Changeset 101523 in vbox

Timestamp:

Oct 20, 2023 2:46:13 PM (19 months ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

159600

Message:

VMM/IEM: Cleanups. bugref:10371

Location:

trunk/src/VBox/VMM

Files:

• VMMAll/IEMAllN8veRecompiler.cpp (modified) (11 diffs)
• include/IEMN8veRecompiler.h (modified) (4 diffs)

trunk/src/VBox/VMM/VMMAll/IEMAllN8veRecompiler.cpp

@@ -115 +115 @@
 
 
+/*********************************************************************************************************************************
+*   Defined Constants And Macros                                                                                                 *
+*********************************************************************************************************************************/
 /** Always count instructions for now. */
 #define IEMNATIVE_WITH_INSTRUCTION_COUNTING
+
+
+/*********************************************************************************************************************************
+*   Internal Functions                                                                                                           *
+*********************************************************************************************************************************/
+static uint32_t iemNativeEmitGuestRegValueCheck(PIEMRECOMPILERSTATE pReNative, uint32_t off,
+                                                uint8_t idxReg, IEMNATIVEGSTREG enmGstReg);
 
 
@@ -1833 +1843 @@
 
 
+
+/*********************************************************************************************************************************
+*   Register Allocator                                                                                                           *
+*********************************************************************************************************************************/
+
 /**
  * Register parameter indexes (indexed by argument number).
@@ -1886 +1901 @@
 #endif
 };
-
-
-DECL_FORCE_INLINE(uint8_t) iemNativeRegMarkAllocated(PIEMRECOMPILERSTATE pReNative, unsigned idxReg,
-                                                     IEMNATIVEWHAT enmWhat, uint8_t idxVar = UINT8_MAX) RT_NOEXCEPT
-{
-    pReNative->bmHstRegs |= RT_BIT_32(idxReg);
-
-    pReNative->aHstRegs[idxReg].enmWhat        = enmWhat;
-    pReNative->aHstRegs[idxReg].fGstRegShadows = 0;
-    pReNative->aHstRegs[idxReg].idxVar         = idxVar;
-    return (uint8_t)idxReg;
-}
-
-
-/**
- * Locate a register, possibly freeing one up.
- *
- * This ASSUMES the caller has done the minimal/optimal allocation checks and
- * failed.
- */
-static uint8_t iemNativeRegAllocFindFree(PIEMRECOMPILERSTATE pReNative, uint32_t *poff, bool fAllowVolatile) RT_NOEXCEPT
-{
-    uint32_t fRegMask = fAllowVolatile
-                      ? IEMNATIVE_HST_GREG_MASK & ~IEMNATIVE_REG_FIXED_MASK
-                      : IEMNATIVE_HST_GREG_MASK & ~(IEMNATIVE_REG_FIXED_MASK | IEMNATIVE_CALL_VOLATILE_GREG_MASK);
-
-    /*
-     * Try a freed register that's shadowing a guest register
-     */
-    uint32_t fRegs = ~pReNative->bmHstRegs & fRegMask;
-    if (fRegs)
-    {
-        /** @todo pick better here:    */
-        unsigned const idxReg = ASMBitFirstSetU32(fRegs) - 1;
-
-        Assert(pReNative->aHstRegs[idxReg].fGstRegShadows != 0);
-        Assert(   (pReNative->aHstRegs[idxReg].fGstRegShadows & pReNative->bmGstRegShadows)
-               == pReNative->aHstRegs[idxReg].fGstRegShadows);
-        Assert(pReNative->bmHstRegsWithGstShadow & RT_BIT_32(idxReg));
-
-        pReNative->bmGstRegShadows        &= ~pReNative->aHstRegs[idxReg].fGstRegShadows;
-        pReNative->bmHstRegsWithGstShadow &= ~RT_BIT_32(idxReg);
-        pReNative->aHstRegs[idxReg].fGstRegShadows = 0;
-        return idxReg;
-    }
-
-    /*
-     * Try free up a variable that's in a register.
-     *
-     * We do two rounds here, first evacuating variables we don't need to be
-     * saved on the stack, then in the second round move things to the stack.
-     */
-    for (uint32_t iLoop = 0; iLoop < 2; iLoop++)
-    {
-        uint32_t fVars = pReNative->bmVars;
-        while (fVars)
-        {
-            uint32_t const idxVar = ASMBitFirstSetU32(fVars) - 1;
-            uint8_t const  idxReg = pReNative->aVars[idxVar].idxReg;
-            if (   idxReg < RT_ELEMENTS(pReNative->aHstRegs)
-                && (RT_BIT_32(idxReg) & fRegMask)
-                && (  iLoop == 0
-                    ? pReNative->aVars[idxVar].enmKind != kIemNativeVarKind_Stack
-                    : pReNative->aVars[idxVar].enmKind == kIemNativeVarKind_Stack))
-            {
-                Assert(pReNative->bmHstRegs & RT_BIT_32(idxReg));
-                Assert(   (pReNative->bmGstRegShadows & pReNative->aHstRegs[idxReg].fGstRegShadows)
-                       == pReNative->aHstRegs[idxReg].fGstRegShadows);
-                Assert(   RT_BOOL(pReNative->bmHstRegsWithGstShadow & RT_BIT_32(idxReg))
-                       == RT_BOOL(pReNative->aHstRegs[idxReg].fGstRegShadows));
-
-                if (pReNative->aVars[idxVar].enmKind == kIemNativeVarKind_Stack)
-                {
-                    AssertReturn(pReNative->aVars[idxVar].idxStackSlot != UINT8_MAX, UINT8_MAX);
-                    uint32_t off = *poff;
-                    *poff = off = iemNativeEmitStoreGprByBp(pReNative, off,
-                                                              pReNative->aVars[idxVar].idxStackSlot * sizeof(uint64_t)
-                                                            - IEMNATIVE_FP_OFF_STACK_VARS,
-                                                            idxReg);
-                    AssertReturn(off != UINT32_MAX, UINT8_MAX);
-                }
-
-                pReNative->aVars[idxVar].idxReg    = UINT8_MAX;
-                pReNative->bmGstRegShadows        &= ~pReNative->aHstRegs[idxReg].fGstRegShadows;
-                pReNative->bmHstRegsWithGstShadow &= ~RT_BIT_32(idxReg);
-                pReNative->bmHstRegs              &= ~RT_BIT_32(idxReg);
-                return idxReg;
-            }
-            fVars &= ~RT_BIT_32(idxVar);
-        }
-    }
-
-    AssertFailedReturn(UINT8_MAX);
-}
-
-
-/**
- * Moves a variable to a different register or spills it onto the stack.
- *
- * This must be a stack variable (kIemNativeVarKind_Stack) because the other
- * kinds can easily be recreated if needed later.
- *
- * @returns The new code buffer position, UINT32_MAX on failure.
- * @param   pReNative       The native recompile state.
- * @param   off             The current code buffer position.
- * @param   idxVar          The variable index.
- * @param   fForbiddenRegs  Mask of the forbidden registers.  Defaults to
- *                          call-volatile registers.
- */
-static uint32_t iemNativeRegMoveOrSpillStackVar(PIEMRECOMPILERSTATE pReNative, uint32_t off, uint8_t idxVar,
-                                                uint32_t fForbiddenRegs = IEMNATIVE_CALL_VOLATILE_GREG_MASK)
-{
-    Assert(idxVar < RT_ELEMENTS(pReNative->aVars));
-    Assert(pReNative->aVars[idxVar].enmKind == kIemNativeVarKind_Stack);
-
-    uint8_t const idxRegOld = pReNative->aVars[idxVar].idxReg;
-    Assert(idxRegOld < RT_ELEMENTS(pReNative->aHstRegs));
-    Assert(pReNative->bmHstRegs & RT_BIT_32(idxRegOld));
-    Assert(pReNative->aHstRegs[idxRegOld].enmWhat == kIemNativeWhat_Var);
-    Assert(   (pReNative->bmGstRegShadows & pReNative->aHstRegs[idxRegOld].fGstRegShadows)
-           == pReNative->aHstRegs[idxRegOld].fGstRegShadows);
-    Assert(   RT_BOOL(pReNative->bmHstRegsWithGstShadow & RT_BIT_32(idxRegOld))
-           == RT_BOOL(pReNative->aHstRegs[idxRegOld].fGstRegShadows));
-
-
-    /** @todo Add statistics on this.*/
-    /** @todo Implement basic variable liveness analysis (python) so variables
-     * can be freed immediately once no longer used.  This has the potential to
-     * be trashing registers and stack for dead variables. */
-
-    /*
-     * First try move it to a different register, as that's cheaper.
-     */
-    fForbiddenRegs |= RT_BIT_32(idxRegOld);
-    fForbiddenRegs |= IEMNATIVE_REG_FIXED_MASK;
-    uint32_t fRegs = ~pReNative->bmHstRegs & ~fForbiddenRegs;
-    if (fRegs)
-    {
-        /* Avoid using shadow registers, if possible. */
-        if (fRegs & ~pReNative->bmHstRegsWithGstShadow)
-            fRegs &= ~pReNative->bmHstRegsWithGstShadow;
-        unsigned const idxRegNew = ASMBitFirstSetU32(fRegs) - 1;
-
-        uint64_t fGstRegShadows = pReNative->aHstRegs[idxRegOld].fGstRegShadows;
-        pReNative->aHstRegs[idxRegNew].fGstRegShadows = fGstRegShadows;
-        pReNative->aHstRegs[idxRegNew].enmWhat        = kIemNativeWhat_Var;
-        pReNative->aHstRegs[idxRegNew].idxVar         = idxVar;
-        if (fGstRegShadows)
-        {
-            pReNative->bmHstRegsWithGstShadow |= RT_BIT_32(idxRegNew);
-            while (fGstRegShadows)
-            {
-                unsigned const idxGstReg = ASMBitFirstSetU64(fGstRegShadows);
-                fGstRegShadows &= ~RT_BIT_64(idxGstReg);
-
-                Assert(pReNative->aidxGstRegShadows[idxGstReg] == idxRegOld);
-                pReNative->aidxGstRegShadows[idxGstReg] = idxRegNew;
-            }
-        }
-
-        pReNative->aVars[idxVar].idxReg = (uint8_t)idxRegNew;
-        pReNative->bmHstRegs           |= RT_BIT_32(idxRegNew);
-    }
-    /*
-     * Otherwise we must spill the register onto the stack.
-     */
-    else
-    {
-        AssertReturn(pReNative->aVars[idxVar].idxStackSlot != UINT8_MAX, UINT32_MAX);
-        off = iemNativeEmitStoreGprByBp(pReNative, off,
-                                        pReNative->aVars[idxVar].idxStackSlot * sizeof(uint64_t) - IEMNATIVE_FP_OFF_STACK_VARS,
-                                        idxRegOld);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
-
-        pReNative->bmHstRegsWithGstShadow &= ~RT_BIT_32(idxRegOld);
-        pReNative->bmGstRegShadows        &= ~pReNative->aHstRegs[idxRegOld].fGstRegShadows;
-    }
-
-    pReNative->bmHstRegs &= ~RT_BIT_32(idxRegOld);
-    pReNative->aHstRegs[idxRegOld].fGstRegShadows = 0;
-    return off;
-}
-
-
-/**
- * Allocates a temporary host general purpose register.
- *
- * This may emit code to save register content onto the stack in order to free
- * up a register.
- *
- * @returns The host register number, UINT8_MAX on failure.
- * @param   pReNative       The native recompile state.
- * @param   poff            Pointer to the variable with the code buffer position.
- *                          This will be update if we need to move a variable from
- *                          register to stack in order to satisfy the request.
- * @param   fPreferVolatile Wheter to prefer volatile over non-volatile
- *                          registers (@c true, default) or the other way around
- *                          (@c false, for iemNativeRegAllocTmpForGuestReg()).
- */
-DECLHIDDEN(uint8_t) iemNativeRegAllocTmp(PIEMRECOMPILERSTATE pReNative, uint32_t *poff,
-                                         bool fPreferVolatile /*= true*/) RT_NOEXCEPT
-{
-    /*
-     * Try find a completely unused register, preferably a call-volatile one.
-     */
-    uint8_t  idxReg;
-    uint32_t fRegs = ~pReNative->bmHstRegs
-                   & ~pReNative->bmHstRegsWithGstShadow
-                   & (~IEMNATIVE_REG_FIXED_MASK & IEMNATIVE_HST_GREG_MASK);
-    if (fRegs)
-    {
-        if (fPreferVolatile)
-            idxReg = (uint8_t)ASMBitFirstSetU32(  fRegs & IEMNATIVE_CALL_VOLATILE_GREG_MASK
-                                                ? fRegs & IEMNATIVE_CALL_VOLATILE_GREG_MASK : fRegs) - 1;
-        else
-            idxReg = (uint8_t)ASMBitFirstSetU32(  fRegs & ~IEMNATIVE_CALL_VOLATILE_GREG_MASK
-                                                ? fRegs & ~IEMNATIVE_CALL_VOLATILE_GREG_MASK : fRegs) - 1;
-        Assert(pReNative->aHstRegs[idxReg].fGstRegShadows == 0);
-        Assert(!(pReNative->bmHstRegsWithGstShadow & RT_BIT_32(idxReg)));
-    }
-    else
-    {
-        idxReg = iemNativeRegAllocFindFree(pReNative, poff, true /*fAllowVolatile*/);
-        AssertReturn(idxReg != UINT8_MAX, UINT8_MAX);
-    }
-    return iemNativeRegMarkAllocated(pReNative, idxReg, kIemNativeWhat_Tmp);
-}
-
-
-/**
- * Allocates a temporary register for loading an immediate value into.
- *
- * This will emit code to load the immediate, unless there happens to be an
- * unused register with the value already loaded.
- *
- * The caller will not modify the returned register, it must be considered
- * read-only.  Free using iemNativeRegFreeTmpImm.
- *
- * @returns The host register number, UINT8_MAX on failure.
- * @param   pReNative       The native recompile state.
- * @param   poff            Pointer to the variable with the code buffer position.
- * @param   uImm            The immediate value that the register must hold upon
- *                          return.
- * @param   fPreferVolatile Wheter to prefer volatile over non-volatile
- *                          registers (@c true, default) or the other way around
- *                          (@c false).
- *
- * @note    Reusing immediate values has not been implemented yet.
- */
-DECLHIDDEN(uint8_t) iemNativeRegAllocTmpImm(PIEMRECOMPILERSTATE pReNative, uint32_t *poff, uint64_t uImm,
-                                            bool fPreferVolatile /*= true*/) RT_NOEXCEPT
-{
-    uint8_t idxReg = iemNativeRegAllocTmp(pReNative, poff, fPreferVolatile);
-    if (idxReg < RT_ELEMENTS(pReNative->aHstRegs))
-    {
-        uint32_t off = *poff;
-        *poff = off = iemNativeEmitLoadGprImm64(pReNative, off, idxReg, uImm);
-        AssertReturnStmt(off != UINT32_MAX, iemNativeRegFreeTmp(pReNative, idxReg), UINT8_MAX);
-    }
-    return idxReg;
-}
-
 
 /**
@@ -2224 +1977 @@
 };
 
-/**
- * Loads the guest shadow register @a enmGstReg into host reg @a idxHstReg, zero
- * extending to 64-bit width.
- *
- * @returns New code buffer offset on success, UINT32_MAX on failure.
- * @param   pReNative   .
- * @param   off         The current code buffer position.
- * @param   idxHstReg   The host register to load the guest register value into.
- * @param   enmGstReg   The guest register to load.
- *
- * @note This does not mark @a idxHstReg as having a shadow copy of @a enmGstReg,
- *       that is something the caller needs to do if applicable.
- */
-DECLHIDDEN(uint32_t) iemNativeEmitLoadGprWithGstShadowReg(PIEMRECOMPILERSTATE pReNative, uint32_t off,
-                                                          uint8_t idxHstReg, IEMNATIVEGSTREG enmGstReg)
-{
-    Assert((unsigned)enmGstReg < RT_ELEMENTS(g_aGstShadowInfo));
-    Assert(g_aGstShadowInfo[enmGstReg].cb != 0);
-
-    switch (g_aGstShadowInfo[enmGstReg].cb)
-    {
-        case sizeof(uint64_t):
-            return iemNativeEmitLoadGprFromVCpuU64(pReNative, off, idxHstReg, g_aGstShadowInfo[enmGstReg].off);
-        case sizeof(uint32_t):
-            return iemNativeEmitLoadGprFromVCpuU32(pReNative, off, idxHstReg, g_aGstShadowInfo[enmGstReg].off);
-        case sizeof(uint16_t):
-            return iemNativeEmitLoadGprFromVCpuU16(pReNative, off, idxHstReg, g_aGstShadowInfo[enmGstReg].off);
-#if 0 /* not present in the table. */
-        case sizeof(uint8_t):
-            return iemNativeEmitLoadGprFromVCpuU8(pReNative, off, idxHstReg, g_aGstShadowInfo[enmGstReg].off);
-#endif
-        default:
-            AssertFailedReturn(UINT32_MAX);
-    }
-}
-
-
-#ifdef VBOX_STRICT
-/**
- * Emitting code that checks that the content of register @a idxReg is the same
- * as what's in the guest register @a enmGstReg, resulting in a breakpoint
- * instruction if that's not the case.
- *
- * @note May of course trash IEMNATIVE_REG_FIXED_TMP0.
- *       Trashes EFLAGS on AMD64.
- */
-static uint32_t iemNativeEmitGuestRegValueCheck(PIEMRECOMPILERSTATE pReNative, uint32_t off,
-                                                uint8_t idxReg, IEMNATIVEGSTREG enmGstReg)
-{
-# ifdef RT_ARCH_AMD64
-    uint8_t *pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 32);
-    AssertReturn(pbCodeBuf, UINT32_MAX);
-
-    /* cmp reg, [mem] */
-    if (g_aGstShadowInfo[enmGstReg].cb == sizeof(uint8_t))
-    {
-        if (idxReg >= 8)
-            pbCodeBuf[off++] = X86_OP_REX_R;
-        pbCodeBuf[off++] = 0x38;
-    }
+
+DECL_FORCE_INLINE(uint8_t) iemNativeRegMarkAllocated(PIEMRECOMPILERSTATE pReNative, unsigned idxReg,
+                                                     IEMNATIVEWHAT enmWhat, uint8_t idxVar = UINT8_MAX) RT_NOEXCEPT
+{
+    pReNative->bmHstRegs |= RT_BIT_32(idxReg);
+
+    pReNative->aHstRegs[idxReg].enmWhat        = enmWhat;
+    pReNative->aHstRegs[idxReg].fGstRegShadows = 0;
+    pReNative->aHstRegs[idxReg].idxVar         = idxVar;
+    return (uint8_t)idxReg;
+}
+
+
+/**
+ * Locate a register, possibly freeing one up.
+ *
+ * This ASSUMES the caller has done the minimal/optimal allocation checks and
+ * failed.
+ */
+static uint8_t iemNativeRegAllocFindFree(PIEMRECOMPILERSTATE pReNative, uint32_t *poff, bool fAllowVolatile) RT_NOEXCEPT
+{
+    uint32_t fRegMask = fAllowVolatile
+                      ? IEMNATIVE_HST_GREG_MASK & ~IEMNATIVE_REG_FIXED_MASK
+                      : IEMNATIVE_HST_GREG_MASK & ~(IEMNATIVE_REG_FIXED_MASK | IEMNATIVE_CALL_VOLATILE_GREG_MASK);
+
+    /*
+     * Try a freed register that's shadowing a guest register
+     */
+    uint32_t fRegs = ~pReNative->bmHstRegs & fRegMask;
+    if (fRegs)
+    {
+        /** @todo pick better here:    */
+        unsigned const idxReg = ASMBitFirstSetU32(fRegs) - 1;
+
+        Assert(pReNative->aHstRegs[idxReg].fGstRegShadows != 0);
+        Assert(   (pReNative->aHstRegs[idxReg].fGstRegShadows & pReNative->bmGstRegShadows)
+               == pReNative->aHstRegs[idxReg].fGstRegShadows);
+        Assert(pReNative->bmHstRegsWithGstShadow & RT_BIT_32(idxReg));
+
+        pReNative->bmGstRegShadows        &= ~pReNative->aHstRegs[idxReg].fGstRegShadows;
+        pReNative->bmHstRegsWithGstShadow &= ~RT_BIT_32(idxReg);
+        pReNative->aHstRegs[idxReg].fGstRegShadows = 0;
+        return idxReg;
+    }
+
+    /*
+     * Try free up a variable that's in a register.
+     *
+     * We do two rounds here, first evacuating variables we don't need to be
+     * saved on the stack, then in the second round move things to the stack.
+     */
+    for (uint32_t iLoop = 0; iLoop < 2; iLoop++)
+    {
+        uint32_t fVars = pReNative->bmVars;
+        while (fVars)
+        {
+            uint32_t const idxVar = ASMBitFirstSetU32(fVars) - 1;
+            uint8_t const  idxReg = pReNative->aVars[idxVar].idxReg;
+            if (   idxReg < RT_ELEMENTS(pReNative->aHstRegs)
+                && (RT_BIT_32(idxReg) & fRegMask)
+                && (  iLoop == 0
+                    ? pReNative->aVars[idxVar].enmKind != kIemNativeVarKind_Stack
+                    : pReNative->aVars[idxVar].enmKind == kIemNativeVarKind_Stack))
+            {
+                Assert(pReNative->bmHstRegs & RT_BIT_32(idxReg));
+                Assert(   (pReNative->bmGstRegShadows & pReNative->aHstRegs[idxReg].fGstRegShadows)
+                       == pReNative->aHstRegs[idxReg].fGstRegShadows);
+                Assert(   RT_BOOL(pReNative->bmHstRegsWithGstShadow & RT_BIT_32(idxReg))
+                       == RT_BOOL(pReNative->aHstRegs[idxReg].fGstRegShadows));
+
+                if (pReNative->aVars[idxVar].enmKind == kIemNativeVarKind_Stack)
+                {
+                    AssertReturn(pReNative->aVars[idxVar].idxStackSlot != UINT8_MAX, UINT8_MAX);
+                    uint32_t off = *poff;
+                    *poff = off = iemNativeEmitStoreGprByBp(pReNative, off,
+                                                              pReNative->aVars[idxVar].idxStackSlot * sizeof(uint64_t)
+                                                            - IEMNATIVE_FP_OFF_STACK_VARS,
+                                                            idxReg);
+                    AssertReturn(off != UINT32_MAX, UINT8_MAX);
+                }
+
+                pReNative->aVars[idxVar].idxReg    = UINT8_MAX;
+                pReNative->bmGstRegShadows        &= ~pReNative->aHstRegs[idxReg].fGstRegShadows;
+                pReNative->bmHstRegsWithGstShadow &= ~RT_BIT_32(idxReg);
+                pReNative->bmHstRegs              &= ~RT_BIT_32(idxReg);
+                return idxReg;
+            }
+            fVars &= ~RT_BIT_32(idxVar);
+        }
+    }
+
+    AssertFailedReturn(UINT8_MAX);
+}
+
+
+/**
+ * Moves a variable to a different register or spills it onto the stack.
+ *
+ * This must be a stack variable (kIemNativeVarKind_Stack) because the other
+ * kinds can easily be recreated if needed later.
+ *
+ * @returns The new code buffer position, UINT32_MAX on failure.
+ * @param   pReNative       The native recompile state.
+ * @param   off             The current code buffer position.
+ * @param   idxVar          The variable index.
+ * @param   fForbiddenRegs  Mask of the forbidden registers.  Defaults to
+ *                          call-volatile registers.
+ */
+static uint32_t iemNativeRegMoveOrSpillStackVar(PIEMRECOMPILERSTATE pReNative, uint32_t off, uint8_t idxVar,
+                                                uint32_t fForbiddenRegs = IEMNATIVE_CALL_VOLATILE_GREG_MASK)
+{
+    Assert(idxVar < RT_ELEMENTS(pReNative->aVars));
+    Assert(pReNative->aVars[idxVar].enmKind == kIemNativeVarKind_Stack);
+
+    uint8_t const idxRegOld = pReNative->aVars[idxVar].idxReg;
+    Assert(idxRegOld < RT_ELEMENTS(pReNative->aHstRegs));
+    Assert(pReNative->bmHstRegs & RT_BIT_32(idxRegOld));
+    Assert(pReNative->aHstRegs[idxRegOld].enmWhat == kIemNativeWhat_Var);
+    Assert(   (pReNative->bmGstRegShadows & pReNative->aHstRegs[idxRegOld].fGstRegShadows)
+           == pReNative->aHstRegs[idxRegOld].fGstRegShadows);
+    Assert(   RT_BOOL(pReNative->bmHstRegsWithGstShadow & RT_BIT_32(idxRegOld))
+           == RT_BOOL(pReNative->aHstRegs[idxRegOld].fGstRegShadows));
+
+
+    /** @todo Add statistics on this.*/
+    /** @todo Implement basic variable liveness analysis (python) so variables
+     * can be freed immediately once no longer used.  This has the potential to
+     * be trashing registers and stack for dead variables. */
+
+    /*
+     * First try move it to a different register, as that's cheaper.
+     */
+    fForbiddenRegs |= RT_BIT_32(idxRegOld);
+    fForbiddenRegs |= IEMNATIVE_REG_FIXED_MASK;
+    uint32_t fRegs = ~pReNative->bmHstRegs & ~fForbiddenRegs;
+    if (fRegs)
+    {
+        /* Avoid using shadow registers, if possible. */
+        if (fRegs & ~pReNative->bmHstRegsWithGstShadow)
+            fRegs &= ~pReNative->bmHstRegsWithGstShadow;
+        unsigned const idxRegNew = ASMBitFirstSetU32(fRegs) - 1;
+
+        uint64_t fGstRegShadows = pReNative->aHstRegs[idxRegOld].fGstRegShadows;
+        pReNative->aHstRegs[idxRegNew].fGstRegShadows = fGstRegShadows;
+        pReNative->aHstRegs[idxRegNew].enmWhat        = kIemNativeWhat_Var;
+        pReNative->aHstRegs[idxRegNew].idxVar         = idxVar;
+        if (fGstRegShadows)
+        {
+            pReNative->bmHstRegsWithGstShadow |= RT_BIT_32(idxRegNew);
+            while (fGstRegShadows)
+            {
+                unsigned const idxGstReg = ASMBitFirstSetU64(fGstRegShadows);
+                fGstRegShadows &= ~RT_BIT_64(idxGstReg);
+
+                Assert(pReNative->aidxGstRegShadows[idxGstReg] == idxRegOld);
+                pReNative->aidxGstRegShadows[idxGstReg] = idxRegNew;
+            }
+        }
+
+        pReNative->aVars[idxVar].idxReg = (uint8_t)idxRegNew;
+        pReNative->bmHstRegs           |= RT_BIT_32(idxRegNew);
+    }
+    /*
+     * Otherwise we must spill the register onto the stack.
+     */
     else
     {
-        if (g_aGstShadowInfo[enmGstReg].cb == sizeof(uint64_t))
-            pbCodeBuf[off++] = X86_OP_REX_W | (idxReg < 8 ? 0 : X86_OP_REX_R);
+        AssertReturn(pReNative->aVars[idxVar].idxStackSlot != UINT8_MAX, UINT32_MAX);
+        off = iemNativeEmitStoreGprByBp(pReNative, off,
+                                        pReNative->aVars[idxVar].idxStackSlot * sizeof(uint64_t) - IEMNATIVE_FP_OFF_STACK_VARS,
+                                        idxRegOld);
+        AssertReturn(off != UINT32_MAX, UINT32_MAX);
+
+        pReNative->bmHstRegsWithGstShadow &= ~RT_BIT_32(idxRegOld);
+        pReNative->bmGstRegShadows        &= ~pReNative->aHstRegs[idxRegOld].fGstRegShadows;
+    }
+
+    pReNative->bmHstRegs &= ~RT_BIT_32(idxRegOld);
+    pReNative->aHstRegs[idxRegOld].fGstRegShadows = 0;
+    return off;
+}
+
+
+/**
+ * Allocates a temporary host general purpose register.
+ *
+ * This may emit code to save register content onto the stack in order to free
+ * up a register.
+ *
+ * @returns The host register number, UINT8_MAX on failure.
+ * @param   pReNative       The native recompile state.
+ * @param   poff            Pointer to the variable with the code buffer position.
+ *                          This will be update if we need to move a variable from
+ *                          register to stack in order to satisfy the request.
+ * @param   fPreferVolatile Wheter to prefer volatile over non-volatile
+ *                          registers (@c true, default) or the other way around
+ *                          (@c false, for iemNativeRegAllocTmpForGuestReg()).
+ */
+DECLHIDDEN(uint8_t) iemNativeRegAllocTmp(PIEMRECOMPILERSTATE pReNative, uint32_t *poff,
+                                         bool fPreferVolatile /*= true*/) RT_NOEXCEPT
+{
+    /*
+     * Try find a completely unused register, preferably a call-volatile one.
+     */
+    uint8_t  idxReg;
+    uint32_t fRegs = ~pReNative->bmHstRegs
+                   & ~pReNative->bmHstRegsWithGstShadow
+                   & (~IEMNATIVE_REG_FIXED_MASK & IEMNATIVE_HST_GREG_MASK);
+    if (fRegs)
+    {
+        if (fPreferVolatile)
+            idxReg = (uint8_t)ASMBitFirstSetU32(  fRegs & IEMNATIVE_CALL_VOLATILE_GREG_MASK
+                                                ? fRegs & IEMNATIVE_CALL_VOLATILE_GREG_MASK : fRegs) - 1;
         else
-        {
-            if (g_aGstShadowInfo[enmGstReg].cb == sizeof(uint16_t))
-                pbCodeBuf[off++] = X86_OP_PRF_SIZE_OP;
-            else
-                AssertReturn(g_aGstShadowInfo[enmGstReg].cb == sizeof(uint32_t), UINT32_MAX);
-            if (idxReg >= 8)
-                pbCodeBuf[off++] = X86_OP_REX_R;
-        }
-        pbCodeBuf[off++] = 0x39;
-    }
-    off = iemNativeEmitGprByVCpuDisp(pbCodeBuf, off, idxReg, g_aGstShadowInfo[enmGstReg].off);
-
-    /* je/jz +1 */
-    pbCodeBuf[off++] = 0x74;
-    pbCodeBuf[off++] = 0x01;
-
-    /* int3 */
-    pbCodeBuf[off++] = 0xcc;
-
-    /* For values smaller than the register size, we must check that the rest
-       of the register is all zeros. */
-    if (g_aGstShadowInfo[enmGstReg].cb < sizeof(uint32_t))
-    {
-        /* test reg64, imm32 */
-        pbCodeBuf[off++] = X86_OP_REX_W | (idxReg < 8 ? 0 : X86_OP_REX_B);
-        pbCodeBuf[off++] = 0xf7;
-        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 0, idxReg & 7);
-        pbCodeBuf[off++] = 0;
-        pbCodeBuf[off++] = g_aGstShadowInfo[enmGstReg].cb > sizeof(uint8_t) ? 0 : 0xff;
-        pbCodeBuf[off++] = 0xff;
-        pbCodeBuf[off++] = 0xff;
-
-        /* je/jz +1 */
-        pbCodeBuf[off++] = 0x74;
-        pbCodeBuf[off++] = 0x01;
-
-        /* int3 */
-        pbCodeBuf[off++] = 0xcc;
-    }
-    else if (g_aGstShadowInfo[enmGstReg].cb == sizeof(uint32_t))
-    {
-        /* rol reg64, 32 */
-        pbCodeBuf[off++] = X86_OP_REX_W | (idxReg < 8 ? 0 : X86_OP_REX_B);
-        pbCodeBuf[off++] = 0xc1;
-        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 0, idxReg & 7);
-        pbCodeBuf[off++] = 32;
-
-        /* test reg32, ffffffffh */
-        if (idxReg >= 8)
-            pbCodeBuf[off++] = X86_OP_REX_B;
-        pbCodeBuf[off++] = 0xf7;
-        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 0, idxReg & 7);
-        pbCodeBuf[off++] = 0xff;
-        pbCodeBuf[off++] = 0xff;
-        pbCodeBuf[off++] = 0xff;
-        pbCodeBuf[off++] = 0xff;
-
-        /* je/jz +1 */
-        pbCodeBuf[off++] = 0x74;
-        pbCodeBuf[off++] = 0x01;
-
-        /* int3 */
-        pbCodeBuf[off++] = 0xcc;
-
-        /* rol reg64, 32 */
-        pbCodeBuf[off++] = X86_OP_REX_W | (idxReg < 8 ? 0 : X86_OP_REX_B);
-        pbCodeBuf[off++] = 0xc1;
-        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 0, idxReg & 7);
-        pbCodeBuf[off++] = 32;
-    }
-
-# elif defined(RT_ARCH_ARM64)
-    /* mov TMP0, [gstreg] */
-    off = iemNativeEmitLoadGprWithGstShadowReg(pReNative, off, IEMNATIVE_REG_FIXED_TMP0, enmGstReg);
-
-    uint32_t *pu32CodeBuf = iemNativeInstrBufEnsure(pReNative, off, 3);
-    AssertReturn(pu32CodeBuf, UINT32_MAX);
-    /* sub tmp0, tmp0, idxReg */
-    pu32CodeBuf[off++] = Armv8A64MkInstrAddSubReg(true /*fSub*/, IEMNATIVE_REG_FIXED_TMP0, IEMNATIVE_REG_FIXED_TMP0, idxReg);
-    /* cbz tmp0, +1 */
-    pu32CodeBuf[off++] = Armv8A64MkInstrCbzCbnz(false /*fJmpIfNotZero*/, 1, IEMNATIVE_REG_FIXED_TMP0);
-    /* brk #0x1000+enmGstReg */
-    pu32CodeBuf[off++] = Armv8A64MkInstrBrk((uint32_t)enmGstReg | UINT32_C(0x1000));
-
-# else
-#  error "Port me!"
-# endif
-    return off;
-}
-#endif /* VBOX_STRICT */
+            idxReg = (uint8_t)ASMBitFirstSetU32(  fRegs & ~IEMNATIVE_CALL_VOLATILE_GREG_MASK
+                                                ? fRegs & ~IEMNATIVE_CALL_VOLATILE_GREG_MASK : fRegs) - 1;
+        Assert(pReNative->aHstRegs[idxReg].fGstRegShadows == 0);
+        Assert(!(pReNative->bmHstRegsWithGstShadow & RT_BIT_32(idxReg)));
+    }
+    else
+    {
+        idxReg = iemNativeRegAllocFindFree(pReNative, poff, true /*fAllowVolatile*/);
+        AssertReturn(idxReg != UINT8_MAX, UINT8_MAX);
+    }
+    return iemNativeRegMarkAllocated(pReNative, idxReg, kIemNativeWhat_Tmp);
+}
+
+
+/**
+ * Allocates a temporary register for loading an immediate value into.
+ *
+ * This will emit code to load the immediate, unless there happens to be an
+ * unused register with the value already loaded.
+ *
+ * The caller will not modify the returned register, it must be considered
+ * read-only.  Free using iemNativeRegFreeTmpImm.
+ *
+ * @returns The host register number, UINT8_MAX on failure.
+ * @param   pReNative       The native recompile state.
+ * @param   poff            Pointer to the variable with the code buffer position.
+ * @param   uImm            The immediate value that the register must hold upon
+ *                          return.
+ * @param   fPreferVolatile Wheter to prefer volatile over non-volatile
+ *                          registers (@c true, default) or the other way around
+ *                          (@c false).
+ *
+ * @note    Reusing immediate values has not been implemented yet.
+ */
+DECLHIDDEN(uint8_t) iemNativeRegAllocTmpImm(PIEMRECOMPILERSTATE pReNative, uint32_t *poff, uint64_t uImm,
+                                            bool fPreferVolatile /*= true*/) RT_NOEXCEPT
+{
+    uint8_t idxReg = iemNativeRegAllocTmp(pReNative, poff, fPreferVolatile);
+    if (idxReg < RT_ELEMENTS(pReNative->aHstRegs))
+    {
+        uint32_t off = *poff;
+        *poff = off = iemNativeEmitLoadGprImm64(pReNative, off, idxReg, uImm);
+        AssertReturnStmt(off != UINT32_MAX, iemNativeRegFreeTmp(pReNative, idxReg), UINT8_MAX);
+    }
+    return idxReg;
+}
 
 
@@ -2946 +2804 @@
 
 
+/*********************************************************************************************************************************
+*   Code Emitters (larger snippets)                                                                                              *
+*********************************************************************************************************************************/
+
+/**
+ * Loads the guest shadow register @a enmGstReg into host reg @a idxHstReg, zero
+ * extending to 64-bit width.
+ *
+ * @returns New code buffer offset on success, UINT32_MAX on failure.
+ * @param   pReNative   .
+ * @param   off         The current code buffer position.
+ * @param   idxHstReg   The host register to load the guest register value into.
+ * @param   enmGstReg   The guest register to load.
+ *
+ * @note This does not mark @a idxHstReg as having a shadow copy of @a enmGstReg,
+ *       that is something the caller needs to do if applicable.
+ */
+DECLHIDDEN(uint32_t) iemNativeEmitLoadGprWithGstShadowReg(PIEMRECOMPILERSTATE pReNative, uint32_t off,
+                                                          uint8_t idxHstReg, IEMNATIVEGSTREG enmGstReg) RT_NOEXCEPT
+{
+    Assert((unsigned)enmGstReg < RT_ELEMENTS(g_aGstShadowInfo));
+    Assert(g_aGstShadowInfo[enmGstReg].cb != 0);
+
+    switch (g_aGstShadowInfo[enmGstReg].cb)
+    {
+        case sizeof(uint64_t):
+            return iemNativeEmitLoadGprFromVCpuU64(pReNative, off, idxHstReg, g_aGstShadowInfo[enmGstReg].off);
+        case sizeof(uint32_t):
+            return iemNativeEmitLoadGprFromVCpuU32(pReNative, off, idxHstReg, g_aGstShadowInfo[enmGstReg].off);
+        case sizeof(uint16_t):
+            return iemNativeEmitLoadGprFromVCpuU16(pReNative, off, idxHstReg, g_aGstShadowInfo[enmGstReg].off);
+#if 0 /* not present in the table. */
+        case sizeof(uint8_t):
+            return iemNativeEmitLoadGprFromVCpuU8(pReNative, off, idxHstReg, g_aGstShadowInfo[enmGstReg].off);
+#endif
+        default:
+            AssertFailedReturn(UINT32_MAX);
+    }
+}
+
+
+#ifdef VBOX_STRICT
+/**
+ * Emitting code that checks that the content of register @a idxReg is the same
+ * as what's in the guest register @a enmGstReg, resulting in a breakpoint
+ * instruction if that's not the case.
+ *
+ * @note May of course trash IEMNATIVE_REG_FIXED_TMP0.
+ *       Trashes EFLAGS on AMD64.
+ */
+static uint32_t iemNativeEmitGuestRegValueCheck(PIEMRECOMPILERSTATE pReNative, uint32_t off,
+                                                uint8_t idxReg, IEMNATIVEGSTREG enmGstReg)
+{
+# ifdef RT_ARCH_AMD64
+    uint8_t *pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 32);
+    AssertReturn(pbCodeBuf, UINT32_MAX);
+
+    /* cmp reg, [mem] */
+    if (g_aGstShadowInfo[enmGstReg].cb == sizeof(uint8_t))
+    {
+        if (idxReg >= 8)
+            pbCodeBuf[off++] = X86_OP_REX_R;
+        pbCodeBuf[off++] = 0x38;
+    }
+    else
+    {
+        if (g_aGstShadowInfo[enmGstReg].cb == sizeof(uint64_t))
+            pbCodeBuf[off++] = X86_OP_REX_W | (idxReg < 8 ? 0 : X86_OP_REX_R);
+        else
+        {
+            if (g_aGstShadowInfo[enmGstReg].cb == sizeof(uint16_t))
+                pbCodeBuf[off++] = X86_OP_PRF_SIZE_OP;
+            else
+                AssertReturn(g_aGstShadowInfo[enmGstReg].cb == sizeof(uint32_t), UINT32_MAX);
+            if (idxReg >= 8)
+                pbCodeBuf[off++] = X86_OP_REX_R;
+        }
+        pbCodeBuf[off++] = 0x39;
+    }
+    off = iemNativeEmitGprByVCpuDisp(pbCodeBuf, off, idxReg, g_aGstShadowInfo[enmGstReg].off);
+
+    /* je/jz +1 */
+    pbCodeBuf[off++] = 0x74;
+    pbCodeBuf[off++] = 0x01;
+
+    /* int3 */
+    pbCodeBuf[off++] = 0xcc;
+
+    /* For values smaller than the register size, we must check that the rest
+       of the register is all zeros. */
+    if (g_aGstShadowInfo[enmGstReg].cb < sizeof(uint32_t))
+    {
+        /* test reg64, imm32 */
+        pbCodeBuf[off++] = X86_OP_REX_W | (idxReg < 8 ? 0 : X86_OP_REX_B);
+        pbCodeBuf[off++] = 0xf7;
+        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 0, idxReg & 7);
+        pbCodeBuf[off++] = 0;
+        pbCodeBuf[off++] = g_aGstShadowInfo[enmGstReg].cb > sizeof(uint8_t) ? 0 : 0xff;
+        pbCodeBuf[off++] = 0xff;
+        pbCodeBuf[off++] = 0xff;
+
+        /* je/jz +1 */
+        pbCodeBuf[off++] = 0x74;
+        pbCodeBuf[off++] = 0x01;
+
+        /* int3 */
+        pbCodeBuf[off++] = 0xcc;
+    }
+    else if (g_aGstShadowInfo[enmGstReg].cb == sizeof(uint32_t))
+    {
+        /* rol reg64, 32 */
+        pbCodeBuf[off++] = X86_OP_REX_W | (idxReg < 8 ? 0 : X86_OP_REX_B);
+        pbCodeBuf[off++] = 0xc1;
+        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 0, idxReg & 7);
+        pbCodeBuf[off++] = 32;
+
+        /* test reg32, ffffffffh */
+        if (idxReg >= 8)
+            pbCodeBuf[off++] = X86_OP_REX_B;
+        pbCodeBuf[off++] = 0xf7;
+        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 0, idxReg & 7);
+        pbCodeBuf[off++] = 0xff;
+        pbCodeBuf[off++] = 0xff;
+        pbCodeBuf[off++] = 0xff;
+        pbCodeBuf[off++] = 0xff;
+
+        /* je/jz +1 */
+        pbCodeBuf[off++] = 0x74;
+        pbCodeBuf[off++] = 0x01;
+
+        /* int3 */
+        pbCodeBuf[off++] = 0xcc;
+
+        /* rol reg64, 32 */
+        pbCodeBuf[off++] = X86_OP_REX_W | (idxReg < 8 ? 0 : X86_OP_REX_B);
+        pbCodeBuf[off++] = 0xc1;
+        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 0, idxReg & 7);
+        pbCodeBuf[off++] = 32;
+    }
+
+# elif defined(RT_ARCH_ARM64)
+    /* mov TMP0, [gstreg] */
+    off = iemNativeEmitLoadGprWithGstShadowReg(pReNative, off, IEMNATIVE_REG_FIXED_TMP0, enmGstReg);
+
+    uint32_t *pu32CodeBuf = iemNativeInstrBufEnsure(pReNative, off, 3);
+    AssertReturn(pu32CodeBuf, UINT32_MAX);
+    /* sub tmp0, tmp0, idxReg */
+    pu32CodeBuf[off++] = Armv8A64MkInstrAddSubReg(true /*fSub*/, IEMNATIVE_REG_FIXED_TMP0, IEMNATIVE_REG_FIXED_TMP0, idxReg);
+    /* cbz tmp0, +1 */
+    pu32CodeBuf[off++] = Armv8A64MkInstrCbzCbnz(false /*fJmpIfNotZero*/, 1, IEMNATIVE_REG_FIXED_TMP0);
+    /* brk #0x1000+enmGstReg */
+    pu32CodeBuf[off++] = Armv8A64MkInstrBrk((uint32_t)enmGstReg | UINT32_C(0x1000));
+
+# else
+#  error "Port me!"
+# endif
+    return off;
+}
+#endif /* VBOX_STRICT */
+
+
+
 /**
  * Emits a code for checking the return code of a call and rcPassUp, returning
@@ -2960 +2980 @@
     /* edx = rcPassUp */
     off = iemNativeEmitLoadGprFromVCpuU32(pReNative, off, X86_GREG_xDX, RT_UOFFSETOF(VMCPUCC, iem.s.rcPassUp));
-    AssertReturn(off != UINT32_MAX, UINT32_MAX);
-
-    uint8_t *pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 10);
+# ifdef IEMNATIVE_WITH_INSTRUCTION_COUNTING
+    off = iemNativeEmitLoadGpr8Imm(pReNative, off, X86_GREG_xCX, idxInstr);
+# endif
+
+    /* edx = eax | rcPassUp */
+    uint8_t *pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 2);
     AssertReturn(pbCodeBuf, UINT32_MAX);
-
-    /* edx = eax | rcPassUp */
     pbCodeBuf[off++] = 0x0b;                    /* or edx, eax */
     pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, X86_GREG_xDX, X86_GREG_xAX);
 
-    /* Jump to non-zero status return path, loading cl with the instruction number. */
-    pbCodeBuf[off++] = 0xb0 + X86_GREG_xCX;     /* mov cl, imm8 (pCallEntry->idxInstr) */
-    pbCodeBuf[off++] = idxInstr;
-
-    pbCodeBuf[off++] = 0x0f;                    /* jnz rel32 */
-    pbCodeBuf[off++] = 0x85;
-    uint32_t const idxLabel = iemNativeMakeLabel(pReNative, kIemNativeLabelType_NonZeroRetOrPassUp);
-    AssertReturn(idxLabel != UINT32_MAX, UINT32_MAX);
-    AssertReturn(iemNativeAddFixup(pReNative, off, idxLabel, kIemNativeFixupType_Rel32, -4), UINT32_MAX);
-    pbCodeBuf[off++] = 0x00;
-    pbCodeBuf[off++] = 0x00;
-    pbCodeBuf[off++] = 0x00;
-    pbCodeBuf[off++] = 0x00;
+    /* Jump to non-zero status return path. */
+    off = iemNativeEmitJnzToNewLabel(pReNative, off, kIemNativeLabelType_NonZeroRetOrPassUp);
 
     /* done. */
@@ -3261 +3271 @@
         off = iemNativeEmitLoadGprImm64(pReNative, off, X86_GREG_xCX, pCallEntry->auParams[2]);
 # endif
-    off = iemNativeEmitLoadGprImm64(pReNative, off, X86_GREG_xAX, (uintptr_t)g_apfnIemThreadedFunctions[pCallEntry->enmFunction]);
-
-    uint8_t *pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 2);
-    AssertReturn(pbCodeBuf, UINT32_MAX);
-    pbCodeBuf[off++] = 0xff;                    /* call rax */
-    pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 2, X86_GREG_xAX);
+
+    off = iemNativeEmitCallImm(pReNative, off, (uintptr_t)g_apfnIemThreadedFunctions[pCallEntry->enmFunction]);
 
 # if defined(VBOXSTRICTRC_STRICT_ENABLED) && defined(RT_OS_WINDOWS)
@@ -3283 +3289 @@
     if (cParams > 2)
         off = iemNativeEmitLoadGprImm64(pReNative, off, IEMNATIVE_CALL_ARG3_GREG, pCallEntry->auParams[2]);
-    off = iemNativeEmitLoadGprImm64(pReNative, off, IEMNATIVE_REG_FIXED_TMP0,
-                                    (uintptr_t)g_apfnIemThreadedFunctions[pCallEntry->enmFunction]);
-
-    uint32_t *pu32CodeBuf = iemNativeInstrBufEnsure(pReNative, off, 1);
-    AssertReturn(pu32CodeBuf, UINT32_MAX);
-
-    pu32CodeBuf[off++] = Armv8A64MkInstrBlr(IEMNATIVE_REG_FIXED_TMP0);
+
+    off = iemNativeEmitCallImm(pReNative, off, (uintptr_t)g_apfnIemThreadedFunctions[pCallEntry->enmFunction]);
 
 #else
@@ -3321 +3322 @@
         off = iemNativeEmitLoadGpr8Imm(pReNative, off, IEMNATIVE_CALL_ARG1_GREG, 0);
 #endif
-#ifdef RT_ARCH_AMD64
-        off = iemNativeEmitLoadGprImm64(pReNative, off, X86_GREG_xAX, (uintptr_t)iemNativeHlpExecRaiseGp0);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
-
-        /* call rax */
-        uint8_t *pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 2);
-        AssertReturn(pbCodeBuf, UINT32_MAX);
-        pbCodeBuf[off++] = 0xff;
-        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 2, X86_GREG_xAX);
-
-#elif defined(RT_ARCH_ARM64)
-        off = iemNativeEmitLoadGprImm64(pReNative, off, IEMNATIVE_REG_FIXED_TMP0, (uintptr_t)iemNativeHlpExecRaiseGp0);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
-        pu32CodeBuf[off++] = Armv8A64MkInstrBlr(IEMNATIVE_REG_FIXED_TMP0);
-#else
-# error "Port me"
-#endif
+        off = iemNativeEmitCallImm(pReNative, off, (uintptr_t)iemNativeHlpExecRaiseGp0);
 
         /* jump back to the return sequence. */
         off = iemNativeEmitJmpToLabel(pReNative, off, iemNativeFindLabel(pReNative, kIemNativeLabelType_Return));
-
-#ifdef RT_ARCH_AMD64
-        /* int3 poison */
-        pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 1);
-        AssertReturn(pbCodeBuf, UINT32_MAX);
-        pbCodeBuf[off++] = 0xcc;
-#endif
     }
     return off;
@@ -3377 +3355 @@
         /* Call helper and jump to return point. */
 # ifdef RT_OS_WINDOWS
+#  ifdef IEMNATIVE_WITH_INSTRUCTION_COUNTING
         off = iemNativeEmitLoadGprFromGpr(pReNative, off, X86_GREG_x8,  X86_GREG_xCX); /* cl = instruction number */
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
+#  endif
         off = iemNativeEmitLoadGprFromGpr(pReNative, off, X86_GREG_xCX, IEMNATIVE_REG_FIXED_PVMCPU);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
         off = iemNativeEmitLoadGprFromGpr(pReNative, off, X86_GREG_xDX, X86_GREG_xAX);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
 # else
         off = iemNativeEmitLoadGprFromGpr(pReNative, off, X86_GREG_xDI, IEMNATIVE_REG_FIXED_PVMCPU);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
         off = iemNativeEmitLoadGprFromGpr(pReNative, off, X86_GREG_xSI, X86_GREG_xAX);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
+#  ifdef IEMNATIVE_WITH_INSTRUCTION_COUNTING
         off = iemNativeEmitLoadGprFromGpr(pReNative, off, X86_GREG_xDX, X86_GREG_xCX); /* cl = instruction number */
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
+#  endif
 # endif
-        off = iemNativeEmitLoadGprImm64(pReNative, off, X86_GREG_xAX, (uintptr_t)iemNativeHlpExecStatusCodeFiddling);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
-
-        pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 10);
-        AssertReturn(pbCodeBuf, UINT32_MAX);
-        pbCodeBuf[off++] = 0xff;                    /* call rax */
-        pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 2, X86_GREG_xAX);
-
-        /* Jump to common return point. */
-        uint32_t offRel = pReNative->paLabels[idxReturnLabel].off - (off + 2);
-        if (-(int32_t)offRel <= 127)
-        {
-            pbCodeBuf[off++] = 0xeb;                /* jmp rel8 */
-            pbCodeBuf[off++] = (uint8_t)offRel;
-            off++;
-        }
-        else
-        {
-            offRel -= 3;
-            pbCodeBuf[off++] = 0xe9;                /* jmp rel32 */
-            pbCodeBuf[off++] = RT_BYTE1(offRel);
-            pbCodeBuf[off++] = RT_BYTE2(offRel);
-            pbCodeBuf[off++] = RT_BYTE3(offRel);
-            pbCodeBuf[off++] = RT_BYTE4(offRel);
-        }
-        pbCodeBuf[off++] = 0xcc;                    /* int3 poison */
+# ifndef IEMNATIVE_WITH_INSTRUCTION_COUNTING
+        off = iemNativeEmitLoadGpr8Imm(pReNative, off, X86_GREG_xCX, 0);
+# endif
 
 #elif defined(RT_ARCH_ARM64)
@@ -3423 +3376 @@
          */
         off = iemNativeEmitLoadGprFromGpr(pReNative, off, IEMNATIVE_CALL_ARG1_GREG, IEMNATIVE_CALL_RET_GREG);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
         off = iemNativeEmitLoadGprFromGpr(pReNative, off, IEMNATIVE_CALL_ARG0_GREG, IEMNATIVE_REG_FIXED_PVMCPU);
-        AssertReturn(off != UINT32_MAX, UINT32_MAX);
         /* IEMNATIVE_CALL_ARG2_GREG is already set. */
         off = iemNativeEmitLoadGprImm64(pReNative, off, IEMNATIVE_REG_FIXED_TMP0, (uintptr_t)iemNativeHlpExecStatusCodeFiddling);
         AssertReturn(off != UINT32_MAX, UINT32_MAX);
-
-        uint32_t *pu32CodeBuf = iemNativeInstrBufEnsure(pReNative, off, 2);
-        AssertReturn(pu32CodeBuf, UINT32_MAX);
-        pu32CodeBuf[off++] = Armv8A64MkInstrBlr(IEMNATIVE_REG_FIXED_TMP0);
-
-        /* Jump back to the common return point. */
-        int32_t const offRel = pReNative->paLabels[idxReturnLabel].off - off;
-        pu32CodeBuf[off++] = Armv8A64MkInstrB(offRel);
 #else
 # error "port me"
 #endif
+
+        off = iemNativeEmitCallImm(pReNative, off, (uintptr_t)iemNativeHlpExecStatusCodeFiddling);
+        off = iemNativeEmitJmpToLabel(pReNative, off, idxReturnLabel);
     }
     return off;

trunk/src/VBox/VMM/include/IEMN8veRecompiler.h

@@ -574 +574 @@
 DECLHIDDEN(uint32_t)        iemNativeRegFlushPendingWrites(PIEMRECOMPILERSTATE pReNative, uint32_t off) RT_NOEXCEPT;
 
+DECLHIDDEN(uint32_t)        iemNativeEmitLoadGprWithGstShadowReg(PIEMRECOMPILERSTATE pReNative, uint32_t off,
+                                                                 uint8_t idxHstReg, IEMNATIVEGSTREG enmGstReg) RT_NOEXCEPT;
 DECLHIDDEN(uint32_t)        iemNativeEmitCheckCallRetAndPassUp(PIEMRECOMPILERSTATE pReNative, uint32_t off,
                                                                uint8_t idxInstr) RT_NOEXCEPT;
@@ -1645 +1647 @@
 
 /**
- * Emits a JMP rel32 / B imm19 to the given label (ASSUMED requiring fixup).
+ * Emits a JMP rel32 / B imm19 to the given label.
  */
 DECLINLINE(uint32_t) iemNativeEmitJmpToLabel(PIEMRECOMPILERSTATE pReNative, uint32_t off, uint32_t idxLabel)
 {
-#ifdef RT_ARCH_AMD64
-    /* jnz rel32 */
-    uint8_t * const pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 5);
-    AssertReturn(pbCodeBuf, UINT32_MAX);
-    pbCodeBuf[off++] = 0xe9;
-    AssertReturn(iemNativeAddFixup(pReNative, off, idxLabel, kIemNativeFixupType_Rel32, -4), UINT32_MAX);
-    pbCodeBuf[off++] = 0xfe;
-    pbCodeBuf[off++] = 0xff;
-    pbCodeBuf[off++] = 0xff;
-    pbCodeBuf[off++] = 0xff;
+    Assert(idxLabel < pReNative->cLabels);
+
+#ifdef RT_ARCH_AMD64
+    uint8_t * const pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 6);
+    AssertReturn(pbCodeBuf, UINT32_MAX);
+    if (pReNative->paLabels[idxLabel].off != UINT32_MAX)
+    {
+        uint32_t offRel = pReNative->paLabels[idxLabel].off - (off + 2);
+        if ((int32_t)offRel < 128 && (int32_t)offRel >= -128)
+        {
+            pbCodeBuf[off++] = 0xeb;                /* jmp rel8 */
+            pbCodeBuf[off++] = (uint8_t)offRel;
+            off++;
+        }
+        else
+        {
+            offRel -= 3;
+            pbCodeBuf[off++] = 0xe9;                /* jmp rel32 */
+            pbCodeBuf[off++] = RT_BYTE1(offRel);
+            pbCodeBuf[off++] = RT_BYTE2(offRel);
+            pbCodeBuf[off++] = RT_BYTE3(offRel);
+            pbCodeBuf[off++] = RT_BYTE4(offRel);
+        }
+    }
+    else
+    {
+        pbCodeBuf[off++] = 0xe9;                    /* jmp rel32 */
+        AssertReturn(iemNativeAddFixup(pReNative, off, idxLabel, kIemNativeFixupType_Rel32, -4), UINT32_MAX);
+        pbCodeBuf[off++] = 0xfe;
+        pbCodeBuf[off++] = 0xff;
+        pbCodeBuf[off++] = 0xff;
+        pbCodeBuf[off++] = 0xff;
+    }
+    pbCodeBuf[off++] = 0xcc;                        /* int3 poison */
 
 #elif defined(RT_ARCH_ARM64)
     uint32_t *pu32CodeBuf = iemNativeInstrBufEnsure(pReNative, off, 1);
     AssertReturn(pu32CodeBuf, UINT32_MAX);
-    AssertReturn(iemNativeAddFixup(pReNative, off, idxLabel, kIemNativeFixupType_RelImm19At5), UINT32_MAX);
-    pu32CodeBuf[off++] = Armv8A64MkInstrB(-1);
+    if (pReNative->paLabels[idxLabel].off != UINT32_MAX)
+        pu32CodeBuf[off++] = Armv8A64MkInstrB(pReNative->paLabels[idxReturnLabel].off - off);
+    else
+    {
+        AssertReturn(iemNativeAddFixup(pReNative, off, idxLabel, kIemNativeFixupType_RelImm19At5), UINT32_MAX);
+        pu32CodeBuf[off++] = Armv8A64MkInstrB(-1);
+    }
 
 #else
@@ -1700 +1731 @@
                                              uint32_t idxLabel, IEMNATIVEINSTRCOND enmCond)
 {
+    Assert(idxLabel < pReNative->cLabels);
+
 #ifdef RT_ARCH_AMD64
     /* jcc rel32 */
@@ -1937 +1970 @@
 
 
+/**
+ * Emits a call to a 64-bit address.
+ */
+DECLINLINE(uint32_t) iemNativeEmitCallImm(PIEMRECOMPILERSTATE pReNative, uint32_t off, uintptr_t uPfn)
+{
+#ifdef RT_ARCH_AMD64
+    off = iemNativeEmitLoadGprImm64(pReNative, off, X86_GREG_xAX, uPfn);
+
+    /* call rax */
+    uint8_t * const pbCodeBuf = iemNativeInstrBufEnsure(pReNative, off, 2);
+    AssertReturn(pbCodeBuf, UINT32_MAX);
+    pbCodeBuf[off++] = 0xff;
+    pbCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, 2, X86_GREG_xAX);
+
+#elif defined(RT_ARCH_ARM64)
+    off = iemNativeEmitLoadGprImm64(pReNative, off, IEMNATIVE_REG_FIXED_TMP0, uPfn);
+
+    uint32_t * const pu32CodeBuf = iemNativeInstrBufEnsure(pReNative, off, 1);
+    AssertReturn(pu32CodeBuf, UINT32_MAX);
+    pu32CodeBuf[off++] = Armv8A64MkInstrBlr(IEMNATIVE_REG_FIXED_TMP0);
+#else
+# error "port me"
+#endif
+    return off;
+}
+
+
 
 /** @} */