Changeset 87330 in vbox

Timestamp:

Jan 20, 2021 7:02:24 PM (4 years ago)

Author:

vboxsync

Message:

VMM/HMR0A.asm: Reduced the number of parameters passed to SVMR0VMRun. Required extending HMInternal.mac quite a bit.

Location:

trunk

Files:

• include/VBox/vmm/vm.mac (modified) (1 diff)
• src/VBox/VMM/VMMR0/HMR0A.asm (modified) (14 diffs)
• src/VBox/VMM/VMMR0/HMSVMR0.cpp (modified) (2 diffs)
• src/VBox/VMM/VMMR0/HMSVMR0.h (modified) (1 diff)
• src/VBox/VMM/include/HMInternal.h (modified) (6 diffs)
• src/VBox/VMM/include/HMInternal.mac (modified) (2 diffs)
• src/VBox/VMM/testcase/tstAsmStructs.cpp (modified) (2 diffs)
• src/VBox/VMM/testcase/tstAsmStructsAsm.asm (modified) (1 diff)

trunk/include/VBox/vmm/vm.mac

@@ -82 +82 @@
     alignb 4096
     .cpum                   resb 4096
+%define VMCPU.cpum.GstCtx   VMCPU.cpum
     alignb 4096
     .em                     resb 40960

trunk/src/VBox/VMM/VMMR0/HMR0A.asm

@@ -192 +192 @@
 ; @param    1   How to address CPUMCTX.
 ; @param    2   Which flag to test for (CPUMCTX_WSF_IBPB_ENTRY or CPUMCTX_WSF_IBPB_EXIT)
+%macro INDIRECT_BRANCH_PREDICTION_BARRIER_OLD 2
+    test    byte [%1 + CPUMCTX.fWorldSwitcher], %2
+    jz      %%no_indirect_branch_barrier
+    mov     ecx, MSR_IA32_PRED_CMD
+    mov     eax, MSR_IA32_PRED_CMD_F_IBPB
+    xor     edx, edx
+    wrmsr
+%%no_indirect_branch_barrier:
+%endmacro
+
+;;
+; Creates an indirect branch prediction barrier on CPUs that need and supports that.
+; @clobbers eax, edx, ecx
+; @param    1   How to address VMCPU.
+; @param    2   Which flag to test for (CPUMCTX_WSF_IBPB_ENTRY or CPUMCTX_WSF_IBPB_EXIT)
 %macro INDIRECT_BRANCH_PREDICTION_BARRIER 2
-    test    byte [%1 + CPUMCTX.fWorldSwitcher], %2
+    test    byte [%1 + VMCPU.cpum.GstCtx + CPUMCTX.fWorldSwitcher], %2
     jz      %%no_indirect_branch_barrier
     mov     ecx, MSR_IA32_PRED_CMD
@@ -575 +590 @@
 ; load the guest ones when necessary.
 ;
-; @cproto       DECLASM(int) hmR0SVMRunWrapXMM(RTHCPHYS HCPhysVmcbHost, RTHCPHYS HCPhysVmcb, PCPUMCTX pCtx, PVM pVM, PVMCPU pVCpu,
-;                                              PFNHMSVMVMRUN pfnVMRun);
+; @cproto       DECLASM(int) hmR0SVMRunWrapXMM(PVM pVM, PVMCPU pVCpu, RTHCPHYS HCPhysVmcb, PFNHMSVMVMRUN pfnVMRun);
 ;
 ; @returns      eax
 ;
-; @param        HCPhysVmcbHost  msc:rcx
-; @param        HCPhysVmcb      msc:rdx
-; @param        pCtx            msc:r8
-; @param        pVM             msc:r9
-; @param        pVCpu           msc:[rbp+30h]   The cross context virtual CPU structure of the calling EMT.
-; @param        pfnVMRun        msc:[rbp+38h]
+; @param        pVM             msc:rcx
+; @param        pVCpu           msc:rdx        The cross context virtual CPU structure of the calling EMT.
+; @param        HCPhysVmcb      msc:r8
+; @param        pfnVMRun        msc:r9
 ;
 ; @remarks      This is essentially the same code as hmR0VMXStartVMWrapXMM, only the parameters differ a little bit.
@@ -596 +608 @@
 ;
 ; ASSUMING 64-bit and windows for now.
-ALIGNCODE(16)
+ALIGNCODE(64)
 BEGINPROC hmR0SVMRunWrapXMM
         push    xBP
@@ -602 +614 @@
         sub     xSP, 0b0h + 040h        ; don't bother optimizing the frame size
 
+%ifndef ASM_CALL64_MSC
+ %error "MSC only"
+%endif
         ; Spill input parameters.
-        mov     [xBP + 010h], rcx       ; HCPhysVmcbHost
-        mov     [xBP + 018h], rdx       ; HCPhysVmcb
-        mov     [xBP + 020h], r8        ; pCtx
-        mov     [xBP + 028h], r9        ; pVM
+        mov     [xBP + 010h], rcx       ; pVM
+        mov     [xBP + 018h], rdx       ; pVCpu
+        mov     [xBP + 020h], r8        ; HCPhysVmcb
+        mov     [xBP + 028h], r9        ; pfnVMRun
 
         ; Ask CPUM whether we've started using the FPU yet.
-        mov     rcx, [xBP + 30h]        ; pVCpu
+;; @todo implement this in assembly, it's just checking a couple of things. Or have the C code do it.
+        mov     rcx, rdx                ; pVCpu
         call    NAME(CPUMIsGuestFPUStateActive)
         test    al, al
+
+        mov     rcx, [xBP + 010h]       ; pVM
+        mov     rdx, [xBP + 018h]       ; pVCpu
+        mov     r8,  [xBP + 020h]       ; HCPhysVmcb
+        mov     r9,  [xBP + 028h]       ; pfnVMRun
+
         jnz     .guest_fpu_state_active
 
         ; No need to mess with XMM registers just call the start routine and return.
-        mov     r11, [xBP + 38h]        ; pfnVMRun
-        mov     r10, [xBP + 30h]        ; pVCpu
-        mov     [xSP + 020h], r10
-        mov     rcx, [xBP + 010h]       ; HCPhysVmcbHost
-        mov     rdx, [xBP + 018h]       ; HCPhysVmcb
-        mov     r8,  [xBP + 020h]       ; pCtx
-        mov     r9,  [xBP + 028h]       ; pVM
-        call    r11
+        call    r9
 
         leave
@@ -630 +645 @@
 .guest_fpu_state_active:
         ; Save the non-volatile host XMM registers.
+;; @todo change to rbp relative addressing as that saves a byte per instruction!
         movdqa  [rsp + 040h + 000h], xmm6
         movdqa  [rsp + 040h + 010h], xmm7
@@ -642 +658 @@
         stmxcsr [rsp + 040h + 0a0h]
 
-        mov     r10, [xBP + 020h]       ; pCtx
-        mov     eax, [r10 + CPUMCTX.fXStateMask]
+        mov     r11, rdx                ; r11 = pVCpu (rdx may get trashed)
+        mov     eax, [rdx + VMCPU.cpum.GstCtx + CPUMCTX.fXStateMask]
         test    eax, eax
         jz      .guest_fpu_state_manually
@@ -652 +668 @@
         and     eax, CPUM_VOLATILE_XSAVE_GUEST_COMPONENTS
         xor     edx, edx
-        mov     r10, [r10 + CPUMCTX.pXStateR0]
+        mov     r10, [r11 + VMCPU.cpum.GstCtx + CPUMCTX.pXStateR0]
         xrstor  [r10]
 
         ; Make the call (same as in the other case).
-        mov     r11, [xBP + 38h]        ; pfnVMRun
-        mov     r10, [xBP + 30h]        ; pVCpu
-        mov     [xSP + 020h], r10
-        mov     rcx, [xBP + 010h]       ; HCPhysVmcbHost
-        mov     rdx, [xBP + 018h]       ; HCPhysVmcb
-        mov     r8,  [xBP + 020h]       ; pCtx
-        mov     r9,  [xBP + 028h]       ; pVM
-        call    r11
-
-        mov     r11d, eax               ; save return value (xsave below uses eax)
+        mov     rdx, r11                ; restore pVCpu to rdx
+        call    r9
+
+        mov     r10d, eax               ; save return value (xsave below uses eax)
 
         ; Save the guest XMM registers.
-        mov     r10, [xBP + 020h]       ; pCtx
-        mov     eax, [r10 + CPUMCTX.fXStateMask]
+        mov     rcx, [xBP + 018h]       ; pVCpu
+        mov     eax, [rcx + VMCPU.cpum.GstCtx + CPUMCTX.fXStateMask]
         and     eax, CPUM_VOLATILE_XSAVE_GUEST_COMPONENTS
+        mov     rcx, [rcx + VMCPU.cpum.GstCtx + CPUMCTX.pXStateR0]
         xor     edx, edx
-        mov     r10, [r10 + CPUMCTX.pXStateR0]
-        xsave  [r10]
-
-        mov     eax, r11d               ; restore return value
+        xsave   [rcx]
+
+        mov     eax, r10d               ; restore return value
 
 .restore_non_volatile_host_xmm_regs:
         ; Load the non-volatile host XMM registers.
+;; @todo change to rbp relative addressing as that saves a byte per instruction!
         movdqa  xmm6,  [rsp + 040h + 000h]
         movdqa  xmm7,  [rsp + 040h + 010h]
@@ -696 +707 @@
         ; No XSAVE, load and save the guest XMM registers manually.
         ;
+ALIGNCODE(8)
 .guest_fpu_state_manually:
         ; Load the full guest XMM register state.
-        mov     r10, [r10 + CPUMCTX.pXStateR0]
-        movdqa  xmm0,  [r10 + XMM_OFF_IN_X86FXSTATE + 000h]
-        movdqa  xmm1,  [r10 + XMM_OFF_IN_X86FXSTATE + 010h]
-        movdqa  xmm2,  [r10 + XMM_OFF_IN_X86FXSTATE + 020h]
-        movdqa  xmm3,  [r10 + XMM_OFF_IN_X86FXSTATE + 030h]
-        movdqa  xmm4,  [r10 + XMM_OFF_IN_X86FXSTATE + 040h]
-        movdqa  xmm5,  [r10 + XMM_OFF_IN_X86FXSTATE + 050h]
-        movdqa  xmm6,  [r10 + XMM_OFF_IN_X86FXSTATE + 060h]
-        movdqa  xmm7,  [r10 + XMM_OFF_IN_X86FXSTATE + 070h]
-        movdqa  xmm8,  [r10 + XMM_OFF_IN_X86FXSTATE + 080h]
-        movdqa  xmm9,  [r10 + XMM_OFF_IN_X86FXSTATE + 090h]
-        movdqa  xmm10, [r10 + XMM_OFF_IN_X86FXSTATE + 0a0h]
-        movdqa  xmm11, [r10 + XMM_OFF_IN_X86FXSTATE + 0b0h]
-        movdqa  xmm12, [r10 + XMM_OFF_IN_X86FXSTATE + 0c0h]
-        movdqa  xmm13, [r10 + XMM_OFF_IN_X86FXSTATE + 0d0h]
-        movdqa  xmm14, [r10 + XMM_OFF_IN_X86FXSTATE + 0e0h]
-        movdqa  xmm15, [r10 + XMM_OFF_IN_X86FXSTATE + 0f0h]
-        ldmxcsr        [r10 + X86FXSTATE.MXCSR]
+        mov     rdx, [r11 + VMCPU.cpum.GstCtx + CPUMCTX.pXStateR0]
+        movdqa  xmm0,  [rdx + XMM_OFF_IN_X86FXSTATE + 000h]
+        movdqa  xmm1,  [rdx + XMM_OFF_IN_X86FXSTATE + 010h]
+        movdqa  xmm2,  [rdx + XMM_OFF_IN_X86FXSTATE + 020h]
+        movdqa  xmm3,  [rdx + XMM_OFF_IN_X86FXSTATE + 030h]
+        movdqa  xmm4,  [rdx + XMM_OFF_IN_X86FXSTATE + 040h]
+        movdqa  xmm5,  [rdx + XMM_OFF_IN_X86FXSTATE + 050h]
+        movdqa  xmm6,  [rdx + XMM_OFF_IN_X86FXSTATE + 060h]
+        movdqa  xmm7,  [rdx + XMM_OFF_IN_X86FXSTATE + 070h]
+        movdqa  xmm8,  [rdx + XMM_OFF_IN_X86FXSTATE + 080h]
+        movdqa  xmm9,  [rdx + XMM_OFF_IN_X86FXSTATE + 090h]
+        movdqa  xmm10, [rdx + XMM_OFF_IN_X86FXSTATE + 0a0h]
+        movdqa  xmm11, [rdx + XMM_OFF_IN_X86FXSTATE + 0b0h]
+        movdqa  xmm12, [rdx + XMM_OFF_IN_X86FXSTATE + 0c0h]
+        movdqa  xmm13, [rdx + XMM_OFF_IN_X86FXSTATE + 0d0h]
+        movdqa  xmm14, [rdx + XMM_OFF_IN_X86FXSTATE + 0e0h]
+        movdqa  xmm15, [rdx + XMM_OFF_IN_X86FXSTATE + 0f0h]
+        ldmxcsr        [rdx + X86FXSTATE.MXCSR]
 
         ; Make the call (same as in the other case).
-        mov     r11, [xBP + 38h]        ; pfnVMRun
-        mov     r10, [xBP + 30h]        ; pVCpu
-        mov     [xSP + 020h], r10
-        mov     rcx, [xBP + 010h]       ; HCPhysVmcbHost
-        mov     rdx, [xBP + 018h]       ; HCPhysVmcb
-        mov     r8,  [xBP + 020h]       ; pCtx
-        mov     r9,  [xBP + 028h]       ; pVM
-        call    r11
+        mov     rdx, r11                ; restore pVCpu to rdx
+        call    r9
 
         ; Save the guest XMM registers.
-        mov     r10, [xBP + 020h]       ; pCtx
-        mov     r10, [r10 + CPUMCTX.pXStateR0]
-        stmxcsr [r10 + X86FXSTATE.MXCSR]
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 000h], xmm0
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 010h], xmm1
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 020h], xmm2
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 030h], xmm3
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 040h], xmm4
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 050h], xmm5
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 060h], xmm6
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 070h], xmm7
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 080h], xmm8
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 090h], xmm9
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 0a0h], xmm10
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 0b0h], xmm11
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 0c0h], xmm12
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 0d0h], xmm13
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 0e0h], xmm14
-        movdqa  [r10 + XMM_OFF_IN_X86FXSTATE + 0f0h], xmm15
+        mov     rdx, [xBP + 018h]       ; pVCpu
+        mov     rdx, [rdx + VMCPU.cpum.GstCtx + CPUMCTX.pXStateR0]
+        stmxcsr [rdx + X86FXSTATE.MXCSR]
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 000h], xmm0
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 010h], xmm1
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 020h], xmm2
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 030h], xmm3
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 040h], xmm4
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 050h], xmm5
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 060h], xmm6
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 070h], xmm7
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 080h], xmm8
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 090h], xmm9
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 0a0h], xmm10
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 0b0h], xmm11
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 0c0h], xmm12
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 0d0h], xmm13
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 0e0h], xmm14
+        movdqa  [rdx + XMM_OFF_IN_X86FXSTATE + 0f0h], xmm15
         jmp     .restore_non_volatile_host_xmm_regs
 ENDPROC   hmR0SVMRunWrapXMM
@@ -810 +816 @@
 
     ; Fight spectre.
-    INDIRECT_BRANCH_PREDICTION_BARRIER xDI, CPUMCTX_WSF_IBPB_EXIT
+    INDIRECT_BRANCH_PREDICTION_BARRIER_OLD xDI, CPUMCTX_WSF_IBPB_EXIT
 
  %ifndef VMX_SKIP_TR
@@ -1040 +1046 @@
 ;
 ; @returns  VBox status code
-; @param    HCPhysVmcbHost  msc:rcx,gcc:rdi     Physical address of host VMCB.
-; @param    HCPhysVmcb      msc:rdx,gcc:rsi     Physical address of guest VMCB.
-; @param    pCtx            msc:r8,gcc:rdx      Pointer to the guest-CPU context.
-; @param    pVM             msc:r9,gcc:rcx      The cross context VM structure.
-; @param    pVCpu           msc:[rsp+28],gcc:r8 The cross context virtual CPU structure of the calling EMT.
-;
-ALIGNCODE(16)
+; @param    pVM             msc:rcx,gcc:rdi     The cross context VM structure (unused).
+; @param    pVCpu           msc:rdx,gcc:rsi     The cross context virtual CPU structure of the calling EMT.
+; @param    HCPhysVmcb      msc:r8, gcc:rdx     Physical address of guest VMCB.
+;
+ALIGNCODE(64)
 BEGINPROC SVMR0VMRun
-    ; Fake a cdecl stack frame
- %ifdef ASM_CALL64_GCC
-    push    r8                ; pVCpu
-    push    rcx               ; pVM
-    push    rdx               ; pCtx
-    push    rsi               ; HCPhysVmcb
-    push    rdi               ; HCPhysVmcbHost
- %else
-    mov     rax, [rsp + 28h]
-    push    rax               ; rbp + 30h pVCpu
-    push    r9                ; rbp + 28h pVM
-    push    r8                ; rbp + 20h pCtx
-    push    rdx               ; rbp + 18h HCPhysVmcb
-    push    rcx               ; rbp + 10h HCPhysVmcbHost
- %endif
-    push    0                 ; rbp + 08h "fake ret addr"
-    push    rbp               ; rbp + 00h
+    push    rbp
     mov     rbp, rsp
     pushf
@@ -1080 +1068 @@
     PUSH_CALLEE_PRESERVED_REGISTERS
 
-    ; Load pCtx into xSI.
-    mov     xSI, [rbp + xCB * 2 + RTHCPHYS_CB * 2]
+    ; Shuffle parameter registers so that r8=HCPhysVmcb and rsi=pVCpu.  (rdx & rcx will soon be trashed.)
+%ifdef ASM_CALL64_GCC
+    mov     r8, rdx                         ; Put HCPhysVmcb in r8 like on MSC as rdx is trashed below.
+%else
+    mov     rsi, rdx                        ; Put pVCpu in rsi like on GCC as rdx is trashed below.
+    ;mov     rdi, rcx                        ; Put pVM in rdi like on GCC as rcx is trashed below.
+%endif
 
     ; Save the host XCR0 and load the guest one if necessary.
-    mov     rax, [xBP + 30h]                ; pVCpu
-    test    byte [xAX + VMCPU.hm + HMCPU.fLoadSaveGuestXcr0], 1
+    test    byte [rsi + VMCPU.hm + HMCPU.fLoadSaveGuestXcr0], 1
     jz      .xcr0_before_skip
 
     xor     ecx, ecx
     xgetbv                                  ; save the host XCR0 on the stack
-    push    xDX
-    push    xAX
-
-    mov     xSI, [xBP + xCB * 2 + RTHCPHYS_CB * 2]  ; pCtx
-    mov     eax, [xSI + CPUMCTX.aXcr]       ; load the guest XCR0
-    mov     edx, [xSI + CPUMCTX.aXcr + 4]
+    push    rdx
+    push    rax
+
+    mov     eax, [rsi + VMCPU.cpum.GstCtx + CPUMCTX.aXcr] ; load the guest XCR0
+    mov     edx, [rsi + VMCPU.cpum.GstCtx + CPUMCTX.aXcr + 4]
     xor     ecx, ecx                        ; paranoia
     xsetbv
@@ -1106 +1097 @@
 .xcr0_before_done:
 
-    ; Save guest CPU-context pointer for simplifying saving of the GPRs afterwards.
+    ; Save pVCpu pointer for simplifying saving of the GPRs afterwards.
     push    rsi
 
     ; Save host fs, gs, sysenter msr etc.
-    mov     rax, [rbp + xCB * 2]            ; HCPhysVmcbHost (64 bits physical address; x86: take low dword only)
+    mov     rax, [rsi + VMCPU.hm + HMCPU.u + HMCPUSVM.HCPhysVmcbHost]
     push    rax                             ; save for the vmload after vmrun
     vmsave
 
-    ; Fight spectre.
-    INDIRECT_BRANCH_PREDICTION_BARRIER xSI, CPUMCTX_WSF_IBPB_ENTRY
+    ; Fight spectre (trashes rax, rdx and rcx).
+    INDIRECT_BRANCH_PREDICTION_BARRIER rsi, CPUMCTX_WSF_IBPB_ENTRY
 
     ; Setup rax for VMLOAD.
-    mov     rax, [rbp + xCB * 2 + RTHCPHYS_CB] ; HCPhysVmcb (64 bits physical address; take low dword only)
+    mov     rax, r8                         ; HCPhysVmcb (64 bits physical address; take low dword only)
 
     ; Load guest general purpose registers (rax is loaded from the VMCB by VMRUN).
-    mov     rbx, qword [xSI + CPUMCTX.ebx]
-    mov     rcx, qword [xSI + CPUMCTX.ecx]
-    mov     rdx, qword [xSI + CPUMCTX.edx]
-    mov     rdi, qword [xSI + CPUMCTX.edi]
-    mov     rbp, qword [xSI + CPUMCTX.ebp]
-    mov     r8,  qword [xSI + CPUMCTX.r8]
-    mov     r9,  qword [xSI + CPUMCTX.r9]
-    mov     r10, qword [xSI + CPUMCTX.r10]
-    mov     r11, qword [xSI + CPUMCTX.r11]
-    mov     r12, qword [xSI + CPUMCTX.r12]
-    mov     r13, qword [xSI + CPUMCTX.r13]
-    mov     r14, qword [xSI + CPUMCTX.r14]
-    mov     r15, qword [xSI + CPUMCTX.r15]
-    mov     rsi, qword [xSI + CPUMCTX.esi]
+    mov     rbx, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.ebx]
+    mov     rcx, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.ecx]
+    mov     rdx, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.edx]
+    mov     rdi, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.edi]
+    mov     rbp, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.ebp]
+    mov     r8,  qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.r8]
+    mov     r9,  qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.r9]
+    mov     r10, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.r10]
+    mov     r11, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.r11]
+    mov     r12, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.r12]
+    mov     r13, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.r13]
+    mov     r14, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.r14]
+    mov     r15, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.r15]
+    mov     rsi, qword [rsi + VMCPU.cpum.GstCtx + CPUMCTX.esi]
 
     ; Clear the global interrupt flag & execute sti to make sure external interrupts cause a world switch.
@@ -1157 +1148 @@
     stgi
 
-    ; Pop the context pointer (pushed above) and save the guest GPRs (sans RSP and RAX).
+    ; Pop pVCpu (pushed above) and save the guest GPRs (sans RSP and RAX).
     pop     rax
 
-    mov     qword [rax + CPUMCTX.ebx], rbx
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.ebx], rbx
     mov     rbx, SPECTRE_FILLER
-    mov     qword [rax + CPUMCTX.ecx], rcx
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.ecx], rcx
     mov     rcx, rbx
-    mov     qword [rax + CPUMCTX.edx], rdx
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.edx], rdx
     mov     rdx, rbx
-    mov     qword [rax + CPUMCTX.esi], rsi
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.esi], rsi
     mov     rsi, rbx
-    mov     qword [rax + CPUMCTX.edi], rdi
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.edi], rdi
     mov     rdi, rbx
-    mov     qword [rax + CPUMCTX.ebp], rbp
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.ebp], rbp
     mov     rbp, rbx
-    mov     qword [rax + CPUMCTX.r8],  r8
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.r8],  r8
     mov     r8, rbx
-    mov     qword [rax + CPUMCTX.r9],  r9
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.r9],  r9
     mov     r9, rbx
-    mov     qword [rax + CPUMCTX.r10], r10
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.r10], r10
     mov     r10, rbx
-    mov     qword [rax + CPUMCTX.r11], r11
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.r11], r11
     mov     r11, rbx
-    mov     qword [rax + CPUMCTX.r12], r12
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.r12], r12
     mov     r12, rbx
-    mov     qword [rax + CPUMCTX.r13], r13
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.r13], r13
     mov     r13, rbx
-    mov     qword [rax + CPUMCTX.r14], r14
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.r14], r14
     mov     r14, rbx
-    mov     qword [rax + CPUMCTX.r15], r15
+    mov     qword [rax + VMCPU.cpum.GstCtx + CPUMCTX.r15], r15
     mov     r15, rbx
 
-    ; Fight spectre.  Note! Trashes rax!
+    ; Fight spectre.  Note! Trashes rax, rdx and rcx!
     INDIRECT_BRANCH_PREDICTION_BARRIER rax, CPUMCTX_WSF_IBPB_EXIT
 
     ; Restore the host xcr0 if necessary.
-    pop     xCX
+    pop     rcx
     test    ecx, ecx
     jnz     .xcr0_after_skip
-    pop     xAX
-    pop     xDX
+    pop     rax
+    pop     rdx
     xsetbv                              ; ecx is already zero
 .xcr0_after_skip:
@@ -1207 +1198 @@
 
     popf
-    pop     rbp
-    add     rsp, 6 * xCB
+    pop     rbp                         ; Do not use leave! rbp is trashed.
     ret
 ENDPROC SVMR0VMRun

trunk/src/VBox/VMM/VMMR0/HMSVMR0.cpp

@@ -4267 +4267 @@
 {
     /* Mark that HM is the keeper of all guest-CPU registers now that we're going to execute guest code. */
-    PCPUMCTX pCtx = &pVCpu->cpum.GstCtx;
-    pCtx->fExtrn |= HMSVM_CPUMCTX_EXTRN_ALL | CPUMCTX_EXTRN_KEEPER_HM;
+    pVCpu->cpum.GstCtx.fExtrn |= HMSVM_CPUMCTX_EXTRN_ALL | CPUMCTX_EXTRN_KEEPER_HM;
 
     /*
@@ -4279 +4278 @@
     PVMCC pVM = pVCpu->CTX_SUFF(pVM);
 #ifdef VBOX_WITH_KERNEL_USING_XMM
-    return hmR0SVMRunWrapXMM(pVCpu->hm.s.svm.HCPhysVmcbHost, HCPhysVmcb, pCtx, pVM, pVCpu, pVCpu->hm.s.svm.pfnVMRun);
+    return hmR0SVMRunWrapXMM(pVM, pVCpu, HCPhysVmcb, pVCpu->hm.s.svm.pfnVMRun);
+        //pVCpu->hm.s.svm.HCPhysVmcbHost, HCPhysVmcb, pVM, pVCpu, pVCpu->hm.s.svm.pfnVMRun);
 #else
-    return pVCpu->hm.s.svm.pfnVMRun(pVCpu->hm.s.svm.HCPhysVmcbHost, HCPhysVmcb, pCtx, pVM, pVCpu);
+    return pVCpu->hm.s.svm.pfnVMRun(pVM, pvCpu, HCPhysVmcb);
 #endif
 }

trunk/src/VBox/VMM/VMMR0/HMSVMR0.h

@@ -57 +57 @@
  *
  * @returns VBox status code.
- * @param   pVMCBHostPhys   Physical address of host VMCB.
- * @param   pVMCBPhys       Physical address of the VMCB.
- * @param   pCtx            Pointer to the guest CPU context.
  * @param   pVM             The cross context VM structure. (Not used.)
- * @param   pVCpu           The cross context virtual CPU structure. (Not used.)
+ * @param   pVCpu           The cross context virtual CPU structure.
+ * @param   HCPhyspVMCB     Physical address of the VMCB.
  */
-DECLASM(int) SVMR0VMRun(RTHCPHYS pVMCBHostPhys, RTHCPHYS pVMCBPhys, PCPUMCTX pCtx, PVMCC pVM, PVMCPUCC pVCpu);
+DECLASM(int) SVMR0VMRun(PVMCC pVM, PVMCPUCC pVCpu, RTHCPHYS HCPhyspVMCB);
 
 /**

trunk/src/VBox/VMM/include/HMInternal.h

@@ -403 +403 @@
  * non-standard C++), we have a little hack to make them palatable.
  */
+/** @def HM_NAMELESS_UNION_TAG
+ * For tagging a nameless union so tstASMStructs.cpp can find check the nested
+ * structures within the union.
+ */
 #ifdef VBOX_FOR_DTRACE_LIB
-# define HM_UNION_NM(a_Nm)  a_Nm
-# define HM_STRUCT_NM(a_Nm) a_Nm
+# define HM_UNION_NM(a_Nm)              a_Nm
+# define HM_STRUCT_NM(a_Nm)             a_Nm
+# define HM_NAMELESS_UNION_TAG(a_Tag)
 #elif defined(IPRT_WITHOUT_NAMED_UNIONS_AND_STRUCTS)
-# define HM_UNION_NM(a_Nm)  a_Nm
-# define HM_STRUCT_NM(a_Nm) a_Nm
+# define HM_UNION_NM(a_Nm)              a_Nm
+# define HM_STRUCT_NM(a_Nm)             a_Nm
+# define HM_NAMELESS_UNION_TAG(a_Tag)   a_Tag
 #else
 # define HM_UNION_NM(a_Nm)
 # define HM_STRUCT_NM(a_Nm)
+# define HM_NAMELESS_UNION_TAG(a_Tag)
 #endif
 
@@ -694 +701 @@
 typedef R0PTRTYPE(FNHMVMXSTARTVM *) PFNHMVMXSTARTVM;
 
-/** SVM VMRun function. */
-typedef DECLCALLBACKTYPE(int, FNHMSVMVMRUN,(RTHCPHYS pVmcbHostPhys, RTHCPHYS pVmcbPhys, PCPUMCTX pCtx, PVMCC pVM, PVMCPUCC pVCpu));
+/** SVM VMRun function, see SVMR0VMRun(). */
+typedef DECLCALLBACKTYPE(int, FNHMSVMVMRUN,(PVMCC pVM, PVMCPUCC pVCpu, RTHCPHYS HCPhyspVMCB));
 /** Pointer to a SVM VMRun function. */
 typedef R0PTRTYPE(FNHMSVMVMRUN *) PFNHMSVMVMRUN;
@@ -918 +925 @@
     uint64_t                    fCtxChanged;
 
-    union /* no tag! */
+    union HM_NAMELESS_UNION_TAG(HMCPUUNION) /* no tag! */
     {
         /** VT-x data.   */
-        struct
+        struct HM_NAMELESS_UNION_TAG(HMCPUVMX)
         {
             /** @name Guest information.
@@ -986 +993 @@
 
         /** SVM data. */
-        struct
+        struct HM_NAMELESS_UNION_TAG(HMCPUSVM)
         {
             /** Ring 0 handlers for VT-x. */
@@ -995 +1002 @@
             /** R0 memory object for the host VMCB which holds additional host-state. */
             RTR0MEMOBJ                  hMemObjVmcbHost;
-            /** Padding. */
+            /** Padding.
+             * @todo remove, pointless now  */
             R0PTRTYPE(void *)           pvPadding;
 
@@ -1225 +1233 @@
 DECLASM(int)                hmR0VMXStartVMWrapXMM(RTHCUINT fResume, PCPUMCTX pCtx, void *pvUnused, PVMCC pVM, PVMCPUCC pVCpu,
                                                   PFNHMVMXSTARTVM pfnStartVM);
-DECLASM(int)                hmR0SVMRunWrapXMM(RTHCPHYS pVmcbHostPhys, RTHCPHYS pVmcbPhys, PCPUMCTX pCtx, PVMCC pVM, PVMCPUCC pVCpu,
-                                              PFNHMSVMVMRUN pfnVMRun);
+DECLASM(int)                hmR0SVMRunWrapXMM(PVMCC pVM, PVMCPUCC pVCpu, RTHCPHYS HCPhyspVMCB, PFNHMSVMVMRUN pfnVMRun);
 # endif
 DECLASM(void)               hmR0MdsClear(void);

trunk/src/VBox/VMM/include/HMInternal.mac

@@ -15 +15 @@
 ; hope that it will be useful, but WITHOUT ANY WARRANTY of any kind.
 ;
+
+%ifndef VMX_VMCS_GUEST_FIELD_ES
+ %include "VBox/vmm/hm_vmx.mac"  ; For VMXRESTOREHOST
+%endif
+
+
+struc VMXVMCSINFO
+    .pfnStartVM                     RTR0PTR_RES  1
+    .HCPhysEPTP                     RTHCPHYS_RES 1
+    .fVmcsState                     resd    1
+    .fShadowVmcsState               resd    1
+    .idHostCpuState                 resd    1
+    .idHostCpuExec                  resd    1
+    .cEntryMsrLoad                  resd    1
+    .cExitMsrStore                  resd    1
+    .cExitMsrLoad                   resd    1
+
+    .u32PinCtls                     resd    1
+    .u32ProcCtls                    resd    1
+    .u32ProcCtls2                   resd    1
+    .u32EntryCtls                   resd    1
+    .u32ExitCtls                    resd    1
+    .u32XcptBitmap                  resd    1
+    .u32XcptPFMask                  resd    1
+    .u32XcptPFMatch                 resd    1
+
+    alignb 8
+    .u64TscOffset                   resq    1
+    .u64VmcsLinkPtr                 resq    1
+    .u64Cr0Mask                     resq    1
+    .u64Cr4Mask                     resq    1
+
+    .pvVmcs                         RTR0PTR_RES 1
+    .pvShadowVmcs                   RTR0PTR_RES 1
+    .pbVirtApic                     RTR0PTR_RES 1
+    .pvMsrBitmap                    RTR0PTR_RES 1
+    .pvGuestMsrLoad                 RTR0PTR_RES 1
+    .pvGuestMsrStore                RTR0PTR_RES 1
+    .pvHostMsrLoad                  RTR0PTR_RES 1
+
+    .fWasInRealMode                 resb    1
+    .fSwitchedTo64on32Obsolete      resb    1
+    alignb 8
+    .RealMode.AttrCS                resd    1
+    .RealMode.AttrDS                resd    1
+    .RealMode.AttrES                resd    1
+    .RealMode.AttrFS                resd    1
+    .RealMode.AttrGS                resd    1
+    .RealMode.AttrSS                resd    1
+    .RealMode.Eflags                resd    1   ; should be EFlags?
+    .RealMode.fRealOnV86Active      resb    1
+
+    alignb 8
+    .HCPhysVmcs                     RTHCPHYS_RES 1
+    .HCPhysShadowVmcs               RTHCPHYS_RES 1
+    .HCPhysVirtApic                 RTHCPHYS_RES 1
+    .HCPhysMsrBitmap                RTHCPHYS_RES 1
+    .HCPhysGuestMsrLoad             RTHCPHYS_RES 1
+    .HCPhysGuestMsrStore            RTHCPHYS_RES 1
+    .HCPhysHostMsrLoad              RTHCPHYS_RES 1
+
+    .hMemObj                        RTR0PTR_RES  1
+
+    alignb 8
+    .au64LbrFromIpMsr               resq    32
+    .au64LbrToIpMsr                 resq    32
+    .u64LbrTosMsr                   resq    1
+endstruc
+
+struc HMCPUVMX
+    .VmcsInfo                       resb    VMXVMCSINFO_size
+    .VmcsInfoNstGst                 resb    VMXVMCSINFO_size
+    .fSwitchedToNstGstVmcs          resb    1
+    .fMergedNstGstCtls              resb    1
+    .fCopiedNstGstToShadowVmcs      resb    1
+    .fSwitchedNstGstFlushTlb        resb    1
+
+    alignb 8
+    .u64GstMsrApicBase              resq    1
+
+    .u64HostMsrLStar                resq    1
+    .u64HostMsrStar                 resq    1
+    .u64HostMsrSfMask               resq    1
+    .u64HostMsrKernelGsBase         resq    1
+    .fLazyMsrs                      resd    1
+    .fUpdatedHostAutoMsrs           resb    1
+    alignb 4
+    .fRestoreHostFlags              resd    1
+    alignb 8
+    .RestoreHost                    resb    VMXRESTOREHOST_size
+
+    .LastError.idCurrentCpu         resd    1
+    .LastError.idEnteredCpu         resd    1
+    .LastError.HCPhysCurrentVmcs    resq    1
+    .LastError.u32VmcsRev           resd    1
+    .LastError.u32InstrError        resd    1
+    .LastError.u32ExitReason        resd    1
+    .LastError.u32GuestIntrState    resd    1
+endstruc
+
+struc HMCPUSVM
+    .pfnVMRun                       RTR0PTR_RES  1
+    .HCPhysVmcbHost                 RTHCPHYS_RES 1
+
+    .hMemObjVmcbHost                RTR0PTR_RES  1
+    .pvPadding                      RTR0PTR_RES  1 ; pointless padding
+
+    .HCPhysVmcb                     RTHCPHYS_RES 1
+    .hMemObjVmcb                    RTR0PTR_RES  1
+    .pVmcb                          RTR0PTR_RES  1
+
+    .HCPhysMsrBitmap                RTHCPHYS_RES 1
+    .hMemObjMsrBitmap               RTR0PTR_RES  1
+    .pvMsrBitmap                    RTR0PTR_RES  1
+
+    .fSyncVTpr                      resb    1
+    .fEmulateLongModeSysEnterExit   resb    1
+
+    alignb 8
+    .u64HostTscAux                  resq    1
+
+    .NstGstVmcbCache                resb    40
+endstruc
 
 struc HMCPU
@@ -39 +162 @@
     .u32HMError                     resd    1
     .rcLastExitToR3                 resd    1
+    alignb 8
     .fCtxChanged                    resq    1
 
-    ; incomplete to save unnecessary pain...
+    alignb 8
+%if HMCPUVMX_size > HMCPUSVM_size
+    .u                              resb    HMCPUVMX_size
+%else
+    .u                              resb    HMCPUSVM_size
+%endif
+
+    .Event.fPending                 resd    1
+    .Event.u32ErrCode               resd    1
+    .Event.cbInstr                  resd    1
+    alignb 8
+    .Event.u64IntInfo               resq    1
+    .Event.GCPtrFaultAddress        RTGCPTR_RES 1
+
+    .idEnteredCpu                   resd    1
+    .enmShadowMode                  resd    1
+    alignb 8
+    .aPdpes                         resq    4
+
+    ; The remainer is disassembly state and statistics.
 endstruc
 

trunk/src/VBox/VMM/testcase/tstAsmStructs.cpp

@@ -22 +22 @@
 #include <VBox/vmm/cpum.h>
 #include "CPUMInternal.h"
+#define IPRT_WITHOUT_NAMED_UNIONS_AND_STRUCTS 1 /* For HMInternal */
 #include "HMInternal.h"
+#undef  IPRT_WITHOUT_NAMED_UNIONS_AND_STRUCTS /* probably not necessary */
 #include "VMMInternal.h"
 #include <VBox/vmm/vm.h>
@@ -30 +32 @@
 #include <stdio.h>
 
+/* Hack for validating nested HMCPU structures. */
+typedef HMCPU::HMCPUUNION::HMCPUVMX HMCPUVMX;
+typedef HMCPU::HMCPUUNION::HMCPUSVM HMCPUSVM;
 
 /* For sup.mac simplifications. */

trunk/src/VBox/VMM/testcase/tstAsmStructsAsm.asm

@@ -28 +28 @@
 %include "VBox/vmm/cpum.mac"
 %include "VBox/vmm/vm.mac"
-%include "VBox/vmm/hm_vmx.mac"
 %include "VBox/sup.mac"
 %ifdef DO_GLOBALS