Changeset 45485 in vbox for trunk

Timestamp:

Apr 11, 2013 2:46:04 PM (12 years ago)

Author:

vboxsync

Message:

• *: Where possible, drop the #ifdef VBOX_WITH_RAW_RING1 when EMIsRawRing1Enabled is used.
• SELM: Don't shadow TSS.esp1/ss1 unless ring-1 compression is enabled (also fixed a log statement there).
• SELM: selmGuestToShadowDesc should not push ring-1 selectors into ring-2 unless EMIsRawRing1Enabled() holds true.
• REM: Don't set CPU_INTERRUPT_EXTERNAL_EXIT in helper_ltr() for now.

Location:

trunk

Files:

• include/VBox/vmm/cpum.h (modified) (1 diff)
• include/VBox/vmm/em.h (modified) (4 diffs)
• src/VBox/VMM/VMMAll/CPUMAllRegs.cpp (modified) (1 diff)
• src/VBox/VMM/VMMAll/EMAll.cpp (modified) (3 diffs)
• src/VBox/VMM/VMMAll/SELMAll.cpp (modified) (4 diffs)
• src/VBox/VMM/VMMAll/TRPMAll.cpp (modified) (2 diffs)
• src/VBox/VMM/VMMR3/CPUM.cpp (modified) (4 diffs)
• src/VBox/VMM/VMMR3/CSAM.cpp (modified) (1 diff)
• src/VBox/VMM/VMMR3/EM.cpp (modified) (2 diffs)
• src/VBox/VMM/VMMR3/EMRaw.cpp (modified) (3 diffs)
• src/VBox/VMM/VMMR3/PATM.cpp (modified) (2 diffs)
• src/VBox/VMM/VMMR3/PATMPatch.cpp (modified) (3 diffs)
• src/VBox/VMM/VMMR3/SELM.cpp (modified) (14 diffs)
• src/VBox/VMM/VMMR3/TRPM.cpp (modified) (1 diff)
• src/VBox/VMM/VMMRC/CPUMRC.cpp (modified) (5 diffs)
• src/VBox/VMM/VMMRC/PATMRC.cpp (modified) (2 diffs)
• src/VBox/VMM/VMMRC/SELMRC.cpp (modified) (8 diffs)
• src/VBox/VMM/VMMRC/TRPMRCHandlers.cpp (modified) (3 diffs)
• src/VBox/VMM/include/SELMInline.h (copied) (copied from trunk/src/VBox/VMM/include/SELMInternal.h ) (2 diffs)
• src/VBox/VMM/include/SELMInternal.h (modified) (2 diffs)
• src/recompiler/VBoxRecompiler.c (modified) (2 diffs)
• src/recompiler/target-i386/op_helper.c (modified) (4 diffs)

trunk/include/VBox/vmm/cpum.h

@@ -491 +491 @@
 
 
-/**
- * Get the current privilege level of the guest.
- *
- * @returns CPL
- * @param   pVCpu       The current virtual CPU.
- * @param   pRegFrame   Pointer to the register frame.
- */
 VMMDECL(uint32_t)       CPUMRCGetGuestCPL(PVMCPU pVCpu, PCPUMCTXCORE pRegFrame);
-
 #ifdef VBOX_WITH_RAW_RING1
-/**
- * Transforms the guest CPU state to raw-ring mode.
- *
- * This function will change the any of the cs and ss register with DPL=0 to DPL=1.
- *
- * @returns VBox status. (recompiler failure)
- * @param   pVCpu       Pointer to the VMCPU.
- * @param   pCtxCore    The context core (for trap usage).
- * @see     @ref pg_raw
- */
-VMMDECL(void)         CPUMRCRecheckRawState(PVMCPU pVCpu, PCPUMCTXCORE pCtxCore);
+VMMDECL(void)           CPUMRCRecheckRawState(PVMCPU pVCpu, PCPUMCTXCORE pCtxCore);
 #endif
 

trunk/include/VBox/vmm/em.h

@@ -122 +122 @@
  * @param   pVM         The VM to operate on.
  */
-#define EMIsRawRing3Enabled(pVM) (!(pVM)->fRecompileUser)
+#define EMIsRawRing3Enabled(pVM)            (!(pVM)->fRecompileUser)
 
 /**
@@ -131 +131 @@
  * @param   pVM         The VM to operate on.
  */
-#define EMIsRawRing0Enabled(pVM) (!(pVM)->fRecompileSupervisor)
+#define EMIsRawRing0Enabled(pVM)            (!(pVM)->fRecompileSupervisor)
 
 #ifdef VBOX_WITH_RAW_RING1
@@ -141 +141 @@
  * @param   pVM         The VM to operate on.
  */
-#define EMIsRawRing1Enabled(pVM) ((pVM)->fRawRing1Enabled)
+# define EMIsRawRing1Enabled(pVM)           ((pVM)->fRawRing1Enabled)
 #else
-#define EMIsRawRing1Enabled(pVM) false
+# define EMIsRawRing1Enabled(pVM)           false
 #endif
 
@@ -153 +153 @@
  * @param   pVM         The VM to operate on.
  */
-#define EMIsHwVirtExecutionEnabled(pVM) (!(pVM)->fRecompileSupervisor && !(pVM)->fRecompileUser)
+#define EMIsHwVirtExecutionEnabled(pVM)     (!(pVM)->fRecompileSupervisor && !(pVM)->fRecompileUser)
 
 /**

trunk/src/VBox/VMM/VMMAll/CPUMAllRegs.cpp

@@ -2666 +2666 @@
                 if (pVCpu->cpum.s.fRawEntered)
                 {
-                    if (    EMIsRawRing1Enabled(pVCpu->CTX_SUFF(pVM))
-                        &&  uCpl == 2)
+                    if (   uCpl == 2
+                        && EMIsRawRing1Enabled(pVCpu->CTX_SUFF(pVM)))
                         uCpl = 1;
-                    else
-                    if (uCpl == 1)
+                    else if (uCpl == 1)
                         uCpl = 0;
                 }

trunk/src/VBox/VMM/VMMAll/EMAll.cpp

@@ -57 +57 @@
 
 #ifdef VBOX_WITH_RAW_RING1
-#define EM_EMULATE_SMSW
-#endif
+# define EM_EMULATE_SMSW
+#endif
+
 
 /*******************************************************************************
@@ -3674 +3675 @@
             || pRegFrame->eflags.Bits.u2IOPL > cpl
            )
+#endif
         {
-#endif
             if (    cpl != 0
                 ||  pDis->pCurInstr->uOpcode != OP_RDTSC)    /* rdtsc requires emulation in ring 3 as well */
@@ -3683 +3684 @@
                 return VERR_EM_INTERPRETER;
             }
-#ifdef VBOX_WITH_RAW_RING1
         }
-#endif
     }
     else

trunk/src/VBox/VMM/VMMAll/SELMAll.cpp

@@ -23 +23 @@
 #include <VBox/vmm/selm.h>
 #include <VBox/vmm/stam.h>
+#include <VBox/vmm/em.h>
 #include <VBox/vmm/mm.h>
 #include <VBox/vmm/pgm.h>
@@ -33 +34 @@
 #include <VBox/vmm/vmm.h>
 #include <iprt/x86.h>
+
+#include "SELMInline.h"
 
 
@@ -838 +841 @@
 }
 
+
 #ifdef VBOX_WITH_RAW_RING1
 /**
@@ -853 +857 @@
 }
 #endif
+
 
 #ifdef VBOX_WITH_RAW_MODE_NOT_R0

trunk/src/VBox/VMM/VMMAll/TRPMAll.cpp

@@ -625 +625 @@
                     if (!fConforming && dpl < cpl)
                     {
-#ifdef IN_RC /* Only in GC mode we still see tracing of our ring modifications */
-                        if (    (pRegFrame->ss.Sel & X86_SEL_RPL) == 1 
+#ifdef IN_RC /* Only in RC we still see tracing of our ring modifications. */
+                        if (    (pRegFrame->ss.Sel & X86_SEL_RPL) == 1
                             &&  !eflags.Bits.u1VM)
                             pTrapStack[--idx] = pRegFrame->ss.Sel & ~1;         /* Mask away traces of raw ring 0 execution (ring 1). */
-# ifdef VBOX_WITH_RAW_RING1
-                        else
-                        if (    EMIsRawRing1Enabled(pVM)
-                            &&  (pRegFrame->ss.Sel & X86_SEL_RPL) == 2)
+                        else if (   EMIsRawRing1Enabled(pVM)
+                                 && (pRegFrame->ss.Sel & X86_SEL_RPL) == 2)
                             pTrapStack[--idx] = (pRegFrame->ss.Sel & ~2) | 1;   /* Mask away traces of raw ring 1 execution (ring 2). */
-# endif
                         else
 #endif  /* IN_RC */
@@ -645 +642 @@
                     /* Note: Not really necessary as we grab include those bits in the trap/irq handler trampoline */
                     pTrapStack[--idx] = eflags.u32;
-#ifdef IN_RC /* Only in GC mode we still see tracing of our ring modifications */
-                    if (    (pRegFrame->cs.Sel & X86_SEL_RPL) == 1 
+
+#ifdef IN_RC /* Only in RC mode we still see tracing of our ring modifications */
+                    if (    (pRegFrame->cs.Sel & X86_SEL_RPL) == 1
                         &&  !eflags.Bits.u1VM)
                         pTrapStack[--idx] = pRegFrame->cs.Sel & ~1;         /* Mask away traces of raw ring execution (ring 1). */
-# ifdef VBOX_WITH_RAW_RING1
-                    else
-                    if (    EMIsRawRing1Enabled(pVM)
-                        &&  (pRegFrame->cs.Sel & X86_SEL_RPL) == 2)
+                    else if (   EMIsRawRing1Enabled(pVM)
+                             && (pRegFrame->cs.Sel & X86_SEL_RPL) == 2)
                         pTrapStack[--idx] = (pRegFrame->cs.Sel & ~2) | 1;   /* Mask away traces of raw ring 1 execution (ring 2). */
-# endif
                     else
 #endif  /* IN_RC */

trunk/src/VBox/VMM/VMMR3/CPUM.cpp

@@ -4193 +4193 @@
      * Are we in Ring-0?
      */
-    if (    pCtxCore->ss.Sel 
+    if (    pCtxCore->ss.Sel
         &&  (pCtxCore->ss.Sel & X86_SEL_RPL) == 0
         &&  !pCtxCore->eflags.Bits.u1VM)
@@ -4206 +4206 @@
          */
         pCtxCore->ss.Sel |= 1;
-        if (    pCtxCore->cs.Sel 
+        if (    pCtxCore->cs.Sel
             &&  (pCtxCore->cs.Sel & X86_SEL_RPL) == 0)
             pCtxCore->cs.Sel |= 1;
@@ -4236 +4236 @@
      */
     AssertMsg((pCtxCore->eflags.u32 & X86_EFL_IF), ("X86_EFL_IF is clear\n"));
-    AssertReleaseMsg(pCtxCore->eflags.Bits.u2IOPL == 0, 
+    AssertReleaseMsg(pCtxCore->eflags.Bits.u2IOPL == 0,
                      ("X86_EFL_IOPL=%d CPL=%d\n", pCtxCore->eflags.Bits.u2IOPL, pCtxCore->ss.Sel & X86_SEL_RPL));
     Assert((pVCpu->cpum.s.Guest.cr0 & (X86_CR0_PG | X86_CR0_WP | X86_CR0_PE)) == (X86_CR0_PG | X86_CR0_PE | X86_CR0_WP));
@@ -4245 +4245 @@
     return VINF_SUCCESS;
 }
-
 
 

trunk/src/VBox/VMM/VMMR3/CSAM.cpp

@@ -849 +849 @@
     /* removing breaks win2k guests? */
     case OP_IRET:
-#ifdef VBOX_WITH_RAW_RING1
         if (EMIsRawRing1Enabled(pVM))
             break;
-#endif
         /* no break */
 

trunk/src/VBox/VMM/VMMR3/EM.cpp

@@ -1320 +1320 @@
             return EMSTATE_REM;
 
-# ifdef VBOX_WITH_RAW_RING1
-        /* Only ring 0 and 1 supervisor code. */
         if (EMIsRawRing1Enabled(pVM))
         {
+            /* Only ring 0 and 1 supervisor code. */
             if ((uSS & X86_SEL_RPL) == 2)   /* ring 1 code is moved into ring 2, so we can't support ring-2 in that case. */
             {
@@ -1330 +1329 @@
             }
         }
-        else
-# endif
         /* Only ring 0 supervisor code. */
-        if ((uSS & X86_SEL_RPL) != 0)
+        else if ((uSS & X86_SEL_RPL) != 0)
         {
             Log2(("raw r0 mode refused: CPL %d\n", uSS & X86_SEL_RPL));

trunk/src/VBox/VMM/VMMR3/EMRaw.cpp

@@ -1362 +1362 @@
         Assert(REMR3QueryPendingInterrupt(pVM, pVCpu) == REM_NO_PENDING_IRQ);
 # endif
-# ifdef VBOX_WITH_RAW_RING1
-        Assert(pCtx->eflags.Bits.u1VM || (pCtx->ss.Sel & X86_SEL_RPL) == 3 || (pCtx->ss.Sel & X86_SEL_RPL) == 0 || (EMIsRawRing1Enabled(pVM) && (pCtx->ss.Sel & X86_SEL_RPL) == 1));
-# else
-        Assert(pCtx->eflags.Bits.u1VM || (pCtx->ss.Sel & X86_SEL_RPL) == 3 || (pCtx->ss.Sel & X86_SEL_RPL) == 0);
-# endif
+        Assert(pCtx->eflags.Bits.u1VM || (pCtx->ss.Sel & X86_SEL_RPL) == 3 || (pCtx->ss.Sel & X86_SEL_RPL) == 0
+               || (EMIsRawRing1Enabled(pVM) && (pCtx->ss.Sel & X86_SEL_RPL) == 1));
         AssertMsg(   (pCtx->eflags.u32 & X86_EFL_IF)
                   || PATMShouldUseRawMode(pVM, (RTGCPTR)pCtx->eip),
@@ -1446 +1443 @@
 
 
+
         /*
          * Execute the code.
@@ -1551 +1549 @@
             ||  VMCPU_FF_ISPENDING(pVCpu, ~VMCPU_FF_HIGH_PRIORITY_PRE_RAW_MASK))
         {
-            Assert(pCtx->eflags.Bits.u1VM || (EMIsRawRing1Enabled(pVM) ? ((pCtx->ss.Sel & X86_SEL_RPL) != 2) : ((pCtx->ss.Sel & X86_SEL_RPL) != 1)));
+            Assert(pCtx->eflags.Bits.u1VM || (pCtx->ss.Sel & X86_SEL_RPL) != (EMIsRawRing1Enabled(pVM) ? 2 : 1));
 
             STAM_REL_PROFILE_ADV_SUSPEND(&pVCpu->em.s.StatRAWTotal, a);

trunk/src/VBox/VMM/VMMR3/PATM.cpp

@@ -1535 +1535 @@
         break;
 
-#ifdef VBOX_WITH_SAFE_STR   /* @todo remove DISOPTYPE_PRIVILEGED_NOTRAP from disasm table */
+#ifdef VBOX_WITH_SAFE_STR   /** @todo remove DISOPTYPE_PRIVILEGED_NOTRAP from disasm table */
     case OP_STR:
         break;
@@ -1651 +1651 @@
         return VINF_SUCCESS;
 
-#ifdef VBOX_WITH_SAFE_STR   /* @todo remove DISOPTYPE_PRIVILEGED_NOTRAP from disasm table */
+#ifdef VBOX_WITH_SAFE_STR   /** @todo remove DISOPTYPE_PRIVILEGED_NOTRAP from disasm table */
     case OP_STR:
         break;

trunk/src/VBox/VMM/VMMR3/PATMPatch.cpp

@@ -439 +439 @@
     callInfo.pCurInstrGC = pCurInstrGC;
 
-#ifdef VBOX_WITH_RAW_RING1
     if (EMIsRawRing1Enabled(pVM))
-    {
         size = patmPatchGenCode(pVM, pPatch, pPB, &PATMIretRing1Record, 0, false, &callInfo);
-    }
     else
-#endif
         size = patmPatchGenCode(pVM, pPatch, pPB, &PATMIretRecord, 0, false, &callInfo);
 
@@ -1083 +1079 @@
     int rc = VINF_SUCCESS;
 
-#ifdef VBOX_WITH_RAW_RING1
-    if (!EMIsRawRing1Enabled(pVM))    /* direct passthru of interrupts is not allowed in the ring-1 support case as we can't deal with the ring-1/2 ambiguity in the patm asm code and we don't need it either as TRPMForwardTrap takes care of the details. */
-    {
-#endif
+    if (!EMIsRawRing1Enabled(pVM))    /* direct passthru of interrupts is not allowed in the ring-1 support case as we can't
+                                         deal with the ring-1/2 ambiguity in the patm asm code and we don't need it either as
+                                         TRPMForwardTrap takes care of the details. */
+    {
         uint32_t size;
         PATCHGEN_PROLOG(pVM, pPatch);
@@ -1099 +1095 @@
 
         PATCHGEN_EPILOG(pPatch, size);
-#ifdef VBOX_WITH_RAW_RING1
-    }
-#endif
+    }
 
     // Interrupt gates set IF to 0

trunk/src/VBox/VMM/VMMR3/SELM.cpp

@@ -63 +63 @@
 #include <VBox/vmm/cpum.h>
 #include <VBox/vmm/stam.h>
+#include <VBox/vmm/em.h>
 #include <VBox/vmm/mm.h>
 #include <VBox/vmm/ssm.h>
@@ -80 +81 @@
 #include <iprt/string.h>
 
+#include "SELMInline.h"
 
 
@@ -957 +959 @@
 
 #ifdef VBOX_WITH_SAFE_STR
-    /** Use the guest's TR selector to plug the str virtualization hole. */
+    /* Use the guest's TR selector to plug the str virtualization hole. */
     if (CPUMGetGuestTR(pVCpu, NULL) != 0)
     {
@@ -1029 +1031 @@
     {
         Log(("SELMR3UpdateFromCPUM: Guest's GDT is changed to pGdt=%016RX64 cbGdt=%08X\n", GDTR.pGdt, GDTR.cbGdt));
+
 #ifdef SELM_TRACK_GUEST_GDT_CHANGES
         /*
@@ -1044 +1047 @@
                                          "Guest GDT write access handler");
 # ifdef VBOX_WITH_RAW_RING1
-        /* Some guest OSes (QNX) share code and the GDT on the same page; PGMR3HandlerVirtualRegister doesn't support more than one handler, so we kick out the 
-         * PATM handler as this one is more important. 
-         * @todo fix this properly in PGMR3HandlerVirtualRegister
+        /** @todo !HACK ALERT!
+         * Some guest OSes (QNX) share code and the GDT on the same page;
+         * PGMR3HandlerVirtualRegister doesn't support more than one handler,
+         * so we kick out the  PATM handler as this one is more important.
+         * Fix this properly in PGMR3HandlerVirtualRegister?
          */
         if (rc == VERR_PGM_HANDLER_VIRTUAL_CONFLICT)
@@ -1062 +1067 @@
         if (RT_FAILURE(rc))
             return rc;
-#endif
+#endif /* SELM_TRACK_GUEST_GDT_CHANGES */
+
         /* Update saved Guest GDTR. */
         pVM->selm.s.GuestGdtr = GDTR;
@@ -1243 +1249 @@
     /** @todo investigate how intel handle various operations on half present cross page entries. */
     off = GCPtrLdt & (sizeof(X86DESC) - 1);
-////    AssertMsg(!off, ("LDT is not aligned on entry size! GCPtrLdt=%08x\n", GCPtrLdt));
+    AssertMsg(!off, ("LDT is not aligned on entry size! GCPtrLdt=%08x\n", GCPtrLdt));
 
     /* Note: Do not skip the first selector; unlike the GDT, a zero LDT selector is perfectly valid. */
@@ -1473 +1479 @@
     STAM_PROFILE_STOP(&pVM->selm.s.StatUpdateFromCPUM, a);
     return rcStrict;
-#endif
-}
+#endif /* VBOX_WITH_RAW_MODE */
+}
+
 
 #ifdef SELM_TRACK_GUEST_GDT_CHANGES
@@ -1568 +1575 @@
 }
 #endif
+
 
 /**
@@ -1719 +1727 @@
 #ifdef VBOX_WITH_RAW_RING1
             /* Update our TSS structure for the guest's ring 2 stack */
-            selmSetRing2Stack(pVM, (Tss.ss1 & ~1) | 2, Tss.esp1);
-
-            if (    (pVM->selm.s.Tss.ss2 != ((Tss.ss1 & ~2) | 1))
-                ||  pVM->selm.s.Tss.esp2 != Tss.esp1)
+            if (EMIsRawRing1Enabled(pVM))
             {
-                Log(("SELMR3SyncTSS: Updating TSS ring 1 stack to %04X:%08X from %04X:%08X\n", Tss.ss1, Tss.esp1, (pVM->selm.s.Tss.ss2 & ~2) | 1, pVM->selm.s.Tss.esp2));
+                if (    (pVM->selm.s.Tss.ss2 != ((Tss.ss1 & ~2) | 1))
+                    ||  pVM->selm.s.Tss.esp2 != Tss.esp1)
+                    Log(("SELMR3SyncTSS: Updating TSS ring 1 stack to %04X:%08X from %04X:%08X\n", Tss.ss1, Tss.esp1, (pVM->selm.s.Tss.ss2 & ~2) | 1, pVM->selm.s.Tss.esp2));
+                selmSetRing2Stack(pVM, (Tss.ss1 & ~1) | 2, Tss.esp1);
             }
 #endif
@@ -1770 +1778 @@
             {
 # ifdef VBOX_WITH_RAW_RING1
-                /* Some guest OSes (QNX) share code and the TSS on the same page; PGMR3HandlerVirtualRegister doesn't support more than one handler, so we kick out the 
-                 * PATM handler as this one is more important. 
-                 * @todo fix this properly in PGMR3HandlerVirtualRegister
+                /** @todo !HACK ALERT!
+                 * Some guest OSes (QNX) share code and the TSS on the same page;
+                 * PGMR3HandlerVirtualRegister doesn't support more than one
+                 * handler, so we kick out the PATM handler as this one is more
+                 * important. Fix this properly in PGMR3HandlerVirtualRegister?
                  */
                 if (rc == VERR_PGM_HANDLER_VIRTUAL_CONFLICT)
@@ -1794 +1804 @@
 # endif
            }
-#endif
+#endif /* SELM_TRACK_GUEST_TSS_CHANGES */
+
             /* Update saved Guest TSS info. */
             pVM->selm.s.GCPtrGuestTss       = GCPtrTss;
@@ -2095 +2106 @@
 }
 
+
 # ifdef VBOX_WITH_SAFE_STR
 /**
- * Validates the RawR0 TR shadow GDT entry
+ * Validates the RawR0 TR shadow GDT entry.
  *
  * @returns true if it matches.
@@ -2135 +2147 @@
     return true;
 }
-# endif 
+# endif /* VBOX_WITH_SAFE_STR */
 
 #endif /* VBOX_WITH_RAW_MODE */

trunk/src/VBox/VMM/VMMR3/TRPM.cpp

@@ -1331 +1331 @@
 
     if (    EMIsRawRing0Enabled(pVM)
-#ifdef VBOX_WITH_RAW_RING1
-        && !EMIsRawRing1Enabled(pVM)    /* can't deal with the ambiguity of ring 1 & 2 in the patch code. */
-#endif
-       )
+        && !EMIsRawRing1Enabled(pVM))   /* can't deal with the ambiguity of ring 1 & 2 in the patch code. */
     {
         /*

trunk/src/VBox/VMM/VMMRC/CPUMRC.cpp

@@ -115 +115 @@
  * @param   pVCpu       The current virtual CPU.
  * @param   pRegFrame   Pointer to the register frame.
+ *
+ * @todo    r=bird: This is very similar to CPUMGetGuestCPL and I cannot quite
+ *          see why this variant of the code is necessary.
  */
 VMMDECL(uint32_t) CPUMRCGetGuestCPL(PVMCPU pVCpu, PCPUMCTXCORE pRegFrame)
@@ -142 +145 @@
         if (pVCpu->cpum.s.fRawEntered)
         {
-            if (    EMIsRawRing1Enabled(pVCpu->CTX_SUFF(pVM))
-                &&  uCpl == 2)
+            if (   uCpl == 2
+                && EMIsRawRing1Enabled(pVCpu->CTX_SUFF(pVM)) )
                 uCpl = 1;
-            else
-            if (uCpl == 1)
+            else if (uCpl == 1)
                 uCpl = 0;
         }
@@ -162 +164 @@
 }
 
+
 #ifdef VBOX_WITH_RAW_RING1
 /**
@@ -168 +171 @@
  * This function will change the any of the cs and ss register with DPL=0 to DPL=1.
  *
- * @returns VBox status. (recompiler failure)
+ * Used by emInterpretIret() after the new state has been loaded.
+ *
  * @param   pVCpu       Pointer to the VMCPU.
  * @param   pCtxCore    The context core (for trap usage).
  * @see     @ref pg_raw
+ * @remarks Will be probably obsoleted by #5653 (it will leave and reenter raw
+ *          mode instead, I think).
  */
 VMMDECL(void) CPUMRCRecheckRawState(PVMCPU pVCpu, PCPUMCTXCORE pCtxCore)
@@ -213 +219 @@
 }
 #endif /* VBOX_WITH_RAW_RING1 */
+

trunk/src/VBox/VMM/VMMRC/PATMRC.cpp

@@ -155 +155 @@
 
     /* Very important check -> otherwise we have a security leak. */
-#ifdef VBOX_WITH_RAW_RING1
-    AssertReturn(!pRegFrame->eflags.Bits.u1VM && (pRegFrame->ss.Sel & X86_SEL_RPL) <= (unsigned) (EMIsRawRing1Enabled(pVM) ? 2 : 1), VERR_ACCESS_DENIED);
-#else
-    AssertReturn(!pRegFrame->eflags.Bits.u1VM && (pRegFrame->ss.Sel & X86_SEL_RPL) == 1, VERR_ACCESS_DENIED);
-#endif
+    AssertReturn(!pRegFrame->eflags.Bits.u1VM && (pRegFrame->ss.Sel & X86_SEL_RPL) <= (EMIsRawRing1Enabled(pVM) ? 2U : 1U),
+                 VERR_ACCESS_DENIED);
     Assert(PATMIsPatchGCAddr(pVM, pRegFrame->eip));
 
@@ -459 +456 @@
     int rc;
 
-#ifdef VBOX_WITH_RAW_RING1
-    AssertReturn(!pRegFrame->eflags.Bits.u1VM && ((pRegFrame->ss.Sel & X86_SEL_RPL) == 1 || (EMIsRawRing1Enabled(pVM) && (pRegFrame->ss.Sel & X86_SEL_RPL) == 2)), VERR_ACCESS_DENIED);
-#else
-    AssertReturn(!pRegFrame->eflags.Bits.u1VM && (pRegFrame->ss.Sel & X86_SEL_RPL) == 1, VERR_ACCESS_DENIED);
-#endif
+    AssertReturn(!pRegFrame->eflags.Bits.u1VM
+                 && (   (pRegFrame->ss.Sel & X86_SEL_RPL) == 1
+                     || (EMIsRawRing1Enabled(pVM) && (pRegFrame->ss.Sel & X86_SEL_RPL) == 2)), VERR_ACCESS_DENIED);
 
     /* Int 3 in PATM generated code? (most common case) */

trunk/src/VBox/VMM/VMMRC/SELMRC.cpp

@@ -35 +35 @@
 #include <iprt/asm.h>
 
+#include "SELMInline.h"
+
 
 /*******************************************************************************
@@ -43 +45 @@
 static char const g_aszSRegNms[X86_SREG_COUNT][4] = { "ES", "CS", "SS", "DS", "FS", "GS" };
 #endif
+
 
 #ifdef SELM_TRACK_GUEST_GDT_CHANGES
@@ -308 +311 @@
 #endif /* SELM_TRACK_GUEST_GDT_CHANGES */
 
+
 #ifdef SELM_TRACK_GUEST_LDT_CHANGES
 /**
@@ -332 +336 @@
 }
 #endif
+
 
 #ifdef SELM_TRACK_GUEST_TSS_CHANGES
@@ -407 +412 @@
         }
 #ifdef VBOX_WITH_RAW_RING1
-        else
-        if (    EMIsRawRing1Enabled(pVM)
-            &&  PAGE_ADDRESS(&pGuestTss->esp1) == PAGE_ADDRESS(&pGuestTss->padding_ss1)
-            &&  PAGE_ADDRESS(&pGuestTss->esp1) == PAGE_ADDRESS((uint8_t *)pGuestTss + offRange)
-            &&  (    pGuestTss->esp1 !=  pVM->selm.s.Tss.esp2
-                 ||  pGuestTss->ss1  != ((pVM->selm.s.Tss.ss2 & ~2) | 1)) /* undo raw-r1 */
-           )
+        else if (    EMIsRawRing1Enabled(pVM)
+                 &&  PAGE_ADDRESS(&pGuestTss->esp1) == PAGE_ADDRESS(&pGuestTss->padding_ss1)
+                 &&  PAGE_ADDRESS(&pGuestTss->esp1) == PAGE_ADDRESS((uint8_t *)pGuestTss + offRange)
+                 &&  (    pGuestTss->esp1 !=  pVM->selm.s.Tss.esp2
+                      ||  pGuestTss->ss1  != ((pVM->selm.s.Tss.ss2 & ~2) | 1)) /* undo raw-r1 */
+                )
         {
             Log(("selmRCGuestTSSWriteHandler: R1 stack: %RTsel:%RGv -> %RTsel:%RGv\n",
@@ -513 +517 @@
 #endif /* SELM_TRACK_GUEST_TSS_CHANGES */
 
+
 #ifdef SELM_TRACK_SHADOW_GDT_CHANGES
 /**
@@ -534 +539 @@
 #endif
 
+
 #ifdef SELM_TRACK_SHADOW_LDT_CHANGES
 /**
@@ -556 +562 @@
 #endif
 
+
 #ifdef SELM_TRACK_SHADOW_TSS_CHANGES
 /**

trunk/src/VBox/VMM/VMMRC/TRPMRCHandlers.cpp

@@ -304 +304 @@
     PVM         pVM   = TRPMCPU_2_VM(pTrpmCpu);
     PVMCPU      pVCpu = TRPMCPU_2_VMCPU(pTrpmCpu);
-    //LogFlow(("TRPMGC01: cs:eip=%04x:%08x uDr6=%RTreg EFL=%x\n", pRegFrame->cs.Sel, pRegFrame->eip, uDr6, CPUMRawGetEFlags(pVCpu)));
+    LogFlow(("TRPMGC01: cs:eip=%04x:%08x uDr6=%RTreg EFL=%x\n", pRegFrame->cs.Sel, pRegFrame->eip, uDr6, CPUMRawGetEFlags(pVCpu)));
     TRPM_ENTER_DBG_HOOK(1);
 
@@ -445 +445 @@
      * PATM is using INT3s, let them have a go first.
      */
-#ifdef VBOX_WITH_RAW_RING1
-    if (    (   (pRegFrame->ss.Sel & X86_SEL_RPL) == 1
-             || (EMIsRawRing1Enabled(pVM) && (pRegFrame->ss.Sel & X86_SEL_RPL) == 2))
-#else
-    if (    (pRegFrame->ss.Sel & X86_SEL_RPL) == 1
-#endif
-        &&  !pRegFrame->eflags.Bits.u1VM)
+    if (   (   (pRegFrame->ss.Sel & X86_SEL_RPL) == 1
+            || (EMIsRawRing1Enabled(pVM) && (pRegFrame->ss.Sel & X86_SEL_RPL) == 2) )
+        && !pRegFrame->eflags.Bits.u1VM)
     {
         rc = PATMRCHandleInt3PatchTrap(pVM, pRegFrame);
@@ -528 +524 @@
     PGMRZDynMapStartAutoSet(pVCpu);
 
-#ifdef VBOX_WITH_RAW_RING1
-    if (CPUMGetGuestCPL(pVCpu) <= (unsigned)(EMIsRawRing1Enabled(pVM) ? 1 : 0))
-#else
-    if (CPUMGetGuestCPL(pVCpu) == 0)
-#endif
+    if (CPUMGetGuestCPL(pVCpu) <= (EMIsRawRing1Enabled(pVM) ? 1U : 0U))
     {
         /*

trunk/src/VBox/VMM/include/SELMInline.h

@@ -16 +16 @@
  */
 
-#ifndef ___SELMInternal_h
-#define ___SELMInternal_h
-
-#include <VBox/cdefs.h>
-#include <VBox/types.h>
-#include <VBox/vmm/stam.h>
-#include <VBox/vmm/cpum.h>
-#include <VBox/log.h>
-#include <iprt/x86.h>
-#include <VBox/vmm/em.h>
-
-
-
-/** @defgroup grp_selm_int   Internals
- * @ingroup grp_selm
- * @internal
- * @{
- */
-
-/**
- * Enable or disable tracking of Shadow GDT/LDT/TSS.
- * @{
- */
-#define SELM_TRACK_SHADOW_GDT_CHANGES
-#define SELM_TRACK_SHADOW_LDT_CHANGES
-#define SELM_TRACK_SHADOW_TSS_CHANGES
-/** @} */
-
-/**
- * Enable or disable tracking of Guest GDT/LDT/TSS.
- * @{
- */
-#define SELM_TRACK_GUEST_GDT_CHANGES
-#define SELM_TRACK_GUEST_LDT_CHANGES
-#define SELM_TRACK_GUEST_TSS_CHANGES
-/** @} */
-
-
-/** The number of GDTS allocated for our GDT. (full size) */
-#define SELM_GDT_ELEMENTS                   8192
-
-/** aHyperSel index to retrieve hypervisor selectors */
-/** The Flat CS selector used by the VMM inside the GC. */
-#define SELM_HYPER_SEL_CS                   0
-/** The Flat DS selector used by the VMM inside the GC. */
-#define SELM_HYPER_SEL_DS                   1
-/** The 64-bit mode CS selector used by the VMM inside the GC. */
-#define SELM_HYPER_SEL_CS64                 2
-/** The TSS selector used by the VMM inside the GC. */
-#define SELM_HYPER_SEL_TSS                  3
-/** The TSS selector for taking trap 08 (\#DF). */
-#define SELM_HYPER_SEL_TSS_TRAP08           4
-/** Number of GDTs we need for internal use */
-#define SELM_HYPER_SEL_MAX                  (SELM_HYPER_SEL_TSS_TRAP08 + 1)
-
-
-/** Default GDT selectors we use for the hypervisor. */
-#define SELM_HYPER_DEFAULT_SEL_CS           ((SELM_GDT_ELEMENTS - 0x1) << 3)
-#define SELM_HYPER_DEFAULT_SEL_DS           ((SELM_GDT_ELEMENTS - 0x2) << 3)
-#define SELM_HYPER_DEFAULT_SEL_CS64         ((SELM_GDT_ELEMENTS - 0x3) << 3)
-#define SELM_HYPER_DEFAULT_SEL_TSS          ((SELM_GDT_ELEMENTS - 0x4) << 3)
-#define SELM_HYPER_DEFAULT_SEL_TSS_TRAP08   ((SELM_GDT_ELEMENTS - 0x5) << 3)
-/** The lowest value default we use. */
-#define SELM_HYPER_DEFAULT_BASE             SELM_HYPER_DEFAULT_SEL_TSS_TRAP08
-
-/**
- * Converts a SELM pointer into a VM pointer.
- * @returns Pointer to the VM structure the SELM is part of.
- * @param   pSELM   Pointer to SELM instance data.
- */
-#define SELM2VM(pSELM)  ( (PVM)((char *)pSELM - pSELM->offVM) )
-
-
-
-/**
- * SELM Data (part of VM)
- */
-typedef struct SELM
-{
-    /** Offset to the VM structure.
-     * See SELM2VM(). */
-    RTINT                   offVM;
-
-    /** Flat CS, DS, 64 bit mode CS, TSS & trap 8 TSS. */
-    RTSEL                   aHyperSel[SELM_HYPER_SEL_MAX];
-
-    /** Pointer to the GCs - R3 Ptr.
-     * This size is governed by SELM_GDT_ELEMENTS. */
-    R3PTRTYPE(PX86DESC)     paGdtR3;
-    /** Pointer to the GCs - RC Ptr.
-     * This is not initialized until the first relocation because it's used to
-     * check if the shadow GDT virtual handler requires deregistration. */
-    RCPTRTYPE(PX86DESC)     paGdtRC;
-    /** Current (last) Guest's GDTR.
-     * The pGdt member is set to RTRCPTR_MAX if we're not monitoring the guest GDT. */
-    VBOXGDTR                GuestGdtr;
-    /** The current (last) effective Guest GDT size. */
-    RTUINT                  cbEffGuestGdtLimit;
-
-    uint32_t                padding0;
-
-    /** R3 pointer to the LDT shadow area in HMA. */
-    R3PTRTYPE(void *)       pvLdtR3;
-    /** RC pointer to the LDT shadow area in HMA. */
-    RCPTRTYPE(void *)       pvLdtRC;
-#if GC_ARCH_BITS == 64
-    RTRCPTR                 padding1;
-#endif
-    /** The address of the guest LDT.
-     * RTRCPTR_MAX if not monitored. */
-    RTGCPTR                 GCPtrGuestLdt;
-    /** Current LDT limit, both Guest and Shadow. */
-    RTUINT                  cbLdtLimit;
-    /** Current LDT offset relative to pvLdtR3/pvLdtRC. */
-    RTUINT                  offLdtHyper;
-#if HC_ARCH_BITS == 32 && GC_ARCH_BITS == 64
-    uint32_t                padding2[2];
-#endif
-    /** TSS. (This is 16 byte aligned!)
-      * @todo I/O bitmap & interrupt redirection table? */
-    VBOXTSS                 Tss;
-
-    /** TSS for trap 08 (\#DF). */
-    VBOXTSS                 TssTrap08;
-
-    /** Monitored shadow TSS address. */
-    RCPTRTYPE(void *)       pvMonShwTssRC;
-#if GC_ARCH_BITS == 64
-    RTRCPTR                 padding3;
-#endif
-    /** GC Pointer to the current Guest's TSS.
-     * RTRCPTR_MAX if not monitored. */
-    RTGCPTR                 GCPtrGuestTss;
-    /** The size of the guest TSS. */
-    RTUINT                  cbGuestTss;
-    /** Set if it's a 32-bit TSS. */
-    bool                    fGuestTss32Bit;
-    /** The size of the Guest's TSS part we're monitoring. */
-    RTUINT                  cbMonitoredGuestTss;
-    /** The guest TSS selector at last sync (part of monitoring).
-     * Contains RTSEL_MAX if not set. */
-    RTSEL                   GCSelTss;
-    /** The last known offset of the I/O bitmap.
-     * This is only used if we monitor the bitmap. */
-    uint16_t                offGuestIoBitmap;
-
-    /** Indicates that the Guest GDT access handler have been registered. */
-    bool                    fGDTRangeRegistered;
-
-    /** Indicates whether LDT/GDT/TSS monitoring and syncing is disabled. */
-    bool                    fDisableMonitoring;
-
-    /** Indicates whether the TSS stack selector & base address need to be refreshed.  */
-    bool                    fSyncTSSRing0Stack;
-    bool                    fPadding2[1+2];
-
-    /** SELMR3UpdateFromCPUM() profiling. */
-    STAMPROFILE             StatUpdateFromCPUM;
-    /** SELMR3SyncTSS() profiling. */
-    STAMPROFILE             StatTSSSync;
-
-    /** GC: The number of handled writes to the Guest's GDT. */
-    STAMCOUNTER             StatRCWriteGuestGDTHandled;
-    /** GC: The number of unhandled write to the Guest's GDT. */
-    STAMCOUNTER             StatRCWriteGuestGDTUnhandled;
-    /** GC: The number of times writes to Guest's LDT was detected. */
-    STAMCOUNTER             StatRCWriteGuestLDT;
-    /** GC: The number of handled writes to the Guest's TSS. */
-    STAMCOUNTER             StatRCWriteGuestTSSHandled;
-    /** GC: The number of handled writes to the Guest's TSS where we detected a change. */
-    STAMCOUNTER             StatRCWriteGuestTSSHandledChanged;
-    /** GC: The number of handled redir writes to the Guest's TSS where we detected a change. */
-    STAMCOUNTER             StatRCWriteGuestTSSRedir;
-    /** GC: The number of unhandled writes to the Guest's TSS. */
-    STAMCOUNTER             StatRCWriteGuestTSSUnhandled;
-    /** The number of times we had to relocate our hypervisor selectors. */
-    STAMCOUNTER             StatHyperSelsChanged;
-    /** The number of times we had find free hypervisor selectors. */
-    STAMCOUNTER             StatScanForHyperSels;
-    /** Counts the times we detected state selectors in SELMR3UpdateFromCPUM. */
-    STAMCOUNTER             aStatDetectedStaleSReg[X86_SREG_COUNT];
-    /** Counts the times we were called with already state selectors in
-     * SELMR3UpdateFromCPUM. */
-    STAMCOUNTER             aStatAlreadyStaleSReg[X86_SREG_COUNT];
-    /** Counts the times we found a stale selector becomming valid again. */
-    STAMCOUNTER             StatStaleToUnstaleSReg;
-#ifdef VBOX_WITH_STATISTICS
-    /** Times we updated hidden selector registers in CPUMR3UpdateFromCPUM. */
-    STAMCOUNTER             aStatUpdatedSReg[X86_SREG_COUNT];
-    STAMCOUNTER             StatLoadHidSelGst;
-    STAMCOUNTER             StatLoadHidSelShw;
-#endif
-    STAMCOUNTER             StatLoadHidSelReadErrors;
-    STAMCOUNTER             StatLoadHidSelGstNoGood;
-} SELM, *PSELM;
-
-RT_C_DECLS_BEGIN
-
-VMMRCDECL(int) selmRCGuestGDTWriteHandler(PVM pVM, RTGCUINT uErrorCode, PCPUMCTXCORE pRegFrame, RTGCPTR pvFault, RTGCPTR pvRange, uintptr_t offRange);
-VMMRCDECL(int) selmRCGuestLDTWriteHandler(PVM pVM, RTGCUINT uErrorCode, PCPUMCTXCORE pRegFrame, RTGCPTR pvFault, RTGCPTR pvRange, uintptr_t offRange);
-VMMRCDECL(int) selmRCGuestTSSWriteHandler(PVM pVM, RTGCUINT uErrorCode, PCPUMCTXCORE pRegFrame, RTGCPTR pvFault, RTGCPTR pvRange, uintptr_t offRange);
-
-VMMRCDECL(int) selmRCShadowGDTWriteHandler(PVM pVM, RTGCUINT uErrorCode, PCPUMCTXCORE pRegFrame, RTGCPTR pvFault, RTGCPTR pvRange, uintptr_t offRange);
-VMMRCDECL(int) selmRCShadowLDTWriteHandler(PVM pVM, RTGCUINT uErrorCode, PCPUMCTXCORE pRegFrame, RTGCPTR pvFault, RTGCPTR pvRange, uintptr_t offRange);
-VMMRCDECL(int) selmRCShadowTSSWriteHandler(PVM pVM, RTGCUINT uErrorCode, PCPUMCTXCORE pRegFrame, RTGCPTR pvFault, RTGCPTR pvRange, uintptr_t offRange);
-
-void           selmSetRing1Stack(PVM pVM, uint32_t ss, RTGCPTR32 esp);
-#ifdef VBOX_WITH_RAW_RING1
-void           selmSetRing2Stack(PVM pVM, uint32_t ss, RTGCPTR32 esp);
-#endif
-
-RT_C_DECLS_END
-
+#ifndef ___SELMInline_h
+#define ___SELMInline_h
 
 #ifdef VBOX_WITH_RAW_MODE_NOT_R0
@@ -416 +205 @@
         }
 # ifdef VBOX_WITH_RAW_RING1
-        else
-        if (    pDesc->Gen.u2Dpl == 1
-//            &&  EMIsRawRing1Enabled(pVM)
-            &&      (pDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF))
-                !=  (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF) )
+        else if (    pDesc->Gen.u2Dpl == 1
+                 &&  EMIsRawRing1Enabled(pVM)
+                 &&      (pDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF))
+                     !=  (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF) )
         {
             pDesc->Gen.u2Dpl       = 2;

trunk/src/VBox/VMM/include/SELMInternal.h

@@ -25 +25 @@
 #include <VBox/log.h>
 #include <iprt/x86.h>
-#include <VBox/vmm/em.h>
 
 
@@ -229 +228 @@
 RT_C_DECLS_END
 
-
-#ifdef VBOX_WITH_RAW_MODE_NOT_R0
-
-/**
- * Checks if a shadow descriptor table entry is good for the given segment
- * register.
- *
- * @returns @c true if good, @c false if not.
- * @param   pSReg               The segment register.
- * @param   pShwDesc            The shadow descriptor table entry.
- * @param   iSReg               The segment register index (X86_SREG_XXX).
- * @param   uCpl                The CPL.
- */
-DECLINLINE(bool) selmIsShwDescGoodForSReg(PCCPUMSELREG pSReg, PCX86DESC pShwDesc, uint32_t iSReg, uint32_t uCpl)
-{
-    /*
-     * See iemMiscValidateNewSS, iemCImpl_LoadSReg and intel+amd manuals.
-     */
-
-    if (!pShwDesc->Gen.u1Present)
-    {
-        Log(("selmIsShwDescGoodForSReg: Not present\n"));
-        return false;
-    }
-
-    if (!pShwDesc->Gen.u1DescType)
-    {
-        Log(("selmIsShwDescGoodForSReg: System descriptor\n"));
-        return false;
-    }
-
-    if (iSReg == X86_SREG_SS)
-    {
-        if ((pShwDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_WRITE)) != X86_SEL_TYPE_WRITE)
-        {
-            Log(("selmIsShwDescGoodForSReg: Stack must be writable\n"));
-            return false;
-        }
-        if (uCpl > (unsigned)pShwDesc->Gen.u2Dpl - pShwDesc->Gen.u1Available)
-        {
-            Log(("selmIsShwDescGoodForSReg: CPL(%d) > DPL(%d)\n", uCpl, pShwDesc->Gen.u2Dpl - pShwDesc->Gen.u1Available));
-            return false;
-        }
-    }
-    else
-    {
-        if (iSReg == X86_SREG_CS)
-        {
-            if (!(pShwDesc->Gen.u4Type & X86_SEL_TYPE_CODE))
-            {
-                Log(("selmIsShwDescGoodForSReg: CS needs code segment\n"));
-                return false;
-            }
-        }
-        else if ((pShwDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_READ)) == X86_SEL_TYPE_CODE)
-        {
-            Log(("selmIsShwDescGoodForSReg: iSReg=%u execute only\n", iSReg));
-            return false;
-        }
-
-        if (       (pShwDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF))
-                != (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF)
-            &&  (   (   (pSReg->Sel & X86_SEL_RPL) > (unsigned)pShwDesc->Gen.u2Dpl - pShwDesc->Gen.u1Available
-                     && (pSReg->Sel & X86_SEL_RPL) != pShwDesc->Gen.u1Available )
-                 || uCpl > (unsigned)pShwDesc->Gen.u2Dpl - pShwDesc->Gen.u1Available ) )
-        {
-            Log(("selmIsShwDescGoodForSReg: iSReg=%u DPL=%u CPL=%u RPL=%u\n", iSReg,
-                 pShwDesc->Gen.u2Dpl - pShwDesc->Gen.u1Available, uCpl, pSReg->Sel & X86_SEL_RPL));
-            return false;
-        }
-    }
-
-    return true;
-}
-
-
-/**
- * Checks if a guest descriptor table entry is good for the given segment
- * register.
- *
- * @returns @c true if good, @c false if not.
- * @param   pVCpu               The current virtual CPU.
- * @param   pSReg               The segment register.
- * @param   pGstDesc            The guest descriptor table entry.
- * @param   iSReg               The segment register index (X86_SREG_XXX).
- * @param   uCpl                The CPL.
- */
-DECLINLINE(bool) selmIsGstDescGoodForSReg(PVMCPU pVCpu, PCCPUMSELREG pSReg, PCX86DESC pGstDesc, uint32_t iSReg, uint32_t uCpl)
-{
-    /*
-     * See iemMiscValidateNewSS, iemCImpl_LoadSReg and intel+amd manuals.
-     */
-
-    if (!pGstDesc->Gen.u1Present)
-    {
-        Log(("selmIsGstDescGoodForSReg: Not present\n"));
-        return false;
-    }
-
-    if (!pGstDesc->Gen.u1DescType)
-    {
-        Log(("selmIsGstDescGoodForSReg: System descriptor\n"));
-        return false;
-    }
-
-    if (iSReg == X86_SREG_SS)
-    {
-        if ((pGstDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_WRITE)) != X86_SEL_TYPE_WRITE)
-        {
-            Log(("selmIsGstDescGoodForSReg: Stack must be writable\n"));
-            return false;
-        }
-        if (uCpl > pGstDesc->Gen.u2Dpl)
-        {
-            Log(("selmIsGstDescGoodForSReg: CPL(%d) > DPL(%d)\n", uCpl, pGstDesc->Gen.u2Dpl));
-            return false;
-        }
-    }
-    else
-    {
-        if (iSReg == X86_SREG_CS)
-        {
-            if (!(pGstDesc->Gen.u4Type & X86_SEL_TYPE_CODE))
-            {
-                Log(("selmIsGstDescGoodForSReg: CS needs code segment\n"));
-                return false;
-            }
-        }
-        else if ((pGstDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_READ)) == X86_SEL_TYPE_CODE)
-        {
-            Log(("selmIsGstDescGoodForSReg: iSReg=%u execute only\n", iSReg));
-            return false;
-        }
-
-        if (       (pGstDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF))
-                != (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF)
-            &&  (   (   (pSReg->Sel & X86_SEL_RPL) > pGstDesc->Gen.u2Dpl
-                     && (   (pSReg->Sel & X86_SEL_RPL) != 1
-                         || !CPUMIsGuestInRawMode(pVCpu) ) )
-                 || uCpl > (unsigned)pGstDesc->Gen.u2Dpl
-                )
-           )
-        {
-            Log(("selmIsGstDescGoodForSReg: iSReg=%u DPL=%u CPL=%u RPL=%u InRawMode=%u\n", iSReg,
-                 pGstDesc->Gen.u2Dpl, uCpl, pSReg->Sel & X86_SEL_RPL, CPUMIsGuestInRawMode(pVCpu)));
-            return false;
-        }
-    }
-
-    return true;
-}
-
-
-/**
- * Converts a guest GDT or LDT entry to a shadow table entry.
- *
- * @param   pVM                 The VM handle.
- * @param   pDesc       Guest entry on input, shadow entry on return.
- */
-DECL_FORCE_INLINE(void) selmGuestToShadowDesc(PVM pVM, PX86DESC pDesc)
-{
-    /*
-     * Code and data selectors are generally 1:1, with the
-     * 'little' adjustment we do for DPL 0 selectors.
-     */
-    if (pDesc->Gen.u1DescType)
-    {
-        /*
-         * Hack for A-bit against Trap E on read-only GDT.
-         */
-        /** @todo Fix this by loading ds and cs before turning off WP. */
-        pDesc->Gen.u4Type |= X86_SEL_TYPE_ACCESSED;
-
-        /*
-         * All DPL 0 code and data segments are squeezed into DPL 1.
-         *
-         * We're skipping conforming segments here because those
-         * cannot give us any trouble.
-         */
-        if (    pDesc->Gen.u2Dpl == 0
-            &&      (pDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF))
-                !=  (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF) )
-        {
-            pDesc->Gen.u2Dpl       = 1;
-            pDesc->Gen.u1Available = 1;
-        }
-# ifdef VBOX_WITH_RAW_RING1
-        else
-        if (    pDesc->Gen.u2Dpl == 1
-//            &&  EMIsRawRing1Enabled(pVM)
-            &&      (pDesc->Gen.u4Type & (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF))
-                !=  (X86_SEL_TYPE_CODE | X86_SEL_TYPE_CONF) )
-        {
-            pDesc->Gen.u2Dpl       = 2;
-            pDesc->Gen.u1Available = 1;
-        }
-# endif
-        else
-            pDesc->Gen.u1Available = 0;
-    }
-    else
-    {
-        /*
-         * System type selectors are marked not present.
-         * Recompiler or special handling is required for these.
-         */
-        /** @todo what about interrupt gates and rawr0? */
-        pDesc->Gen.u1Present = 0;
-    }
-}
-
-
-/**
- * Checks if a segment register is stale given the shadow descriptor table
- * entry.
- *
- * @returns @c true if stale, @c false if not.
- * @param   pSReg               The segment register.
- * @param   pShwDesc            The shadow descriptor entry.
- * @param   iSReg               The segment register number (X86_SREG_XXX).
- */
-DECLINLINE(bool) selmIsSRegStale32(PCCPUMSELREG pSReg, PCX86DESC pShwDesc, uint32_t iSReg)
-{
-    if (   pSReg->Attr.n.u1Present     != pShwDesc->Gen.u1Present
-        || pSReg->Attr.n.u4Type        != pShwDesc->Gen.u4Type
-        || pSReg->Attr.n.u1DescType    != pShwDesc->Gen.u1DescType
-        || pSReg->Attr.n.u1DefBig      != pShwDesc->Gen.u1DefBig
-        || pSReg->Attr.n.u1Granularity != pShwDesc->Gen.u1Granularity
-        || pSReg->Attr.n.u2Dpl         != pShwDesc->Gen.u2Dpl - pShwDesc->Gen.u1Available)
-    {
-        Log(("selmIsSRegStale32: Attributes changed (%#x -> %#x)\n", pSReg->Attr.u, X86DESC_GET_HID_ATTR(pShwDesc)));
-        return true;
-    }
-
-    if (pSReg->u64Base != X86DESC_BASE(pShwDesc))
-    {
-        Log(("selmIsSRegStale32: base changed (%#llx -> %#llx)\n", pSReg->u64Base, X86DESC_BASE(pShwDesc)));
-        return true;
-    }
-
-    if (pSReg->u32Limit != X86DESC_LIMIT_G(pShwDesc))
-    {
-        Log(("selmIsSRegStale32: limit changed (%#x -> %#x)\n", pSReg->u32Limit, X86DESC_LIMIT_G(pShwDesc)));
-        return true;
-    }
-
-    return false;
-}
-
-
-/**
- * Loads the hidden bits of a selector register from a shadow descriptor table
- * entry.
- *
- * @param   pSReg               The segment register in question.
- * @param   pShwDesc            The shadow descriptor table entry.
- */
-DECLINLINE(void) selmLoadHiddenSRegFromShadowDesc(PCPUMSELREG pSReg, PCX86DESC pShwDesc)
-{
-    pSReg->Attr.u         = X86DESC_GET_HID_ATTR(pShwDesc);
-    pSReg->Attr.n.u2Dpl  -= pSReg->Attr.n.u1Available;
-    Assert(pSReg->Attr.n.u4Type & X86_SEL_TYPE_ACCESSED);
-    pSReg->u32Limit       = X86DESC_LIMIT_G(pShwDesc);
-    pSReg->u64Base        = X86DESC_BASE(pShwDesc);
-    pSReg->ValidSel       = pSReg->Sel;
-    if (pSReg->Attr.n.u1Available)
-        pSReg->ValidSel  &= ~(RTSEL)1;
-    pSReg->fFlags         = CPUMSELREG_FLAGS_VALID;
-}
-
-
-/**
- * Loads the hidden bits of a selector register from a guest descriptor table
- * entry.
- *
- * @param   pVCpu               The current virtual CPU.
- * @param   pSReg               The segment register in question.
- * @param   pGstDesc            The guest descriptor table entry.
- */
-DECLINLINE(void) selmLoadHiddenSRegFromGuestDesc(PVMCPU pVCpu, PCPUMSELREG pSReg, PCX86DESC pGstDesc)
-{
-    pSReg->Attr.u         = X86DESC_GET_HID_ATTR(pGstDesc);
-    pSReg->Attr.n.u4Type |= X86_SEL_TYPE_ACCESSED;
-    pSReg->u32Limit       = X86DESC_LIMIT_G(pGstDesc);
-    pSReg->u64Base        = X86DESC_BASE(pGstDesc);
-    pSReg->ValidSel       = pSReg->Sel;
-    if ((pSReg->ValidSel & 1) && CPUMIsGuestInRawMode(pVCpu))
-        pSReg->ValidSel  &= ~(RTSEL)1;
-    pSReg->fFlags         = CPUMSELREG_FLAGS_VALID;
-}
-
-#endif /* VBOX_WITH_RAW_MODE_NOT_R0 */
-
 /** @} */
 

trunk/src/recompiler/VBoxRecompiler.c

@@ -1633 +1633 @@
         }
 
-# ifdef VBOX_WITH_RAW_RING1
-        /* Only ring 0 and 1 supervisor code. */
         if (EMIsRawRing1Enabled(env->pVM))
         {
-            if (((fFlags >> HF_CPL_SHIFT) & 3) == 2)   /* ring 1 code is moved into ring 2, so we can't support ring-2 in that case. */
+            /* Only ring 0 and 1 supervisor code. */
+            if (((fFlags >> HF_CPL_SHIFT) & 3) == 2) /* ring 1 code is moved into ring 2, so we can't support ring-2 in that case. */
             {
                 Log2(("raw r0 mode refused: CPL %d\n", (fFlags >> HF_CPL_SHIFT) & 3));
@@ -1643 +1642 @@
             }
         }
-        else
-# endif
-        // Only R0
-        if (((fFlags >> HF_CPL_SHIFT) & 3) != 0)
+        /* Only R0. */
+        else if (((fFlags >> HF_CPL_SHIFT) & 3) != 0)
         {
             STAM_COUNTER_INC(&gStatRefuseRing1or2);

trunk/src/recompiler/target-i386/op_helper.c

@@ -232 +232 @@
 #ifdef VBOX
     /* Trying to load a selector with CPL=1? */
-    /* @todo this is a hack to correct the incorrect checking order for pending interrupts in the patm iret replacement code (corrected in the ring-1 version) */
-    /* @todo in theory the iret could fault and we'd still need this. */
+    /** @todo this is a hack to correct the incorrect checking order for pending interrupts in the patm iret replacement code (corrected in the ring-1 version) */
+    /** @todo in theory the iret could fault and we'd still need this. */
     if ((env->hflags & HF_CPL_MASK) == 0 && (selector & 3) == 1 && (env->state & CPU_RAW_RING0) && !EMIsRawRing1Enabled(env->pVM))
     {
@@ -2561 +2561 @@
          (RTGCPTR)env->eip, (RTSEL)env->tr.selector, (RTGCPTR)env->tr.base, (RTGCPTR)env->tr.limit,
          env->tr.flags, (RTSEL)(selector & 0xffff)));
+# if 0 /** @todo r=bird: This looks very fishy, need good reason to re-enable it. */
     ASMAtomicOrS32((int32_t volatile *)&env->interrupt_request,
                     CPU_INTERRUPT_EXTERNAL_EXIT);
+# endif
 #endif
     selector &= 0xffff;
@@ -3186 +3188 @@
         if ((new_cs & 0x3) == 1 && (env->state & CPU_RAW_RING0))
         {
-# ifdef VBOX_WITH_RAW_RING1
             if (   !EMIsRawRing1Enabled(env->pVM)
                 ||  env->segs[R_CS].selector == (new_cs & 0xfffc))
@@ -3198 +3199 @@
                 Log(("Genuine switch to ring-1 (iret)\n"));
             }
-# else
-            Log(("RPL 1 -> new_cs %04X -> %04X\n", new_cs, new_cs & 0xfffc));
-            new_cs = new_cs & 0xfffc;
-# endif
-        }
-# ifdef VBOX_WITH_RAW_RING1
-        else
-        if ((new_cs & 0x3) == 2 && (env->state & CPU_RAW_RING0) && EMIsRawRing1Enabled(env->pVM))
+        }
+        else if ((new_cs & 0x3) == 2 && (env->state & CPU_RAW_RING0) && EMIsRawRing1Enabled(env->pVM))
         {
             Log(("RPL 2 -> new_cs %04X -> %04X\n", new_cs, (new_cs & 0xfffc) | 1));
             new_cs = (new_cs & 0xfffc) | 1;
         }
-# endif
 #endif
     } else {