VirtualBox

Browse Source

Changeset 57429 in vbox for trunk/src/VBox/VMM/VMMR0

Timestamp:

Aug 18, 2015 1:35:18 PM (9 years ago)

Author:

vboxsync

Message:

VMM/HM: Start removing VBOX_WITH_HYBRID_32BIT_KERNEL code.

Location:

trunk/src/VBox/VMM/VMMR0

Files:

: 7 edited

HMR0.cpp (modified) (2 diffs)
HMR0A.asm (modified) (26 diffs)
HMSVMR0.cpp (modified) (6 diffs)
HMSVMR0.h (modified) (1 diff)
HMVMXR0.cpp (modified) (36 diffs)
HMVMXR0.h (modified) (2 diffs)
VMMR0.cpp (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/src/VBox/VMM/VMMR0/HMR0.cpp

-              r57358
+              r57429
+}
 #if HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS)
 /**
 …
+}
 #endif /* HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL) */
+#endif /* HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) */
 /**

trunk/src/VBox/VMM/VMMR0/HMR0A.asm

-              r57270
+              r57429
 ;*  Defined Constants And Macros                                               *
 ;*******************************************************************************
+%ifdef RT_ARCH_AMD64
+ %define MAYBE_64_BIT
+%endif
+%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+ %define MAYBE_64_BIT
+%else
+ %ifdef RT_OS_DARWIN
+  %ifdef RT_ARCH_AMD64
+   ;;
+   ; Load the NULL selector into DS, ES, FS and GS on 64-bit darwin so we don't
+   ; risk loading a stale LDT value or something invalid.
+   %define HM_64_BIT_USE_NULL_SEL
+  %endif
+%ifdef RT_OS_DARWIN
+ %ifdef RT_ARCH_AMD64
+  ;;
+  ; Load the NULL selector into DS, ES, FS and GS on 64-bit darwin so we don't
+  ; risk loading a stale LDT value or something invalid.
+  %define HM_64_BIT_USE_NULL_SEL
  %endif
 %endif
 …
 ;* External Symbols                                                            *
 ;*******************************************************************************
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-extern NAME(SUPR0AbsIs64bit)
-extern NAME(SUPR0Abs64bitKernelCS)
-extern NAME(SUPR0Abs64bitKernelSS)
-extern NAME(SUPR0Abs64bitKernelDS)
-extern NAME(SUPR0AbsKernelCS)
-%endif
 %ifdef VBOX_WITH_KERNEL_USING_XMM
 extern NAME(CPUMIsGuestFPUStateActive)
-%endif
-;*******************************************************************************
-;*  Global Variables                                                           *
-;*******************************************************************************
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-BEGINDATA
-;;
-; Store the SUPR0AbsIs64bit absolute value here so we can cmp/test without
-; needing to clobber a register. (This trick doesn't quite work for PE btw.
-; but that's not relevant atm.)
-GLOBALNAME g_fVMXIs64bitHost
-    dd  NAME(SUPR0AbsIs64bit)
 %endif
 …
     mov         ecx, [esp + 4]          ; idxField
     lea         edx, [esp + 8]          ; &u64Data
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp         byte [NAME(g_fVMXIs64bitHost)], 0
-    jz          .legacy_mode
-    db          0xea                    ; jmp far .sixtyfourbit_mode
-    dd          .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     vmwrite     ecx, [edx]              ; low dword
     jz          .done
 …
 .the_end:
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    and     edx, 0ffffffffh
-    and     ecx, 0ffffffffh
-    xor     eax, eax
-    vmwrite rcx, [rdx]
-    mov     r8d, VERR_VMX_INVALID_VMCS_FIELD
-    cmovz   eax, r8d
-    mov     r9d, VERR_VMX_INVALID_VMCS_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXWriteVmcs64
 …
     mov         ecx, [esp + 4]          ; idxField
     mov         edx, [esp + 8]          ; pData
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp         byte [NAME(g_fVMXIs64bitHost)], 0
-    jz          .legacy_mode
-    db          0xea                    ; jmp far .sixtyfourbit_mode
-    dd          .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     vmread      [edx], ecx              ; low dword
     jz          .done
 …
 .the_end:
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    and     edx, 0ffffffffh
-    and     ecx, 0ffffffffh
-    xor     eax, eax
-    vmread  [rdx], rcx
-    mov     r8d, VERR_VMX_INVALID_VMCS_FIELD
-    cmovz   eax, r8d
-    mov     r9d, VERR_VMX_INVALID_VMCS_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXReadVmcs64
 …
     mov     ecx, [esp + 4]              ; idxField
     mov     edx, [esp + 8]              ; pu32Data
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    jz      .legacy_mode
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     xor     eax, eax
     vmread  [edx], ecx
 …
 .the_end:
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    and     edx, 0ffffffffh
-    and     ecx, 0ffffffffh
-    xor     eax, eax
-    vmread  r10, rcx
-    mov     [rdx], r10d
-    mov     r8d, VERR_VMX_INVALID_VMCS_FIELD
-    cmovz   eax, r8d
-    mov     r9d, VERR_VMX_INVALID_VMCS_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXReadVmcs32
 …
     mov     ecx, [esp + 4]              ; idxField
     mov     edx, [esp + 8]              ; u32Data
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    jz      .legacy_mode
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     xor     eax, eax
     vmwrite ecx, edx
 …
 .the_end:
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    and     edx, 0ffffffffh
-    and     ecx, 0ffffffffh
-    xor     eax, eax
-    vmwrite rcx, rdx
-    mov     r8d, VERR_VMX_INVALID_VMCS_FIELD
-    cmovz   eax, r8d
-    mov     r9d, VERR_VMX_INVALID_VMCS_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXWriteVmcs32
 …
     vmxon   [rsp]
 %else  ; RT_ARCH_X86
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    jz      .legacy_mode
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     xor     eax, eax
     vmxon   [esp + 4]
 …
 %endif
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    lea     rdx, [rsp + 4]              ; &HCPhysVMXOn.
-    and     edx, 0ffffffffh
-    xor     eax, eax
-    vmxon   [rdx]
-    mov     r8d, VERR_VMX_VMXON_FAILED
-    cmovz   eax, r8d
-    mov     r9d, VERR_VMX_INVALID_VMXON_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXEnable
 …
 ;DECLASM(void) VMXDisable(void);
 BEGINPROC VMXDisable
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    jz      .legacy_mode
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     vmxoff
 .the_end:
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    vmxoff
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXDisable
 …
     vmclear [rsp]
 %else  ; RT_ARCH_X86
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    jz      .legacy_mode
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     xor     eax, eax
     vmclear [esp + 4]
 …
 %endif
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    lea     rdx, [rsp + 4]              ; &HCPhysVmcs
-    and     edx, 0ffffffffh
-    xor     eax, eax
-    vmclear [rdx]
-    mov     r9d, VERR_VMX_INVALID_VMCS_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif
 ENDPROC VMXClearVmcs
 …
     vmptrld [rsp]
 %else
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    jz      .legacy_mode
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     xor     eax, eax
     vmptrld [esp + 4]
 …
 %endif
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    lea     rdx, [rsp + 4]              ; &HCPhysVmcs
-    and     edx, 0ffffffffh
-    xor     eax, eax
-    vmptrld [rdx]
-    mov     r9d, VERR_VMX_INVALID_VMCS_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXActivateVmcs
 …
   %endif
  %else
-  %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    jz      .legacy_mode
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
-  %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     vmptrst qword [esp+04h]
  %endif
 …
 .the_end:
     ret
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    lea     rdx, [rsp + 4]              ; &HCPhysVmcs
-    and     edx, 0ffffffffh
-    vmptrst qword [rdx]
-    xor     eax, eax
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 %endif
 ENDPROC VMXGetActivatedVmcs
 …
  %endif
 %else
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp         byte [NAME(g_fVMXIs64bitHost)], 0
-    jz          .legacy_mode
-    db          0xea                        ; jmp far .sixtyfourbit_mode
-    dd          .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     mov         ecx, [esp + 4]
     mov         edx, [esp + 8]
 …
 .the_end:
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    and     esp, 0ffffffffh
-    mov     ecx, [rsp + 4]              ; enmFlush
-    mov     edx, [rsp + 8]              ; pDescriptor
-    xor     eax, eax
-;    invept  rcx, qword [rdx]
-    DB      0x66, 0x0F, 0x38, 0x80, 0xA
-    mov     r8d, VERR_INVALID_PARAMETER
-    cmovz   eax, r8d
-    mov     r9d, VERR_VMX_INVALID_VMCS_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXR0InvEPT
 …
  %endif
 %else
- %ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    jz      .legacy_mode
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.legacy_mode:
- %endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
     mov         ecx, [esp + 4]
     mov         edx, [esp + 8]
 …
 .the_end:
     ret
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    and     esp, 0ffffffffh
-    mov     ecx, [rsp + 4]              ; enmFlush
-    mov     edx, [rsp + 8]              ; pDescriptor
-    xor     eax, eax
-;    invvpid rcx, qword [rdx]
-    DB      0x66, 0x0F, 0x38, 0x81, 0xA
-    mov     r8d, VERR_INVALID_PARAMETER
-    cmovz   eax, r8d
-    mov     r9d, VERR_VMX_INVALID_VMCS_PTR
-    cmovc   eax, r9d
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 ENDPROC VMXR0InvVPID
 …
 %endif ; GC_ARCH_BITS != 64
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-;/**
-; * Gets 64-bit GDTR and IDTR on darwin.
-; * @param  pGdtr        Where to store the 64-bit GDTR.
-; * @param  pIdtr        Where to store the 64-bit IDTR.
-; */
-;DECLASM(void) HMR0Get64bitGdtrAndIdtr(PX86XDTR64 pGdtr, PX86XDTR64 pIdtr);
-ALIGNCODE(16)
-BEGINPROC HMR0Get64bitGdtrAndIdtr
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.the_end:
-    ret
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    and     esp, 0ffffffffh
-    mov     ecx, [rsp + 4]              ; pGdtr
-    mov     edx, [rsp + 8]              ; pIdtr
-    sgdt    [rcx]
-    sidt    [rdx]
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-ENDPROC   HMR0Get64bitGdtrAndIdtr
-;/**
-; * Gets 64-bit CR3 on darwin.
-; * @returns CR3
-; */
-;DECLASM(uint64_t) HMR0Get64bitCR3(void);
-ALIGNCODE(16)
-BEGINPROC HMR0Get64bitCR3
-    db      0xea                        ; jmp far .sixtyfourbit_mode
-    dd      .sixtyfourbit_mode, NAME(SUPR0Abs64bitKernelCS)
-.the_end:
-    ret
-ALIGNCODE(16)
-BITS 64
-.sixtyfourbit_mode:
-    mov     rax, cr3
-    mov     rdx, rax
-    shr     rdx, 32
-    jmp far [.fpret wrt rip]
-.fpret:                                 ; 16:32 Pointer to .the_end.
-    dd      .the_end, NAME(SUPR0AbsKernelCS)
-BITS 32
-ENDPROC   HMR0Get64bitCR3
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL
 %ifdef VBOX_WITH_KERNEL_USING_XMM
 …
 ; The default setup of the StartVM routines.
+;
+%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+ %define MY_NAME(name)   name %+ _32
+%else
+ %define MY_NAME(name)   name
+%endif
+%define MY_NAME(name)   name
 %ifdef RT_ARCH_AMD64
  %define MYPUSHAD       MYPUSHAD64
 …
 %include "HMR0Mixed.mac"
-%ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+ ;
- ; Write the wrapper procedures.
+ ;
- ; These routines are probably being too paranoid about selector
- ; restoring, but better safe than sorry...
+ ;
-; DECLASM(int) VMXR0StartVM32(RTHCUINT fResume, PCPUMCTX pCtx, PVMCSCACHE pCache, PVM pVM, PVMCPU pVCpu);
-ALIGNCODE(16)
-BEGINPROC VMXR0StartVM32
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    je near NAME(VMXR0StartVM32_32)
-    ; stack frame
-    push    esi
-    push    edi
-    push    fs
-    push    gs
-    ; jmp far .thunk64
-    db      0xea
-    dd      .thunk64, NAME(SUPR0Abs64bitKernelCS)
-ALIGNCODE(16)
-BITS 64
-.thunk64:
-    sub     esp, 20h
-    mov     edi, [rsp + 20h + 14h]      ; fResume
-    mov     esi, [rsp + 20h + 18h]      ; pCtx
-    mov     edx, [rsp + 20h + 1Ch]      ; pCache
-    mov     ecx, [rsp + 20h + 20h]      ; pVM
-    mov     r8,  [rsp + 20h + 24h]      ; pVCpu
-    call    NAME(VMXR0StartVM32_64)
-    add     esp, 20h
-    jmp far [.fpthunk32 wrt rip]
-.fpthunk32:                             ; 16:32 Pointer to .thunk32.
-    dd      .thunk32, NAME(SUPR0AbsKernelCS)
-BITS 32
-ALIGNCODE(16)
-.thunk32:
-    pop     gs
-    pop     fs
-    pop     edi
-    pop     esi
-    ret
-ENDPROC   VMXR0StartVM32
-; DECLASM(int) VMXR0StartVM64(RTHCUINT fResume, PCPUMCTX pCtx, PVMCSCACHE pCache, PVM pVM, PVMCPU pVCpu);
-ALIGNCODE(16)
-BEGINPROC VMXR0StartVM64
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    je      .not_in_long_mode
-    ; stack frame
-    push    esi
-    push    edi
-    push    fs
-    push    gs
-    ; jmp far .thunk64
-    db      0xea
-    dd      .thunk64, NAME(SUPR0Abs64bitKernelCS)
-ALIGNCODE(16)
-BITS 64
-.thunk64:
-    sub     esp, 20h
-    mov     edi, [rsp + 20h + 14h]      ; fResume
-    mov     esi, [rsp + 20h + 18h]      ; pCtx
-    mov     edx, [rsp + 20h + 1Ch]      ; pCache
-    mov     ecx, [rsp + 20h + 20h]      ; pVM
-    mov     r8,  [rsp + 20h + 24h]      ; pVCpu
-    call    NAME(VMXR0StartVM64_64)
-    add     esp, 20h
-    jmp far [.fpthunk32 wrt rip]
-.fpthunk32:                             ; 16:32 Pointer to .thunk32.
-    dd      .thunk32, NAME(SUPR0AbsKernelCS)
-BITS 32
-ALIGNCODE(16)
-.thunk32:
-    pop     gs
-    pop     fs
-    pop     edi
-    pop     esi
-    ret
-.not_in_long_mode:
-    mov     eax, VERR_PGM_UNSUPPORTED_HOST_PAGING_MODE
-    ret
-ENDPROC   VMXR0StartVM64
-;DECLASM(int) SVMR0VMRun(RTHCPHYS pVMCBHostPhys, RTHCPHYS pVMCBPhys, PCPUMCTX pCtx, PVM pVM, PVMCPU pVCpu);
-ALIGNCODE(16)
-BEGINPROC SVMR0VMRun
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    je near NAME(SVMR0VMRun_32)
-    ; stack frame
-    push    esi
-    push    edi
-    push    fs
-    push    gs
-    ; jmp far .thunk64
-    db      0xea
-    dd      .thunk64, NAME(SUPR0Abs64bitKernelCS)
-ALIGNCODE(16)
-BITS 64
-.thunk64:
-    sub     esp, 20h
-    mov     rdi, [rsp + 20h + 14h]      ; pVMCBHostPhys
-    mov     rsi, [rsp + 20h + 1Ch]      ; pVMCBPhys
-    mov     edx, [rsp + 20h + 24h]      ; pCtx
-    mov     ecx, [rsp + 20h + 28h]      ; pVM
-    mov     r8d, [rsp + 20h + 2Ch]      ; pVCpu
-    call    NAME(SVMR0VMRun_64)
-    add     esp, 20h
-    jmp far [.fpthunk32 wrt rip]
-.fpthunk32:                             ; 16:32 Pointer to .thunk32.
-    dd      .thunk32, NAME(SUPR0AbsKernelCS)
-BITS 32
-ALIGNCODE(16)
-.thunk32:
-    pop     gs
-    pop     fs
-    pop     edi
-    pop     esi
-    ret
-ENDPROC   SVMR0VMRun
-; DECLASM(int) SVMR0VMRun64(RTHCPHYS pVMCBHostPhys, RTHCPHYS pVMCBPhys, PCPUMCTX pCtx, PVM pVM, PVMCPU pVCpu);
-ALIGNCODE(16)
-BEGINPROC SVMR0VMRun64
-    cmp     byte [NAME(g_fVMXIs64bitHost)], 0
-    je      .not_in_long_mode
-    ; stack frame
-    push    esi
-    push    edi
-    push    fs
-    push    gs
-    ; jmp far .thunk64
-    db      0xea
-    dd      .thunk64, NAME(SUPR0Abs64bitKernelCS)
-ALIGNCODE(16)
-BITS 64
-.thunk64:
-    sub     esp, 20h
-    mov     rdi, [rsp + 20h + 14h]      ; pVMCBHostPhys
-    mov     rsi, [rsp + 20h + 1Ch]      ; pVMCBPhys
-    mov     edx, [rsp + 20h + 24h]      ; pCtx
-    mov     ecx, [rsp + 20h + 28h]      ; pVM
-    mov     r8d, [rsp + 20h + 2Ch]      ; pVCpu
-    call    NAME(SVMR0VMRun64_64)
-    add     esp, 20h
-    jmp far [.fpthunk32 wrt rip]
-.fpthunk32:                             ; 16:32 Pointer to .thunk32.
-    dd      .thunk32, NAME(SUPR0AbsKernelCS)
-BITS 32
-ALIGNCODE(16)
-.thunk32:
-    pop     gs
-    pop     fs
-    pop     edi
-    pop     esi
-    ret
-.not_in_long_mode:
-    mov     eax, VERR_PGM_UNSUPPORTED_SHADOW_PAGING_MODE
-    ret
-ENDPROC   SVMR0VMRun64
+ ;
- ; Do it a second time pretending we're a 64-bit host.
+ ;
- ; This *HAS* to be done at the very end of the file to avoid restoring
- ; macros. So, add new code *BEFORE* this mess.
+ ;
- BITS 64
- %undef  RT_ARCH_X86
- %define RT_ARCH_AMD64
- %undef  ASM_CALL64_MSC
- %define ASM_CALL64_GCC
- %define xCB             8
- %define xSP            rsp
- %define xBP            rbp
- %define xAX            rax
- %define xBX            rbx
- %define xCX            rcx
- %define xDX            rdx
- %define xDI            rdi
- %define xSI            rsi
- %define MY_NAME(name)   name %+ _64
- %define MYPUSHAD       MYPUSHAD64
- %define MYPOPAD        MYPOPAD64
- %define MYPUSHSEGS     MYPUSHSEGS64
- %define MYPOPSEGS      MYPOPSEGS64
- %include "HMR0Mixed.mac"
-%endif ; VBOX_WITH_HYBRID_32BIT_KERNEL

