Changeset 106123 in vbox for trunk

Timestamp:

Sep 23, 2024 10:04:30 PM (2 months ago)

Author:

vboxsync

Message:

VMM/IEM: More work on recompilation-time checks of skipped & postponed EFLAGS - fixed incorrect skipping for variants that clears EFLAGS when advancing RIP. The latter had slipped thru and this change reduces the effectiveness of the skipping stuff. :-( bugref:10720

Location:

trunk/src/VBox/VMM

Files:

• VMMAll/IEMAllN8vePython.py (modified) (1 diff)
• VMMAll/IEMAllN8veRecompFuncs.h (modified) (11 diffs)
• VMMAll/IEMAllN8veRecompiler.cpp (modified) (3 diffs)
• VMMAll/target-x86/IEMAllN8veEmit-x86.h (modified) (3 diffs)
• include/IEMInternal.h (modified) (1 diff)
• include/IEMN8veRecompiler.h (modified) (2 diffs)
• include/IEMN8veRecompilerEmit.h (modified) (10 diffs)

trunk/src/VBox/VMM/VMMAll/IEMAllN8vePython.py

@@ -595 +595 @@
                 oNewStmt = copy.deepcopy(oStmt);
                 oNewStmt.sName = 'IEM_MC_BEGIN_EX';
-                fWithoutFlags = (    self.oVariation.isWithFlagsCheckingAndClearingVariation()
-                                 and self.oVariation.oParent.hasWithFlagsCheckingAndClearingVariation());
-                if fWithoutFlags or self.oVariation.oParent.dsCImplFlags:
+                fWithFlags    = self.oVariation.isWithFlagsCheckingAndClearingVariation();
+                fWithoutFlags = not fWithFlags and self.oVariation.oParent.hasWithFlagsCheckingAndClearingVariation();
+                if fWithFlags or fWithoutFlags or self.oVariation.oParent.dsCImplFlags:
                     if fWithoutFlags:
                         oNewStmt.asParams[0] = ' | '.join(sorted(  list(self.oVariation.oParent.oMcBlock.dsMcFlags.keys())
                                                                  + ['IEM_MC_F_WITHOUT_FLAGS',] ));
+                    else:
+                        oNewStmt.asParams[0] = ' | '.join(sorted(  list(self.oVariation.oParent.oMcBlock.dsMcFlags.keys())
+                                                                 + ['IEM_MC_F_WITH_FLAGS',] ));
                     if self.oVariation.oParent.dsCImplFlags:
                         oNewStmt.asParams[1] = ' | '.join(sorted(self.oVariation.oParent.dsCImplFlags.keys()));

trunk/src/VBox/VMM/VMMAll/IEMAllN8veRecompFuncs.h

@@ -3401 +3401 @@
 iemNativeEmitIfEflagAnysBitsSet(PIEMRECOMPILERSTATE pReNative, uint32_t off, uint32_t fBitsInEfl, uint64_t fLivenessEflBits)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  fBitsInEfl);
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, fBitsInEfl);
     PIEMNATIVECOND const pEntry = iemNativeCondPushIf(pReNative);
@@ -3428 +3429 @@
 iemNativeEmitIfEflagNoBitsSet(PIEMRECOMPILERSTATE pReNative, uint32_t off, uint32_t fBitsInEfl, uint64_t fLivenessEflBits)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  fBitsInEfl);
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, fBitsInEfl);
     PIEMNATIVECOND const pEntry = iemNativeCondPushIf(pReNative);
@@ -3456 +3458 @@
 iemNativeEmitIfEflagsBitSet(PIEMRECOMPILERSTATE pReNative, uint32_t off, unsigned iBitNo, uint64_t fLivenessEflBit)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  RT_BIT_32(iBitNo));
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, RT_BIT_32(iBitNo));
     PIEMNATIVECOND const pEntry = iemNativeCondPushIf(pReNative);
@@ -3484 +3487 @@
 iemNativeEmitIfEflagsBitNotSet(PIEMRECOMPILERSTATE pReNative, uint32_t off, unsigned iBitNo, uint64_t fLivenessEflBit)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  RT_BIT_32(iBitNo));
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, RT_BIT_32(iBitNo));
     PIEMNATIVECOND const pEntry = iemNativeCondPushIf(pReNative);
@@ -3523 +3527 @@
 {
     Assert(iBitNo1 != iBitNo2);
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  RT_BIT_32(iBitNo1) | RT_BIT_32(iBitNo2));
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, RT_BIT_32(iBitNo1) | RT_BIT_32(iBitNo2));
     PIEMNATIVECOND const pEntry = iemNativeCondPushIf(pReNative);
@@ -3600 +3605 @@
     Assert(iBitNo2 != iBitNo);
     Assert(iBitNo2 != iBitNo1);
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  RT_BIT_32(iBitNo) | RT_BIT_32(iBitNo1) | RT_BIT_32(iBitNo2));
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, RT_BIT_32(iBitNo) | RT_BIT_32(iBitNo1) | RT_BIT_32(iBitNo2));
     PIEMNATIVECOND const pEntry = iemNativeCondPushIf(pReNative);
@@ -3777 +3783 @@
                                           bool fCheckIfSet, unsigned iBitNo, uint64_t fLivenessEflBit)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  RT_BIT_32(iBitNo));
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, RT_BIT_32(iBitNo));
     PIEMNATIVECOND const pEntry = iemNativeCondPushIf(pReNative);
@@ -3845 +3852 @@
 
