CSE2410 Fall 2014 Bounce

// Copyright 2011 the V8 project authors. All rights reserved.

// Redistribution and use in source and binary forms, with or without

// modification, are permitted provided that the following conditions are

// met:

//

//     * Redistributions of source code must retain the above copyright

//       notice, this list of conditions and the following disclaimer.

//     * Redistributions in binary form must reproduce the above

//       copyright notice, this list of conditions and the following

//       disclaimer in the documentation and/or other materials provided

//       with the distribution.

//     * Neither the name of Google Inc. nor the names of its

//       contributors may be used to endorse or promote products derived

//       from this software without specific prior written permission.

//

// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR

// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT

// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT

// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,

// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY

// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT

// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE

// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

#include <assert.h>

#include <stdio.h>

#include <stdarg.h>

#include "v8.h"

#if V8_TARGET_ARCH_X64

#include "disasm.h"

#include "lazy-instance.h"

namespace disasm {

enum OperandType {

  UNSET_OP_ORDER = 0,

  // Operand size decides between 16, 32 and 64 bit operands.

  REG_OPER_OP_ORDER = 1,  // Register destination, operand source.

  OPER_REG_OP_ORDER = 2,  // Operand destination, register source.

  // Fixed 8-bit operands.

  BYTE_SIZE_OPERAND_FLAG = 4,

  BYTE_REG_OPER_OP_ORDER = REG_OPER_OP_ORDER | BYTE_SIZE_OPERAND_FLAG,

  BYTE_OPER_REG_OP_ORDER = OPER_REG_OP_ORDER | BYTE_SIZE_OPERAND_FLAG

};

//------------------------------------------------------------------

// Tables

//------------------------------------------------------------------

struct ByteMnemonic {

  int b;  // -1 terminates, otherwise must be in range (0..255)

  OperandType op_order_;

  const char* mnem;

};

static const ByteMnemonic two_operands_instr[] = {

  { 0x00, BYTE_OPER_REG_OP_ORDER, "add" },

  { 0x01, OPER_REG_OP_ORDER,      "add" },

  { 0x02, BYTE_REG_OPER_OP_ORDER, "add" },

  { 0x03, REG_OPER_OP_ORDER,      "add" },

  { 0x08, BYTE_OPER_REG_OP_ORDER, "or" },

  { 0x09, OPER_REG_OP_ORDER,      "or" },

  { 0x0A, BYTE_REG_OPER_OP_ORDER, "or" },

  { 0x0B, REG_OPER_OP_ORDER,      "or" },

  { 0x10, BYTE_OPER_REG_OP_ORDER, "adc" },

  { 0x11, OPER_REG_OP_ORDER,      "adc" },

  { 0x12, BYTE_REG_OPER_OP_ORDER, "adc" },

  { 0x13, REG_OPER_OP_ORDER,      "adc" },

  { 0x18, BYTE_OPER_REG_OP_ORDER, "sbb" },

  { 0x19, OPER_REG_OP_ORDER,      "sbb" },

  { 0x1A, BYTE_REG_OPER_OP_ORDER, "sbb" },

  { 0x1B, REG_OPER_OP_ORDER,      "sbb" },

  { 0x20, BYTE_OPER_REG_OP_ORDER, "and" },

  { 0x21, OPER_REG_OP_ORDER,      "and" },

  { 0x22, BYTE_REG_OPER_OP_ORDER, "and" },

  { 0x23, REG_OPER_OP_ORDER,      "and" },

  { 0x28, BYTE_OPER_REG_OP_ORDER, "sub" },

  { 0x29, OPER_REG_OP_ORDER,      "sub" },

  { 0x2A, BYTE_REG_OPER_OP_ORDER, "sub" },

  { 0x2B, REG_OPER_OP_ORDER,      "sub" },

  { 0x30, BYTE_OPER_REG_OP_ORDER, "xor" },

  { 0x31, OPER_REG_OP_ORDER,      "xor" },

  { 0x32, BYTE_REG_OPER_OP_ORDER, "xor" },

  { 0x33, REG_OPER_OP_ORDER,      "xor" },

  { 0x38, BYTE_OPER_REG_OP_ORDER, "cmp" },

  { 0x39, OPER_REG_OP_ORDER,      "cmp" },

  { 0x3A, BYTE_REG_OPER_OP_ORDER, "cmp" },

  { 0x3B, REG_OPER_OP_ORDER,      "cmp" },

  { 0x63, REG_OPER_OP_ORDER,      "movsxl" },

  { 0x84, BYTE_REG_OPER_OP_ORDER, "test" },

  { 0x85, REG_OPER_OP_ORDER,      "test" },

  { 0x86, BYTE_REG_OPER_OP_ORDER, "xchg" },

  { 0x87, REG_OPER_OP_ORDER,      "xchg" },

  { 0x88, BYTE_OPER_REG_OP_ORDER, "mov" },

  { 0x89, OPER_REG_OP_ORDER,      "mov" },

  { 0x8A, BYTE_REG_OPER_OP_ORDER, "mov" },

  { 0x8B, REG_OPER_OP_ORDER,      "mov" },

  { 0x8D, REG_OPER_OP_ORDER,      "lea" },

  { -1, UNSET_OP_ORDER, "" }

};

