首頁 探索 說明
登入
SoftwareDesign
/
csu3_am335x
8
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
分支: master
分支列表 標籤列表
csu3_am335x
/
EVSE
/
GPL
/
php-8.1.12
/
ext
/
opcache
/
jit
/
libudis86
/
decode.c

decode.c 30 KB
永久連結 文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266 
  1. /* udis86 - libudis86/decode.c
    2. 

  2.  * 
    3. 

  3.  * Copyright (c) 2002-2009 Vivek Thampi
    4. 

  4.  * All rights reserved.
    5. 

  5.  * 
    6. 

  6.  * Redistribution and use in source and binary forms, with or without modification, 
    7. 

  7.  * are permitted provided that the following conditions are met:
    8. 

  8.  * 
    9. 

  9.  *     * Redistributions of source code must retain the above copyright notice, 
    10. 

  10.  *       this list of conditions and the following disclaimer.
    11. 

  11.  *     * Redistributions in binary form must reproduce the above copyright notice, 
    12. 

  12.  *       this list of conditions and the following disclaimer in the documentation 
    13. 

  13.  *       and/or other materials provided with the distribution.
    14. 

  14.  * 
    15. 

  15.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND 
    16. 

  16.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED 
    17. 

  17.  * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE 
    18. 

  18.  * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR 
    19. 

  19.  * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES 
    20. 

  20.  * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 
    21. 

  21.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON 
    22. 

  22.  * ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 
    23. 

  23.  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS 
    24. 

  24.  * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
    25. 

  25.  */
    26. 

  26. #include "udint.h"
    27. 

  27. #include "types.h"
    28. 

  28. #include "extern.h"
    29. 

  29. #include "decode.h"
    30. 

  30. 

  31. #ifndef __UD_STANDALONE__
    32. 

  32. # include <string.h>
    33. 

  33. #endif /* __UD_STANDALONE__ */
    34. 

  34. 

  35. /* The max number of prefixes to an instruction */
    36. 

  36. #define MAX_PREFIXES    15
    37. 

  37. 

  38. /* rex prefix bits */
    39. 

  39. #define REX_W(r)        ( ( 0xF & ( r ) )  >> 3 )
    40. 

  40. #define REX_R(r)        ( ( 0x7 & ( r ) )  >> 2 )
    41. 

  41. #define REX_X(r)        ( ( 0x3 & ( r ) )  >> 1 )
    42. 

  42. #define REX_B(r)        ( ( 0x1 & ( r ) )  >> 0 )
    43. 

  43. #define REX_PFX_MASK(n) ( ( P_REXW(n) << 3 ) | \
    44. 

  44.                           ( P_REXR(n) << 2 ) | \
    45. 

  45.                           ( P_REXX(n) << 1 ) | \
    46. 

  46.                           ( P_REXB(n) << 0 ) )
    47. 

  47. 

  48. /* scable-index-base bits */
    49. 

  49. #define SIB_S(b)        ( ( b ) >> 6 )
    50. 

  50. #define SIB_I(b)        ( ( ( b ) >> 3 ) & 7 )
    51. 

  51. #define SIB_B(b)        ( ( b ) & 7 )
    52. 

  52. 

  53. /* modrm bits */
    54. 

  54. #define MODRM_REG(b)    ( ( ( b ) >> 3 ) & 7 )
    55. 

  55. #define MODRM_NNN(b)    ( ( ( b ) >> 3 ) & 7 )
    56. 

  56. #define MODRM_MOD(b)    ( ( ( b ) >> 6 ) & 3 )
    57. 

  57. #define MODRM_RM(b)     ( ( b ) & 7 )
    58. 

  58. 

  59. static int decode_ext(struct ud *u, uint16_t ptr);
    60. 

  60. static int decode_opcode(struct ud *u);
    61. 

  61. 

  62. enum reg_class { /* register classes */
    63. 

  63.   REGCLASS_GPR,
    64. 

  64.   REGCLASS_MMX,
    65. 

  65.   REGCLASS_CR,
    66. 

  66.   REGCLASS_DB,
    67. 

  67.   REGCLASS_SEG,
    68. 

  68.   REGCLASS_XMM
    69. 

  69. };
    70. 

  70. 

  71.  /* 
    72. 

  72.  * inp_start
    73. 

  73.  *    Should be called before each de-code operation.
    74. 

  74.  */
    75. 

  75. static void
    76. 

  76. inp_start(struct ud *u)
    77. 

  77. {
    78. 

  78.   u->inp_ctr = 0;
    79. 

  79. }
    80. 

  80. 

  81. static uint8_t
    82. 

  82. inp_peek(struct ud *u)
    83. 

  83. {
    84. 

  84.   if (u->inp_end == 0) {
    85. 

  85.     if (u->inp_buf != NULL) {
    86. 

  86.       if (u->inp_buf_index < u->inp_buf_size) {
    87. 

  87.         return u->inp_buf[u->inp_buf_index];
    88. 

  88.       }
    89. 

  89.     } else if (u->inp_peek != UD_EOI) {
    90. 

  90.       return u->inp_peek;
    91. 

  91.     } else {
    92. 

  92.       int c;
    93. 

  93.       if ((c = u->inp_hook(u)) != UD_EOI) {
    94. 

  94.         u->inp_peek = c;
    95. 

  95.         return u->inp_peek;
    96. 

  96.       }
    97. 

  97.     }
    98. 

  98.   }
    99. 

  99.   u->inp_end = 1;
    100. 

  100.   UDERR(u, "byte expected, eoi received\n");
    101. 

  101.   return 0;
    102. 

  102. }
    103. 

  103.    
    104. 

  104. static uint8_t
    105. 

  105. inp_next(struct ud *u)
    106. 

  106. {
    107. 

  107.   if (u->inp_end == 0) {
    108. 

  108.     if (u->inp_buf != NULL) {
    109. 

  109.       if (u->inp_buf_index < u->inp_buf_size) {
    110. 

  110.         u->inp_ctr++;
    111. 

  111.         return (u->inp_curr = u->inp_buf[u->inp_buf_index++]);
    112. 

  112.       }
    113. 

  113.     } else {
    114. 

  114.       int c = u->inp_peek;
    115. 

  115.       if (c != UD_EOI || (c = u->inp_hook(u)) != UD_EOI) {
    116. 

  116.         u->inp_peek = UD_EOI;
    117. 

  117.         u->inp_curr = c;
    118. 

  118.         u->inp_sess[u->inp_ctr++] = u->inp_curr;
    119. 

  119.         return u->inp_curr;
    120. 

  120.       }
    121. 

  121.     }
    122. 

  122.   }
    123. 

  123.   u->inp_end = 1;
    124. 

  124.   UDERR(u, "byte expected, eoi received\n");
    125. 

  125.   return 0;
    126. 

  126. }
    127. 

  127. 

  128. static uint8_t
    129. 

  129. inp_curr(struct ud *u)
    130. 

  130. {
    131. 

  131.   return u->inp_curr;
    132. 

  132. }
    133. 

  133. 

  134. 

  135. /*
    136. 

  136.  * inp_uint8
    137. 

  137.  * int_uint16
    138. 

  138.  * int_uint32
    139. 

  139.  * int_uint64
    140. 

  140.  *    Load little-endian values from input
    141. 

  141.  */
    142. 

  142. static uint8_t 
    143. 

  143. inp_uint8(struct ud* u)
    144. 

  144. {
    145. 

  145.   return inp_next(u);
    146. 

  146. }
    147. 

  147. 

  148. static uint16_t 
    149. 

  149. inp_uint16(struct ud* u)
    150. 

  150. {
    151. 

  151.   uint16_t r, ret;
    152. 

  152. 

  153.   ret = inp_next(u);
    154. 

  154.   r = inp_next(u);
    155. 

  155.   return ret | (r << 8);
    156. 

  156. }
    157. 

  157. 

  158. static uint32_t 
    159. 

  159. inp_uint32(struct ud* u)
    160. 

  160. {
    161. 

  161.   uint32_t r, ret;
    162. 

  162. 

  163.   ret = inp_next(u);
    164. 

  164.   r = inp_next(u);
    165. 

  165.   ret = ret | (r << 8);
    166. 

  166.   r = inp_next(u);
    167. 

  167.   ret = ret | (r << 16);
    168. 

  168.   r = inp_next(u);
    169. 

  169.   return ret | (r << 24);
    170. 

  170. }
    171. 

  171. 

  172. static uint64_t 
    173. 

  173. inp_uint64(struct ud* u)
    174. 

  174. {
    175. 

  175.   uint64_t r, ret;
    176. 

  176. 

  177.   ret = inp_next(u);
    178. 

  178.   r = inp_next(u);
    179. 

  179.   ret = ret | (r << 8);
    180. 

  180.   r = inp_next(u);
    181. 

  181.   ret = ret | (r << 16);
    182. 

  182.   r = inp_next(u);
    183. 

  183.   ret = ret | (r << 24);
    184. 

  184.   r = inp_next(u);
    185. 

  185.   ret = ret | (r << 32);
    186. 

  186.   r = inp_next(u);
    187. 

  187.   ret = ret | (r << 40);
    188. 

  188.   r = inp_next(u);
    189. 

  189.   ret = ret | (r << 48);
    190. 

  190.   r = inp_next(u);
    191. 

  191.   return ret | (r << 56);
    192. 

  192. }
    193. 

  193. 

  194. 

  195. static UD_INLINE int
    196. 

  196. eff_opr_mode(int dis_mode, int rex_w, int pfx_opr)
    197. 

  197. {
    198. 

  198.   if (dis_mode == 64) {
    199. 

  199.     return rex_w ? 64 : (pfx_opr ? 16 : 32);
    200. 

  200.   } else if (dis_mode == 32) {
    201. 

  201.     return pfx_opr ? 16 : 32;
    202. 

  202.   } else {
    203. 

  203.     UD_ASSERT(dis_mode == 16);
    204. 

  204.     return pfx_opr ? 32 : 16;
    205. 

  205.   }
    206. 

  206. }
    207. 

  207. 

  208. 

  209. static UD_INLINE int
    210. 

  210. eff_adr_mode(int dis_mode, int pfx_adr)
    211. 

  211. {
    212. 

  212.   if (dis_mode == 64) {
    213. 

  213.     return pfx_adr ? 32 : 64;
    214. 

  214.   } else if (dis_mode == 32) {
    215. 

  215.     return pfx_adr ? 16 : 32;
    216. 

  216.   } else {
    217. 

  217.     UD_ASSERT(dis_mode == 16);
    218. 

  218.     return pfx_adr ? 32 : 16;
    219. 

  219.   }
    220. 

  220. }
    221. 

  221. 

  222. 

  223. /* 
    224. 

  224.  * decode_prefixes
    225. 

  225.  *
    226. 

  226.  *  Extracts instruction prefixes.
    227. 

  227.  */
    228. 

  228. static int 
    229. 

  229. decode_prefixes(struct ud *u)
    230. 

  230. {
    231. 

  231.   int done = 0;
    232. 

  232.   uint8_t curr = 0, last = 0;
    233. 

  233.   UD_RETURN_ON_ERROR(u);
    234. 

  234. 

  235.   do {
    236. 

  236.     last = curr;
    237. 

  237.     curr = inp_next(u); 
    238. 

  238.     UD_RETURN_ON_ERROR(u);
    239. 

  239.     if (u->inp_ctr == MAX_INSN_LENGTH) {
    240. 

  240.       UD_RETURN_WITH_ERROR(u, "max instruction length");
    241. 

  241.     }
    242. 

  242.    
    243. 

  243.     switch (curr)  
    244. 

  244.     {
    245. 

  245.     case 0x2E: 
    246. 

  246.       u->pfx_seg = UD_R_CS; 
    247. 

  247.       break;
    248. 

  248.     case 0x36:     
    249. 

  249.       u->pfx_seg = UD_R_SS; 
    250. 

  250.       break;
    251. 

  251.     case 0x3E: 
    252. 

  252.       u->pfx_seg = UD_R_DS; 
    253. 

  253.       break;
    254. 

  254.     case 0x26: 
    255. 

  255.       u->pfx_seg = UD_R_ES; 
    256. 

  256.       break;
    257. 

  257.     case 0x64: 
    258. 

  258.       u->pfx_seg = UD_R_FS; 
    259. 

  259.       break;
    260. 

  260.     case 0x65: 
    261. 

  261.       u->pfx_seg = UD_R_GS; 
    262. 

  262.       break;
    263. 

  263.     case 0x67: /* adress-size override prefix */ 
    264. 

  264.       u->pfx_adr = 0x67;
    265. 

  265.       break;
    266. 

  266.     case 0xF0: 
    267. 

  267.       u->pfx_lock = 0xF0;
    268. 

  268.       break;
    269. 

  269.     case 0x66: 
    270. 

  270.       u->pfx_opr = 0x66;
    271. 

  271.       break;
    272. 

  272.     case 0xF2:
    273. 

  273.       u->pfx_str = 0xf2;
    274. 

  274.       break;
    275. 

  275.     case 0xF3:
    276. 

  276.       u->pfx_str = 0xf3;
    277. 

  277.       break;
    278. 

  278.     default:
    279. 

  279.       /* consume if rex */
    280. 

  280.       done = (u->dis_mode == 64 && (curr & 0xF0) == 0x40) ? 0 : 1;
    281. 

  281.       break;
    282. 

  282.     }
    283. 

  283.   } while (!done);
    284. 

  284.   /* rex prefixes in 64bit mode, must be the last prefix */
    285. 

  285.   if (u->dis_mode == 64 && (last & 0xF0) == 0x40) {
    286. 

  286.     u->pfx_rex = last;  
    287. 

  287.   }
    288. 

  288.   return 0;
    289. 

  289. }
    290. 

  290. 

  291. 

  292. /*
    293. 

  293.  * vex_l, vex_w
    294. 

  294.  *  Return the vex.L and vex.W bits
    295. 

  295.  */
    296. 

  296. static UD_INLINE uint8_t
    297. 

  297. vex_l(const struct ud *u)
    298. 

  298. {
    299. 

  299.   UD_ASSERT(u->vex_op != 0);
    300. 

  300.   return ((u->vex_op == 0xc4 ? u->vex_b2 : u->vex_b1) >> 2) & 1;
    301. 

  301. }
    302. 

  302. 

  303. static UD_INLINE uint8_t
    304. 

  304. vex_w(const struct ud *u)
    305. 

  305. {
    306. 

  306.   UD_ASSERT(u->vex_op != 0);
    307. 

  307.   return u->vex_op == 0xc4 ? ((u->vex_b2 >> 7) & 1) : 0;
    308. 

  308. }
    309. 

  309. 

  310. 

  311. static UD_INLINE uint8_t
    312. 

  312. modrm(struct ud * u)
    313. 

  313. {
    314. 

  314.     if ( !u->have_modrm ) {
    315. 

  315.         u->modrm = inp_next( u );
    316. 

  316.         u->modrm_offset = (uint8_t) (u->inp_ctr - 1);
    317. 

  317.         u->have_modrm = 1;
    318. 

  318.     }
    319. 

  319.     return u->modrm;
    320. 

  320. }
    321. 

  321. 

  322. 

  323. static unsigned int
    324. 

  324. resolve_operand_size(const struct ud* u, ud_operand_size_t osize)
    325. 

  325. {
    326. 

  326.   switch (osize) {
    327. 

  327.   case SZ_V:
    328. 

  328.     return u->opr_mode;
    329. 

  329.   case SZ_Z:  
    330. 

  330.     return u->opr_mode == 16 ? 16 : 32;
    331. 

  331.   case SZ_Y:
    332. 

  332.     return u->opr_mode == 16 ? 32 : u->opr_mode;
    333. 

  333.   case SZ_RDQ:
    334. 

  334.     return u->dis_mode == 64 ? 64 : 32;
    335. 

