unicorn/qemu/target/i386/unicorn.c

1483 lines
62 KiB
C
Raw Permalink Normal View History

2015-08-21 07:04:50 +00:00
/* Unicorn Emulator Engine */
/* By Nguyen Anh Quynh <aquynh@gmail.com>, 2015 */
#include "qemu/osdep.h"
#include "cpu.h"
2015-08-21 07:04:50 +00:00
#include "hw/boards.h"
#include "hw/i386/pc.h"
#include "sysemu/cpus.h"
2015-08-21 07:04:50 +00:00
#include "unicorn.h"
#include "tcg.h"
#include "unicorn_common.h"
#include <unicorn/x86.h> /* needed for uc_x86_mmr */
#include "uc_priv.h"
2015-08-21 07:04:50 +00:00
static void cpu_get_fp80(uint64_t *pmant, uint16_t *pexp, floatx80 f)
{
CPU_LDoubleU temp;
temp.d = f;
*pmant = temp.l.lower;
*pexp = temp.l.upper;
}
static floatx80 cpu_set_fp80(uint64_t mant, uint16_t upper)
{
CPU_LDoubleU temp;
temp.l.upper = upper;
temp.l.lower = mant;
return temp.d;
}
#define X86_NON_CS_FLAGS (DESC_P_MASK | DESC_S_MASK | DESC_W_MASK | DESC_A_MASK)
static void load_seg_16_helper(CPUX86State *env, int seg, uint32_t selector)
{
cpu_x86_load_seg_cache(env, seg, selector, (selector << 4), 0xffff, X86_NON_CS_FLAGS);
}
2015-08-21 07:04:50 +00:00
extern void helper_wrmsr(CPUX86State *env);
extern void helper_rdmsr(CPUX86State *env);
const int X86_REGS_STORAGE_SIZE = offsetof(CPUX86State, tlb_table);
2015-08-21 07:04:50 +00:00
static void x86_set_pc(struct uc_struct *uc, uint64_t address)
{
CPUX86State *state = uc->cpu->env_ptr;
state->eip = address;
2015-08-21 07:04:50 +00:00
}
void x86_release(void *ctx);
void x86_release(void *ctx)
{
TCGContext *s = (TCGContext *) ctx;
2016-01-10 15:34:36 +00:00
release_common(ctx);
2015-08-21 07:04:50 +00:00
// arch specific
g_free(s->tb_ctx.tbs);
2015-08-21 07:04:50 +00:00
}
2015-08-26 11:06:12 +00:00
void x86_reg_reset(struct uc_struct *uc)
2015-08-21 07:04:50 +00:00
{
2016-09-23 14:38:21 +00:00
CPUArchState *env = uc->cpu->env_ptr;
2015-08-21 07:04:50 +00:00
env->features[FEAT_1_EDX] = CPUID_CX8 | CPUID_CMOV | CPUID_SSE2 | CPUID_FXSR | CPUID_SSE | CPUID_CLFLUSH;
env->features[FEAT_1_ECX] = CPUID_EXT_SSSE3 | CPUID_EXT_SSE41 | CPUID_EXT_SSE42 | CPUID_EXT_AES | CPUID_EXT_CX16;
env->features[FEAT_8000_0001_EDX] = CPUID_EXT2_3DNOW | CPUID_EXT2_RDTSCP;
env->features[FEAT_8000_0001_ECX] = CPUID_EXT3_LAHF_LM | CPUID_EXT3_ABM | CPUID_EXT3_SKINIT | CPUID_EXT3_CR8LEG;
env->features[FEAT_7_0_EBX] = CPUID_7_0_EBX_BMI1 | CPUID_7_0_EBX_BMI2 | CPUID_7_0_EBX_ADX | CPUID_7_0_EBX_SMAP;
2015-08-21 07:04:50 +00:00
memset(env->regs, 0, sizeof(env->regs));
memset(env->segs, 0, sizeof(env->segs));
memset(env->cr, 0, sizeof(env->cr));
memset(&env->ldt, 0, sizeof(env->ldt));
memset(&env->gdt, 0, sizeof(env->gdt));
memset(&env->tr, 0, sizeof(env->tr));
memset(&env->idt, 0, sizeof(env->idt));
env->eip = 0;
env->eflags = 0;
env->eflags0 = 0;
env->cc_op = CC_OP_EFLAGS;
2015-08-21 07:04:50 +00:00
env->fpstt = 0; /* top of stack index */
env->fpus = 0;
env->fpuc = 0;
memset(env->fptags, 0, sizeof(env->fptags)); /* 0 = valid, 1 = empty */
env->mxcsr = 0;
memset(env->xmm_regs, 0, sizeof(env->xmm_regs));
memset(&env->xmm_t0, 0, sizeof(env->xmm_t0));
memset(&env->mmx_t0, 0, sizeof(env->mmx_t0));
memset(env->opmask_regs, 0, sizeof(env->opmask_regs));
/* sysenter registers */
env->sysenter_cs = 0;
env->sysenter_esp = 0;
env->sysenter_eip = 0;
env->efer = 0;
env->star = 0;
env->vm_hsave = 0;
env->tsc = 0;
env->tsc_adjust = 0;
env->tsc_deadline = 0;
env->mcg_status = 0;
env->msr_ia32_misc_enable = 0;
env->msr_ia32_feature_control = 0;
env->msr_fixed_ctr_ctrl = 0;
env->msr_global_ctrl = 0;
env->msr_global_status = 0;
env->msr_global_ovf_ctrl = 0;
memset(env->msr_fixed_counters, 0, sizeof(env->msr_fixed_counters));
memset(env->msr_gp_counters, 0, sizeof(env->msr_gp_counters));
memset(env->msr_gp_evtsel, 0, sizeof(env->msr_gp_evtsel));
#ifdef TARGET_X86_64
env->lstar = 0;
env->cstar = 0;
env->fmask = 0;
env->kernelgsbase = 0;
#endif
// TODO: reset other registers in CPUX86State qemu/target-i386/cpu.h
// properly initialize internal setup for each mode
switch(uc->mode) {
default:
break;
2015-08-25 16:39:46 +00:00
case UC_MODE_16:
env->hflags = 0;
env->cr[0] = 0;
//undo the damage done by the memset of env->segs above
//for R_CS, not quite the same as x86_cpu_reset
cpu_x86_load_seg_cache(env, R_CS, 0, 0, 0xffff,
DESC_P_MASK | DESC_S_MASK | DESC_CS_MASK |
DESC_R_MASK | DESC_A_MASK);
//remainder yields same state as x86_cpu_reset
load_seg_16_helper(env, R_DS, 0);
load_seg_16_helper(env, R_ES, 0);
load_seg_16_helper(env, R_SS, 0);
load_seg_16_helper(env, R_FS, 0);
load_seg_16_helper(env, R_GS, 0);
2015-08-25 16:39:46 +00:00
break;
2015-08-21 07:04:50 +00:00
case UC_MODE_32:
2015-08-23 02:41:14 +00:00
env->hflags |= HF_CS32_MASK | HF_SS32_MASK | HF_OSFXSR_MASK;
cpu_x86_update_cr0(env, CR0_PE_MASK); // protected mode
2015-08-21 07:04:50 +00:00
break;
case UC_MODE_64:
