EPT cause triple fault

EPT cause triple fault

Hi all,

I am writing a simple runtime hypervisor, like hyperdbg, bluepill. At first it works fine. But when I enable EPT, the vm exits with triple fault (Exit reason 2). and the guest RIP was at the fist instruction in non-root mode after vmlaunch. There is no ept violation. I did some 1:1 direct mapping, since no ept violation, that would be no use at all.

wired thing is, the same code will run on VMware virtual machine.

My PC is Core i7, and I disabled multicore. and I use serial port with windbg. 

I am confused, which instruction caused this triple fault? I change the first line of non-root mode to "mov edi, edi", still the same triple fault. 

 

Best regards,
Mingbo

5 posts / 0 nouveau(x)
Dernière contribution
Reportez-vous à notre Notice d'optimisation pour plus d'informations sur les choix et l'optimisation des performances dans les produits logiciels Intel.

Hi Thai Le

Thanks for reply :)

I set all bits in exception bitmap, found that a page fault caused a double fault, and that caused triple fault.

the page fault occurred still at the first instruction of non-root mode, Exit Quilfacation is also point to that instruction. but that address is valid according to the pde and pte....

any suggestions?

thanks

Best regards,
Mingbo

Hi Mingbo,

You might want to review some of these topics relating to the triple faults:
- Triple Fault: http://wiki.osdev.org/Triple_Fault, http://en.wikipedia.org/wiki/Triple_fault
- Triple Fault Advice Page from Carnegie Mellon*.

-Thai

A new blog was created to provide resources for sw developers: Resources for Software Developers: Intel® Virtualization Technology (Intel® VT)

-Thai

Laisser un commentaire

Veuillez ouvrir une session pour ajouter un commentaire. Pas encore membre ? Rejoignez-nous dès aujourd’hui