static const ByteMnemonic zero_operands_instr[] = {

  { 0xC3, UNSET_OP_ORDER, "ret" },

  { 0xC9, UNSET_OP_ORDER, "leave" },

  { 0xF4, UNSET_OP_ORDER, "hlt" },

  { 0xFC, UNSET_OP_ORDER, "cld" },

  { 0xCC, UNSET_OP_ORDER, "int3" },

  { 0x60, UNSET_OP_ORDER, "pushad" },

  { 0x61, UNSET_OP_ORDER, "popad" },

  { 0x9C, UNSET_OP_ORDER, "pushfd" },

  { 0x9D, UNSET_OP_ORDER, "popfd" },

  { 0x9E, UNSET_OP_ORDER, "sahf" },

  { 0x99, UNSET_OP_ORDER, "cdq" },

  { 0x9B, UNSET_OP_ORDER, "fwait" },

  { 0xA4, UNSET_OP_ORDER, "movs" },

  { 0xA5, UNSET_OP_ORDER, "movs" },

  { 0xA6, UNSET_OP_ORDER, "cmps" },

  { 0xA7, UNSET_OP_ORDER, "cmps" },

  { -1, UNSET_OP_ORDER, "" }

};

static const ByteMnemonic call_jump_instr[] = {

  { 0xE8, UNSET_OP_ORDER, "call" },

  { 0xE9, UNSET_OP_ORDER, "jmp" },

  { -1, UNSET_OP_ORDER, "" }

};

static const ByteMnemonic short_immediate_instr[] = {

  { 0x05, UNSET_OP_ORDER, "add" },

  { 0x0D, UNSET_OP_ORDER, "or" },

  { 0x15, UNSET_OP_ORDER, "adc" },

  { 0x1D, UNSET_OP_ORDER, "sbb" },

  { 0x25, UNSET_OP_ORDER, "and" },

  { 0x2D, UNSET_OP_ORDER, "sub" },

  { 0x35, UNSET_OP_ORDER, "xor" },

  { 0x3D, UNSET_OP_ORDER, "cmp" },

  { -1, UNSET_OP_ORDER, "" }

};

static const char* const conditional_code_suffix[] = {

  "o", "no", "c", "nc", "z", "nz", "na", "a",

  "s", "ns", "pe", "po", "l", "ge", "le", "g"

};

enum InstructionType {

  NO_INSTR,

  ZERO_OPERANDS_INSTR,

  TWO_OPERANDS_INSTR,

  JUMP_CONDITIONAL_SHORT_INSTR,

  REGISTER_INSTR,

  PUSHPOP_INSTR,  // Has implicit 64-bit operand size.

  MOVE_REG_INSTR,

  CALL_JUMP_INSTR,

  SHORT_IMMEDIATE_INSTR

};

enum Prefixes {

  ESCAPE_PREFIX = 0x0F,

  OPERAND_SIZE_OVERRIDE_PREFIX = 0x66,

  ADDRESS_SIZE_OVERRIDE_PREFIX = 0x67,

  REPNE_PREFIX = 0xF2,

  REP_PREFIX = 0xF3,

  REPEQ_PREFIX = REP_PREFIX

};

struct InstructionDesc {

  const char* mnem;

  InstructionType type;

  OperandType op_order_;

  bool byte_size_operation;  // Fixed 8-bit operation.

};

class InstructionTable {

 public:

  InstructionTable();

  const InstructionDesc& Get(byte x) const {

    return instructions_[x];

  }

 private:

  InstructionDesc instructions_[256];

  void Clear();

  void Init();

  void CopyTable(const ByteMnemonic bm[], InstructionType type);

  void SetTableRange(InstructionType type, byte start, byte end, bool byte_size,

                     const char* mnem);

  void AddJumpConditionalShort();

};

InstructionTable::InstructionTable() {

  Clear();

  Init();

}

void InstructionTable::Clear() {

  for (int i = 0; i < 256; i++) {

    instructions_[i].mnem = "(bad)";

    instructions_[i].type = NO_INSTR;

    instructions_[i].op_order_ = UNSET_OP_ORDER;

    instructions_[i].byte_size_operation = false;

  }

}

void InstructionTable::Init() {

  CopyTable(two_operands_instr, TWO_OPERANDS_INSTR);

  CopyTable(zero_operands_instr, ZERO_OPERANDS_INSTR);

  CopyTable(call_jump_instr, CALL_JUMP_INSTR);

  CopyTable(short_immediate_instr, SHORT_IMMEDIATE_INSTR);

  AddJumpConditionalShort();

  SetTableRange(PUSHPOP_INSTR, 0x50, 0x57, false, "push");

  SetTableRange(PUSHPOP_INSTR, 0x58, 0x5F, false, "pop");

  SetTableRange(MOVE_REG_INSTR, 0xB8, 0xBF, false, "mov");

}

void InstructionTable::CopyTable(const ByteMnemonic bm[],

                                 InstructionType type) {

  for (int i = 0; bm[i].b >= 0; i++) {

    InstructionDesc* id = &instructions_[bm[i].b];

    id->mnem = bm[i].mnem;

    OperandType op_order = bm[i].op_order_;

    id->op_order_ =

        static_cast<OperandType>(op_order & ~BYTE_SIZE_OPERAND_FLAG);

