include

Timestamp:

Aug 21, 2024 2:01:05 PM (6 months ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

164480

Message:

VMM/IEM: Eliminated an unnecessary CS.LIM check in IEM_MC_REL_JMP_XXX for FLAT 32-bit mode together with a unnecessary canonical target RIP check for 64-bit mode jumps within the same page (todo 5). bugref:10720

Location:

trunk/src/VBox/VMM/include

Files:

: 2 edited

IEMInline.h (modified) (18 diffs)
IEMOpHlp.h (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/src/VBox/VMM/include/IEMInline.h

-              r105465
+              r105768
 /**
  * Adds a 8-bit signed jump offset to EIP, on 386 or later from 16-bit or 32-bit
  * code (never 64-bit).
+ * Adds a 8-bit signed jump offset to RIP from 64-bit code when the caller is
+ * sure it stays within the same page.
+ *
  * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
 …
  *                              taking the wrong conditional branhc.
  */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS8AndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
+                                                                             IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    Assert(enmEffOpSize == IEMMODE_32BIT || enmEffOpSize == IEMMODE_16BIT);
+    uint32_t uNewEip = pVCpu->cpum.GstCtx.eip + cbInstr + (int32_t)offNextInstr;
+    if (enmEffOpSize == IEMMODE_16BIT)
+        uNewEip &= UINT16_MAX;
+    if (RT_LIKELY(uNewEip <= pVCpu->cpum.GstCtx.cs.u32Limit))
+        pVCpu->cpum.GstCtx.rip = uNewEip;
+    else
+        return iemRaiseGeneralProtectionFault0(pVCpu);
+DECL_FORCE_INLINE(VBOXSTRICTRC)
+iemRegRip64RelativeJumpS8IntraPgAndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
+                                                    IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
+{
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    Assert(enmEffOpSize == IEMMODE_64BIT); RT_NOREF(enmEffOpSize);
+    uint64_t const uNewRip = pVCpu->cpum.GstCtx.rip + cbInstr + (int64_t)offNextInstr;
+    Assert((pVCpu->cpum.GstCtx.rip >> GUEST_PAGE_SHIFT) == (uNewRip >> GUEST_PAGE_SHIFT));
+    pVCpu->cpum.GstCtx.rip = uNewRip;
 #ifndef IEM_WITH_CODE_TLB
 …
 /**
+ * Adds a 8-bit signed jump offset to IP, on a pre-386 CPU.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegIp16RelativeJumpS8AndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                            int8_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    uint16_t const uNewIp = pVCpu->cpum.GstCtx.ip + cbInstr + (int16_t)offNextInstr;
+    if (RT_LIKELY(uNewIp <= pVCpu->cpum.GstCtx.cs.u32Limit))
+        pVCpu->cpum.GstCtx.rip = uNewIp;
+    else
+        return iemRaiseGeneralProtectionFault0(pVCpu);
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 8-bit signed jump offset to RIP from 64-bit code, no checking or
+ * clearing of flags.
+ * Adds a 8-bit signed jump offset to EIP, on 386 or later from 16-bit or 32-bit
+ * code (never 64-bit).
+ *
  * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
 …
  *                              taking the wrong conditional branhc.
  */
 DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegRip64RelativeJumpS8AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
                                                                           IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
+{
     Assert(IEM_IS_64BIT_CODE(pVCpu));
     Assert(enmEffOpSize == IEMMODE_64BIT || enmEffOpSize == IEMMODE_16BIT);
     uint64_t uNewRip = pVCpu->cpum.GstCtx.rip + cbInstr + (int64_t)offNextInstr;
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS8AndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
+                                                                             IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    Assert(enmEffOpSize == IEMMODE_32BIT || enmEffOpSize == IEMMODE_16BIT);
+    uint32_t uNewEip = pVCpu->cpum.GstCtx.eip + cbInstr + (int32_t)offNextInstr;
     if (enmEffOpSize == IEMMODE_16BIT)
+        uNewRip &= UINT16_MAX;
+    if (RT_LIKELY(IEM_IS_CANONICAL(uNewRip)))
+        pVCpu->cpum.GstCtx.rip = uNewRip;
+        uNewEip &= UINT16_MAX;
+    if (RT_LIKELY(uNewEip <= pVCpu->cpum.GstCtx.cs.u32Limit))
+        pVCpu->cpum.GstCtx.rip = uNewEip;
     else
         return iemRaiseGeneralProtectionFault0(pVCpu);
 …
     iemOpcodeFlushLight(pVCpu, cbInstr);
 #endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 8-bit signed jump offset to EIP, on 386 or later from 16-bit or 32-bit
+ * code (never 64-bit), no checking or clearing of flags.
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 8-bit signed jump offset to EIP, on 386 or later from FLAT 32-bit code
+ * (never 64-bit).
+ *
  * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
 …
  *                              taking the wrong conditional branhc.
  */
+DECL_FORCE_INLINE(VBOXSTRICTRC)
+ iemRegEip32RelativeJumpS8FlatAndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
+                                                  IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    Assert(enmEffOpSize == IEMMODE_32BIT || enmEffOpSize == IEMMODE_16BIT);
+    uint32_t uNewEip = pVCpu->cpum.GstCtx.eip + cbInstr + (int32_t)offNextInstr;
+    if (enmEffOpSize == IEMMODE_16BIT)
+        uNewEip &= UINT16_MAX;
+    pVCpu->cpum.GstCtx.rip = uNewEip;
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 8-bit signed jump offset to IP, on a pre-386 CPU.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegIp16RelativeJumpS8AndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                            int8_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    uint16_t const uNewIp = pVCpu->cpum.GstCtx.ip + cbInstr + (int16_t)offNextInstr;
+    if (RT_LIKELY(uNewIp <= pVCpu->cpum.GstCtx.cs.u32Limit))
+        pVCpu->cpum.GstCtx.rip = uNewIp;
+    else
+        return iemRaiseGeneralProtectionFault0(pVCpu);
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 8-bit signed jump offset to RIP from 64-bit code, no checking or
+ * clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   enmEffOpSize        Effective operand size.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegRip64RelativeJumpS8AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
+                                                                          IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
+{
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    Assert(enmEffOpSize == IEMMODE_64BIT || enmEffOpSize == IEMMODE_16BIT);
+    uint64_t uNewRip = pVCpu->cpum.GstCtx.rip + cbInstr + (int64_t)offNextInstr;
+    if (enmEffOpSize == IEMMODE_16BIT)
+        uNewRip &= UINT16_MAX;
+    if (RT_LIKELY(IEM_IS_CANONICAL(uNewRip)))
+        pVCpu->cpum.GstCtx.rip = uNewRip;
+    else
+        return iemRaiseGeneralProtectionFault0(pVCpu);
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 8-bit signed jump offset to RIP from 64-bit code when caller is sure
+ * it stays within the same page, no checking or clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   enmEffOpSize        Effective operand size.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC)
+iemRegRip64RelativeJumpS8IntraPgAndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
+                                                 IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
+{
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    Assert(enmEffOpSize == IEMMODE_64BIT); RT_NOREF(enmEffOpSize);
+    uint64_t const uNewRip = pVCpu->cpum.GstCtx.rip + cbInstr + (int64_t)offNextInstr;
+    Assert((pVCpu->cpum.GstCtx.rip >> GUEST_PAGE_SHIFT) == (uNewRip >> GUEST_PAGE_SHIFT));
+    pVCpu->cpum.GstCtx.rip = uNewRip;
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 8-bit signed jump offset to EIP, on 386 or later from 16-bit or 32-bit
+ * code (never 64-bit), no checking or clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   enmEffOpSize        Effective operand size.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
 DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS8AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
                                                                           IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
 …
 /**
+ * Adds a 8-bit signed jump offset to EIP, on 386 or later from flat 32-bit code
+ * (never 64-bit), no checking or clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   enmEffOpSize        Effective operand size.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC)
+iemRegEip32RelativeJumpS8FlatAndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr, int8_t offNextInstr,
+                                              IEMMODE enmEffOpSize, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    Assert(enmEffOpSize == IEMMODE_32BIT || enmEffOpSize == IEMMODE_16BIT);
+    uint32_t uNewEip = pVCpu->cpum.GstCtx.eip + cbInstr + (int32_t)offNextInstr;
+    if (enmEffOpSize == IEMMODE_16BIT)
+        uNewEip &= UINT16_MAX;
+    pVCpu->cpum.GstCtx.rip = uNewEip;
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
  * Adds a 8-bit signed jump offset to IP, on a pre-386 CPU, no checking or
  * clearing of flags.
 …
 /**
+ * Adds a 16-bit signed jump offset to RIP from 64-bit code, no checking or
+ * clearing of flags.
+ * Adds a 16-bit signed jump offset to EIP from FLAT 32-bit code.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
  * @returns Strict VBox status code.
 …
  *                              VINF_IEM_REEXEC_BREAK to force TB exit when
  *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegRip64RelativeJumpS16AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                           int16_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    pVCpu->cpum.GstCtx.rip = (uint16_t)(pVCpu->cpum.GstCtx.ip + cbInstr + offNextInstr);
+ *
+ * @note    This is also used by 16-bit code in pre-386 mode, as the code is
+ *          identical.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS16FlatAndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                                  int16_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    uint16_t const uNewIp = pVCpu->cpum.GstCtx.ip + cbInstr + offNextInstr;
+    pVCpu->cpum.GstCtx.rip = uNewIp;
 #ifndef IEM_WITH_CODE_TLB
     iemOpcodeFlushLight(pVCpu, cbInstr);
 #endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 16-bit signed jump offset to EIP from 16-bit or 32-bit code,
+ * no checking or clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 16-bit signed jump offset to RIP from 64-bit code, no checking or
+ * clearing of flags.
+ *
  * @returns Strict VBox status code.
 …
  *                              VINF_IEM_REEXEC_BREAK to force TB exit when
  *                              taking the wrong conditional branhc.
+ *
+ * @note    This is also used by 16-bit code in pre-386 mode, as the code is
+ *          identical.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS16AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegRip64RelativeJumpS16AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
                                                                            int16_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    uint16_t const uNewIp = pVCpu->cpum.GstCtx.ip + cbInstr + offNextInstr;
+    if (RT_LIKELY(uNewIp <= pVCpu->cpum.GstCtx.cs.u32Limit))
+        pVCpu->cpum.GstCtx.rip = uNewIp;
+    else
+        return iemRaiseGeneralProtectionFault0(pVCpu);
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    pVCpu->cpum.GstCtx.rip = (uint16_t)(pVCpu->cpum.GstCtx.ip + cbInstr + offNextInstr);
 #ifndef IEM_WITH_CODE_TLB
 …
 /**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code.
+ * Adds a 16-bit signed jump offset to EIP from 16-bit or 32-bit code,
+ * no checking or clearing of flags.
+ *
  * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
  * segment limit.
+ *
- * We ASSUME that the effective operand size is 64-bit here, as 16-bit is the
- * only alternative for relative jumps in 64-bit code and that is already
- * handled in the decoder stage.
+ *
  * @returns Strict VBox status code.
 …
  *                              VINF_IEM_REEXEC_BREAK to force TB exit when
  *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegRip64RelativeJumpS32AndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                              int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    uint64_t const uNewRip = pVCpu->cpum.GstCtx.rip + cbInstr + (int64_t)offNextInstr;
+    if (RT_LIKELY(IEM_IS_CANONICAL(uNewRip)))
+        pVCpu->cpum.GstCtx.rip = uNewRip;
+ *
+ * @note    This is also used by 16-bit code in pre-386 mode, as the code is
+ *          identical.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS16AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                           int16_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    uint16_t const uNewIp = pVCpu->cpum.GstCtx.ip + cbInstr + offNextInstr;
+    if (RT_LIKELY(uNewIp <= pVCpu->cpum.GstCtx.cs.u32Limit))
+        pVCpu->cpum.GstCtx.rip = uNewIp;
     else
         return iemRaiseGeneralProtectionFault0(pVCpu);
 …
     iemOpcodeFlushLight(pVCpu, cbInstr);
 #endif
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code.
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 16-bit signed jump offset to EIP from FLAT 32-bit code, no checking or
+ * clearing of flags.
+ *
  * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
  * segment limit.
+ *
- * We ASSUME that the effective operand size is 32-bit here, as 16-bit is the
- * only alternative for relative jumps in 32-bit code and that is already
- * handled in the decoder stage.
+ *
  * @returns Strict VBox status code.
 …
  *                              VINF_IEM_REEXEC_BREAK to force TB exit when
  *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS32AndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                              int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+ *
+ * @note    This is also used by 16-bit code in pre-386 mode, as the code is
+ *          identical.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS16FlatAndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                               int16_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
     Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    Assert(pVCpu->cpum.GstCtx.rip <= UINT32_MAX);
+    uint32_t const uNewEip = pVCpu->cpum.GstCtx.eip + cbInstr + offNextInstr;
+    if (RT_LIKELY(uNewEip <= pVCpu->cpum.GstCtx.cs.u32Limit))
+        pVCpu->cpum.GstCtx.rip = uNewEip;
+    else
+        return iemRaiseGeneralProtectionFault0(pVCpu);
+    uint16_t const uNewIp = pVCpu->cpum.GstCtx.ip + cbInstr + offNextInstr;
+    pVCpu->cpum.GstCtx.rip = uNewIp;
 #ifndef IEM_WITH_CODE_TLB
     iemOpcodeFlushLight(pVCpu, cbInstr);
 #endif
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code, no checking or
+ * clearing of flags.
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code.
+ *
  * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
 …
  *                              taking the wrong conditional branhc.
  */
 DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegRip64RelativeJumpS32AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
                                                                            int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegRip64RelativeJumpS32AndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                              int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
     Assert(IEM_IS_64BIT_CODE(pVCpu));
 …
     iemOpcodeFlushLight(pVCpu, cbInstr);
 #endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code, no checking or
+ * clearing of flags.
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code when the caller is
+ * sure the target is in the same page.
+ *
  * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
  * segment limit.
+ *
  * We ASSUME that the effective operand size is 32-bit here, as 16-bit is the
  * only alternative for relative jumps in 32-bit code and that is already
+ * We ASSUME that the effective operand size is 64-bit here, as 16-bit is the
+ * only alternative for relative jumps in 64-bit code and that is already
  * handled in the decoder stage.
+ *
 …
  *                              taking the wrong conditional branhc.
  */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS32AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                           int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+DECL_FORCE_INLINE(VBOXSTRICTRC)
+iemRegRip64RelativeJumpS32IntraPgAndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                     int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    uint64_t const uNewRip = pVCpu->cpum.GstCtx.rip + cbInstr + (int64_t)offNextInstr;