2015-08-23 02:41:14 +00:00
env->hflags |= HF_CS32_MASK | HF_SS32_MASK | HF_CS64_MASK | HF_LMA_MASK | HF_OSFXSR_MASK;
2015-08-21 07:04:50 +00:00
env->hflags &= ~(HF_ADDSEG_MASK);
env->efer |= MSR_EFER_LMA | MSR_EFER_LME; // extended mode activated
cpu_x86_update_cr0(env, CR0_PE_MASK); // protected mode
2015-08-21 07:04:50 +00:00
break;
}
}
static int x86_msr_read(struct uc_struct *uc, uc_x86_msr *msr)
{
CPUX86State *env = (CPUX86State *)uc->cpu->env_ptr;
uint64_t ecx = env->regs[R_ECX];
uint64_t eax = env->regs[R_EAX];
uint64_t edx = env->regs[R_EDX];
env->regs[R_ECX] = msr->rid;
helper_rdmsr(env);
msr->value = ((uint32_t)env->regs[R_EAX]) |
((uint64_t)((uint32_t)env->regs[R_EDX]) << 32);
env->regs[R_EAX] = eax;
env->regs[R_ECX] = ecx;
env->regs[R_EDX] = edx;
/* The implementation doesn't throw exception or return an error if there is one, so
* we will return 0. */
return 0;
}
static int x86_msr_write(struct uc_struct *uc, uc_x86_msr *msr)
{
CPUX86State *env = (CPUX86State *)uc->cpu->env_ptr;
uint64_t ecx = env->regs[R_ECX];
uint64_t eax = env->regs[R_EAX];
uint64_t edx = env->regs[R_EDX];
env->regs[R_ECX] = msr->rid;
env->regs[R_EAX] = (unsigned int)msr->value;
env->regs[R_EDX] = (unsigned int)(msr->value >> 32);
helper_wrmsr(env);
env->regs[R_ECX] = ecx;
env->regs[R_EAX] = eax;
env->regs[R_EDX] = edx;
/* The implementation doesn't throw exception or return an error if there is one, so
* we will return 0. */
return 0;
}
2016-04-04 15:25:30 +00:00
int x86_reg_read(struct uc_struct *uc, unsigned int *regs, void **vals, int count)
2015-08-21 07:04:50 +00:00
{
2016-09-23 14:38:21 +00:00
CPUState *mycpu = uc->cpu;
CPUX86State *state = &X86_CPU(uc, mycpu)->env;
2016-04-04 15:25:30 +00:00
int i;
2015-08-21 07:04:50 +00:00
2016-04-04 15:25:30 +00:00
for (i = 0; i < count; i++) {
unsigned int regid = regs[i];
void *value = vals[i];
switch(regid) {
default:
break;
case UC_X86_REG_FP0:
case UC_X86_REG_FP1:
case UC_X86_REG_FP2:
case UC_X86_REG_FP3:
case UC_X86_REG_FP4:
case UC_X86_REG_FP5:
case UC_X86_REG_FP6:
case UC_X86_REG_FP7:
2016-04-04 15:25:30 +00:00
{
floatx80 reg = state->fpregs[regid - UC_X86_REG_FP0].d;
cpu_get_fp80(value, (uint16_t*)((char*)value+sizeof(uint64_t)), reg);
2016-04-04 15:25:30 +00:00
}
continue;
case UC_X86_REG_FPSW:
{
uint16_t fpus = state->fpus;
2016-04-04 15:25:30 +00:00
fpus = fpus & ~0x3800;
fpus |= (state->fpstt & 0x7) << 11;
2016-04-04 15:25:30 +00:00
*(uint16_t*) value = fpus;
}
continue;
case UC_X86_REG_FPCW:
cpu_set_fpuc(&X86_CPU(uc, mycpu)->env, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_FPTAG:
{
#define EXPD(fp) (fp.l.upper & 0x7fff)
#define MANTD(fp) (fp.l.lower)
#define MAXEXPD 0x7fff
int fptag, exp, i;
uint64_t mant;
CPU_LDoubleU tmp;
fptag = 0;
for (i = 7; i >= 0; i--) {
fptag <<= 2;
if (state->fptags[i]) {
2016-04-04 15:25:30 +00:00
fptag |= 3;
} else {
tmp.d = state->fpregs[i].d;
2016-04-04 15:25:30 +00:00
exp = EXPD(tmp);
mant = MANTD(tmp);
if (exp == 0 && mant == 0) {
/* zero */
fptag |= 1;
} else if (exp == 0 || exp == MAXEXPD
|| (mant & (1LL << 63)) == 0) {
/* NaNs, infinity, denormal */
fptag |= 2;
}
2016-03-09 22:14:33 +00:00
}
}
2016-04-04 15:25:30 +00:00
*(uint16_t*) value = fptag;
2016-03-09 22:14:33 +00:00
}
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_XMM0:
case UC_X86_REG_XMM1:
case UC_X86_REG_XMM2:
case UC_X86_REG_XMM3:
case UC_X86_REG_XMM4:
case UC_X86_REG_XMM5:
case UC_X86_REG_XMM6:
case UC_X86_REG_XMM7:
2016-06-29 10:56:53 +00:00
{
float64 *dst = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
dst[0] = reg->ZMM_D(0);
dst[1] = reg->ZMM_D(1);
2016-06-29 10:56:53 +00:00
continue;
}
case UC_X86_REG_YMM0:
case UC_X86_REG_YMM1:
case UC_X86_REG_YMM2:
case UC_X86_REG_YMM3:
case UC_X86_REG_YMM4:
case UC_X86_REG_YMM5:
case UC_X86_REG_YMM6:
case UC_X86_REG_YMM7:
case UC_X86_REG_YMM8:
case UC_X86_REG_YMM9:
case UC_X86_REG_YMM10:
case UC_X86_REG_YMM11:
case UC_X86_REG_YMM12:
case UC_X86_REG_YMM13:
case UC_X86_REG_YMM14:
case UC_X86_REG_YMM15:
{
float64 *dst = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
dst[0] = reg->ZMM_D(0);
dst[1] = reg->ZMM_D(1);
dst[2] = reg->ZMM_D(2);
dst[3] = reg->ZMM_D(3);
continue;
}
2016-04-04 15:25:30 +00:00
}
2016-04-04 15:25:30 +00:00
switch(uc->mode) {
default:
break;
case UC_MODE_16:
switch(regid) {
default: break;
case UC_X86_REG_ES:
*(int16_t *)value = state->segs[R_ES].selector;
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_SS:
*(int16_t *)value = state->segs[R_SS].selector;
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_DS:
*(int16_t *)value = state->segs[R_DS].selector;
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_FS:
*(int16_t *)value = state->segs[R_FS].selector;
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_GS:
*(int16_t *)value = state->segs[R_GS].selector;
