2 * SPDX-License-Identifier: BSD-2-Clause-FreeBSD
4 * Copyright (c) 2011 Sandvine Incorporated. All rights reserved.
5 * Copyright (c) 2002-2011 Andre Albsmeier <andre@albsmeier.net>
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer,
13 * without modification, immediately at the beginning of the file.
14 * 2. Redistributions in binary form must reproduce the above copyright
15 * notice, this list of conditions and the following disclaimer in the
16 * documentation and/or other materials provided with the distribution.
18 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
19 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
20 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
21 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
22 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
23 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
24 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
25 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
26 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
27 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
31 * This software is derived from Andre Albsmeier's fwprog.c which contained
34 * Many thanks goes to Marc Frajola <marc@terasolutions.com> from
35 * TeraSolutions for the initial idea and his programme for upgrading
36 * the firmware of I*M DDYS drives.
42 * The fact that you see your favorite vendor listed below does not
43 * imply that your equipment won't break when you use this software
44 * with it. It only means that the firmware of at least one device type
45 * of each vendor listed has been programmed successfully using this code.
47 * The -s option simulates a download but does nothing apart from that.
48 * It can be used to check what chunk sizes would have been used with the
52 #include <sys/cdefs.h>
53 __FBSDID("$FreeBSD$");
55 #include <sys/types.h>
65 #include <cam/scsi/scsi_all.h>
66 #include <cam/scsi/scsi_message.h>
71 #include "camcontrol.h"
73 #define WB_TIMEOUT 50000 /* 50 seconds */
91 * FW_TUR_READY: The drive must return good status for a test unit ready.
93 * FW_TUR_NOT_READY: The drive must return not ready status for a test unit
94 * ready. You may want this in a removable media drive.
96 * FW_TUR_NA: It doesn't matter whether the drive is ready or not.
97 * This may be the case for a removable media drive.
107 * FW_TIMEOUT_DEFAULT: Attempt to probe for a WRITE BUFFER timeout
108 * value from the drive. If we get an answer,
109 * use the Recommended timeout. Otherwise,
110 * use the default value from the table.
112 * FW_TIMEOUT_DEV_REPORTED: The timeout value was probed directly from
115 * FW_TIMEOUT_NO_PROBE: Do not ask the device for a WRITE BUFFER
116 * timeout value. Use the device-specific
119 * FW_TIMEOUT_USER_SPEC: The user specified a timeout on the command
120 * line with the -t option. This overrides any
121 * probe or default timeout.
125 FW_TIMEOUT_DEV_REPORTED,
131 * type: Enumeration for the particular vendor.
133 * pattern: Pattern to match for the Vendor ID from the SCSI
136 * dev_type: SCSI device type to match, or T_ANY to match any
137 * device from the given vendor. Note that if there
138 * is a specific device type listed for a particular
139 * vendor, it must be listed before a T_ANY entry.
141 * max_pkt_size: Maximum packet size when talking to a device. Note
142 * that although large data sizes may be supported by
143 * the target device, they may not be supported by the
144 * OS or the controller.
146 * cdb_byte2: This specifies byte 2 (byte 1 when counting from 0)
147 * of the CDB. This is generally the WRITE BUFFER mode.
149 * cdb_byte2_last: This specifies byte 2 for the last chunk of the
152 * inc_cdb_buffer_id: Increment the buffer ID by 1 for each chunk sent
155 * inc_cdb_offset: Increment the offset field in the CDB with the byte
156 * offset into the firmware file.
158 * tur_status: Pay attention to whether the device is ready before
159 * upgrading the firmware, or not. See above for the
168 u_int8_t cdb_byte2_last;
169 int inc_cdb_buffer_id;
171 fw_tur_status tur_status;
173 fw_timeout_type timeout_type;
179 * HGST: The packets need to be sent in multiples of 4K.
181 * IBM: For LTO and TS drives, the buffer ID is ignored in mode 7 (and
182 * some other modes). It treats the request as a firmware download.
183 * The offset (and therefore the length of each chunk sent) needs
184 * to be a multiple of the offset boundary specified for firmware
185 * (buffer ID 4) in the read buffer command. At least for LTO-6,
186 * that seems to be 0, but using a 32K chunk size should satisfy
187 * most any alignment requirement.
189 * SmrtStor: Mode 5 is also supported, but since the firmware is 400KB or
190 * so, we can't fit it in a single request in most cases.
192 static struct fw_vendor vendors_list[] = {
193 {VENDOR_HGST, "HGST", T_DIRECT,
194 0x1000, 0x07, 0x07, 1, 0, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
195 {VENDOR_HITACHI, "HITACHI", T_ANY,
196 0x8000, 0x05, 0x05, 1, 0, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
197 {VENDOR_HP, "HP", T_ANY,
198 0x8000, 0x07, 0x07, 0, 1, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
199 {VENDOR_IBM, "IBM", T_SEQUENTIAL,
200 0x8000, 0x07, 0x07, 0, 1, FW_TUR_NA, 300 * 1000, FW_TIMEOUT_DEFAULT},
201 {VENDOR_IBM, "IBM", T_ANY,
202 0x8000, 0x05, 0x05, 1, 0, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
203 {VENDOR_PLEXTOR, "PLEXTOR", T_ANY,
204 0x2000, 0x04, 0x05, 0, 1, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
205 {VENDOR_QUALSTAR, "QUALSTAR", T_ANY,
206 0x2030, 0x05, 0x05, 0, 0, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
207 {VENDOR_QUANTUM, "QUANTUM", T_ANY,
208 0x2000, 0x04, 0x05, 0, 1, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
209 {VENDOR_SAMSUNG, "SAMSUNG", T_ANY,
210 0x8000, 0x07, 0x07, 0, 1, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
211 {VENDOR_SEAGATE, "SEAGATE", T_ANY,
212 0x8000, 0x07, 0x07, 0, 1, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
213 {VENDOR_SMART, "SmrtStor", T_DIRECT,
214 0x8000, 0x07, 0x07, 0, 1, FW_TUR_READY, WB_TIMEOUT, FW_TIMEOUT_DEFAULT},
217 * We match any ATA device. This is really just a placeholder,
218 * since we won't actually send a WRITE BUFFER with any of the
219 * listed parameters. If a SATA device is behind a SAS controller,
220 * the SCSI to ATA translation code (at least for LSI) doesn't
221 * generally translate a SCSI WRITE BUFFER into an ATA DOWNLOAD
222 * MICROCODE command. So, we use the SCSI ATA PASS_THROUGH command
223 * to send the ATA DOWNLOAD MICROCODE command instead.
225 {VENDOR_ATA, "ATA", T_ANY,
226 0x8000, 0x07, 0x07, 0, 1, FW_TUR_READY, WB_TIMEOUT,
227 FW_TIMEOUT_NO_PROBE},
228 {VENDOR_UNKNOWN, NULL, T_ANY,
229 0x0000, 0x00, 0x00, 0, 0, FW_TUR_NONE, WB_TIMEOUT, FW_TIMEOUT_DEFAULT}
232 struct fw_timeout_desc {
233 fw_timeout_type timeout_type;
234 const char *timeout_desc;
237 static const struct fw_timeout_desc fw_timeout_desc_table[] = {
238 { FW_TIMEOUT_DEFAULT, "the default" },
239 { FW_TIMEOUT_DEV_REPORTED, "recommended by this particular device" },
240 { FW_TIMEOUT_NO_PROBE, "the default" },
241 { FW_TIMEOUT_USER_SPEC, "what was specified on the command line" }
244 #ifndef ATA_DOWNLOAD_MICROCODE
245 #define ATA_DOWNLOAD_MICROCODE 0x92
248 #define USE_OFFSETS_FEATURE 0x3
250 #ifndef LOW_SECTOR_SIZE
251 #define LOW_SECTOR_SIZE 512
254 #define ATA_MAKE_LBA(o, p) \
255 ((((((o) / LOW_SECTOR_SIZE) >> 8) & 0xff) << 16) | \
256 ((((o) / LOW_SECTOR_SIZE) & 0xff) << 8) | \
257 ((((p) / LOW_SECTOR_SIZE) >> 8) & 0xff))
259 #define ATA_MAKE_SECTORS(p) (((p) / 512) & 0xff)
261 #ifndef UNKNOWN_MAX_PKT_SIZE
262 #define UNKNOWN_MAX_PKT_SIZE 0x8000
265 static struct fw_vendor *fw_get_vendor(struct cam_device *cam_dev,
266 struct ata_params *ident_buf);
267 static int fw_get_timeout(struct cam_device *cam_dev, struct fw_vendor *vp,
268 int task_attr, int retry_count, int timeout);
269 static int fw_validate_ibm(struct cam_device *dev, int retry_count,
270 int timeout, int fd, char *buf,
271 const char *fw_img_path, int quiet);
272 static char *fw_read_img(struct cam_device *dev, int retry_count,
273 int timeout, int quiet, const char *fw_img_path,
274 struct fw_vendor *vp, int *num_bytes);
275 static int fw_check_device_ready(struct cam_device *dev,
276 camcontrol_devtype devtype,
277 struct fw_vendor *vp, int printerrors,
279 static int fw_download_img(struct cam_device *cam_dev,
280 struct fw_vendor *vp, char *buf, int img_size,
281 int sim_mode, int printerrors, int quiet,
282 int retry_count, int timeout, const char */*name*/,
283 camcontrol_devtype devtype);
286 * Find entry in vendors list that belongs to
287 * the vendor of given cam device.