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  RT_BIT_32(iBitNo));
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, RT_BIT_32(iBitNo));
     PIEMNATIVECOND const pEntry = iemNativeCondPushIf(pReNative);
@@ -4119 +4127 @@
 
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  X86_EFL_STATUS_BITS);
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, X86_EFL_STATUS_BITS);
 
@@ -5930 +5939 @@
 #endif
 
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  a_fEflInput);
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, a_fEflInput);
 
@@ -6246 +6256 @@
 
 #ifdef IEMNATIVE_WITH_EFLAGS_SKIPPING
-    Assert(!(pReNative->fSkippingEFlags & fEflInput));
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  fEflInput);
+    IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, fEflInput);
     pReNative->fSkippingEFlags &= ~fEflOutput;
-    IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, fEflInput);
 # ifdef IEMNATIVE_STRICT_EFLAGS_SKIPPING
 

trunk/src/VBox/VMM/VMMAll/IEMAllN8veRecompiler.cpp

@@ -6563 +6563 @@
 iemNativeEmitThreadedCall(PIEMRECOMPILERSTATE pReNative, uint32_t off, PCIEMTHRDEDCALLENTRY pCallEntry)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  X86_EFL_STATUS_BITS);
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, X86_EFL_STATUS_BITS);
 
@@ -6922 +6923 @@
     pReNative->Core.bmHstRegs |= RT_BIT_32(IEMNATIVE_CALL_RET_GREG); /* HACK: For IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK (return register is already set to status code). */
 
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative,  X86_EFL_STATUS_BITS);
     IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(pReNative, off, X86_EFL_STATUS_BITS);
 
@@ -10307 +10309 @@
             STAM_REL_COUNTER_INC(&pVCpu->iem.s.StatNativeFullyRecompiledTbs);
 
-#ifdef IEMNATIVE_WITH_EFLAGS_SKIPPING
-        Assert(pReNative->fSkippingEFlags == 0);
-#endif
-#ifdef IEMNATIVE_WITH_EFLAGS_POSTPONING
-        Assert(pReNative->fPostponingEFlags == 0);
-#endif
+        IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(pReNative, UINT32_MAX);
 
 #ifdef VBOX_WITH_STATISTICS

trunk/src/VBox/VMM/VMMAll/target-x86/IEMAllN8veEmit-x86.h

@@ -214 +214 @@
      */
     PCIEMLIVENESSENTRY const pLivenessEntry = &pReNative->paLivenessEntries[pReNative->idxCurCall];
-    if (IEMLIVENESS_STATE_ARE_STATUS_EFL_TO_BE_CLOBBERED(pLivenessEntry))
+    if (   IEMLIVENESS_STATE_ARE_STATUS_EFL_TO_BE_CLOBBERED(pLivenessEntry)
+        && !(pReNative->fMc & IEM_MC_F_WITH_FLAGS))
     {
         STAM_COUNTER_INC(&pReNative->pVCpu->iem.s.StatNativeEflSkippedLogical);
@@ -322 +323 @@
      */
     PCIEMLIVENESSENTRY const pLivenessEntry = &pReNative->paLivenessEntries[pReNative->idxCurCall];
-    if (IEMLIVENESS_STATE_ARE_STATUS_EFL_TO_BE_CLOBBERED(pLivenessEntry))
+    if (   IEMLIVENESS_STATE_ARE_STATUS_EFL_TO_BE_CLOBBERED(pLivenessEntry)
+        && !(pReNative->fMc & IEM_MC_F_WITH_FLAGS))
     {
         STAM_COUNTER_INC(&pReNative->pVCpu->iem.s.StatNativeEflSkippedArithmetic);
@@ -1577 +1579 @@
      */
     PCIEMLIVENESSENTRY const pLivenessEntry = &pReNative->paLivenessEntries[pReNative->idxCurCall];
-    if (IEMLIVENESS_STATE_ARE_STATUS_EFL_TO_BE_CLOBBERED(pLivenessEntry))
+    if (   IEMLIVENESS_STATE_ARE_STATUS_EFL_TO_BE_CLOBBERED(pLivenessEntry)
+        && !(pReNative->fMc & IEM_MC_F_WITH_FLAGS))
     {
         STAM_COUNTER_INC(&pReNative->pVCpu->iem.s.StatNativeEflSkippedShift);

trunk/src/VBox/VMM/include/IEMInternal.h

@@ -931 +931 @@
 #define IEM_MC_F_64BIT              RT_BIT_32(6)
 #define IEM_MC_F_NOT_64BIT          RT_BIT_32(7)
+/** This is set by IEMAllN8vePython.py to indicate a variation with the
+ * flags-clearing-and-checking. */
+#define IEM_MC_F_WITH_FLAGS         RT_BIT_32(8)
 /** This is set by IEMAllN8vePython.py to indicate a variation without the
  * flags-clearing-and-checking, when there is also a variation with that.
- * @note Do not use this manully, it's only for python and for testing in
+ * @note Do not set this manully, it's only for python and for testing in
  *       the native recompiler! */
-#define IEM_MC_F_WITHOUT_FLAGS      RT_BIT_32(8)
+#define IEM_MC_F_WITHOUT_FLAGS      RT_BIT_32(9)
 /** @} */
 

trunk/src/VBox/VMM/include/IEMN8veRecompiler.h

@@ -1046 +1046 @@
 /** @} */
 
+/** @def IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY
+ * Debug assertion that the required flags are available and not incorrectly skipped.
+ */
+#ifdef IEMNATIVE_WITH_EFLAGS_SKIPPING
+# define IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(a_pReNative, a_fEflNeeded) \
+    AssertMsg(!((a_pReNative)->fSkippingEFlags & (a_fEflNeeded)), \
+              ("%#x & %#x -> %#x\n", (a_pReNative)->fSkippingEFlags, \
+               a_fEflNeeded, (a_pReNative)->fSkippingEFlags & (a_fEflNeeded) ))
+#else
+# define IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(a_pReNative, a_fEflNeeded) ((void)0)
+#endif
+
+/** @def IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY
+ * Debug assertion that the required flags are available and not incorrectly postponed.
+ */
+#ifdef IEMNATIVE_WITH_EFLAGS_SKIPPING
+# define IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(a_pReNative, a_fEflNeeded) \
+    AssertMsg(!((a_pReNative)->fPostponingEFlags & (a_fEflNeeded)), \
+              ("%#x & %#x -> %#x\n", (a_pReNative)->fPostponingEFlags, \
+               a_fEflNeeded, (a_pReNative)->fPostponingEFlags & (a_fEflNeeded) ))
+#else
+# define IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(a_pReNative, a_fEflNeeded) ((void)0)
+#endif
+
+/** @def IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING
+ * Debug assertion that the required flags are available and not incorrectly
+ * skipped or postponed.
+ */
+#if defined(IEMNATIVE_WITH_EFLAGS_SKIPPING) && defined(IEMNATIVE_WITH_EFLAGS_POSTPONING)
+# define IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(a_pReNative, a_fEflNeeded) \
+    AssertMsg(!(((a_pReNative)->fSkippingEFlags | (a_pReNative)->fPostponingEFlags) & (a_fEflNeeded)), \
+              ("(%#x | %#x) & %#x -> %#x\n", (a_pReNative)->fSkippingEFlags, (a_pReNative)->fPostponingEFlags, \
+               a_fEflNeeded, ((a_pReNative)->fSkippingEFlags | (a_pReNative)->fPostponingEFlags) & (a_fEflNeeded) ))
+#elif defined(IEMNATIVE_WITH_EFLAGS_SKIPPING)
+# define IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(a_pReNative, a_fEflNeeded) \
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(a_pReNative, a_fEflNeeded)
+#elif defined(IEMNATIVE_WITH_EFLAGS_POSTPONING) \
+# define IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(a_pReNative, a_fEflNeeded) \
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(a_pReNative, a_fEflNeeded)
+#else
+# define IEMNATIVE_ASSERT_EFLAGS_SKIPPING_AND_POSTPONING(a_pReNative, a_fEflNeeded) ((void)0)
+#endif
+
 /** @def IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK
  * Checks that the EFLAGS bits specified by @a a_fEflNeeded are actually
@@ -1054 +1097 @@
 #ifdef IEMNATIVE_STRICT_EFLAGS_SKIPPING
 # define IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(a_pReNative, a_off, a_fEflNeeded) do { \
-        AssertMsg(!((a_pReNative)->fSkippingEFlags & (a_fEflNeeded)), \
-                  ("%#x & %#x -> %#x; off=%#x\n", (a_pReNative)->fSkippingEFlags, a_fEflNeeded, \
-                  ((a_pReNative)->fSkippingEFlags & (a_fEflNeeded)), a_off)); \
         (a_off) = iemNativeEmitEFlagsSkippingCheck(a_pReNative, a_off, a_fEflNeeded); \
     } while (0)
 #else
-# define IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(a_pReNative, a_off, a_fEflNeeded) \
-    AssertMsg(!((a_pReNative)->fSkippingEFlags & (a_fEflNeeded)), \
-              ("%#x & %#x -> %#x; off=%#x\n", (a_pReNative)->fSkippingEFlags, a_fEflNeeded, \
-              ((a_pReNative)->fSkippingEFlags & (a_fEflNeeded)), a_off))
+# define IEMNATIVE_STRICT_EFLAGS_SKIPPING_EMIT_CHECK(a_pReNative, a_off, a_fEflNeeded) do { } while (0)
 #endif
 

trunk/src/VBox/VMM/include/IEMN8veRecompilerEmit.h

@@ -8278 +8278 @@
 
 
+
 /*********************************************************************************************************************************
 *   TB exiting helpers.                                                                                                          *
@@ -8305 +8306 @@
                          IEMNATIVELABELTYPE enmExitReason, IEMNATIVEINSTRCOND enmCond)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here and invert the condition. */
     Assert(IEMNATIVELABELTYPE_IS_EXIT_REASON(enmExitReason));
 
@@ -8333 +8336 @@
 iemNativeEmitJccTbExit(PIEMRECOMPILERSTATE pReNative, uint32_t off, IEMNATIVELABELTYPE enmExitReason, IEMNATIVEINSTRCOND enmCond)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here and invert the condition. */
     Assert(IEMNATIVELABELTYPE_IS_EXIT_REASON(enmExitReason));
+
 #ifdef IEMNATIVE_WITH_RECOMPILER_PER_CHUNK_TAIL_CODE
 # ifdef RT_ARCH_AMD64
@@ -8413 +8419 @@
 iemNativeEmitTbExitEx(PIEMRECOMPILERSTATE pReNative, PIEMNATIVEINSTR pCodeBuf, uint32_t off, IEMNATIVELABELTYPE enmExitReason)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here. */
     Assert(IEMNATIVELABELTYPE_IS_EXIT_REASON(enmExitReason));
 
@@ -8447 +8455 @@
                     bool fActuallyExitingTb = true)
 {
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here. */
     Assert(IEMNATIVELABELTYPE_IS_EXIT_REASON(enmExitReason));
 
@@ -8576 +8586 @@
 {
     Assert(IEMNATIVELABELTYPE_IS_EXIT_REASON(enmExitReason));
+
 #if defined(IEMNATIVE_WITH_RECOMPILER_PER_CHUNK_TAIL_CODE) && defined(RT_ARCH_AMD64)
     Assert(iBitNo < 64);
@@ -8608 +8619 @@
     /* ARM64 doesn't have the necessary jump range, so we jump via local label
        just like when we keep everything local. */
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here and invert the condition. */
     uint32_t const idxLabel = iemNativeLabelCreate(pReNative, enmExitReason, UINT32_MAX /*offWhere*/, 0 /*uData*/);
     return iemNativeEmitTestBitInGprAndJmpToLabelIfCc(pReNative, off, iGprSrc, iBitNo, idxLabel, true /*fJmpIfSet*/);
@@ -8622 +8635 @@
 iemNativeEmitTestIfGprIsNotZeroAndTbExitEx(PIEMRECOMPILERSTATE pReNative, PIEMNATIVEINSTR pCodeBuf, uint32_t off,
                                            uint8_t iGprSrc, bool f64Bit, IEMNATIVELABELTYPE enmExitReason)
+{
+    Assert(IEMNATIVELABELTYPE_IS_EXIT_REASON(enmExitReason));
+
+#if defined(IEMNATIVE_WITH_RECOMPILER_PER_CHUNK_TAIL_CODE) && defined(RT_ARCH_AMD64)
+    /* test reg32,reg32  / test reg64,reg64 */
+    if (f64Bit)
+        pCodeBuf[off++] = X86_OP_REX_W | (iGprSrc < 8 ? 0 : X86_OP_REX_R | X86_OP_REX_B);
+    else if (iGprSrc >= 8)
+        pCodeBuf[off++] = X86_OP_REX_R | X86_OP_REX_B;
+    pCodeBuf[off++] = 0x85;
+    pCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, iGprSrc & 7, iGprSrc & 7);
+
+    /* jnz idxLabel  */
+    return iemNativeEmitJccTbExitEx(pReNative, pCodeBuf, off, enmExitReason, kIemNativeInstrCond_ne);
+
+#else
+    /* ARM64 doesn't have the necessary jump range, so we jump via local label
+       just like when we keep everything local. */
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here and invert the condition. */
+    uint32_t const idxLabel = iemNativeLabelCreate(pReNative, enmExitReason, UINT32_MAX /*offWhere*/, 0 /*uData*/);
+    return iemNativeEmitTestIfGprIsZeroOrNotZeroAndJmpToLabelEx(pReNative, pCodeBuf, off, iGprSrc,
+                                                                f64Bit, true /*fJmpIfNotZero*/, idxLabel);
+#endif
+}
+
+
+/**
+ * Emits code to exit the current TB with the given reason @a enmExitReason if @a iGprSrc is not zero.
+ *
+ * The operand size is given by @a f64Bit.
+ */
+DECL_INLINE_THROW(uint32_t)
+iemNativeEmitTestIfGprIsNotZeroAndTbExit(PIEMRECOMPILERSTATE pReNative, uint32_t off,
+                                         uint8_t iGprSrc, bool f64Bit, IEMNATIVELABELTYPE enmExitReason)
+{
+#if defined(IEMNATIVE_WITH_RECOMPILER_PER_CHUNK_TAIL_CODE) && defined(RT_ARCH_AMD64)
+    off = iemNativeEmitTestIfGprIsNotZeroAndTbExitEx(pReNative, iemNativeInstrBufEnsure(pReNative, off, 3 + 6),
+                                                     off, iGprSrc, f64Bit, enmExitReason);
+    IEMNATIVE_ASSERT_INSTR_BUF_ENSURE(pReNative, off);
+    return off;
+#else
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here and invert the condition. */
+    uint32_t const idxLabel = iemNativeLabelCreate(pReNative, enmExitReason, UINT32_MAX /*offWhere*/, 0 /*uData*/);
+    return iemNativeEmitTestIfGprIsZeroOrNotZeroAndJmpToLabel(pReNative, off, iGprSrc, f64Bit, true /*fJmpIfNotZero*/, idxLabel);
+#endif
+}
+
+
+/**
+ * Emits code that exits the current TB with @a enmExitReason if @a iGprSrc is zero.
+ *
+ * The operand size is given by @a f64Bit.
+ */
+DECL_FORCE_INLINE_THROW(uint32_t)
+iemNativeEmitTestIfGprIsZeroAndTbExitEx(PIEMRECOMPILERSTATE pReNative, PIEMNATIVEINSTR pCodeBuf, uint32_t off,
+                                        uint8_t iGprSrc, bool f64Bit, IEMNATIVELABELTYPE enmExitReason)
 {
     Assert(IEMNATIVELABELTYPE_IS_EXIT_REASON(enmExitReason));
@@ -8634 +8705 @@
 
     /* jnz idxLabel  */
-    return iemNativeEmitJccTbExitEx(pReNative, pCodeBuf, off, enmExitReason, kIemNativeInstrCond_ne);
+    return iemNativeEmitJccTbExitEx(pReNative, pCodeBuf, off, enmExitReason, kIemNativeInstrCond_e);
 
 #else
     /* ARM64 doesn't have the necessary jump range, so we jump via local label
        just like when we keep everything local. */
-    uint32_t const idxLabel = iemNativeLabelCreate(pReNative, enmExitReason, UINT32_MAX /*offWhere*/, 0 /*uData*/);
-    return iemNativeEmitTestIfGprIsZeroOrNotZeroAndJmpToLabelEx(pReNative, pCodeBuf, off, iGprSrc,
-                                                                f64Bit, true /*fJmpIfNotZero*/, idxLabel);
-#endif
-}
-
-
-/**
- * Emits code to exit the current TB with the given reason @a enmExitReason if @a iGprSrc is not zero.
- *
- * The operand size is given by @a f64Bit.
- */
-DECL_INLINE_THROW(uint32_t)
-iemNativeEmitTestIfGprIsNotZeroAndTbExit(PIEMRECOMPILERSTATE pReNative, uint32_t off,
-                                         uint8_t iGprSrc, bool f64Bit, IEMNATIVELABELTYPE enmExitReason)
-{
-#if defined(IEMNATIVE_WITH_RECOMPILER_PER_CHUNK_TAIL_CODE) && defined(RT_ARCH_AMD64)
-    off = iemNativeEmitTestIfGprIsNotZeroAndTbExitEx(pReNative, iemNativeInstrBufEnsure(pReNative, off, 3 + 6),
-                                                     off, iGprSrc, f64Bit, enmExitReason);
-    IEMNATIVE_ASSERT_INSTR_BUF_ENSURE(pReNative, off);
-    return off;
-#else
-    uint32_t const idxLabel = iemNativeLabelCreate(pReNative, enmExitReason, UINT32_MAX /*offWhere*/, 0 /*uData*/);
-    return iemNativeEmitTestIfGprIsZeroOrNotZeroAndJmpToLabel(pReNative, off, iGprSrc, f64Bit, true /*fJmpIfNotZero*/, idxLabel);
-#endif
-}
-
-
-/**
- * Emits code that exits the current TB with @a enmExitReason if @a iGprSrc is zero.
- *
- * The operand size is given by @a f64Bit.
- */
-DECL_FORCE_INLINE_THROW(uint32_t)
-iemNativeEmitTestIfGprIsZeroAndTbExitEx(PIEMRECOMPILERSTATE pReNative, PIEMNATIVEINSTR pCodeBuf, uint32_t off,
-                                        uint8_t iGprSrc, bool f64Bit, IEMNATIVELABELTYPE enmExitReason)
-{
-    Assert(IEMNATIVELABELTYPE_IS_EXIT_REASON(enmExitReason));
-#if defined(IEMNATIVE_WITH_RECOMPILER_PER_CHUNK_TAIL_CODE) && defined(RT_ARCH_AMD64)
-    /* test reg32,reg32  / test reg64,reg64 */
-    if (f64Bit)
-        pCodeBuf[off++] = X86_OP_REX_W | (iGprSrc < 8 ? 0 : X86_OP_REX_R | X86_OP_REX_B);
-    else if (iGprSrc >= 8)
-        pCodeBuf[off++] = X86_OP_REX_R | X86_OP_REX_B;
-    pCodeBuf[off++] = 0x85;
-    pCodeBuf[off++] = X86_MODRM_MAKE(X86_MOD_REG, iGprSrc & 7, iGprSrc & 7);
-
-    /* jnz idxLabel  */
-    return iemNativeEmitJccTbExitEx(pReNative, pCodeBuf, off, enmExitReason, kIemNativeInstrCond_e);
-
-#else
-    /* ARM64 doesn't have the necessary jump range, so we jump via local label
-       just like when we keep everything local. */
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here and invert the condition. */
     uint32_t const idxLabel = iemNativeLabelCreate(pReNative, enmExitReason, UINT32_MAX /*offWhere*/, 0 /*uData*/);
     return iemNativeEmitTestIfGprIsZeroOrNotZeroAndJmpToLabelEx(pReNative, pCodeBuf, off, iGprSrc,
@@ -8714 +8734 @@
     return off;
 #else
+    IEMNATIVE_ASSERT_EFLAGS_SKIPPING_ONLY(pReNative, X86_EFL_STATUS_BITS);
+    IEMNATIVE_ASSERT_EFLAGS_POSTPONING_ONLY(pReNative, X86_EFL_STATUS_BITS); /** @todo emit postponed stuff here and invert the condition. */
     uint32_t const idxLabel = iemNativeLabelCreate(pReNative, enmExitReason, UINT32_MAX /*offWhere*/, 0 /*uData*/);
     return iemNativeEmitTestIfGprIsZeroOrNotZeroAndJmpToLabel(pReNative, off, iGprSrc, f64Bit, false /*fJmpIfNotZero*/, idxLabel);