1*376b8519SHelge Deller /* 2*376b8519SHelge Deller * QEMU Intel i82596 (Apricot) emulation 3*376b8519SHelge Deller * 4*376b8519SHelge Deller * Copyright (c) 2019 Helge Deller <deller@gmx.de> 5*376b8519SHelge Deller * This work is licensed under the GNU GPL license version 2 or later. 6*376b8519SHelge Deller * 7*376b8519SHelge Deller * This software was written to be compatible with the specification: 8*376b8519SHelge Deller * https://www.intel.com/assets/pdf/general/82596ca.pdf 9*376b8519SHelge Deller */ 10*376b8519SHelge Deller 11*376b8519SHelge Deller #include "qemu/osdep.h" 12*376b8519SHelge Deller #include "qemu/timer.h" 13*376b8519SHelge Deller #include "net/net.h" 14*376b8519SHelge Deller #include "net/eth.h" 15*376b8519SHelge Deller #include "sysemu/sysemu.h" 16*376b8519SHelge Deller #include "hw/irq.h" 17*376b8519SHelge Deller #include "hw/qdev-properties.h" 18*376b8519SHelge Deller #include "migration/vmstate.h" 19*376b8519SHelge Deller #include "qemu/module.h" 20*376b8519SHelge Deller #include "trace.h" 21*376b8519SHelge Deller #include "i82596.h" 22*376b8519SHelge Deller #include <zlib.h> /* For crc32 */ 23*376b8519SHelge Deller 24*376b8519SHelge Deller #if defined(ENABLE_DEBUG) 25*376b8519SHelge Deller #define DBG(x) x 26*376b8519SHelge Deller #else 27*376b8519SHelge Deller #define DBG(x) do { } while (0) 28*376b8519SHelge Deller #endif 29*376b8519SHelge Deller 30*376b8519SHelge Deller #define USE_TIMER 0 31*376b8519SHelge Deller 32*376b8519SHelge Deller #define BITS(n, m) (((0xffffffffU << (31 - n)) >> (31 - n + m)) << m) 33*376b8519SHelge Deller 34*376b8519SHelge Deller #define PKT_BUF_SZ 1536 35*376b8519SHelge Deller #define MAX_MC_CNT 64 36*376b8519SHelge Deller 37*376b8519SHelge Deller #define ISCP_BUSY 0x0001 38*376b8519SHelge Deller 39*376b8519SHelge Deller #define I596_NULL ((uint32_t)0xffffffff) 40*376b8519SHelge Deller 41*376b8519SHelge Deller #define SCB_STATUS_CX 0x8000 /* CU finished command with I bit */ 42*376b8519SHelge Deller #define SCB_STATUS_FR 0x4000 /* RU finished receiving a frame */ 43*376b8519SHelge Deller #define SCB_STATUS_CNA 0x2000 /* CU left active state */ 44*376b8519SHelge Deller #define SCB_STATUS_RNR 0x1000 /* RU left active state */ 45*376b8519SHelge Deller 46*376b8519SHelge Deller #define CU_IDLE 0 47*376b8519SHelge Deller #define CU_SUSPENDED 1 48*376b8519SHelge Deller #define CU_ACTIVE 2 49*376b8519SHelge Deller 50*376b8519SHelge Deller #define RX_IDLE 0 51*376b8519SHelge Deller #define RX_SUSPENDED 1 52*376b8519SHelge Deller #define RX_READY 4 53*376b8519SHelge Deller 54*376b8519SHelge Deller #define CMD_EOL 0x8000 /* The last command of the list, stop. */ 55*376b8519SHelge Deller #define CMD_SUSP 0x4000 /* Suspend after doing cmd. */ 56*376b8519SHelge Deller #define CMD_INTR 0x2000 /* Interrupt after doing cmd. */ 57*376b8519SHelge Deller 58*376b8519SHelge Deller #define CMD_FLEX 0x0008 /* Enable flexible memory model */ 59*376b8519SHelge Deller 60*376b8519SHelge Deller enum commands { 61*376b8519SHelge Deller CmdNOp = 0, CmdSASetup = 1, CmdConfigure = 2, CmdMulticastList = 3, 62*376b8519SHelge Deller CmdTx = 4, CmdTDR = 5, CmdDump = 6, CmdDiagnose = 7 63*376b8519SHelge Deller }; 64*376b8519SHelge Deller 65*376b8519SHelge Deller #define STAT_C 0x8000 /* Set to 0 after execution */ 66*376b8519SHelge Deller #define STAT_B 0x4000 /* Command being executed */ 67*376b8519SHelge Deller #define STAT_OK 0x2000 /* Command executed ok */ 68*376b8519SHelge Deller #define STAT_A 0x1000 /* Command aborted */ 69*376b8519SHelge Deller 70*376b8519SHelge Deller #define I596_EOF 0x8000 71*376b8519SHelge Deller #define SIZE_MASK 0x3fff 72*376b8519SHelge Deller 73*376b8519SHelge Deller #define ETHER_TYPE_LEN 2 74*376b8519SHelge Deller #define VLAN_TCI_LEN 2 75*376b8519SHelge Deller #define VLAN_HLEN (ETHER_TYPE_LEN + VLAN_TCI_LEN) 76*376b8519SHelge Deller 77*376b8519SHelge Deller /* various flags in the chip config registers */ 78*376b8519SHelge Deller #define I596_PREFETCH (s->config[0] & 0x80) 79*376b8519SHelge Deller #define I596_PROMISC (s->config[8] & 0x01) 80*376b8519SHelge Deller #define I596_BC_DISABLE (s->config[8] & 0x02) /* broadcast disable */ 81*376b8519SHelge Deller #define I596_NOCRC_INS (s->config[8] & 0x08) 82*376b8519SHelge Deller #define I596_CRCINM (s->config[11] & 0x04) /* CRC appended */ 83*376b8519SHelge Deller #define I596_MC_ALL (s->config[11] & 0x20) 84*376b8519SHelge Deller #define I596_MULTIIA (s->config[13] & 0x40) 85*376b8519SHelge Deller 86*376b8519SHelge Deller 87*376b8519SHelge Deller static uint8_t get_byte(uint32_t addr) 88*376b8519SHelge Deller { 89*376b8519SHelge Deller return ldub_phys(&address_space_memory, addr); 90*376b8519SHelge Deller } 91*376b8519SHelge Deller 92*376b8519SHelge Deller static void set_byte(uint32_t addr, uint8_t c) 93*376b8519SHelge Deller { 94*376b8519SHelge Deller return stb_phys(&address_space_memory, addr, c); 95*376b8519SHelge Deller } 96*376b8519SHelge Deller 97*376b8519SHelge Deller static uint16_t get_uint16(uint32_t addr) 98*376b8519SHelge Deller { 99*376b8519SHelge Deller return lduw_be_phys(&address_space_memory, addr); 100*376b8519SHelge Deller } 101*376b8519SHelge Deller 102*376b8519SHelge Deller static void set_uint16(uint32_t addr, uint16_t w) 103*376b8519SHelge Deller { 104*376b8519SHelge Deller return stw_be_phys(&address_space_memory, addr, w); 105*376b8519SHelge Deller } 106*376b8519SHelge Deller 107*376b8519SHelge Deller static uint32_t get_uint32(uint32_t addr) 108*376b8519SHelge Deller { 109*376b8519SHelge Deller uint32_t lo = lduw_be_phys(&address_space_memory, addr); 110*376b8519SHelge Deller uint32_t hi = lduw_be_phys(&address_space_memory, addr + 2); 111*376b8519SHelge Deller return (hi << 16) | lo; 112*376b8519SHelge Deller } 113*376b8519SHelge Deller 114*376b8519SHelge Deller static void set_uint32(uint32_t addr, uint32_t val) 115*376b8519SHelge Deller { 116*376b8519SHelge Deller set_uint16(addr, (uint16_t) val); 117*376b8519SHelge Deller set_uint16(addr + 2, val >> 16); 118*376b8519SHelge Deller } 119*376b8519SHelge Deller 120*376b8519SHelge Deller 121*376b8519SHelge Deller struct qemu_ether_header { 122*376b8519SHelge Deller uint8_t ether_dhost[6]; 123*376b8519SHelge Deller uint8_t ether_shost[6]; 124*376b8519SHelge Deller uint16_t ether_type; 125*376b8519SHelge Deller }; 126*376b8519SHelge Deller 127*376b8519SHelge Deller #define PRINT_PKTHDR(txt, BUF) do { \ 128*376b8519SHelge Deller struct qemu_ether_header *hdr = (void *)(BUF); \ 129*376b8519SHelge Deller printf(txt ": packet dhost=" MAC_FMT ", shost=" MAC_FMT ", type=0x%04x\n",\ 130*376b8519SHelge Deller MAC_ARG(hdr->ether_dhost), MAC_ARG(hdr->ether_shost), \ 131*376b8519SHelge Deller be16_to_cpu(hdr->ether_type)); \ 132*376b8519SHelge Deller } while (0) 133*376b8519SHelge Deller 134*376b8519SHelge Deller static void i82596_transmit(I82596State *s, uint32_t addr) 135*376b8519SHelge Deller { 136*376b8519SHelge Deller uint32_t tdb_p; /* Transmit Buffer Descriptor */ 137*376b8519SHelge Deller 138*376b8519SHelge Deller /* TODO: Check flexible mode */ 139*376b8519SHelge Deller tdb_p = get_uint32(addr + 8); 140*376b8519SHelge Deller while (tdb_p != I596_NULL) { 141*376b8519SHelge Deller uint16_t size, len; 142*376b8519SHelge Deller uint32_t tba; 143*376b8519SHelge Deller 144*376b8519SHelge Deller size = get_uint16(tdb_p); 145*376b8519SHelge Deller len = size & SIZE_MASK; 146*376b8519SHelge Deller tba = get_uint32(tdb_p + 8); 147*376b8519SHelge Deller trace_i82596_transmit(len, tba); 148*376b8519SHelge Deller 149*376b8519SHelge Deller if (s->nic && len) { 150*376b8519SHelge Deller assert(len <= sizeof(s->tx_buffer)); 151*376b8519SHelge Deller address_space_rw(&address_space_memory, tba, 152*376b8519SHelge Deller MEMTXATTRS_UNSPECIFIED, s->tx_buffer, len, 0); 153*376b8519SHelge Deller DBG(PRINT_PKTHDR("Send", &s->tx_buffer)); 154*376b8519SHelge Deller DBG(printf("Sending %d bytes\n", len)); 155*376b8519SHelge Deller qemu_send_packet(qemu_get_queue(s->nic), s->tx_buffer, len); 156*376b8519SHelge Deller } 157*376b8519SHelge Deller 158*376b8519SHelge Deller /* was this the last package? */ 159*376b8519SHelge Deller if (size & I596_EOF) { 160*376b8519SHelge Deller break; 161*376b8519SHelge Deller } 162*376b8519SHelge Deller 163*376b8519SHelge Deller /* get next buffer pointer */ 164*376b8519SHelge Deller tdb_p = get_uint32(tdb_p + 4); 165*376b8519SHelge Deller } 166*376b8519SHelge Deller } 167*376b8519SHelge Deller 168*376b8519SHelge Deller static void set_individual_address(I82596State *s, uint32_t addr) 169*376b8519SHelge Deller { 170*376b8519SHelge Deller NetClientState *nc; 171*376b8519SHelge Deller uint8_t *m; 172*376b8519SHelge Deller 173*376b8519SHelge Deller nc = qemu_get_queue(s->nic); 174*376b8519SHelge Deller m = s->conf.macaddr.a; 175*376b8519SHelge Deller address_space_rw(&address_space_memory, addr + 8, 176*376b8519SHelge Deller MEMTXATTRS_UNSPECIFIED, m, ETH_ALEN, 0); 177*376b8519SHelge Deller qemu_format_nic_info_str(nc, m); 178*376b8519SHelge Deller trace_i82596_new_mac(nc->info_str); 179*376b8519SHelge Deller } 180*376b8519SHelge Deller 181*376b8519SHelge Deller static void set_multicast_list(I82596State *s, uint32_t addr) 182*376b8519SHelge Deller { 183*376b8519SHelge Deller uint16_t mc_count, i; 184*376b8519SHelge Deller 185*376b8519SHelge Deller memset(&s->mult[0], 0, sizeof(s->mult)); 186*376b8519SHelge Deller mc_count = get_uint16(addr + 8) / ETH_ALEN; 187*376b8519SHelge Deller addr += 10; 188*376b8519SHelge Deller if (mc_count > MAX_MC_CNT) { 189*376b8519SHelge Deller mc_count = MAX_MC_CNT; 190*376b8519SHelge Deller } 191*376b8519SHelge Deller for (i = 0; i < mc_count; i++) { 192*376b8519SHelge Deller uint8_t multicast_addr[ETH_ALEN]; 193*376b8519SHelge Deller address_space_rw(&address_space_memory, 194*376b8519SHelge Deller addr + i * ETH_ALEN, MEMTXATTRS_UNSPECIFIED, 195*376b8519SHelge Deller multicast_addr, ETH_ALEN, 0); 196*376b8519SHelge Deller DBG(printf("Add multicast entry " MAC_FMT "\n", 197*376b8519SHelge Deller MAC_ARG(multicast_addr))); 198*376b8519SHelge Deller unsigned mcast_idx = (net_crc32(multicast_addr, ETH_ALEN) & 199*376b8519SHelge Deller BITS(7, 2)) >> 2; 200*376b8519SHelge Deller assert(mcast_idx < 8 * sizeof(s->mult)); 201*376b8519SHelge Deller s->mult[mcast_idx >> 3] |= (1 << (mcast_idx & 7)); 202*376b8519SHelge Deller } 203*376b8519SHelge Deller trace_i82596_set_multicast(mc_count); 204*376b8519SHelge Deller } 205*376b8519SHelge Deller 206*376b8519SHelge Deller void i82596_set_link_status(NetClientState *nc) 207*376b8519SHelge Deller { 208*376b8519SHelge Deller I82596State *d = qemu_get_nic_opaque(nc); 209*376b8519SHelge Deller 210*376b8519SHelge Deller d->lnkst = nc->link_down ? 0 : 0x8000; 211*376b8519SHelge Deller } 212*376b8519SHelge Deller 213*376b8519SHelge Deller static void update_scb_status(I82596State *s) 214*376b8519SHelge Deller { 215*376b8519SHelge Deller s->scb_status = (s->scb_status & 0xf000) 216*376b8519SHelge Deller | (s->cu_status << 8) | (s->rx_status << 4); 217*376b8519SHelge Deller set_uint16(s->scb, s->scb_status); 218*376b8519SHelge Deller } 219*376b8519SHelge Deller 220*376b8519SHelge Deller 221*376b8519SHelge Deller static void i82596_s_reset(I82596State *s) 222*376b8519SHelge Deller { 223*376b8519SHelge Deller trace_i82596_s_reset(s); 224*376b8519SHelge Deller s->scp = 0; 225*376b8519SHelge Deller s->scb_status = 0; 226*376b8519SHelge Deller s->cu_status = CU_IDLE; 227*376b8519SHelge Deller s->rx_status = RX_SUSPENDED; 228*376b8519SHelge Deller s->cmd_p = I596_NULL; 229*376b8519SHelge Deller s->lnkst = 0x8000; /* initial link state: up */ 230*376b8519SHelge Deller s->ca = s->ca_active = 0; 231*376b8519SHelge Deller s->send_irq = 0; 232*376b8519SHelge Deller } 233*376b8519SHelge Deller 234*376b8519SHelge Deller 235*376b8519SHelge Deller static void command_loop(I82596State *s) 236*376b8519SHelge Deller { 237*376b8519SHelge Deller uint16_t cmd; 238*376b8519SHelge Deller uint16_t status; 239*376b8519SHelge Deller uint8_t byte_cnt; 240*376b8519SHelge Deller 241*376b8519SHelge Deller DBG(printf("STARTING COMMAND LOOP cmd_p=%08x\n", s->cmd_p)); 242*376b8519SHelge Deller 243*376b8519SHelge Deller while (s->cmd_p != I596_NULL) { 244*376b8519SHelge Deller /* set status */ 245*376b8519SHelge Deller status = STAT_B; 246*376b8519SHelge Deller set_uint16(s->cmd_p, status); 247*376b8519SHelge Deller status = STAT_C | STAT_OK; /* update, but write later */ 248*376b8519SHelge Deller 249*376b8519SHelge Deller cmd = get_uint16(s->cmd_p + 2); 250*376b8519SHelge Deller DBG(printf("Running command %04x at %08x\n", cmd, s->cmd_p)); 251*376b8519SHelge Deller 252*376b8519SHelge Deller switch (cmd & 0x07) { 253*376b8519SHelge Deller case CmdNOp: 254*376b8519SHelge Deller break; 255*376b8519SHelge Deller case CmdSASetup: 256*376b8519SHelge Deller set_individual_address(s, s->cmd_p); 257*376b8519SHelge Deller break; 258*376b8519SHelge Deller case CmdConfigure: 259*376b8519SHelge Deller byte_cnt = get_byte(s->cmd_p + 8) & 0x0f; 260*376b8519SHelge Deller byte_cnt = MAX(byte_cnt, 4); 261*376b8519SHelge Deller byte_cnt = MIN(byte_cnt, sizeof(s->config)); 262*376b8519SHelge Deller /* copy byte_cnt max. */ 263*376b8519SHelge Deller address_space_rw(&address_space_memory, s->cmd_p + 8, 264*376b8519SHelge Deller MEMTXATTRS_UNSPECIFIED, s->config, byte_cnt, 0); 265*376b8519SHelge Deller /* config byte according to page 35ff */ 266*376b8519SHelge Deller s->config[2] &= 