Changeset 72848 in vbox

Timestamp:

Jul 4, 2018 5:01:54 AM (7 years ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

123393

Message:

VMM/HMVMXR0: bugref:9193 Always import FS, GS (for base) on MSR read/write VM-exits. Export strictly only those
segment registers that were marked as changed and not all of them as we risk overwriting stale values from
the guest-CPU into the VMCS values.

File:

• trunk/src/VBox/VMM/VMMR0/HMVMXR0.cpp (modified) (15 diffs)

trunk/src/VBox/VMM/VMMR0/HMVMXR0.cpp

@@ -170 +170 @@
     } while (0)
 
-/** Macro for saving segment registers from VMCS into the guest-CPU
- *  context. */
+/** Macro for importing segment registers to the VMCS from the guest-CPU context. */
 #ifdef VMX_USE_CACHED_VMCS_ACCESSES
 # define HMVMX_IMPORT_SREG(Sel, a_pCtxSelReg) \
@@ -181 +180 @@
                                  VMX_VMCS_GUEST_##Sel##_BASE, VMX_VMCS32_GUEST_##Sel##_ACCESS_RIGHTS, (a_pCtxSelReg))
 #endif
+
+/** Macro for exporting segment registers to the VMCS from the guest-CPU context. */
+# define HMVMX_EXPORT_SREG(Sel, a_pCtxSelReg) \
+    hmR0VmxExportGuestSegmentReg(pVCpu, VMX_VMCS16_GUEST_##Sel##_SEL, VMX_VMCS32_GUEST_##Sel##_LIMIT, \
+                                 VMX_VMCS_GUEST_##Sel##_BASE, VMX_VMCS32_GUEST_##Sel##_ACCESS_RIGHTS, (a_pCtxSelReg))
 
 
@@ -3167 +3171 @@
 #endif
 
-    PVM      pVM          = pVCpu->CTX_SUFF(pVM);
-    uint64_t u64HostEfer  = pVM->hm.s.vmx.u64HostEfer;
-    uint64_t u64GuestEfer = pMixedCtx->msrEFER;
+    PVM pVM = pVCpu->CTX_SUFF(pVM);
+    uint64_t const u64HostEfer  = pVM->hm.s.vmx.u64HostEfer;
+    uint64_t const u64GuestEfer = pMixedCtx->msrEFER;
 
     /*
@@ -4216 +4220 @@
      *
      * The reason we check for attribute value 0 in this function and not just the unusable bit is
-     * because hmR0VmxWriteSegmentReg() only updates the VMCS' copy of the value with the unusable bit
+     * because hmR0VmxExportGuestSegmentReg() only updates the VMCS' copy of the value with the unusable bit
      * and doesn't change the guest-context value.
      */
@@ -4262 +4266 @@
                    || (pCtx->ss.Attr.n.u1Granularity));
         }
-        /* DS, ES, FS, GS - only check for usable selectors, see hmR0VmxWriteSegmentReg(). */
+        /* DS, ES, FS, GS - only check for usable selectors, see hmR0VmxExportGuestSegmentReg(). */
         if (pCtx->ds.Attr.u && !(pCtx->ds.Attr.u & X86DESCATTR_UNUSABLE))
         {
@@ -4332 +4336 @@
     {
         /* Real and v86 mode checks. */
-        /* hmR0VmxWriteSegmentReg() writes the modified in VMCS. We want what we're feeding to VT-x. */
+        /* hmR0VmxExportGuestSegmentReg() writes the modified in VMCS. We want what we're feeding to VT-x. */
         uint32_t u32CSAttr, u32SSAttr, u32DSAttr, u32ESAttr, u32FSAttr, u32GSAttr;
         if (pVCpu->hm.s.vmx.RealMode.fRealOnV86Active)
@@ -4381 +4385 @@
 