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_FS_BASE:
*(uint32_t *)value = (uint32_t)state->segs[R_FS].base;
continue;
2016-04-04 15:25:30 +00:00
}
// fall-thru
case UC_MODE_32:
switch(regid) {
default:
break;
case UC_X86_REG_CR0:
case UC_X86_REG_CR1:
case UC_X86_REG_CR2:
case UC_X86_REG_CR3:
case UC_X86_REG_CR4:
*(int32_t *)value = state->cr[regid - UC_X86_REG_CR0];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DR0:
case UC_X86_REG_DR1:
case UC_X86_REG_DR2:
case UC_X86_REG_DR3:
case UC_X86_REG_DR4:
case UC_X86_REG_DR5:
case UC_X86_REG_DR6:
case UC_X86_REG_DR7:
*(int32_t *)value = state->dr[regid - UC_X86_REG_DR0];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EFLAGS:
*(int32_t *)value = cpu_compute_eflags(state);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EAX:
*(int32_t *)value = state->regs[R_EAX];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AX:
*(int16_t *)value = READ_WORD(state->regs[R_EAX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EAX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EAX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EBX:
*(int32_t *)value = state->regs[R_EBX];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BX:
*(int16_t *)value = READ_WORD(state->regs[R_EBX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EBX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EBX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ECX:
*(int32_t *)value = state->regs[R_ECX];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CX:
*(int16_t *)value = READ_WORD(state->regs[R_ECX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_ECX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_ECX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EDX:
*(int32_t *)value = state->regs[R_EDX];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DX:
*(int16_t *)value = READ_WORD(state->regs[R_EDX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EDX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EDX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ESP:
*(int32_t *)value = state->regs[R_ESP];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SP:
*(int16_t *)value = READ_WORD(state->regs[R_ESP]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EBP:
*(int32_t *)value = state->regs[R_EBP];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BP:
*(int16_t *)value = READ_WORD(state->regs[R_EBP]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ESI:
*(int32_t *)value = state->regs[R_ESI];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SI:
*(int16_t *)value = READ_WORD(state->regs[R_ESI]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EDI:
*(int32_t *)value = state->regs[R_EDI];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DI:
*(int16_t *)value = READ_WORD(state->regs[R_EDI]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EIP:
*(int32_t *)value = state->eip;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_IP:
*(int16_t *)value = READ_WORD(state->eip);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CS:
*(int16_t *)value = (uint16_t)state->segs[R_CS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DS:
*(int16_t *)value = (uint16_t)state->segs[R_DS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SS:
*(int16_t *)value = (uint16_t)state->segs[R_SS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ES:
*(int16_t *)value = (uint16_t)state->segs[R_ES].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_FS:
*(int16_t *)value = (uint16_t)state->segs[R_FS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_GS:
*(int16_t *)value = (uint16_t)state->segs[R_GS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_IDTR:
((uc_x86_mmr *)value)->limit = (uint16_t)state->idt.limit;
((uc_x86_mmr *)value)->base = (uint32_t)state->idt.base;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_GDTR:
((uc_x86_mmr *)value)->limit = (uint16_t)state->gdt.limit;
((uc_x86_mmr *)value)->base = (uint32_t)state->gdt.base;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_LDTR:
((uc_x86_mmr *)value)->limit = state->ldt.limit;
((uc_x86_mmr *)value)->base = (uint32_t)state->ldt.base;
((uc_x86_mmr *)value)->selector = (uint16_t)state->ldt.selector;
((uc_x86_mmr *)value)->flags = state->ldt.flags;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_TR:
((uc_x86_mmr *)value)->limit = state->tr.limit;
((uc_x86_mmr *)value)->base = (uint32_t)state->tr.base;
((uc_x86_mmr *)value)->selector = (uint16_t)state->tr.selector;
((uc_x86_mmr *)value)->flags = state->tr.flags;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_MSR:
x86_msr_read(uc, (uc_x86_msr *)value);
break;
case UC_X86_REG_MXCSR:
*(uint32_t *)value = state->mxcsr;
break;
case UC_X86_REG_FS_BASE:
*(uint32_t *)value = (uint32_t)state->segs[R_FS].base;
break;
