Changeset 81637 in vbox

Timestamp:

Nov 4, 2019 4:22:10 AM (5 years ago)

Author:

vboxsync

Message:

VMM/HMVMXR0: Revamped allocation of ring-0 VMCS and related data structures. We no longer are bound
to addresses below 4G (with removal of 32-bit host support).

Location:

trunk/src/VBox/VMM

Files:

• VMMR0/HMVMXR0.cpp (modified) (20 diffs)
• include/HMInternal.h (modified) (13 diffs)
• include/HMInternal.mac (modified) (1 diff)

trunk/src/VBox/VMM/VMMR0/HMVMXR0.cpp

@@ -285 +285 @@
 /** Pointer to a const VMX transient state. */
 typedef const VMXTRANSIENT *PCVMXTRANSIENT;
+
+/**
+ * VMX page allocation information.
+ */
+typedef struct
+{
+    uint32_t    fValid;       /**< Whether to allocate this page (e.g, based on a CPU feature). */
+    uint32_t    uPadding0;    /**< Padding to ensure array of these structs are aligned to a multiple of 8. */
+    PRTHCPHYS   pHCPhys;      /**< Where to store the host-physical address of the allocation. */
+    PRTR0PTR    ppVirt;       /**< Where to store the host-virtual address of the allocation. */
+} VMXPAGEALLOCINFO;
+/** Pointer to VMX page-allocation info. */
+typedef VMXPAGEALLOCINFO *PVMXPAGEALLOCINFO;
+/** Pointer to a const VMX page-allocation info. */
+typedef const VMXPAGEALLOCINFO *PCVMXPAGEALLOCINFO;
+AssertCompileSizeAlignment(VMXPAGEALLOCINFO, 8);
 
 /**
@@ -1684 +1700 @@
 
 /**
- * Allocates and maps a physically contiguous page. The allocated page is
- * zero'd out (used by various VT-x structures).
- *
- * @returns IPRT status code.
- * @param   pMemObj     Pointer to the ring-0 memory object.
- * @param   ppVirt      Where to store the virtual address of the allocation.
- * @param   pHCPhys     Where to store the physical address of the allocation.
- */
-static int hmR0VmxPageAllocZ(PRTR0MEMOBJ pMemObj, PRTR0PTR ppVirt, PRTHCPHYS pHCPhys)
-{
-    AssertPtr(pMemObj);
-    AssertPtr(ppVirt);
-    AssertPtr(pHCPhys);
-    int rc = RTR0MemObjAllocCont(pMemObj, X86_PAGE_4K_SIZE, false /* fExecutable */);
-    if (RT_FAILURE(rc))
-        return rc;
-    *ppVirt  = RTR0MemObjAddress(*pMemObj);
-    *pHCPhys = RTR0MemObjGetPagePhysAddr(*pMemObj, 0 /* iPage */);
-    ASMMemZero32(*ppVirt, X86_PAGE_4K_SIZE);
+ * Allocates pages specified as specified by an array of VMX page allocation info
+ * objects.
+ *
+ * The pages contents are zero'd after allocation.
+ *
+ * @returns VBox status code.
+ * @param   hMemObj         The ring-0 memory object associated with the allocation.
+ * @param   paAllocInfo     The pointer to the first element of the VMX
+ *                          page-allocation info object array.
+ * @param   cEntries        The number of elements in the @a paAllocInfo array.
+ */
+static int hmR0VmxPagesAllocZ(RTR0MEMOBJ hMemObj, PVMXPAGEALLOCINFO paAllocInfo, uint32_t cEntries)
+{
+    /* Figure out how many pages to allocate. */
+    uint32_t cPages = 0;
+    for (uint32_t iPage = 0; iPage < cEntries; iPage++)
+        cPages += !!paAllocInfo[iPage].fValid;
+
+    /* Allocate the pages. */
+    if (cPages)
+    {
+        size_t const cbPages = cPages << X86_PAGE_4K_SHIFT;
+        int rc = RTR0MemObjAllocPage(&hMemObj, cbPages, false /* fExecutable */);
+        if (RT_FAILURE(rc))
+            return rc;
+
+        /* Zero the contents and assign each page to the corresponding VMX page-allocation entry. */
+        void *pvFirstPage = RTR0MemObjAddress(hMemObj);
+        ASMMemZero32(pvFirstPage, cbPages);
+
+        uint32_t iPage = 0;
+        for (uint32_t i = 0; i < cEntries; i++)
+            if (paAllocInfo[i].fValid)
+            {
+                RTHCPHYS const HCPhysPage = RTR0MemObjGetPagePhysAddr(hMemObj, iPage);
+                void          *pvPage     = (void *)((uintptr_t)pvFirstPage + (iPage << X86_PAGE_4K_SHIFT));
+                Assert(HCPhysPage && HCPhysPage != NIL_RTHCPHYS);
+                AssertPtr(pvPage);
+
+                Assert(paAllocInfo[iPage].pHCPhys);
+                Assert(paAllocInfo[iPage].ppVirt);
+                *paAllocInfo[iPage].pHCPhys = HCPhysPage;
+                *paAllocInfo[iPage].ppVirt  = pvPage;
+
+                /* Move to next page. */
+                ++iPage;
+            }
+
+        /* Make sure all valid (requested) pages have been assigned. */
+        Assert(iPage == cPages);
+    }
     return VINF_SUCCESS;
 }
@@ -1708 +1756 @@
 
 /**
- * Frees and unmaps an allocated, physical page.
- *
- * @param   pMemObj     Pointer to the ring-0 memory object.
- * @param   ppVirt      Where to re-initialize the virtual address of allocation as
- *                      0.
- * @param   pHCPhys     Where to re-initialize the physical address of the
- *                      allocation as 0.
- */
-static void hmR0VmxPageFree(PRTR0MEMOBJ pMemObj, PRTR0PTR ppVirt, PRTHCPHYS pHCPhys)
-{
-    AssertPtr(pMemObj);
-    AssertPtr(ppVirt);
-    AssertPtr(pHCPhys);
-    /* NULL is valid, accepted and ignored by the free function below. */
-    RTR0MemObjFree(*pMemObj, true /* fFreeMappings */);
-    *pMemObj = NIL_RTR0MEMOBJ;
-    *ppVirt  = NULL;
-    *pHCPhys = NIL_RTHCPHYS;
+ * Frees pages allocated using hmR0VmxPagesAllocZ.
+ *
+ * @param   hMemObj     The ring-0 memory object associated with the allocation.
+ */
+DECL_FORCE_INLINE(void) hmR0VmxPagesFree(RTR0MEMOBJ hMemObj)
+{
+    /* We can cleanup wholesale since it's all one allocation. */
+    RTR0MemObjFree(hMemObj, true /* fFreeMappings */);
 }
 
@@ -1734 +1772 @@
  * @param   pVmcsInfo   The VMCS info. object.
  */
-static void hmR0VmxInitVmcsInfo(PVMXVMCSINFO pVmcsInfo)
+static void hmR0VmxVmcsInfoInit(PVMXVMCSINFO pVmcsInfo)
 {
     memset(pVmcsInfo, 0, sizeof(*pVmcsInfo));
 
-    Assert(pVmcsInfo->hMemObjVmcs          == NIL_RTR0MEMOBJ);
-    Assert(pVmcsInfo->hMemObjShadowVmcs    == NIL_RTR0MEMOBJ);
-    Assert(pVmcsInfo->hMemObjMsrBitmap     == NIL_RTR0MEMOBJ);
-    Assert(pVmcsInfo->hMemObjGuestMsrLoad  == NIL_RTR0MEMOBJ);
-    Assert(pVmcsInfo->hMemObjGuestMsrStore == NIL_RTR0MEMOBJ);
-    Assert(pVmcsInfo->hMemObjHostMsrLoad   == NIL_RTR0MEMOBJ);
+    Assert(pVmcsInfo->hMemObj == NIL_RTR0MEMOBJ);
     pVmcsInfo->HCPhysVmcs          = NIL_RTHCPHYS;
     pVmcsInfo->HCPhysShadowVmcs    = NIL_RTHCPHYS;
@@ -1761 +1794 @@
  * Frees the VT-x structures for a VMCS info. object.
  *
- * @param   pVM         The cross context VM structure.
  * @param   pVmcsInfo   The VMCS info. object.
  */
-static void hmR0VmxFreeVmcsInfo(PVMCC pVM, PVMXVMCSINFO pVmcsInfo)
-{
-    hmR0VmxPageFree(&pVmcsInfo->hMemObjVmcs, &pVmcsInfo->pvVmcs, &pVmcsInfo->HCPhysVmcs);
-
-#ifdef VBOX_WITH_NESTED_HWVIRT_VMX
-    if (pVM->hm.s.vmx.fUseVmcsShadowing)
-        hmR0VmxPageFree(&pVmcsInfo->hMemObjShadowVmcs, &pVmcsInfo->pvShadowVmcs, &pVmcsInfo->HCPhysShadowVmcs);
-#endif
-
-    if (pVM->hm.s.vmx.Msrs.ProcCtls.n.allowed1 & VMX_PROC_CTLS_USE_MSR_BITMAPS)
-        hmR0VmxPageFree(&pVmcsInfo->hMemObjMsrBitmap, &pVmcsInfo->pvMsrBitmap, &pVmcsInfo->HCPhysMsrBitmap);
-
-    hmR0VmxPageFree(&pVmcsInfo->hMemObjHostMsrLoad,   &pVmcsInfo->pvHostMsrLoad,   &pVmcsInfo->HCPhysHostMsrLoad);
-    hmR0VmxPageFree(&pVmcsInfo->hMemObjGuestMsrLoad,  &pVmcsInfo->pvGuestMsrLoad,  &pVmcsInfo->HCPhysGuestMsrLoad);
-    hmR0VmxPageFree(&pVmcsInfo->hMemObjGuestMsrStore, &pVmcsInfo->pvGuestMsrStore, &pVmcsInfo->HCPhysGuestMsrStore);
-
-    hmR0VmxInitVmcsInfo(pVmcsInfo);
+static void hmR0VmxVmcsInfoFree(PVMXVMCSINFO pVmcsInfo)
+{
+    if (pVmcsInfo->hMemObj != NIL_RTR0MEMOBJ)
+    {
+        hmR0VmxPagesFree(pVmcsInfo->hMemObj);
+        hmR0VmxVmcsInfoInit(pVmcsInfo);
+    }
 }
 
@@ -1791 +1813 @@
  * @param   pVmcsInfo       The VMCS info. object.
  * @param   fIsNstGstVmcs   Whether this is a nested-guest VMCS.
+ *
+ * @remarks The caller is expected to take care of any and all allocation failures.
+ *          This function will not perform any cleanup for failures half-way
+ *          through.
  */
 static int hmR0VmxAllocVmcsInfo(PVMCPUCC pVCpu, PVMXVMCSINFO pVmcsInfo, bool fIsNstGstVmcs)
@@ -1796 +1822 @@
     PVMCC pVM = pVCpu->CTX_SUFF(pVM);
 
-    /* Allocate the guest VM control structure (VMCS). */
-    int rc = hmR0VmxPageAllocZ(&pVmcsInfo->hMemObjVmcs, &pVmcsInfo->pvVmcs, &pVmcsInfo->HCPhysVmcs);
-    if (RT_SUCCESS(rc))
+    bool const fMsrBitmaps = RT_BOOL(pVM->hm.s.vmx.Msrs.ProcCtls.n.allowed1 & VMX_PROC_CTLS_USE_MSR_BITMAPS);
+    bool const fShadowVmcs = !fIsNstGstVmcs ? pVM->hm.s.vmx.fUseVmcsShadowing : pVM->cpum.ro.GuestFeatures.fVmxVmcsShadowing;
+    Assert(!pVM->cpum.ro.GuestFeatures.fVmxVmcsShadowing);  /* VMCS shadowing is not yet exposed to the guest. */
+    VMXPAGEALLOCINFO aAllocInfo[] = {
+        { true,        0 /* Unused */, &pVmcsInfo->HCPhysVmcs,         &pVmcsInfo->pvVmcs         },
+        { true,        0 /* Unused */, &pVmcsInfo->HCPhysGuestMsrLoad, &pVmcsInfo->pvGuestMsrLoad },
+        { true,        0 /* Unused */, &pVmcsInfo->HCPhysHostMsrLoad,  &pVmcsInfo->pvHostMsrLoad  },
+        { fMsrBitmaps, 0 /* Unused */, &pVmcsInfo->HCPhysMsrBitmap,    &pVmcsInfo->pvMsrBitmap    },
+        { fShadowVmcs, 0 /* Unused */, &pVmcsInfo->HCPhysShadowVmcs,   &pVmcsInfo->pvShadowVmcs   },
+    };
+
+    int rc = hmR0VmxPagesAllocZ(pVmcsInfo->hMemObj, &aAllocInfo[0], RT_ELEMENTS(aAllocInfo));
+    if (RT_FAILURE(rc))
+        return rc;
+
+    /*
+     * We use the same page for VM-entry MSR-load and VM-exit MSR store areas.
+     * Because they contain a symmetric list of guest MSRs to load on VM-entry and store on VM-exit.
+     */
+    AssertCompile(RT_ELEMENTS(aAllocInfo) > 0);
+    Assert(pVmcsInfo->HCPhysGuestMsrLoad != NIL_RTHCPHYS);
+    pVmcsInfo->pvGuestMsrStore     = pVmcsInfo->pvGuestMsrLoad;
+    pVmcsInfo->HCPhysGuestMsrStore = pVmcsInfo->HCPhysGuestMsrLoad;
+
+    /*
+     * Get the virtual-APIC page rather than allocating them again.
+     */
+    if (pVM->hm.s.vmx.Msrs.ProcCtls.n.allowed1 & VMX_PROC_CTLS_USE_TPR_SHADOW)
     {
         if (!fIsNstGstVmcs)
         {
-#ifdef VBOX_WITH_NESTED_HWVIRT_VMX
-            if (pVM->hm.s.vmx.fUseVmcsShadowing)
-                rc = hmR0VmxPageAllocZ(&pVmcsInfo->hMemObjShadowVmcs, &pVmcsInfo->pvShadowVmcs, &pVmcsInfo->HCPhysShadowVmcs);
-#endif
-            if (RT_SUCCESS(rc))
+            if (PDMHasApic(pVM))
             {
-                /* Get the allocated virtual-APIC page from the virtual APIC device. */
-                if (   PDMHasApic(pVCpu->CTX_SUFF(pVM))
-                    && (pVM->hm.s.vmx.Msrs.ProcCtls.n.allowed1 & VMX_PROC_CTLS_USE_TPR_SHADOW))
-                    rc = APICGetApicPageForCpu(pVCpu, &pVmcsInfo->HCPhysVirtApic, (PRTR0PTR)&pVmcsInfo->pbVirtApic, NULL /*pR3Ptr*/);
+                rc = APICGetApicPageForCpu(pVCpu, &pVmcsInfo->HCPhysVirtApic, (PRTR0PTR)&pVmcsInfo->pbVirtApic, NULL /*pR3Ptr*/);
+                if (RT_FAILURE(rc))
+                    return rc;
             }
         }
         else
-        {
-            /* We don't yet support exposing VMCS shadowing to the guest. */
-            Assert(pVmcsInfo->HCPhysShadowVmcs == NIL_RTHCPHYS);
-            Assert(!pVmcsInfo->pvShadowVmcs);
-
-            /* Get the allocated virtual-APIC page from CPUM. */
-            if (pVM->hm.s.vmx.Msrs.ProcCtls.n.allowed1 & VMX_PROC_CTLS_USE_TPR_SHADOW)
-            {
-                /** @todo NSTVMX: Get rid of this. There is no need to allocate a separate HC
-                 *        page for this. Use the one provided by the nested-guest directly. */
-                pVmcsInfo->pbVirtApic = (uint8_t *)CPUMGetGuestVmxVirtApicPage(pVCpu, &pVCpu->cpum.GstCtx,
-                                                                               &pVmcsInfo->HCPhysVirtApic);
-                Assert(pVmcsInfo->pbVirtApic);
-                Assert(pVmcsInfo->HCPhysVirtApic && pVmcsInfo->HCPhysVirtApic != NIL_RTHCPHYS);
-            }
-        }
-
-        if (RT_SUCCESS(rc))
-        {
-            /*
-             * Allocate the MSR-bitmap if supported by the CPU. The MSR-bitmap is for
-             * transparent accesses of specific MSRs.
-             *
-             * If the condition for enabling MSR bitmaps changes here, don't forget to
-             * update HMIsMsrBitmapActive().
-             *
-             * We don't share MSR bitmaps between the guest and nested-guest as we then
-             * don't need to care about carefully restoring the guest MSR bitmap.
-             * The guest visible nested-guest MSR bitmap needs to remain unchanged.
-             * Hence, allocate a separate MSR bitmap for the guest and nested-guest.
-             * We also don't need to re-initialize the nested-guest MSR bitmap here as
-             * we do that later while merging VMCS.
-             */
-            if (pVM->hm.s.vmx.Msrs.ProcCtls.n.allowed1 & VMX_PROC_CTLS_USE_MSR_BITMAPS)
-            {
-                rc = hmR0VmxPageAllocZ(&pVmcsInfo->hMemObjMsrBitmap, &pVmcsInfo->pvMsrBitmap, &pVmcsInfo->HCPhysMsrBitmap);
-                if (   RT_SUCCESS(rc)
-                    && !fIsNstGstVmcs)
-                    ASMMemFill32(pVmcsInfo->pvMsrBitmap, X86_PAGE_4K_SIZE, UINT32_C(0xffffffff));
-            }
-
-            if (RT_SUCCESS(rc))
-            {
-                /*
-                 * Allocate the VM-entry MSR-load area for the guest MSRs.
-                 *
-                 * Similar to MSR-bitmaps, we do not share the auto MSR-load/store are between
-                 * the guest and nested-guest.
-                 */
-                rc = hmR0VmxPageAllocZ(&pVmcsInfo->hMemObjGuestMsrLoad, &pVmcsInfo->pvGuestMsrLoad,
-                                       &pVmcsInfo->HCPhysGuestMsrLoad);
-                if (RT_SUCCESS(rc))
-                {
-                    /*
-                     * We use the same page for VM-entry MSR-load and VM-exit MSR store areas.
-                     * These contain the guest MSRs to load on VM-entry and store on VM-exit.
-                     */
-                    Assert(pVmcsInfo->hMemObjGuestMsrStore == NIL_RTR0MEMOBJ);
-                    pVmcsInfo->pvGuestMsrStore     = pVmcsInfo->pvGuestMsrLoad;
-                    pVmcsInfo->HCPhysGuestMsrStore = pVmcsInfo->HCPhysGuestMsrLoad;
-
-                    /* Allocate the VM-exit MSR-load page for the host MSRs. */
-                    rc = hmR0VmxPageAllocZ(&pVmcsInfo->hMemObjHostMsrLoad, &pVmcsInfo->pvHostMsrLoad,
-                                           &pVmcsInfo->HCPhysHostMsrLoad);
-                }
-            }
-        }
-    }
-
-    return rc;
+            pVmcsInfo->pbVirtApic = (uint8_t *)CPUMGetGuestVmxVirtApicPage(pVCpu, &pVCpu->cpum.GstCtx,
+                                                                           &pVmcsInfo->HCPhysVirtApic);
+        Assert(pVmcsInfo->pbVirtApic);
+        Assert(pVmcsInfo->HCPhysVirtApic && pVmcsInfo->HCPhysVirtApic != NIL_RTHCPHYS);
+    }
+
+    return VINF_SUCCESS;
 }
 
@@ -1896 +1879 @@
 static void hmR0VmxStructsFree(PVMCC pVM)
 {
-#ifdef VBOX_WITH_CRASHDUMP_MAGIC
-    hmR0VmxPageFree(&pVM->hm.s.vmx.hMemObjScratch, &pVM->hm.s.vmx.pbScratch, &pVM->hm.s.vmx.HCPhysScratch);
-#endif
-    hmR0VmxPageFree(&pVM->hm.s.vmx.hMemObjApicAccess, (PRTR0PTR)&pVM->hm.s.vmx.pbApicAccess, &pVM->hm.s.vmx.HCPhysApicAccess);
-
+    hmR0VmxPagesFree(pVM->hm.s.vmx.hMemObj);
 #ifdef VBOX_WITH_NESTED_HWVIRT_VMX
     if (pVM->hm.s.vmx.fUseVmcsShadowing)
@@ -1906 +1885 @@
         RTMemFree(pVM->hm.s.vmx.paShadowVmcsFields);
         RTMemFree(pVM->hm.s.vmx.paShadowVmcsRoFields);
-        hmR0VmxPageFree(&pVM->hm.s.vmx.hMemObjVmreadBitmap,  &pVM->hm.s.vmx.pvVmreadBitmap,  &pVM->hm.s.vmx.HCPhysVmreadBitmap);
-        hmR0VmxPageFree(&pVM->hm.s.vmx.hMemObjVmwriteBitmap, &pVM->hm.s.vmx.pvVmwriteBitmap, &pVM->hm.s.vmx.HCPhysVmwriteBitmap);
     }
 #endif
@@ -1914 +1891 @@
     {
         PVMCPUCC pVCpu = VMCC_GET_CPU(pVM, idCpu);
-        PVMXVMCSINFO pVmcsInfo = &pVCpu->hm.s.vmx.VmcsInfo;
-        hmR0VmxFreeVmcsInfo(pVM, pVmcsInfo);
+        hmR0VmxVmcsInfoFree(&pVCpu->hm.s.vmx.VmcsInfo);
 #ifdef VBOX_WITH_NESTED_HWVIRT_VMX
         if (pVM->cpum.ro.GuestFeatures.fVmx)
-        {
-            pVmcsInfo = &pVCpu->hm.s.vmx.VmcsInfoNstGst;
-            hmR0VmxFreeVmcsInfo(pVM, pVmcsInfo);
-        }
+            hmR0VmxVmcsInfoFree(&pVCpu->hm.s.vmx.VmcsInfoNstGst);
 #endif
     }
@@ -1932 +1905 @@
  * @returns IPRT status code.
  * @param   pVM     The cross context VM structure.
+ *
+ * @remarks This functions will cleanup on memory allocation failures.
  */
 static int hmR0VmxStructsAlloc(PVMCC pVM)
@@ -1951 +1926 @@
 
     /*
-     * Initialize/check members up-front so we can cleanup en masse on allocation failures.
-     */
+     * Allocate per-VM VT-x structures.
+     */
+    bool const fVirtApicAccess   = RT_BOOL(pVM->hm.s.vmx.Msrs.ProcCtls2.n.allowed1 & VMX_PROC_CTLS2_VIRT_APIC_ACCESS);
+    bool const fUseVmcsShadowing = pVM->hm.s.vmx.fUseVmcsShadowing;
+    VMXPAGEALLOCINFO aAllocInfo[] = {
+        { fVirtApicAccess,   0 /* Unused */, &pVM->hm.s.vmx.HCPhysApicAccess,    (PRTR0PTR)&pVM->hm.s.vmx.pbApicAccess },
+        { fUseVmcsShadowing, 0 /* Unused */, &pVM->hm.s.vmx.HCPhysVmreadBitmap,  &pVM->hm.s.vmx.pvVmreadBitmap         },
+        { fUseVmcsShadowing, 0 /* Unused */, &pVM->hm.s.vmx.HCPhysVmwriteBitmap, &pVM->hm.s.vmx.pvVmwriteBitmap        },
 #ifdef VBOX_WITH_CRASHDUMP_MAGIC
-    Assert(pVM->hm.s.vmx.hMemObjScratch == NIL_RTR0MEMOBJ);
-    Assert(pVM->hm.s.vmx.pbScratch == NULL);
-    pVM->hm.s.vmx.HCPhysScratch = NIL_RTHCPHYS;
+        { true,              0 /* Unused */, &pVM->hm.s.vmx.HCPhysScratch,       &(PRTR0PTR)pVM->hm.s.vmx.pbScratch    },
 #endif
-
-    Assert(pVM->hm.s.vmx.hMemObjApicAccess == NIL_RTR0MEMOBJ);
-    Assert(pVM->hm.s.vmx.pbApicAccess == NULL);
-    pVM->hm.s.vmx.HCPhysApicAccess = NIL_RTHCPHYS;
-
-    for (VMCPUID idCpu = 0; idCpu < pVM->cCpus; idCpu++)
-    {
-        PVMCPUCC pVCpu = VMCC_GET_CPU(pVM, idCpu);
-        hmR0VmxInitVmcsInfo(&pVCpu->hm.s.vmx.VmcsInfo);
-        hmR0VmxInitVmcsInfo(&pVCpu->hm.s.vmx.VmcsInfoNstGst);
-    }
-
-    /*
-     * Allocate per-VM VT-x structures.
-     */
-    int rc = VINF_SUCCESS;
-#ifdef VBOX_WITH_CRASHDUMP_MAGIC
-    /* Allocate crash-dump magic scratch page. */
-    rc = hmR0VmxPageAllocZ(&pVM->hm.s.vmx.hMemObjScratch, &pVM->hm.s.vmx.pbScratch, &pVM->hm.s.vmx.HCPhysScratch);
+    };
+
+    int rc = hmR0VmxPagesAllocZ(pVM->hm.s.vmx.hMemObj, &aAllocInfo[0], RT_ELEMENTS(aAllocInfo));
     if (RT_FAILURE(rc))
-    {
-        hmR0VmxStructsFree(pVM);
-        return rc;
-    }
-    strcpy((char *)pVM->hm.s.vmx.pbScratch, "SCRATCH Magic");
-    *(uint64_t *)(pVM->hm.s.vmx.pbScratch + 16) = UINT64_C(0xdeadbeefdeadbeef);
-#endif
-
-    /* Allocate the APIC-access page for trapping APIC accesses from the guest. */
-    if (pVM->hm.s.vmx.Msrs.ProcCtls2.n.allowed1 & VMX_PROC_CTLS2_VIRT_APIC_ACCESS)
-    {
-        rc = hmR0VmxPageAllocZ(&pVM->hm.s.vmx.hMemObjApicAccess, (PRTR0PTR)&pVM->hm.s.vmx.pbApicAccess,
-                               &pVM->hm.s.vmx.HCPhysApicAccess);
-        if (RT_FAILURE(rc))
-        {
-            hmR0VmxStructsFree(pVM);
-            return rc;
-        }
-    }
+        goto cleanup;
 
 #ifdef VBOX_WITH_NESTED_HWVIRT_VMX
-    /* Allocate the shadow VMCS fields array, VMREAD, VMWRITE bitmaps.. */
-    if (pVM->hm.s.vmx.fUseVmcsShadowing)
+    /* Allocate the shadow VMCS-fields array. */
+    if (fUseVmcsShadowing)
     {
         Assert(!pVM->hm.s.vmx.cShadowVmcsFields);
@@ -2008 +1953 @@
         if (RT_LIKELY(   pVM->hm.s.vmx.paShadowVmcsFields
                       && pVM->hm.s.vmx.paShadowVmcsRoFields))
-        {
-            rc = hmR0VmxPageAllocZ(&pVM->hm.s.vmx.hMemObjVmreadBitmap, &pVM->hm.s.vmx.pvVmreadBitmap,
-                                   &pVM->hm.s.vmx.HCPhysVmreadBitmap);
-            if (RT_SUCCESS(rc))
-            {
-                rc = hmR0VmxPageAllocZ(&pVM->hm.s.vmx.hMemObjVmwriteBitmap, &pVM->hm.s.vmx.pvVmwriteBitmap,
-                                       &pVM->hm.s.vmx.HCPhysVmwriteBitmap);
-            }
-        }
+        { /* likely */ }
         else
+        {
             rc = VERR_NO_MEMORY;
-
-        if (RT_FAILURE(rc))
-        {
-            hmR0VmxStructsFree(pVM);
-            return rc;
+            goto cleanup;
         }
     }
@@ -2029 +1963 @@
 
     /*
-     * Initialize per-VCPU VT-x structures.
+     * Allocate per-VCPU VT-x structures.
      */
     for (VMCPUID idCpu = 0; idCpu < pVM->cCpus; idCpu++)
@@ -2036 +1970 @@
         PVMCPUCC pVCpu = VMCC_GET_CPU(pVM, idCpu);
         rc = hmR0VmxAllocVmcsInfo(pVCpu, &pVCpu->hm.s.vmx.VmcsInfo, false /* fIsNstGstVmcs */);
-        if (RT_SUCCESS(rc))
-        {
+        if (RT_FAILURE(rc))
+            goto cleanup;
+
 #ifdef VBOX_WITH_NESTED_HWVIRT_VMX
-            /* Allocate the nested-guest VMCS structures, when the VMX feature is exposed to the guest. */
-            if (pVM->cpum.ro.GuestFeatures.fVmx)
-            {
-                rc = hmR0VmxAllocVmcsInfo(pVCpu, &pVCpu->hm.s.vmx.VmcsInfoNstGst, true /* fIsNstGstVmcs */);
-                if (RT_SUCCESS(rc))
-                { /* likely */ }
-                else
-                    break;
-            }
+        /* Allocate the nested-guest VMCS structures, when the VMX feature is exposed to the guest. */
+        if (pVM->cpum.ro.GuestFeatures.fVmx)
+        {
+            rc = hmR0VmxAllocVmcsInfo(pVCpu, &pVCpu->hm.s.vmx.VmcsInfoNstGst, true /* fIsNstGstVmcs */);
+            if (RT_FAILURE(rc))
+                goto cleanup;
+        }
 #endif
-        }
-        else
-            break;
-    }
-
-    if (RT_FAILURE(rc))
-    {
-        hmR0VmxStructsFree(pVM);
-        return rc;
     }
 
     return VINF_SUCCESS;
+
+cleanup:
+    hmR0VmxStructsFree(pVM);
+    Assert(rc != VINF_SUCCESS);
+    return rc;
+}
+
+
+/**
+ * Pre-initializes non-zero fields in VMX structures that will be allocated.
+ *
+ * @param   pVM     The cross context VM structure.
+ */
+static void hmR0VmxStructsInit(PVMCC pVM)
+{
+    /* Paranoia. */
+    Assert(pVM->hm.s.vmx.pbApicAccess == NULL);
+#ifdef VBOX_WITH_CRASHDUMP_MAGIC
+    Assert(pVM->hm.s.vmx.pbScratch == NULL);
+#endif
+
+    /*
+     * Initialize members up-front so we can cleanup en masse on allocation failures.
+     */
+#ifdef VBOX_WITH_CRASHDUMP_MAGIC
+    pVM->hm.s.vmx.HCPhysScratch = NIL_RTHCPHYS;
+#endif
+    pVM->hm.s.vmx.HCPhysApicAccess    = NIL_RTHCPHYS;
+    pVM->hm.s.vmx.HCPhysVmreadBitmap  = NIL_RTHCPHYS;
+    pVM->hm.s.vmx.HCPhysVmwriteBitmap = NIL_RTHCPHYS;
+    for (VMCPUID idCpu = 0; idCpu < pVM->cCpus; idCpu++)
+    {
+        PVMCPUCC pVCpu = VMCC_GET_CPU(pVM, idCpu);
+        hmR0VmxVmcsInfoInit(&pVCpu->hm.s.vmx.VmcsInfo);
+        hmR0VmxVmcsInfoInit(&pVCpu->hm.s.vmx.VmcsInfoNstGst);
+    }
 }
 
@@ -3381 +3341 @@
              * However, if the guest can write to all fields (including read-only fields),
              * we treat it a as read/write field. Otherwise, writing to these fields would
-             * cause a VMWRITE instruction error while syncing the shadow VMCS .
+             * cause a VMWRITE instruction error while syncing the shadow VMCS.
              */
             if (   fGstVmwriteAll
@@ -3406 +3366 @@
 {
     /*
-     * By default, ensure guest attempts to acceses to any VMCS fields cause VM-exits.
+     * By default, ensure guest attempts to access any VMCS fields cause VM-exits.
      */
     uint32_t const cbBitmap        = X86_PAGE_4K_SIZE;
@@ -3565 +3525 @@
 {
     Assert(pVmcsInfo->u32ProcCtls & VMX_PROC_CTLS_USE_MSR_BITMAPS);
+
+    /*
+     * By default, ensure guest attempts to access any MSR cause VM-exits.
+     * This shall later be relaxed for specific MSRs as necessary.
+     *
+     * Note: For nested-guests, the entire bitmap will be merged prior to
+     * executing the nested-guest using hardware-assisted VMX and hence there
+     * is no need to perform this operation. See hmR0VmxMergeMsrBitmapNested.
+     */
+    Assert(pVmcsInfo->pvMsrBitmap);
+    ASMMemFill32(pVmcsInfo->pvMsrBitmap, X86_PAGE_4K_SIZE, UINT32_C(0xffffffff));
 
     /*
@@ -4193 +4164 @@
     LogFlowFunc(("pVM=%p\n", pVM));
 
+    hmR0VmxStructsInit(pVM);
     int rc = hmR0VmxStructsAlloc(pVM);
     if (RT_FAILURE(rc))
@@ -4200 +4172 @@
     }
 
+    /* Setup the crash dump page. */
+#ifdef VBOX_WITH_CRASHDUMP_MAGIC
+    strcpy((char *)pVM->hm.s.vmx.pbScratch, "SCRATCH Magic");
+    *(uint64_t *)(pVM->hm.s.vmx.pbScratch + 16) = UINT64_C(0xdeadbeefdeadbeef);
+#endif
     return VINF_SUCCESS;
 }

trunk/src/VBox/VMM/include/HMInternal.h

@@ -448 +448 @@
 typedef struct HM
 {
+    /** Set if nested paging is enabled. */
+    bool                        fNestedPaging;
     /** Set when we've initialized VMX or SVM. */
     bool                        fInitialized;
-    /** Set if nested paging is enabled. */
-    bool                        fNestedPaging;
     /** Set if nested paging is allowed. */
     bool                        fAllowNestedPaging;
@@ -525 +525 @@
         uint8_t                     cPreemptTimerShift;
 
-        /** Virtual address of the TSS page used for real mode emulation. */
-        R3PTRTYPE(PVBOXTSS)         pRealModeTSS;
-        /** Virtual address of the identity page table used for real mode and protected
-         *  mode without paging emulation in EPT mode. */
-        R3PTRTYPE(PX86PD)           pNonPagingModeEPTPageTable;
-
-        /** Physical address of the APIC-access page. */
-        RTHCPHYS                    HCPhysApicAccess;
-        /** R0 memory object for the APIC-access page. */
-        RTR0MEMOBJ                  hMemObjApicAccess;
         /** Virtual address of the APIC-access page. */
         R0PTRTYPE(uint8_t *)        pbApicAccess;
-
-        /** Physical address of the VMREAD bitmap. */
-        RTHCPHYS                    HCPhysVmreadBitmap;
-        /** Ring-0 memory object for the VMREAD bitmap. */
-        RTR0MEMOBJ                  hMemObjVmreadBitmap;
         /** Pointer to the VMREAD bitmap. */
         R0PTRTYPE(void *)           pvVmreadBitmap;
-
-        /** Physical address of the VMWRITE bitmap. */
-        RTHCPHYS                    HCPhysVmwriteBitmap;
-        /** Ring-0 memory object for the VMWRITE bitmap. */
-        RTR0MEMOBJ                  hMemObjVmwriteBitmap;
         /** Pointer to the VMWRITE bitmap. */
         R0PTRTYPE(void *)           pvVmwriteBitmap;
 
-#ifdef VBOX_WITH_CRASHDUMP_MAGIC
-        /** Physical address of the crash-dump scratch area. */
-        RTHCPHYS                    HCPhysScratch;
-        /** Ring-0 memory object for the crash-dump scratch area. */
-        RTR0MEMOBJ                  hMemObjScratch;
-        /** Pointer to the crash-dump scratch bitmap. */
-        R0PTRTYPE(uint8_t *)        pbScratch;
-#endif
+        /** Pointer to the shadow VMCS read-only fields array. */
+        R0PTRTYPE(uint32_t *)       paShadowVmcsRoFields;
+        /** Pointer to the shadow VMCS read/write fields array. */
+        R0PTRTYPE(uint32_t *)       paShadowVmcsFields;
+        /** Number of elements in the shadow VMCS read-only fields array. */
+        uint32_t                    cShadowVmcsRoFields;
+        /** Number of elements in the shadow VMCS read-write fields array. */
+        uint32_t                    cShadowVmcsFields;
 
         /** Tagged-TLB flush type. */
@@ -591 +571 @@
         /** Host-physical address for a failing VMXON instruction. */
         RTHCPHYS                    HCPhysVmxEnableError;
-
-        /** Pointer to the shadow VMCS read-only fields array. */
-        R0PTRTYPE(uint32_t *)       paShadowVmcsRoFields;
-        /** Pointer to the shadow VMCS read/write fields array. */
-        R0PTRTYPE(uint32_t *)       paShadowVmcsFields;
-        /** Number of elements in the shadow VMCS read-only fields array. */
-        uint32_t                    cShadowVmcsRoFields;
-        /** Number of elements in the shadow VMCS read-write fields array. */
-        uint32_t                    cShadowVmcsFields;
+        /** Host-physical address of the APIC-access page. */
+        RTHCPHYS                    HCPhysApicAccess;
+        /** Host-physical address of the VMREAD bitmap. */
+        RTHCPHYS                    HCPhysVmreadBitmap;
+        /** Host-physical address of the VMWRITE bitmap. */
+        RTHCPHYS                    HCPhysVmwriteBitmap;
+#ifdef VBOX_WITH_CRASHDUMP_MAGIC
+        /** Host-physical address of the crash-dump scratch area. */
+        RTHCPHYS                    HCPhysScratch;
+#endif
+
+#ifdef VBOX_WITH_CRASHDUMP_MAGIC
+        /** Pointer to the crash-dump scratch bitmap. */
+        R0PTRTYPE(uint8_t *)        pbScratch;
+#endif
+        /** Virtual address of the TSS page used for real mode emulation. */
+        R3PTRTYPE(PVBOXTSS)         pRealModeTSS;
+        /** Virtual address of the identity page table used for real mode and protected
+         *  mode without paging emulation in EPT mode. */
+        R3PTRTYPE(PX86PD)           pNonPagingModeEPTPageTable;
+
+        /** Ring-0 memory object for per-VM VMX structures. */
+        RTR0MEMOBJ                  hMemObj;
     } vmx;
 
@@ -664 +658 @@
 /** Pointer to HM VM instance data. */
 typedef HM *PHM;
-
 AssertCompileMemberAlignment(HM, StatTprPatchSuccess, 8);
+AssertCompileMemberAlignment(HM, vmx,                 8);
+AssertCompileMemberAlignment(HM, svm,                 8);
+
 
 /**
@@ -692 +688 @@
  * guest (or nested-guest) VMCS (VM control structure) using hardware-assisted VMX.
  *
- * The members here are ordered and aligned based on estimated frequency of usage
- * and grouped to fit within a cache line in hot code paths.
+ * Note! The members here are ordered and aligned based on estimated frequency of
+ * usage and grouped to fit within a cache line in hot code paths. Even subtle
+ * changes here have a noticeable effect in the bootsector benchmarks. Modify with
+ * care.
  */
 typedef struct VMXVMCSINFO
@@ -807 +805 @@
     /** @} */
 
-    /** @name R0-memory objects address of VMCS and related data structures.
+    /** @name R0-memory objects address for VMCS and related data structures.
      *  @{ */
-    /** The VMCS. */
-    RTR0MEMOBJ                  hMemObjVmcs;
-    /** R0 memory object for the shadow VMCS. */
-    RTR0MEMOBJ                  hMemObjShadowVmcs;
-    /** R0 memory object for the MSR bitmap. */
-    RTR0MEMOBJ                  hMemObjMsrBitmap;
-    /** R0 memory object of the VM-entry MSR-load area. */
-    RTR0MEMOBJ                  hMemObjGuestMsrLoad;
-    /** R0 memory object of the VM-exit MSR-store area. */
-    RTR0MEMOBJ                  hMemObjGuestMsrStore;
-    /** R0 memory object for the VM-exit MSR-load area. */
-    RTR0MEMOBJ                  hMemObjHostMsrLoad;
+    /** R0-memory object for VMCS and related data structures. */
+    RTR0MEMOBJ                  hMemObj;
     /** @} */
 
@@ -831 +819 @@
 typedef const VMXVMCSINFO *PCVMXVMCSINFO;
 AssertCompileSizeAlignment(VMXVMCSINFO, 8);
-AssertCompileMemberAlignment(VMXVMCSINFO, pfnStartVM, 8);
-AssertCompileMemberAlignment(VMXVMCSINFO, u32PinCtls, 4);
-AssertCompileMemberAlignment(VMXVMCSINFO, u64VmcsLinkPtr, 8);
-AssertCompileMemberAlignment(VMXVMCSINFO, pvVmcs, 8);
-AssertCompileMemberAlignment(VMXVMCSINFO, HCPhysVmcs, 8);
-AssertCompileMemberAlignment(VMXVMCSINFO, hMemObjVmcs, 8);
+AssertCompileMemberAlignment(VMXVMCSINFO, pfnStartVM,      8);
+AssertCompileMemberAlignment(VMXVMCSINFO, u32PinCtls,      4);
+AssertCompileMemberAlignment(VMXVMCSINFO, u64VmcsLinkPtr,  8);
+AssertCompileMemberAlignment(VMXVMCSINFO, pvVmcs,          8);
+AssertCompileMemberAlignment(VMXVMCSINFO, pvShadowVmcs,    8);
+AssertCompileMemberAlignment(VMXVMCSINFO, pbVirtApic,      8);
+AssertCompileMemberAlignment(VMXVMCSINFO, pvMsrBitmap,     8);
+AssertCompileMemberAlignment(VMXVMCSINFO, pvGuestMsrLoad,  8);
+AssertCompileMemberAlignment(VMXVMCSINFO, pvGuestMsrStore, 8);
+AssertCompileMemberAlignment(VMXVMCSINFO, pvHostMsrLoad,   8);
+AssertCompileMemberAlignment(VMXVMCSINFO, HCPhysVmcs,      8);
+AssertCompileMemberAlignment(VMXVMCSINFO, hMemObj,         8);
 
 /**
@@ -843 +837 @@
  * Note! If you change members of this struct, make sure to check if the
  * assembly counterpart in HMInternal.mac needs to be updated as well.
+ *
+ * Note! The members here are ordered and aligned based on estimated frequency of
+ * usage and grouped to fit within a cache line in hot code paths. Even subtle
+ * changes here have a noticeable effect in the bootsector benchmarks. Modify with
+ * care.
  */
 typedef struct HMCPU
@@ -848 +847 @@
     /** Set when the TLB has been checked until we return from the world switch. */
     bool volatile               fCheckedTLBFlush;
-    /** Set if we need to flush the TLB during the world switch. */
-    bool                        fForceTLBFlush;
     /** Set when we're using VT-x or AMD-V at that moment. */
     bool                        fActive;
@@ -856 +853 @@
     /** Whether we're using the hyper DR7 or guest DR7. */
     bool                        fUsingHyperDR7;
-    /** Set if XCR0 needs to be saved/restored when entering/exiting guest code
-     *  execution. */
-    bool                        fLoadSaveGuestXcr0;
-
+
+    /** Set if we need to flush the TLB during the world switch. */
+    bool                        fForceTLBFlush;
     /** Whether we should use the debug loop because of single stepping or special
      *  debug breakpoints / events are armed. */
@@ -868 +864 @@
     /** Set if we using the debug loop and wish to intercept RDTSC. */
     bool                        fDebugWantRdTscExit;
-    /** Whether we're executing a single instruction. */
-    bool                        fSingleInstruction;
-    /** Set if we need to clear the trap flag because of single stepping. */
-    bool                        fClearTrapFlag;
-
+
+    /** Set if XCR0 needs to be saved/restored when entering/exiting guest code
+     *  execution. */
+    bool                        fLoadSaveGuestXcr0;
     /** Whether \#UD needs to be intercepted (required by certain GIM providers). */
     bool                        fGIMTrapXcptUD;
     /** Whether \#GP needs to be intercept for mesa driver workaround. */
     bool                        fTrapXcptGpForLovelyMesaDrv;
-    uint8_t                     u8Alignment0[3];
+    /** Whether we're executing a single instruction. */
+    bool                        fSingleInstruction;
+
+    /** Set if we need to clear the trap flag because of single stepping. */
+    bool                        fClearTrapFlag;
+    bool                        afAlignment0[3];
 
     /** World switch exit counter. */
@@ -1005 +1005 @@
     HMEVENT                 Event;
 
+    /** The CPU ID of the CPU currently owning the VMCS. Set in
+     * HMR0Enter and cleared in HMR0Leave. */
+    RTCPUID                 idEnteredCpu;
+
+    /** Current shadow paging mode for updating CR4. */
+    PGMMODE                 enmShadowMode;
+
     /** The PAE PDPEs used with Nested Paging (only valid when
      *  VMCPU_FF_HM_UPDATE_PAE_PDPES is set). */
     X86PDPE                 aPdpes[4];
-
-    /** Current shadow paging mode for updating CR4. */
-    PGMMODE                 enmShadowMode;
-
-    /** The CPU ID of the CPU currently owning the VMCS. Set in
-     * HMR0Enter and cleared in HMR0Leave. */
-    RTCPUID                 idEnteredCpu;
 
     /** For saving stack space, the disassembler state is allocated here instead of
@@ -1166 +1166 @@
 /** Pointer to HM VMCPU instance data. */
 typedef HMCPU *PHMCPU;
+AssertCompileMemberAlignment(HMCPU, fCheckedTLBFlush,  4);
+AssertCompileMemberAlignment(HMCPU, fForceTLBFlush,    4);
 AssertCompileMemberAlignment(HMCPU, cWorldSwitchExits, 4);
-AssertCompileMemberAlignment(HMCPU, fCtxChanged, 8);
+AssertCompileMemberAlignment(HMCPU, fCtxChanged,       8);
 AssertCompileMemberAlignment(HMCPU, HM_UNION_NM(u.) vmx, 8);
+AssertCompileMemberAlignment(HMCPU, HM_UNION_NM(u.) vmx.VmcsInfo,       8);
+AssertCompileMemberAlignment(HMCPU, HM_UNION_NM(u.) vmx.VmcsInfoNstGst, 8);
+AssertCompileMemberAlignment(HMCPU, HM_UNION_NM(u.) vmx.RestoreHost,    8);
 AssertCompileMemberAlignment(HMCPU, HM_UNION_NM(u.) svm, 8);
 AssertCompileMemberAlignment(HMCPU, Event, 8);

trunk/src/VBox/VMM/include/HMInternal.mac

@@ -17 +17 @@
 
 struc HMCPU
-    .fCheckedTLBFlush       resb    1
-    .fForceTLBFlush         resb    1
-    .fActive                resb    1
-    .fLeaveDone             resb    1
-    .fUsingHyperDR7         resb    1
-    .fLoadSaveGuestXcr0     resb    1
+    .fCheckedTLBFlush               resb    1
+    .fActive                        resb    1
+    .fLeaveDone                     resb    1
+    .fUsingHyperDR7                 resb    1
+    .fForceTLBFlush                 resb    1
+    .fUseDebugLoop                  resb    1
+    .fUsingDebugLoop                resb    1
+    .fDebugWantRdTscExit            resb    1
 
-    .fUseDebugLoop          resb    1
-    .fUsingDebugLoop        resb    1
-    .fDebugWantRdTscExit    resb    1
-    .fSingleInstruction     resb    1
-    .fClearTrapFlag         resb    1
-
-    .fGIMTrapXcptUD         resb    1
-    .fTrapXcptGpForLovelyMesaDrv resb 1
+    .fLoadSaveGuestXcr0             resb    1
+    .fGIMTrapXcptUD                 resb    1
+    .fTrapXcptGpForLovelyMesaDrv    resb    1
+    .fSingleInstruction             resb    1
+    .fClearTrapFlag                 resb    1
     alignb 8
 
-    .cWorldSwitchExits      resd    1
-    .idLastCpu              resd    1
-    .cTlbFlushes            resd    1
-    .uCurrentAsid           resd    1
-    .u32HMError             resd    1
-    alignb 8
-    .fCtxChanged            resq    1
+    .cWorldSwitchExits              resd    1
+    .idLastCpu                      resd    1
+    .cTlbFlushes                    resd    1
+    .uCurrentAsid                   resd    1
+    .u32HMError                     resd    1
+    .rcLastExitToR3                 resd    1
+    .fCtxChanged                    resq    1
 
     ; incomplete to save unnecessary pain...