bluepill/drv_entry.cpp

#include "vmxlaunch.hpp"
#include "idt.hpp"

auto drv_entry(PDRIVER_OBJECT driver_object, PUNICODE_STRING registry_path) -> NTSTATUS
{
	vmxon::g_vmx_ctx = 
		reinterpret_cast<hv::pvmx_ctx>(
			ExAllocatePool(NonPagedPool, sizeof hv::vmx_ctx));

	// setup vcpu structures (vmx on region and vmcs...)
	vmxon::create_vcpus(vmxon::g_vmx_ctx);

	cr3 cr3_value;
	cr3_value.flags = __readcr3();
	cr3_value.pml4_pfn =
		(MmGetPhysicalAddress(mm::pml4).QuadPart >> 12);

	memset(mm::pml4, NULL, sizeof mm::pml4);
	mm::pml4[PML4_SELF_REF].pfn = cr3_value.pml4_pfn;
	mm::pml4[PML4_SELF_REF].present = true;
	mm::pml4[PML4_SELF_REF].rw = true;
	mm::pml4[PML4_SELF_REF].user_supervisor = false;

	PHYSICAL_ADDRESS current_pml4;
	current_pml4.QuadPart =
		(cr3{ __readcr3() }.pml4_pfn << 12);

	const auto kernel_pml4 =
		reinterpret_cast<mm::ppml4e>(
			MmGetVirtualForPhysical(current_pml4));

	// vmxroot will have the same "address space" as the current one being executed in...
	memcpy(&mm::pml4[256], &kernel_pml4[256], sizeof(mm::pml4e) * 256);

	// setup mapping ptes to be present, writeable, executable, and user supervisor false...
	for (auto idx = 0u; idx < 255; ++idx)
	{
		reinterpret_cast<mm::ppte>(mm::pml4)[idx].present = true;
		reinterpret_cast<mm::ppte>(mm::pml4)[idx].rw = true;
	}

	// setup IDT for host....
	segment_descriptor_register_64 idt_value;
	__sidt(&idt_value);

	// copy the guest IDT entries...
	memcpy(idt::table, (void*)idt_value.base_address, idt_value.limit);

	// change gp, pf, and de to vmxroot handlers...
	idt::table[general_protection] = idt::create_entry(hv::idt_addr_t{ __gp_handler }, idt::ist_idx::gp);
	idt::table[page_fault] = idt::create_entry(hv::idt_addr_t{ __pf_handler }, idt::ist_idx::pf);
	idt::table[divide_error] = idt::create_entry(hv::idt_addr_t{ __de_handler }, idt::ist_idx::de);

	// used for SEH in vmxroot fault handler...
	idt::image_base = driver_object->DriverStart;

	// enable vmx operation on all cores...
	KeIpiGenericCall((PKIPI_BROADCAST_WORKER)&vmxon::init_vmxon, NULL);

	// setup VMCS for all logical cores...
	KeIpiGenericCall((PKIPI_BROADCAST_WORKER)&vmxlaunch::init_vmcs, cr3_value.flags);

	// vmxlaunch for all cores...
	KeIpiGenericCall((PKIPI_BROADCAST_WORKER)&vmxlaunch::launch, NULL);
	return STATUS_SUCCESS;
}
added idt and gdt starter code... 4 years ago			`#include "vmxlaunch.hpp"`
			`#include "idt.hpp"`

fixed TSS and IST issues... ISR's have their own RSP now... 4 years ago			`auto drv_entry(PDRIVER_OBJECT driver_object, PUNICODE_STRING registry_path) -> NTSTATUS`
added idt and gdt starter code... 4 years ago			`{`
			`vmxon::g_vmx_ctx =`
			`reinterpret_cast<hv::pvmx_ctx>(`
			`ExAllocatePool(NonPagedPool, sizeof hv::vmx_ctx));`

			`// setup vcpu structures (vmx on region and vmcs...)`
			`vmxon::create_vcpus(vmxon::g_vmx_ctx);`

			`cr3 cr3_value;`
			`cr3_value.flags = __readcr3();`
IST code is still broken and demo is broken... 4 years ago			`cr3_value.pml4_pfn =`
added idt and gdt starter code... 4 years ago			`(MmGetPhysicalAddress(mm::pml4).QuadPart >> 12);`

			`memset(mm::pml4, NULL, sizeof mm::pml4);`
IST code is still broken and demo is broken... 4 years ago			`mm::pml4[PML4_SELF_REF].pfn = cr3_value.pml4_pfn;`
added idt and gdt starter code... 4 years ago			`mm::pml4[PML4_SELF_REF].present = true;`
			`mm::pml4[PML4_SELF_REF].rw = true;`
			`mm::pml4[PML4_SELF_REF].user_supervisor = false;`

			`PHYSICAL_ADDRESS current_pml4;`
			`current_pml4.QuadPart =`
IST code is still broken and demo is broken... 4 years ago			`(cr3{ __readcr3() }.pml4_pfn << 12);`
added idt and gdt starter code... 4 years ago
			`const auto kernel_pml4 =`
			`reinterpret_cast<mm::ppml4e>(`
			`MmGetVirtualForPhysical(current_pml4));`

			`// vmxroot will have the same "address space" as the current one being executed in...`
added mm code (copy virtual memory, map page, address translation) 4 years ago			`memcpy(&mm::pml4[256], &kernel_pml4[256], sizeof(mm::pml4e) * 256);`
added idt and gdt starter code... 4 years ago
cloning GDT, IDT and TSS... making modifications to the clone 4 years ago			`// setup mapping ptes to be present, writeable, executable, and user supervisor false...`
IST code is still broken and demo is broken... 4 years ago			`for (auto idx = 0u; idx < 255; ++idx)`
added idt and gdt starter code... 4 years ago			`{`
			`reinterpret_cast<mm::ppte>(mm::pml4)[idx].present = true;`
			`reinterpret_cast<mm::ppte>(mm::pml4)[idx].rw = true;`
			`}`

cloning GDT, IDT and TSS... making modifications to the clone 4 years ago			`// setup IDT for host....`
			`segment_descriptor_register_64 idt_value;`
			`__sidt(&idt_value);`

			`// copy the guest IDT entries...`
			`memcpy(idt::table, (void*)idt_value.base_address, idt_value.limit);`

			`// change gp, pf, and de to vmxroot handlers...`
fixed TSS and IST issues... ISR's have their own RSP now... 4 years ago			`idt::table[general_protection] = idt::create_entry(hv::idt_addr_t{ __gp_handler }, idt::ist_idx::gp);`
			`idt::table[page_fault] = idt::create_entry(hv::idt_addr_t{ __pf_handler }, idt::ist_idx::pf);`
added div error ISR... 4 years ago			`idt::table[divide_error] = idt::create_entry(hv::idt_addr_t{ __de_handler }, idt::ist_idx::de);`
cloning GDT, IDT and TSS... making modifications to the clone 4 years ago
			`// used for SEH in vmxroot fault handler...`
			`idt::image_base = driver_object->DriverStart;`

added idt and gdt starter code... 4 years ago			`// enable vmx operation on all cores...`
			`KeIpiGenericCall((PKIPI_BROADCAST_WORKER)&vmxon::init_vmxon, NULL);`

			`// setup VMCS for all logical cores...`
			`KeIpiGenericCall((PKIPI_BROADCAST_WORKER)&vmxlaunch::init_vmcs, cr3_value.flags);`

			`// vmxlaunch for all cores...`
			`KeIpiGenericCall((PKIPI_BROADCAST_WORKER)&vmxlaunch::launch, NULL);`
			`return STATUS_SUCCESS;`
			`}`