2016-04-04 15:25:30 +00:00
}
break;
2015-08-21 07:04:50 +00:00
#ifdef TARGET_X86_64
2016-04-04 15:25:30 +00:00
case UC_MODE_64:
switch(regid) {
default:
break;
case UC_X86_REG_CR0:
case UC_X86_REG_CR1:
case UC_X86_REG_CR2:
case UC_X86_REG_CR3:
case UC_X86_REG_CR4:
*(int64_t *)value = state->cr[regid - UC_X86_REG_CR0];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DR0:
case UC_X86_REG_DR1:
case UC_X86_REG_DR2:
case UC_X86_REG_DR3:
case UC_X86_REG_DR4:
case UC_X86_REG_DR5:
case UC_X86_REG_DR6:
case UC_X86_REG_DR7:
*(int64_t *)value = state->dr[regid - UC_X86_REG_DR0];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EFLAGS:
*(int64_t *)value = cpu_compute_eflags(state);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RAX:
*(uint64_t *)value = state->regs[R_EAX];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EAX:
*(int32_t *)value = READ_DWORD(state->regs[R_EAX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AX:
*(int16_t *)value = READ_WORD(state->regs[R_EAX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EAX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EAX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RBX:
*(uint64_t *)value = state->regs[R_EBX];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EBX:
*(int32_t *)value = READ_DWORD(state->regs[R_EBX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BX:
*(int16_t *)value = READ_WORD(state->regs[R_EBX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EBX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EBX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RCX:
*(uint64_t *)value = state->regs[R_ECX];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ECX:
*(int32_t *)value = READ_DWORD(state->regs[R_ECX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CX:
*(int16_t *)value = READ_WORD(state->regs[R_ECX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_ECX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_ECX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RDX:
*(uint64_t *)value = state->regs[R_EDX];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EDX:
*(int32_t *)value = READ_DWORD(state->regs[R_EDX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DX:
*(int16_t *)value = READ_WORD(state->regs[R_EDX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EDX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EDX]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RSP:
*(uint64_t *)value = state->regs[R_ESP];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ESP:
*(int32_t *)value = READ_DWORD(state->regs[R_ESP]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SP:
*(int16_t *)value = READ_WORD(state->regs[R_ESP]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SPL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_ESP]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RBP:
*(uint64_t *)value = state->regs[R_EBP];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EBP:
*(int32_t *)value = READ_DWORD(state->regs[R_EBP]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BP:
*(int16_t *)value = READ_WORD(state->regs[R_EBP]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BPL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EBP]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RSI:
*(uint64_t *)value = state->regs[R_ESI];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ESI:
*(int32_t *)value = READ_DWORD(state->regs[R_ESI]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SI:
*(int16_t *)value = READ_WORD(state->regs[R_ESI]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SIL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_ESI]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RDI:
*(uint64_t *)value = state->regs[R_EDI];
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EDI:
*(int32_t *)value = READ_DWORD(state->regs[R_EDI]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DI:
*(int16_t *)value = READ_WORD(state->regs[R_EDI]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DIL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EDI]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RIP:
*(uint64_t *)value = state->eip;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EIP:
*(int32_t *)value = READ_DWORD(state->eip);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_IP:
*(int16_t *)value = READ_WORD(state->eip);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CS:
*(int16_t *)value = (uint16_t)state->segs[R_CS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DS:
*(int16_t *)value = (uint16_t)state->segs[R_DS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SS:
*(int16_t *)value = (uint16_t)state->segs[R_SS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ES:
*(int16_t *)value = (uint16_t)state->segs[R_ES].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_FS:
*(int16_t *)value = (uint16_t)state->segs[R_FS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_GS:
*(int16_t *)value = (uint16_t)state->segs[R_GS].selector;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R8:
*(int64_t *)value = READ_QWORD(state->regs[8]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R8D:
*(int32_t *)value = READ_DWORD(state->regs[8]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R8W:
*(int16_t *)value = READ_WORD(state->regs[8]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R8B:
*(int8_t *)value = READ_BYTE_L(state->regs[8]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R9:
*(int64_t *)value = READ_QWORD(state->regs[9]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R9D:
*(int32_t *)value = READ_DWORD(state->regs[9]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R9W:
*(int16_t *)value = READ_WORD(state->regs[9]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R9B:
*(int8_t *)value = READ_BYTE_L(state->regs[9]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R10:
*(int64_t *)value = READ_QWORD(state->regs[10]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R10D:
*(int32_t *)value = READ_DWORD(state->regs[10]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R10W:
*(int16_t *)value = READ_WORD(state->regs[10]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R10B:
*(int8_t *)value = READ_BYTE_L(state->regs[10]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R11:
*(int64_t *)value = READ_QWORD(state->regs[11]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R11D:
*(int32_t *)value = READ_DWORD(state->regs[11]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R11W:
*(int16_t *)value = READ_WORD(state->regs[11]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R11B:
*(int8_t *)value = READ_BYTE_L(state->regs[11]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R12:
*(int64_t *)value = READ_QWORD(state->regs[12]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R12D:
*(int32_t *)value = READ_DWORD(state->regs[12]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R12W:
*(int16_t *)value = READ_WORD(state->regs[12]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R12B:
*(int8_t *)value = READ_BYTE_L(state->regs[12]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R13:
*(int64_t *)value = READ_QWORD(state->regs[13]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R13D:
*(int32_t *)value = READ_DWORD(state->regs[13]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R13W:
*(int16_t *)value = READ_WORD(state->regs[13]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R13B:
*(int8_t *)value = READ_BYTE_L(state->regs[13]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R14:
*(int64_t *)value = READ_QWORD(state->regs[14]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R14D:
*(int32_t *)value = READ_DWORD(state->regs[14]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R14W:
*(int16_t *)value = READ_WORD(state->regs[14]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R14B:
*(int8_t *)value = READ_BYTE_L(state->regs[14]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R15:
*(int64_t *)value = READ_QWORD(state->regs[15]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R15D:
*(int32_t *)value = READ_DWORD(state->regs[15]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R15W:
*(int16_t *)value = READ_WORD(state->regs[15]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R15B:
*(int8_t *)value = READ_BYTE_L(state->regs[15]);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_IDTR:
((uc_x86_mmr *)value)->limit = (uint16_t)state->idt.limit;
((uc_x86_mmr *)value)->base = state->idt.base;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_GDTR:
((uc_x86_mmr *)value)->limit = (uint16_t)state->gdt.limit;
((uc_x86_mmr *)value)->base = state->gdt.base;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_LDTR:
((uc_x86_mmr *)value)->limit = state->ldt.limit;
((uc_x86_mmr *)value)->base = state->ldt.base;
((uc_x86_mmr *)value)->selector = (uint16_t)state->ldt.selector;
((uc_x86_mmr *)value)->flags = state->ldt.flags;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_TR:
((uc_x86_mmr *)value)->limit = state->tr.limit;
((uc_x86_mmr *)value)->base = state->tr.base;
((uc_x86_mmr *)value)->selector = (uint16_t)state->tr.selector;
((uc_x86_mmr *)value)->flags = state->tr.flags;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_MSR:
x86_msr_read(uc, (uc_x86_msr *)value);
break;
case UC_X86_REG_MXCSR:
*(uint32_t *)value = state->mxcsr;
break;
case UC_X86_REG_XMM8:
case UC_X86_REG_XMM9:
case UC_X86_REG_XMM10:
case UC_X86_REG_XMM11:
case UC_X86_REG_XMM12:
case UC_X86_REG_XMM13:
case UC_X86_REG_XMM14:
case UC_X86_REG_XMM15:
{