    ASSERT_EQ(NO_INSTR, id->type);  // Information not already entered

    id->type = type;

    id->byte_size_operation = ((op_order & BYTE_SIZE_OPERAND_FLAG) != 0);

  }

}

void InstructionTable::SetTableRange(InstructionType type,

                                     byte start,

                                     byte end,

                                     bool byte_size,

                                     const char* mnem) {

  for (byte b = start; b <= end; b++) {

    InstructionDesc* id = &instructions_[b];

    ASSERT_EQ(NO_INSTR, id->type);  // Information not already entered

    id->mnem = mnem;

    id->type = type;

    id->byte_size_operation = byte_size;

  }

}

void InstructionTable::AddJumpConditionalShort() {

  for (byte b = 0x70; b <= 0x7F; b++) {

    InstructionDesc* id = &instructions_[b];

    ASSERT_EQ(NO_INSTR, id->type);  // Information not already entered

    id->mnem = NULL;  // Computed depending on condition code.

    id->type = JUMP_CONDITIONAL_SHORT_INSTR;

  }

}

static v8::internal::LazyInstance<InstructionTable>::type instruction_table =

    LAZY_INSTANCE_INITIALIZER;

static InstructionDesc cmov_instructions[16] = {

  {"cmovo", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovno", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovc", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovnc", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovz", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovnz", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovna", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmova", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovs", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovns", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovpe", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovpo", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovl", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovge", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovle", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false},

  {"cmovg", TWO_OPERANDS_INSTR, REG_OPER_OP_ORDER, false}

};

//------------------------------------------------------------------------------

// DisassemblerX64 implementation.

enum UnimplementedOpcodeAction {

  CONTINUE_ON_UNIMPLEMENTED_OPCODE,

  ABORT_ON_UNIMPLEMENTED_OPCODE

};

// A new DisassemblerX64 object is created to disassemble each instruction.

// The object can only disassemble a single instruction.

class DisassemblerX64 {

 public:

  DisassemblerX64(const NameConverter& converter,

                  UnimplementedOpcodeAction unimplemented_action =

                      ABORT_ON_UNIMPLEMENTED_OPCODE)

      : converter_(converter),

        tmp_buffer_pos_(0),

        abort_on_unimplemented_(

            unimplemented_action == ABORT_ON_UNIMPLEMENTED_OPCODE),

        rex_(0),

        operand_size_(0),

        group_1_prefix_(0),

        byte_size_operand_(false),

        instruction_table_(instruction_table.Pointer()) {

    tmp_buffer_[0] = '\0';

  }

  virtual ~DisassemblerX64() {

  }

  // Writes one disassembled instruction into 'buffer' (0-terminated).

  // Returns the length of the disassembled machine instruction in bytes.

  int InstructionDecode(v8::internal::Vector<char> buffer, byte* instruction);

 private:

  enum OperandSize {

    OPERAND_BYTE_SIZE = 0,

    OPERAND_WORD_SIZE = 1,

    OPERAND_DOUBLEWORD_SIZE = 2,

    OPERAND_QUADWORD_SIZE = 3

  };

  const NameConverter& converter_;

  v8::internal::EmbeddedVector<char, 128> tmp_buffer_;

  unsigned int tmp_buffer_pos_;

  bool abort_on_unimplemented_;

  // Prefixes parsed

  byte rex_;

  byte operand_size_;  // 0x66 or (if no group 3 prefix is present) 0x0.

  byte group_1_prefix_;  // 0xF2, 0xF3, or (if no group 1 prefix is present) 0.

  // Byte size operand override.

  bool byte_size_operand_;

  const InstructionTable* const instruction_table_;

  void setRex(byte rex) {

    ASSERT_EQ(0x40, rex & 0xF0);

    rex_ = rex;

  }

  bool rex() { return rex_ != 0; }

  bool rex_b() { return (rex_ & 0x01) != 0; }

  // Actual number of base register given the low bits and the rex.b state.

  int base_reg(int low_bits) { return low_bits | ((rex_ & 0x01) << 3); }

  bool rex_x() { return (rex_ & 0x02) != 0; }

  bool rex_r() { return (rex_ & 0x04) != 0; }

  bool rex_w() { return (rex_ & 0x08) != 0; }

  OperandSize operand_size() {

    if (byte_size_operand_) return OPERAND_BYTE_SIZE;

    if (rex_w()) return OPERAND_QUADWORD_SIZE;

    if (operand_size_ != 0) return OPERAND_WORD_SIZE;

    return OPERAND_DOUBLEWORD_SIZE;

  }

  char operand_size_code() {

    return "bwlq"[operand_size()];

  }

  const char* NameOfCPURegister(int reg) const {

    return converter_.NameOfCPURegister(reg);

  }

  const char* NameOfByteCPURegister(int reg) const {

    return converter_.NameOfByteCPURegister(reg);

  }

  const char* NameOfXMMRegister(int reg) const {

    return converter_.NameOfXMMRegister(reg);

  }

  const char* NameOfAddress(byte* addr) const {

    return converter_.NameOfAddress(addr);

  }

  // Disassembler helper functions.

