VirtualBox

Browse Source

Changeset 47660 in vbox for trunk/src/VBox/VMM

Timestamp:

Aug 12, 2013 12:37:34 AM (11 years ago)

Author:

vboxsync

Message:

VMM: Debug register handling redo. (only partly tested on AMD-V so far.)

Location:

trunk/src/VBox/VMM

Files:

: 13 edited

VMMAll/CPUMAllRegs.cpp (modified) (26 diffs)
VMMR0/CPUMR0.cpp (modified) (13 diffs)
VMMR0/HMSVMR0.cpp (modified) (8 diffs)
VMMR0/HMVMXR0.cpp (modified) (10 diffs)
VMMR3/DBGFBp.cpp (modified) (1 diff)
VMMR3/EM.cpp (modified) (3 diffs)
VMMRC/TRPMRCHandlers.cpp (modified) (1 diff)
VMMRZ/DBGFRZ.cpp (modified) (2 diffs)
VMMSwitcher/AMD64andLegacy.mac (modified) (12 diffs)
VMMSwitcher/LegacyandAMD64.mac (modified) (4 diffs)
VMMSwitcher/PAEand32Bit.mac (modified) (9 diffs)
include/CPUMInternal.h (modified) (2 diffs)
include/CPUMInternal.mac (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/src/VBox/VMM/VMMAll/CPUMAllRegs.cpp

