1f1ae32a1SGerd Hoffmann /* 2f1ae32a1SGerd Hoffmann * QEMU USB EHCI Emulation 3f1ae32a1SGerd Hoffmann * 4f1ae32a1SGerd Hoffmann * Copyright(c) 2008 Emutex Ltd. (address@hidden) 5522079ddSHans de Goede * Copyright(c) 2011-2012 Red Hat, Inc. 6522079ddSHans de Goede * 7522079ddSHans de Goede * Red Hat Authors: 8522079ddSHans de Goede * Gerd Hoffmann <kraxel@redhat.com> 9522079ddSHans de Goede * Hans de Goede <hdegoede@redhat.com> 10f1ae32a1SGerd Hoffmann * 11f1ae32a1SGerd Hoffmann * EHCI project was started by Mark Burkley, with contributions by 12f1ae32a1SGerd Hoffmann * Niels de Vos. David S. Ahern continued working on it. Kevin Wolf, 13f1ae32a1SGerd Hoffmann * Jan Kiszka and Vincent Palatin contributed bugfixes. 14f1ae32a1SGerd Hoffmann * 15f1ae32a1SGerd Hoffmann * 16f1ae32a1SGerd Hoffmann * This library is free software; you can redistribute it and/or 17f1ae32a1SGerd Hoffmann * modify it under the terms of the GNU Lesser General Public 18f1ae32a1SGerd Hoffmann * License as published by the Free Software Foundation; either 19f1ae32a1SGerd Hoffmann * version 2 of the License, or(at your option) any later version. 20f1ae32a1SGerd Hoffmann * 21f1ae32a1SGerd Hoffmann * This library is distributed in the hope that it will be useful, 22f1ae32a1SGerd Hoffmann * but WITHOUT ANY WARRANTY; without even the implied warranty of 23f1ae32a1SGerd Hoffmann * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU 24f1ae32a1SGerd Hoffmann * Lesser General Public License for more details. 25f1ae32a1SGerd Hoffmann * 26f1ae32a1SGerd Hoffmann * You should have received a copy of the GNU General Public License 27f1ae32a1SGerd Hoffmann * along with this program; if not, see <http://www.gnu.org/licenses/>. 28f1ae32a1SGerd Hoffmann */ 29f1ae32a1SGerd Hoffmann 30*e532b2e0SPeter Maydell #include "qemu/osdep.h" 31381626a9SGerd Hoffmann #include "hw/usb/ehci-regs.h" 320bf96f94SGerd Hoffmann #include "hw/usb/hcd-ehci.h" 3312269616SStefan Weil #include "trace.h" 34f1ae32a1SGerd Hoffmann 35f1ae32a1SGerd Hoffmann #define FRAME_TIMER_FREQ 1000 3613566fe3SStefan Hajnoczi #define FRAME_TIMER_NS (NANOSECONDS_PER_SECOND / FRAME_TIMER_FREQ) 379359a58bSHans de Goede #define UFRAME_TIMER_NS (FRAME_TIMER_NS / 8) 38f1ae32a1SGerd Hoffmann 39f1ae32a1SGerd Hoffmann #define NB_MAXINTRATE 8 // Max rate at which controller issues ints 40f1ae32a1SGerd Hoffmann #define BUFF_SIZE 5*4096 // Max bytes to transfer per transaction 41f1ae32a1SGerd Hoffmann #define MAX_QH 100 // Max allowable queue heads in a chain 429359a58bSHans de Goede #define MIN_UFR_PER_TICK 24 /* Min frames to process when catching up */ 439359a58bSHans de Goede #define PERIODIC_ACTIVE 512 /* Micro-frames */ 44f1ae32a1SGerd Hoffmann 45f1ae32a1SGerd Hoffmann /* Internal periodic / asynchronous schedule state machine states 46f1ae32a1SGerd Hoffmann */ 47f1ae32a1SGerd Hoffmann typedef enum { 48f1ae32a1SGerd Hoffmann EST_INACTIVE = 1000, 49f1ae32a1SGerd Hoffmann EST_ACTIVE, 50f1ae32a1SGerd Hoffmann EST_EXECUTING, 51f1ae32a1SGerd Hoffmann EST_SLEEPING, 52f1ae32a1SGerd Hoffmann /* The following states are internal to the state machine function 53f1ae32a1SGerd Hoffmann */ 54f1ae32a1SGerd Hoffmann EST_WAITLISTHEAD, 55f1ae32a1SGerd Hoffmann EST_FETCHENTRY, 56f1ae32a1SGerd Hoffmann EST_FETCHQH, 57f1ae32a1SGerd Hoffmann EST_FETCHITD, 58f1ae32a1SGerd Hoffmann EST_FETCHSITD, 59f1ae32a1SGerd Hoffmann EST_ADVANCEQUEUE, 60f1ae32a1SGerd Hoffmann EST_FETCHQTD, 61f1ae32a1SGerd Hoffmann EST_EXECUTE, 62f1ae32a1SGerd Hoffmann EST_WRITEBACK, 63f1ae32a1SGerd Hoffmann EST_HORIZONTALQH 64f1ae32a1SGerd Hoffmann } EHCI_STATES; 65f1ae32a1SGerd Hoffmann 66f1ae32a1SGerd Hoffmann /* macros for accessing fields within next link pointer entry */ 67f1ae32a1SGerd Hoffmann #define NLPTR_GET(x) ((x) & 0xffffffe0) 68f1ae32a1SGerd Hoffmann #define NLPTR_TYPE_GET(x) (((x) >> 1) & 3) 69f1ae32a1SGerd Hoffmann #define NLPTR_TBIT(x) ((x) & 1) // 1=invalid, 0=valid 70f1ae32a1SGerd Hoffmann 71f1ae32a1SGerd Hoffmann /* link pointer types */ 72f1ae32a1SGerd Hoffmann #define NLPTR_TYPE_ITD 0 // isoc xfer descriptor 73f1ae32a1SGerd Hoffmann #define NLPTR_TYPE_QH 1 // queue head 74f1ae32a1SGerd Hoffmann #define NLPTR_TYPE_STITD 2 // split xaction, isoc xfer descriptor 75f1ae32a1SGerd Hoffmann #define NLPTR_TYPE_FSTN 3 // frame span traversal node 76f1ae32a1SGerd Hoffmann 77f1ae32a1SGerd Hoffmann #define SET_LAST_RUN_CLOCK(s) \ 78bc72ad67SAlex Bligh (s)->last_run_ns = qemu_clock_get_ns(QEMU_CLOCK_VIRTUAL); 79f1ae32a1SGerd Hoffmann 80f1ae32a1SGerd Hoffmann /* nifty macros from Arnon's EHCI version */ 81f1ae32a1SGerd Hoffmann #define get_field(data, field) \ 82f1ae32a1SGerd Hoffmann (((data) & field##_MASK) >> field##_SH) 83f1ae32a1SGerd Hoffmann 84f1ae32a1SGerd Hoffmann #define set_field(data, newval, field) do { \ 85f1ae32a1SGerd Hoffmann uint32_t val = *data; \ 86f1ae32a1SGerd Hoffmann val &= ~ field##_MASK; \ 87f1ae32a1SGerd Hoffmann val |= ((newval) << field##_SH) & field##_MASK; \ 88f1ae32a1SGerd Hoffmann *data = val; \ 89f1ae32a1SGerd Hoffmann } while(0) 90f1ae32a1SGerd Hoffmann 91f1ae32a1SGerd Hoffmann static const char *ehci_state_names[] = { 92f1ae32a1SGerd Hoffmann [EST_INACTIVE] = "INACTIVE", 93f1ae32a1SGerd Hoffmann [EST_ACTIVE] = "ACTIVE", 94f1ae32a1SGerd Hoffmann [EST_EXECUTING] = "EXECUTING", 95f1ae32a1SGerd Hoffmann [EST_SLEEPING] = "SLEEPING", 96f1ae32a1SGerd Hoffmann [EST_WAITLISTHEAD] = "WAITLISTHEAD", 97f1ae32a1SGerd Hoffmann [EST_FETCHENTRY] = "FETCH ENTRY", 98f1ae32a1SGerd Hoffmann [EST_FETCHQH] = "FETCH QH", 99f1ae32a1SGerd Hoffmann [EST_FETCHITD] = "FETCH ITD", 100f1ae32a1SGerd Hoffmann [EST_ADVANCEQUEUE] = "ADVANCEQUEUE", 101f1ae32a1SGerd Hoffmann [EST_FETCHQTD] = "FETCH QTD", 102f1ae32a1SGerd Hoffmann [EST_EXECUTE] = "EXECUTE", 103f1ae32a1SGerd Hoffmann [EST_WRITEBACK] = "WRITEBACK", 104f1ae32a1SGerd Hoffmann [EST_HORIZONTALQH] = "HORIZONTALQH", 105f1ae32a1SGerd Hoffmann }; 106f1ae32a1SGerd Hoffmann 107f1ae32a1SGerd Hoffmann static const char *ehci_mmio_names[] = { 108f1ae32a1SGerd Hoffmann [USBCMD] = "USBCMD", 109f1ae32a1SGerd Hoffmann [USBSTS] = "USBSTS", 110f1ae32a1SGerd Hoffmann [USBINTR] = "USBINTR", 111f1ae32a1SGerd Hoffmann [FRINDEX] = "FRINDEX", 112f1ae32a1SGerd Hoffmann [PERIODICLISTBASE] = "P-LIST BASE", 113f1ae32a1SGerd Hoffmann [ASYNCLISTADDR] = "A-LIST ADDR", 114f1ae32a1SGerd Hoffmann [CONFIGFLAG] = "CONFIGFLAG", 115f1ae32a1SGerd Hoffmann }; 116f1ae32a1SGerd Hoffmann 1174b63a0dfSHans de Goede static int ehci_state_executing(EHCIQueue *q); 1184b63a0dfSHans de Goede static int ehci_state_writeback(EHCIQueue *q); 119ff80ce59SHans de Goede static int ehci_state_advqueue(EHCIQueue *q); 120b4ea8664SHans de Goede static int ehci_fill_queue(EHCIPacket *p); 1212b3de6adSHans de Goede static void ehci_free_packet(EHCIPacket *p); 1224b63a0dfSHans de Goede 123f1ae32a1SGerd Hoffmann static const char *nr2str(const char **n, size_t len, uint32_t nr) 124f1ae32a1SGerd Hoffmann { 125f1ae32a1SGerd Hoffmann if (nr < len && n[nr] != NULL) { 126f1ae32a1SGerd Hoffmann return n[nr]; 127f1ae32a1SGerd Hoffmann } else { 128f1ae32a1SGerd Hoffmann return "unknown"; 129f1ae32a1SGerd Hoffmann } 130f1ae32a1SGerd Hoffmann } 131f1ae32a1SGerd Hoffmann 132f1ae32a1SGerd Hoffmann static const char *state2str(uint32_t state) 133f1ae32a1SGerd Hoffmann { 134f1ae32a1SGerd Hoffmann return nr2str(ehci_state_names, ARRAY_SIZE(ehci_state_names), state); 135f1ae32a1SGerd Hoffmann } 136f1ae32a1SGerd Hoffmann 137a8170e5eSAvi Kivity static const char *addr2str(hwaddr addr) 138f1ae32a1SGerd Hoffmann { 13927a11324SPeter Crosthwaite return nr2str(ehci_mmio_names, ARRAY_SIZE(ehci_mmio_names), addr); 140f1ae32a1SGerd Hoffmann } 141f1ae32a1SGerd Hoffmann 142f1ae32a1SGerd Hoffmann static void ehci_trace_usbsts(uint32_t mask, int state) 143f1ae32a1SGerd Hoffmann { 144f1ae32a1SGerd Hoffmann /* interrupts */ 145f1ae32a1SGerd Hoffmann if (mask & USBSTS_INT) { 146f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("INT", state); 147f1ae32a1SGerd Hoffmann } 148f1ae32a1SGerd Hoffmann if (mask & USBSTS_ERRINT) { 149f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("ERRINT", state); 150f1ae32a1SGerd Hoffmann } 151f1ae32a1SGerd Hoffmann if (mask & USBSTS_PCD) { 152f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("PCD", state); 153f1ae32a1SGerd Hoffmann } 154f1ae32a1SGerd Hoffmann if (mask & USBSTS_FLR) { 155f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("FLR", state); 156f1ae32a1SGerd Hoffmann } 157f1ae32a1SGerd Hoffmann if (mask & USBSTS_HSE) { 158f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("HSE", state); 159f1ae32a1SGerd Hoffmann } 160f1ae32a1SGerd Hoffmann if (mask & USBSTS_IAA) { 161f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("IAA", state); 162f1ae32a1SGerd Hoffmann } 163f1ae32a1SGerd Hoffmann 164f1ae32a1SGerd Hoffmann /* status */ 165f1ae32a1SGerd Hoffmann if (mask & USBSTS_HALT) { 166f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("HALT", state); 167f1ae32a1SGerd Hoffmann } 168f1ae32a1SGerd Hoffmann if (mask & USBSTS_REC) { 169f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("REC", state); 170f1ae32a1SGerd Hoffmann } 171f1ae32a1SGerd Hoffmann if (mask & USBSTS_PSS) { 172f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("PSS", state); 173f1ae32a1SGerd Hoffmann } 174f1ae32a1SGerd Hoffmann if (mask & USBSTS_ASS) { 175f1ae32a1SGerd Hoffmann trace_usb_ehci_usbsts("ASS", state); 176f1ae32a1SGerd Hoffmann } 177f1ae32a1SGerd Hoffmann } 178f1ae32a1SGerd Hoffmann 179f1ae32a1SGerd Hoffmann static inline void ehci_set_usbsts(EHCIState *s, int mask) 180f1ae32a1SGerd Hoffmann { 181f1ae32a1SGerd Hoffmann if ((s->usbsts & mask) == mask) { 182f1ae32a1SGerd Hoffmann return; 183f1ae32a1SGerd Hoffmann } 184f1ae32a1SGerd Hoffmann ehci_trace_usbsts(mask, 1); 185f1ae32a1SGerd Hoffmann s->usbsts |= mask; 186f1ae32a1SGerd Hoffmann } 187f1ae32a1SGerd Hoffmann 188f1ae32a1SGerd Hoffmann static inline void ehci_clear_usbsts(EHCIState *s, int mask) 189f1ae32a1SGerd Hoffmann { 190f1ae32a1SGerd Hoffmann if ((s->usbsts & mask) == 0) { 191f1ae32a1SGerd Hoffmann return; 192f1ae32a1SGerd Hoffmann } 193f1ae32a1SGerd Hoffmann ehci_trace_usbsts(mask, 0); 194f1ae32a1SGerd Hoffmann s->usbsts &= ~mask; 195f1ae32a1SGerd Hoffmann } 196f1ae32a1SGerd Hoffmann 1977efc17afSGerd Hoffmann /* update irq line */ 1987efc17afSGerd Hoffmann static inline void ehci_update_irq(EHCIState *s) 199f1ae32a1SGerd Hoffmann { 200f1ae32a1SGerd Hoffmann int level = 0; 201f1ae32a1SGerd Hoffmann 202f1ae32a1SGerd Hoffmann if ((s->usbsts & USBINTR_MASK) & s->usbintr) { 203f1ae32a1SGerd Hoffmann level = 1; 204f1ae32a1SGerd Hoffmann } 205f1ae32a1SGerd Hoffmann 2067efc17afSGerd Hoffmann trace_usb_ehci_irq(level, s->frindex, s->usbsts, s->usbintr); 207f1ae32a1SGerd Hoffmann qemu_set_irq(s->irq, level); 208f1ae32a1SGerd Hoffmann } 209f1ae32a1SGerd Hoffmann 2107efc17afSGerd Hoffmann /* flag interrupt condition */ 2117efc17afSGerd Hoffmann static inline void ehci_raise_irq(EHCIState *s, int intr) 212f1ae32a1SGerd Hoffmann { 2136d3b6d3dSGerd Hoffmann if (intr & (USBSTS_PCD | USBSTS_FLR | USBSTS_HSE)) { 2146d3b6d3dSGerd Hoffmann s->usbsts |= intr; 2156d3b6d3dSGerd Hoffmann ehci_update_irq(s); 2166d3b6d3dSGerd Hoffmann } else { 217f1ae32a1SGerd Hoffmann s->usbsts_pending |= intr; 218f1ae32a1SGerd Hoffmann } 2196d3b6d3dSGerd Hoffmann } 220f1ae32a1SGerd Hoffmann 2217efc17afSGerd Hoffmann /* 2227efc17afSGerd Hoffmann * Commit pending interrupts (added via ehci_raise_irq), 2237efc17afSGerd Hoffmann * at the rate allowed by "Interrupt Threshold Control". 2247efc17afSGerd Hoffmann */ 2257efc17afSGerd Hoffmann static inline void ehci_commit_irq(EHCIState *s) 226f1ae32a1SGerd Hoffmann { 2277efc17afSGerd Hoffmann uint32_t itc; 2287efc17afSGerd Hoffmann 229f1ae32a1SGerd Hoffmann if (!s->usbsts_pending) { 230f1ae32a1SGerd Hoffmann return; 231f1ae32a1SGerd Hoffmann } 2327efc17afSGerd Hoffmann if (s->usbsts_frindex > s->frindex) { 2337efc17afSGerd Hoffmann return; 2347efc17afSGerd Hoffmann } 2357efc17afSGerd Hoffmann 2367efc17afSGerd Hoffmann itc = (s->usbcmd >> 16) & 0xff; 2377efc17afSGerd Hoffmann s->usbsts |= s->usbsts_pending; 238f1ae32a1SGerd Hoffmann s->usbsts_pending = 0; 2397efc17afSGerd Hoffmann s->usbsts_frindex = s->frindex + itc; 2407efc17afSGerd Hoffmann ehci_update_irq(s); 241f1ae32a1SGerd Hoffmann } 242f1ae32a1SGerd Hoffmann 243daf25307SGerd Hoffmann static void ehci_update_halt(EHCIState *s) 244daf25307SGerd Hoffmann { 245daf25307SGerd Hoffmann if (s->usbcmd & USBCMD_RUNSTOP) { 246daf25307SGerd Hoffmann ehci_clear_usbsts(s, USBSTS_HALT); 247daf25307SGerd Hoffmann } else { 248daf25307SGerd Hoffmann if (s->astate == EST_INACTIVE && s->pstate == EST_INACTIVE) { 249daf25307SGerd Hoffmann ehci_set_usbsts(s, USBSTS_HALT); 250daf25307SGerd Hoffmann } 251daf25307SGerd Hoffmann } 252daf25307SGerd Hoffmann } 253daf25307SGerd Hoffmann 254f1ae32a1SGerd Hoffmann static void ehci_set_state(EHCIState *s, int async, int state) 255f1ae32a1SGerd Hoffmann { 256f1ae32a1SGerd Hoffmann if (async) { 257f1ae32a1SGerd Hoffmann trace_usb_ehci_state("async", state2str(state)); 258f1ae32a1SGerd Hoffmann s->astate = state; 259b53f685dSGerd Hoffmann if (s->astate == EST_INACTIVE) { 260b53f685dSGerd Hoffmann ehci_clear_usbsts(s, USBSTS_ASS); 261daf25307SGerd Hoffmann ehci_update_halt(s); 262b53f685dSGerd Hoffmann } else { 263b53f685dSGerd Hoffmann ehci_set_usbsts(s, USBSTS_ASS); 264b53f685dSGerd Hoffmann } 265f1ae32a1SGerd Hoffmann } else { 266f1ae32a1SGerd Hoffmann trace_usb_ehci_state("periodic", state2str(state)); 267f1ae32a1SGerd Hoffmann s->pstate = state; 268b53f685dSGerd Hoffmann if (s->pstate == EST_INACTIVE) { 269b53f685dSGerd Hoffmann ehci_clear_usbsts(s, USBSTS_PSS); 270daf25307SGerd Hoffmann ehci_update_halt(s); 271b53f685dSGerd Hoffmann } else { 272b53f685dSGerd Hoffmann ehci_set_usbsts(s, USBSTS_PSS); 273b53f685dSGerd Hoffmann } 274f1ae32a1SGerd Hoffmann } 275f1ae32a1SGerd Hoffmann } 276f1ae32a1SGerd Hoffmann 277f1ae32a1SGerd Hoffmann static int ehci_get_state(EHCIState *s, int async) 278f1ae32a1SGerd Hoffmann { 279f1ae32a1SGerd Hoffmann return async ? s->astate : s->pstate; 280f1ae32a1SGerd Hoffmann } 281f1ae32a1SGerd Hoffmann 282f1ae32a1SGerd Hoffmann static void ehci_set_fetch_addr(EHCIState *s, int async, uint32_t addr) 283f1ae32a1SGerd Hoffmann { 284f1ae32a1SGerd Hoffmann if (async) { 285f1ae32a1SGerd Hoffmann s->a_fetch_addr = addr; 286f1ae32a1SGerd Hoffmann } else { 287f1ae32a1SGerd Hoffmann s->p_fetch_addr = addr; 288f1ae32a1SGerd Hoffmann } 289f1ae32a1SGerd Hoffmann } 290f1ae32a1SGerd Hoffmann 291f1ae32a1SGerd Hoffmann static int ehci_get_fetch_addr(EHCIState *s, int async) 292f1ae32a1SGerd Hoffmann { 293f1ae32a1SGerd Hoffmann return async ? s->a_fetch_addr : s->p_fetch_addr; 294f1ae32a1SGerd Hoffmann } 295f1ae32a1SGerd Hoffmann 296a8170e5eSAvi Kivity static void ehci_trace_qh(EHCIQueue *q, hwaddr addr, EHCIqh *qh) 297f1ae32a1SGerd Hoffmann { 298f1ae32a1SGerd Hoffmann /* need three here due to argument count limits */ 299f1ae32a1SGerd Hoffmann trace_usb_ehci_qh_ptrs(q, addr, qh->next, 300f1ae32a1SGerd Hoffmann qh->current_qtd, qh->next_qtd, qh->altnext_qtd); 301f1ae32a1SGerd Hoffmann trace_usb_ehci_qh_fields(addr, 302f1ae32a1SGerd Hoffmann get_field(qh->epchar, QH_EPCHAR_RL), 303f1ae32a1SGerd Hoffmann get_field(qh->epchar, QH_EPCHAR_MPLEN), 304f1ae32a1SGerd Hoffmann get_field(qh->epchar, QH_EPCHAR_EPS), 305f1ae32a1SGerd Hoffmann get_field(qh->epchar, QH_EPCHAR_EP), 306f1ae32a1SGerd Hoffmann get_field(qh->epchar, QH_EPCHAR_DEVADDR)); 307f1ae32a1SGerd Hoffmann trace_usb_ehci_qh_bits(addr, 308f1ae32a1SGerd Hoffmann (bool)(qh->epchar & QH_EPCHAR_C), 309f1ae32a1SGerd Hoffmann (bool)(qh->epchar & QH_EPCHAR_H), 310f1ae32a1SGerd Hoffmann (bool)(qh->epchar & QH_EPCHAR_DTC), 311f1ae32a1SGerd Hoffmann (bool)(qh->epchar & QH_EPCHAR_I)); 312f1ae32a1SGerd Hoffmann } 313f1ae32a1SGerd Hoffmann 314a8170e5eSAvi Kivity static void ehci_trace_qtd(EHCIQueue *q, hwaddr addr, EHCIqtd *qtd) 315f1ae32a1SGerd Hoffmann { 316f1ae32a1SGerd Hoffmann /* need three here due to argument count limits */ 317f1ae32a1SGerd Hoffmann trace_usb_ehci_qtd_ptrs(q, addr, qtd->next, qtd->altnext); 318f1ae32a1SGerd Hoffmann trace_usb_ehci_qtd_fields(addr, 319f1ae32a1SGerd Hoffmann get_field(qtd->token, QTD_TOKEN_TBYTES), 320f1ae32a1SGerd Hoffmann get_field(qtd->token, QTD_TOKEN_CPAGE), 321f1ae32a1SGerd Hoffmann get_field(qtd->token, QTD_TOKEN_CERR), 322f1ae32a1SGerd Hoffmann get_field(qtd->token, QTD_TOKEN_PID)); 323f1ae32a1SGerd Hoffmann trace_usb_ehci_qtd_bits(addr, 324f1ae32a1SGerd Hoffmann (bool)(qtd->token & QTD_TOKEN_IOC), 325f1ae32a1SGerd Hoffmann (bool)(qtd->token & QTD_TOKEN_ACTIVE), 326f1ae32a1SGerd Hoffmann (bool)(qtd->token & QTD_TOKEN_HALT), 327f1ae32a1SGerd Hoffmann (bool)(qtd->token & QTD_TOKEN_BABBLE), 328f1ae32a1SGerd Hoffmann (bool)(qtd->token & QTD_TOKEN_XACTERR)); 329f1ae32a1SGerd Hoffmann } 330f1ae32a1SGerd Hoffmann 331a8170e5eSAvi Kivity static void ehci_trace_itd(EHCIState *s, hwaddr addr, EHCIitd *itd) 332f1ae32a1SGerd Hoffmann { 333f1ae32a1SGerd Hoffmann trace_usb_ehci_itd(addr, itd->next, 334f1ae32a1SGerd Hoffmann get_field(itd->bufptr[1], ITD_BUFPTR_MAXPKT), 335f1ae32a1SGerd Hoffmann get_field(itd->bufptr[2], ITD_BUFPTR_MULT), 336f1ae32a1SGerd Hoffmann get_field(itd->bufptr[0], ITD_BUFPTR_EP), 337f1ae32a1SGerd Hoffmann get_field(itd->bufptr[0], ITD_BUFPTR_DEVADDR)); 338f1ae32a1SGerd Hoffmann } 339f1ae32a1SGerd Hoffmann 340a8170e5eSAvi Kivity static void ehci_trace_sitd(EHCIState *s, hwaddr addr, 341f1ae32a1SGerd Hoffmann EHCIsitd *sitd) 342f1ae32a1SGerd Hoffmann { 343f1ae32a1SGerd Hoffmann trace_usb_ehci_sitd(addr, sitd->next, 344f1ae32a1SGerd Hoffmann (bool)(sitd->results & SITD_RESULTS_ACTIVE)); 345f1ae32a1SGerd Hoffmann } 346f1ae32a1SGerd Hoffmann 3475c514681SGerd Hoffmann static void ehci_trace_guest_bug(EHCIState *s, const char *message) 3485c514681SGerd Hoffmann { 3495c514681SGerd Hoffmann trace_usb_ehci_guest_bug(message); 3505c514681SGerd Hoffmann fprintf(stderr, "ehci warning: %s\n", message); 3515c514681SGerd Hoffmann } 3525c514681SGerd Hoffmann 353ec807d12SGerd Hoffmann static inline bool ehci_enabled(EHCIState *s) 354ec807d12SGerd Hoffmann { 355ec807d12SGerd Hoffmann return s->usbcmd & USBCMD_RUNSTOP; 356ec807d12SGerd Hoffmann } 357ec807d12SGerd Hoffmann 358ec807d12SGerd Hoffmann static inline bool ehci_async_enabled(EHCIState *s) 359ec807d12SGerd Hoffmann { 360ec807d12SGerd Hoffmann return ehci_enabled(s) && (s->usbcmd & USBCMD_ASE); 361ec807d12SGerd Hoffmann } 362ec807d12SGerd Hoffmann 363ec807d12SGerd Hoffmann static inline bool ehci_periodic_enabled(EHCIState *s) 364ec807d12SGerd Hoffmann { 365ec807d12SGerd Hoffmann return ehci_enabled(s) && (s->usbcmd & USBCMD_PSE); 366ec807d12SGerd Hoffmann } 367ec807d12SGerd Hoffmann 368190d8492SHans de Goede /* Get an array of dwords from main memory */ 369190d8492SHans de Goede static inline int get_dwords(EHCIState *ehci, uint32_t addr, 370190d8492SHans de Goede uint32_t *buf, int num) 371190d8492SHans de Goede { 372190d8492SHans de Goede int i; 373190d8492SHans de Goede 374df32fd1cSPaolo Bonzini if (!ehci->as) { 375190d8492SHans de Goede ehci_raise_irq(ehci, USBSTS_HSE); 376190d8492SHans de Goede ehci->usbcmd &= ~USBCMD_RUNSTOP; 377190d8492SHans de Goede trace_usb_ehci_dma_error(); 378190d8492SHans de Goede return -1; 379190d8492SHans de Goede } 380190d8492SHans de Goede 381190d8492SHans de Goede for (i = 0; i < num; i++, buf++, addr += sizeof(*buf)) { 382df32fd1cSPaolo Bonzini dma_memory_read(ehci->as, addr, buf, sizeof(*buf)); 383190d8492SHans de Goede *buf = le32_to_cpu(*buf); 384190d8492SHans de Goede } 385190d8492SHans de Goede 386190d8492SHans de Goede return num; 387190d8492SHans de Goede } 388190d8492SHans de Goede 389190d8492SHans de Goede /* Put an array of dwords in to main memory */ 390190d8492SHans de Goede static inline int put_dwords(EHCIState *ehci, uint32_t addr, 391190d8492SHans de Goede uint32_t *buf, int num) 392190d8492SHans de Goede { 393190d8492SHans de Goede int i; 394190d8492SHans de Goede 395df32fd1cSPaolo Bonzini if (!ehci->as) { 396190d8492SHans de Goede ehci_raise_irq(ehci, USBSTS_HSE); 397190d8492SHans de Goede ehci->usbcmd &= ~USBCMD_RUNSTOP; 398190d8492SHans de Goede trace_usb_ehci_dma_error(); 399190d8492SHans de Goede return -1; 400190d8492SHans de Goede } 401190d8492SHans de Goede 402190d8492SHans de Goede for (i = 0; i < num; i++, buf++, addr += sizeof(*buf)) { 403190d8492SHans de Goede uint32_t tmp = cpu_to_le32(*buf); 404df32fd1cSPaolo Bonzini dma_memory_write(ehci->as, addr, &tmp, sizeof(tmp)); 405190d8492SHans de Goede } 406190d8492SHans de Goede 407190d8492SHans de Goede return num; 408190d8492SHans de Goede } 409190d8492SHans de Goede 41051e0c5d0SHans de Goede static int ehci_get_pid(EHCIqtd *qtd) 41151e0c5d0SHans de Goede { 41251e0c5d0SHans de Goede switch (get_field(qtd->token, QTD_TOKEN_PID)) { 41351e0c5d0SHans de Goede case 0: 41451e0c5d0SHans de Goede return USB_TOKEN_OUT; 41551e0c5d0SHans de Goede case 1: 41651e0c5d0SHans de Goede return USB_TOKEN_IN; 41751e0c5d0SHans de Goede case 2: 41851e0c5d0SHans de Goede return USB_TOKEN_SETUP; 41951e0c5d0SHans de Goede default: 42051e0c5d0SHans de Goede fprintf(stderr, "bad token\n"); 42151e0c5d0SHans de Goede return 0; 42251e0c5d0SHans de Goede } 42351e0c5d0SHans de Goede } 42451e0c5d0SHans de Goede 425c6432634SHans de Goede static bool ehci_verify_qh(EHCIQueue *q, EHCIqh *qh) 426c6432634SHans de Goede { 427c6432634SHans de Goede uint32_t devaddr = get_field(qh->epchar, QH_EPCHAR_DEVADDR); 428c6432634SHans de Goede uint32_t endp = get_field(qh->epchar, QH_EPCHAR_EP); 429c6432634SHans de Goede if ((devaddr != get_field(q->qh.epchar, QH_EPCHAR_DEVADDR)) || 430c6432634SHans de Goede (endp != get_field(q->qh.epchar, QH_EPCHAR_EP)) || 431c6432634SHans de Goede (qh->current_qtd != q->qh.current_qtd) || 432c6432634SHans de Goede (q->async && qh->next_qtd != q->qh.next_qtd) || 433c6432634SHans de Goede (memcmp(&qh->altnext_qtd, &q->qh.altnext_qtd, 434c6432634SHans de Goede 7 * sizeof(uint32_t)) != 0) || 435c6432634SHans de Goede (q->dev != NULL && q->dev->addr != devaddr)) { 436c6432634SHans de Goede return false; 437c6432634SHans de Goede } else { 438c6432634SHans de Goede return true; 439c6432634SHans de Goede } 440c6432634SHans de Goede } 441c6432634SHans de Goede 442c6432634SHans de Goede static bool ehci_verify_qtd(EHCIPacket *p, EHCIqtd *qtd) 443c6432634SHans de Goede { 444c6432634SHans de Goede if (p->qtdaddr != p->queue->qtdaddr || 445c6432634SHans de Goede (p->queue->async && !NLPTR_TBIT(p->qtd.next) && 446c6432634SHans de Goede (p->qtd.next != qtd->next)) || 447c6432634SHans de Goede (!NLPTR_TBIT(p->qtd.altnext) && (p->qtd.altnext != qtd->altnext)) || 448d066c57bSHans de Goede p->qtd.token != qtd->token || 449c6432634SHans de Goede p->qtd.bufptr[0] != qtd->bufptr[0]) { 450c6432634SHans de Goede return false; 451c6432634SHans de Goede } else { 452c6432634SHans de Goede return true; 453c6432634SHans de Goede } 454c6432634SHans de Goede } 455c6432634SHans de Goede 456bbbc39ccSHans de Goede static bool ehci_verify_pid(EHCIQueue *q, EHCIqtd *qtd) 457bbbc39ccSHans de Goede { 458bbbc39ccSHans de Goede int ep = get_field(q->qh.epchar, QH_EPCHAR_EP); 459bbbc39ccSHans de Goede int pid = ehci_get_pid(qtd); 460bbbc39ccSHans de Goede 461bbbc39ccSHans de Goede /* Note the pid changing is normal for ep 0 (the control ep) */ 462bbbc39ccSHans de Goede if (q->last_pid && ep != 0 && pid != q->last_pid) { 463bbbc39ccSHans de Goede return false; 464bbbc39ccSHans de Goede } else { 465bbbc39ccSHans de Goede return true; 466bbbc39ccSHans de Goede } 467bbbc39ccSHans de Goede } 468bbbc39ccSHans de Goede 469f881c8d3SHans de Goede /* Finish executing and writeback a packet outside of the regular 470f881c8d3SHans de Goede fetchqh -> fetchqtd -> execute -> writeback cycle */ 471f881c8d3SHans de Goede static void ehci_writeback_async_complete_packet(EHCIPacket *p) 472f881c8d3SHans de Goede { 473f881c8d3SHans de Goede EHCIQueue *q = p->queue; 4742b3de6adSHans de Goede EHCIqtd qtd; 4752b3de6adSHans de Goede EHCIqh qh; 476f881c8d3SHans de Goede int state; 477f881c8d3SHans de Goede 4782b3de6adSHans de Goede /* Verify the qh + qtd, like we do when going through fetchqh & fetchqtd */ 4792b3de6adSHans de Goede get_dwords(q->ehci, NLPTR_GET(q->qhaddr), 4802b3de6adSHans de Goede (uint32_t *) &qh, sizeof(EHCIqh) >> 2); 4812b3de6adSHans de Goede get_dwords(q->ehci, NLPTR_GET(q->qtdaddr), 4822b3de6adSHans de Goede (uint32_t *) &qtd, sizeof(EHCIqtd) >> 2); 4832b3de6adSHans de Goede if (!ehci_verify_qh(q, &qh) || !ehci_verify_qtd(p, &qtd)) { 4842b3de6adSHans de Goede p->async = EHCI_ASYNC_INITIALIZED; 4852b3de6adSHans de Goede ehci_free_packet(p); 4862b3de6adSHans de Goede return; 4872b3de6adSHans de Goede } 4882b3de6adSHans de Goede 489f881c8d3SHans de Goede state = ehci_get_state(q->ehci, q->async); 490f881c8d3SHans de Goede ehci_state_executing(q); 491f881c8d3SHans de Goede ehci_state_writeback(q); /* Frees the packet! */ 492f881c8d3SHans de Goede if (!(q->qh.token & QTD_TOKEN_HALT)) { 493f881c8d3SHans de Goede ehci_state_advqueue(q); 494f881c8d3SHans de Goede } 495f881c8d3SHans de Goede ehci_set_state(q->ehci, q->async, state); 496f881c8d3SHans de Goede } 497f881c8d3SHans de Goede 498eb36a88eSGerd Hoffmann /* packet management */ 499eb36a88eSGerd Hoffmann 500eb36a88eSGerd Hoffmann static EHCIPacket *ehci_alloc_packet(EHCIQueue *q) 501eb36a88eSGerd Hoffmann { 502eb36a88eSGerd Hoffmann EHCIPacket *p; 503eb36a88eSGerd Hoffmann 504eb36a88eSGerd Hoffmann p = g_new0(EHCIPacket, 1); 505eb36a88eSGerd Hoffmann p->queue = q; 506eb36a88eSGerd Hoffmann usb_packet_init(&p->packet); 507eb36a88eSGerd Hoffmann QTAILQ_INSERT_TAIL(&q->packets, p, next); 508eb36a88eSGerd Hoffmann trace_usb_ehci_packet_action(p->queue, p, "alloc"); 509eb36a88eSGerd Hoffmann return p; 510eb36a88eSGerd Hoffmann } 511eb36a88eSGerd Hoffmann 512eb36a88eSGerd Hoffmann static void ehci_free_packet(EHCIPacket *p) 513eb36a88eSGerd Hoffmann { 514e449f26bSHans de Goede if (p->async == EHCI_ASYNC_FINISHED && 515e449f26bSHans de Goede !(p->queue->qh.token & QTD_TOKEN_HALT)) { 516f881c8d3SHans de Goede ehci_writeback_async_complete_packet(p); 5174b63a0dfSHans de Goede return; 5184b63a0dfSHans de Goede } 519616789cdSGerd Hoffmann trace_usb_ehci_packet_action(p->queue, p, "free"); 520616789cdSGerd Hoffmann if (p->async == EHCI_ASYNC_INFLIGHT) { 521616789cdSGerd Hoffmann usb_cancel_packet(&p->packet); 522e449f26bSHans de Goede } 523e449f26bSHans de Goede if (p->async == EHCI_ASYNC_FINISHED && 524e449f26bSHans de Goede p->packet.status == USB_RET_SUCCESS) { 525e449f26bSHans de Goede fprintf(stderr, 526e449f26bSHans de Goede "EHCI: Dropping completed packet from halted %s ep %02X\n", 527e449f26bSHans de Goede (p->pid == USB_TOKEN_IN) ? "in" : "out", 528e449f26bSHans de Goede get_field(p->queue->qh.epchar, QH_EPCHAR_EP)); 529e449f26bSHans de Goede } 530e449f26bSHans de Goede if (p->async != EHCI_ASYNC_NONE) { 531616789cdSGerd Hoffmann usb_packet_unmap(&p->packet, &p->sgl); 532616789cdSGerd Hoffmann qemu_sglist_destroy(&p->sgl); 533616789cdSGerd Hoffmann } 534eb36a88eSGerd Hoffmann QTAILQ_REMOVE(&p->queue->packets, p, next); 535eb36a88eSGerd Hoffmann usb_packet_cleanup(&p->packet); 536eb36a88eSGerd Hoffmann g_free(p); 537eb36a88eSGerd Hoffmann } 538eb36a88eSGerd Hoffmann 539f1ae32a1SGerd Hoffmann /* queue management */ 540f1ae32a1SGerd Hoffmann 5418f6d5e26SGerd Hoffmann static EHCIQueue *ehci_alloc_queue(EHCIState *ehci, uint32_t addr, int async) 542f1ae32a1SGerd Hoffmann { 543f1ae32a1SGerd Hoffmann EHCIQueueHead *head = async ? &ehci->aqueues : &ehci->pqueues; 544f1ae32a1SGerd Hoffmann EHCIQueue *q; 545f1ae32a1SGerd Hoffmann 546f1ae32a1SGerd Hoffmann q = g_malloc0(sizeof(*q)); 547f1ae32a1SGerd Hoffmann q->ehci = ehci; 5488f6d5e26SGerd Hoffmann q->qhaddr = addr; 549ae0138a8SGerd Hoffmann q->async = async; 550eb36a88eSGerd Hoffmann QTAILQ_INIT(&q->packets); 551f1ae32a1SGerd Hoffmann QTAILQ_INSERT_HEAD(head, q, next); 552f1ae32a1SGerd Hoffmann trace_usb_ehci_queue_action(q, "alloc"); 553f1ae32a1SGerd Hoffmann return q; 554f1ae32a1SGerd Hoffmann } 555f1ae32a1SGerd Hoffmann 556f79738b0SHans de Goede static void ehci_queue_stopped(EHCIQueue *q) 557f79738b0SHans de Goede { 558f79738b0SHans de Goede int endp = get_field(q->qh.epchar, QH_EPCHAR_EP); 559f79738b0SHans de Goede 560f79738b0SHans de Goede if (!q->last_pid || !q->dev) { 561f79738b0SHans de Goede return; 562f79738b0SHans de Goede } 563f79738b0SHans de Goede 564f79738b0SHans de Goede usb_device_ep_stopped(q->dev, usb_ep_get(q->dev, q->last_pid, endp)); 565f79738b0SHans de Goede } 566f79738b0SHans de Goede 5675c514681SGerd Hoffmann static int ehci_cancel_queue(EHCIQueue *q) 568c7cdca3bSGerd Hoffmann { 569c7cdca3bSGerd Hoffmann EHCIPacket *p; 5705c514681SGerd Hoffmann int packets = 0; 571c7cdca3bSGerd Hoffmann 572c7cdca3bSGerd Hoffmann p = QTAILQ_FIRST(&q->packets); 573c7cdca3bSGerd Hoffmann if (p == NULL) { 574f79738b0SHans de Goede goto leave; 575c7cdca3bSGerd Hoffmann } 576c7cdca3bSGerd Hoffmann 577c7cdca3bSGerd Hoffmann trace_usb_ehci_queue_action(q, "cancel"); 578c7cdca3bSGerd Hoffmann do { 579c7cdca3bSGerd Hoffmann ehci_free_packet(p); 5805c514681SGerd Hoffmann packets++; 581c7cdca3bSGerd Hoffmann } while ((p = QTAILQ_FIRST(&q->packets)) != NULL); 582f79738b0SHans de Goede 583f79738b0SHans de Goede leave: 584f79738b0SHans de Goede ehci_queue_stopped(q); 5855c514681SGerd Hoffmann return packets; 586c7cdca3bSGerd Hoffmann } 587c7cdca3bSGerd Hoffmann 5885c514681SGerd Hoffmann static int ehci_reset_queue(EHCIQueue *q) 589dafe31fcSHans de Goede { 5905c514681SGerd Hoffmann int packets; 5915c514681SGerd Hoffmann 592dafe31fcSHans de Goede trace_usb_ehci_queue_action(q, "reset"); 5935c514681SGerd Hoffmann packets = ehci_cancel_queue(q); 594dafe31fcSHans de Goede q->dev = NULL; 595dafe31fcSHans de Goede q->qtdaddr = 0; 596bbbc39ccSHans de Goede q->last_pid = 0; 5975c514681SGerd Hoffmann return packets; 598dafe31fcSHans de Goede } 599dafe31fcSHans de Goede 6003a8ca08eSHans de Goede static void ehci_free_queue(EHCIQueue *q, const char *warn) 601f1ae32a1SGerd Hoffmann { 602ae0138a8SGerd Hoffmann EHCIQueueHead *head = q->async ? &q->ehci->aqueues : &q->ehci->pqueues; 6033a8ca08eSHans de Goede int cancelled; 604eb36a88eSGerd Hoffmann 605f1ae32a1SGerd Hoffmann trace_usb_ehci_queue_action(q, "free"); 6063a8ca08eSHans de Goede cancelled = ehci_cancel_queue(q); 6073a8ca08eSHans de Goede if (warn && cancelled > 0) { 6083a8ca08eSHans de Goede ehci_trace_guest_bug(q->ehci, warn); 6093a8ca08eSHans de Goede } 610f1ae32a1SGerd Hoffmann QTAILQ_REMOVE(head, q, next); 611f1ae32a1SGerd Hoffmann g_free(q); 612f1ae32a1SGerd Hoffmann } 613f1ae32a1SGerd Hoffmann 614f1ae32a1SGerd Hoffmann static EHCIQueue *ehci_find_queue_by_qh(EHCIState *ehci, uint32_t addr, 615f1ae32a1SGerd Hoffmann int async) 616f1ae32a1SGerd Hoffmann { 617f1ae32a1SGerd Hoffmann EHCIQueueHead *head = async ? &ehci->aqueues : &ehci->pqueues; 618f1ae32a1SGerd Hoffmann EHCIQueue *q; 619f1ae32a1SGerd Hoffmann 620f1ae32a1SGerd Hoffmann QTAILQ_FOREACH(q, head, next) { 621f1ae32a1SGerd Hoffmann if (addr == q->qhaddr) { 622f1ae32a1SGerd Hoffmann return q; 623f1ae32a1SGerd Hoffmann } 624f1ae32a1SGerd Hoffmann } 625f1ae32a1SGerd Hoffmann return NULL; 626f1ae32a1SGerd Hoffmann } 627f1ae32a1SGerd Hoffmann 6288f5457ebSHans de Goede static void ehci_queues_rip_unused(EHCIState *ehci, int async) 629f1ae32a1SGerd Hoffmann { 630f1ae32a1SGerd Hoffmann EHCIQueueHead *head = async ? &ehci->aqueues : &ehci->pqueues; 6318f5457ebSHans de Goede const char *warn = async ? "guest unlinked busy QH" : NULL; 6323a215326SGerd Hoffmann uint64_t maxage = FRAME_TIMER_NS * ehci->maxframes * 4; 633f1ae32a1SGerd Hoffmann EHCIQueue *q, *tmp; 634f1ae32a1SGerd Hoffmann 635f1ae32a1SGerd Hoffmann QTAILQ_FOREACH_SAFE(q, head, next, tmp) { 636f1ae32a1SGerd Hoffmann if (q->seen) { 637f1ae32a1SGerd Hoffmann q->seen = 0; 638f1ae32a1SGerd Hoffmann q->ts = ehci->last_run_ns; 639f1ae32a1SGerd Hoffmann continue; 640f1ae32a1SGerd Hoffmann } 6418f5457ebSHans de Goede if (ehci->last_run_ns < q->ts + maxage) { 642f1ae32a1SGerd Hoffmann continue; 643f1ae32a1SGerd Hoffmann } 6443a8ca08eSHans de Goede ehci_free_queue(q, warn); 645f1ae32a1SGerd Hoffmann } 646f1ae32a1SGerd Hoffmann } 647f1ae32a1SGerd Hoffmann 6488f5457ebSHans de Goede static void ehci_queues_rip_unseen(EHCIState *ehci, int async) 6498f5457ebSHans de Goede { 6508f5457ebSHans de Goede EHCIQueueHead *head = async ? &ehci->aqueues : &ehci->pqueues; 6518f5457ebSHans de Goede EHCIQueue *q, *tmp; 6528f5457ebSHans de Goede 6538f5457ebSHans de Goede QTAILQ_FOREACH_SAFE(q, head, next, tmp) { 6548f5457ebSHans de Goede if (!q->seen) { 6558f5457ebSHans de Goede ehci_free_queue(q, NULL); 6568f5457ebSHans de Goede } 6578f5457ebSHans de Goede } 6588f5457ebSHans de Goede } 6598f5457ebSHans de Goede 660f1ae32a1SGerd Hoffmann static void ehci_queues_rip_device(EHCIState *ehci, USBDevice *dev, int async) 661f1ae32a1SGerd Hoffmann { 662f1ae32a1SGerd Hoffmann EHCIQueueHead *head = async ? &ehci->aqueues : &ehci->pqueues; 663f1ae32a1SGerd Hoffmann EHCIQueue *q, *tmp; 664f1ae32a1SGerd Hoffmann 665f1ae32a1SGerd Hoffmann QTAILQ_FOREACH_SAFE(q, head, next, tmp) { 666e59928b3SGerd Hoffmann if (q->dev != dev) { 667f1ae32a1SGerd Hoffmann continue; 668f1ae32a1SGerd Hoffmann } 6693a8ca08eSHans de Goede ehci_free_queue(q, NULL); 670f1ae32a1SGerd Hoffmann } 671f1ae32a1SGerd Hoffmann } 672f1ae32a1SGerd Hoffmann 673f1ae32a1SGerd Hoffmann static void ehci_queues_rip_all(EHCIState *ehci, int async) 674f1ae32a1SGerd Hoffmann { 675f1ae32a1SGerd Hoffmann EHCIQueueHead *head = async ? &ehci->aqueues : &ehci->pqueues; 6763a8ca08eSHans de Goede const char *warn = async ? "guest stopped busy async schedule" : NULL; 677f1ae32a1SGerd Hoffmann EHCIQueue *q, *tmp; 678f1ae32a1SGerd Hoffmann 679f1ae32a1SGerd Hoffmann QTAILQ_FOREACH_SAFE(q, head, next, tmp) { 6803a8ca08eSHans de Goede ehci_free_queue(q, warn); 681f1ae32a1SGerd Hoffmann } 682f1ae32a1SGerd Hoffmann } 683f1ae32a1SGerd Hoffmann 684f1ae32a1SGerd Hoffmann /* Attach or detach a device on root hub */ 685f1ae32a1SGerd Hoffmann 686f1ae32a1SGerd Hoffmann static void ehci_attach(USBPort *port) 687f1ae32a1SGerd Hoffmann { 688f1ae32a1SGerd Hoffmann EHCIState *s = port->opaque; 689f1ae32a1SGerd Hoffmann uint32_t *portsc = &s->portsc[port->index]; 69030e9d412SGerd Hoffmann const char *owner = (*portsc & PORTSC_POWNER) ? "comp" : "ehci"; 691f1ae32a1SGerd Hoffmann 69230e9d412SGerd Hoffmann trace_usb_ehci_port_attach(port->index, owner, port->dev->product_desc); 693f1ae32a1SGerd Hoffmann 694f1ae32a1SGerd Hoffmann if (*portsc & PORTSC_POWNER) { 695f1ae32a1SGerd Hoffmann USBPort *companion = s->companion_ports[port->index]; 696f1ae32a1SGerd Hoffmann companion->dev = port->dev; 697f1ae32a1SGerd Hoffmann companion->ops->attach(companion); 698f1ae32a1SGerd Hoffmann return; 699f1ae32a1SGerd Hoffmann } 700f1ae32a1SGerd Hoffmann 701f1ae32a1SGerd Hoffmann *portsc |= PORTSC_CONNECT; 702f1ae32a1SGerd Hoffmann *portsc |= PORTSC_CSC; 703f1ae32a1SGerd Hoffmann 7047efc17afSGerd Hoffmann ehci_raise_irq(s, USBSTS_PCD); 705f1ae32a1SGerd Hoffmann } 706f1ae32a1SGerd Hoffmann 707f1ae32a1SGerd Hoffmann static void ehci_detach(USBPort *port) 708f1ae32a1SGerd Hoffmann { 709f1ae32a1SGerd Hoffmann EHCIState *s = port->opaque; 710f1ae32a1SGerd Hoffmann uint32_t *portsc = &s->portsc[port->index]; 71130e9d412SGerd Hoffmann const char *owner = (*portsc & PORTSC_POWNER) ? "comp" : "ehci"; 712f1ae32a1SGerd Hoffmann 71330e9d412SGerd Hoffmann trace_usb_ehci_port_detach(port->index, owner); 714f1ae32a1SGerd Hoffmann 715f1ae32a1SGerd Hoffmann if (*portsc & PORTSC_POWNER) { 716f1ae32a1SGerd Hoffmann USBPort *companion = s->companion_ports[port->index]; 717f1ae32a1SGerd Hoffmann companion->ops->detach(companion); 718f1ae32a1SGerd Hoffmann companion->dev = NULL; 719f1ae32a1SGerd Hoffmann /* 720f1ae32a1SGerd Hoffmann * EHCI spec 4.2.2: "When a disconnect occurs... On the event, 721f1ae32a1SGerd Hoffmann * the port ownership is returned immediately to the EHCI controller." 722f1ae32a1SGerd Hoffmann */ 723f1ae32a1SGerd Hoffmann *portsc &= ~PORTSC_POWNER; 724f1ae32a1SGerd Hoffmann return; 725f1ae32a1SGerd Hoffmann } 726f1ae32a1SGerd Hoffmann 727f1ae32a1SGerd Hoffmann ehci_queues_rip_device(s, port->dev, 0); 728f1ae32a1SGerd Hoffmann ehci_queues_rip_device(s, port->dev, 1); 729f1ae32a1SGerd Hoffmann 730cbf82fa0SGerd Hoffmann *portsc &= ~(PORTSC_CONNECT|PORTSC_PED|PORTSC_SUSPEND); 731f1ae32a1SGerd Hoffmann *portsc |= PORTSC_CSC; 732f1ae32a1SGerd Hoffmann 7337efc17afSGerd Hoffmann ehci_raise_irq(s, USBSTS_PCD); 734f1ae32a1SGerd Hoffmann } 735f1ae32a1SGerd Hoffmann 736f1ae32a1SGerd Hoffmann static void ehci_child_detach(USBPort *port, USBDevice *child) 737f1ae32a1SGerd Hoffmann { 738f1ae32a1SGerd Hoffmann EHCIState *s = port->opaque; 739f1ae32a1SGerd Hoffmann uint32_t portsc = s->portsc[port->index]; 740f1ae32a1SGerd Hoffmann 741f1ae32a1SGerd Hoffmann if (portsc & PORTSC_POWNER) { 742f1ae32a1SGerd Hoffmann USBPort *companion = s->companion_ports[port->index]; 743f1ae32a1SGerd Hoffmann companion->ops->child_detach(companion, child); 744f1ae32a1SGerd Hoffmann return; 745f1ae32a1SGerd Hoffmann } 746f1ae32a1SGerd Hoffmann 747f1ae32a1SGerd Hoffmann ehci_queues_rip_device(s, child, 0); 748f1ae32a1SGerd Hoffmann ehci_queues_rip_device(s, child, 1); 749f1ae32a1SGerd Hoffmann } 750f1ae32a1SGerd Hoffmann 751f1ae32a1SGerd Hoffmann static void ehci_wakeup(USBPort *port) 752f1ae32a1SGerd Hoffmann { 753f1ae32a1SGerd Hoffmann EHCIState *s = port->opaque; 754e489df40SGerd Hoffmann uint32_t *portsc = &s->portsc[port->index]; 755f1ae32a1SGerd Hoffmann 756e489df40SGerd Hoffmann if (*portsc & PORTSC_POWNER) { 757f1ae32a1SGerd Hoffmann USBPort *companion = s->companion_ports[port->index]; 758f1ae32a1SGerd Hoffmann if (companion->ops->wakeup) { 759f1ae32a1SGerd Hoffmann companion->ops->wakeup(companion); 76037952117SHans de Goede } 76137952117SHans de Goede return; 76237952117SHans de Goede } 76337952117SHans de Goede 764e489df40SGerd Hoffmann if (*portsc & PORTSC_SUSPEND) { 765e489df40SGerd Hoffmann trace_usb_ehci_port_wakeup(port->index); 766e489df40SGerd Hoffmann *portsc |= PORTSC_FPRES; 767e489df40SGerd Hoffmann ehci_raise_irq(s, USBSTS_PCD); 768e489df40SGerd Hoffmann } 769e489df40SGerd Hoffmann 7700f588df8SGerd Hoffmann qemu_bh_schedule(s->async_bh); 771f1ae32a1SGerd Hoffmann } 772f1ae32a1SGerd Hoffmann 773f4bbaaf5SMarkus Armbruster static void ehci_register_companion(USBBus *bus, USBPort *ports[], 774f4bbaaf5SMarkus Armbruster uint32_t portcount, uint32_t firstport, 775f4bbaaf5SMarkus Armbruster Error **errp) 776f1ae32a1SGerd Hoffmann { 777f1ae32a1SGerd Hoffmann EHCIState *s = container_of(bus, EHCIState, bus); 778f1ae32a1SGerd Hoffmann uint32_t i; 779f1ae32a1SGerd Hoffmann 780f1ae32a1SGerd Hoffmann if (firstport + portcount > NB_PORTS) { 7812e269f3dSMarkus Armbruster error_setg(errp, "firstport must be between 0 and %u", 7822e269f3dSMarkus Armbruster NB_PORTS - portcount); 783f4bbaaf5SMarkus Armbruster return; 784f1ae32a1SGerd Hoffmann } 785f1ae32a1SGerd Hoffmann 786f1ae32a1SGerd Hoffmann for (i = 0; i < portcount; i++) { 787f1ae32a1SGerd Hoffmann if (s->companion_ports[firstport + i]) { 7882e269f3dSMarkus Armbruster error_setg(errp, "firstport %u asks for ports %u-%u," 7892e269f3dSMarkus Armbruster " but port %u has a companion assigned already", 7902e269f3dSMarkus Armbruster firstport, firstport, firstport + portcount - 1, 7912e269f3dSMarkus Armbruster firstport + i); 792f4bbaaf5SMarkus Armbruster return; 793f1ae32a1SGerd Hoffmann } 794f1ae32a1SGerd Hoffmann } 795f1ae32a1SGerd Hoffmann 796f1ae32a1SGerd Hoffmann for (i = 0; i < portcount; i++) { 797f1ae32a1SGerd Hoffmann s->companion_ports[firstport + i] = ports[i]; 798f1ae32a1SGerd Hoffmann s->ports[firstport + i].speedmask |= 799f1ae32a1SGerd Hoffmann USB_SPEED_MASK_LOW | USB_SPEED_MASK_FULL; 800f1ae32a1SGerd Hoffmann /* Ensure devs attached before the initial reset go to the companion */ 801f1ae32a1SGerd Hoffmann s->portsc[firstport + i] = PORTSC_POWNER; 802f1ae32a1SGerd Hoffmann } 803f1ae32a1SGerd Hoffmann 804f1ae32a1SGerd Hoffmann s->companion_count++; 8053e4f910cSGerd Hoffmann s->caps[0x05] = (s->companion_count << 4) | portcount; 806f1ae32a1SGerd Hoffmann } 807f1ae32a1SGerd Hoffmann 8088550a02dSGerd Hoffmann static void ehci_wakeup_endpoint(USBBus *bus, USBEndpoint *ep, 8098550a02dSGerd Hoffmann unsigned int stream) 81080826240SHans de Goede { 81180826240SHans de Goede EHCIState *s = container_of(bus, EHCIState, bus); 81280826240SHans de Goede uint32_t portsc = s->portsc[ep->dev->port->index]; 81380826240SHans de Goede 81480826240SHans de Goede if (portsc & PORTSC_POWNER) { 81580826240SHans de Goede return; 81680826240SHans de Goede } 81780826240SHans de Goede 81880826240SHans de Goede s->periodic_sched_active = PERIODIC_ACTIVE; 81980826240SHans de Goede qemu_bh_schedule(s->async_bh); 82080826240SHans de Goede } 82180826240SHans de Goede 822f1ae32a1SGerd Hoffmann static USBDevice *ehci_find_device(EHCIState *ehci, uint8_t addr) 823f1ae32a1SGerd Hoffmann { 824f1ae32a1SGerd Hoffmann USBDevice *dev; 825f1ae32a1SGerd Hoffmann USBPort *port; 826f1ae32a1SGerd Hoffmann int i; 827f1ae32a1SGerd Hoffmann 828f1ae32a1SGerd Hoffmann for (i = 0; i < NB_PORTS; i++) { 829f1ae32a1SGerd Hoffmann port = &ehci->ports[i]; 830f1ae32a1SGerd Hoffmann if (!(ehci->portsc[i] & PORTSC_PED)) { 831f1ae32a1SGerd Hoffmann DPRINTF("Port %d not enabled\n", i); 832f1ae32a1SGerd Hoffmann continue; 833f1ae32a1SGerd Hoffmann } 834f1ae32a1SGerd Hoffmann dev = usb_find_device(port, addr); 835f1ae32a1SGerd Hoffmann if (dev != NULL) { 836f1ae32a1SGerd Hoffmann return dev; 837f1ae32a1SGerd Hoffmann } 838f1ae32a1SGerd Hoffmann } 839f1ae32a1SGerd Hoffmann return NULL; 840f1ae32a1SGerd Hoffmann } 841f1ae32a1SGerd Hoffmann 842f1ae32a1SGerd Hoffmann /* 4.1 host controller initialization */ 8434e289b1bSGonglei void ehci_reset(void *opaque) 844f1ae32a1SGerd Hoffmann { 845f1ae32a1SGerd Hoffmann EHCIState *s = opaque; 846f1ae32a1SGerd Hoffmann int i; 847f1ae32a1SGerd Hoffmann USBDevice *devs[NB_PORTS]; 848f1ae32a1SGerd Hoffmann 849f1ae32a1SGerd Hoffmann trace_usb_ehci_reset(); 850f1ae32a1SGerd Hoffmann 851f1ae32a1SGerd Hoffmann /* 852f1ae32a1SGerd Hoffmann * Do the detach before touching portsc, so that it correctly gets send to 853f1ae32a1SGerd Hoffmann * us or to our companion based on PORTSC_POWNER before the reset. 854f1ae32a1SGerd Hoffmann */ 855f1ae32a1SGerd Hoffmann for(i = 0; i < NB_PORTS; i++) { 856f1ae32a1SGerd Hoffmann devs[i] = s->ports[i].dev; 857f1ae32a1SGerd Hoffmann if (devs[i] && devs[i]->attached) { 858f1ae32a1SGerd Hoffmann usb_detach(&s->ports[i]); 859f1ae32a1SGerd Hoffmann } 860f1ae32a1SGerd Hoffmann } 861f1ae32a1SGerd Hoffmann 8623e4f910cSGerd Hoffmann memset(&s->opreg, 0x00, sizeof(s->opreg)); 8633e4f910cSGerd Hoffmann memset(&s->portsc, 0x00, sizeof(s->portsc)); 864f1ae32a1SGerd Hoffmann 865f1ae32a1SGerd Hoffmann s->usbcmd = NB_MAXINTRATE << USBCMD_ITC_SH; 866f1ae32a1SGerd Hoffmann s->usbsts = USBSTS_HALT; 8677efc17afSGerd Hoffmann s->usbsts_pending = 0; 8687efc17afSGerd Hoffmann s->usbsts_frindex = 0; 869f1ae32a1SGerd Hoffmann 870f1ae32a1SGerd Hoffmann s->astate = EST_INACTIVE; 871f1ae32a1SGerd Hoffmann s->pstate = EST_INACTIVE; 872f1ae32a1SGerd Hoffmann 873f1ae32a1SGerd Hoffmann for(i = 0; i < NB_PORTS; i++) { 874f1ae32a1SGerd Hoffmann if (s->companion_ports[i]) { 875f1ae32a1SGerd Hoffmann s->portsc[i] = PORTSC_POWNER | PORTSC_PPOWER; 876f1ae32a1SGerd Hoffmann } else { 877f1ae32a1SGerd Hoffmann s->portsc[i] = PORTSC_PPOWER; 878f1ae32a1SGerd Hoffmann } 879f1ae32a1SGerd Hoffmann if (devs[i] && devs[i]->attached) { 880f1ae32a1SGerd Hoffmann usb_attach(&s->ports[i]); 881f1ae32a1SGerd Hoffmann usb_device_reset(devs[i]); 882f1ae32a1SGerd Hoffmann } 883f1ae32a1SGerd Hoffmann } 884f1ae32a1SGerd Hoffmann ehci_queues_rip_all(s, 0); 885f1ae32a1SGerd Hoffmann ehci_queues_rip_all(s, 1); 886bc72ad67SAlex Bligh timer_del(s->frame_timer); 8870fb3e299SGerd Hoffmann qemu_bh_cancel(s->async_bh); 888f1ae32a1SGerd Hoffmann } 889f1ae32a1SGerd Hoffmann 890a8170e5eSAvi Kivity static uint64_t ehci_caps_read(void *ptr, hwaddr addr, 8913e4f910cSGerd Hoffmann unsigned size) 8923e4f910cSGerd Hoffmann { 8933e4f910cSGerd Hoffmann EHCIState *s = ptr; 8943e4f910cSGerd Hoffmann return s->caps[addr]; 8953e4f910cSGerd Hoffmann } 8963e4f910cSGerd Hoffmann 897a8170e5eSAvi Kivity static uint64_t ehci_opreg_read(void *ptr, hwaddr addr, 8983e4f910cSGerd Hoffmann unsigned size) 899f1ae32a1SGerd Hoffmann { 900f1ae32a1SGerd Hoffmann EHCIState *s = ptr; 901f1ae32a1SGerd Hoffmann uint32_t val; 902f1ae32a1SGerd Hoffmann 9039359a58bSHans de Goede switch (addr) { 9049359a58bSHans de Goede case FRINDEX: 9059359a58bSHans de Goede /* Round down to mult of 8, else it can go backwards on migration */ 9069359a58bSHans de Goede val = s->frindex & ~7; 9079359a58bSHans de Goede break; 9089359a58bSHans de Goede default: 9093e4f910cSGerd Hoffmann val = s->opreg[addr >> 2]; 9109359a58bSHans de Goede } 9119359a58bSHans de Goede 91227a11324SPeter Crosthwaite trace_usb_ehci_opreg_read(addr + s->opregbase, addr2str(addr), val); 913f1ae32a1SGerd Hoffmann return val; 914f1ae32a1SGerd Hoffmann } 915f1ae32a1SGerd Hoffmann 916a8170e5eSAvi Kivity static uint64_t ehci_port_read(void *ptr, hwaddr addr, 9173e4f910cSGerd Hoffmann unsigned size) 918f1ae32a1SGerd Hoffmann { 919f1ae32a1SGerd Hoffmann EHCIState *s = ptr; 920f1ae32a1SGerd Hoffmann uint32_t val; 921f1ae32a1SGerd Hoffmann 9223e4f910cSGerd Hoffmann val = s->portsc[addr >> 2]; 923cc8d6a84SKuo-Jung Su trace_usb_ehci_portsc_read(addr + s->portscbase, addr >> 2, val); 924f1ae32a1SGerd Hoffmann return val; 925f1ae32a1SGerd Hoffmann } 926f1ae32a1SGerd Hoffmann 927f1ae32a1SGerd Hoffmann static void handle_port_owner_write(EHCIState *s, int port, uint32_t owner) 928f1ae32a1SGerd Hoffmann { 929f1ae32a1SGerd Hoffmann USBDevice *dev = s->ports[port].dev; 930f1ae32a1SGerd Hoffmann uint32_t *portsc = &s->portsc[port]; 931f1ae32a1SGerd Hoffmann uint32_t orig; 932f1ae32a1SGerd Hoffmann 933f1ae32a1SGerd Hoffmann if (s->companion_ports[port] == NULL) 934f1ae32a1SGerd Hoffmann return; 935f1ae32a1SGerd Hoffmann 936f1ae32a1SGerd Hoffmann owner = owner & PORTSC_POWNER; 937f1ae32a1SGerd Hoffmann orig = *portsc & PORTSC_POWNER; 938f1ae32a1SGerd Hoffmann 939f1ae32a1SGerd Hoffmann if (!(owner ^ orig)) { 940f1ae32a1SGerd Hoffmann return; 941f1ae32a1SGerd Hoffmann } 942f1ae32a1SGerd Hoffmann 943f1ae32a1SGerd Hoffmann if (dev && dev->attached) { 944f1ae32a1SGerd Hoffmann usb_detach(&s->ports[port]); 945f1ae32a1SGerd Hoffmann } 946f1ae32a1SGerd Hoffmann 947f1ae32a1SGerd Hoffmann *portsc &= ~PORTSC_POWNER; 948f1ae32a1SGerd Hoffmann *portsc |= owner; 949f1ae32a1SGerd Hoffmann 950f1ae32a1SGerd Hoffmann if (dev && dev->attached) { 951f1ae32a1SGerd Hoffmann usb_attach(&s->ports[port]); 952f1ae32a1SGerd Hoffmann } 953f1ae32a1SGerd Hoffmann } 954f1ae32a1SGerd Hoffmann 955a8170e5eSAvi Kivity static void ehci_port_write(void *ptr, hwaddr addr, 9563e4f910cSGerd Hoffmann uint64_t val, unsigned size) 957f1ae32a1SGerd Hoffmann { 9583e4f910cSGerd Hoffmann EHCIState *s = ptr; 9593e4f910cSGerd Hoffmann int port = addr >> 2; 960f1ae32a1SGerd Hoffmann uint32_t *portsc = &s->portsc[port]; 9613e4f910cSGerd Hoffmann uint32_t old = *portsc; 962f1ae32a1SGerd Hoffmann USBDevice *dev = s->ports[port].dev; 963f1ae32a1SGerd Hoffmann 964cc8d6a84SKuo-Jung Su trace_usb_ehci_portsc_write(addr + s->portscbase, addr >> 2, val); 9653e4f910cSGerd Hoffmann 966f1ae32a1SGerd Hoffmann /* Clear rwc bits */ 967f1ae32a1SGerd Hoffmann *portsc &= ~(val & PORTSC_RWC_MASK); 968f1ae32a1SGerd Hoffmann /* The guest may clear, but not set the PED bit */ 969f1ae32a1SGerd Hoffmann *portsc &= val | ~PORTSC_PED; 970f1ae32a1SGerd Hoffmann /* POWNER is masked out by RO_MASK as it is RO when we've no companion */ 971f1ae32a1SGerd Hoffmann handle_port_owner_write(s, port, val); 972f1ae32a1SGerd Hoffmann /* And finally apply RO_MASK */ 973f1ae32a1SGerd Hoffmann val &= PORTSC_RO_MASK; 974f1ae32a1SGerd Hoffmann 975f1ae32a1SGerd Hoffmann if ((val & PORTSC_PRESET) && !(*portsc & PORTSC_PRESET)) { 976f1ae32a1SGerd Hoffmann trace_usb_ehci_port_reset(port, 1); 977f1ae32a1SGerd Hoffmann } 978f1ae32a1SGerd Hoffmann 979f1ae32a1SGerd Hoffmann if (!(val & PORTSC_PRESET) &&(*portsc & PORTSC_PRESET)) { 980f1ae32a1SGerd Hoffmann trace_usb_ehci_port_reset(port, 0); 981f1ae32a1SGerd Hoffmann if (dev && dev->attached) { 982f1ae32a1SGerd Hoffmann usb_port_reset(&s->ports[port]); 983f1ae32a1SGerd Hoffmann *portsc &= ~PORTSC_CSC; 984f1ae32a1SGerd Hoffmann } 985f1ae32a1SGerd Hoffmann 986f1ae32a1SGerd Hoffmann /* 987f1ae32a1SGerd Hoffmann * Table 2.16 Set the enable bit(and enable bit change) to indicate 988f1ae32a1SGerd Hoffmann * to SW that this port has a high speed device attached 989f1ae32a1SGerd Hoffmann */ 990f1ae32a1SGerd Hoffmann if (dev && dev->attached && (dev->speedmask & USB_SPEED_MASK_HIGH)) { 991f1ae32a1SGerd Hoffmann val |= PORTSC_PED; 992f1ae32a1SGerd Hoffmann } 993f1ae32a1SGerd Hoffmann } 994f1ae32a1SGerd Hoffmann 995e489df40SGerd Hoffmann if ((val & PORTSC_SUSPEND) && !(*portsc & PORTSC_SUSPEND)) { 996e489df40SGerd Hoffmann trace_usb_ehci_port_suspend(port); 997e489df40SGerd Hoffmann } 998e489df40SGerd Hoffmann if (!(val & PORTSC_FPRES) && (*portsc & PORTSC_FPRES)) { 999e489df40SGerd Hoffmann trace_usb_ehci_port_resume(port); 1000e489df40SGerd Hoffmann val &= ~PORTSC_SUSPEND; 1001e489df40SGerd Hoffmann } 1002e489df40SGerd Hoffmann 1003f1ae32a1SGerd Hoffmann *portsc &= ~PORTSC_RO_MASK; 1004f1ae32a1SGerd Hoffmann *portsc |= val; 1005cc8d6a84SKuo-Jung Su trace_usb_ehci_portsc_change(addr + s->portscbase, addr >> 2, *portsc, old); 1006f1ae32a1SGerd Hoffmann } 1007f1ae32a1SGerd Hoffmann 1008a8170e5eSAvi Kivity static void ehci_opreg_write(void *ptr, hwaddr addr, 10093e4f910cSGerd Hoffmann uint64_t val, unsigned size) 1010f1ae32a1SGerd Hoffmann { 1011f1ae32a1SGerd Hoffmann EHCIState *s = ptr; 10123e4f910cSGerd Hoffmann uint32_t *mmio = s->opreg + (addr >> 2); 1013f1ae32a1SGerd Hoffmann uint32_t old = *mmio; 1014f1ae32a1SGerd Hoffmann int i; 1015f1ae32a1SGerd Hoffmann 101627a11324SPeter Crosthwaite trace_usb_ehci_opreg_write(addr + s->opregbase, addr2str(addr), val); 1017f1ae32a1SGerd Hoffmann 101827a11324SPeter Crosthwaite switch (addr) { 1019f1ae32a1SGerd Hoffmann case USBCMD: 10207046530cSGerd Hoffmann if (val & USBCMD_HCRESET) { 10217046530cSGerd Hoffmann ehci_reset(s); 10227046530cSGerd Hoffmann val = s->usbcmd; 10237046530cSGerd Hoffmann break; 10247046530cSGerd Hoffmann } 10257046530cSGerd Hoffmann 1026f1ae32a1SGerd Hoffmann /* not supporting dynamic frame list size at the moment */ 1027f1ae32a1SGerd Hoffmann if ((val & USBCMD_FLS) && !(s->usbcmd & USBCMD_FLS)) { 1028f1ae32a1SGerd Hoffmann fprintf(stderr, "attempt to set frame list size -- value %d\n", 10293e4f910cSGerd Hoffmann (int)val & USBCMD_FLS); 1030f1ae32a1SGerd Hoffmann val &= ~USBCMD_FLS; 1031f1ae32a1SGerd Hoffmann } 103247d073ccSHans de Goede 1033a1c3e4b8SHans de Goede if (val & USBCMD_IAAD) { 1034a1c3e4b8SHans de Goede /* 1035a1c3e4b8SHans de Goede * Process IAAD immediately, otherwise the Linux IAAD watchdog may 1036a1c3e4b8SHans de Goede * trigger and re-use a qh without us seeing the unlink. 1037a1c3e4b8SHans de Goede */ 1038a1c3e4b8SHans de Goede s->async_stepdown = 0; 1039a1c3e4b8SHans de Goede qemu_bh_schedule(s->async_bh); 10401defcbd1SGerd Hoffmann trace_usb_ehci_doorbell_ring(); 1041a1c3e4b8SHans de Goede } 1042a1c3e4b8SHans de Goede 104347d073ccSHans de Goede if (((USBCMD_RUNSTOP | USBCMD_PSE | USBCMD_ASE) & val) != 104447d073ccSHans de Goede ((USBCMD_RUNSTOP | USBCMD_PSE | USBCMD_ASE) & s->usbcmd)) { 104547d073ccSHans de Goede if (s->pstate == EST_INACTIVE) { 104647d073ccSHans de Goede SET_LAST_RUN_CLOCK(s); 104747d073ccSHans de Goede } 104847d073ccSHans de Goede s->usbcmd = val; /* Set usbcmd for ehci_update_halt() */ 104947d073ccSHans de Goede ehci_update_halt(s); 105047d073ccSHans de Goede s->async_stepdown = 0; 10510262f65aSHans de Goede qemu_bh_schedule(s->async_bh); 105247d073ccSHans de Goede } 1053f1ae32a1SGerd Hoffmann break; 1054f1ae32a1SGerd Hoffmann 1055f1ae32a1SGerd Hoffmann case USBSTS: 1056a31f0531SJim Meyering val &= USBSTS_RO_MASK; // bits 6 through 31 are RO 1057a31f0531SJim Meyering ehci_clear_usbsts(s, val); // bits 0 through 5 are R/WC 1058f1ae32a1SGerd Hoffmann val = s->usbsts; 10597efc17afSGerd Hoffmann ehci_update_irq(s); 1060f1ae32a1SGerd Hoffmann break; 1061f1ae32a1SGerd Hoffmann 1062f1ae32a1SGerd Hoffmann case USBINTR: 1063f1ae32a1SGerd Hoffmann val &= USBINTR_MASK; 106440862309SGerd Hoffmann if (ehci_enabled(s) && (USBSTS_FLR & val)) { 106540862309SGerd Hoffmann qemu_bh_schedule(s->async_bh); 106640862309SGerd Hoffmann } 1067f1ae32a1SGerd Hoffmann break; 1068f1ae32a1SGerd Hoffmann 10698a771f77SHans de Goede case FRINDEX: 10709359a58bSHans de Goede val &= 0x00003fff; /* frindex is 14bits */ 10719359a58bSHans de Goede s->usbsts_frindex = val; 10728a771f77SHans de Goede break; 10738a771f77SHans de Goede 1074f1ae32a1SGerd Hoffmann case CONFIGFLAG: 1075f1ae32a1SGerd Hoffmann val &= 0x1; 1076f1ae32a1SGerd Hoffmann if (val) { 1077f1ae32a1SGerd Hoffmann for(i = 0; i < NB_PORTS; i++) 1078f1ae32a1SGerd Hoffmann handle_port_owner_write(s, i, 0); 1079f1ae32a1SGerd Hoffmann } 1080f1ae32a1SGerd Hoffmann break; 1081f1ae32a1SGerd Hoffmann 1082f1ae32a1SGerd Hoffmann case PERIODICLISTBASE: 1083ec807d12SGerd Hoffmann if (ehci_periodic_enabled(s)) { 1084f1ae32a1SGerd Hoffmann fprintf(stderr, 1085f1ae32a1SGerd Hoffmann "ehci: PERIODIC list base register set while periodic schedule\n" 1086f1ae32a1SGerd Hoffmann " is enabled and HC is enabled\n"); 1087f1ae32a1SGerd Hoffmann } 1088f1ae32a1SGerd Hoffmann break; 1089f1ae32a1SGerd Hoffmann 1090f1ae32a1SGerd Hoffmann case ASYNCLISTADDR: 1091ec807d12SGerd Hoffmann if (ehci_async_enabled(s)) { 1092f1ae32a1SGerd Hoffmann fprintf(stderr, 1093f1ae32a1SGerd Hoffmann "ehci: ASYNC list address register set while async schedule\n" 1094f1ae32a1SGerd Hoffmann " is enabled and HC is enabled\n"); 1095f1ae32a1SGerd Hoffmann } 1096f1ae32a1SGerd Hoffmann break; 1097f1ae32a1SGerd Hoffmann } 1098f1ae32a1SGerd Hoffmann 1099f1ae32a1SGerd Hoffmann *mmio = val; 110027a11324SPeter Crosthwaite trace_usb_ehci_opreg_change(addr + s->opregbase, addr2str(addr), 110127a11324SPeter Crosthwaite *mmio, old); 1102f1ae32a1SGerd Hoffmann } 1103f1ae32a1SGerd Hoffmann 1104a5e0139aSGerd Hoffmann /* 1105a5e0139aSGerd Hoffmann * Write the qh back to guest physical memory. This step isn't 1106a5e0139aSGerd Hoffmann * in the EHCI spec but we need to do it since we don't share 1107a5e0139aSGerd Hoffmann * physical memory with our guest VM. 1108a5e0139aSGerd Hoffmann * 1109a5e0139aSGerd Hoffmann * The first three dwords are read-only for the EHCI, so skip them 1110a5e0139aSGerd Hoffmann * when writing back the qh. 1111a5e0139aSGerd Hoffmann */ 1112a5e0139aSGerd Hoffmann static void ehci_flush_qh(EHCIQueue *q) 1113a5e0139aSGerd Hoffmann { 1114a5e0139aSGerd Hoffmann uint32_t *qh = (uint32_t *) &q->qh; 1115a5e0139aSGerd Hoffmann uint32_t dwords = sizeof(EHCIqh) >> 2; 1116a5e0139aSGerd Hoffmann uint32_t addr = NLPTR_GET(q->qhaddr); 1117a5e0139aSGerd Hoffmann 1118a5e0139aSGerd Hoffmann put_dwords(q->ehci, addr + 3 * sizeof(uint32_t), qh + 3, dwords - 3); 1119a5e0139aSGerd Hoffmann } 1120a5e0139aSGerd Hoffmann 1121f1ae32a1SGerd Hoffmann // 4.10.2 1122f1ae32a1SGerd Hoffmann 1123f1ae32a1SGerd Hoffmann static int ehci_qh_do_overlay(EHCIQueue *q) 1124f1ae32a1SGerd Hoffmann { 1125eb36a88eSGerd Hoffmann EHCIPacket *p = QTAILQ_FIRST(&q->packets); 1126f1ae32a1SGerd Hoffmann int i; 1127f1ae32a1SGerd Hoffmann int dtoggle; 1128f1ae32a1SGerd Hoffmann int ping; 1129f1ae32a1SGerd Hoffmann int eps; 1130f1ae32a1SGerd Hoffmann int reload; 1131f1ae32a1SGerd Hoffmann 1132eb36a88eSGerd Hoffmann assert(p != NULL); 1133eb36a88eSGerd Hoffmann assert(p->qtdaddr == q->qtdaddr); 1134eb36a88eSGerd Hoffmann 1135f1ae32a1SGerd Hoffmann // remember values in fields to preserve in qh after overlay 1136f1ae32a1SGerd Hoffmann 1137f1ae32a1SGerd Hoffmann dtoggle = q->qh.token & QTD_TOKEN_DTOGGLE; 1138f1ae32a1SGerd Hoffmann ping = q->qh.token & QTD_TOKEN_PING; 1139f1ae32a1SGerd Hoffmann 1140eb36a88eSGerd Hoffmann q->qh.current_qtd = p->qtdaddr; 1141eb36a88eSGerd Hoffmann q->qh.next_qtd = p->qtd.next; 1142eb36a88eSGerd Hoffmann q->qh.altnext_qtd = p->qtd.altnext; 1143eb36a88eSGerd Hoffmann q->qh.token = p->qtd.token; 1144f1ae32a1SGerd Hoffmann 1145f1ae32a1SGerd Hoffmann 1146f1ae32a1SGerd Hoffmann eps = get_field(q->qh.epchar, QH_EPCHAR_EPS); 1147f1ae32a1SGerd Hoffmann if (eps == EHCI_QH_EPS_HIGH) { 1148f1ae32a1SGerd Hoffmann q->qh.token &= ~QTD_TOKEN_PING; 1149f1ae32a1SGerd Hoffmann q->qh.token |= ping; 1150f1ae32a1SGerd Hoffmann } 1151f1ae32a1SGerd Hoffmann 1152f1ae32a1SGerd Hoffmann reload = get_field(q->qh.epchar, QH_EPCHAR_RL); 1153f1ae32a1SGerd Hoffmann set_field(&q->qh.altnext_qtd, reload, QH_ALTNEXT_NAKCNT); 1154f1ae32a1SGerd Hoffmann 1155f1ae32a1SGerd Hoffmann for (i = 0; i < 5; i++) { 1156eb36a88eSGerd Hoffmann q->qh.bufptr[i] = p->qtd.bufptr[i]; 1157f1ae32a1SGerd Hoffmann } 1158f1ae32a1SGerd Hoffmann 1159f1ae32a1SGerd Hoffmann if (!(q->qh.epchar & QH_EPCHAR_DTC)) { 1160f1ae32a1SGerd Hoffmann // preserve QH DT bit 1161f1ae32a1SGerd Hoffmann q->qh.token &= ~QTD_TOKEN_DTOGGLE; 1162f1ae32a1SGerd Hoffmann q->qh.token |= dtoggle; 1163f1ae32a1SGerd Hoffmann } 1164f1ae32a1SGerd Hoffmann 1165f1ae32a1SGerd Hoffmann q->qh.bufptr[1] &= ~BUFPTR_CPROGMASK_MASK; 1166f1ae32a1SGerd Hoffmann q->qh.bufptr[2] &= ~BUFPTR_FRAMETAG_MASK; 1167f1ae32a1SGerd Hoffmann 1168a5e0139aSGerd Hoffmann ehci_flush_qh(q); 1169f1ae32a1SGerd Hoffmann 1170f1ae32a1SGerd Hoffmann return 0; 1171f1ae32a1SGerd Hoffmann } 1172f1ae32a1SGerd Hoffmann 1173eb36a88eSGerd Hoffmann static int ehci_init_transfer(EHCIPacket *p) 1174f1ae32a1SGerd Hoffmann { 1175f1ae32a1SGerd Hoffmann uint32_t cpage, offset, bytes, plen; 1176f1ae32a1SGerd Hoffmann dma_addr_t page; 1177f1ae32a1SGerd Hoffmann 1178eb36a88eSGerd Hoffmann cpage = get_field(p->qtd.token, QTD_TOKEN_CPAGE); 1179eb36a88eSGerd Hoffmann bytes = get_field(p->qtd.token, QTD_TOKEN_TBYTES); 1180eb36a88eSGerd Hoffmann offset = p->qtd.bufptr[0] & ~QTD_BUFPTR_MASK; 1181adbecc89SGerd Hoffmann qemu_sglist_init(&p->sgl, p->queue->ehci->device, 5, p->queue->ehci->as); 1182f1ae32a1SGerd Hoffmann 1183f1ae32a1SGerd Hoffmann while (bytes > 0) { 1184f1ae32a1SGerd Hoffmann if (cpage > 4) { 1185f1ae32a1SGerd Hoffmann fprintf(stderr, "cpage out of range (%d)\n", cpage); 118601e26b0eSHans de Goede return -1; 1187f1ae32a1SGerd Hoffmann } 1188f1ae32a1SGerd Hoffmann 1189eb36a88eSGerd Hoffmann page = p->qtd.bufptr[cpage] & QTD_BUFPTR_MASK; 1190f1ae32a1SGerd Hoffmann page += offset; 1191f1ae32a1SGerd Hoffmann plen = bytes; 1192f1ae32a1SGerd Hoffmann if (plen > 4096 - offset) { 1193f1ae32a1SGerd Hoffmann plen = 4096 - offset; 1194f1ae32a1SGerd Hoffmann offset = 0; 1195f1ae32a1SGerd Hoffmann cpage++; 1196f1ae32a1SGerd Hoffmann } 1197f1ae32a1SGerd Hoffmann 1198eb36a88eSGerd Hoffmann qemu_sglist_add(&p->sgl, page, plen); 1199f1ae32a1SGerd Hoffmann bytes -= plen; 1200f1ae32a1SGerd Hoffmann } 1201f1ae32a1SGerd Hoffmann return 0; 1202f1ae32a1SGerd Hoffmann } 1203f1ae32a1SGerd Hoffmann 1204e696b1daSHans de Goede static void ehci_finish_transfer(EHCIQueue *q, int len) 1205f1ae32a1SGerd Hoffmann { 1206f1ae32a1SGerd Hoffmann uint32_t cpage, offset; 1207f1ae32a1SGerd Hoffmann 1208e696b1daSHans de Goede if (len > 0) { 1209f1ae32a1SGerd Hoffmann /* update cpage & offset */ 1210f1ae32a1SGerd Hoffmann cpage = get_field(q->qh.token, QTD_TOKEN_CPAGE); 1211f1ae32a1SGerd Hoffmann offset = q->qh.bufptr[0] & ~QTD_BUFPTR_MASK; 1212f1ae32a1SGerd Hoffmann 1213e696b1daSHans de Goede offset += len; 1214f1ae32a1SGerd Hoffmann cpage += offset >> QTD_BUFPTR_SH; 1215f1ae32a1SGerd Hoffmann offset &= ~QTD_BUFPTR_MASK; 1216f1ae32a1SGerd Hoffmann 1217f1ae32a1SGerd Hoffmann set_field(&q->qh.token, cpage, QTD_TOKEN_CPAGE); 1218f1ae32a1SGerd Hoffmann q->qh.bufptr[0] &= QTD_BUFPTR_MASK; 1219f1ae32a1SGerd Hoffmann q->qh.bufptr[0] |= offset; 1220f1ae32a1SGerd Hoffmann } 1221f1ae32a1SGerd Hoffmann } 1222f1ae32a1SGerd Hoffmann 1223f1ae32a1SGerd Hoffmann static void ehci_async_complete_packet(USBPort *port, USBPacket *packet) 1224f1ae32a1SGerd Hoffmann { 1225eb36a88eSGerd Hoffmann EHCIPacket *p; 1226f1ae32a1SGerd Hoffmann EHCIState *s = port->opaque; 1227f1ae32a1SGerd Hoffmann uint32_t portsc = s->portsc[port->index]; 1228f1ae32a1SGerd Hoffmann 1229f1ae32a1SGerd Hoffmann if (portsc & PORTSC_POWNER) { 1230f1ae32a1SGerd Hoffmann USBPort *companion = s->companion_ports[port->index]; 1231f1ae32a1SGerd Hoffmann companion->ops->complete(companion, packet); 1232f1ae32a1SGerd Hoffmann return; 1233f1ae32a1SGerd Hoffmann } 1234f1ae32a1SGerd Hoffmann 1235eb36a88eSGerd Hoffmann p = container_of(packet, EHCIPacket, packet); 1236eb36a88eSGerd Hoffmann assert(p->async == EHCI_ASYNC_INFLIGHT); 12370cae7b1aSHans de Goede 12389a77a0f5SHans de Goede if (packet->status == USB_RET_REMOVE_FROM_QUEUE) { 12390cae7b1aSHans de Goede trace_usb_ehci_packet_action(p->queue, p, "remove"); 12400cae7b1aSHans de Goede ehci_free_packet(p); 12410cae7b1aSHans de Goede return; 12420cae7b1aSHans de Goede } 12430cae7b1aSHans de Goede 12440cae7b1aSHans de Goede trace_usb_ehci_packet_action(p->queue, p, "wakeup"); 1245eb36a88eSGerd Hoffmann p->async = EHCI_ASYNC_FINISHED; 1246ae710b99SGerd Hoffmann 124780826240SHans de Goede if (!p->queue->async) { 124880826240SHans de Goede s->periodic_sched_active = PERIODIC_ACTIVE; 1249ae710b99SGerd Hoffmann } 125080826240SHans de Goede qemu_bh_schedule(s->async_bh); 1251f1ae32a1SGerd Hoffmann } 1252f1ae32a1SGerd Hoffmann 1253f1ae32a1SGerd Hoffmann static void ehci_execute_complete(EHCIQueue *q) 1254f1ae32a1SGerd Hoffmann { 1255eb36a88eSGerd Hoffmann EHCIPacket *p = QTAILQ_FIRST(&q->packets); 1256e696b1daSHans de Goede uint32_t tbytes; 1257eb36a88eSGerd Hoffmann 1258eb36a88eSGerd Hoffmann assert(p != NULL); 1259eb36a88eSGerd Hoffmann assert(p->qtdaddr == q->qtdaddr); 1260ef5b2344SHans de Goede assert(p->async == EHCI_ASYNC_INITIALIZED || 1261ef5b2344SHans de Goede p->async == EHCI_ASYNC_FINISHED); 1262f1ae32a1SGerd Hoffmann 1263e696b1daSHans de Goede DPRINTF("execute_complete: qhaddr 0x%x, next 0x%x, qtdaddr 0x%x, " 1264e696b1daSHans de Goede "status %d, actual_length %d\n", 1265e696b1daSHans de Goede q->qhaddr, q->qh.next, q->qtdaddr, 1266e696b1daSHans de Goede p->packet.status, p->packet.actual_length); 1267f1ae32a1SGerd Hoffmann 1268e696b1daSHans de Goede switch (p->packet.status) { 1269e696b1daSHans de Goede case USB_RET_SUCCESS: 1270e696b1daSHans de Goede break; 1271f1ae32a1SGerd Hoffmann case USB_RET_IOERROR: 1272f1ae32a1SGerd Hoffmann case USB_RET_NODEV: 1273f1ae32a1SGerd Hoffmann q->qh.token |= (QTD_TOKEN_HALT | QTD_TOKEN_XACTERR); 1274f1ae32a1SGerd Hoffmann set_field(&q->qh.token, 0, QTD_TOKEN_CERR); 12757efc17afSGerd Hoffmann ehci_raise_irq(q->ehci, USBSTS_ERRINT); 1276f1ae32a1SGerd Hoffmann break; 1277f1ae32a1SGerd Hoffmann case USB_RET_STALL: 1278f1ae32a1SGerd Hoffmann q->qh.token |= QTD_TOKEN_HALT; 12797efc17afSGerd Hoffmann ehci_raise_irq(q->ehci, USBSTS_ERRINT); 1280f1ae32a1SGerd Hoffmann break; 1281f1ae32a1SGerd Hoffmann case USB_RET_NAK: 1282f1ae32a1SGerd Hoffmann set_field(&q->qh.altnext_qtd, 0, QH_ALTNEXT_NAKCNT); 1283f1ae32a1SGerd Hoffmann return; /* We're not done yet with this transaction */ 1284f1ae32a1SGerd Hoffmann case USB_RET_BABBLE: 1285f1ae32a1SGerd Hoffmann q->qh.token |= (QTD_TOKEN_HALT | QTD_TOKEN_BABBLE); 12867efc17afSGerd Hoffmann ehci_raise_irq(q->ehci, USBSTS_ERRINT); 1287f1ae32a1SGerd Hoffmann break; 1288f1ae32a1SGerd Hoffmann default: 1289f1ae32a1SGerd Hoffmann /* should not be triggerable */ 1290e696b1daSHans de Goede fprintf(stderr, "USB invalid response %d\n", p->packet.status); 1291dfc6f865SStefan Weil g_assert_not_reached(); 1292f1ae32a1SGerd Hoffmann break; 1293f1ae32a1SGerd Hoffmann } 1294f1ae32a1SGerd Hoffmann 1295e696b1daSHans de Goede /* TODO check 4.12 for splits */ 1296e696b1daSHans de Goede tbytes = get_field(q->qh.token, QTD_TOKEN_TBYTES); 1297549a3c3dSHans de Goede if (tbytes && p->pid == USB_TOKEN_IN) { 1298e696b1daSHans de Goede tbytes -= p->packet.actual_length; 1299cf08a8a1SHans de Goede if (tbytes) { 1300cf08a8a1SHans de Goede /* 4.15.1.2 must raise int on a short input packet */ 1301cf08a8a1SHans de Goede ehci_raise_irq(q->ehci, USBSTS_INT); 130252c15e59SHans de Goede if (q->async) { 130352c15e59SHans de Goede q->ehci->int_req_by_async = true; 130452c15e59SHans de Goede } 1305cf08a8a1SHans de Goede } 1306f1ae32a1SGerd Hoffmann } else { 1307549a3c3dSHans de Goede tbytes = 0; 1308f1ae32a1SGerd Hoffmann } 1309549a3c3dSHans de Goede DPRINTF("updating tbytes to %d\n", tbytes); 1310549a3c3dSHans de Goede set_field(&q->qh.token, tbytes, QTD_TOKEN_TBYTES); 1311e696b1daSHans de Goede 1312e696b1daSHans de Goede ehci_finish_transfer(q, p->packet.actual_length); 1313e2f89926SDavid Gibson usb_packet_unmap(&p->packet, &p->sgl); 1314eb36a88eSGerd Hoffmann qemu_sglist_destroy(&p->sgl); 1315ef5b2344SHans de Goede p->async = EHCI_ASYNC_NONE; 1316f1ae32a1SGerd Hoffmann 1317f1ae32a1SGerd Hoffmann q->qh.token ^= QTD_TOKEN_DTOGGLE; 1318f1ae32a1SGerd Hoffmann q->qh.token &= ~QTD_TOKEN_ACTIVE; 1319f1ae32a1SGerd Hoffmann 1320f1ae32a1SGerd Hoffmann if (q->qh.token & QTD_TOKEN_IOC) { 13217efc17afSGerd Hoffmann ehci_raise_irq(q->ehci, USBSTS_INT); 132244272b0fSHans de Goede if (q->async) { 132344272b0fSHans de Goede q->ehci->int_req_by_async = true; 132444272b0fSHans de Goede } 1325f1ae32a1SGerd Hoffmann } 1326f1ae32a1SGerd Hoffmann } 1327f1ae32a1SGerd Hoffmann 132801e26b0eSHans de Goede /* 4.10.3 returns "again" */ 1329773dc9cdSGerd Hoffmann static int ehci_execute(EHCIPacket *p, const char *action) 1330f1ae32a1SGerd Hoffmann { 1331f1ae32a1SGerd Hoffmann USBEndpoint *ep; 1332f1ae32a1SGerd Hoffmann int endp; 13336ba43f1fSHans de Goede bool spd; 1334f1ae32a1SGerd Hoffmann 1335ef5b2344SHans de Goede assert(p->async == EHCI_ASYNC_NONE || 1336ef5b2344SHans de Goede p->async == EHCI_ASYNC_INITIALIZED); 1337ef5b2344SHans de Goede 13384224558fSGerd Hoffmann if (!(p->qtd.token & QTD_TOKEN_ACTIVE)) { 13394224558fSGerd Hoffmann fprintf(stderr, "Attempting to execute inactive qtd\n"); 134001e26b0eSHans de Goede return -1; 1341f1ae32a1SGerd Hoffmann } 1342f1ae32a1SGerd Hoffmann 1343549a3c3dSHans de Goede if (get_field(p->qtd.token, QTD_TOKEN_TBYTES) > BUFF_SIZE) { 13443a8ca08eSHans de Goede ehci_trace_guest_bug(p->queue->ehci, 13453a8ca08eSHans de Goede "guest requested more bytes than allowed"); 134601e26b0eSHans de Goede return -1; 1347f1ae32a1SGerd Hoffmann } 1348f1ae32a1SGerd Hoffmann 1349f79738b0SHans de Goede if (!ehci_verify_pid(p->queue, &p->qtd)) { 1350f79738b0SHans de Goede ehci_queue_stopped(p->queue); /* Mark the ep in the prev dir stopped */ 1351f79738b0SHans de Goede } 135251e0c5d0SHans de Goede p->pid = ehci_get_pid(&p->qtd); 1353bbbc39ccSHans de Goede p->queue->last_pid = p->pid; 1354ef5b2344SHans de Goede endp = get_field(p->queue->qh.epchar, QH_EPCHAR_EP); 1355ef5b2344SHans de Goede ep = usb_ep_get(p->queue->dev, p->pid, endp); 1356ef5b2344SHans de Goede 1357ef5b2344SHans de Goede if (p->async == EHCI_ASYNC_NONE) { 1358eb36a88eSGerd Hoffmann if (ehci_init_transfer(p) != 0) { 135901e26b0eSHans de Goede return -1; 1360f1ae32a1SGerd Hoffmann } 1361f1ae32a1SGerd Hoffmann 13626ba43f1fSHans de Goede spd = (p->pid == USB_TOKEN_IN && NLPTR_TBIT(p->qtd.altnext) == 0); 13638550a02dSGerd Hoffmann usb_packet_setup(&p->packet, p->pid, ep, 0, p->qtdaddr, spd, 1364a6fb2ddbSHans de Goede (p->qtd.token & QTD_TOKEN_IOC) != 0); 1365eb36a88eSGerd Hoffmann usb_packet_map(&p->packet, &p->sgl); 1366ef5b2344SHans de Goede p->async = EHCI_ASYNC_INITIALIZED; 1367ef5b2344SHans de Goede } 1368f1ae32a1SGerd Hoffmann 1369773dc9cdSGerd Hoffmann trace_usb_ehci_packet_action(p->queue, p, action); 13709a77a0f5SHans de Goede usb_handle_packet(p->queue->dev, &p->packet); 13719a77a0f5SHans de Goede DPRINTF("submit: qh 0x%x next 0x%x qtd 0x%x pid 0x%x len %zd endp 0x%x " 13729a77a0f5SHans de Goede "status %d actual_length %d\n", p->queue->qhaddr, p->qtd.next, 13739a77a0f5SHans de Goede p->qtdaddr, p->pid, p->packet.iov.size, endp, p->packet.status, 13749a77a0f5SHans de Goede p->packet.actual_length); 1375f1ae32a1SGerd Hoffmann 13769a77a0f5SHans de Goede if (p->packet.actual_length > BUFF_SIZE) { 1377f1ae32a1SGerd Hoffmann fprintf(stderr, "ret from usb_handle_packet > BUFF_SIZE\n"); 137801e26b0eSHans de Goede return -1; 1379f1ae32a1SGerd Hoffmann } 1380f1ae32a1SGerd Hoffmann 138101e26b0eSHans de Goede return 1; 1382f1ae32a1SGerd Hoffmann } 1383f1ae32a1SGerd Hoffmann 1384f1ae32a1SGerd Hoffmann /* 4.7.2 1385f1ae32a1SGerd Hoffmann */ 1386f1ae32a1SGerd Hoffmann 1387f1ae32a1SGerd Hoffmann static int ehci_process_itd(EHCIState *ehci, 1388e983395dSGerd Hoffmann EHCIitd *itd, 1389e983395dSGerd Hoffmann uint32_t addr) 1390f1ae32a1SGerd Hoffmann { 1391f1ae32a1SGerd Hoffmann USBDevice *dev; 1392f1ae32a1SGerd Hoffmann USBEndpoint *ep; 1393156a2e4dSGerd Hoffmann uint32_t i, len, pid, dir, devaddr, endp, xfers = 0; 1394f1ae32a1SGerd Hoffmann uint32_t pg, off, ptr1, ptr2, max, mult; 1395f1ae32a1SGerd Hoffmann 139680826240SHans de Goede ehci->periodic_sched_active = PERIODIC_ACTIVE; 139780826240SHans de Goede 1398f1ae32a1SGerd Hoffmann dir =(itd->bufptr[1] & ITD_BUFPTR_DIRECTION); 1399f1ae32a1SGerd Hoffmann devaddr = get_field(itd->bufptr[0], ITD_BUFPTR_DEVADDR); 1400f1ae32a1SGerd Hoffmann endp = get_field(itd->bufptr[0], ITD_BUFPTR_EP); 1401f1ae32a1SGerd Hoffmann max = get_field(itd->bufptr[1], ITD_BUFPTR_MAXPKT); 1402f1ae32a1SGerd Hoffmann mult = get_field(itd->bufptr[2], ITD_BUFPTR_MULT); 1403f1ae32a1SGerd Hoffmann 1404f1ae32a1SGerd Hoffmann for(i = 0; i < 8; i++) { 1405f1ae32a1SGerd Hoffmann if (itd->transact[i] & ITD_XACT_ACTIVE) { 1406f1ae32a1SGerd Hoffmann pg = get_field(itd->transact[i], ITD_XACT_PGSEL); 1407f1ae32a1SGerd Hoffmann off = itd->transact[i] & ITD_XACT_OFFSET_MASK; 1408f1ae32a1SGerd Hoffmann ptr1 = (itd->bufptr[pg] & ITD_BUFPTR_MASK); 1409f1ae32a1SGerd Hoffmann ptr2 = (itd->bufptr[pg+1] & ITD_BUFPTR_MASK); 1410f1ae32a1SGerd Hoffmann len = get_field(itd->transact[i], ITD_XACT_LENGTH); 1411f1ae32a1SGerd Hoffmann 1412f1ae32a1SGerd Hoffmann if (len > max * mult) { 1413f1ae32a1SGerd Hoffmann len = max * mult; 1414f1ae32a1SGerd Hoffmann } 1415f1ae32a1SGerd Hoffmann 1416f1ae32a1SGerd Hoffmann if (len > BUFF_SIZE) { 141701e26b0eSHans de Goede return -1; 1418f1ae32a1SGerd Hoffmann } 1419f1ae32a1SGerd Hoffmann 1420adbecc89SGerd Hoffmann qemu_sglist_init(&ehci->isgl, ehci->device, 2, ehci->as); 1421f1ae32a1SGerd Hoffmann if (off + len > 4096) { 1422f1ae32a1SGerd Hoffmann /* transfer crosses page border */ 1423f1ae32a1SGerd Hoffmann uint32_t len2 = off + len - 4096; 1424f1ae32a1SGerd Hoffmann uint32_t len1 = len - len2; 1425f1ae32a1SGerd Hoffmann qemu_sglist_add(&ehci->isgl, ptr1 + off, len1); 1426f1ae32a1SGerd Hoffmann qemu_sglist_add(&ehci->isgl, ptr2, len2); 1427f1ae32a1SGerd Hoffmann } else { 1428f1ae32a1SGerd Hoffmann qemu_sglist_add(&ehci->isgl, ptr1 + off, len); 1429f1ae32a1SGerd Hoffmann } 1430f1ae32a1SGerd Hoffmann 1431f1ae32a1SGerd Hoffmann pid = dir ? USB_TOKEN_IN : USB_TOKEN_OUT; 1432f1ae32a1SGerd Hoffmann 1433f1ae32a1SGerd Hoffmann dev = ehci_find_device(ehci, devaddr); 1434f1ae32a1SGerd Hoffmann ep = usb_ep_get(dev, pid, endp); 14357ce86aa1SHans de Goede if (ep && ep->type == USB_ENDPOINT_XFER_ISOC) { 14368550a02dSGerd Hoffmann usb_packet_setup(&ehci->ipacket, pid, ep, 0, addr, false, 1437a6fb2ddbSHans de Goede (itd->transact[i] & ITD_XACT_IOC) != 0); 1438f1ae32a1SGerd Hoffmann usb_packet_map(&ehci->ipacket, &ehci->isgl); 14399a77a0f5SHans de Goede usb_handle_packet(dev, &ehci->ipacket); 1440e2f89926SDavid Gibson usb_packet_unmap(&ehci->ipacket, &ehci->isgl); 1441f1ae32a1SGerd Hoffmann } else { 1442f1ae32a1SGerd Hoffmann DPRINTF("ISOCH: attempt to addess non-iso endpoint\n"); 1443e696b1daSHans de Goede ehci->ipacket.status = USB_RET_NAK; 1444e696b1daSHans de Goede ehci->ipacket.actual_length = 0; 1445f1ae32a1SGerd Hoffmann } 1446f1ae32a1SGerd Hoffmann qemu_sglist_destroy(&ehci->isgl); 1447f1ae32a1SGerd Hoffmann 1448e696b1daSHans de Goede switch (ehci->ipacket.status) { 1449e696b1daSHans de Goede case USB_RET_SUCCESS: 1450e696b1daSHans de Goede break; 1451f1ae32a1SGerd Hoffmann default: 1452e696b1daSHans de Goede fprintf(stderr, "Unexpected iso usb result: %d\n", 1453e696b1daSHans de Goede ehci->ipacket.status); 1454f1ae32a1SGerd Hoffmann /* Fall through */ 1455f1ae32a1SGerd Hoffmann case USB_RET_IOERROR: 1456f1ae32a1SGerd Hoffmann case USB_RET_NODEV: 1457f1ae32a1SGerd Hoffmann /* 3.3.2: XACTERR is only allowed on IN transactions */ 1458f1ae32a1SGerd Hoffmann if (dir) { 1459f1ae32a1SGerd Hoffmann itd->transact[i] |= ITD_XACT_XACTERR; 14607efc17afSGerd Hoffmann ehci_raise_irq(ehci, USBSTS_ERRINT); 1461f1ae32a1SGerd Hoffmann } 1462f1ae32a1SGerd Hoffmann break; 1463f1ae32a1SGerd Hoffmann case USB_RET_BABBLE: 1464f1ae32a1SGerd Hoffmann itd->transact[i] |= ITD_XACT_BABBLE; 14657efc17afSGerd Hoffmann ehci_raise_irq(ehci, USBSTS_ERRINT); 1466f1ae32a1SGerd Hoffmann break; 1467f1ae32a1SGerd Hoffmann case USB_RET_NAK: 1468f1ae32a1SGerd Hoffmann /* no data for us, so do a zero-length transfer */ 1469e696b1daSHans de Goede ehci->ipacket.actual_length = 0; 1470f1ae32a1SGerd Hoffmann break; 1471f1ae32a1SGerd Hoffmann } 1472f1ae32a1SGerd Hoffmann if (!dir) { 1473e696b1daSHans de Goede set_field(&itd->transact[i], len - ehci->ipacket.actual_length, 1474e696b1daSHans de Goede ITD_XACT_LENGTH); /* OUT */ 1475f1ae32a1SGerd Hoffmann } else { 1476e696b1daSHans de Goede set_field(&itd->transact[i], ehci->ipacket.actual_length, 1477e696b1daSHans de Goede ITD_XACT_LENGTH); /* IN */ 1478f1ae32a1SGerd Hoffmann } 1479f1ae32a1SGerd Hoffmann if (itd->transact[i] & ITD_XACT_IOC) { 14807efc17afSGerd Hoffmann ehci_raise_irq(ehci, USBSTS_INT); 1481f1ae32a1SGerd Hoffmann } 1482f1ae32a1SGerd Hoffmann itd->transact[i] &= ~ITD_XACT_ACTIVE; 1483156a2e4dSGerd Hoffmann xfers++; 1484f1ae32a1SGerd Hoffmann } 1485f1ae32a1SGerd Hoffmann } 1486156a2e4dSGerd Hoffmann return xfers ? 0 : -1; 1487f1ae32a1SGerd Hoffmann } 1488f1ae32a1SGerd Hoffmann 1489cd665715SGerd Hoffmann 1490f1ae32a1SGerd Hoffmann /* This state is the entry point for asynchronous schedule 1491f1ae32a1SGerd Hoffmann * processing. Entry here consitutes a EHCI start event state (4.8.5) 1492f1ae32a1SGerd Hoffmann */ 1493f1ae32a1SGerd Hoffmann static int ehci_state_waitlisthead(EHCIState *ehci, int async) 1494f1ae32a1SGerd Hoffmann { 1495f1ae32a1SGerd Hoffmann EHCIqh qh; 1496f1ae32a1SGerd Hoffmann int i = 0; 1497f1ae32a1SGerd Hoffmann int again = 0; 1498f1ae32a1SGerd Hoffmann uint32_t entry = ehci->asynclistaddr; 1499f1ae32a1SGerd Hoffmann 1500f1ae32a1SGerd Hoffmann /* set reclamation flag at start event (4.8.6) */ 1501f1ae32a1SGerd Hoffmann if (async) { 1502f1ae32a1SGerd Hoffmann ehci_set_usbsts(ehci, USBSTS_REC); 1503f1ae32a1SGerd Hoffmann } 1504f1ae32a1SGerd Hoffmann 15058f5457ebSHans de Goede ehci_queues_rip_unused(ehci, async); 1506f1ae32a1SGerd Hoffmann 1507f1ae32a1SGerd Hoffmann /* Find the head of the list (4.9.1.1) */ 1508f1ae32a1SGerd Hoffmann for(i = 0; i < MAX_QH; i++) { 150955903f1dSGerd Hoffmann if (get_dwords(ehci, NLPTR_GET(entry), (uint32_t *) &qh, 151055903f1dSGerd Hoffmann sizeof(EHCIqh) >> 2) < 0) { 151155903f1dSGerd Hoffmann return 0; 151255903f1dSGerd Hoffmann } 1513f1ae32a1SGerd Hoffmann ehci_trace_qh(NULL, NLPTR_GET(entry), &qh); 1514f1ae32a1SGerd Hoffmann 1515f1ae32a1SGerd Hoffmann if (qh.epchar & QH_EPCHAR_H) { 1516f1ae32a1SGerd Hoffmann if (async) { 1517f1ae32a1SGerd Hoffmann entry |= (NLPTR_TYPE_QH << 1); 1518f1ae32a1SGerd Hoffmann } 1519f1ae32a1SGerd Hoffmann 1520f1ae32a1SGerd Hoffmann ehci_set_fetch_addr(ehci, async, entry); 1521f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_FETCHENTRY); 1522f1ae32a1SGerd Hoffmann again = 1; 1523f1ae32a1SGerd Hoffmann goto out; 1524f1ae32a1SGerd Hoffmann } 1525f1ae32a1SGerd Hoffmann 1526f1ae32a1SGerd Hoffmann entry = qh.next; 1527f1ae32a1SGerd Hoffmann if (entry == ehci->asynclistaddr) { 1528f1ae32a1SGerd Hoffmann break; 1529f1ae32a1SGerd Hoffmann } 1530f1ae32a1SGerd Hoffmann } 1531f1ae32a1SGerd Hoffmann 1532f1ae32a1SGerd Hoffmann /* no head found for list. */ 1533f1ae32a1SGerd Hoffmann 1534f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_ACTIVE); 1535f1ae32a1SGerd Hoffmann 1536f1ae32a1SGerd Hoffmann out: 1537f1ae32a1SGerd Hoffmann return again; 1538f1ae32a1SGerd Hoffmann } 1539f1ae32a1SGerd Hoffmann 1540f1ae32a1SGerd Hoffmann 1541f1ae32a1SGerd Hoffmann /* This state is the entry point for periodic schedule processing as 1542f1ae32a1SGerd Hoffmann * well as being a continuation state for async processing. 1543f1ae32a1SGerd Hoffmann */ 1544f1ae32a1SGerd Hoffmann static int ehci_state_fetchentry(EHCIState *ehci, int async) 1545f1ae32a1SGerd Hoffmann { 1546f1ae32a1SGerd Hoffmann int again = 0; 1547f1ae32a1SGerd Hoffmann uint32_t entry = ehci_get_fetch_addr(ehci, async); 1548f1ae32a1SGerd Hoffmann 1549f1ae32a1SGerd Hoffmann if (NLPTR_TBIT(entry)) { 1550f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_ACTIVE); 1551f1ae32a1SGerd Hoffmann goto out; 1552f1ae32a1SGerd Hoffmann } 1553f1ae32a1SGerd Hoffmann 1554f1ae32a1SGerd Hoffmann /* section 4.8, only QH in async schedule */ 1555f1ae32a1SGerd Hoffmann if (async && (NLPTR_TYPE_GET(entry) != NLPTR_TYPE_QH)) { 1556f1ae32a1SGerd Hoffmann fprintf(stderr, "non queue head request in async schedule\n"); 1557f1ae32a1SGerd Hoffmann return -1; 1558f1ae32a1SGerd Hoffmann } 1559f1ae32a1SGerd Hoffmann 1560f1ae32a1SGerd Hoffmann switch (NLPTR_TYPE_GET(entry)) { 1561f1ae32a1SGerd Hoffmann case NLPTR_TYPE_QH: 1562f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_FETCHQH); 1563f1ae32a1SGerd Hoffmann again = 1; 1564f1ae32a1SGerd Hoffmann break; 1565f1ae32a1SGerd Hoffmann 1566f1ae32a1SGerd Hoffmann case NLPTR_TYPE_ITD: 1567f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_FETCHITD); 1568f1ae32a1SGerd Hoffmann again = 1; 1569f1ae32a1SGerd Hoffmann break; 1570f1ae32a1SGerd Hoffmann 1571f1ae32a1SGerd Hoffmann case NLPTR_TYPE_STITD: 1572f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_FETCHSITD); 1573f1ae32a1SGerd Hoffmann again = 1; 1574f1ae32a1SGerd Hoffmann break; 1575f1ae32a1SGerd Hoffmann 1576f1ae32a1SGerd Hoffmann default: 1577f1ae32a1SGerd Hoffmann /* TODO: handle FSTN type */ 1578f1ae32a1SGerd Hoffmann fprintf(stderr, "FETCHENTRY: entry at %X is of type %d " 1579f1ae32a1SGerd Hoffmann "which is not supported yet\n", entry, NLPTR_TYPE_GET(entry)); 1580f1ae32a1SGerd Hoffmann return -1; 1581f1ae32a1SGerd Hoffmann } 1582f1ae32a1SGerd Hoffmann 1583f1ae32a1SGerd Hoffmann out: 1584f1ae32a1SGerd Hoffmann return again; 1585f1ae32a1SGerd Hoffmann } 1586f1ae32a1SGerd Hoffmann 1587f1ae32a1SGerd Hoffmann static EHCIQueue *ehci_state_fetchqh(EHCIState *ehci, int async) 1588f1ae32a1SGerd Hoffmann { 1589c6432634SHans de Goede uint32_t entry; 1590f1ae32a1SGerd Hoffmann EHCIQueue *q; 1591dafe31fcSHans de Goede EHCIqh qh; 1592f1ae32a1SGerd Hoffmann 1593f1ae32a1SGerd Hoffmann entry = ehci_get_fetch_addr(ehci, async); 1594f1ae32a1SGerd Hoffmann q = ehci_find_queue_by_qh(ehci, entry, async); 1595d0657b2aSGonglei if (q == NULL) { 15968f6d5e26SGerd Hoffmann q = ehci_alloc_queue(ehci, entry, async); 1597f1ae32a1SGerd Hoffmann } 1598f1ae32a1SGerd Hoffmann 15998f6d5e26SGerd Hoffmann q->seen++; 1600f1ae32a1SGerd Hoffmann if (q->seen > 1) { 1601f1ae32a1SGerd Hoffmann /* we are going in circles -- stop processing */ 1602f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_ACTIVE); 1603f1ae32a1SGerd Hoffmann q = NULL; 1604f1ae32a1SGerd Hoffmann goto out; 1605f1ae32a1SGerd Hoffmann } 1606f1ae32a1SGerd Hoffmann 160755903f1dSGerd Hoffmann if (get_dwords(ehci, NLPTR_GET(q->qhaddr), 160855903f1dSGerd Hoffmann (uint32_t *) &qh, sizeof(EHCIqh) >> 2) < 0) { 160955903f1dSGerd Hoffmann q = NULL; 161055903f1dSGerd Hoffmann goto out; 161155903f1dSGerd Hoffmann } 1612dafe31fcSHans de Goede ehci_trace_qh(q, NLPTR_GET(q->qhaddr), &qh); 1613f1ae32a1SGerd Hoffmann 1614dafe31fcSHans de Goede /* 1615dafe31fcSHans de Goede * The overlay area of the qh should never be changed by the guest, 1616dafe31fcSHans de Goede * except when idle, in which case the reset is a nop. 1617dafe31fcSHans de Goede */ 1618c6432634SHans de Goede if (!ehci_verify_qh(q, &qh)) { 16195c514681SGerd Hoffmann if (ehci_reset_queue(q) > 0) { 16205c514681SGerd Hoffmann ehci_trace_guest_bug(ehci, "guest updated active QH"); 16215c514681SGerd Hoffmann } 1622e59928b3SGerd Hoffmann } 1623dafe31fcSHans de Goede q->qh = qh; 1624dafe31fcSHans de Goede 1625cae5d3f4SHans de Goede q->transact_ctr = get_field(q->qh.epcap, QH_EPCAP_MULT); 1626cae5d3f4SHans de Goede if (q->transact_ctr == 0) { /* Guest bug in some versions of windows */ 1627cae5d3f4SHans de Goede q->transact_ctr = 4; 1628cae5d3f4SHans de Goede } 1629cae5d3f4SHans de Goede 1630e59928b3SGerd Hoffmann if (q->dev == NULL) { 1631c6432634SHans de Goede q->dev = ehci_find_device(q->ehci, 1632c6432634SHans de Goede get_field(q->qh.epchar, QH_EPCHAR_DEVADDR)); 1633e59928b3SGerd Hoffmann } 1634e59928b3SGerd Hoffmann 1635f1ae32a1SGerd Hoffmann if (async && (q->qh.epchar & QH_EPCHAR_H)) { 1636f1ae32a1SGerd Hoffmann 1637f1ae32a1SGerd Hoffmann /* EHCI spec version 1.0 Section 4.8.3 & 4.10.1 */ 1638f1ae32a1SGerd Hoffmann if (ehci->usbsts & USBSTS_REC) { 1639f1ae32a1SGerd Hoffmann ehci_clear_usbsts(ehci, USBSTS_REC); 1640f1ae32a1SGerd Hoffmann } else { 1641f1ae32a1SGerd Hoffmann DPRINTF("FETCHQH: QH 0x%08x. H-bit set, reclamation status reset" 1642f1ae32a1SGerd Hoffmann " - done processing\n", q->qhaddr); 1643f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_ACTIVE); 1644f1ae32a1SGerd Hoffmann q = NULL; 1645f1ae32a1SGerd Hoffmann goto out; 1646f1ae32a1SGerd Hoffmann } 1647f1ae32a1SGerd Hoffmann } 1648f1ae32a1SGerd Hoffmann 1649f1ae32a1SGerd Hoffmann #if EHCI_DEBUG 1650f1ae32a1SGerd Hoffmann if (q->qhaddr != q->qh.next) { 1651f1ae32a1SGerd Hoffmann DPRINTF("FETCHQH: QH 0x%08x (h %x halt %x active %x) next 0x%08x\n", 1652f1ae32a1SGerd Hoffmann q->qhaddr, 1653f1ae32a1SGerd Hoffmann q->qh.epchar & QH_EPCHAR_H, 1654f1ae32a1SGerd Hoffmann q->qh.token & QTD_TOKEN_HALT, 1655f1ae32a1SGerd Hoffmann q->qh.token & QTD_TOKEN_ACTIVE, 1656f1ae32a1SGerd Hoffmann q->qh.next); 1657f1ae32a1SGerd Hoffmann } 1658f1ae32a1SGerd Hoffmann #endif 1659f1ae32a1SGerd Hoffmann 1660f1ae32a1SGerd Hoffmann if (q->qh.token & QTD_TOKEN_HALT) { 1661f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_HORIZONTALQH); 1662f1ae32a1SGerd Hoffmann 1663f1ae32a1SGerd Hoffmann } else if ((q->qh.token & QTD_TOKEN_ACTIVE) && 1664f1ae32a1SGerd Hoffmann (NLPTR_TBIT(q->qh.current_qtd) == 0)) { 1665f1ae32a1SGerd Hoffmann q->qtdaddr = q->qh.current_qtd; 1666f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_FETCHQTD); 1667f1ae32a1SGerd Hoffmann 1668f1ae32a1SGerd Hoffmann } else { 1669f1ae32a1SGerd Hoffmann /* EHCI spec version 1.0 Section 4.10.2 */ 1670f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_ADVANCEQUEUE); 1671f1ae32a1SGerd Hoffmann } 1672f1ae32a1SGerd Hoffmann 1673f1ae32a1SGerd Hoffmann out: 1674f1ae32a1SGerd Hoffmann return q; 1675f1ae32a1SGerd Hoffmann } 1676f1ae32a1SGerd Hoffmann 1677f1ae32a1SGerd Hoffmann static int ehci_state_fetchitd(EHCIState *ehci, int async) 1678f1ae32a1SGerd Hoffmann { 1679f1ae32a1SGerd Hoffmann uint32_t entry; 1680f1ae32a1SGerd Hoffmann EHCIitd itd; 1681f1ae32a1SGerd Hoffmann 1682f1ae32a1SGerd Hoffmann assert(!async); 1683f1ae32a1SGerd Hoffmann entry = ehci_get_fetch_addr(ehci, async); 1684f1ae32a1SGerd Hoffmann 168555903f1dSGerd Hoffmann if (get_dwords(ehci, NLPTR_GET(entry), (uint32_t *) &itd, 168655903f1dSGerd Hoffmann sizeof(EHCIitd) >> 2) < 0) { 168755903f1dSGerd Hoffmann return -1; 168855903f1dSGerd Hoffmann } 1689f1ae32a1SGerd Hoffmann ehci_trace_itd(ehci, entry, &itd); 1690f1ae32a1SGerd Hoffmann 1691e983395dSGerd Hoffmann if (ehci_process_itd(ehci, &itd, entry) != 0) { 1692f1ae32a1SGerd Hoffmann return -1; 1693f1ae32a1SGerd Hoffmann } 1694f1ae32a1SGerd Hoffmann 1695f1ae32a1SGerd Hoffmann put_dwords(ehci, NLPTR_GET(entry), (uint32_t *) &itd, 1696f1ae32a1SGerd Hoffmann sizeof(EHCIitd) >> 2); 1697f1ae32a1SGerd Hoffmann ehci_set_fetch_addr(ehci, async, itd.next); 1698f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_FETCHENTRY); 1699f1ae32a1SGerd Hoffmann 1700f1ae32a1SGerd Hoffmann return 1; 1701f1ae32a1SGerd Hoffmann } 1702f1ae32a1SGerd Hoffmann 1703f1ae32a1SGerd Hoffmann static int ehci_state_fetchsitd(EHCIState *ehci, int async) 1704f1ae32a1SGerd Hoffmann { 1705f1ae32a1SGerd Hoffmann uint32_t entry; 1706f1ae32a1SGerd Hoffmann EHCIsitd sitd; 1707f1ae32a1SGerd Hoffmann 1708f1ae32a1SGerd Hoffmann assert(!async); 1709f1ae32a1SGerd Hoffmann entry = ehci_get_fetch_addr(ehci, async); 1710f1ae32a1SGerd Hoffmann 171155903f1dSGerd Hoffmann if (get_dwords(ehci, NLPTR_GET(entry), (uint32_t *)&sitd, 171255903f1dSGerd Hoffmann sizeof(EHCIsitd) >> 2) < 0) { 171355903f1dSGerd Hoffmann return 0; 171455903f1dSGerd Hoffmann } 1715f1ae32a1SGerd Hoffmann ehci_trace_sitd(ehci, entry, &sitd); 1716f1ae32a1SGerd Hoffmann 1717f1ae32a1SGerd Hoffmann if (!(sitd.results & SITD_RESULTS_ACTIVE)) { 1718f1ae32a1SGerd Hoffmann /* siTD is not active, nothing to do */; 1719f1ae32a1SGerd Hoffmann } else { 1720f1ae32a1SGerd Hoffmann /* TODO: split transfers are not implemented */ 1721f1ae32a1SGerd Hoffmann fprintf(stderr, "WARNING: Skipping active siTD\n"); 1722f1ae32a1SGerd Hoffmann } 1723f1ae32a1SGerd Hoffmann 1724f1ae32a1SGerd Hoffmann ehci_set_fetch_addr(ehci, async, sitd.next); 1725f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_FETCHENTRY); 1726f1ae32a1SGerd Hoffmann return 1; 1727f1ae32a1SGerd Hoffmann } 1728f1ae32a1SGerd Hoffmann 1729f1ae32a1SGerd Hoffmann /* Section 4.10.2 - paragraph 3 */ 1730ae0138a8SGerd Hoffmann static int ehci_state_advqueue(EHCIQueue *q) 1731f1ae32a1SGerd Hoffmann { 1732f1ae32a1SGerd Hoffmann #if 0 1733f1ae32a1SGerd Hoffmann /* TO-DO: 4.10.2 - paragraph 2 1734f1ae32a1SGerd Hoffmann * if I-bit is set to 1 and QH is not active 1735f1ae32a1SGerd Hoffmann * go to horizontal QH 1736f1ae32a1SGerd Hoffmann */ 1737f1ae32a1SGerd Hoffmann if (I-bit set) { 1738f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_HORIZONTALQH); 1739f1ae32a1SGerd Hoffmann goto out; 1740f1ae32a1SGerd Hoffmann } 1741f1ae32a1SGerd Hoffmann #endif 1742f1ae32a1SGerd Hoffmann 1743f1ae32a1SGerd Hoffmann /* 1744f1ae32a1SGerd Hoffmann * want data and alt-next qTD is valid 1745f1ae32a1SGerd Hoffmann */ 1746f1ae32a1SGerd Hoffmann if (((q->qh.token & QTD_TOKEN_TBYTES_MASK) != 0) && 1747f1ae32a1SGerd Hoffmann (NLPTR_TBIT(q->qh.altnext_qtd) == 0)) { 1748f1ae32a1SGerd Hoffmann q->qtdaddr = q->qh.altnext_qtd; 1749ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_FETCHQTD); 1750f1ae32a1SGerd Hoffmann 1751f1ae32a1SGerd Hoffmann /* 1752f1ae32a1SGerd Hoffmann * next qTD is valid 1753f1ae32a1SGerd Hoffmann */ 1754f1ae32a1SGerd Hoffmann } else if (NLPTR_TBIT(q->qh.next_qtd) == 0) { 1755f1ae32a1SGerd Hoffmann q->qtdaddr = q->qh.next_qtd; 1756ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_FETCHQTD); 1757f1ae32a1SGerd Hoffmann 1758f1ae32a1SGerd Hoffmann /* 1759f1ae32a1SGerd Hoffmann * no valid qTD, try next QH 1760f1ae32a1SGerd Hoffmann */ 1761f1ae32a1SGerd Hoffmann } else { 1762ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_HORIZONTALQH); 1763f1ae32a1SGerd Hoffmann } 1764f1ae32a1SGerd Hoffmann 1765f1ae32a1SGerd Hoffmann return 1; 1766f1ae32a1SGerd Hoffmann } 1767f1ae32a1SGerd Hoffmann 1768f1ae32a1SGerd Hoffmann /* Section 4.10.2 - paragraph 4 */ 1769ae0138a8SGerd Hoffmann static int ehci_state_fetchqtd(EHCIQueue *q) 1770f1ae32a1SGerd Hoffmann { 1771eb36a88eSGerd Hoffmann EHCIqtd qtd; 1772eb36a88eSGerd Hoffmann EHCIPacket *p; 1773b4ea8664SHans de Goede int again = 1; 1774f1ae32a1SGerd Hoffmann 177555903f1dSGerd Hoffmann if (get_dwords(q->ehci, NLPTR_GET(q->qtdaddr), (uint32_t *) &qtd, 177655903f1dSGerd Hoffmann sizeof(EHCIqtd) >> 2) < 0) { 177755903f1dSGerd Hoffmann return 0; 177855903f1dSGerd Hoffmann } 1779eb36a88eSGerd Hoffmann ehci_trace_qtd(q, NLPTR_GET(q->qtdaddr), &qtd); 1780f1ae32a1SGerd Hoffmann 1781773dc9cdSGerd Hoffmann p = QTAILQ_FIRST(&q->packets); 1782287fd3f1SGerd Hoffmann if (p != NULL) { 1783c6432634SHans de Goede if (!ehci_verify_qtd(p, &qtd)) { 1784287fd3f1SGerd Hoffmann ehci_cancel_queue(q); 1785d066c57bSHans de Goede if (qtd.token & QTD_TOKEN_ACTIVE) { 1786d066c57bSHans de Goede ehci_trace_guest_bug(q->ehci, "guest updated active qTD"); 1787d066c57bSHans de Goede } 1788287fd3f1SGerd Hoffmann p = NULL; 1789287fd3f1SGerd Hoffmann } else { 1790287fd3f1SGerd Hoffmann p->qtd = qtd; 1791287fd3f1SGerd Hoffmann ehci_qh_do_overlay(q); 1792287fd3f1SGerd Hoffmann } 1793287fd3f1SGerd Hoffmann } 1794287fd3f1SGerd Hoffmann 1795287fd3f1SGerd Hoffmann if (!(qtd.token & QTD_TOKEN_ACTIVE)) { 1796287fd3f1SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_HORIZONTALQH); 1797287fd3f1SGerd Hoffmann } else if (p != NULL) { 1798adf47834SHans de Goede switch (p->async) { 1799adf47834SHans de Goede case EHCI_ASYNC_NONE: 1800ef5b2344SHans de Goede case EHCI_ASYNC_INITIALIZED: 1801cae5d3f4SHans de Goede /* Not yet executed (MULT), or previously nacked (int) packet */ 1802adf47834SHans de Goede ehci_set_state(q->ehci, q->async, EST_EXECUTE); 1803adf47834SHans de Goede break; 1804adf47834SHans de Goede case EHCI_ASYNC_INFLIGHT: 1805b4ea8664SHans de Goede /* Check if the guest has added new tds to the queue */ 180601e26b0eSHans de Goede again = ehci_fill_queue(QTAILQ_LAST(&q->packets, pkts_head)); 1807ef5b2344SHans de Goede /* Unfinished async handled packet, go horizontal */ 1808ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_HORIZONTALQH); 1809adf47834SHans de Goede break; 1810adf47834SHans de Goede case EHCI_ASYNC_FINISHED: 1811e3fdfd48SHans de Goede /* Complete executing of the packet */ 1812ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_EXECUTING); 1813adf47834SHans de Goede break; 1814773dc9cdSGerd Hoffmann } 1815287fd3f1SGerd Hoffmann } else { 1816eb36a88eSGerd Hoffmann p = ehci_alloc_packet(q); 1817eb36a88eSGerd Hoffmann p->qtdaddr = q->qtdaddr; 1818eb36a88eSGerd Hoffmann p->qtd = qtd; 1819ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_EXECUTE); 1820f1ae32a1SGerd Hoffmann } 1821f1ae32a1SGerd Hoffmann 1822f1ae32a1SGerd Hoffmann return again; 1823f1ae32a1SGerd Hoffmann } 1824f1ae32a1SGerd Hoffmann 1825ae0138a8SGerd Hoffmann static int ehci_state_horizqh(EHCIQueue *q) 1826f1ae32a1SGerd Hoffmann { 1827f1ae32a1SGerd Hoffmann int again = 0; 1828f1ae32a1SGerd Hoffmann 1829ae0138a8SGerd Hoffmann if (ehci_get_fetch_addr(q->ehci, q->async) != q->qh.next) { 1830ae0138a8SGerd Hoffmann ehci_set_fetch_addr(q->ehci, q->async, q->qh.next); 1831ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_FETCHENTRY); 1832f1ae32a1SGerd Hoffmann again = 1; 1833f1ae32a1SGerd Hoffmann } else { 1834ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_ACTIVE); 1835f1ae32a1SGerd Hoffmann } 1836f1ae32a1SGerd Hoffmann 1837f1ae32a1SGerd Hoffmann return again; 1838f1ae32a1SGerd Hoffmann } 1839f1ae32a1SGerd Hoffmann 184001e26b0eSHans de Goede /* Returns "again" */ 1841eff6dce7SHans de Goede static int ehci_fill_queue(EHCIPacket *p) 1842773dc9cdSGerd Hoffmann { 184336dfe324SHans de Goede USBEndpoint *ep = p->packet.ep; 1844773dc9cdSGerd Hoffmann EHCIQueue *q = p->queue; 1845773dc9cdSGerd Hoffmann EHCIqtd qtd = p->qtd; 1846601a2347SHans de Goede uint32_t qtdaddr; 1847773dc9cdSGerd Hoffmann 1848773dc9cdSGerd Hoffmann for (;;) { 1849773dc9cdSGerd Hoffmann if (NLPTR_TBIT(qtd.next) != 0) { 1850773dc9cdSGerd Hoffmann break; 1851773dc9cdSGerd Hoffmann } 1852773dc9cdSGerd Hoffmann qtdaddr = qtd.next; 1853e3a36bceSHans de Goede /* 1854e3a36bceSHans de Goede * Detect circular td lists, Windows creates these, counting on the 1855e3a36bceSHans de Goede * active bit going low after execution to make the queue stop. 1856e3a36bceSHans de Goede */ 1857601a2347SHans de Goede QTAILQ_FOREACH(p, &q->packets, next) { 1858601a2347SHans de Goede if (p->qtdaddr == qtdaddr) { 1859601a2347SHans de Goede goto leave; 1860601a2347SHans de Goede } 1861e3a36bceSHans de Goede } 186255903f1dSGerd Hoffmann if (get_dwords(q->ehci, NLPTR_GET(qtdaddr), 186355903f1dSGerd Hoffmann (uint32_t *) &qtd, sizeof(EHCIqtd) >> 2) < 0) { 186455903f1dSGerd Hoffmann return -1; 186555903f1dSGerd Hoffmann } 1866773dc9cdSGerd Hoffmann ehci_trace_qtd(q, NLPTR_GET(qtdaddr), &qtd); 1867773dc9cdSGerd Hoffmann if (!(qtd.token & QTD_TOKEN_ACTIVE)) { 1868773dc9cdSGerd Hoffmann break; 1869773dc9cdSGerd Hoffmann } 1870bbbc39ccSHans de Goede if (!ehci_verify_pid(q, &qtd)) { 1871bbbc39ccSHans de Goede ehci_trace_guest_bug(q->ehci, "guest queued token with wrong pid"); 1872bbbc39ccSHans de Goede break; 1873bbbc39ccSHans de Goede } 1874773dc9cdSGerd Hoffmann p = ehci_alloc_packet(q); 1875773dc9cdSGerd Hoffmann p->qtdaddr = qtdaddr; 1876773dc9cdSGerd Hoffmann p->qtd = qtd; 187701e26b0eSHans de Goede if (ehci_execute(p, "queue") == -1) { 187801e26b0eSHans de Goede return -1; 1879eff6dce7SHans de Goede } 188001e26b0eSHans de Goede assert(p->packet.status == USB_RET_ASYNC); 1881773dc9cdSGerd Hoffmann p->async = EHCI_ASYNC_INFLIGHT; 1882773dc9cdSGerd Hoffmann } 1883601a2347SHans de Goede leave: 188436dfe324SHans de Goede usb_device_flush_ep_queue(ep->dev, ep); 188501e26b0eSHans de Goede return 1; 1886773dc9cdSGerd Hoffmann } 1887773dc9cdSGerd Hoffmann 1888ae0138a8SGerd Hoffmann static int ehci_state_execute(EHCIQueue *q) 1889f1ae32a1SGerd Hoffmann { 1890eb36a88eSGerd Hoffmann EHCIPacket *p = QTAILQ_FIRST(&q->packets); 1891f1ae32a1SGerd Hoffmann int again = 0; 1892f1ae32a1SGerd Hoffmann 1893eb36a88eSGerd Hoffmann assert(p != NULL); 1894eb36a88eSGerd Hoffmann assert(p->qtdaddr == q->qtdaddr); 1895eb36a88eSGerd Hoffmann 1896f1ae32a1SGerd Hoffmann if (ehci_qh_do_overlay(q) != 0) { 1897f1ae32a1SGerd Hoffmann return -1; 1898f1ae32a1SGerd Hoffmann } 1899f1ae32a1SGerd Hoffmann 1900f1ae32a1SGerd Hoffmann // TODO verify enough time remains in the uframe as in 4.4.1.1 1901f1ae32a1SGerd Hoffmann // TODO write back ptr to async list when done or out of time 1902f1ae32a1SGerd Hoffmann 1903cae5d3f4SHans de Goede /* 4.10.3, bottom of page 82, go horizontal on transaction counter == 0 */ 1904cae5d3f4SHans de Goede if (!q->async && q->transact_ctr == 0) { 1905ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_HORIZONTALQH); 1906f1ae32a1SGerd Hoffmann again = 1; 1907f1ae32a1SGerd Hoffmann goto out; 1908f1ae32a1SGerd Hoffmann } 1909f1ae32a1SGerd Hoffmann 1910ae0138a8SGerd Hoffmann if (q->async) { 1911f1ae32a1SGerd Hoffmann ehci_set_usbsts(q->ehci, USBSTS_REC); 1912f1ae32a1SGerd Hoffmann } 1913f1ae32a1SGerd Hoffmann 191401e26b0eSHans de Goede again = ehci_execute(p, "process"); 191501e26b0eSHans de Goede if (again == -1) { 1916f1ae32a1SGerd Hoffmann goto out; 1917f1ae32a1SGerd Hoffmann } 191801e26b0eSHans de Goede if (p->packet.status == USB_RET_ASYNC) { 1919f1ae32a1SGerd Hoffmann ehci_flush_qh(q); 1920773dc9cdSGerd Hoffmann trace_usb_ehci_packet_action(p->queue, p, "async"); 1921eb36a88eSGerd Hoffmann p->async = EHCI_ASYNC_INFLIGHT; 1922ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_HORIZONTALQH); 1923cae5d3f4SHans de Goede if (q->async) { 192401e26b0eSHans de Goede again = ehci_fill_queue(p); 1925cae5d3f4SHans de Goede } else { 1926cae5d3f4SHans de Goede again = 1; 1927cae5d3f4SHans de Goede } 1928f1ae32a1SGerd Hoffmann goto out; 1929f1ae32a1SGerd Hoffmann } 1930f1ae32a1SGerd Hoffmann 1931ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_EXECUTING); 1932f1ae32a1SGerd Hoffmann again = 1; 1933f1ae32a1SGerd Hoffmann 1934f1ae32a1SGerd Hoffmann out: 1935f1ae32a1SGerd Hoffmann return again; 1936f1ae32a1SGerd Hoffmann } 1937f1ae32a1SGerd Hoffmann 1938ae0138a8SGerd Hoffmann static int ehci_state_executing(EHCIQueue *q) 1939f1ae32a1SGerd Hoffmann { 1940eb36a88eSGerd Hoffmann EHCIPacket *p = QTAILQ_FIRST(&q->packets); 1941f1ae32a1SGerd Hoffmann 1942eb36a88eSGerd Hoffmann assert(p != NULL); 1943eb36a88eSGerd Hoffmann assert(p->qtdaddr == q->qtdaddr); 1944eb36a88eSGerd Hoffmann 1945f1ae32a1SGerd Hoffmann ehci_execute_complete(q); 1946f1ae32a1SGerd Hoffmann 1947cae5d3f4SHans de Goede /* 4.10.3 */ 1948cae5d3f4SHans de Goede if (!q->async && q->transact_ctr > 0) { 1949cae5d3f4SHans de Goede q->transact_ctr--; 1950f1ae32a1SGerd Hoffmann } 1951f1ae32a1SGerd Hoffmann 1952f1ae32a1SGerd Hoffmann /* 4.10.5 */ 1953e696b1daSHans de Goede if (p->packet.status == USB_RET_NAK) { 1954ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_HORIZONTALQH); 1955f1ae32a1SGerd Hoffmann } else { 1956ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_WRITEBACK); 1957f1ae32a1SGerd Hoffmann } 1958f1ae32a1SGerd Hoffmann 1959f1ae32a1SGerd Hoffmann ehci_flush_qh(q); 1960574ef171SHans de Goede return 1; 1961f1ae32a1SGerd Hoffmann } 1962f1ae32a1SGerd Hoffmann 1963f1ae32a1SGerd Hoffmann 1964ae0138a8SGerd Hoffmann static int ehci_state_writeback(EHCIQueue *q) 1965f1ae32a1SGerd Hoffmann { 1966eb36a88eSGerd Hoffmann EHCIPacket *p = QTAILQ_FIRST(&q->packets); 19674ed1c57aSGerd Hoffmann uint32_t *qtd, addr; 1968f1ae32a1SGerd Hoffmann int again = 0; 1969f1ae32a1SGerd Hoffmann 1970f1ae32a1SGerd Hoffmann /* Write back the QTD from the QH area */ 1971eb36a88eSGerd Hoffmann assert(p != NULL); 1972eb36a88eSGerd Hoffmann assert(p->qtdaddr == q->qtdaddr); 1973eb36a88eSGerd Hoffmann 1974eb36a88eSGerd Hoffmann ehci_trace_qtd(q, NLPTR_GET(p->qtdaddr), (EHCIqtd *) &q->qh.next_qtd); 19754ed1c57aSGerd Hoffmann qtd = (uint32_t *) &q->qh.next_qtd; 19764ed1c57aSGerd Hoffmann addr = NLPTR_GET(p->qtdaddr); 19774ed1c57aSGerd Hoffmann put_dwords(q->ehci, addr + 2 * sizeof(uint32_t), qtd + 2, 2); 1978eb36a88eSGerd Hoffmann ehci_free_packet(p); 1979f1ae32a1SGerd Hoffmann 1980f1ae32a1SGerd Hoffmann /* 1981f1ae32a1SGerd Hoffmann * EHCI specs say go horizontal here. 1982f1ae32a1SGerd Hoffmann * 1983f1ae32a1SGerd Hoffmann * We can also advance the queue here for performance reasons. We 1984f1ae32a1SGerd Hoffmann * need to take care to only take that shortcut in case we've 1985f1ae32a1SGerd Hoffmann * processed the qtd just written back without errors, i.e. halt 1986f1ae32a1SGerd Hoffmann * bit is clear. 1987f1ae32a1SGerd Hoffmann */ 1988f1ae32a1SGerd Hoffmann if (q->qh.token & QTD_TOKEN_HALT) { 1989ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_HORIZONTALQH); 1990f1ae32a1SGerd Hoffmann again = 1; 1991f1ae32a1SGerd Hoffmann } else { 1992ae0138a8SGerd Hoffmann ehci_set_state(q->ehci, q->async, EST_ADVANCEQUEUE); 1993f1ae32a1SGerd Hoffmann again = 1; 1994f1ae32a1SGerd Hoffmann } 1995f1ae32a1SGerd Hoffmann return again; 1996f1ae32a1SGerd Hoffmann } 1997f1ae32a1SGerd Hoffmann 1998f1ae32a1SGerd Hoffmann /* 1999f1ae32a1SGerd Hoffmann * This is the state machine that is common to both async and periodic 2000f1ae32a1SGerd Hoffmann */ 2001f1ae32a1SGerd Hoffmann 2002ae0138a8SGerd Hoffmann static void ehci_advance_state(EHCIState *ehci, int async) 2003f1ae32a1SGerd Hoffmann { 2004f1ae32a1SGerd Hoffmann EHCIQueue *q = NULL; 2005f1ae32a1SGerd Hoffmann int again; 2006f1ae32a1SGerd Hoffmann 2007f1ae32a1SGerd Hoffmann do { 2008f1ae32a1SGerd Hoffmann switch(ehci_get_state(ehci, async)) { 2009f1ae32a1SGerd Hoffmann case EST_WAITLISTHEAD: 2010f1ae32a1SGerd Hoffmann again = ehci_state_waitlisthead(ehci, async); 2011f1ae32a1SGerd Hoffmann break; 2012f1ae32a1SGerd Hoffmann 2013f1ae32a1SGerd Hoffmann case EST_FETCHENTRY: 2014f1ae32a1SGerd Hoffmann again = ehci_state_fetchentry(ehci, async); 2015f1ae32a1SGerd Hoffmann break; 2016f1ae32a1SGerd Hoffmann 2017f1ae32a1SGerd Hoffmann case EST_FETCHQH: 2018f1ae32a1SGerd Hoffmann q = ehci_state_fetchqh(ehci, async); 2019ae0138a8SGerd Hoffmann if (q != NULL) { 2020ae0138a8SGerd Hoffmann assert(q->async == async); 2021ae0138a8SGerd Hoffmann again = 1; 2022ae0138a8SGerd Hoffmann } else { 2023ae0138a8SGerd Hoffmann again = 0; 2024ae0138a8SGerd Hoffmann } 2025f1ae32a1SGerd Hoffmann break; 2026f1ae32a1SGerd Hoffmann 2027f1ae32a1SGerd Hoffmann case EST_FETCHITD: 2028f1ae32a1SGerd Hoffmann again = ehci_state_fetchitd(ehci, async); 2029f1ae32a1SGerd Hoffmann break; 2030f1ae32a1SGerd Hoffmann 2031f1ae32a1SGerd Hoffmann case EST_FETCHSITD: 2032f1ae32a1SGerd Hoffmann again = ehci_state_fetchsitd(ehci, async); 2033f1ae32a1SGerd Hoffmann break; 2034f1ae32a1SGerd Hoffmann 2035f1ae32a1SGerd Hoffmann case EST_ADVANCEQUEUE: 2036cc8d2b65SMarkus Armbruster assert(q != NULL); 2037ae0138a8SGerd Hoffmann again = ehci_state_advqueue(q); 2038f1ae32a1SGerd Hoffmann break; 2039f1ae32a1SGerd Hoffmann 2040f1ae32a1SGerd Hoffmann case EST_FETCHQTD: 2041cc8d2b65SMarkus Armbruster assert(q != NULL); 2042ae0138a8SGerd Hoffmann again = ehci_state_fetchqtd(q); 2043f1ae32a1SGerd Hoffmann break; 2044f1ae32a1SGerd Hoffmann 2045f1ae32a1SGerd Hoffmann case EST_HORIZONTALQH: 2046cc8d2b65SMarkus Armbruster assert(q != NULL); 2047ae0138a8SGerd Hoffmann again = ehci_state_horizqh(q); 2048f1ae32a1SGerd Hoffmann break; 2049f1ae32a1SGerd Hoffmann 2050f1ae32a1SGerd Hoffmann case EST_EXECUTE: 2051cc8d2b65SMarkus Armbruster assert(q != NULL); 2052ae0138a8SGerd Hoffmann again = ehci_state_execute(q); 20533a215326SGerd Hoffmann if (async) { 20543a215326SGerd Hoffmann ehci->async_stepdown = 0; 20553a215326SGerd Hoffmann } 2056f1ae32a1SGerd Hoffmann break; 2057f1ae32a1SGerd Hoffmann 2058f1ae32a1SGerd Hoffmann case EST_EXECUTING: 2059f1ae32a1SGerd Hoffmann assert(q != NULL); 20603a215326SGerd Hoffmann if (async) { 20613a215326SGerd Hoffmann ehci->async_stepdown = 0; 20623a215326SGerd Hoffmann } 2063ae0138a8SGerd Hoffmann again = ehci_state_executing(q); 2064f1ae32a1SGerd Hoffmann break; 2065f1ae32a1SGerd Hoffmann 2066f1ae32a1SGerd Hoffmann case EST_WRITEBACK: 2067f1ae32a1SGerd Hoffmann assert(q != NULL); 2068ae0138a8SGerd Hoffmann again = ehci_state_writeback(q); 206980826240SHans de Goede if (!async) { 207080826240SHans de Goede ehci->periodic_sched_active = PERIODIC_ACTIVE; 207180826240SHans de Goede } 2072f1ae32a1SGerd Hoffmann break; 2073f1ae32a1SGerd Hoffmann 2074f1ae32a1SGerd Hoffmann default: 2075f1ae32a1SGerd Hoffmann fprintf(stderr, "Bad state!\n"); 2076f1ae32a1SGerd Hoffmann again = -1; 2077dfc6f865SStefan Weil g_assert_not_reached(); 2078f1ae32a1SGerd Hoffmann break; 2079f1ae32a1SGerd Hoffmann } 2080f1ae32a1SGerd Hoffmann 2081f1ae32a1SGerd Hoffmann if (again < 0) { 2082f1ae32a1SGerd Hoffmann fprintf(stderr, "processing error - resetting ehci HC\n"); 2083f1ae32a1SGerd Hoffmann ehci_reset(ehci); 2084f1ae32a1SGerd Hoffmann again = 0; 2085f1ae32a1SGerd Hoffmann } 2086f1ae32a1SGerd Hoffmann } 2087f1ae32a1SGerd Hoffmann while (again); 2088f1ae32a1SGerd Hoffmann } 2089f1ae32a1SGerd Hoffmann 2090f1ae32a1SGerd Hoffmann static void ehci_advance_async_state(EHCIState *ehci) 2091f1ae32a1SGerd Hoffmann { 2092f1ae32a1SGerd Hoffmann const int async = 1; 2093f1ae32a1SGerd Hoffmann 2094f1ae32a1SGerd Hoffmann switch(ehci_get_state(ehci, async)) { 2095f1ae32a1SGerd Hoffmann case EST_INACTIVE: 2096ec807d12SGerd Hoffmann if (!ehci_async_enabled(ehci)) { 2097f1ae32a1SGerd Hoffmann break; 2098f1ae32a1SGerd Hoffmann } 2099f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_ACTIVE); 2100f1ae32a1SGerd Hoffmann // No break, fall through to ACTIVE 2101f1ae32a1SGerd Hoffmann 2102f1ae32a1SGerd Hoffmann case EST_ACTIVE: 2103ec807d12SGerd Hoffmann if (!ehci_async_enabled(ehci)) { 2104f1ae32a1SGerd Hoffmann ehci_queues_rip_all(ehci, async); 2105f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_INACTIVE); 2106f1ae32a1SGerd Hoffmann break; 2107f1ae32a1SGerd Hoffmann } 2108f1ae32a1SGerd Hoffmann 2109f1ae32a1SGerd Hoffmann /* make sure guest has acknowledged the doorbell interrupt */ 2110f1ae32a1SGerd Hoffmann /* TO-DO: is this really needed? */ 2111f1ae32a1SGerd Hoffmann if (ehci->usbsts & USBSTS_IAA) { 2112f1ae32a1SGerd Hoffmann DPRINTF("IAA status bit still set.\n"); 2113f1ae32a1SGerd Hoffmann break; 2114f1ae32a1SGerd Hoffmann } 2115f1ae32a1SGerd Hoffmann 2116f1ae32a1SGerd Hoffmann /* check that address register has been set */ 2117f1ae32a1SGerd Hoffmann if (ehci->asynclistaddr == 0) { 2118f1ae32a1SGerd Hoffmann break; 2119f1ae32a1SGerd Hoffmann } 2120f1ae32a1SGerd Hoffmann 2121f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_WAITLISTHEAD); 2122f1ae32a1SGerd Hoffmann ehci_advance_state(ehci, async); 2123f1ae32a1SGerd Hoffmann 2124f1ae32a1SGerd Hoffmann /* If the doorbell is set, the guest wants to make a change to the 2125f1ae32a1SGerd Hoffmann * schedule. The host controller needs to release cached data. 2126f1ae32a1SGerd Hoffmann * (section 4.8.2) 2127f1ae32a1SGerd Hoffmann */ 2128f1ae32a1SGerd Hoffmann if (ehci->usbcmd & USBCMD_IAAD) { 2129f1ae32a1SGerd Hoffmann /* Remove all unseen qhs from the async qhs queue */ 21308f5457ebSHans de Goede ehci_queues_rip_unseen(ehci, async); 21311defcbd1SGerd Hoffmann trace_usb_ehci_doorbell_ack(); 2132f1ae32a1SGerd Hoffmann ehci->usbcmd &= ~USBCMD_IAAD; 21337efc17afSGerd Hoffmann ehci_raise_irq(ehci, USBSTS_IAA); 2134f1ae32a1SGerd Hoffmann } 2135f1ae32a1SGerd Hoffmann break; 2136f1ae32a1SGerd Hoffmann 2137f1ae32a1SGerd Hoffmann default: 2138f1ae32a1SGerd Hoffmann /* this should only be due to a developer mistake */ 2139f1ae32a1SGerd Hoffmann fprintf(stderr, "ehci: Bad asynchronous state %d. " 2140f1ae32a1SGerd Hoffmann "Resetting to active\n", ehci->astate); 2141dfc6f865SStefan Weil g_assert_not_reached(); 2142f1ae32a1SGerd Hoffmann } 2143f1ae32a1SGerd Hoffmann } 2144f1ae32a1SGerd Hoffmann 2145f1ae32a1SGerd Hoffmann static void ehci_advance_periodic_state(EHCIState *ehci) 2146f1ae32a1SGerd Hoffmann { 2147f1ae32a1SGerd Hoffmann uint32_t entry; 2148f1ae32a1SGerd Hoffmann uint32_t list; 2149f1ae32a1SGerd Hoffmann const int async = 0; 2150f1ae32a1SGerd Hoffmann 2151f1ae32a1SGerd Hoffmann // 4.6 2152f1ae32a1SGerd Hoffmann 2153f1ae32a1SGerd Hoffmann switch(ehci_get_state(ehci, async)) { 2154f1ae32a1SGerd Hoffmann case EST_INACTIVE: 2155ec807d12SGerd Hoffmann if (!(ehci->frindex & 7) && ehci_periodic_enabled(ehci)) { 2156f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_ACTIVE); 2157f1ae32a1SGerd Hoffmann // No break, fall through to ACTIVE 2158f1ae32a1SGerd Hoffmann } else 2159f1ae32a1SGerd Hoffmann break; 2160f1ae32a1SGerd Hoffmann 2161f1ae32a1SGerd Hoffmann case EST_ACTIVE: 2162ec807d12SGerd Hoffmann if (!(ehci->frindex & 7) && !ehci_periodic_enabled(ehci)) { 2163f1ae32a1SGerd Hoffmann ehci_queues_rip_all(ehci, async); 2164f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_INACTIVE); 2165f1ae32a1SGerd Hoffmann break; 2166f1ae32a1SGerd Hoffmann } 2167f1ae32a1SGerd Hoffmann 2168f1ae32a1SGerd Hoffmann list = ehci->periodiclistbase & 0xfffff000; 2169f1ae32a1SGerd Hoffmann /* check that register has been set */ 2170f1ae32a1SGerd Hoffmann if (list == 0) { 2171f1ae32a1SGerd Hoffmann break; 2172f1ae32a1SGerd Hoffmann } 2173f1ae32a1SGerd Hoffmann list |= ((ehci->frindex & 0x1ff8) >> 1); 2174f1ae32a1SGerd Hoffmann 217555903f1dSGerd Hoffmann if (get_dwords(ehci, list, &entry, 1) < 0) { 217655903f1dSGerd Hoffmann break; 217755903f1dSGerd Hoffmann } 2178f1ae32a1SGerd Hoffmann 2179f1ae32a1SGerd Hoffmann DPRINTF("PERIODIC state adv fr=%d. [%08X] -> %08X\n", 2180f1ae32a1SGerd Hoffmann ehci->frindex / 8, list, entry); 2181f1ae32a1SGerd Hoffmann ehci_set_fetch_addr(ehci, async,entry); 2182f1ae32a1SGerd Hoffmann ehci_set_state(ehci, async, EST_FETCHENTRY); 2183f1ae32a1SGerd Hoffmann ehci_advance_state(ehci, async); 21848f5457ebSHans de Goede ehci_queues_rip_unused(ehci, async); 2185f1ae32a1SGerd Hoffmann break; 2186f1ae32a1SGerd Hoffmann 2187f1ae32a1SGerd Hoffmann default: 2188f1ae32a1SGerd Hoffmann /* this should only be due to a developer mistake */ 2189f1ae32a1SGerd Hoffmann fprintf(stderr, "ehci: Bad periodic state %d. " 2190f1ae32a1SGerd Hoffmann "Resetting to active\n", ehci->pstate); 2191dfc6f865SStefan Weil g_assert_not_reached(); 2192f1ae32a1SGerd Hoffmann } 2193f1ae32a1SGerd Hoffmann } 2194f1ae32a1SGerd Hoffmann 21959359a58bSHans de Goede static void ehci_update_frindex(EHCIState *ehci, int uframes) 21966ceced0bSGerd Hoffmann { 21976ceced0bSGerd Hoffmann int i; 21986ceced0bSGerd Hoffmann 21999359a58bSHans de Goede if (!ehci_enabled(ehci) && ehci->pstate == EST_INACTIVE) { 22006ceced0bSGerd Hoffmann return; 22016ceced0bSGerd Hoffmann } 22026ceced0bSGerd Hoffmann 22039359a58bSHans de Goede for (i = 0; i < uframes; i++) { 22049359a58bSHans de Goede ehci->frindex++; 22056ceced0bSGerd Hoffmann 22066ceced0bSGerd Hoffmann if (ehci->frindex == 0x00002000) { 22077efc17afSGerd Hoffmann ehci_raise_irq(ehci, USBSTS_FLR); 22086ceced0bSGerd Hoffmann } 22096ceced0bSGerd Hoffmann 22106ceced0bSGerd Hoffmann if (ehci->frindex == 0x00004000) { 22117efc17afSGerd Hoffmann ehci_raise_irq(ehci, USBSTS_FLR); 22126ceced0bSGerd Hoffmann ehci->frindex = 0; 2213ffa1f2e0SHans de Goede if (ehci->usbsts_frindex >= 0x00004000) { 22147efc17afSGerd Hoffmann ehci->usbsts_frindex -= 0x00004000; 22157efc17afSGerd Hoffmann } else { 22167efc17afSGerd Hoffmann ehci->usbsts_frindex = 0; 22177efc17afSGerd Hoffmann } 22186ceced0bSGerd Hoffmann } 22196ceced0bSGerd Hoffmann } 22206ceced0bSGerd Hoffmann } 22216ceced0bSGerd Hoffmann 2222f1ae32a1SGerd Hoffmann static void ehci_frame_timer(void *opaque) 2223f1ae32a1SGerd Hoffmann { 2224f1ae32a1SGerd Hoffmann EHCIState *ehci = opaque; 22257efc17afSGerd Hoffmann int need_timer = 0; 2226f1ae32a1SGerd Hoffmann int64_t expire_time, t_now; 2227f1ae32a1SGerd Hoffmann uint64_t ns_elapsed; 22289359a58bSHans de Goede int uframes, skipped_uframes; 2229f1ae32a1SGerd Hoffmann int i; 2230f1ae32a1SGerd Hoffmann 2231bc72ad67SAlex Bligh t_now = qemu_clock_get_ns(QEMU_CLOCK_VIRTUAL); 2232f1ae32a1SGerd Hoffmann ns_elapsed = t_now - ehci->last_run_ns; 22339359a58bSHans de Goede uframes = ns_elapsed / UFRAME_TIMER_NS; 2234f1ae32a1SGerd Hoffmann 22353a215326SGerd Hoffmann if (ehci_periodic_enabled(ehci) || ehci->pstate != EST_INACTIVE) { 22367efc17afSGerd Hoffmann need_timer++; 22373a215326SGerd Hoffmann 22389359a58bSHans de Goede if (uframes > (ehci->maxframes * 8)) { 22399359a58bSHans de Goede skipped_uframes = uframes - (ehci->maxframes * 8); 22409359a58bSHans de Goede ehci_update_frindex(ehci, skipped_uframes); 22419359a58bSHans de Goede ehci->last_run_ns += UFRAME_TIMER_NS * skipped_uframes; 22429359a58bSHans de Goede uframes -= skipped_uframes; 22439359a58bSHans de Goede DPRINTF("WARNING - EHCI skipped %d uframes\n", skipped_uframes); 2244f1ae32a1SGerd Hoffmann } 2245f1ae32a1SGerd Hoffmann 22469359a58bSHans de Goede for (i = 0; i < uframes; i++) { 22478f74ed1eSHans de Goede /* 22488f74ed1eSHans de Goede * If we're running behind schedule, we should not catch up 22498f74ed1eSHans de Goede * too fast, as that will make some guests unhappy: 22509359a58bSHans de Goede * 1) We must process a minimum of MIN_UFR_PER_TICK frames, 22518f74ed1eSHans de Goede * otherwise we will never catch up 22528f74ed1eSHans de Goede * 2) Process frames until the guest has requested an irq (IOC) 22538f74ed1eSHans de Goede */ 22549359a58bSHans de Goede if (i >= MIN_UFR_PER_TICK) { 22558f74ed1eSHans de Goede ehci_commit_irq(ehci); 22568f74ed1eSHans de Goede if ((ehci->usbsts & USBINTR_MASK) & ehci->usbintr) { 22578f74ed1eSHans de Goede break; 22588f74ed1eSHans de Goede } 22598f74ed1eSHans de Goede } 226080826240SHans de Goede if (ehci->periodic_sched_active) { 226180826240SHans de Goede ehci->periodic_sched_active--; 226280826240SHans de Goede } 2263f020ed36SGerd Hoffmann ehci_update_frindex(ehci, 1); 22649359a58bSHans de Goede if ((ehci->frindex & 7) == 0) { 2265f020ed36SGerd Hoffmann ehci_advance_periodic_state(ehci); 22669359a58bSHans de Goede } 22679359a58bSHans de Goede ehci->last_run_ns += UFRAME_TIMER_NS; 2268f1ae32a1SGerd Hoffmann } 22693a215326SGerd Hoffmann } else { 227080826240SHans de Goede ehci->periodic_sched_active = 0; 22719359a58bSHans de Goede ehci_update_frindex(ehci, uframes); 22729359a58bSHans de Goede ehci->last_run_ns += UFRAME_TIMER_NS * uframes; 22733a215326SGerd Hoffmann } 2274f1ae32a1SGerd Hoffmann 227580826240SHans de Goede if (ehci->periodic_sched_active) { 227680826240SHans de Goede ehci->async_stepdown = 0; 227780826240SHans de Goede } else if (ehci->async_stepdown < ehci->maxframes / 2) { 227880826240SHans de Goede ehci->async_stepdown++; 227980826240SHans de Goede } 228080826240SHans de Goede 2281f1ae32a1SGerd Hoffmann /* Async is not inside loop since it executes everything it can once 2282f1ae32a1SGerd Hoffmann * called 2283f1ae32a1SGerd Hoffmann */ 22843a215326SGerd Hoffmann if (ehci_async_enabled(ehci) || ehci->astate != EST_INACTIVE) { 22857efc17afSGerd Hoffmann need_timer++; 2286afb7a0b8SGerd Hoffmann ehci_advance_async_state(ehci); 22873a215326SGerd Hoffmann } 2288f1ae32a1SGerd Hoffmann 22897efc17afSGerd Hoffmann ehci_commit_irq(ehci); 22907efc17afSGerd Hoffmann if (ehci->usbsts_pending) { 22917efc17afSGerd Hoffmann need_timer++; 22927efc17afSGerd Hoffmann ehci->async_stepdown = 0; 2293f1ae32a1SGerd Hoffmann } 2294f0ad01f9SGerd Hoffmann 229540862309SGerd Hoffmann if (ehci_enabled(ehci) && (ehci->usbintr & USBSTS_FLR)) { 229640862309SGerd Hoffmann need_timer++; 229740862309SGerd Hoffmann } 229840862309SGerd Hoffmann 22997efc17afSGerd Hoffmann if (need_timer) { 230044272b0fSHans de Goede /* If we've raised int, we speed up the timer, so that we quickly 230144272b0fSHans de Goede * notice any new packets queued up in response */ 230244272b0fSHans de Goede if (ehci->int_req_by_async && (ehci->usbsts & USBSTS_INT)) { 230352c15e59SHans de Goede expire_time = t_now + get_ticks_per_sec() / (FRAME_TIMER_FREQ * 4); 230444272b0fSHans de Goede ehci->int_req_by_async = false; 230544272b0fSHans de Goede } else { 2306afb7a0b8SGerd Hoffmann expire_time = t_now + (get_ticks_per_sec() 2307afb7a0b8SGerd Hoffmann * (ehci->async_stepdown+1) / FRAME_TIMER_FREQ); 230844272b0fSHans de Goede } 2309bc72ad67SAlex Bligh timer_mod(ehci->frame_timer, expire_time); 23107efc17afSGerd Hoffmann } 2311daf25307SGerd Hoffmann } 2312f1ae32a1SGerd Hoffmann 23133e4f910cSGerd Hoffmann static const MemoryRegionOps ehci_mmio_caps_ops = { 23143e4f910cSGerd Hoffmann .read = ehci_caps_read, 23153e4f910cSGerd Hoffmann .valid.min_access_size = 1, 23163e4f910cSGerd Hoffmann .valid.max_access_size = 4, 23173e4f910cSGerd Hoffmann .impl.min_access_size = 1, 23183e4f910cSGerd Hoffmann .impl.max_access_size = 1, 23193e4f910cSGerd Hoffmann .endianness = DEVICE_LITTLE_ENDIAN, 23203e4f910cSGerd Hoffmann }; 23213e4f910cSGerd Hoffmann 23223e4f910cSGerd Hoffmann static const MemoryRegionOps ehci_mmio_opreg_ops = { 23233e4f910cSGerd Hoffmann .read = ehci_opreg_read, 23243e4f910cSGerd Hoffmann .write = ehci_opreg_write, 23253e4f910cSGerd Hoffmann .valid.min_access_size = 4, 23263e4f910cSGerd Hoffmann .valid.max_access_size = 4, 23273e4f910cSGerd Hoffmann .endianness = DEVICE_LITTLE_ENDIAN, 23283e4f910cSGerd Hoffmann }; 23293e4f910cSGerd Hoffmann 23303e4f910cSGerd Hoffmann static const MemoryRegionOps ehci_mmio_port_ops = { 23313e4f910cSGerd Hoffmann .read = ehci_port_read, 23323e4f910cSGerd Hoffmann .write = ehci_port_write, 23333e4f910cSGerd Hoffmann .valid.min_access_size = 4, 23343e4f910cSGerd Hoffmann .valid.max_access_size = 4, 2335f1ae32a1SGerd Hoffmann .endianness = DEVICE_LITTLE_ENDIAN, 2336f1ae32a1SGerd Hoffmann }; 2337f1ae32a1SGerd Hoffmann 2338f1ae32a1SGerd Hoffmann static USBPortOps ehci_port_ops = { 2339f1ae32a1SGerd Hoffmann .attach = ehci_attach, 2340f1ae32a1SGerd Hoffmann .detach = ehci_detach, 2341f1ae32a1SGerd Hoffmann .child_detach = ehci_child_detach, 2342f1ae32a1SGerd Hoffmann .wakeup = ehci_wakeup, 2343f1ae32a1SGerd Hoffmann .complete = ehci_async_complete_packet, 2344f1ae32a1SGerd Hoffmann }; 2345f1ae32a1SGerd Hoffmann 2346ec56214fSGerd Hoffmann static USBBusOps ehci_bus_ops_companion = { 2347f1ae32a1SGerd Hoffmann .register_companion = ehci_register_companion, 234880826240SHans de Goede .wakeup_endpoint = ehci_wakeup_endpoint, 2349f1ae32a1SGerd Hoffmann }; 2350ec56214fSGerd Hoffmann static USBBusOps ehci_bus_ops_standalone = { 2351ec56214fSGerd Hoffmann .wakeup_endpoint = ehci_wakeup_endpoint, 2352ec56214fSGerd Hoffmann }; 2353f1ae32a1SGerd Hoffmann 23549359a58bSHans de Goede static void usb_ehci_pre_save(void *opaque) 23559359a58bSHans de Goede { 23569359a58bSHans de Goede EHCIState *ehci = opaque; 23579359a58bSHans de Goede uint32_t new_frindex; 23589359a58bSHans de Goede 23599359a58bSHans de Goede /* Round down frindex to a multiple of 8 for migration compatibility */ 23609359a58bSHans de Goede new_frindex = ehci->frindex & ~7; 23619359a58bSHans de Goede ehci->last_run_ns -= (ehci->frindex - new_frindex) * UFRAME_TIMER_NS; 23629359a58bSHans de Goede ehci->frindex = new_frindex; 23639359a58bSHans de Goede } 23649359a58bSHans de Goede 23659a773408SGerd Hoffmann static int usb_ehci_post_load(void *opaque, int version_id) 23669a773408SGerd Hoffmann { 23679a773408SGerd Hoffmann EHCIState *s = opaque; 23689a773408SGerd Hoffmann int i; 23699a773408SGerd Hoffmann 23709a773408SGerd Hoffmann for (i = 0; i < NB_PORTS; i++) { 23719a773408SGerd Hoffmann USBPort *companion = s->companion_ports[i]; 23729a773408SGerd Hoffmann if (companion == NULL) { 23739a773408SGerd Hoffmann continue; 23749a773408SGerd Hoffmann } 23759a773408SGerd Hoffmann if (s->portsc[i] & PORTSC_POWNER) { 23769a773408SGerd Hoffmann companion->dev = s->ports[i].dev; 23779a773408SGerd Hoffmann } else { 23789a773408SGerd Hoffmann companion->dev = NULL; 23799a773408SGerd Hoffmann } 23809a773408SGerd Hoffmann } 23819a773408SGerd Hoffmann 23829a773408SGerd Hoffmann return 0; 23839a773408SGerd Hoffmann } 23849a773408SGerd Hoffmann 2385ceab6f96SHans de Goede static void usb_ehci_vm_state_change(void *opaque, int running, RunState state) 2386ceab6f96SHans de Goede { 2387ceab6f96SHans de Goede EHCIState *ehci = opaque; 2388ceab6f96SHans de Goede 2389ceab6f96SHans de Goede /* 2390ceab6f96SHans de Goede * We don't migrate the EHCIQueue-s, instead we rebuild them for the 2391ceab6f96SHans de Goede * schedule in guest memory. We must do the rebuilt ASAP, so that 2392ceab6f96SHans de Goede * USB-devices which have async handled packages have a packet in the 2393ceab6f96SHans de Goede * ep queue to match the completion with. 2394ceab6f96SHans de Goede */ 2395ceab6f96SHans de Goede if (state == RUN_STATE_RUNNING) { 2396ceab6f96SHans de Goede ehci_advance_async_state(ehci); 2397ceab6f96SHans de Goede } 2398ceab6f96SHans de Goede 2399ceab6f96SHans de Goede /* 2400ceab6f96SHans de Goede * The schedule rebuilt from guest memory could cause the migration dest 2401ceab6f96SHans de Goede * to miss a QH unlink, and fail to cancel packets, since the unlinked QH 2402ceab6f96SHans de Goede * will never have existed on the destination. Therefor we must flush the 2403ceab6f96SHans de Goede * async schedule on savevm to catch any not yet noticed unlinks. 2404ceab6f96SHans de Goede */ 2405ceab6f96SHans de Goede if (state == RUN_STATE_SAVE_VM) { 2406ceab6f96SHans de Goede ehci_advance_async_state(ehci); 2407ceab6f96SHans de Goede ehci_queues_rip_unseen(ehci, 1); 2408ceab6f96SHans de Goede } 2409ceab6f96SHans de Goede } 2410ceab6f96SHans de Goede 24110bf96f94SGerd Hoffmann const VMStateDescription vmstate_ehci = { 24125010d4dcSPeter Crosthwaite .name = "ehci-core", 24136d3b6d3dSGerd Hoffmann .version_id = 2, 24146d3b6d3dSGerd Hoffmann .minimum_version_id = 1, 24159359a58bSHans de Goede .pre_save = usb_ehci_pre_save, 24169a773408SGerd Hoffmann .post_load = usb_ehci_post_load, 24179a773408SGerd Hoffmann .fields = (VMStateField[]) { 24189a773408SGerd Hoffmann /* mmio registers */ 24199a773408SGerd Hoffmann VMSTATE_UINT32(usbcmd, EHCIState), 24209a773408SGerd Hoffmann VMSTATE_UINT32(usbsts, EHCIState), 24216d3b6d3dSGerd Hoffmann VMSTATE_UINT32_V(usbsts_pending, EHCIState, 2), 24226d3b6d3dSGerd Hoffmann VMSTATE_UINT32_V(usbsts_frindex, EHCIState, 2), 24239a773408SGerd Hoffmann VMSTATE_UINT32(usbintr, EHCIState), 24249a773408SGerd Hoffmann VMSTATE_UINT32(frindex, EHCIState), 24259a773408SGerd Hoffmann VMSTATE_UINT32(ctrldssegment, EHCIState), 24269a773408SGerd Hoffmann VMSTATE_UINT32(periodiclistbase, EHCIState), 24279a773408SGerd Hoffmann VMSTATE_UINT32(asynclistaddr, EHCIState), 24289a773408SGerd Hoffmann VMSTATE_UINT32(configflag, EHCIState), 24299a773408SGerd Hoffmann VMSTATE_UINT32(portsc[0], EHCIState), 24309a773408SGerd Hoffmann VMSTATE_UINT32(portsc[1], EHCIState), 24319a773408SGerd Hoffmann VMSTATE_UINT32(portsc[2], EHCIState), 24329a773408SGerd Hoffmann VMSTATE_UINT32(portsc[3], EHCIState), 24339a773408SGerd Hoffmann VMSTATE_UINT32(portsc[4], EHCIState), 24349a773408SGerd Hoffmann VMSTATE_UINT32(portsc[5], EHCIState), 24359a773408SGerd Hoffmann /* frame timer */ 2436e720677eSPaolo Bonzini VMSTATE_TIMER_PTR(frame_timer, EHCIState), 24379a773408SGerd Hoffmann VMSTATE_UINT64(last_run_ns, EHCIState), 24389a773408SGerd Hoffmann VMSTATE_UINT32(async_stepdown, EHCIState), 24399a773408SGerd Hoffmann /* schedule state */ 24409a773408SGerd Hoffmann VMSTATE_UINT32(astate, EHCIState), 24419a773408SGerd Hoffmann VMSTATE_UINT32(pstate, EHCIState), 24429a773408SGerd Hoffmann VMSTATE_UINT32(a_fetch_addr, EHCIState), 24439a773408SGerd Hoffmann VMSTATE_UINT32(p_fetch_addr, EHCIState), 24449a773408SGerd Hoffmann VMSTATE_END_OF_LIST() 24459a773408SGerd Hoffmann } 2446f1ae32a1SGerd Hoffmann }; 2447f1ae32a1SGerd Hoffmann 244808f4c90bSAndreas Färber void usb_ehci_realize(EHCIState *s, DeviceState *dev, Error **errp) 2449f1ae32a1SGerd Hoffmann { 2450f1ae32a1SGerd Hoffmann int i; 2451f1ae32a1SGerd Hoffmann 2452cc8d6a84SKuo-Jung Su if (s->portnr > NB_PORTS) { 2453cc8d6a84SKuo-Jung Su error_setg(errp, "Too many ports! Max. port number is %d.", 2454cc8d6a84SKuo-Jung Su NB_PORTS); 2455cc8d6a84SKuo-Jung Su return; 2456cc8d6a84SKuo-Jung Su } 2457cc8d6a84SKuo-Jung Su 2458ec56214fSGerd Hoffmann usb_bus_new(&s->bus, sizeof(s->bus), s->companion_enable ? 2459ec56214fSGerd Hoffmann &ehci_bus_ops_companion : &ehci_bus_ops_standalone, dev); 2460cc8d6a84SKuo-Jung Su for (i = 0; i < s->portnr; i++) { 2461d4614cc3SAndreas Färber usb_register_port(&s->bus, &s->ports[i], s, i, &ehci_port_ops, 2462d4614cc3SAndreas Färber USB_SPEED_MASK_HIGH); 2463d4614cc3SAndreas Färber s->ports[i].dev = 0; 2464d4614cc3SAndreas Färber } 2465d4614cc3SAndreas Färber 2466bc72ad67SAlex Bligh s->frame_timer = timer_new_ns(QEMU_CLOCK_VIRTUAL, ehci_frame_timer, s); 2467d4614cc3SAndreas Färber s->async_bh = qemu_bh_new(ehci_frame_timer, s); 2468adbecc89SGerd Hoffmann s->device = dev; 2469d4614cc3SAndreas Färber 247005a36991SGonglei s->vmstate = qemu_add_vm_change_state_handler(usb_ehci_vm_state_change, s); 2471d4614cc3SAndreas Färber } 2472d4614cc3SAndreas Färber 24734e130cf6SGonglei void usb_ehci_unrealize(EHCIState *s, DeviceState *dev, Error **errp) 24744e130cf6SGonglei { 2475d733f74cSGonglei trace_usb_ehci_unrealize(); 2476d733f74cSGonglei 24774e130cf6SGonglei if (s->frame_timer) { 24784e130cf6SGonglei timer_del(s->frame_timer); 24794e130cf6SGonglei timer_free(s->frame_timer); 24804e130cf6SGonglei s->frame_timer = NULL; 24814e130cf6SGonglei } 24824e130cf6SGonglei if (s->async_bh) { 24834e130cf6SGonglei qemu_bh_delete(s->async_bh); 24844e130cf6SGonglei } 24854e130cf6SGonglei 24864e130cf6SGonglei ehci_queues_rip_all(s, 0); 24874e130cf6SGonglei ehci_queues_rip_all(s, 1); 24884e130cf6SGonglei 24894e130cf6SGonglei memory_region_del_subregion(&s->mem, &s->mem_caps); 24904e130cf6SGonglei memory_region_del_subregion(&s->mem, &s->mem_opreg); 24914e130cf6SGonglei memory_region_del_subregion(&s->mem, &s->mem_ports); 24924e130cf6SGonglei 24934e130cf6SGonglei usb_bus_release(&s->bus); 24944e130cf6SGonglei 24954e130cf6SGonglei if (s->vmstate) { 24964e130cf6SGonglei qemu_del_vm_change_state_handler(s->vmstate); 24974e130cf6SGonglei } 24984e130cf6SGonglei } 24994e130cf6SGonglei 2500d4614cc3SAndreas Färber void usb_ehci_init(EHCIState *s, DeviceState *dev) 2501d4614cc3SAndreas Färber { 25023e4f910cSGerd Hoffmann /* 2.2 host controller interface version */ 250327a11324SPeter Crosthwaite s->caps[0x00] = (uint8_t)(s->opregbase - s->capsbase); 25043e4f910cSGerd Hoffmann s->caps[0x01] = 0x00; 25053e4f910cSGerd Hoffmann s->caps[0x02] = 0x00; 25063e4f910cSGerd Hoffmann s->caps[0x03] = 0x01; /* HC version */ 2507cc8d6a84SKuo-Jung Su s->caps[0x04] = s->portnr; /* Number of downstream ports */ 25083e4f910cSGerd Hoffmann s->caps[0x05] = 0x00; /* No companion ports at present */ 25093e4f910cSGerd Hoffmann s->caps[0x06] = 0x00; 25103e4f910cSGerd Hoffmann s->caps[0x07] = 0x00; 25113e4f910cSGerd Hoffmann s->caps[0x08] = 0x80; /* We can cache whole frame, no 64-bit */ 25123e4f910cSGerd Hoffmann s->caps[0x0a] = 0x00; 25133e4f910cSGerd Hoffmann s->caps[0x0b] = 0x00; 2514f1ae32a1SGerd Hoffmann 2515f1ae32a1SGerd Hoffmann QTAILQ_INIT(&s->aqueues); 2516f1ae32a1SGerd Hoffmann QTAILQ_INIT(&s->pqueues); 25177341ea07SHans de Goede usb_packet_init(&s->ipacket); 2518f1ae32a1SGerd Hoffmann 251922fc860bSPaolo Bonzini memory_region_init(&s->mem, OBJECT(dev), "ehci", MMIO_SIZE); 252022fc860bSPaolo Bonzini memory_region_init_io(&s->mem_caps, OBJECT(dev), &ehci_mmio_caps_ops, s, 252127a11324SPeter Crosthwaite "capabilities", CAPA_SIZE); 252222fc860bSPaolo Bonzini memory_region_init_io(&s->mem_opreg, OBJECT(dev), &ehci_mmio_opreg_ops, s, 2523cc8d6a84SKuo-Jung Su "operational", s->portscbase); 252422fc860bSPaolo Bonzini memory_region_init_io(&s->mem_ports, OBJECT(dev), &ehci_mmio_port_ops, s, 2525cc8d6a84SKuo-Jung Su "ports", 4 * s->portnr); 25263e4f910cSGerd Hoffmann 252727a11324SPeter Crosthwaite memory_region_add_subregion(&s->mem, s->capsbase, &s->mem_caps); 252827a11324SPeter Crosthwaite memory_region_add_subregion(&s->mem, s->opregbase, &s->mem_opreg); 2529cc8d6a84SKuo-Jung Su memory_region_add_subregion(&s->mem, s->opregbase + s->portscbase, 253027a11324SPeter Crosthwaite &s->mem_ports); 25315010d4dcSPeter Crosthwaite } 25323e4f910cSGerd Hoffmann 2533f1ae32a1SGerd Hoffmann /* 2534f1ae32a1SGerd Hoffmann * vim: expandtab ts=4 2535f1ae32a1SGerd Hoffmann */ 2536