1 /* 2 * QEMU USB HUB emulation 3 * 4 * Copyright (c) 2005 Fabrice Bellard 5 * 6 * Permission is hereby granted, free of charge, to any person obtaining a copy 7 * of this software and associated documentation files (the "Software"), to deal 8 * in the Software without restriction, including without limitation the rights 9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 10 * copies of the Software, and to permit persons to whom the Software is 11 * furnished to do so, subject to the following conditions: 12 * 13 * The above copyright notice and this permission notice shall be included in 14 * all copies or substantial portions of the Software. 15 * 16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL 19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 22 * THE SOFTWARE. 23 */ 24 #include "qemu-common.h" 25 #include "trace.h" 26 #include "hw/usb.h" 27 #include "hw/usb/desc.h" 28 #include "qemu/error-report.h" 29 30 #define NUM_PORTS 8 31 32 typedef struct USBHubPort { 33 USBPort port; 34 uint16_t wPortStatus; 35 uint16_t wPortChange; 36 uint16_t wPortChange_reported; 37 } USBHubPort; 38 39 typedef struct USBHubState { 40 USBDevice dev; 41 USBEndpoint *intr; 42 USBHubPort ports[NUM_PORTS]; 43 } USBHubState; 44 45 #define ClearHubFeature (0x2000 | USB_REQ_CLEAR_FEATURE) 46 #define ClearPortFeature (0x2300 | USB_REQ_CLEAR_FEATURE) 47 #define GetHubDescriptor (0xa000 | USB_REQ_GET_DESCRIPTOR) 48 #define GetHubStatus (0xa000 | USB_REQ_GET_STATUS) 49 #define GetPortStatus (0xa300 | USB_REQ_GET_STATUS) 50 #define SetHubFeature (0x2000 | USB_REQ_SET_FEATURE) 51 #define SetPortFeature (0x2300 | USB_REQ_SET_FEATURE) 52 53 #define PORT_STAT_CONNECTION 0x0001 54 #define PORT_STAT_ENABLE 0x0002 55 #define PORT_STAT_SUSPEND 0x0004 56 #define PORT_STAT_OVERCURRENT 0x0008 57 #define PORT_STAT_RESET 0x0010 58 #define PORT_STAT_POWER 0x0100 59 #define PORT_STAT_LOW_SPEED 0x0200 60 #define PORT_STAT_HIGH_SPEED 0x0400 61 #define PORT_STAT_TEST 0x0800 62 #define PORT_STAT_INDICATOR 0x1000 63 64 #define PORT_STAT_C_CONNECTION 0x0001 65 #define PORT_STAT_C_ENABLE 0x0002 66 #define PORT_STAT_C_SUSPEND 0x0004 67 #define PORT_STAT_C_OVERCURRENT 0x0008 68 #define PORT_STAT_C_RESET 0x0010 69 70 #define PORT_CONNECTION 0 71 #define PORT_ENABLE 1 72 #define PORT_SUSPEND 2 73 #define PORT_OVERCURRENT 3 74 #define PORT_RESET 4 75 #define PORT_POWER 8 76 #define PORT_LOWSPEED 9 77 #define PORT_HIGHSPEED 10 78 #define PORT_C_CONNECTION 16 79 #define PORT_C_ENABLE 17 80 #define PORT_C_SUSPEND 18 81 #define PORT_C_OVERCURRENT 19 82 #define PORT_C_RESET 20 83 #define PORT_TEST 21 84 #define PORT_INDICATOR 22 85 86 /* same as Linux kernel root hubs */ 87 88 enum { 89 STR_MANUFACTURER = 1, 90 STR_PRODUCT, 91 STR_SERIALNUMBER, 92 }; 93 94 static const USBDescStrings desc_strings = { 95 [STR_MANUFACTURER] = "QEMU", 96 [STR_PRODUCT] = "QEMU USB Hub", 97 [STR_SERIALNUMBER] = "314159", 98 }; 99 100 static const USBDescIface desc_iface_hub = { 101 .bInterfaceNumber = 0, 102 .bNumEndpoints = 1, 103 .bInterfaceClass = USB_CLASS_HUB, 104 .eps = (USBDescEndpoint[]) { 105 { 106 .bEndpointAddress = USB_DIR_IN | 