  void get_modrm(byte data,

                 int* mod,

                 int* regop,

                 int* rm) {

    *mod = (data >> 6) & 3;

    *regop = ((data & 0x38) >> 3) | (rex_r() ? 8 : 0);

    *rm = (data & 7) | (rex_b() ? 8 : 0);

  }

  void get_sib(byte data,

               int* scale,

               int* index,

               int* base) {

    *scale = (data >> 6) & 3;

    *index = ((data >> 3) & 7) | (rex_x() ? 8 : 0);

    *base = (data & 7) | (rex_b() ? 8 : 0);

  }

  typedef const char* (DisassemblerX64::*RegisterNameMapping)(int reg) const;

  int PrintRightOperandHelper(byte* modrmp,

                              RegisterNameMapping register_name);

  int PrintRightOperand(byte* modrmp);

  int PrintRightByteOperand(byte* modrmp);

  int PrintRightXMMOperand(byte* modrmp);

  int PrintOperands(const char* mnem,

                    OperandType op_order,

                    byte* data);

  int PrintImmediate(byte* data, OperandSize size);

  int PrintImmediateOp(byte* data);

  const char* TwoByteMnemonic(byte opcode);

  int TwoByteOpcodeInstruction(byte* data);

  int F6F7Instruction(byte* data);

  int ShiftInstruction(byte* data);

  int JumpShort(byte* data);

  int JumpConditional(byte* data);

  int JumpConditionalShort(byte* data);

  int SetCC(byte* data);

  int FPUInstruction(byte* data);

  int MemoryFPUInstruction(int escape_opcode, int regop, byte* modrm_start);

  int RegisterFPUInstruction(int escape_opcode, byte modrm_byte);

  void AppendToBuffer(const char* format, ...);

  void UnimplementedInstruction() {

    if (abort_on_unimplemented_) {

      CHECK(false);

    } else {

      AppendToBuffer("'Unimplemented Instruction'");

    }

  }

};

void DisassemblerX64::AppendToBuffer(const char* format, ...) {

  v8::internal::Vector<char> buf = tmp_buffer_ + tmp_buffer_pos_;

  va_list args;

  va_start(args, format);

  int result = v8::internal::OS::VSNPrintF(buf, format, args);

  va_end(args);

  tmp_buffer_pos_ += result;

}

int DisassemblerX64::PrintRightOperandHelper(

    byte* modrmp,

    RegisterNameMapping direct_register_name) {

  int mod, regop, rm;

  get_modrm(*modrmp, &mod, &regop, &rm);

  RegisterNameMapping register_name = (mod == 3) ? direct_register_name :

      &DisassemblerX64::NameOfCPURegister;

  switch (mod) {

    case 0:

      if ((rm & 7) == 5) {

        int32_t disp = *reinterpret_cast<int32_t*>(modrmp + 1);

        AppendToBuffer("[0x%x]", disp);

        return 5;

      } else if ((rm & 7) == 4) {

        // Codes for SIB byte.

        byte sib = *(modrmp + 1);

        int scale, index, base;

        get_sib(sib, &scale, &index, &base);

        if (index == 4 && (base & 7) == 4 && scale == 0 /*times_1*/) {

          // index == rsp means no index. Only use sib byte with no index for

          // rsp and r12 base.

          AppendToBuffer("[%s]", NameOfCPURegister(base));

          return 2;

        } else if (base == 5) {

          // base == rbp means no base register (when mod == 0).

          int32_t disp = *reinterpret_cast<int32_t*>(modrmp + 2);

          AppendToBuffer("[%s*%d+0x%x]",

                         NameOfCPURegister(index),

                         1 << scale, disp);

          return 6;

        } else if (index != 4 && base != 5) {

          // [base+index*scale]

          AppendToBuffer("[%s+%s*%d]",

                         NameOfCPURegister(base),

                         NameOfCPURegister(index),

                         1 << scale);

          return 2;

        } else {

          UnimplementedInstruction();

          return 1;

        }

      } else {

        AppendToBuffer("[%s]", NameOfCPURegister(rm));

        return 1;

      }

      break;

    case 1:  // fall through

    case 2:

      if ((rm & 7) == 4) {

        byte sib = *(modrmp + 1);

        int scale, index, base;

        get_sib(sib, &scale, &index, &base);

        int disp = (mod == 2) ? *reinterpret_cast<int32_t*>(modrmp + 2)

                              : *reinterpret_cast<char*>(modrmp + 2);

        if (index == 4 && (base & 7) == 4 && scale == 0 /*times_1*/) {

          if (-disp > 0) {

            AppendToBuffer("[%s-0x%x]", NameOfCPURegister(base), -disp);

          } else {

            AppendToBuffer("[%s+0x%x]", NameOfCPURegister(base), disp);

          }

        } else {

          if (-disp > 0) {

            AppendToBuffer("[%s+%s*%d-0x%x]",

                           NameOfCPURegister(base),

                           NameOfCPURegister(index),

                           1 << scale,

                           -disp);

          } else {

            AppendToBuffer("[%s+%s*%d+0x%x]",

                           NameOfCPURegister(base),

                           NameOfCPURegister(index),

                           1 << scale,

                           disp);

          }

        }

        return mod == 2 ? 6 : 3;

      } else {

        // No sib.

