153018216SPaolo Bonzini /* 253018216SPaolo Bonzini * QEMU PowerPC Booke hardware System Emulator 353018216SPaolo Bonzini * 453018216SPaolo Bonzini * Copyright (c) 2011 AdaCore 553018216SPaolo Bonzini * 653018216SPaolo Bonzini * Permission is hereby granted, free of charge, to any person obtaining a copy 753018216SPaolo Bonzini * of this software and associated documentation files (the "Software"), to deal 853018216SPaolo Bonzini * in the Software without restriction, including without limitation the rights 953018216SPaolo Bonzini * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 1053018216SPaolo Bonzini * copies of the Software, and to permit persons to whom the Software is 1153018216SPaolo Bonzini * furnished to do so, subject to the following conditions: 1253018216SPaolo Bonzini * 1353018216SPaolo Bonzini * The above copyright notice and this permission notice shall be included in 1453018216SPaolo Bonzini * all copies or substantial portions of the Software. 1553018216SPaolo Bonzini * 1653018216SPaolo Bonzini * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 1753018216SPaolo Bonzini * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 1853018216SPaolo Bonzini * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL 1953018216SPaolo Bonzini * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 2053018216SPaolo Bonzini * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 2153018216SPaolo Bonzini * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 2253018216SPaolo Bonzini * THE SOFTWARE. 2353018216SPaolo Bonzini */ 2453018216SPaolo Bonzini #include "hw/hw.h" 250d09e41aSPaolo Bonzini #include "hw/ppc/ppc.h" 2653018216SPaolo Bonzini #include "qemu/timer.h" 2753018216SPaolo Bonzini #include "sysemu/sysemu.h" 280d09e41aSPaolo Bonzini #include "hw/timer/m48t59.h" 2953018216SPaolo Bonzini #include "qemu/log.h" 3053018216SPaolo Bonzini #include "hw/loader.h" 3131f2cb8fSBharat Bhushan #include "kvm_ppc.h" 3253018216SPaolo Bonzini 3353018216SPaolo Bonzini 3453018216SPaolo Bonzini /* Timer Control Register */ 3553018216SPaolo Bonzini 3653018216SPaolo Bonzini #define TCR_WP_SHIFT 30 /* Watchdog Timer Period */ 3753018216SPaolo Bonzini #define TCR_WP_MASK (0x3 << TCR_WP_SHIFT) 3853018216SPaolo Bonzini #define TCR_WRC_SHIFT 28 /* Watchdog Timer Reset Control */ 3953018216SPaolo Bonzini #define TCR_WRC_MASK (0x3 << TCR_WRC_SHIFT) 4053018216SPaolo Bonzini #define TCR_WIE (1 << 27) /* Watchdog Timer Interrupt Enable */ 4153018216SPaolo Bonzini #define TCR_DIE (1 << 26) /* Decrementer Interrupt Enable */ 4253018216SPaolo Bonzini #define TCR_FP_SHIFT 24 /* Fixed-Interval Timer Period */ 4353018216SPaolo Bonzini #define TCR_FP_MASK (0x3 << TCR_FP_SHIFT) 4453018216SPaolo Bonzini #define TCR_FIE (1 << 23) /* Fixed-Interval Timer Interrupt Enable */ 4553018216SPaolo Bonzini #define TCR_ARE (1 << 22) /* Auto-Reload Enable */ 4653018216SPaolo Bonzini 4753018216SPaolo Bonzini /* Timer Control Register (e500 specific fields) */ 4853018216SPaolo Bonzini 4953018216SPaolo Bonzini #define TCR_E500_FPEXT_SHIFT 13 /* Fixed-Interval Timer Period Extension */ 5053018216SPaolo Bonzini #define TCR_E500_FPEXT_MASK (0xf << TCR_E500_FPEXT_SHIFT) 5153018216SPaolo Bonzini #define TCR_E500_WPEXT_SHIFT 17 /* Watchdog Timer Period Extension */ 5253018216SPaolo Bonzini #define TCR_E500_WPEXT_MASK (0xf << TCR_E500_WPEXT_SHIFT) 5353018216SPaolo Bonzini 5453018216SPaolo Bonzini /* Timer Status Register */ 5553018216SPaolo Bonzini 5653018216SPaolo Bonzini #define TSR_FIS (1 << 26) /* Fixed-Interval Timer Interrupt Status */ 5753018216SPaolo Bonzini #define TSR_DIS (1 << 27) /* Decrementer Interrupt Status */ 5853018216SPaolo Bonzini #define TSR_WRS_SHIFT 28 /* Watchdog Timer Reset Status */ 5953018216SPaolo Bonzini #define TSR_WRS_MASK (0x3 << TSR_WRS_SHIFT) 6053018216SPaolo Bonzini #define TSR_WIS (1 << 30) /* Watchdog Timer Interrupt Status */ 6153018216SPaolo Bonzini #define TSR_ENW (1 << 31) /* Enable Next Watchdog Timer */ 6253018216SPaolo Bonzini 6353018216SPaolo Bonzini typedef struct booke_timer_t booke_timer_t; 6453018216SPaolo Bonzini struct booke_timer_t { 6553018216SPaolo Bonzini 6653018216SPaolo Bonzini uint64_t fit_next; 6753018216SPaolo Bonzini struct QEMUTimer *fit_timer; 6853018216SPaolo Bonzini 6953018216SPaolo Bonzini uint64_t wdt_next; 7053018216SPaolo Bonzini struct QEMUTimer *wdt_timer; 7153018216SPaolo Bonzini 7253018216SPaolo Bonzini uint32_t flags; 7353018216SPaolo Bonzini }; 7453018216SPaolo Bonzini 7553018216SPaolo Bonzini static void booke_update_irq(PowerPCCPU *cpu) 7653018216SPaolo Bonzini { 7753018216SPaolo Bonzini CPUPPCState *env = &cpu->env; 7853018216SPaolo Bonzini 7953018216SPaolo Bonzini ppc_set_irq(cpu, PPC_INTERRUPT_DECR, 8053018216SPaolo Bonzini (env->spr[SPR_BOOKE_TSR] & TSR_DIS 8153018216SPaolo Bonzini && env->spr[SPR_BOOKE_TCR] & TCR_DIE)); 8253018216SPaolo Bonzini 8353018216SPaolo Bonzini ppc_set_irq(cpu, PPC_INTERRUPT_WDT, 8453018216SPaolo Bonzini (env->spr[SPR_BOOKE_TSR] & TSR_WIS 8553018216SPaolo Bonzini && env->spr[SPR_BOOKE_TCR] & TCR_WIE)); 8653018216SPaolo Bonzini 8753018216SPaolo Bonzini ppc_set_irq(cpu, PPC_INTERRUPT_FIT, 8853018216SPaolo Bonzini (env->spr[SPR_BOOKE_TSR] & TSR_FIS 8953018216SPaolo Bonzini && env->spr[SPR_BOOKE_TCR] & TCR_FIE)); 9053018216SPaolo Bonzini } 9153018216SPaolo Bonzini 9253018216SPaolo Bonzini /* Return the location of the bit of time base at which the FIT will raise an 9353018216SPaolo Bonzini interrupt */ 9453018216SPaolo Bonzini static uint8_t booke_get_fit_target(CPUPPCState *env, ppc_tb_t *tb_env) 9553018216SPaolo Bonzini { 9653018216SPaolo Bonzini uint8_t fp = (env->spr[SPR_BOOKE_TCR] & TCR_FP_MASK) >> TCR_FP_SHIFT; 9753018216SPaolo Bonzini 9853018216SPaolo Bonzini if (tb_env->flags & PPC_TIMER_E500) { 9953018216SPaolo Bonzini /* e500 Fixed-interval timer period extension */ 10053018216SPaolo Bonzini uint32_t fpext = (env->spr[SPR_BOOKE_TCR] & TCR_E500_FPEXT_MASK) 10153018216SPaolo Bonzini >> TCR_E500_FPEXT_SHIFT; 10253018216SPaolo Bonzini fp = 63 - (fp | fpext << 2); 10353018216SPaolo Bonzini } else { 10453018216SPaolo Bonzini fp = env->fit_period[fp]; 10553018216SPaolo Bonzini } 10653018216SPaolo Bonzini 10753018216SPaolo Bonzini return fp; 10853018216SPaolo Bonzini } 10953018216SPaolo Bonzini 11053018216SPaolo Bonzini /* Return the location of the bit of time base at which the WDT will raise an 11153018216SPaolo Bonzini interrupt */ 11253018216SPaolo Bonzini static uint8_t booke_get_wdt_target(CPUPPCState *env, ppc_tb_t *tb_env) 11353018216SPaolo Bonzini { 11453018216SPaolo Bonzini uint8_t wp = (env->spr[SPR_BOOKE_TCR] & TCR_WP_MASK) >> TCR_WP_SHIFT; 11553018216SPaolo Bonzini 11653018216SPaolo Bonzini if (tb_env->flags & PPC_TIMER_E500) { 11753018216SPaolo Bonzini /* e500 Watchdog timer period extension */ 11853018216SPaolo Bonzini uint32_t wpext = (env->spr[SPR_BOOKE_TCR] & TCR_E500_WPEXT_MASK) 11953018216SPaolo Bonzini >> TCR_E500_WPEXT_SHIFT; 12053018216SPaolo Bonzini wp = 63 - (wp | wpext << 2); 12153018216SPaolo Bonzini } else { 12253018216SPaolo Bonzini wp = env->wdt_period[wp]; 12353018216SPaolo Bonzini } 12453018216SPaolo Bonzini 12553018216SPaolo Bonzini return wp; 12653018216SPaolo Bonzini } 12753018216SPaolo Bonzini 12853018216SPaolo Bonzini static void booke_update_fixed_timer(CPUPPCState *env, 12953018216SPaolo Bonzini uint8_t target_bit, 13053018216SPaolo Bonzini uint64_t *next, 13153018216SPaolo Bonzini struct QEMUTimer *timer) 13253018216SPaolo Bonzini { 13353018216SPaolo Bonzini ppc_tb_t *tb_env = env->tb_env; 134*ab8131afSBharat Bhushan uint64_t delta_tick, ticks = 0; 13553018216SPaolo Bonzini uint64_t tb; 136*ab8131afSBharat Bhushan uint64_t period; 13753018216SPaolo Bonzini uint64_t now; 13853018216SPaolo Bonzini 13953018216SPaolo Bonzini now = qemu_get_clock_ns(vm_clock); 14053018216SPaolo Bonzini tb = cpu_ppc_get_tb(tb_env, now, tb_env->tb_offset); 141*ab8131afSBharat Bhushan period = 1ULL << target_bit; 142*ab8131afSBharat Bhushan delta_tick = period - (tb & (period - 1)); 14353018216SPaolo Bonzini 144*ab8131afSBharat Bhushan /* the timer triggers only when the selected bit toggles from 0 to 1 */ 145*ab8131afSBharat Bhushan if (tb & period) { 146*ab8131afSBharat Bhushan ticks = period; 147*ab8131afSBharat Bhushan } 14853018216SPaolo Bonzini 149*ab8131afSBharat Bhushan if (ticks + delta_tick < ticks) { 150*ab8131afSBharat Bhushan /* Overflow, so assume the biggest number we can express. */ 151*ab8131afSBharat Bhushan ticks = UINT64_MAX; 152*ab8131afSBharat Bhushan } else { 153*ab8131afSBharat Bhushan ticks += delta_tick; 154*ab8131afSBharat Bhushan } 155*ab8131afSBharat Bhushan 156*ab8131afSBharat Bhushan *next = now + muldiv64(ticks, get_ticks_per_sec(), tb_env->tb_freq); 157*ab8131afSBharat Bhushan if ((*next < now) || (*next > INT64_MAX)) { 158*ab8131afSBharat Bhushan /* Overflow, so assume the biggest number the qemu timer supports. */ 159*ab8131afSBharat Bhushan *next = INT64_MAX; 160*ab8131afSBharat Bhushan } 16153018216SPaolo Bonzini 16253018216SPaolo Bonzini /* XXX: If expire time is now. We can't run the callback because we don't 16353018216SPaolo Bonzini * have access to it. So we just set the timer one nanosecond later. 16453018216SPaolo Bonzini */ 16553018216SPaolo Bonzini 16653018216SPaolo Bonzini if (*next == now) { 16753018216SPaolo Bonzini (*next)++; 16853018216SPaolo Bonzini } 16953018216SPaolo Bonzini 17053018216SPaolo Bonzini qemu_mod_timer(timer, *next); 17153018216SPaolo Bonzini } 17253018216SPaolo Bonzini 17353018216SPaolo Bonzini static void booke_decr_cb(void *opaque) 17453018216SPaolo Bonzini { 17553018216SPaolo Bonzini PowerPCCPU *cpu = opaque; 17653018216SPaolo Bonzini CPUPPCState *env = &cpu->env; 17753018216SPaolo Bonzini 17853018216SPaolo Bonzini env->spr[SPR_BOOKE_TSR] |= TSR_DIS; 17953018216SPaolo Bonzini booke_update_irq(cpu); 18053018216SPaolo Bonzini 18153018216SPaolo Bonzini if (env->spr[SPR_BOOKE_TCR] & TCR_ARE) { 18253018216SPaolo Bonzini /* Auto Reload */ 18353018216SPaolo Bonzini cpu_ppc_store_decr(env, env->spr[SPR_BOOKE_DECAR]); 18453018216SPaolo Bonzini } 18553018216SPaolo Bonzini } 18653018216SPaolo Bonzini 18753018216SPaolo Bonzini static void booke_fit_cb(void *opaque) 18853018216SPaolo Bonzini { 18953018216SPaolo Bonzini PowerPCCPU *cpu = opaque; 19053018216SPaolo Bonzini CPUPPCState *env = &cpu->env; 19153018216SPaolo Bonzini ppc_tb_t *tb_env; 19253018216SPaolo Bonzini booke_timer_t *booke_timer; 19353018216SPaolo Bonzini 19453018216SPaolo Bonzini tb_env = env->tb_env; 19553018216SPaolo Bonzini booke_timer = tb_env->opaque; 19653018216SPaolo Bonzini env->spr[SPR_BOOKE_TSR] |= TSR_FIS; 19753018216SPaolo Bonzini 19853018216SPaolo Bonzini booke_update_irq(cpu); 19953018216SPaolo Bonzini 20053018216SPaolo Bonzini booke_update_fixed_timer(env, 20153018216SPaolo Bonzini booke_get_fit_target(env, tb_env), 20253018216SPaolo Bonzini &booke_timer->fit_next, 20353018216SPaolo Bonzini booke_timer->fit_timer); 20453018216SPaolo Bonzini } 20553018216SPaolo Bonzini 20653018216SPaolo Bonzini static void booke_wdt_cb(void *opaque) 20753018216SPaolo Bonzini { 20853018216SPaolo Bonzini PowerPCCPU *cpu = opaque; 20953018216SPaolo Bonzini CPUPPCState *env = &cpu->env; 21053018216SPaolo Bonzini ppc_tb_t *tb_env; 21153018216SPaolo Bonzini booke_timer_t *booke_timer; 21253018216SPaolo Bonzini 21353018216SPaolo Bonzini tb_env = env->tb_env; 21453018216SPaolo Bonzini booke_timer = tb_env->opaque; 21553018216SPaolo Bonzini 21653018216SPaolo Bonzini /* TODO: There's lots of complicated stuff to do here */ 21753018216SPaolo Bonzini 21853018216SPaolo Bonzini booke_update_irq(cpu); 21953018216SPaolo Bonzini 22053018216SPaolo Bonzini booke_update_fixed_timer(env, 22153018216SPaolo Bonzini booke_get_wdt_target(env, tb_env), 22253018216SPaolo Bonzini &booke_timer->wdt_next, 22353018216SPaolo Bonzini booke_timer->wdt_timer); 22453018216SPaolo Bonzini } 22553018216SPaolo Bonzini 22653018216SPaolo Bonzini void store_booke_tsr(CPUPPCState *env, target_ulong val) 22753018216SPaolo Bonzini { 22853018216SPaolo Bonzini PowerPCCPU *cpu = ppc_env_get_cpu(env); 22953018216SPaolo Bonzini 23053018216SPaolo Bonzini env->spr[SPR_BOOKE_TSR] &= ~val; 23131f2cb8fSBharat Bhushan kvmppc_clear_tsr_bits(cpu, val); 23253018216SPaolo Bonzini booke_update_irq(cpu); 23353018216SPaolo Bonzini } 23453018216SPaolo Bonzini 23553018216SPaolo Bonzini void store_booke_tcr(CPUPPCState *env, target_ulong val) 23653018216SPaolo Bonzini { 23753018216SPaolo Bonzini PowerPCCPU *cpu = ppc_env_get_cpu(env); 23853018216SPaolo Bonzini ppc_tb_t *tb_env = env->tb_env; 23953018216SPaolo Bonzini booke_timer_t *booke_timer = tb_env->opaque; 24053018216SPaolo Bonzini 24153018216SPaolo Bonzini tb_env = env->tb_env; 24253018216SPaolo Bonzini env->spr[SPR_BOOKE_TCR] = val; 24331f2cb8fSBharat Bhushan kvmppc_set_tcr(cpu); 24453018216SPaolo Bonzini 24553018216SPaolo Bonzini booke_update_irq(cpu); 24653018216SPaolo Bonzini 24753018216SPaolo Bonzini booke_update_fixed_timer(env, 24853018216SPaolo Bonzini booke_get_fit_target(env, tb_env), 24953018216SPaolo Bonzini &booke_timer->fit_next, 25053018216SPaolo Bonzini booke_timer->fit_timer); 25153018216SPaolo Bonzini 25253018216SPaolo Bonzini booke_update_fixed_timer(env, 25353018216SPaolo Bonzini booke_get_wdt_target(env, tb_env), 25453018216SPaolo Bonzini &booke_timer->wdt_next, 25553018216SPaolo Bonzini booke_timer->wdt_timer); 25653018216SPaolo Bonzini } 25753018216SPaolo Bonzini 25853018216SPaolo Bonzini static void ppc_booke_timer_reset_handle(void *opaque) 25953018216SPaolo Bonzini { 26053018216SPaolo Bonzini PowerPCCPU *cpu = opaque; 26153018216SPaolo Bonzini CPUPPCState *env = &cpu->env; 26253018216SPaolo Bonzini 26331f2cb8fSBharat Bhushan store_booke_tcr(env, 0); 26431f2cb8fSBharat Bhushan store_booke_tsr(env, -1); 26531f2cb8fSBharat Bhushan } 26653018216SPaolo Bonzini 26731f2cb8fSBharat Bhushan /* 26831f2cb8fSBharat Bhushan * This function will be called whenever the CPU state changes. 26931f2cb8fSBharat Bhushan * CPU states are defined "typedef enum RunState". 27031f2cb8fSBharat Bhushan * Regarding timer, When CPU state changes to running after debug halt 27131f2cb8fSBharat Bhushan * or similar cases which takes time then in between final watchdog 27231f2cb8fSBharat Bhushan * expiry happenes. This will cause exit to QEMU and configured watchdog 27331f2cb8fSBharat Bhushan * action will be taken. To avoid this we always clear the watchdog state when 27431f2cb8fSBharat Bhushan * state changes to running. 27531f2cb8fSBharat Bhushan */ 27631f2cb8fSBharat Bhushan static void cpu_state_change_handler(void *opaque, int running, RunState state) 27731f2cb8fSBharat Bhushan { 27831f2cb8fSBharat Bhushan PowerPCCPU *cpu = opaque; 27931f2cb8fSBharat Bhushan CPUPPCState *env = &cpu->env; 28031f2cb8fSBharat Bhushan 28131f2cb8fSBharat Bhushan if (!running) { 28231f2cb8fSBharat Bhushan return; 28331f2cb8fSBharat Bhushan } 28431f2cb8fSBharat Bhushan 28531f2cb8fSBharat Bhushan /* 28631f2cb8fSBharat Bhushan * Clear watchdog interrupt condition by clearing TSR. 28731f2cb8fSBharat Bhushan */ 28831f2cb8fSBharat Bhushan store_booke_tsr(env, TSR_ENW | TSR_WIS | TSR_WRS_MASK); 28953018216SPaolo Bonzini } 29053018216SPaolo Bonzini 29153018216SPaolo Bonzini void ppc_booke_timers_init(PowerPCCPU *cpu, uint32_t freq, uint32_t flags) 29253018216SPaolo Bonzini { 29353018216SPaolo Bonzini ppc_tb_t *tb_env; 29453018216SPaolo Bonzini booke_timer_t *booke_timer; 29531f2cb8fSBharat Bhushan int ret = 0; 29653018216SPaolo Bonzini 29753018216SPaolo Bonzini tb_env = g_malloc0(sizeof(ppc_tb_t)); 29853018216SPaolo Bonzini booke_timer = g_malloc0(sizeof(booke_timer_t)); 29953018216SPaolo Bonzini 30053018216SPaolo Bonzini cpu->env.tb_env = tb_env; 30153018216SPaolo Bonzini tb_env->flags = flags | PPC_TIMER_BOOKE | PPC_DECR_ZERO_TRIGGERED; 30253018216SPaolo Bonzini 30353018216SPaolo Bonzini tb_env->tb_freq = freq; 30453018216SPaolo Bonzini tb_env->decr_freq = freq; 30553018216SPaolo Bonzini tb_env->opaque = booke_timer; 30653018216SPaolo Bonzini tb_env->decr_timer = qemu_new_timer_ns(vm_clock, &booke_decr_cb, cpu); 30753018216SPaolo Bonzini 30853018216SPaolo Bonzini booke_timer->fit_timer = 30953018216SPaolo Bonzini qemu_new_timer_ns(vm_clock, &booke_fit_cb, cpu); 31053018216SPaolo Bonzini booke_timer->wdt_timer = 31153018216SPaolo Bonzini qemu_new_timer_ns(vm_clock, &booke_wdt_cb, cpu); 31253018216SPaolo Bonzini 31331f2cb8fSBharat Bhushan ret = kvmppc_booke_watchdog_enable(cpu); 31431f2cb8fSBharat Bhushan 31531f2cb8fSBharat Bhushan if (ret) { 31631f2cb8fSBharat Bhushan /* TODO: Start the QEMU emulated watchdog if not running on KVM. 31731f2cb8fSBharat Bhushan * Also start the QEMU emulated watchdog if KVM does not support 31831f2cb8fSBharat Bhushan * emulated watchdog or somehow it is not enabled (supported but 31931f2cb8fSBharat Bhushan * not enabled is though some bug and requires debugging :)). 32031f2cb8fSBharat Bhushan */ 32131f2cb8fSBharat Bhushan } 32231f2cb8fSBharat Bhushan 32331f2cb8fSBharat Bhushan qemu_add_vm_change_state_handler(cpu_state_change_handler, cpu); 32431f2cb8fSBharat Bhushan 32553018216SPaolo Bonzini qemu_register_reset(ppc_booke_timer_reset_handle, cpu); 32653018216SPaolo Bonzini } 327