trunk/src/VBox/VMM/VMMR0/HMSVMR0.cpp

-              r57358
+              r57429
+ *
  * @{ */
 #if HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS)
 /**
  * Prepares for and executes VMRUN (64-bit guests on a 32-bit host).
 …
          * Note! DBGF expects a clean DR6 state before executing guest code.
          */
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
         if (   CPUMIsGuestInLongModeEx(pCtx)
             && !CPUMIsHyperDebugStateActivePending(pVCpu))
 …
         if (pCtx->dr[7] & (X86_DR7_ENABLED_MASK | X86_DR7_GD)) /** @todo Why GD? */
+        {
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
             if (   CPUMIsGuestInLongModeEx(pCtx)
                 && !CPUMIsGuestDebugStateActivePending(pVCpu))
 …
          * intercept #DB as DR6 is updated in the VMCB.
          */
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
         else if (   !CPUMIsGuestDebugStateActivePending(pVCpu)
                  && !CPUMIsGuestDebugStateActive(pVCpu))
 …
 #endif
         Assert(pVCpu->CTX_SUFF(pVM)->hm.s.fAllow64BitGuests);    /* Guaranteed by hmR3InitFinalizeR0(). */
 #if HC_ARCH_BITS == 32 && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32
         /* 32-bit host. We need to switch to 64-bit before running the 64-bit guest. */
         pVCpu->hm.s.svm.pfnVMRun = SVMR0VMSwitcherRun64;
 …
     /* Store status of the shared guest-host state at the time of VMRUN. */
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
     if (CPUMIsGuestInLongModeEx(pCtx))
+    {

trunk/src/VBox/VMM/VMMR0/HMSVMR0.h

-              r56287
+              r57429
 VMMR0DECL(int)  SVMR0SaveHostState(PVM pVM, PVMCPU pVCpu);
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
 DECLASM(int)   SVMR0VMSwitcherRun64(RTHCPHYS pVMCBHostPhys, RTHCPHYS pVMCBPhys, PCPUMCTX pCtx, PVM pVM, PVMCPU pVCpu);
 VMMR0DECL(int) SVMR0Execute64BitsHandler(PVM pVM, PVMCPU pVCpu, PCPUMCTX pCtx, HM64ON32OP enmOp, uint32_t cbParam,
                                          uint32_t *paParam);
 #endif /* HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL) */
+#endif /* HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) */
 /**

