ViewVC Help
View File | Revision Log | Show Annotations | Revision Graph | Root Listing
root/cebix/BasiliskII/src/rom_patches.cpp
Revision: 1.10
Committed: 1999-10-26T16:28:27Z (25 years, 1 month ago) by cebix
Branch: MAIN
Changes since 1.9: +20 -13 lines
Log Message:
- mon is called for illegal EMUL_OP selectors and when pressing Ctrl-C (Unix)
- moved MemoryDispatch() patch routine from PatchAfterStartup() to
  InstallDrivers()
- fixed one place where ROM replaces MemoryDispatch() by unimplemented trap
  when no MMU is present
- Unix: ROM breakpoint can now be set with "-break" command line argument
- some changes to configure script, mon is now compiled with readline support

File Contents

# User Rev Content
1 cebix 1.1 /*
2     * rom_patches.cpp - ROM patches
3     *
4     * Basilisk II (C) 1997-1999 Christian Bauer
5     *
6     * This program is free software; you can redistribute it and/or modify
7     * it under the terms of the GNU General Public License as published by
8     * the Free Software Foundation; either version 2 of the License, or
9     * (at your option) any later version.
10     *
11     * This program is distributed in the hope that it will be useful,
12     * but WITHOUT ANY WARRANTY; without even the implied warranty of
13     * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14     * GNU General Public License for more details.
15     *
16     * You should have received a copy of the GNU General Public License
17     * along with this program; if not, write to the Free Software
18     * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
19     */
20    
21     #include <string.h>
22    
23     #include "sysdeps.h"
24     #include "cpu_emulation.h"
25     #include "main.h"
26     #include "emul_op.h"
27     #include "macos_util.h"
28     #include "slot_rom.h"
29     #include "sony.h"
30     #include "disk.h"
31     #include "cdrom.h"
32     #include "video.h"
33 cebix 1.5 #include "extfs.h"
34 cebix 1.1 #include "prefs.h"
35     #include "rom_patches.h"
36    
37 cebix 1.9 #define DEBUG 0
38 cebix 1.1 #include "debug.h"
39    
40    
41 cebix 1.10 // Breakpoint (offset into ROM)
42     uint32 ROMBreakpoint = 0; // 0 = disabled, 0x2310 = CritError
43 cebix 1.1
44     // Global variables
45     uint32 UniversalInfo; // ROM offset of UniversalInfo
46     uint32 PutScrapPatch; // Mac address of PutScrap() patch
47    
48 cebix 1.5 static uint32 sony_offset; // ROM offset of .Sony driver
49     static uint32 serd_offset; // ROM offset of SERD resource (serial drivers)
50     static uint32 microseconds_offset; // ROM offset of Microseconds() replacement routine
51 cebix 1.1 static uint32 memory_dispatch_offset; // ROM offset of MemoryDispatch() replacement routine
52    
53     // Prototypes
54     uint16 ROMVersion;
55    
56    
57     /*
58     * Search ROM for byte string, return ROM offset (or 0)
59     */
60    
61     static uint32 find_rom_data(uint32 start, uint32 end, const uint8 *data, uint32 data_len)
62     {
63     uint32 ofs = start;
64     while (ofs < end) {
65     if (!memcmp((void *)(ROMBaseHost + ofs), data, data_len))
66     return ofs;
67     ofs++;
68     }
69     return 0;
70     }
71    
72    
73     /*
74     * Search ROM resource by type/ID, return ROM offset of resource data
75     */
76    
77     static uint32 rsrc_ptr = 0;
78    
79     static uint32 find_rom_resource(uint32 s_type, int16 s_id, bool cont = false)
80     {
81     uint32 lp = ROMBaseMac + ReadMacInt32(ROMBaseMac + 0x1a);
82     uint32 x = ReadMacInt32(lp);
83    
84     if (!cont)
85     rsrc_ptr = x;
86    
87     for (;;) {
88     lp = ROMBaseMac + rsrc_ptr;
89     uint32 data = ReadMacInt32(lp + 12);
90     uint32 type = ReadMacInt32(lp + 16);
91     int16 id = ReadMacInt16(lp + 20);
92    
93     if (type == s_type && id == s_id)
94     return data;
95    
96     rsrc_ptr = ReadMacInt32(lp + 8);
97     if (!rsrc_ptr)
98     break;
99     }
100     return 0;
101     }
102    
103    
104     /*
105     * Search offset of A-Trap routine in ROM
106     */
107    
108     static uint32 find_rom_trap(uint16 trap)
109     {
110     uint8 *bp = (uint8 *)(ROMBaseHost + ReadMacInt32(ROMBaseMac + 0x22));
111     uint16 rom_trap = 0xa800;
112     uint32 ofs = 0;
113    
114     again:
115     for (int i=0; i<0x400; i++) {
116     bool unimplemented = false;
117     uint8 b = *bp++;
118     if (b == 0x80) // Unimplemented trap
119     unimplemented = true;
120     else if (b == 0xff) { // Absolute address
121     ofs = (bp[0] << 24) | (bp[1] << 16) | (bp[2] << 8) | bp[3];
122     bp += 4;
123     } else if (b & 0x80) { // 1 byte offset
124     int16 add = (b & 0x7f) << 1;
125     if (!add)
126     return 0;
127     ofs += add;
128     } else { // 2 byte offset
129     int16 add = ((b << 8) | *bp++) << 1;
130     if (!add)
131     return 0;
132     ofs += add;
133     }
134     if (rom_trap == trap)
135     return unimplemented ? 0 : ofs;
136     rom_trap++;
137     }
138     rom_trap = 0xa000;
139     goto again;
140     }
141    
142    
143     /*
144     * Driver stubs
145     */
146    
147     static const uint8 sony_driver[] = { // Replacement for .Sony driver
148     // Driver header
149 cebix 1.4 SonyDriverFlags >> 8, SonyDriverFlags & 0xff, 0, 0, 0, 0, 0, 0,
150 cebix 1.1 0x00, 0x18, // Open() offset
151     0x00, 0x1c, // Prime() offset
152     0x00, 0x20, // Control() offset
153     0x00, 0x2c, // Status() offset
154     0x00, 0x52, // Close() offset
155     0x05, 0x2e, 0x53, 0x6f, 0x6e, 0x79, // ".Sony"
156    
157     // Open()
158     M68K_EMUL_OP_SONY_OPEN >> 8, M68K_EMUL_OP_SONY_OPEN & 0xff,
159     0x4e, 0x75, // rts
160    
161     // Prime()
162     M68K_EMUL_OP_SONY_PRIME >> 8, M68K_EMUL_OP_SONY_PRIME & 0xff,
163     0x60, 0x0e, // bra IOReturn
164    
165     // Control()
166     M68K_EMUL_OP_SONY_CONTROL >> 8, M68K_EMUL_OP_SONY_CONTROL & 0xff,
167     0x0c, 0x68, 0x00, 0x01, 0x00, 0x1a, // cmp.w #1,$1a(a0)
168     0x66, 0x04, // bne IOReturn
169     0x4e, 0x75, // rts
170    
171     // Status()
172     M68K_EMUL_OP_SONY_STATUS >> 8, M68K_EMUL_OP_SONY_STATUS & 0xff,
173    
174     // IOReturn
175     0x32, 0x28, 0x00, 0x06, // move.w 6(a0),d1
176     0x08, 0x01, 0x00, 0x09, // btst #9,d1
177     0x67, 0x0c, // beq 1
178     0x4a, 0x40, // tst.w d0
179     0x6f, 0x02, // ble 2
180     0x42, 0x40, // clr.w d0
181     0x31, 0x40, 0x00, 0x10, //2 move.w d0,$10(a0)
182     0x4e, 0x75, // rts
183     0x4a, 0x40, //1 tst.w d0
184     0x6f, 0x04, // ble 3
185     0x42, 0x40, // clr.w d0
186     0x4e, 0x75, // rts
187     0x2f, 0x38, 0x08, 0xfc, //3 move.l $8fc,-(sp)
188     0x4e, 0x75, // rts
189    
190     // Close()
191     0x70, 0xe8, // moveq #-24,d0
192     0x4e, 0x75 // rts
193     };
194    
195     static const uint8 disk_driver[] = { // Generic disk driver
196     // Driver header
197 cebix 1.4 DiskDriverFlags >> 8, DiskDriverFlags & 0xff, 0, 0, 0, 0, 0, 0,
198 cebix 1.1 0x00, 0x18, // Open() offset
199     0x00, 0x1c, // Prime() offset
200     0x00, 0x20, // Control() offset
201     0x00, 0x2c, // Status() offset
202     0x00, 0x52, // Close() offset
203     0x05, 0x2e, 0x44, 0x69, 0x73, 0x6b, // ".Disk"
204    
205     // Open()
206     M68K_EMUL_OP_DISK_OPEN >> 8, M68K_EMUL_OP_DISK_OPEN & 0xff,
207     0x4e, 0x75, // rts
208    
209     // Prime()
210     M68K_EMUL_OP_DISK_PRIME >> 8, M68K_EMUL_OP_DISK_PRIME & 0xff,
211     0x60, 0x0e, // bra IOReturn
212    
213     // Control()
214     M68K_EMUL_OP_DISK_CONTROL >> 8, M68K_EMUL_OP_DISK_CONTROL & 0xff,
215     0x0c, 0x68, 0x00, 0x01, 0x00, 0x1a, // cmp.w #1,$1a(a0)
216     0x66, 0x04, // bne IOReturn
217     0x4e, 0x75, // rts
218    
219     // Status()
220     M68K_EMUL_OP_DISK_STATUS >> 8, M68K_EMUL_OP_DISK_STATUS & 0xff,
221    
222     // IOReturn
223     0x32, 0x28, 0x00, 0x06, // move.w 6(a0),d1
224     0x08, 0x01, 0x00, 0x09, // btst #9,d1
225     0x67, 0x0c, // beq 1
226     0x4a, 0x40, // tst.w d0
227     0x6f, 0x02, // ble 2
228     0x42, 0x40, // clr.w d0
229     0x31, 0x40, 0x00, 0x10, //2 move.w d0,$10(a0)
230     0x4e, 0x75, // rts
231     0x4a, 0x40, //1 tst.w d0
232     0x6f, 0x04, // ble 3
233     0x42, 0x40, // clr.w d0
234     0x4e, 0x75, // rts
235     0x2f, 0x38, 0x08, 0xfc, //3 move.l $8fc,-(sp)
236     0x4e, 0x75, // rts
237    
238     // Close()
239     0x70, 0xe8, // moveq #-24,d0
240     0x4e, 0x75 // rts
241     };
242    
243     static const uint8 cdrom_driver[] = { // CD-ROM driver
244     // Driver header
245 cebix 1.4 CDROMDriverFlags >> 8, CDROMDriverFlags & 0xff, 0, 0, 0, 0, 0, 0,
246 cebix 1.1 0x00, 0x1c, // Open() offset
247     0x00, 0x20, // Prime() offset
248     0x00, 0x24, // Control() offset
249     0x00, 0x30, // Status() offset
250     0x00, 0x56, // Close() offset
251     0x08, 0x2e, 0x41, 0x70, 0x70, 0x6c, 0x65, 0x43, 0x44, 0x00, // ".AppleCD"
252    
253     // Open()
254     M68K_EMUL_OP_CDROM_OPEN >> 8, M68K_EMUL_OP_CDROM_OPEN & 0xff,
255     0x4e, 0x75, // rts
256    
257     // Prime()
258     M68K_EMUL_OP_CDROM_PRIME >> 8, M68K_EMUL_OP_CDROM_PRIME & 0xff,
259     0x60, 0x0e, // bra IOReturn
260    
261     // Control()
262     M68K_EMUL_OP_CDROM_CONTROL >> 8, M68K_EMUL_OP_CDROM_CONTROL & 0xff,
263     0x0c, 0x68, 0x00, 0x01, 0x00, 0x1a, // cmp.w #1,$1a(a0)
264     0x66, 0x04, // bne IOReturn
265     0x4e, 0x75, // rts
266    
267     // Status()
268     M68K_EMUL_OP_CDROM_STATUS >> 8, M68K_EMUL_OP_CDROM_STATUS & 0xff,
269    
270     // IOReturn
271     0x32, 0x28, 0x00, 0x06, // move.w 6(a0),d1
272     0x08, 0x01, 0x00, 0x09, // btst #9,d1
273     0x67, 0x0c, // beq 1
274     0x4a, 0x40, // tst.w d0
275     0x6f, 0x02, // ble 2
276     0x42, 0x40, // clr.w d0
277     0x31, 0x40, 0x00, 0x10, //2 move.w d0,$10(a0)
278     0x4e, 0x75, // rts
279     0x4a, 0x40, //1 tst.w d0
280     0x6f, 0x04, // ble 3
281     0x42, 0x40, // clr.w d0
282     0x4e, 0x75, // rts
283     0x2f, 0x38, 0x08, 0xfc, //3 move.l $8fc,-(sp)
284     0x4e, 0x75, // rts
285    
286     // Close()
287     0x70, 0xe8, // moveq #-24,d0
288     0x4e, 0x75 // rts
289     };
290    
291     static const uint8 ain_driver[] = { // .AIn driver header
292     // Driver header
293     0x4d, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
294     0x00, 0x18, // Open() offset
295     0x00, 0x1e, // Prime() offset
296     0x00, 0x24, // Control() offset
297     0x00, 0x32, // Status() offset
298     0x00, 0x38, // Close() offset
299     0x04, 0x2e, 0x41, 0x49, 0x6e, 0x09, // ".AIn",9
300    
301     // Open()
302     0x70, 0x00, // moveq #0,d0
303     M68K_EMUL_OP_SERIAL_OPEN >> 8, M68K_EMUL_OP_SERIAL_OPEN & 0xff,
304     0x4e, 0x75, // rts
305    
306     // Prime()
307     0x70, 0x00, // moveq #0,d0
308     M68K_EMUL_OP_SERIAL_PRIME >> 8, M68K_EMUL_OP_SERIAL_PRIME & 0xff,
309     0x60, 0x1a, // bra IOReturn
310    
311     // Control()
312     0x70, 0x00, // moveq #0,d0
313     M68K_EMUL_OP_SERIAL_CONTROL >> 8, M68K_EMUL_OP_SERIAL_CONTROL & 0xff,
314     0x0c, 0x68, 0x00, 0x01, 0x00, 0x1a, // cmp.w #1,$1a(a0)
315     0x66, 0x0e, // bne IOReturn
316     0x4e, 0x75, // rts
317    
318     // Status()
319     0x70, 0x00, // moveq #0,d0
320     M68K_EMUL_OP_SERIAL_STATUS >> 8, M68K_EMUL_OP_SERIAL_STATUS & 0xff,
321     0x60, 0x06, // bra IOReturn
322    
323     // Close()
324     0x70, 0x00, // moveq #0,d0
325     M68K_EMUL_OP_SERIAL_CLOSE >> 8, M68K_EMUL_OP_SERIAL_CLOSE & 0xff,
326     0x4e, 0x75, // rts
327    
328     // IOReturn
329     0x32, 0x28, 0x00, 0x06, // move.w 6(a0),d1
330     0x08, 0x01, 0x00, 0x09, // btst #9,d1
331     0x67, 0x0c, // beq 1
332     0x4a, 0x40, // tst.w d0
333     0x6f, 0x02, // ble 2
334     0x42, 0x40, // clr.w d0
335     0x31, 0x40, 0x00, 0x10, //2 move.w d0,$10(a0)
336     0x4e, 0x75, // rts
337     0x4a, 0x40, //1 tst.w d0
338     0x6f, 0x04, // ble 3
339     0x42, 0x40, // clr.w d0
340     0x4e, 0x75, // rts
341     0x2f, 0x38, 0x08, 0xfc, //3 move.l $8fc,-(a7)
342     0x4e, 0x75, // rts
343     };
344    
345     static const uint8 aout_driver[] = { // .AOut driver header
346     // Driver header
347     0x4e, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
348     0x00, 0x1a, // Open() offset
349     0x00, 0x20, // Prime() offset
350     0x00, 0x26, // Control() offset
351     0x00, 0x34, // Status() offset
352     0x00, 0x3a, // Close() offset
353     0x05, 0x2e, 0x41, 0x4f, 0x75, 0x74, 0x09, 0x00, // ".AOut",9
354    
355     // Open()
356     0x70, 0x01, // moveq #1,d0
357     M68K_EMUL_OP_SERIAL_OPEN >> 8, M68K_EMUL_OP_SERIAL_OPEN & 0xff,
358     0x4e, 0x75, // rts
359    
360     // Prime()
361     0x70, 0x01, // moveq #1,d0
362     M68K_EMUL_OP_SERIAL_PRIME >> 8, M68K_EMUL_OP_SERIAL_PRIME & 0xff,
363     0x60, 0x1a, // bra IOReturn
364    
365     // Control()
366     0x70, 0x01, // moveq #1,d0
367     M68K_EMUL_OP_SERIAL_CONTROL >> 8, M68K_EMUL_OP_SERIAL_CONTROL & 0xff,
368     0x0c, 0x68, 0x00, 0x01, 0x00, 0x1a, // cmp.w #1,$1a(a0)
369     0x66, 0x0e, // bne IOReturn
370     0x4e, 0x75, // rts
371    
372     // Status()
373     0x70, 0x01, // moveq #1,d0
374     M68K_EMUL_OP_SERIAL_STATUS >> 8, M68K_EMUL_OP_SERIAL_STATUS & 0xff,
375     0x60, 0x06, // bra IOReturn
376    
377     // Close()
378     0x70, 0x01, // moveq #1,d0
379     M68K_EMUL_OP_SERIAL_CLOSE >> 8, M68K_EMUL_OP_SERIAL_CLOSE & 0xff,
380     0x4e, 0x75, // rts
381    
382     // IOReturn
383     0x32, 0x28, 0x00, 0x06, // move.w 6(a0),d1
384     0x08, 0x01, 0x00, 0x09, // btst #9,d1
385     0x67, 0x0c, // beq 1
386     0x4a, 0x40, // tst.w d0
387     0x6f, 0x02, // ble 2
388     0x42, 0x40, // clr.w d0
389     0x31, 0x40, 0x00, 0x10, //2 move.w d0,$10(a0)
390     0x4e, 0x75, // rts
391     0x4a, 0x40, //1 tst.w d0
392     0x6f, 0x04, // ble 3
393     0x42, 0x40, // clr.w d0
394     0x4e, 0x75, // rts
395     0x2f, 0x38, 0x08, 0xfc, //3 move.l $8fc,-(a7)
396     0x4e, 0x75, // rts
397     };
398    
399     static const uint8 bin_driver[] = { // .BIn driver header
400     // Driver header
401     0x4d, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
402     0x00, 0x18, // Open() offset
403     0x00, 0x1e, // Prime() offset
404     0x00, 0x24, // Control() offset
405     0x00, 0x32, // Status() offset
406     0x00, 0x38, // Close() offset
407     0x04, 0x2e, 0x42, 0x49, 0x6e, 0x09, // ".BIn",9
408    
409     // Open()
410     0x70, 0x02, // moveq #2,d0
411     M68K_EMUL_OP_SERIAL_OPEN >> 8, M68K_EMUL_OP_SERIAL_OPEN & 0xff,
412     0x4e, 0x75, // rts
413    
414     // Prime()
415     0x70, 0x02, // moveq #2,d0
416     M68K_EMUL_OP_SERIAL_PRIME >> 8, M68K_EMUL_OP_SERIAL_PRIME & 0xff,
417     0x60, 0x1a, // bra IOReturn
418    
419     // Control()
420     0x70, 0x02, // moveq #2,d0
421     M68K_EMUL_OP_SERIAL_CONTROL >> 8, M68K_EMUL_OP_SERIAL_CONTROL & 0xff,
422     0x0c, 0x68, 0x00, 0x01, 0x00, 0x1a, // cmp.w #1,$1a(a0)
423     0x66, 0x0e, // bne IOReturn
424     0x4e, 0x75, // rts
425    
426     // Status()
427     0x70, 0x02, // moveq #2,d0
428     M68K_EMUL_OP_SERIAL_STATUS >> 8, M68K_EMUL_OP_SERIAL_STATUS & 0xff,
429     0x60, 0x06, // bra IOReturn
430    
431     // Close()
432     0x70, 0x02, // moveq #2,d0
433     M68K_EMUL_OP_SERIAL_CLOSE >> 8, M68K_EMUL_OP_SERIAL_CLOSE & 0xff,
434     0x4e, 0x75, // rts
435    
436     // IOReturn
437     0x32, 0x28, 0x00, 0x06, // move.w 6(a0),d1
438     0x08, 0x01, 0x00, 0x09, // btst #9,d1
439     0x67, 0x0c, // beq 1
440     0x4a, 0x40, // tst.w d0
441     0x6f, 0x02, // ble 2
442     0x42, 0x40, // clr.w d0
443     0x31, 0x40, 0x00, 0x10, //2 move.w d0,$10(a0)
444     0x4e, 0x75, // rts
445     0x4a, 0x40, //1 tst.w d0
446     0x6f, 0x04, // ble 3
447     0x42, 0x40, // clr.w d0
448     0x4e, 0x75, // rts
449     0x2f, 0x38, 0x08, 0xfc, //3 move.l $8fc,-(a7)
450     0x4e, 0x75, // rts
451     };
452    
453     static const uint8 bout_driver[] = { // .BOut driver header
454     // Driver header
455     0x4e, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
456     0x00, 0x1a, // Open() offset
457     0x00, 0x20, // Prime() offset
458     0x00, 0x26, // Control() offset
459     0x00, 0x34, // Status() offset
460     0x00, 0x3a, // Close() offset
461     0x05, 0x2e, 0x42, 0x4f, 0x75, 0x74, 0x09, 0x00, // ".BOut",9
462    
463     // Open()
464     0x70, 0x03, // moveq #3,d0
465     M68K_EMUL_OP_SERIAL_OPEN >> 8, M68K_EMUL_OP_SERIAL_OPEN & 0xff,
466     0x4e, 0x75, // rts
467    
468     // Prime()
469     0x70, 0x03, // moveq #3,d0
470     M68K_EMUL_OP_SERIAL_PRIME >> 8, M68K_EMUL_OP_SERIAL_PRIME & 0xff,
471     0x60, 0x1a, // bra IOReturn
472    
473     // Control()
474     0x70, 0x03, // moveq #3,d0
475     M68K_EMUL_OP_SERIAL_CONTROL >> 8, M68K_EMUL_OP_SERIAL_CONTROL & 0xff,
476     0x0c, 0x68, 0x00, 0x01, 0x00, 0x1a, // cmp.w #1,$1a(a0)
477     0x66, 0x0e, // bne IOReturn
478     0x4e, 0x75, // rts
479    
480     // Status()
481     0x70, 0x03, // moveq #3,d0
482     M68K_EMUL_OP_SERIAL_STATUS >> 8, M68K_EMUL_OP_SERIAL_STATUS & 0xff,
483     0x60, 0x06, // bra IOReturn
484    
485     // Close()
486     0x70, 0x03, // moveq #3,d0
487     M68K_EMUL_OP_SERIAL_CLOSE >> 8, M68K_EMUL_OP_SERIAL_CLOSE & 0xff,
488     0x4e, 0x75, // rts
489    
490     // IOReturn
491     0x32, 0x28, 0x00, 0x06, // move.w 6(a0),d1
492     0x08, 0x01, 0x00, 0x09, // btst #9,d1
493     0x67, 0x0c, // beq 1
494     0x4a, 0x40, // tst.w d0
495     0x6f, 0x02, // ble 2
496     0x42, 0x40, // clr.w d0
497     0x31, 0x40, 0x00, 0x10, //2 move.w d0,$10(a0)
498     0x4e, 0x75, // rts
499     0x4a, 0x40, //1 tst.w d0
500     0x6f, 0x04, // ble 3
501     0x42, 0x40, // clr.w d0
502     0x4e, 0x75, // rts
503     0x2f, 0x38, 0x08, 0xfc, //3 move.l $8fc,-(a7)
504     0x4e, 0x75, // rts
505     };
506    
507    
508     /*
509     * ADBOp() patch
510     */
511    
512     static const uint8 adbop_patch[] = { // Call ADBOp() completion procedure
513     // The completion procedure may call ADBOp() again!
514     0x40, 0xe7, // move sr,-(sp)
515     0x00, 0x7c, 0x07, 0x00, // ori #$0700,sr
516     M68K_EMUL_OP_ADBOP >> 8, M68K_EMUL_OP_ADBOP & 0xff,
517     0x48, 0xe7, 0x70, 0xf0, // movem.l d1-d3/a0-a3,-(sp)
518     0x26, 0x48, // move.l a0,a3
519     0x4a, 0xab, 0x00, 0x04, // tst.l 4(a3)
520     0x67, 0x00, 0x00, 0x18, // beq 1
521     0x20, 0x53, // move.l (a3),a0
522     0x22, 0x6b, 0x00, 0x04, // move.l 4(a3),a1
523     0x24, 0x6b, 0x00, 0x08, // move.l 8(a3),a2
524     0x26, 0x78, 0x0c, 0xf8, // move.l $cf8,a3
525     0x4e, 0x91, // jsr (a1)
526     0x70, 0x00, // moveq #0,d0
527     0x60, 0x00, 0x00, 0x04, // bra 2
528     0x70, 0xff, //1 moveq #-1,d0
529     0x4c, 0xdf, 0x0f, 0x0e, //2 movem.l (sp)+,d1-d3/a0-a3
530     0x46, 0xdf, // move (sp)+,sr
531     0x4e, 0x75 // rts
532     };
533    
534    
535     /*
536     * Install .Sony, disk and CD-ROM drivers
537     */
538    
539     void InstallDrivers(uint32 pb)
540     {
541     D(bug("InstallDrivers\n"));
542     M68kRegisters r;
543    
544     // Install Microseconds() replacement routine
545     r.a[0] = ROMBaseMac + microseconds_offset;
546     r.d[0] = 0xa093;
547     Execute68kTrap(0xa247, &r); // SetOSTrapAddress()
548    
549 cebix 1.10 // Install MemoryDispatch() replacement routine
550     r.a[0] = ROMBaseMac + memory_dispatch_offset;
551     r.d[0] = 0xa05c;
552     Execute68kTrap(0xa247, &r); // SetOSTrapAddress()
553    
554 cebix 1.1 // Install disk driver
555     r.a[0] = ROMBaseMac + sony_offset + 0x100;
556     r.d[0] = (uint32)DiskRefNum;
557     Execute68kTrap(0xa43d, &r); // DrvrInstallRsrvMem()
558     r.a[0] = ReadMacInt32(ReadMacInt32(0x11c) + ~DiskRefNum * 4); // Get driver handle from Unit Table
559     Execute68kTrap(0xa029, &r); // HLock()
560     uint32 dce = ReadMacInt32(r.a[0]);
561     WriteMacInt32(dce + dCtlDriver, ROMBaseMac + sony_offset + 0x100);
562     WriteMacInt16(dce + dCtlFlags, DiskDriverFlags);
563    
564     // Open disk driver
565     WriteMacInt32(pb + ioNamePtr, ROMBaseMac + sony_offset + 0x112);
566     r.a[0] = pb;
567     Execute68kTrap(0xa000, &r); // Open()
568    
569     // Install CD-ROM driver unless nocdrom option given
570     if (!PrefsFindBool("nocdrom")) {
571    
572     // Install CD-ROM driver
573     r.a[0] = ROMBaseMac + sony_offset + 0x200;
574     r.d[0] = (uint32)CDROMRefNum;
575     Execute68kTrap(0xa43d, &r); // DrvrInstallRsrvMem()
576     r.a[0] = ReadMacInt32(ReadMacInt32(0x11c) + ~CDROMRefNum * 4); // Get driver handle from Unit Table
577     Execute68kTrap(0xa029, &r); // HLock()
578     dce = ReadMacInt32(r.a[0]);
579     WriteMacInt32(dce + dCtlDriver, ROMBaseMac + sony_offset + 0x200);
580     WriteMacInt16(dce + dCtlFlags, CDROMDriverFlags);
581    
582     // Open CD-ROM driver
583     WriteMacInt32(pb + ioNamePtr, ROMBaseMac + sony_offset + 0x212);
584     r.a[0] = pb;
585     Execute68kTrap(0xa000, &r); // Open()
586     }
587     }
588    
589    
590     /*
591     * Install serial drivers
592     */
593    
594     void InstallSERD(void)
595     {
596     D(bug("InstallSERD\n"));
597    
598     // All drivers are inside the SERD resource
599     M68kRegisters r;
600    
601     // Install .AIn driver
602     r.d[0] = (uint32)-6;
603     r.a[0] = ROMBaseMac + serd_offset + 0x100;
604     Execute68kTrap(0xa53d, &r); // DrvrInstallRsrvMem()
605     Execute68kTrap(0xa029, &r); // HLock()
606     uint32 drvr_ptr = ReadMacInt32(r.a[0]);
607     WriteMacInt32(drvr_ptr + dCtlDriver, ROMBaseMac + serd_offset + 0x100); // Pointer to driver header
608     WriteMacInt16(drvr_ptr + dCtlFlags, (ain_driver[0] << 8) + ain_driver[1]); // Driver flags
609     WriteMacInt16(drvr_ptr + dCtlQHdr + qFlags, 9); // Version number
610    
611     // Install .AOut driver
612     r.d[0] = (uint32)-7;
613     r.a[0] = ROMBaseMac + serd_offset + 0x200;
614     Execute68kTrap(0xa53d, &r); // DrvrInstallRsrvMem()
615     Execute68kTrap(0xa029, &r); // HLock()
616     drvr_ptr = ReadMacInt32(r.a[0]);
617     WriteMacInt32(drvr_ptr + dCtlDriver, ROMBaseMac + serd_offset + 0x200); // Pointer to driver header
618     WriteMacInt16(drvr_ptr + dCtlFlags, (aout_driver[0] << 8) + aout_driver[1]); // Driver flags
619     WriteMacInt16(drvr_ptr + dCtlQHdr + qFlags, 9); // Version number
620    
621     // Install .BIn driver
622     r.d[0] = (uint32)-8;
623     r.a[0] = ROMBaseMac + serd_offset + 0x300;
624     Execute68kTrap(0xa53d, &r); // DrvrInstallRsrvMem()
625     Execute68kTrap(0xa029, &r); // HLock()
626     drvr_ptr = ReadMacInt32(r.a[0]);
627     WriteMacInt32(drvr_ptr + dCtlDriver, ROMBaseMac + serd_offset + 0x300); // Pointer to driver header
628     WriteMacInt16(drvr_ptr + dCtlFlags, (bin_driver[0] << 8) + bin_driver[1]); // Driver flags
629     WriteMacInt16(drvr_ptr + dCtlQHdr + qFlags, 9); // Version number
630    
631     // Install .BOut driver
632     r.d[0] = (uint32)-9;
633     r.a[0] = ROMBaseMac + serd_offset + 0x400;
634     Execute68kTrap(0xa53d, &r); // DrvrInstallRsrvMem()
635     Execute68kTrap(0xa029, &r); // HLock()
636     drvr_ptr = ReadMacInt32(r.a[0]);
637     WriteMacInt32(drvr_ptr + dCtlDriver, ROMBaseMac + serd_offset + 0x400); // Pointer to driver header
638     WriteMacInt16(drvr_ptr + dCtlFlags, (bout_driver[0] << 8) + bout_driver[1]); // Driver flags
639     WriteMacInt16(drvr_ptr + dCtlQHdr + qFlags, 9); // Version number
640     }
641    
642    
643     /*
644     * Install patches after MacOS startup
645     */
646    
647     void PatchAfterStartup(void)
648     {
649 cebix 1.6 #if SUPPORTS_EXTFS
650 cebix 1.5 // Install external file system
651     InstallExtFS();
652 cebix 1.6 #endif
653 cebix 1.1 }
654    
655    
656     /*
657     * Check ROM version, returns false if ROM version is not supported
658     */
659    
660     bool CheckROM(void)
661     {
662     // Read version
663     ROMVersion = ntohs(*(uint16 *)(ROMBaseHost + 8));
664    
665     #if REAL_ADDRESSING
666     // Real addressing mode requires a 32-bit clean ROM
667     return ROMVersion == ROM_VERSION_32;
668     #else
669 cebix 1.6 // Virtual addressing mode works with 32-bit clean Mac II ROMs and Classic ROMs
670 cebix 1.1 return (ROMVersion == ROM_VERSION_CLASSIC) || (ROMVersion == ROM_VERSION_32);
671     #endif
672     }
673    
674    
675     /*
676     * Install ROM patches, returns false if ROM version is not supported
677     */
678    
679     // ROM patches for Mac Classic/SE ROMs (version $0276)
680     static bool patch_rom_classic(void)
681     {
682     uint16 *wp;
683     uint32 base;
684    
685     // Don't jump into debugger (VIA line)
686     wp = (uint16 *)(ROMBaseHost + 0x1c40);
687     *wp = htons(0x601e);
688    
689     // Don't complain about incorrect ROM checksum
690     wp = (uint16 *)(ROMBaseHost + 0x1c6c);
691     *wp = htons(0x7c00);
692    
693     // Don't initialize IWM
694     wp = (uint16 *)(ROMBaseHost + 0x50);
695     *wp++ = htons(M68K_NOP);
696     *wp = htons(M68K_NOP);
697    
698     // Skip startup sound
699     wp = (uint16 *)(ROMBaseHost + 0x6a);
700     *wp++ = htons(M68K_NOP);
701     *wp = htons(M68K_NOP);
702    
703     // Don't loop in ADB init
704     wp = (uint16 *)(ROMBaseHost + 0x3364);
705     *wp = htons(M68K_NOP);
706    
707     // Patch ClkNoMem
708     wp = (uint16 *)(ROMBaseHost + 0xa2c0);
709     *wp++ = htons(M68K_EMUL_OP_CLKNOMEM);
710     *wp = htons(0x4ed5); // jmp (a5)
711    
712     // Skip main memory test (not that it wouldn't pass, but it's faster that way)
713     wp = (uint16 *)(ROMBaseHost + 0x11e);
714     *wp++ = htons(M68K_NOP);
715     *wp = htons(M68K_NOP);
716    
717     // Install our own drivers
718     wp = (uint16 *)(ROMBaseHost + 0x3f82a);
719     *wp++ = htons(M68K_EMUL_OP_INSTALL_DRIVERS);
720     *wp++ = htons(M68K_NOP);
721     *wp++ = htons(M68K_NOP);
722     *wp = htons(M68K_NOP);
723    
724     #if 1
725     // Don't look for SCSI devices
726     wp = (uint16 *)(ROMBaseHost + 0xd5a);
727     *wp = htons(0x601e);
728     #endif
729    
730     // Replace .Sony driver
731     sony_offset = 0x34680;
732     D(bug("sony %08lx\n", sony_offset));
733     memcpy(ROMBaseHost + sony_offset, sony_driver, sizeof(sony_driver));
734    
735     // Install .Disk and .AppleCD drivers
736     memcpy(ROMBaseHost + sony_offset + 0x100, disk_driver, sizeof(disk_driver));
737     memcpy(ROMBaseHost + sony_offset + 0x200, cdrom_driver, sizeof(cdrom_driver));
738    
739     // Copy icons to ROM
740     SonyDiskIconAddr = ROMBaseMac + sony_offset + 0x400;
741     memcpy(ROMBaseHost + sony_offset + 0x400, SonyDiskIcon, sizeof(SonyDiskIcon));
742     SonyDriveIconAddr = ROMBaseMac + sony_offset + 0x600;
743     memcpy(ROMBaseHost + sony_offset + 0x600, SonyDriveIcon, sizeof(SonyDriveIcon));
744     DiskIconAddr = ROMBaseMac + sony_offset + 0x800;
745     memcpy(ROMBaseHost + sony_offset + 0x800, DiskIcon, sizeof(DiskIcon));
746     CDROMIconAddr = ROMBaseMac + sony_offset + 0xa00;
747     memcpy(ROMBaseHost + sony_offset + 0xa00, CDROMIcon, sizeof(CDROMIcon));
748    
749     // Install SERD patch and serial drivers
750     serd_offset = 0x31bae;
751     D(bug("serd %08lx\n", serd_offset));
752     wp = (uint16 *)(ROMBaseHost + serd_offset + 12);
753     *wp++ = htons(M68K_EMUL_OP_SERD);
754     *wp = htons(M68K_RTS);
755     memcpy(ROMBaseHost + serd_offset + 0x100, ain_driver, sizeof(ain_driver));
756     memcpy(ROMBaseHost + serd_offset + 0x200, aout_driver, sizeof(aout_driver));
757     memcpy(ROMBaseHost + serd_offset + 0x300, bin_driver, sizeof(bin_driver));
758     memcpy(ROMBaseHost + serd_offset + 0x400, bout_driver, sizeof(bout_driver));
759    
760     // Replace ADBOp()
761     memcpy(ROMBaseHost + 0x3880, adbop_patch, sizeof(adbop_patch));
762    
763     // Replace Time Manager
764     wp = (uint16 *)(ROMBaseHost + 0x1a95c);
765     *wp++ = htons(M68K_EMUL_OP_INSTIME);
766     *wp = htons(M68K_RTS);
767     wp = (uint16 *)(ROMBaseHost + 0x1a96a);
768     *wp++ = htons(0x40e7); // move sr,-(sp)
769     *wp++ = htons(0x007c); // ori #$0700,sr
770     *wp++ = htons(0x0700);
771     *wp++ = htons(M68K_EMUL_OP_RMVTIME);
772     *wp++ = htons(0x46df); // move (sp)+,sr
773     *wp = htons(M68K_RTS);
774     wp = (uint16 *)(ROMBaseHost + 0x1a984);
775     *wp++ = htons(0x40e7); // move sr,-(sp)
776     *wp++ = htons(0x007c); // ori #$0700,sr
777     *wp++ = htons(0x0700);
778     *wp++ = htons(M68K_EMUL_OP_PRIMETIME);
779     *wp++ = htons(0x46df); // move (sp)+,sr
780     *wp++ = htons(M68K_RTS);
781     microseconds_offset = (uint8 *)wp - ROMBaseHost;
782     *wp++ = htons(M68K_EMUL_OP_MICROSECONDS);
783     *wp = htons(M68K_RTS);
784    
785     // Replace SCSIDispatch()
786     wp = (uint16 *)(ROMBaseHost + 0x1a206);
787     *wp++ = htons(M68K_EMUL_OP_SCSI_DISPATCH);
788     *wp++ = htons(0x2e49); // move.l a1,a7
789     *wp = htons(M68K_JMP_A0);
790    
791     // Modify vCheckLoad() so we can patch resources
792     wp = (uint16 *)(ROMBaseHost + 0xe740);
793     *wp++ = htons(M68K_JMP);
794     *wp++ = htons((ROMBaseMac + sony_offset + 0x300) >> 16);
795     *wp = htons((ROMBaseMac + sony_offset + 0x300) & 0xffff);
796     wp = (uint16 *)(ROMBaseHost + sony_offset + 0x300);
797     *wp++ = htons(0x2f03); // move.l d3,-(sp) (save type)
798     *wp++ = htons(0x2078); // move.l $07f0,a0
799     *wp++ = htons(0x07f0);
800     *wp++ = htons(M68K_JSR_A0);
801     *wp++ = htons(0x221f); // move.l (sp)+,d1 (restore type)
802     *wp++ = htons(M68K_EMUL_OP_CHECKLOAD);
803     *wp = htons(M68K_RTS);
804    
805     // Install PutScrap() patch for clipboard data exchange (the patch is activated by EMUL_OP_INSTALL_DRIVERS)
806     PutScrapPatch = ROMBaseMac + sony_offset + 0xc00;
807     base = ROMBaseMac + 0x12794;
808     wp = (uint16 *)(ROMBaseHost + sony_offset + 0xc00);
809     *wp++ = htons(M68K_EMUL_OP_PUT_SCRAP);
810     *wp++ = htons(M68K_JMP);
811     *wp++ = htons(base >> 16);
812     *wp = htons(base & 0xffff);
813    
814     #if 0
815     // Boot from internal EDisk
816     wp = (uint16 *)(ROMBaseHost + 0x3f83c);
817     *wp = htons(M68K_NOP);
818     #endif
819    
820     // Patch VIA interrupt handler
821     wp = (uint16 *)(ROMBaseHost + 0x2b3a); // Level 1 handler
822     *wp++ = htons(0x5888); // addq.l #4,a0
823     *wp++ = htons(0x5888); // addq.l #4,a0
824     *wp++ = htons(M68K_NOP);
825     *wp++ = htons(M68K_NOP);
826     *wp++ = htons(M68K_NOP);
827     *wp++ = htons(M68K_NOP);
828     *wp++ = htons(M68K_NOP);
829     *wp++ = htons(M68K_NOP);
830     *wp = htons(M68K_NOP);
831    
832     wp = (uint16 *)(ROMBaseHost + 0x2be8); // 60Hz handler (handles everything)
833     *wp++ = htons(M68K_EMUL_OP_IRQ);
834     *wp++ = htons(0x4a80); // tst.l d0
835     *wp = htons(0x67f4); // beq 0x402be2
836     return true;
837     }
838    
839     // ROM patches for 32-bit clean Mac-II ROMs (version $067c)
840     static bool patch_rom_32(void)
841     {
842 cebix 1.3 uint32 *lp;
843 cebix 1.1 uint16 *wp;
844     uint8 *bp;
845     uint32 base;
846    
847     // Find UniversalInfo
848     static const uint8 universal_dat[] = {0xdc, 0x00, 0x05, 0x05, 0x3f, 0xff, 0x01, 0x00};
849     if ((base = find_rom_data(0x3400, 0x3c00, universal_dat, sizeof(universal_dat))) == 0) return false;
850     UniversalInfo = base - 0x10;
851     D(bug("universal %08lx\n", UniversalInfo));
852    
853     // Patch UniversalInfo (disable NuBus slots)
854     bp = ROMBaseHost + UniversalInfo + ReadMacInt32(ROMBaseMac + UniversalInfo + 12); // nuBusInfoPtr
855     bp[0] = 0x03;
856     for (int i=1; i<16; i++)
857     bp[i] = 0x08;
858    
859     // Set model ID from preferences
860     bp = ROMBaseHost + UniversalInfo + 18; // productKind
861     *bp = PrefsFindInt32("modelid");
862    
863     // Make FPU optional
864     if (FPUType == 0) {
865     bp = ROMBaseHost + UniversalInfo + 22; // defaultRSRCs
866     *bp = 4; // FPU optional
867     }
868    
869     // Install special reset opcode and jump (skip hardware detection and tests)
870     wp = (uint16 *)(ROMBaseHost + 0x8c);
871     *wp++ = htons(M68K_EMUL_OP_RESET);
872     *wp++ = htons(M68K_JMP);
873     *wp++ = htons((ROMBaseMac + 0xba) >> 16);
874     *wp = htons((ROMBaseMac + 0xba) & 0xffff);
875    
876     // Don't GetHardwareInfo
877     wp = (uint16 *)(ROMBaseHost + 0xc2);
878     *wp++ = htons(M68K_NOP);
879     *wp = htons(M68K_NOP);
880    
881     // Don't init VIAs
882     wp = (uint16 *)(ROMBaseHost + 0xc6);
883     *wp++ = htons(M68K_NOP);
884     *wp++ = htons(M68K_NOP);
885     *wp++ = htons(M68K_NOP);
886     *wp++ = htons(M68K_NOP);
887     *wp++ = htons(M68K_NOP);
888     *wp++ = htons(M68K_NOP);
889     *wp++ = htons(M68K_NOP);
890     *wp++ = htons(M68K_NOP);
891     *wp++ = htons(M68K_NOP);
892     *wp++ = htons(M68K_NOP);
893     *wp++ = htons(M68K_NOP);
894     *wp++ = htons(M68K_NOP);
895     *wp++ = htons(M68K_NOP);
896     *wp++ = htons(M68K_NOP);
897     *wp = htons(M68K_NOP);
898    
899     // Fake CPU type test
900     wp = (uint16 *)(ROMBaseHost + 0x7c0);
901     *wp++ = htons(0x7e00 + CPUType);
902     *wp = htons(M68K_RTS);
903    
904     // Don't clear end of BootGlobs upto end of RAM (address xxxx0000)
905     static const uint8 clear_globs_dat[] = {0x42, 0x9a, 0x36, 0x0a, 0x66, 0xfa};
906     base = find_rom_data(0xa00, 0xb00, clear_globs_dat, sizeof(clear_globs_dat));
907     D(bug("clear_globs %08lx\n", base));
908     if (base) { // ROM15/20/22/23/26/27/32
909     wp = (uint16 *)(ROMBaseHost + base + 2);
910     *wp++ = htons(M68K_NOP);
911     *wp = htons(M68K_NOP);
912     }
913    
914     // Patch InitMMU (no MMU present, don't choke on unknown CPU types)
915     if (ROMSize <= 0x80000) {
916     static const uint8 init_mmu_dat[] = {0x0c, 0x47, 0x00, 0x03, 0x62, 0x00, 0xfe};
917     if ((base = find_rom_data(0x4000, 0x50000, init_mmu_dat, sizeof(init_mmu_dat))) == 0) return false;
918     } else {
919     static const uint8 init_mmu_dat[] = {0x0c, 0x47, 0x00, 0x04, 0x62, 0x00, 0xfd};
920     if ((base = find_rom_data(0x80000, 0x90000, init_mmu_dat, sizeof(init_mmu_dat))) == 0) return false;
921     }
922     D(bug("init_mmu %08lx\n", base));
923     wp = (uint16 *)(ROMBaseHost + base);
924     *wp++ = htons(M68K_NOP);
925     *wp++ = htons(M68K_NOP);
926     *wp++ = htons(M68K_NOP);
927     *wp++ = htons(M68K_NOP);
928     wp++;
929     *wp++ = htons(0x7000); // moveq #0,d0
930     *wp = htons(M68K_NOP);
931    
932     // Patch InitMMU (no RBV present)
933     static const uint8 init_mmu2_dat[] = {0x08, 0x06, 0x00, 0x0d, 0x67};
934     if (ROMSize <= 0x80000) {
935     base = find_rom_data(0x4000, 0x50000, init_mmu2_dat, sizeof(init_mmu2_dat));
936     } else {
937     base = find_rom_data(0x80000, 0x90000, init_mmu2_dat, sizeof(init_mmu2_dat));
938     }
939     D(bug("init_mmu2 %08lx\n", base));
940     if (base) { // ROM11/10/13/26
941     bp = (uint8 *)(ROMBaseHost + base + 4);
942     *bp = 0x60; // bra
943     }
944    
945     // Patch InitMMU (don't init MMU)
946     static const uint8 init_mmu3_dat[] = {0x0c, 0x2e, 0x00, 0x01, 0xff, 0xe6, 0x66, 0x0c, 0x4c, 0xed, 0x03, 0x87, 0xff, 0xe8};
947     if (ROMSize <= 0x80000) {
948     if ((base = find_rom_data(0x4000, 0x50000, init_mmu3_dat, sizeof(init_mmu3_dat))) == 0) return false;
949     } else {
950     if ((base = find_rom_data(0x80000, 0x90000, init_mmu3_dat, sizeof(init_mmu3_dat))) == 0) return false;
951     }
952     D(bug("init_mmu3 %08lx\n", base));
953     wp = (uint16 *)(ROMBaseHost + base + 6);
954     *wp = htons(M68K_NOP);
955    
956     // Replace XPRAM routines
957     static const uint8 read_xpram_dat[] = {0x26, 0x4e, 0x41, 0xf9, 0x50, 0xf0, 0x00, 0x00, 0x08, 0x90, 0x00, 0x02};
958     base = find_rom_data(0x40000, 0x50000, read_xpram_dat, sizeof(read_xpram_dat));
959     D(bug("read_xpram %08lx\n", base));
960     if (base) { // ROM10
961     wp = (uint16 *)(ROMBaseHost + base);
962     *wp++ = htons(M68K_EMUL_OP_READ_XPRAM);
963     *wp = htons(0x4ed6); // jmp (a6)
964     }
965     static const uint8 read_xpram2_dat[] = {0x26, 0x4e, 0x08, 0x92, 0x00, 0x02, 0xea, 0x59, 0x02, 0x01, 0x00, 0x07, 0x00, 0x01, 0x00, 0xb8};
966     base = find_rom_data(0x40000, 0x50000, read_xpram2_dat, sizeof(read_xpram2_dat));
967     D(bug("read_xpram2 %08lx\n", base));
968     if (base) { // ROM11
969     wp = (uint16 *)(ROMBaseHost + base);
970     *wp++ = htons(M68K_EMUL_OP_READ_XPRAM);
971     *wp = htons(0x4ed6); // jmp (a6)
972     }
973     if (ROMSize > 0x80000) {
974     static const uint8 read_xpram3_dat[] = {0x48, 0xe7, 0xe0, 0x60, 0x02, 0x01, 0x00, 0x70, 0x0c, 0x01, 0x00, 0x20};
975     base = find_rom_data(0x80000, 0x90000, read_xpram3_dat, sizeof(read_xpram3_dat));
976     D(bug("read_xpram3 %08lx\n", base));
977     if (base) { // ROM15
978     wp = (uint16 *)(ROMBaseHost + base);
979     *wp++ = htons(M68K_EMUL_OP_READ_XPRAM2);
980     *wp = htons(M68K_RTS);
981     }
982     }
983    
984     // Patch ClkNoMem
985     base = find_rom_trap(0xa053);
986     wp = (uint16 *)(ROMBaseHost + base);
987     if (ntohs(*wp) == 0x4ed5) { // ROM23/26/27/32
988     static const uint8 clk_no_mem_dat[] = {0x40, 0xc2, 0x00, 0x7c, 0x07, 0x00, 0x48, 0x42};
989     if ((base = find_rom_data(0xb0000, 0xb8000, clk_no_mem_dat, sizeof(clk_no_mem_dat))) == 0) return false;
990     }
991     D(bug("clk_no_mem %08lx\n", base));
992     wp = (uint16 *)(ROMBaseHost + base);
993     *wp++ = htons(M68K_EMUL_OP_CLKNOMEM);
994     *wp = htons(0x4ed5); // jmp (a5)
995    
996     // Patch BootGlobs
997     wp = (uint16 *)(ROMBaseHost + 0x10e);
998     *wp++ = htons(M68K_EMUL_OP_PATCH_BOOT_GLOBS);
999     *wp = htons(M68K_NOP);
1000    
1001     // Don't init SCC
1002     static const uint8 init_scc_dat[] = {0x08, 0x38, 0x00, 0x01, 0x0d, 0xd1, 0x67, 0x04};
1003     if ((base = find_rom_data(0xa00, 0xa80, init_scc_dat, sizeof(init_scc_dat))) == 0) return false;
1004     D(bug("init_scc %08lx\n", base));
1005     wp = (uint16 *)(ROMBaseHost + base);
1006     *wp = htons(M68K_RTS);
1007    
1008     // Don't access 0x50f1a101
1009     wp = (uint16 *)(ROMBaseHost + 0x4232);
1010     if (ntohs(wp[1]) == 0x50f1 && ntohs(wp[2]) == 0xa101) { // ROM32
1011     *wp++ = htons(M68K_NOP);
1012     *wp++ = htons(M68K_NOP);
1013     *wp++ = htons(M68K_NOP);
1014     *wp++ = htons(M68K_NOP);
1015     *wp = htons(M68K_NOP);
1016     }
1017    
1018     // Don't init IWM
1019     wp = (uint16 *)(ROMBaseHost + 0x9c0);
1020     *wp = htons(M68K_RTS);
1021    
1022     // Don't init SCSI
1023     wp = (uint16 *)(ROMBaseHost + 0x9a0);
1024     *wp = htons(M68K_RTS);
1025    
1026     // Don't init ASC
1027     static const uint8 init_asc_dat[] = {0x26, 0x68, 0x00, 0x30, 0x12, 0x00, 0xeb, 0x01};
1028     base = find_rom_data(0x4000, 0x5000, init_asc_dat, sizeof(init_asc_dat));
1029     D(bug("init_asc %08lx\n", base));
1030     if (base) { // ROM15/22/23/26/27/32
1031     wp = (uint16 *)(ROMBaseHost + base);
1032     *wp = htons(0x4ed6); // jmp (a6)
1033     }
1034    
1035     // Don't EnableExtCache
1036     wp = (uint16 *)(ROMBaseHost + 0x190);
1037     *wp++ = htons(M68K_NOP);
1038     *wp = htons(M68K_NOP);
1039    
1040     // Don't DisableIntSources
1041     wp = (uint16 *)(ROMBaseHost + 0x9f4c);
1042     *wp = htons(M68K_RTS);
1043    
1044     // Fake CPU speed test (SetupTimeK)
1045     wp = (uint16 *)(ROMBaseHost + 0x800);
1046     *wp++ = htons(0x31fc); // move.w #xxx,TimeDBRA
1047     *wp++ = htons(100);
1048     *wp++ = htons(0x0d00);
1049     *wp++ = htons(0x31fc); // move.w #xxx,TimeSCCDBRA
1050     *wp++ = htons(100);
1051     *wp++ = htons(0x0d02);
1052     *wp++ = htons(0x31fc); // move.w #xxx,TimeSCSIDBRA
1053     *wp++ = htons(100);
1054     *wp++ = htons(0x0b24);
1055     *wp++ = htons(0x31fc); // move.w #xxx,TimeRAMDBRA
1056     *wp++ = htons(100);
1057     *wp++ = htons(0x0cea);
1058     *wp = htons(M68K_RTS);
1059    
1060     #if REAL_ADDRESSING
1061     // Move system zone to start of Mac RAM
1062     lp = (uint32 *)(ROMBaseHost + 0x50a);
1063     *lp++ = htonl(RAMBaseMac);
1064     *lp = htonl(RAMBaseMac + 0x1800);
1065     #endif
1066    
1067     #if !ROM_IS_WRITE_PROTECTED
1068     #if defined(AMIGA)
1069     // Set fake handle at 0x0000 to scratch memory area (so broken Mac programs won't write into Mac ROM)
1070     extern uint32 ScratchMem;
1071     wp = (uint16 *)(ROMBaseHost + 0xccaa);
1072     *wp++ = htons(0x203c); // move.l #ScratchMem,d0
1073     *wp++ = htons(ScratchMem >> 16);
1074     *wp = htons(ScratchMem);
1075     #else
1076     #error System specific handling for writable ROM is required here
1077     #endif
1078     #endif
1079    
1080     #if REAL_ADDRESSING && defined(AMIGA)
1081     // Don't overwrite SysBase under AmigaOS
1082     wp = (uint16 *)(ROMBaseHost + 0xccb4);
1083     *wp++ = htons(M68K_NOP);
1084     *wp = htons(M68K_NOP);
1085     #endif
1086    
1087     // Don't write to VIA in InitTimeMgr
1088     wp = (uint16 *)(ROMBaseHost + 0xb0e2);
1089     *wp++ = htons(0x4cdf); // movem.l (sp)+,d0-d5/a0-a4
1090     *wp++ = htons(0x1f3f);
1091     *wp = htons(M68K_RTS);
1092    
1093     // Don't read ModelID from 0x5ffffffc
1094     static const uint8 model_id_dat[] = {0x20, 0x7c, 0x5f, 0xff, 0xff, 0xfc, 0x72, 0x07, 0xc2, 0x90};
1095     base = find_rom_data(0x40000, 0x50000, model_id_dat, sizeof(model_id_dat));
1096     D(bug("model_id %08lx\n", base));
1097     if (base) { // ROM20
1098     wp = (uint16 *)(ROMBaseHost + base + 8);
1099     *wp++ = htons(M68K_NOP);
1100     *wp++ = htons(M68K_NOP);
1101     *wp++ = htons(M68K_NOP);
1102     *wp = htons(M68K_NOP);
1103     }
1104    
1105     // Don't read ModelID from 0x5ffffffc
1106     static const uint8 model_id2_dat[] = {0x45, 0xf9, 0x5f, 0xff, 0xff, 0xfc, 0x20, 0x12};
1107     base = find_rom_data(0x4000, 0x5000, model_id2_dat, sizeof(model_id2_dat));
1108     D(bug("model_id2 %08lx\n", base));
1109     if (base) { // ROM27/32
1110     wp = (uint16 *)(ROMBaseHost + base + 6);
1111     *wp++ = htons(0x7000); // moveq #0,d0
1112     *wp++ = htons(0xb040); // cmp.w d0,d0
1113     *wp = htons(0x4ed6); // jmp (a6)
1114     }
1115    
1116     // Install slot ROM
1117     if (!InstallSlotROM())
1118     return false;
1119    
1120     // Don't probe NuBus slots
1121     static const uint8 nubus_dat[] = {0x45, 0xfa, 0x00, 0x0a, 0x42, 0xa7, 0x10, 0x11};
1122     base = find_rom_data(0x5000, 0x6000, nubus_dat, sizeof(nubus_dat));
1123     D(bug("nubus %08lx\n", base));
1124     if (base) { // ROM10/11
1125     wp = (uint16 *)(ROMBaseHost + base + 6);
1126     *wp++ = htons(M68K_NOP);
1127     *wp++ = htons(M68K_NOP);
1128     *wp = htons(M68K_NOP);
1129     }
1130    
1131     // Don't EnableOneSecInts
1132     static const uint8 lea_dat[] = {0x41, 0xf9};
1133     if ((base = find_rom_data(0x226, 0x22a, lea_dat, sizeof(lea_dat))) == 0) return false;
1134     D(bug("enable_one_sec_ints %08lx\n", base));
1135     wp = (uint16 *)(ROMBaseHost + base);
1136     *wp++ = htons(M68K_NOP);
1137     *wp++ = htons(M68K_NOP);
1138     *wp++ = htons(M68K_NOP);
1139     *wp++ = htons(M68K_NOP);
1140     *wp = htons(M68K_NOP);
1141    
1142     // Don't EnableParityPatch/Enable60HzInts
1143     if ((base = find_rom_data(0x230, 0x234, lea_dat, sizeof(lea_dat))) == 0) {
1144     wp = (uint16 *)(ROMBaseHost + 0x230);
1145     if (ntohs(*wp) == 0x6100) // ROM11
1146     base = 0x230;
1147     else
1148     return false;
1149     }
1150     D(bug("enable_60hz_ints %08lx\n", base));
1151     wp = (uint16 *)(ROMBaseHost + base);
1152     *wp++ = htons(M68K_NOP);
1153     *wp++ = htons(M68K_NOP);
1154     *wp++ = htons(M68K_NOP);
1155     *wp++ = htons(M68K_NOP);
1156     *wp = htons(M68K_NOP);
1157    
1158 cebix 1.8 // Compute boot stack pointer and fix logical/physical RAM size (CompBootStack) (must be done after InitMemMgr!)
1159     wp = (uint16 *)(ROMBaseHost + 0x490);
1160     *wp++ = htons(0x2038); // move.l $10c,d0
1161     *wp++ = htons(0x010c);
1162     *wp++ = htons(0xd0b8); // add.l $2a6,d0
1163     *wp++ = htons(0x02a6);
1164     *wp++ = htons(0xe288); // lsr.l #1,d0
1165     *wp++ = htons(0x0880); // bclr #0,d0
1166     *wp++ = htons(0x0000);
1167     *wp++ = htons(0x0440); // subi.w #$400,d0
1168     *wp++ = htons(0x0400);
1169     *wp++ = htons(0x2040); // move.l d0,a0
1170 cebix 1.1 *wp++ = htons(M68K_EMUL_OP_FIX_MEMSIZE);
1171 cebix 1.8 *wp++ = htons(M68K_RTS);
1172 cebix 1.1
1173     static const uint8 fix_memsize2_dat[] = {0x22, 0x30, 0x81, 0xe2, 0x0d, 0xdc, 0xff, 0xba, 0xd2, 0xb0, 0x81, 0xe2, 0x0d, 0xdc, 0xff, 0xec, 0x21, 0xc1, 0x1e, 0xf8};
1174     base = find_rom_data(0x4c000, 0x4c080, fix_memsize2_dat, sizeof(fix_memsize2_dat));
1175     D(bug("fix_memsize2 %08lx\n", base));
1176     if (base) { // ROM15/22/23/26/27/32
1177     wp = (uint16 *)(ROMBaseHost + base + 16);
1178     *wp++ = htons(M68K_NOP);
1179     *wp = htons(M68K_NOP);
1180     }
1181    
1182     // Don't open .Sound driver but install our own drivers
1183     wp = (uint16 *)(ROMBaseHost + 0x1142);
1184     *wp = htons(M68K_EMUL_OP_INSTALL_DRIVERS);
1185    
1186     // Don't access SonyVars
1187     wp = (uint16 *)(ROMBaseHost + 0x1144);
1188     *wp++ = htons(M68K_NOP);
1189     *wp++ = htons(M68K_NOP);
1190     *wp++ = htons(M68K_NOP);
1191     *wp++ = htons(M68K_NOP);
1192     wp += 2;
1193     *wp = htons(M68K_NOP);
1194    
1195     // Don't write to VIA in InitADB
1196     wp = (uint16 *)(ROMBaseHost + 0xa8a8);
1197     if (*wp == 0) { // ROM22/23/26/27/32
1198     wp = (uint16 *)(ROMBaseHost + 0xb2c6a);
1199     *wp++ = htons(M68K_NOP);
1200     *wp++ = htons(M68K_NOP);
1201     *wp = htons(M68K_NOP);
1202     wp = (uint16 *)(ROMBaseHost + 0xb2d2e);
1203     *wp++ = htons(M68K_NOP);
1204     *wp++ = htons(M68K_NOP);
1205     *wp++ = htons(M68K_NOP);
1206     *wp++ = htons(M68K_NOP);
1207     *wp++ = htons(M68K_NOP);
1208     *wp++ = htons(M68K_NOP);
1209     *wp++ = htons(M68K_NOP);
1210     *wp++ = htons(M68K_NOP);
1211     *wp++ = htons(M68K_NOP);
1212     *wp++ = htons(M68K_NOP);
1213     *wp++ = htons(M68K_NOP);
1214     *wp++ = htons(M68K_NOP);
1215     wp += 2;
1216     *wp++ = htons(M68K_NOP);
1217     *wp = htons(M68K_NOP);
1218     } else {
1219     *wp++ = htons(M68K_NOP);
1220     *wp++ = htons(M68K_NOP);
1221     *wp = htons(M68K_NOP);
1222     wp = (uint16 *)(ROMBaseHost + 0xa662);
1223     *wp++ = htons(M68K_NOP);
1224     *wp++ = htons(M68K_NOP);
1225     *wp++ = htons(M68K_NOP);
1226     *wp++ = htons(M68K_NOP);
1227     *wp++ = htons(M68K_NOP);
1228     wp += 2;
1229     *wp++ = htons(M68K_NOP);
1230     *wp = htons(M68K_NOP);
1231     }
1232    
1233     // Don't EnableSlotInts
1234     if ((base = find_rom_data(0x2ee, 0x2f2, lea_dat, sizeof(lea_dat))) == 0) return false;
1235     D(bug("enable_slot_ints %08lx\n", base));
1236     wp = (uint16 *)(ROMBaseHost + base);
1237     *wp++ = htons(M68K_NOP);
1238     *wp++ = htons(M68K_NOP);
1239     *wp++ = htons(M68K_NOP);
1240     *wp++ = htons(M68K_NOP);
1241     *wp = htons(M68K_NOP);
1242    
1243     // Don't mangle frame buffer base (GetDevBase)
1244     wp = (uint16 *)(ROMBaseHost + 0x5b78);
1245     *wp++ = htons(M68K_NOP);
1246     *wp++ = htons(M68K_NOP);
1247     *wp++ = htons(0x2401); // move.l d1,d2
1248     *wp = htons(0x605e); // bra 0x40805bde
1249    
1250     // Really don't mangle frame buffer base
1251     if (ROMSize > 0x80000) {
1252     static const uint8 frame_base_dat[] = {0x22, 0x78, 0x0d, 0xd8, 0xd3, 0xe9, 0x00, 0x08};
1253     base = find_rom_data(0x8c000, 0x8d000, frame_base_dat, sizeof(frame_base_dat));
1254     D(bug("frame_base %08lx\n", base));
1255     if (base) { // ROM22/23/26/27/32
1256     wp = (uint16 *)(ROMBaseHost + base);
1257     *wp++ = htons(0x2401); // move.l d1,d2
1258     *wp = htons(M68K_RTS);
1259     }
1260     }
1261    
1262     // Don't write to VIA2
1263     static const uint8 via2_dat[] = {0x20, 0x78, 0x0c, 0xec, 0x11, 0x7c, 0x00, 0x90};
1264     if ((base = find_rom_data(0xa000, 0xa400, via2_dat, sizeof(via2_dat))) == 0) return false;
1265     D(bug("via2 %08lx\n", base));
1266     wp = (uint16 *)(ROMBaseHost + base + 4);
1267     *wp = htons(M68K_RTS);
1268    
1269     // Don't write to VIA2, even on ROM20
1270     static const uint8 via2b_dat[] = {0x20, 0x78, 0x0c, 0xec, 0x11, 0x7c, 0x00, 0x90, 0x00, 0x13, 0x4e, 0x75};
1271     base = find_rom_data(0x40000, 0x44000, via2b_dat, sizeof(via2b_dat));
1272     D(bug("via2b %08lx\n", base));
1273     if (base) { // ROM19/20
1274     wp = (uint16 *)(ROMBaseHost + base + 4);
1275     *wp = htons(M68K_RTS);
1276     }
1277    
1278     // Don't use PTEST instruction on 68040/060
1279     if (ROMSize > 0x80000) {
1280    
1281     // BlockMove()
1282     static const uint8 ptest_dat[] = {0xa0, 0x8d, 0x0c, 0x81, 0x00, 0x00, 0x0c, 0x00, 0x6d, 0x06, 0x4e, 0x71, 0xf4, 0xf8};
1283     base = find_rom_data(0x87000, 0x87800, ptest_dat, sizeof(ptest_dat));
1284     D(bug("ptest %08lx\n", base));
1285     if (base) { // ROM15/22/23/26/27/32
1286     wp = (uint16 *)(ROMBaseHost + base + 8);
1287     *wp = htons(M68K_NOP);
1288     }
1289    
1290     // SANE
1291     static const uint8 ptest2_dat[] = {0x0c, 0x38, 0x00, 0x04, 0x01, 0x2f, 0x6d, 0x54, 0x48, 0xe7, 0xf8, 0x60};
1292     base = find_rom_data(0, ROMSize, ptest2_dat, sizeof(ptest2_dat));
1293     D(bug("ptest2 %08lx\n", base));
1294     if (base) { // ROM15/20/22/23/26/27/32
1295     wp = (uint16 *)(ROMBaseHost + base + 8);
1296     *wp++ = htons(M68K_NOP);
1297     *wp++ = htons(0xf4f8); // cpusha dc/ic
1298     *wp++ = htons(M68K_NOP);
1299     *wp++ = htons(0x7000); // moveq #0,d0
1300     *wp = htons(M68K_RTS);
1301     }
1302     }
1303    
1304 cebix 1.10 // Don't set MemoryDispatch() to unimplemented trap
1305     static const uint8 memdisp_dat[] = {0x30, 0x3c, 0xa8, 0x9f, 0xa7, 0x46, 0x30, 0x3c, 0xa0, 0x5c, 0xa2, 0x47};
1306     base = find_rom_data(0x4f100, 0x4f180, memdisp_dat, sizeof(memdisp_dat));
1307     D(bug("memdisp %08lx\n", base));
1308     if (base) { // ROM15/32
1309     wp = (uint16 *)(ROMBaseHost + base + 10);
1310     *wp = htons(M68K_NOP);
1311     }
1312    
1313 cebix 1.1 // Patch .EDisk driver (don't scan for EDisks in the area ROMBase..0xe00000)
1314     uint32 edisk_offset = find_rom_resource('DRVR', 51);
1315     if (edisk_offset) {
1316     static const uint8 edisk_dat[] = {0xd5, 0xfc, 0x00, 0x01, 0x00, 0x00, 0xb5, 0xfc, 0x00, 0xe0, 0x00, 0x00};
1317     base = find_rom_data(edisk_offset, edisk_offset + 0x10000, edisk_dat, sizeof(edisk_dat));
1318     D(bug("edisk %08lx\n", base));
1319     if (base) {
1320     wp = (uint16 *)(ROMBaseHost + base + 8);
1321     *wp++ = 0;
1322     *wp = 0;
1323     }
1324     }
1325    
1326     // Replace .Sony driver
1327     sony_offset = find_rom_resource('DRVR', 4);
1328     D(bug("sony %08lx\n", sony_offset));
1329     memcpy(ROMBaseHost + sony_offset, sony_driver, sizeof(sony_driver));
1330    
1331     // Install .Disk and .AppleCD drivers
1332     memcpy(ROMBaseHost + sony_offset + 0x100, disk_driver, sizeof(disk_driver));
1333     memcpy(ROMBaseHost + sony_offset + 0x200, cdrom_driver, sizeof(cdrom_driver));
1334    
1335     // Copy icons to ROM
1336     SonyDiskIconAddr = ROMBaseMac + sony_offset + 0x400;
1337     memcpy(ROMBaseHost + sony_offset + 0x400, SonyDiskIcon, sizeof(SonyDiskIcon));
1338     SonyDriveIconAddr = ROMBaseMac + sony_offset + 0x600;
1339     memcpy(ROMBaseHost + sony_offset + 0x600, SonyDriveIcon, sizeof(SonyDriveIcon));
1340     DiskIconAddr = ROMBaseMac + sony_offset + 0x800;
1341     memcpy(ROMBaseHost + sony_offset + 0x800, DiskIcon, sizeof(DiskIcon));
1342     CDROMIconAddr = ROMBaseMac + sony_offset + 0xa00;
1343     memcpy(ROMBaseHost + sony_offset + 0xa00, CDROMIcon, sizeof(CDROMIcon));
1344    
1345     // Install SERD patch and serial drivers
1346     serd_offset = find_rom_resource('SERD', 0);
1347     D(bug("serd %08lx\n", serd_offset));
1348     wp = (uint16 *)(ROMBaseHost + serd_offset + 12);
1349     *wp++ = htons(M68K_EMUL_OP_SERD);
1350     *wp = htons(M68K_RTS);
1351     memcpy(ROMBaseHost + serd_offset + 0x100, ain_driver, sizeof(ain_driver));
1352     memcpy(ROMBaseHost + serd_offset + 0x200, aout_driver, sizeof(aout_driver));
1353     memcpy(ROMBaseHost + serd_offset + 0x300, bin_driver, sizeof(bin_driver));
1354     memcpy(ROMBaseHost + serd_offset + 0x400, bout_driver, sizeof(bout_driver));
1355    
1356     // Replace ADBOp()
1357     memcpy(ROMBaseHost + find_rom_trap(0xa07c), adbop_patch, sizeof(adbop_patch));
1358    
1359     // Replace Time Manager (the Microseconds patch is activated in InstallDrivers())
1360     wp = (uint16 *)(ROMBaseHost + find_rom_trap(0xa058));
1361     *wp++ = htons(M68K_EMUL_OP_INSTIME);
1362     *wp = htons(M68K_RTS);
1363     wp = (uint16 *)(ROMBaseHost + find_rom_trap(0xa059));
1364     *wp++ = htons(0x40e7); // move sr,-(sp)
1365     *wp++ = htons(0x007c); // ori #$0700,sr
1366     *wp++ = htons(0x0700);
1367     *wp++ = htons(M68K_EMUL_OP_RMVTIME);
1368     *wp++ = htons(0x46df); // move (sp)+,sr
1369     *wp = htons(M68K_RTS);
1370     wp = (uint16 *)(ROMBaseHost + find_rom_trap(0xa05a));
1371     *wp++ = htons(0x40e7); // move sr,-(sp)
1372     *wp++ = htons(0x007c); // ori #$0700,sr
1373     *wp++ = htons(0x0700);
1374     *wp++ = htons(M68K_EMUL_OP_PRIMETIME);
1375     *wp++ = htons(0x46df); // move (sp)+,sr
1376     *wp++ = htons(M68K_RTS);
1377     microseconds_offset = (uint8 *)wp - ROMBaseHost;
1378     *wp++ = htons(M68K_EMUL_OP_MICROSECONDS);
1379     *wp = htons(M68K_RTS);
1380    
1381     // Replace SCSIDispatch()
1382     wp = (uint16 *)(ROMBaseHost + find_rom_trap(0xa815));
1383     *wp++ = htons(M68K_EMUL_OP_SCSI_DISPATCH);
1384     *wp++ = htons(0x2e49); // move.l a1,a7
1385     *wp = htons(M68K_JMP_A0);
1386    
1387     // Modify vCheckLoad() so we can patch resources
1388     wp = (uint16 *)(ROMBaseHost + 0x1b8f4);
1389     *wp++ = htons(M68K_JMP);
1390     *wp++ = htons((ROMBaseMac + sony_offset + 0x300) >> 16);
1391     *wp = htons((ROMBaseMac + sony_offset + 0x300) & 0xffff);
1392     wp = (uint16 *)(ROMBaseHost + sony_offset + 0x300);
1393     *wp++ = htons(0x2f03); // move.l d3,-(sp) (save type)
1394     *wp++ = htons(0x2078); // move.l $07f0,a0
1395     *wp++ = htons(0x07f0);
1396     *wp++ = htons(M68K_JSR_A0);
1397     *wp++ = htons(0x221f); // move.l (sp)+,d1 (restore type)
1398     *wp++ = htons(M68K_EMUL_OP_CHECKLOAD);
1399     *wp = htons(M68K_RTS);
1400    
1401     // Patch PowerOff()
1402     wp = (uint16 *)(ROMBaseHost + find_rom_trap(0xa05b)); // PowerOff()
1403     *wp = htons(M68K_EMUL_OP_SHUTDOWN);
1404    
1405     // Install PutScrap() patch for clipboard data exchange (the patch is activated by EMUL_OP_INSTALL_DRIVERS)
1406     PutScrapPatch = ROMBaseMac + sony_offset + 0xc00;
1407     base = ROMBaseMac + find_rom_trap(0xa9fe);
1408     wp = (uint16 *)(ROMBaseHost + sony_offset + 0xc00);
1409     *wp++ = htons(M68K_EMUL_OP_PUT_SCRAP);
1410     *wp++ = htons(M68K_JMP);
1411     *wp++ = htons(base >> 16);
1412     *wp = htons(base & 0xffff);
1413    
1414     // Install MemoryDispatch() replacement routine (activated in PatchAfterStartup())
1415     memory_dispatch_offset = sony_offset + 0xc20;
1416     wp = (uint16 *)(ROMBaseHost + memory_dispatch_offset);
1417     *wp++ = htons(M68K_EMUL_OP_MEMORY_DISPATCH);
1418     *wp = htons(M68K_RTS);
1419    
1420 cebix 1.7 #if EMULATED_68K
1421     // Replace BlockMove()
1422     wp = (uint16 *)(ROMBaseHost + find_rom_trap(0xa02e)); // BlockMove()
1423     *wp++ = htons(M68K_EMUL_OP_BLOCK_MOVE);
1424     *wp++ = htons(0x7000);
1425     *wp = htons(M68K_RTS);
1426     #endif
1427    
1428 cebix 1.1 // Patch VIA interrupt handler
1429     wp = (uint16 *)(ROMBaseHost + 0x9bc4); // Level 1 handler
1430     *wp++ = htons(0x7002); // moveq #2,d0 (always 60Hz interrupt)
1431     *wp++ = htons(M68K_NOP);
1432     *wp++ = htons(M68K_NOP);
1433     *wp++ = htons(M68K_NOP);
1434     *wp = htons(M68K_NOP);
1435    
1436     wp = (uint16 *)(ROMBaseHost + 0xa29a); // 60Hz handler (handles everything)
1437     *wp++ = htons(M68K_EMUL_OP_IRQ);
1438     *wp++ = htons(0x4a80); // tst.l d0
1439     *wp = htons(0x67f4); // beq 0x4080a294
1440     return true;
1441     }
1442    
1443     bool PatchROM(void)
1444     {
1445     // Print ROM info
1446     D(bug("ROM Info:\n"));
1447     D(bug("Checksum: %08lx\n", ReadMacInt32(ROMBaseMac)));
1448     D(bug("Version: %04x\n", ROMVersion));
1449     D(bug("Sub Version: %04x\n", ReadMacInt16(ROMBaseMac + 18)));
1450    
1451     // Patch ROM depending on version
1452     switch (ROMVersion) {
1453     case ROM_VERSION_CLASSIC:
1454     if (!patch_rom_classic())
1455     return false;
1456     break;
1457     case ROM_VERSION_32:
1458     if (!patch_rom_32())
1459     return false;
1460     break;
1461     default:
1462     return false;
1463     }
1464    
1465     // Install breakpoint
1466 cebix 1.10 if (ROMBreakpoint) {
1467     uint16 *wp = (uint16 *)(ROMBaseHost + ROMBreakpoint);
1468     *wp = htons(M68K_EMUL_BREAK);
1469     }
1470 cebix 1.1
1471     // Clear caches as we loaded and patched code
1472     FlushCodeCache(ROMBaseHost, ROMSize);
1473     return true;
1474     }