1 /* Driver for SanDisk SDDR-09 SmartMedia reader
3 * (c) 2000, 2001 Robert Baruch (autophile@starband.net)
4 * (c) 2002 Andries Brouwer (aeb@cwi.nl)
6 * The SanDisk SDDR-09 SmartMedia reader uses the Shuttle EUSB-01 chip.
7 * This chip is a programmable USB controller. In the SDDR-09, it has
8 * been programmed to obey a certain limited set of SCSI commands.
9 * This driver translates the "real" SCSI commands to the SDDR-09 SCSI
12 * This program is free software; you can redistribute it and/or modify it
13 * under the terms of the GNU General Public License as published by the
14 * Free Software Foundation; either version 2, or (at your option) any
17 * This program is distributed in the hope that it will be useful, but
18 * WITHOUT ANY WARRANTY; without even the implied warranty of
19 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
20 * General Public License for more details.
22 * You should have received a copy of the GNU General Public License along
23 * with this program; if not, write to the Free Software Foundation, Inc.,
24 * 675 Mass Ave, Cambridge, MA 02139, USA.
27 #include "transport.h"
33 #include <linux/sched.h>
34 #include <linux/errno.h>
35 #include <linux/slab.h>
37 #define short_pack(lsb,msb) ( ((u16)(lsb)) | ( ((u16)(msb))<<8 ) )
38 #define LSB_of(s) ((s)&0xFF)
39 #define MSB_of(s) ((s)>>8)
41 /* #define US_DEBUGP printk */
44 * First some stuff that does not belong here:
45 * data on SmartMedia and other cards, completely
46 * unrelated to this driver.
47 * Similar stuff occurs in <linux/mtd/nand_ids.h>.
50 struct nand_flash_dev {
52 int chipshift; /* 1<<cs bytes total capacity */
53 char pageshift; /* 1<<ps bytes in a page */
54 char blockshift; /* 1<<bs pages in an erase block */
55 char zoneshift; /* 1<<zs blocks in a zone */
56 /* # of logical blocks is 125/128 of this */
57 char pageadrlen; /* length of an address in bytes - 1 */
61 * NAND Flash Manufacturer ID Codes
63 #define NAND_MFR_AMD 0x01
64 #define NAND_MFR_TOSHIBA 0x98
65 #define NAND_MFR_SAMSUNG 0xec
67 static inline char *nand_flash_manufacturer(int manuf_id) {
71 case NAND_MFR_TOSHIBA:
73 case NAND_MFR_SAMSUNG:
81 * It looks like it is unnecessary to attach manufacturer to the
82 * remaining data: SSFDC prescribes manufacturer-independent id codes.
85 static struct nand_flash_dev nand_flash_ids[] = {
86 /* NAND flash - these I verified */
87 { 0x6e, 20, 8, 4, 8, 2}, /* 1 MB */
88 { 0xe8, 20, 8, 4, 8, 2}, /* 1 MB */
89 { 0xec, 20, 8, 4, 8, 2}, /* 1 MB */
90 { 0x64, 21, 8, 4, 9, 2}, /* 2 MB */
91 { 0xea, 21, 8, 4, 9, 2}, /* 2 MB */
92 { 0x6b, 22, 9, 4, 9, 2}, /* 4 MB */
93 { 0xe3, 22, 9, 4, 9, 2}, /* 4 MB */
94 { 0xe5, 22, 9, 4, 9, 2}, /* 4 MB */
95 { 0xe6, 23, 9, 4, 10, 2}, /* 8 MB */
96 { 0x73, 24, 9, 5, 10, 2}, /* 16 MB */
97 { 0x75, 25, 9, 5, 10, 2}, /* 32 MB */
98 { 0x76, 26, 9, 5, 10, 3}, /* 64 MB */
99 { 0x79, 27, 9, 5, 10, 3}, /* 128 MB */
100 /* MASK ROM - from unknown source */
101 { 0x5d, 21, 9, 4, 8, 2}, /* 2 MB */
102 { 0xd5, 22, 9, 4, 9, 2}, /* 4 MB */
103 { 0xd6, 23, 9, 4, 10, 2}, /* 8 MB */
107 #define SIZE(a) (sizeof(a)/sizeof((a)[0]))
109 static struct nand_flash_dev *
110 nand_find_id(unsigned char id) {
113 for (i = 0; i < SIZE(nand_flash_ids); i++)
114 if (nand_flash_ids[i].model_id == id)
115 return &(nand_flash_ids[i]);
122 static unsigned char parity[256];
123 static unsigned char ecc2[256];
125 static void nand_init_ecc(void) {
129 for (i = 1; i < 256; i++)
130 parity[i] = (parity[i&(i-1)] ^ 1);
132 for (i = 0; i < 256; i++) {
134 for (j = 0; j < 8; j++) {
144 ecc2[i] = ~(a ^ (a<<1) ^ (parity[i] ? 0xa8 : 0));
148 /* compute 3-byte ecc on 256 bytes */
149 static void nand_compute_ecc(unsigned char *data, unsigned char *ecc) {
151 unsigned char par, bit, bits[8];
154 for (j = 0; j < 8; j++)
157 /* collect 16 checksum bits */
158 for (i = 0; i < 256; i++) {
160 bit = parity[data[i]];
161 for (j = 0; j < 8; j++)
162 if ((i & (1<<j)) == 0)
166 /* put 4+4+4 = 12 bits in the ecc */
167 a = (bits[3] << 6) + (bits[2] << 4) + (bits[1] << 2) + bits[0];
168 ecc[0] = ~(a ^ (a<<1) ^ (parity[par] ? 0xaa : 0));
170 a = (bits[7] << 6) + (bits[6] << 4) + (bits[5] << 2) + bits[4];
171 ecc[1] = ~(a ^ (a<<1) ^ (parity[par] ? 0xaa : 0));
176 static int nand_compare_ecc(unsigned char *data, unsigned char *ecc) {
177 return (data[0] == ecc[0] && data[1] == ecc[1] && data[2] == ecc[2]);
180 static void nand_store_ecc(unsigned char *data, unsigned char *ecc) {
181 memcpy(data, ecc, 3);
185 * The actual driver starts here.
189 * On my 16MB card, control blocks have size 64 (16 real control bytes,
190 * and 48 junk bytes). In reality of course the card uses 16 control bytes,
191 * so the reader makes up the remaining 48. Don't know whether these numbers
192 * depend on the card. For now a constant.
194 #define CONTROL_SHIFT 6
197 * LBA and PBA are unsigned ints. Special values.
199 #define UNDEF 0xffffffff
200 #define SPARE 0xfffffffe
201 #define UNUSABLE 0xfffffffd
204 * Send a control message and wait for the response.
206 * us - the pointer to the us_data structure for the device to use
208 * request - the URB Setup Packet's first 6 bytes. The first byte always
209 * corresponds to the request type, and the second byte always corresponds
210 * to the request. The other 4 bytes do not correspond to value and index,
211 * since they are used in a custom way by the SCM protocol.
213 * xfer_data - a buffer from which to get, or to which to store, any data
214 * that gets send or received, respectively, with the URB. Even though
215 * it looks like we allocate a buffer in this code for the data, xfer_data
216 * must contain enough allocated space.
218 * xfer_len - the number of bytes to send or receive with the URB.
223 sddr09_send_control(struct us_data *us,
225 unsigned char request,
226 unsigned char requesttype,
229 unsigned char *xfer_data,
230 unsigned int xfer_len) {
234 // Send the URB to the device and wait for a response.
236 /* Why are request and request type reversed in this call? */
238 result = usb_stor_control_msg(us, pipe,
239 request, requesttype, value, index,
240 xfer_data, xfer_len);
243 // Check the return code for the command.
246 /* if the command was aborted, indicate that */
247 if (result == -ECONNRESET)
248 return USB_STOR_TRANSPORT_ABORTED;
250 /* a stall is a fatal condition from the device */
251 if (result == -EPIPE) {
252 US_DEBUGP("-- Stall on control pipe. Clearing\n");
253 result = usb_clear_halt(us->pusb_dev, pipe);
254 US_DEBUGP("-- usb_clear_halt() returns %d\n", result);
255 return USB_STOR_TRANSPORT_FAILED;
258 return USB_STOR_TRANSPORT_ERROR;
261 return USB_STOR_TRANSPORT_GOOD;
264 /* send vendor interface command (0x41) */
265 /* called for requests 0, 1, 8 */
267 sddr09_send_command(struct us_data *us,
268 unsigned char request,
269 unsigned char direction,
270 unsigned char *xfer_data,
271 unsigned int xfer_len) {
273 unsigned char requesttype = (0x41 | direction);
275 // Get the receive or send control pipe number
277 if (direction == USB_DIR_IN)
278 pipe = usb_rcvctrlpipe(us->pusb_dev,0);
280 pipe = usb_sndctrlpipe(us->pusb_dev,0);
282 return sddr09_send_control(us, pipe, request, requesttype,
283 0, 0, xfer_data, xfer_len);
287 sddr09_send_scsi_command(struct us_data *us,
288 unsigned char *command,
289 unsigned int command_len) {
290 return sddr09_send_command(us, 0, USB_DIR_OUT, command, command_len);
294 sddr09_raw_bulk(struct us_data *us, int direction,
295 unsigned char *data, unsigned int len) {
301 if (direction == SCSI_DATA_READ)
302 pipe = usb_rcvbulkpipe(us->pusb_dev, us->ep_in);
304 pipe = usb_sndbulkpipe(us->pusb_dev, us->ep_out);
306 result = usb_stor_bulk_msg(us, data, pipe, len, &act_len);
308 /* if we stall, we need to clear it before we go on */
309 if (result == -EPIPE) {
310 US_DEBUGP("EPIPE: clearing endpoint halt for"
311 " pipe 0x%x, stalled at %d bytes\n",
313 usb_clear_halt(us->pusb_dev, pipe);
317 /* -ECONNRESET -- we canceled this transfer */
318 if (result == -ECONNRESET) {
319 US_DEBUGP("usbat_raw_bulk(): transfer aborted\n");
320 return US_BULK_TRANSFER_ABORTED;
323 /* NAK - that means we've retried a few times already */
324 if (result == -ETIMEDOUT)
325 US_DEBUGP("usbat_raw_bulk(): device NAKed\n");
326 else if (result == -EOVERFLOW)
327 US_DEBUGP("us_transfer_partial(): babble/overflow\n");
328 else if (result != -EPIPE)
329 US_DEBUGP("us_transfer_partial(): unknown error %d\n",
332 return US_BULK_TRANSFER_FAILED;
335 if (act_len != len) {
336 US_DEBUGP("Warning: Transferred only %d of %d bytes\n",
338 return US_BULK_TRANSFER_SHORT;
341 return US_BULK_TRANSFER_GOOD;
345 sddr09_bulk_transport(struct us_data *us, int direction,
346 unsigned char *data, unsigned int len,
349 int result = USB_STOR_TRANSPORT_GOOD;
352 struct scatterlist *sg;
355 #define DEBUG_PRCT 12
358 return USB_STOR_TRANSPORT_GOOD;
360 if (direction == SCSI_DATA_WRITE && !use_sg) {
362 /* Debug-print the first N bytes of the write transfer */
364 strcpy(string, "wr: ");
365 for (i=0; i<len && i<DEBUG_PRCT; i++) {
366 sprintf(string+strlen(string), "%02X ",
369 US_DEBUGP("%s\n", string);
370 strcpy(string, "wr: ");
374 US_DEBUGP("%s\n", string);
377 US_DEBUGP("SCM data %s transfer %d sg buffers %d\n",
378 (direction == SCSI_DATA_READ) ? "in" : "out",
382 result = sddr09_raw_bulk(us, direction, data, len);
384 sg = (struct scatterlist *)data;
386 for (i=0; i<use_sg && transferred<len; i++) {
391 length = len-transferred;
392 if (length > sg[i].length)
393 length = sg[i].length;
395 result = sddr09_raw_bulk(us, direction, buf, length);
396 if (result != US_BULK_TRANSFER_GOOD)
398 transferred += sg[i].length;
402 if (direction == SCSI_DATA_READ && !use_sg) {
404 /* Debug-print the first N bytes of the read transfer */
406 strcpy(string, "rd: ");
407 for (i=0; i<len && i<DEBUG_PRCT; i++) {
408 sprintf(string+strlen(string), "%02X ",
411 US_DEBUGP("%s\n", string);
412 strcpy(string, "rd: ");
416 US_DEBUGP("%s\n", string);
424 * Test Unit Ready Command: 12 bytes.
428 sddr09_test_unit_ready(struct us_data *us) {
429 unsigned char command[6] = {
434 result = sddr09_send_scsi_command(us, command, sizeof(command));
436 US_DEBUGP("sddr09_test_unit_ready returns %d\n", result);
443 * Request Sense Command: 12 bytes.
445 * byte 4: data length
449 sddr09_request_sense(struct us_data *us, unsigned char *sensebuf, int buflen) {
450 unsigned char command[12] = {
451 0x03, 0x20, 0, 0, buflen, 0, 0, 0, 0, 0, 0, 0
455 result = sddr09_send_scsi_command(us, command, sizeof(command));
456 if (result != USB_STOR_TRANSPORT_GOOD) {
457 US_DEBUGP("request sense failed\n");
461 result = sddr09_raw_bulk(us, SCSI_DATA_READ, sensebuf, buflen);
462 if (result != USB_STOR_TRANSPORT_GOOD)
463 US_DEBUGP("request sense bulk in failed\n");
465 US_DEBUGP("request sense worked\n");
471 * Read Command: 12 bytes.
473 * byte 1: last two bits: 00: read data, 01: read blockwise control,
474 * 10: read both, 11: read pagewise control.
475 * It turns out we need values 20, 21, 22, 23 here (LUN 1).
476 * bytes 2-5: address (interpretation depends on byte 1, see below)
477 * bytes 10-11: count (idem)
479 * A page has 512 data bytes and 64 control bytes (16 control and 48 junk).
480 * A read data command gets data in 512-byte pages.
481 * A read control command gets control in 64-byte chunks.
482 * A read both command gets data+control in 576-byte chunks.
484 * Blocks are groups of 32 pages, and read blockwise control jumps to the
485 * next block, while read pagewise control jumps to the next page after
486 * reading a group of 64 control bytes.
487 * [Here 512 = 1<<pageshift, 32 = 1<<blockshift, 64 is constant?]
489 * (1 MB and 2 MB cards are a bit different, but I have only a 16 MB card.)
493 sddr09_readX(struct us_data *us, int x, unsigned long fromaddress,
494 int nr_of_pages, int bulklen, unsigned char *buf,
497 unsigned char command[12] = {
498 0xe8, 0x20 | x, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
502 command[2] = MSB_of(fromaddress>>16);
503 command[3] = LSB_of(fromaddress>>16);
504 command[4] = MSB_of(fromaddress & 0xFFFF);
505 command[5] = LSB_of(fromaddress & 0xFFFF);
507 command[10] = MSB_of(nr_of_pages);
508 command[11] = LSB_of(nr_of_pages);
510 result = sddr09_send_scsi_command(us, command, sizeof(command));
512 if (result != USB_STOR_TRANSPORT_GOOD) {
513 US_DEBUGP("Result for send_control in sddr09_read2%d %d\n",
518 result = sddr09_bulk_transport(us, SCSI_DATA_READ,
519 buf, bulklen, use_sg);
521 if (result != USB_STOR_TRANSPORT_GOOD)
522 US_DEBUGP("Result for bulk_transport in sddr09_read2%d %d\n",
531 * fromaddress counts data shorts:
532 * increasing it by 256 shifts the bytestream by 512 bytes;
533 * the last 8 bits are ignored.
535 * nr_of_pages counts pages of size (1 << pageshift).
538 sddr09_read20(struct us_data *us, unsigned long fromaddress,
539 int nr_of_pages, int pageshift, unsigned char *buf, int use_sg) {
540 int bulklen = nr_of_pages << pageshift;
542 /* The last 8 bits of fromaddress are ignored. */
543 return sddr09_readX(us, 0, fromaddress, nr_of_pages, bulklen,
548 * Read Blockwise Control
550 * fromaddress gives the starting position (as in read data;
551 * the last 8 bits are ignored); increasing it by 32*256 shifts
552 * the output stream by 64 bytes.
554 * count counts control groups of size (1 << controlshift).
555 * For me, controlshift = 6. Is this constant?
557 * After getting one control group, jump to the next block
558 * (fromaddress += 8192).
561 sddr09_read21(struct us_data *us, unsigned long fromaddress,
562 int count, int controlshift, unsigned char *buf, int use_sg) {
564 int bulklen = (count << controlshift);
565 return sddr09_readX(us, 1, fromaddress, count, bulklen,
570 * Read both Data and Control
572 * fromaddress counts data shorts, ignoring control:
573 * increasing it by 256 shifts the bytestream by 576 = 512+64 bytes;
574 * the last 8 bits are ignored.
576 * nr_of_pages counts pages of size (1 << pageshift) + (1 << controlshift).
579 sddr09_read22(struct us_data *us, unsigned long fromaddress,
580 int nr_of_pages, int pageshift, unsigned char *buf, int use_sg) {
582 int bulklen = (nr_of_pages << pageshift) + (nr_of_pages << CONTROL_SHIFT);
583 US_DEBUGP("sddr09_read22: reading %d pages, %d bytes\n",
584 nr_of_pages, bulklen);
585 return sddr09_readX(us, 2, fromaddress, nr_of_pages, bulklen,
591 * Read Pagewise Control
593 * fromaddress gives the starting position (as in read data;
594 * the last 8 bits are ignored); increasing it by 256 shifts
595 * the output stream by 64 bytes.
597 * count counts control groups of size (1 << controlshift).
598 * For me, controlshift = 6. Is this constant?
600 * After getting one control group, jump to the next page
601 * (fromaddress += 256).
604 sddr09_read23(struct us_data *us, unsigned long fromaddress,
605 int count, int controlshift, unsigned char *buf, int use_sg) {
607 int bulklen = (count << controlshift);
608 return sddr09_readX(us, 3, fromaddress, count, bulklen,
615 * Erase Command: 12 bytes.
617 * bytes 6-9: erase address (big-endian, counting shorts, sector aligned).
619 * Always precisely one block is erased; bytes 2-5 and 10-11 are ignored.
620 * The byte address being erased is 2*Eaddress.
623 sddr09_erase(struct us_data *us, unsigned long Eaddress) {
624 unsigned char command[12] = {
625 0xea, 0x20, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
629 command[6] = MSB_of(Eaddress>>16);
630 command[7] = LSB_of(Eaddress>>16);
631 command[8] = MSB_of(Eaddress & 0xFFFF);
632 command[9] = LSB_of(Eaddress & 0xFFFF);
634 result = sddr09_send_scsi_command(us, command, sizeof(command));
636 if (result != USB_STOR_TRANSPORT_GOOD)
637 US_DEBUGP("Result for send_control in sddr09_erase %d\n",
645 * Write Command: 12 bytes.
647 * bytes 2-5: write address (big-endian, counting shorts, sector aligned).
648 * bytes 6-9: erase address (big-endian, counting shorts, sector aligned).
649 * bytes 10-11: sector count (big-endian, in 512-byte sectors).
651 * If write address equals erase address, the erase is done first,
652 * otherwise the write is done first. When erase address equals zero
656 sddr09_writeX(struct us_data *us,
657 unsigned long Waddress, unsigned long Eaddress,
658 int nr_of_pages, int bulklen, unsigned char *buf, int use_sg) {
660 unsigned char command[12] = {
661 0xe9, 0x20, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
665 command[2] = MSB_of(Waddress>>16);
666 command[3] = LSB_of(Waddress>>16);
667 command[4] = MSB_of(Waddress & 0xFFFF);
668 command[5] = LSB_of(Waddress & 0xFFFF);
670 command[6] = MSB_of(Eaddress>>16);
671 command[7] = LSB_of(Eaddress>>16);
672 command[8] = MSB_of(Eaddress & 0xFFFF);
673 command[9] = LSB_of(Eaddress & 0xFFFF);
675 command[10] = MSB_of(nr_of_pages);
676 command[11] = LSB_of(nr_of_pages);
678 result = sddr09_send_scsi_command(us, command, sizeof(command));
680 if (result != USB_STOR_TRANSPORT_GOOD) {
681 US_DEBUGP("Result for send_control in sddr09_writeX %d\n",
686 result = sddr09_bulk_transport(us, SCSI_DATA_WRITE,
687 buf, bulklen, use_sg);
689 if (result != USB_STOR_TRANSPORT_GOOD)
690 US_DEBUGP("Result for bulk_transport in sddr09_writeX %d\n",
696 /* erase address, write same address */
698 sddr09_write_inplace(struct us_data *us, unsigned long address,
699 int nr_of_pages, int pageshift, unsigned char *buf,
701 int bulklen = (nr_of_pages << pageshift) + (nr_of_pages << CONTROL_SHIFT);
702 return sddr09_writeX(us, address, address, nr_of_pages, bulklen,
708 * Read Scatter Gather Command: 3+4n bytes.
711 * bytes 4i-1,4i,4i+1: page address
712 * byte 4i+2: page count
715 * This reads several pages from the card to a single memory buffer.
718 sddr09_read_sg_test_only(struct us_data *us) {
719 unsigned char command[15] = {
722 int result, bulklen, nsg, ct;
724 unsigned long address;
728 address = 040000; ct = 1;
730 bulklen += (ct << 9);
731 command[4*nsg+2] = ct;
732 command[4*nsg+1] = ((address >> 9) & 0xFF);
733 command[4*nsg+0] = ((address >> 17) & 0xFF);
734 command[4*nsg-1] = ((address >> 25) & 0xFF);
736 address = 0340000; ct = 1;
738 bulklen += (ct << 9);
739 command[4*nsg+2] = ct;
740 command[4*nsg+1] = ((address >> 9) & 0xFF);
741 command[4*nsg+0] = ((address >> 17) & 0xFF);
742 command[4*nsg-1] = ((address >> 25) & 0xFF);
744 address = 01000000; ct = 2;
746 bulklen += (ct << 9);
747 command[4*nsg+2] = ct;
748 command[4*nsg+1] = ((address >> 9) & 0xFF);
749 command[4*nsg+0] = ((address >> 17) & 0xFF);
750 command[4*nsg-1] = ((address >> 25) & 0xFF);
754 result = sddr09_send_scsi_command(us, command, 4*nsg+3);
756 if (result != USB_STOR_TRANSPORT_GOOD) {
757 US_DEBUGP("Result for send_control in sddr09_read_sg %d\n",
762 buf = (unsigned char *) kmalloc(bulklen, GFP_NOIO);
764 return USB_STOR_TRANSPORT_ERROR;
766 result = sddr09_bulk_transport(us, SCSI_DATA_READ,
768 if (result != USB_STOR_TRANSPORT_GOOD)
769 US_DEBUGP("Result for bulk_transport in sddr09_read_sg %d\n",
779 * Read Status Command: 12 bytes.
782 * Returns 64 bytes, all zero except for the first.
784 * bit 5: 1: Suspended
786 * bit 7: 1: Not write-protected
790 sddr09_read_status(struct us_data *us, unsigned char *status) {
792 unsigned char command[12] = {
793 0xec, 0x20, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
795 unsigned char data[64];
798 US_DEBUGP("Reading status...\n");
800 result = sddr09_send_scsi_command(us, command, sizeof(command));
801 if (result != USB_STOR_TRANSPORT_GOOD)
804 result = sddr09_bulk_transport(us, SCSI_DATA_READ,
805 data, sizeof(data), 0);
811 sddr09_read_data(struct us_data *us,
812 unsigned long address,
813 unsigned int sectors,
814 unsigned char *content,
817 struct sddr09_card_info *info = (struct sddr09_card_info *) us->extra;
818 unsigned int lba, maxlba, pba;
819 unsigned int page, pages;
820 unsigned char *buffer = NULL;
822 struct scatterlist *sg = NULL;
825 // If we're using scatter-gather, we have to create a new
826 // buffer to read all of the data in first, since a
827 // scatter-gather buffer could in theory start in the middle
828 // of a page, which would be bad. A developer who wants a
829 // challenge might want to write a limited-buffer
830 // version of this code.
832 len = sectors*info->pagesize;
835 sg = (struct scatterlist *)content;
836 buffer = kmalloc(len, GFP_NOIO);
838 return USB_STOR_TRANSPORT_ERROR;
843 // Figure out the initial LBA and page
844 lba = address >> info->blockshift;
845 page = (address & info->blockmask);
846 maxlba = info->capacity >> (info->pageshift + info->blockshift);
848 // This could be made much more efficient by checking for
849 // contiguous LBA's. Another exercise left to the student.
851 result = USB_STOR_TRANSPORT_GOOD;
853 while (sectors > 0) {
855 /* Find number of pages we can read in this block */
856 pages = info->blocksize - page;
860 /* Not overflowing capacity? */
862 US_DEBUGP("Error: Requested lba %u exceeds "
863 "maximum %u\n", lba, maxlba);
864 result = USB_STOR_TRANSPORT_ERROR;
868 /* Find where this lba lives on disk */
869 pba = info->lba_to_pba[lba];
871 if (pba == UNDEF) { /* this lba was never written */
873 US_DEBUGP("Read %d zero pages (LBA %d) page %d\n",
876 /* This is not really an error. It just means
877 that the block has never been written.
878 Instead of returning USB_STOR_TRANSPORT_ERROR
879 it is better to return all zero data. */
881 memset(ptr, 0, pages << info->pageshift);
884 US_DEBUGP("Read %d pages, from PBA %d"
885 " (LBA %d) page %d\n",
886 pages, pba, lba, page);
888 address = ((pba << info->blockshift) + page) <<
891 result = sddr09_read20(us, address>>1,
892 pages, info->pageshift, ptr, 0);
893 if (result != USB_STOR_TRANSPORT_GOOD)
900 ptr += (pages << info->pageshift);
903 if (use_sg && result == USB_STOR_TRANSPORT_GOOD) {
906 for (i=0; i<use_sg && transferred<len; i++) {
907 unsigned char *buf = sg[i].address;
910 length = len-transferred;
911 if (length > sg[i].length)
912 length = sg[i].length;
914 memcpy(buf, buffer+transferred, length);
915 transferred += sg[i].length;
925 /* we never free blocks, so lastpba can only increase */
927 sddr09_find_unused_pba(struct sddr09_card_info *info) {
928 static unsigned int lastpba = 1;
929 int numblocks = info->capacity >> (info->blockshift + info->pageshift);
932 for (i = lastpba+1; i < numblocks; i++) {
933 if (info->pba_to_lba[i] == UNDEF) {
942 sddr09_write_lba(struct us_data *us, unsigned int lba,
943 unsigned int page, unsigned int pages,
944 unsigned char *ptr) {
946 struct sddr09_card_info *info = (struct sddr09_card_info *) us->extra;
947 unsigned long address;
948 unsigned int pba, lbap;
949 unsigned int pagelen, blocklen;
950 unsigned char *blockbuffer, *bptr, *cptr, *xptr;
951 unsigned char ecc[3];
954 lbap = ((lba & 0x3ff) << 1) | 0x1000;
955 if (parity[MSB_of(lbap) ^ LSB_of(lbap)])
957 pba = info->lba_to_pba[lba];
960 pba = sddr09_find_unused_pba(info);
962 printk("sddr09_write_lba: Out of unused blocks\n");
963 return USB_STOR_TRANSPORT_ERROR;
965 info->pba_to_lba[pba] = lba;
966 info->lba_to_pba[lba] = pba;
970 /* Maybe it is impossible to write to PBA 1.
971 Fake success, but don't do anything. */
972 printk("sddr09: avoid writing to pba 1\n");
973 return USB_STOR_TRANSPORT_GOOD;
976 pagelen = (1 << info->pageshift) + (1 << CONTROL_SHIFT);
977 blocklen = (pagelen << info->blockshift);
978 blockbuffer = kmalloc(blocklen, GFP_NOIO);
980 printk("sddr09_write_lba: Out of memory\n");
981 return USB_STOR_TRANSPORT_ERROR;
984 /* read old contents */
985 address = (pba << (info->pageshift + info->blockshift));
986 result = sddr09_read22(us, address>>1, info->blocksize,
987 info->pageshift, blockbuffer, 0);
988 if (result != USB_STOR_TRANSPORT_GOOD)
991 /* check old contents */
992 for (i = 0; i < info->blockshift; i++) {
993 bptr = blockbuffer + i*pagelen;
994 cptr = bptr + info->pagesize;
995 nand_compute_ecc(bptr, ecc);
996 if (!nand_compare_ecc(cptr+13, ecc)) {
997 US_DEBUGP("Warning: bad ecc in page %d- of pba %d\n",
999 nand_store_ecc(cptr+13, ecc);
1001 nand_compute_ecc(bptr+(info->pagesize / 2), ecc);
1002 if (!nand_compare_ecc(cptr+8, ecc)) {
1003 US_DEBUGP("Warning: bad ecc in page %d+ of pba %d\n",
1005 nand_store_ecc(cptr+8, ecc);
1009 /* copy in new stuff and compute ECC */
1011 for (i = page; i < page+pages; i++) {
1012 bptr = blockbuffer + i*pagelen;
1013 cptr = bptr + info->pagesize;
1014 memcpy(bptr, xptr, info->pagesize);
1015 xptr += info->pagesize;
1016 nand_compute_ecc(bptr, ecc);
1017 nand_store_ecc(cptr+13, ecc);
1018 nand_compute_ecc(bptr+(info->pagesize / 2), ecc);
1019 nand_store_ecc(cptr+8, ecc);
1020 cptr[6] = cptr[11] = MSB_of(lbap);
1021 cptr[7] = cptr[12] = LSB_of(lbap);
1024 US_DEBUGP("Rewrite PBA %d (LBA %d)\n", pba, lba);
1026 result = sddr09_write_inplace(us, address>>1, info->blocksize,
1027 info->pageshift, blockbuffer, 0);
1029 US_DEBUGP("sddr09_write_inplace returns %d\n", result);
1033 unsigned char status = 0;
1034 int result2 = sddr09_read_status(us, &status);
1035 if (result2 != USB_STOR_TRANSPORT_GOOD)
1036 US_DEBUGP("sddr09_write_inplace: cannot read status\n");
1037 else if (status != 0xc0)
1038 US_DEBUGP("sddr09_write_inplace: status after write: 0x%x\n",
1045 int result2 = sddr09_test_unit_ready(us);
1051 /* TODO: instead of doing kmalloc/kfree for each block,
1052 add a bufferpointer to the info structure */
1058 sddr09_write_data(struct us_data *us,
1059 unsigned long address,
1060 unsigned int sectors,
1061 unsigned char *content,
1064 struct sddr09_card_info *info = (struct sddr09_card_info *) us->extra;
1065 unsigned int lba, page, pages;
1066 unsigned char *buffer = NULL;
1068 struct scatterlist *sg = NULL;
1071 // If we're using scatter-gather, we have to create a new
1072 // buffer to write all of the data in first, since a
1073 // scatter-gather buffer could in theory start in the middle
1074 // of a page, which would be bad. A developer who wants a
1075 // challenge might want to write a limited-buffer
1076 // version of this code.
1078 len = sectors*info->pagesize;
1081 int transferred = 0;
1083 sg = (struct scatterlist *)content;
1084 buffer = kmalloc(len, GFP_NOIO);
1086 return USB_STOR_TRANSPORT_ERROR;
1088 for (i=0; i<use_sg && transferred<len; i++) {
1089 memcpy(buffer+transferred,
1091 len-transferred > sg[i].length ?
1092 sg[i].length : len-transferred);
1093 transferred += sg[i].length;
1099 // Figure out the initial LBA and page
1100 lba = address >> info->blockshift;
1101 page = (address & info->blockmask);
1103 // This could be made much more efficient by checking for
1104 // contiguous LBA's. Another exercise left to the student.
1106 result = USB_STOR_TRANSPORT_GOOD;
1108 while (sectors > 0) {
1110 // Write as many sectors as possible in this block
1112 pages = info->blocksize - page;
1113 if (pages > sectors)
1116 result = sddr09_write_lba(us, lba, page, pages, ptr);
1117 if (result != USB_STOR_TRANSPORT_GOOD)
1123 ptr += (pages << info->pageshift);
1132 int sddr09_read_control(struct us_data *us,
1133 unsigned long address,
1134 unsigned int blocks,
1135 unsigned char *content,
1138 US_DEBUGP("Read control address %08lX blocks %04X\n",
1141 return sddr09_read21(us, address, blocks, CONTROL_SHIFT, content, use_sg);
1145 sddr09_read_deviceID(struct us_data *us, unsigned char *deviceID) {
1147 * Read Device ID Command: 12 bytes.
1148 * byte 0: opcode: ED
1150 * Returns 2 bytes: Manufacturer ID and Device ID.
1151 * On more recent cards 3 bytes: the third byte is an option code A5
1152 * signifying that the secret command to read an 128-bit ID is available.
1153 * On still more recent cards 4 bytes: the fourth byte C0 means that
1154 * a second read ID cmd is available.
1157 unsigned char command[12] = {
1158 0xed, 0x20, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
1160 unsigned char content[64];
1163 result = sddr09_send_scsi_command(us, command, sizeof(command));
1164 if (result != USB_STOR_TRANSPORT_GOOD)
1167 result = sddr09_bulk_transport(us, SCSI_DATA_READ, content, 64, 0);
1169 for (i = 0; i < 4; i++)
1170 deviceID[i] = content[i];
1176 sddr09_get_wp(struct us_data *us, struct sddr09_card_info *info) {
1178 unsigned char status;
1180 result = sddr09_read_status(us, &status);
1181 if (result != USB_STOR_TRANSPORT_GOOD) {
1182 US_DEBUGP("sddr09_get_wp: read_status fails\n");
1185 US_DEBUGP("sddr09_get_wp: status %02X", status);
1186 if ((status & 0x80) == 0) {
1187 info->flags |= SDDR09_WP; /* write protected */
1191 US_DEBUGP(" Ready");
1193 US_DEBUGP(" Suspended");
1195 US_DEBUGP(" Error");
1197 return USB_STOR_TRANSPORT_GOOD;
1202 * Reset Command: 12 bytes.
1203 * byte 0: opcode: EB
1206 sddr09_reset(struct us_data *us) {
1208 unsigned char command[12] = {
1209 0xeb, 0x20, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
1212 return sddr09_send_scsi_command(us, command, sizeof(command));
1216 static struct nand_flash_dev *
1217 sddr09_get_cardinfo(struct us_data *us, unsigned char flags) {
1218 struct nand_flash_dev *cardinfo;
1219 unsigned char deviceID[4];
1223 US_DEBUGP("Reading capacity...\n");
1225 result = sddr09_read_deviceID(us, deviceID);
1227 if (result != USB_STOR_TRANSPORT_GOOD) {
1228 US_DEBUGP("Result of read_deviceID is %d\n", result);
1229 printk("sddr09: could not read card info\n");
1233 sprintf(blurbtxt, "sddr09: Found Flash card, ID = %02X %02X %02X %02X",
1234 deviceID[0], deviceID[1], deviceID[2], deviceID[3]);
1236 /* Byte 0 is the manufacturer */
1237 sprintf(blurbtxt + strlen(blurbtxt),
1239 nand_flash_manufacturer(deviceID[0]));
1241 /* Byte 1 is the device type */
1242 cardinfo = nand_find_id(deviceID[1]);
1244 /* MB or MiB? It is neither. A 16 MB card has
1245 17301504 raw bytes, of which 16384000 are
1246 usable for user data. */
1247 sprintf(blurbtxt + strlen(blurbtxt),
1248 ", %d MB", 1<<(cardinfo->chipshift - 20));
1250 sprintf(blurbtxt + strlen(blurbtxt),
1251 ", type unrecognized");
1254 /* Byte 2 is code to signal availability of 128-bit ID */
1255 if (deviceID[2] == 0xa5) {
1256 sprintf(blurbtxt + strlen(blurbtxt),
1260 /* Byte 3 announces the availability of another read ID command */
1261 if (deviceID[3] == 0xc0) {
1262 sprintf(blurbtxt + strlen(blurbtxt),
1266 if (flags & SDDR09_WP)
1267 sprintf(blurbtxt + strlen(blurbtxt),
1270 printk("%s\n", blurbtxt);
1276 sddr09_read_map(struct us_data *us) {
1278 struct scatterlist *sg;
1279 struct sddr09_card_info *info = (struct sddr09_card_info *) us->extra;
1280 int numblocks, alloc_len, alloc_blocks;
1283 unsigned int lba, lbact;
1285 if (!info->capacity)
1288 // read 64 (1<<6) bytes for every block
1289 // ( 1 << ( blockshift + pageshift ) bytes)
1291 // (1<<6)*capacity/(1<<(b+p)) =
1292 // ((1<<6)*capacity)>>(b+p) =
1293 // capacity>>(b+p-6)
1295 alloc_len = info->capacity >>
1296 (info->blockshift + info->pageshift - CONTROL_SHIFT);
1298 // Allocate a number of scatterlist structures according to
1299 // the number of 128k blocks in the alloc_len. Adding 128k-1
1300 // and then dividing by 128k gives the correct number of blocks.
1303 alloc_blocks = (alloc_len + (1<<17) - 1) >> 17;
1304 sg = kmalloc(alloc_blocks*sizeof(struct scatterlist),
1309 for (i=0; i<alloc_blocks; i++) {
1310 if (i<alloc_blocks-1) {
1311 sg[i].address = kmalloc( (1<<17), GFP_NOIO );
1313 sg[i].length = (1<<17);
1315 sg[i].address = kmalloc(alloc_len, GFP_NOIO);
1317 sg[i].length = alloc_len;
1319 alloc_len -= sg[i].length;
1321 for (i=0; i<alloc_blocks; i++)
1322 if (sg[i].address == NULL) {
1323 for (i=0; i<alloc_blocks; i++)
1324 if (sg[i].address != NULL)
1325 kfree(sg[i].address);
1330 numblocks = info->capacity >> (info->blockshift + info->pageshift);
1332 result = sddr09_read_control(us, 0, numblocks,
1333 (unsigned char *)sg, alloc_blocks);
1334 if (result != USB_STOR_TRANSPORT_GOOD) {
1335 for (i=0; i<alloc_blocks; i++)
1336 kfree(sg[i].address);
1341 kfree(info->lba_to_pba);
1342 kfree(info->pba_to_lba);
1343 info->lba_to_pba = kmalloc(numblocks*sizeof(int), GFP_NOIO);
1344 info->pba_to_lba = kmalloc(numblocks*sizeof(int), GFP_NOIO);
1346 if (info->lba_to_pba == NULL || info->pba_to_lba == NULL) {
1347 kfree(info->lba_to_pba);
1348 kfree(info->pba_to_lba);
1349 info->lba_to_pba = NULL;
1350 info->pba_to_lba = NULL;
1351 for (i=0; i<alloc_blocks; i++)
1352 kfree(sg[i].address);
1357 for (i = 0; i < numblocks; i++)
1358 info->lba_to_pba[i] = info->pba_to_lba[i] = UNDEF;
1360 ptr = sg[0].address;
1363 * Define lba-pba translation table
1365 // Each block is 64 bytes of control data, so block i is located in
1366 // scatterlist block i*64/128k = i*(2^6)*(2^-17) = i*(2^-11)
1369 /* No translation */
1370 for (i=0; i<numblocks; i++) {
1372 info->pba_to_lba[i] = lba;
1373 info->lba_to_pba[lba] = i;
1375 printk("sddr09: no translation today\n");
1377 for (i=0; i<numblocks; i++) {
1378 ptr = sg[i>>11].address + ((i&0x7ff)<<6);
1380 if (i == 0 || i == 1) {
1381 info->pba_to_lba[i] = UNUSABLE;
1385 /* special PBAs have control field 0^16 */
1386 for (j = 0; j < 16; j++)
1389 info->pba_to_lba[i] = UNUSABLE;
1390 printk("sddr09: PBA %04X has no logical mapping\n", i);
1394 /* unwritten PBAs have control field FF^16 */
1395 for (j = 0; j < 16; j++)
1401 /* normal PBAs start with six FFs */
1403 printk("sddr09: PBA %04X has no logical mapping: "
1404 "reserved area = %02X%02X%02X%02X "
1405 "data status %02X block status %02X\n",
1406 i, ptr[0], ptr[1], ptr[2], ptr[3],
1408 info->pba_to_lba[i] = UNUSABLE;
1412 if ((ptr[6] >> 4) != 0x01) {
1413 printk("sddr09: PBA %04X has invalid address field "
1414 "%02X%02X/%02X%02X\n",
1415 i, ptr[6], ptr[7], ptr[11], ptr[12]);
1416 info->pba_to_lba[i] = UNUSABLE;
1420 /* check even parity */
1421 if (parity[ptr[6] ^ ptr[7]]) {
1422 printk("sddr09: Bad parity in LBA for block %04X"
1423 " (%02X %02X)\n", i, ptr[6], ptr[7]);
1424 info->pba_to_lba[i] = UNUSABLE;
1428 lba = short_pack(ptr[7], ptr[6]);
1429 lba = (lba & 0x07FF) >> 1;
1432 * Every 1024 physical blocks ("zone"), the LBA numbers
1433 * go back to zero, but are within a higher block of LBA's.
1434 * Also, there is a maximum of 1000 LBA's per zone.
1435 * In other words, in PBA 1024-2047 you will find LBA 0-999
1436 * which are really LBA 1000-1999. This allows for 24 bad
1437 * or special physical blocks per zone.
1441 printk("sddr09: Bad LBA %04X for block %04X\n",
1443 info->pba_to_lba[i] = UNDEF /* UNUSABLE */;
1447 lba += 1000*(i/0x400);
1449 if (lba<0x10 || (lba >= 0x3E0 && lba < 0x3EF))
1450 US_DEBUGP("LBA %04X <-> PBA %04X\n", lba, i);
1452 info->pba_to_lba[i] = lba;
1453 info->lba_to_pba[lba] = i;
1458 * Approximate capacity. This is not entirely correct yet,
1459 * since a zone with less than 1000 usable pages leads to
1460 * missing LBAs. Especially if it is the last zone, some
1461 * LBAs can be past capacity.
1464 for (i = 0; i < numblocks; i += 1024) {
1467 for (j = 0; j < 1024 && i+j < numblocks; j++) {
1468 if (info->pba_to_lba[i+j] != UNUSABLE) {
1470 info->pba_to_lba[i+j] = SPARE;
1477 info->lbact = lbact;
1478 US_DEBUGP("Found %d LBA's\n", lbact);
1480 for (i=0; i<alloc_blocks; i++)
1481 kfree(sg[i].address);
1487 sddr09_card_info_destructor(void *extra) {
1488 struct sddr09_card_info *info = (struct sddr09_card_info *)extra;
1493 kfree(info->lba_to_pba);
1494 kfree(info->pba_to_lba);
1498 sddr09_init_card_info(struct us_data *us) {
1500 us->extra = kmalloc(sizeof(struct sddr09_card_info), GFP_NOIO);
1502 memset(us->extra, 0, sizeof(struct sddr09_card_info));
1503 us->extra_destructor = sddr09_card_info_destructor;
1509 * It is unclear whether this does anything.
1510 * However, the request sense succeeds only after a reboot,
1511 * not if we do this a second time.
1514 sddr09_init(struct us_data *us) {
1517 unsigned char data[2];
1519 printk("sddr09_init\n");
1523 result = sddr09_send_command(us, 0x01, USB_DIR_IN, data, 2);
1524 if (result != USB_STOR_TRANSPORT_GOOD) {
1525 US_DEBUGP("sddr09_init: send_command fails\n");
1529 US_DEBUGP("SDDR09init: %02X %02X\n", data[0], data[1]);
1532 result = sddr09_send_command(us, 0x08, USB_DIR_IN, data, 2);
1533 if (result != USB_STOR_TRANSPORT_GOOD) {
1534 US_DEBUGP("sddr09_init: 2nd send_command fails\n");
1538 US_DEBUGP("SDDR09init: %02X %02X\n", data[0], data[1]);
1542 result = sddr09_request_sense(us, data, sizeof(data));
1543 if (result == USB_STOR_TRANSPORT_GOOD && data[2] != 0) {
1545 for (j=0; j<sizeof(data); j++)
1546 printk(" %02X", data[j]);
1548 // get 70 00 00 00 00 00 00 * 00 00 00 00 00 00
1549 // 70: current command
1550 // sense key 0, sense code 0, extd sense code 0
1551 // additional transfer length * = sizeof(data) - 7
1555 return USB_STOR_TRANSPORT_GOOD; /* not result */
1559 * Transport for the Sandisk SDDR-09
1561 int sddr09_transport(Scsi_Cmnd *srb, struct us_data *us)
1563 static unsigned char sense = 0;
1564 static unsigned char havefakesense = 0;
1567 unsigned long capacity;
1568 unsigned int page, pages;
1571 struct sddr09_card_info *info;
1573 unsigned char inquiry_response[36] = {
1574 0x00, 0x80, 0x00, 0x02, 0x1F, 0x00, 0x00, 0x00
1577 unsigned char mode_page_01[16] = {
1578 0x0F, 0x00, 0, 0x00,
1580 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
1583 info = (struct sddr09_card_info *)us->extra;
1586 sddr09_init_card_info(us);
1587 info = (struct sddr09_card_info *)us->extra;
1589 return USB_STOR_TRANSPORT_ERROR;
1592 ptr = (unsigned char *)srb->request_buffer;
1594 if (srb->cmnd[0] == REQUEST_SENSE && havefakesense) {
1595 /* for a faked command, we have to follow with a faked sense */
1596 memset(ptr, 0, srb->request_bufflen);
1597 if (srb->request_bufflen > 7) {
1600 ptr[7] = srb->request_bufflen - 7;
1602 sense = havefakesense = 0;
1603 return USB_STOR_TRANSPORT_GOOD;
1609 /* Dummy up a response for INQUIRY since SDDR09 doesn't
1610 respond to INQUIRY commands */
1612 if (srb->cmnd[0] == INQUIRY) {
1613 memset(inquiry_response+8, 0, 28);
1614 fill_inquiry_response(us, inquiry_response, 36);
1615 return USB_STOR_TRANSPORT_GOOD;
1618 if (srb->cmnd[0] == READ_CAPACITY) {
1619 struct nand_flash_dev *cardinfo;
1621 sddr09_get_wp(us, info); /* read WP bit */
1623 cardinfo = sddr09_get_cardinfo(us, info->flags);
1625 return USB_STOR_TRANSPORT_FAILED;
1627 info->capacity = (1 << cardinfo->chipshift);
1628 info->pageshift = cardinfo->pageshift;
1629 info->pagesize = (1 << info->pageshift);
1630 info->blockshift = cardinfo->blockshift;
1631 info->blocksize = (1 << info->blockshift);
1632 info->blockmask = info->blocksize - 1;
1634 // map initialization, must follow get_cardinfo()
1635 sddr09_read_map(us);
1639 capacity = (info->lbact << info->blockshift) - 1;
1641 ptr[0] = MSB_of(capacity>>16);
1642 ptr[1] = LSB_of(capacity>>16);
1643 ptr[2] = MSB_of(capacity&0xFFFF);
1644 ptr[3] = LSB_of(capacity&0xFFFF);
1648 ptr[4] = MSB_of(info->pagesize>>16);
1649 ptr[5] = LSB_of(info->pagesize>>16);
1650 ptr[6] = MSB_of(info->pagesize&0xFFFF);
1651 ptr[7] = LSB_of(info->pagesize&0xFFFF);
1653 return USB_STOR_TRANSPORT_GOOD;
1656 if (srb->cmnd[0] == MODE_SENSE) {
1658 // Read-write error recovery page: there needs to
1659 // be a check for write-protect here
1661 if ( (srb->cmnd[2] & 0x3F) == 0x01 ) {
1664 "SDDR09: Dummy up request for mode page 1\n");
1667 srb->request_bufflen<sizeof(mode_page_01))
1668 return USB_STOR_TRANSPORT_ERROR;
1670 mode_page_01[0] = sizeof(mode_page_01) - 1;
1671 mode_page_01[2] = (info->flags & SDDR09_WP) ? 0x80 : 0;
1672 memcpy(ptr, mode_page_01, sizeof(mode_page_01));
1673 return USB_STOR_TRANSPORT_GOOD;
1675 } else if ( (srb->cmnd[2] & 0x3F) == 0x3F ) {
1677 US_DEBUGP("SDDR09: Dummy up request for "
1678 "all mode pages\n");
1681 srb->request_bufflen<sizeof(mode_page_01))
1682 return USB_STOR_TRANSPORT_ERROR;
1684 memcpy(ptr, mode_page_01, sizeof(mode_page_01));
1685 return USB_STOR_TRANSPORT_GOOD;
1689 return USB_STOR_TRANSPORT_ERROR;
1692 if (srb->cmnd[0] == ALLOW_MEDIUM_REMOVAL) {
1695 "SDDR09: %s medium removal. Not that I can do"
1696 " anything about it...\n",
1697 (srb->cmnd[4]&0x03) ? "Prevent" : "Allow");
1699 return USB_STOR_TRANSPORT_GOOD;
1705 if (srb->cmnd[0] == READ_10) {
1707 page = short_pack(srb->cmnd[3], srb->cmnd[2]);
1709 page |= short_pack(srb->cmnd[5], srb->cmnd[4]);
1710 pages = short_pack(srb->cmnd[8], srb->cmnd[7]);
1712 US_DEBUGP("READ_10: read page %d pagect %d\n",
1715 return sddr09_read_data(us, page, pages, ptr, srb->use_sg);
1718 if (srb->cmnd[0] == WRITE_10) {
1720 page = short_pack(srb->cmnd[3], srb->cmnd[2]);
1722 page |= short_pack(srb->cmnd[5], srb->cmnd[4]);
1723 pages = short_pack(srb->cmnd[8], srb->cmnd[7]);
1725 US_DEBUGP("WRITE_10: write page %d pagect %d\n",
1728 return sddr09_write_data(us, page, pages, ptr, srb->use_sg);
1731 // Pass TEST_UNIT_READY and REQUEST_SENSE through
1733 if (srb->cmnd[0] != TEST_UNIT_READY &&
1734 srb->cmnd[0] != REQUEST_SENSE) {
1736 return USB_STOR_TRANSPORT_ERROR;
1739 for (; srb->cmd_len<12; srb->cmd_len++)
1740 srb->cmnd[srb->cmd_len] = 0;
1742 srb->cmnd[1] = 0x20;
1745 for (i=0; i<12; i++)
1746 sprintf(string+strlen(string), "%02X ", srb->cmnd[i]);
1748 US_DEBUGP("SDDR09: Send control for command %s\n",
1751 result = sddr09_send_scsi_command(us, srb->cmnd, 12);
1752 if (result != USB_STOR_TRANSPORT_GOOD) {
1753 US_DEBUGP("sddr09_transport: sddr09_send_scsi_command "
1754 "returns %d\n", result);
1758 if (srb->request_bufflen == 0)
1759 return USB_STOR_TRANSPORT_GOOD;
1761 if (srb->sc_data_direction == SCSI_DATA_WRITE ||
1762 srb->sc_data_direction == SCSI_DATA_READ) {
1764 US_DEBUGP("SDDR09: %s %d bytes\n",
1765 (srb->sc_data_direction == SCSI_DATA_WRITE) ?
1766 "sending" : "receiving",
1767 srb->request_bufflen);
1769 result = sddr09_bulk_transport(us,
1770 srb->sc_data_direction,
1771 srb->request_buffer,
1772 srb->request_bufflen,
1778 return USB_STOR_TRANSPORT_GOOD;
projects / linux-2.4.git / blob