0x01, 107 .bmAttributes = USB_ENDPOINT_XFER_INT, 108 .wMaxPacketSize = 1 + (NUM_PORTS + 7) / 8, 109 .bInterval = 0xff, 110 }, 111 } 112 }; 113 114 static const USBDescDevice desc_device_hub = { 115 .bcdUSB = 0x0110, 116 .bDeviceClass = USB_CLASS_HUB, 117 .bMaxPacketSize0 = 8, 118 .bNumConfigurations = 1, 119 .confs = (USBDescConfig[]) { 120 { 121 .bNumInterfaces = 1, 122 .bConfigurationValue = 1, 123 .bmAttributes = 0xe0, 124 .nif = 1, 125 .ifs = &desc_iface_hub, 126 }, 127 }, 128 }; 129 130 static const USBDesc desc_hub = { 131 .id = { 132 .idVendor = 0x0409, 133 .idProduct = 0x55aa, 134 .bcdDevice = 0x0101, 135 .iManufacturer = STR_MANUFACTURER, 136 .iProduct = STR_PRODUCT, 137 .iSerialNumber = STR_SERIALNUMBER, 138 }, 139 .full = &desc_device_hub, 140 .str = desc_strings, 141 }; 142 143 static const uint8_t qemu_hub_hub_descriptor[] = 144 { 145 0x00, /* u8 bLength; patched in later */ 146 0x29, /* u8 bDescriptorType; Hub-descriptor */ 147 0x00, /* u8 bNbrPorts; (patched later) */ 148 0x0a, /* u16 wHubCharacteristics; */ 149 0x00, /* (per-port OC, no power switching) */ 150 0x01, /* u8 bPwrOn2pwrGood; 2ms */ 151 0x00 /* u8 bHubContrCurrent; 0 mA */ 152 153 /* DeviceRemovable and PortPwrCtrlMask patched in later */ 154 }; 155 156 static void usb_hub_attach(USBPort *port1) 157 { 158 USBHubState *s = port1->opaque; 159 USBHubPort *port = &s->ports[port1->index]; 160 161 trace_usb_hub_attach(s->dev.addr, port1->index + 1); 162 port->wPortStatus |= PORT_STAT_CONNECTION; 163 port->wPortChange |= PORT_STAT_C_CONNECTION; 164 if (port->port.dev->speed == USB_SPEED_LOW) { 165 port->wPortStatus |= PORT_STAT_LOW_SPEED; 166 } else { 167 port->wPortStatus &= ~PORT_STAT_LOW_SPEED; 168 } 169 usb_wakeup(s->intr, 0); 170 } 171 172 static void usb_hub_detach(USBPort *port1) 173 { 174 USBHubState *s = port1->opaque; 175 USBHubPort *port = &s->ports[port1->index]; 176 177 trace_usb_hub_detach(s->dev.addr, port1->index + 1); 178 usb_wakeup(s->intr, 0); 179 180 /* Let upstream know the device on this port is gone */ 181 s->dev.port->ops->child_detach(s->dev.port, port1->dev); 182 183 port->wPortStatus &= ~PORT_STAT_CONNECTION; 184 port->wPortChange |= PORT_STAT_C_CONNECTION; 185 if (port->wPortStatus & PORT_STAT_ENABLE) { 186 port->wPortStatus &= ~PORT_STAT_ENABLE; 187 port->wPortChange |= PORT_STAT_C_ENABLE; 188 } 189 usb_wakeup(s->intr, 0); 190 } 191 192 static void usb_hub_child_detach(USBPort *port1, USBDevice *child) 193 { 194 USBHubState *s = port1->opaque; 195 196 /* Pass along upstream */ 197 s->dev.port->ops->child_detach(s->dev.port, child); 198 } 199 200 static void usb_hub_wakeup(USBPort *port1) 201 { 202 USBHubState *s = port1->opaque; 203 USBHubPort *port = &s->ports[port1->index]; 204 205 if (port->wPortStatus & PORT_STAT_SUSPEND) { 206 port->wPortChange |= PORT_STAT_C_SUSPEND; 207 usb_wakeup(s->intr, 0); 208 } 209 } 210 211 static void usb_hub_complete(USBPort *port, USBPacket *packet) 212 { 213 USBHubState *s = port->opaque; 214 215 /* 216 * Just pass it along upstream for now. 217 * 218 * If we ever implement usb 2.0 split transactions this will 219 * become a little more complicated ... 220 * 221 * Can't use usb_packet_complete() here because packet->owner is 222 * cleared already, go call the ->complete() callback directly 223 * instead. 224 */ 225 s->dev.port->ops->complete(s->dev.port, packet); 226 } 227 228 static USBDevice *usb_hub_find_device(USBDevice *dev, uint8_t addr) 229 { 230 USBHubState *s = DO_UPCAST(USBHubState, dev, dev); 231 USBHubPort *port; 232 USBDevice *downstream; 233 int i; 234 235 for (i = 0; i < NUM_PORTS; i++) { 236 port = &s->ports[i]; 237 if (!(port->wPortStatus & PORT_STAT_ENABLE)) { 238 continue; 239 } 240 downstream = usb_find_device(&port->port, addr); 241 if (downstream != NULL) { 242 return downstream; 243 } 244 } 245 return NULL; 246 } 247 248 static void usb_hub_handle_reset(USBDevice *dev) 249 { 250 USBHubState *s = DO_UPCAST(USBHubState, dev, dev); 251 USBHubPort *port; 252 int i; 253 254 trace_usb_hub_reset(s->dev.addr); 255 for (i = 0; i < NUM_PORTS; i++) { 256 port = s->ports + i; 257 port->wPortStatus = PORT_STAT_POWER; 258 port->wPortChange = 0; 259 if (port->port.dev && port->port.dev->attached) { 260 port->wPortStatus |= PORT_STAT_CONNECTION; 261 port->wPortChange |= PORT_STAT_C_CONNECTION; 262 if (port->port.dev->speed == USB_SPEED_LOW) { 263 port->wPortStatus |= PORT_STAT_LOW_SPEED; 264 } 265 } 266 } 267 } 268 269 static const char *feature_name(int feature) 270 { 271 static const char *name[] = { 272 [PORT_CONNECTION] = "connection", 273 [PORT_ENABLE] = "enable", 274 [PORT_SUSPEND] = "suspend", 275 [PORT_OVERCURRENT] = "overcurrent", 276 [PORT_RESET] = "reset", 277 [PORT_POWER] = "power", 278 [PORT_LOWSPEED] = "lowspeed", 279 [PORT_HIGHSPEED] = "highspeed", 280 [PORT_C_CONNECTION] = "change connection", 281 [PORT_C_ENABLE] = "change enable", 282 [PORT_C_SUSPEND] = "change suspend", 283 [PORT_C_OVERCURRENT] = "change overcurrent", 284 [PORT_C_RESET] = "change reset", 285 [PORT_TEST] = "test", 286 [PORT_INDICATOR] = "indicator", 287 }; 288 if (feature < 0 || feature >= ARRAY_SIZE(name)) { 289 return "?"; 290 } 291 return name[feature] ?: "?"; 292 } 293 294 static void usb_hub_handle_control(USBDevice *dev, USBPacket *p, 295 int request, int value, int index, int length, uint8_t *data) 296 { 297 USBHubState *s = (USBHubState *)dev; 298 int ret; 299 300 trace_usb_hub_control(s->dev.addr, request, value, index, length); 301 302 ret = usb_desc_handle_control(dev, p, request, value, index, length, data); 303 if (ret >= 0) { 304 return; 305 } 306 307 switch(request) { 308 case EndpointOutRequest | USB_REQ_CLEAR_FEATURE: 309 if (value == 0 && index != 0x81) { /* clear ep halt */ 310 goto fail; 311 } 312 break; 313 /* usb specific requests */ 314 case GetHubStatus: 315 data[0] = 0; 316 data[1] = 0; 317 data[2] = 0; 318 data[3] = 0; 319 p->actual_length = 4; 320 break; 321 case GetPortStatus: 322 { 323 unsigned int n = index - 1; 324 USBHubPort *port; 325 if (n >= NUM_PORTS) { 326 goto fail; 327 } 328 port = &s->ports[n]; 329 trace_usb_hub_get_port_status(s->dev.addr, index, 330 port->wPortStatus, 331 port->wPortChange); 332 data[0] = port->wPortStatus; 333 data[1] = port->wPortStatus >> 8; 334 data[2] = port->wPortChange; 335 data[3] = port->wPortChange >> 8; 336 p->actual_length = 4; 337 } 338 break; 339 case SetHubFeature: 340 case ClearHubFeature: 341 if (value != 0 && value != 1) { 342 goto fail; 343 } 344 break; 345 case SetPortFeature: 346 { 347 unsigned int n = index - 1; 348 USBHubPort *port; 349 USBDevice *dev; 350 351 trace_usb_hub_set_port_feature(s->dev.addr, index, 352 feature_name(value)); 353 354 if (n >= NUM_PORTS) { 355 goto fail; 356 } 357 port = &s->ports[n]; 358 dev = port->port.dev; 359 switch(value) { 360 case PORT_SUSPEND: 361 port->wPortStatus |= PORT_STAT_SUSPEND; 362 break; 363 case PORT_RESET: 364 if (dev && dev->attached) { 365 usb_device_reset(dev); 366 port->wPortChange |= PORT_STAT_C_RESET; 367 /* set enable bit */ 368 port->wPortStatus |= PORT_STAT_ENABLE; 369 usb_wakeup(s->intr, 0); 370 } 371 break; 372 case PORT_POWER: 373 break; 374 default: 375 goto fail; 376 } 377 } 378 break; 379 case ClearPortFeature: 380 { 381 unsigned int n = index - 1; 382 USBHubPort *port; 383 384 trace_usb_hub_clear_port_feature(s->dev.addr, index, 385 feature_name(value)); 386 387 if (n >= NUM_PORTS) { 388 goto fail; 389 } 390 port = &s->ports[n]; 391 switch(value) { 392 case PORT_ENABLE: 393 port->wPortStatus &= ~PORT_STAT_ENABLE; 394 break; 395 case PORT_C_ENABLE: 396 port->wPortChange &= ~PORT_STAT_C_ENABLE; 397 break; 398 case PORT_SUSPEND: 399 port->wPortStatus &= ~PORT_STAT_SUSPEND; 400 break; 401 case PORT_C_SUSPEND: 402 port->wPortChange &= ~PORT_STAT_C_SUSPEND; 403 break; 404 case PORT_C_CONNECTION: 405 port->wPortChange &= ~PORT_STAT_C_CONNECTION; 406 break; 407 case PORT_C_OVERCURRENT: 408 port->wPortChange &= ~PORT_STAT_C_OVERCURRENT; 409 break; 410 case PORT_C_RESET: 411 port->wPortChange &= ~PORT_STAT_C_RESET; 412 break; 413 default: 414 goto fail; 415 } 416 } 417 break; 418 case GetHubDescriptor: 419 { 420 unsigned int n, limit, var_hub_size = 0; 421 memcpy(data, qemu_hub_hub_descriptor, 422 sizeof(qemu_hub_hub_descriptor)); 423 data[2] = NUM_PORTS; 424 425 /* fill DeviceRemovable bits */ 426 limit = ((NUM_PORTS + 1 + 7) / 8) + 7; 427 for (n = 7; n < limit; n++) { 428 data[n] = 0x00; 429 var_hub_size++; 430 } 431 432 /* fill PortPwrCtrlMask bits */ 433 limit = limit + ((NUM_PORTS + 7) / 8); 434 for (;n < limit; n++) { 435 data[n] = 0xff; 436 var_hub_size++; 437 } 438 439 p->actual_length = sizeof(qemu_hub_hub_descriptor) + var_hub_size; 440 data[0] = p->actual_length; 441 break; 442 } 443 default: 444 fail: 445 p->status = USB_RET_STALL; 446 break; 447 } 448 } 449 450 static void usb_hub_handle_data(USBDevice *dev, USBPacket *p) 451 { 452 USBHubState *s = (USBHubState *)dev; 453 454 switch(p->pid) { 455 case USB_TOKEN_IN: 456 if (p->ep->nr == 1) { 457 USBHubPort *port; 458 unsigned int status; 459 uint8_t buf[4]; 460 int i, n; 461 n = (NUM_PORTS + 1 + 7) / 8; 462 if (p->iov.size == 1) { /* FreeBSD workaround */ 463 n = 1; 464 } else if (n > p->iov.size) { 465 p->status = USB_RET_BABBLE; 466 return; 467 } 468 status = 0; 469 for(i = 0; i < NUM_PORTS; i++) { 470 port = &s->ports[i]; 471 if (port->wPortChange && 472 port->wPortChange_reported != port->wPortChange) { 473 status |= (1 << (i + 1)); 474 } 475 port->wPortChange_reported = port->wPortChange; 476 } 477 if (status != 0) { 478 for(i = 0; i < n; i++) { 479 buf[i] = status >> (8 * i); 480 } 481 usb_packet_copy(p, buf, n); 482 } else { 483 p->status = USB_RET_NAK; /* usb11 11.13.1 */ 484 } 485 } else { 486 goto fail; 487 } 488 break; 489 case USB_TOKEN_OUT: 490 default: 491 fail: 492 p->status = USB_RET_STALL; 493 break; 494 } 495 } 496 497 static void usb_hub_handle_destroy(USBDevice *dev) 498 { 499 USBHubState *s = (USBHubState *)dev; 500 int i; 501 502 for (i = 0; i < NUM_PORTS; i++) { 503 usb_unregister_port(usb_bus_from_device(dev), 504 &s->ports[i].port); 505 } 506 } 507 508 static USBPortOps usb_hub_port_ops = { 509 .attach = usb_hub_attach, 510 .detach = usb_hub_detach, 511 .child_detach = usb_hub_child_detach, 512 .wakeup = usb_hub_wakeup, 513 .complete = usb_hub_complete, 514 }; 515 516 static int usb_hub_initfn(USBDevice *dev) 517 { 518 USBHubState *s = DO_UPCAST(USBHubState, dev, dev); 519 USBHubPort *port; 520 int i; 521 522 if (dev->port->hubcount == 5) { 523 error_report("usb hub chain too deep"); 524 return -1; 525 } 526 527 usb_desc_create_serial(dev); 528 usb_desc_init(dev); 529 s->intr = usb_ep_get(dev, USB_TOKEN_IN, 1); 530 for (i = 0; i < NUM_PORTS; i++) { 531 port = &s->ports[i]; 532 usb_register_port(usb_bus_from_device(dev), 533 &port->port, s, i, &usb_hub_port_ops, 534 USB_SPEED_MASK_LOW | USB_SPEED_MASK_FULL); 535 usb_port_location(&port->port, dev->port, i+1); 536 } 537 usb_hub_handle_reset(dev); 538 return 0; 539 } 540 541 static const VMStateDescription vmstate_usb_hub_port = { 542 .name = "usb-hub-port", 543 .version_id = 1, 544 .minimum_version_id = 1, 545 .fields = (VMStateField []) { 546 VMSTATE_UINT16(wPortStatus, USBHubPort), 547 VMSTATE_UINT16(wPortChange, USBHubPort), 548 VMSTATE_END_OF_LIST() 549 } 550 }; 551 552 static const VMStateDescription vmstate_usb_hub = { 553 .name = "usb-hub", 554 .version_id = 1, 555 .minimum_version_id = 1, 556 .fields = (VMStateField []) { 557 VMSTATE_USB_DEVICE(dev, USBHubState), 558 VMSTATE_STRUCT_ARRAY(ports, USBHubState, NUM_PORTS, 0, 559 vmstate_usb_hub_port, USBHubPort), 560 VMSTATE_END_OF_LIST() 561 } 562 }; 563 564 static void usb_hub_class_initfn(ObjectClass *klass, void *data) 565 { 566 DeviceClass *dc = DEVICE_CLASS(klass); 567 USBDeviceClass *uc = USB_DEVICE_CLASS(klass); 568 569 uc->init = usb_hub_initfn; 570 uc->product_desc = "QEMU USB Hub"; 571 uc->usb_desc = &desc_hub; 572 uc->find_device = usb_hub_find_device; 573 uc->handle_reset = usb_hub_handle_reset; 574 uc->handle_control = usb_hub_handle_control; 575 uc->handle_data = usb_hub_handle_data; 576 uc->handle_destroy = usb_hub_handle_destroy; 577 dc->fw_name = "hub"; 578 dc->vmsd = &vmstate_usb_hub; 579 } 580 581 static const TypeInfo hub_info = { 582 .name = "usb-hub", 583 .parent = TYPE_USB_DEVICE, 584 .instance_size = sizeof(USBHubState), 585 .class_init = usb_hub_class_initfn, 586 }; 587 588 static void usb_hub_register_types(void) 589 { 590 type_register_static(&hub_info); 591 } 592 593 type_init(usb_hub_register_types) 594