1 |
|
/* |
2 |
|
* rom_patches.cpp - ROM patches |
3 |
|
* |
4 |
< |
* SheepShaver (C) 1997-2004 Christian Bauer and Marc Hellwig |
4 |
> |
* SheepShaver (C) 1997-2005 Christian Bauer and Marc Hellwig |
5 |
|
* |
6 |
|
* This program is free software; you can redistribute it and/or modify |
7 |
|
* it under the terms of the GNU General Public License as published by |
1085 |
|
*lp++ = htonl(0x48000000 + 0x36fb00 - base - 8); // b 0x36fb00 (Reset/FC1E opcode) |
1086 |
|
*lp++ = htonl(0x48000000 + 0x36fc00 - base - 12); // FE0A opcode |
1087 |
|
*lp++ = htonl(POWERPC_ILLEGAL); // Interrupt |
1088 |
< |
*lp++ = htonl(POWERPC_ILLEGAL); // ? |
1088 |
> |
*lp++ = htonl(0x48000000 + 0x36fd00 - base - 20); // FE0F opcode |
1089 |
|
*lp++ = htonl(POWERPC_ILLEGAL); |
1090 |
|
*lp++ = htonl(POWERPC_ILLEGAL); |
1091 |
|
*lp++ = htonl(POWERPC_ILLEGAL); |
1254 |
|
*lp++ = htonl(0x50e7deb4); // rlwimi r7,r7,27,$00000020 |
1255 |
|
*lp = htonl(0x4e800020); // blr |
1256 |
|
|
1257 |
+ |
// Extra routine for FE0F opcode (power management) |
1258 |
+ |
lp = (uint32 *)(ROMBaseHost + 0x36fd00); |
1259 |
+ |
*lp++ = htonl(0x7c2903a6); // mtctr r1 |
1260 |
+ |
*lp++ = htonl(0x80200000 + XLM_IRQ_NEST); // lwz r1,XLM_IRQ_NEST |
1261 |
+ |
*lp++ = htonl(0x38210001); // addi r1,r1,1 |
1262 |
+ |
*lp++ = htonl(0x90200000 + XLM_IRQ_NEST); // stw r1,XLM_IRQ_NEST |
1263 |
+ |
*lp++ = htonl(0x80200000 + XLM_KERNEL_DATA);// lwz r1,XLM_KERNEL_DATA |
1264 |
+ |
*lp++ = htonl(0x90c10018); // stw r6,0x18(r1) |
1265 |
+ |
*lp++ = htonl(0x7cc902a6); // mfctr r6 |
1266 |
+ |
*lp++ = htonl(0x90c10004); // stw r6,$0004(r1) |
1267 |
+ |
*lp++ = htonl(0x80c1065c); // lwz r6,$065c(r1) |
1268 |
+ |
*lp++ = htonl(0x90e6013c); // stw r7,$013c(r6) |
1269 |
+ |
*lp++ = htonl(0x91060144); // stw r8,$0144(r6) |
1270 |
+ |
*lp++ = htonl(0x9126014c); // stw r9,$014c(r6) |
1271 |
+ |
*lp++ = htonl(0x91460154); // stw r10,$0154(r6) |
1272 |
+ |
*lp++ = htonl(0x9166015c); // stw r11,$015c(r6) |
1273 |
+ |
*lp++ = htonl(0x91860164); // stw r12,$0164(r6) |
1274 |
+ |
*lp++ = htonl(0x91a6016c); // stw r13,$016c(r6) |
1275 |
+ |
*lp++ = htonl(0x7da00026); // mfcr r13 |
1276 |
+ |
*lp++ = htonl(0x80e10660); // lwz r7,$0660(r1) |
1277 |
+ |
*lp++ = htonl(0x7d8802a6); // mflr r12 |
1278 |
+ |
*lp++ = htonl(0x50e74001); // rlwimi. r7,r7,8,$80000000 |
1279 |
+ |
*lp++ = htonl(0x81410604); // lwz r10,0x0604(r1) |
1280 |
+ |
*lp++ = htonl(0x7d4803a6); // mtlr r10 |
1281 |
+ |
*lp++ = htonl(0x7d8a6378); // mr r10,r12 |
1282 |
+ |
*lp++ = htonl(0x3d600002); // lis r11,0x0002 |
1283 |
+ |
*lp++ = htonl(0x616bf072); // ori r11,r11,0xf072 (MSR) |
1284 |
+ |
*lp++ = htonl(0x50e7deb4); // rlwimi r7,r7,27,$00000020 |
1285 |
+ |
*lp = htonl(0x4e800020); // blr |
1286 |
+ |
|
1287 |
|
// Patch DR emulator to jump to right address when an interrupt occurs |
1288 |
|
lp = (uint32 *)(ROMBaseHost + 0x370000); |
1289 |
|
while (lp < (uint32 *)(ROMBaseHost + 0x380000)) { |
1296 |
|
dr_found: |
1297 |
|
lp++; |
1298 |
|
loc = (uintptr)lp - (uintptr)ROMBaseHost; |
1299 |
< |
if ((base = rom_powerpc_branch_target(loc)) == 0) base = ROM_BASE + loc; |
1299 |
> |
if ((base = rom_powerpc_branch_target(loc)) == 0) base = loc; |
1300 |
|
static const uint8 dr_ret_dat[] = {0x80, 0xbf, 0x08, 0x14, 0x53, 0x19, 0x4d, 0xac, 0x7c, 0xa8, 0x03, 0xa6}; |
1301 |
< |
if ((base = find_rom_data(base - ROM_BASE, 0x380000, dr_ret_dat, sizeof(dr_ret_dat))) == 0) return false; |
1301 |
> |
if ((base = find_rom_data(base, 0x380000, dr_ret_dat, sizeof(dr_ret_dat))) == 0) return false; |
1302 |
|
D(bug("dr_ret %08lx\n", base)); |
1303 |
|
if (base != loc) { |
1304 |
|
// OldWorld ROMs contain an absolute branch |
1412 |
|
*lp++ = htonl(POWERPC_NOP); |
1413 |
|
*lp = htonl(POWERPC_NOP); |
1414 |
|
|
1415 |
+ |
// Disable suspend (FE0F opcode) |
1416 |
+ |
// TODO: really suspend SheepShaver? |
1417 |
+ |
static const uint8 suspend_dat[] = {0x7c, 0x88, 0x68, 0x39, 0x41, 0x9d}; |
1418 |
+ |
if ((base = find_rom_data(0x315000, 0x316000, suspend_dat, sizeof(suspend_dat))) == 0) return false; |
1419 |
+ |
D(bug("suspend %08lx\n", base)); |
1420 |
+ |
lp = (uint32 *)(ROMBaseHost + base + 4); |
1421 |
+ |
*lp = htonl((ntohl(*lp) & 0xffff) | 0x48000000); // bgt -> b |
1422 |
+ |
|
1423 |
|
// Patch trap return routine |
1424 |
|
static const uint8 trap_return_dat[] = {0x80, 0xc1, 0x00, 0x18, 0x80, 0x21, 0x00, 0x04, 0x4c, 0x00, 0x00, 0x64}; |
1425 |
|
if ((base = find_rom_data(0x312000, 0x320000, trap_return_dat, sizeof(trap_return_dat))) == 0) return false; |