4 * Copyright (c) 2013 Kevin Wolf <kwolf@redhat.com>
6 * Permission is hereby granted, free of charge, to any person obtaining a copy
7 * of this software and associated documentation files (the "Software"), to deal
8 * in the Software without restriction, including without limitation the rights
9 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10 * copies of the Software, and to permit persons to whom the Software is
11 * furnished to do so, subject to the following conditions:
13 * The above copyright notice and this permission notice shall be included in
14 * all copies or substantial portions of the Software.
16 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
19 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
25 #include "qemu/osdep.h"
29 #include "libqos/libqos.h"
30 #include "libqos/pci-pc.h"
31 #include "libqos/malloc-pc.h"
32 #include "qapi/qmp/qdict.h"
33 #include "qemu-common.h"
34 #include "qemu/bswap.h"
35 #include "hw/pci/pci_ids.h"
36 #include "hw/pci/pci_regs.h"
38 /* TODO actually test the results and get rid of this */
39 #define qmp_discard_response(...) qobject_unref(qmp(__VA_ARGS__))
41 #define TEST_IMAGE_SIZE 64 * 1024 * 1024
44 #define IDE_PCI_FUNC 1
46 #define IDE_BASE 0x1f0
47 #define IDE_PRIMARY_IRQ 14
49 #define ATAPI_BLOCK_SIZE 2048
51 /* How many bytes to receive via ATAPI PIO at one time.
52 * Must be less than 0xFFFF. */
53 #define BYTE_COUNT_LIMIT 5120
96 CMD_FLUSH_CACHE
= 0xe7,
106 BM_CMD_WRITE
= 0x8, /* write = from device to memory */
116 PRDT_EOT
= 0x80000000,
119 #define assert_bit_set(data, mask) g_assert_cmphex((data) & (mask), ==, (mask))
120 #define assert_bit_clear(data, mask) g_assert_cmphex((data) & (mask), ==, 0)
122 static QPCIBus
*pcibus
= NULL
;
123 static QGuestAllocator
*guest_malloc
;
125 static char tmp_path
[] = "/tmp/qtest.XXXXXX";
126 static char debug_path
[] = "/tmp/qtest-blkdebug.XXXXXX";
128 static void ide_test_start(const char *cmdline_fmt
, ...)
133 va_start(ap
, cmdline_fmt
);
134 cmdline
= g_strdup_vprintf(cmdline_fmt
, ap
);
137 qtest_start(cmdline
);
138 guest_malloc
= pc_alloc_init(global_qtest
);
143 static void ide_test_quit(void)
146 qpci_free_pc(pcibus
);
149 pc_alloc_uninit(guest_malloc
);
154 static QPCIDevice
*get_pci_device(QPCIBar
*bmdma_bar
, QPCIBar
*ide_bar
)
157 uint16_t vendor_id
, device_id
;
160 pcibus
= qpci_init_pc(global_qtest
, NULL
);
163 /* Find PCI device and verify it's the right one */
164 dev
= qpci_device_find(pcibus
, QPCI_DEVFN(IDE_PCI_DEV
, IDE_PCI_FUNC
));
165 g_assert(dev
!= NULL
);
167 vendor_id
= qpci_config_readw(dev
, PCI_VENDOR_ID
);
168 device_id
= qpci_config_readw(dev
, PCI_DEVICE_ID
);
169 g_assert(vendor_id
== PCI_VENDOR_ID_INTEL
);
170 g_assert(device_id
== PCI_DEVICE_ID_INTEL_82371SB_1
);
173 *bmdma_bar
= qpci_iomap(dev
, 4, NULL
);
175 *ide_bar
= qpci_legacy_iomap(dev
, IDE_BASE
);
177 qpci_device_enable(dev
);
182 static void free_pci_device(QPCIDevice
*dev
)
184 /* libqos doesn't have a function for this, so free it manually */
188 typedef struct PrdtEntry
{
191 } QEMU_PACKED PrdtEntry
;
193 #define assert_bit_set(data, mask) g_assert_cmphex((data) & (mask), ==, (mask))
194 #define assert_bit_clear(data, mask) g_assert_cmphex((data) & (mask), ==, 0)
196 static uint64_t trim_range_le(uint64_t sector
, uint16_t count
)
198 /* 2-byte range, 6-byte LBA */
199 return cpu_to_le64(((uint64_t)count
<< 48) + sector
);
202 static int send_dma_request(int cmd
, uint64_t sector
, int nb_sectors
,
203 PrdtEntry
*prdt
, int prdt_entries
,
204 void(*post_exec
)(QPCIDevice
*dev
, QPCIBar ide_bar
,
205 uint64_t sector
, int nb_sectors
))
208 QPCIBar bmdma_bar
, ide_bar
;
209 uintptr_t guest_prdt
;
215 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
223 /* Assuming we only test data reads w/ ATAPI, otherwise we need to know
224 * the SCSI command being sent in the packet, too. */
232 g_assert_not_reached();
235 if (flags
& CMDF_NO_BM
) {
236 qpci_config_writew(dev
, PCI_COMMAND
,
237 PCI_COMMAND_IO
| PCI_COMMAND_MEMORY
);
240 /* Select device 0 */
241 qpci_io_writeb(dev
, ide_bar
, reg_device
, 0 | LBA
);
243 /* Stop any running transfer, clear any pending interrupt */
244 qpci_io_writeb(dev
, bmdma_bar
, bmreg_cmd
, 0);
245 qpci_io_writeb(dev
, bmdma_bar
, bmreg_status
, BM_STS_INTR
);
248 len
= sizeof(*prdt
) * prdt_entries
;
249 guest_prdt
= guest_alloc(guest_malloc
, len
);
250 memwrite(guest_prdt
, prdt
, len
);
251 qpci_io_writel(dev
, bmdma_bar
, bmreg_prdt
, guest_prdt
);
253 /* ATA DMA command */
254 if (cmd
== CMD_PACKET
) {
255 /* Enables ATAPI DMA; otherwise PIO is attempted */
256 qpci_io_writeb(dev
, ide_bar
, reg_feature
, 0x01);
258 if (cmd
== CMD_DSM
) {
260 qpci_io_writeb(dev
, ide_bar
, reg_feature
, 0x01);
262 qpci_io_writeb(dev
, ide_bar
, reg_nsectors
, nb_sectors
);
263 qpci_io_writeb(dev
, ide_bar
, reg_lba_low
, sector
& 0xff);
264 qpci_io_writeb(dev
, ide_bar
, reg_lba_middle
, (sector
>> 8) & 0xff);
265 qpci_io_writeb(dev
, ide_bar
, reg_lba_high
, (sector
>> 16) & 0xff);
268 qpci_io_writeb(dev
, ide_bar
, reg_command
, cmd
);
271 post_exec(dev
, ide_bar
, sector
, nb_sectors
);
274 /* Start DMA transfer */
275 qpci_io_writeb(dev
, bmdma_bar
, bmreg_cmd
,
276 BM_CMD_START
| (from_dev
? BM_CMD_WRITE
: 0));
278 if (flags
& CMDF_ABORT
) {
279 qpci_io_writeb(dev
, bmdma_bar
, bmreg_cmd
, 0);
282 /* Wait for the DMA transfer to complete */
284 status
= qpci_io_readb(dev
, bmdma_bar
, bmreg_status
);
285 } while ((status
& (BM_STS_ACTIVE
| BM_STS_INTR
)) == BM_STS_ACTIVE
);
287 g_assert_cmpint(get_irq(IDE_PRIMARY_IRQ
), ==, !!(status
& BM_STS_INTR
));
289 /* Check IDE status code */
290 assert_bit_set(qpci_io_readb(dev
, ide_bar
, reg_status
), DRDY
);
291 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), BSY
| DRQ
);
293 /* Reading the status register clears the IRQ */
294 g_assert(!get_irq(IDE_PRIMARY_IRQ
));
296 /* Stop DMA transfer if still active */
297 if (status
& BM_STS_ACTIVE
) {
298 qpci_io_writeb(dev
, bmdma_bar
, bmreg_cmd
, 0);
301 free_pci_device(dev
);
306 static void test_bmdma_simple_rw(void)
309 QPCIBar bmdma_bar
, ide_bar
;
314 uintptr_t guest_buf
= guest_alloc(guest_malloc
, len
);
318 .addr
= cpu_to_le32(guest_buf
),
319 .size
= cpu_to_le32(len
| PRDT_EOT
),
323 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
326 cmpbuf
= g_malloc(len
);
328 /* Write 0x55 pattern to sector 0 */
329 memset(buf
, 0x55, len
);
330 memwrite(guest_buf
, buf
, len
);
332 status
= send_dma_request(CMD_WRITE_DMA
, 0, 1, prdt
,
333 ARRAY_SIZE(prdt
), NULL
);
334 g_assert_cmphex(status
, ==, BM_STS_INTR
);
335 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
337 /* Write 0xaa pattern to sector 1 */
338 memset(buf
, 0xaa, len
);
339 memwrite(guest_buf
, buf
, len
);
341 status
= send_dma_request(CMD_WRITE_DMA
, 1, 1, prdt
,
342 ARRAY_SIZE(prdt
), NULL
);
343 g_assert_cmphex(status
, ==, BM_STS_INTR
);
344 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
346 /* Read and verify 0x55 pattern in sector 0 */
347 memset(cmpbuf
, 0x55, len
);
349 status
= send_dma_request(CMD_READ_DMA
, 0, 1, prdt
, ARRAY_SIZE(prdt
), NULL
);
350 g_assert_cmphex(status
, ==, BM_STS_INTR
);
351 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
353 memread(guest_buf
, buf
, len
);
354 g_assert(memcmp(buf
, cmpbuf
, len
) == 0);
356 /* Read and verify 0xaa pattern in sector 1 */
357 memset(cmpbuf
, 0xaa, len
);
359 status
= send_dma_request(CMD_READ_DMA
, 1, 1, prdt
, ARRAY_SIZE(prdt
), NULL
);
360 g_assert_cmphex(status
, ==, BM_STS_INTR
);
361 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
363 memread(guest_buf
, buf
, len
);
364 g_assert(memcmp(buf
, cmpbuf
, len
) == 0);
367 free_pci_device(dev
);
372 static void test_bmdma_trim(void)
375 QPCIBar bmdma_bar
, ide_bar
;
377 const uint64_t trim_range
[] = { trim_range_le(0, 2),
379 trim_range_le(10, 1),
381 const uint64_t bad_range
= trim_range_le(TEST_IMAGE_SIZE
/ 512 - 1, 2);
384 uintptr_t guest_buf
= guest_alloc(guest_malloc
, len
);
388 .addr
= cpu_to_le32(guest_buf
),
389 .size
= cpu_to_le32(len
| PRDT_EOT
),
393 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
398 *((uint64_t *)buf
) = trim_range
[0];
399 *((uint64_t *)buf
+ 1) = trim_range
[1];
401 memwrite(guest_buf
, buf
, 2 * sizeof(uint64_t));
403 status
= send_dma_request(CMD_DSM
, 0, 1, prdt
,
404 ARRAY_SIZE(prdt
), NULL
);
405 g_assert_cmphex(status
, ==, BM_STS_INTR
);
406 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
408 /* Request contains invalid range */
409 *((uint64_t *)buf
) = trim_range
[2];
410 *((uint64_t *)buf
+ 1) = bad_range
;
412 memwrite(guest_buf
, buf
, 2 * sizeof(uint64_t));
414 status
= send_dma_request(CMD_DSM
, 0, 1, prdt
,
415 ARRAY_SIZE(prdt
), NULL
);
416 g_assert_cmphex(status
, ==, BM_STS_INTR
);
417 assert_bit_set(qpci_io_readb(dev
, ide_bar
, reg_status
), ERR
);
418 assert_bit_set(qpci_io_readb(dev
, ide_bar
, reg_error
), ABRT
);
420 free_pci_device(dev
);
424 static void test_bmdma_short_prdt(void)
427 QPCIBar bmdma_bar
, ide_bar
;
433 .size
= cpu_to_le32(0x10 | PRDT_EOT
),
437 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
440 status
= send_dma_request(CMD_READ_DMA
, 0, 1,
441 prdt
, ARRAY_SIZE(prdt
), NULL
);
442 g_assert_cmphex(status
, ==, 0);
443 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
445 /* Abort the request before it completes */
446 status
= send_dma_request(CMD_READ_DMA
| CMDF_ABORT
, 0, 1,
447 prdt
, ARRAY_SIZE(prdt
), NULL
);
448 g_assert_cmphex(status
, ==, 0);
449 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
450 free_pci_device(dev
);
453 static void test_bmdma_one_sector_short_prdt(void)
456 QPCIBar bmdma_bar
, ide_bar
;
459 /* Read 2 sectors but only give 1 sector in PRDT */
463 .size
= cpu_to_le32(0x200 | PRDT_EOT
),
467 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
470 status
= send_dma_request(CMD_READ_DMA
, 0, 2,
471 prdt
, ARRAY_SIZE(prdt
), NULL
);
472 g_assert_cmphex(status
, ==, 0);
473 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
475 /* Abort the request before it completes */
476 status
= send_dma_request(CMD_READ_DMA
| CMDF_ABORT
, 0, 2,
477 prdt
, ARRAY_SIZE(prdt
), NULL
);
478 g_assert_cmphex(status
, ==, 0);
479 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
480 free_pci_device(dev
);
483 static void test_bmdma_long_prdt(void)
486 QPCIBar bmdma_bar
, ide_bar
;
492 .size
= cpu_to_le32(0x1000 | PRDT_EOT
),
496 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
499 status
= send_dma_request(CMD_READ_DMA
, 0, 1,
500 prdt
, ARRAY_SIZE(prdt
), NULL
);
501 g_assert_cmphex(status
, ==, BM_STS_ACTIVE
| BM_STS_INTR
);
502 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
504 /* Abort the request before it completes */
505 status
= send_dma_request(CMD_READ_DMA
| CMDF_ABORT
, 0, 1,
506 prdt
, ARRAY_SIZE(prdt
), NULL
);
507 g_assert_cmphex(status
, ==, BM_STS_INTR
);
508 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
509 free_pci_device(dev
);
512 static void test_bmdma_no_busmaster(void)
515 QPCIBar bmdma_bar
, ide_bar
;
518 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
520 /* No PRDT_EOT, each entry addr 0/size 64k, and in theory qemu shouldn't be
521 * able to access it anyway because the Bus Master bit in the PCI command
522 * register isn't set. This is complete nonsense, but it used to be pretty
523 * good at confusing and occasionally crashing qemu. */
524 PrdtEntry prdt
[4096] = { };
526 status
= send_dma_request(CMD_READ_DMA
| CMDF_NO_BM
, 0, 512,
527 prdt
, ARRAY_SIZE(prdt
), NULL
);
529 /* Not entirely clear what the expected result is, but this is what we get
530 * in practice. At least we want to be aware of any changes. */
531 g_assert_cmphex(status
, ==, BM_STS_ACTIVE
| BM_STS_INTR
);
532 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
533 free_pci_device(dev
);
536 static void test_bmdma_setup(void)
539 "-drive file=%s,if=ide,cache=writeback,format=raw "
540 "-global ide-hd.serial=%s -global ide-hd.ver=%s",
541 tmp_path
, "testdisk", "version");
542 qtest_irq_intercept_in(global_qtest
, "ioapic");
545 static void test_bmdma_teardown(void)
550 static void string_cpu_to_be16(uint16_t *s
, size_t bytes
)
552 g_assert((bytes
& 1) == 0);
556 *s
= cpu_to_be16(*s
);
561 static void test_identify(void)
564 QPCIBar bmdma_bar
, ide_bar
;
571 "-drive file=%s,if=ide,cache=writeback,format=raw "
572 "-global ide-hd.serial=%s -global ide-hd.ver=%s",
573 tmp_path
, "testdisk", "version");
575 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
577 /* IDENTIFY command on device 0*/
578 qpci_io_writeb(dev
, ide_bar
, reg_device
, 0);
579 qpci_io_writeb(dev
, ide_bar
, reg_command
, CMD_IDENTIFY
);
581 /* Read in the IDENTIFY buffer and check registers */
582 data
= qpci_io_readb(dev
, ide_bar
, reg_device
);
583 g_assert_cmpint(data
& DEV
, ==, 0);
585 for (i
= 0; i
< 256; i
++) {
586 data
= qpci_io_readb(dev
, ide_bar
, reg_status
);
587 assert_bit_set(data
, DRDY
| DRQ
);
588 assert_bit_clear(data
, BSY
| DF
| ERR
);
590 buf
[i
] = qpci_io_readw(dev
, ide_bar
, reg_data
);
593 data
= qpci_io_readb(dev
, ide_bar
, reg_status
);
594 assert_bit_set(data
, DRDY
);
595 assert_bit_clear(data
, BSY
| DF
| ERR
| DRQ
);
597 /* Check serial number/version in the buffer */
598 string_cpu_to_be16(&buf
[10], 20);
599 ret
= memcmp(&buf
[10], "testdisk ", 20);
602 string_cpu_to_be16(&buf
[23], 8);
603 ret
= memcmp(&buf
[23], "version ", 8);
606 /* Write cache enabled bit */
607 assert_bit_set(buf
[85], 0x20);
610 free_pci_device(dev
);
614 * Write sector 1 with random data to make IDE storage dirty
615 * Needed for flush tests so that flushes actually go though the block layer
617 static void make_dirty(uint8_t device
)
620 QPCIBar bmdma_bar
, ide_bar
;
626 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
628 guest_buf
= guest_alloc(guest_malloc
, len
);
630 memset(buf
, rand() % 255 + 1, len
);
634 memwrite(guest_buf
, buf
, len
);
638 .addr
= cpu_to_le32(guest_buf
),
639 .size
= cpu_to_le32(len
| PRDT_EOT
),
643 status
= send_dma_request(CMD_WRITE_DMA
, 1, 1, prdt
,
644 ARRAY_SIZE(prdt
), NULL
);
645 g_assert_cmphex(status
, ==, BM_STS_INTR
);
646 assert_bit_clear(qpci_io_readb(dev
, ide_bar
, reg_status
), DF
| ERR
);
649 free_pci_device(dev
);
652 static void test_flush(void)
655 QPCIBar bmdma_bar
, ide_bar
;
659 "-drive file=blkdebug::%s,if=ide,cache=writeback,format=raw",
662 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
664 qtest_irq_intercept_in(global_qtest
, "ioapic");
666 /* Dirty media so that CMD_FLUSH_CACHE will actually go to disk */
669 /* Delay the completion of the flush request until we explicitly do it */
670 g_free(hmp("qemu-io ide0-hd0 \"break flush_to_os A\""));
672 /* FLUSH CACHE command on device 0*/
673 qpci_io_writeb(dev
, ide_bar
, reg_device
, 0);
674 qpci_io_writeb(dev
, ide_bar
, reg_command
, CMD_FLUSH_CACHE
);
676 /* Check status while request is in flight*/
677 data
= qpci_io_readb(dev
, ide_bar
, reg_status
);
678 assert_bit_set(data
, BSY
| DRDY
);
679 assert_bit_clear(data
, DF
| ERR
| DRQ
);
681 /* Complete the command */
682 g_free(hmp("qemu-io ide0-hd0 \"resume A\""));
684 /* Check registers */
685 data
= qpci_io_readb(dev
, ide_bar
, reg_device
);
686 g_assert_cmpint(data
& DEV
, ==, 0);
689 data
= qpci_io_readb(dev
, ide_bar
, reg_status
);
690 } while (data
& BSY
);
692 assert_bit_set(data
, DRDY
);
693 assert_bit_clear(data
, BSY
| DF
| ERR
| DRQ
);
696 free_pci_device(dev
);
699 static void test_retry_flush(const char *machine
)
702 QPCIBar bmdma_bar
, ide_bar
;
705 prepare_blkdebug_script(debug_path
, "flush_to_disk");
708 "-drive file=blkdebug:%s:%s,if=ide,cache=writeback,format=raw,"
709 "rerror=stop,werror=stop",
710 debug_path
, tmp_path
);
712 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
714 qtest_irq_intercept_in(global_qtest
, "ioapic");
716 /* Dirty media so that CMD_FLUSH_CACHE will actually go to disk */
719 /* FLUSH CACHE command on device 0*/
720 qpci_io_writeb(dev
, ide_bar
, reg_device
, 0);
721 qpci_io_writeb(dev
, ide_bar
, reg_command
, CMD_FLUSH_CACHE
);
723 /* Check status while request is in flight*/
724 data
= qpci_io_readb(dev
, ide_bar
, reg_status
);
725 assert_bit_set(data
, BSY
| DRDY
);
726 assert_bit_clear(data
, DF
| ERR
| DRQ
);
728 qmp_eventwait("STOP");
730 /* Complete the command */
731 qmp_discard_response("{'execute':'cont' }");
733 /* Check registers */
734 data
= qpci_io_readb(dev
, ide_bar
, reg_device
);
735 g_assert_cmpint(data
& DEV
, ==, 0);
738 data
= qpci_io_readb(dev
, ide_bar
, reg_status
);
739 } while (data
& BSY
);
741 assert_bit_set(data
, DRDY
);
742 assert_bit_clear(data
, BSY
| DF
| ERR
| DRQ
);
745 free_pci_device(dev
);
748 static void test_flush_nodev(void)
751 QPCIBar bmdma_bar
, ide_bar
;
755 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
757 /* FLUSH CACHE command on device 0*/
758 qpci_io_writeb(dev
, ide_bar
, reg_device
, 0);
759 qpci_io_writeb(dev
, ide_bar
, reg_command
, CMD_FLUSH_CACHE
);
761 /* Just testing that qemu doesn't crash... */
763 free_pci_device(dev
);
767 static void test_flush_empty_drive(void)
770 QPCIBar bmdma_bar
, ide_bar
;
772 ide_test_start("-device ide-cd,bus=ide.0");
773 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
775 /* FLUSH CACHE command on device 0 */
776 qpci_io_writeb(dev
, ide_bar
, reg_device
, 0);
777 qpci_io_writeb(dev
, ide_bar
, reg_command
, CMD_FLUSH_CACHE
);
779 /* Just testing that qemu doesn't crash... */
781 free_pci_device(dev
);
785 static void test_pci_retry_flush(void)
787 test_retry_flush("pc");
790 static void test_isa_retry_flush(void)
792 test_retry_flush("isapc");
795 typedef struct Read10CDB
{
803 } __attribute__((__packed__
)) Read10CDB
;
805 static void send_scsi_cdb_read10(QPCIDevice
*dev
, QPCIBar ide_bar
,
806 uint64_t lba
, int nblocks
)
808 Read10CDB pkt
= { .padding
= 0 };
811 g_assert_cmpint(lba
, <=, UINT32_MAX
);
812 g_assert_cmpint(nblocks
, <=, UINT16_MAX
);
813 g_assert_cmpint(nblocks
, >=, 0);
815 /* Construct SCSI CDB packet */
817 pkt
.lba
= cpu_to_be32(lba
);
818 pkt
.nblocks
= cpu_to_be16(nblocks
);
821 for (i
= 0; i
< sizeof(Read10CDB
)/2; i
++) {
822 qpci_io_writew(dev
, ide_bar
, reg_data
,
823 le16_to_cpu(((uint16_t *)&pkt
)[i
]));
827 static void nsleep(int64_t nsecs
)
829 const struct timespec val
= { .tv_nsec
= nsecs
};
830 nanosleep(&val
, NULL
);
834 static uint8_t ide_wait_clear(uint8_t flag
)
837 QPCIBar bmdma_bar
, ide_bar
;
841 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
843 /* Wait with a 5 second timeout */
846 data
= qpci_io_readb(dev
, ide_bar
, reg_status
);
847 if (!(data
& flag
)) {
848 free_pci_device(dev
);
851 if (difftime(time(NULL
), st
) > 5.0) {
856 g_assert_not_reached();
859 static void ide_wait_intr(int irq
)
870 if (difftime(time(NULL
), st
) > 5.0) {
876 g_assert_not_reached();
879 static void cdrom_pio_impl(int nblocks
)
882 QPCIBar bmdma_bar
, ide_bar
;
884 int patt_blocks
= MAX(16, nblocks
);
885 size_t patt_len
= ATAPI_BLOCK_SIZE
* patt_blocks
;
886 char *pattern
= g_malloc(patt_len
);
887 size_t rxsize
= ATAPI_BLOCK_SIZE
* nblocks
;
888 uint16_t *rx
= g_malloc0(rxsize
);
894 /* Prepopulate the CDROM with an interesting pattern */
895 generate_pattern(pattern
, patt_len
, ATAPI_BLOCK_SIZE
);
896 fh
= fopen(tmp_path
, "w+");
897 ret
= fwrite(pattern
, ATAPI_BLOCK_SIZE
, patt_blocks
, fh
);
898 g_assert_cmpint(ret
, ==, patt_blocks
);
901 ide_test_start("-drive if=none,file=%s,media=cdrom,format=raw,id=sr0,index=0 "
902 "-device ide-cd,drive=sr0,bus=ide.0", tmp_path
);
903 dev
= get_pci_device(&bmdma_bar
, &ide_bar
);
904 qtest_irq_intercept_in(global_qtest
, "ioapic");
906 /* PACKET command on device 0 */
907 qpci_io_writeb(dev
, ide_bar
, reg_device
, 0);
908 qpci_io_writeb(dev
, ide_bar
, reg_lba_middle
, BYTE_COUNT_LIMIT
& 0xFF);
909 qpci_io_writeb(dev
, ide_bar
, reg_lba_high
, (BYTE_COUNT_LIMIT
>> 8 & 0xFF));
910 qpci_io_writeb(dev
, ide_bar
, reg_command
, CMD_PACKET
);
911 /* HP0: Check_Status_A State */
913 data
= ide_wait_clear(BSY
);
914 /* HP1: Send_Packet State */
915 assert_bit_set(data
, DRQ
| DRDY
);
916 assert_bit_clear(data
, ERR
| DF
| BSY
);
918 /* SCSI CDB (READ10) -- read n*2048 bytes from block 0 */
919 send_scsi_cdb_read10(dev
, ide_bar
, 0, nblocks
);
921 /* Read data back: occurs in bursts of 'BYTE_COUNT_LIMIT' bytes.
922 * If BYTE_COUNT_LIMIT is odd, we transfer BYTE_COUNT_LIMIT - 1 bytes.
923 * We allow an odd limit only when the remaining transfer size is
924 * less than BYTE_COUNT_LIMIT. However, SCSI's read10 command can only
925 * request n blocks, so our request size is always even.
926 * For this reason, we assume there is never a hanging byte to fetch. */
927 g_assert(!(rxsize
& 1));
928 limit
= BYTE_COUNT_LIMIT
& ~1;
929 for (i
= 0; i
< DIV_ROUND_UP(rxsize
, limit
); i
++) {
930 size_t offset
= i
* (limit
/ 2);
931 size_t rem
= (rxsize
/ 2) - offset
;
933 /* HP3: INTRQ_Wait */
934 ide_wait_intr(IDE_PRIMARY_IRQ
);
936 /* HP2: Check_Status_B (and clear IRQ) */
937 data
= ide_wait_clear(BSY
);
938 assert_bit_set(data
, DRQ
| DRDY
);
939 assert_bit_clear(data
, ERR
| DF
| BSY
);
941 /* HP4: Transfer_Data */
942 for (j
= 0; j
< MIN((limit
/ 2), rem
); j
++) {
943 rx
[offset
+ j
] = cpu_to_le16(qpci_io_readw(dev
, ide_bar
,
948 /* Check for final completion IRQ */
949 ide_wait_intr(IDE_PRIMARY_IRQ
);
951 /* Sanity check final state */
952 data
= ide_wait_clear(DRQ
);
953 assert_bit_set(data
, DRDY
);
954 assert_bit_clear(data
, DRQ
| ERR
| DF
| BSY
);
956 g_assert_cmpint(memcmp(pattern
, rx
, rxsize
), ==, 0);
959 test_bmdma_teardown();
960 free_pci_device(dev
);
963 static void test_cdrom_pio(void)
968 static void test_cdrom_pio_large(void)
970 /* Test a few loops of the PIO DRQ mechanism. */
971 cdrom_pio_impl(BYTE_COUNT_LIMIT
* 4 / ATAPI_BLOCK_SIZE
);
975 static void test_cdrom_dma(void)
977 static const size_t len
= ATAPI_BLOCK_SIZE
;
979 char *pattern
= g_malloc(ATAPI_BLOCK_SIZE
* 16);
980 char *rx
= g_malloc0(len
);
985 ide_test_start("-drive if=none,file=%s,media=cdrom,format=raw,id=sr0,index=0 "
986 "-device ide-cd,drive=sr0,bus=ide.0", tmp_path
);
987 qtest_irq_intercept_in(global_qtest
, "ioapic");
989 guest_buf
= guest_alloc(guest_malloc
, len
);
990 prdt
[0].addr
= cpu_to_le32(guest_buf
);
991 prdt
[0].size
= cpu_to_le32(len
| PRDT_EOT
);
993 generate_pattern(pattern
, ATAPI_BLOCK_SIZE
* 16, ATAPI_BLOCK_SIZE
);
994 fh
= fopen(tmp_path
, "w+");
995 ret
= fwrite(pattern
, ATAPI_BLOCK_SIZE
, 16, fh
);
996 g_assert_cmpint(ret
, ==, 16);
999 send_dma_request(CMD_PACKET
, 0, 1, prdt
, 1, send_scsi_cdb_read10
);
1001 /* Read back data from guest memory into local qtest memory */
1002 memread(guest_buf
, rx
, len
);
1003 g_assert_cmpint(memcmp(pattern
, rx
, len
), ==, 0);
1007 test_bmdma_teardown();
1010 int main(int argc
, char **argv
)
1015 /* Create temporary blkdebug instructions */
1016 fd
= mkstemp(debug_path
);
1020 /* Create a temporary raw image */
1021 fd
= mkstemp(tmp_path
);
1023 ret
= ftruncate(fd
, TEST_IMAGE_SIZE
);
1028 g_test_init(&argc
, &argv
, NULL
);
1030 qtest_add_func("/ide/identify", test_identify
);
1032 qtest_add_func("/ide/bmdma/setup", test_bmdma_setup
);
1033 qtest_add_func("/ide/bmdma/simple_rw", test_bmdma_simple_rw
);
1034 qtest_add_func("/ide/bmdma/trim", test_bmdma_trim
);
1035 qtest_add_func("/ide/bmdma/short_prdt", test_bmdma_short_prdt
);
1036 qtest_add_func("/ide/bmdma/one_sector_short_prdt",
1037 test_bmdma_one_sector_short_prdt
);
1038 qtest_add_func("/ide/bmdma/long_prdt", test_bmdma_long_prdt
);
1039 qtest_add_func("/ide/bmdma/no_busmaster", test_bmdma_no_busmaster
);
1040 qtest_add_func("/ide/bmdma/teardown", test_bmdma_teardown
);
1042 qtest_add_func("/ide/flush", test_flush
);
1043 qtest_add_func("/ide/flush/nodev", test_flush_nodev
);
1044 qtest_add_func("/ide/flush/empty_drive", test_flush_empty_drive
);
1045 qtest_add_func("/ide/flush/retry_pci", test_pci_retry_flush
);
1046 qtest_add_func("/ide/flush/retry_isa", test_isa_retry_flush
);
1048 qtest_add_func("/ide/cdrom/pio", test_cdrom_pio
);
1049 qtest_add_func("/ide/cdrom/pio_large", test_cdrom_pio_large
);
1050 qtest_add_func("/ide/cdrom/dma", test_cdrom_dma
);
projects / thirdparty / qemu.git / blob