search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
scsi: move sense handling to generic code
[qemu.git] / hw / scsi-disk.c
blobe266d6fe9a46436d280d3db11f7ce5ad5fc65707
1 /*
2 * SCSI Device emulation
3 *
4 * Copyright (c) 2006 CodeSourcery.
5 * Based on code by Fabrice Bellard
6 *
7 * Written by Paul Brook
8 * Modifications:
9 * 2009-Dec-12 Artyom Tarasenko : implemented stamdard inquiry for the case
10 * when the allocation length of CDB is smaller
11 * than 36.
12 * 2009-Oct-13 Artyom Tarasenko : implemented the block descriptor in the
13 * MODE SENSE response.
14 *
15 * This code is licensed under the LGPL.
16 *
17 * Note that this file only handles the SCSI architecture model and device
18 * commands. Emulation of interface/link layer protocols is handled by
19 * the host adapter emulator.
20 */
21
22 //#define DEBUG_SCSI
23
24 #ifdef DEBUG_SCSI
25 #define DPRINTF(fmt, ...) \
26 do { printf("scsi-disk: " fmt , ## __VA_ARGS__); } while (0)
27 #else
28 #define DPRINTF(fmt, ...) do {} while(0)
29 #endif
30
31 #define BADF(fmt, ...) \
32 do { fprintf(stderr, "scsi-disk: " fmt , ## __VA_ARGS__); } while (0)
33
34 #include "qemu-common.h"
35 #include "qemu-error.h"
36 #include "scsi.h"
37 #include "scsi-defs.h"
38 #include "sysemu.h"
39 #include "blockdev.h"
40
41 #define SCSI_DMA_BUF_SIZE 131072
42 #define SCSI_MAX_INQUIRY_LEN 256
43
44 #define SCSI_REQ_STATUS_RETRY 0x01
45 #define SCSI_REQ_STATUS_RETRY_TYPE_MASK 0x06
46 #define SCSI_REQ_STATUS_RETRY_READ 0x00
47 #define SCSI_REQ_STATUS_RETRY_WRITE 0x02
48 #define SCSI_REQ_STATUS_RETRY_FLUSH 0x04
49
50 typedef struct SCSIDiskState SCSIDiskState;
51
52 typedef struct SCSIDiskReq {
53 SCSIRequest req;
54 /* Both sector and sector_count are in terms of qemu 512 byte blocks. */
55 uint64_t sector;
56 uint32_t sector_count;
57 struct iovec iov;
58 QEMUIOVector qiov;
59 uint32_t status;
60 } SCSIDiskReq;
61
62 struct SCSIDiskState
63 {
64 SCSIDevice qdev;
65 BlockDriverState *bs;
66 /* The qemu block layer uses a fixed 512 byte sector size.
67 This is the number of 512 byte blocks in a single scsi sector. */
68 int cluster_size;
69 uint32_t removable;
70 uint64_t max_lba;
71 QEMUBH *bh;
72 char *version;
73 char *serial;
74 };
75
76 static int scsi_handle_rw_error(SCSIDiskReq *r, int error, int type);
77 static int scsi_disk_emulate_command(SCSIDiskReq *r, uint8_t *outbuf);
78
79 static SCSIRequest *scsi_new_request(SCSIDevice *d, uint32_t tag,
80 uint32_t lun, void *hba_private)
81 {
82 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, d);
83 SCSIRequest *req;
84 SCSIDiskReq *r;
85
86 req = scsi_req_alloc(sizeof(SCSIDiskReq), &s->qdev, tag, lun, hba_private);
87 r = DO_UPCAST(SCSIDiskReq, req, req);
88 r->iov.iov_base = qemu_blockalign(s->bs, SCSI_DMA_BUF_SIZE);
89 return req;
90 }
91
92 static void scsi_free_request(SCSIRequest *req)
93 {
94 SCSIDiskReq *r = DO_UPCAST(SCSIDiskReq, req, req);
95
96 qemu_vfree(r->iov.iov_base);
97 }
98
99 /* Helper function for command completion with sense. */
100 static void scsi_check_condition(SCSIDiskReq *r, SCSISense sense)
101 {
102 DPRINTF("Command complete tag=0x%x status=%d sense=%d/%d/%d\n",
103 r->req.tag, status, sense.key, sense.asc, sense.ascq);
104 scsi_req_build_sense(&r->req, sense);
105 scsi_req_complete(&r->req, CHECK_CONDITION);
106 }
107
108 /* Cancel a pending data transfer. */
109 static void scsi_cancel_io(SCSIRequest *req)
110 {
111 SCSIDiskReq *r = DO_UPCAST(SCSIDiskReq, req, req);
112
113 DPRINTF("Cancel tag=0x%x\n", req->tag);
114 if (r->req.aiocb) {
115 bdrv_aio_cancel(r->req.aiocb);
116 }
117 r->req.aiocb = NULL;
118 }
119
120 static void scsi_read_complete(void * opaque, int ret)
121 {
122 SCSIDiskReq *r = (SCSIDiskReq *)opaque;
123 int n;
124
125 r->req.aiocb = NULL;
126
127 if (ret) {
128 if (scsi_handle_rw_error(r, -ret, SCSI_REQ_STATUS_RETRY_READ)) {
129 return;
130 }
131 }
132
133 DPRINTF("Data ready tag=0x%x len=%zd\n", r->req.tag, r->iov.iov_len);
134
135 n = r->iov.iov_len / 512;
136 r->sector += n;
137 r->sector_count -= n;
138 scsi_req_data(&r->req, r->iov.iov_len);
139 }
140
141
142 /* Read more data from scsi device into buffer. */
143 static void scsi_read_data(SCSIRequest *req)
144 {
145 SCSIDiskReq *r = DO_UPCAST(SCSIDiskReq, req, req);
146 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, r->req.dev);
147 uint32_t n;
148
149 if (r->sector_count == (uint32_t)-1) {
150 DPRINTF("Read buf_len=%zd\n", r->iov.iov_len);
151 r->sector_count = 0;
152 scsi_req_data(&r->req, r->iov.iov_len);
153 return;
154 }
155 DPRINTF("Read sector_count=%d\n", r->sector_count);
156 if (r->sector_count == 0) {
157 /* This also clears the sense buffer for REQUEST SENSE. */
158 scsi_req_complete(&r->req, GOOD);
159 return;
160 }
161
162 /* No data transfer may already be in progress */
163 assert(r->req.aiocb == NULL);
164
165 if (r->req.cmd.mode == SCSI_XFER_TO_DEV) {
166 DPRINTF("Data transfer direction invalid\n");
167 scsi_read_complete(r, -EINVAL);
168 return;
169 }
170
171 n = r->sector_count;
172 if (n > SCSI_DMA_BUF_SIZE / 512)
173 n = SCSI_DMA_BUF_SIZE / 512;
174
175 r->iov.iov_len = n * 512;
176 qemu_iovec_init_external(&r->qiov, &r->iov, 1);
177 r->req.aiocb = bdrv_aio_readv(s->bs, r->sector, &r->qiov, n,
178 scsi_read_complete, r);
179 if (r->req.aiocb == NULL) {
180 scsi_read_complete(r, -EIO);
181 }
182 }
183
184 static int scsi_handle_rw_error(SCSIDiskReq *r, int error, int type)
185 {
186 int is_read = (type == SCSI_REQ_STATUS_RETRY_READ);
187 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, r->req.dev);
188 BlockErrorAction action = bdrv_get_on_error(s->bs, is_read);
189
190 if (action == BLOCK_ERR_IGNORE) {
191 bdrv_mon_event(s->bs, BDRV_ACTION_IGNORE, is_read);
192 return 0;
193 }
194
195 if ((error == ENOSPC && action == BLOCK_ERR_STOP_ENOSPC)
196 || action == BLOCK_ERR_STOP_ANY) {
197
198 type &= SCSI_REQ_STATUS_RETRY_TYPE_MASK;
199 r->status |= SCSI_REQ_STATUS_RETRY | type;
200
201 bdrv_mon_event(s->bs, BDRV_ACTION_STOP, is_read);
202 vm_stop(VMSTOP_DISKFULL);
203 } else {
204 switch (error) {
205 case ENOMEM:
206 scsi_check_condition(r, SENSE_CODE(TARGET_FAILURE));
207 break;
208 case EINVAL:
209 scsi_check_condition(r, SENSE_CODE(INVALID_FIELD));
210 break;
211 default:
212 scsi_check_condition(r, SENSE_CODE(IO_ERROR));
213 break;
214 }
215 bdrv_mon_event(s->bs, BDRV_ACTION_REPORT, is_read);
216 }
217 return 1;
218 }
219
220 static void scsi_write_complete(void * opaque, int ret)
221 {
222 SCSIDiskReq *r = (SCSIDiskReq *)opaque;
223 uint32_t len;
224 uint32_t n;
225
226 r->req.aiocb = NULL;
227
228 if (ret) {
229 if (scsi_handle_rw_error(r, -ret, SCSI_REQ_STATUS_RETRY_WRITE)) {
230 return;
231 }
232 }
233
234 n = r->iov.iov_len / 512;
235 r->sector += n;
236 r->sector_count -= n;
237 if (r->sector_count == 0) {
238 scsi_req_complete(&r->req, GOOD);
239 } else {
240 len = r->sector_count * 512;
241 if (len > SCSI_DMA_BUF_SIZE) {
242 len = SCSI_DMA_BUF_SIZE;
243 }
244 r->iov.iov_len = len;
245 DPRINTF("Write complete tag=0x%x more=%d\n", r->req.tag, len);
246 scsi_req_data(&r->req, len);
247 }
248 }
249
250 static void scsi_write_data(SCSIRequest *req)
251 {
252 SCSIDiskReq *r = DO_UPCAST(SCSIDiskReq, req, req);
253 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, r->req.dev);
254 uint32_t n;
255
256 /* No data transfer may already be in progress */
257 assert(r->req.aiocb == NULL);
258
259 if (r->req.cmd.mode != SCSI_XFER_TO_DEV) {
260 DPRINTF("Data transfer direction invalid\n");
261 scsi_write_complete(r, -EINVAL);
262 return;
263 }
264
265 n = r->iov.iov_len / 512;
266 if (n) {
267 qemu_iovec_init_external(&r->qiov, &r->iov, 1);
268 r->req.aiocb = bdrv_aio_writev(s->bs, r->sector, &r->qiov, n,
269 scsi_write_complete, r);
270 if (r->req.aiocb == NULL) {
271 scsi_write_complete(r, -ENOMEM);
272 }
273 } else {
274 /* Invoke completion routine to fetch data from host. */
275 scsi_write_complete(r, 0);
276 }
277 }
278
279 static void scsi_dma_restart_bh(void *opaque)
280 {
281 SCSIDiskState *s = opaque;
282 SCSIRequest *req;
283 SCSIDiskReq *r;
284
285 qemu_bh_delete(s->bh);
286 s->bh = NULL;
287
288 QTAILQ_FOREACH(req, &s->qdev.requests, next) {
289 r = DO_UPCAST(SCSIDiskReq, req, req);
290 if (r->status & SCSI_REQ_STATUS_RETRY) {
291 int status = r->status;
292 int ret;
293
294 r->status &=
295 ~(SCSI_REQ_STATUS_RETRY | SCSI_REQ_STATUS_RETRY_TYPE_MASK);
296
297 switch (status & SCSI_REQ_STATUS_RETRY_TYPE_MASK) {
298 case SCSI_REQ_STATUS_RETRY_READ:
299 scsi_read_data(&r->req);
300 break;
301 case SCSI_REQ_STATUS_RETRY_WRITE:
302 scsi_write_data(&r->req);
303 break;
304 case SCSI_REQ_STATUS_RETRY_FLUSH:
305 ret = scsi_disk_emulate_command(r, r->iov.iov_base);
306 if (ret == 0) {
307 scsi_req_complete(&r->req, GOOD);
308 }
309 }
310 }
311 }
312 }
313
314 static void scsi_dma_restart_cb(void *opaque, int running, int reason)
315 {
316 SCSIDiskState *s = opaque;
317
318 if (!running)
319 return;
320
321 if (!s->bh) {
322 s->bh = qemu_bh_new(scsi_dma_restart_bh, s);
323 qemu_bh_schedule(s->bh);
324 }
325 }
326
327 /* Return a pointer to the data buffer. */
328 static uint8_t *scsi_get_buf(SCSIRequest *req)
329 {
330 SCSIDiskReq *r = DO_UPCAST(SCSIDiskReq, req, req);
331
332 return (uint8_t *)r->iov.iov_base;
333 }
334
335 static int scsi_disk_emulate_inquiry(SCSIRequest *req, uint8_t *outbuf)
336 {
337 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, req->dev);
338 int buflen = 0;
339
340 if (req->cmd.buf[1] & 0x2) {
341 /* Command support data - optional, not implemented */
342 BADF("optional INQUIRY command support request not implemented\n");
343 return -1;
344 }
345
346 if (req->cmd.buf[1] & 0x1) {
347 /* Vital product data */
348 uint8_t page_code = req->cmd.buf[2];
349 if (req->cmd.xfer < 4) {
350 BADF("Error: Inquiry (EVPD[%02X]) buffer size %zd is "
351 "less than 4\n", page_code, req->cmd.xfer);
352 return -1;
353 }
354
355 if (s->qdev.type == TYPE_ROM) {
356 outbuf[buflen++] = 5;
357 } else {
358 outbuf[buflen++] = 0;
359 }
360 outbuf[buflen++] = page_code ; // this page
361 outbuf[buflen++] = 0x00;
362
363 switch (page_code) {
364 case 0x00: /* Supported page codes, mandatory */
365 {
366 int pages;
367 DPRINTF("Inquiry EVPD[Supported pages] "
368 "buffer size %zd\n", req->cmd.xfer);
369 pages = buflen++;
370 outbuf[buflen++] = 0x00; // list of supported pages (this page)
371 if (s->serial)
372 outbuf[buflen++] = 0x80; // unit serial number
373 outbuf[buflen++] = 0x83; // device identification
374 if (s->qdev.type == TYPE_DISK) {
375 outbuf[buflen++] = 0xb0; // block limits
376 outbuf[buflen++] = 0xb2; // thin provisioning
377 }
378 outbuf[pages] = buflen - pages - 1; // number of pages
379 break;
380 }
381 case 0x80: /* Device serial number, optional */
382 {
383 int l;
384
385 if (!s->serial) {
386 DPRINTF("Inquiry (EVPD[Serial number] not supported\n");
387 return -1;
388 }
389
390 l = strlen(s->serial);
391 if (l > req->cmd.xfer)
392 l = req->cmd.xfer;
393 if (l > 20)
394 l = 20;
395
396 DPRINTF("Inquiry EVPD[Serial number] "
397 "buffer size %zd\n", req->cmd.xfer);
398 outbuf[buflen++] = l;
399 memcpy(outbuf+buflen, s->serial, l);
400 buflen += l;
401 break;
402 }
403
404 case 0x83: /* Device identification page, mandatory */
405 {
406 int max_len = 255 - 8;
407 int id_len = strlen(bdrv_get_device_name(s->bs));
408
409 if (id_len > max_len)
410 id_len = max_len;
411 DPRINTF("Inquiry EVPD[Device identification] "
412 "buffer size %zd\n", req->cmd.xfer);
413
414 outbuf[buflen++] = 4 + id_len;
415 outbuf[buflen++] = 0x2; // ASCII
416 outbuf[buflen++] = 0; // not officially assigned
417 outbuf[buflen++] = 0; // reserved
418 outbuf[buflen++] = id_len; // length of data following
419
420 memcpy(outbuf+buflen, bdrv_get_device_name(s->bs), id_len);
421 buflen += id_len;
422 break;
423 }
424 case 0xb0: /* block limits */
425 {
426 unsigned int unmap_sectors =
427 s->qdev.conf.discard_granularity / s->qdev.blocksize;
428 unsigned int min_io_size =
429 s->qdev.conf.min_io_size / s->qdev.blocksize;
430 unsigned int opt_io_size =
431 s->qdev.conf.opt_io_size / s->qdev.blocksize;
432
433 if (s->qdev.type == TYPE_ROM) {
434 DPRINTF("Inquiry (EVPD[%02X] not supported for CDROM\n",
435 page_code);
436 return -1;
437 }
438 /* required VPD size with unmap support */
439 outbuf[3] = buflen = 0x3c;
440
441 memset(outbuf + 4, 0, buflen - 4);
442
443 /* optimal transfer length granularity */
444 outbuf[6] = (min_io_size >> 8) & 0xff;
445 outbuf[7] = min_io_size & 0xff;
446
447 /* optimal transfer length */
448 outbuf[12] = (opt_io_size >> 24) & 0xff;
449 outbuf[13] = (opt_io_size >> 16) & 0xff;
450 outbuf[14] = (opt_io_size >> 8) & 0xff;
451 outbuf[15] = opt_io_size & 0xff;
452
453 /* optimal unmap granularity */
454 outbuf[28] = (unmap_sectors >> 24) & 0xff;
455 outbuf[29] = (unmap_sectors >> 16) & 0xff;
456 outbuf[30] = (unmap_sectors >> 8) & 0xff;
457 outbuf[31] = unmap_sectors & 0xff;
458 break;
459 }
460 case 0xb2: /* thin provisioning */
461 {
462 outbuf[3] = buflen = 8;
463 outbuf[4] = 0;
464 outbuf[5] = 0x40; /* write same with unmap supported */
465 outbuf[6] = 0;
466 outbuf[7] = 0;
467 break;
468 }
469 default:
470 BADF("Error: unsupported Inquiry (EVPD[%02X]) "
471 "buffer size %zd\n", page_code, req->cmd.xfer);
472 return -1;
473 }
474 /* done with EVPD */
475 return buflen;
476 }
477
478 /* Standard INQUIRY data */
479 if (req->cmd.buf[2] != 0) {
480 BADF("Error: Inquiry (STANDARD) page or code "
481 "is non-zero [%02X]\n", req->cmd.buf[2]);
482 return -1;
483 }
484
485 /* PAGE CODE == 0 */
486 if (req->cmd.xfer < 5) {
487 BADF("Error: Inquiry (STANDARD) buffer size %zd "
488 "is less than 5\n", req->cmd.xfer);
489 return -1;
490 }
491
492 buflen = req->cmd.xfer;
493 if (buflen > SCSI_MAX_INQUIRY_LEN)
494 buflen = SCSI_MAX_INQUIRY_LEN;
495
496 memset(outbuf, 0, buflen);
497
498 if (req->lun) {
499 outbuf[0] = 0x7f; /* LUN not supported */
500 return buflen;
501 }
502
503 outbuf[0] = s->qdev.type & 0x1f;
504 if (s->qdev.type == TYPE_ROM) {
505 outbuf[1] = 0x80;
506 memcpy(&outbuf[16], "QEMU CD-ROM ", 16);
507 } else {
508 outbuf[1] = s->removable ? 0x80 : 0;
509 memcpy(&outbuf[16], "QEMU HARDDISK ", 16);
510 }
511 memcpy(&outbuf[8], "QEMU ", 8);
512 memset(&outbuf[32], 0, 4);
513 memcpy(&outbuf[32], s->version, MIN(4, strlen(s->version)));
514 /*
515 * We claim conformance to SPC-3, which is required for guests
516 * to ask for modern features like READ CAPACITY(16) or the
517 * block characteristics VPD page by default. Not all of SPC-3
518 * is actually implemented, but we're good enough.
519 */
520 outbuf[2] = 5;
521 outbuf[3] = 2; /* Format 2 */
522
523 if (buflen > 36) {
524 outbuf[4] = buflen - 5; /* Additional Length = (Len - 1) - 4 */
525 } else {
526 /* If the allocation length of CDB is too small,
527 the additional length is not adjusted */
528 outbuf[4] = 36 - 5;
529 }
530
531 /* Sync data transfer and TCQ. */
532 outbuf[7] = 0x10 | (req->bus->tcq ? 0x02 : 0);
533 return buflen;
534 }
535
536 static int mode_sense_page(SCSIRequest *req, int page, uint8_t *p,
537 int page_control)
538 {
539 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, req->dev);
540 BlockDriverState *bdrv = s->bs;
541 int cylinders, heads, secs;
542
543 /*
544 * If Changeable Values are requested, a mask denoting those mode parameters
545 * that are changeable shall be returned. As we currently don't support
546 * parameter changes via MODE_SELECT all bits are returned set to zero.
547 * The buffer was already menset to zero by the caller of this function.
548 */
549 switch (page) {
550 case 4: /* Rigid disk device geometry page. */
551 p[0] = 4;
552 p[1] = 0x16;
553 if (page_control == 1) { /* Changeable Values */
554 return p[1] + 2;
555 }
556 /* if a geometry hint is available, use it */
557 bdrv_get_geometry_hint(bdrv, &cylinders, &heads, &secs);
558 p[2] = (cylinders >> 16) & 0xff;
559 p[3] = (cylinders >> 8) & 0xff;
560 p[4] = cylinders & 0xff;
561 p[5] = heads & 0xff;
562 /* Write precomp start cylinder, disabled */
563 p[6] = (cylinders >> 16) & 0xff;
564 p[7] = (cylinders >> 8) & 0xff;
565 p[8] = cylinders & 0xff;
566 /* Reduced current start cylinder, disabled */
567 p[9] = (cylinders >> 16) & 0xff;
568 p[10] = (cylinders >> 8) & 0xff;
569 p[11] = cylinders & 0xff;
570 /* Device step rate [ns], 200ns */
571 p[12] = 0;
572 p[13] = 200;
573 /* Landing zone cylinder */
574 p[14] = 0xff;
575 p[15] = 0xff;
576 p[16] = 0xff;
577 /* Medium rotation rate [rpm], 5400 rpm */
578 p[20] = (5400 >> 8) & 0xff;
579 p[21] = 5400 & 0xff;
580 return p[1] + 2;
581
582 case 5: /* Flexible disk device geometry page. */
583 p[0] = 5;
584 p[1] = 0x1e;
585 if (page_control == 1) { /* Changeable Values */
586 return p[1] + 2;
587 }
588 /* Transfer rate [kbit/s], 5Mbit/s */
589 p[2] = 5000 >> 8;
590 p[3] = 5000 & 0xff;
591 /* if a geometry hint is available, use it */
592 bdrv_get_geometry_hint(bdrv, &cylinders, &heads, &secs);
593 p[4] = heads & 0xff;
594 p[5] = secs & 0xff;
595 p[6] = s->cluster_size * 2;
596 p[8] = (cylinders >> 8) & 0xff;
597 p[9] = cylinders & 0xff;
598 /* Write precomp start cylinder, disabled */
599 p[10] = (cylinders >> 8) & 0xff;
600 p[11] = cylinders & 0xff;
601 /* Reduced current start cylinder, disabled */
602 p[12] = (cylinders >> 8) & 0xff;
603 p[13] = cylinders & 0xff;
604 /* Device step rate [100us], 100us */
605 p[14] = 0;
606 p[15] = 1;
607 /* Device step pulse width [us], 1us */
608 p[16] = 1;
609 /* Device head settle delay [100us], 100us */
610 p[17] = 0;
611 p[18] = 1;
612 /* Motor on delay [0.1s], 0.1s */
613 p[19] = 1;
614 /* Motor off delay [0.1s], 0.1s */
615 p[20] = 1;
616 /* Medium rotation rate [rpm], 5400 rpm */
617 p[28] = (5400 >> 8) & 0xff;
618 p[29] = 5400 & 0xff;
619 return p[1] + 2;
620
621 case 8: /* Caching page. */
622 p[0] = 8;
623 p[1] = 0x12;
624 if (page_control == 1) { /* Changeable Values */
625 return p[1] + 2;
626 }
627 if (bdrv_enable_write_cache(s->bs)) {
628 p[2] = 4; /* WCE */
629 }
630 return p[1] + 2;
631
632 case 0x2a: /* CD Capabilities and Mechanical Status page. */
633 if (s->qdev.type != TYPE_ROM)
634 return 0;
635 p[0] = 0x2a;
636 p[1] = 0x14;
637 if (page_control == 1) { /* Changeable Values */
638 return p[1] + 2;
639 }
640 p[2] = 3; // CD-R & CD-RW read
641 p[3] = 0; // Writing not supported
642 p[4] = 0x7f; /* Audio, composite, digital out,
643 mode 2 form 1&2, multi session */
644 p[5] = 0xff; /* CD DA, DA accurate, RW supported,
645 RW corrected, C2 errors, ISRC,
646 UPC, Bar code */
647 p[6] = 0x2d | (bdrv_is_locked(s->bs)? 2 : 0);
648 /* Locking supported, jumper present, eject, tray */
649 p[7] = 0; /* no volume & mute control, no
650 changer */
651 p[8] = (50 * 176) >> 8; // 50x read speed
652 p[9] = (50 * 176) & 0xff;
653 p[10] = 0 >> 8; // No volume
654 p[11] = 0 & 0xff;
655 p[12] = 2048 >> 8; // 2M buffer
656 p[13] = 2048 & 0xff;
657 p[14] = (16 * 176) >> 8; // 16x read speed current
658 p[15] = (16 * 176) & 0xff;
659 p[18] = (16 * 176) >> 8; // 16x write speed
660 p[19] = (16 * 176) & 0xff;
661 p[20] = (16 * 176) >> 8; // 16x write speed current
662 p[21] = (16 * 176) & 0xff;
663 return p[1] + 2;
664
665 default:
666 return 0;
667 }
668 }
669
670 static int scsi_disk_emulate_mode_sense(SCSIRequest *req, uint8_t *outbuf)
671 {
672 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, req->dev);
673 uint64_t nb_sectors;
674 int page, dbd, buflen, page_control;
675 uint8_t *p;
676 uint8_t dev_specific_param;
677
678 dbd = req->cmd.buf[1] & 0x8;
679 page = req->cmd.buf[2] & 0x3f;
680 page_control = (req->cmd.buf[2] & 0xc0) >> 6;
681 DPRINTF("Mode Sense(%d) (page %d, xfer %zd, page_control %d)\n",
682 (req->cmd.buf[0] == MODE_SENSE) ? 6 : 10, page, req->cmd.xfer, page_control);
683 memset(outbuf, 0, req->cmd.xfer);
684 p = outbuf;
685
686 if (bdrv_is_read_only(s->bs)) {
687 dev_specific_param = 0x80; /* Readonly. */
688 } else {
689 dev_specific_param = 0x00;
690 }
691
692 if (req->cmd.buf[0] == MODE_SENSE) {
693 p[1] = 0; /* Default media type. */
694 p[2] = dev_specific_param;
695 p[3] = 0; /* Block descriptor length. */
696 p += 4;
697 } else { /* MODE_SENSE_10 */
698 p[2] = 0; /* Default media type. */
699 p[3] = dev_specific_param;
700 p[6] = p[7] = 0; /* Block descriptor length. */
701 p += 8;
702 }
703
704 bdrv_get_geometry(s->bs, &nb_sectors);
705 if (!dbd && nb_sectors) {
706 if (req->cmd.buf[0] == MODE_SENSE) {
707 outbuf[3] = 8; /* Block descriptor length */
708 } else { /* MODE_SENSE_10 */
709 outbuf[7] = 8; /* Block descriptor length */
710 }
711 nb_sectors /= s->cluster_size;
712 if (nb_sectors > 0xffffff)
713 nb_sectors = 0;
714 p[0] = 0; /* media density code */
715 p[1] = (nb_sectors >> 16) & 0xff;
716 p[2] = (nb_sectors >> 8) & 0xff;
717 p[3] = nb_sectors & 0xff;
718 p[4] = 0; /* reserved */
719 p[5] = 0; /* bytes 5-7 are the sector size in bytes */
720 p[6] = s->cluster_size * 2;
721 p[7] = 0;
722 p += 8;
723 }
724
725 if (page_control == 3) { /* Saved Values */
726 return -1; /* ILLEGAL_REQUEST */
727 }
728
729 switch (page) {
730 case 0x04:
731 case 0x05:
732 case 0x08:
733 case 0x2a:
734 p += mode_sense_page(req, page, p, page_control);
735 break;
736 case 0x3f:
737 p += mode_sense_page(req, 0x08, p, page_control);
738 p += mode_sense_page(req, 0x2a, p, page_control);
739 break;
740 default:
741 return -1; /* ILLEGAL_REQUEST */
742 }
743
744 buflen = p - outbuf;
745 /*
746 * The mode data length field specifies the length in bytes of the
747 * following data that is available to be transferred. The mode data
748 * length does not include itself.
749 */
750 if (req->cmd.buf[0] == MODE_SENSE) {
751 outbuf[0] = buflen - 1;
752 } else { /* MODE_SENSE_10 */
753 outbuf[0] = ((buflen - 2) >> 8) & 0xff;
754 outbuf[1] = (buflen - 2) & 0xff;
755 }
756 if (buflen > req->cmd.xfer)
757 buflen = req->cmd.xfer;
758 return buflen;
759 }
760
761 static int scsi_disk_emulate_read_toc(SCSIRequest *req, uint8_t *outbuf)
762 {
763 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, req->dev);
764 int start_track, format, msf, toclen;
765 uint64_t nb_sectors;
766
767 msf = req->cmd.buf[1] & 2;
768 format = req->cmd.buf[2] & 0xf;
769 start_track = req->cmd.buf[6];
770 bdrv_get_geometry(s->bs, &nb_sectors);
771 DPRINTF("Read TOC (track %d format %d msf %d)\n", start_track, format, msf >> 1);
772 nb_sectors /= s->cluster_size;
773 switch (format) {
774 case 0:
775 toclen = cdrom_read_toc(nb_sectors, outbuf, msf, start_track);
776 break;
777 case 1:
778 /* multi session : only a single session defined */
779 toclen = 12;
780 memset(outbuf, 0, 12);
781 outbuf[1] = 0x0a;
782 outbuf[2] = 0x01;
783 outbuf[3] = 0x01;
784 break;
785 case 2:
786 toclen = cdrom_read_toc_raw(nb_sectors, outbuf, msf, start_track);
787 break;
788 default:
789 return -1;
790 }
791 if (toclen > req->cmd.xfer)
792 toclen = req->cmd.xfer;
793 return toclen;
794 }
795
796 static int scsi_disk_emulate_command(SCSIDiskReq *r, uint8_t *outbuf)
797 {
798 SCSIRequest *req = &r->req;
799 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, req->dev);
800 uint64_t nb_sectors;
801 int buflen = 0;
802 int ret;
803
804 switch (req->cmd.buf[0]) {
805 case TEST_UNIT_READY:
806 if (!bdrv_is_inserted(s->bs))
807 goto not_ready;
808 break;
809 case REQUEST_SENSE:
810 if (req->cmd.xfer < 4)
811 goto illegal_request;
812 buflen = scsi_device_get_sense(&s->qdev, outbuf, req->cmd.xfer,
813 (req->cmd.buf[1] & 1) == 0);
814 break;
815 case INQUIRY:
816 buflen = scsi_disk_emulate_inquiry(req, outbuf);
817 if (buflen < 0)
818 goto illegal_request;
819 break;
820 case MODE_SENSE:
821 case MODE_SENSE_10:
822 buflen = scsi_disk_emulate_mode_sense(req, outbuf);
823 if (buflen < 0)
824 goto illegal_request;
825 break;
826 case READ_TOC:
827 buflen = scsi_disk_emulate_read_toc(req, outbuf);
828 if (buflen < 0)
829 goto illegal_request;
830 break;
831 case RESERVE:
832 if (req->cmd.buf[1] & 1)
833 goto illegal_request;
834 break;
835 case RESERVE_10:
836 if (req->cmd.buf[1] & 3)
837 goto illegal_request;
838 break;
839 case RELEASE:
840 if (req->cmd.buf[1] & 1)
841 goto illegal_request;
842 break;
843 case RELEASE_10:
844 if (req->cmd.buf[1] & 3)
845 goto illegal_request;
846 break;
847 case START_STOP:
848 if (s->qdev.type == TYPE_ROM && (req->cmd.buf[4] & 2)) {
849 /* load/eject medium */
850 bdrv_eject(s->bs, !(req->cmd.buf[4] & 1));
851 }
852 break;
853 case ALLOW_MEDIUM_REMOVAL:
854 bdrv_set_locked(s->bs, req->cmd.buf[4] & 1);
855 break;
856 case READ_CAPACITY_10:
857 /* The normal LEN field for this command is zero. */
858 memset(outbuf, 0, 8);
859 bdrv_get_geometry(s->bs, &nb_sectors);
860 if (!nb_sectors)
861 goto not_ready;
862 nb_sectors /= s->cluster_size;
863 /* Returned value is the address of the last sector. */
864 nb_sectors--;
865 /* Remember the new size for read/write sanity checking. */
866 s->max_lba = nb_sectors;
867 /* Clip to 2TB, instead of returning capacity modulo 2TB. */
868 if (nb_sectors > UINT32_MAX)
869 nb_sectors = UINT32_MAX;
870 outbuf[0] = (nb_sectors >> 24) & 0xff;
871 outbuf[1] = (nb_sectors >> 16) & 0xff;
872 outbuf[2] = (nb_sectors >> 8) & 0xff;
873 outbuf[3] = nb_sectors & 0xff;
874 outbuf[4] = 0;
875 outbuf[5] = 0;
876 outbuf[6] = s->cluster_size * 2;
877 outbuf[7] = 0;
878 buflen = 8;
879 break;
880 case SYNCHRONIZE_CACHE:
881 ret = bdrv_flush(s->bs);
882 if (ret < 0) {
883 if (scsi_handle_rw_error(r, -ret, SCSI_REQ_STATUS_RETRY_FLUSH)) {
884 return -1;
885 }
886 }
887 break;
888 case GET_CONFIGURATION:
889 memset(outbuf, 0, 8);
890 /* ??? This should probably return much more information. For now
891 just return the basic header indicating the CD-ROM profile. */
892 outbuf[7] = 8; // CD-ROM
893 buflen = 8;
894 break;
895 case SERVICE_ACTION_IN:
896 /* Service Action In subcommands. */
897 if ((req->cmd.buf[1] & 31) == 0x10) {
898 DPRINTF("SAI READ CAPACITY(16)\n");
899 memset(outbuf, 0, req->cmd.xfer);
900 bdrv_get_geometry(s->bs, &nb_sectors);
901 if (!nb_sectors)
902 goto not_ready;
903 nb_sectors /= s->cluster_size;
904 /* Returned value is the address of the last sector. */
905 nb_sectors--;
906 /* Remember the new size for read/write sanity checking. */
907 s->max_lba = nb_sectors;
908 outbuf[0] = (nb_sectors >> 56) & 0xff;
909 outbuf[1] = (nb_sectors >> 48) & 0xff;
910 outbuf[2] = (nb_sectors >> 40) & 0xff;
911 outbuf[3] = (nb_sectors >> 32) & 0xff;
912 outbuf[4] = (nb_sectors >> 24) & 0xff;
913 outbuf[5] = (nb_sectors >> 16) & 0xff;
914 outbuf[6] = (nb_sectors >> 8) & 0xff;
915 outbuf[7] = nb_sectors & 0xff;
916 outbuf[8] = 0;
917 outbuf[9] = 0;
918 outbuf[10] = s->cluster_size * 2;
919 outbuf[11] = 0;
920 outbuf[12] = 0;
921 outbuf[13] = get_physical_block_exp(&s->qdev.conf);
922
923 /* set TPE bit if the format supports discard */
924 if (s->qdev.conf.discard_granularity) {
925 outbuf[14] = 0x80;
926 }
927
928 /* Protection, exponent and lowest lba field left blank. */
929 buflen = req->cmd.xfer;
930 break;
931 }
932 DPRINTF("Unsupported Service Action In\n");
933 goto illegal_request;
934 case REPORT_LUNS:
935 if (req->cmd.xfer < 16)
936 goto illegal_request;
937 memset(outbuf, 0, 16);
938 outbuf[3] = 8;
939 buflen = 16;
940 break;
941 case VERIFY_10:
942 break;
943 default:
944 scsi_check_condition(r, SENSE_CODE(INVALID_OPCODE));
945 return -1;
946 }
947 return buflen;
948
949 not_ready:
950 if (!bdrv_is_inserted(s->bs)) {
951 scsi_check_condition(r, SENSE_CODE(NO_MEDIUM));
952 } else {
953 scsi_check_condition(r, SENSE_CODE(LUN_NOT_READY));
954 }
955 return -1;
956
957 illegal_request:
958 scsi_check_condition(r, SENSE_CODE(INVALID_FIELD));
959 return -1;
960 }
961
962 /* Execute a scsi command. Returns the length of the data expected by the
963 command. This will be Positive for data transfers from the device
964 (eg. disk reads), negative for transfers to the device (eg. disk writes),
965 and zero if the command does not transfer any data. */
966
967 static int32_t scsi_send_command(SCSIRequest *req, uint8_t *buf)
968 {
969 SCSIDiskReq *r = DO_UPCAST(SCSIDiskReq, req, req);
970 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, req->dev);
971 int32_t len;
972 uint8_t command;
973 uint8_t *outbuf;
974 int rc;
975
976 command = buf[0];
977 outbuf = (uint8_t *)r->iov.iov_base;
978 DPRINTF("Command: lun=%d tag=0x%x data=0x%02x", req->lun, req->tag, buf[0]);
979
980 if (scsi_req_parse(&r->req, buf) != 0) {
981 BADF("Unsupported command length, command %x\n", command);
982 scsi_check_condition(r, SENSE_CODE(INVALID_OPCODE));
983 return 0;
984 }
985 #ifdef DEBUG_SCSI
986 {
987 int i;
988 for (i = 1; i < r->req.cmd.len; i++) {
989 printf(" 0x%02x", buf[i]);
990 }
991 printf("\n");
992 }
993 #endif
994
995 if (req->lun) {
996 /* Only LUN 0 supported. */
997 DPRINTF("Unimplemented LUN %d\n", req->lun);
998 if (command != REQUEST_SENSE && command != INQUIRY) {
999 scsi_check_condition(r, SENSE_CODE(LUN_NOT_SUPPORTED));
1000 return 0;
1001 }
1002 }
1003 switch (command) {
1004 case TEST_UNIT_READY:
1005 case REQUEST_SENSE:
1006 case INQUIRY:
1007 case MODE_SENSE:
1008 case MODE_SENSE_10:
1009 case RESERVE:
1010 case RESERVE_10:
1011 case RELEASE:
1012 case RELEASE_10:
1013 case START_STOP:
1014 case ALLOW_MEDIUM_REMOVAL:
1015 case READ_CAPACITY_10:
1016 case SYNCHRONIZE_CACHE:
1017 case READ_TOC:
1018 case GET_CONFIGURATION:
1019 case SERVICE_ACTION_IN:
1020 case REPORT_LUNS:
1021 case VERIFY_10:
1022 rc = scsi_disk_emulate_command(r, outbuf);
1023 if (rc < 0) {
1024 return 0;
1025 }
1026
1027 r->iov.iov_len = rc;
1028 break;
1029 case READ_6:
1030 case READ_10:
1031 case READ_12:
1032 case READ_16:
1033 len = r->req.cmd.xfer / s->qdev.blocksize;
1034 DPRINTF("Read (sector %" PRId64 ", count %d)\n", r->req.cmd.lba, len);
1035 if (r->req.cmd.lba > s->max_lba)
1036 goto illegal_lba;
1037 r->sector = r->req.cmd.lba * s->cluster_size;
1038 r->sector_count = len * s->cluster_size;
1039 break;
1040 case WRITE_6:
1041 case WRITE_10:
1042 case WRITE_12:
1043 case WRITE_16:
1044 case WRITE_VERIFY_10:
1045 case WRITE_VERIFY_12:
1046 case WRITE_VERIFY_16:
1047 len = r->req.cmd.xfer / s->qdev.blocksize;
1048 DPRINTF("Write %s(sector %" PRId64 ", count %d)\n",
1049 (command & 0xe) == 0xe ? "And Verify " : "",
1050 r->req.cmd.lba, len);
1051 if (r->req.cmd.lba > s->max_lba)
1052 goto illegal_lba;
1053 r->sector = r->req.cmd.lba * s->cluster_size;
1054 r->sector_count = len * s->cluster_size;
1055 break;
1056 case MODE_SELECT:
1057 DPRINTF("Mode Select(6) (len %lu)\n", (long)r->req.cmd.xfer);
1058 /* We don't support mode parameter changes.
1059 Allow the mode parameter header + block descriptors only. */
1060 if (r->req.cmd.xfer > 12) {
1061 goto fail;
1062 }
1063 break;
1064 case MODE_SELECT_10:
1065 DPRINTF("Mode Select(10) (len %lu)\n", (long)r->req.cmd.xfer);
1066 /* We don't support mode parameter changes.
1067 Allow the mode parameter header + block descriptors only. */
1068 if (r->req.cmd.xfer > 16) {
1069 goto fail;
1070 }
1071 break;
1072 case SEEK_6:
1073 case SEEK_10:
1074 DPRINTF("Seek(%d) (sector %" PRId64 ")\n", command == SEEK_6 ? 6 : 10,
1075 r->req.cmd.lba);
1076 if (r->req.cmd.lba > s->max_lba) {
1077 goto illegal_lba;
1078 }
1079 break;
1080 case WRITE_SAME_16:
1081 len = r->req.cmd.xfer / s->qdev.blocksize;
1082
1083 DPRINTF("WRITE SAME(16) (sector %" PRId64 ", count %d)\n",
1084 r->req.cmd.lba, len);
1085
1086 if (r->req.cmd.lba > s->max_lba) {
1087 goto illegal_lba;
1088 }
1089
1090 /*
1091 * We only support WRITE SAME with the unmap bit set for now.
1092 */
1093 if (!(buf[1] & 0x8)) {
1094 goto fail;
1095 }
1096
1097 rc = bdrv_discard(s->bs, r->req.cmd.lba * s->cluster_size,
1098 len * s->cluster_size);
1099 if (rc < 0) {
1100 /* XXX: better error code ?*/
1101 goto fail;
1102 }
1103
1104 break;
1105 default:
1106 DPRINTF("Unknown SCSI command (%2.2x)\n", buf[0]);
1107 scsi_check_condition(r, SENSE_CODE(INVALID_OPCODE));
1108 return 0;
1109 fail:
1110 scsi_check_condition(r, SENSE_CODE(INVALID_FIELD));
1111 return 0;
1112 illegal_lba:
1113 scsi_check_condition(r, SENSE_CODE(LBA_OUT_OF_RANGE));
1114 return 0;
1115 }
1116 if (r->sector_count == 0 && r->iov.iov_len == 0) {
1117 scsi_req_complete(&r->req, GOOD);
1118 }
1119 len = r->sector_count * 512 + r->iov.iov_len;
1120 if (r->req.cmd.mode == SCSI_XFER_TO_DEV) {
1121 return -len;
1122 } else {
1123 if (!r->sector_count)
1124 r->sector_count = -1;
1125 return len;
1126 }
1127 }
1128
1129 static void scsi_disk_reset(DeviceState *dev)
1130 {
1131 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev.qdev, dev);
1132 uint64_t nb_sectors;
1133
1134 scsi_device_purge_requests(&s->qdev);
1135
1136 bdrv_get_geometry(s->bs, &nb_sectors);
1137 nb_sectors /= s->cluster_size;
1138 if (nb_sectors) {
1139 nb_sectors--;
1140 }
1141 s->max_lba = nb_sectors;
1142 }
1143
1144 static void scsi_destroy(SCSIDevice *dev)
1145 {
1146 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, dev);
1147
1148 scsi_device_purge_requests(&s->qdev);
1149 blockdev_mark_auto_del(s->qdev.conf.bs);
1150 }
1151
1152 static int scsi_initfn(SCSIDevice *dev, uint8_t scsi_type)
1153 {
1154 SCSIDiskState *s = DO_UPCAST(SCSIDiskState, qdev, dev);
1155 DriveInfo *dinfo;
1156
1157 if (!s->qdev.conf.bs) {
1158 error_report("scsi-disk: drive property not set");
1159 return -1;
1160 }
1161 s->bs = s->qdev.conf.bs;
1162
1163 if (scsi_type == TYPE_DISK && !bdrv_is_inserted(s->bs)) {
1164 error_report("Device needs media, but drive is empty");
1165 return -1;
1166 }
1167
1168 if (!s->serial) {
1169 /* try to fall back to value set with legacy -drive serial=... */
1170 dinfo = drive_get_by_blockdev(s->bs);
1171 if (*dinfo->serial) {
1172 s->serial = qemu_strdup(dinfo->serial);
1173 }
1174 }
1175
1176 if (!s->version) {
1177 s->version = qemu_strdup(QEMU_VERSION);
1178 }
1179
1180 if (bdrv_is_sg(s->bs)) {
1181 error_report("scsi-disk: unwanted /dev/sg*");
1182 return -1;
1183 }
1184
1185 if (scsi_type == TYPE_ROM) {
1186 s->qdev.blocksize = 2048;
1187 } else if (scsi_type == TYPE_DISK) {
1188 s->qdev.blocksize = s->qdev.conf.logical_block_size;
1189 } else {
1190 error_report("scsi-disk: Unhandled SCSI type %02x", scsi_type);
1191 return -1;
1192 }
1193 s->cluster_size = s->qdev.blocksize / 512;
1194 s->bs->buffer_alignment = s->qdev.blocksize;
1195
1196 s->qdev.type = scsi_type;
1197 qemu_add_vm_change_state_handler(scsi_dma_restart_cb, s);
1198 bdrv_set_removable(s->bs, scsi_type == TYPE_ROM);
1199 add_boot_device_path(s->qdev.conf.bootindex, &dev->qdev, ",0");
1200 return 0;
1201 }
1202
1203 static int scsi_hd_initfn(SCSIDevice *dev)
1204 {
1205 return scsi_initfn(dev, TYPE_DISK);
1206 }
1207
1208 static int scsi_cd_initfn(SCSIDevice *dev)
1209 {
1210 return scsi_initfn(dev, TYPE_ROM);
1211 }
1212
1213 static int scsi_disk_initfn(SCSIDevice *dev)
1214 {
1215 DriveInfo *dinfo;
1216 uint8_t scsi_type;
1217
1218 if (!dev->conf.bs) {
1219 scsi_type = TYPE_DISK; /* will die in scsi_initfn() */
1220 } else {
1221 dinfo = drive_get_by_blockdev(dev->conf.bs);
1222 scsi_type = dinfo->media_cd ? TYPE_ROM : TYPE_DISK;
1223 }
1224
1225 return scsi_initfn(dev, scsi_type);
1226 }
1227
1228 #define DEFINE_SCSI_DISK_PROPERTIES() \
1229 DEFINE_BLOCK_PROPERTIES(SCSIDiskState, qdev.conf), \
1230 DEFINE_PROP_STRING("ver", SCSIDiskState, version), \
1231 DEFINE_PROP_STRING("serial", SCSIDiskState, serial)
1232
1233 static SCSIDeviceInfo scsi_disk_info[] = {
1234 {
1235 .qdev.name = "scsi-hd",
1236 .qdev.fw_name = "disk",
1237 .qdev.desc = "virtual SCSI disk",
1238 .qdev.size = sizeof(SCSIDiskState),
1239 .qdev.reset = scsi_disk_reset,
1240 .init = scsi_hd_initfn,
1241 .destroy = scsi_destroy,
1242 .alloc_req = scsi_new_request,
1243 .free_req = scsi_free_request,
1244 .send_command = scsi_send_command,
1245 .read_data = scsi_read_data,
1246 .write_data = scsi_write_data,
1247 .cancel_io = scsi_cancel_io,
1248 .get_buf = scsi_get_buf,
1249 .qdev.props = (Property[]) {
1250 DEFINE_SCSI_DISK_PROPERTIES(),
1251 DEFINE_PROP_BIT("removable", SCSIDiskState, removable, 0, false),
1252 DEFINE_PROP_END_OF_LIST(),
1253 }
1254 },{
1255 .qdev.name = "scsi-cd",
1256 .qdev.fw_name = "disk",
1257 .qdev.desc = "virtual SCSI CD-ROM",
1258 .qdev.size = sizeof(SCSIDiskState),
1259 .qdev.reset = scsi_disk_reset,
1260 .init = scsi_cd_initfn,
1261 .destroy = scsi_destroy,
1262 .alloc_req = scsi_new_request,
1263 .free_req = scsi_free_request,
1264 .send_command = scsi_send_command,
1265 .read_data = scsi_read_data,
1266 .write_data = scsi_write_data,
1267 .cancel_io = scsi_cancel_io,
1268 .get_buf = scsi_get_buf,
1269 .qdev.props = (Property[]) {
1270 DEFINE_SCSI_DISK_PROPERTIES(),
1271 DEFINE_PROP_END_OF_LIST(),
1272 },
1273 },{
1274 .qdev.name = "scsi-disk", /* legacy -device scsi-disk */
1275 .qdev.fw_name = "disk",
1276 .qdev.desc = "virtual SCSI disk or CD-ROM (legacy)",
1277 .qdev.size = sizeof(SCSIDiskState),
1278 .qdev.reset = scsi_disk_reset,
1279 .init = scsi_disk_initfn,
1280 .destroy = scsi_destroy,
1281 .alloc_req = scsi_new_request,
1282 .free_req = scsi_free_request,
1283 .send_command = scsi_send_command,
1284 .read_data = scsi_read_data,
1285 .write_data = scsi_write_data,
1286 .cancel_io = scsi_cancel_io,
1287 .get_buf = scsi_get_buf,
1288 .qdev.props = (Property[]) {
1289 DEFINE_SCSI_DISK_PROPERTIES(),
1290 DEFINE_PROP_BIT("removable", SCSIDiskState, removable, 0, false),
1291 DEFINE_PROP_END_OF_LIST(),
1292 }
1293 }
1294 };
1295
1296 static void scsi_disk_register_devices(void)
1297 {
1298 int i;
1299
1300 for (i = 0; i < ARRAY_SIZE(scsi_disk_info); i++) {
1301 scsi_qdev_register(&scsi_disk_info[i]);
1302 }
1303 }
1304 device_init(scsi_disk_register_devices)
QEmu