0x82; /* mask valid bits */ 267*376b8519SHelge Deller s->config[2] |= 0x40; 268*376b8519SHelge Deller s->config[7] &= 0xf7; /* clear zero bit */ 269*376b8519SHelge Deller assert(I596_NOCRC_INS == 0); /* do CRC insertion */ 270*376b8519SHelge Deller s->config[10] = MAX(s->config[10], 5); /* min frame length */ 271*376b8519SHelge Deller s->config[12] &= 0x40; /* only full duplex field valid */ 272*376b8519SHelge Deller s->config[13] |= 0x3f; /* set ones in byte 13 */ 273*376b8519SHelge Deller break; 274*376b8519SHelge Deller case CmdTDR: 275*376b8519SHelge Deller /* get signal LINK */ 276*376b8519SHelge Deller set_uint32(s->cmd_p + 8, s->lnkst); 277*376b8519SHelge Deller break; 278*376b8519SHelge Deller case CmdTx: 279*376b8519SHelge Deller i82596_transmit(s, s->cmd_p); 280*376b8519SHelge Deller break; 281*376b8519SHelge Deller case CmdMulticastList: 282*376b8519SHelge Deller set_multicast_list(s, s->cmd_p); 283*376b8519SHelge Deller break; 284*376b8519SHelge Deller case CmdDump: 285*376b8519SHelge Deller case CmdDiagnose: 286*376b8519SHelge Deller printf("FIXME Command %d !!\n", cmd & 7); 287*376b8519SHelge Deller assert(0); 288*376b8519SHelge Deller } 289*376b8519SHelge Deller 290*376b8519SHelge Deller /* update status */ 291*376b8519SHelge Deller set_uint16(s->cmd_p, status); 292*376b8519SHelge Deller 293*376b8519SHelge Deller s->cmd_p = get_uint32(s->cmd_p + 4); /* get link address */ 294*376b8519SHelge Deller DBG(printf("NEXT addr would be %08x\n", s->cmd_p)); 295*376b8519SHelge Deller if (s->cmd_p == 0) { 296*376b8519SHelge Deller s->cmd_p = I596_NULL; 297*376b8519SHelge Deller } 298*376b8519SHelge Deller 299*376b8519SHelge Deller /* Stop when last command of the list. */ 300*376b8519SHelge Deller if (cmd & CMD_EOL) { 301*376b8519SHelge Deller s->cmd_p = I596_NULL; 302*376b8519SHelge Deller } 303*376b8519SHelge Deller /* Suspend after doing cmd? */ 304*376b8519SHelge Deller if (cmd & CMD_SUSP) { 305*376b8519SHelge Deller s->cu_status = CU_SUSPENDED; 306*376b8519SHelge Deller printf("FIXME SUSPEND !!\n"); 307*376b8519SHelge Deller } 308*376b8519SHelge Deller /* Interrupt after doing cmd? */ 309*376b8519SHelge Deller if (cmd & CMD_INTR) { 310*376b8519SHelge Deller s->scb_status |= SCB_STATUS_CX; 311*376b8519SHelge Deller } else { 312*376b8519SHelge Deller s->scb_status &= ~SCB_STATUS_CX; 313*376b8519SHelge Deller } 314*376b8519SHelge Deller update_scb_status(s); 315*376b8519SHelge Deller 316*376b8519SHelge Deller /* Interrupt after doing cmd? */ 317*376b8519SHelge Deller if (cmd & CMD_INTR) { 318*376b8519SHelge Deller s->send_irq = 1; 319*376b8519SHelge Deller } 320*376b8519SHelge Deller 321*376b8519SHelge Deller if (s->cu_status != CU_ACTIVE) { 322*376b8519SHelge Deller break; 323*376b8519SHelge Deller } 324*376b8519SHelge Deller } 325*376b8519SHelge Deller DBG(printf("FINISHED COMMAND LOOP\n")); 326*376b8519SHelge Deller qemu_flush_queued_packets(qemu_get_queue(s->nic)); 327*376b8519SHelge Deller } 328*376b8519SHelge Deller 329*376b8519SHelge Deller static void i82596_flush_queue_timer(void *opaque) 330*376b8519SHelge Deller { 331*376b8519SHelge Deller I82596State *s = opaque; 332*376b8519SHelge Deller if (0) { 333*376b8519SHelge Deller timer_del(s->flush_queue_timer); 334*376b8519SHelge Deller qemu_flush_queued_packets(qemu_get_queue(s->nic)); 335*376b8519SHelge Deller timer_mod(s->flush_queue_timer, 336*376b8519SHelge Deller qemu_clock_get_ms(QEMU_CLOCK_VIRTUAL) + 1000); 337*376b8519SHelge Deller } 338*376b8519SHelge Deller } 339*376b8519SHelge Deller 340*376b8519SHelge Deller static void examine_scb(I82596State *s) 341*376b8519SHelge Deller { 342*376b8519SHelge Deller uint16_t command, cuc, ruc; 343*376b8519SHelge Deller 344*376b8519SHelge Deller /* get the scb command word */ 345*376b8519SHelge Deller command = get_uint16(s->scb + 2); 346*376b8519SHelge Deller cuc = (command >> 8) & 0x7; 347*376b8519SHelge Deller ruc = (command >> 4) & 0x7; 348*376b8519SHelge Deller DBG(printf("MAIN COMMAND %04x cuc %02x ruc %02x\n", command, cuc, ruc)); 349*376b8519SHelge Deller /* and clear the scb command word */ 350*376b8519SHelge Deller set_uint16(s->scb + 2, 0); 351*376b8519SHelge Deller 352*376b8519SHelge Deller if (command & BIT(31)) /* ACK-CX */ 353*376b8519SHelge Deller s->scb_status &= ~SCB_STATUS_CX; 354*376b8519SHelge Deller if (command & BIT(30)) /*ACK-FR */ 355*376b8519SHelge Deller s->scb_status &= ~SCB_STATUS_FR; 356*376b8519SHelge Deller if (command & BIT(29)) /*ACK-CNA */ 357*376b8519SHelge Deller s->scb_status &= ~SCB_STATUS_CNA; 358*376b8519SHelge Deller if (command & BIT(28)) /*ACK-RNR */ 359*376b8519SHelge Deller s->scb_status &= ~SCB_STATUS_RNR; 360*376b8519SHelge Deller 361*376b8519SHelge Deller switch (cuc) { 362*376b8519SHelge Deller case 0: /* no change */ 363*376b8519SHelge Deller break; 364*376b8519SHelge Deller case 1: /* CUC_START */ 365*376b8519SHelge Deller s->cu_status = CU_ACTIVE; 366*376b8519SHelge Deller break; 367*376b8519SHelge Deller case 4: /* CUC_ABORT */ 368*376b8519SHelge Deller s->cu_status = CU_SUSPENDED; 369*376b8519SHelge Deller s->scb_status |= SCB_STATUS_CNA; /* CU left active state */ 370*376b8519SHelge Deller break; 371*376b8519SHelge Deller default: 372*376b8519SHelge Deller printf("WARNING: Unknown CUC %d!\n", cuc); 373*376b8519SHelge Deller } 374*376b8519SHelge Deller 375*376b8519SHelge Deller switch (ruc) { 376*376b8519SHelge Deller case 0: /* no change */ 377*376b8519SHelge Deller break; 378*376b8519SHelge Deller case 1: /* RX_START */ 379*376b8519SHelge Deller case 2: /* RX_RESUME */ 380*376b8519SHelge Deller s->rx_status = RX_IDLE; 381*376b8519SHelge Deller if (USE_TIMER) { 382*376b8519SHelge Deller timer_mod(s->flush_queue_timer, qemu_clock_get_ms( 383*376b8519SHelge Deller QEMU_CLOCK_VIRTUAL) + 1000); 384*376b8519SHelge Deller } 385*376b8519SHelge Deller break; 386*376b8519SHelge Deller case 3: /* RX_SUSPEND */ 387*376b8519SHelge Deller case 4: /* RX_ABORT */ 388*376b8519SHelge Deller s->rx_status = RX_SUSPENDED; 389*376b8519SHelge Deller s->scb_status |= SCB_STATUS_RNR; /* RU left active state */ 390*376b8519SHelge Deller break; 391*376b8519SHelge Deller default: 392*376b8519SHelge Deller printf("WARNING: Unknown RUC %d!\n", ruc); 393*376b8519SHelge Deller } 394*376b8519SHelge Deller 395*376b8519SHelge Deller if (command & 0x80) { /* reset bit set? */ 396*376b8519SHelge Deller i82596_s_reset(s); 397*376b8519SHelge Deller } 398*376b8519SHelge Deller 399*376b8519SHelge Deller /* execute commands from SCBL */ 400*376b8519SHelge Deller if (s->cu_status != CU_SUSPENDED) { 401*376b8519SHelge Deller if (s->cmd_p == I596_NULL) { 402*376b8519SHelge Deller s->cmd_p = get_uint32(s->scb + 4); 403*376b8519SHelge Deller } 404*376b8519SHelge Deller } 405*376b8519SHelge Deller 406*376b8519SHelge Deller /* update scb status */ 407*376b8519SHelge Deller update_scb_status(s); 408*376b8519SHelge Deller 409*376b8519SHelge Deller command_loop(s); 410*376b8519SHelge Deller } 411*376b8519SHelge Deller 412*376b8519SHelge Deller static void signal_ca(I82596State *s) 413*376b8519SHelge Deller { 414*376b8519SHelge Deller uint32_t iscp = 0; 415*376b8519SHelge Deller 416*376b8519SHelge Deller /* trace_i82596_channel_attention(s); */ 417*376b8519SHelge Deller if (s->scp) { 418*376b8519SHelge Deller /* CA after reset -> do init with new scp. */ 419*376b8519SHelge Deller s->sysbus = get_byte(s->scp + 3); /* big endian */ 420*376b8519SHelge Deller DBG(printf("SYSBUS = %08x\n", s->sysbus)); 421*376b8519SHelge Deller if (((s->sysbus >> 1) & 0x03) != 2) { 422*376b8519SHelge Deller printf("WARNING: NO LINEAR MODE !!\n"); 423*376b8519SHelge Deller } 424*376b8519SHelge Deller if ((s->sysbus >> 7)) { 425*376b8519SHelge Deller printf("WARNING: 32BIT LINMODE IN B-STEPPING NOT SUPPORTED !!\n"); 426*376b8519SHelge Deller } 427*376b8519SHelge Deller iscp = get_uint32(s->scp + 8); 428*376b8519SHelge Deller s->scb = get_uint32(iscp + 4); 429*376b8519SHelge Deller set_byte(iscp + 1, 0); /* clear BUSY flag in iscp */ 430*376b8519SHelge Deller s->scp = 0; 431*376b8519SHelge Deller } 432*376b8519SHelge Deller 433*376b8519SHelge Deller s->ca++; /* count ca() */ 434*376b8519SHelge Deller if (!s->ca_active) { 435*376b8519SHelge Deller s->ca_active = 1; 436*376b8519SHelge Deller while (s->ca) { 437*376b8519SHelge Deller examine_scb(s); 438*376b8519SHelge Deller s->ca--; 439*376b8519SHelge Deller } 440*376b8519SHelge Deller s->ca_active = 0; 441*376b8519SHelge Deller } 442*376b8519SHelge Deller 443*376b8519SHelge Deller if (s->send_irq) { 444*376b8519SHelge Deller s->send_irq = 0; 445*376b8519SHelge Deller qemu_set_irq(s->irq, 1); 446*376b8519SHelge Deller } 447*376b8519SHelge Deller } 448*376b8519SHelge Deller 449*376b8519SHelge Deller void i82596_ioport_writew(void *opaque, uint32_t addr, uint32_t val) 450*376b8519SHelge Deller { 451*376b8519SHelge Deller I82596State *s = opaque; 452*376b8519SHelge Deller /* printf("i82596_ioport_writew addr=0x%08x val=0x%04x\n", addr, val); */ 453*376b8519SHelge Deller switch (addr) { 454*376b8519SHelge Deller case PORT_RESET: /* Reset */ 455*376b8519SHelge Deller i82596_s_reset(s); 456*376b8519SHelge Deller break; 457*376b8519SHelge Deller case PORT_ALTSCP: 458*376b8519SHelge Deller s->scp = val; 459*376b8519SHelge Deller break; 460*376b8519SHelge Deller case PORT_CA: 461*376b8519SHelge Deller signal_ca(s); 462*376b8519SHelge Deller break; 463*376b8519SHelge Deller } 464*376b8519SHelge Deller } 465*376b8519SHelge Deller 466*376b8519SHelge Deller uint32_t i82596_ioport_readw(void *opaque, uint32_t addr) 467*376b8519SHelge Deller { 468*376b8519SHelge Deller return -1; 469*376b8519SHelge Deller } 470*376b8519SHelge Deller 471*376b8519SHelge Deller void i82596_h_reset(void *opaque) 472*376b8519SHelge Deller { 473*376b8519SHelge Deller I82596State *s = opaque; 474*376b8519SHelge Deller 475*376b8519SHelge Deller i82596_s_reset(s); 476*376b8519SHelge Deller } 477*376b8519SHelge Deller 478*376b8519SHelge Deller int i82596_can_receive(NetClientState *nc) 479*376b8519SHelge Deller { 480*376b8519SHelge Deller I82596State *s = qemu_get_nic_opaque(nc); 481*376b8519SHelge Deller 482*376b8519SHelge Deller if (s->rx_status == RX_SUSPENDED) { 483*376b8519SHelge Deller return 0; 484*376b8519SHelge Deller } 485*376b8519SHelge Deller 486*376b8519SHelge Deller if (!s->lnkst) { 487*376b8519SHelge Deller return 0; 488*376b8519SHelge Deller } 489*376b8519SHelge Deller 490*376b8519SHelge Deller if (USE_TIMER && !timer_pending(s->flush_queue_timer)) { 491*376b8519SHelge Deller return 1; 492*376b8519SHelge Deller } 493*376b8519SHelge Deller 494*376b8519SHelge Deller return 1; 495*376b8519SHelge Deller } 496*376b8519SHelge Deller 497*376b8519SHelge Deller #define MIN_BUF_SIZE 60 498*376b8519SHelge Deller 499*376b8519SHelge Deller ssize_t i82596_receive(NetClientState *nc, const uint8_t *buf, size_t sz) 500*376b8519SHelge Deller { 501*376b8519SHelge Deller I82596State *s = qemu_get_nic_opaque(nc); 502*376b8519SHelge Deller uint32_t rfd_p; 503*376b8519SHelge Deller uint32_t rbd; 504*376b8519SHelge Deller uint16_t is_broadcast = 0; 505*376b8519SHelge Deller size_t len = sz; 506*376b8519SHelge Deller uint32_t crc; 507*376b8519SHelge Deller uint8_t *crc_ptr; 508*376b8519SHelge Deller uint8_t buf1[MIN_BUF_SIZE + VLAN_HLEN]; 509*376b8519SHelge Deller static const uint8_t broadcast_macaddr[6] = { 510*376b8519SHelge Deller 0xff, 0xff, 0xff, 0xff, 0xff, 0xff }; 511*376b8519SHelge Deller 512*376b8519SHelge Deller DBG(printf("i82596_receive() start\n")); 513*376b8519SHelge Deller 514*376b8519SHelge Deller if (USE_TIMER && timer_pending(s->flush_queue_timer)) { 515*376b8519SHelge Deller return 0; 516*376b8519SHelge Deller } 517*376b8519SHelge Deller 518*376b8519SHelge Deller /* first check if receiver is enabled */ 519*376b8519SHelge Deller if (s->rx_status == RX_SUSPENDED) { 520*376b8519SHelge Deller trace_i82596_receive_analysis(">>> Receiving suspended"); 521*376b8519SHelge Deller return -1; 522*376b8519SHelge Deller } 523*376b8519SHelge Deller 524*376b8519SHelge Deller if (!s->lnkst) { 525*376b8519SHelge Deller trace_i82596_receive_analysis(">>> Link down"); 526*376b8519SHelge Deller return -1; 527*376b8519SHelge Deller } 528*376b8519SHelge Deller 529*376b8519SHelge Deller /* Received frame smaller than configured "min frame len"? */ 530*376b8519SHelge Deller if (sz < s->config[10]) { 531*376b8519SHelge Deller printf("Received frame too small, %zu vs. %u bytes\n", 532*376b8519SHelge Deller sz, s->config[10]); 533*376b8519SHelge Deller return -1; 534*376b8519SHelge Deller } 535*376b8519SHelge Deller 536*376b8519SHelge Deller DBG(printf("Received %lu bytes\n", sz)); 537*376b8519SHelge Deller 538*376b8519SHelge Deller if (I596_PROMISC) { 539*376b8519SHelge Deller 540*376b8519SHelge Deller /* promiscuous: receive all */ 541*376b8519SHelge Deller trace_i82596_receive_analysis( 542*376b8519SHelge Deller ">>> packet received in promiscuous mode"); 543*376b8519SHelge Deller 544*376b8519SHelge Deller } else { 545*376b8519SHelge Deller 546*376b8519SHelge Deller if (!memcmp(buf, broadcast_macaddr, 6)) { 547*376b8519SHelge Deller /* broadcast address */ 548*376b8519SHelge Deller if (I596_BC_DISABLE) { 549*376b8519SHelge Deller trace_i82596_receive_analysis(">>> broadcast packet rejected"); 550*376b8519SHelge Deller 551*376b8519SHelge Deller return len; 552*376b8519SHelge Deller } 553*376b8519SHelge Deller 554*376b8519SHelge Deller trace_i82596_receive_analysis(">>> broadcast packet received"); 555*376b8519SHelge Deller is_broadcast = 1; 556*376b8519SHelge Deller 557*376b8519SHelge Deller } else if (buf[0] & 0x01) { 558*376b8519SHelge Deller /* multicast */ 559*376b8519SHelge Deller if (!I596_MC_ALL) { 560*376b8519SHelge Deller trace_i82596_receive_analysis(">>> multicast packet rejected"); 561*376b8519SHelge Deller 562*376b8519SHelge Deller return len; 563*376b8519SHelge Deller } 564*376b8519SHelge Deller 565*376b8519SHelge Deller int mcast_idx = (net_crc32(buf, ETH_ALEN) & BITS(7, 2)) >> 2; 566*376b8519SHelge Deller assert(mcast_idx < 8 * sizeof(s->mult)); 567*376b8519SHelge Deller 568*376b8519SHelge Deller if (!