2 * ARMV7M System emulation.
4 * Copyright (c) 2006-2007 CodeSourcery.
5 * Written by Paul Brook
7 * This code is licensed under the GPL.
15 /* Bitbanded IO. Each word corresponds to a single bit. */
17 /* Get the byte address of the real memory for a bitband access. */
18 static inline uint32_t bitband_addr(void * opaque
, uint32_t addr
)
22 res
= *(uint32_t *)opaque
;
23 res
|= (addr
& 0x1ffffff) >> 5;
28 static uint32_t bitband_readb(void *opaque
, target_phys_addr_t offset
)
31 cpu_physical_memory_read(bitband_addr(opaque
, offset
), &v
, 1);
32 return (v
& (1 << ((offset
>> 2) & 7))) != 0;
35 static void bitband_writeb(void *opaque
, target_phys_addr_t offset
,
41 addr
= bitband_addr(opaque
, offset
);
42 mask
= (1 << ((offset
>> 2) & 7));
43 cpu_physical_memory_read(addr
, &v
, 1);
48 cpu_physical_memory_write(addr
, &v
, 1);
51 static uint32_t bitband_readw(void *opaque
, target_phys_addr_t offset
)
56 addr
= bitband_addr(opaque
, offset
) & ~1;
57 mask
= (1 << ((offset
>> 2) & 15));
59 cpu_physical_memory_read(addr
, (uint8_t *)&v
, 2);
60 return (v
& mask
) != 0;
63 static void bitband_writew(void *opaque
, target_phys_addr_t offset
,
69 addr
= bitband_addr(opaque
, offset
) & ~1;
70 mask
= (1 << ((offset
>> 2) & 15));
72 cpu_physical_memory_read(addr
, (uint8_t *)&v
, 2);
77 cpu_physical_memory_write(addr
, (uint8_t *)&v
, 2);
80 static uint32_t bitband_readl(void *opaque
, target_phys_addr_t offset
)
85 addr
= bitband_addr(opaque
, offset
) & ~3;
86 mask
= (1 << ((offset
>> 2) & 31));
88 cpu_physical_memory_read(addr
, (uint8_t *)&v
, 4);
89 return (v
& mask
) != 0;
92 static void bitband_writel(void *opaque
, target_phys_addr_t offset
,
98 addr
= bitband_addr(opaque
, offset
) & ~3;
99 mask
= (1 << ((offset
>> 2) & 31));
100 mask
= tswap32(mask
);
101 cpu_physical_memory_read(addr
, (uint8_t *)&v
, 4);
106 cpu_physical_memory_write(addr
, (uint8_t *)&v
, 4);
109 static const MemoryRegionOps bitband_ops
= {
111 .read
= { bitband_readb
, bitband_readw
, bitband_readl
, },
112 .write
= { bitband_writeb
, bitband_writew
, bitband_writel
, },
114 .endianness
= DEVICE_NATIVE_ENDIAN
,
123 static int bitband_init(SysBusDevice
*dev
)
125 BitBandState
*s
= FROM_SYSBUS(BitBandState
, dev
);
127 memory_region_init_io(&s
->iomem
, &bitband_ops
, &s
->base
, "bitband",
129 sysbus_init_mmio(dev
, &s
->iomem
);
133 static void armv7m_bitband_init(void)
137 dev
= qdev_create(NULL
, "ARM,bitband-memory");
138 qdev_prop_set_uint32(dev
, "base", 0x20000000);
139 qdev_init_nofail(dev
);
140 sysbus_mmio_map(sysbus_from_qdev(dev
), 0, 0x22000000);
142 dev
= qdev_create(NULL
, "ARM,bitband-memory");
143 qdev_prop_set_uint32(dev
, "base", 0x40000000);
144 qdev_init_nofail(dev
);
145 sysbus_mmio_map(sysbus_from_qdev(dev
), 0, 0x42000000);
150 static void armv7m_reset(void *opaque
)
152 ARMCPU
*cpu
= opaque
;
157 /* Init CPU and memory for a v7-M based board.
158 flash_size and sram_size are in kb.
159 Returns the NVIC array. */
161 qemu_irq
*armv7m_init(MemoryRegion
*address_space_mem
,
162 int flash_size
, int sram_size
,
163 const char *kernel_filename
, const char *cpu_model
)
168 /* FIXME: make this local state. */
169 static qemu_irq pic
[64];
176 MemoryRegion
*sram
= g_new(MemoryRegion
, 1);
177 MemoryRegion
*flash
= g_new(MemoryRegion
, 1);
178 MemoryRegion
*hack
= g_new(MemoryRegion
, 1);
183 if (cpu_model
== NULL
) {
184 cpu_model
= "cortex-m3";
186 cpu
= cpu_arm_init(cpu_model
);
188 fprintf(stderr
, "Unable to find CPU definition\n");
194 /* > 32Mb SRAM gets complicated because it overlaps the bitband area.
195 We don't have proper commandline options, so allocate half of memory
196 as SRAM, up to a maximum of 32Mb, and the rest as code. */
197 if (ram_size
> (512 + 32) * 1024 * 1024)
198 ram_size
= (512 + 32) * 1024 * 1024;
199 sram_size
= (ram_size
/ 2) & TARGET_PAGE_MASK
;
200 if (sram_size
> 32 * 1024 * 1024)
201 sram_size
= 32 * 1024 * 1024;
202 code_size
= ram_size
- sram_size
;
205 /* Flash programming is done via the SCU, so pretend it is ROM. */
206 memory_region_init_ram(flash
, "armv7m.flash", flash_size
);
207 vmstate_register_ram_global(flash
);
208 memory_region_set_readonly(flash
, true);
209 memory_region_add_subregion(address_space_mem
, 0, flash
);
210 memory_region_init_ram(sram
, "armv7m.sram", sram_size
);
211 vmstate_register_ram_global(sram
);
212 memory_region_add_subregion(address_space_mem
, 0x20000000, sram
);
213 armv7m_bitband_init();
215 nvic
= qdev_create(NULL
, "armv7m_nvic");
217 qdev_init_nofail(nvic
);
218 cpu_pic
= arm_pic_init_cpu(env
);
219 sysbus_connect_irq(sysbus_from_qdev(nvic
), 0, cpu_pic
[ARM_PIC_CPU_IRQ
]);
220 for (i
= 0; i
< 64; i
++) {
221 pic
[i
] = qdev_get_gpio_in(nvic
, i
);
224 #ifdef TARGET_WORDS_BIGENDIAN
230 image_size
= load_elf(kernel_filename
, NULL
, NULL
, &entry
, &lowaddr
,
231 NULL
, big_endian
, ELF_MACHINE
, 1);
232 if (image_size
< 0) {
233 image_size
= load_image_targphys(kernel_filename
, 0, flash_size
);
236 if (image_size
< 0) {
237 fprintf(stderr
, "qemu: could not load kernel '%s'\n",
242 /* Hack to map an additional page of ram at the top of the address
243 space. This stops qemu complaining about executing code outside RAM
244 when returning from an exception. */
245 memory_region_init_ram(hack
, "armv7m.hack", 0x1000);
246 vmstate_register_ram_global(hack
);
247 memory_region_add_subregion(address_space_mem
, 0xfffff000, hack
);
249 qemu_register_reset(armv7m_reset
, cpu
);
253 static Property bitband_properties
[] = {
254 DEFINE_PROP_UINT32("base", BitBandState
, base
, 0),
255 DEFINE_PROP_END_OF_LIST(),
258 static void bitband_class_init(ObjectClass
*klass
, void *data
)
260 DeviceClass
*dc
= DEVICE_CLASS(klass
);
261 SysBusDeviceClass
*k
= SYS_BUS_DEVICE_CLASS(klass
);
263 k
->init
= bitband_init
;
264 dc
->props
= bitband_properties
;
267 static TypeInfo bitband_info
= {
268 .name
= "ARM,bitband-memory",
269 .parent
= TYPE_SYS_BUS_DEVICE
,
270 .instance_size
= sizeof(BitBandState
),
271 .class_init
= bitband_class_init
,
274 static void armv7m_register_types(void)
276 type_register_static(&bitband_info
);
279 type_init(armv7m_register_types
)