 /**
- * Writes a guest segment register into the guest-state area in the VMCS.
+ * Exports a guest segment register into the guest-state area in the VMCS.
  *
  * @returns VBox status code.
@@ -4393 +4397 @@
  * @remarks No-long-jump zone!!!
  */
-static int hmR0VmxWriteSegmentReg(PVMCPU pVCpu, uint32_t idxSel, uint32_t idxLimit, uint32_t idxBase,
-                                       uint32_t idxAccess, PCCPUMSELREG pSelReg)
+static int hmR0VmxExportGuestSegmentReg(PVMCPU pVCpu, uint32_t idxSel, uint32_t idxLimit, uint32_t idxBase, uint32_t idxAccess,
+                                        PCCPUMSELREG pSelReg)
 {
     int rc = VMXWriteVmcs32(idxSel,    pSelReg->Sel);       /* 16-bit guest selector field. */
@@ -4456 +4460 @@
     if (ASMAtomicUoReadU64(&pVCpu->hm.s.fCtxChanged) & HM_CHANGED_GUEST_SREG_MASK)
     {
-        /* Save the segment attributes for real-on-v86 mode hack, so we can restore them on VM-exit. */
-        if (pVCpu->hm.s.vmx.RealMode.fRealOnV86Active)
-        {
-            pVCpu->hm.s.vmx.RealMode.AttrCS.u = pMixedCtx->cs.Attr.u;
-            pVCpu->hm.s.vmx.RealMode.AttrSS.u = pMixedCtx->ss.Attr.u;
-            pVCpu->hm.s.vmx.RealMode.AttrDS.u = pMixedCtx->ds.Attr.u;
-            pVCpu->hm.s.vmx.RealMode.AttrES.u = pMixedCtx->es.Attr.u;
-            pVCpu->hm.s.vmx.RealMode.AttrFS.u = pMixedCtx->fs.Attr.u;
-            pVCpu->hm.s.vmx.RealMode.AttrGS.u = pMixedCtx->gs.Attr.u;
-        }
-
 #ifdef VBOX_WITH_REM
         if (!pVM->hm.s.vmx.fUnrestrictedGuest)
@@ -4483 +4476 @@
         }
 #endif
-        rc  = hmR0VmxWriteSegmentReg(pVCpu, VMX_VMCS16_GUEST_CS_SEL, VMX_VMCS32_GUEST_CS_LIMIT, VMX_VMCS_GUEST_CS_BASE,
-                                     VMX_VMCS32_GUEST_CS_ACCESS_RIGHTS, &pMixedCtx->cs);
-        rc |= hmR0VmxWriteSegmentReg(pVCpu, VMX_VMCS16_GUEST_SS_SEL, VMX_VMCS32_GUEST_SS_LIMIT, VMX_VMCS_GUEST_SS_BASE,
-                                     VMX_VMCS32_GUEST_SS_ACCESS_RIGHTS, &pMixedCtx->ss);
-        rc |= hmR0VmxWriteSegmentReg(pVCpu, VMX_VMCS16_GUEST_DS_SEL, VMX_VMCS32_GUEST_DS_LIMIT, VMX_VMCS_GUEST_DS_BASE,
-                                     VMX_VMCS32_GUEST_DS_ACCESS_RIGHTS, &pMixedCtx->ds);
-        rc |= hmR0VmxWriteSegmentReg(pVCpu, VMX_VMCS16_GUEST_ES_SEL, VMX_VMCS32_GUEST_ES_LIMIT, VMX_VMCS_GUEST_ES_BASE,
-                                     VMX_VMCS32_GUEST_ES_ACCESS_RIGHTS, &pMixedCtx->es);
-        rc |= hmR0VmxWriteSegmentReg(pVCpu, VMX_VMCS16_GUEST_FS_SEL, VMX_VMCS32_GUEST_FS_LIMIT, VMX_VMCS_GUEST_FS_BASE,
-                                     VMX_VMCS32_GUEST_FS_ACCESS_RIGHTS, &pMixedCtx->fs);
-        rc |= hmR0VmxWriteSegmentReg(pVCpu, VMX_VMCS16_GUEST_GS_SEL, VMX_VMCS32_GUEST_GS_LIMIT, VMX_VMCS_GUEST_GS_BASE,
-                                     VMX_VMCS32_GUEST_GS_ACCESS_RIGHTS, &pMixedCtx->gs);
-        AssertRCReturn(rc, rc);
+        if (ASMAtomicUoReadU64(&pVCpu->hm.s.fCtxChanged) & HM_CHANGED_GUEST_CS)
+        {
+            if (pVCpu->hm.s.vmx.RealMode.fRealOnV86Active)
+                pVCpu->hm.s.vmx.RealMode.AttrCS.u = pMixedCtx->cs.Attr.u;
+            rc = HMVMX_EXPORT_SREG(CS, &pMixedCtx->cs);
+            AssertRCReturn(rc, rc);
+            ASMAtomicUoAndU64(&pVCpu->hm.s.fCtxChanged, ~HM_CHANGED_GUEST_CS);
+        }
+
+        if (ASMAtomicUoReadU64(&pVCpu->hm.s.fCtxChanged) & HM_CHANGED_GUEST_SS)
+        {
+            if (pVCpu->hm.s.vmx.RealMode.fRealOnV86Active)
+                pVCpu->hm.s.vmx.RealMode.AttrSS.u = pMixedCtx->ss.Attr.u;
+            rc = HMVMX_EXPORT_SREG(SS, &pMixedCtx->ss);
+            AssertRCReturn(rc, rc);
+            ASMAtomicUoAndU64(&pVCpu->hm.s.fCtxChanged, ~HM_CHANGED_GUEST_SS);
+        }
+
+        if (ASMAtomicUoReadU64(&pVCpu->hm.s.fCtxChanged) & HM_CHANGED_GUEST_DS)
+        {
+            if (pVCpu->hm.s.vmx.RealMode.fRealOnV86Active)
+                pVCpu->hm.s.vmx.RealMode.AttrDS.u = pMixedCtx->ds.Attr.u;
+            rc = HMVMX_EXPORT_SREG(DS, &pMixedCtx->ds);
+            AssertRCReturn(rc, rc);
+            ASMAtomicUoAndU64(&pVCpu->hm.s.fCtxChanged, ~HM_CHANGED_GUEST_DS);
+        }
+
+        if (ASMAtomicUoReadU64(&pVCpu->hm.s.fCtxChanged) & HM_CHANGED_GUEST_ES)
+        {
+            if (pVCpu->hm.s.vmx.RealMode.fRealOnV86Active)
+                pVCpu->hm.s.vmx.RealMode.AttrES.u = pMixedCtx->es.Attr.u;
+            rc = HMVMX_EXPORT_SREG(ES, &pMixedCtx->es);
+            AssertRCReturn(rc, rc);
+            ASMAtomicUoAndU64(&pVCpu->hm.s.fCtxChanged, ~HM_CHANGED_GUEST_ES);
+        }
+
+        if (ASMAtomicUoReadU64(&pVCpu->hm.s.fCtxChanged) & HM_CHANGED_GUEST_FS)
+        {
+            if (pVCpu->hm.s.vmx.RealMode.fRealOnV86Active)
+                pVCpu->hm.s.vmx.RealMode.AttrFS.u = pMixedCtx->fs.Attr.u;
+            rc = HMVMX_EXPORT_SREG(FS, &pMixedCtx->fs);
+            AssertRCReturn(rc, rc);
+            ASMAtomicUoAndU64(&pVCpu->hm.s.fCtxChanged, ~HM_CHANGED_GUEST_FS);
+        }
+
+        if (ASMAtomicUoReadU64(&pVCpu->hm.s.fCtxChanged) & HM_CHANGED_GUEST_GS)
+        {
+            if (pVCpu->hm.s.vmx.RealMode.fRealOnV86Active)
+                pVCpu->hm.s.vmx.RealMode.AttrGS.u = pMixedCtx->gs.Attr.u;
+            rc = HMVMX_EXPORT_SREG(GS, &pMixedCtx->gs);
+            AssertRCReturn(rc, rc);
+            ASMAtomicUoAndU64(&pVCpu->hm.s.fCtxChanged, ~HM_CHANGED_GUEST_GS);
+        }
 
 #ifdef VBOX_STRICT
@@ -4505 +4538 @@
             EMR0HistoryUpdatePC(pVCpu, pMixedCtx->cs.u64Base + pMixedCtx->rip, true);
 
-        ASMAtomicUoAndU64(&pVCpu->hm.s.fCtxChanged, ~HM_CHANGED_GUEST_SREG_MASK);
         Log4Func(("CS=%#RX16 Base=%#RX64 Limit=%#RX32 Attr=%#RX32\n", pMixedCtx->cs.Sel, pMixedCtx->cs.u64Base,
                   pMixedCtx->cs.u32Limit, pMixedCtx->cs.Attr.u));
@@ -8552 +8584 @@
 #endif
 #ifdef HMVMX_ALWAYS_CHECK_GUEST_STATE
-    uint32_t uInvalidReason = hmR0VmxCheckGuestState(pVCpu, pMixedCtx);
-    if (uInvalidReason != VMX_IGS_REASON_NOT_FOUND)
-        Log4(("hmR0VmxCheckGuestState returned %#x\n", uInvalidReason));
+    if (!(pVCpu->hm.s.vmx.u32ProcCtls & VMX_VMCS_CTRL_PROC_EXEC_USE_MSR_BITMAPS))
+    {
+        uint32_t uInvalidReason = hmR0VmxCheckGuestState(pVCpu, pMixedCtx);
+        if (uInvalidReason != VMX_IGS_REASON_NOT_FOUND)
+            Log4(("hmR0VmxCheckGuestState returned %#x\n", uInvalidReason));
+    }
 #endif
 }
@@ -10576 +10611 @@
             }
 
-            /* DS, ES, FS, GS - only check for usable selectors, see hmR0VmxWriteSegmentReg(). */
+            /* DS, ES, FS, GS - only check for usable selectors, see hmR0VmxExportGuestSegmenReg(). */
             if (!(pCtx->ds.Attr.u & X86DESCATTR_UNUSABLE))
             {
@@ -11745 +11780 @@
     HMVMX_VALIDATE_EXIT_HANDLER_PARAMS();
 
-    /* EMInterpretRdmsr() requires CR0, Eflags and SS segment register. */
+    /* EMInterpretRdmsr() requires CR0, Eflags and SS segment register. FS, GS (base) can be accessed by MSR reads. */
     int rc = hmR0VmxImportGuestState(pVCpu,   CPUMCTX_EXTRN_CR0
                                             | CPUMCTX_EXTRN_RFLAGS
-                                            | CPUMCTX_EXTRN_SS);
+                                            | CPUMCTX_EXTRN_SS
+                                            | CPUMCTX_EXTRN_FS
+                                            | CPUMCTX_EXTRN_GS);
     if (!(pVCpu->hm.s.vmx.u32ProcCtls & VMX_VMCS_CTRL_PROC_EXEC_USE_MSR_BITMAPS))
         rc |= hmR0VmxImportGuestState(pVCpu, CPUMCTX_EXTRN_ALL_MSRS);
@@ -11802 +11839 @@
     int rc = VINF_SUCCESS;
 
-    /* EMInterpretWrmsr() requires CR0, EFLAGS and SS segment register. */
+    /* EMInterpretWrmsr() requires CR0, EFLAGS and SS segment register. FS, GS (base) can be accessed by MSR writes. */
     rc  = hmR0VmxImportGuestState(pVCpu,   CPUMCTX_EXTRN_CR0
                                          | CPUMCTX_EXTRN_RFLAGS
-                                         | CPUMCTX_EXTRN_SS);
+                                         | CPUMCTX_EXTRN_SS
+                                         | CPUMCTX_EXTRN_FS
+                                         | CPUMCTX_EXTRN_GS);
     if (!(pVCpu->hm.s.vmx.u32ProcCtls & VMX_VMCS_CTRL_PROC_EXEC_USE_MSR_BITMAPS))
         rc |= hmR0VmxImportGuestState(pVCpu, CPUMCTX_EXTRN_ALL_MSRS);