Merge branch 'qilingframework:dev' into dev

Author: xwings

qiling/hw/char/__init__.py

@@ -3,4 +3,5 @@
 # Cross Platform and Multi Architecture Advanced Binary Emulation Framework
 #
 
-from .stm32f4xx_usart import STM32F4xxUsart
+from .stm32f4xx_usart import STM32F4xxUsart
+from .gd32vf1xx_usart import GD32VF1xxUsart

qiling/hw/char/gd32vf1xx_usart.py

@@ -0,0 +1,37 @@
+import ctypes
+
+from qiling.hw.connectivity import QlConnectivityPeripheral
+
+
+class GD32VF1xxUsart(QlConnectivityPeripheral):
+    class Type(ctypes.Structure):
+        """ Universal synchronous asynchronous receiver
+      transmitter 
+        """
+
+        _fields_ = [
+            ("STAT", ctypes.c_uint32), # Address offset: 0x00, Status register
+            ("DATA", ctypes.c_uint32), # Address offset: 0x04, Data register
+            ("BAUD", ctypes.c_uint32), # Address offset: 0x08, Baud rate register
+            ("CTL0", ctypes.c_uint32), # Address offset: 0x0C, Control register 0
+            ("CTL1", ctypes.c_uint32), # Address offset: 0x10, Control register 1
+            ("CTL2", ctypes.c_uint32), # Address offset: 0x14, Control register 2
+            ("GP"  , ctypes.c_uint32), # Address offset: 0x18, Guard time and prescaler register
+        ]
+
+    def __init__(self, ql, label):
+        super().__init__(ql, label)
+
+        self.usart = self.struct(
+            STAT =  0x000000c0,
+            DATA =  0x00000000,
+            BAUD =  0x00000000,
+            CTL0 =  0x00000000,
+            CTL1 =  0x00000000,
+            CTL2 =  0x00000000,
+            GP   =  0x00000000,
+        )
+
+    @QlConnectivityPeripheral.device_handler
+    def step(self):
+        pass

qiling/hw/const/gd32vf1xx_dma_const.py

@@ -0,0 +1,224 @@
+from enum import IntEnum
+
+
+class INTF(IntEnum):
+    GIF0   = 0x1 << 0    # Global interrupt flag of channel 0
+    FTFIF0 = 0x1 << 1    # Full Transfer finish flag of channe 0
+    HTFIF0 = 0x1 << 2    # Half transfer finish flag of channel 0
+    ERRIF0 = 0x1 << 3    # Error flag of channel 0
+    GIF1   = 0x1 << 4    # Global interrupt flag of channel 1
+    FTFIF1 = 0x1 << 5    # Full Transfer finish flag of channe 1
+    HTFIF1 = 0x1 << 6    # Half transfer finish flag of channel 1
+    ERRIF1 = 0x1 << 7    # Error flag of channel 1
+    GIF2   = 0x1 << 8    # Global interrupt flag of channel 2
+    FTFIF2 = 0x1 << 9    # Full Transfer finish flag of channe 2
+    HTFIF2 = 0x1 << 10   # Half transfer finish flag of channel 2
+    ERRIF2 = 0x1 << 11   # Error flag of channel 2
+    GIF3   = 0x1 << 12   # Global interrupt flag of channel 3
+    FTFIF3 = 0x1 << 13   # Full Transfer finish flag of channe 3
+    HTFIF3 = 0x1 << 14   # Half transfer finish flag of channel 3
+    ERRIF3 = 0x1 << 15   # Error flag of channel 3
+    GIF4   = 0x1 << 16   # Global interrupt flag of channel 4
+    FTFIF4 = 0x1 << 17   # Full Transfer finish flag of channe 4
+    HTFIF4 = 0x1 << 18   # Half transfer finish flag of channel 4
+    ERRIF4 = 0x1 << 19   # Error flag of channel 4
+    GIF5   = 0x1 << 20   # Global interrupt flag of channel 5
+    FTFIF5 = 0x1 << 21   # Full Transfer finish flag of channe 5
+    HTFIF5 = 0x1 << 22   # Half transfer finish flag of channel 5
+    ERRIF5 = 0x1 << 23   # Error flag of channel 5
+    GIF6   = 0x1 << 24   # Global interrupt flag of channel 6
+    FTFIF6 = 0x1 << 25   # Full Transfer finish flag of channe 6
+    HTFIF6 = 0x1 << 26   # Half transfer finish flag of channel 6
+    ERRIF6 = 0x1 << 27   # Error flag of channel 6
+
+class INTC(IntEnum):
+    GIFC0   = 0x1 << 0    # Clear global interrupt flag of channel 0
+    FTFIFC0 = 0x1 << 1    # Clear bit for full transfer finish flag of channel 0
+    HTFIFC0 = 0x1 << 2    # Clear bit for half transfer finish flag of channel 0
+    ERRIFC0 = 0x1 << 3    # Clear bit for error flag of channel 0
+    GIFC1   = 0x1 << 4    # Clear global interrupt flag of channel 1
+    FTFIFC1 = 0x1 << 5    # Clear bit for full transfer finish flag of channel 1
+    HTFIFC1 = 0x1 << 6    # Clear bit for half transfer finish flag of channel 1
+    ERRIFC1 = 0x1 << 7    # Clear bit for error flag of channel 1
+    GIFC2   = 0x1 << 8    # Clear global interrupt flag of channel 2
+    FTFIFC2 = 0x1 << 9    # Clear bit for full transfer finish flag of channel 2
+    HTFIFC2 = 0x1 << 10   # Clear bit for half transfer finish flag of channel 2
+    ERRIFC2 = 0x1 << 11   # Clear bit for error flag of channel 2
+    GIFC3   = 0x1 << 12   # Clear global interrupt flag of channel 3
+    FTFIFC3 = 0x1 << 13   # Clear bit for full transfer finish flag of channel 3
+    HTFIFC3 = 0x1 << 14   # Clear bit for half transfer finish flag of channel 3
+    ERRIFC3 = 0x1 << 15   # Clear bit for error flag of channel 3
+    GIFC4   = 0x1 << 16   # Clear global interrupt flag of channel 4
+    FTFIFC4 = 0x1 << 17   # Clear bit for full transfer finish flag of channel 4
+    HTFIFC4 = 0x1 << 18   # Clear bit for half transfer finish flag of channel 4
+    ERRIFC4 = 0x1 << 19   # Clear bit for error flag of channel 4
+    GIFC5   = 0x1 << 20   # Clear global interrupt flag of channel 5
+    FTFIFC5 = 0x1 << 21   # Clear bit for full transfer finish flag of channel 5
+    HTFIFC5 = 0x1 << 22   # Clear bit for half transfer finish flag of channel 5
+    ERRIFC5 = 0x1 << 23   # Clear bit for error flag of channel 5
+    GIFC6   = 0x1 << 24   # Clear global interrupt flag of channel 6
+    FTFIFC6 = 0x1 << 25   # Clear bit for full transfer finish flag of channel 6
+    HTFIFC6 = 0x1 << 26   # Clear bit for half transfer finish flag of channel 6
+    ERRIFC6 = 0x1 << 27   # Clear bit for error flag of channel 6
+
+class CH0CTL(IntEnum):
+    CHEN   = 0x1 << 0    # Channel enable
+    FTFIE  = 0x1 << 1    # Enable bit for channel full transfer finish interrupt
+    HTFIE  = 0x1 << 2    # Enable bit for channel half transfer finish interrupt
+    ERRIE  = 0x1 << 3    # Enable bit for channel error interrupt
+    DIR    = 0x1 << 4    # Transfer direction
+    CMEN   = 0x1 << 5    # Circular mode enable
+    PNAGA  = 0x1 << 6    # Next address generation algorithm of peripheral
+    MNAGA  = 0x1 << 7    # Next address generation algorithm of memory
+    PWIDTH = 0x3 << 8    # Transfer data size of peripheral
+    MWIDTH = 0x3 << 10   # Transfer data size of memory
+    PRIO   = 0x3 << 12   # Priority level
+    M2M    = 0x1 << 14   # Memory to Memory Mode
+
+class CH0CNT(IntEnum):
+    CNT = 0xffff << 0   # Transfer counter
+
+class CH0PADDR(IntEnum):
+    PADDR = 0xffffffff << 0   # Peripheral base address
+
+class CH0MADDR(IntEnum):
+    MADDR = 0xffffffff << 0   # Memory base address
+
+class CH1CTL(IntEnum):
+    CHEN   = 0x1 << 0    # Channel enable
+    FTFIE  = 0x1 << 1    # Enable bit for channel full transfer finish interrupt
+    HTFIE  = 0x1 << 2    # Enable bit for channel half transfer finish interrupt
+    ERRIE  = 0x1 << 3    # Enable bit for channel error interrupt
+    DIR    = 0x1 << 4    # Transfer direction
+    CMEN   = 0x1 << 5    # Circular mode enable
+    PNAGA  = 0x1 << 6    # Next address generation algorithm of peripheral
+    MNAGA  = 0x1 << 7    # Next address generation algorithm of memory
+    PWIDTH = 0x3 << 8    # Transfer data size of peripheral
+    MWIDTH = 0x3 << 10   # Transfer data size of memory
+    PRIO   = 0x3 << 12   # Priority level
+    M2M    = 0x1 << 14   # Memory to Memory Mode
+
+class CH1CNT(IntEnum):
+    CNT = 0xffff << 0   # Transfer counter
+
+class CH1PADDR(IntEnum):
+    PADDR = 0xffffffff << 0   # Peripheral base address
+
+class CH1MADDR(IntEnum):
+    MADDR = 0xffffffff << 0   # Memory base address
+
+class CH2CTL(IntEnum):
+    CHEN   = 0x1 << 0    # Channel enable
+    FTFIE  = 0x1 << 1    # Enable bit for channel full transfer finish interrupt
+    HTFIE  = 0x1 << 2    # Enable bit for channel half transfer finish interrupt
+    ERRIE  = 0x1 << 3    # Enable bit for channel error interrupt
+    DIR    = 0x1 << 4    # Transfer direction
+    CMEN   = 0x1 << 5    # Circular mode enable
+    PNAGA  = 0x1 << 6    # Next address generation algorithm of peripheral
+    MNAGA  = 0x1 << 7    # Next address generation algorithm of memory
+    PWIDTH = 0x3 << 8    # Transfer data size of peripheral
+    MWIDTH = 0x3 << 10   # Transfer data size of memory
+    PRIO   = 0x3 << 12   # Priority level
+    M2M    = 0x1 << 14   # Memory to Memory Mode
+
+class CH2CNT(IntEnum):
+    CNT = 0xffff << 0   # Transfer counter
+
+class CH2PADDR(IntEnum):
+    PADDR = 0xffffffff << 0   # Peripheral base address
+
+class CH2MADDR(IntEnum):
+    MADDR = 0xffffffff << 0   # Memory base address
+
+class CH3CTL(IntEnum):
+    CHEN   = 0x1 << 0    # Channel enable
+    FTFIE  = 0x1 << 1    # Enable bit for channel full transfer finish interrupt
+    HTFIE  = 0x1 << 2    # Enable bit for channel half transfer finish interrupt
+    ERRIE  = 0x1 << 3    # Enable bit for channel error interrupt
+    DIR    = 0x1 << 4    # Transfer direction
+    CMEN   = 0x1 << 5    # Circular mode enable
+    PNAGA  = 0x1 << 6    # Next address generation algorithm of peripheral
+    MNAGA  = 0x1 << 7    # Next address generation algorithm of memory
+    PWIDTH = 0x3 << 8    # Transfer data size of peripheral
+    MWIDTH = 0x3 << 10   # Transfer data size of memory
+    PRIO   = 0x3 << 12   # Priority level
+    M2M    = 0x1 << 14   # Memory to Memory Mode
+
+class CH3CNT(IntEnum):
+    CNT = 0xffff << 0   # Transfer counter
+
+class CH3PADDR(IntEnum):
+    PADDR = 0xffffffff << 0   # Peripheral base address
+
+class CH3MADDR(IntEnum):
+    MADDR = 0xffffffff << 0   # Memory base address
+
+class CH4CTL(IntEnum):
+    CHEN   = 0x1 << 0    # Channel enable
+    FTFIE  = 0x1 << 1    # Enable bit for channel full transfer finish interrupt
+    HTFIE  = 0x1 << 2    # Enable bit for channel half transfer finish interrupt
+    ERRIE  = 0x1 << 3    # Enable bit for channel error interrupt
+    DIR    = 0x1 << 4    # Transfer direction
+    CMEN   = 0x1 << 5    # Circular mode enable
+    PNAGA  = 0x1 << 6    # Next address generation algorithm of peripheral
+    MNAGA  = 0x1 << 7    # Next address generation algorithm of memory
+    PWIDTH = 0x3 << 8    # Transfer data size of peripheral
+    MWIDTH = 0x3 << 10   # Transfer data size of memory
+    PRIO   = 0x3 << 12   # Priority level
+    M2M    = 0x1 << 14   # Memory to Memory Mode
+
+class CH4CNT(IntEnum):
+    CNT = 0xffff << 0   # Transfer counter
+
+class CH4PADDR(IntEnum):
+    PADDR = 0xffffffff << 0   # Peripheral base address
+
+class CH4MADDR(IntEnum):
+    MADDR = 0xffffffff << 0   # Memory base address
+
+class CH5CTL(IntEnum):
+    CHEN   = 0x1 << 0    # Channel enable
+    FTFIE  = 0x1 << 1    # Enable bit for channel full transfer finish interrupt
+    HTFIE  = 0x1 << 2    # Enable bit for channel half transfer finish interrupt
+    ERRIE  = 0x1 << 3    # Enable bit for channel error interrupt
+    DIR    = 0x1 << 4    # Transfer direction
+    CMEN   = 0x1 << 5    # Circular mode enable
+    PNAGA  = 0x1 << 6    # Next address generation algorithm of peripheral
+    MNAGA  = 0x1 << 7    # Next address generation algorithm of memory
+    PWIDTH = 0x3 << 8    # Transfer data size of peripheral
+    MWIDTH = 0x3 << 10   # Transfer data size of memory
+    PRIO   = 0x3 << 12   # Priority level
+    M2M    = 0x1 << 14   # Memory to Memory Mode
+
+class CH5CNT(IntEnum):
+    CNT = 0xffff << 0   # Transfer counter
+
+class CH5PADDR(IntEnum):
+    PADDR = 0xffffffff << 0   # Peripheral base address
+
+class CH5MADDR(IntEnum):
+    MADDR = 0xffffffff << 0   # Memory base address
+
+class CH6CTL(IntEnum):
+    CHEN   = 0x1 << 0    # Channel enable
+    FTFIE  = 0x1 << 1    # Enable bit for channel full transfer finish interrupt
+    HTFIE  = 0x1 << 2    # Enable bit for channel half transfer finish interrupt
+    ERRIE  = 0x1 << 3    # Enable bit for channel error interrupt
+    DIR    = 0x1 << 4    # Transfer direction
+    CMEN   = 0x1 << 5    # Circular mode enable
+    PNAGA  = 0x1 << 6    # Next address generation algorithm of peripheral
+    MNAGA  = 0x1 << 7    # Next address generation algorithm of memory
+    PWIDTH = 0x3 << 8    # Transfer data size of peripheral
+    MWIDTH = 0x3 << 10   # Transfer data size of memory
+    PRIO   = 0x3 << 12   # Priority level
+    M2M    = 0x1 << 14   # Memory to Memory Mode
+
+class CH6CNT(IntEnum):
+    CNT = 0xffff << 0   # Transfer counter
+
+class CH6PADDR(IntEnum):
+    PADDR = 0xffffffff << 0   # Peripheral base address
+
+class CH6MADDR(IntEnum):
+    MADDR = 0xffffffff << 0   # Memory base address
+

qiling/hw/const/gd32vf1xx_i2c_const.py

@@ -0,0 +1,74 @@
+from enum import IntEnum
+
+
+class CTL0(IntEnum):
+    SRESET   = 0x1 << 15   # Software reset
+    SALT     = 0x1 << 13   # SMBus alert
+    PECTRANS = 0x1 << 12   # PEC Transfer
+    POAP     = 0x1 << 11   # Position of ACK and PEC when receiving
+    ACKEN    = 0x1 << 10   # Whether or not to send an ACK
+    STOP     = 0x1 << 9    # Generate a STOP condition on I2C bus
+    START    = 0x1 << 8    # Generate a START condition on I2C bus
+    SS       = 0x1 << 7    # Whether to stretch SCL low when data is not ready in slave mode
+    GCEN     = 0x1 << 6    # Whether or not to response to a General Call (0x00)
+    PECEN    = 0x1 << 5    # PEC Calculation Switch
+    ARPEN    = 0x1 << 4    # ARP protocol in SMBus switch
+    SMBSEL   = 0x1 << 3    # SMBusType Selection
+    SMBEN    = 0x1 << 1    # SMBus/I2C mode switch
+    I2CEN    = 0x1 << 0    # I2C peripheral enable
+
+class CTL1(IntEnum):
+    DMALST = 0x1 << 12   # Flag indicating DMA last transfer
+    DMAON  = 0x1 << 11   # DMA mode switch
+    BUFIE  = 0x1 << 10   # Buffer interrupt enable
+    EVIE   = 0x1 << 9    # Event interrupt enable
+    ERRIE  = 0x1 << 8    # Error interrupt enable
+    I2CCLK = 0x3f << 0   # I2C Peripheral clock frequency
+
+class SADDR0(IntEnum):
+    ADDFORMAT  = 0x1 << 15   # Address mode for the I2C slave
+    ADDRESS9_8 = 0x3 << 8    # Highest two bits of a 10-bit address
+    ADDRESS7_1 = 0x7f << 1   # 7-bit address or bits 7:1 of a 10-bit address
+    ADDRESS0   = 0x1 << 0    # Bit 0 of a 10-bit address
+
+class SADDR1(IntEnum):
+    ADDRESS2 = 0x7f << 1   # Second I2C address for the slave in Dual-Address mode
+    DUADEN   = 0x1 << 0    # Dual-Address mode switch
+
+class DATA(IntEnum):
+    TRB = 0xff << 0   # Transmission or reception data buffer register
+
+class STAT0(IntEnum):
+    SMBALT    = 0x1 << 15   # SMBus Alert status
+    SMBTO     = 0x1 << 14   # Timeout signal in SMBus mode
+    PECERR    = 0x1 << 12   # PEC error when receiving data
+    OUERR     = 0x1 << 11   # Over-run or under-run situation occurs in slave mode
+    AERR      = 0x1 << 10   # Acknowledge error
+    LOSTARB   = 0x1 << 9    # Arbitration Lost in master mode
+    BERR      = 0x1 << 8    # A bus error occurs indication a unexpected START or STOP condition on I2C bus
+    TBE       = 0x1 << 7    # I2C_DATA is Empty during transmitting
+    RBNE      = 0x1 << 6    # I2C_DATA is not Empty during receiving
+    STPDET    = 0x1 << 4    # STOP condition detected in slave mode
+    ADD10SEND = 0x1 << 3    # Header of 10-bit address is sent in master mode
+    BTC       = 0x1 << 2    # Byte transmission completed
+    ADDSEND   = 0x1 << 1    # Address is sent in master mode or received and matches in slave mode
+    SBSEND    = 0x1 << 0    # START condition sent out in master mode
+
+class STAT1(IntEnum):
+    PECV   = 0xff << 8   # Packet Error Checking Value that calculated by hardware when PEC is enabled
+    DUMODF = 0x1 << 7    # Dual Flag in slave mode
+    HSTSMB = 0x1 << 6    # SMBus Host Header detected in slave mode
+    DEFSMB = 0x1 << 5    # Default address of SMBusDevice
+    RXGC   = 0x1 << 4    # General call address (00h) received
+    TR     = 0x1 << 2    # Whether the I2C is a transmitter or a receiver
+    I2CBSY = 0x1 << 1    # Busy flag
+    MASTER = 0x1 << 0    # A flag indicating whether I2C block is in master or slave mode
+
+class CKCFG(IntEnum):
+    FAST = 0x1 << 15    # I2C speed selection in master mode
+    DTCY = 0x1 << 14    # Duty cycle in fast mode
+    CLKC = 0xfff << 0   # I2C Clock control in master mode
+
+class RT(IntEnum):
+    RISETIME = 0x3f << 0   # Maximum rise time in master mode
+