  335.   case SZ_X:
    336. 

  336.     UD_ASSERT(u->vex_op != 0);
    337. 

  337.     return (P_VEXL(u->itab_entry->prefix) && vex_l(u)) ?  SZ_QQ : SZ_DQ;
    338. 

  338.   default:
    339. 

  339.     return osize;
    340. 

  340.   }
    341. 

  341. }
    342. 

  342. 

  343. 

  344. static int resolve_mnemonic( struct ud* u )
    345. 

  345. {
    346. 

  346.   /* resolve 3dnow weirdness. */
    347. 

  347.   if ( u->mnemonic == UD_I3dnow ) {
    348. 

  348.     u->mnemonic = ud_itab[ u->le->table[ inp_curr( u )  ] ].mnemonic;
    349. 

  349.   }
    350. 

  350.   /* SWAPGS is only valid in 64bits mode */
    351. 

  351.   if ( u->mnemonic == UD_Iswapgs && u->dis_mode != 64 ) {
    352. 

  352.     UDERR(u, "swapgs invalid in 64bits mode\n");
    353. 

  353.     return -1;
    354. 

  354.   }
    355. 

  355. 

  356.   if (u->mnemonic == UD_Ixchg) {
    357. 

  357.     if ((u->operand[0].type == UD_OP_REG && u->operand[0].base == UD_R_AX  &&
    358. 

  358.          u->operand[1].type == UD_OP_REG && u->operand[1].base == UD_R_AX) ||
    359. 

  359.         (u->operand[0].type == UD_OP_REG && u->operand[0].base == UD_R_EAX &&
    360. 

  360.          u->operand[1].type == UD_OP_REG && u->operand[1].base == UD_R_EAX)) {
    361. 

  361.       u->operand[0].type = UD_NONE;
    362. 

  362.       u->operand[1].type = UD_NONE;
    363. 

  363.       u->mnemonic = UD_Inop;
    364. 

  364.     }
    365. 

  365.   }
    366. 

  366. 

  367.   if (u->mnemonic == UD_Inop && u->pfx_repe) {
    368. 

  368.     u->pfx_repe = 0;
    369. 

  369.     u->mnemonic = UD_Ipause;
    370. 

  370.   }
    371. 

  371.   return 0;
    372. 

  372. }
    373. 

  373. 

  374. 

  375. /* -----------------------------------------------------------------------------
    376. 

  376.  * decode_a()- Decodes operands of the type seg:offset
    377. 

  377.  * -----------------------------------------------------------------------------
    378. 

  378.  */
    379. 

  379. static void 
    380. 

  380. decode_a(struct ud* u, struct ud_operand *op)
    381. 

  381. {
    382. 

  382.   if (u->opr_mode == 16) {  
    383. 

  383.     /* seg16:off16 */
    384. 

  384.     op->type = UD_OP_PTR;
    385. 

  385.     op->size = 32;
    386. 

  386.     op->lval.ptr.off = inp_uint16(u);
    387. 

  387.     op->lval.ptr.seg = inp_uint16(u);
    388. 

  388.   } else {
    389. 

  389.     /* seg16:off32 */
    390. 

  390.     op->type = UD_OP_PTR;
    391. 

  391.     op->size = 48;
    392. 

  392.     op->lval.ptr.off = inp_uint32(u);
    393. 

  393.     op->lval.ptr.seg = inp_uint16(u);
    394. 

  394.   }
    395. 

  395. }
    396. 

  396. 

  397. /* -----------------------------------------------------------------------------
    398. 

  398.  * decode_gpr() - Returns decoded General Purpose Register 
    399. 

  399.  * -----------------------------------------------------------------------------
    400. 

  400.  */
    401. 

  401. static enum ud_type 
    402. 

  402. decode_gpr(register struct ud* u, unsigned int s, unsigned char rm)
    403. 

  403. {
    404. 

  404.   switch (s) {
    405. 

  405.     case 64:
    406. 

  406.         return UD_R_RAX + rm;
    407. 

  407.     case 32:
    408. 

  408.         return UD_R_EAX + rm;
    409. 

  409.     case 16:
    410. 

  410.         return UD_R_AX  + rm;
    411. 

  411.     case  8:
    412. 

  412.         if (u->dis_mode == 64 && u->pfx_rex) {
    413. 

  413.             if (rm >= 4)
    414. 

  414.                 return UD_R_SPL + (rm-4);
    415. 

  415.             return UD_R_AL + rm;
    416. 

  416.         } else return UD_R_AL + rm;
    417. 

  417.     case 0:
    418. 

  418.         /* invalid size in case of a decode error */
    419. 

  419.         UD_ASSERT(u->error);
    420. 

  420.         return UD_NONE;
    421. 

  421.     default:
    422. 

  422.         UD_ASSERT(!"invalid operand size");
    423. 

  423.         return UD_NONE;
    424. 

  424.   }
    425. 

  425. }
    426. 

  426. 

  427. static void
    428. 

  428. decode_reg(struct ud *u, 
    429. 

  429.            struct ud_operand *opr,
    430. 

  430.            int type,
    431. 

  431.            int num,
    432. 

  432.            int size)
    433. 

  433. {
    434. 

  434.   int reg;
    435. 

  435.   size = resolve_operand_size(u, size);
    436. 

  436.   switch (type) {
    437. 

  437.     case REGCLASS_GPR : reg = decode_gpr(u, size, num); break;
    438. 

  438.     case REGCLASS_MMX : reg = UD_R_MM0  + (num & 7); break;
    439. 

  439.     case REGCLASS_XMM :
    440. 

  440.       reg = num + (size == SZ_QQ ? UD_R_YMM0 : UD_R_XMM0);
    441. 

  441.       break;
    442. 

  442.     case REGCLASS_CR : reg = UD_R_CR0  + num; break;
    443. 

  443.     case REGCLASS_DB : reg = UD_R_DR0  + num; break;
    444. 

  444.     case REGCLASS_SEG : {
    445. 

  445.       /*
    446. 

  446.        * Only 6 segment registers, anything else is an error.
    447. 

  447.        */
    448. 

  448.       if ((num & 7) > 5) {
    449. 

  449.         UDERR(u, "invalid segment register value\n");
    450. 

  450.         return;
    451. 

  451.       } else {
    452. 

  452.         reg = UD_R_ES + (num & 7);
    453. 

  453.       }
    454. 

  454.       break;
    455. 

  455.     }
    456. 

  456.     default:
    457. 

  457.       UD_ASSERT(!"invalid register type");
    458. 

  458.       return;
    459. 

  459.   }
    460. 

  460.   opr->type = UD_OP_REG;
    461. 

  461.   opr->base = reg;
    462. 

  462.   opr->size = size;
    463. 

  463. }
    464. 

  464. 

  465. 

  466. /*
    467. 

  467.  * decode_imm 
    468. 

  468.  *
    469. 

  469.  *    Decode Immediate values.
    470. 

  470.  */
    471. 

  471. static void 
    472. 

  472. decode_imm(struct ud* u, unsigned int size, struct ud_operand *op)
    473. 

  473. {
    474. 

  474.   op->size = resolve_operand_size(u, size);
    475. 

  475.   op->type = UD_OP_IMM;
    476. 

  476. 

  477.   switch (op->size) {
    478. 

  478.   case  8: op->lval.sbyte = inp_uint8(u);   break;
    479. 

  479.   case 16: op->lval.uword = inp_uint16(u);  break;
    480. 

  480.   case 32: op->lval.udword = inp_uint32(u); break;
    481. 

  481.   case 64: op->lval.uqword = inp_uint64(u); break;
    482. 

  482.   default: return;
    483. 

  483.   }
    484. 

  484. }
    485. 

  485. 

  486. 

  487. /* 
    488. 

  488.  * decode_mem_disp
    489. 

  489.  *
    490. 

  490.  *    Decode mem address displacement.
    491. 

  491.  */
    492. 

  492. static void 
    493. 

  493. decode_mem_disp(struct ud* u, unsigned int size, struct ud_operand *op)
    494. 

  494. {
    495. 

  495.   switch (size) {
    496. 

  496.   case 8:
    497. 

  497.     op->offset = 8; 
    498. 

  498.     op->lval.ubyte  = inp_uint8(u);
    499. 

  499.     break;
    500. 

  500.   case 16:
    501. 

  501.     op->offset = 16; 
    502. 

  502.     op->lval.uword  = inp_uint16(u); 
    503. 

  503.     break;
    504. 

  504.   case 32:
    505. 

  505.     op->offset = 32; 
    506. 

  506.     op->lval.udword = inp_uint32(u); 
    507. 

  507.     break;
    508. 

  508.   case 64:
    509. 

  509.     op->offset = 64; 
    510. 

  510.     op->lval.uqword = inp_uint64(u); 
    511. 

  511.     break;
    512. 

  512.   default:
    513. 

  513.       return;
    514. 

  514.   }
    515. 

  515. }
    516. 

  516. 

  517. 

  518. /*
    519. 

  519.  * decode_modrm_reg
    520. 

  520.  *
    521. 

  521.  *    Decodes reg field of mod/rm byte
    522. 

  522.  * 
    523. 

  523.  */
    524. 

  524. static UD_INLINE void
    525. 

  525. decode_modrm_reg(struct ud         *u, 
    526. 

  526.                  struct ud_operand *operand,
    527. 

  527.                  unsigned int       type,
    528. 

  528.                  unsigned int       size)
    529. 

  529. {
    530. 

  530.   uint8_t reg = (REX_R(u->_rex) << 3) | MODRM_REG(modrm(u));
    531. 

  531.   decode_reg(u, operand, type, reg, size);
    532. 

  532. }
    533. 

  533. 

  534. 

  535. /*
    536. 

  536.  * decode_modrm_rm
    537. 

  537.  *
    538. 

  538.  *    Decodes rm field of mod/rm byte
    539. 

  539.  * 
    540. 

  540.  */
    541. 

  541. static void 
    542. 

  542. decode_modrm_rm(struct ud         *u, 
    543. 

  543.                 struct ud_operand *op,
    544. 

  544.                 unsigned char      type,    /* register type */
    545. 

  545.                 unsigned int       size)    /* operand size */
    546. 

  546. 

  547. {
    548. 

  548.   size_t offset = 0;
    549. 

  549.   unsigned char mod, rm;
    550. 

  550. 

  551.   /* get mod, r/m and reg fields */
    552. 

  552.   mod = MODRM_MOD(modrm(u));
    553. 

  553.   rm  = (REX_B(u->_rex) << 3) | MODRM_RM(modrm(u));
    554. 

  554. 

  555.   /* 
    556. 

  556.    * If mod is 11b, then the modrm.rm specifies a register.
    557. 

  557.    *
    558. 

  558.    */
    559. 

  559.   if (mod == 3) {
    560. 

  560.     decode_reg(u, op, type, rm, size);
    561. 

  561.     return;
    562. 

  562.   }
    563. 

  563. 

  564.   /* 
    565. 

  565.    * !11b => Memory Address
    566. 

  566.    */  
    567. 

  567.   op->type = UD_OP_MEM;
    568. 

  568.   op->size = resolve_operand_size(u, size);
    569. 

  569. 

  570.   if (u->adr_mode == 64) {
    571. 

  571.     op->base = UD_R_RAX + rm;
    572. 

  572.     if (mod == 1) {
    573. 

  573.       offset = 8;
    574. 

  574.     } else if (mod == 2) {
    575. 

  575.       offset = 32;
    576. 

  576.     } else if (mod == 0 && (rm & 7) == 5) {           
    577. 

  577.       op->base = UD_R_RIP;
    578. 

  578.       offset = 32;
    579. 

  579.     } else {
    580. 

  580.       offset = 0;
    581. 

  581.     }
    582. 

  582.     /* 
    583. 

  583.      * Scale-Index-Base (SIB) 
    584. 

  584.      */
    585. 

  585.     if ((rm & 7) == 4) {
    586. 

  586.       inp_next(u);
    587. 

  587.       
    588. 

  588.       op->base  = UD_R_RAX + (SIB_B(inp_curr(u)) | (REX_B(u->_rex) << 3));
    589. 

  589.       op->index = UD_R_RAX + (SIB_I(inp_curr(u)) | (REX_X(u->_rex) << 3));
    590. 

  590.       /* special conditions for base reference */
    591. 

  591.       if (op->index == UD_R_RSP) {
    592. 

  592.         op->index = UD_NONE;
    593. 

  593.         op->scale = UD_NONE;
    594. 

  594.       } else {
    595. 

  595.         op->scale = (1 << SIB_S(inp_curr(u))) & ~1;
    596. 

  596.       }
    597. 

  597. 

  598.       if (op->base == UD_R_RBP || op->base == UD_R_R13) {
    599. 

  599.         if (mod == 0) {
    600. 

  600.           op->base = UD_NONE;
    601. 

  601.         } 
    602. 

  602.         if (mod == 1) {
    603. 

  603.           offset = 8;
    604. 

  604.         } else {
    605. 

  605.           offset = 32;
    606. 

  606.         }
    607. 

  607.       }
    608. 

  608.     } else {
    609. 

  609.         op->scale = UD_NONE;
    610. 

  610.         op->index = UD_NONE;
    611. 

  611.     }
    612. 

  612.   } else if (u->adr_mode == 32) {
    613. 

  613.     op->base = UD_R_EAX + rm;
    614. 

  614.     if (mod == 1) {
    615. 

  615.       offset = 8;
    616. 

  616.     } else if (mod == 2) {
    617. 

  617.       offset = 32;
    618. 

  618.     } else if (mod == 0 && rm == 5) {
    619. 

  619.       op->base = UD_NONE;
    620. 

  620.       offset = 32;
    621. 

  621.     } else {
    622. 

  622.       offset = 0;
    623. 

  623.     }
    624. 

  624. 

  625.     /* Scale-Index-Base (SIB) */
    626. 

  626.     if ((rm & 7) == 4) {
    627. 

  627.       inp_next(u);
    628. 

  628. 

  629.       op->scale = (1 << SIB_S(inp_curr(u))) & ~1;
    630. 

  630.       op->index = UD_R_EAX + (SIB_I(inp_curr(u)) | (REX_X(u->pfx_rex) << 3));
    631. 

  631.       op->base  = UD_R_EAX + (SIB_B(inp_curr(u)) | (REX_B(u->pfx_rex) << 3));
    632. 

  632. 

  633.       if (op->index == UD_R_ESP) {
    634. 

  634.         op->index = UD_NONE;
    635. 

  635.         op->scale = UD_NONE;
    636. 

  636.       }
    637. 

  637. 

  638.       /* special condition for base reference */
    639. 

  639.       if (op->base == UD_R_EBP) {
    640. 

  640.         if (mod == 0) {
    641. 

  641.           op->base = UD_NONE;
    642. 

  642.         } 
    643. 

  643.         if (mod == 1) {
    644. 

  644.           offset = 8;
    645. 

  645.         } else {
    646. 

  646.           offset = 32;
    647. 

  647.         }
    648. 

  648.       }
    649. 

  649.     } else {
    650. 

  650.       op->scale = UD_NONE;
    651. 

  651.       op->index = UD_NONE;
    652. 

  652.     }
    653. 

  653.   } else {
    654. 

  654.     const unsigned int bases[]   = { UD_R_BX, UD_R_BX, UD_R_BP, UD_R_BP,
    655. 

  655.                                      UD_R_SI, UD_R_DI, UD_R_BP, UD_R_BX };
    656. 

  656.     const unsigned int indices[] = { UD_R_SI, UD_R_DI, UD_R_SI, UD_R_DI,
    657. 

  657.                                      UD_NONE, UD_NONE, UD_NONE, UD_NONE };
    658. 

  658.     op->base  = bases[rm & 7];
    659. 

  659.     op->index = indices[rm & 7];
    660. 

  660.     op->scale = UD_NONE;
    661. 

  661.     if (mod == 0 && rm == 6) {
    662. 

  662.       offset = 16;
    663. 

  663.       op->base = UD_NONE;
    664. 

  664.     } else if (mod == 1) {
    665. 

  665.       offset = 8;
    666. 

  666.     } else if (mod == 2) { 
    667. 

  667.       offset = 16;
    668. 

  668.     }
    669. 

  669.   }
    670. 

  670. 

  671.   if (offset) {
    672. 

  672.     decode_mem_disp(u, offset, op);
    673. 

  673.   } else {
    674. 

  674.     op->offset = 0;
    675. 

  675.   }
    676. 

  676. }
    677. 

  677. 

  678. 

  679. /* 
    680. 

  680.  * decode_moffset
    681. 

  681.  *    Decode offset-only memory operand
    682. 

  682.  */
    683. 

  683. static void
    684. 

  684. decode_moffset(struct ud *u, unsigned int size, struct ud_operand *opr)
    685. 

  685. {
    686. 

  686.   opr->type  = UD_OP_MEM;
    687. 

  687.   opr->base  = UD_NONE;
    688. 

  688.   opr->index = UD_NONE;
    689. 

  689.   opr->scale = UD_NONE;
    690. 

  690.   opr->size  = resolve_operand_size(u, size);
    691. 

  691.   decode_mem_disp(u, u->adr_mode, opr);
    692. 

  692. }
    693. 

  693. 

  694. 

  695. static void
    696. 

  696. decode_vex_vvvv(struct ud *u, struct ud_operand *opr, unsigned size)
    697. 

  697. {
    698. 

  698.   uint8_t vvvv;
    699. 

  699.   UD_ASSERT(u->vex_op != 0);
    700. 

  700.   vvvv = ((u->vex_op == 0xc4 ? u->vex_b2 : u->vex_b1) >> 3) & 0xf;
    701. 

  701.   decode_reg(u, opr, REGCLASS_XMM, (0xf & ~vvvv), size);
    702. 

  702. }
    703. 

  703. 

  704. 

  705. /* 
    706. 

  706.  * decode_vex_immreg
    707. 

  707.  *    Decode source operand encoded in immediate byte [7:4]
    708. 

  708.  */
    709. 

  709. static int
    710. 

  710. decode_vex_immreg(struct ud *u, struct ud_operand *opr, unsigned size)
    711. 

  711. {
    712. 

  712.   uint8_t imm  = inp_next(u);
    713. 

  713.   uint8_t mask = u->dis_mode == 64 ? 0xf : 0x7;
    714. 

  714.   UD_RETURN_ON_ERROR(u);
    715. 

  715.   UD_ASSERT(u->vex_op != 0);
    716. 

  716.   decode_reg(u, opr, REGCLASS_XMM, mask & (imm >> 4), size);
    717. 

  717.   return 0;
    718. 

  718. }
    719. 

  719. 

  720. 

  721. /* 
    722. 

  722.  * decode_operand
    723. 

  723.  *
    724. 

  724.  *      Decodes a single operand.
    725. 

  725.  *      Returns the type of the operand (UD_NONE if none)
    726. 

  726.  */
    727. 

  727. static int
    728. 

  728. decode_operand(struct ud           *u, 
    729. 

  729.                struct ud_operand   *operand,
    730. 

  730.                enum ud_operand_code type,
    731. 

  731.                unsigned int         size)
    732. 

  732. {
    733. 

  733.   operand->type = UD_NONE;
    734. 

  734.   operand->_oprcode = type;
    735. 

  735. 

  736.   switch (type) {
    737. 

  737.     case OP_A :
    738. 

  738.       decode_a(u, operand);
    739. 

  739.       break;
    740. 

  740.     case OP_MR:
    741. 

  741.       decode_modrm_rm(u, operand, REGCLASS_GPR, 
    742. 

  742.                       MODRM_MOD(modrm(u)) == 3 ? 
    743. 

  743.                         Mx_reg_size(size) : Mx_mem_size(size));
    744. 

  744.       break;
    745. 

  745.     case OP_F:
    746. 

  746.       u->br_far  = 1;
    747. 

  747.       /* intended fall through */
    748. 

  748.     case OP_M:
    749. 

  749.       if (MODRM_MOD(modrm(u)) == 3) {
    750. 

  750.         UDERR(u, "expected modrm.mod != 3\n");
    751. 

  751.       }
    752. 

  752.       /* intended fall through */
    753. 

  753.     case OP_E:
    754. 

  754.       decode_modrm_rm(u, operand, REGCLASS_GPR, size);
    755. 

  755.       break;
    756. 

  756.     case OP_G:
    757. 

  757.       decode_modrm_reg(u, operand, REGCLASS_GPR, size);
    758. 

  758.       break;
    759. 

  759.     case OP_sI:
    760. 

  760.     case OP_I:
    761. 

  761.       decode_imm(u, size, operand);
    762. 

  762.       break;
    763. 

  763.     case OP_I1:
    764. 

  764.       operand->type = UD_OP_CONST;
    765. 

  765.       operand->lval.udword = 1;
    766. 

  766.       break;
    767. 

  767.     case OP_N:
    768. 

  768.       if (MODRM_MOD(modrm(u)) != 3) {
    769. 

  769.         UDERR(u, "expected modrm.mod == 3\n");
    770. 

  770.       }
    771. 

  771.       /* intended fall through */
    772. 

  772.     case OP_Q:
    773. 

  773.       decode_modrm_rm(u, operand, REGCLASS_MMX, size);
    774. 

  774.       break;
    775. 

  775.     case OP_P:
    776. 

  776.       decode_modrm_reg(u, operand, REGCLASS_MMX, size);
    777. 

  777.       break;
    778. 

  778.     case OP_U:
    779. 

  779.       if (MODRM_MOD(modrm(u)) != 3) {
    780. 

  780.         UDERR(u, "expected modrm.mod == 3\n");
    781. 

  781.       }
    782. 

  782.       /* intended fall through */
    783. 

  783.     case OP_W:
    784. 

  784.       decode_modrm_rm(u, operand, REGCLASS_XMM, size);
    785. 

  785.       break;
    786. 

  786.     case OP_V:
    787. 

  787.       decode_modrm_reg(u, operand, REGCLASS_XMM, size);
    788. 

  788.       break;
    789. 

  789.     case OP_H:
    790. 

  790.       decode_vex_vvvv(u, operand, size);
    791. 

  791.       break;
    792. 

  792.     case OP_MU:
    793. 

  793.       decode_modrm_rm(u, operand, REGCLASS_XMM, 
    794. 

  794.                       MODRM_MOD(modrm(u)) == 3 ? 
    795. 

  795.                         Mx_reg_size(size) : Mx_mem_size(size));
    796. 

  796.       break;
    797. 

  797.     case OP_S:
    798. 

  798.       decode_modrm_reg(u, operand, REGCLASS_SEG, size);
    799. 

  799.       break;
    800. 

  800.     case OP_O:
    801. 

  801.       decode_moffset(u, size, operand);
    802. 

  802.       break;
    803. 

  803.     case OP_R0: 
    804. 

  804.     case OP_R1: 
    805. 

  805.     case OP_R2: 
    806. 

  806.     case OP_R3: 
    807. 

  807.     case OP_R4: 
    808. 

  808.     case OP_R5: 
    809. 

  809.     case OP_R6: 
    810. 

  810.     case OP_R7:
    811. 

  811.       decode_reg(u, operand, REGCLASS_GPR, 
    812. 

  812.                  (REX_B(u->_rex) << 3) | (type - OP_R0), size);
    813. 

  813.       break;
    814. 

  814.     case OP_AL:
    815. 

  815.     case OP_AX:
    816. 

  816.     case OP_eAX:
    817. 

  817.     case OP_rAX:
    818. 

  818.       decode_reg(u, operand, REGCLASS_GPR, 0, size);
    819. 

  819.       break;
    820. 

  820.     case OP_CL:
    821. 

  821.     case OP_CX:
    822. 

  822.     case OP_eCX:
    823. 

  823.       decode_reg(u, operand, REGCLASS_GPR, 1, size);
    824. 

  824.       break;
    825. 

  825.     case OP_DL:
    826. 

  826.     case OP_DX:
    827. 

  827.     case OP_eDX:
    828. 

  828.       decode_reg(u, operand, REGCLASS_GPR, 2, size);
    829. 

  829.       break;
    830. 

  830.     case OP_ES: 
    831. 

  831.     case OP_CS: 
    832. 

  832.     case OP_DS:
    833. 

  833.     case OP_SS: 
    834. 

  834.     case OP_FS: 
    835. 

  835.     case OP_GS:
    836. 

  836.       /* in 64bits mode, only fs and gs are allowed */
    837. 

  837.       if (u->dis_mode == 64) {
    838. 

  838.         if (type != OP_FS && type != OP_GS) {
    839. 

  839.           UDERR(u, "invalid segment register in 64bits\n");
    840. 

  840.         }
    841. 

  841.       }
    842. 

  842.       operand->type = UD_OP_REG;
    843. 

  843.       operand->base = (type - OP_ES) + UD_R_ES;
    844. 

  844.       operand->size = 16;
    845. 

  845.       break;
    846. 

  846.     case OP_J :
    847. 

  847.       decode_imm(u, size, operand);
    848. 

  848.       operand->type = UD_OP_JIMM;
    849. 

  849.       break ;
    850. 

  850.     case OP_R :
    851. 

  851.       if (MODRM_MOD(modrm(u)) != 3) {
    852. 

  852.         UDERR(u, "expected modrm.mod == 3\n");
    853. 

  853.       }
    854. 

  854.       decode_modrm_rm(u, operand, REGCLASS_GPR, size);
    855. 

  855.       break;
    856. 

  856.     case OP_C:
    857. 

  857.       decode_modrm_reg(u, operand, REGCLASS_CR, size);
    858. 

  858.       break;
    859. 

  859.     case OP_D:
    860. 

  860.       decode_modrm_reg(u, operand, REGCLASS_DB, size);
    861. 

  861.       break;
    862. 

  862.     case OP_I3 :
    863. 

  863.       operand->type = UD_OP_CONST;
    864. 

  864.       operand->lval.sbyte = 3;
    865. 

  865.       break;
    866. 

  866.     case OP_ST0: 
    867. 

  867.     case OP_ST1: 
    868. 

  868.     case OP_ST2: 
    869. 

  869.     case OP_ST3:
    870. 

  870.     case OP_ST4:
    871. 

  871.     case OP_ST5: 
    872. 

  872.     case OP_ST6: 
    873. 

  873.     case OP_ST7:
    874. 

  874.       operand->type = UD_OP_REG;
    875. 

  875.       operand->base = (type - OP_ST0) + UD_R_ST0;
    876. 

  876.       operand->size = 80;
    877. 

  877.       break;
    878. 

  878.     case OP_L:
    879. 

  879.       decode_vex_immreg(u, operand, size);
    880. 

  880.       break;
    881. 

  881.     default :
    882. 

  882.       operand->type = UD_NONE;
    883. 

  883.       break;
    884. 

  884.   }
    885. 

  885.   return operand->type;
    886. 

  886. }
    887. 

  887. 

  888. 

  889. /* 
    890. 

  890.  * decode_operands
    891. 

  891.  *
    892. 

  892.  *    Disassemble up to 3 operands of the current instruction being
    893. 

  893.  *    disassembled. By the end of the function, the operand fields
    894. 

  894.  *    of the ud structure will have been filled.
    895. 

  895.  */
    896. 

  896. static int
    897. 

  897. decode_operands(struct ud* u)
    898. 

  898. {
    899. 

  899.   decode_operand(u, &u->operand[0],
    900. 

  900.                     u->itab_entry->operand1.type,
    901. 

  901.                     u->itab_entry->operand1.size);
    902. 

  902.   if (u->operand[0].type != UD_NONE) {
    903. 

  903.       decode_operand(u, &u->operand[1],
    904. 

  904.                         u->itab_entry->operand2.type,
    905. 

  905.                         u->itab_entry->operand2.size);
    906. 

  906.   }
    907. 

  907.   if (u->operand[1].type != UD_NONE) {
    908. 

  908.       decode_operand(u, &u->operand[2],
    909. 

  909.                         u->itab_entry->operand3.type,
    910. 

  910.                         u->itab_entry->operand3.size);
    911. 

  911.   }
    912. 

  912.   if (u->operand[2].type != UD_NONE) {
    913. 

  913.       decode_operand(u, &u->operand[3],
    914. 

  914.                         u->itab_entry->operand4.type,
    915. 

  915.                         u->itab_entry->operand4.size);
    916. 

  916.   }
    917. 

  917.   return 0;
    918. 

  918. }
    919. 

  919.     
    920. 

  920. /* -----------------------------------------------------------------------------
    921. 

  921.  * clear_insn() - clear instruction structure
    922. 

  922.  * -----------------------------------------------------------------------------
    923. 

  923.  */
    924. 

  924. static void
    925. 

  925. clear_insn(register struct ud* u)
    926. 

  926. {
    927. 

  927.   u->error     = 0;
    928. 

  928.   u->pfx_seg   = 0;
    929. 

  929.   u->pfx_opr   = 0;
    930. 

  930.   u->pfx_adr   = 0;
    931. 

  931.   u->pfx_lock  = 0;
    932. 

  932.   u->pfx_repne = 0;
    933. 

  933.   u->pfx_rep   = 0;
    934. 

  934.   u->pfx_repe  = 0;
    935. 

  935.   u->pfx_rex   = 0;
    936. 

  936.   u->pfx_str   = 0;
    937. 

  937.   u->mnemonic  = UD_Inone;
    938. 

  938.   u->itab_entry = NULL;
    939. 

  939.   u->have_modrm = 0;
    940. 

  940.   u->br_far    = 0;
    941. 

  941.   u->vex_op    = 0;
    942. 

  942.   u->_rex      = 0;
    943. 

  943.   u->operand[0].type = UD_NONE;
    944. 

  944.   u->operand[1].type = UD_NONE;
    945. 

  945.   u->operand[2].type = UD_NONE;
    946. 

  946.   u->operand[3].type = UD_NONE;
    947. 

  947. }
    948. 

  948. 

  949. 

  950. static UD_INLINE int
    951. 

  951. resolve_pfx_str(struct ud* u)
    952. 

  952. {
    953. 

  953.   if (u->pfx_str == 0xf3) {
    954. 

  954.     if (P_STR(u->itab_entry->prefix)) {
    955. 

  955.         u->pfx_rep  = 0xf3;
    956. 

  956.     } else {
    957. 

  957.         u->pfx_repe = 0xf3;
    958. 

  958.     }
    959. 

  959.   } else if (u->pfx_str == 0xf2) {
    960. 

  960.     u->pfx_repne = 0xf3;
    961. 

  961.   }
    962. 

  962.   return 0;
    963. 

  963. }
    964. 

  964. 

  965. 

  966. static int
    967. 

  967. resolve_mode( struct ud* u )
    968. 

  968. {
    969. 

  969.   int default64;
    970. 

  970.   /* if in error state, bail out */
    971. 

  971.   if ( u->error ) return -1; 
    972. 

  972. 

  973.   /* propagate prefix effects */
    974. 

  974.   if ( u->dis_mode == 64 ) {  /* set 64bit-mode flags */
    975. 

  975. 

  976.     /* Check validity of  instruction m64 */
    977. 

  977.     if ( P_INV64( u->itab_entry->prefix ) ) {
    978. 

  978.       UDERR(u, "instruction invalid in 64bits\n");
    979. 

  979.       return -1;
    980. 

  980.     }
    981. 

  981. 

  982.     /* compute effective rex based on,
    983. 

  983.      *  - vex prefix (if any)
    984. 

  984.      *  - rex prefix (if any, and not vex)
    985. 

  985.      *  - allowed prefixes specified by the opcode map
    986. 

  986.      */
    987. 

  987.     if (u->vex_op == 0xc4) {
    988. 

  988.         /* vex has rex.rxb in 1's complement */
    989. 

  989.         u->_rex = ((~(u->vex_b1 >> 5) & 0x7) /* rex.0rxb */ | 
    990. 

  990.                    ((u->vex_b2  >> 4) & 0x8) /* rex.w000 */);
    991. 

  991.     } else if (u->vex_op == 0xc5) {
    992. 

  992.         /* vex has rex.r in 1's complement */
    993. 

  993.         u->_rex = (~(u->vex_b1 >> 5)) & 4;
    994. 

  994.     } else {
    995. 

  995.         UD_ASSERT(u->vex_op == 0);
    996. 

  996.         u->_rex = u->pfx_rex;
    997. 

  997.     }
    998. 

  998.     u->_rex &= REX_PFX_MASK(u->itab_entry->prefix);
    999. 

  999. 

  1000.     /* whether this instruction has a default operand size of 
    1001. 

  1001.      * 64bit, also hardcoded into the opcode map.
    1002. 

  1002.      */
    1003. 

  1003.     default64 = P_DEF64( u->itab_entry->prefix ); 
    1004. 

  1004.     /* calculate effective operand size */
    1005. 

  1005.     if (REX_W(u->_rex)) {
    1006. 

  1006.         u->opr_mode = 64;
    1007. 

  1007.     } else if ( u->pfx_opr ) {
    1008. 

  1008.         u->opr_mode = 16;
    1009. 

  1009.     } else {
    1010. 

  1010.         /* unless the default opr size of instruction is 64,
    1011. 

  1011.          * the effective operand size in the absence of rex.w
    1012. 

  1012.          * prefix is 32.
    1013. 

  1013.          */
    1014. 

  1014.         u->opr_mode = default64 ? 64 : 32;
    1015. 

  1015.     }
    1016. 

  1016. 

  1017.     /* calculate effective address size */
    1018. 

  1018.     u->adr_mode = (u->pfx_adr) ? 32 : 64;
    1019. 

  1019.   } else if ( u->dis_mode == 32 ) { /* set 32bit-mode flags */
    1020. 

  1020.     u->opr_mode = ( u->pfx_opr ) ? 16 : 32;
    1021. 

  1021.     u->adr_mode = ( u->pfx_adr ) ? 16 : 32;
    1022. 

  1022.   } else if ( u->dis_mode == 16 ) { /* set 16bit-mode flags */
    1023. 

  1023.     u->opr_mode = ( u->pfx_opr ) ? 32 : 16;
    1024. 

  1024.     u->adr_mode = ( u->pfx_adr ) ? 32 : 16;
    1025. 

  1025.   }
    1026. 

  1026. 

  1027.   return 0;
    1028. 

  1028. }
    1029. 

  1029. 

  1030. 

  1031. static UD_INLINE int
    1032. 

  1032. decode_insn(struct ud *u, uint16_t ptr)
    1033. 

  1033. {
    1034. 

  1034.   UD_ASSERT((ptr & 0x8000) == 0);
    1035. 

  1035.   u->itab_entry = &ud_itab[ ptr ];
    1036. 

  1036.   u->mnemonic = u->itab_entry->mnemonic;
    1037. 

  1037.   return (resolve_pfx_str(u)  == 0 &&
    1038. 

  1038.           resolve_mode(u)     == 0 &&
    1039. 

  1039.           decode_operands(u)  == 0 &&
    1040. 

  1040.           resolve_mnemonic(u) == 0) ? 0 : -1;
    1041. 

  1041. }
    1042. 

  1042. 

  1043. 

  1044. /*
    1045. 

  1045.  * decode_3dnow()
    1046. 

  1046.  *
    1047. 

  1047.  *    Decoding 3dnow is a little tricky because of its strange opcode
    1048. 

  1048.  *    structure. The final opcode disambiguation depends on the last
    1049. 

  1049.  *    byte that comes after the operands have been decoded. Fortunately,
    1050. 

  1050.  *    all 3dnow instructions have the same set of operand types. So we
    1051. 

  1051.  *    go ahead and decode the instruction by picking an arbitrarily chosen
    1052. 

  1052.  *    valid entry in the table, decode the operands, and read the final
    1053. 

  1053.  *    byte to resolve the menmonic.
    1054. 

  1054.  */
    1055. 

  1055. static UD_INLINE int
    1056. 

  1056. decode_3dnow(struct ud* u)
    1057. 

  1057. {
    1058. 

  1058.   uint16_t ptr;
    1059. 

  1059.   UD_ASSERT(u->le->type == UD_TAB__OPC_3DNOW);
    1060. 

  1060.   UD_ASSERT(u->le->table[0xc] != 0);
    1061. 

  1061.   decode_insn(u, u->le->table[0xc]);
    1062. 

  1062.   inp_next(u); 
    1063. 

  1063.   if (u->error) {
    1064. 

  1064.     return -1;
    1065. 

  1065.   }
    1066. 

  1066.   ptr = u->le->table[inp_curr(u)]; 
    1067. 

  1067.   UD_ASSERT((ptr & 0x8000) == 0);
    1068. 

  1068.   u->mnemonic = ud_itab[ptr].mnemonic;
    1069. 

  1069.   return 0;
    1070. 

  1070. }
    1071. 

  1071. 

  1072. 

  1073. static int
    1074. 

  1074. decode_ssepfx(struct ud *u)
    1075. 

  1075. {
    1076. 

  1076.   uint8_t idx;
    1077. 

  1077.   uint8_t pfx;
    1078. 

  1078.  
    1079. 

  1079.   /*
    1080. 

  1080.    * String prefixes (f2, f3) take precedence over operand
    1081. 

  1081.    * size prefix (66).
    1082. 

  1082.    */
    1083. 

  1083.   pfx = u->pfx_str;
    1084. 

  1084.   if (pfx == 0) {
    1085. 

  1085.     pfx = u->pfx_opr;
    1086. 

  1086.   }
    1087. 

  1087.   idx = ((pfx & 0xf) + 1) / 2;
    1088. 

  1088.   if (u->le->table[idx] == 0) {
    1089. 

  1089.     idx = 0;
    1090. 

  1090.   }
    1091. 

  1091.   if (idx && u->le->table[idx] != 0) {
    1092. 

  1092.     /*
    1093. 

  1093.      * "Consume" the prefix as a part of the opcode, so it is no
    1094. 

  1094.      * longer exported as an instruction prefix.
    1095. 

  1095.      */
    1096. 

  1096.     u->pfx_str = 0;
    1097. 

  1097.     if (pfx == 0x66) {
    1098. 

  1098.         /* 
    1099. 

  1099.          * consume "66" only if it was used for decoding, leaving
    1100. 

  1100.          * it to be used as an operands size override for some
    1101. 

  1101.          * simd instructions.
    1102. 

  1102.          */
    1103. 

  1103.         u->pfx_opr = 0;
    1104. 

  1104.     }
    1105. 

  1105.   }
    1106. 

  1106.   return decode_ext(u, u->le->table[idx]);
    1107. 

  1107. }
    1108. 

  1108. 

  1109. 

  1110. static int
    1111. 

  1111. decode_vex(struct ud *u)
    1112. 

  1112. {
    1113. 

  1113.   uint8_t index;
    1114. 

  1114.   if (u->dis_mode != 64 && MODRM_MOD(inp_peek(u)) != 0x3) {
    1115. 

  1115.     index = 0;
    1116. 

  1116.   } else {
    1117. 

  1117.     u->vex_op = inp_curr(u);
    1118. 

  1118.     u->vex_b1 = inp_next(u);
    1119. 

  1119.     if (u->vex_op == 0xc4) {
    1120. 

  1120.       uint8_t pp, m;
    1121. 

  1121.       /* 3-byte vex */
    1122. 

  1122.       u->vex_b2 = inp_next(u);
    1123. 

  1123.       UD_RETURN_ON_ERROR(u);
    1124. 

  1124.       m  = u->vex_b1 & 0x1f;
    1125. 

  1125.       if (m == 0 || m > 3) {
    1126. 

  1126.         UD_RETURN_WITH_ERROR(u, "reserved vex.m-mmmm value");
    1127. 

  1127.       }
    1128. 

  1128.       pp = u->vex_b2 & 0x3;
    1129. 

  1129.       index = (pp << 2) | m;
    1130. 

  1130.     } else {
    1131. 

  1131.       /* 2-byte vex */
    1132. 

  1132.       UD_ASSERT(u->vex_op == 0xc5);
    1133. 

  1133.       index = 0x1 | ((u->vex_b1 & 0x3) << 2);
    1134. 

  1134.     }
    1135. 

  1135.   }
    1136. 

  1136.   return decode_ext(u, u->le->table[index]); 
    1137. 

  1137. }
    1138. 

  1138. 

  1139. 

  1140. /*
    1141. 

  1141.  * decode_ext()
    1142. 

  1142.  *
    1143. 

  1143.  *    Decode opcode extensions (if any)
    1144. 

  1144.  */
    1145. 

  1145. static int
    1146. 

  1146. decode_ext(struct ud *u, uint16_t ptr)
    1147. 

  1147. {
    1148. 

  1148.   uint8_t idx = 0;
    1149. 

  1149.   if ((ptr & 0x8000) == 0) {
    1150. 

  1150.     return decode_insn(u, ptr); 
    1151. 

  1151.   }
    1152. 

  1152.   u->le = &ud_lookup_table_list[(~0x8000 & ptr)];
    1153. 

  1153.   if (u->le->type == UD_TAB__OPC_3DNOW) {
    1154. 

  1154.     return decode_3dnow(u);
    1155. 

  1155.   }
    1156. 

  1156. 

  1157.   switch (u->le->type) {
    1158. 

  1158.     case UD_TAB__OPC_MOD:
    1159. 

  1159.       /* !11 = 0, 11 = 1 */
    1160. 

  1160.       idx = (MODRM_MOD(modrm(u)) + 1) / 4;
    1161. 

  1161.       break;
    1162. 

  1162.       /* disassembly mode/operand size/address size based tables.
    1163. 

  1163.        * 16 = 0,, 32 = 1, 64 = 2
    1164. 

  1164.        */
    1165. 

  1165.     case UD_TAB__OPC_MODE:
    1166. 

  1166.       idx = u->dis_mode != 64 ? 0 : 1;
    1167. 

  1167.       break;
    1168. 

  1168.     case UD_TAB__OPC_OSIZE:
    1169. 

  1169.       idx = eff_opr_mode(u->dis_mode, REX_W(u->pfx_rex), u->pfx_opr) / 32;
    1170. 

  1170.       break;
    1171. 

  1171.     case UD_TAB__OPC_ASIZE:
    1172. 

  1172.       idx = eff_adr_mode(u->dis_mode, u->pfx_adr) / 32;
    1173. 

  1173.       break;
    1174. 

  1174.     case UD_TAB__OPC_X87:
    1175. 

  1175.       idx = modrm(u) - 0xC0;
    1176. 

  1176.       break;
    1177. 

  1177.     case UD_TAB__OPC_VENDOR:
    1178. 

  1178.       if (u->vendor == UD_VENDOR_ANY) {
    1179. 

  1179.         /* choose a valid entry */
    1180. 

  1180.         idx = (u->le->table[idx] != 0) ? 0 : 1;
    1181. 

  1181.       } else if (u->vendor == UD_VENDOR_AMD) {
    1182. 

  1182.         idx = 0;
    1183. 

  1183.       } else {
    1184. 

  1184.         idx = 1;
    1185. 

  1185.       }
    1186. 

  1186.       break;
    1187. 

  1187.     case UD_TAB__OPC_RM:
    1188. 

  1188.       idx = MODRM_RM(modrm(u));
    1189. 

  1189.       break;
    1190. 

  1190.     case UD_TAB__OPC_REG:
    1191. 

  1191.       idx = MODRM_REG(modrm(u));
    1192. 

  1192.       break;
    1193. 

  1193.     case UD_TAB__OPC_SSE:
    1194. 

  1194.       return decode_ssepfx(u);
    1195. 

  1195.     case UD_TAB__OPC_VEX:
    1196. 

  1196.       return decode_vex(u);
    1197. 

  1197.     case UD_TAB__OPC_VEX_W:
    1198. 

  1198.       idx = vex_w(u);
    1199. 

  1199.       break;
    1200. 

  1200.     case UD_TAB__OPC_VEX_L:
    1201. 

  1201.       idx = vex_l(u);
    1202. 

  1202.       break;
    1203. 

  1203.     case UD_TAB__OPC_TABLE:
    1204. 

  1204.       inp_next(u);
    1205. 

  1205.       return decode_opcode(u);
    1206. 

  1206.     default:
    1207. 

  1207.       UD_ASSERT(!"not reached");
    1208. 

  1208.       break;
    1209. 

  1209.   }
    1210. 

  1210. 

  1211.   return decode_ext(u, u->le->table[idx]);
    1212. 

  1212. }
    1213. 

  1213. 

  1214. 

  1215. static int
    1216. 

  1216. decode_opcode(struct ud *u)
    1217. 

  1217. {
    1218. 

  1218.   uint16_t ptr;
    1219. 

  1219.   UD_ASSERT(u->le->type == UD_TAB__OPC_TABLE);
    1220. 

  1220.   UD_RETURN_ON_ERROR(u);
    1221. 

  1221.   ptr = u->le->table[inp_curr(u)];
    1222. 

  1222.   return decode_ext(u, ptr);
    1223. 

  1223. }
    1224. 

  1224. 

  1225.  
    1226. 

  1226. /* =============================================================================
    1227. 

  1227.  * ud_decode() - Instruction decoder. Returns the number of bytes decoded.
    1228. 

  1228.  * =============================================================================
    1229. 

  1229.  */
    1230. 

  1230. unsigned int
    1231. 

  1231. ud_decode(struct ud *u)
    1232. 

  1232. {
    1233. 

  1233.   inp_start(u);
    1234. 

  1234.   clear_insn(u);
    1235. 

  1235.   u->le = &ud_lookup_table_list[0];
    1236. 

  1236.   u->error = decode_prefixes(u) == -1 || 
    1237. 

  1237.              decode_opcode(u)   == -1 ||
    1238. 

  1238.              u->error;
    1239. 

  1239.   /* Handle decode error. */
    1240. 

  1240.   if (u->error) {
    1241. 

  1241.     /* clear out the decode data. */
    1242. 

  1242.     clear_insn(u);
    1243. 

  1243.     /* mark the sequence of bytes as invalid. */
    1244. 

  1244.     u->itab_entry = &ud_itab[0]; /* entry 0 is invalid */
    1245. 

  1245.     u->mnemonic = u->itab_entry->mnemonic;
    1246. 

  1246.   } 
    1247. 

  1247. 

  1248.     /* maybe this stray segment override byte
    1249. 

  1249.      * should be spewed out?
    1250. 

  1250.      */
    1251. 

  1251.     if ( !P_SEG( u->itab_entry->prefix ) && 
    1252. 

  1252.             u->operand[0].type != UD_OP_MEM &&
    1253. 

  1253.             u->operand[1].type != UD_OP_MEM )
    1254. 

  1254.         u->pfx_seg = 0;
    1255. 

  1255. 

  1256.   u->insn_offset = u->pc; /* set offset of instruction */
    1257. 

  1257.   u->asm_buf_fill = 0;   /* set translation buffer index to 0 */
    1258. 

  1258.   u->pc += u->inp_ctr;    /* move program counter by bytes decoded */
    1259. 

  1259. 

  1260.   /* return number of bytes disassembled. */
    1261. 

  1261.   return u->inp_ctr;
    1262. 

  1262. }
    1263. 

  1263. 

  1264. /*
    1265. 

  1265. vim: set ts=2 sw=2 expandtab
    1266. 

  1266. */
    1267.