        int disp = (mod == 2) ? *reinterpret_cast<int32_t*>(modrmp + 1)

                              : *reinterpret_cast<char*>(modrmp + 1);

        if (-disp > 0) {

        AppendToBuffer("[%s-0x%x]", NameOfCPURegister(rm), -disp);

        } else {

        AppendToBuffer("[%s+0x%x]", NameOfCPURegister(rm), disp);

        }

        return (mod == 2) ? 5 : 2;

      }

      break;

    case 3:

      AppendToBuffer("%s", (this->*register_name)(rm));

      return 1;

    default:

      UnimplementedInstruction();

      return 1;

  }

  UNREACHABLE();

}

int DisassemblerX64::PrintImmediate(byte* data, OperandSize size) {

  int64_t value;

  int count;

  switch (size) {

    case OPERAND_BYTE_SIZE:

      value = *data;

      count = 1;

      break;

    case OPERAND_WORD_SIZE:

      value = *reinterpret_cast<int16_t*>(data);

      count = 2;

      break;

    case OPERAND_DOUBLEWORD_SIZE:

      value = *reinterpret_cast<uint32_t*>(data);

      count = 4;

      break;

    case OPERAND_QUADWORD_SIZE:

      value = *reinterpret_cast<int32_t*>(data);

      count = 4;

      break;

    default:

      UNREACHABLE();

      value = 0;  // Initialize variables on all paths to satisfy the compiler.

      count = 0;

  }

  AppendToBuffer("%" V8_PTR_PREFIX "x", value);

  return count;

}

int DisassemblerX64::PrintRightOperand(byte* modrmp) {

  return PrintRightOperandHelper(modrmp,

                                 &DisassemblerX64::NameOfCPURegister);

}

int DisassemblerX64::PrintRightByteOperand(byte* modrmp) {

  return PrintRightOperandHelper(modrmp,

                                 &DisassemblerX64::NameOfByteCPURegister);

}

int DisassemblerX64::PrintRightXMMOperand(byte* modrmp) {

  return PrintRightOperandHelper(modrmp,

                                 &DisassemblerX64::NameOfXMMRegister);

}

// Returns number of bytes used including the current *data.

// Writes instruction's mnemonic, left and right operands to 'tmp_buffer_'.

int DisassemblerX64::PrintOperands(const char* mnem,

                                   OperandType op_order,

                                   byte* data) {

  byte modrm = *data;

  int mod, regop, rm;

  get_modrm(modrm, &mod, &regop, &rm);

  int advance = 0;

  const char* register_name =

      byte_size_operand_ ? NameOfByteCPURegister(regop)

                         : NameOfCPURegister(regop);

  switch (op_order) {

    case REG_OPER_OP_ORDER: {

      AppendToBuffer("%s%c %s,",

                     mnem,

                     operand_size_code(),

                     register_name);

      advance = byte_size_operand_ ? PrintRightByteOperand(data)

                                   : PrintRightOperand(data);

      break;

    }

    case OPER_REG_OP_ORDER: {

      AppendToBuffer("%s%c ", mnem, operand_size_code());

      advance = byte_size_operand_ ? PrintRightByteOperand(data)

                                   : PrintRightOperand(data);

      AppendToBuffer(",%s", register_name);

      break;

    }

    default:

      UNREACHABLE();

      break;

  }

  return advance;

}

// Returns number of bytes used by machine instruction, including *data byte.

// Writes immediate instructions to 'tmp_buffer_'.

int DisassemblerX64::PrintImmediateOp(byte* data) {

  bool byte_size_immediate = (*data & 0x02) != 0;

  byte modrm = *(data + 1);

  int mod, regop, rm;

  get_modrm(modrm, &mod, &regop, &rm);

  const char* mnem = "Imm???";

  switch (regop) {

    case 0:

      mnem = "add";

      break;

    case 1:

      mnem = "or";

      break;

    case 2:

      mnem = "adc";

      break;

    case 3:

      mnem = "sbb";

      break;

    case 4:

      mnem = "and";

      break;

    case 5:

      mnem = "sub";

      break;

    case 6:

      mnem = "xor";

      break;

    case 7:

      mnem = "cmp";

      break;

    default:

      UnimplementedInstruction();

  }

  AppendToBuffer("%s%c ", mnem, operand_size_code());

  int count = PrintRightOperand(data + 1);

  AppendToBuffer(",0x");

  OperandSize immediate_size =

      byte_size_immediate ? OPERAND_BYTE_SIZE : operand_size();

  count += PrintImmediate(data + 1 + count, immediate_size);

  return 1 + count;

}

// Returns number of bytes used, including *data.

int DisassemblerX64::F6F7Instruction(byte* data) {

  ASSERT(*data == 0xF7 || *data == 0xF6);

  byte modrm = *(data + 1);

  int mod, regop, rm;

  get_modrm(modrm, &mod, &regop, &rm);

  if (mod == 3 && regop != 0) {

    const char* mnem = NULL;

    switch (regop) {

      case 2:

        mnem = "not";

        break;

      case 3:

        mnem = "neg";

        break;

      case 4:

        mnem = "mul";

        break;

      case 5:

        mnem = "imul";

        break;

      case 7:

        mnem = "idiv";

        break;

      default:

        UnimplementedInstruction();

    }

    AppendToBuffer("%s%c %s",

                   mnem,

                   operand_size_code(),

                   NameOfCPURegister(rm));

    return 2;

  } else if (regop == 0) {

    AppendToBuffer("test%c ", operand_size_code());

    int count = PrintRightOperand(data + 1);  // Use name of 64-bit register.

    AppendToBuffer(",0x");

    count += PrintImmediate(data + 1 + count, operand_size());

    return 1 + count;

  } else {

    UnimplementedInstruction();

    return 2;

  }

}

int DisassemblerX64::ShiftInstruction(byte* data) {

  byte op = *data & (~1);

  if (op != 0xD0 && op != 0xD2 && op != 0xC0) {

    UnimplementedInstruction();

    return 1;

  }

  byte modrm = *(data + 1);

  int mod, regop, rm;

  get_modrm(modrm, &mod, &regop, &rm);

  regop &= 0x7;  // The REX.R bit does not affect the operation.

  int imm8 = -1;

  int num_bytes = 2;

  if (mod != 3) {

    UnimplementedInstruction();

    return num_bytes;

  }

  const char* mnem = NULL;

  switch (regop) {

    case 0:

      mnem = "rol";

      break;

    case 1:

      mnem = "ror";

      break;

    case 2:

      mnem = "rcl";

      break;

    case 3:

      mnem = "rcr";

      break;

    case 4:

      mnem = "shl";

      break;

    case 5:

      mnem = "shr";

      break;

    case 7:

      mnem = "sar";

      break;

    default:

      UnimplementedInstruction();

      return num_bytes;

  }

  ASSERT_NE(NULL, mnem);

  if (op == 0xD0) {

    imm8 = 1;

  } else if (op == 0xC0) {

    imm8 = *(data + 2);

    num_bytes = 3;

  }

  AppendToBuffer("%s%c %s,",

                 mnem,

                 operand_size_code(),

                 byte_size_operand_ ? NameOfByteCPURegister(rm)

                                    : NameOfCPURegister(rm));

  if (op == 0xD2) {

    AppendToBuffer("cl");

  } else {

    AppendToBuffer("%d", imm8);

  }

  return num_bytes;

}

// Returns number of bytes used, including *data.

int DisassemblerX64::JumpShort(byte* data) {

  ASSERT_EQ(0xEB, *data);

  byte b = *(data + 1);

  byte* dest = data + static_cast<int8_t>(b) + 2;

  AppendToBuffer("jmp %s", NameOfAddress(dest));

  return 2;

}

// Returns number of bytes used, including *data.

int DisassemblerX64::JumpConditional(byte* data) {

  ASSERT_EQ(0x0F, *data);

  byte cond = *(data + 1) & 0x0F;

  byte* dest = data + *reinterpret_cast<int32_t*>(data + 2) + 6;

  const char* mnem = conditional_code_suffix[cond];

  AppendToBuffer("j%s %s", mnem, NameOfAddress(dest));

  return 6;  // includes 0x0F

}

// Returns number of bytes used, including *data.

int DisassemblerX64::JumpConditionalShort(byte* data) {

  byte cond = *data & 0x0F;

  byte b = *(data + 1);

  byte* dest = data + static_cast<int8_t>(b) + 2;

  const char* mnem = conditional_code_suffix[cond];

  AppendToBuffer("j%s %s", mnem, NameOfAddress(dest));

  return 2;

}

// Returns number of bytes used, including *data.

int DisassemblerX64::SetCC(byte* data) {

  ASSERT_EQ(0x0F, *data);

  byte cond = *(data + 1) & 0x0F;

  const char* mnem = conditional_code_suffix[cond];

  AppendToBuffer("set%s%c ", mnem, operand_size_code());

  PrintRightByteOperand(data + 2);

  return 3;  // includes 0x0F

}

// Returns number of bytes used, including *data.

int DisassemblerX64::FPUInstruction(byte* data) {

  byte escape_opcode = *data;

  ASSERT_EQ(0xD8, escape_opcode & 0xF8);

  byte modrm_byte = *(data+1);

  if (modrm_byte >= 0xC0) {

    return RegisterFPUInstruction(escape_opcode, modrm_byte);

  } else {

    return MemoryFPUInstruction(escape_opcode, modrm_byte, data+1);

  }

}

int DisassemblerX64::MemoryFPUInstruction(int escape_opcode,

                                           int modrm_byte,

                                           byte* modrm_start) {

  const char* mnem = "?";

  int regop = (modrm_byte >> 3) & 0x7;  // reg/op field of modrm byte.

  switch (escape_opcode) {

    case 0xD9: switch (regop) {

        case 0: mnem = "fld_s"; break;

        case 3: mnem = "fstp_s"; break;

        case 7: mnem = "fstcw"; break;

        default: UnimplementedInstruction();

      }

      break;

    case 0xDB: switch (regop) {

        case 0: mnem = "fild_s"; break;

        case 1: mnem = "fisttp_s"; break;

        case 2: mnem = "fist_s"; break;

        case 3: mnem = "fistp_s"; break;

        default: UnimplementedInstruction();

      }

      break;

    case 0xDD: switch (regop) {

        case 0: mnem = "fld_d"; break;

        case 3: mnem = "fstp_d"; break;

        default: UnimplementedInstruction();

      }

      break;

    case 0xDF: switch (regop) {

        case 5: mnem = "fild_d"; break;

        case 7: mnem = "fistp_d"; break;

        default: UnimplementedInstruction();

      }

      break;

    default: UnimplementedInstruction();

  }

  AppendToBuffer("%s ", mnem);

  int count = PrintRightOperand(modrm_start);

  return count + 1;

}

int DisassemblerX64::RegisterFPUInstruction(int escape_opcode,

                                             byte modrm_byte) {

  bool has_register = false;  // Is the FPU register encoded in modrm_byte?

  const char* mnem = "?";

  switch (escape_opcode) {

    case 0xD8:

      UnimplementedInstruction();

      break;

    case 0xD9:

      switch (modrm_byte & 0xF8) {

        case 0xC0:

          mnem = "fld";

          has_register = true;

          break;

        case 0xC8:

          mnem = "fxch";

          has_register = true;

          break;

        default:

          switch (modrm_byte) {

            case 0xE0: mnem = "fchs"; break;

            case 0xE1: mnem = "fabs"; break;

            case 0xE3: mnem = "fninit"; break;

            case 0xE4: mnem = "ftst"; break;

            case 0xE8: mnem = "fld1"; break;

            case 0xEB: mnem = "fldpi"; break;

            case 0xED: mnem = "fldln2"; break;

            case 0xEE: mnem = "fldz"; break;

            case 0xF0: mnem = "f2xm1"; break;

            case 0xF1: mnem = "fyl2x"; break;

            case 0xF2: mnem = "fptan"; break;

            case 0xF5: mnem = "fprem1"; break;

            case 0xF7: mnem = "fincstp"; break;

            case 0xF8: mnem = "fprem"; break;

            case 0xFD: mnem = "fscale"; break;

            case 0xFE: mnem = "fsin"; break;

            case 0xFF: mnem = "fcos"; break;

            default: UnimplementedInstruction();

          }

      }

      break;

    case 0xDA:

      if (modrm_byte == 0xE9) {

        mnem = "fucompp";

      } else {

        UnimplementedInstruction();

      }

      break;

    case 0xDB:

      if ((modrm_byte & 0xF8) == 0xE8) {

        mnem = "fucomi";

        has_register = true;

      } else if (modrm_byte  == 0xE2) {

        mnem = "fclex";

      } else {

        UnimplementedInstruction();

      }

      break;

    case 0xDC:

      has_register = true;

      switch (modrm_byte & 0xF8) {

        case 0xC0: mnem = "fadd"; break;

        case 0xE8: mnem = "fsub"; break;

        case 0xC8: mnem = "fmul"; break;

        case 0xF8: mnem = "fdiv"; break;

        default: UnimplementedInstruction();

      }

      break;

    case 0xDD:

      has_register = true;

      switch (modrm_byte & 0xF8) {

        case 0xC0: mnem = "ffree"; break;

        case 0xD8: mnem = "fstp"; break;

        default: UnimplementedInstruction();

      }

      break;

    case 0xDE:

      if (modrm_byte  == 0xD9) {

        mnem = "fcompp";

      } else {

        has_register = true;

        switch (modrm_byte & 0xF8) {

          case 0xC0: mnem = "faddp"; break;

          case 0xE8: mnem = "fsubp"; break;

          case 0xC8: mnem = "fmulp"; break;

          case 0xF8: mnem = "fdivp"; break;

          default: UnimplementedInstruction();

        }

      }

      break;

    case 0xDF:

      if (modrm_byte == 0xE0) {

        mnem = "fnstsw_ax";

      } else if ((modrm_byte & 0xF8) == 0xE8) {

        mnem = "fucomip";

        has_register = true;

      }

      break;

    default: UnimplementedInstruction();

  }

  if (has_register) {

    AppendToBuffer("%s st%d", mnem, modrm_byte & 0x7);

  } else {

    AppendToBuffer("%s", mnem);

  }

  return 2;

}

// Handle all two-byte opcodes, which start with 0x0F.

// These instructions may be affected by an 0x66, 0xF2, or 0xF3 prefix.

// We do not use any three-byte opcodes, which start with 0x0F38 or 0x0F3A.

int DisassemblerX64::TwoByteOpcodeInstruction(byte* data) {

  byte opcode = *(data + 1);

  byte* current = data + 2;

  // At return, "current" points to the start of the next instruction.

  const char* mnemonic = TwoByteMnemonic(opcode);

  if (operand_size_ == 0x66) {

    // 0x66 0x0F prefix.

    int mod, regop, rm;

    if (opcode == 0x3A) {

      byte third_byte = *current;

      current = data + 3;

      if (third_byte == 0x17) {

        get_modrm(*current, &mod, &regop, &rm);

        AppendToBuffer("extractps ");  // reg/m32, xmm, imm8

        current += PrintRightOperand(current);

        AppendToBuffer(",%s,%d", NameOfXMMRegister(regop), (*current) & 3);

        current += 1;

      } else if (third_byte == 0x0b) {

        get_modrm(*current, &mod, &regop, &rm);

         // roundsd xmm, xmm/m64, imm8

        AppendToBuffer("roundsd %s,", NameOfXMMRegister(regop));

        current += PrintRightXMMOperand(current);

        AppendToBuffer(",%d", (*current) & 3);

        current += 1;

      } else {

        UnimplementedInstruction();

      }

    } else {

      get_modrm(*current, &mod, &regop, &rm);

      if (opcode == 0x1f) {

        current++;

        if (rm == 4) {  // SIB byte present.

          current++;

        }

        if (mod == 1) {  // Byte displacement.

          current += 1;

        } else if (mod == 2) {  // 32-bit displacement.

          current += 4;

        }  // else no immediate displacement.

        AppendToBuffer("nop");

      } else if (opcode == 0x28) {

        AppendToBuffer("movapd %s,", NameOfXMMRegister(regop));

        current += PrintRightXMMOperand(current);

      } else if (opcode == 0x29) {

        AppendToBuffer("movapd ");

        current += PrintRightXMMOperand(current);

        AppendToBuffer(",%s", NameOfXMMRegister(regop));

      } else if (opcode == 0x6E) {

        AppendToBuffer("mov%c %s,",

                       rex_w() ? 'q' : 'd',

                       NameOfXMMRegister(regop));

        current += PrintRightOperand(current);

      } else if (opcode == 0x6F) {

        AppendToBuffer("movdqa %s,",

                       NameOfXMMRegister(regop));

        current += PrintRightXMMOperand(current);

      } else if (opcode == 0x7E) {

        AppendToBuffer("mov%c ",

                       rex_w() ? 'q' : 'd');

        current += PrintRightOperand(current);

        AppendToBuffer(",%s", NameOfXMMRegister(regop));

      } else if (opcode == 0x7F) {

        AppendToBuffer("movdqa ");

        current += PrintRightXMMOperand(current);

        AppendToBuffer(",%s", NameOfXMMRegister(regop));

      } else if (opcode == 0xD6) {

        AppendToBuffer("movq ");

        current += PrintRightXMMOperand(current);

        AppendToBuffer(",%s", NameOfXMMRegister(regop));

      } else if (opcode == 0x50) {

        AppendToBuffer("movmskpd %s,", NameOfCPURegister(regop));

        current += PrintRightXMMOperand(current);

      } else {

        const char* mnemonic = "?";

        if (opcode == 0x54) {

          mnemonic = "andpd";

        } else  if (opcode == 0x56) {

          mnemonic = "orpd";

        } else  if (opcode == 0x57) {

          mnemonic = "xorpd";

        } else if (opcode == 0x2E) {

          mnemonic = "ucomisd";

        } else if (opcode == 0x2F) {

          mnemonic = "comisd";

        } else {

          UnimplementedInstruction();

        }

        AppendToBuffer("%s %s,", mnemonic, NameOfXMMRegister(regop));

        current += PrintRightXMMOperand(current);

      }

    }

  } else if (group_1_prefix_ == 0xF2) {

    // Beginning of instructions with prefix 0xF2.

    if (opcode == 0x11 || opcode == 0x10) {

      // MOVSD: Move scalar double-precision fp to/from/between XMM registers.

      AppendToBuffer("movsd ");

      int mod, regop, rm;

      get_modrm(*current, &mod, &regop, &rm);

      if (opcode == 0x11) {

        current += PrintRightXMMOperand(current);

        AppendToBuffer(",%s", NameOfXMMRegister(regop));

      } else {

        AppendToBuffer("%s,", NameOfXMMRegister(regop));

        current += PrintRightXMMOperand(current);

      }

    } else if (opcode == 0x2A) {

      // CVTSI2SD: integer to XMM double conversion.

      int mod, regop, rm;

      get_modrm(*current, &mod, &regop, &rm);

      AppendToBuffer("%sd %s,", mnemonic, NameOfXMMRegister(regop));

      current += PrintRightOperand(current);

    } else if (opcode == 0x2C) {

      // CVTTSD2SI:

      // Convert with truncation scalar double-precision FP to integer.

      int mod, regop, rm;

      get_modrm(*current, &mod, &regop, &rm);

      AppendToBuffer("cvttsd2si%c %s,",

          operand_size_code(), NameOfCPURegister(regop));

      current += PrintRightXMMOperand(current);

    } else if (opcode == 0x2D) {

      // CVTSD2SI: Convert scalar double-precision FP to integer.

      int mod, regop, rm;

      get_modrm(*current, &mod, &regop, &rm);

      AppendToBuffer("cvtsd2si%c %s,",

          operand_size_code(), NameOfCPURegister(regop));

      current += PrintRightXMMOperand(current);

    } else if ((opcode & 0xF8) == 0x58 || opcode == 0x51) {

      // XMM arithmetic. Mnemonic was retrieved at the start of this function.

      int mod, regop, rm;

      get_modrm(*current, &mod, &regop, &rm);

      AppendToBuffer("%s %s,", mnemonic, NameOfXMMRegister(regop));

      current += PrintRightXMMOperand(current);

    } else if (opcode == 0xC2) {

      // Intel manual 2A, Table 3-18.

      int mod, regop, rm;

      get_modrm(*current, &mod, &regop, &rm);

      const char* const pseudo_op[] = {

        "cmpeqsd",

        "cmpltsd",

        "cmplesd",

        "cmpunordsd",