(s->mult[mcast_idx >> 3] & (1 << (mcast_idx & 7)))) { 569*376b8519SHelge Deller trace_i82596_receive_analysis(">>> multicast address mismatch"); 570*376b8519SHelge Deller 571*376b8519SHelge Deller return len; 572*376b8519SHelge Deller } 573*376b8519SHelge Deller 574*376b8519SHelge Deller trace_i82596_receive_analysis(">>> multicast packet received"); 575*376b8519SHelge Deller is_broadcast = 1; 576*376b8519SHelge Deller 577*376b8519SHelge Deller } else if (!memcmp(s->conf.macaddr.a, buf, 6)) { 578*376b8519SHelge Deller 579*376b8519SHelge Deller /* match */ 580*376b8519SHelge Deller trace_i82596_receive_analysis( 581*376b8519SHelge Deller ">>> physical address matching packet received"); 582*376b8519SHelge Deller 583*376b8519SHelge Deller } else { 584*376b8519SHelge Deller 585*376b8519SHelge Deller trace_i82596_receive_analysis(">>> unknown packet"); 586*376b8519SHelge Deller 587*376b8519SHelge Deller return len; 588*376b8519SHelge Deller } 589*376b8519SHelge Deller } 590*376b8519SHelge Deller 591*376b8519SHelge Deller /* if too small buffer, then expand it */ 592*376b8519SHelge Deller if (len < MIN_BUF_SIZE + VLAN_HLEN) { 593*376b8519SHelge Deller memcpy(buf1, buf, len); 594*376b8519SHelge Deller memset(buf1 + len, 0, MIN_BUF_SIZE + VLAN_HLEN - len); 595*376b8519SHelge Deller buf = buf1; 596*376b8519SHelge Deller if (len < MIN_BUF_SIZE) { 597*376b8519SHelge Deller len = MIN_BUF_SIZE; 598*376b8519SHelge Deller } 599*376b8519SHelge Deller } 600*376b8519SHelge Deller 601*376b8519SHelge Deller /* Calculate the ethernet checksum (4 bytes) */ 602*376b8519SHelge Deller len += 4; 603*376b8519SHelge Deller crc = cpu_to_be32(crc32(~0, buf, sz)); 604*376b8519SHelge Deller crc_ptr = (uint8_t *) &crc; 605*376b8519SHelge Deller 606*376b8519SHelge Deller rfd_p = get_uint32(s->scb + 8); /* get Receive Frame Descriptor */ 607*376b8519SHelge Deller assert(rfd_p && rfd_p != I596_NULL); 608*376b8519SHelge Deller 609*376b8519SHelge Deller /* get first Receive Buffer Descriptor Address */ 610*376b8519SHelge Deller rbd = get_uint32(rfd_p + 8); 611*376b8519SHelge Deller assert(rbd && rbd != I596_NULL); 612*376b8519SHelge Deller 613*376b8519SHelge Deller trace_i82596_receive_packet(len); 614*376b8519SHelge Deller /* PRINT_PKTHDR("Receive", buf); */ 615*376b8519SHelge Deller 616*376b8519SHelge Deller while (len) { 617*376b8519SHelge Deller uint16_t command, status; 618*376b8519SHelge Deller uint32_t next_rfd; 619*376b8519SHelge Deller 620*376b8519SHelge Deller command = get_uint16(rfd_p + 2); 621*376b8519SHelge Deller assert(command & CMD_FLEX); /* assert Flex Mode */ 622*376b8519SHelge Deller /* get first Receive Buffer Descriptor Address */ 623*376b8519SHelge Deller rbd = get_uint32(rfd_p + 8); 624*376b8519SHelge Deller assert(get_uint16(rfd_p + 14) == 0); 625*376b8519SHelge Deller 626*376b8519SHelge Deller /* printf("Receive: rfd is %08x\n", rfd_p); */ 627*376b8519SHelge Deller 628*376b8519SHelge Deller while (len) { 629*376b8519SHelge Deller uint16_t buffer_size, num; 630*376b8519SHelge Deller uint32_t rba; 631*376b8519SHelge Deller 632*376b8519SHelge Deller /* printf("Receive: rbd is %08x\n", rbd); */ 633*376b8519SHelge Deller buffer_size = get_uint16(rbd + 12); 634*376b8519SHelge Deller /* printf("buffer_size is 0x%x\n", buffer_size); */ 635*376b8519SHelge Deller assert(buffer_size != 0); 636*376b8519SHelge Deller 637*376b8519SHelge Deller num = buffer_size & SIZE_MASK; 638*376b8519SHelge Deller if (num > len) { 639*376b8519SHelge Deller num = len; 640*376b8519SHelge Deller } 641*376b8519SHelge Deller rba = get_uint32(rbd + 8); 642*376b8519SHelge Deller /* printf("rba is 0x%x\n", rba); */ 643*376b8519SHelge Deller address_space_rw(&address_space_memory, rba, 644*376b8519SHelge Deller MEMTXATTRS_UNSPECIFIED, (void *)buf, num, 1); 645*376b8519SHelge Deller rba += num; 646*376b8519SHelge Deller buf += num; 647*376b8519SHelge Deller len -= num; 648*376b8519SHelge Deller if (len == 0) { /* copy crc */ 649*376b8519SHelge Deller address_space_rw(&address_space_memory, rba - 4, 650*376b8519SHelge Deller MEMTXATTRS_UNSPECIFIED, crc_ptr, 4, 1); 651*376b8519SHelge Deller } 652*376b8519SHelge Deller 653*376b8519SHelge Deller num |= 0x4000; /* set F BIT */ 654*376b8519SHelge Deller if (len == 0) { 655*376b8519SHelge Deller num |= I596_EOF; /* set EOF BIT */ 656*376b8519SHelge Deller } 657*376b8519SHelge Deller set_uint16(rbd + 0, num); /* write actual count with flags */ 658*376b8519SHelge Deller 659*376b8519SHelge Deller /* get next rbd */ 660*376b8519SHelge Deller rbd = get_uint32(rbd + 4); 661*376b8519SHelge Deller /* printf("Next Receive: rbd is %08x\n", rbd); */ 662*376b8519SHelge Deller 663*376b8519SHelge Deller if (buffer_size & I596_EOF) /* last entry */ 664*376b8519SHelge Deller break; 665*376b8519SHelge Deller } 666*376b8519SHelge Deller 667*376b8519SHelge Deller /* Housekeeping, see pg. 18 */ 668*376b8519SHelge Deller next_rfd = get_uint32(rfd_p + 4); 669*376b8519SHelge Deller set_uint32(next_rfd + 8, rbd); 670*376b8519SHelge Deller 671*376b8519SHelge Deller status = STAT_C | STAT_OK | is_broadcast; 672*376b8519SHelge Deller set_uint16(rfd_p, status); 673*376b8519SHelge Deller 674*376b8519SHelge Deller if (command & CMD_SUSP) { /* suspend after command? */ 675*376b8519SHelge Deller s->rx_status = RX_SUSPENDED; 676*376b8519SHelge Deller s->scb_status |= SCB_STATUS_RNR; /* RU left active state */ 677*376b8519SHelge Deller break; 678*376b8519SHelge Deller } 679*376b8519SHelge Deller if (command & CMD_EOL) /* was it last Frame Descriptor? */ 680*376b8519SHelge Deller break; 681*376b8519SHelge Deller 682*376b8519SHelge Deller assert(len == 0); 683*376b8519SHelge Deller } 684*376b8519SHelge Deller 685*376b8519SHelge Deller assert(len == 0); 686*376b8519SHelge Deller 687*376b8519SHelge Deller s->scb_status |= SCB_STATUS_FR; /* set "RU finished receiving frame" bit. */ 688*376b8519SHelge Deller update_scb_status(s); 689*376b8519SHelge Deller 690*376b8519SHelge Deller /* send IRQ that we received data */ 691*376b8519SHelge Deller qemu_set_irq(s->irq, 1); 692*376b8519SHelge Deller /* s->send_irq = 1; */ 693*376b8519SHelge Deller 694*376b8519SHelge Deller if (0) { 695*376b8519SHelge Deller DBG(printf("Checking:\n")); 696*376b8519SHelge Deller rfd_p = get_uint32(s->scb + 8); /* get Receive Frame Descriptor */ 697*376b8519SHelge Deller DBG(printf("Next Receive: rfd is %08x\n", rfd_p)); 698*376b8519SHelge Deller rfd_p = get_uint32(rfd_p + 4); /* get Next Receive Frame Descriptor */ 699*376b8519SHelge Deller DBG(printf("Next Receive: rfd is %08x\n", rfd_p)); 700*376b8519SHelge Deller /* get first Receive Buffer Descriptor Address */ 701*376b8519SHelge Deller rbd = get_uint32(rfd_p + 8); 702*376b8519SHelge Deller DBG(printf("Next Receive: rbd is %08x\n", rbd)); 703*376b8519SHelge Deller } 704*376b8519SHelge Deller 705*376b8519SHelge Deller return sz; 706*376b8519SHelge Deller } 707*376b8519SHelge Deller 708*376b8519SHelge Deller 709*376b8519SHelge Deller const VMStateDescription vmstate_i82596 = { 710*376b8519SHelge Deller .name = "i82596", 711*376b8519SHelge Deller .version_id = 1, 712*376b8519SHelge Deller .minimum_version_id = 1, 713*376b8519SHelge Deller .fields = (VMStateField[]) { 714*376b8519SHelge Deller VMSTATE_UINT16(lnkst, I82596State), 715*376b8519SHelge Deller VMSTATE_TIMER_PTR(flush_queue_timer, I82596State), 716*376b8519SHelge Deller VMSTATE_END_OF_LIST() 717*376b8519SHelge Deller } 718*376b8519SHelge Deller }; 719*376b8519SHelge Deller 720*376b8519SHelge Deller void i82596_common_init(DeviceState *dev, I82596State *s, NetClientInfo *info) 721*376b8519SHelge Deller { 722*376b8519SHelge Deller if (s->conf.macaddr.a[0] == 0) { 723*376b8519SHelge Deller qemu_macaddr_default_if_unset(&s->conf.macaddr); 724*376b8519SHelge Deller } 725*376b8519SHelge Deller s->nic = qemu_new_nic(info, &s->conf, object_get_typename(OBJECT(dev)), 726*376b8519SHelge Deller dev->id, s); 727*376b8519SHelge Deller qemu_format_nic_info_str(qemu_get_queue(s->nic), s->conf.macaddr.a); 728*376b8519SHelge Deller 729*376b8519SHelge Deller if (USE_TIMER) { 730*376b8519SHelge Deller s->flush_queue_timer = timer_new_ns(QEMU_CLOCK_VIRTUAL, 731*376b8519SHelge Deller i82596_flush_queue_timer, s); 732*376b8519SHelge Deller } 733*376b8519SHelge Deller s->lnkst = 0x8000; /* initial link state: up */ 734*376b8519SHelge Deller } 735