amd64: move processor control structures to snapshot region

This commit changes the code that sets up all these processor control
structures to allocate pages from the scratch region, map them to an
arbitrary VA, and then point the processor at that VA (in order to
ensure that they survive snapshotting at the same VA).  It also
refactors the architecture-specific initialisation code somewhat, in
order to make it a bit easier to have one memory allocation shared by
all the relevant tables & in preparation for future multi-architecture
support.

Signed-off-by: Lucy Menon <168595099+syntactically@users.noreply.github.com>

Author: syntactically

src/hyperlight_common/src/arch/amd64/layout.rs

@@ -14,6 +14,10 @@ See the License for the specific language governing permissions and
 limitations under the License.
  */
 
+// The addresses in this file should be coordinated with
+// src/hyperlight_guest/src/arch/amd64/layout.rs and
+// src/hyperlight_guest_bin/src/arch/amd64/layout.rs
+
 /// We have this the top of the page below the top of memory in order
 /// to make working with start/end ptrs in a few places more
 /// convenient (not needing to worry about overflow)

src/hyperlight_guest/src/arch/amd64/layout.rs

@@ -14,7 +14,11 @@ See the License for the specific language governing permissions and
 limitations under the License.
  */
 
-pub const MAIN_STACK_TOP_GVA: usize = 0xffff_feff_ffff_f000;
+// The addresses in this file should be coordinated with
+// src/hyperlight_common/src/arch/amd64/layout.rs and
+// src/hyperlight_guest_bin/src/arch/amd64/layout.rs
+
+pub const MAIN_STACK_TOP_GVA: u64 = 0xffff_feff_ffff_f000;
 
 pub fn scratch_size() -> u64 {
     let addr = crate::layout::scratch_size_gva();

src/hyperlight_guest_bin/src/arch/amd64/context.rs

@@ -0,0 +1,118 @@
+/*
+Copyright 2025  The Hyperlight Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+ */
+
+use super::machine::ExceptionInfo;
+
+#[repr(C)]
+/// Saved context, pushed onto the stack by exception entry code
+pub struct Context {
+    /// in order: ds, gs, fs, es
+    pub segments: [u64; 4],
+    pub fxsave: [u8; 512],
+    /// no `rsp`, since the processor saved it
+    /// `rax` is at the top, `r15` the bottom
+    pub gprs: [u64; 15],
+    _padding: u64,
+}
+const _: () = assert!(size_of::<Context>() == 32 + 512 + 120 + 8);
+// The combination of the ExceptionInfo (pushed by the CPU) and the
+// register Context that we save to the stack must be 16byte aligned
+// before calling the hl_exception_handler as specified in the x86-64
+// ELF System V psABI specification, Section 3.2.2:
+//
+// https://gitlab.com/x86-psABIs/x86-64-ABI/-/jobs/artifacts/master/raw/x86-64-ABI/abi.pdf?job=build
+const _: () = assert!((size_of::<Context>() + size_of::<ExceptionInfo>()).is_multiple_of(16));
+
+// Defines `context_save` and `context_restore`
+macro_rules! save {
+    () => {
+        concat!(
+            // Save general-purpose registers
+            "    sub rsp, 8\n",
+            "    push rax\n",
+            "    push rbx\n",
+            "    push rcx\n",
+            "    push rdx\n",
+            "    push rsi\n",
+            "    push rdi\n",
+            "    push rbp\n",
+            "    push r8\n",
+            "    push r9\n",
+            "    push r10\n",
+            "    push r11\n",
+            "    push r12\n",
+            "    push r13\n",
+            "    push r14\n",
+            "    push r15\n",
+            // Save floating-point/SSE registers
+            // TODO: Don't do this unconditionally: get the exn
+            //       handlers compiled without sse
+            // TODO: Check if we ever generate code with ymm/zmm in
+            //       the handlers and save/restore those as well
+            "    sub rsp, 512\n",
+            "    mov rax, rsp\n",
+            "    fxsave [rax]\n",
+            // Save the rest of the segment registers
+            "    mov rax, es\n",
+            "    push rax\n",
+            "    mov rax, fs\n",
+            "    push rax\n",
+            "    mov rax, gs\n",
+            "    push rax\n",
+            "    mov rax, ds\n",
+            "    push rax\n",
+        )
+    };
+}
+pub(super) use save;
+
+macro_rules! restore {
+    () => {
+        concat!(
+            // Restore most segment registers
+            "    pop rax\n",
+            "    mov ds, rax\n",
+            "    pop rax\n",
+            "    mov gs, rax\n",
+            "    pop rax\n",
+            "    mov fs, rax\n",
+            "    pop rax\n",
+            "    mov es, rax\n",
+            // Restore floating-point/SSE registers
+            "    mov rax, rsp\n",
+            "    fxrstor [rax]\n",
+            "    add rsp, 512\n",
+            // Restore general-purpose registers
+            "    pop r15\n",
+            "    pop r14\n",
+            "    pop r13\n",
+            "    pop r12\n",
+            "    pop r11\n",
+            "    pop r10\n",
+            "    pop r9\n",
+            "    pop r8\n",
+            "    pop rbp\n",
+            "    pop rdi\n",
+            "    pop rsi\n",
+            "    pop rdx\n",
+            "    pop rcx\n",
+            "    pop rbx\n",
+            "    pop rax\n",
+            "    add rsp, 8\n",
+        )
+    };
+}
+pub(super) use restore;

src/hyperlight_guest_bin/src/arch/amd64/exception/entry.rs

@@ -0,0 +1,217 @@
+/*
+Copyright 2025  The Hyperlight Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+// Note: this code takes reference from
+// https://github.com/nanvix/nanvix/blob/dev/src/kernel/src/hal/arch/x86/hooks.S
+
+use core::arch::{asm, global_asm};
+
+use hyperlight_common::outb::Exception;
+
+use super::super::context;
+use super::super::machine::{IDT, IdtEntry, IdtPointer, ProcCtrl};
+
+unsafe extern "C" {
+    // Exception handlers
+    fn _do_excp0();
+    fn _do_excp1();
+    fn _do_excp2();
+    fn _do_excp3();
+    fn _do_excp4();
+    fn _do_excp5();
+    fn _do_excp6();
+    fn _do_excp7();
+    fn _do_excp8();
+    fn _do_excp9();
+    fn _do_excp10();
+    fn _do_excp11();
+    fn _do_excp12();
+    fn _do_excp13();
+    fn _do_excp14();
+    fn _do_excp15();
+    fn _do_excp16();
+    fn _do_excp17();
+    fn _do_excp18();
+    fn _do_excp19();
+    fn _do_excp20();
+    fn _do_excp30();
+}
+
+// Macro to generate exception handlers
+// that satisfy the `extern`s at the top of the file.
+//
+// - Example output from this macro for generate_excp!(0) call:
+// ```assembly
+// .global _do_excp0
+// _do_excp0:
+//     context_save!()
+//     mov rsi, 0
+//     mov rdx, 0
+//     jmp _do_excp_common
+// ```
+macro_rules! generate_excp {
+    ($num:expr) => {
+        concat!(
+            ".global _do_excp",
+            stringify!($num),
+            "\n",
+            "_do_excp",
+            stringify!($num),
+            ":\n",
+            context::save!(),
+            // rsi is the exception number.
+            "    mov rsi, ",
+            stringify!($num),
+            "\n",
+            // rdx is only used for pagefault exception and
+            // contains the address that caused the pagefault.
+            "    mov rdx, 0\n",
+            "    jmp _do_excp_common\n"
+        )
+    };
+    ($num:expr, pusherrcode) => {
+        concat!(
+            ".global _do_excp",
+            stringify!($num),
+            "\n",
+            "_do_excp",
+            stringify!($num),
+            ":\n",
+            // Some exceptions push an error code onto the stack.
+            // For the ones that don't, we push a 0 to keep the
+            // stack aligned.
+            "   push 0\n",
+            context::save!(),
+            // rsi is the exception number.
+            "    mov rsi, ",
+            stringify!($num),
+            "\n",
+            // rdx is only used for pagefault exception and
+            // contains the address that caused the pagefault.
+            "    mov rdx, 0\n",
+            "    jmp _do_excp_common\n"
+        )
+    };
+    ($num:expr, pagefault) => {
+        concat!(
+            ".global _do_excp",
+            stringify!($num),
+            "\n",
+            "_do_excp",
+            stringify!($num),
+            ":\n",
+            context::save!(),
+            "    mov rsi, ",
+            stringify!($num),
+            "\n",
+            // In a page fault exception, the cr2 register
+            // contains the address that caused the page fault.
+            "    mov rdx, cr2\n",
+            "    jmp _do_excp_common\n"
+        )
+    };
+}
+
+// Generates exception handlers
+macro_rules! generate_exceptions {
+    () => {
+        concat!(
+            // Common exception handler
+            ".global _do_excp_common\n",
+            "_do_excp_common:\n",
+            // the first argument to the Rust handler points to the
+            // bottom of the context struct, which happens to be the
+            // stack pointer just before it was called.
+            "    mov rdi, rsp\n",
+            "    call {hl_exception_handler}\n",
+            context::restore!(),
+            "    add rsp, 8\n", // error code
+            "    iretq\n",      // iretq is used to return from exception in x86_64
+            generate_excp!(0, pusherrcode),
+            generate_excp!(1, pusherrcode),
+            generate_excp!(2, pusherrcode),
+            generate_excp!(3, pusherrcode),
+            generate_excp!(4, pusherrcode),
+            generate_excp!(5, pusherrcode),
+            generate_excp!(6, pusherrcode),
+            generate_excp!(7, pusherrcode),
+            generate_excp!(8),
+            generate_excp!(9, pusherrcode),
+            generate_excp!(10),
+            generate_excp!(11),
+            generate_excp!(12),
+            generate_excp!(13),
+            generate_excp!(14, pagefault),
+            generate_excp!(15, pusherrcode),
+            generate_excp!(16, pusherrcode),
+            generate_excp!(17),
+            generate_excp!(18, pusherrcode),
+            generate_excp!(19, pusherrcode),
+            generate_excp!(20, pusherrcode),
+            generate_excp!(30),
+        )
+    };
+}
+
+// Output the assembly code
+global_asm!(
+    generate_exceptions!(),
+    hl_exception_handler = sym super::handle::hl_exception_handler,
+);
+
+pub(in super::super) fn init_idt(pc: *mut ProcCtrl) {
+    let idt = unsafe { &raw mut (*pc).idt };
+    let set_idt_entry = |idx, handler: unsafe extern "C" fn()| {
+        let handler_addr = handler as *const () as u64;
+        unsafe {
+            (&raw mut (*idt).entries[idx as usize]).write_volatile(IdtEntry::new(handler_addr));
+        }
+    };
+    set_idt_entry(Exception::DivideByZero, _do_excp0); // Divide by zero
+    set_idt_entry(Exception::Debug, _do_excp1); // Debug
+    set_idt_entry(Exception::NonMaskableInterrupt, _do_excp2); // Non-maskable interrupt
+    set_idt_entry(Exception::Breakpoint, _do_excp3); // Breakpoint
+    set_idt_entry(Exception::Overflow, _do_excp4); // Overflow
+    set_idt_entry(Exception::BoundRangeExceeded, _do_excp5); // Bound Range Exceeded
+    set_idt_entry(Exception::InvalidOpcode, _do_excp6); // Invalid Opcode
+    set_idt_entry(Exception::DeviceNotAvailable, _do_excp7); // Device Not Available
+    set_idt_entry(Exception::DoubleFault, _do_excp8); // Double Fault
+    set_idt_entry(Exception::CoprocessorSegmentOverrun, _do_excp9); // Coprocessor Segment Overrun
+    set_idt_entry(Exception::InvalidTSS, _do_excp10); // Invalid TSS
+    set_idt_entry(Exception::SegmentNotPresent, _do_excp11); // Segment Not Present
+    set_idt_entry(Exception::StackSegmentFault, _do_excp12); // Stack-Segment Fault
+    set_idt_entry(Exception::GeneralProtectionFault, _do_excp13); // General Protection Fault
+    set_idt_entry(Exception::PageFault, _do_excp14); // Page Fault
+    set_idt_entry(Exception::Reserved, _do_excp15); // Reserved
+    set_idt_entry(Exception::X87FloatingPointException, _do_excp16); // x87 Floating-Point Exception
+    set_idt_entry(Exception::AlignmentCheck, _do_excp17); // Alignment Check
+    set_idt_entry(Exception::MachineCheck, _do_excp18); // Machine Check
+    set_idt_entry(Exception::SIMDFloatingPointException, _do_excp19); // SIMD Floating-Point Exception
+    set_idt_entry(Exception::VirtualizationException, _do_excp20); // Virtualization Exception
+    set_idt_entry(Exception::SecurityException, _do_excp30); // Security Exception
+
+    let idtr = IdtPointer {
+        limit: (core::mem::size_of::<IDT>() - 1) as u16,
+        base: idt as u64,
+    };
+    unsafe {
+        asm!(
+            "lidt [{}]",
+            in(reg) &idtr,
+            options(readonly, nostack, preserves_flags)
+        );
+    }
+}