trunk/src/VBox/VMM/VMMR0/HMVMXR0.cpp

-              r57358
+              r57429
 *   Defined Constants And Macros                                                                                                 *
 *********************************************************************************************************************************/
-#if defined(RT_ARCH_AMD64)
-# define HMVMX_IS_64BIT_HOST_MODE()   (true)
-typedef RTHCUINTREG                   HMVMXHCUINTREG;
-#elif defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
-extern "C" uint32_t g_fVMXIs64bitHost;
-# define HMVMX_IS_64BIT_HOST_MODE()   (g_fVMXIs64bitHost != 0)
-typedef uint64_t                      HMVMXHCUINTREG;
-#else
-# define HMVMX_IS_64BIT_HOST_MODE()   (false)
-typedef RTHCUINTREG                   HMVMXHCUINTREG;
-#endif
 /** Use the function table. */
 #define HMVMX_USE_FUNCTION_TABLE
 …
                                                  uint32_t u32ErrCode, RTGCUINTREG GCPtrFaultAddress,
                                                  bool fStepping, uint32_t *puIntState);
 #if HC_ARCH_BITS == 32 && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32
 static int                hmR0VmxInitVmcsReadCache(PVM pVM, PVMCPU pVCpu);
 #endif
 …
+    }
-#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    /*
-     * This is for the darwin 32-bit/PAE kernels trying to execute 64-bit guests. We don't bother with
-     * the 32<->64 switcher in this case. This is a rare, legacy use-case with barely any test coverage.
-     */
-    if (   pVM->hm.s.fAllow64BitGuests
-        && !HMVMX_IS_64BIT_HOST_MODE())
+    {
-        LogRel(("VMXR0SetupVM: Unsupported guest and host paging mode combination.\n"));
-        return VERR_PGM_UNSUPPORTED_HOST_PAGING_MODE;
+    }
-#endif
     /* Initialize these always, see hmR3InitFinalizeR0().*/
     pVM->hm.s.vmx.enmFlushEpt  = VMXFLUSHEPT_NONE;
 …
     /* Check if we can use the VMCS controls for swapping the EFER MSR. */
     Assert(!pVM->hm.s.vmx.fSupportsVmcsEfer);
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+    if (   HMVMX_IS_64BIT_HOST_MODE()
+        && (pVM->hm.s.vmx.Msrs.VmxEntry.n.allowed1 & VMX_VMCS_CTRL_ENTRY_LOAD_GUEST_EFER_MSR)
+#if HC_ARCH_BITS == 64
+    if (   (pVM->hm.s.vmx.Msrs.VmxEntry.n.allowed1 & VMX_VMCS_CTRL_ENTRY_LOAD_GUEST_EFER_MSR)
         && (pVM->hm.s.vmx.Msrs.VmxExit.n.allowed1  & VMX_VMCS_CTRL_EXIT_LOAD_HOST_EFER_MSR)
         && (pVM->hm.s.vmx.Msrs.VmxExit.n.allowed1  & VMX_VMCS_CTRL_EXIT_SAVE_GUEST_EFER_MSR))
 …
                                     hmR0VmxUpdateErrorRecord(pVM, pVCpu, rc), rc);
 #if HC_ARCH_BITS == 32 && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32
         rc = hmR0VmxInitVmcsReadCache(pVM, pVCpu);
         AssertLogRelMsgRCReturnStmt(rc, ("VMXR0SetupVM: hmR0VmxInitVmcsReadCache failed! rc=%Rrc (pVM=%p)\n", rc, pVM),
 …
     AssertRCReturn(rc, rc);
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+    /* For the darwin 32-bit hybrid kernel, we need the 64-bit CR3 as it uses 64-bit paging. */
+    if (HMVMX_IS_64BIT_HOST_MODE())
+    {
+        uint64_t uRegCR3 = HMR0Get64bitCR3();
+        rc = VMXWriteVmcs64(VMX_VMCS_HOST_CR3, uRegCR3);
+    }
+    else
+#endif
+    {
+        uReg = ASMGetCR3();
+        rc = VMXWriteVmcsHstN(VMX_VMCS_HOST_CR3, uReg);
+    }
+    uReg = ASMGetCR3();
+    rc = VMXWriteVmcsHstN(VMX_VMCS_HOST_CR3, uReg);
     AssertRCReturn(rc, rc);
 …
      * Host CS and SS segment registers.
      */
-#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
-    RTSEL uSelCS;
-    RTSEL uSelSS;
-    if (HMVMX_IS_64BIT_HOST_MODE())
+    {
-        uSelCS = (RTSEL)(uintptr_t)&SUPR0Abs64bitKernelCS;
-        uSelSS = (RTSEL)(uintptr_t)&SUPR0Abs64bitKernelSS;
+    }
-    else
+    {
-        /* Seems darwin uses the LDT (TI flag is set) in the CS & SS selectors which VT-x doesn't like. */
-        uSelCS = (RTSEL)(uintptr_t)&SUPR0AbsKernelCS;
-        uSelSS = (RTSEL)(uintptr_t)&SUPR0AbsKernelSS;
+    }
-#else
     RTSEL uSelCS = ASMGetCS();
     RTSEL uSelSS = ASMGetSS();
-#endif
     /*
 …
      */
     RTGDTR Gdtr;
+    RTIDTR Idtr;
     RT_ZERO(Gdtr);
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+    if (HMVMX_IS_64BIT_HOST_MODE())
+    {
+        X86XDTR64 Gdtr64;
+        X86XDTR64 Idtr64;
+        HMR0Get64bitGdtrAndIdtr(&Gdtr64, &Idtr64);
+        rc = VMXWriteVmcs64(VMX_VMCS_HOST_GDTR_BASE, Gdtr64.uAddr);     AssertRCReturn(rc, rc);
+        rc = VMXWriteVmcs64(VMX_VMCS_HOST_IDTR_BASE, Idtr64.uAddr);     AssertRCReturn(rc, rc);
+        Gdtr.cbGdt = Gdtr64.cb;
+        Gdtr.pGdt  = (uintptr_t)Gdtr64.uAddr;
+    }
+    else
+    RT_ZERO(Idtr);
+    ASMGetGDTR(&Gdtr);
+    ASMGetIDTR(&Idtr);
+    rc = VMXWriteVmcsHstN(VMX_VMCS_HOST_GDTR_BASE, Gdtr.pGdt);      AssertRCReturn(rc, rc);
+    rc = VMXWriteVmcsHstN(VMX_VMCS_HOST_IDTR_BASE, Idtr.pIdt);      AssertRCReturn(rc, rc);
+#if HC_ARCH_BITS == 64
+    /*
+     * Determine if we need to manually need to restore the GDTR and IDTR limits as VT-x zaps them to the
+     * maximum limit (0xffff) on every VM-exit.
+     */
+    if (Gdtr.cbGdt != 0xffff)
+    {
+        pVCpu->hm.s.vmx.fRestoreHostFlags |= VMX_RESTORE_HOST_GDTR;
+        AssertCompile(sizeof(Gdtr) == sizeof(X86XDTR64));
+        memcpy(&pVCpu->hm.s.vmx.RestoreHost.HostGdtr, &Gdtr, sizeof(X86XDTR64));
+    }
+    /*
+     * IDT limit is effectively capped at 0xfff. (See Intel spec. 6.14.1 "64-Bit Mode IDT"
+     * and Intel spec. 6.2 "Exception and Interrupt Vectors".)  Therefore if the host has the limit as 0xfff, VT-x
+     * bloating the limit to 0xffff shouldn't cause any different CPU behavior.  However, several hosts either insists
+     * on 0xfff being the limit (Windows Patch Guard) or uses the limit for other purposes (darwin puts the CPU ID in there
+     * but botches sidt alignment in at least one consumer).  So, we're only allowing IDTR.LIMIT to be left at 0xffff on
+     * hosts where we are pretty sure it won't cause trouble.
+     */
+# if defined(RT_OS_LINUX) || defined(RT_OS_SOLARIS)
+    if (Idtr.cbIdt <  0x0fff)
+# else
+    if (Idtr.cbIdt != 0xffff)
+# endif
+    {
+        pVCpu->hm.s.vmx.fRestoreHostFlags |= VMX_RESTORE_HOST_IDTR;
+        AssertCompile(sizeof(Idtr) == sizeof(X86XDTR64));
+        memcpy(&pVCpu->hm.s.vmx.RestoreHost.HostIdtr, &Idtr, sizeof(X86XDTR64));
+    }
 #endif
+    {
-        RTIDTR Idtr;
-        ASMGetGDTR(&Gdtr);
-        ASMGetIDTR(&Idtr);
-        rc = VMXWriteVmcsHstN(VMX_VMCS_HOST_GDTR_BASE, Gdtr.pGdt);      AssertRCReturn(rc, rc);
-        rc = VMXWriteVmcsHstN(VMX_VMCS_HOST_IDTR_BASE, Idtr.pIdt);      AssertRCReturn(rc, rc);
-#if HC_ARCH_BITS == 64
-        /*
-         * Determine if we need to manually need to restore the GDTR and IDTR limits as VT-x zaps them to the
-         * maximum limit (0xffff) on every VM-exit.
-         */
-        if (Gdtr.cbGdt != 0xffff)
+        {
-            pVCpu->hm.s.vmx.fRestoreHostFlags |= VMX_RESTORE_HOST_GDTR;
-            AssertCompile(sizeof(Gdtr) == sizeof(X86XDTR64));
-            memcpy(&pVCpu->hm.s.vmx.RestoreHost.HostGdtr, &Gdtr, sizeof(X86XDTR64));
+        }
-        /*
-         * IDT limit is effectively capped at 0xfff. (See Intel spec. 6.14.1 "64-Bit Mode IDT"
-         * and Intel spec. 6.2 "Exception and Interrupt Vectors".)  Therefore if the host has the limit as 0xfff, VT-x
-         * bloating the limit to 0xffff shouldn't cause any different CPU behavior.  However, several hosts either insists