-              r47652
+              r47660
+/** @MAYBE_LOAD_DRx
+ * Macro for updating DRx values in raw-mode and ring-0 contexts.
+ */
+#ifdef IN_RING0
+# if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
+#  ifndef VBOX_WITH_HYBRID_32BIT_KERNEL
+#   define MAYBE_LOAD_DRx(a_pVCpu, a_fnLoad, a_uValue) \
+    do { \
+        if (!CPUMIsGuestInLongModeEx(&(a_pVCpu)->cpum.s.Guest)) \
+            a_fnLoad(a_uValue); \
+        else \
+            (a_pVCpu)->cpum.s.fUseFlags |= CPUM_SYNC_DEBUG_REGS_HYPER; \
+    } while (0)
+#  else
+#   define MAYBE_LOAD_DRx(a_pVCpu, a_fnLoad, a_uValue) \
+    do { \
+        /** @todo we're not loading the correct guest value here! */ \
+        a_fnLoad(a_uValue); \
+    } while (0)
+#  endif
+# else
+# define MAYBE_LOAD_DRx(a_pVCpu, a_fnLoad, a_uValue) \
+    do { \
+        a_fnLoad(a_uValue); \
+    } while (0)
+# endif
+#elif defined(IN_RC)
+# define MAYBE_LOAD_DRx(a_pVCpu, a_fnLoad, a_uValue) \
+    do { \
+        if ((a_pVCpu)->cpum.s.fUseFlags & CPUM_USED_DEBUG_REGS_HYPER) \
+        { a_fnLoad(a_uValue); } \
+    } while (0)
+#else
+# define MAYBE_LOAD_DRx(a_pVCpu, a_fnLoad, a_uValue) do { } while (0)
+#endif
 VMMDECL(void) CPUMSetHyperDR0(PVMCPU pVCpu, RTGCUINTREG uDr0)
+{
     pVCpu->cpum.s.Hyper.dr[0] = uDr0;
     /** @todo in GC we must load it! */
+    MAYBE_LOAD_DRx(pVCpu, ASMSetDR0, uDr0);
+}
 …
+{
     pVCpu->cpum.s.Hyper.dr[1] = uDr1;
     /** @todo in GC we must load it! */
+    MAYBE_LOAD_DRx(pVCpu, ASMSetDR1, uDr1);
+}
 …
+{
     pVCpu->cpum.s.Hyper.dr[2] = uDr2;
     /** @todo in GC we must load it! */
+    MAYBE_LOAD_DRx(pVCpu, ASMSetDR2, uDr2);
+}
 …
+{
     pVCpu->cpum.s.Hyper.dr[3] = uDr3;
     /** @todo in GC we must load it! */
+    MAYBE_LOAD_DRx(pVCpu, ASMSetDR3, uDr3);
+}
 …
+{
     pVCpu->cpum.s.Hyper.dr[6] = uDr6;
-    /** @todo in GC we must load it! */
+}
 …
+{
     pVCpu->cpum.s.Hyper.dr[7] = uDr7;
+    /** @todo in GC we must load it! */
+#ifdef IN_RC
+    MAYBE_LOAD_DRx(pVCpu, ASMSetDR7, uDr7);
+#endif
+}
 …
+{
     pVCpu->cpum.s.Guest.dr[0] = uDr0;
     return CPUMRecalcHyperDRx(pVCpu);
+    return CPUMRecalcHyperDRx(pVCpu, 0);
+}
 …
+{
     pVCpu->cpum.s.Guest.dr[1] = uDr1;
     return CPUMRecalcHyperDRx(pVCpu);
+    return CPUMRecalcHyperDRx(pVCpu, 1);
+}
 …
+{
     pVCpu->cpum.s.Guest.dr[2] = uDr2;
     return CPUMRecalcHyperDRx(pVCpu);
+    return CPUMRecalcHyperDRx(pVCpu, 2);
+}
 …
+{
     pVCpu->cpum.s.Guest.dr[3] = uDr3;
     return CPUMRecalcHyperDRx(pVCpu);
+    return CPUMRecalcHyperDRx(pVCpu, 3);
+}
 …
+{
     pVCpu->cpum.s.Guest.dr[6] = uDr6;
     return CPUMRecalcHyperDRx(pVCpu);
+    return VINF_SUCCESS; /* No need to recalc. */
+}
 …
+{
     pVCpu->cpum.s.Guest.dr[7] = uDr7;
     return CPUMRecalcHyperDRx(pVCpu);
+    return CPUMRecalcHyperDRx(pVCpu, 7);
+}
 …
         iReg += 2;
     pVCpu->cpum.s.Guest.dr[iReg] = Value;
+    return CPUMRecalcHyperDRx(pVCpu);
+}
+/**
+ * Recalculates the hypervisor DRx register values based on
+ * current guest registers and DBGF breakpoints.
+ *
+ * This is called whenever a guest DRx register is modified and when DBGF
+ * sets a hardware breakpoint. In guest context this function will reload
+ * any (hyper) DRx registers which comes out with a different value.
+    return CPUMRecalcHyperDRx(pVCpu, iReg);
+}
+/**
+ * Recalculates the hypervisor DRx register values based on current guest
+ * registers and DBGF breakpoints, updating changed registers depending on the
+ * context.
+ *
+ * This is called whenever a guest DRx register is modified (any context) and
+ * when DBGF sets a hardware breakpoint (ring-3 only, rendezvous).
+ *
+ * In raw-mode context this function will reload any (hyper) DRx registers which
+ * comes out with a different value.  It may also have to save the host debug
+ * registers if that haven't been done already.  In this context though, we'll
+ * be intercepting and emulating all DRx accesses, so the hypervisor DRx values
+ * are only important when breakpoints are actually enabled.
+ *
+ * In ring-0 (HM) context DR0-3 will be relocated by us, while DR7 will be
+ * reloaded by the HM code if it changes.  Further more, we will only use the
+ * combined register set when the VBox debugger is actually using hardware BPs,
+ * when it isn't we'll keep the guest DR0-3 + (maybe) DR6 loaded (DR6 doesn't
+ * concern us here).
+ *
+ * In ring-3 we won't be loading anything, so well calculate hypervisor values
+ * all the time.
+ *
  * @returns VINF_SUCCESS.
  * @param   pVCpu       Pointer to the VMCPU.
+ */
+VMMDECL(int) CPUMRecalcHyperDRx(PVMCPU pVCpu)
+ * @param   iGstReg     The guest debug register number that was modified.
+ *                      UINT8_MAX if not guest register.
+ */
+VMMDECL(int) CPUMRecalcHyperDRx(PVMCPU pVCpu, uint8_t iGstReg)
+{
     PVM pVM = pVCpu->CTX_SUFF(pVM);
 …
      * Compare the DR7s first.
+     *
+     * We only care about the enabled flags. The GE and LE flags are always
+     * set and we don't care if the guest doesn't set them. GD is virtualized
+     * when we dispatch #DB, we never enable it.
+     * We only care about the enabled flags.  GD is virtualized when we
+     * dispatch the #DB, we never enable it.  The DBGF DR7 value is will
+     * always have the LE and GE bits set, so no need to check and disable
+     * stuff if they're cleared like we have to for the guest DR7.
      */
+    RTGCUINTREG uGstDr7 = CPUMGetGuestDR7(pVCpu);
+    if (!(uGstDr7 & (X86_DR7_LE | X86_DR7_GE)))
+        uGstDr7 = 0;
+    else if (!(uGstDr7 & X86_DR7_LE))
+        uGstDr7 &= ~X86_DR7_LE_ALL;
+    else if (!(uGstDr7 & X86_DR7_GE))
+        uGstDr7 &= ~X86_DR7_GE_ALL;
     const RTGCUINTREG uDbgfDr7 = DBGFBpGetDR7(pVM);
+#ifdef CPUM_VIRTUALIZE_DRX
+    const RTGCUINTREG uGstDr7  = CPUMGetGuestDR7(pVCpu);
+#else
+    const RTGCUINTREG uGstDr7  = 0;
+#endif
+    if ((uGstDr7 | uDbgfDr7) & X86_DR7_ENABLED_MASK)
+    if ((HMIsEnabled(pVCpu->CTX_SUFF(pVM)) ? uDbgfDr7 : (uGstDr7 | uDbgfDr7)) & X86_DR7_ENABLED_MASK)
+    {
+        Assert(!CPUMIsGuestDebugStateActive(pVCpu));
         /*
+         * Ok, something is enabled. Recalc each of the breakpoints.
+         * Straight forward code, not optimized/minimized in any way.
+         * Ok, something is enabled.  Recalc each of the breakpoints, taking
+         * the VM debugger ones of the guest ones.  In raw-mode context we will
+         * not allow breakpoints with values inside the hypervisor area.
          */
         RTGCUINTREG uNewDr7 = X86_DR7_GE | X86_DR7_LE | X86_DR7_RA1_MASK;
 …
         else if (uGstDr7 & (X86_DR7_L0 | X86_DR7_G0))
+        {
-            uNewDr7 |= uGstDr7 & (X86_DR7_L0 | X86_DR7_G0 | X86_DR7_RW0_MASK | X86_DR7_LEN0_MASK);
             uNewDr0 = CPUMGetGuestDR0(pVCpu);
+#ifdef IN_RC
+            if (MMHyperIsInsideArea(pVM, uNewDr0))
+                uNewDr0 = 0;
+            else
+#endif
+                uNewDr7 |= uGstDr7 & (X86_DR7_L0 | X86_DR7_G0 | X86_DR7_RW0_MASK | X86_DR7_LEN0_MASK);
+        }
         else
             uNewDr0 = pVCpu->cpum.s.Hyper.dr[0];
+            uNewDr0 = 0;
         /* bp 1 */
 …
         else if (uGstDr7 & (X86_DR7_L1 | X86_DR7_G1))
+        {
-            uNewDr7 |= uGstDr7 & (X86_DR7_L1 | X86_DR7_G1 | X86_DR7_RW1_MASK | X86_DR7_LEN1_MASK);
             uNewDr1 = CPUMGetGuestDR1(pVCpu);
+#ifdef IN_RC
+            if (MMHyperIsInsideArea(pVM, uNewDr1))
+                uNewDr1 = 0;
+            else
+#endif
+                uNewDr7 |= uGstDr7 & (X86_DR7_L1 | X86_DR7_G1 | X86_DR7_RW1_MASK | X86_DR7_LEN1_MASK);
+        }
         else
             uNewDr1 = pVCpu->cpum.s.Hyper.dr[1];
+            uNewDr1 = 0;
         /* bp 2 */
 …
         else if (uGstDr7 & (X86_DR7_L2 | X86_DR7_G2))
+        {
-            uNewDr7 |= uGstDr7 & (X86_DR7_L2 | X86_DR7_G2 | X86_DR7_RW2_MASK | X86_DR7_LEN2_MASK);
             uNewDr2 = CPUMGetGuestDR2(pVCpu);
+#ifdef IN_RC
+            if (MMHyperIsInsideArea(pVM, uNewDr2))
+                uNewDr2 = 0;
+            else
+#endif
+                uNewDr7 |= uGstDr7 & (X86_DR7_L2 | X86_DR7_G2 | X86_DR7_RW2_MASK | X86_DR7_LEN2_MASK);
+        }
         else
             uNewDr2 = pVCpu->cpum.s.Hyper.dr[2];
+            uNewDr2 = 0;
         /* bp 3 */
 …
         else if (uGstDr7 & (X86_DR7_L3 | X86_DR7_G3))
+        {
-            uNewDr7 |= uGstDr7 & (X86_DR7_L3 | X86_DR7_G3 | X86_DR7_RW3_MASK | X86_DR7_LEN3_MASK);
             uNewDr3 = CPUMGetGuestDR3(pVCpu);
+#ifdef IN_RC
+            if (MMHyperIsInsideArea(pVM, uNewDr3))
+                uNewDr3 = 0;
+            else
+#endif
+                uNewDr7 |= uGstDr7 & (X86_DR7_L3 | X86_DR7_G3 | X86_DR7_RW3_MASK | X86_DR7_LEN3_MASK);
+        }
         else
             uNewDr3 = pVCpu->cpum.s.Hyper.dr[3];
+            uNewDr3 = 0;
         /*
 …
          */
 #ifdef IN_RC
+        if (!(pVCpu->cpum.s.fUseFlags & CPUM_USE_DEBUG_REGS))
+        {
+            /** @todo save host DBx registers. */
+        }
+        /* Make sure to save host registers first. */
+        if (!(pVCpu->cpum.s.fUseFlags & (CPUM_USE_DEBUG_REGS_HOST | CPUM_USE_DEBUG_REGS_HYPER)))
+        {
+            Assert(!(pVCpu->cpum.s.fUseFlags & CPUM_USED_DEBUG_REGS_HOST));
+            pVCpu->cpum.s.Host.dr6 = ASMGetDR6();
+            pVCpu->cpum.s.Host.dr7 = ASMGetDR7();
+            pVCpu->cpum.s.fUseFlags |= CPUM_USE_DEBUG_REGS_HYPER;
+            ASMSetDR6(X86_DR6_INIT_VAL);
+        }
+        if (!(pVCpu->cpum.s.fUseFlags & CPUM_USED_DEBUG_REGS_HOST))
+        {
+            pVCpu->cpum.s.Host.dr0 = ASMGetDR0();
+            pVCpu->cpum.s.Host.dr1 = ASMGetDR1();
+            pVCpu->cpum.s.Host.dr2 = ASMGetDR2();
+            pVCpu->cpum.s.Host.dr3 = ASMGetDR3();
+            pVCpu->cpum.s.fUseFlags |= CPUM_USED_DEBUG_REGS_HOST | CPUM_USE_DEBUG_REGS_HYPER | CPUM_USED_DEBUG_REGS_HYPER;
+            /* We haven't loaded any hyper DRxes yet, so we'll have to load them all now. */
+            pVCpu->cpum.s.Hyper.dr[0] = uNewDr0;
+            ASMSetDR0(uNewDr0);
+            pVCpu->cpum.s.Hyper.dr[1] = uNewDr1;
+            ASMSetDR1(uNewDr1);
+            pVCpu->cpum.s.Hyper.dr[2] = uNewDr2;
+            ASMSetDR2(uNewDr2);
+            pVCpu->cpum.s.Hyper.dr[3] = uNewDr3;
+            ASMSetDR3(uNewDr3);
+            pVCpu->cpum.s.Hyper.dr[7] = uNewDr7;
+            ASMSetDR7(uNewDr7);
+        }
+        else
 #endif
         /** @todo Should this not be setting CPUM_USE_DEBUG_REGS_HYPER?
          *        (CPUM_VIRTUALIZE_DRX is never defined). */
         pVCpu->cpum.s.fUseFlags |= CPUM_USE_DEBUG_REGS;
         if (uNewDr3 != pVCpu->cpum.s.Hyper.dr[3])
             CPUMSetHyperDR3(pVCpu, uNewDr3);
         if (uNewDr2 != pVCpu->cpum.s.Hyper.dr[2])
             CPUMSetHyperDR2(pVCpu, uNewDr2);
         if (uNewDr1 != pVCpu->cpum.s.Hyper.dr[1])
             CPUMSetHyperDR1(pVCpu, uNewDr1);
         if (uNewDr0 != pVCpu->cpum.s.Hyper.dr[0])
             CPUMSetHyperDR0(pVCpu, uNewDr0);
         if (uNewDr7 != pVCpu->cpum.s.Hyper.dr[7])
             CPUMSetHyperDR7(pVCpu, uNewDr7);
+        {
+            pVCpu->cpum.s.fUseFlags |= CPUM_USE_DEBUG_REGS_HYPER;
+            if (uNewDr3 != pVCpu->cpum.s.Hyper.dr[3])
+                CPUMSetHyperDR3(pVCpu, uNewDr3);
+            if (uNewDr2 != pVCpu->cpum.s.Hyper.dr[2])
+                CPUMSetHyperDR2(pVCpu, uNewDr2);
+            if (uNewDr1 != pVCpu->cpum.s.Hyper.dr[1])
+                CPUMSetHyperDR1(pVCpu, uNewDr1);
+            if (uNewDr0 != pVCpu->cpum.s.Hyper.dr[0])
+                CPUMSetHyperDR0(pVCpu, uNewDr0);
+            if (uNewDr7 != pVCpu->cpum.s.Hyper.dr[7])
+                CPUMSetHyperDR7(pVCpu, uNewDr7);
+        }
+    }
+#ifdef IN_RING0
+    else if (CPUMIsGuestDebugStateActive(pVCpu))
+    {
+        /*
+         * Reload the register that was modified.  Normally this won't happen
+         * as we won't intercept DRx writes when not having the hyper debug
+         * state loaded, but in case we do for some reason we'll simply deal
+         * with it.
+         */
+        switch (iGstReg)
+        {
+            case 0: ASMSetDR0(CPUMGetGuestDR0(pVCpu)); break;
+            case 1: ASMSetDR1(CPUMGetGuestDR1(pVCpu)); break;
+            case 2: ASMSetDR2(CPUMGetGuestDR2(pVCpu)); break;
+            case 3: ASMSetDR3(CPUMGetGuestDR3(pVCpu)); break;
+            default:
+                AssertReturn(iGstReg != UINT8_MAX, VERR_INTERNAL_ERROR_3);
+        }
+    }
+#endif
     else
+    {
+#ifdef IN_RC
+        if (pVCpu->cpum.s.fUseFlags & CPUM_USE_DEBUG_REGS)
+        {
+            /** @todo restore host DBx registers. */
+        }
+        /*
+         * No active debug state any more.  In raw-mode this means we have to
+         * make sure DR7 has everything disabled now, if we armed it already.
+         *
+         * In the ring-0 this only happens when we decided to lazy load the
+         * debug state because it wasn't active, and that didn't change with
+         * the latest changes, so nothing to do here.
+         */
+#if defined(IN_RC)
+        if (pVCpu->cpum.s.fUseFlags & CPUM_USED_DEBUG_REGS_HYPER)
+        {
+            ASMSetDR7(X86_DR7_INIT_VAL);
+            if (pVCpu->cpum.s.Hyper.dr[0])
+                ASMSetDR0(0);
+            if (pVCpu->cpum.s.Hyper.dr[1])
+                ASMSetDR1(0);
+            if (pVCpu->cpum.s.Hyper.dr[2])
+                ASMSetDR2(0);
+            if (pVCpu->cpum.s.Hyper.dr[3])
+                ASMSetDR3(0);
+            pVCpu->cpum.s.fUseFlags &= ~CPUM_USED_DEBUG_REGS_HYPER;
+        }
+#else defined(IN_RING0)
+        Assert(!CPUMIsHyperDebugStateActive(pVCpu)); /* (can only change while in ring-3) */
 #endif
+        pVCpu->cpum.s.fUseFlags &= ~CPUM_USE_DEBUG_REGS;
+        pVCpu->cpum.s.fUseFlags &= ~CPUM_USE_DEBUG_REGS_HYPER;
+        /* Clear all the registers. */
+        pVCpu->cpum.s.Hyper.dr[7] = X86_DR7_RA1_MASK;
+        pVCpu->cpum.s.Hyper.dr[3] = 0;
+        pVCpu->cpum.s.Hyper.dr[2] = 0;
+        pVCpu->cpum.s.Hyper.dr[1] = 0;
+        pVCpu->cpum.s.Hyper.dr[0] = 0;
+    }
     Log2(("CPUMRecalcHyperDRx: fUseFlags=%#x %RGr %RGr %RGr %RGr  %RGr %RGr\n",
           pVCpu->cpum.s.fUseFlags, pVCpu->cpum.s.Hyper.dr[0], pVCpu->cpum.s.Hyper.dr[1],
          pVCpu->cpum.s.Hyper.dr[2], pVCpu->cpum.s.Hyper.dr[3], pVCpu->cpum.s.Hyper.dr[6],
          pVCpu->cpum.s.Hyper.dr[7]));
+          pVCpu->cpum.s.Hyper.dr[2], pVCpu->cpum.s.Hyper.dr[3], pVCpu->cpum.s.Hyper.dr[6],
+          pVCpu->cpum.s.Hyper.dr[7]));
     return VINF_SUCCESS;
 …
 VMMDECL(bool) CPUMIsHostUsingSysEnter(PVM pVM)
+{
     return (pVM->cpum.s.fHostUseFlags & CPUM_USE_SYSENTER) != 0;
+    return RT_BOOL(pVM->cpum.s.fHostUseFlags & CPUM_USE_SYSENTER);
+}
 …
 VMMDECL(bool) CPUMIsHostUsingSysCall(PVM pVM)
+{
     return (pVM->cpum.s.fHostUseFlags & CPUM_USE_SYSCALL) != 0;
+    return RT_BOOL(pVM->cpum.s.fHostUseFlags & CPUM_USE_SYSCALL);
+}
 …
 VMMDECL(bool) CPUMIsGuestFPUStateActive(PVMCPU pVCpu)
+{
     return (pVCpu->cpum.s.fUseFlags & CPUM_USED_FPU) != 0;
+    return RT_BOOL(pVCpu->cpum.s.fUseFlags & CPUM_USED_FPU);
+}
 …
  * Deactivate the FPU/XMM state of the guest OS.
  * @param   pVCpu       Pointer to the VMCPU.
+ *
+ * @todo    r=bird: Why is this needed? Looks like a workaround for mishandled
+ *          FPU state management.
  */
 VMMDECL(void) CPUMDeactivateGuestFPUState(PVMCPU pVCpu)
+{
+    Assert(!(pVCpu->cpum.s.fUseFlags & CPUM_USED_FPU));
     pVCpu->cpum.s.fUseFlags &= ~CPUM_USED_FPU;
+}
 …
 VMMDECL(bool) CPUMIsGuestDebugStateActive(PVMCPU pVCpu)
+{
     return (pVCpu->cpum.s.fUseFlags & CPUM_USE_DEBUG_REGS) != 0;
+    return RT_BOOL(pVCpu->cpum.s.fUseFlags & CPUM_USED_DEBUG_REGS_GUEST);
+}
 …
 VMMDECL(bool) CPUMIsHyperDebugStateActive(PVMCPU pVCpu)
+{
     return (pVCpu->cpum.s.fUseFlags & CPUM_USE_DEBUG_REGS_HYPER) != 0;
+    return RT_BOOL(pVCpu->cpum.s.fUseFlags & CPUM_USED_DEBUG_REGS_HYPER);
+}
 …
  * @returns boolean
  * @param   pVM         Pointer to the VM.
+ * @todo    This API doesn't make sense any more.
  */
 VMMDECL(void) CPUMDeactivateGuestDebugState(PVMCPU pVCpu)
+{
+    pVCpu->cpum.s.fUseFlags &= ~CPUM_USE_DEBUG_REGS;
+}
+/**
+ * Mark the hypervisor's debug state as inactive.
+ *
+ * @returns boolean
+ * @param   pVM         Pointer to the VM.
+ */
+VMMDECL(void) CPUMDeactivateHyperDebugState(PVMCPU pVCpu)
+{
+    pVCpu->cpum.s.fUseFlags &= ~CPUM_USE_DEBUG_REGS_HYPER;
+    Assert(!(pVCpu->cpum.s.fUseFlags & (CPUM_USED_DEBUG_REGS_GUEST | CPUM_USED_DEBUG_REGS_HYPER | CPUM_USED_DEBUG_REGS_HOST)));
+}

trunk/src/VBox/VMM/VMMR0/CPUMR0.cpp

-              r47064
+              r47660
 static void cpumR0UnmapLocalApics(void);
 #endif
+static int  cpumR0SaveHostDebugState(PVMCPU pVCpu);
 …
 #ifndef CPUM_CAN_HANDLE_NM_TRAPS_IN_KERNEL_MODE
 # if defined(VBOX_WITH_HYBRID_32BIT_KERNEL) || defined(VBOX_WITH_KERNEL_USING_XMM) /** @todo remove the #else here and move cpumHandleLazyFPUAsm back to VMMGC after branching out 3.0!!. */
         Assert(!(pVCpu->cpum.s.fUseFlags & CPUM_MANUAL_XMM_RESTORE));
+        Assert(!(pVCpu->cpum.s.fUseFlags & CPUM_USED_MANUAL_XMM_RESTORE));
         /** @todo Move the FFXR handling down into
          *        cpumR0SaveHostRestoreguestFPUState to optimize the
 …
+            {
                 ASMWrMsr(MSR_K6_EFER, SavedEFER & ~MSR_K6_EFER_FFXSR);
                 pVCpu->cpum.s.fUseFlags |= CPUM_MANUAL_XMM_RESTORE;
+                pVCpu->cpum.s.fUseFlags |= CPUM_USED_MANUAL_XMM_RESTORE;
+            }
+        }
 …
         /* Restore EFER. */
         if (pVCpu->cpum.s.fUseFlags & CPUM_MANUAL_XMM_RESTORE)
+        if (pVCpu->cpum.s.fUseFlags & CPUM_USED_MANUAL_XMM_RESTORE)
             ASMWrMsr(MSR_K6_EFER, SavedEFER);
 …
+            {
                 ASMWrMsr(MSR_K6_EFER, oldMsrEFERHost & ~MSR_K6_EFER_FFXSR);
                 pVCpu->cpum.s.fUseFlags |= CPUM_MANUAL_XMM_RESTORE;
+                pVCpu->cpum.s.fUseFlags |= CPUM_USED_MANUAL_XMM_RESTORE;
+            }
+        }
 …
         /* Restore EFER MSR */
         if (pVCpu->cpum.s.fUseFlags & CPUM_MANUAL_XMM_RESTORE)
+        if (pVCpu->cpum.s.fUseFlags & CPUM_USED_MANUAL_XMM_RESTORE)
             ASMWrMsr(MSR_K6_EFER, oldMsrEFERHost);
 …
                 /* fxrstor doesn't restore the XMM state! */
                 cpumR0LoadXMM(pCtx);
                 pVCpu->cpum.s.fUseFlags |= CPUM_MANUAL_XMM_RESTORE;
+                pVCpu->cpum.s.fUseFlags |= CPUM_USED_MANUAL_XMM_RESTORE;
+            }
+        }
 …
         /* Clear MSR_K6_EFER_FFXSR or else we'll be unable to save/restore the XMM state with fxsave/fxrstor. */
         uint64_t oldMsrEFERHost = 0;
         if (pVCpu->cpum.s.fUseFlags & CPUM_MANUAL_XMM_RESTORE)
+        if (pVCpu->cpum.s.fUseFlags & CPUM_USED_MANUAL_XMM_RESTORE)
+        {
             oldMsrEFERHost = ASMRdMsr(MSR_K6_EFER);
 …
         /* Restore EFER MSR */
         if (pVCpu->cpum.s.fUseFlags & CPUM_MANUAL_XMM_RESTORE)
+        if (pVCpu->cpum.s.fUseFlags & CPUM_USED_MANUAL_XMM_RESTORE)
             ASMWrMsr(MSR_K6_EFER, oldMsrEFERHost | MSR_K6_EFER_FFXSR);
 …
 # endif
         cpumR0SaveFPU(pCtx);
         if (pVCpu->cpum.s.fUseFlags & CPUM_MANUAL_XMM_RESTORE)
+        if (pVCpu->cpum.s.fUseFlags & CPUM_USED_MANUAL_XMM_RESTORE)
+        {
             /* fxsave doesn't save the XMM state! */
 …
+    }
     pVCpu->cpum.s.fUseFlags &= ~(CPUM_USED_FPU | CPUM_SYNC_FPU_STATE | CPUM_MANUAL_XMM_RESTORE);
+    pVCpu->cpum.s.fUseFlags &= ~(CPUM_USED_FPU | CPUM_SYNC_FPU_STATE | CPUM_USED_MANUAL_XMM_RESTORE);
     return VINF_SUCCESS;
+}
 …
 /**
+ * Save guest debug state
+ * Saves the host debug state, setting CPUM_USED_HOST_DEBUG_STATE and loading
+ * DR7 with safe values.
+ *
  * @returns VBox status code.
- * @param   pVM         Pointer to the VM.
  * @param   pVCpu       Pointer to the VMCPU.
+ * @param   pCtx        Pointer to the guest CPU context.
+ * @param   fDR6        Whether to include DR6 or not.
+ */
+VMMR0DECL(int) CPUMR0SaveGuestDebugState(PVM pVM, PVMCPU pVCpu, PCPUMCTX pCtx, bool fDR6)
+{
+    Assert(pVCpu->cpum.s.fUseFlags & CPUM_USE_DEBUG_REGS);
+    /* Save the guest's debug state. The caller is responsible for DR7. */
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+    if (CPUMIsGuestInLongModeEx(pCtx))
+    {
+        if (!(pVCpu->cpum.s.fUseFlags & CPUM_SYNC_DEBUG_STATE))
+        {
+            uint64_t dr6 = pCtx->dr[6];
+            HMR0SaveDebugState(pVM, pVCpu, pCtx);
+            if (!fDR6) /* dr6 was already up-to-date */
+                pCtx->dr[6] = dr6;
+        }
+    }
+    else
+#endif
+    {
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+        cpumR0SaveDRx(&pCtx->dr[0]);
+#else
+        pCtx->dr[0] = ASMGetDR0();
+        pCtx->dr[1] = ASMGetDR1();
+        pCtx->dr[2] = ASMGetDR2();
+        pCtx->dr[3] = ASMGetDR3();
+#endif
+        if (fDR6)
+            pCtx->dr[6] = ASMGetDR6();
+    }
+    /*
+     * Restore the host's debug state. DR0-3, DR6 and only then DR7!
+     * DR7 contains 0x400 right now.
+     */
+    CPUMR0LoadHostDebugState(pVM, pVCpu);
+    Assert(!(pVCpu->cpum.s.fUseFlags & CPUM_USE_DEBUG_REGS));
+    return VINF_SUCCESS;
+}
+/**
+ * Lazily sync in the debug state
+ *
+ * @returns VBox status code.
+ * @param   pVM         Pointer to the VM.
+ * @param   pVCpu       Pointer to the VMCPU.
+ * @param   pCtx        Pointer to the guest CPU context.
+ * @param   fDR6        Whether to include DR6 or not.
+ */
+VMMR0DECL(int) CPUMR0LoadGuestDebugState(PVM pVM, PVMCPU pVCpu, PCPUMCTX pCtx, bool fDR6)
+{
+    /* Save the host state. */
+    CPUMR0SaveHostDebugState(pVM, pVCpu);
+    Assert(ASMGetDR7() == X86_DR7_INIT_VAL);
+    /* Activate the guest state DR0-3; DR7 is left to the caller. */
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+    if (CPUMIsGuestInLongModeEx(pCtx))
+    {
+        /* Restore the state on entry as we need to be in 64 bits mode to access the full state. */
+        pVCpu->cpum.s.fUseFlags |= CPUM_SYNC_DEBUG_STATE;
+    }
+    else
+#endif
+    {
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+        cpumR0LoadDRx(&pCtx->dr[0]);
+#else
+        ASMSetDR0(pCtx->dr[0]);
+        ASMSetDR1(pCtx->dr[1]);
+        ASMSetDR2(pCtx->dr[2]);
+        ASMSetDR3(pCtx->dr[3]);
+#endif
+        if (fDR6)
+            ASMSetDR6(pCtx->dr[6]);
+    }
+    pVCpu->cpum.s.fUseFlags |= CPUM_USE_DEBUG_REGS;
+    return VINF_SUCCESS;
+}
+/**
+ * Save the host debug state
+ *
+ * @returns VBox status code.
+ * @param   pVM         Pointer to the VM.
+ * @param   pVCpu       Pointer to the VMCPU.
+ */
+VMMR0DECL(int) CPUMR0SaveHostDebugState(PVM pVM, PVMCPU pVCpu)
+{
+    NOREF(pVM);
+    /* Save the host state. */
+ */
+static int cpumR0SaveHostDebugState(PVMCPU pVCpu)
+{
+    /*
+     * Save the host state.
+     */
 #ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
     AssertCompile((uintptr_t)&pVCpu->cpum.s.Host.dr3 - (uintptr_t)&pVCpu->cpum.s.Host.dr0 == sizeof(uint64_t) * 3);
 …
     /** @todo dr7 might already have been changed to 0x400; don't care right now as it's harmless. */
     pVCpu->cpum.s.Host.dr7 = ASMGetDR7();
+    /* Make sure DR7 is harmless or else we could trigger breakpoints when restoring dr0-3 (!) */
+    ASMSetDR7(X86_DR7_INIT_VAL);
+    /* Preemption paranoia. */
+    ASMAtomicOrU32(&pVCpu->cpum.s.fUseFlags, CPUM_USED_DEBUG_REGS_HOST);
+    /*
+     * Make sure DR7 is harmless or else we could trigger breakpoints when
+     * load guest or hypervisor DRx values later.
+     */
+    if (pVCpu->cpum.s.Host.dr7 != X86_DR7_INIT_VAL)
+        ASMSetDR7(X86_DR7_INIT_VAL);
     return VINF_SUCCESS;
+}
+/**
+ * Load the host debug state
+/**
+ * Saves the guest DRx state residing in host registers and restore the host
+ * register values.
+ *
+ * The guest DRx state is only saved if CPUMR0LoadGuestDebugState was called,
+ * since it's assumed that we're shadowing the guest DRx register values
+ * accurately when using the combined hypervisor debug register values
+ * (CPUMR0LoadHyperDebugState).
+ *
+ * @returns true if either guest or hypervisor debug registers were loaded.
+ * @param   pVCpu       The cross context CPU structure for the calling EMT.
+ * @param   fDR6        Whether to include DR6 or not.
+ * @thread  EMT(pVCpu)
+ */
+VMMR0DECL(bool) CPUMR0DebugStateMaybeSaveGuestAndRestoreHost(PVMCPU pVCpu, bool fDR6)
+{
+    bool const fDrXLoaded = RT_BOOL(pVCpu->cpum.s.fUseFlags & (CPUM_USED_DEBUG_REGS_GUEST | CPUM_USED_DEBUG_REGS_HYPER));
+    /*
+     * Do we need to save the guest DRx registered loaded into host registers?
+     * (DR7 and DR6 (if fDR6 is true) are left to the caller.)
+     */
+    if (pVCpu->cpum.s.fUseFlags & CPUM_USED_DEBUG_REGS_GUEST)
+    {
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (CPUMIsGuestInLongModeEx(&pVCpu->cpum.s.Guest))
+        {
+            uint64_t uDr6 = pVCpu->cpum.s.Guest.dr[6];
+            HMR0SaveDebugState(pVCpu->CTX_SUFF(pVM), pVCpu, &pVCpu->cpum.s.Guest);
+            if (!fDR6)
+                pVCpu->cpum.s.Guest.dr[6] = uDr6;
+        }
+        else
+#endif
+        {
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+            cpumR0SaveDRx(&pVCpu->cpum.s.Guest.dr[0]);
+#else
+            pVCpu->cpum.s.Guest.dr[0] = ASMGetDR0();
+            pVCpu->cpum.s.Guest.dr[1] = ASMGetDR1();
+            pVCpu->cpum.s.Guest.dr[2] = ASMGetDR2();
+            pVCpu->cpum.s.Guest.dr[3] = ASMGetDR3();
+#endif
+            if (fDR6)
+                pVCpu->cpum.s.Guest.dr[6] = ASMGetDR6();
+        }
+    }
+    ASMAtomicAndU32(&pVCpu->cpum.s.fUseFlags, ~(  CPUM_USED_DEBUG_REGS_GUEST | CPUM_USED_DEBUG_REGS_HYPER
+                                                | CPUM_SYNC_DEBUG_REGS_GUEST | CPUM_SYNC_DEBUG_REGS_HYPER));
+    /*
+     * Restore the host's debug state. DR0-3, DR6 and only then DR7!
+     */
+    if (pVCpu->cpum.s.fUseFlags & CPUM_USED_DEBUG_REGS_HOST)
+    {
+        /* A bit of paranoia first... */
+        uint64_t uCurDR7 = ASMGetDR7();
+        if (uCurDR7 != X86_DR7_INIT_VAL)
+            ASMSetDR7(X86_DR7_INIT_VAL);
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+        AssertCompile((uintptr_t)&pVCpu->cpum.s.Host.dr3 - (uintptr_t)&pVCpu->cpum.s.Host.dr0 == sizeof(uint64_t) * 3);
+        cpumR0LoadDRx(&pVCpu->cpum.s.Host.dr0);
+#else
+        ASMSetDR0(pVCpu->cpum.s.Host.dr0);
+        ASMSetDR1(pVCpu->cpum.s.Host.dr1);
+        ASMSetDR2(pVCpu->cpum.s.Host.dr2);
+        ASMSetDR3(pVCpu->cpum.s.Host.dr3);
+#endif
+        /** @todo consider only updating if they differ, esp. DR6. Need to figure how
+         *        expensive DRx reads are over DRx writes.  */
+        ASMSetDR6(pVCpu->cpum.s.Host.dr6);
+        ASMSetDR7(pVCpu->cpum.s.Host.dr7);
+        ASMAtomicAndU32(&pVCpu->cpum.s.fUseFlags, ~CPUM_USED_DEBUG_REGS_HOST);
+    }
+    return fDrXLoaded;
+}
+/**
+ * Lazily sync in the debug state.
+ *
+ * @param   pVCpu       The cross context CPU structure for the calling EMT.
+ * @param   fDR6        Whether to include DR6 or not.
+ * @thread  EMT(pVCpu)
+ */
+VMMR0DECL(void) CPUMR0LoadGuestDebugState(PVMCPU pVCpu, bool fDR6)
+{
+    /*
+     * Save the host state and disarm all host BPs.
+     */
+    cpumR0SaveHostDebugState(pVCpu);
+    Assert(ASMGetDR7() == X86_DR7_INIT_VAL);
+    /*
+     * Activate the guest state DR0-3.
+     * DR7 and DR6 (if fDR6 is true) are left to the caller.
+     */
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+    if (CPUMIsGuestInLongModeEx(&pVCpu->cpum.s.Guest))
+        ASMAtomicOrU32(&pVCpu->cpum.s.fUseFlags, CPUM_SYNC_DEBUG_REGS_GUEST); /* Postpone it to the world switch. */
+    else
+#endif
+    {
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+        cpumR0LoadDRx(&pVCpu->cpum.s.Guest.dr[0]);
+#else
+        ASMSetDR0(pVCpu->cpum.s.Guest.dr[0]);
+        ASMSetDR1(pVCpu->cpum.s.Guest.dr[1]);
+        ASMSetDR2(pVCpu->cpum.s.Guest.dr[2]);
+        ASMSetDR3(pVCpu->cpum.s.Guest.dr[3]);
+#endif
+        if (fDR6)
+            ASMSetDR6(pVCpu->cpum.s.Guest.dr[6]);
+        ASMAtomicOrU32(&pVCpu->cpum.s.fUseFlags, CPUM_USED_DEBUG_REGS_GUEST);
+    }
+}
+/**
+ * Lazily sync in the hypervisor debug state
+ *
  * @returns VBox status code.
+ * @param   pVM         Pointer to the VM.
+ * @param   pVCpu       Pointer to the VMCPU.
+ */
+VMMR0DECL(int) CPUMR0LoadHostDebugState(PVM pVM, PVMCPU pVCpu)
+{
+    Assert(pVCpu->cpum.s.fUseFlags & (CPUM_USE_DEBUG_REGS | CPUM_USE_DEBUG_REGS_HYPER));
+    NOREF(pVM);
+    /*
+     * Restore the host's debug state. DR0-3, DR6 and only then DR7!
+     * DR7 contains 0x400 right now.
+     */
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+    AssertCompile((uintptr_t)&pVCpu->cpum.s.Host.dr3 - (uintptr_t)&pVCpu->cpum.s.Host.dr0 == sizeof(uint64_t) * 3);
+    cpumR0LoadDRx(&pVCpu->cpum.s.Host.dr0);
+#else
+    ASMSetDR0(pVCpu->cpum.s.Host.dr0);
+    ASMSetDR1(pVCpu->cpum.s.Host.dr1);
+    ASMSetDR2(pVCpu->cpum.s.Host.dr2);
+    ASMSetDR3(pVCpu->cpum.s.Host.dr3);
+#endif
+    ASMSetDR6(pVCpu->cpum.s.Host.dr6);
+    ASMSetDR7(pVCpu->cpum.s.Host.dr7);
+    pVCpu->cpum.s.fUseFlags &= ~(CPUM_USE_DEBUG_REGS | CPUM_USE_DEBUG_REGS_HYPER);
+    return VINF_SUCCESS;
+}
+/**
+ * Lazily sync in the hypervisor debug state
+ *
+ * @returns VBox status code.
+ * @param   pVM         Pointer to the VM.
+ * @param   pVCpu       Pointer to the VMCPU.
+ * @param   pCtx        Pointer to the guest CPU context.
+ * @param   pVCpu       The cross context CPU structure for the calling EMT.
  * @param   fDR6        Whether to include DR6 or not.
+ */
+VMMR0DECL(int) CPUMR0LoadHyperDebugState(PVM pVM, PVMCPU pVCpu, PCPUMCTX pCtx, bool fDR6)
+{
+    NOREF(pCtx);
+    /* Save the host state. */
+    CPUMR0SaveHostDebugState(pVM, pVCpu);
+ * @thread  EMT(pVCpu)
+ */
+VMMR0DECL(void) CPUMR0LoadHyperDebugState(PVMCPU pVCpu, bool fDR6)
+{
+    /*
+     * Save the host state and disarm all host BPs.
+     */
+    cpumR0SaveHostDebugState(pVCpu);
     Assert(ASMGetDR7() == X86_DR7_INIT_VAL);
+    /* Activate the guest state DR0-3; DR7 is left to the caller. */
+    /*
+     * Make sure the hypervisor values are up to date.
+     */
+    CPUMRecalcHyperDRx(pVCpu, UINT8_MAX /* no loading, please */);
+    /*
+     * Activate the guest state DR0-3.
+     * DR7 and DR6 (if fDR6 is true) are left to the caller.
+     */
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
     if (CPUMIsGuestInLongModeEx(pCtx))
+    {
+        AssertFailed();
+        return VERR_NOT_IMPLEMENTED;
+    }
+        ASMAtomicOrU32(&pVCpu->cpum.s.fUseFlags, CPUM_SYNC_DEBUG_REGS_HYPER); /* Postpone it. */
     else
 #endif
+    {
 #ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+        AssertFailed();
+        return VERR_NOT_IMPLEMENTED;
+        cpumR0LoadDRx(&pVCpu->cpum.s.Hyper.dr[0]);
 #else
         ASMSetDR0(CPUMGetHyperDR0(pVCpu));
         ASMSetDR1(CPUMGetHyperDR1(pVCpu));
         ASMSetDR2(CPUMGetHyperDR2(pVCpu));
         ASMSetDR3(CPUMGetHyperDR3(pVCpu));
+        ASMSetDR0(pVCpu->cpum.s.Hyper.dr[0]);
+        ASMSetDR1(pVCpu->cpum.s.Hyper.dr[1]);
+        ASMSetDR2(pVCpu->cpum.s.Hyper.dr[2]);
+        ASMSetDR3(pVCpu->cpum.s.Hyper.dr[3]);
 #endif
         if (fDR6)
+            ASMSetDR6(CPUMGetHyperDR6(pVCpu));
+    }
+    pVCpu->cpum.s.fUseFlags |= CPUM_USE_DEBUG_REGS_HYPER;
+    return VINF_SUCCESS;
+            ASMSetDR6(X86_DR6_INIT_VAL);
+        ASMAtomicOrU32(&pVCpu->cpum.s.fUseFlags, CPUM_USED_DEBUG_REGS_HYPER);
+    }
+}

trunk/src/VBox/VMM/VMMR0/HMSVMR0.cpp

-              r47652
+              r47660
     if (!(pVCpu->hm.s.fContextUseFlags & HM_CHANGED_GUEST_DEBUG))
         return;
+    /** @todo Turn these into assertions if possible. */
+    pCtx->dr[6] |= X86_DR6_INIT_VAL;                                          /* Set reserved bits to 1. */
+    pCtx->dr[6] &= ~RT_BIT(12);                                               /* MBZ. */
+    pCtx->dr[7] &= 0xffffffff;                                                /* Upper 32 bits MBZ. */
+    pCtx->dr[7] &= ~(RT_BIT(11) | RT_BIT(12) | RT_BIT(14) | RT_BIT(15));      /* MBZ. */
+    pCtx->dr[7] |= X86_DR7_INIT_VAL;                                          /* MB1. */
+    /* Update DR6, DR7 with the guest values. */
+    pVmcb->guest.u64DR7 = pCtx->dr[7];
+    pVmcb->guest.u64DR6 = pCtx->dr[6];
+    pVmcb->ctrl.u64VmcbCleanBits &= ~HMSVM_VMCB_CLEAN_DRX;
+    Assert((pCtx->dr[6] & X86_DR6_RA1_MASK) == X86_DR6_RA1_MASK); Assert((pCtx->dr[6] & X86_DR6_RAZ_MASK) == 0);
+    Assert((pCtx->dr[7] & X86_DR7_RA1_MASK) == X86_DR7_RA1_MASK); Assert((pCtx->dr[7] & X86_DR7_RAZ_MASK) == 0);
     bool fInterceptDB     = false;
     bool fInterceptMovDRx = false;
+    if (DBGFIsStepping(pVCpu))
+    {
+        /* AMD-V doesn't have any monitor-trap flag equivalent. Instead, enable tracing in the guest and trap #DB. */
+    /*
+     * Anyone single stepping on the host side? If so, we'll have to use the
+     * trap flag in the guest EFLAGS since AMD-V doesn't have a trap flag on
+     * the VMM level like VT-x implementations does.
+     */
+    bool const fStepping = pVCpu->hm.s.fSingleInstruction || DBGFIsStepping(pVCpu);
+    if (fStepping)
+    {
         pVmcb->guest.u64RFlags |= X86_EFL_TF;
         fInterceptDB = true;
+        fInterceptMovDRx = true; /* Need clean DR6, no guest mess. */
+    }
     PVM pVM = pVCpu->CTX_SUFF(pVM);
+    if (CPUMGetHyperDR7(pVCpu) & (X86_DR7_ENABLED_MASK | X86_DR7_GD))
+    {
+    if (fStepping || (CPUMGetHyperDR7(pVCpu) & X86_DR7_ENABLED_MASK))
+    {
+        /*
+         * Use the combined guest and host DRx values found in the hypervisor
+         * register set because the debugger has breakpoints active or someone
+         * is single stepping on the host side.
+         *
+         * Note! DBGF expects a clean DR6 state before executing guest code.
+         */
         if (!CPUMIsHyperDebugStateActive(pVCpu))
+        {
+            int rc = CPUMR0LoadHyperDebugState(pVM, pVCpu, pCtx, true /* include DR6 */);
+            AssertRC(rc);
+            /* Update DR6, DR7 with the hypervisor values. */
+            CPUMR0LoadHyperDebugState(pVCpu, false /* include DR6 */);
+        Assert(!CPUMIsGuestDebugStateActive(pVCpu));
+        Assert(CPUMIsHyperDebugStateActive(pVCpu));
+        /* Update DR6 & DR7. (The other DRx values are handled by CPUM one way or the other.) */
+        if (   pVmcb->guest.u64DR6 != X86_DR6_INIT_VAL
+            || pVmcb->guest.u64DR7 != CPUMGetHyperDR7(pVCpu) )
+        {
             pVmcb->guest.u64DR7 = CPUMGetHyperDR7(pVCpu);
             pVmcb->guest.u64DR6 = CPUMGetHyperDR6(pVCpu);
+            pVmcb->guest.u64DR6 = X86_DR6_INIT_VAL;
             pVmcb->ctrl.u64VmcbCleanBits &= ~HMSVM_VMCB_CLEAN_DRX;
+        }
+        Assert(CPUMIsHyperDebugStateActive(pVCpu));
+        /** @todo If we cared, we could optimize to allow the guest to read registers
+         *        with the same values. */
+        fInterceptDB = true;
         fInterceptMovDRx = true;
+    }
+    else if (pCtx->dr[7] & (X86_DR7_ENABLED_MASK | X86_DR7_GD))
+    {
+        if (!CPUMIsGuestDebugStateActive(pVCpu))
+        {
+            int rc = CPUMR0LoadGuestDebugState(pVM, pVCpu, pCtx, true /* include DR6 */);
+            AssertRC(rc);
+            STAM_COUNTER_INC(&pVCpu->hm.s.StatDRxArmed);
+        }
+        Assert(CPUMIsGuestDebugStateActive(pVCpu));
+        Assert(fInterceptMovDRx == false);
+    }
+    else if (!CPUMIsGuestDebugStateActive(pVCpu))
+    {
+        /* For the first time we would need to intercept MOV DRx accesses even when the guest debug registers aren't loaded. */
+        fInterceptMovDRx = true;
+    }
+        Log5(("hm: Loaded hyper DRx\n"));
+    }
+    else
+    {
+        /*
+         * Update DR6, DR7 with the guest values if necessary.
+         */
+        if (   pVmcb->guest.u64DR7 != pCtx->dr[7]
+            || pVmcb->guest.u64DR6 != pCtx->dr[6])
+        {
+            pVmcb->guest.u64DR7 = pCtx->dr[7];
+            pVmcb->guest.u64DR6 = pCtx->dr[6];
+            pVmcb->ctrl.u64VmcbCleanBits &= ~HMSVM_VMCB_CLEAN_DRX;
+        }
+        /*
+         * If the guest has enabled debug registers, we need to load them prior to
+         * executing guest code so they'll trigger at the right time.
+         */
+        if (pCtx->dr[7] & (X86_DR7_ENABLED_MASK | X86_DR7_GD)) /** @todo Why GD? */
+        {
+            if (!CPUMIsGuestDebugStateActive(pVCpu))
+            {
+                CPUMR0LoadGuestDebugState(pVCpu, false /* include DR6 */);
+                STAM_COUNTER_INC(&pVCpu->hm.s.StatDRxArmed);
+            }
+            Assert(!CPUMIsHyperDebugStateActive(pVCpu));
+            Assert(CPUMIsGuestDebugStateActive(pVCpu));
+            Log5(("hm: Loaded guest DRx\n"));
+        }
+        /*
+         * If no debugging enabled, we'll lazy load DR0-3.
+         */
+        else if (!CPUMIsGuestDebugStateActive(pVCpu))
+            fInterceptMovDRx = true;
+    }
+    /*
+     * Set up the intercepts.
+     */
     if (fInterceptDB)
         hmR0SvmAddXcptIntercept(pVmcb, X86_XCPT_DB);
 …
      * Guest Debug registers.
      */
+    pMixedCtx->dr[6] = pVmcb->guest.u64DR6;
+    pMixedCtx->dr[7] = pVmcb->guest.u64DR7;
+    if (!CPUMIsHyperDebugStateActive(pVCpu))
+    {
+        pMixedCtx->dr[6] = pVmcb->guest.u64DR6;
+        pMixedCtx->dr[7] = pVmcb->guest.u64DR7;
+    }
+    else
+    {
+        Assert(pVmcb->guest.u64DR7 == CPUMGetHyperDR7(pVCpu));
+        CPUMSetHyperDR6(pVCpu, pVmcb->guest.u64DR6);
+    }
     /*
 …
+    }
+    /* Restore host debug registers if necessary and resync on next R0 reentry. */
+    if (CPUMIsGuestDebugStateActive(pVCpu))
+    {
+        CPUMR0SaveGuestDebugState(pVM, pVCpu, pCtx, true /* save DR6 */);
+        Assert(!CPUMIsGuestDebugStateActive(pVCpu));
+        pVCpu->hm.s.fContextUseFlags |= HM_CHANGED_GUEST_DEBUG;
+    }
+    else if (CPUMIsHyperDebugStateActive(pVCpu))
+    {
+        CPUMR0LoadHostDebugState(pVM, pVCpu);
+        Assert(!CPUMIsHyperDebugStateActive(pVCpu));
+    /*
+     * Restore host debug registers if necessary and resync on next R0 reentry.
+     */
 #ifdef VBOX_STRICT
+    if (CPUMIsHyperDebugStateActive(pVCpu))
+    {
         PSVMVMCB pVmcb = (PSVMVMCB)pVCpu->hm.s.svm.pvVmcb;
         Assert(pVmcb->ctrl.u16InterceptRdDRx == 0xffff);
         Assert(pVmcb->ctrl.u16InterceptWrDRx == 0xffff);
+    }
 #endif
+    }
+    if (CPUMR0DebugStateMaybeSaveGuestAndRestoreHost(pVCpu, false /* save DR6 */))
+        pVCpu->hm.s.fContextUseFlags |= HM_CHANGED_GUEST_DEBUG;
+    Assert(!CPUMIsHyperDebugStateActive(pVCpu));
+    Assert(!CPUMIsGuestDebugStateActive(pVCpu));
     STAM_PROFILE_ADV_SET_STOPPED(&pVCpu->hm.s.StatEntry);
 …
 # define HMSVM_ASSERT_PREEMPT_CPUID() \
    do \
    { \
         RTCPUID const idAssertCpuNow = RTThreadPreemptIsEnabled(NIL_RTTHREAD) ? NIL_RTCPUID : RTMpCpuId(); \
         AssertMsg(idAssertCpu == idAssertCpuNow, ("SVM %#x, %#x\n", idAssertCpu, idAssertCpuNow)); \
    } while (0)
+    do \
+    { \
+         RTCPUID const idAssertCpuNow = RTThreadPreemptIsEnabled(NIL_RTTHREAD) ? NIL_RTCPUID : RTMpCpuId(); \
+         AssertMsg(idAssertCpu == idAssertCpuNow, ("SVM %#x, %#x\n", idAssertCpu, idAssertCpuNow)); \
+    } while (0)
 # define HMSVM_VALIDATE_EXIT_HANDLER_PARAMS() \
             do { \
                 AssertPtr(pVCpu); \
                 AssertPtr(pCtx); \
                 AssertPtr(pSvmTransient); \
                 Assert(ASMIntAreEnabled()); \
                 Assert(!RTThreadPreemptIsEnabled(NIL_RTTHREAD)); \
                 HMSVM_ASSERT_PREEMPT_CPUID_VAR(); \
                 Log4Func(("vcpu[%u] -v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-\n", (uint32_t)pVCpu->idCpu)); \
                 Assert(!RTThreadPreemptIsEnabled(NIL_RTTHREAD)); \
                 if (VMMR0IsLogFlushDisabled(pVCpu)) \
                     HMSVM_ASSERT_PREEMPT_CPUID(); \
             } while (0)
+    do { \
+        AssertPtr(pVCpu); \
+        AssertPtr(pCtx); \
+        AssertPtr(pSvmTransient); \
+        Assert(ASMIntAreEnabled()); \
+        Assert(!RTThreadPreemptIsEnabled(NIL_RTTHREAD)); \
+        HMSVM_ASSERT_PREEMPT_CPUID_VAR(); \
+        Log4Func(("vcpu[%u] -v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-v-\n", (uint32_t)pVCpu->idCpu)); \
+        Assert(!RTThreadPreemptIsEnabled(NIL_RTTHREAD)); \
+        if (VMMR0IsLogFlushDisabled(pVCpu)) \
+            HMSVM_ASSERT_PREEMPT_CPUID(); \
+    } while (0)
 #else   /* Release builds */
 # define HMSVM_VALIDATE_EXIT_HANDLER_PARAMS() do { } while(0)
 …
     /* We should -not- get this VM-exit if the guest is debugging. */
+    if (CPUMIsGuestDebugStateActive(pVCpu))
+    {
+        AssertMsgFailed(("hmR0SvmExitReadDRx: Unexpected exit. pVCpu=%p pCtx=%p\n", pVCpu, pCtx));
+        return VERR_SVM_UNEXPECTED_EXIT;
+    }
+    if (   !DBGFIsStepping(pVCpu)
+        && !CPUMIsHyperDebugStateActive(pVCpu))
+    {
+    AssertMsgReturn(!CPUMIsGuestDebugStateActive(pVCpu),
+                    ("hmR0SvmExitReadDRx: Unexpected exit. pVCpu=%p pCtx=%p\n", pVCpu, pCtx),
+                    VERR_SVM_UNEXPECTED_EXIT);
+    /*
+     * Lazy DR0-3 loading?
+     */
+    if (!CPUMIsHyperDebugStateActive(pVCpu))
+    {
+        Assert(!DBGFIsStepping(pVCpu)); Assert(!pVCpu->hm.s.fSingleInstruction);
+        Log5(("hmR0SvmExitReadDRx: Lazy loading guest debug registers\n"));
         /* Don't intercept DRx read and writes. */
         PSVMVMCB pVmcb = (PSVMVMCB)pVCpu->hm.s.svm.pvVmcb;
 …
         /* Save the host & load the guest debug state, restart execution of the MOV DRx instruction. */
+        PVM pVM = pVCpu->CTX_SUFF(pVM);
+        int rc = CPUMR0LoadGuestDebugState(pVM, pVCpu, pCtx, true /* include DR6 */);
+        AssertRC(rc);
+        CPUMR0LoadGuestDebugState(pVCpu, false /* include DR6 */);
         Assert(CPUMIsGuestDebugStateActive(pVCpu));
         STAM_COUNTER_INC(&pVCpu->hm.s.StatDRxContextSwitch);
+        return rc;
+    }
+        return VINF_SUCCESS;
+    }
+    /*
+     * Interpret the read/writing of DRx.
+     */
     /** @todo Decode assist.  */
     VBOXSTRICTRC rc2 = EMInterpretInstruction(pVCpu, CPUMCTX2CORE(pCtx), 0 /* pvFault */);
     int rc = VBOXSTRICTRC_VAL(rc2);
+    VBOXSTRICTRC rc = EMInterpretInstruction(pVCpu, CPUMCTX2CORE(pCtx), 0 /* pvFault */);
+    Log5(("hmR0SvmExitReadDRx: Emulatined DRx access: rc=%Rrc\n", VBOXSTRICTRC_VAL(rc)));
     if (RT_LIKELY(rc == VINF_SUCCESS))
+    {
         /* Not necessary for read accesses but whatever doesn't hurt for now, will be fixed with decode assist. */
+        /** @todo CPUM should set this flag! */
         pVCpu->hm.s.fContextUseFlags |= HM_CHANGED_GUEST_DEBUG;
+    }
     else
         Assert(rc == VERR_EM_INTERPRETER);
     return rc;
+    return VBOXSTRICTRC_TODO(rc);
+}
 …
     STAM_COUNTER_INC(&pVCpu->hm.s.StatExitGuestDB);
+    /* If we sat the trap flag above, we have to clear it. */ /** @todo HM should remember what it does and possibly do this elsewhere! */
+    if (pVCpu->hm.s.fSingleInstruction || DBGFIsStepping(pVCpu))
+        pCtx->eflags.Bits.u1TF = 0;
     /* This can be a fault-type #DB (instruction breakpoint) or a trap-type #DB (data breakpoint). However, for both cases
        DR6 and DR7 are updated to what the exception handler expects. See AMD spec. 15.12.2 "#DB (Debug)". */
+    PVM pVM = pVCpu->CTX_SUFF(pVM);
+    int rc = DBGFRZTrap01Handler(pVM, pVCpu, CPUMCTX2CORE(pCtx), pCtx->dr[6]);
+    PSVMVMCB    pVmcb   = (PSVMVMCB)pVCpu->hm.s.svm.pvVmcb;
+    PVM         pVM     = pVCpu->CTX_SUFF(pVM);
+    int rc = DBGFRZTrap01Handler(pVM, pVCpu, CPUMCTX2CORE(pCtx), pVmcb->guest.u64DR6);
     if (rc == VINF_EM_RAW_GUEST_TRAP)
+    {
+        Log5(("hmR0SvmExitXcptDB: DR6=%#RX64 -> guest trap\n", pVmcb->guest.u64DR6));
+        if (CPUMIsHyperDebugStateActive(pVCpu))
+            CPUMSetGuestDR6(pVCpu, CPUMGetGuestDR6(pVCpu) | pVmcb->guest.u64DR6);
         /* Reflect the exception back to the guest. */
         hmR0SvmSetPendingXcptDB(pVCpu);
 …
+    }
+    /*
+     * Update DR6.
+     */
+    if (CPUMIsHyperDebugStateActive(pVCpu))
+    {
+        Log5(("hmR0SvmExitXcptDB: DR6=%#RX64 -> %Rrc\n", pVmcb->guest.u64DR6, rc));
+        pVmcb->guest.u64DR6 = X86_DR6_INIT_VAL;
+        pVmcb->ctrl.u64VmcbCleanBits &= ~HMSVM_VMCB_CLEAN_DRX;
+    }
+    else
+    {
+        AssertMsg(rc == VINF_SUCCESS, ("rc=%Rrc\n", rc));
+        Assert(!pVCpu->hm.s.fSingleInstruction && !DBGFIsStepping(pVCpu));
+    }
     return rc;
+}

trunk/src/VBox/VMM/VMMR0/HMVMXR0.cpp

-              r47653
+              r47660
 #endif
     int rc                = VERR_INTERNAL_ERROR_5;
     PVM pVM               = pVCpu->CTX_SUFF(pVM);
+    int  rc;
+    PVM  pVM              = pVCpu->CTX_SUFF(pVM);
     bool fInterceptDB     = false;
     bool fInterceptMovDRx = false;
     if (DBGFIsStepping(pVCpu) || pVCpu->hm.s.fSingleInstruction)
+    if (pVCpu->hm.s.fSingleInstruction || DBGFIsStepping(pVCpu))
+    {
         /* If the CPU supports the monitor trap flag, use it for single stepping in DBGF and avoid intercepting #DB. */
 …
+    }
+    if (CPUMGetHyperDR7(pVCpu) & (X86_DR7_ENABLED_MASK | X86_DR7_GD))
+    {
+    if (fInterceptDB || (CPUMGetHyperDR7(pVCpu) & X86_DR7_ENABLED_MASK))
+    {
+        /*
+         * Use the combined guest and host DRx values found in the hypervisor
+         * register set because the debugger has breakpoints active or someone
+         * is single stepping on the host side without a monitor trap flag.
+         *
+         * Note! DBGF expects a clean DR6 state before executing guest code.
+         */
         if (!CPUMIsHyperDebugStateActive(pVCpu))
+        {
+            rc = CPUMR0LoadHyperDebugState(pVM, pVCpu, pMixedCtx, true /* include DR6 */);
+            AssertRC(rc);
+        }
+            CPUMR0LoadHyperDebugState(pVCpu, true /* include DR6 */);
+        Assert(!CPUMIsGuestDebugStateActive(pVCpu));
         Assert(CPUMIsHyperDebugStateActive(pVCpu));
+        /* Update DR7. (The other DRx values are handled by CPUM one way or the other.) */
+        rc = VMXWriteVmcs32(VMX_VMCS_GUEST_DR7, (uint32_t)CPUMGetHyperDR7(pVCpu));
+        AssertRCReturn(rc, rc);
+        fInterceptDB = true;
         fInterceptMovDRx = true;
+    }
+    else if (pMixedCtx->dr[7] & (X86_DR7_ENABLED_MASK | X86_DR7_GD))
+    {
+        if (!CPUMIsGuestDebugStateActive(pVCpu))
+        {
+            rc = CPUMR0LoadGuestDebugState(pVM, pVCpu, pMixedCtx, true /* include DR6 */);
+            AssertRC(rc);
+            STAM_COUNTER_INC(&pVCpu->hm.s.StatDRxArmed);
+        }
+        Assert(CPUMIsGuestDebugStateActive(pVCpu));
+        Assert(fInterceptMovDRx == false);
+    }
+    else if (!CPUMIsGuestDebugStateActive(pVCpu))
+    {
+        /* For the first time we would need to intercept MOV DRx accesses even when the guest debug registers aren't loaded. */
+        fInterceptMovDRx = true;
+    }
+    /* Update the exception bitmap regarding intercepting #DB generated by the guest. */
+    else
+    {
+        /*
+         * If the guest has enabled debug registers, we need to load them prior to
+         * executing guest code so they'll trigger at the right time.
+         */
+        if (pMixedCtx->dr[7] & (X86_DR7_ENABLED_MASK | X86_DR7_GD)) /** @todo Why GD? */
+        {
+            if (!CPUMIsGuestDebugStateActive(pVCpu))
+            {
+                CPUMR0LoadGuestDebugState(pVCpu, true /* include DR6 */);
+                STAM_COUNTER_INC(&pVCpu->hm.s.StatDRxArmed);
+            }
+            Assert(!CPUMIsHyperDebugStateActive(pVCpu));
+            Assert(CPUMIsGuestDebugStateActive(pVCpu));
+        }
+        /*
+         * If no debugging enabled, we'll lazy load DR0-3.
+         */
+        else if (!CPUMIsGuestDebugStateActive(pVCpu))
+            fInterceptMovDRx = true;
+        rc = VMXWriteVmcs32(VMX_VMCS_GUEST_DR7, pMixedCtx->dr[7]);
+        AssertRCReturn(rc, rc);
+    }
+    /*
+     * Update the exception bitmap regarding intercepting #DB generated by the guest.
+     */
     if (fInterceptDB)
         pVCpu->hm.s.vmx.u32XcptBitmap |= RT_BIT(X86_XCPT_DB);
 …
 #endif
+    }
+    /* Update the processor-based VM-execution controls regarding intercepting MOV DRx instructions. */
+    rc = VMXWriteVmcs32(VMX_VMCS32_CTRL_EXCEPTION_BITMAP, pVCpu->hm.s.vmx.u32XcptBitmap);
+    AssertRCReturn(rc, rc);
+    /*
+     * Update the processor-based VM-execution controls regarding intercepting MOV DRx instructions.
+     */
     if (fInterceptMovDRx)
         pVCpu->hm.s.vmx.u32ProcCtls |= VMX_VMCS_CTRL_PROC_EXEC_MOV_DR_EXIT;
     else
         pVCpu->hm.s.vmx.u32ProcCtls &= ~VMX_VMCS_CTRL_PROC_EXEC_MOV_DR_EXIT;
-    rc = VMXWriteVmcs32(VMX_VMCS32_CTRL_EXCEPTION_BITMAP, pVCpu->hm.s.vmx.u32XcptBitmap);
-    AssertRCReturn(rc, rc);
     rc = VMXWriteVmcs32(VMX_VMCS32_CTRL_PROC_EXEC, pVCpu->hm.s.vmx.u32ProcCtls);
     AssertRCReturn(rc, rc);
-    /* The guest's view of its DR7 is unblemished. Use 32-bit write as upper 32-bits MBZ as asserted above. */
-    rc = VMXWriteVmcs32(VMX_VMCS_GUEST_DR7, (uint32_t)pMixedCtx->dr[7]);
-    AssertRCReturn(rc, rc);
     pVCpu->hm.s.fContextUseFlags &= ~HM_CHANGED_GUEST_DEBUG;
     return rc;
+    return VINF_SUCCESS;
+}
 …
     if (!(pVCpu->hm.s.vmx.fUpdatedGuestState & HMVMX_UPDATED_GUEST_DEBUG))
+    {
+        /* Upper 32-bits are always zero. See Intel spec. 2.7.3 "Loading and Storing Debug Registers". */
+        uint32_t u32Val;
+        int rc = VMXReadVmcs32(VMX_VMCS_GUEST_DR7, &u32Val);    AssertRCReturn(rc, rc);
+        pMixedCtx->dr[7] = u32Val;
+        if (!CPUMIsHyperDebugStateActive(pVCpu))
+        {
+            /* Upper 32-bits are always zero. See Intel spec. 2.7.3 "Loading and Storing Debug Registers". */
+            uint32_t u32Val;
+            int rc = VMXReadVmcs32(VMX_VMCS_GUEST_DR7, &u32Val);    AssertRCReturn(rc, rc);
+            pMixedCtx->dr[7] = u32Val;
+        }
         pVCpu->hm.s.vmx.fUpdatedGuestState |= HMVMX_UPDATED_GUEST_DEBUG;
 …
     if (CPUMIsGuestDebugStateActive(pVCpu))
+    {
+        CPUMR0SaveGuestDebugState(pVM, pVCpu, pMixedCtx, true /* save DR6 */);
+        Assert(!CPUMIsGuestDebugStateActive(pVCpu));
+        CPUMR0DebugStateMaybeSaveGuestAndRestoreHost(pVCpu, false /* save DR6 */);
         pVCpu->hm.s.fContextUseFlags |= HM_CHANGED_GUEST_DEBUG;
+    }
     else if (CPUMIsHyperDebugStateActive(pVCpu))
+    {
+        CPUMR0LoadHostDebugState(pVM, pVCpu);
+        Assert(!CPUMIsHyperDebugStateActive(pVCpu));
+        CPUMR0DebugStateMaybeSaveGuestAndRestoreHost(pVCpu, false /* save DR6 */);
         Assert(pVCpu->hm.s.vmx.u32ProcCtls & VMX_VMCS_CTRL_PROC_EXEC_MOV_DR_EXIT);
+    }
+    Assert(!CPUMIsGuestDebugStateActive(pVCpu));
+    Assert(!CPUMIsHyperDebugStateActive(pVCpu));
     STAM_PROFILE_ADV_SET_STOPPED(&pVCpu->hm.s.StatEntry);
 …
                  *        bootsector testcase for asserting the correct behavior (as well as
                  *        correctness of this code). */
+                /** @todo r=bird: DR0-3 are normally in host registes when the guest is using
+                 *        them, so we're testing against potentially stale values here! */
                 STAM_COUNTER_INC(&pVCpu->hm.s.StatDRxIoCheck);
                 uint32_t uIOPortLast = uIOPort + cbValue - 1;
 …
         /* Save the host & load the guest debug state, restart execution of the MOV DRx instruction. */
         PVM pVM = pVCpu->CTX_SUFF(pVM);
+        rc = CPUMR0LoadGuestDebugState(pVM, pVCpu, pMixedCtx, true /* include DR6 */);
+        AssertRC(rc);
+        CPUMR0LoadGuestDebugState(pVCpu, true /* include DR6 */);
         Assert(CPUMIsGuestDebugStateActive(pVCpu));
 …
     STAM_COUNTER_INC(&pVCpu->hm.s.StatExitGuestDB);
+    /*
+     * Get the DR6-like values from the exit qualification and pass it to DBGF
+     * for processing.
+     */
     int rc = hmR0VmxReadExitQualificationVmcs(pVCpu, pVmxTransient);
     AssertRCReturn(rc, rc);
 …
     /* Refer Intel spec. Table 27-1. "Exit Qualifications for debug exceptions" for the format. */
     uint64_t uDR6 = X86_DR6_INIT_VAL;
     uDR6         |= (pVmxTransient->uExitQualification
+    uDR6         |= (  pVmxTransient->uExitQualification
                      & (X86_DR6_B0 | X86_DR6_B1 | X86_DR6_B2 | X86_DR6_B3 | X86_DR6_BD | X86_DR6_BS));
+    PVM pVM = pVCpu->CTX_SUFF(pVM);
     rc = DBGFRZTrap01Handler(pVM, pVCpu, CPUMCTX2CORE(pMixedCtx), uDR6);
+    rc = DBGFRZTrap01Handler(pVCpu->CTX_SUFF(pVM), pVCpu, CPUMCTX2CORE(pMixedCtx), uDR6);
     if (rc == VINF_EM_RAW_GUEST_TRAP)
+    {
+        /* DR6, DR7.GD and IA32_DEBUGCTL.LBR are not updated yet. See Intel spec. 27.1 "Architectural State before a VM-Exit". */
+        pMixedCtx->dr[6] = uDR6;
+        /*
+         * The exception was for the guest.  Update DR6, DR7.GD and
+         * IA32_DEBUGCTL.LBR before forwarding it.
+         * (See Intel spec. 27.1 "Architectural State before a VM-Exit".)
+         */
+        pMixedCtx->dr[6] |= uDR6;
         if (CPUMIsGuestDebugStateActive(pVCpu))
             ASMSetDR6(pMixedCtx->dr[6]);
         rc = hmR0VmxSaveGuestDR7(pVCpu, pMixedCtx);
+        AssertRCReturn(rc, rc);
         /* X86_DR7_GD will be cleared if DRx accesses should be trapped inside the guest. */
 …
         /* Paranoia. */
+        pMixedCtx->dr[7] &= 0xffffffff;                                              /* Upper 32 bits MBZ. */
+        pMixedCtx->dr[7] &= ~(RT_BIT(11) | RT_BIT(12) | RT_BIT(14) | RT_BIT(15));    /* MBZ. */
+        pMixedCtx->dr[7] |= 0x400;                                                   /* MB1. */
+        rc |= VMXWriteVmcs32(VMX_VMCS_GUEST_DR7, (uint32_t)pMixedCtx->dr[7]);
+        AssertRCReturn(rc,rc);
+        int rc2 = hmR0VmxReadExitIntrInfoVmcs(pVCpu, pVmxTransient);
+        rc2 |= hmR0VmxReadExitInstrLenVmcs(pVCpu, pVmxTransient);
+        rc2 |= hmR0VmxReadExitIntrErrorCodeVmcs(pVCpu, pVmxTransient);
+        AssertRCReturn(rc2, rc2);
+        pMixedCtx->dr[7] &= ~X86_DR7_RAZ_MASK;
+        pMixedCtx->dr[7] |= X86_DR7_RA1_MASK;
+        rc = VMXWriteVmcs32(VMX_VMCS_GUEST_DR7, (uint32_t)pMixedCtx->dr[7]);
+        AssertRCReturn(rc, rc);
+        /*
+         * Raise #DB in the guest.
+         */
+        int rc = hmR0VmxReadExitIntrInfoVmcs(pVCpu, pVmxTransient);
+        rc |= hmR0VmxReadExitInstrLenVmcs(pVCpu, pVmxTransient);
+        rc |= hmR0VmxReadExitIntrErrorCodeVmcs(pVCpu, pVmxTransient);
+        AssertRCReturn(rc, rc);
         hmR0VmxSetPendingEvent(pVCpu, VMX_VMCS_CTRL_ENTRY_IRQ_INFO_FROM_EXIT_INT_INFO(pVmxTransient->uExitIntrInfo),
                                pVmxTransient->cbInstr, pVmxTransient->uExitIntrErrorCode, 0 /* GCPtrFaultAddress */);
+        rc = VINF_SUCCESS;
+    }
+        return VINF_SUCCESS;
+    }
+    /*
+     * Not a guest trap, must be a hypervisor related debug event then.
+     * Update DR6 in case someone is interested in it.
+     */
+    AssertMsg(rc == VINF_EM_DBG_STEPPED || rc == VINF_EM_DBG_BREAKPOINT, ("%Rrc\n", rc));
+    AssertReturn(CPUMIsHyperDebugStateActive(pVCpu), VERR_HM_IPE_5);
+    CPUMSetHyperDR6(pVCpu, uDR6);
     return rc;

trunk/src/VBox/VMM/VMMR3/DBGFBp.cpp

r44528	r47660
566	566	{
567	567	NOREF(pVM); NOREF(pvUser);
568		return CPUMRecalcHyperDRx(pVCpu);
	568	return CPUMRecalcHyperDRx(pVCpu, UINT8_MAX);
569	569	}
570	570

trunk/src/VBox/VMM/VMMR3/EM.cpp

-              r47619
+              r47660
             default: /** @todo don't use default for guru, but make special errors code! */
+            {
+                LogRel(("emR3Debug: rc=%Rrc\n", VBOXSTRICTRC_VAL(rc)));
                 rc = DBGFR3Event(pVM, DBGFEVENT_FATAL_ERROR);
                 break;
+            }
+        }
 …
                     rc = VBOXSTRICTRC_TODO(emR3Debug(pVM, pVCpu, rc));
                     TMR3NotifyResume(pVM, pVCpu);
                     Log2(("EMR3ExecuteVM: enmr3Debug -> %Rrc (state %d)\n", rc, pVCpu->em.s.enmState));
+                    Log2(("EMR3ExecuteVM: emR3Debug -> %Rrc (state %d)\n", rc, pVCpu->em.s.enmState));
                     break;
 …
                     rc = VBOXSTRICTRC_TODO(emR3Debug(pVM, pVCpu, rc));
                     Log2(("EMR3ExecuteVM: enmr3Debug -> %Rrc (state %d)\n", rc, pVCpu->em.s.enmState));
+                    Log2(("EMR3ExecuteVM: emR3Debug -> %Rrc (state %d)\n", rc, pVCpu->em.s.enmState));
                     if (rc != VINF_SUCCESS)
+                    {

trunk/src/VBox/VMM/VMMRC/TRPMRCHandlers.cpp

r46420	r47660
323	323	int rc = DBGFRZTrap01Handler(pVM, pVCpu, pRegFrame, uDr6);
324	324	if (rc == VINF_EM_RAW_GUEST_TRAP)
325		CPUMSetGuestDR6(pVCpu, uDr6);
	325	CPUMSetGuestDR6(pVCpu, CPUMGetGuestDR6(pVCpu) \| uDr6);
326	326
327	327	rc = trpmGCExitTrap(pVM, pVCpu, rc, pRegFrame);

trunk/src/VBox/VMM/VMMRZ/DBGFRZ.cpp

-              r44528
+              r47660
  * @param   pVCpu       Pointer to the VMCPU.
  * @param   pRegFrame   Pointer to the register frame for the trap.
  * @param   uDr6        The DR6 register value.
+ * @param   uDr6        The DR6 hypervisor register value.
  */
 VMMRZ_INT_DECL(int) DBGFRZTrap01Handler(PVM pVM, PVMCPU pVCpu, PCPUMCTXCORE pRegFrame, RTGCUINTREG uDr6)
 …
+    }
-#ifdef IN_RC
     /*
      * Currently we only implement single stepping in the guest,
      * so we'll bitch if this is not a BS event.
+     * Either an ICEBP in hypervisor code or a guest related debug exception
+     * of sorts.
      */
+    AssertMsg(uDr6 & X86_DR6_BS, ("hey! we're not doing guest BPs yet! dr6=%RTreg %04x:%RGv\n",
+                                  uDr6, pRegFrame->cs.Sel, pRegFrame->rip));
+#endif
+    if (RT_UNLIKELY(fInHyper))
+    {
+        LogFlow(("DBGFRZTrap01Handler: unabled bp at %04x:%RGv\n", pRegFrame->cs.Sel, pRegFrame->rip));
+        return VERR_DBGF_HYPER_DB_XCPT;
+    }
     LogFlow(("DBGFRZTrap01Handler: guest debug event %RTreg at %04x:%RGv!\n", uDr6, pRegFrame->cs.Sel, pRegFrame->rip));
     return fInHyper ? VERR_DBGF_HYPER_DB_XCPT : VINF_EM_RAW_GUEST_TRAP;
+    return VINF_EM_RAW_GUEST_TRAP;
+}

trunk/src/VBox/VMM/VMMSwitcher/AMD64andLegacy.mac

-              r41985
+              r47660
+;
 ; Copyright (C) 2006-2012 Oracle Corporation
+; Copyright (C) 2006-2013 Oracle Corporation
+;
 ; This file is part of VirtualBox Open Source Edition (OSE), as
 …
     ; debug registers.
+    test    esi, CPUM_USE_DEBUG_REGS | CPUM_USE_DEBUG_REGS_HOST
+    jz      htg_debug_regs_no
+    jmp     htg_debug_regs_save
+    test    esi, CPUM_USE_DEBUG_REGS_HYPER | CPUM_USE_DEBUG_REGS_HOST
+    jnz     htg_debug_regs_save
 htg_debug_regs_no:
     DEBUG_CHAR('a')                     ; trashes esi
 …
     mov     rax, dr7                    ; not sure, but if I read the docs right this will trap if GD is set. FIXME!!!
     mov     [rdx + r8 + CPUMCPU.Host.dr7], rax
+    xor     eax, eax                    ; clear everything. (bit 12? is read as 1...)
+    mov     dr7, rax
+    mov     ecx, X86_DR7_INIT_VAL
+    cmp     eax, ecx
+    je      .htg_debug_regs_dr7_disabled
+    mov     dr7, rcx
+.htg_debug_regs_dr7_disabled:
     mov     rax, dr6                    ; just in case we save the state register too.
     mov     [rdx + r8 + CPUMCPU.Host.dr6], rax
     ; save host DR0-3?
     test    esi, CPUM_USE_DEBUG_REGS
     jz near htg_debug_regs_no
+    test    esi, CPUM_USE_DEBUG_REGS_HYPER
+    jz      htg_debug_regs_no
 DEBUG_S_CHAR('S');
     mov     rax, dr0
 …
     mov     rax, dr3
     mov     [rdx + r8 + CPUMCPU.Host.dr3], rax
+    or      dword [rdx + r8 + CPUMCPU.fUseFlags], CPUM_USED_DEBUG_REGS_HOST
     jmp     htg_debug_regs_no
 …
 GLOBALNAME JmpGCTarget
     DEBUG_CHAR('-')
-;mov eax, 0ffff0000h
-;.delay_loop:
-;nop
-;dec eax
-;nop
-;jnz .delay_loop
     ; load final cr3 and do far jump to load cs.
     mov     cr3, ebp                ; ebp set above
 …
     ; debug registers
     test    esi, CPUM_USE_DEBUG_REGS
+    test    esi, CPUM_USE_DEBUG_REGS_HYPER
     jnz     htg_debug_regs_guest
 htg_debug_regs_guest_done:
 …
     mov     ebx, [edx + CPUMCPU.Hyper.dr + 8*3]
     mov     dr3, ebx
+    ;mov     eax, [edx + CPUMCPU.Hyper.dr + 8*6]
+    mov     ecx, 0ffff0ff0h
+    mov     ecx, X86_DR6_INIT_VAL
     mov     dr6, ecx
     mov     eax, [edx + CPUMCPU.Hyper.dr + 8*7]
     mov     dr7, eax
+    or      dword [edx + CPUMCPU.fUseFlags], CPUM_USED_DEBUG_REGS_HYPER
     jmp     htg_debug_regs_guest_done
 …
     ; FPU context is saved before restore of host saving (another) branch.
+    ; Disable debug registers if active so they cannot trigger while switching.
+    test    dword [edi + CPUMCPU.fUseFlags], CPUM_USED_DEBUG_REGS_HYPER
+    jz      .gth_disabled_dr7
+    mov     eax, X86_DR7_INIT_VAL
+    mov     dr7, eax
+.gth_disabled_dr7:
     ;;
 …
     ;mov     cr2, rcx
-    ; restore debug registers (if modified) (esi must still be fUseFlags!)
-    ; (must be done after cr4 reload because of the debug extension.)
-    test    esi, CPUM_USE_DEBUG_REGS | CPUM_USE_DEBUG_REGS_HOST
-    jz short gth_debug_regs_no
-    jmp     gth_debug_regs_restore
-gth_debug_regs_no:
     ; Restore MSRs
     mov     rbx, rdx
 …
     mov     rdx, rbx
+    ; restore general registers.
+    ; Restore debug registers (if modified). (ESI must still be fUseFlags! Must be done late, at least after CR4!)
+    test    esi, CPUM_USE_DEBUG_REGS_HOST | CPUM_USED_DEBUG_REGS_HOST | CPUM_USE_DEBUG_REGS_HYPER
+    jnz     gth_debug_regs_restore
+gth_debug_regs_done:
+    and     dword [edx + CPUMCPU.fUseFlags], ~(CPUM_USED_DEBUG_REGS_HOST | CPUM_USED_DEBUG_REGS_HYPER)
+    ; Restore general registers.
     mov     eax, edi                    ; restore return code. eax = return code !!
     ; mov     rax, [rdx + r8 + CPUMCPU.Host.rax] - scratch + return code
 …
 gth_debug_regs_restore:
     DEBUG_S_CHAR('d')
+    xor     eax, eax
+    mov     dr7, rax                    ; paranoia or not?
+    test    esi, CPUM_USE_DEBUG_REGS
+    jz short gth_debug_regs_dr7
+    mov     rax, dr7                    ; Some DR7 paranoia first...
+    mov     ecx, X86_DR7_INIT_VAL
+    cmp     rax, rcx
+    je      .gth_debug_skip_dr7_disabling
+    mov     dr7, rcx
+.gth_debug_skip_dr7_disabling:
+    test    esi, CPUM_USED_DEBUG_REGS_HOST
+    jz      .gth_debug_regs_dr7
     DEBUG_S_CHAR('r')
     mov     rax, [rdx + r8 + CPUMCPU.Host.dr0]
 …
     mov     rax, [rdx + r8 + CPUMCPU.Host.dr3]
     mov     dr3, rax
 gth_debug_regs_dr7:
+.gth_debug_regs_dr7:
     mov     rbx, [rdx + r8 + CPUMCPU.Host.dr6]
     mov     dr6, rbx
     mov     rcx, [rdx + r8 + CPUMCPU.Host.dr7]
     mov     dr7, rcx
+    jmp     gth_debug_regs_no
+    ; We clear the USED flags in the main code path.
+    jmp     gth_debug_regs_done
 ENDPROC vmmRCToHostAsm

trunk/src/VBox/VMM/VMMSwitcher/LegacyandAMD64.mac

-              r47652
+              r47660
     mov     esi, [rdx + CPUMCPU.fUseFlags] ; esi == use flags.
     test    esi, CPUM_SYNC_FPU_STATE
     jz      near gth_fpu_no
+    jz      near htg_fpu_no
 %ifdef VBOX_WITH_CRASHDUMP_MAGIC
 …
     and     dword [rdx + CPUMCPU.fUseFlags], ~CPUM_SYNC_FPU_STATE
 gth_fpu_no:
+htg_fpu_no:
     ; Check if we need to restore the guest debug state
     test    esi, CPUM_SYNC_DEBUG_STATE
     jz      near gth_debug_no
+    test    esi, CPUM_SYNC_DEBUG_REGS_GUEST | CPUM_SYNC_DEBUG_REGS_HYPER
+    jz      htg_debug_done
 %ifdef VBOX_WITH_CRASHDUMP_MAGIC
     mov dword [rdx + CPUMCPU.Guest.dr + 4*8], 8
 %endif
+    test    esi, CPUM_SYNC_DEBUG_REGS_HYPER
+    jnz     htg_debug_hyper
+    ; Guest values in DRx, letting the guest access them directly.
     mov     rax, qword [rdx + CPUMCPU.Guest.dr + 0*8]
     mov     dr0, rax
 …
     mov     dr6, rax    ; not required for AMD-V
+    and     dword [rdx + CPUMCPU.fUseFlags], ~CPUM_SYNC_DEBUG_STATE
+gth_debug_no:
+    and     dword [rdx + CPUMCPU.fUseFlags], ~CPUM_SYNC_DEBUG_REGS_GUEST
+    or      dword [rdx + CPUMCPU.fUseFlags], CPUM_USED_DEBUG_REGS_GUEST
+    jmp     htg_debug_done
+htg_debug_hyper:
+    ; Combined values in DRx, intercepting all accesses.
+    mov     rax, qword [rdx + CPUMCPU.Hyper.dr + 0*8]
+    mov     dr0, rax
+    mov     rax, qword [rdx + CPUMCPU.Hyper.dr + 1*8]
+    mov     dr1, rax
+    mov     rax, qword [rdx + CPUMCPU.Hyper.dr + 2*8]
+    mov     dr2, rax
+    mov     rax, qword [rdx + CPUMCPU.Hyper.dr + 3*8]
+    mov     dr3, rax
+    mov     rax, qword [rdx + CPUMCPU.Hyper.dr + 6*8]
+    mov     dr6, rax    ; not required for AMD-V
+    and     dword [rdx + CPUMCPU.fUseFlags], ~CPUM_SYNC_DEBUG_REGS_HYPER
+    or      dword [rdx + CPUMCPU.fUseFlags], CPUM_USED_DEBUG_REGS_HYPER
+htg_debug_done:
 %ifdef VBOX_WITH_CRASHDUMP_MAGIC
     mov dword [rdx + CPUMCPU.Guest.dr + 4*8], 9
 %endif
+    ;
+    ; "Call" the specified helper function.
+    ;
     ; parameter for all helper functions (pCtx)
     DEBUG64_CHAR('9')
     lea     rsi, [rdx + CPUMCPU.Guest.fpu]
     lea     rax, [gth_return wrt rip]
+    lea     rax, [htg_return wrt rip]
     push    rax                         ; return address
 …
     jz      NAME(HMRCTestSwitcher64)
     mov     eax, VERR_HM_INVALID_HM64ON32OP
 gth_return:
+htg_return:
     DEBUG64_CHAR('r')

trunk/src/VBox/VMM/VMMSwitcher/PAEand32Bit.mac

-              r41985
+              r47660
+;
 ; Copyright (C) 2006-2012 Oracle Corporation
+; Copyright (C) 2006-2013 Oracle Corporation
+;
 ; This file is part of VirtualBox Open Source Edition (OSE), as
 …
     ; debug registers.
     test    esi, CPUM_USE_DEBUG_REGS | CPUM_USE_DEBUG_REGS_HOST
+    test    esi, CPUM_USE_DEBUG_REGS_HYPER | CPUM_USE_DEBUG_REGS_HOST
     jnz     htg_debug_regs_save_dr7and6
 htg_debug_regs_no:
 …
     ; debug registers
     test    esi, CPUM_USE_DEBUG_REGS
+    test    esi, CPUM_USE_DEBUG_REGS_HYPER
     jnz     htg_debug_regs_guest
 htg_debug_regs_guest_done:
 …
     mov     eax, dr3
     mov     [edx + CPUMCPU.Host.dr3], eax
+    or      dword [edi + CPUMCPU.fUseFlags], CPUM_USED_DEBUG_REGS_HOST
     ; load hyper DR0-7
 …
     mov     ebx, [edx + CPUMCPU.Hyper.dr + 8*3]
     mov     dr3, ebx
+    ;mov     eax, [edx + CPUMCPU.Hyper.dr + 8*6]
+    mov     ecx, 0ffff0ff0h
+    mov     ecx, X86_DR6_INIT_VAL
     mov     dr6, ecx
     mov     eax, [edx + CPUMCPU.Hyper.dr + 8*7]
     mov     dr7, eax
+    or      dword [edi + CPUMCPU.fUseFlags], CPUM_USED_DEBUG_REGS_HYPER
     jmp     htg_debug_regs_guest_done
 …
     ; No need to save CRx here. They are set dynamically according to Guest/Host requirements.
     ; FPU context is saved before restore of host saving (another) branch.
+    ; Disable debug regsiters if active so they cannot trigger while switching.
+    test    dword [edi + CPUMCPU.fUseFlags], CPUM_USED_DEBUG_REGS_HYPER
+    jz      .gth_disabled_dr7
+    mov     eax, X86_DR7_INIT_VAL
+    mov     dr7, eax
+.gth_disabled_dr7:
 %ifdef VBOX_WITH_NMI
 …
     ; restore debug registers (if modified) (esi must still be fUseFlags!)
     ; (must be done after cr4 reload because of the debug extension.)
+    test    esi, CPUM_USE_DEBUG_REGS | CPUM_USE_DEBUG_REGS_HOST
+    jz short gth_debug_regs_no
+    jmp     gth_debug_regs_restore
+gth_debug_regs_no:
+    test    esi, CPUM_USE_DEBUG_REGS_HYPER | CPUM_USE_DEBUG_REGS_HOST | CPUM_USED_DEBUG_REGS_HOST
+    jnz     gth_debug_regs_restore
+gth_debug_regs_done:
     ; restore general registers.
 …
 gth_debug_regs_restore:
     DEBUG_S_CHAR('d')
+    xor     eax, eax
+    mov     dr7, eax                    ; paranoia or not?
+    test    esi, CPUM_USE_DEBUG_REGS
+    jz short gth_debug_regs_dr7
+    mov     eax, dr7                    ; Some DR7 paranoia first...
+    mov     ecx, X86_DR7_INIT_VAL
+    cmp     eax, ecx
+    je      .gth_debug_skip_dr7_disabling
+    mov     dr7, ecx
+.gth_debug_skip_dr7_disabling:
+    test    esi, CPUM_USED_DEBUG_REGS_HOST
+    jz      .gth_debug_regs_dr7
     DEBUG_S_CHAR('r')
     mov     eax, [edx + CPUMCPU.Host.dr0]
 …
     mov     eax, [edx + CPUMCPU.Host.dr3]
     mov     dr3, eax
 gth_debug_regs_dr7:
+.gth_debug_regs_dr7:
     mov     ebx, [edx + CPUMCPU.Host.dr6]
     mov     dr6, ebx
     mov     ecx, [edx + CPUMCPU.Host.dr7]
     mov     dr7, ecx
+    jmp     gth_debug_regs_no
+    and     dword [edx + CPUMCPU.fUseFlags], ~(CPUM_USED_DEBUG_REGS_HOST | CPUM_USED_DEBUG_REGS_HYPER)
+    jmp     gth_debug_regs_done
 ENDPROC vmmRCToHostAsm

trunk/src/VBox/VMM/include/CPUMInternal.h

-              r41932
+              r47660
 /** Use flags (CPUM::fUseFlags).
  * (Don't forget to sync this with CPUMInternal.mac!)
+ * (Don't forget to sync this with CPUMInternal.mac !)
  * @{ */
 /** Used the FPU, SSE or such stuff. */
 …
  * REM syncing is clearing this, lazy FPU is setting it. */
 #define CPUM_USED_FPU_SINCE_REM         RT_BIT(1)
+/** The XMM state was manually restored. (AMD only) */
+#define CPUM_USED_MANUAL_XMM_RESTORE    RT_BIT(2)
 /** Host OS is using SYSENTER and we must NULL the CS. */
 #define CPUM_USE_SYSENTER               RT_BIT(2)
+#define CPUM_USE_SYSENTER               RT_BIT(3)
 /** Host OS is using SYSENTER and we must NULL the CS. */
+#define CPUM_USE_SYSCALL                RT_BIT(3)
+/** Debug registers are used by host and must be disabled. */
+#define CPUM_USE_DEBUG_REGS_HOST        RT_BIT(4)
+/** Enabled use of debug registers in guest context. */
+#define CPUM_USE_DEBUG_REGS             RT_BIT(5)
+/** The XMM state was manually restored. (AMD only) */
+#define CPUM_MANUAL_XMM_RESTORE         RT_BIT(6)
+/** Sync the FPU state on entry (32->64 switcher only). */
+#define CPUM_SYNC_FPU_STATE             RT_BIT(7)
+/** Sync the debug state on entry (32->64 switcher only). */
+#define CPUM_SYNC_DEBUG_STATE           RT_BIT(8)
+/** Enabled use of hypervisor debug registers in guest context. */
+#define CPUM_USE_DEBUG_REGS_HYPER       RT_BIT(9)
+#define CPUM_USE_SYSCALL                RT_BIT(4)
+/** Debug registers are used by host and that DR7 and DR6 must be saved and
+ *  disabled when switching to raw-mode. */
+#define CPUM_USE_DEBUG_REGS_HOST        RT_BIT(5)
+/** Records that we've saved the host DRx registers.
+ * In ring-0 this means all (DR0-7), while in raw-mode context this means DR0-3
+ * since DR6 and DR7 are covered by CPUM_USE_DEBUG_REGS_HOST. */
+#define CPUM_USED_DEBUG_REGS_HOST       RT_BIT(6)
+/** Set to indicate that we should save host DR0-7 and load the hypervisor debug
+ * registers in the raw-mode world switchers. (See CPUMRecalcHyperDRx.) */
+#define CPUM_USE_DEBUG_REGS_HYPER       RT_BIT(7)
+/** Used in ring-0 to indicate that we have loaded the hypervisor debug
+ * registers. */
+#define CPUM_USED_DEBUG_REGS_HYPER      RT_BIT(8)
+/** Used in ring-0 to indicate that we have loaded the guest debug
+ * registers (DR0-3 and maybe DR6) for direct use by the guest.
+ * DR7 (and AMD-V DR6) are handled via the VMCB. */
+#define CPUM_USED_DEBUG_REGS_GUEST      RT_BIT(9)
+/** Sync the FPU state on next entry (32->64 switcher only). */
+#define CPUM_SYNC_FPU_STATE             RT_BIT(16)
+/** Sync the debug state on next entry (32->64 switcher only). */
+#define CPUM_SYNC_DEBUG_REGS_GUEST      RT_BIT(17)
+/** Sync the debug state on next entry (32->64 switcher only).
+ * Almost the same as CPUM_USE_DEBUG_REGS_HYPER in the raw-mode switchers.  */
+#define CPUM_SYNC_DEBUG_REGS_HYPER      RT_BIT(18)
 /** @} */

trunk/src/VBox/VMM/include/CPUMInternal.mac

-              r44528
+              r47660
 %include "VBox/asmdefs.mac"
 %define CPUM_USED_FPU                   RT_BIT(0)
 %define CPUM_USED_FPU_SINCE_REM         RT_BIT(1)
+%define CPUM_USE_SYSENTER               RT_BIT(2)
+%define CPUM_USE_SYSCALL                RT_BIT(3)
+%define CPUM_USE_DEBUG_REGS_HOST        RT_BIT(4)
+%define CPUM_USE_DEBUG_REGS             RT_BIT(5)
+%define CPUM_SYNC_FPU_STATE             RT_BIT(7)
+%define CPUM_SYNC_DEBUG_STATE           RT_BIT(8)
+%define CPUM_USED_MANUAL_XMM_RESTORE    RT_BIT(2)
+%define CPUM_USE_SYSENTER               RT_BIT(3)
+%define CPUM_USE_SYSCALL                RT_BIT(4)
+%define CPUM_USE_DEBUG_REGS_HOST        RT_BIT(5)
+%define CPUM_USED_DEBUG_REGS_HOST       RT_BIT(6)
+%define CPUM_USE_DEBUG_REGS_HYPER       RT_BIT(7)
+%define CPUM_USED_DEBUG_REGS_HYPER      RT_BIT(8)
+%define CPUM_USED_DEBUG_REGS_GUEST      RT_BIT(9)
+%define CPUM_SYNC_FPU_STATE             RT_BIT(16)
+%define CPUM_SYNC_DEBUG_REGS_GUEST      RT_BIT(17)
+%define CPUM_SYNC_DEBUG_REGS_HYPER      RT_BIT(18)
 %define CPUM_HANDLER_DS                 1

Note: See TracChangeset for help on using the changeset viewer.

Download in other formats:

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette