Keep the arch layer's prose consumer-agnostic; note the x86-64 binding

The generic address-space layer no longer names win32 in its comments: the
khalf_score and gva_translate doc-comments described themselves in terms of
their current Windows consumer, a downward coupling from the stable layer to a
specific, swappable one. Reworded to describe what each primitive does, not who
calls it. Also drop a dangling reference to the renamed engine handle.

State the contract's real scope in memmodel.h: OS-agnostic but architecture-
bound. The address-space key is the x86-64 CR3 (the PML4 base), shared by any
guest OS on x86-64 - CR3 is an ISA register, not a Windows concept; only its
per-process storage (DirectoryTableBase) is win32-specific and stays in the
win32 engine.

include/memmodel.h

@@ -1,4 +1,4 @@
-/* memmodel.h - the OS-agnostic memory-model contract (the middle layer).
+/* memmodel.h - the OS-agnostic, x86-64 memory-model contract (the middle layer).
  *
  * This is the shared vocabulary between the ENGINE (which turns guest-physical
  * RAM into a usable virtual memory model via x86-64 paging + Windows bring-up)
@@ -6,9 +6,13 @@
  * concept: a handler compiled against this header literally cannot mention an
  * _EPROCESS, a PEB, or an LDR entry.
  *
+ * OS-agnostic, but architecture-bound: the address-space key is the x86-64 CR3
+ * (the PML4 base), shared by any guest OS on x86-64 - it is not portable to an
+ * ISA with a different paging root (e.g. ARM64 TTBR0/1).
+ *
  * Everything here is keyed by a `vmie_mem*` (the opaque physical/paging
- * substrate) plus a `cr3` (the address space). The engine handle `vmie` is
+ * substrate) plus a `cr3` (the address space). The engine handle is never
- * never handed to a handler - only `vmie_mem*` + `cr3`.
+ * handed to a handler - only `vmie_mem*` + `cr3`.
  *
  * Conventions:
  *   - `cr3` is a raw CR3 / DirectoryTableBase value; low flag bits are masked

src/engine/gva.c

@@ -46,8 +46,8 @@ static int gva_gpa(vmie_mem* m, uintptr_t cr3, uintptr_t va,
 }
 
 /* cold extern translate: GPA of `va` under `cr3`, or -1. Wraps the hot static
- * gva_gpa for cold callers outside this TU (win32 bring-up) without exposing the
+ * gva_gpa for cold callers outside this TU without exposing the inlinable hot
- * inlinable hot primitive. Declared in engine-arch.h. */
+ * primitive. Declared in engine-arch.h. */
 __attribute__((cold))
 int gva_translate(vmie_mem* m, uintptr_t cr3, uintptr_t va, uintptr_t* gpa) {
     return gva_gpa(m, cr3, va, gpa, NULL);

src/engine/include/engine-arch.h

@@ -21,15 +21,15 @@
 /* gva_read/gva_write/gva_regions/gva_sweep + gva_sweep_cb and vregion/VR_*
  * are the OS-agnostic contract: declared in memmodel.h, pulled in above. */
 
-/* paging heuristic, shared by the arch walker and the win32 bring-up. Counts
+/* paging heuristic, shared by every PT-walking TU. Counts present kernel-half
- * present kernel-half PML4 entries under `pml4` (an address-space liveness
+ * PML4 entries under `pml4` (an address-space liveness score). OS-agnostic:
- * score). OS-agnostic: const vmie_mem*, no profile/struct vmie. */
+ * const vmie_mem*, no profile, no engine handle. */
 int   khalf_score(const vmie_mem* m, uint64_t pml4) __attribute__((cold));
 
 /* cold extern wrapper over the hot static page-table walk: translate `va` under
  * `cr3` to a GPA (no leaf length). Returns 0 on success, -1 if not present. For
- * cold callers outside gva.c (win32 bring-up); the hot inlinable primitive stays
+ * cold callers outside gva.c; the hot inlinable primitive stays private to
- * private to gva.c. */
+ * gva.c. */
 int   gva_translate(vmie_mem* m, uintptr_t cr3, uintptr_t va, uintptr_t* gpa) __attribute__((cold));
 
 #endif /* VMIE_ENGINE_ARCH_H */