-         * on 0xfff being the limit (Windows Patch Guard) or uses the limit for other purposes (darwin puts the CPU ID in there
-         * but botches sidt alignment in at least one consumer).  So, we're only allowing IDTR.LIMIT to be left at 0xffff on
-         * hosts where we are pretty sure it won't cause trouble.
-         */
-# if defined(RT_OS_LINUX) || defined(RT_OS_SOLARIS)
-        if (Idtr.cbIdt <  0x0fff)
-# else
-        if (Idtr.cbIdt != 0xffff)
-# endif
+        {
-            pVCpu->hm.s.vmx.fRestoreHostFlags |= VMX_RESTORE_HOST_IDTR;
-            AssertCompile(sizeof(Idtr) == sizeof(X86XDTR64));
-            memcpy(&pVCpu->hm.s.vmx.RestoreHost.HostIdtr, &Idtr, sizeof(X86XDTR64));
+        }
-#endif
+    }
     /*
 …
     PCX86DESCHC pDesc = (PCX86DESCHC)(Gdtr.pGdt + (uSelTR & X86_SEL_MASK));
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+    if (HMVMX_IS_64BIT_HOST_MODE())
+    {
+        /* We need the 64-bit TR base for hybrid darwin. */
+        uint64_t u64TRBase = X86DESC64_BASE((PX86DESC64)pDesc);
+        rc = VMXWriteVmcs64(VMX_VMCS_HOST_TR_BASE, u64TRBase);
+    }
+    else
+#if HC_ARCH_BITS == 64
+    uintptr_t uTRBase = X86DESC64_BASE(pDesc);
+    /*
+     * VT-x unconditionally restores the TR limit to 0x67 and type to 11 (32-bit busy TSS) on all VM-exits.
+     * The type is the same for 64-bit busy TSS[1]. The limit needs manual restoration if the host has something else.
+     * Task switching is not supported in 64-bit mode[2], but the limit still matters as IOPM is supported in 64-bit mode.
+     * Restoring the limit lazily while returning to ring-3 is safe because IOPM is not applicable in ring-0.
+     *
+     * [1] See Intel spec. 3.5 "System Descriptor Types".
+     * [2] See Intel spec. 7.2.3 "TSS Descriptor in 64-bit mode".
+     */
+    Assert(pDesc->System.u4Type == 11);
+    if (   pDesc->System.u16LimitLow != 0x67
+        || pDesc->System.u4LimitHigh)
+    {
+        pVCpu->hm.s.vmx.fRestoreHostFlags |= VMX_RESTORE_HOST_SEL_TR;
+        /* If the host has made GDT read-only, we would need to temporarily toggle CR0.WP before writing the GDT. */
+        if (pVM->hm.s.fHostKernelFeatures & SUPKERNELFEATURES_GDT_READ_ONLY)
+            pVCpu->hm.s.vmx.fRestoreHostFlags |= VMX_RESTORE_HOST_GDT_READ_ONLY;
+        pVCpu->hm.s.vmx.RestoreHost.uHostSelTR = uSelTR;
+        /* Store the GDTR here as we need it while restoring TR. */
+        memcpy(&pVCpu->hm.s.vmx.RestoreHost.HostGdtr, &Gdtr, sizeof(X86XDTR64));
+    }
+#else
+    uintptr_t uTRBase = X86DESC_BASE(pDesc);
 #endif
+    {
+        uintptr_t uTRBase;
+#if HC_ARCH_BITS == 64
+        uTRBase = X86DESC64_BASE(pDesc);
+        /*
+         * VT-x unconditionally restores the TR limit to 0x67 and type to 11 (32-bit busy TSS) on all VM-exits.
+         * The type is the same for 64-bit busy TSS[1]. The limit needs manual restoration if the host has something else.
+         * Task switching is not supported in 64-bit mode[2], but the limit still matters as IOPM is supported in 64-bit mode.
+         * Restoring the limit lazily while returning to ring-3 is safe because IOPM is not applicable in ring-0.
+         *
+         * [1] See Intel spec. 3.5 "System Descriptor Types".
+         * [2] See Intel spec. 7.2.3 "TSS Descriptor in 64-bit mode".
+         */
+        Assert(pDesc->System.u4Type == 11);
+        if (   pDesc->System.u16LimitLow != 0x67
+            || pDesc->System.u4LimitHigh)
+        {
+            pVCpu->hm.s.vmx.fRestoreHostFlags |= VMX_RESTORE_HOST_SEL_TR;
+            /* If the host has made GDT read-only, we would need to temporarily toggle CR0.WP before writing the GDT. */
+            if (pVM->hm.s.fHostKernelFeatures & SUPKERNELFEATURES_GDT_READ_ONLY)
+                pVCpu->hm.s.vmx.fRestoreHostFlags |= VMX_RESTORE_HOST_GDT_READ_ONLY;
+            pVCpu->hm.s.vmx.RestoreHost.uHostSelTR = uSelTR;
+            /* Store the GDTR here as we need it while restoring TR. */
+            memcpy(&pVCpu->hm.s.vmx.RestoreHost.HostGdtr, &Gdtr, sizeof(X86XDTR64));
+        }
+#else
+        uTRBase = X86DESC_BASE(pDesc);
+#endif
+        rc = VMXWriteVmcsHstN(VMX_VMCS_HOST_TR_BASE, uTRBase);
+    }
+    rc = VMXWriteVmcsHstN(VMX_VMCS_HOST_TR_BASE, uTRBase);
     AssertRCReturn(rc, rc);
 …
      * Host FS base and GS base.
      */
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+    if (HMVMX_IS_64BIT_HOST_MODE())
+    {
+        uint64_t u64FSBase = ASMRdMsr(MSR_K8_FS_BASE);
+        uint64_t u64GSBase = ASMRdMsr(MSR_K8_GS_BASE);
+        rc = VMXWriteVmcs64(VMX_VMCS_HOST_FS_BASE, u64FSBase);          AssertRCReturn(rc, rc);
+        rc = VMXWriteVmcs64(VMX_VMCS_HOST_GS_BASE, u64GSBase);          AssertRCReturn(rc, rc);
+# if HC_ARCH_BITS == 64
+        /* Store the base if we have to restore FS or GS manually as we need to restore the base as well. */
+        if (pVCpu->hm.s.vmx.fRestoreHostFlags & VMX_RESTORE_HOST_SEL_FS)
+            pVCpu->hm.s.vmx.RestoreHost.uHostFSBase = u64FSBase;
+        if (pVCpu->hm.s.vmx.fRestoreHostFlags & VMX_RESTORE_HOST_SEL_GS)
+            pVCpu->hm.s.vmx.RestoreHost.uHostGSBase = u64GSBase;
+# endif
+    }
+#if HC_ARCH_BITS == 64
+    uint64_t u64FSBase = ASMRdMsr(MSR_K8_FS_BASE);
+    uint64_t u64GSBase = ASMRdMsr(MSR_K8_GS_BASE);
+    rc = VMXWriteVmcs64(VMX_VMCS_HOST_FS_BASE, u64FSBase);          AssertRCReturn(rc, rc);
+    rc = VMXWriteVmcs64(VMX_VMCS_HOST_GS_BASE, u64GSBase);          AssertRCReturn(rc, rc);
+    /* Store the base if we have to restore FS or GS manually as we need to restore the base as well. */
+    if (pVCpu->hm.s.vmx.fRestoreHostFlags & VMX_RESTORE_HOST_SEL_FS)
+        pVCpu->hm.s.vmx.RestoreHost.uHostFSBase = u64FSBase;
+    if (pVCpu->hm.s.vmx.fRestoreHostFlags & VMX_RESTORE_HOST_SEL_GS)
+        pVCpu->hm.s.vmx.RestoreHost.uHostGSBase = u64GSBase;
 #endif
     return rc;
 …
     rc = VMXWriteVmcs32(VMX_VMCS32_HOST_SYSENTER_CS,        ASMRdMsr_Low(MSR_IA32_SYSENTER_CS));
     AssertRCReturn(rc, rc);
+#ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+    if (HMVMX_IS_64BIT_HOST_MODE())
+    {
+        rc = VMXWriteVmcs64(VMX_VMCS_HOST_SYSENTER_ESP,     ASMRdMsr(MSR_IA32_SYSENTER_ESP));
+        AssertRCReturn(rc, rc);
+        rc = VMXWriteVmcs64(VMX_VMCS_HOST_SYSENTER_EIP,     ASMRdMsr(MSR_IA32_SYSENTER_EIP));
+    }
+    else
+    {
+        rc = VMXWriteVmcs32(VMX_VMCS_HOST_SYSENTER_ESP,     ASMRdMsr_Low(MSR_IA32_SYSENTER_ESP));
+        AssertRCReturn(rc, rc);
+        rc = VMXWriteVmcs32(VMX_VMCS_HOST_SYSENTER_EIP,     ASMRdMsr_Low(MSR_IA32_SYSENTER_EIP));
+    }
+#elif HC_ARCH_BITS == 32
+#if HC_ARCH_BITS == 32
     rc = VMXWriteVmcs32(VMX_VMCS_HOST_SYSENTER_ESP,         ASMRdMsr_Low(MSR_IA32_SYSENTER_ESP));
     AssertRCReturn(rc, rc);
 …
 #endif
 #if HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS)
     /* For 32-bit hosts running 64-bit guests, we always swap EFER in the world-switcher. Nothing to do here. */
     if (CPUMIsGuestInLongMode(pVCpu))
 …
          * On VM-exit, VT-x sets both the host EFER.LMA and EFER.LME bit to this value. See assertion in hmR0VmxSaveHostMsrs().
          */
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (HMVMX_IS_64BIT_HOST_MODE())
+        {
+            val |= VMX_VMCS_CTRL_EXIT_HOST_ADDR_SPACE_SIZE;
+            Log4(("Load[%RU32]: VMX_VMCS_CTRL_EXIT_HOST_ADDR_SPACE_SIZE\n", pVCpu->idCpu));
