Changeset 100222 in vbox

Timestamp:

Jun 20, 2023 2:40:48 AM (18 months ago)

Author:

vboxsync

Message:

VMM/IEM: More recompilation code. bugref:10369

Location:

trunk/src/VBox/VMM

Files:

• VMMAll/IEMAll.cpp (modified) (2 diffs)
• VMMAll/IEMAllCImpl.cpp (modified) (1 diff)
• VMMAll/IEMAllInstructionsOneByte.cpp.h (modified) (2 diffs)
• VMMAll/IEMAllThreadedRecompiler.cpp (modified) (12 diffs)
• VMMR3/EM.cpp (modified) (2 diffs)
• VMMR3/IEMR3.cpp (modified) (1 diff)
• include/IEMInternal.h (modified) (4 diffs)
• include/IEMMc.h (modified) (1 diff)

trunk/src/VBox/VMM/VMMAll/IEMAll.cpp

@@ -10487 +10487 @@
 
 
+/**
+ * Code common to IEMExecLots and IEMExecRecompilerThreaded that attempts to
+ * inject a pending TRPM trap.
+ */
+VBOXSTRICTRC iemExecInjectPendingTrap(PVMCPUCC pVCpu)
+{
+    Assert(TRPMHasTrap(pVCpu));
+
+    if (   !CPUMIsInInterruptShadow(&pVCpu->cpum.GstCtx)
+        && !CPUMAreInterruptsInhibitedByNmi(&pVCpu->cpum.GstCtx))
+    {
+        /** @todo Can we centralize this under CPUMCanInjectInterrupt()? */
+#if defined(VBOX_WITH_NESTED_HWVIRT_SVM) || defined(VBOX_WITH_NESTED_HWVIRT_VMX)
+        bool fIntrEnabled = CPUMGetGuestGif(&pVCpu->cpum.GstCtx);
+        if (fIntrEnabled)
+        {
+            if (!CPUMIsGuestInNestedHwvirtMode(IEM_GET_CTX(pVCpu)))
+                fIntrEnabled = pVCpu->cpum.GstCtx.eflags.Bits.u1IF;
+            else if (CPUMIsGuestInVmxNonRootMode(IEM_GET_CTX(pVCpu)))
+                fIntrEnabled = CPUMIsGuestVmxPhysIntrEnabled(IEM_GET_CTX(pVCpu));
+            else
+            {
+                Assert(CPUMIsGuestInSvmNestedHwVirtMode(IEM_GET_CTX(pVCpu)));
+                fIntrEnabled = CPUMIsGuestSvmPhysIntrEnabled(pVCpu, IEM_GET_CTX(pVCpu));
+            }
+        }
+#else
+        bool fIntrEnabled = pVCpu->cpum.GstCtx.eflags.Bits.u1IF;
+#endif
+        if (fIntrEnabled)
+        {
+            uint8_t     u8TrapNo;
+            TRPMEVENT   enmType;
+            uint32_t    uErrCode;
+            RTGCPTR     uCr2;
+            int rc2 = TRPMQueryTrapAll(pVCpu, &u8TrapNo, &enmType, &uErrCode, &uCr2, NULL /*pu8InstLen*/, NULL /*fIcebp*/);
+            AssertRC(rc2);
+            Assert(enmType == TRPM_HARDWARE_INT);
+            VBOXSTRICTRC rcStrict = IEMInjectTrap(pVCpu, u8TrapNo, enmType, (uint16_t)uErrCode, uCr2, 0 /*cbInstr*/);
+
+            TRPMResetTrap(pVCpu);
+
+#if defined(VBOX_WITH_NESTED_HWVIRT_SVM) || defined(VBOX_WITH_NESTED_HWVIRT_VMX)
+            /* Injecting an event may cause a VM-exit. */
+            if (   rcStrict != VINF_SUCCESS
+                && rcStrict != VINF_IEM_RAISED_XCPT)
+                return iemExecStatusCodeFiddling(pVCpu, rcStrict);
+#else
+            NOREF(rcStrict);
+#endif
+        }
+    }
+
+    return VINF_SUCCESS;
+}
+
+
 VMMDECL(VBOXSTRICTRC) IEMExecLots(PVMCPUCC pVCpu, uint32_t cMaxInstructions, uint32_t cPollRate, uint32_t *pcInstructions)
 {
@@ -10502 +10559 @@
     else
     {
-        if (   !CPUMIsInInterruptShadow(&pVCpu->cpum.GstCtx)
-            && !CPUMAreInterruptsInhibitedByNmi(&pVCpu->cpum.GstCtx))
-        {
-            /** @todo Can we centralize this under CPUMCanInjectInterrupt()? */
-#if defined(VBOX_WITH_NESTED_HWVIRT_SVM) || defined(VBOX_WITH_NESTED_HWVIRT_VMX)
-            bool fIntrEnabled = CPUMGetGuestGif(&pVCpu->cpum.GstCtx);
-            if (fIntrEnabled)
-            {
-                if (!CPUMIsGuestInNestedHwvirtMode(IEM_GET_CTX(pVCpu)))
-                    fIntrEnabled = pVCpu->cpum.GstCtx.eflags.Bits.u1IF;
-                else if (CPUMIsGuestInVmxNonRootMode(IEM_GET_CTX(pVCpu)))
-                    fIntrEnabled = CPUMIsGuestVmxPhysIntrEnabled(IEM_GET_CTX(pVCpu));
-                else
-                {
-                    Assert(CPUMIsGuestInSvmNestedHwVirtMode(IEM_GET_CTX(pVCpu)));
-                    fIntrEnabled = CPUMIsGuestSvmPhysIntrEnabled(pVCpu, IEM_GET_CTX(pVCpu));
-                }
-            }
-#else
-            bool fIntrEnabled = pVCpu->cpum.GstCtx.eflags.Bits.u1IF;
-#endif
-            if (fIntrEnabled)
-            {
-                uint8_t     u8TrapNo;
-                TRPMEVENT   enmType;
-                uint32_t    uErrCode;
-                RTGCPTR     uCr2;
-                int rc2 = TRPMQueryTrapAll(pVCpu, &u8TrapNo, &enmType, &uErrCode, &uCr2, NULL /*pu8InstLen*/, NULL /*fIcebp*/);
-                AssertRC(rc2);
-                Assert(enmType == TRPM_HARDWARE_INT);
-                VBOXSTRICTRC rcStrict = IEMInjectTrap(pVCpu, u8TrapNo, enmType, (uint16_t)uErrCode, uCr2, 0 /*cbInstr*/);
-
-                TRPMResetTrap(pVCpu);
-
-#if defined(VBOX_WITH_NESTED_HWVIRT_SVM) || defined(VBOX_WITH_NESTED_HWVIRT_VMX)
-                /* Injecting an event may cause a VM-exit. */
-                if (   rcStrict != VINF_SUCCESS
-                    && rcStrict != VINF_IEM_RAISED_XCPT)
-                    return iemExecStatusCodeFiddling(pVCpu, rcStrict);
-#else
-                NOREF(rcStrict);
-#endif
-            }
-        }
+        VBOXSTRICTRC rcStrict = iemExecInjectPendingTrap(pVCpu);
+        if (RT_LIKELY(rcStrict == VINF_SUCCESS))
+        { /*likely */ }
+        else
+            return rcStrict;
     }
 

trunk/src/VBox/VMM/VMMAll/IEMAllCImpl.cpp

@@ -314 +314 @@
  * @{
  */
+
+
+/**
+ * Implements a pop [mem16].
+ */
+IEM_CIMPL_DEF_2(iemCImpl_pop_mem16, uint16_t, iEffSeg, RTGCPTR, GCPtrEffDst)
+{
+    uint16_t  u16Value;
+    RTUINT64U TmpRsp;
+    TmpRsp.u = pVCpu->cpum.GstCtx.rsp;
+    VBOXSTRICTRC rcStrict = iemMemStackPopU16Ex(pVCpu, &u16Value, &TmpRsp);
+    if (rcStrict == VINF_SUCCESS)
+    {
+        rcStrict = iemMemStoreDataU16(pVCpu, iEffSeg, GCPtrEffDst, u16Value);
+        if (rcStrict == VINF_SUCCESS)
+        {
+            pVCpu->cpum.GstCtx.rsp = TmpRsp.u;
+            return iemRegAddToRipAndFinishingClearingRF(pVCpu, cbInstr);
+        }
+    }
+    return rcStrict;
+
+}
+
+
+/**
+ * Implements a pop [mem32].
+ */
+IEM_CIMPL_DEF_2(iemCImpl_pop_mem32, uint16_t, iEffSeg, RTGCPTR, GCPtrEffDst)
+{
+    uint32_t  u32Value;
+    RTUINT64U TmpRsp;
+    TmpRsp.u = pVCpu->cpum.GstCtx.rsp;
+    VBOXSTRICTRC rcStrict = iemMemStackPopU32Ex(pVCpu, &u32Value, &TmpRsp);
+    if (rcStrict == VINF_SUCCESS)
+    {
+        rcStrict = iemMemStoreDataU32(pVCpu, iEffSeg, GCPtrEffDst, u32Value);
+        if (rcStrict == VINF_SUCCESS)
+        {
+            pVCpu->cpum.GstCtx.rsp = TmpRsp.u;
+            return iemRegAddToRipAndFinishingClearingRF(pVCpu, cbInstr);
+        }
+    }
+    return rcStrict;
+
+}
+
+
+/**
+ * Implements a pop [mem64].
+ */
+IEM_CIMPL_DEF_2(iemCImpl_pop_mem64, uint16_t, iEffSeg, RTGCPTR, GCPtrEffDst)
+{
+    uint64_t  u64Value;
+    RTUINT64U TmpRsp;
+    TmpRsp.u = pVCpu->cpum.GstCtx.rsp;
+    VBOXSTRICTRC rcStrict = iemMemStackPopU64Ex(pVCpu, &u64Value, &TmpRsp);
+    if (rcStrict == VINF_SUCCESS)
+    {
+        rcStrict = iemMemStoreDataU64(pVCpu, iEffSeg, GCPtrEffDst, u64Value);
+        if (rcStrict == VINF_SUCCESS)
+        {
+            pVCpu->cpum.GstCtx.rsp = TmpRsp.u;
+            return iemRegAddToRipAndFinishingClearingRF(pVCpu, cbInstr);
+        }
+    }
+    return rcStrict;
+
+}
+
 
 /**

trunk/src/VBox/VMM/VMMAll/IEMAllInstructionsOneByte.cpp.h

@@ -5214 +5214 @@
     IEMOP_HLP_DEFAULT_64BIT_OP_SIZE(); /* The common code does this differently. */
 
-#ifndef TST_IEM_CHECK_MC
+#if 1 /* This can be compiled, optimize later if needed. */
+    switch (pVCpu->iem.s.enmEffOpSize)
+    {
+        case IEMMODE_16BIT:
+        {
+            IEM_MC_BEGIN(2, 0);
+            IEM_MC_ARG_CONST(uint8_t,       iEffSeg, /*=*/ pVCpu->iem.s.iEffSeg, 0);
+            IEM_MC_ARG(      RTGCPTR,       GCPtrEffDst,                         1);
+            IEM_MC_CALC_RM_EFF_ADDR(GCPtrEffDst, bRm, 2 << 8);
+            IEMOP_HLP_DONE_DECODING_NO_LOCK_PREFIX();
+            IEM_MC_CALL_CIMPL_2(0, iemCImpl_pop_mem16, iEffSeg, GCPtrEffDst);
+            IEM_MC_END();
+        }
+
+        case IEMMODE_32BIT:
+        {
+            IEM_MC_BEGIN(2, 0);
+            IEM_MC_ARG_CONST(uint8_t,       iEffSeg, /*=*/ pVCpu->iem.s.iEffSeg, 0);
+            IEM_MC_ARG(      RTGCPTR,       GCPtrEffDst,                         1);
+            IEM_MC_CALC_RM_EFF_ADDR(GCPtrEffDst, bRm, 4 << 8);
+            IEMOP_HLP_DONE_DECODING_NO_LOCK_PREFIX();
+            IEM_MC_CALL_CIMPL_2(0, iemCImpl_pop_mem32, iEffSeg, GCPtrEffDst);
+            IEM_MC_END();
+        }
+
+        case IEMMODE_64BIT:
+        {
+            IEM_MC_BEGIN(2, 0);
+            IEM_MC_ARG_CONST(uint8_t,       iEffSeg, /*=*/ pVCpu->iem.s.iEffSeg, 0);
+            IEM_MC_ARG(      RTGCPTR,       GCPtrEffDst,                         1);
+            IEM_MC_CALC_RM_EFF_ADDR(GCPtrEffDst, bRm, 8 << 8);
+            IEMOP_HLP_DONE_DECODING_NO_LOCK_PREFIX();
+            IEM_MC_CALL_CIMPL_2(0, iemCImpl_pop_mem64, iEffSeg, GCPtrEffDst);
+            IEM_MC_END();
+        }
+
+        IEM_NOT_REACHED_DEFAULT_CASE_RET();
+    }
+
+#else
+# ifndef TST_IEM_CHECK_MC
     /* Calc effective address with modified ESP. */
 /** @todo testcase */
@@ -5271 +5311 @@
     return rcStrict;
 
-#else
+# else
     return VERR_IEM_IPE_2;
+# endif
 #endif
 }

trunk/src/VBox/VMM/VMMAll/IEMAllThreadedRecompiler.cpp

@@ -31 +31 @@
 *********************************************************************************************************************************/
 #ifndef LOG_GROUP /* defined when included by tstIEMCheckMc.cpp */
-# define LOG_GROUP LOG_GROUP_IEM
+# define LOG_GROUP LOG_GROUP_IEM_RE_THREADED
 #endif
 #define VMCPU_INCL_CPUM_GST_CTX
@@ -306 +306 @@
  * Translation block management.
  */
+typedef struct IEMTBCACHE
+{
+    uint32_t cHash;
+    uint32_t uHashMask;
+    PIEMTB   apHash[_64K];
+} IEMTBCACHE;
+
+static IEMTBCACHE g_TbCache = { _64K, 0xffff, }; /**< Quick and dirty. */
+
+#define IEMTBCACHE_HASH(a_paCache, a_fTbFlags, a_GCPhysPc) \
+    ( ((uint32_t)(a_GCPhysPc) ^ (a_fTbFlags)) & (a_paCache)->uHashMask)
+
 
 /**
@@ -374 +386 @@
 
 
-static PIEMTB iemThreadedTbLookup(PVMCC pVM, PVMCPUCC pVCpu, RTGCPHYS GCPhysPc, uint64_t uPc, uint32_t fExtraFlags)
-{
-    RT_NOREF(pVM, pVCpu, GCPhysPc, uPc, fExtraFlags);
-    return NULL;
+static PIEMTB iemThreadedTbLookup(PVMCC pVM, PVMCPUCC pVCpu, RTGCPHYS GCPhysPc, uint32_t fExtraFlags)
+{
+    uint32_t const fFlags  = (pVCpu->iem.s.fExec & IEMTB_F_IEM_F_MASK) | fExtraFlags | IEMTB_F_STATE_READY;
+    uint32_t const idxHash = IEMTBCACHE_HASH(&g_TbCache, fFlags, GCPhysPc);
+    Log10(("TB lookup: idxHash=%#x fFlags=%#x GCPhysPc=%RGp\n", idxHash, fFlags, GCPhysPc));
+    PIEMTB pTb = g_TbCache.apHash[idxHash];
+    while (pTb)
+    {
+        if (pTb->GCPhysPc == GCPhysPc)
+        {
+            if (pTb->fFlags == fFlags)
+            {
+                if (pTb->x86.fAttr == (uint16_t)pVCpu->cpum.GstCtx.cs.Attr.u)
+                {
+#ifdef VBOX_WITH_STATISTICS
+                    pVCpu->iem.s.cTbLookupHits++;
+                    return pTb;
+#endif
+                }
+                Log11(("TB miss: CS: %#x, wanted %#x\n", pTb->x86.fAttr, (uint16_t)pVCpu->cpum.GstCtx.cs.Attr.u));
+            }
+            else
+                Log11(("TB miss: fFlags: %#x, wanted %#x\n", pTb->fFlags, fFlags));
+        }
+        else
+            Log11(("TB miss: GCPhysPc: %#x, wanted %#x\n", pTb->GCPhysPc, GCPhysPc));
+
+        pTb = pTb->pNext;
+    }
+    RT_NOREF(pVM);
+    pVCpu->iem.s.cTbLookupMisses++;
+    return pTb;
+}
+
+
+static void iemThreadedTbAdd(PVMCC pVM, PVMCPUCC pVCpu, PIEMTB pTb)
+{
+    uint32_t const idxHash = IEMTBCACHE_HASH(&g_TbCache, pTb->fFlags, pTb->GCPhysPc);
+    pTb->pNext = g_TbCache.apHash[idxHash];
+    g_TbCache.apHash[idxHash] = pTb;
+    Log12(("TB added: %p %RGp LB %#x fl=%#x idxHash=%#x\n", pTb, pTb->GCPhysPc, pTb->cbPC, pTb->fFlags, idxHash));
+    RT_NOREF(pVM, pVCpu);
 }
 
@@ -593 +643 @@
             Assert(pTb->Thrd.cCalls > cCallsPrev);
             Assert(cCallsPrev - pTb->Thrd.cCalls < 5);
-
         }
         else if (pTb->Thrd.cCalls > 0)
-        {
             break;
-        }
         else
         {
@@ -617 +664 @@
      * Complete the TB and link it.
      */
+    pTb->fFlags = (pTb->fFlags & ~IEMTB_F_STATE_MASK) | IEMTB_F_STATE_READY;
+    iemThreadedTbAdd(pVM, pVCpu, pTb);
 
 #ifdef IEM_COMPILE_ONLY_MODE
@@ -672 +721 @@
  * This is called when the PC doesn't match the current pbInstrBuf.
  */
-static uint64_t iemGetPcWithPhysAndCodeMissed(PVMCPUCC pVCpu, uint64_t const uPc, PRTGCPHYS pPhys)
+static RTGCPHYS iemGetPcWithPhysAndCodeMissed(PVMCPUCC pVCpu, uint64_t const uPc)
 {
     /** @todo see iemOpcodeFetchBytesJmp */
@@ -682 +731 @@
     pVCpu->iem.s.cbInstrBufTotal  = 0;
 
-    RT_NOREF(uPc, pPhys);
-    return 0;
+    uint8_t bIgn;
+    iemOpcodeFetchBytesJmp(pVCpu, 1, &bIgn);
+
+    uint64_t off = uPc - pVCpu->iem.s.uInstrBufPc;
+    if (off < pVCpu->iem.s.cbInstrBufTotal)
+    {
+        pVCpu->iem.s.offInstrNextByte = (uint32_t)off;
+        pVCpu->iem.s.offCurInstrStart = (uint16_t)off;
+        if ((uint16_t)off + 15 <= pVCpu->iem.s.cbInstrBufTotal)
+            pVCpu->iem.s.cbInstrBuf = (uint16_t)off + 15;
+        else
+            pVCpu->iem.s.cbInstrBuf = pVCpu->iem.s.cbInstrBufTotal;
+
+        return pVCpu->iem.s.GCPhysInstrBuf + off;
+    }
+
+    AssertFailed();
+    RT_NOREF(uPc);
+    return NIL_RTGCPHYS;
 }
 
 
 /** @todo need private inline decl for throw/nothrow matching IEM_WITH_SETJMP? */
-DECL_FORCE_INLINE_THROW(uint64_t) iemGetPcWithPhysAndCode(PVMCPUCC pVCpu, PRTGCPHYS pPhys)
+DECL_FORCE_INLINE_THROW(RTGCPHYS) iemGetPcWithPhysAndCode(PVMCPUCC pVCpu)
 {
     /* Set uCurTbStartPc to RIP and calc the effective PC. */
@@ -708 +774 @@
                 pVCpu->iem.s.cbInstrBuf = pVCpu->iem.s.cbInstrBufTotal;
 
-            *pPhys = pVCpu->iem.s.GCPhysInstrBuf + off;
-            return uPc;
-        }
-    }
-    return iemGetPcWithPhysAndCodeMissed(pVCpu, uPc, pPhys);
+            return pVCpu->iem.s.GCPhysInstrBuf + off;
+        }
+    }
+    return iemGetPcWithPhysAndCodeMissed(pVCpu, uPc);
 }
 
@@ -747 +812 @@
 VMMDECL(VBOXSTRICTRC) IEMExecRecompilerThreaded(PVMCC pVM, PVMCPUCC pVCpu)
 {
+    /*
+     * See if there is an interrupt pending in TRPM, inject it if we can.
+     */
+    if (!TRPMHasTrap(pVCpu))
+    { /* likely */ }
+    else
+    {
+        VBOXSTRICTRC rcStrict = iemExecInjectPendingTrap(pVCpu);
+        if (RT_LIKELY(rcStrict == VINF_SUCCESS))
+        { /*likely */ }
+        else
+            return rcStrict;
+    }
+
     /*
      * Init the execution environment.
@@ -769 +848 @@
             {
                 /* Translate PC to physical address, we'll need this for both lookup and compilation. */
-                RTGCPHYS       GCPhysPc;
-                uint64_t const uPc         = iemGetPcWithPhysAndCode(pVCpu, &GCPhysPc);
+                RTGCPHYS const GCPhysPc    = iemGetPcWithPhysAndCode(pVCpu);
                 uint32_t const fExtraFlags = iemGetTbFlagsForCurrentPc(pVCpu);
 
-                pTb = iemThreadedTbLookup(pVM, pVCpu, GCPhysPc, uPc, fExtraFlags);
+                pTb = iemThreadedTbLookup(pVM, pVCpu, GCPhysPc, fExtraFlags);
                 if (pTb)
                     rcStrict = iemThreadedTbExec(pVCpu, pTb);
@@ -779 +857 @@
                     rcStrict = iemThreadedCompile(pVM, pVCpu, GCPhysPc, fExtraFlags);
                 if (rcStrict == VINF_SUCCESS)
-                { /* likely */ }
+                {
+                    Assert(pVCpu->iem.s.cActiveMappings == 0);
+
+                    uint64_t fCpu = pVCpu->fLocalForcedActions;
+                    fCpu &= VMCPU_FF_ALL_MASK & ~(  VMCPU_FF_PGM_SYNC_CR3
+                                                  | VMCPU_FF_PGM_SYNC_CR3_NON_GLOBAL
+                                                  | VMCPU_FF_TLB_FLUSH
+                                                  | VMCPU_FF_UNHALT );
+                    if (!fCpu)
+                    {
+                        /* likely */
+                    }
+                    else
+                        return VINF_SUCCESS;
+                }
                 else
                     return rcStrict;
@@ -788 +880 @@
         {
             pVCpu->iem.s.cLongJumps++;
+            if (pVCpu->iem.s.cActiveMappings > 0)
+                iemMemRollback(pVCpu);
             if (pTb)
                 return rcStrict;

trunk/src/VBox/VMM/VMMR3/EM.cpp

@@ -202 +202 @@
         pVCpu->em.s.cHistoryProbeMaxInstructionsWithoutExit   = cHistoryProbeMaxInstructionsWithoutExit;
     }
+
+#ifdef VBOX_WITH_IEM_RECOMPILER
+    /** @cfgm{/EM/IemRecompiled, bool, true}
+     * Whether IEM bulk execution is recompiled or interpreted. */
+    rc = CFGMR3QueryBoolDef(pCfgEM, "IemRecompiled", &pVM->em.s.fIemRecompiled, true);
+    AssertLogRelRCReturn(rc, rc);
+#endif
 
     /*
@@ -2185 +2192 @@
                 case VINF_EM_RESCHEDULE_EXEC_ENGINE:
                     Assert(!pVM->em.s.fIemExecutesAll || pVCpu->em.s.enmState != EMSTATE_IEM);
+                    if (!pVM->em.s.fIemExecutesAll)
+                    {
 #if !defined(VBOX_VMM_TARGET_ARMV8)
-                    if (VM_IS_HM_ENABLED(pVM))
-                    {
-                        if (HMCanExecuteGuest(pVM, pVCpu, &pVCpu->cpum.GstCtx))
+                        if (VM_IS_HM_ENABLED(pVM))
                         {
-                            Log2(("EMR3ExecuteVM: VINF_EM_RESCHEDULE_EXEC_ENGINE: %d -> %d (EMSTATE_HM)\n", enmOldState, EMSTATE_HM));
-                            pVCpu->em.s.enmState = EMSTATE_HM;
-                            break;
+                            if (HMCanExecuteGuest(pVM, pVCpu, &pVCpu->cpum.GstCtx))
+                            {
+                                Log2(("EMR3ExecuteVM: VINF_EM_RESCHEDULE_EXEC_ENGINE: %d -> %d (EMSTATE_HM)\n", enmOldState, EMSTATE_HM));
+                                pVCpu->em.s.enmState = EMSTATE_HM;
+                                break;
+                            }
                         }
-                    }
-                    else
-#endif
-                    if (VM_IS_NEM_ENABLED(pVM))
-                    {
-                        if (NEMR3CanExecuteGuest(pVM, pVCpu))
+                        else
+#endif
+                        if (VM_IS_NEM_ENABLED(pVM) && NEMR3CanExecuteGuest(pVM, pVCpu))
                         {
                             Log2(("EMR3ExecuteVM: VINF_EM_RESCHEDULE_EXEC_ENGINE: %d -> %d (EMSTATE_NEM)\n", enmOldState, EMSTATE_NEM));

trunk/src/VBox/VMM/VMMR3/IEMR3.cpp

@@ -166 +166 @@
         STAMR3RegisterF(pVM, (void *)&pVCpu->iem.s.DataTlb.uTlbPhysRev, STAMTYPE_X64,       STAMVISIBILITY_ALWAYS, STAMUNIT_NONE,
                         "Data TLB physical revision",               "/IEM/CPU%u/DataTlb-PhysRev", idCpu);
+
+        STAMR3RegisterF(pVM, (void *)&pVCpu->iem.s.cTbAllocs,           STAMTYPE_U64,       STAMVISIBILITY_ALWAYS, STAMUNIT_NONE,
+                        "Translation block allocations",            "/IEM/CPU%u/cTbAllocs", idCpu);
+        STAMR3RegisterF(pVM, (void *)&pVCpu->iem.s.cTbFrees,            STAMTYPE_U64,       STAMVISIBILITY_ALWAYS, STAMUNIT_NONE,
+                        "Translation block frees",                  "/IEM/CPU%u/cTbFrees", idCpu);
+        STAMR3RegisterF(pVM, (void *)&pVCpu->iem.s.cTbLookupHits,       STAMTYPE_U64,       STAMVISIBILITY_ALWAYS, STAMUNIT_NONE,
+                        "Translation block lookup hits",            "/IEM/CPU%u/cTbLookupHits", idCpu);
+        STAMR3RegisterF(pVM, (void *)&pVCpu->iem.s.cTbLookupMisses, STAMTYPE_U64,       STAMVISIBILITY_ALWAYS, STAMUNIT_NONE,
+                        "Translation block lookup misses",          "/IEM/CPU%u/cTbLookupMisses", idCpu);
 
         for (uint32_t i = 0; i < RT_ELEMENTS(pVCpu->iem.s.aStatXcpts); i++)

trunk/src/VBox/VMM/include/IEMInternal.h

@@ -999 +999 @@
     /** Statistics: Number of TB free calls. */
     uint64_t                cTbFrees;
+    /** Statistics: Number of TB lookup misses. */
+    uint64_t                cTbLookupMisses;
+    /** Statistics: Number of TB lookup hits (debug only). */
+    uint64_t                cTbLookupHits;
     /** Whether to end the current TB. */
     bool                    fEndTb;
@@ -1004 +1008 @@
     bool                    afRecompilerStuff1[7];
     /** Spaced reserved for recompiler data / alignment. */
-    uint64_t                auRecompilerStuff2[3];
+    uint64_t                auRecompilerStuff2[1];
     /** @} */
 
@@ -4098 +4102 @@
 
 uint32_t                iemCalcExecDbgFlagsSlow(PVMCPUCC pVCpu);
+VBOXSTRICTRC            iemExecInjectPendingTrap(PVMCPUCC pVCpu);
 
 
@@ -4378 +4383 @@
  * @note sed -e '/IEM_CIMPL_DEF_/!d' -e 's/IEM_CIMPL_DEF_/IEM_CIMPL_PROTO_/' -e 's/$/;/'
  * @{ */
+IEM_CIMPL_PROTO_2(iemCImpl_pop_mem16, uint16_t, iEffSeg, RTGCPTR, GCPtrEffDst);
+IEM_CIMPL_PROTO_2(iemCImpl_pop_mem32, uint16_t, iEffSeg, RTGCPTR, GCPtrEffDst);
+IEM_CIMPL_PROTO_2(iemCImpl_pop_mem64, uint16_t, iEffSeg, RTGCPTR, GCPtrEffDst);
 IEM_CIMPL_PROTO_0(iemCImpl_popa_16);
 IEM_CIMPL_PROTO_0(iemCImpl_popa_32);

trunk/src/VBox/VMM/include/IEMMc.h

@@ -1016 +1016 @@
     IEM_MC_RETURN_ON_FAILURE(iemMemStackPopU32(pVCpu, (a_pu32Value)))
 #define IEM_MC_POP_U64(a_pu64Value) \
+    IEM_MC_RETURN_ON_FAILURE(iemMemStackPopU64(pVCpu, (a_pu64Value)))
+
+#define IEM_MC_POP_EX_U16(a_pu16Value, a_) \
+    IEM_MC_RETURN_ON_FAILURE(iemMemStackPopU16Ex(pVCpu, (a_pu16Value), (a_pNewRsp)))
+#define IEM_MC_POP_EX_U32(a_pu32Value) \
+    IEM_MC_RETURN_ON_FAILURE(iemMemStackPopU32(pVCpu, (a_pu32Value)))
+#define IEM_MC_POP_EX_U64(a_pu64Value) \
     IEM_MC_RETURN_ON_FAILURE(iemMemStackPopU64(pVCpu, (a_pu64Value)))