Changeset 31402 in vbox for trunk/src/VBox/VMM/VMMAll

Timestamp:

Aug 5, 2010 12:28:18 PM (15 years ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

64465

Message:

PGM: Replaced the hazzardous raw-mode context dynamic mapping code with the PGMR0DynMap code used by darwin/x86. This is a risky change but it should pay off once stable by providing 100% certainty that dynamically mapped pages aren't resued behind our back (this has been observed in seemingly benign code paths recently).

Location:

trunk/src/VBox/VMM/VMMAll

Files:

• MMAllPagePool.cpp (modified) (1 diff)
• PGMAll.cpp (modified) (7 diffs)
• PGMAllBth.h (modified) (19 diffs)
• PGMAllMap.cpp (modified) (7 diffs)
• PGMAllPhys.cpp (modified) (7 diffs)
• PGMAllPool.cpp (modified) (27 diffs)
• TRPMAll.cpp (modified) (1 diff)

trunk/src/VBox/VMM/VMMAll/MMAllPagePool.cpp

@@ -39 +39 @@
 
 
-#ifndef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
+#if !defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0) && !defined(IN_RC)
 
 /**

trunk/src/VBox/VMM/VMMAll/PGMAll.cpp

@@ -936 +936 @@
         PGMPOOLKIND enmKind;
 
-# if defined(IN_RC)
-        /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-        PGMDynLockHCPage(pVM, (uint8_t *)pPdpe);
-# endif
-
         if (pVM->pgm.s.fNestedPaging || !CPUMIsGuestPagingEnabled(pVCpu))
         {
@@ -990 +985 @@
          */
         ASMReloadCR3();
-        PGMDynUnlockHCPage(pVM, (uint8_t *)pPdpe);
 # endif
+        PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdpe);
     }
     else
@@ -1524 +1519 @@
 #endif /* !VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0 */
 #if !defined(IN_RC) && !defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0)
-
 /**
  * Performs the lazy mapping of the 32-bit guest PD.
@@ -1563 +1557 @@
     return rc;
 }
-
 #endif
 
@@ -2272 +2265 @@
 #if defined(IN_RC) || defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0)
 
-/** Common worker for PGMDynMapGCPage and PGMDynMapGCPageOff. */
-DECLINLINE(int) pgmDynMapGCPageInternal(PVM pVM, RTGCPHYS GCPhys, void **ppv)
+/**
+ * Common worker for pgmRZDynMapGCPageOffInlined and pgmRZDynMapGCPageV2Inlined.
+ *
+ * @returns VBox status code.
+ * @param   pVM         The VM handle.
+ * @param   pVCpu       The current CPU.
+ * @param   GCPhys      The guest physical address of the page to map.  The
+ *                      offset bits are not ignored.
+ * @param   ppv         Where to return the address corresponding to @a GCPhys.
+ */
+int pgmRZDynMapGCPageCommon(PVM pVM, PVMCPU pVCpu, RTGCPHYS GCPhys, void **ppv RTLOG_COMMA_SRC_POS_DECL)
 {
     pgmLock(pVM);
 
     /*
-     * Convert it to a writable page and it on to PGMDynMapHCPage.
+     * Convert it to a writable page and it on to the dynamic mapper.
      */
     int rc;
@@ -2287 +2289 @@
         if (RT_SUCCESS(rc))
         {
-            //Log(("PGMDynMapGCPage: GCPhys=%RGp pPage=%R[pgmpage]\n", GCPhys, pPage));
-#ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
-            rc = pgmR0DynMapHCPageInlined(VMMGetCpu(pVM), PGM_PAGE_GET_HCPHYS(pPage), ppv);
-#else
-            rc = PGMDynMapHCPage(pVM, PGM_PAGE_GET_HCPHYS(pPage), ppv);
-#endif
+            void *pv;
+            rc = pgmRZDynMapHCPageInlined(pVCpu, PGM_PAGE_GET_HCPHYS(pPage), &pv RTLOG_COMMA_SRC_POS_ARGS);
+            if (RT_SUCCESS(rc))
+                *ppv = (void *)((uintptr_t)pv | ((uintptr_t)GCPhys & PAGE_OFFSET_MASK));
         }
         else
@@ -2307 +2307 @@
 }
 
-/**
- * Temporarily maps one guest page specified by GC physical address.
- * These pages must have a physical mapping in HC, i.e. they cannot be MMIO pages.
- *
- * Be WARNED that the dynamic page mapping area is small, 8 pages, thus the space is
- * reused after 8 mappings (or perhaps a few more if you score with the cache).
- *
- * @returns VBox status.
- * @param   pVM         VM handle.
- * @param   GCPhys      GC Physical address of the page.
- * @param   ppv         Where to store the address of the mapping.
- */
-VMMDECL(int) PGMDynMapGCPage(PVM pVM, RTGCPHYS GCPhys, void **ppv)
-{
-    AssertMsg(!(GCPhys & PAGE_OFFSET_MASK), ("GCPhys=%RGp\n", GCPhys));
-    return pgmDynMapGCPageInternal(pVM, GCPhys, ppv);
-}
-
-
-/**
- * Temporarily maps one guest page specified by unaligned GC physical address.
- * These pages must have a physical mapping in HC, i.e. they cannot be MMIO pages.
- *
- * Be WARNED that the dynamic page mapping area is small, 8 pages, thus the space is
- * reused after 8 mappings (or perhaps a few more if you score with the cache).
- *
- * The caller is aware that only the speicifed page is mapped and that really bad things
- * will happen if writing beyond the page!
- *
- * @returns VBox status.
- * @param   pVM         VM handle.
- * @param   GCPhys      GC Physical address within the page to be mapped.
- * @param   ppv         Where to store the address of the mapping address corresponding to GCPhys.
- */
-VMMDECL(int) PGMDynMapGCPageOff(PVM pVM, RTGCPHYS GCPhys, void **ppv)
-{
-    void *pv;
-    int rc = pgmDynMapGCPageInternal(pVM, GCPhys, &pv);
-    if (RT_SUCCESS(rc))
-    {
-        *ppv = (void *)((uintptr_t)pv | (uintptr_t)(GCPhys & PAGE_OFFSET_MASK));
-        return VINF_SUCCESS;
-    }
-    return rc;
-}
-
-# ifdef IN_RC
-
-/**
- * Temporarily maps one host page specified by HC physical address.
- *
- * Be WARNED that the dynamic page mapping area is small, 16 pages, thus the space is
- * reused after 16 mappings (or perhaps a few more if you score with the cache).
- *
- * @returns VINF_SUCCESS, will bail out to ring-3 on failure.
- * @param   pVM         VM handle.
- * @param   HCPhys      HC Physical address of the page.
- * @param   ppv         Where to store the address of the mapping. This is the
- *                      address of the PAGE not the exact address corresponding
- *                      to HCPhys. Use PGMDynMapHCPageOff if you care for the
- *                      page offset.
- */
-VMMDECL(int) PGMDynMapHCPage(PVM pVM, RTHCPHYS HCPhys, void **ppv)
-{
-    AssertMsg(!(HCPhys & PAGE_OFFSET_MASK), ("HCPhys=%RHp\n", HCPhys));
-
-    /*
-     * Check the cache.
-     */
-    register unsigned iCache;
-    for (iCache = 0;iCache < RT_ELEMENTS(pVM->pgm.s.aHCPhysDynPageMapCache);iCache++)
-    {
-        static const uint8_t au8Trans[MM_HYPER_DYNAMIC_SIZE >> PAGE_SHIFT][RT_ELEMENTS(pVM->pgm.s.aHCPhysDynPageMapCache)] =
-        {
-            { 0,  9, 10, 11, 12, 13, 14, 15},
-            { 0,  1, 10, 11, 12, 13, 14, 15},
-            { 0,  1,  2, 11, 12, 13, 14, 15},
-            { 0,  1,  2,  3, 12, 13, 14, 15},
-            { 0,  1,  2,  3,  4, 13, 14, 15},
-            { 0,  1,  2,  3,  4,  5, 14, 15},
-            { 0,  1,  2,  3,  4,  5,  6, 15},
-            { 0,  1,  2,  3,  4,  5,  6,  7},
-            { 8,  1,  2,  3,  4,  5,  6,  7},
-            { 8,  9,  2,  3,  4,  5,  6,  7},
-            { 8,  9, 10,  3,  4,  5,  6,  7},
-            { 8,  9, 10, 11,  4,  5,  6,  7},
-            { 8,  9, 10, 11, 12,  5,  6,  7},
-            { 8,  9, 10, 11, 12, 13,  6,  7},
-            { 8,  9, 10, 11, 12, 13, 14,  7},
-            { 8,  9, 10, 11, 12, 13, 14, 15},
-        };
-        AssertCompile(RT_ELEMENTS(au8Trans) == 16);
-        AssertCompile(RT_ELEMENTS(au8Trans[0]) == 8);
-
-        if (pVM->pgm.s.aHCPhysDynPageMapCache[iCache] == HCPhys)
-        {
-            int iPage = au8Trans[pVM->pgm.s.iDynPageMapLast][iCache];
-
-            /* The cache can get out of sync with locked entries. (10 locked, 2 overwrites its cache position, last = 11, lookup 2 -> page 10 instead of 2) */
-            if ((pVM->pgm.s.paDynPageMap32BitPTEsGC[iPage].u & X86_PTE_PG_MASK) == HCPhys)
-            {
-                void *pv = pVM->pgm.s.pbDynPageMapBaseGC + (iPage << PAGE_SHIFT);
-                *ppv = pv;
-                STAM_COUNTER_INC(&pVM->pgm.s.CTX_SUFF(pStats)->StatRCDynMapCacheHits);
-                Log4(("PGMGCDynMapHCPage: HCPhys=%RHp pv=%p iPage=%d iCache=%d\n", HCPhys, pv, iPage, iCache));
-                return VINF_SUCCESS;
-            }
-            LogFlow(("Out of sync entry %d\n", iPage));
-        }
-    }
-    AssertCompile(RT_ELEMENTS(pVM->pgm.s.aHCPhysDynPageMapCache) == 8);
-    AssertCompile((MM_HYPER_DYNAMIC_SIZE >> PAGE_SHIFT) == 16);
-    STAM_COUNTER_INC(&pVM->pgm.s.CTX_SUFF(pStats)->StatRCDynMapCacheMisses);
-
-    /*
-     * Update the page tables.
-     */
-    unsigned iPage = pVM->pgm.s.iDynPageMapLast;
-    unsigned i;
-    for (i = 0; i < (MM_HYPER_DYNAMIC_SIZE >> PAGE_SHIFT); i++)
-    {
-        pVM->pgm.s.iDynPageMapLast = iPage = (iPage + 1) & ((MM_HYPER_DYNAMIC_SIZE >> PAGE_SHIFT) - 1);
-        if (!pVM->pgm.s.aLockedDynPageMapCache[iPage])
-            break;
-        iPage++;
-    }
-    AssertRelease(i != (MM_HYPER_DYNAMIC_SIZE >> PAGE_SHIFT));
-
-    pVM->pgm.s.aHCPhysDynPageMapCache[iPage & (RT_ELEMENTS(pVM->pgm.s.aHCPhysDynPageMapCache) - 1)] = HCPhys;
-    pVM->pgm.s.paDynPageMap32BitPTEsGC[iPage].u = (uint32_t)HCPhys | X86_PTE_P | X86_PTE_A | X86_PTE_D;
-    pVM->pgm.s.paDynPageMapPaePTEsGC[iPage].u   =           HCPhys | X86_PTE_P | X86_PTE_A | X86_PTE_D;
-    pVM->pgm.s.aLockedDynPageMapCache[iPage]    = 0;
-
-    void *pv = pVM->pgm.s.pbDynPageMapBaseGC + (iPage << PAGE_SHIFT);
-    *ppv = pv;
-    ASMInvalidatePage(pv);
-    Log4(("PGMGCDynMapHCPage: HCPhys=%RHp pv=%p iPage=%d\n", HCPhys, pv, iPage));
-    return VINF_SUCCESS;
-}
-
-
-/**
- * Temporarily lock a dynamic page to prevent it from being reused.
- *
- * @param   pVM         VM handle.
- * @param   GCPage      GC address of page
- */
-VMMDECL(void) PGMDynLockHCPage(PVM pVM, RCPTRTYPE(uint8_t *) GCPage)
-{
-    unsigned iPage;
-
-    Assert(GCPage >= pVM->pgm.s.pbDynPageMapBaseGC && GCPage < (pVM->pgm.s.pbDynPageMapBaseGC + MM_HYPER_DYNAMIC_SIZE));
-    iPage = ((uintptr_t)(GCPage - pVM->pgm.s.pbDynPageMapBaseGC)) >> PAGE_SHIFT;
-    ASMAtomicIncU32(&pVM->pgm.s.aLockedDynPageMapCache[iPage]);
-    Log4(("PGMDynLockHCPage %RRv iPage=%d\n", GCPage, iPage));
-}
-
-
-/**
- * Unlock a dynamic page
- *
- * @param   pVM         VM handle.
- * @param   GCPage      GC address of page
- */
-VMMDECL(void) PGMDynUnlockHCPage(PVM pVM, RCPTRTYPE(uint8_t *) GCPage)
-{
-    unsigned iPage;
-
-    AssertCompile(RT_ELEMENTS(pVM->pgm.s.aLockedDynPageMapCache) == 2* RT_ELEMENTS(pVM->pgm.s.aHCPhysDynPageMapCache));
-    AssertCompileMemberSize(VM, pgm.s.aLockedDynPageMapCache, sizeof(uint32_t) * (MM_HYPER_DYNAMIC_SIZE >> (PAGE_SHIFT)));
-
-    Assert(GCPage >= pVM->pgm.s.pbDynPageMapBaseGC && GCPage < (pVM->pgm.s.pbDynPageMapBaseGC + MM_HYPER_DYNAMIC_SIZE));
-    iPage = ((uintptr_t)(GCPage - pVM->pgm.s.pbDynPageMapBaseGC)) >> PAGE_SHIFT;
-    Assert(pVM->pgm.s.aLockedDynPageMapCache[iPage]);
-    ASMAtomicDecU32(&pVM->pgm.s.aLockedDynPageMapCache[iPage]);
-    Log4(("PGMDynUnlockHCPage %RRv iPage=%d\n", GCPage, iPage));
-}
-
-
-#  ifdef VBOX_STRICT
-/**
- * Check for lock leaks.
- *
- * @param   pVM         VM handle.
- */
-VMMDECL(void) PGMDynCheckLocks(PVM pVM)
-{
-    for (unsigned i = 0; i < RT_ELEMENTS(pVM->pgm.s.aLockedDynPageMapCache); i++)
-        Assert(!pVM->pgm.s.aLockedDynPageMapCache[i]);
-}
-#  endif /* VBOX_STRICT */
-
-# endif /* IN_RC */
 #endif /* IN_RC || VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0 */
-
 #if !defined(IN_R0) || defined(LOG_ENABLED)
 

trunk/src/VBox/VMM/VMMAll/PGMAllBth.h

@@ -383 +383 @@
     *pfLockTaken = false;
 
-# if defined(IN_RC) && defined(VBOX_STRICT)
-    PGMDynCheckLocks(pVM);
-# endif
-
 # if  (   PGM_GST_TYPE == PGM_TYPE_32BIT || PGM_GST_TYPE == PGM_TYPE_REAL || PGM_GST_TYPE == PGM_TYPE_PROT \
        || PGM_GST_TYPE == PGM_TYPE_PAE   || PGM_GST_TYPE == PGM_TYPE_AMD64) \
@@ -433 +429 @@
     if (uErr & X86_TRAP_PF_RSVD)
     {
+/** @todo This is not complete code. take locks */
         Assert(uErr & X86_TRAP_PF_P);
         PPGMPAGE pPage;
@@ -563 +560 @@
             return VINF_SUCCESS;
         }
-#ifndef IN_RC
         AssertMsg(GstWalk.Pde.u == GstWalk.pPde->u || GstWalk.pPte->u == GstWalk.pPde->u, ("%RX64 %RX64\n", (uint64_t)GstWalk.Pde.u, (uint64_t)GstWalk.pPde->u));
         AssertMsg(GstWalk.Core.fBigPage || GstWalk.Pte.u == GstWalk.pPte->u, ("%RX64 %RX64\n", (uint64_t)GstWalk.Pte.u, (uint64_t)GstWalk.pPte->u));
-#else
-        /* Ugly hack, proper fix is comming up later. */
-        if (   !(GstWalk.Pde.u == GstWalk.pPde->u || GstWalk.pPte->u == GstWalk.pPde->u)
-            || !(GstWalk.Core.fBigPage || GstWalk.Pte.u == GstWalk.pPte->u) )
-        {
-            rc = PGM_GST_NAME(Walk)(pVCpu, pvFault, &GstWalk);
-            if (RT_FAILURE_NP(rc))
-                return VBOXSTRICTRC_TODO(PGM_BTH_NAME(Trap0eHandlerGuestFault)(pVCpu, &GstWalk, uErr));
-        }
-#endif
     }
 
@@ -1148 +1134 @@
     }
 
-# if defined(IN_RC)
-    /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-    PGMDynLockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
-
     /*
      * Get the guest PD entry and calc big page.
@@ -1295 +1276 @@
                     LogFlow(("Skipping flush for big page containing %RGv (PD=%X .u=%RX64)-> nothing has changed!\n", GCPtrPage, iPDSrc, PdeSrc.u));
                     STAM_COUNTER_INC(&pVCpu->pgm.s.CTX_SUFF(pStats)->CTX_MID_Z(Stat,InvalidatePage4MBPagesSkip));
-# if defined(IN_RC)
-                    /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-                    PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+                    PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
                     return VINF_SUCCESS;
                 }
@@ -1335 +1313 @@
         }
     }
-# if defined(IN_RC)
-    /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-    PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+    PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
     return rc;
 
@@ -1785 +1760 @@
     PPGMPOOLPAGE    pShwPde  = pgmPoolGetPage(pPool, pPdptDst->a[iPdpt].u & X86_PDPE_PG_MASK);
     Assert(pShwPde);
-# endif
-
-# if defined(IN_RC)
-    /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-    PGMDynLockHCPage(pVM, (uint8_t *)pPdeDst);
 # endif
 
@@ -2021 +1991 @@
                 }
             }
-# if defined(IN_RC)
-            /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-            PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+            PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
             return VINF_SUCCESS;
         }
@@ -2050 +2017 @@
     ASMAtomicWriteSize(pPdeDst, 0);
 
-# if defined(IN_RC)
-    /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-    PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+    PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
     PGM_INVL_VCPU_TLBS(pVCpu);
     return VINF_PGM_SYNCPAGE_MODIFIED_PDE;
@@ -2564 +2528 @@
     Assert(!PdeDst.n.u1Present); /* We're only supposed to call SyncPT on PDE!P and conflicts.*/
 
-# if defined(IN_RC)
-    /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-    PGMDynLockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
-
     /*
      * Sync page directory entry.
@@ -2646 +2605 @@
             }
             ASMAtomicWriteSize(pPdeDst, PdeDst.u);
-# if defined(IN_RC)
-            PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+            PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
             return VINF_SUCCESS;
         }
@@ -2654 +2611 @@
         {
             VMCPU_FF_SET(pVCpu, VMCPU_FF_PGM_SYNC_CR3);
-# if defined(IN_RC)
-            PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+            PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
             return VINF_PGM_SYNC_CR3;
         }
@@ -2687 +2642 @@
                          | (PdeSrc.u & ~(GST_PDE_PG_MASK | X86_PDE_AVL_MASK | X86_PDE_PCD | X86_PDE_PWT | X86_PDE_PS | X86_PDE4M_G | X86_PDE4M_D));
                 ASMAtomicWriteSize(pPdeDst, PdeDst.u);
-# if defined(IN_RC)
-                PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+                PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
 
                 /*
@@ -2768 +2721 @@
 
             /**
-             * @todo It might be more efficient to sync only a part of the 4MB page (similar to what we do for 4kb PDs).
+             * @todo It might be more efficient to sync only a part of the 4MB
+             *       page (similar to what we do for 4KB PDs).
              */
 
@@ -2795 +2749 @@
             }
             ASMAtomicWriteSize(pPdeDst, PdeDst.u);
-# if defined(IN_RC)
-            PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+            PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
 
             /*
@@ -3391 +3343 @@
 # endif
 
-# if defined(IN_RC)
-    /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-    PGMDynLockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
-
     if (!pPdeDst->n.u1Present)
     {
@@ -3401 +3348 @@
         if (rc != VINF_SUCCESS)
         {
-# if defined(IN_RC)
-            /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-            PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+            PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
             pgmUnlock(pVM);
             AssertRC(rc);
@@ -3449 +3393 @@
         }
     }
-# if defined(IN_RC)
-    /* Make sure the dynamic pPdeDst mapping will not be reused during this function. */
-    PGMDynUnlockHCPage(pVM, (uint8_t *)pPdeDst);
-# endif
+    PGM_DYNMAP_UNUSED_HINT(pVCpu, pPdeDst);
     pgmUnlock(pVM);
     return rc;
@@ -4359 +4300 @@
     AssertReturn(pPageCR3, VERR_INTERNAL_ERROR_2);
     HCPhysGuestCR3 = PGM_PAGE_GET_HCPHYS(pPageCR3);
-    /** @todo this needs some reworking wrt. locking.  */
+    /** @todo this needs some reworking wrt. locking?  */
 # if defined(IN_RC) || defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0)
     HCPtrGuestCR3 = NIL_RTHCPTR;

trunk/src/VBox/VMM/VMMAll/PGMAllMap.cpp

@@ -247 +247 @@
                 PX86PD pShw32BitPd = pgmShwGet32BitPDPtr(pVCpu);
                 AssertFatal(pShw32BitPd);
-#ifdef IN_RC    /* Lock mapping to prevent it from being reused during pgmPoolFree. */
-                PGMDynLockHCPage(pVM, (uint8_t *)pShw32BitPd);
-#endif
+
                 /* Free any previous user, unless it's us. */
                 Assert(   (pShw32BitPd->a[iNewPDE].u & (X86_PDE_P | PGM_PDFLAGS_MAPPING)) != (X86_PDE_P | PGM_PDFLAGS_MAPPING)
@@ -260 +258 @@
                 pShw32BitPd->a[iNewPDE].u = PGM_PDFLAGS_MAPPING | X86_PDE_P | X86_PDE_A | X86_PDE_RW | X86_PDE_US
                                           | (uint32_t)pMap->aPTs[i].HCPhysPT;
-#ifdef IN_RC
-                /* Unlock dynamic mappings again. */
-                PGMDynUnlockHCPage(pVM, (uint8_t *)pShw32BitPd);
-#endif
+                PGM_DYNMAP_UNUSED_HINT_VM(pVM, pShw32BitPd);
                 break;
             }
@@ -274 +269 @@
                 PX86PDPT        pShwPdpt  = pgmShwGetPaePDPTPtr(pVCpu);
                 Assert(pShwPdpt);
-#ifdef IN_RC    /* Lock mapping to prevent it from being reused during pgmShwSyncPaePDPtr. */
-                PGMDynLockHCPage(pVM, (uint8_t *)pShwPdpt);
-#endif
 
                 /*
@@ -302 +294 @@
                 }
                 Assert(pShwPaePd);
-#ifdef IN_RC    /* Lock mapping to prevent it from being reused during pgmPoolFree. */
-                PGMDynLockHCPage(pVM, (uint8_t *)pShwPaePd);
-#endif
 
                 /*
@@ -357 +346 @@
                 pShwPdpt->a[iPdPt].u |= PGM_PLXFLAGS_MAPPING;
 
-#ifdef IN_RC
-                /* Unlock dynamic mappings again. */
-                PGMDynUnlockHCPage(pVM, (uint8_t *)pShwPaePd);
-                PGMDynUnlockHCPage(pVM, (uint8_t *)pShwPdpt);
-#endif
+                PGM_DYNMAP_UNUSED_HINT_VM(pVM, pShwPaePd);
+                PGM_DYNMAP_UNUSED_HINT_VM(pVM, pShwPdpt);
                 break;
             }
@@ -406 +392 @@
     if (    PGMGetGuestMode(pVCpu) >= PGMMODE_PAE
         &&  pShwPageCR3 != pVCpu->pgm.s.CTX_SUFF(pShwPageCR3))
-    {
         pCurrentShwPdpt = pgmShwGetPaePDPTPtr(pVCpu);
-#ifdef IN_RC    /* Lock mapping to prevent it from being reused (currently not possible). */
-        if (pCurrentShwPdpt)
-            PGMDynLockHCPage(pVM, (uint8_t *)pCurrentShwPdpt);
-#endif
-    }
 
     unsigned i = pMap->cPTs;
@@ -503 +483 @@
         }
     }
-#ifdef IN_RC
-    /* Unlock dynamic mappings again. */
-    if (pCurrentShwPdpt)
-        PGMDynUnlockHCPage(pVM, (uint8_t *)pCurrentShwPdpt);
-#endif
+
+    PGM_DYNMAP_UNUSED_HINT_VM(pVM, pCurrentShwPdpt);
 }
 #endif /* !IN_RING0 */

trunk/src/VBox/VMM/VMMAll/PGMAllPhys.cpp

@@ -738 +738 @@
     AssertReturn(idChunk != NIL_GMM_CHUNKID, VERR_INVALID_PARAMETER);
 
-#ifdef IN_RC
+#if defined(IN_RC) || defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0)
     /*
      * Map it by HCPhys.
      */
-    return PGMDynMapHCPage(pVM, HCPhys, ppv);
-
-#elif defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0)
-    /*
-     * Map it by HCPhys.
-     */
-    return pgmR0DynMapHCPageInlined(VMMGetCpu(pVM), HCPhys, ppv);
+    return pgmRZDynMapHCPageInlined(VMMGetCpu(pVM), HCPhys, ppv  RTLOG_COMMA_SRC_POS);
 
 #else
@@ -824 +818 @@
     RTHCPHYS HCPhys = PGM_PAGE_GET_HCPHYS(pPage);
     Assert(HCPhys != pVM->pgm.s.HCPhysZeroPg);
-# ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
-    pgmR0DynMapHCPageInlined(VMMGetCpu(pVM), HCPhys, ppv);
-# else
-    PGMDynMapHCPage(pVM, HCPhys, ppv);
-# endif
+    pgmRZDynMapHCPageInlined(VMMGetCpu(pVM), HCPhys, ppv RTLOG_COMMA_SRC_POS);
     return VINF_SUCCESS;
 
@@ -1138 +1128 @@
      */
 #if defined(IN_RC) || defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0)
-    *ppv = pgmDynMapHCPageOff(pVM, PGM_PAGE_GET_HCPHYS(pPage) | (GCPhys & PAGE_OFFSET_MASK));
+    *ppv = pgmRZDynMapHCPageOff(pVM, PGM_PAGE_GET_HCPHYS(pPage) | (GCPhys & PAGE_OFFSET_MASK) RTLOG_COMMA_SRC_POS);
 #else
     PPGMPAGEMAPTLBE pTlbe;
@@ -1176 +1166 @@
      */
 #if defined(IN_RC) || defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0)
-    *ppv = pgmDynMapHCPageOff(pVM, PGM_PAGE_GET_HCPHYS(pPage) | (GCPhys & PAGE_OFFSET_MASK)); /** @todo add a read only flag? */
+    *ppv = pgmRZDynMapHCPageOff(pVM, PGM_PAGE_GET_HCPHYS(pPage) | (GCPhys & PAGE_OFFSET_MASK) RTLOG_COMMA_SRC_POS); /** @todo add a read only flag? */
 #else
     PPGMPAGEMAPTLBE pTlbe;
@@ -1234 +1224 @@
         if (RT_SUCCESS(rc))
         {
-            *ppv = pgmDynMapHCPageOff(pVM, PGM_PAGE_GET_HCPHYS(pPage) | (GCPhys & PAGE_OFFSET_MASK)); /** @todo add a read only flag? */
+            *ppv = pgmRZDynMapHCPageOff(pVM, PGM_PAGE_GET_HCPHYS(pPage) | (GCPhys & PAGE_OFFSET_MASK) RTLOG_COMMA_SRC_POS); /** @todo add a read only flag? */
 # if 0
             pLock->pvMap = 0;
@@ -1345 +1335 @@
         else
         {
-            *ppv = pgmDynMapHCPageOff(pVM, PGM_PAGE_GET_HCPHYS(pPage) | (GCPhys & PAGE_OFFSET_MASK)); /** @todo add a read only flag? */
+            *ppv = pgmRZDynMapHCPageOff(pVM, PGM_PAGE_GET_HCPHYS(pPage) | (GCPhys & PAGE_OFFSET_MASK) RTLOG_COMMA_SRC_POS); /** @todo add a read only flag? */
 # if 0
             pLock->pvMap = 0;
@@ -1493 +1483 @@
     pLock->u32Dummy = 0;
 
-#else   /* IN_RING3 */
+#else
     PPGMPAGEMAP pMap       = (PPGMPAGEMAP)pLock->pvMap;
     PPGMPAGE    pPage      = (PPGMPAGE)(pLock->uPageAndType & ~PGMPAGEMAPLOCK_TYPE_MASK);

trunk/src/VBox/VMM/VMMAll/PGMAllPool.cpp

@@ -88 +88 @@
 }
 
-/** @def PGMPOOL_PAGE_2_LOCKED_PTR
- * Maps a pool page pool into the current context and lock it (RC only).
- *
- * @returns VBox status code.
- * @param   pVM     The VM handle.
- * @param   pPage   The pool page.
- *
- * @remark  In RC this uses PGMGCDynMapHCPage(), so it will consume of the
- *          small page window employeed by that function. Be careful.
- * @remark  There is no need to assert on the result.
- */
-#if defined(IN_RC)
-DECLINLINE(void *) PGMPOOL_PAGE_2_LOCKED_PTR(PVM pVM, PPGMPOOLPAGE pPage)
-{
-    void *pv = pgmPoolMapPageInlined(pVM, pPage);
-
-    /* Make sure the dynamic mapping will not be reused. */
-    if (pv)
-        PGMDynLockHCPage(pVM, (uint8_t *)pv);
-
-    return pv;
-}
-#else
-# define PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage)  PGMPOOL_PAGE_2_PTR(pVM, pPage)
-#endif
-
-/** @def PGMPOOL_UNLOCK_PTR
- * Unlock a previously locked dynamic caching (RC only).
- *
- * @returns VBox status code.
- * @param   pVM     The VM handle.
- * @param   pPage   The pool page.
- *
- * @remark  In RC this uses PGMGCDynMapHCPage(), so it will consume of the
- *          small page window employeed by that function. Be careful.
- * @remark  There is no need to assert on the result.
- */
-#if defined(IN_RC)
-DECLINLINE(void) PGMPOOL_UNLOCK_PTR(PVM pVM, void *pvPage)
-{
-    if (pvPage)
-        PGMDynUnlockHCPage(pVM, (uint8_t *)pvPage);
-}
-#else
-# define PGMPOOL_UNLOCK_PTR(pVM, pPage)  do {} while (0)
-#endif
-
 
 /**
@@ -247 +200 @@
             {
                 STAM_COUNTER_INC(&pPool->CTX_MID_Z(StatMonitor,FaultPT));
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 const unsigned iShw = off / sizeof(X86PTE);
                 LogFlow(("PGMPOOLKIND_32BIT_PT_FOR_32BIT_PT iShw=%x\n", iShw));
@@ -270 +223 @@
             {
                 STAM_COUNTER_INC(&pPool->CTX_MID_Z(StatMonitor,FaultPT));
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 if (!((off ^ pPage->GCPhys) & (PAGE_SIZE / 2)))
                 {
@@ -300 +253 @@
                 unsigned iShwPdpt = iGst / 256;
                 unsigned iShw     = (iGst % 256) * 2;
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
 
                 LogFlow(("pgmPoolMonitorChainChanging PAE for 32 bits: iGst=%x iShw=%x idx = %d page idx=%d\n", iGst, iShw, iShwPdpt, pPage->enmKind - PGMPOOLKIND_PAE_PD0_FOR_32BIT_PD));
@@ -363 +316 @@
             case PGMPOOLKIND_PAE_PT_FOR_PAE_PT:
             {
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 const unsigned iShw = off / sizeof(X86PTEPAE);
                 STAM_COUNTER_INC(&pPool->CTX_MID_Z(StatMonitor,FaultPT));
@@ -409 +362 @@
             case PGMPOOLKIND_32BIT_PD:
             {
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 const unsigned iShw = off / sizeof(X86PTE);         // ASSUMING 32-bit guest paging!
 
@@ -489 +442 @@
             case PGMPOOLKIND_PAE_PD_FOR_PAE_PD:
             {
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 const unsigned iShw = off / sizeof(X86PDEPAE);
                 STAM_COUNTER_INC(&pPool->CTX_MID_Z(StatMonitor,FaultPD));
@@ -566 +519 @@
                 const unsigned offPdpt = GCPhysFault - pPage->GCPhys;
 
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 const unsigned iShw = offPdpt / sizeof(X86PDPE);
                 if (iShw < X86_PG_PAE_PDPE_ENTRIES)          /* don't use RT_ELEMENTS(uShw.pPDPT->a), because that's for long mode only */
@@ -633 +586 @@
             {
                 STAM_COUNTER_INC(&pPool->CTX_MID_Z(StatMonitor,FaultPD));
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 const unsigned iShw = off / sizeof(X86PDEPAE);
                 Assert(!(uShw.pPDPae->a[iShw].u & PGM_PDFLAGS_MAPPING));
@@ -673 +626 @@
                  * - messing with the bits of pd pointers without changing the physical address
                  */
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 const unsigned iShw = off / sizeof(X86PDPE);
                 if (uShw.pPDPT->a[iShw].n.u1Present)
@@ -703 +656 @@
                  * - messing with the bits of pd pointers without changing the physical address
                  */
-                uShw.pv = PGMPOOL_PAGE_2_LOCKED_PTR(pVM, pPage);
+                uShw.pv = PGMPOOL_PAGE_2_PTR(pVM, pPage);
                 const unsigned iShw = off / sizeof(X86PDPE);
                 if (uShw.pPML4->a[iShw].n.u1Present)
@@ -730 +683 @@
                 AssertFatalMsgFailed(("enmKind=%d\n", pPage->enmKind));
         }
-        PGMPOOL_UNLOCK_PTR(pVM, uShw.pv);
+        PGM_DYNMAP_UNUSED_HINT_VM(pVM, uShw.pv);
 
         /* next */
@@ -960 +913 @@
     while (pRegFrame->rcx)
     {
-#ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
-        uint32_t iPrevSubset = PGMDynMapPushAutoSubset(pVCpu);
+#if defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0) || defined(IN_RC)
+        uint32_t iPrevSubset = PGMRZDynMapPushAutoSubset(pVCpu);
         pgmPoolMonitorChainChanging(pVCpu, pPool, pPage, GCPhysFault, (RTGCPTR)pu32, uIncrement);
-        PGMDynMapPopAutoSubset(pVCpu, iPrevSubset);
+        PGMRZDynMapPopAutoSubset(pVCpu, iPrevSubset);
 #else
         pgmPoolMonitorChainChanging(pVCpu, pPool, pPage, GCPhysFault, (RTGCPTR)pu32, uIncrement);
@@ -1012 +965 @@
      * Clear all the pages. ASSUMES that pvFault is readable.
      */
-#ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
-    uint32_t    iPrevSubset = PGMDynMapPushAutoSubset(pVCpu);
+#if defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0) || defined(IN_RC)
+    uint32_t    iPrevSubset = PGMRZDynMapPushAutoSubset(pVCpu);
     pgmPoolMonitorChainChanging(pVCpu, pPool, pPage, GCPhysFault, pvFault, DISGetParamSize(pDis, &pDis->param1));
-    PGMDynMapPopAutoSubset(pVCpu, iPrevSubset);
+    PGMRZDynMapPopAutoSubset(pVCpu, iPrevSubset);
 #else
     pgmPoolMonitorChainChanging(pVCpu, pPool, pPage, GCPhysFault, pvFault, DISGetParamSize(pDis, &pDis->param1));
@@ -1113 +1066 @@
     if (pPage->enmKind == PGMPOOLKIND_PAE_PT_FOR_PAE_PT)
     {
-        void *pvShw = PGMPOOL_PAGE_2_LOCKED_PTR(pPool->CTX_SUFF(pVM), pPage);
+        void *pvShw = PGMPOOL_PAGE_2_PTR(pPool->CTX_SUFF(pVM), pPage);
         void *pvGst;
         int rc = PGM_GCPHYS_2_PTR(pPool->CTX_SUFF(pVM), pPage->GCPhys, &pvGst); AssertReleaseRC(rc);
@@ -1421 +1374 @@
                     if (pTempPage->enmKind == PGMPOOLKIND_PAE_PT_FOR_PAE_PT)
                     {
-                        PX86PTPAE pShwPT2 = (PX86PTPAE)PGMPOOL_PAGE_2_LOCKED_PTR(pPool->CTX_SUFF(pVM), pTempPage);
+                        PX86PTPAE pShwPT2 = (PX86PTPAE)PGMPOOL_PAGE_2_PTR(pPool->CTX_SUFF(pVM), pTempPage);
 
                         for (unsigned j = 0; j < RT_ELEMENTS(pShwPT->a); j++)
@@ -1539 +1492 @@
     pPage->fDirty = false;
 
-#ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
-    uint32_t iPrevSubset = PGMDynMapPushAutoSubset(VMMGetCpu(pVM));
+#if defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0) || defined(IN_RC)
+    PVMCPU   pVCpu = VMMGetCpu(pVM);
+    uint32_t iPrevSubset = PGMRZDynMapPushAutoSubset(pVCpu);
 #endif
 
@@ -1557 +1511 @@
     /* Flush those PTEs that have changed. */
     STAM_PROFILE_START(&pPool->StatTrackDeref,a);
-    void *pvShw = PGMPOOL_PAGE_2_LOCKED_PTR(pPool->CTX_SUFF(pVM), pPage);
+    void *pvShw = PGMPOOL_PAGE_2_PTR(pPool->CTX_SUFF(pVM), pPage);
     void *pvGst;
     bool  fFlush;
@@ -1589 +1543 @@
         Log(("Removed dirty page %RGp cMods=%d cChanges=%d\n", pPage->GCPhys, pPage->cModifications, cChanges));
 
-#ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
-    PGMDynMapPopAutoSubset(VMMGetCpu(pVM), iPrevSubset);
+#if defined(VBOX_WITH_2X_4GB_ADDR_SPACE_R0) || defined(IN_RC)
+    PGMRZDynMapPopAutoSubset(pVCpu, iPrevSubset);
 #endif
 }
@@ -1627 +1581 @@
      * references to physical pages. (the HCPhys linear lookup is *extremely* expensive!)
      */
-    void *pvShw = PGMPOOL_PAGE_2_LOCKED_PTR(pPool->CTX_SUFF(pVM), pPage);
+    void *pvShw = PGMPOOL_PAGE_2_PTR(pPool->CTX_SUFF(pVM), pPage);
     void *pvGst;
     int rc = PGM_GCPHYS_2_PTR(pPool->CTX_SUFF(pVM), pPage->GCPhys, &pvGst); AssertReleaseRC(rc);
@@ -3352 +3306 @@
         else
         {
-# ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
+# if defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0) || defined(IN_RC)
             /* Start a subset here because pgmPoolTrackFlushGCPhysPTsSlow and
                pgmPoolTrackFlushGCPhysPTs will/may kill the pool otherwise. */
-            uint32_t iPrevSubset = PGMDynMapPushAutoSubset(pVCpu);
+            uint32_t iPrevSubset = PGMRZDynMapPushAutoSubset(pVCpu);
 # endif
 
@@ -3370 +3324 @@
             *pfFlushTLBs = true;
 
-# ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
-            PGMDynMapPopAutoSubset(pVCpu, iPrevSubset);
+# if defined(VBOX_WITH_2X_4GB_ADDR_SPACE_R0) || defined(IN_RC)
+            PGMRZDynMapPopAutoSubset(pVCpu, iPrevSubset);
 # endif
         }
@@ -3663 +3617 @@
             AssertFatalMsgFailed(("enmKind=%d iUser=%#x iUserTable=%#x\n", pUserPage->enmKind, pUser->iUser, pUser->iUserTable));
     }
+    PGM_DYNMAP_UNUSED_HINT_VM(pPool->CTX_SUFF(pVM), u.pau64);
 }
 
@@ -4435 +4390 @@
      * Map the shadow page and take action according to the page kind.
      */
-    void *pvShw = PGMPOOL_PAGE_2_LOCKED_PTR(pPool->CTX_SUFF(pVM), pPage);
+    void *pvShw = PGMPOOL_PAGE_2_PTR(pPool->CTX_SUFF(pVM), pPage);
     switch (pPage->enmKind)
     {
@@ -4539 +4494 @@
     STAM_PROFILE_STOP(&pPool->StatZeroPage, z);
     pPage->fZeroed = true;
-    PGMPOOL_UNLOCK_PTR(pPool->CTX_SUFF(pVM), pvShw);
+    PGM_DYNMAP_UNUSED_HINT_VM(pPool->CTX_SUFF(pVM), pvShw);
     Assert(!pPage->cPresent);
 }
@@ -4596 +4551 @@
     }
 
-#ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
+#if defined(VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0) || defined(IN_RC)
     /* Start a subset so we won't run out of mapping space. */
     PVMCPU pVCpu = VMMGetCpu(pVM);
-    uint32_t iPrevSubset = PGMDynMapPushAutoSubset(pVCpu);
+    uint32_t iPrevSubset = PGMRZDynMapPushAutoSubset(pVCpu);
 #endif
 
@@ -4629 +4584 @@
     pgmPoolCacheFlushPage(pPool, pPage);
 
-#ifdef VBOX_WITH_2X_4GB_ADDR_SPACE_IN_R0
+#if defined(VBOX_WITH_2X_4GB_ADDR_SPACE_R0) || defined(IN_RC)
     /* Heavy stuff done. */
-    PGMDynMapPopAutoSubset(pVCpu, iPrevSubset);
+    PGMRZDynMapPopAutoSubset(pVCpu, iPrevSubset);
 #endif
 

trunk/src/VBox/VMM/VMMAll/TRPMAll.cpp

@@ -693 +693 @@
                         STAM_PROFILE_ADV_STOP(&pVM->trpm.s.aStatGCTraps[iOrgTrap], o);
 
-                    CPUMGCCallGuestTrapHandler(pRegFrame, GuestIdte.Gen.u16SegSel | 1, pVM->trpm.s.aGuestTrapHandler[iGate], eflags.u32, ss_r0, (RTRCPTR)esp_r0);
+                    PGMRZDynMapReleaseAutoSet(pVCpu);
+                    CPUMGCCallGuestTrapHandler(pRegFrame, GuestIdte.Gen.u16SegSel | 1, pVM->trpm.s.aGuestTrapHandler[iGate],
+                                               eflags.u32, ss_r0, (RTRCPTR)esp_r0);
                     /* does not return */
 #else