+    Assert((pVCpu->cpum.GstCtx.rip >> GUEST_PAGE_SHIFT) == (uNewRip >> GUEST_PAGE_SHIFT));
+    pVCpu->cpum.GstCtx.rip = uNewRip;
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * We ASSUME that the effective operand size is 32-bit here, as 16-bit is the
+ * only alternative for relative jumps in 32-bit code and that is already
+ * handled in the decoder stage.
+ *
+ * @returns Strict VBox status code.
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS32AndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                              int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
     Assert(!IEM_IS_64BIT_CODE(pVCpu));
 …
     else
         return iemRaiseGeneralProtectionFault0(pVCpu);
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from FLAT 32-bit code.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * We ASSUME that the effective operand size is 32-bit here, as 16-bit is the
+ * only alternative for relative jumps in 32-bit code and that is already
+ * handled in the decoder stage.
+ *
+ * @returns Strict VBox status code.
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS32FlatAndFinishClearingRF(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                                  int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    Assert(pVCpu->cpum.GstCtx.rip <= UINT32_MAX);
+    uint32_t const uNewEip = pVCpu->cpum.GstCtx.eip + cbInstr + offNextInstr;
+    pVCpu->cpum.GstCtx.rip = uNewEip;
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    /*
+     * Clear RF and finish the instruction (maybe raise #DB).
+     */
+    return iemRegFinishClearingRF(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code, no checking or
+ * clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * We ASSUME that the effective operand size is 64-bit here, as 16-bit is the
+ * only alternative for relative jumps in 64-bit code and that is already
+ * handled in the decoder stage.
+ *
+ * @returns Strict VBox status code.
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegRip64RelativeJumpS32AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                           int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    uint64_t const uNewRip = pVCpu->cpum.GstCtx.rip + cbInstr + (int64_t)offNextInstr;
+    if (RT_LIKELY(IEM_IS_CANONICAL(uNewRip)))
+        pVCpu->cpum.GstCtx.rip = uNewRip;
+    else
+        return iemRaiseGeneralProtectionFault0(pVCpu);
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 64-bit code when the caller is
+ * sure it stays within the same page, no checking or clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * We ASSUME that the effective operand size is 64-bit here, as 16-bit is the
+ * only alternative for relative jumps in 64-bit code and that is already
+ * handled in the decoder stage.
+ *
+ * @returns Strict VBox status code.
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC)
+iemRegRip64RelativeJumpS32IntraPgAndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr, int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(IEM_IS_64BIT_CODE(pVCpu));
+    uint64_t const uNewRip = pVCpu->cpum.GstCtx.rip + cbInstr + (int64_t)offNextInstr;
+    Assert((pVCpu->cpum.GstCtx.rip >> GUEST_PAGE_SHIFT) == (uNewRip >> GUEST_PAGE_SHIFT));
+    pVCpu->cpum.GstCtx.rip = uNewRip;
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from 32-bit code, no checking or
+ * clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * We ASSUME that the effective operand size is 32-bit here, as 16-bit is the
+ * only alternative for relative jumps in 32-bit code and that is already
+ * handled in the decoder stage.
+ *
+ * @returns Strict VBox status code.
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS32AndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                           int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    Assert(pVCpu->cpum.GstCtx.rip <= UINT32_MAX);
+    uint32_t const uNewEip = pVCpu->cpum.GstCtx.eip + cbInstr + offNextInstr;
+    if (RT_LIKELY(uNewEip <= pVCpu->cpum.GstCtx.cs.u32Limit))
+        pVCpu->cpum.GstCtx.rip = uNewEip;
+    else
+        return iemRaiseGeneralProtectionFault0(pVCpu);
+#ifndef IEM_WITH_CODE_TLB
+    iemOpcodeFlushLight(pVCpu, cbInstr);
+#endif
+    return iemRegFinishNoFlags(pVCpu, rcNormal);
+}
+/**
+ * Adds a 32-bit signed jump offset to RIP from FLAT 32-bit code, no checking or
+ * clearing of flags.
+ *
+ * May raise a \#GP(0) if the new RIP is non-canonical or outside the code
+ * segment limit.
+ *
+ * We ASSUME that the effective operand size is 32-bit here, as 16-bit is the
+ * only alternative for relative jumps in 32-bit code and that is already
+ * handled in the decoder stage.
+ *
+ * @returns Strict VBox status code.
+ * @param   pVCpu               The cross context virtual CPU structure of the calling thread.
+ * @param   cbInstr             Instruction size.
+ * @param   offNextInstr        The offset of the next instruction.
+ * @param   rcNormal            VINF_SUCCESS to continue TB.
+ *                              VINF_IEM_REEXEC_BREAK to force TB exit when
+ *                              taking the wrong conditional branhc.
+ */
+DECL_FORCE_INLINE(VBOXSTRICTRC) iemRegEip32RelativeJumpS32FlatAndFinishNoFlags(PVMCPUCC pVCpu, uint8_t cbInstr,
+                                                                               int32_t offNextInstr, int rcNormal) RT_NOEXCEPT
+{
+    Assert(!IEM_IS_64BIT_CODE(pVCpu));
+    Assert(pVCpu->cpum.GstCtx.rip <= UINT32_MAX);
+    uint32_t const uNewEip = pVCpu->cpum.GstCtx.eip + cbInstr + offNextInstr;
+    pVCpu->cpum.GstCtx.rip = uNewEip;
 #ifndef IEM_WITH_CODE_TLB

trunk/src/VBox/VMM/include/IEMOpHlp.h

-              r105295
+              r105768
     } while (0)
+/**
+ * Used the threaded code generator to check if a jump stays within the same
+ * page in 64-bit code.
+ */
+#define IEMOP_HLP_PC64_IS_JMP_REL_WITHIN_PAGE(a_offDisp) \
+     (   ((pVCpu->cpum.GstCtx.rip + IEM_GET_INSTR_LEN(pVCpu) + (a_offDisp)) >> GUEST_PAGE_SHIFT) \
+      == (pVCpu->cpum.GstCtx.rip >> GUEST_PAGE_SHIFT))
 VBOXSTRICTRC    iemOpHlpCalcRmEffAddr(PVMCPUCC pVCpu, uint8_t bRm, uint32_t cbImmAndRspOffset, PRTGCPTR pGCPtrEff) RT_NOEXCEPT;
 VBOXSTRICTRC    iemOpHlpCalcRmEffAddrEx(PVMCPUCC pVCpu, uint8_t bRm, uint32_t cbImmAndRspOffset, PRTGCPTR pGCPtrEff, uint64_t *puInfo) RT_NOEXCEPT;

Note: See TracChangeset for help on using the changeset viewer.

Changeset 105768 in vbox for trunk/src/VBox/VMM/include

Legend:

trunk/src/VBox/VMM/include/IEMInline.h

trunk/src/VBox/VMM/include/IEMOpHlp.h

Download in other formats: