2 This module contains EBC support routines that are customized based on
5 Copyright (c) 2006, Intel Corporation
6 All rights reserved. This program and the accompanying materials
7 are licensed and made available under the terms and conditions of the BSD License
8 which accompanies this distribution. The full text of the license may be found at
9 http://opensource.org/licenses/bsd-license.php
11 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
12 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
17 #include "EbcExecute.h"
18 #include "EbcSupport.h"
21 Given raw bytes of Itanium based code, format them into a bundle and
24 @param MemPtr pointer to memory location to write the bundles
26 @param Template 5-bit template.
27 @param Slot0 Instruction slot 0 data for the bundle.
28 @param Slot1 Instruction slot 1 data for the bundle.
29 @param Slot2 Instruction slot 2 data for the bundle.
31 @retval EFI_INVALID_PARAMETER Pointer is not aligned
32 @retval EFI_INVALID_PARAMETER No more than 5 bits in template
33 @retval EFI_INVALID_PARAMETER More than 41 bits used in code
34 @retval EFI_SUCCESS All data is written.
48 Pushes a 64 bit unsigned value to the VM stack.
50 @param VmPtr The pointer to current VM context.
51 @param Arg The value to be pushed.
62 // Advance the VM stack down, and then copy the argument to the stack.
65 VmPtr
->R
[0] -= sizeof (UINT64
);
66 *(UINT64
*) VmPtr
->R
[0] = Arg
;
70 Begin executing an EBC image. The address of the entry point is passed
71 in via a processor register, so we'll need to make a call to get the
74 This is a thunk function. Microsoft x64 compiler only provide fast_call
75 calling convention, so the first four arguments are passed by rcx, rdx,
76 r8, and r9, while other arguments are passed in stack.
78 @param Arg1 The 1st argument.
79 @param ... The variable arguments list.
81 @return The value returned by the EBC application we're going to run.
92 // Create a new VM context on the stack
115 // Get the EBC entry point from the processor register. Make sure you don't
116 // call any functions before this or you could mess up the register the
117 // entry point is passed in.
119 Addr
= EbcLLGetEbcEntryPoint ();
121 // Need the args off the stack.
123 VA_START (List
, Arg1
);
124 Arg2
= VA_ARG (List
, UINT64
);
125 Arg3
= VA_ARG (List
, UINT64
);
126 Arg4
= VA_ARG (List
, UINT64
);
127 Arg5
= VA_ARG (List
, UINT64
);
128 Arg6
= VA_ARG (List
, UINT64
);
129 Arg7
= VA_ARG (List
, UINT64
);
130 Arg8
= VA_ARG (List
, UINT64
);
131 Arg9
= VA_ARG (List
, UINT64
);
132 Arg10
= VA_ARG (List
, UINT64
);
133 Arg11
= VA_ARG (List
, UINT64
);
134 Arg12
= VA_ARG (List
, UINT64
);
135 Arg13
= VA_ARG (List
, UINT64
);
136 Arg14
= VA_ARG (List
, UINT64
);
137 Arg15
= VA_ARG (List
, UINT64
);
138 Arg16
= VA_ARG (List
, UINT64
);
140 // Now clear out our context
142 ZeroMem ((VOID
*) &VmContext
, sizeof (VM_CONTEXT
));
144 // Set the VM instruction pointer to the correct location in memory.
146 VmContext
.Ip
= (VMIP
) Addr
;
148 // Initialize the stack pointer for the EBC. Get the current system stack
149 // pointer and adjust it down by the max needed for the interpreter.
152 // NOTE: Eventually we should have the interpreter allocate memory
153 // for stack space which it will use during its execution. This
154 // would likely improve performance because the interpreter would
155 // no longer be required to test each memory access and adjust
156 // those reading from the stack gap.
158 // For IPF, the stack looks like (assuming 10 args passed)
160 // arg9 (Bottom of high stack)
161 // [ stack gap for interpreter execution ]
162 // [ magic value for detection of stack corruption ]
163 // arg8 (Top of low stack)
166 // [ 64-bit return address ]
168 // If the EBC accesses memory in the stack gap, then we assume that it's
169 // actually trying to access args9 and greater. Therefore we need to
170 // adjust memory accesses in this region to point above the stack gap.
173 // Now adjust the EBC stack pointer down to leave a gap for interpreter
174 // execution. Then stuff a magic value there.
177 Status
= GetEBCStack((EFI_HANDLE
)(UINTN
)-1, &VmContext
.StackPool
, &StackIndex
);
178 if (EFI_ERROR(Status
)) {
181 VmContext
.StackTop
= (UINT8
*)VmContext
.StackPool
+ (STACK_REMAIN_SIZE
);
182 VmContext
.R
[0] = (UINT64
) ((UINT8
*)VmContext
.StackPool
+ STACK_POOL_SIZE
);
183 VmContext
.HighStackBottom
= (UINTN
) VmContext
.R
[0];
184 VmContext
.R
[0] -= sizeof (UINTN
);
187 PushU64 (&VmContext
, (UINT64
) VM_STACK_KEY_VALUE
);
188 VmContext
.StackMagicPtr
= (UINTN
*) VmContext
.R
[0];
189 VmContext
.LowStackTop
= (UINTN
) VmContext
.R
[0];
191 // Push the EBC arguments on the stack. Does not matter that they may not
194 PushU64 (&VmContext
, Arg16
);
195 PushU64 (&VmContext
, Arg15
);
196 PushU64 (&VmContext
, Arg14
);
197 PushU64 (&VmContext
, Arg13
);
198 PushU64 (&VmContext
, Arg12
);
199 PushU64 (&VmContext
, Arg11
);
200 PushU64 (&VmContext
, Arg10
);
201 PushU64 (&VmContext
, Arg9
);
202 PushU64 (&VmContext
, Arg8
);
203 PushU64 (&VmContext
, Arg7
);
204 PushU64 (&VmContext
, Arg6
);
205 PushU64 (&VmContext
, Arg5
);
206 PushU64 (&VmContext
, Arg4
);
207 PushU64 (&VmContext
, Arg3
);
208 PushU64 (&VmContext
, Arg2
);
209 PushU64 (&VmContext
, Arg1
);
211 // Push a bogus return address on the EBC stack because the
212 // interpreter expects one there. For stack alignment purposes on IPF,
213 // EBC return addresses are always 16 bytes. Push a bogus value as well.
215 PushU64 (&VmContext
, 0);
216 PushU64 (&VmContext
, 0xDEADBEEFDEADBEEF);
217 VmContext
.StackRetAddr
= (UINT64
) VmContext
.R
[0];
219 // Begin executing the EBC code
221 EbcExecute (&VmContext
);
223 // Return the value in R[7] unless there was an error
225 ReturnEBCStack(StackIndex
);
226 return (UINT64
) VmContext
.R
[7];
231 Begin executing an EBC image. The address of the entry point is passed
232 in via a processor register, so we'll need to make a call to get the
235 @param ImageHandle image handle for the EBC application we're executing
236 @param SystemTable standard system table passed into an driver's entry
239 @return The value returned by the EBC application we're going to run.
244 ExecuteEbcImageEntryPoint (
245 IN EFI_HANDLE ImageHandle
,
246 IN EFI_SYSTEM_TABLE
*SystemTable
250 // Create a new VM context on the stack
252 VM_CONTEXT VmContext
;
258 // Get the EBC entry point from the processor register. Make sure you don't
259 // call any functions before this or you could mess up the register the
260 // entry point is passed in.
262 Addr
= EbcLLGetEbcEntryPoint ();
265 // Now clear out our context
267 ZeroMem ((VOID
*) &VmContext
, sizeof (VM_CONTEXT
));
270 // Save the image handle so we can track the thunks created for this image
272 VmContext
.ImageHandle
= ImageHandle
;
273 VmContext
.SystemTable
= SystemTable
;
276 // Set the VM instruction pointer to the correct location in memory.
278 VmContext
.Ip
= (VMIP
) Addr
;
281 // Get the stack pointer. This is the bottom of the upper stack.
283 Addr
= EbcLLGetStackPointer ();
285 Status
= GetEBCStack(ImageHandle
, &VmContext
.StackPool
, &StackIndex
);
286 if (EFI_ERROR(Status
)) {
289 VmContext
.StackTop
= (UINT8
*)VmContext
.StackPool
+ (STACK_REMAIN_SIZE
);
290 VmContext
.R
[0] = (UINT64
) ((UINT8
*)VmContext
.StackPool
+ STACK_POOL_SIZE
);
291 VmContext
.HighStackBottom
= (UINTN
) VmContext
.R
[0];
292 VmContext
.R
[0] -= sizeof (UINTN
);
296 // Allocate stack space for the interpreter. Then put a magic value
297 // at the bottom so we can detect stack corruption.
299 PushU64 (&VmContext
, (UINT64
) VM_STACK_KEY_VALUE
);
300 VmContext
.StackMagicPtr
= (UINTN
*) (UINTN
) VmContext
.R
[0];
303 // When we thunk to external native code, we copy the last 8 qwords from
304 // the EBC stack into the processor registers, and adjust the stack pointer
305 // up. If the caller is not passing 8 parameters, then we've moved the
306 // stack pointer up into the stack gap. If this happens, then the caller
307 // can mess up the stack gap contents (in particular our magic value).
308 // Therefore, leave another gap below the magic value. Pick 10 qwords down,
309 // just as a starting point.
311 VmContext
.R
[0] -= 10 * sizeof (UINT64
);
314 // Align the stack pointer such that after pushing the system table,
315 // image handle, and return address on the stack, it's aligned on a 16-byte
316 // boundary as required for IPF.
318 VmContext
.R
[0] &= (INT64
)~0x0f;
319 VmContext
.LowStackTop
= (UINTN
) VmContext
.R
[0];
321 // Simply copy the image handle and system table onto the EBC stack.
322 // Greatly simplifies things by not having to spill the args
324 PushU64 (&VmContext
, (UINT64
) SystemTable
);
325 PushU64 (&VmContext
, (UINT64
) ImageHandle
);
328 // Interpreter assumes 64-bit return address is pushed on the stack.
329 // IPF does not do this so pad the stack accordingly. Also, a
330 // "return address" is 16 bytes as required for IPF stack alignments.
332 PushU64 (&VmContext
, (UINT64
) 0);
333 PushU64 (&VmContext
, (UINT64
) 0x1234567887654321);
334 VmContext
.StackRetAddr
= (UINT64
) VmContext
.R
[0];
337 // Begin executing the EBC code
339 EbcExecute (&VmContext
);
342 // Return the value in R[7] unless there was an error
344 ReturnEBCStack(StackIndex
);
345 return (UINT64
) VmContext
.R
[7];
350 Create thunks for an EBC image entry point, or an EBC protocol service.
352 @param ImageHandle Image handle for the EBC image. If not null, then
353 we're creating a thunk for an image entry point.
354 @param EbcEntryPoint Address of the EBC code that the thunk is to call
355 @param Thunk Returned thunk we create here
356 @param Flags Flags indicating options for creating the thunk
358 @retval EFI_SUCCESS The thunk was created successfully.
359 @retval EFI_INVALID_PARAMETER The parameter of EbcEntryPoint is not 16-bit
361 @retval EFI_OUT_OF_RESOURCES There is not enough memory to created the EBC
363 @retval EFI_BUFFER_TOO_SMALL EBC_THUNK_SIZE is not larger enough.
368 IN EFI_HANDLE ImageHandle
,
369 IN VOID
*EbcEntryPoint
,
377 UINT64 Code
[3]; // Code in a bundle
378 UINT64 RegNum
; // register number for MOVL
379 UINT64 BitI
; // bits of MOVL immediate data
380 UINT64 BitIc
; // bits of MOVL immediate data
381 UINT64 BitImm5c
; // bits of MOVL immediate data
382 UINT64 BitImm9d
; // bits of MOVL immediate data
383 UINT64 BitImm7b
; // bits of MOVL immediate data
384 UINT64 Br
; // branch register for loading and jumping
390 // Check alignment of pointer to EBC code, which must always be aligned
391 // on a 2-byte boundary.
393 if ((UINT32
) (UINTN
) EbcEntryPoint
& 0x01) {
394 return EFI_INVALID_PARAMETER
;
397 // Allocate memory for the thunk. Make the (most likely incorrect) assumption
398 // that the returned buffer is not aligned, so round up to the next
401 Size
= EBC_THUNK_SIZE
+ EBC_THUNK_ALIGNMENT
- 1;
403 Ptr
= AllocatePool (Size
);
406 return EFI_OUT_OF_RESOURCES
;
409 // Save the start address of the buffer.
414 // Make sure it's aligned for code execution. If not, then
417 if ((UINT32
) (UINTN
) Ptr
& (EBC_THUNK_ALIGNMENT
- 1)) {
418 Ptr
= (UINT8
*) (((UINTN
) Ptr
+ (EBC_THUNK_ALIGNMENT
- 1)) &~ (UINT64
) (EBC_THUNK_ALIGNMENT
- 1));
421 // Return the pointer to the thunk to the caller to user as the
422 // image entry point.
424 *Thunk
= (VOID
*) Ptr
;
427 // Clear out the thunk entry
428 // ZeroMem(Ptr, Size);
430 // For IPF, when you do a call via a function pointer, the function pointer
431 // actually points to a function descriptor which consists of a 64-bit
432 // address of the function, followed by a 64-bit gp for the function being
433 // called. See the the Software Conventions and Runtime Architecture Guide
435 // So first off in our thunk, create a descriptor for our actual thunk code.
436 // This means we need to create a pointer to the thunk code (which follows
437 // the descriptor we're going to create), followed by the gp of the Vm
438 // interpret function we're going to eventually execute.
440 Data64Ptr
= (UINT64
*) Ptr
;
443 // Write the function's entry point (which is our thunk code that follows
444 // this descriptor we're creating).
446 *Data64Ptr
= (UINT64
) (Data64Ptr
+ 2);
448 // Get the gp from the descriptor for EbcInterpret and stuff it in our thunk
451 *(Data64Ptr
+ 1) = *(UINT64
*) ((UINT64
*) (UINTN
) EbcInterpret
+ 1);
453 // Advance our thunk data pointer past the descriptor. Since the
454 // descriptor consists of 16 bytes, the pointer is still aligned for
455 // IPF code execution (on 16-byte boundary).
457 Ptr
+= sizeof (UINT64
) * 2;
460 // *************************** MAGIC BUNDLE ********************************
462 // Write magic code bundle for: movl r8 = 0xca112ebcca112ebc to help the VM
463 // to recognize it is a thunk.
465 Addr
= (UINT64
) 0xCA112EBCCA112EBC;
468 // Now generate the code bytes. First is nop.m 0x0
470 Code
[0] = OPCODE_NOP
;
473 // Next is simply Addr[62:22] (41 bits) of the address
475 Code
[1] = RShiftU64 (Addr
, 22) & 0x1ffffffffff;
478 // Extract bits from the address for insertion into the instruction
481 BitI
= RShiftU64 (Addr
, 63) & 0x01;
485 BitIc
= RShiftU64 (Addr
, 21) & 0x01;
487 // imm5c = Addr[20:16] for 5 bits
489 BitImm5c
= RShiftU64 (Addr
, 16) & 0x1F;
491 // imm9d = Addr[15:7] for 9 bits
493 BitImm9d
= RShiftU64 (Addr
, 7) & 0x1FF;
495 // imm7b = Addr[6:0] for 7 bits
497 BitImm7b
= Addr
& 0x7F;
500 // The EBC entry point will be put into r8, so r8 can be used here
501 // temporary. R8 is general register and is auto-serialized.
506 // Next is jumbled data, including opcode and rest of address
508 Code
[2] = LShiftU64 (BitImm7b
, 13);
509 Code
[2] = Code
[2] | LShiftU64 (0x00, 20); // vc
510 Code
[2] = Code
[2] | LShiftU64 (BitIc
, 21);
511 Code
[2] = Code
[2] | LShiftU64 (BitImm5c
, 22);
512 Code
[2] = Code
[2] | LShiftU64 (BitImm9d
, 27);
513 Code
[2] = Code
[2] | LShiftU64 (BitI
, 36);
514 Code
[2] = Code
[2] | LShiftU64 ((UINT64
)MOVL_OPCODE
, 37);
515 Code
[2] = Code
[2] | LShiftU64 ((RegNum
& 0x7F), 6);
517 WriteBundle ((VOID
*) Ptr
, 0x05, Code
[0], Code
[1], Code
[2]);
520 // *************************** FIRST BUNDLE ********************************
522 // Write code bundle for: movl r8 = EBC_ENTRY_POINT so we pass
523 // the ebc entry point in to the interpreter function via a processor
525 // Note -- we could easily change this to pass in a pointer to a structure
526 // that contained, among other things, the EBC image's entry point. But
527 // for now pass it directly.
530 Addr
= (UINT64
) EbcEntryPoint
;
533 // Now generate the code bytes. First is nop.m 0x0
535 Code
[0] = OPCODE_NOP
;
538 // Next is simply Addr[62:22] (41 bits) of the address
540 Code
[1] = RShiftU64 (Addr
, 22) & 0x1ffffffffff;
543 // Extract bits from the address for insertion into the instruction
546 BitI
= RShiftU64 (Addr
, 63) & 0x01;
550 BitIc
= RShiftU64 (Addr
, 21) & 0x01;
552 // imm5c = Addr[20:16] for 5 bits
554 BitImm5c
= RShiftU64 (Addr
, 16) & 0x1F;
556 // imm9d = Addr[15:7] for 9 bits
558 BitImm9d
= RShiftU64 (Addr
, 7) & 0x1FF;
560 // imm7b = Addr[6:0] for 7 bits
562 BitImm7b
= Addr
& 0x7F;
565 // Put the EBC entry point in r8, which is the location of the return value
571 // Next is jumbled data, including opcode and rest of address
573 Code
[2] = LShiftU64 (BitImm7b
, 13);
574 Code
[2] = Code
[2] | LShiftU64 (0x00, 20); // vc
575 Code
[2] = Code
[2] | LShiftU64 (BitIc
, 21);
576 Code
[2] = Code
[2] | LShiftU64 (BitImm5c
, 22);
577 Code
[2] = Code
[2] | LShiftU64 (BitImm9d
, 27);
578 Code
[2] = Code
[2] | LShiftU64 (BitI
, 36);
579 Code
[2] = Code
[2] | LShiftU64 ((UINT64
)MOVL_OPCODE
, 37);
580 Code
[2] = Code
[2] | LShiftU64 ((RegNum
& 0x7F), 6);
582 WriteBundle ((VOID
*) Ptr
, 0x05, Code
[0], Code
[1], Code
[2]);
585 // *************************** NEXT BUNDLE *********************************
587 // Write code bundle for:
588 // movl rx = offset_of(EbcInterpret|ExecuteEbcImageEntryPoint)
590 // Advance pointer to next bundle, then compute the offset from this bundle
591 // to the address of the entry point of the interpreter.
594 if ((Flags
& FLAG_THUNK_ENTRY_POINT
) != 0) {
595 Addr
= (UINT64
) ExecuteEbcImageEntryPoint
;
597 Addr
= (UINT64
) EbcInterpret
;
600 // Indirection on Itanium-based systems
602 Addr
= *(UINT64
*) Addr
;
605 // Now write the code to load the offset into a register
607 Code
[0] = OPCODE_NOP
;
610 // Next is simply Addr[62:22] (41 bits) of the address
612 Code
[1] = RShiftU64 (Addr
, 22) & 0x1ffffffffff;
615 // Extract bits from the address for insertion into the instruction
618 BitI
= RShiftU64 (Addr
, 63) & 0x01;
622 BitIc
= RShiftU64 (Addr
, 21) & 0x01;
624 // imm5c = Addr[20:16] for 5 bits
626 BitImm5c
= RShiftU64 (Addr
, 16) & 0x1F;
628 // imm9d = Addr[15:7] for 9 bits
630 BitImm9d
= RShiftU64 (Addr
, 7) & 0x1FF;
632 // imm7b = Addr[6:0] for 7 bits
634 BitImm7b
= Addr
& 0x7F;
637 // Put it in r31, a scratch register
642 // Next is jumbled data, including opcode and rest of address
644 Code
[2] = LShiftU64(BitImm7b
, 13);
645 Code
[2] = Code
[2] | LShiftU64 (0x00, 20); // vc
646 Code
[2] = Code
[2] | LShiftU64 (BitIc
, 21);
647 Code
[2] = Code
[2] | LShiftU64 (BitImm5c
, 22);
648 Code
[2] = Code
[2] | LShiftU64 (BitImm9d
, 27);
649 Code
[2] = Code
[2] | LShiftU64 (BitI
, 36);
650 Code
[2] = Code
[2] | LShiftU64 ((UINT64
)MOVL_OPCODE
, 37);
651 Code
[2] = Code
[2] | LShiftU64 ((RegNum
& 0x7F), 6);
653 WriteBundle ((VOID
*) Ptr
, 0x05, Code
[0], Code
[1], Code
[2]);
656 // *************************** NEXT BUNDLE *********************************
658 // Load branch register with EbcInterpret() function offset from the bundle
659 // address: mov b6 = RegNum
661 // See volume 3 page 4-29 of the Arch. Software Developer's Manual.
663 // Advance pointer to next bundle
666 Code
[0] = OPCODE_NOP
;
667 Code
[1] = OPCODE_NOP
;
668 Code
[2] = OPCODE_MOV_BX_RX
;
671 // Pick a branch register to use. Then fill in the bits for the branch
672 // register and user register (same user register as previous bundle).
675 Code
[2] |= LShiftU64 (Br
, 6);
676 Code
[2] |= LShiftU64 (RegNum
, 13);
677 WriteBundle ((VOID
*) Ptr
, 0x0d, Code
[0], Code
[1], Code
[2]);
680 // *************************** NEXT BUNDLE *********************************
682 // Now do the branch: (p0) br.cond.sptk.few b6
684 // Advance pointer to next bundle.
685 // Fill in the bits for the branch register (same reg as previous bundle)
688 Code
[0] = OPCODE_NOP
;
689 Code
[1] = OPCODE_NOP
;
690 Code
[2] = OPCODE_BR_COND_SPTK_FEW
;
691 Code
[2] |= LShiftU64 (Br
, 13);
692 WriteBundle ((VOID
*) Ptr
, 0x1d, Code
[0], Code
[1], Code
[2]);
695 // Add the thunk to our list of allocated thunks so we can do some cleanup
696 // when the image is unloaded. Do this last since the Add function flushes
697 // the instruction cache for us.
699 EbcAddImageThunk (ImageHandle
, (VOID
*) ThunkBase
, ThunkSize
);
709 Given raw bytes of Itanium based code, format them into a bundle and
712 @param MemPtr pointer to memory location to write the bundles
714 @param Template 5-bit template.
715 @param Slot0 Instruction slot 0 data for the bundle.
716 @param Slot1 Instruction slot 1 data for the bundle.
717 @param Slot2 Instruction slot 2 data for the bundle.
719 @retval EFI_INVALID_PARAMETER Pointer is not aligned
720 @retval EFI_INVALID_PARAMETER No more than 5 bits in template
721 @retval EFI_INVALID_PARAMETER More than 41 bits used in code
722 @retval EFI_SUCCESS All data is written.
741 // Verify pointer is aligned
743 if ((UINT64
) MemPtr
& 0xF) {
744 return EFI_INVALID_PARAMETER
;
747 // Verify no more than 5 bits in template
749 if ((Template
&~0x1F) != 0) {
750 return EFI_INVALID_PARAMETER
;
753 // Verify max of 41 bits used in code
755 if (((Slot0
| Slot1
| Slot2
) &~0x1ffffffffff) != 0) {
756 return EFI_INVALID_PARAMETER
;
759 Low64
= LShiftU64 (Slot1
, 46);
760 Low64
= Low64
| LShiftU64 (Slot0
, 5) | Template
;
762 High64
= RShiftU64 (Slot1
, 18);
763 High64
= High64
| LShiftU64 (Slot2
, 23);
766 // Now write it all out
768 BPtr
= (UINT8
*) MemPtr
;
769 for (Index
= 0; Index
< 8; Index
++) {
770 *BPtr
= (UINT8
) Low64
;
771 Low64
= RShiftU64 (Low64
, 8);
775 for (Index
= 0; Index
< 8; Index
++) {
776 *BPtr
= (UINT8
) High64
;
777 High64
= RShiftU64 (High64
, 8);
786 This function is called to execute an EBC CALLEX instruction.
787 The function check the callee's content to see whether it is common native
788 code or a thunk to another piece of EBC code.
789 If the callee is common native code, use EbcLLCAllEXASM to manipulate,
790 otherwise, set the VM->IP to target EBC code directly to avoid another VM
791 be startup which cost time and stack space.
793 @param VmPtr Pointer to a VM context.
794 @param FuncAddr Callee's address
795 @param NewStackPointer New stack pointer after the call
796 @param FramePtr New frame pointer after the call
797 @param Size The size of call instruction
802 IN VM_CONTEXT
*VmPtr
,
804 IN UINTN NewStackPointer
,
824 // FuncAddr points to the descriptor of the target instructions.
826 CalleeAddr
= *((UINT64
*)FuncAddr
);
829 // Processor specific code to check whether the callee is a thunk to EBC.
831 if (*((UINT64
*)CalleeAddr
) != 0xBCCA000100000005) {
835 if (*((UINT64
*)CalleeAddr
+ 1) != 0x697623C1004A112E) {
840 CodeOne18
= RShiftU64 (*((UINT64
*)CalleeAddr
+ 2), 46) & 0x3FFFF;
841 CodeOne23
= (*((UINT64
*)CalleeAddr
+ 3)) & 0x7FFFFF;
842 CodeTwoI
= RShiftU64 (*((UINT64
*)CalleeAddr
+ 3), 59) & 0x1;
843 CodeTwoIc
= RShiftU64 (*((UINT64
*)CalleeAddr
+ 3), 44) & 0x1;
844 CodeTwo7b
= RShiftU64 (*((UINT64
*)CalleeAddr
+ 3), 36) & 0x7F;
845 CodeTwo5c
= RShiftU64 (*((UINT64
*)CalleeAddr
+ 3), 45) & 0x1F;
846 CodeTwo9d
= RShiftU64 (*((UINT64
*)CalleeAddr
+ 3), 50) & 0x1FF;
848 TargetEbcAddr
= CodeTwo7b
;
849 TargetEbcAddr
= TargetEbcAddr
| LShiftU64 (CodeTwo9d
, 7);
850 TargetEbcAddr
= TargetEbcAddr
| LShiftU64 (CodeTwo5c
, 16);
851 TargetEbcAddr
= TargetEbcAddr
| LShiftU64 (CodeTwoIc
, 21);
852 TargetEbcAddr
= TargetEbcAddr
| LShiftU64 (CodeOne18
, 22);
853 TargetEbcAddr
= TargetEbcAddr
| LShiftU64 (CodeOne23
, 40);
854 TargetEbcAddr
= TargetEbcAddr
| LShiftU64 (CodeTwoI
, 63);
859 // The callee is a thunk to EBC, adjust the stack pointer down 16 bytes and
860 // put our return address and frame pointer on the VM stack.
861 // Then set the VM's IP to new EBC code.
864 VmWriteMemN (VmPtr
, (UINTN
) VmPtr
->R
[0], (UINTN
) FramePtr
);
865 VmPtr
->FramePtr
= (VOID
*) (UINTN
) VmPtr
->R
[0];
867 VmWriteMem64 (VmPtr
, (UINTN
) VmPtr
->R
[0], (UINT64
) (VmPtr
->Ip
+ Size
));
869 VmPtr
->Ip
= (VMIP
) (UINTN
) TargetEbcAddr
;
872 // The callee is not a thunk to EBC, call native code.
874 EbcLLCALLEXNative (FuncAddr
, NewStackPointer
, FramePtr
);
877 // Get return value and advance the IP.
879 VmPtr
->R
[7] = EbcLLGetReturnValue ();