 #define SSCR1 0x04 /* SSP Control register 1 */
563 #define SSSR 0x08 /* SSP Status register */
564 #define SSITR 0x0c /* SSP Interrupt Test register */
565 #define SSDR 0x10 /* SSP Data register */
566 #define SSTO 0x28 /* SSP Time-Out register */
567 #define SSPSP 0x2c /* SSP Programmable Serial Protocol register */
568 #define SSTSA 0x30 /* SSP TX Time Slot Active register */
569 #define SSRSA 0x34 /* SSP RX Time Slot Active register */
570 #define SSTSS 0x38 /* SSP Time Slot Status register */
571 #define SSACD 0x3c /* SSP Audio Clock Divider register */
573 /* Bitfields for above registers */
574 #define SSCR0_SPI(x) (((x) & 0x30) == 0x00)
575 #define SSCR0_SSP(x) (((x) & 0x30) == 0x10)
576 #define SSCR0_UWIRE(x) (((x) & 0x30) == 0x20)
577 #define SSCR0_PSP(x) (((x) & 0x30) == 0x30)
578 #define SSCR0_SSE (1 << 7)
579 #define SSCR0_RIM (1 << 22)
580 #define SSCR0_TIM (1 << 23)
581 #define SSCR0_MOD (1 << 31)
582 #define SSCR0_DSS(x) (((((x) >> 16) & 0x10) | ((x) & 0xf)) + 1)
583 #define SSCR1_RIE (1 << 0)
584 #define SSCR1_TIE (1 << 1)
585 #define SSCR1_LBM (1 << 2)
586 #define SSCR1_MWDS (1 << 5)
587 #define SSCR1_TFT(x) ((((x) >> 6) & 0xf) + 1)
588 #define SSCR1_RFT(x) ((((x) >> 10) & 0xf) + 1)
589 #define SSCR1_EFWR (1 << 14)
590 #define SSCR1_PINTE (1 << 18)
591 #define SSCR1_TINTE (1 << 19)
592 #define SSCR1_RSRE (1 << 20)
593 #define SSCR1_TSRE (1 << 21)
594 #define SSCR1_EBCEI (1 << 29)
595 #define SSITR_INT (7 << 5)
596 #define SSSR_TNF (1 << 2)
597 #define SSSR_RNE (1 << 3)
598 #define SSSR_TFS (1 << 5)
599 #define SSSR_RFS (1 << 6)
600 #define SSSR_ROR (1 << 7)
601 #define SSSR_PINT (1 << 18)
602 #define SSSR_TINT (1 << 19)
603 #define SSSR_EOC (1 << 20)
604 #define SSSR_TUR (1 << 21)
605 #define SSSR_BCE (1 << 23)
606 #define SSSR_RW 0x00bc0080
608 static void pxa2xx_ssp_int_update(struct pxa2xx_ssp_s *s)
612 level |= s->ssitr & SSITR_INT;
613 level |= (s->sssr & SSSR_BCE) && (s->sscr[1] & SSCR1_EBCEI);
614 level |= (s->sssr & SSSR_TUR) && !(s->sscr[0] & SSCR0_TIM);
615 level |= (s->sssr & SSSR_EOC) && (s->sssr & (SSSR_TINT | SSSR_PINT));
616 level |= (s->sssr & SSSR_TINT) && (s->sscr[1] & SSCR1_TINTE);
617 level |= (s->sssr & SSSR_PINT) && (s->sscr[1] & SSCR1_PINTE);
618 level |= (s->sssr & SSSR_ROR) && !(s->sscr[0] & SSCR0_RIM);
619 level |= (s->sssr & SSSR_RFS) && (s->sscr[1] & SSCR1_RIE);
620 level |= (s->sssr & SSSR_TFS) && (s->sscr[1] & SSCR1_TIE);
621 qemu_set_irq(s->irq, !!level);
624 static void pxa2xx_ssp_fifo_update(struct pxa2xx_ssp_s *s)
626 s->sssr &= ~(0xf << 12); /* Clear RFL */
627 s->sssr &= ~(0xf << 8); /* Clear TFL */
628 s->sssr &= ~SSSR_TNF;
630 s->sssr |= ((s->rx_level - 1) & 0xf) << 12;
631 if (s->rx_level >= SSCR1_RFT(s->sscr[1]))
634 s->sssr &= ~SSSR_RFS;
635 if (0 <= SSCR1_TFT(s->sscr[1]))
638 s->sssr &= ~SSSR_TFS;
642 s->sssr &= ~SSSR_RNE;
646 pxa2xx_ssp_int_update(s);
649 static uint32_t pxa2xx_ssp_read(void *opaque, target_phys_addr_t addr)
651 struct pxa2xx_ssp_s *s = (struct pxa2xx_ssp_s *) opaque;
667 return s->sssr | s->ssitr;
671 if (s->rx_level < 1) {
672 printf("%s: SSP Rx Underrun\n", __FUNCTION__);
676 retval = s->rx_fifo[s->rx_start ++];
678 pxa2xx_ssp_fifo_update(s);
689 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
695 static void pxa2xx_ssp_write(void *opaque, target_phys_addr_t addr,
698 struct pxa2xx_ssp_s *s = (struct pxa2xx_ssp_s *) opaque;
703 s->sscr[0] = value & 0xc7ffffff;
704 s->enable = value & SSCR0_SSE;
705 if (value & SSCR0_MOD)
706 printf("%s: Attempt to use network mode\n", __FUNCTION__);
707 if (s->enable && SSCR0_DSS(value) < 4)
708 printf("%s: Wrong data size: %i bits\n", __FUNCTION__,
710 if (!(value & SSCR0_SSE)) {
715 pxa2xx_ssp_fifo_update(s);
720 if (value & (SSCR1_LBM | SSCR1_EFWR))
721 printf("%s: Attempt to use SSP test mode\n", __FUNCTION__);
722 pxa2xx_ssp_fifo_update(s);
734 s->ssitr = value & SSITR_INT;
735 pxa2xx_ssp_int_update(s);
739 s->sssr &= ~(value & SSSR_RW);
740 pxa2xx_ssp_int_update(s);
744 if (SSCR0_UWIRE(s->sscr[0])) {
745 if (s->sscr[1] & SSCR1_MWDS)
750 /* Note how 32bits overflow does no harm here */
751 value &= (1 << SSCR0_DSS(s->sscr[0])) - 1;
753 /* Data goes from here to the Tx FIFO and is shifted out from
754 * there directly to the slave, no need to buffer it.
758 s->writefn(s->opaque, value);
760 if (s->rx_level < 0x10) {
762 s->rx_fifo[(s->rx_start + s->rx_level ++) & 0xf] =
763 s->readfn(s->opaque);
765 s->rx_fifo[(s->rx_start + s->rx_level ++) & 0xf] = 0x0;
769 pxa2xx_ssp_fifo_update(s);
785 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
790 void pxa2xx_ssp_attach(struct pxa2xx_ssp_s *port,
791 uint32_t (*readfn)(void *opaque),
792 void (*writefn)(void *opaque, uint32_t value), void *opaque)
795 printf("%s: no such SSP\n", __FUNCTION__);
799 port->opaque = opaque;
800 port->readfn = readfn;
801 port->writefn = writefn;
804 static CPUReadMemoryFunc *pxa2xx_ssp_readfn[] = {
810 static CPUWriteMemoryFunc *pxa2xx_ssp_writefn[] = {
816 static void pxa2xx_ssp_save(QEMUFile *f, void *opaque)
818 struct pxa2xx_ssp_s *s = (struct pxa2xx_ssp_s *) opaque;
821 qemu_put_be32(f, s->enable);
823 qemu_put_be32s(f, &s->sscr[0]);
824 qemu_put_be32s(f, &s->sscr[1]);
825 qemu_put_be32s(f, &s->sspsp);
826 qemu_put_be32s(f, &s->ssto);
827 qemu_put_be32s(f, &s->ssitr);
828 qemu_put_be32s(f, &s->sssr);
829 qemu_put_8s(f, &s->sstsa);
830 qemu_put_8s(f, &s->ssrsa);
831 qemu_put_8s(f, &s->ssacd);
833 qemu_put_byte(f, s->rx_level);
834 for (i = 0; i < s->rx_level; i ++)
835 qemu_put_byte(f, s->rx_fifo[(s->rx_start + i) & 0xf]);
838 static int pxa2xx_ssp_load(QEMUFile *f, void *opaque, int version_id)
840 struct pxa2xx_ssp_s *s = (struct pxa2xx_ssp_s *) opaque;
843 s->enable = qemu_get_be32(f);
845 qemu_get_be32s(f, &s->sscr[0]);
846 qemu_get_be32s(f, &s->sscr[1]);
847 qemu_get_be32s(f, &s->sspsp);
848 qemu_get_be32s(f, &s->ssto);
849 qemu_get_be32s(f, &s->ssitr);
850 qemu_get_be32s(f, &s->sssr);
851 qemu_get_8s(f, &s->sstsa);
852 qemu_get_8s(f, &s->ssrsa);
853 qemu_get_8s(f, &s->ssacd);
855 s->rx_level = qemu_get_byte(f);
857 for (i = 0; i < s->rx_level; i ++)
858 s->rx_fifo[i] = qemu_get_byte(f);
863 /* Real-Time Clock */
864 #define RCNR 0x00 /* RTC Counter register */
865 #define RTAR 0x04 /* RTC Alarm register */
866 #define RTSR 0x08 /* RTC Status register */
867 #define RTTR 0x0c /* RTC Timer Trim register */
868 #define RDCR 0x10 /* RTC Day Counter register */
869 #define RYCR 0x14 /* RTC Year Counter register */
870 #define RDAR1 0x18 /* RTC Wristwatch Day Alarm register 1 */
871 #define RYAR1 0x1c /* RTC Wristwatch Year Alarm register 1 */
872 #define RDAR2 0x20 /* RTC Wristwatch Day Alarm register 2 */
873 #define RYAR2 0x24 /* RTC Wristwatch Year Alarm register 2 */
874 #define SWCR 0x28 /* RTC Stopwatch Counter register */
875 #define SWAR1 0x2c /* RTC Stopwatch Alarm register 1 */
876 #define SWAR2 0x30 /* RTC Stopwatch Alarm register 2 */
877 #define RTCPICR 0x34 /* RTC Periodic Interrupt Counter register */
878 #define PIAR 0x38 /* RTC Periodic Interrupt Alarm register */
880 static inline void pxa2xx_rtc_int_update(struct pxa2xx_state_s *s)
882 qemu_set_irq(s->pic[PXA2XX_PIC_RTCALARM], !!(s->rtsr & 0x2553));
885 static void pxa2xx_rtc_hzupdate(struct pxa2xx_state_s *s)
887 int64_t rt = qemu_get_clock(rt_clock);
888 s->last_rcnr += ((rt - s->last_hz) << 15) /
889 (1000 * ((s->rttr & 0xffff) + 1));
890 s->last_rdcr += ((rt - s->last_hz) << 15) /
891 (1000 * ((s->rttr & 0xffff) + 1));
895 static void pxa2xx_rtc_swupdate(struct pxa2xx_state_s *s)
897 int64_t rt = qemu_get_clock(rt_clock);
898 if (s->rtsr & (1 << 12))
899 s->last_swcr += (rt - s->last_sw) / 10;
903 static void pxa2xx_rtc_piupdate(struct pxa2xx_state_s *s)
905 int64_t rt = qemu_get_clock(rt_clock);
906 if (s->rtsr & (1 << 15))
907 s->last_swcr += rt - s->last_pi;
911 static inline void pxa2xx_rtc_alarm_update(struct pxa2xx_state_s *s,
914 if ((rtsr & (1 << 2)) && !(rtsr & (1 << 0)))
915 qemu_mod_timer(s->rtc_hz, s->last_hz +
916 (((s->rtar - s->last_rcnr) * 1000 *
917 ((s->rttr & 0xffff) + 1)) >> 15));
919 qemu_del_timer(s->rtc_hz);
921 if ((rtsr & (1 << 5)) && !(rtsr & (1 << 4)))
922 qemu_mod_timer(s->rtc_rdal1, s->last_hz +
923 (((s->rdar1 - s->last_rdcr) * 1000 *
924 ((s->rttr & 0xffff) + 1)) >> 15)); /* TODO: fixup */
926 qemu_del_timer(s->rtc_rdal1);
928 if ((rtsr & (1 << 7)) && !(rtsr & (1 << 6)))
929 qemu_mod_timer(s->rtc_rdal2, s->last_hz +
930 (((s->rdar2 - s->last_rdcr) * 1000 *
931 ((s->rttr & 0xffff) + 1)) >> 15)); /* TODO: fixup */
933 qemu_del_timer(s->rtc_rdal2);
935 if ((rtsr & 0x1200) == 0x1200 && !(rtsr & (1 << 8)))
936 qemu_mod_timer(s->rtc_swal1, s->last_sw +
937 (s->swar1 - s->last_swcr) * 10); /* TODO: fixup */
939 qemu_del_timer(s->rtc_swal1);
941 if ((rtsr & 0x1800) == 0x1800 && !(rtsr & (1 << 10)))
942 qemu_mod_timer(s->rtc_swal2, s->last_sw +
943 (s->swar2 - s->last_swcr) * 10); /* TODO: fixup */
945 qemu_del_timer(s->rtc_swal2);
947 if ((rtsr & 0xc000) == 0xc000 && !(rtsr & (1 << 13)))
948 qemu_mod_timer(s->rtc_pi, s->last_pi +
949 (s->piar & 0xffff) - s->last_rtcpicr);
951 qemu_del_timer(s->rtc_pi);
954 static inline void pxa2xx_rtc_hz_tick(void *opaque)
956 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
958 pxa2xx_rtc_alarm_update(s, s->rtsr);
959 pxa2xx_rtc_int_update(s);
962 static inline void pxa2xx_rtc_rdal1_tick(void *opaque)
964 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
966 pxa2xx_rtc_alarm_update(s, s->rtsr);
967 pxa2xx_rtc_int_update(s);
970 static inline void pxa2xx_rtc_rdal2_tick(void *opaque)
972 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
974 pxa2xx_rtc_alarm_update(s, s->rtsr);
975 pxa2xx_rtc_int_update(s);
978 static inline void pxa2xx_rtc_swal1_tick(void *opaque)
980 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
982 pxa2xx_rtc_alarm_update(s, s->rtsr);
983 pxa2xx_rtc_int_update(s);
986 static inline void pxa2xx_rtc_swal2_tick(void *opaque)
988 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
989 s->rtsr |= (1 << 10);
990 pxa2xx_rtc_alarm_update(s, s->rtsr);
991 pxa2xx_rtc_int_update(s);
994 static inline void pxa2xx_rtc_pi_tick(void *opaque)
996 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
997 s->rtsr |= (1 << 13);
998 pxa2xx_rtc_piupdate(s);
1000 pxa2xx_rtc_alarm_update(s, s->rtsr);
1001 pxa2xx_rtc_int_update(s);
1004 static uint32_t pxa2xx_rtc_read(void *opaque, target_phys_addr_t addr)
1006 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
1007 addr -= s->rtc_base;
1031 return s->last_rcnr + ((qemu_get_clock(rt_clock) - s->last_hz) << 15) /
1032 (1000 * ((s->rttr & 0xffff) + 1));
1034 return s->last_rdcr + ((qemu_get_clock(rt_clock) - s->last_hz) << 15) /
1035 (1000 * ((s->rttr & 0xffff) + 1));
1037 return s->last_rycr;
1039 if (s->rtsr & (1 << 12))
1040 return s->last_swcr + (qemu_get_clock(rt_clock) - s->last_sw) / 10;
1042 return s->last_swcr;
1044 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
1050 static void pxa2xx_rtc_write(void *opaque, target_phys_addr_t addr,
1053 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
1054 addr -= s->rtc_base;
1058 if (!(s->rttr & (1 << 31))) {
1059 pxa2xx_rtc_hzupdate(s);
1061 pxa2xx_rtc_alarm_update(s, s->rtsr);
1066 if ((s->rtsr ^ value) & (1 << 15))
1067 pxa2xx_rtc_piupdate(s);
1069 if ((s->rtsr ^ value) & (1 << 12))
1070 pxa2xx_rtc_swupdate(s);
1072 if (((s->rtsr ^ value) & 0x4aac) | (value & ~0xdaac))
1073 pxa2xx_rtc_alarm_update(s, value);
1075 s->rtsr = (value & 0xdaac) | (s->rtsr & ~(value & ~0xdaac));
1076 pxa2xx_rtc_int_update(s);
1081 pxa2xx_rtc_alarm_update(s, s->rtsr);
1086 pxa2xx_rtc_alarm_update(s, s->rtsr);
1091 pxa2xx_rtc_alarm_update(s, s->rtsr);
1096 pxa2xx_rtc_alarm_update(s, s->rtsr);
1101 pxa2xx_rtc_alarm_update(s, s->rtsr);
1105 pxa2xx_rtc_swupdate(s);
1108 pxa2xx_rtc_alarm_update(s, s->rtsr);
1113 pxa2xx_rtc_alarm_update(s, s->rtsr);
1118 pxa2xx_rtc_alarm_update(s, s->rtsr);
1122 pxa2xx_rtc_hzupdate(s);
1123 s->last_rcnr = value;
1124 pxa2xx_rtc_alarm_update(s, s->rtsr);
1128 pxa2xx_rtc_hzupdate(s);
1129 s->last_rdcr = value;
1130 pxa2xx_rtc_alarm_update(s, s->rtsr);
1134 s->last_rycr = value;
1138 pxa2xx_rtc_swupdate(s);
1139 s->last_swcr = value;
1140 pxa2xx_rtc_alarm_update(s, s->rtsr);
1144 pxa2xx_rtc_piupdate(s);
1145 s->last_rtcpicr = value & 0xffff;
1146 pxa2xx_rtc_alarm_update(s, s->rtsr);
1150 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
1154 static CPUReadMemoryFunc *pxa2xx_rtc_readfn[] = {
1160 static CPUWriteMemoryFunc *pxa2xx_rtc_writefn[] = {
1166 static void pxa2xx_rtc_init(struct pxa2xx_state_s *s)
1179 tm = localtime(&ti);
1180 wom = ((tm->tm_mday - 1) / 7) + 1;
1182 s->last_rcnr = (uint32_t) ti;
1183 s->last_rdcr = (wom << 20) | ((tm->tm_wday + 1) << 17) |
1184 (tm->tm_hour << 12) | (tm->tm_min << 6) | tm->tm_sec;
1185 s->last_rycr = ((tm->tm_year + 1900) << 9) |
1186 ((tm->tm_mon + 1) << 5) | tm->tm_mday;
1187 s->last_swcr = (tm->tm_hour << 19) |
1188 (tm->tm_min << 13) | (tm->tm_sec << 7);
1189 s->last_rtcpicr = 0;
1190 s->last_hz = s->last_sw = s->last_pi = qemu_get_clock(rt_clock);
1192 s->rtc_hz = qemu_new_timer(rt_clock, pxa2xx_rtc_hz_tick, s);
1193 s->rtc_rdal1 = qemu_new_timer(rt_clock, pxa2xx_rtc_rdal1_tick, s);
1194 s->rtc_rdal2 = qemu_new_timer(rt_clock, pxa2xx_rtc_rdal2_tick, s);
1195 s->rtc_swal1 = qemu_new_timer(rt_clock, pxa2xx_rtc_swal1_tick, s);
1196 s->rtc_swal2 = qemu_new_timer(rt_clock, pxa2xx_rtc_swal2_tick, s);
1197 s->rtc_pi = qemu_new_timer(rt_clock, pxa2xx_rtc_pi_tick, s);
1200 static void pxa2xx_rtc_save(QEMUFile *f, void *opaque)
1202 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
1204 pxa2xx_rtc_hzupdate(s);
1205 pxa2xx_rtc_piupdate(s);
1206 pxa2xx_rtc_swupdate(s);
1208 qemu_put_be32s(f, &s->rttr);
1209 qemu_put_be32s(f, &s->rtsr);
1210 qemu_put_be32s(f, &s->rtar);
1211 qemu_put_be32s(f, &s->rdar1);
1212 qemu_put_be32s(f, &s->rdar2);
1213 qemu_put_be32s(f, &s->ryar1);
1214 qemu_put_be32s(f, &s->ryar2);
1215 qemu_put_be32s(f, &s->swar1);
1216 qemu_put_be32s(f, &s->swar2);
1217 qemu_put_be32s(f, &s->piar);
1218 qemu_put_be32s(f, &s->last_rcnr);
1219 qemu_put_be32s(f, &s->last_rdcr);
1220 qemu_put_be32s(f, &s->last_rycr);
1221 qemu_put_be32s(f, &s->last_swcr);
1222 qemu_put_be32s(f, &s->last_rtcpicr);
1223 qemu_put_be64s(f, &s->last_hz);
1224 qemu_put_be64s(f, &s->last_sw);
1225 qemu_put_be64s(f, &s->last_pi);
1228 static int pxa2xx_rtc_load(QEMUFile *f, void *opaque, int version_id)
1230 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
1232 qemu_get_be32s(f, &s->rttr);
1233 qemu_get_be32s(f, &s->rtsr);
1234 qemu_get_be32s(f, &s->rtar);
1235 qemu_get_be32s(f, &s->rdar1);
1236 qemu_get_be32s(f, &s->rdar2);
1237 qemu_get_be32s(f, &s->ryar1);
1238 qemu_get_be32s(f, &s->ryar2);
1239 qemu_get_be32s(f, &s->swar1);
1240 qemu_get_be32s(f, &s->swar2);
1241 qemu_get_be32s(f, &s->piar);
1242 qemu_get_be32s(f, &s->last_rcnr);
1243 qemu_get_be32s(f, &s->last_rdcr);
1244 qemu_get_be32s(f, &s->last_rycr);
1245 qemu_get_be32s(f, &s->last_swcr);
1246 qemu_get_be32s(f, &s->last_rtcpicr);
1247 qemu_get_be64s(f, &s->last_hz);
1248 qemu_get_be64s(f, &s->last_sw);
1249 qemu_get_be64s(f, &s->last_pi);
1251 pxa2xx_rtc_alarm_update(s, s->rtsr);
1257 struct pxa2xx_i2c_s {
1260 target_phys_addr_t base;
1269 #define IBMR 0x80 /* I2C Bus Monitor register */
1270 #define IDBR 0x88 /* I2C Data Buffer register */
1271 #define ICR 0x90 /* I2C Control register */
1272 #define ISR 0x98 /* I2C Status register */
1273 #define ISAR 0xa0 /* I2C Slave Address register */
1275 static void pxa2xx_i2c_update(struct pxa2xx_i2c_s *s)
1278 level |= s->status & s->control & (1 << 10); /* BED */
1279 level |= (s->status & (1 << 7)) && (s->control & (1 << 9)); /* IRF */
1280 level |= (s->status & (1 << 6)) && (s->control & (1 << 8)); /* ITE */
1281 level |= s->status & (1 << 9); /* SAD */
1282 qemu_set_irq(s->irq, !!level);
1285 /* These are only stubs now. */
1286 static void pxa2xx_i2c_event(i2c_slave *i2c, enum i2c_event event)
1288 struct pxa2xx_i2c_s *s = (struct pxa2xx_i2c_s *) i2c;
1291 case I2C_START_SEND:
1292 s->status |= (1 << 9); /* set SAD */
1293 s->status &= ~(1 << 0); /* clear RWM */
1295 case I2C_START_RECV:
1296 s->status |= (1 << 9); /* set SAD */
1297 s->status |= 1 << 0; /* set RWM */
1300 s->status |= (1 << 4); /* set SSD */
1303 s->status |= 1 << 1; /* set ACKNAK */
1306 pxa2xx_i2c_update(s);
1309 static int pxa2xx_i2c_rx(i2c_slave *i2c)
1311 struct pxa2xx_i2c_s *s = (struct pxa2xx_i2c_s *) i2c;
1312 if ((s->control & (1 << 14)) || !(s->control & (1 << 6)))
1315 if (s->status & (1 << 0)) { /* RWM */
1316 s->status |= 1 << 6; /* set ITE */
1318 pxa2xx_i2c_update(s);
1323 static int pxa2xx_i2c_tx(i2c_slave *i2c, uint8_t data)
1325 struct pxa2xx_i2c_s *s = (struct pxa2xx_i2c_s *) i2c;
1326 if ((s->control & (1 << 14)) || !(s->control & (1 << 6)))
1329 if (!(s->status & (1 << 0))) { /* RWM */
1330 s->status |= 1 << 7; /* set IRF */
1333 pxa2xx_i2c_update(s);
1338 static uint32_t pxa2xx_i2c_read(void *opaque, target_phys_addr_t addr)
1340 struct pxa2xx_i2c_s *s = (struct pxa2xx_i2c_s *) opaque;
1347 return s->status | (i2c_bus_busy(s->bus) << 2);
1349 return s->slave.address;
1353 if (s->status & (1 << 2))
1354 s->ibmr ^= 3; /* Fake SCL and SDA pin changes */
1359 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
1365 static void pxa2xx_i2c_write(void *opaque, target_phys_addr_t addr,
1368 struct pxa2xx_i2c_s *s = (struct pxa2xx_i2c_s *) opaque;
1374 s->control = value & 0xfff7;
1375 if ((value & (1 << 3)) && (value & (1 << 6))) { /* TB and IUE */
1376 /* TODO: slave mode */
1377 if (value & (1 << 0)) { /* START condition */
1379 s->status |= 1 << 0; /* set RWM */
1381 s->status &= ~(1 << 0); /* clear RWM */
1382 ack = !i2c_start_transfer(s->bus, s->data >> 1, s->data & 1);
1384 if (s->status & (1 << 0)) { /* RWM */
1385 s->data = i2c_recv(s->bus);
1386 if (value & (1 << 2)) /* ACKNAK */
1390 ack = !i2c_send(s->bus, s->data);
1393 if (value & (1 << 1)) /* STOP condition */
1394 i2c_end_transfer(s->bus);
1397 if (value & (1 << 0)) /* START condition */
1398 s->status |= 1 << 6; /* set ITE */
1400 if (s->status & (1 << 0)) /* RWM */
1401 s->status |= 1 << 7; /* set IRF */
1403 s->status |= 1 << 6; /* set ITE */
1404 s->status &= ~(1 << 1); /* clear ACKNAK */
1406 s->status |= 1 << 6; /* set ITE */
1407 s->status |= 1 << 10; /* set BED */
1408 s->status |= 1 << 1; /* set ACKNAK */
1411 if (!(value & (1 << 3)) && (value & (1 << 6))) /* !TB and IUE */
1412 if (value & (1 << 4)) /* MA */
1413 i2c_end_transfer(s->bus);
1414 pxa2xx_i2c_update(s);
1418 s->status &= ~(value & 0x07f0);
1419 pxa2xx_i2c_update(s);
1423 i2c_set_slave_address(&s->slave, value & 0x7f);
1427 s->data = value & 0xff;
1431 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
1435 static CPUReadMemoryFunc *pxa2xx_i2c_readfn[] = {
1441 static CPUWriteMemoryFunc *pxa2xx_i2c_writefn[] = {
1447 static void pxa2xx_i2c_save(QEMUFile *f, void *opaque)
1449 struct pxa2xx_i2c_s *s = (struct pxa2xx_i2c_s *) opaque;
1451 qemu_put_be16s(f, &s->control);
1452 qemu_put_be16s(f, &s->status);
1453 qemu_put_8s(f, &s->ibmr);
1454 qemu_put_8s(f, &s->data);
1456 i2c_bus_save(f, s->bus);
1457 i2c_slave_save(f, &s->slave);
1460 static int pxa2xx_i2c_load(QEMUFile *f, void *opaque, int version_id)
1462 struct pxa2xx_i2c_s *s = (struct pxa2xx_i2c_s *) opaque;
1464 qemu_get_be16s(f, &s->control);
1465 qemu_get_be16s(f, &s->status);
1466 qemu_get_8s(f, &s->ibmr);
1467 qemu_get_8s(f, &s->data);
1469 i2c_bus_load(f, s->bus);
1470 i2c_slave_load(f, &s->slave);
1474 struct pxa2xx_i2c_s *pxa2xx_i2c_init(target_phys_addr_t base,
1475 qemu_irq irq, uint32_t page_size)
1478 struct pxa2xx_i2c_s *s = (struct pxa2xx_i2c_s *)
1479 i2c_slave_init(i2c_init_bus(), 0, sizeof(struct pxa2xx_i2c_s));
1483 s->slave.event = pxa2xx_i2c_event;
1484 s->slave.recv = pxa2xx_i2c_rx;
1485 s->slave.send = pxa2xx_i2c_tx;
1486 s->bus = i2c_init_bus();
1488 iomemtype = cpu_register_io_memory(0, pxa2xx_i2c_readfn,
1489 pxa2xx_i2c_writefn, s);
1490 cpu_register_physical_memory(s->base & ~page_size, page_size, iomemtype);
1492 register_savevm("pxa2xx_i2c", base, 0,
1493 pxa2xx_i2c_save, pxa2xx_i2c_load, s);
1498 i2c_bus *pxa2xx_i2c_bus(struct pxa2xx_i2c_s *s)
1503 /* PXA Inter-IC Sound Controller */
1504 static void pxa2xx_i2s_reset(struct pxa2xx_i2s_s *i2s)
1510 i2s->control[0] = 0x00;
1511 i2s->control[1] = 0x00;
1516 #define SACR_TFTH(val) ((val >> 8) & 0xf)
1517 #define SACR_RFTH(val) ((val >> 12) & 0xf)
1518 #define SACR_DREC(val) (val & (1 << 3))
1519 #define SACR_DPRL(val) (val & (1 << 4))
1521 static inline void pxa2xx_i2s_update(struct pxa2xx_i2s_s *i2s)
1524 rfs = SACR_RFTH(i2s->control[0]) < i2s->rx_len &&
1525 !SACR_DREC(i2s->control[1]);
1526 tfs = (i2s->tx_len || i2s->fifo_len < SACR_TFTH(i2s->control[0])) &&
1527 i2s->enable && !SACR_DPRL(i2s->control[1]);
1529 pxa2xx_dma_request(i2s->dma, PXA2XX_RX_RQ_I2S, rfs);
1530 pxa2xx_dma_request(i2s->dma, PXA2XX_TX_RQ_I2S, tfs);
1532 i2s->status &= 0xe0;
1534 i2s->status |= 1 << 1; /* RNE */
1536 i2s->status |= 1 << 2; /* BSY */
1538 i2s->status |= 1 << 3; /* TFS */
1540 i2s->status |= 1 << 4; /* RFS */
1541 if (!(i2s->tx_len && i2s->enable))
1542 i2s->status |= i2s->fifo_len << 8; /* TFL */
1543 i2s->status |= MAX(i2s->rx_len, 0xf) << 12; /* RFL */
1545 qemu_set_irq(i2s->irq, i2s->status & i2s->mask);
1548 #define SACR0 0x00 /* Serial Audio Global Control register */
1549 #define SACR1 0x04 /* Serial Audio I2S/MSB-Justified Control register */
1550 #define SASR0 0x0c /* Serial Audio Interface and FIFO Status register */
1551 #define SAIMR 0x14 /* Serial Audio Interrupt Mask register */
1552 #define SAICR 0x18 /* Serial Audio Interrupt Clear register */
1553 #define SADIV 0x60 /* Serial Audio Clock Divider register */
1554 #define SADR 0x80 /* Serial Audio Data register */
1556 static uint32_t pxa2xx_i2s_read(void *opaque, target_phys_addr_t addr)
1558 struct pxa2xx_i2s_s *s = (struct pxa2xx_i2s_s *) opaque;
1563 return s->control[0];
1565 return s->control[1];
1575 if (s->rx_len > 0) {
1577 pxa2xx_i2s_update(s);
1578 return s->codec_in(s->opaque);
1582 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
1588 static void pxa2xx_i2s_write(void *opaque, target_phys_addr_t addr,
1591 struct pxa2xx_i2s_s *s = (struct pxa2xx_i2s_s *) opaque;
1597 if (value & (1 << 3)) /* RST */
1598 pxa2xx_i2s_reset(s);
1599 s->control[0] = value & 0xff3d;
1600 if (!s->enable && (value & 1) && s->tx_len) { /* ENB */
1601 for (sample = s->fifo; s->fifo_len > 0; s->fifo_len --, sample ++)
1602 s->codec_out(s->opaque, *sample);
1603 s->status &= ~(1 << 7); /* I2SOFF */
1605 if (value & (1 << 4)) /* EFWR */
1606 printf("%s: Attempt to use special function\n", __FUNCTION__);
1607 s->enable = ((value ^ 4) & 5) == 5; /* ENB && !RST*/
1608 pxa2xx_i2s_update(s);
1611 s->control[1] = value & 0x0039;
1612 if (value & (1 << 5)) /* ENLBF */
1613 printf("%s: Attempt to use loopback function\n", __FUNCTION__);
1614 if (value & (1 << 4)) /* DPRL */
1616 pxa2xx_i2s_update(s);
1619 s->mask = value & 0x0078;
1620 pxa2xx_i2s_update(s);
1623 s->status &= ~(value & (3 << 5));
1624 pxa2xx_i2s_update(s);
1627 s->clk = value & 0x007f;
1630 if (s->tx_len && s->enable) {
1632 pxa2xx_i2s_update(s);
1633 s->codec_out(s->opaque, value);
1634 } else if (s->fifo_len < 16) {
1635 s->fifo[s->fifo_len ++] = value;
1636 pxa2xx_i2s_update(s);
1640 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
1644 static CPUReadMemoryFunc *pxa2xx_i2s_readfn[] = {
1650 static CPUWriteMemoryFunc *pxa2xx_i2s_writefn[] = {
1656 static void pxa2xx_i2s_save(QEMUFile *f, void *opaque)
1658 struct pxa2xx_i2s_s *s = (struct pxa2xx_i2s_s *) opaque;
1660 qemu_put_be32s(f, &s->control[0]);
1661 qemu_put_be32s(f, &s->control[1]);
1662 qemu_put_be32s(f, &s->status);
1663 qemu_put_be32s(f, &s->mask);
1664 qemu_put_be32s(f, &s->clk);
1666 qemu_put_be32(f, s->enable);
1667 qemu_put_be32(f, s->rx_len);
1668 qemu_put_be32(f, s->tx_len);
1669 qemu_put_be32(f, s->fifo_len);
1672 static int pxa2xx_i2s_load(QEMUFile *f, void *opaque, int version_id)
1674 struct pxa2xx_i2s_s *s = (struct pxa2xx_i2s_s *) opaque;
1676 qemu_get_be32s(f, &s->control[0]);
1677 qemu_get_be32s(f, &s->control[1]);
1678 qemu_get_be32s(f, &s->status);
1679 qemu_get_be32s(f, &s->mask);
1680 qemu_get_be32s(f, &s->clk);
1682 s->enable = qemu_get_be32(f);
1683 s->rx_len = qemu_get_be32(f);
1684 s->tx_len = qemu_get_be32(f);
1685 s->fifo_len = qemu_get_be32(f);
1690 static void pxa2xx_i2s_data_req(void *opaque, int tx, int rx)
1692 struct pxa2xx_i2s_s *s = (struct pxa2xx_i2s_s *) opaque;
1695 /* Signal FIFO errors */
1696 if (s->enable && s->tx_len)
1697 s->status |= 1 << 5; /* TUR */
1698 if (s->enable && s->rx_len)
1699 s->status |= 1 << 6; /* ROR */
1701 /* Should be tx - MIN(tx, s->fifo_len) but we don't really need to
1702 * handle the cases where it makes a difference. */
1703 s->tx_len = tx - s->fifo_len;
1705 /* Note that is s->codec_out wasn't set, we wouldn't get called. */
1707 for (sample = s->fifo; s->fifo_len; s->fifo_len --, sample ++)
1708 s->codec_out(s->opaque, *sample);
1709 pxa2xx_i2s_update(s);
1712 static struct pxa2xx_i2s_s *pxa2xx_i2s_init(target_phys_addr_t base,
1713 qemu_irq irq, struct pxa2xx_dma_state_s *dma)
1716 struct pxa2xx_i2s_s *s = (struct pxa2xx_i2s_s *)
1717 qemu_mallocz(sizeof(struct pxa2xx_i2s_s));
1722 s->data_req = pxa2xx_i2s_data_req;
1724 pxa2xx_i2s_reset(s);
1726 iomemtype = cpu_register_io_memory(0, pxa2xx_i2s_readfn,
1727 pxa2xx_i2s_writefn, s);
1728 cpu_register_physical_memory(s->base & 0xfff00000, 0x100000, iomemtype);
1730 register_savevm("pxa2xx_i2s", base, 0,
1731 pxa2xx_i2s_save, pxa2xx_i2s_load, s);
1736 /* PXA Fast Infra-red Communications Port */
1737 struct pxa2xx_fir_s {
1738 target_phys_addr_t base;
1740 struct pxa2xx_dma_state_s *dma;
1742 CharDriverState *chr;
1749 uint8_t rx_fifo[64];
1752 static void pxa2xx_fir_reset(struct pxa2xx_fir_s *s)
1754 s->control[0] = 0x00;
1755 s->control[1] = 0x00;
1756 s->control[2] = 0x00;
1757 s->status[0] = 0x00;
1758 s->status[1] = 0x00;
1762 static inline void pxa2xx_fir_update(struct pxa2xx_fir_s *s)
1764 static const int tresh[4] = { 8, 16, 32, 0 };
1766 if ((s->control[0] & (1 << 4)) && /* RXE */
1767 s->rx_len >= tresh[s->control[2] & 3]) /* TRIG */
1768 s->status[0] |= 1 << 4; /* RFS */
1770 s->status[0] &= ~(1 << 4); /* RFS */
1771 if (s->control[0] & (1 << 3)) /* TXE */
1772 s->status[0] |= 1 << 3; /* TFS */
1774 s->status[0] &= ~(1 << 3); /* TFS */
1776 s->status[1] |= 1 << 2; /* RNE */
1778 s->status[1] &= ~(1 << 2); /* RNE */
1779 if (s->control[0] & (1 << 4)) /* RXE */
1780 s->status[1] |= 1 << 0; /* RSY */
1782 s->status[1] &= ~(1 << 0); /* RSY */
1784 intr |= (s->control[0] & (1 << 5)) && /* RIE */
1785 (s->status[0] & (1 << 4)); /* RFS */
1786 intr |= (s->control[0] & (1 << 6)) && /* TIE */
1787 (s->status[0] & (1 << 3)); /* TFS */
1788 intr |= (s->control[2] & (1 << 4)) && /* TRAIL */
1789 (s->status[0] & (1 << 6)); /* EOC */
1790 intr |= (s->control[0] & (1 << 2)) && /* TUS */
1791 (s->status[0] & (1 << 1)); /* TUR */
1792 intr |= s->status[0] & 0x25; /* FRE, RAB, EIF */
1794 pxa2xx_dma_request(s->dma, PXA2XX_RX_RQ_ICP, (s->status[0] >> 4) & 1);
1795 pxa2xx_dma_request(s->dma, PXA2XX_TX_RQ_ICP, (s->status[0] >> 3) & 1);
1797 qemu_set_irq(s->irq, intr && s->enable);
1800 #define ICCR0 0x00 /* FICP Control register 0 */
1801 #define ICCR1 0x04 /* FICP Control register 1 */
1802 #define ICCR2 0x08 /* FICP Control register 2 */
1803 #define ICDR 0x0c /* FICP Data register */
1804 #define ICSR0 0x14 /* FICP Status register 0 */
1805 #define ICSR1 0x18 /* FICP Status register 1 */
1806 #define ICFOR 0x1c /* FICP FIFO Occupancy Status register */
1808 static uint32_t pxa2xx_fir_read(void *opaque, target_phys_addr_t addr)
1810 struct pxa2xx_fir_s *s = (struct pxa2xx_fir_s *) opaque;
1816 return s->control[0];
1818 return s->control[1];
1820 return s->control[2];
1822 s->status[0] &= ~0x01;
1823 s->status[1] &= ~0x72;
1826 ret = s->rx_fifo[s->rx_start ++];
1828 pxa2xx_fir_update(s);
1831 printf("%s: Rx FIFO underrun.\n", __FUNCTION__);
1834 return s->status[0];
1836 return s->status[1] | (1 << 3); /* TNF */
1840 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
1846 static void pxa2xx_fir_write(void *opaque, target_phys_addr_t addr,
1849 struct pxa2xx_fir_s *s = (struct pxa2xx_fir_s *) opaque;
1855 s->control[0] = value;
1856 if (!(value & (1 << 4))) /* RXE */
1857 s->rx_len = s->rx_start = 0;
1858 if (!(value & (1 << 3))) /* TXE */
1860 s->enable = value & 1; /* ITR */
1863 pxa2xx_fir_update(s);
1866 s->control[1] = value;
1869 s->control[2] = value & 0x3f;
1870 pxa2xx_fir_update(s);
1873 if (s->control[2] & (1 << 2)) /* TXP */
1877 if (s->chr && s->enable && (s->control[0] & (1 << 3))) /* TXE */
1878 qemu_chr_write(s->chr, &ch, 1);
1881 s->status[0] &= ~(value & 0x66);
1882 pxa2xx_fir_update(s);
1887 printf("%s: Bad register " REG_FMT "\n", __FUNCTION__, addr);
1891 static CPUReadMemoryFunc *pxa2xx_fir_readfn[] = {
1897 static CPUWriteMemoryFunc *pxa2xx_fir_writefn[] = {
1903 static int pxa2xx_fir_is_empty(void *opaque)
1905 struct pxa2xx_fir_s *s = (struct pxa2xx_fir_s *) opaque;
1906 return (s->rx_len < 64);
1909 static void pxa2xx_fir_rx(void *opaque, const uint8_t *buf, int size)
1911 struct pxa2xx_fir_s *s = (struct pxa2xx_fir_s *) opaque;
1912 if (!(s->control[0] & (1 << 4))) /* RXE */
1916 s->status[1] |= 1 << 4; /* EOF */
1917 if (s->rx_len >= 64) {
1918 s->status[1] |= 1 << 6; /* ROR */
1922 if (s->control[2] & (1 << 3)) /* RXP */
1923 s->rx_fifo[(s->rx_start + s->rx_len ++) & 63] = *(buf ++);
1925 s->rx_fifo[(s->rx_start + s->rx_len ++) & 63] = ~*(buf ++);
1928 pxa2xx_fir_update(s);
1931 static void pxa2xx_fir_event(void *opaque, int event)
1935 static void pxa2xx_fir_save(QEMUFile *f, void *opaque)
1937 struct pxa2xx_fir_s *s = (struct pxa2xx_fir_s *) opaque;
1940 qemu_put_be32(f, s->enable);
1942 qemu_put_8s(f, &s->control[0]);
1943 qemu_put_8s(f, &s->control[1]);
1944 qemu_put_8s(f, &s->control[2]);
1945 qemu_put_8s(f, &s->status[0]);
1946 qemu_put_8s(f, &s->status[1]);
1948 qemu_put_byte(f, s->rx_len);
1949 for (i = 0; i < s->rx_len; i ++)
1950 qemu_put_byte(f, s->rx_fifo[(s->rx_start + i) & 63]);
1953 static int pxa2xx_fir_load(QEMUFile *f, void *opaque, int version_id)
1955 struct pxa2xx_fir_s *s = (struct pxa2xx_fir_s *) opaque;
1958 s->enable = qemu_get_be32(f);
1960 qemu_get_8s(f, &s->control[0]);
1961 qemu_get_8s(f, &s->control[1]);
1962 qemu_get_8s(f, &s->control[2]);
1963 qemu_get_8s(f, &s->status[0]);
1964 qemu_get_8s(f, &s->status[1]);
1966 s->rx_len = qemu_get_byte(f);
1968 for (i = 0; i < s->rx_len; i ++)
1969 s->rx_fifo[i] = qemu_get_byte(f);
1974 static struct pxa2xx_fir_s *pxa2xx_fir_init(target_phys_addr_t base,
1975 qemu_irq irq, struct pxa2xx_dma_state_s *dma,
1976 CharDriverState *chr)
1979 struct pxa2xx_fir_s *s = (struct pxa2xx_fir_s *)
1980 qemu_mallocz(sizeof(struct pxa2xx_fir_s));
1987 pxa2xx_fir_reset(s);
1989 iomemtype = cpu_register_io_memory(0, pxa2xx_fir_readfn,
1990 pxa2xx_fir_writefn, s);
1991 cpu_register_physical_memory(s->base, 0x1000, iomemtype);
1994 qemu_chr_add_handlers(chr, pxa2xx_fir_is_empty,
1995 pxa2xx_fir_rx, pxa2xx_fir_event, s);
1997 register_savevm("pxa2xx_fir", 0, 0, pxa2xx_fir_save, pxa2xx_fir_load, s);
2002 void pxa2xx_reset(int line, int level, void *opaque)
2004 struct pxa2xx_state_s *s = (struct pxa2xx_state_s *) opaque;
2005 if (level && (s->pm_regs[PCFR >> 2] & 0x10)) { /* GPR_EN */
2007 /* TODO: reset peripherals */
2011 /* Initialise a PXA270 integrated chip (ARM based core). */
2012 struct pxa2xx_state_s *pxa270_init(unsigned int sdram_size,
2013 DisplayState *ds, const char *revision)
2015 struct pxa2xx_state_s *s;
2016 struct pxa2xx_ssp_s *ssp;
2018 s = (struct pxa2xx_state_s *) qemu_mallocz(sizeof(struct pxa2xx_state_s));
2020 if (revision && strncmp(revision, "pxa27", 5)) {
2021 fprintf(stderr, "Machine requires a PXA27x processor.\n");
2025 s->env = cpu_init();
2026 cpu_arm_set_model(s->env, revision ?: "pxa270");
2027 register_savevm("cpu", 0, 0, cpu_save, cpu_load, s->env);
2029 /* SDRAM & Internal Memory Storage */
2030 cpu_register_physical_memory(PXA2XX_SDRAM_BASE,
2031 sdram_size, qemu_ram_alloc(sdram_size) | IO_MEM_RAM);
2032 cpu_register_physical_memory(PXA2XX_INTERNAL_BASE,
2033 0x40000, qemu_ram_alloc(0x40000) | IO_MEM_RAM);
2035 s->pic = pxa2xx_pic_init(0x40d00000, s->env);
2037 s->dma = pxa27x_dma_init(0x40000000, s->pic[PXA2XX_PIC_DMA]);
2039 pxa27x_timer_init(0x40a00000, &s->pic[PXA2XX_PIC_OST_0],
2040 s->pic[PXA27X_PIC_OST_4_11]);
2042 s->gpio = pxa2xx_gpio_init(0x40e00000, s->env, s->pic, 121);
2044 s->mmc = pxa2xx_mmci_init(0x41100000, s->pic[PXA2XX_PIC_MMC], s->dma);
2046 for (i = 0; pxa270_serial[i].io_base; i ++)
2048 serial_mm_init(pxa270_serial[i].io_base, 2,
2049 s->pic[pxa270_serial[i].irqn], serial_hds[i], 1);
2053 s->fir = pxa2xx_fir_init(0x40800000, s->pic[PXA2XX_PIC_ICP],
2054 s->dma, serial_hds[i]);
2057 s->lcd = pxa2xx_lcdc_init(0x44000000, s->pic[PXA2XX_PIC_LCD], ds);
2059 s->cm_base = 0x41300000;
2060 s->cm_regs[CCCR >> 2] = 0x02000210; /* 416.0 MHz */
2061 s->clkcfg = 0x00000009; /* Turbo mode active */
2062 iomemtype = cpu_register_io_memory(0, pxa2xx_cm_readfn,
2063 pxa2xx_cm_writefn, s);
2064 cpu_register_physical_memory(s->cm_base, 0x1000, iomemtype);
2065 register_savevm("pxa2xx_cm", 0, 0, pxa2xx_cm_save, pxa2xx_cm_load, s);
2067 cpu_arm_set_cp_io(s->env, 14, pxa2xx_cp14_read, pxa2xx_cp14_write, s);
2069 s->mm_base = 0x48000000;
2070 s->mm_regs[MDMRS >> 2] = 0x00020002;
2071 s->mm_regs[MDREFR >> 2] = 0x03ca4000;
2072 s->mm_regs[MECR >> 2] = 0x00000001; /* Two PC Card sockets */
2073 iomemtype = cpu_register_io_memory(0, pxa2xx_mm_readfn,
2074 pxa2xx_mm_writefn, s);
2075 cpu_register_physical_memory(s->mm_base, 0x1000, iomemtype);
2076 register_savevm("pxa2xx_mm", 0, 0, pxa2xx_mm_save, pxa2xx_mm_load, s);
2078 s->pm_base = 0x40f00000;
2079 iomemtype = cpu_register_io_memory(0, pxa2xx_pm_readfn,
2080 pxa2xx_pm_writefn, s);
2081 cpu_register_physical_memory(s->pm_base, 0x100, iomemtype);
2082 register_savevm("pxa2xx_pm", 0, 0, pxa2xx_pm_save, pxa2xx_pm_load, s);
2084 for (i = 0; pxa27x_ssp[i].io_base; i ++);
2085 s->ssp = (struct pxa2xx_ssp_s **)
2086 qemu_mallocz(sizeof(struct pxa2xx_ssp_s *) * i);
2087 ssp = (struct pxa2xx_ssp_s *)
2088 qemu_mallocz(sizeof(struct pxa2xx_ssp_s) * i);
2089 for (i = 0; pxa27x_ssp[i].io_base; i ++) {
2090 s->ssp[i] = &ssp[i];
2091 ssp[i].base = pxa27x_ssp[i].io_base;
2092 ssp[i].irq = s->pic[pxa27x_ssp[i].irqn];
2094 iomemtype = cpu_register_io_memory(0, pxa2xx_ssp_readfn,
2095 pxa2xx_ssp_writefn, &ssp[i]);
2096 cpu_register_physical_memory(ssp[i].base, 0x1000, iomemtype);
2097 register_savevm("pxa2xx_ssp", i, 0,
2098 pxa2xx_ssp_save, pxa2xx_ssp_load, s);
2102 usb_ohci_init_pxa(0x4c000000, 3, -1, s->pic[PXA2XX_PIC_USBH1]);
2105 s->pcmcia[0] = pxa2xx_pcmcia_init(0x20000000);
2106 s->pcmcia[1] = pxa2xx_pcmcia_init(0x30000000);
2108 s->rtc_base = 0x40900000;
2109 iomemtype = cpu_register_io_memory(0, pxa2xx_rtc_readfn,
2110 pxa2xx_rtc_writefn, s);
2111 cpu_register_physical_memory(s->rtc_base, 0x1000, iomemtype);
2113 register_savevm("pxa2xx_rtc", 0, 0, pxa2xx_rtc_save, pxa2xx_rtc_load, s);
2115 s->i2c[0] = pxa2xx_i2c_init(0x40301600, s->pic[PXA2XX_PIC_I2C], 0xffff);
2116 s->i2c[1] = pxa2xx_i2c_init(0x40f00100, s->pic[PXA2XX_PIC_PWRI2C], 0xff);
2118 s->i2s = pxa2xx_i2s_init(0x40400000, s->pic[PXA2XX_PIC_I2S], s->dma);
2120 /* GPIO1 resets the processor */
2121 /* The handler can be overridden by board-specific code */
2122 pxa2xx_gpio_handler_set(s->gpio, 1, pxa2xx_reset, s);
2126 /* Initialise a PXA255 integrated chip (ARM based core). */
2127 struct pxa2xx_state_s *pxa255_init(unsigned int sdram_size,
2130 struct pxa2xx_state_s *s;
2131 struct pxa2xx_ssp_s *ssp;
2133 s = (struct pxa2xx_state_s *) qemu_mallocz(sizeof(struct pxa2xx_state_s));
2135 s->env = cpu_init();
2136 cpu_arm_set_model(s->env, "pxa255");
2137 register_savevm("cpu", 0, 0, cpu_save, cpu_load, s->env);
2139 /* SDRAM & Internal Memory Storage */
2140 cpu_register_physical_memory(PXA2XX_SDRAM_BASE, sdram_size,
2141 qemu_ram_alloc(sdram_size) | IO_MEM_RAM);
2142 cpu_register_physical_memory(PXA2XX_INTERNAL_BASE, PXA2XX_INTERNAL_SIZE,
2143 qemu_ram_alloc(PXA2XX_INTERNAL_SIZE) | IO_MEM_RAM);
2145 s->pic = pxa2xx_pic_init(0x40d00000, s->env);
2147 s->dma = pxa255_dma_init(0x40000000, s->pic[PXA2XX_PIC_DMA]);
2149 pxa25x_timer_init(0x40a00000, &s->pic[PXA2XX_PIC_OST_0]);
2151 s->gpio = pxa2xx_gpio_init(0x40e00000, s->env, s->pic, 85);
2153 s->mmc = pxa2xx_mmci_init(0x41100000, s->pic[PXA2XX_PIC_MMC], s->dma);
2155 for (i = 0; pxa255_serial[i].io_base; i ++)
2157 serial_mm_init(pxa255_serial[i].io_base, 2,
2158 s->pic[pxa255_serial[i].irqn], serial_hds[i], 1);
2162 s->fir = pxa2xx_fir_init(0x40800000, s->pic[PXA2XX_PIC_ICP],
2163 s->dma, serial_hds[i]);
2166 s->lcd = pxa2xx_lcdc_init(0x44000000, s->pic[PXA2XX_PIC_LCD], ds);
2168 s->cm_base = 0x41300000;
2169 s->cm_regs[CCCR >> 2] = 0x02000210; /* 416.0 MHz */
2170 s->clkcfg = 0x00000009; /* Turbo mode active */
2171 iomemtype = cpu_register_io_memory(0, pxa2xx_cm_readfn,
2172 pxa2xx_cm_writefn, s);
2173 cpu_register_physical_memory(s->cm_base, 0x1000, iomemtype);
2174 register_savevm("pxa2xx_cm", 0, 0, pxa2xx_cm_save, pxa2xx_cm_load, s);
2176 cpu_arm_set_cp_io(s->env, 14, pxa2xx_cp14_read, pxa2xx_cp14_write, s);
2178 s->mm_base = 0x48000000;
2179 s->mm_regs[MDMRS >> 2] = 0x00020002;
2180 s->mm_regs[MDREFR >> 2] = 0x03ca4000;
2181 s->mm_regs[MECR >> 2] = 0x00000001; /* Two PC Card sockets */
2182 iomemtype = cpu_register_io_memory(0, pxa2xx_mm_readfn,
2183 pxa2xx_mm_writefn, s);
2184 cpu_register_physical_memory(s->mm_base, 0x1000, iomemtype);
2185 register_savevm("pxa2xx_mm", 0, 0, pxa2xx_mm_save, pxa2xx_mm_load, s);
2187 s->pm_base = 0x40f00000;
2188 iomemtype = cpu_register_io_memory(0, pxa2xx_pm_readfn,
2189 pxa2xx_pm_writefn, s);
2190 cpu_register_physical_memory(s->pm_base, 0x100, iomemtype);
2191 register_savevm("pxa2xx_pm", 0, 0, pxa2xx_pm_save, pxa2xx_pm_load, s);
2193 for (i = 0; pxa255_ssp[i].io_base; i ++);
2194 s->ssp = (struct pxa2xx_ssp_s **)
2195 qemu_mallocz(sizeof(struct pxa2xx_ssp_s *) * i);
2196 ssp = (struct pxa2xx_ssp_s *)
2197 qemu_mallocz(sizeof(struct pxa2xx_ssp_s) * i);
2198 for (i = 0; pxa255_ssp[i].io_base; i ++) {
2199 s->ssp[i] = &ssp[i];
2200 ssp[i].base = pxa255_ssp[i].io_base;
2201 ssp[i].irq = s->pic[pxa255_ssp[i].irqn];
2203 iomemtype = cpu_register_io_memory(0, pxa2xx_ssp_readfn,
2204 pxa2xx_ssp_writefn, &ssp[i]);
2205 cpu_register_physical_memory(ssp[i].base, 0x1000, iomemtype);
2206 register_savevm("pxa2xx_ssp", i, 0,
2207 pxa2xx_ssp_save, pxa2xx_ssp_load, s);
2211 usb_ohci_init_pxa(0x4c000000, 3, -1, s->pic[PXA2XX_PIC_USBH1]);
2214 s->pcmcia[0] = pxa2xx_pcmcia_init(0x20000000);
2215 s->pcmcia[1] = pxa2xx_pcmcia_init(0x30000000);
2217 s->rtc_base = 0x40900000;
2218 iomemtype = cpu_register_io_memory(0, pxa2xx_rtc_readfn,
2219 pxa2xx_rtc_writefn, s);
2220 cpu_register_physical_memory(s->rtc_base, 0x1000, iomemtype);
2222 register_savevm("pxa2xx_rtc", 0, 0, pxa2xx_rtc_save, pxa2xx_rtc_load, s);
2224 s->i2c[0] = pxa2xx_i2c_init(0x40301600, s->pic[PXA2XX_PIC_I2C], 0xffff);
2225 s->i2c[1] = pxa2xx_i2c_init(0x40f00100, s->pic[PXA2XX_PIC_PWRI2C], 0xff);
2227 s->i2s = pxa2xx_i2s_init(0x40400000, s->pic[PXA2XX_PIC_I2S], s->dma);
2229 /* GPIO1 resets the processor */
2230 /* The handler can be overridden by board-specific code */
2231 pxa2xx_gpio_handler_set(s->gpio, 1, pxa2xx_reset, s);
projects / qemu / blob