By far, the most popular so-called DOS Extender in the early 1990’s was DOS/4GW. MS-DOS game compatibility occupied a very large portion of my time during Windows 95 development, so I saw a lot of DOS Extender banners, most frequently the DOS/4GW banner.
Now, you might wonder, “How did these games even run in Windows 95 if they came with a DOS Extender? Wouldn’t the extender try to enter protected mode and fail, because Windows was already managing protected mode?”
When Raymond Chen speaks, we listen. That’s the rules.
This, I had this question in my mind ever since I learned that Microsoft dropped MS-DOS compatibility in 64-bit Windows NT because x86-64 dropped support for Virtual 8086 mode (which emulates “real mode”). Which led me to read up on what is “real mode” and “protected mode” were, but I could never figure out how the DOS box in 32-bit Windows executed games that started at real-mode but entered protected mode inside the Virtual 8086 VM. 15 years later I know the answer.
That makes me wonder – if a game is going to run in 32 bit mode, the game itself can run natively on modern versions of Windows; it just needs its environment set up, and the bootstrapping process for that was the discontinued 8086 VM. A hypothetical 32 bit client wrapper could execute the game; it wouldn’t really be “DPMI” in the sense that it needs to implement the interface to the game, but would never need to talk to a true DPMI server for memory. Raymond’s point is that if such a thing is possible, it would be able to host a lot of DOS games.
I don’t know much about what DOS/4Gw interfaced with games though. Phar-Lap TNT was cool in that the 32 bit client was a PE executable that was natively using the Win32 API, which it implemented on DOS. All of these needed some kind of API between the game and the extender, so the issue is whether it’s possible to and how to implement that API independently.
This can’t be done because DOS games would often drop down to real-mode to use DOS services such as reading and writing files or do certain I/O. There was quite some hackery involved to accomplish this, such as “wiring down” the relevant variables into real memory while in protected mode (the compiler provided support for that), so when the processor drops to real mode it can read or write to those variables. Basically, “wiring down” creates a permanent mapping between a virtual address (in virtual memory/address space) and a real address (in real memory). There is a YouTube video explaining it, I think it’s this one: https://www.youtube.com/watch?v=EDl9qBZ9Bb0 (will watch later and confirm)
So, no you can’t do what you propose.
Trivia: The other bit of hackery was going from protected mode to real mode, which Intel didn’t officially support (they wanted their CPUs to only go from real mode to protected mode and stay there until the system is shut down), but people quickly found a way to reset the CPU without resetting the memory so it became possible (the CPU starts at real mode). Again, the compiler provides support for that.
Sorry I don’t understand this, how can you use the win32 API and implement it in DOS? But since I am intrigued, if you have some more documentation, please provide it.
kurkosdr,
I am not clear exactly what malxau is referring to, but it sounds similar to “flat real mode” where the CPU is configured in protected mode and backs out to real mode again and makes it possible for real mode applications to access the full 32bit address space because the normal 64k real mode limit doesn’t get applied until the segment is reloaded. This worked very well especially given that the extra fs gs segment registers would not get disturbed during DOS system calls.
This made it possible to be in real mode, using DOS, and still have access to 32bit address space. As long as you didn’t reload those segment registers, it just worked.
Yes, it was a limitation of the 286. Initially IBM worked around it with hardware on the motherboard to physically reset the CPU and this is what software did. Also the bios needed a special boot mode to boot strait into the running system rather than proceed with the normal boot process.
At some point they figured out that a triple CPU fault could be used to reset the CPU, but the rest of the recovery process remained the same.
Windows exposed a lot of functionality through interrupt calls that dos applications could perform.
http://www.ctyme.com/intr/alpha-m.htm#Microsoft%20Windows
Wikipedia says that “unreal mode” aka “flat real mode” is incompatible with protected mode operating systems”:
https://en.wikipedia.org/wiki/Unreal_mode
And very few games used it. The vast majority of games simply switched the CPU to 32-bit protected mode (or more accurately, the DPMI server did it for them) and then dropped down to real mode as necessary to use DOS services, and then switched back to protected mode when done using DOS services. Why not? It’s possible to go from protected mode to real mode (using one of the tricks you mention in the rest of your posts), and it’s possible to keep variables create in protected mode accessible by real mode using the “wiring down” trick. Obviously, the compiler made sure that wired down variables had physical addresses in the conventional memory (640K) part, but there was enough memory in conventional memory for whatever data you wanted to use with DOS services. And unlike unreal mode, this preserved compatibility with Virtual8086.
Can you quote the exact part of that page you are referring to?
kurkosdr,
I think the full quote is kind of relevant…
While these operating systems didn’t support flat real mode, as far as the CPU is concerned it wouldn’t have taken much to get it to work. They could have provided an API for it and/or intercepted opcodes from VM mode. It’s not that it wasn’t possible, but that actually allowing DOS applications to operate in flat real mode would have given them unfettered access to all the memory, which is generally bad practice for multiuser operating systems.
I believe they also could have supported a “virtual flat real mode” under the CPU’s VM mode by assigning DOS processes more virtual memory and having the operating system load unlimited segments before switch into VM mode. Microsoft didn’t do this, but I don’t see a reason it wouldn’t have been possible as far as the CPU is concerned.
Flat real mode was useful in reducing context switches to zero, but sure if you could afford to switch modes on every DOS/BIOS/etc call, then that works as well.
Well, just to be clear about that, such tricks became completely unnecessary starting with 386 because intel completely revamped protected mode. Entering and leaving protected mode is as trivial as setting a bit 0 in the CR0 register (although it takes some prep-work to make sure the environment is actually ready for the switch).
https://wiki.osdev.org/CPU_Registers_x86#CR0
The vast majority of protected mode software don’t support 286 and use this 386 mechanism instead.
kurkosdr,
Sorry, I’m not familiar with the Phar-Lap extender nor how it was different than others. So this is just a guess mind you, but there is this, which suggests that Pharlaps operated through a VDX in some way…
“PHARLAPX – GET API ENTRY POINT”
http://www.ctyme.com/intr/rb-4601.htm
I am more familiar with normal VCPI and DPMI extenders, which everyone here is probably already familiar with.
en.wikipedia.org/wiki/Virtual_Control_Program_Interface
en.wikipedia.org/wiki/DOS_Protected_Mode_Interface
This old interface is new to me…glossing over it brings back very old memories though! Like Netroom and Stacker!
en.wikipedia.org/wiki/DOS_Protected_Mode_Services
Yes, of course, giving a flat real mode program unfettered access to all the memory (aka ring 0) is a very bad idea, because it would unintentionally corrupt OS data structures even during normal operation, since the flat real mode program assumes that all memory above 1MB is free memory and has no clue that the OS has stuff stored in there. So, it’s not just a very bad idea, it’s downright incompatible even under the most ideal conditions (aka even if we assume no malicious behaviour and no unexpected operation from the flat real mode program). So Wikipedia is correct when it uses the term “incompatible”.
Because flat real mode is an undocumented feature and Intel didn’t want to make their Virtual8086 implementation more complex to support an undocumented feature. Virtual8086 was complex enough for a backwards compatibility feature without it. What they could consider doing was hardware-accelerated virtualization of an entire 32-bit CPU, which is what they eventually did with VT-x.
kurkosdr,
Don’t forget that flat real mode software could use the same XMS memory allocators used by EMS and other protected mode software.
In particular…
http://www.phatcode.net/res/219/files/xms20.txt
I believe earlier versions of windows used the very same allocators.
That’s only true for DOS software that assumes it owns all of extended memory, but in practice this wasn’t true because most DOS software used either XMS or EMS. Well behaved DOS software that respected the extended memory boundaries should have worked ok even under window – even flat real mode. However flat real mode comes at the cost of not having strongly enforced memory protection. You don’t want bugs in one application to take down the whole OS. IMHO this is the main reason not to support it.
Having programmed flat real mode myself, I actually found it significantly easier to implement software this way. All the complexity and hacks of real mode segmented memory and protected mode mode switching faded away. You could easily access any memory at will. But having to trust applications to stick within their designated memory regions is a major security flaw for a multiuser OS and it seems to me this is the main reason it wasn’t supported by windows.
> how can you use the win32 API and implement it in DOS?
Phar-Lap TNT implements a PE loader, which switches the system to 32-bit mode, loading the executable, then resolving imports to functions it provides. One key detail I should have mentioned earlier is the real target, or at least where I saw it used, was command line software.
Internally, the process you describe about copying buffers to conventional memory and invoking DOS still has to occur, but it’s handled by the Phar-Lap runtime which implements the API as opposed to the application.
I was under the impression that a lot of extenders did this due to the convenience to program authors. TNT Lite was bundled with Visual C++ 32 bit edition (the original 1.1 release), and part of the reason is because a program writer just uses a 100% 32-bit toolchain, no messing around with 16/32 bit assembly thunks. That property is what would make it feasible to replace with an alternate runtime, although in the case of TNT, that already happened.
TNT Lite includes a DOS executable, TNTLITE.EXE, which implements the loader and runtime. This can be bound into an executable, which really meant inserting code into the MS-DOS stub which looks for TNTLITE.EXE in the path. But due to the way it was distributed, TNTLITE.EXE can just be pointed at an arbitrary Win32 program. Unfortunately most are newer and rely on APIs it didn’t implement, so it’s not much use if you didn’t write the program yourself using tools from this era.
TNT can be seen in action in a lot of Microsoft’s development tools. Visual C++ 1.0/1.5 (16 bit), 1.1 (32 bit), and MASM 6.1x are all built with TNT. This means Visual C++ 1.5’s 16 bit compiler can run on modern Windows, because it’s really a 32 bit PE program. It ran on DOS due to Phar-Lap’s runtime. Phar-Lap’s runtime used DPMI, allowing it to run under Windows 3.1 (which didn’t have a protected mode console subsystem.) Again though, the 32 bit compiler was more interesting, because for the same reason it could run from DOS/Windows 3.1 to generate Win32s executables. The 1.1 CD contained one copy of the compiler with the IDE for use under NT, and another directory with just the command line tools for use under DOS/3.1, but the tools are binary identical.
Related, but the earlier Phar-Lap 286 product was similar. It implemented the 16 bit OS/2 API on DOS. That turned out to be less useful since the API didn’t last as long in the market, but it allows a single NE executable to run in protected mode on DOS, OS/2, and NT (which had an OS/2 subsystem.) A lite version of that was bundled with Visual C++ 1.x, 16 bit. Similar to TNT, a program writer uses the 16-bit compiler to generate a protected mode NE executable – no assembly thunks – and Phar Lap took care of implementing the thunks to translate the OS/2 API onto DOS. This version was less crippled than TNT Lite – it still had DLL loading included – which allowed me to get OS/2 software that wasn’t written with Phar-Lap in mind to run on DOS (C 5.1, fwiw.)
Here’s an archive.org dump of the Visual C++ 1.1 32 bit CD, containing TNTLITE as well as showing its internal use of DOSXNT.EXE, which is a non-Lite version of the same code. For documentation, see the TNTLITE.DOC file.
https://ia803203.us.archive.org/view_archive.php?archive=/23/items/microsoft-visual-c-1.10-for-windows-nt/Visual%20C%2B%2B%201.10%20NT%20and%2032s.iso
There were later versions of TNT after this, but they all had restrictive licensing, so the 1993 versions are the only ones I’ve ever examined. Since the market for DOS extenders was ending, they transitioned into fleshing out the API layer and turning it into a “real” embedded OS. Eg, see https://www.electronicdesign.com/technologies/embedded/article/21773071/embedded-os-improves-win32-compatibility .
The more interesting part is that Microsoft actually supporting a standard back in those days.
Yes, they still had minor incompatibilities. but did not come up with something like MS-DPMI and obsolete them all. Maybe they did not care as much as making DOS and Windows incompatible with third parties, or maybe they did not have enough power in the gaming market. But for one reason or another we had real cross-vendor compatible 32-bit DOS kernel interface.
The DPMI standard was developed by Microsoft in 1989. Later they turned over control to an open industry committee. So no reason to be incompatible to your own standard.
True, and MicroSoft has always been very much into being compatible. They always went to great lengths making sure that every new version of Windows worked with software for older versions. Which supposedly led them to skip Windows 9 as a version to make sure old Windows 98/98 software wouldn’t think it was running on that version.
Also, in order for Windows 95 to succeed, they had to make sure DOS games ran fine, or risk losing the DOS gaming community.
You are not confusing “backward compatibility” with “standards”? In those years this corporate beast would make decisions based on profit and greed.
Interesting, I did not look at it like that.
But we can probably say their behavior against customers (game developers) vs competitors (alternative DOS implementations) were very different.
(Of course there is a thin line in there. They for example release games after all, but don’t actually push out other game publishers).