289 static struct fw_vendor *
290 fw_get_vendor(struct cam_device *cam_dev, struct ata_params *ident_buf)
293 struct fw_vendor *vp;
298 if (ident_buf != NULL) {
299 cam_strvis((u_char *)vendor, ident_buf->model,
300 sizeof(ident_buf->model), sizeof(vendor));
301 for (vp = vendors_list; vp->pattern != NULL; vp++) {
302 if (vp->type == VENDOR_ATA)
306 cam_strvis((u_char *)vendor, (u_char *)cam_dev->inq_data.vendor,
307 sizeof(cam_dev->inq_data.vendor), sizeof(vendor));
309 for (vp = vendors_list; vp->pattern != NULL; vp++) {
310 if (!cam_strmatch((const u_char *)vendor,
311 (const u_char *)vp->pattern, strlen(vendor))) {
312 if ((vp->dev_type == T_ANY)
313 || (vp->dev_type == SID_TYPE(&cam_dev->inq_data)))
321 fw_get_timeout(struct cam_device *cam_dev, struct fw_vendor *vp,
322 int task_attr, int retry_count, int timeout)
324 struct scsi_report_supported_opcodes_one *one;
325 struct scsi_report_supported_opcodes_timeout *td;
327 uint32_t fill_len = 0, cdb_len = 0, rec_timeout = 0;
331 * If the user has specified a timeout on the command line, we let
332 * him override any default or probed value.
335 vp->timeout_type = FW_TIMEOUT_USER_SPEC;
336 vp->timeout_ms = timeout;
341 * Check to see whether we should probe for a timeout for this
344 if (vp->timeout_type == FW_TIMEOUT_NO_PROBE)
347 retval = scsigetopcodes(/*device*/ cam_dev,
349 /*opcode*/ WRITE_BUFFER,
350 /*show_sa_errors*/ 1,
352 /*service_action*/ 0,
354 /*task_attr*/ task_attr,
355 /*retry_count*/ retry_count,
358 /*fill_len*/ &fill_len,
361 * It isn't an error if we can't get a timeout descriptor. We just
362 * continue on with the default timeout.
370 * Even if the drive didn't return a SCSI error, if we don't have
371 * enough data to contain the one opcode descriptor, the CDB
372 * structure and a timeout descriptor, we don't have the timeout
373 * value we're looking for. So we'll just fall back to the
376 if (fill_len < (sizeof(*one) + sizeof(struct scsi_write_buffer) +
380 one = (struct scsi_report_supported_opcodes_one *)buf;
383 * If the drive claims to not support the WRITE BUFFER command...
384 * fall back to the default timeout value and let things fail on
385 * the actual firmware download.
387 if ((one->support & RSO_ONE_SUP_MASK) == RSO_ONE_SUP_NOT_SUP)
390 cdb_len = scsi_2btoul(one->cdb_length);
391 td = (struct scsi_report_supported_opcodes_timeout *)
392 &buf[sizeof(*one) + cdb_len];
394 rec_timeout = scsi_4btoul(td->recommended_time);
396 * If the recommended timeout is 0, then the device has probably
397 * returned a bogus value.
399 if (rec_timeout == 0)
402 /* CAM timeouts are in ms */
405 vp->timeout_ms = rec_timeout;
406 vp->timeout_type = FW_TIMEOUT_DEV_REPORTED;
412 #define SVPD_IBM_FW_DESIGNATION 0x03
415 * IBM LTO and TS tape drives have an INQUIRY VPD page 0x3 with the following
418 struct fw_ibm_tape_fw_designation {
423 uint8_t ascii_length;
424 uint8_t reserved2[3];
427 uint8_t ptf_number[4];
428 uint8_t patch_number[4];
430 uint8_t lib_seq_num[5];
434 * The firmware for IBM tape drives has the following header format. The
435 * load_id and ru_name in the header file should match what is returned in
438 struct fw_ibm_tape_fw_header {
440 uint8_t length[4]; /* Firmware and header! */
448 fw_validate_ibm(struct cam_device *dev, int retry_count, int timeout, int fd,
449 char *buf, const char *fw_img_path, int quiet)
452 struct fw_ibm_tape_fw_designation vpd_page;
453 struct fw_ibm_tape_fw_header *header;
454 char drive_rev[sizeof(vpd_page.fw_rev) + 1];
455 char file_rev[sizeof(vpd_page.fw_rev) + 1];
458 ccb = cam_getccb(dev);
460 warnx("couldn't allocate CCB");
464 /* cam_getccb cleans up the header, caller has to zero the payload */
465 CCB_CLEAR_ALL_EXCEPT_HDR(&ccb->csio);
467 bzero(&vpd_page, sizeof(vpd_page));
469 scsi_inquiry(&ccb->csio,
470 /*retries*/ retry_count,
472 /* tag_action */ MSG_SIMPLE_Q_TAG,
473 /* inq_buf */ (u_int8_t *)&vpd_page,
474 /* inq_len */ sizeof(vpd_page),
476 /* page_code */ SVPD_IBM_FW_DESIGNATION,
477 /* sense_len */ SSD_FULL_SIZE,
478 /* timeout */ timeout ? timeout : 5000);
480 /* Disable freezing the device queue */
481 ccb->ccb_h.flags |= CAM_DEV_QFRZDIS;
483 if (retry_count != 0)
484 ccb->ccb_h.flags |= CAM_PASS_ERR_RECOVER;
486 if (cam_send_ccb(dev, ccb) < 0) {
487 warn("error getting firmware designation page");
489 cam_error_print(dev, ccb, CAM_ESF_ALL,
490 CAM_EPF_ALL, stderr);
497 if ((ccb->ccb_h.status & CAM_STATUS_MASK) != CAM_REQ_CMP) {
498 cam_error_print(dev, ccb, CAM_ESF_ALL,
499 CAM_EPF_ALL, stderr);
504 * Read the firmware header only.
506 if (read(fd, buf, sizeof(*header)) != sizeof(*header)) {
507 warn("unable to read %zu bytes from %s", sizeof(*header),
512 /* Rewind the file back to 0 for the full file read. */
513 if (lseek(fd, 0, SEEK_SET) == -1) {
514 warn("Unable to lseek");
518 header = (struct fw_ibm_tape_fw_header *)buf;
520 bzero(drive_rev, sizeof(drive_rev));
521 bcopy(vpd_page.fw_rev, drive_rev, sizeof(vpd_page.fw_rev));
522 bzero(file_rev, sizeof(file_rev));
523 bcopy(header->fw_rev, file_rev, sizeof(header->fw_rev));
526 fprintf(stdout, "Current Drive Firmware version: %s\n",
528 fprintf(stdout, "Firmware File version: %s\n", file_rev);
532 * For IBM tape drives the load ID and RU name reported by the
533 * drive should match what is in the firmware file.
535 if (bcmp(vpd_page.load_id, header->load_id,
536 MIN(sizeof(vpd_page.load_id), sizeof(header->load_id))) != 0) {
537 warnx("Drive Firmware load ID 0x%x does not match firmware "
538 "file load ID 0x%x", scsi_4btoul(vpd_page.load_id),
539 scsi_4btoul(header->load_id));
543 if (bcmp(vpd_page.ru_name, header->ru_name,
544 MIN(sizeof(vpd_page.ru_name), sizeof(header->ru_name))) != 0) {
545 warnx("Drive Firmware RU name 0x%jx does not match firmware "
546 "file RU name 0x%jx",
547 (uintmax_t)scsi_8btou64(vpd_page.ru_name),
548 (uintmax_t)scsi_8btou64(header->ru_name));
552 fprintf(stdout, "Firmware file is valid for this drive.\n");
561 * Allocate a buffer and read fw image file into it
562 * from given path. Number of bytes read is stored
566 fw_read_img(struct cam_device *dev, int retry_count, int timeout, int quiet,
567 const char *fw_img_path, struct fw_vendor *vp, int *num_bytes)
575 if ((fd = open(fw_img_path, O_RDONLY)) < 0) {
576 warn("Could not open image file %s", fw_img_path);
579 if (fstat(fd, &stbuf) < 0) {
580 warn("Could not stat image file %s", fw_img_path);
583 if ((img_size = stbuf.st_size) == 0) {
584 warnx("Zero length image file %s", fw_img_path);
587 if ((buf = malloc(img_size)) == NULL) {
588 warnx("Could not allocate buffer to read image file %s",
592 /* Skip headers if applicable. */
595 if (read(fd, buf, 16) != 16) {
596 warn("Could not read image file %s", fw_img_path);
599 if (lseek(fd, 0, SEEK_SET) == -1) {
600 warn("Unable to lseek");
603 if ((strncmp(buf, "SEAGATE,SEAGATE ", 16) == 0) ||
604 (img_size % 512 == 80))
607 case VENDOR_QUALSTAR:
608 skip_bytes = img_size % 1030;
611 if (vp->dev_type != T_SEQUENTIAL)
613 if (fw_validate_ibm(dev, retry_count, timeout, fd, buf,
614 fw_img_path, quiet) != 0)
621 if (skip_bytes != 0) {
622 fprintf(stdout, "Skipping %d byte header.\n", skip_bytes);
623 if (lseek(fd, skip_bytes, SEEK_SET) == -1) {
624 warn("Could not lseek");
627 img_size -= skip_bytes;
629 /* Read image into a buffer. */
630 if (read(fd, buf, img_size) != img_size) {
631 warn("Could not read image file %s", fw_img_path);
634 *num_bytes = img_size;
646 * Returns 0 for "success", where success means that the device has met the
647 * requirement in the vendor structure for being ready or not ready when
648 * firmware is downloaded.
650 * Returns 1 for a failure to be ready to accept a firmware download.
651 * (e.g., a drive needs to be ready, but returns not ready)
653 * Returns -1 for any other failure.
656 fw_check_device_ready(struct cam_device *dev, camcontrol_devtype devtype,
657 struct fw_vendor *vp, int printerrors, int timeout)
662 size_t dxfer_len = 0;
664 if ((ccb = cam_getccb(dev)) == NULL) {
665 warnx("Could not allocate CCB");
670 CCB_CLEAR_ALL_EXCEPT_HDR(ccb);
672 if (devtype != CC_DT_SCSI) {
673 dxfer_len = sizeof(struct ata_params);
675 ptr = (uint16_t *)malloc(dxfer_len);
677 warnx("can't malloc memory for identify");
681 bzero(ptr, dxfer_len);
686 scsi_test_unit_ready(&ccb->csio,
689 /*tag_action*/ MSG_SIMPLE_Q_TAG,
690 /*sense_len*/ SSD_FULL_SIZE,
693 case CC_DT_ATA_BEHIND_SCSI:
695 retval = build_ata_cmd(ccb,
697 /*flags*/ CAM_DIR_IN,
698 /*tag_action*/ MSG_SIMPLE_Q_TAG,
699 /*protocol*/ AP_PROTO_PIO_IN,
700 /*ata_flags*/ AP_FLAG_BYT_BLOK_BYTES |
701 AP_FLAG_TLEN_SECT_CNT |
702 AP_FLAG_TDIR_FROM_DEV,
704 /*sector_count*/ (uint8_t) dxfer_len,
706 /*command*/ ATA_ATA_IDENTIFY,
708 /*data_ptr*/ (uint8_t *)ptr,
709 /*dxfer_len*/ dxfer_len,
710 /*cdb_storage*/ NULL,
711 /*cdb_storage_len*/ 0,
712 /*sense_len*/ SSD_FULL_SIZE,
713 /*timeout*/ timeout ? timeout : 30 * 1000,
715 /*devtype*/ devtype);
718 warnx("%s: build_ata_cmd() failed, likely "
719 "programmer error", __func__);
725 warnx("Unknown disk type %d", devtype);
728 break; /*NOTREACHED*/
731 ccb->ccb_h.flags |= CAM_DEV_QFRZDIS;
733 retval = cam_send_ccb(dev, ccb);
735 warn("error sending %s CCB", (devtype == CC_DT_SCSI) ?
736 "Test Unit Ready" : "Identify");
741 if (((ccb->ccb_h.status & CAM_STATUS_MASK) != CAM_REQ_CMP)
742 && (vp->tur_status == FW_TUR_READY)) {
743 warnx("Device is not ready");
745 cam_error_print(dev, ccb, CAM_ESF_ALL,
746 CAM_EPF_ALL, stderr);
749 } else if (((ccb->ccb_h.status & CAM_STATUS_MASK) == CAM_REQ_CMP)
750 && (vp->tur_status == FW_TUR_NOT_READY)) {
751 warnx("Device cannot have media loaded when firmware is "
764 * Download firmware stored in buf to cam_dev. If simulation mode
765 * is enabled, only show what packet sizes would be sent to the
766 * device but do not sent any actual packets
769 fw_download_img(struct cam_device *cam_dev, struct fw_vendor *vp,
770 char *buf, int img_size, int sim_mode, int printerrors, int quiet,
771 int retry_count, int timeout, const char *imgname,
772 camcontrol_devtype devtype)
774 struct scsi_write_buffer cdb;
777 union ccb *ccb = NULL;
780 u_int32_t pkt_size = 0;
787 * Check to see whether the device is ready to accept a firmware
790 retval = fw_check_device_ready(cam_dev, devtype, vp, printerrors,
795 if ((ccb = cam_getccb(cam_dev)) == NULL) {
796 warnx("Could not allocate CCB");
801 CCB_CLEAR_ALL_EXCEPT_HDR(ccb);
803 max_pkt_size = vp->max_pkt_size;
804 if (max_pkt_size == 0)
805 max_pkt_size = UNKNOWN_MAX_PKT_SIZE;
807 pkt_size = max_pkt_size;
808 progress_init(&progress, imgname, size = img_size);
809 /* Download single fw packets. */
811 if (img_size <= max_pkt_size) {
815 progress_update(&progress, size - img_size);
816 if (((sim_mode == 0) && (quiet == 0))
817 || ((sim_mode != 0) && (printerrors == 0)))
818 progress_draw(&progress);
819 bzero(&cdb, sizeof(cdb));
822 cdb.opcode = WRITE_BUFFER;
824 /* Parameter list length. */
825 scsi_ulto3b(pkt_size, &cdb.length[0]);
826 offset = vp->inc_cdb_offset ? (pkt_ptr - buf) : 0;
827 scsi_ulto3b(offset, &cdb.offset[0]);
828 cdb.byte2 = last_pkt ? vp->cdb_byte2_last :
830 cdb.buffer_id = vp->inc_cdb_buffer_id ? pkt_count : 0;
831 /* Zero out payload of ccb union after ccb header. */
832 CCB_CLEAR_ALL_EXCEPT_HDR(&ccb->csio);
834 * Copy previously constructed cdb into ccb_scsiio
837 bcopy(&cdb, &ccb->csio.cdb_io.cdb_bytes[0],
838 sizeof(struct scsi_write_buffer));
839 /* Fill rest of ccb_scsiio struct. */
840 cam_fill_csio(&ccb->csio, /* ccb_scsiio*/
841 retry_count, /* retries*/
843 CAM_DIR_OUT | CAM_DEV_QFRZDIS, /* flags*/
844 CAM_TAG_ACTION_NONE, /* tag_action*/
845 (u_char *)pkt_ptr, /* data_ptr*/
846 pkt_size, /* dxfer_len*/
847 SSD_FULL_SIZE, /* sense_len*/
848 sizeof(struct scsi_write_buffer), /* cdb_len*/
849 timeout ? timeout : WB_TIMEOUT); /* timeout*/
852 case CC_DT_ATA_BEHIND_SCSI: {
855 off = (uint32_t)(pkt_ptr - buf);
857 retval = build_ata_cmd(ccb,
858 /*retry_count*/ retry_count,
859 /*flags*/ CAM_DIR_OUT | CAM_DEV_QFRZDIS,
860 /*tag_action*/ CAM_TAG_ACTION_NONE,
861 /*protocol*/ AP_PROTO_PIO_OUT,
862 /*ata_flags*/ AP_FLAG_BYT_BLOK_BYTES |
863 AP_FLAG_TLEN_SECT_CNT |
865 /*features*/ USE_OFFSETS_FEATURE,
866 /*sector_count*/ ATA_MAKE_SECTORS(pkt_size),
867 /*lba*/ ATA_MAKE_LBA(off, pkt_size),
868 /*command*/ ATA_DOWNLOAD_MICROCODE,
870 /*data_ptr*/ (uint8_t *)pkt_ptr,
871 /*dxfer_len*/ pkt_size,
872 /*cdb_storage*/ NULL,
873 /*cdb_storage_len*/ 0,
874 /*sense_len*/ SSD_FULL_SIZE,
875 /*timeout*/ timeout ? timeout : WB_TIMEOUT,
877 /*devtype*/ devtype);
880 warnx("%s: build_ata_cmd() failed, likely "
881 "programmer error", __func__);
887 warnx("Unknown device type %d", devtype);
890 break; /*NOTREACHED*/
893 /* Execute the command. */
894 if (cam_send_ccb(cam_dev, ccb) < 0 ||
895 (ccb->ccb_h.status & CAM_STATUS_MASK) !=
897 warnx("Error writing image to device");
899 cam_error_print(cam_dev, ccb,
900 CAM_ESF_ALL, CAM_EPF_ALL, stderr);
904 } else if (printerrors) {
905 cam_error_print(cam_dev, ccb, CAM_ESF_COMMAND, 0,
909 /* Prepare next round. */
912 img_size -= pkt_size;
916 progress_complete(&progress, size - img_size);
922 fwdownload(struct cam_device *device, int argc, char **argv,
923 char *combinedopt, int printerrors, int task_attr, int retry_count,
926 union ccb *ccb = NULL;
927 struct fw_vendor *vp;
928 char *fw_img_path = NULL;
929 struct ata_params *ident_buf = NULL;
930 camcontrol_devtype devtype;
939 while ((c = getopt(argc, argv, combinedopt)) != -1) {
942 fw_img_path = optarg;
958 if (fw_img_path == NULL)
959 errx(1, "you must specify a firmware image file using -f "
962 retval = get_device_type(device, retry_count, timeout, printerrors,
965 errx(1, "Unable to determine device type");
967 if ((devtype == CC_DT_ATA)
968 || (devtype == CC_DT_ATA_BEHIND_SCSI)) {
969 ccb = cam_getccb(device);
971 warnx("couldn't allocate CCB");
976 if (ata_do_identify(device, retry_count, timeout, ccb,
981 } else if (devtype != CC_DT_SCSI)
982 errx(1, "Unsupported device type %d", devtype);
984 vp = fw_get_vendor(device, ident_buf);
986 * Bail out if we have an unknown vendor and this isn't an ATA
987 * disk. For a SCSI disk, we have no chance of working properly
988 * with the default values in the VENDOR_UNKNOWN case. For an ATA
989 * disk connected via an ATA transport, we may work for drives that
990 * support the ATA_DOWNLOAD_MICROCODE command.
993 || (vp->type == VENDOR_UNKNOWN))
994 && (devtype == CC_DT_SCSI))
995 errx(1, "Unsupported device");
997 retval = fw_get_timeout(device, vp, task_attr, retry_count, timeout);
999 warnx("Unable to get a firmware download timeout value");
1003 buf = fw_read_img(device, retry_count, timeout, quiet, fw_img_path,
1011 fprintf(stdout, "You are about to download firmware image (%s)"
1012 " into the following device:\n",
1014 if (devtype == CC_DT_SCSI) {
1015 if (scsidoinquiry(device, argc, argv, combinedopt,
1016 MSG_SIMPLE_Q_TAG, 0, 5000) != 0) {
1017 warnx("Error sending inquiry");
1022 printf("%s%d: ", device->device_name,
1023 device->dev_unit_num);
1024 ata_print_ident(ident_buf);
1025 camxferrate(device);
1028 fprintf(stdout, "Using a timeout of %u ms, which is %s.\n",
1030 fw_timeout_desc_table[vp->timeout_type].timeout_desc);
1031 fprintf(stdout, "\nIt may damage your drive. ");
1032 if (!get_confirmation()) {
1037 if ((sim_mode != 0) && (quiet == 0))
1038 fprintf(stdout, "Running in simulation mode\n");
1040 if (fw_download_img(device, vp, buf, img_size, sim_mode, printerrors,
1041 quiet, retry_count, vp->timeout_ms, fw_img_path, devtype) != 0) {
1042 fprintf(stderr, "Firmware download failed\n");
1045 } else if (quiet == 0)
1046 fprintf(stdout, "Firmware download successful\n");
projects / FreeBSD / FreeBSD.git / blob