+        }
+        else
+            Assert(!(val & VMX_VMCS_CTRL_EXIT_HOST_ADDR_SPACE_SIZE));
+#if HC_ARCH_BITS == 64
+        val |= VMX_VMCS_CTRL_EXIT_HOST_ADDR_SPACE_SIZE;
+        Log4(("Load[%RU32]: VMX_VMCS_CTRL_EXIT_HOST_ADDR_SPACE_SIZE\n", pVCpu->idCpu));
 #else
         if (CPUMIsGuestInLongModeEx(pMixedCtx))
 …
         else
             Assert(!(val & VMX_VMCS_CTRL_EXIT_HOST_ADDR_SPACE_SIZE));
 #endif  /* HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL) */
+#endif
         /* If the newer VMCS fields for managing EFER exists, use it. */
 …
          * Note! DBGF expects a clean DR6 state before executing guest code.
          */
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
         if (   CPUMIsGuestInLongModeEx(pMixedCtx)
             && !CPUMIsHyperDebugStateActivePending(pVCpu))
 …
         if (pMixedCtx->dr[7] & (X86_DR7_ENABLED_MASK | X86_DR7_GD)) /** @todo Why GD? */
+        {
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
             if (   CPUMIsGuestInLongModeEx(pMixedCtx)
                 && !CPUMIsGuestDebugStateActivePending(pVCpu))
 …
          * must intercept #DB in order to maintain a correct DR6 guest value.
          */
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
         else if (   !CPUMIsGuestDebugStateActivePending(pVCpu)
                  && !CPUMIsGuestDebugStateActive(pVCpu))
 …
+        }
         /* 64-bit capable CPUs. */
+# if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (HMVMX_IS_64BIT_HOST_MODE())
+        {
+            Assert(!(pCtx->cs.u64Base >> 32));
+            Assert(!pCtx->ss.Attr.u || !(pCtx->ss.u64Base >> 32));
+            Assert(!pCtx->ds.Attr.u || !(pCtx->ds.u64Base >> 32));
+            Assert(!pCtx->es.Attr.u || !(pCtx->es.u64Base >> 32));
+        }
+# if HC_ARCH_BITS == 64
+        Assert(!(pCtx->cs.u64Base >> 32));
+        Assert(!pCtx->ss.Attr.u || !(pCtx->ss.u64Base >> 32));
+        Assert(!pCtx->ds.Attr.u || !(pCtx->ds.u64Base >> 32));
+        Assert(!pCtx->es.Attr.u || !(pCtx->es.u64Base >> 32));
 # endif
+    }
 …
         Assert(u32GSAttr == 0xf3);
         /* 64-bit capable CPUs. */
+# if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (HMVMX_IS_64BIT_HOST_MODE())
+        {
+            Assert(!(pCtx->cs.u64Base >> 32));
+            Assert(!u32SSAttr || !(pCtx->ss.u64Base >> 32));
+            Assert(!u32DSAttr || !(pCtx->ds.u64Base >> 32));
+            Assert(!u32ESAttr || !(pCtx->es.u64Base >> 32));
+        }
+# if HC_ARCH_BITS == 64
+        Assert(!(pCtx->cs.u64Base >> 32));
+        Assert(!u32SSAttr || !(pCtx->ss.u64Base >> 32));
+        Assert(!u32DSAttr || !(pCtx->ds.u64Base >> 32));
+        Assert(!u32ESAttr || !(pCtx->es.u64Base >> 32));
 # endif
+    }
 …
+    {
         /* For 64-bit hosts, we load/restore them lazily, see hmR0VmxLazyLoadGuestMsrs(). */
 #if HC_ARCH_BITS == 32 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32
         if (pVM->hm.s.fAllow64BitGuests)
+        {
 …
 #endif
         Assert(pVCpu->CTX_SUFF(pVM)->hm.s.fAllow64BitGuests);    /* Guaranteed by hmR3InitFinalizeR0(). */
 #if HC_ARCH_BITS == 32 && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32
         /* 32-bit host. We need to switch to 64-bit before running the 64-bit guest. */
         if (pVCpu->hm.s.vmx.pfnStartVM != VMXR0SwitcherStartVM64)
 …
+        }
 #else
         /* 64-bit host or hybrid host. */
+        /* 64-bit host. */
         pVCpu->hm.s.vmx.pfnStartVM = VMXR0StartVM64;
 #endif
 …
+    {
         /* Guest is not in long mode, use the 32-bit handler. */
+#if HC_ARCH_BITS == 32 && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (pVCpu->hm.s.vmx.pfnStartVM != VMXR0StartVM32)
+        {
+            if (pVCpu->hm.s.vmx.pfnStartVM != NULL) /* Very first entry would have saved host-state already, ignore it. */
+            {
+                /* Currently, all mode changes sends us back to ring-3, so these should be set. See @bugref{6944}. */
+                AssertMsg(HMCPU_CF_IS_SET(pVCpu,   HM_CHANGED_VMX_EXIT_CTLS
+                                                 | HM_CHANGED_VMX_ENTRY_CTLS
+                                                 | HM_CHANGED_GUEST_EFER_MSR), ("flags=%#x\n", HMCPU_CF_VALUE(pVCpu)));
+            }
+            pVCpu->hm.s.vmx.pfnStartVM = VMXR0StartVM32;
+        }
+#else
+#if HC_ARCH_BITS == 32
+        if (   pVCpu->hm.s.vmx.pfnStartVM != VMXR0StartVM32
+            && pVCpu->hm.s.vmx.pfnStartVM != NULL) /* Very first entry would have saved host-state already, ignore it. */
+        {
+            /* Currently, all mode changes sends us back to ring-3, so these should be set. See @bugref{6944}. */
+            AssertMsg(HMCPU_CF_IS_SET(pVCpu,   HM_CHANGED_VMX_EXIT_CTLS
+                                             | HM_CHANGED_VMX_ENTRY_CTLS
+                                             | HM_CHANGED_GUEST_EFER_MSR), ("flags=%#x\n", HMCPU_CF_VALUE(pVCpu)));
+        }
+#endif
         pVCpu->hm.s.vmx.pfnStartVM = VMXR0StartVM32;
-#endif
+    }
     Assert(pVCpu->hm.s.vmx.pfnStartVM);
 …
                 uint32_t        u32Val;
                 uint64_t        u64Val;
                 HMVMXHCUINTREG  uHCReg;
+                RTHCUINTREG     uHCReg;
                 rc = VMXReadVmcs32(VMX_VMCS32_CTRL_PIN_EXEC, &u32Val);                  AssertRC(rc);
                 Log4(("VMX_VMCS32_CTRL_PIN_EXEC                %#RX32\n", u32Val));
 …
                 rc = VMXReadVmcsHstN(VMX_VMCS_HOST_RIP, &uHCReg);           AssertRC(rc);
                 Log4(("Host RIP %#RHv\n", uHCReg));
+# if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+                if (HMVMX_IS_64BIT_HOST_MODE())
+                {
+                    Log4(("MSR_K6_EFER            = %#RX64\n", ASMRdMsr(MSR_K6_EFER)));
+                    Log4(("MSR_K8_CSTAR           = %#RX64\n", ASMRdMsr(MSR_K8_CSTAR)));
+                    Log4(("MSR_K8_LSTAR           = %#RX64\n", ASMRdMsr(MSR_K8_LSTAR)));
+                    Log4(("MSR_K6_STAR            = %#RX64\n", ASMRdMsr(MSR_K6_STAR)));
+                    Log4(("MSR_K8_SF_MASK         = %#RX64\n", ASMRdMsr(MSR_K8_SF_MASK)));
+                    Log4(("MSR_K8_KERNEL_GS_BASE  = %#RX64\n", ASMRdMsr(MSR_K8_KERNEL_GS_BASE)));
+                }
+# if HC_ARCH_BITS == 64
+                Log4(("MSR_K6_EFER            = %#RX64\n", ASMRdMsr(MSR_K6_EFER)));
+                Log4(("MSR_K8_CSTAR           = %#RX64\n", ASMRdMsr(MSR_K8_CSTAR)));
+                Log4(("MSR_K8_LSTAR           = %#RX64\n", ASMRdMsr(MSR_K8_LSTAR)));
+                Log4(("MSR_K6_STAR            = %#RX64\n", ASMRdMsr(MSR_K6_STAR)));
+                Log4(("MSR_K8_SF_MASK         = %#RX64\n", ASMRdMsr(MSR_K8_SF_MASK)));
+                Log4(("MSR_K8_KERNEL_GS_BASE  = %#RX64\n", ASMRdMsr(MSR_K8_KERNEL_GS_BASE)));
 # endif
 #endif /* VBOX_STRICT */
 …
 #if HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS)
 #ifndef VMX_USE_CACHED_VMCS_ACCESSES
 # error "VMX_USE_CACHED_VMCS_ACCESSES not defined when it should be!"
 …
     return VINF_SUCCESS;
+}
+/* Enable later when the assembly code uses these as callbacks. */
+#if 0
+/*
+ * Loads the VMCS write-cache into the CPU (by executing VMWRITEs).
+ *
+ * @param   pVCpu           Pointer to the VMCPU.
+ * @param   pCache          Pointer to the VMCS cache.
+ *
+ * @remarks No-long-jump zone!!!
+ */
+VMMR0DECL(void) VMXWriteCachedVmcsLoad(PVMCPU pVCpu, PVMCSCACHE pCache)
+{
+    AssertPtr(pCache);
+    for (uint32_t i = 0; i < pCache->Write.cValidEntries; i++)
+    {
+        int rc = VMXWriteVmcs64(pCache->Write.aField[i], pCache->Write.aFieldVal[i]);
+        AssertRC(rc);
+    }
+    pCache->Write.cValidEntries = 0;
+}
+/**
+ * Stores the VMCS read-cache from the CPU (by executing VMREADs).
+ *
+ * @param   pVCpu           Pointer to the VMCPU.
+ * @param   pCache          Pointer to the VMCS cache.
+ *
+ * @remarks No-long-jump zone!!!
+ */
+VMMR0DECL(void) VMXReadCachedVmcsStore(PVMCPU pVCpu, PVMCSCACHE pCache)
+{
+    AssertPtr(pCache);
+    for (uint32_t i = 0; i < pCache->Read.cValidEntries; i++)
+    {
+        int rc = VMXReadVmcs64(pCache->Read.aField[i], &pCache->Read.aFieldVal[i]);
+        AssertRC(rc);
+    }
+}
+#endif
+#endif /* HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL) */
+#endif /* HC_ARCH_BITS == 32 && defined(VBOX_ENABLE_64_BITS_GUESTS) */
 …
     /* Store status of the shared guest-host state at the time of VM-entry. */
 #if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
     if (CPUMIsGuestInLongModeEx(pMixedCtx))
+    {
 …
          */
         uint32_t u32Eflags;
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (HMVMX_IS_64BIT_HOST_MODE())
+        {
+            rc = VMXReadVmcs64(VMX_VMCS_GUEST_RIP, &u64Val);
+            AssertRCBreak(rc);
+            /* pCtx->rip can be different than the one in the VMCS (e.g. run guest code and VM-exits that don't update it). */
+            if (   !fLongModeGuest
+                || !pCtx->cs.Attr.n.u1Long)
+            {
+                HMVMX_CHECK_BREAK(!(u64Val & UINT64_C(0xffffffff00000000)), VMX_IGS_LONGMODE_RIP_INVALID);
+            }
+            /** @todo If the processor supports N < 64 linear-address bits, bits 63:N
+             *        must be identical if the "IA-32e mode guest" VM-entry
+             *        control is 1 and CS.L is 1. No check applies if the
+             *        CPU supports 64 linear-address bits. */
+            /* Flags in pCtx can be different (real-on-v86 for instance). We are only concerned about the VMCS contents here. */
+            rc = VMXReadVmcs64(VMX_VMCS_GUEST_RFLAGS, &u64Val);
+            AssertRCBreak(rc);
+            HMVMX_CHECK_BREAK(!(u64Val & UINT64_C(0xffffffffffc08028)),                     /* Bit 63:22, Bit 15, 5, 3 MBZ. */
+                              VMX_IGS_RFLAGS_RESERVED);
+            HMVMX_CHECK_BREAK((u64Val & X86_EFL_RA1_MASK), VMX_IGS_RFLAGS_RESERVED1);       /* Bit 1 MB1. */
+            u32Eflags = u64Val;
+        }
+        else
+#if HC_ARCH_BITS == 64
+        rc = VMXReadVmcs64(VMX_VMCS_GUEST_RIP, &u64Val);
+        AssertRCBreak(rc);
+        /* pCtx->rip can be different than the one in the VMCS (e.g. run guest code and VM-exits that don't update it). */
+        if (   !fLongModeGuest
+            || !pCtx->cs.Attr.n.u1Long)
+        {
+            HMVMX_CHECK_BREAK(!(u64Val & UINT64_C(0xffffffff00000000)), VMX_IGS_LONGMODE_RIP_INVALID);
+        }
+        /** @todo If the processor supports N < 64 linear-address bits, bits 63:N
+         *        must be identical if the "IA-32e mode guest" VM-entry
+         *        control is 1 and CS.L is 1. No check applies if the
+         *        CPU supports 64 linear-address bits. */
+        /* Flags in pCtx can be different (real-on-v86 for instance). We are only concerned about the VMCS contents here. */
+        rc = VMXReadVmcs64(VMX_VMCS_GUEST_RFLAGS, &u64Val);
+        AssertRCBreak(rc);
+        HMVMX_CHECK_BREAK(!(u64Val & UINT64_C(0xffffffffffc08028)),                     /* Bit 63:22, Bit 15, 5, 3 MBZ. */
+                          VMX_IGS_RFLAGS_RESERVED);
+        HMVMX_CHECK_BREAK((u64Val & X86_EFL_RA1_MASK), VMX_IGS_RFLAGS_RESERVED1);       /* Bit 1 MB1. */
+        u32Eflags = u64Val;
+#else
+        rc = VMXReadVmcs32(VMX_VMCS_GUEST_RFLAGS, &u32Eflags);
+        AssertRCBreak(rc);
+        HMVMX_CHECK_BREAK(!(u32Eflags & 0xffc08028), VMX_IGS_RFLAGS_RESERVED);          /* Bit 31:22, Bit 15, 5, 3 MBZ. */
+        HMVMX_CHECK_BREAK((u32Eflags & X86_EFL_RA1_MASK), VMX_IGS_RFLAGS_RESERVED1);    /* Bit 1 MB1. */
 #endif
+        {
-            rc = VMXReadVmcs32(VMX_VMCS_GUEST_RFLAGS, &u32Eflags);
-            AssertRCBreak(rc);
-            HMVMX_CHECK_BREAK(!(u32Eflags & 0xffc08028), VMX_IGS_RFLAGS_RESERVED);          /* Bit 31:22, Bit 15, 5, 3 MBZ. */
-            HMVMX_CHECK_BREAK((u32Eflags & X86_EFL_RA1_MASK), VMX_IGS_RFLAGS_RESERVED1);    /* Bit 1 MB1. */
+        }
         if (   fLongModeGuest
 …
          * 64-bit checks.
          */
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (HMVMX_IS_64BIT_HOST_MODE())
+        {
+            if (fLongModeGuest)
+            {
+                HMVMX_CHECK_BREAK(u32GuestCR0 & X86_CR0_PG, VMX_IGS_CR0_PG_LONGMODE);
+                HMVMX_CHECK_BREAK(u32GuestCR4 & X86_CR4_PAE, VMX_IGS_CR4_PAE_LONGMODE);
+            }
+            if (   !fLongModeGuest
+                && (u32GuestCR4 & X86_CR4_PCIDE))
+            {
+                HMVMX_ERROR_BREAK(VMX_IGS_CR4_PCIDE);
+            }
+            /** @todo CR3 field must be such that bits 63:52 and bits in the range
+             *        51:32 beyond the processor's physical-address width are 0. */
+            if (   (pVCpu->hm.s.vmx.u32EntryCtls & VMX_VMCS_CTRL_ENTRY_LOAD_DEBUG)
+                && (pCtx->dr[7] & X86_DR7_MBZ_MASK))
+            {
+                HMVMX_ERROR_BREAK(VMX_IGS_DR7_RESERVED);
+            }
+            rc = VMXReadVmcs64(VMX_VMCS_HOST_SYSENTER_ESP, &u64Val);
+            AssertRCBreak(rc);
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(u64Val), VMX_IGS_SYSENTER_ESP_NOT_CANONICAL);
+            rc = VMXReadVmcs64(VMX_VMCS_HOST_SYSENTER_EIP, &u64Val);
+            AssertRCBreak(rc);
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(u64Val), VMX_IGS_SYSENTER_EIP_NOT_CANONICAL);
+        }
+#if HC_ARCH_BITS == 64
+        if (fLongModeGuest)
+        {
+            HMVMX_CHECK_BREAK(u32GuestCR0 & X86_CR0_PG, VMX_IGS_CR0_PG_LONGMODE);
+            HMVMX_CHECK_BREAK(u32GuestCR4 & X86_CR4_PAE, VMX_IGS_CR4_PAE_LONGMODE);
+        }
+        if (   !fLongModeGuest
+            && (u32GuestCR4 & X86_CR4_PCIDE))
+        {
+            HMVMX_ERROR_BREAK(VMX_IGS_CR4_PCIDE);
+        }
+        /** @todo CR3 field must be such that bits 63:52 and bits in the range
+         *        51:32 beyond the processor's physical-address width are 0. */
+        if (   (pVCpu->hm.s.vmx.u32EntryCtls & VMX_VMCS_CTRL_ENTRY_LOAD_DEBUG)
+            && (pCtx->dr[7] & X86_DR7_MBZ_MASK))
+        {
+            HMVMX_ERROR_BREAK(VMX_IGS_DR7_RESERVED);
+        }
+        rc = VMXReadVmcs64(VMX_VMCS_HOST_SYSENTER_ESP, &u64Val);
+        AssertRCBreak(rc);
+        HMVMX_CHECK_BREAK(X86_IS_CANONICAL(u64Val), VMX_IGS_SYSENTER_ESP_NOT_CANONICAL);
+        rc = VMXReadVmcs64(VMX_VMCS_HOST_SYSENTER_EIP, &u64Val);
+        AssertRCBreak(rc);
+        HMVMX_CHECK_BREAK(X86_IS_CANONICAL(u64Val), VMX_IGS_SYSENTER_EIP_NOT_CANONICAL);
 #endif
 …
+            }
             /* 64-bit capable CPUs. */
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+            if (HMVMX_IS_64BIT_HOST_MODE())
+            {
+                HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->fs.u64Base), VMX_IGS_FS_BASE_NOT_CANONICAL);
+                HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->gs.u64Base), VMX_IGS_GS_BASE_NOT_CANONICAL);
+                HMVMX_CHECK_BREAK(   (pCtx->ldtr.Attr.u & X86DESCATTR_UNUSABLE)
+                                  || X86_IS_CANONICAL(pCtx->ldtr.u64Base), VMX_IGS_LDTR_BASE_NOT_CANONICAL);
+                HMVMX_CHECK_BREAK(!(pCtx->cs.u64Base >> 32), VMX_IGS_LONGMODE_CS_BASE_INVALID);
+                HMVMX_CHECK_BREAK((pCtx->ss.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->ss.u64Base >> 32),
+                                  VMX_IGS_LONGMODE_SS_BASE_INVALID);
+                HMVMX_CHECK_BREAK((pCtx->ds.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->ds.u64Base >> 32),
+                                  VMX_IGS_LONGMODE_DS_BASE_INVALID);
+                HMVMX_CHECK_BREAK((pCtx->es.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->es.u64Base >> 32),
+                                  VMX_IGS_LONGMODE_ES_BASE_INVALID);
+            }
+#if HC_ARCH_BITS == 64
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->fs.u64Base), VMX_IGS_FS_BASE_NOT_CANONICAL);
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->gs.u64Base), VMX_IGS_GS_BASE_NOT_CANONICAL);
+            HMVMX_CHECK_BREAK(   (pCtx->ldtr.Attr.u & X86DESCATTR_UNUSABLE)
+                              || X86_IS_CANONICAL(pCtx->ldtr.u64Base), VMX_IGS_LDTR_BASE_NOT_CANONICAL);
+            HMVMX_CHECK_BREAK(!(pCtx->cs.u64Base >> 32), VMX_IGS_LONGMODE_CS_BASE_INVALID);
+            HMVMX_CHECK_BREAK((pCtx->ss.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->ss.u64Base >> 32),
+                              VMX_IGS_LONGMODE_SS_BASE_INVALID);
+            HMVMX_CHECK_BREAK((pCtx->ds.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->ds.u64Base >> 32),
+                              VMX_IGS_LONGMODE_DS_BASE_INVALID);
+            HMVMX_CHECK_BREAK((pCtx->es.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->es.u64Base >> 32),
+                              VMX_IGS_LONGMODE_ES_BASE_INVALID);
 #endif
+        }
 …
             HMVMX_CHECK_BREAK(u32GSAttr == 0xf3, VMX_IGS_V86_GS_ATTR_INVALID);
             /* 64-bit capable CPUs. */
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+            if (HMVMX_IS_64BIT_HOST_MODE())
+            {
+                HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->fs.u64Base), VMX_IGS_FS_BASE_NOT_CANONICAL);
+                HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->gs.u64Base), VMX_IGS_GS_BASE_NOT_CANONICAL);
+                HMVMX_CHECK_BREAK(   (pCtx->ldtr.Attr.u & X86DESCATTR_UNUSABLE)
+                                  || X86_IS_CANONICAL(pCtx->ldtr.u64Base), VMX_IGS_LDTR_BASE_NOT_CANONICAL);
+                HMVMX_CHECK_BREAK(!(pCtx->cs.u64Base >> 32), VMX_IGS_LONGMODE_CS_BASE_INVALID);
+                HMVMX_CHECK_BREAK((pCtx->ss.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->ss.u64Base >> 32),
+                                  VMX_IGS_LONGMODE_SS_BASE_INVALID);
+                HMVMX_CHECK_BREAK((pCtx->ds.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->ds.u64Base >> 32),
+                                  VMX_IGS_LONGMODE_DS_BASE_INVALID);
+                HMVMX_CHECK_BREAK((pCtx->es.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->es.u64Base >> 32),
+                                  VMX_IGS_LONGMODE_ES_BASE_INVALID);
+            }
+#if HC_ARCH_BITS == 64
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->fs.u64Base), VMX_IGS_FS_BASE_NOT_CANONICAL);
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->gs.u64Base), VMX_IGS_GS_BASE_NOT_CANONICAL);
+            HMVMX_CHECK_BREAK(   (pCtx->ldtr.Attr.u & X86DESCATTR_UNUSABLE)
+                              || X86_IS_CANONICAL(pCtx->ldtr.u64Base), VMX_IGS_LDTR_BASE_NOT_CANONICAL);
+            HMVMX_CHECK_BREAK(!(pCtx->cs.u64Base >> 32), VMX_IGS_LONGMODE_CS_BASE_INVALID);
+            HMVMX_CHECK_BREAK((pCtx->ss.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->ss.u64Base >> 32),
+                              VMX_IGS_LONGMODE_SS_BASE_INVALID);
+            HMVMX_CHECK_BREAK((pCtx->ds.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->ds.u64Base >> 32),
+                              VMX_IGS_LONGMODE_DS_BASE_INVALID);
+            HMVMX_CHECK_BREAK((pCtx->es.Attr.u & X86DESCATTR_UNUSABLE) || !(pCtx->es.u64Base >> 32),
+                              VMX_IGS_LONGMODE_ES_BASE_INVALID);
 #endif
+        }
 …
         HMVMX_CHECK_BREAK(!(pCtx->tr.Sel & X86_SEL_LDT), VMX_IGS_TR_TI_INVALID);
         /* 64-bit capable CPUs. */
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (HMVMX_IS_64BIT_HOST_MODE())
+        {
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->tr.u64Base), VMX_IGS_TR_BASE_NOT_CANONICAL);
+        }
+#if HC_ARCH_BITS == 64
+        HMVMX_CHECK_BREAK(X86_IS_CANONICAL(pCtx->tr.u64Base), VMX_IGS_TR_BASE_NOT_CANONICAL);
 #endif
         if (fLongModeGuest)
 …
          * GDTR and IDTR.
          */
+#if HC_ARCH_BITS == 64 || defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+        if (HMVMX_IS_64BIT_HOST_MODE())
+        {
+            rc = VMXReadVmcs64(VMX_VMCS_GUEST_GDTR_BASE, &u64Val);
+            AssertRCBreak(rc);
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(u64Val), VMX_IGS_GDTR_BASE_NOT_CANONICAL);
+            rc = VMXReadVmcs64(VMX_VMCS_GUEST_IDTR_BASE, &u64Val);
+            AssertRCBreak(rc);
+            HMVMX_CHECK_BREAK(X86_IS_CANONICAL(u64Val), VMX_IGS_IDTR_BASE_NOT_CANONICAL);
+        }
+#if HC_ARCH_BITS == 64
+        rc = VMXReadVmcs64(VMX_VMCS_GUEST_GDTR_BASE, &u64Val);
+        AssertRCBreak(rc);
+        HMVMX_CHECK_BREAK(X86_IS_CANONICAL(u64Val), VMX_IGS_GDTR_BASE_NOT_CANONICAL);
+        rc = VMXReadVmcs64(VMX_VMCS_GUEST_IDTR_BASE, &u64Val);
+        AssertRCBreak(rc);
+        HMVMX_CHECK_BREAK(X86_IS_CANONICAL(u64Val), VMX_IGS_IDTR_BASE_NOT_CANONICAL);
 #endif
 …
         /* Pending debug exceptions. */
+        if (HMVMX_IS_64BIT_HOST_MODE())
+        {
+            rc = VMXReadVmcs64(VMX_VMCS_GUEST_PENDING_DEBUG_EXCEPTIONS, &u64Val);
+            AssertRCBreak(rc);
+            /* Bits 63:15, Bit 13, Bits 11:4 MBZ. */
+            HMVMX_CHECK_BREAK(!(u64Val & UINT64_C(0xffffffffffffaff0)), VMX_IGS_LONGMODE_PENDING_DEBUG_RESERVED);
+            u32Val = u64Val;    /* For pending debug exceptions checks below. */
+        }
+        else
+        {
+            rc = VMXReadVmcs32(VMX_VMCS_GUEST_PENDING_DEBUG_EXCEPTIONS, &u32Val);
+            AssertRCBreak(rc);
+            /* Bits 31:15, Bit 13, Bits 11:4 MBZ. */
+            HMVMX_CHECK_BREAK(!(u64Val & 0xffffaff0), VMX_IGS_PENDING_DEBUG_RESERVED);
+        }
+#if HC_ARCH_BITS == 64
+        rc = VMXReadVmcs64(VMX_VMCS_GUEST_PENDING_DEBUG_EXCEPTIONS, &u64Val);
+        AssertRCBreak(rc);
+        /* Bits 63:15, Bit 13, Bits 11:4 MBZ. */
+        HMVMX_CHECK_BREAK(!(u64Val & UINT64_C(0xffffffffffffaff0)), VMX_IGS_LONGMODE_PENDING_DEBUG_RESERVED);
+        u32Val = u64Val;    /* For pending debug exceptions checks below. */
+#else
+        rc = VMXReadVmcs32(VMX_VMCS_GUEST_PENDING_DEBUG_EXCEPTIONS, &u32Val);
+        AssertRCBreak(rc);
+        /* Bits 31:15, Bit 13, Bits 11:4 MBZ. */
+        HMVMX_CHECK_BREAK(!(u32Val & 0xffffaff0), VMX_IGS_PENDING_DEBUG_RESERVED);
+#endif
         if (   (u32IntrState & VMX_VMCS_GUEST_INTERRUPTIBILITY_STATE_BLOCK_STI)
 …
 #ifdef VBOX_STRICT
     uint32_t       uIntrState;
     HMVMXHCUINTREG uHCReg;
+    RTHCUINTREG    uHCReg;
     uint64_t       u64Val;
     uint32_t       u32Val;

trunk/src/VBox/VMM/VMMR0/HMVMXR0.h

-              r56287
+              r57429
 # if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) && !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)
+# if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
 DECLASM(int)    VMXR0SwitcherStartVM64(RTHCUINT fResume, PCPUMCTX pCtx, PVMCSCACHE pCache, PVM pVM, PVMCPU pVCpu);
 VMMR0DECL(int)  VMXR0Execute64BitsHandler(PVM pVM, PVMCPU pVCpu, PCPUMCTX pCtx, HM64ON32OP enmOp, uint32_t cbParam,
 …
 # endif
+# ifdef VBOX_WITH_HYBRID_32BIT_KERNEL
+/* Don't use fAllow64BitGuests for VMXReadVmcsGstN() even though it looks right, as it can be forced to 'true'.
+   HMVMX_IS_64BIT_HOST_MODE() is what we need. */
+#  define VMXReadVmcsHstN(idxField, p64Val)               HMVMX_IS_64BIT_HOST_MODE() ?                      \
+                                                            VMXReadVmcs64(idxField, p64Val)                 \
+                                                          : (*(p64Val) &= UINT64_C(0xffffffff),             \
+                                                             VMXReadVmcs32(idxField, (uint32_t *)(p64Val)))
+#  define VMXReadVmcsGstN                                 VMXReadVmcsHstN
+#  define VMXReadVmcsGstNByIdxVal                         VMXReadVmcsGstN
+# elif HC_ARCH_BITS == 32
+# if HC_ARCH_BITS == 32
 #  define VMXReadVmcsHstN                                 VMXReadVmcs32
 #  define VMXReadVmcsGstN(idxField, pVal)                 VMXReadCachedVmcsEx(pVCpu, idxField##_CACHE_IDX, pVal)

trunk/src/VBox/VMM/VMMR0/VMMR0.cpp

r57378	r57429
1867	1867
1868	1868
1869		#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS) ~~&& !defined(VBOX_WITH_HYBRID_32BIT_KERNEL)~~
	1869	#if HC_ARCH_BITS == 32 && defined(VBOX_WITH_64_BITS_GUESTS)
1870	1870	case VMMR0_DO_TEST_SWITCHER3264:
1871	1871	if (idCpu == NIL_VMCPUID)

Note: See TracChangeset for help on using the changeset viewer.

Download in other formats:

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette