/hw/usb-msd.c - Annotate - qemu - Greek Research and Technology Network's projects

root / hw / usb-msd.c @ e7b43f7e

History | View | Annotate | Download (17.9 kB)

1	5fafdf24	ths	/*
2	2e5d83bb	pbrook	* USB Mass Storage Device emulation
3	2e5d83bb	pbrook	*
4	2e5d83bb	pbrook	* Copyright (c) 2006 CodeSourcery.
5	2e5d83bb	pbrook	* Written by Paul Brook
6	2e5d83bb	pbrook	*
7	2e5d83bb	pbrook	* This code is licenced under the LGPL.
8	2e5d83bb	pbrook	*/
9	2e5d83bb	pbrook
10	87ecb68b	pbrook	#include "qemu-common.h"
11	7fc2f2c0	Gerd Hoffmann	#include "qemu-option.h"
12	7fc2f2c0	Gerd Hoffmann	#include "qemu-config.h"
13	87ecb68b	pbrook	#include "usb.h"
14	43b443b6	Gerd Hoffmann	#include "scsi.h"
15	c0f4ce77	aliguori	#include "console.h"
16	b3e461d3	Gerd Hoffmann	#include "monitor.h"
17	666daa68	Markus Armbruster	#include "sysemu.h"
18	2446333c	Blue Swirl	#include "blockdev.h"
19	2e5d83bb	pbrook
20	2e5d83bb	pbrook	//#define DEBUG_MSD
21	2e5d83bb	pbrook
22	2e5d83bb	pbrook	#ifdef DEBUG_MSD
23	001faf32	Blue Swirl	#define DPRINTF(fmt, ...) \
24	001faf32	Blue Swirl	do { printf("usb-msd: " fmt , ## __VA_ARGS__); } while (0)
25	2e5d83bb	pbrook	#else
26	001faf32	Blue Swirl	#define DPRINTF(fmt, ...) do {} while(0)
27	2e5d83bb	pbrook	#endif
28	2e5d83bb	pbrook
29	2e5d83bb	pbrook	/* USB requests. */
30	2e5d83bb	pbrook	#define MassStorageReset 0xff
31	2e5d83bb	pbrook	#define GetMaxLun 0xfe
32	2e5d83bb	pbrook
33	2e5d83bb	pbrook	enum USBMSDMode {
34	2e5d83bb	pbrook	USB_MSDM_CBW, /* Command Block. */
35	2e5d83bb	pbrook	USB_MSDM_DATAOUT, /* Tranfer data to device. */
36	2e5d83bb	pbrook	USB_MSDM_DATAIN, /* Transfer data from device. */
37	2e5d83bb	pbrook	USB_MSDM_CSW /* Command Status. */
38	2e5d83bb	pbrook	};
39	2e5d83bb	pbrook
40	2e5d83bb	pbrook	typedef struct {
41	2e5d83bb	pbrook	USBDevice dev;
42	2e5d83bb	pbrook	enum USBMSDMode mode;
43	a917d384	pbrook	uint32_t scsi_len;
44	a917d384	pbrook	uint8_t *scsi_buf;
45	a917d384	pbrook	uint32_t usb_len;
46	a917d384	pbrook	uint8_t *usb_buf;
47	2e5d83bb	pbrook	uint32_t data_len;
48	a917d384	pbrook	uint32_t residue;
49	2e5d83bb	pbrook	uint32_t tag;
50	ca9c39fa	Gerd Hoffmann	SCSIBus bus;
51	428c149b	Christoph Hellwig	BlockConf conf;
52	2e5d83bb	pbrook	SCSIDevice *scsi_dev;
53	2e5d83bb	pbrook	int result;
54	4d611c9a	pbrook	/* For async completion. */
55	4d611c9a	pbrook	USBPacket *packet;
56	2e5d83bb	pbrook	} MSDState;
57	2e5d83bb	pbrook
58	a917d384	pbrook	struct usb_msd_cbw {
59	a917d384	pbrook	uint32_t sig;
60	a917d384	pbrook	uint32_t tag;
61	a917d384	pbrook	uint32_t data_len;
62	a917d384	pbrook	uint8_t flags;
63	a917d384	pbrook	uint8_t lun;
64	a917d384	pbrook	uint8_t cmd_len;
65	a917d384	pbrook	uint8_t cmd[16];
66	a917d384	pbrook	};
67	a917d384	pbrook
68	a917d384	pbrook	struct usb_msd_csw {
69	a917d384	pbrook	uint32_t sig;
70	a917d384	pbrook	uint32_t tag;
71	a917d384	pbrook	uint32_t residue;
72	a917d384	pbrook	uint8_t status;
73	a917d384	pbrook	};
74	a917d384	pbrook
75	2e5d83bb	pbrook	static const uint8_t qemu_msd_dev_descriptor[] = {
76	2e5d83bb	pbrook	0x12, /* u8 bLength; */
77	2e5d83bb	pbrook	0x01, /* u8 bDescriptorType; Device */
78	e126cf13	ths	0x00, 0x01, /* u16 bcdUSB; v1.0 */
79	2e5d83bb	pbrook
80	2e5d83bb	pbrook	0x00, /* u8 bDeviceClass; */
81	2e5d83bb	pbrook	0x00, /* u8 bDeviceSubClass; */
82	2e5d83bb	pbrook	0x00, /* u8 bDeviceProtocol; [ low/full speeds only ] */
83	2e5d83bb	pbrook	0x08, /* u8 bMaxPacketSize0; 8 Bytes */
84	2e5d83bb	pbrook
85	2e5d83bb	pbrook	/* Vendor and product id are arbitrary. */
86	2e5d83bb	pbrook	0x00, 0x00, /* u16 idVendor; */
87	2e5d83bb	pbrook	0x00, 0x00, /* u16 idProduct; */
88	2e5d83bb	pbrook	0x00, 0x00, /* u16 bcdDevice */
89	2e5d83bb	pbrook
90	2e5d83bb	pbrook	0x01, /* u8 iManufacturer; */
91	2e5d83bb	pbrook	0x02, /* u8 iProduct; */
92	2e5d83bb	pbrook	0x03, /* u8 iSerialNumber; */
93	2e5d83bb	pbrook	0x01 /* u8 bNumConfigurations; */
94	2e5d83bb	pbrook	};
95	2e5d83bb	pbrook
96	2e5d83bb	pbrook	static const uint8_t qemu_msd_config_descriptor[] = {
97	2e5d83bb	pbrook
98	2e5d83bb	pbrook	/* one configuration */
99	2e5d83bb	pbrook	0x09, /* u8 bLength; */
100	2e5d83bb	pbrook	0x02, /* u8 bDescriptorType; Configuration */
101	2e5d83bb	pbrook	0x20, 0x00, /* u16 wTotalLength; */
102	2e5d83bb	pbrook	0x01, /* u8 bNumInterfaces; (1) */
103	2e5d83bb	pbrook	0x01, /* u8 bConfigurationValue; */
104	2e5d83bb	pbrook	0x00, /* u8 iConfiguration; */
105	5fafdf24	ths	0xc0, /* u8 bmAttributes;
106	2e5d83bb	pbrook	Bit 7: must be set,
107	2e5d83bb	pbrook	6: Self-powered,
108	2e5d83bb	pbrook	5: Remote wakeup,
109	2e5d83bb	pbrook	4..0: resvd */
110	2e5d83bb	pbrook	0x00, /* u8 MaxPower; */
111	3b46e624	ths
112	2e5d83bb	pbrook	/* one interface */
113	2e5d83bb	pbrook	0x09, /* u8 if_bLength; */
114	2e5d83bb	pbrook	0x04, /* u8 if_bDescriptorType; Interface */
115	2e5d83bb	pbrook	0x00, /* u8 if_bInterfaceNumber; */
116	2e5d83bb	pbrook	0x00, /* u8 if_bAlternateSetting; */
117	2e5d83bb	pbrook	0x02, /* u8 if_bNumEndpoints; */
118	2e5d83bb	pbrook	0x08, /* u8 if_bInterfaceClass; MASS STORAGE */
119	2e5d83bb	pbrook	0x06, /* u8 if_bInterfaceSubClass; SCSI */
120	2e5d83bb	pbrook	0x50, /* u8 if_bInterfaceProtocol; Bulk Only */
121	2e5d83bb	pbrook	0x00, /* u8 if_iInterface; */
122	3b46e624	ths
123	2e5d83bb	pbrook	/* Bulk-In endpoint */
124	2e5d83bb	pbrook	0x07, /* u8 ep_bLength; */
125	2e5d83bb	pbrook	0x05, /* u8 ep_bDescriptorType; Endpoint */
126	2e5d83bb	pbrook	0x81, /* u8 ep_bEndpointAddress; IN Endpoint 1 */
127	2e5d83bb	pbrook	0x02, /* u8 ep_bmAttributes; Bulk */
128	2e5d83bb	pbrook	0x40, 0x00, /* u16 ep_wMaxPacketSize; */
129	2e5d83bb	pbrook	0x00, /* u8 ep_bInterval; */
130	2e5d83bb	pbrook
131	2e5d83bb	pbrook	/* Bulk-Out endpoint */
132	2e5d83bb	pbrook	0x07, /* u8 ep_bLength; */
133	2e5d83bb	pbrook	0x05, /* u8 ep_bDescriptorType; Endpoint */
134	2e5d83bb	pbrook	0x02, /* u8 ep_bEndpointAddress; OUT Endpoint 2 */
135	2e5d83bb	pbrook	0x02, /* u8 ep_bmAttributes; Bulk */
136	2e5d83bb	pbrook	0x40, 0x00, /* u16 ep_wMaxPacketSize; */
137	2e5d83bb	pbrook	0x00 /* u8 ep_bInterval; */
138	2e5d83bb	pbrook	};
139	2e5d83bb	pbrook
140	a917d384	pbrook	static void usb_msd_copy_data(MSDState *s)
141	a917d384	pbrook	{
142	a917d384	pbrook	uint32_t len;
143	a917d384	pbrook	len = s->usb_len;
144	a917d384	pbrook	if (len > s->scsi_len)
145	a917d384	pbrook	len = s->scsi_len;
146	a917d384	pbrook	if (s->mode == USB_MSDM_DATAIN) {
147	a917d384	pbrook	memcpy(s->usb_buf, s->scsi_buf, len);
148	a917d384	pbrook	} else {
149	a917d384	pbrook	memcpy(s->scsi_buf, s->usb_buf, len);
150	a917d384	pbrook	}
151	a917d384	pbrook	s->usb_len -= len;
152	a917d384	pbrook	s->scsi_len -= len;
153	a917d384	pbrook	s->usb_buf += len;
154	a917d384	pbrook	s->scsi_buf += len;
155	a917d384	pbrook	s->data_len -= len;
156	a917d384	pbrook	if (s->scsi_len == 0) {
157	a917d384	pbrook	if (s->mode == USB_MSDM_DATAIN) {
158	d52affa7	Gerd Hoffmann	s->scsi_dev->info->read_data(s->scsi_dev, s->tag);
159	a917d384	pbrook	} else if (s->mode == USB_MSDM_DATAOUT) {
160	d52affa7	Gerd Hoffmann	s->scsi_dev->info->write_data(s->scsi_dev, s->tag);
161	a917d384	pbrook	}
162	a917d384	pbrook	}
163	a917d384	pbrook	}
164	a917d384	pbrook
165	a917d384	pbrook	static void usb_msd_send_status(MSDState *s)
166	a917d384	pbrook	{
167	a917d384	pbrook	struct usb_msd_csw csw;
168	a917d384	pbrook
169	a917d384	pbrook	csw.sig = cpu_to_le32(0x53425355);
170	a917d384	pbrook	csw.tag = cpu_to_le32(s->tag);
171	a917d384	pbrook	csw.residue = s->residue;
172	a917d384	pbrook	csw.status = s->result;
173	a917d384	pbrook	memcpy(s->usb_buf, &csw, 13);
174	a917d384	pbrook	}
175	a917d384	pbrook
176	d52affa7	Gerd Hoffmann	static void usb_msd_command_complete(SCSIBus *bus, int reason, uint32_t tag,
177	a917d384	pbrook	uint32_t arg)
178	2e5d83bb	pbrook	{
179	d52affa7	Gerd Hoffmann	MSDState *s = DO_UPCAST(MSDState, dev.qdev, bus->qbus.parent);
180	a917d384	pbrook	USBPacket *p = s->packet;
181	4d611c9a	pbrook
182	a917d384	pbrook	if (tag != s->tag) {
183	a917d384	pbrook	fprintf(stderr, "usb-msd: Unexpected SCSI Tag 0x%x\n", tag);
184	a917d384	pbrook	}
185	4d611c9a	pbrook	if (reason == SCSI_REASON_DONE) {
186	a917d384	pbrook	DPRINTF("Command complete %d\n", arg);
187	a917d384	pbrook	s->residue = s->data_len;
188	a917d384	pbrook	s->result = arg != 0;
189	a917d384	pbrook	if (s->packet) {
190	a917d384	pbrook	if (s->data_len == 0 && s->mode == USB_MSDM_DATAOUT) {
191	a917d384	pbrook	/* A deferred packet with no write data remaining must be
192	a917d384	pbrook	the status read packet. */
193	a917d384	pbrook	usb_msd_send_status(s);
194	a917d384	pbrook	s->mode = USB_MSDM_CBW;
195	a917d384	pbrook	} else {
196	a917d384	pbrook	if (s->data_len) {
197	a917d384	pbrook	s->data_len -= s->usb_len;
198	a917d384	pbrook	if (s->mode == USB_MSDM_DATAIN)
199	a917d384	pbrook	memset(s->usb_buf, 0, s->usb_len);
200	a917d384	pbrook	s->usb_len = 0;
201	a917d384	pbrook	}
202	a917d384	pbrook	if (s->data_len == 0)
203	a917d384	pbrook	s->mode = USB_MSDM_CSW;
204	a917d384	pbrook	}
205	a917d384	pbrook	s->packet = NULL;
206	a917d384	pbrook	usb_packet_complete(p);
207	a917d384	pbrook	} else if (s->data_len == 0) {
208	a917d384	pbrook	s->mode = USB_MSDM_CSW;
209	a917d384	pbrook	}
210	a917d384	pbrook	return;
211	4d611c9a	pbrook	}
212	a917d384	pbrook	s->scsi_len = arg;
213	d52affa7	Gerd Hoffmann	s->scsi_buf = s->scsi_dev->info->get_buf(s->scsi_dev, tag);
214	a917d384	pbrook	if (p) {
215	a917d384	pbrook	usb_msd_copy_data(s);
216	a917d384	pbrook	if (s->usb_len == 0) {
217	a917d384	pbrook	/* Set s->packet to NULL before calling usb_packet_complete
218	a917d384	pbrook	because annother request may be issued before
219	a917d384	pbrook	usb_packet_complete returns. */
220	a917d384	pbrook	DPRINTF("Packet complete %p\n", p);
221	a917d384	pbrook	s->packet = NULL;
222	a917d384	pbrook	usb_packet_complete(p);
223	a917d384	pbrook	}
224	4d611c9a	pbrook	}
225	2e5d83bb	pbrook	}
226	2e5d83bb	pbrook
227	059809e4	bellard	static void usb_msd_handle_reset(USBDevice *dev)
228	2e5d83bb	pbrook	{
229	2e5d83bb	pbrook	MSDState s = (MSDState )dev;
230	2e5d83bb	pbrook
231	2e5d83bb	pbrook	DPRINTF("Reset\n");
232	2e5d83bb	pbrook	s->mode = USB_MSDM_CBW;
233	2e5d83bb	pbrook	}
234	2e5d83bb	pbrook
235	2e5d83bb	pbrook	static int usb_msd_handle_control(USBDevice *dev, int request, int value,
236	2e5d83bb	pbrook	int index, int length, uint8_t *data)
237	2e5d83bb	pbrook	{
238	2e5d83bb	pbrook	MSDState s = (MSDState )dev;
239	2e5d83bb	pbrook	int ret = 0;
240	2e5d83bb	pbrook
241	2e5d83bb	pbrook	switch (request) {
242	2e5d83bb	pbrook	case DeviceRequest \| USB_REQ_GET_STATUS:
243	2e5d83bb	pbrook	data[0] = (1 << USB_DEVICE_SELF_POWERED) \|
244	2e5d83bb	pbrook	(dev->remote_wakeup << USB_DEVICE_REMOTE_WAKEUP);
245	2e5d83bb	pbrook	data[1] = 0x00;
246	2e5d83bb	pbrook	ret = 2;
247	2e5d83bb	pbrook	break;
248	2e5d83bb	pbrook	case DeviceOutRequest \| USB_REQ_CLEAR_FEATURE:
249	2e5d83bb	pbrook	if (value == USB_DEVICE_REMOTE_WAKEUP) {
250	2e5d83bb	pbrook	dev->remote_wakeup = 0;
251	2e5d83bb	pbrook	} else {
252	2e5d83bb	pbrook	goto fail;
253	2e5d83bb	pbrook	}
254	2e5d83bb	pbrook	ret = 0;
255	2e5d83bb	pbrook	break;
256	2e5d83bb	pbrook	case DeviceOutRequest \| USB_REQ_SET_FEATURE:
257	2e5d83bb	pbrook	if (value == USB_DEVICE_REMOTE_WAKEUP) {
258	2e5d83bb	pbrook	dev->remote_wakeup = 1;
259	2e5d83bb	pbrook	} else {
260	2e5d83bb	pbrook	goto fail;
261	2e5d83bb	pbrook	}
262	2e5d83bb	pbrook	ret = 0;
263	2e5d83bb	pbrook	break;
264	2e5d83bb	pbrook	case DeviceOutRequest \| USB_REQ_SET_ADDRESS:
265	2e5d83bb	pbrook	dev->addr = value;
266	2e5d83bb	pbrook	ret = 0;
267	2e5d83bb	pbrook	break;
268	2e5d83bb	pbrook	case DeviceRequest \| USB_REQ_GET_DESCRIPTOR:
269	2e5d83bb	pbrook	switch(value >> 8) {
270	2e5d83bb	pbrook	case USB_DT_DEVICE:
271	5fafdf24	ths	memcpy(data, qemu_msd_dev_descriptor,
272	2e5d83bb	pbrook	sizeof(qemu_msd_dev_descriptor));
273	2e5d83bb	pbrook	ret = sizeof(qemu_msd_dev_descriptor);
274	2e5d83bb	pbrook	break;
275	2e5d83bb	pbrook	case USB_DT_CONFIG:
276	5fafdf24	ths	memcpy(data, qemu_msd_config_descriptor,
277	2e5d83bb	pbrook	sizeof(qemu_msd_config_descriptor));
278	2e5d83bb	pbrook	ret = sizeof(qemu_msd_config_descriptor);
279	2e5d83bb	pbrook	break;
280	2e5d83bb	pbrook	case USB_DT_STRING:
281	2e5d83bb	pbrook	switch(value & 0xff) {
282	2e5d83bb	pbrook	case 0:
283	2e5d83bb	pbrook	/* language ids */
284	2e5d83bb	pbrook	data[0] = 4;
285	2e5d83bb	pbrook	data[1] = 3;
286	2e5d83bb	pbrook	data[2] = 0x09;
287	2e5d83bb	pbrook	data[3] = 0x04;
288	2e5d83bb	pbrook	ret = 4;
289	2e5d83bb	pbrook	break;
290	2e5d83bb	pbrook	case 1:
291	2e5d83bb	pbrook	/* vendor description */
292	2e5d83bb	pbrook	ret = set_usb_string(data, "QEMU " QEMU_VERSION);
293	2e5d83bb	pbrook	break;
294	2e5d83bb	pbrook	case 2:
295	2e5d83bb	pbrook	/* product description */
296	2e5d83bb	pbrook	ret = set_usb_string(data, "QEMU USB HARDDRIVE");
297	2e5d83bb	pbrook	break;
298	2e5d83bb	pbrook	case 3:
299	2e5d83bb	pbrook	/* serial number */
300	2e5d83bb	pbrook	ret = set_usb_string(data, "1");
301	2e5d83bb	pbrook	break;
302	2e5d83bb	pbrook	default:
303	2e5d83bb	pbrook	goto fail;
304	2e5d83bb	pbrook	}
305	2e5d83bb	pbrook	break;
306	2e5d83bb	pbrook	default:
307	2e5d83bb	pbrook	goto fail;
308	2e5d83bb	pbrook	}
309	2e5d83bb	pbrook	break;
310	2e5d83bb	pbrook	case DeviceRequest \| USB_REQ_GET_CONFIGURATION:
311	2e5d83bb	pbrook	data[0] = 1;
312	2e5d83bb	pbrook	ret = 1;
313	2e5d83bb	pbrook	break;
314	2e5d83bb	pbrook	case DeviceOutRequest \| USB_REQ_SET_CONFIGURATION:
315	2e5d83bb	pbrook	ret = 0;
316	2e5d83bb	pbrook	break;
317	2e5d83bb	pbrook	case DeviceRequest \| USB_REQ_GET_INTERFACE:
318	2e5d83bb	pbrook	data[0] = 0;
319	2e5d83bb	pbrook	ret = 1;
320	2e5d83bb	pbrook	break;
321	2e5d83bb	pbrook	case DeviceOutRequest \| USB_REQ_SET_INTERFACE:
322	2e5d83bb	pbrook	ret = 0;
323	2e5d83bb	pbrook	break;
324	2e5d83bb	pbrook	case EndpointOutRequest \| USB_REQ_CLEAR_FEATURE:
325	e5322f76	Arnaud Patard (Rtp)	ret = 0;
326	e5322f76	Arnaud Patard (Rtp)	break;
327	e5322f76	Arnaud Patard (Rtp)	case InterfaceOutRequest \| USB_REQ_SET_INTERFACE:
328	2e5d83bb	pbrook	ret = 0;
329	2e5d83bb	pbrook	break;
330	2e5d83bb	pbrook	/* Class specific requests. */
331	f3571b1a	Max Reitz	case ClassInterfaceOutRequest \| MassStorageReset:
332	2e5d83bb	pbrook	/* Reset state ready for the next CBW. */
333	2e5d83bb	pbrook	s->mode = USB_MSDM_CBW;
334	2e5d83bb	pbrook	ret = 0;
335	2e5d83bb	pbrook	break;
336	f3571b1a	Max Reitz	case ClassInterfaceRequest \| GetMaxLun:
337	2e5d83bb	pbrook	data[0] = 0;
338	2e5d83bb	pbrook	ret = 1;
339	2e5d83bb	pbrook	break;
340	2e5d83bb	pbrook	default:
341	2e5d83bb	pbrook	fail:
342	2e5d83bb	pbrook	ret = USB_RET_STALL;
343	2e5d83bb	pbrook	break;
344	2e5d83bb	pbrook	}
345	2e5d83bb	pbrook	return ret;
346	2e5d83bb	pbrook	}
347	2e5d83bb	pbrook
348	4d611c9a	pbrook	static void usb_msd_cancel_io(USBPacket p, void opaque)
349	4d611c9a	pbrook	{
350	4d611c9a	pbrook	MSDState *s = opaque;
351	d52affa7	Gerd Hoffmann	s->scsi_dev->info->cancel_io(s->scsi_dev, s->tag);
352	4d611c9a	pbrook	s->packet = NULL;
353	a917d384	pbrook	s->scsi_len = 0;
354	4d611c9a	pbrook	}
355	4d611c9a	pbrook
356	4d611c9a	pbrook	static int usb_msd_handle_data(USBDevice dev, USBPacket p)
357	2e5d83bb	pbrook	{
358	2e5d83bb	pbrook	MSDState s = (MSDState )dev;
359	2e5d83bb	pbrook	int ret = 0;
360	2e5d83bb	pbrook	struct usb_msd_cbw cbw;
361	4d611c9a	pbrook	uint8_t devep = p->devep;
362	4d611c9a	pbrook	uint8_t *data = p->data;
363	4d611c9a	pbrook	int len = p->len;
364	2e5d83bb	pbrook
365	4d611c9a	pbrook	switch (p->pid) {
366	2e5d83bb	pbrook	case USB_TOKEN_OUT:
367	2e5d83bb	pbrook	if (devep != 2)
368	2e5d83bb	pbrook	goto fail;
369	2e5d83bb	pbrook
370	2e5d83bb	pbrook	switch (s->mode) {
371	2e5d83bb	pbrook	case USB_MSDM_CBW:
372	2e5d83bb	pbrook	if (len != 31) {
373	2e5d83bb	pbrook	fprintf(stderr, "usb-msd: Bad CBW size");
374	2e5d83bb	pbrook	goto fail;
375	2e5d83bb	pbrook	}
376	2e5d83bb	pbrook	memcpy(&cbw, data, 31);
377	2e5d83bb	pbrook	if (le32_to_cpu(cbw.sig) != 0x43425355) {
378	2e5d83bb	pbrook	fprintf(stderr, "usb-msd: Bad signature %08x\n",
379	2e5d83bb	pbrook	le32_to_cpu(cbw.sig));
380	2e5d83bb	pbrook	goto fail;
381	2e5d83bb	pbrook	}
382	2e5d83bb	pbrook	DPRINTF("Command on LUN %d\n", cbw.lun);
383	2e5d83bb	pbrook	if (cbw.lun != 0) {
384	2e5d83bb	pbrook	fprintf(stderr, "usb-msd: Bad LUN %d\n", cbw.lun);
385	2e5d83bb	pbrook	goto fail;
386	2e5d83bb	pbrook	}
387	2e5d83bb	pbrook	s->tag = le32_to_cpu(cbw.tag);
388	2e5d83bb	pbrook	s->data_len = le32_to_cpu(cbw.data_len);
389	2e5d83bb	pbrook	if (s->data_len == 0) {
390	2e5d83bb	pbrook	s->mode = USB_MSDM_CSW;
391	2e5d83bb	pbrook	} else if (cbw.flags & 0x80) {
392	2e5d83bb	pbrook	s->mode = USB_MSDM_DATAIN;
393	2e5d83bb	pbrook	} else {
394	2e5d83bb	pbrook	s->mode = USB_MSDM_DATAOUT;
395	2e5d83bb	pbrook	}
396	2e5d83bb	pbrook	DPRINTF("Command tag 0x%x flags %08x len %d data %d\n",
397	2e5d83bb	pbrook	s->tag, cbw.flags, cbw.cmd_len, s->data_len);
398	a917d384	pbrook	s->residue = 0;
399	d52affa7	Gerd Hoffmann	s->scsi_dev->info->send_command(s->scsi_dev, s->tag, cbw.cmd, 0);
400	a917d384	pbrook	/* ??? Should check that USB and SCSI data transfer
401	a917d384	pbrook	directions match. */
402	a917d384	pbrook	if (s->residue == 0) {
403	a917d384	pbrook	if (s->mode == USB_MSDM_DATAIN) {
404	d52affa7	Gerd Hoffmann	s->scsi_dev->info->read_data(s->scsi_dev, s->tag);
405	a917d384	pbrook	} else if (s->mode == USB_MSDM_DATAOUT) {
406	d52affa7	Gerd Hoffmann	s->scsi_dev->info->write_data(s->scsi_dev, s->tag);
407	a917d384	pbrook	}
408	a917d384	pbrook	}
409	2e5d83bb	pbrook	ret = len;
410	2e5d83bb	pbrook	break;
411	2e5d83bb	pbrook
412	2e5d83bb	pbrook	case USB_MSDM_DATAOUT:
413	2e5d83bb	pbrook	DPRINTF("Data out %d/%d\n", len, s->data_len);
414	2e5d83bb	pbrook	if (len > s->data_len)
415	2e5d83bb	pbrook	goto fail;
416	2e5d83bb	pbrook
417	a917d384	pbrook	s->usb_buf = data;
418	a917d384	pbrook	s->usb_len = len;
419	a917d384	pbrook	if (s->scsi_len) {
420	a917d384	pbrook	usb_msd_copy_data(s);
421	a917d384	pbrook	}
422	a917d384	pbrook	if (s->residue && s->usb_len) {
423	a917d384	pbrook	s->data_len -= s->usb_len;
424	a917d384	pbrook	if (s->data_len == 0)
425	a917d384	pbrook	s->mode = USB_MSDM_CSW;
426	a917d384	pbrook	s->usb_len = 0;
427	a917d384	pbrook	}
428	a917d384	pbrook	if (s->usb_len) {
429	4d611c9a	pbrook	DPRINTF("Deferring packet %p\n", p);
430	4d611c9a	pbrook	usb_defer_packet(p, usb_msd_cancel_io, s);
431	4d611c9a	pbrook	s->packet = p;
432	4d611c9a	pbrook	ret = USB_RET_ASYNC;
433	a917d384	pbrook	} else {
434	a917d384	pbrook	ret = len;
435	4d611c9a	pbrook	}
436	2e5d83bb	pbrook	break;
437	2e5d83bb	pbrook
438	2e5d83bb	pbrook	default:
439	2e5d83bb	pbrook	DPRINTF("Unexpected write (len %d)\n", len);
440	2e5d83bb	pbrook	goto fail;
441	2e5d83bb	pbrook	}
442	2e5d83bb	pbrook	break;
443	2e5d83bb	pbrook
444	2e5d83bb	pbrook	case USB_TOKEN_IN:
445	2e5d83bb	pbrook	if (devep != 1)
446	2e5d83bb	pbrook	goto fail;
447	2e5d83bb	pbrook
448	2e5d83bb	pbrook	switch (s->mode) {
449	a917d384	pbrook	case USB_MSDM_DATAOUT:
450	a917d384	pbrook	if (s->data_len != 0 \|\| len < 13)
451	a917d384	pbrook	goto fail;
452	a917d384	pbrook	/* Waiting for SCSI write to complete. */
453	a917d384	pbrook	usb_defer_packet(p, usb_msd_cancel_io, s);
454	a917d384	pbrook	s->packet = p;
455	a917d384	pbrook	ret = USB_RET_ASYNC;
456	a917d384	pbrook	break;
457	a917d384	pbrook
458	2e5d83bb	pbrook	case USB_MSDM_CSW:
459	2e5d83bb	pbrook	DPRINTF("Command status %d tag 0x%x, len %d\n",
460	2e5d83bb	pbrook	s->result, s->tag, len);
461	2e5d83bb	pbrook	if (len < 13)
462	2e5d83bb	pbrook	goto fail;
463	2e5d83bb	pbrook
464	a917d384	pbrook	s->usb_len = len;
465	a917d384	pbrook	s->usb_buf = data;
466	a917d384	pbrook	usb_msd_send_status(s);
467	2e5d83bb	pbrook	s->mode = USB_MSDM_CBW;
468	a917d384	pbrook	ret = 13;
469	2e5d83bb	pbrook	break;
470	2e5d83bb	pbrook
471	2e5d83bb	pbrook	case USB_MSDM_DATAIN:
472	2e5d83bb	pbrook	DPRINTF("Data in %d/%d\n", len, s->data_len);
473	2e5d83bb	pbrook	if (len > s->data_len)
474	2e5d83bb	pbrook	len = s->data_len;
475	a917d384	pbrook	s->usb_buf = data;
476	a917d384	pbrook	s->usb_len = len;
477	a917d384	pbrook	if (s->scsi_len) {
478	a917d384	pbrook	usb_msd_copy_data(s);
479	a917d384	pbrook	}
480	a917d384	pbrook	if (s->residue && s->usb_len) {
481	a917d384	pbrook	s->data_len -= s->usb_len;
482	a917d384	pbrook	memset(s->usb_buf, 0, s->usb_len);
483	a917d384	pbrook	if (s->data_len == 0)
484	a917d384	pbrook	s->mode = USB_MSDM_CSW;
485	a917d384	pbrook	s->usb_len = 0;
486	a917d384	pbrook	}
487	a917d384	pbrook	if (s->usb_len) {
488	4d611c9a	pbrook	DPRINTF("Deferring packet %p\n", p);
489	4d611c9a	pbrook	usb_defer_packet(p, usb_msd_cancel_io, s);
490	4d611c9a	pbrook	s->packet = p;
491	4d611c9a	pbrook	ret = USB_RET_ASYNC;
492	a917d384	pbrook	} else {
493	a917d384	pbrook	ret = len;
494	4d611c9a	pbrook	}
495	2e5d83bb	pbrook	break;
496	2e5d83bb	pbrook
497	2e5d83bb	pbrook	default:
498	2e5d83bb	pbrook	DPRINTF("Unexpected read (len %d)\n", len);
499	2e5d83bb	pbrook	goto fail;
500	2e5d83bb	pbrook	}
501	2e5d83bb	pbrook	break;
502	2e5d83bb	pbrook
503	2e5d83bb	pbrook	default:
504	2e5d83bb	pbrook	DPRINTF("Bad token\n");
505	2e5d83bb	pbrook	fail:
506	2e5d83bb	pbrook	ret = USB_RET_STALL;
507	2e5d83bb	pbrook	break;
508	2e5d83bb	pbrook	}
509	2e5d83bb	pbrook
510	2e5d83bb	pbrook	return ret;
511	2e5d83bb	pbrook	}
512	2e5d83bb	pbrook
513	b3e461d3	Gerd Hoffmann	static void usb_msd_password_cb(void *opaque, int err)
514	b3e461d3	Gerd Hoffmann	{
515	b3e461d3	Gerd Hoffmann	MSDState *s = opaque;
516	b3e461d3	Gerd Hoffmann
517	b3e461d3	Gerd Hoffmann	if (!err)
518	b3e461d3	Gerd Hoffmann	usb_device_attach(&s->dev);
519	b3e461d3	Gerd Hoffmann	else
520	b3e461d3	Gerd Hoffmann	qdev_unplug(&s->dev.qdev);
521	b3e461d3	Gerd Hoffmann	}
522	b3e461d3	Gerd Hoffmann
523	806b6024	Gerd Hoffmann	static int usb_msd_initfn(USBDevice *dev)
524	806b6024	Gerd Hoffmann	{
525	806b6024	Gerd Hoffmann	MSDState *s = DO_UPCAST(MSDState, dev, dev);
526	f8b6cc00	Markus Armbruster	BlockDriverState *bs = s->conf.bs;
527	806b6024	Gerd Hoffmann
528	f8b6cc00	Markus Armbruster	if (!bs) {
529	1ecda02b	Markus Armbruster	error_report("usb-msd: drive property not set");
530	7fc2f2c0	Gerd Hoffmann	return -1;
531	7fc2f2c0	Gerd Hoffmann	}
532	7fc2f2c0	Gerd Hoffmann
533	14bafc54	Markus Armbruster	/*
534	14bafc54	Markus Armbruster	* Hack alert: this pretends to be a block device, but it's really
535	14bafc54	Markus Armbruster	* a SCSI bus that can serve only a single device, which it
536	18846dee	Markus Armbruster	* creates automatically. But first it needs to detach from its
537	18846dee	Markus Armbruster	* blockdev, or else scsi_bus_legacy_add_drive() dies when it
538	18846dee	Markus Armbruster	* attaches again.
539	14bafc54	Markus Armbruster	*
540	14bafc54	Markus Armbruster	* The hack is probably a bad idea.
541	14bafc54	Markus Armbruster	*/
542	18846dee	Markus Armbruster	bdrv_detach(bs, &s->dev.qdev);
543	f8b6cc00	Markus Armbruster	s->conf.bs = NULL;
544	14bafc54	Markus Armbruster
545	806b6024	Gerd Hoffmann	s->dev.speed = USB_SPEED_FULL;
546	ca9c39fa	Gerd Hoffmann	scsi_bus_new(&s->bus, &s->dev.qdev, 0, 1, usb_msd_command_complete);
547	f8b6cc00	Markus Armbruster	s->scsi_dev = scsi_bus_legacy_add_drive(&s->bus, bs, 0);
548	fa66b909	Markus Armbruster	if (!s->scsi_dev) {
549	fa66b909	Markus Armbruster	return -1;
550	fa66b909	Markus Armbruster	}
551	cb23117b	Gerd Hoffmann	s->bus.qbus.allow_hotplug = 0;
552	7fc2f2c0	Gerd Hoffmann	usb_msd_handle_reset(dev);
553	b3e461d3	Gerd Hoffmann
554	f8b6cc00	Markus Armbruster	if (bdrv_key_required(bs)) {
555	a4426488	Markus Armbruster	if (cur_mon) {
556	f8b6cc00	Markus Armbruster	monitor_read_bdrv_key_start(cur_mon, bs, usb_msd_password_cb, s);
557	b3e461d3	Gerd Hoffmann	s->dev.auto_attach = 0;
558	b3e461d3	Gerd Hoffmann	} else {
559	b3e461d3	Gerd Hoffmann	autostart = 0;
560	b3e461d3	Gerd Hoffmann	}
561	b3e461d3	Gerd Hoffmann	}
562	b3e461d3	Gerd Hoffmann
563	806b6024	Gerd Hoffmann	return 0;
564	806b6024	Gerd Hoffmann	}
565	806b6024	Gerd Hoffmann
566	b3e461d3	Gerd Hoffmann	static USBDevice usb_msd_init(const char filename)
567	2e5d83bb	pbrook	{
568	7fc2f2c0	Gerd Hoffmann	static int nr=0;
569	7fc2f2c0	Gerd Hoffmann	char id[8];
570	7fc2f2c0	Gerd Hoffmann	QemuOpts *opts;
571	7fc2f2c0	Gerd Hoffmann	DriveInfo *dinfo;
572	806b6024	Gerd Hoffmann	USBDevice *dev;
573	7fc2f2c0	Gerd Hoffmann	int fatal_error;
574	334c0241	aurel32	const char *p1;
575	334c0241	aurel32	char fmt[32];
576	334c0241	aurel32
577	7fc2f2c0	Gerd Hoffmann	/* parse -usbdevice disk: syntax into drive opts */
578	7fc2f2c0	Gerd Hoffmann	snprintf(id, sizeof(id), "usb%d", nr++);
579	3329f07b	Gerd Hoffmann	opts = qemu_opts_create(qemu_find_opts("drive"), id, 0);
580	7fc2f2c0	Gerd Hoffmann
581	334c0241	aurel32	p1 = strchr(filename, ':');
582	334c0241	aurel32	if (p1++) {
583	334c0241	aurel32	const char *p2;
584	334c0241	aurel32
585	334c0241	aurel32	if (strstart(filename, "format=", &p2)) {
586	334c0241	aurel32	int len = MIN(p1 - p2, sizeof(fmt));
587	334c0241	aurel32	pstrcpy(fmt, len, p2);
588	7fc2f2c0	Gerd Hoffmann	qemu_opt_set(opts, "format", fmt);
589	334c0241	aurel32	} else if (*filename != ':') {
590	334c0241	aurel32	printf("unrecognized USB mass-storage option %s\n", filename);
591	334c0241	aurel32	return NULL;
592	334c0241	aurel32	}
593	334c0241	aurel32	filename = p1;
594	334c0241	aurel32	}
595	334c0241	aurel32	if (!*filename) {
596	334c0241	aurel32	printf("block device specification needed\n");
597	334c0241	aurel32	return NULL;
598	334c0241	aurel32	}
599	7fc2f2c0	Gerd Hoffmann	qemu_opt_set(opts, "file", filename);
600	7fc2f2c0	Gerd Hoffmann	qemu_opt_set(opts, "if", "none");
601	2e5d83bb	pbrook
602	7fc2f2c0	Gerd Hoffmann	/* create host drive */
603	a803cb8e	Markus Armbruster	dinfo = drive_init(opts, 0, &fatal_error);
604	7fc2f2c0	Gerd Hoffmann	if (!dinfo) {
605	7fc2f2c0	Gerd Hoffmann	qemu_opts_del(opts);
606	806b6024	Gerd Hoffmann	return NULL;
607	7fc2f2c0	Gerd Hoffmann	}
608	2e5d83bb	pbrook
609	7fc2f2c0	Gerd Hoffmann	/* create guest device */
610	556cd098	Markus Armbruster	dev = usb_create(NULL /* FIXME */, "usb-storage");
611	d44168ff	Paul Brook	if (!dev) {
612	d44168ff	Paul Brook	return NULL;
613	d44168ff	Paul Brook	}
614	18846dee	Markus Armbruster	if (qdev_prop_set_drive(&dev->qdev, "drive", dinfo->bdrv) < 0) {
615	18846dee	Markus Armbruster	qdev_free(&dev->qdev);
616	18846dee	Markus Armbruster	return NULL;
617	18846dee	Markus Armbruster	}
618	33e66b86	Markus Armbruster	if (qdev_init(&dev->qdev) < 0)
619	33e66b86	Markus Armbruster	return NULL;
620	1f6e24e7	bellard
621	7fc2f2c0	Gerd Hoffmann	return dev;
622	2e5d83bb	pbrook	}
623	bb5fc20f	aliguori
624	806b6024	Gerd Hoffmann	static struct USBDeviceInfo msd_info = {
625	06384698	Markus Armbruster	.product_desc = "QEMU USB MSD",
626	556cd098	Markus Armbruster	.qdev.name = "usb-storage",
627	806b6024	Gerd Hoffmann	.qdev.size = sizeof(MSDState),
628	806b6024	Gerd Hoffmann	.init = usb_msd_initfn,
629	806b6024	Gerd Hoffmann	.handle_packet = usb_generic_handle_packet,
630	806b6024	Gerd Hoffmann	.handle_reset = usb_msd_handle_reset,
631	806b6024	Gerd Hoffmann	.handle_control = usb_msd_handle_control,
632	806b6024	Gerd Hoffmann	.handle_data = usb_msd_handle_data,
633	b3e461d3	Gerd Hoffmann	.usbdevice_name = "disk",
634	b3e461d3	Gerd Hoffmann	.usbdevice_init = usb_msd_init,
635	7fc2f2c0	Gerd Hoffmann	.qdev.props = (Property[]) {
636	428c149b	Christoph Hellwig	DEFINE_BLOCK_PROPERTIES(MSDState, conf),
637	7fc2f2c0	Gerd Hoffmann	DEFINE_PROP_END_OF_LIST(),
638	7fc2f2c0	Gerd Hoffmann	},
639	806b6024	Gerd Hoffmann	};
640	806b6024	Gerd Hoffmann
641	806b6024	Gerd Hoffmann	static void usb_msd_register_devices(void)
642	806b6024	Gerd Hoffmann	{
643	806b6024	Gerd Hoffmann	usb_qdev_register(&msd_info);
644	806b6024	Gerd Hoffmann	}
645	806b6024	Gerd Hoffmann	device_init(usb_msd_register_devices)

Archipelago » qemu

root / hw / usb-msd.c @ e7b43f7e