float64 *dst = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
dst[0] = reg->ZMM_D(0);
dst[1] = reg->ZMM_D(1);
break;
}
case UC_X86_REG_FS_BASE:
*(uint64_t *)value = (uint64_t)state->segs[R_FS].base;
break;
2016-04-04 15:25:30 +00:00
}
break;
2015-08-21 07:04:50 +00:00
#endif
2016-04-04 15:25:30 +00:00
}
2015-08-21 07:04:50 +00:00
}
return 0;
}
2016-04-04 15:25:30 +00:00
int x86_reg_write(struct uc_struct *uc, unsigned int *regs, void *const *vals, int count)
2015-08-21 07:04:50 +00:00
{
2016-09-23 14:38:21 +00:00
CPUState *mycpu = uc->cpu;
CPUX86State *state = &X86_CPU(uc, mycpu)->env;
2016-04-04 15:25:30 +00:00
int i;
int ret;
2015-08-21 07:04:50 +00:00
2016-04-04 15:25:30 +00:00
for (i = 0; i < count; i++) {
unsigned int regid = regs[i];
const void *value = vals[i];
switch(regid) {
default:
break;
case UC_X86_REG_FP0:
case UC_X86_REG_FP1:
case UC_X86_REG_FP2:
case UC_X86_REG_FP3:
case UC_X86_REG_FP4:
case UC_X86_REG_FP5:
case UC_X86_REG_FP6:
case UC_X86_REG_FP7:
2016-04-04 15:25:30 +00:00
{
uint64_t mant = *(uint64_t*) value;
uint16_t upper = *(uint16_t*) ((char*)value + sizeof(uint64_t));
state->fpregs[regid - UC_X86_REG_FP0].d = cpu_set_fp80(mant, upper);
2016-04-04 15:25:30 +00:00
}
continue;
case UC_X86_REG_FPSW:
{
uint16_t fpus = *(uint16_t*) value;
state->fpus = fpus & ~0x3800;
state->fpstt = (fpus >> 11) & 0x7;
2016-03-09 22:14:33 +00:00
}
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_FPCW:
state->fpuc = *(uint16_t *)value;
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_FPTAG:
{
int i;
uint16_t fptag = *(uint16_t*) value;
for (i = 0; i < 8; i++) {
state->fptags[i] = ((fptag & 3) == 3);
2016-04-04 15:25:30 +00:00
fptag >>= 2;
}
2016-04-04 15:25:30 +00:00
continue;
}
break;
case UC_X86_REG_XMM0:
case UC_X86_REG_XMM1:
case UC_X86_REG_XMM2:
case UC_X86_REG_XMM3:
case UC_X86_REG_XMM4:
case UC_X86_REG_XMM5:
case UC_X86_REG_XMM6:
case UC_X86_REG_XMM7:
2016-06-29 10:56:53 +00:00
{
float64 *src = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
reg->ZMM_D(0) = src[0];
reg->ZMM_D(1) = src[1];
2016-06-29 10:56:53 +00:00
continue;
}
case UC_X86_REG_YMM0:
case UC_X86_REG_YMM1:
case UC_X86_REG_YMM2:
case UC_X86_REG_YMM3:
case UC_X86_REG_YMM4:
case UC_X86_REG_YMM5:
case UC_X86_REG_YMM6:
case UC_X86_REG_YMM7:
case UC_X86_REG_YMM8:
case UC_X86_REG_YMM9:
case UC_X86_REG_YMM10:
case UC_X86_REG_YMM11:
case UC_X86_REG_YMM12:
case UC_X86_REG_YMM13:
case UC_X86_REG_YMM14:
case UC_X86_REG_YMM15:
{
float64 *src = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
reg->ZMM_D(4) = src[0];
reg->ZMM_D(5) = src[1];
reg->ZMM_D(6) = src[2];
reg->ZMM_D(7) = src[3];
continue;
}
2016-04-04 15:25:30 +00:00
}
2016-04-04 15:25:30 +00:00
switch(uc->mode) {
default:
break;
2015-08-21 07:04:50 +00:00
2016-04-04 15:25:30 +00:00
case UC_MODE_16:
switch(regid) {
default: break;
case UC_X86_REG_ES:
load_seg_16_helper(state, R_ES, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_SS:
load_seg_16_helper(state, R_SS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_DS:
load_seg_16_helper(state, R_DS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_FS:
load_seg_16_helper(state, R_FS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_GS:
load_seg_16_helper(state, R_GS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
continue;
case UC_X86_REG_FS_BASE:
state->segs[R_FS].base = *(uint32_t *)value;
continue;
2016-04-04 15:25:30 +00:00
}
// fall-thru
case UC_MODE_32:
switch(regid) {
default:
break;
case UC_X86_REG_CR0:
case UC_X86_REG_CR1:
case UC_X86_REG_CR2:
case UC_X86_REG_CR3:
case UC_X86_REG_CR4:
state->cr[regid - UC_X86_REG_CR0] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DR0:
case UC_X86_REG_DR1:
case UC_X86_REG_DR2:
case UC_X86_REG_DR3:
case UC_X86_REG_DR4:
case UC_X86_REG_DR5:
case UC_X86_REG_DR6:
case UC_X86_REG_DR7:
state->dr[regid - UC_X86_REG_DR0] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EFLAGS:
cpu_load_eflags(state, *(uint32_t *)value, -1);
state->eflags0 = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EAX:
state->regs[R_EAX] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AX:
WRITE_WORD(state->regs[R_EAX], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AH:
WRITE_BYTE_H(state->regs[R_EAX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AL:
WRITE_BYTE_L(state->regs[R_EAX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EBX:
state->regs[R_EBX] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BX:
WRITE_WORD(state->regs[R_EBX], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BH:
WRITE_BYTE_H(state->regs[R_EBX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BL:
WRITE_BYTE_L(state->regs[R_EBX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ECX:
state->regs[R_ECX] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CX:
WRITE_WORD(state->regs[R_ECX], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CH:
WRITE_BYTE_H(state->regs[R_ECX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CL:
WRITE_BYTE_L(state->regs[R_ECX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EDX:
state->regs[R_EDX] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DX:
WRITE_WORD(state->regs[R_EDX], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DH:
WRITE_BYTE_H(state->regs[R_EDX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DL:
WRITE_BYTE_L(state->regs[R_EDX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ESP:
state->regs[R_ESP] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SP:
WRITE_WORD(state->regs[R_ESP], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EBP:
state->regs[R_EBP] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BP:
WRITE_WORD(state->regs[R_EBP], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ESI:
state->regs[R_ESI] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SI:
WRITE_WORD(state->regs[R_ESI], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EDI:
state->regs[R_EDI] = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DI:
WRITE_WORD(state->regs[R_EDI], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EIP:
state->eip = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_IP:
X86_CPU(uc, mycpu)->env.eip = *(uint16_t *)value;
2016-04-04 15:25:30 +00:00
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_CS:
ret = uc_check_cpu_x86_load_seg(state, R_CS, *(uint16_t *)value);
if (ret) {
return ret;
}
cpu_x86_load_seg(state, R_CS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DS:
ret = uc_check_cpu_x86_load_seg(state, R_DS, *(uint16_t *)value);
if (ret) {
return ret;
}
cpu_x86_load_seg(state, R_DS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SS:
ret = uc_check_cpu_x86_load_seg(state, R_SS, *(uint16_t *)value);
if (ret) {
return ret;
}
cpu_x86_load_seg(state, R_SS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ES:
ret = uc_check_cpu_x86_load_seg(state, R_ES, *(uint16_t *)value);
if (ret) {
return ret;
}
cpu_x86_load_seg(state, R_ES, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_FS:
ret = uc_check_cpu_x86_load_seg(state, R_FS, *(uint16_t *)value);
if (ret) {
return ret;
}
cpu_x86_load_seg(state, R_FS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_GS:
ret = uc_check_cpu_x86_load_seg(state, R_GS, *(uint16_t *)value);
if (ret) {
return ret;
}
cpu_x86_load_seg(state, R_GS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_IDTR:
state->idt.limit = (uint16_t)((uc_x86_mmr *)value)->limit;
state->idt.base = (uint32_t)((uc_x86_mmr *)value)->base;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_GDTR:
state->gdt.limit = (uint16_t)((uc_x86_mmr *)value)->limit;
state->gdt.base = (uint32_t)((uc_x86_mmr *)value)->base;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_LDTR:
state->ldt.limit = ((uc_x86_mmr *)value)->limit;
state->ldt.base = (uint32_t)((uc_x86_mmr *)value)->base;
state->ldt.selector = (uint16_t)((uc_x86_mmr *)value)->selector;
state->ldt.flags = ((uc_x86_mmr *)value)->flags;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_TR:
state->tr.limit = ((uc_x86_mmr *)value)->limit;
state->tr.base = (uint32_t)((uc_x86_mmr *)value)->base;
state->tr.selector = (uint16_t)((uc_x86_mmr *)value)->selector;
state->tr.flags = ((uc_x86_mmr *)value)->flags;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_MSR:
x86_msr_write(uc, (uc_x86_msr *)value);
break;
case UC_X86_REG_MXCSR:
cpu_set_mxcsr(state, *(uint32_t *)value);
break;
case UC_X86_REG_FS_BASE:
state->segs[R_FS].base = *(uint32_t *)value;
continue;
2016-04-04 15:25:30 +00:00
}
break;
2015-08-21 07:04:50 +00:00
#ifdef TARGET_X86_64
2016-04-04 15:25:30 +00:00
case UC_MODE_64:
switch(regid) {
default:
break;
case UC_X86_REG_CR0:
case UC_X86_REG_CR1:
case UC_X86_REG_CR2:
case UC_X86_REG_CR3:
case UC_X86_REG_CR4:
state->cr[regid - UC_X86_REG_CR0] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DR0:
case UC_X86_REG_DR1:
case UC_X86_REG_DR2:
case UC_X86_REG_DR3:
case UC_X86_REG_DR4:
case UC_X86_REG_DR5:
case UC_X86_REG_DR6:
case UC_X86_REG_DR7:
state->dr[regid - UC_X86_REG_DR0] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EFLAGS:
cpu_load_eflags(state, *(uint64_t *)value, -1);
state->eflags0 = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RAX:
state->regs[R_EAX] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EAX:
WRITE_DWORD(state->regs[R_EAX], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AX:
WRITE_WORD(state->regs[R_EAX], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AH:
WRITE_BYTE_H(state->regs[R_EAX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_AL:
WRITE_BYTE_L(state->regs[R_EAX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RBX:
state->regs[R_EBX] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EBX:
WRITE_DWORD(state->regs[R_EBX], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BX:
WRITE_WORD(state->regs[R_EBX], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BH:
WRITE_BYTE_H(state->regs[R_EBX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BL:
WRITE_BYTE_L(state->regs[R_EBX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RCX:
state->regs[R_ECX] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ECX:
WRITE_DWORD(state->regs[R_ECX], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CX:
WRITE_WORD(state->regs[R_ECX], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CH:
WRITE_BYTE_H(state->regs[R_ECX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_CL:
WRITE_BYTE_L(state->regs[R_ECX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RDX:
state->regs[R_EDX] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EDX:
WRITE_DWORD(state->regs[R_EDX], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DX:
WRITE_WORD(state->regs[R_EDX], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DH:
WRITE_BYTE_H(state->regs[R_EDX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DL:
WRITE_BYTE_L(state->regs[R_EDX], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RSP:
state->regs[R_ESP] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ESP:
WRITE_DWORD(state->regs[R_ESP], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SP:
WRITE_WORD(state->regs[R_ESP], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SPL:
WRITE_BYTE_L(state->regs[R_ESP], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RBP:
state->regs[R_EBP] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EBP:
WRITE_DWORD(state->regs[R_EBP], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BP:
WRITE_WORD(state->regs[R_EBP], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_BPL:
WRITE_BYTE_L(state->regs[R_EBP], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RSI:
state->regs[R_ESI] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ESI:
WRITE_DWORD(state->regs[R_ESI], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SI:
WRITE_WORD(state->regs[R_ESI], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SIL:
WRITE_BYTE_L(state->regs[R_ESI], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RDI:
state->regs[R_EDI] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_EDI:
WRITE_DWORD(state->regs[R_EDI], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DI:
WRITE_WORD(state->regs[R_EDI], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DIL:
WRITE_BYTE_L(state->regs[R_EDI], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_RIP:
state->eip = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_EIP:
X86_CPU(uc, mycpu)->env.eip = *(uint32_t *)value;
2016-04-04 15:25:30 +00:00
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_IP:
WRITE_WORD(state->eip, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_CS:
state->segs[R_CS].selector = *(uint16_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_DS:
state->segs[R_DS].selector = *(uint16_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_SS:
state->segs[R_SS].selector = *(uint16_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_ES:
state->segs[R_ES].selector = *(uint16_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_FS:
ret = uc_check_cpu_x86_load_seg(state, R_FS, *(uint16_t *)value);
if (ret) {
return ret;
}
cpu_x86_load_seg(state, R_FS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_GS:
ret = uc_check_cpu_x86_load_seg(state, R_GS, *(uint16_t *)value);
if (ret) {
return ret;
}
cpu_x86_load_seg(state, R_GS, *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R8:
state->regs[8] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R8D:
WRITE_DWORD(state->regs[8], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R8W:
WRITE_WORD(state->regs[8], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R8B:
WRITE_BYTE_L(state->regs[8], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R9:
state->regs[9] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R9D:
WRITE_DWORD(state->regs[9], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R9W:
WRITE_WORD(state->regs[9], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R9B:
WRITE_BYTE_L(state->regs[9], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R10:
state->regs[10] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R10D:
WRITE_DWORD(state->regs[10], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R10W:
WRITE_WORD(state->regs[10], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R10B:
WRITE_BYTE_L(state->regs[10], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R11:
state->regs[11] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R11D:
WRITE_DWORD(state->regs[11], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R11W:
WRITE_WORD(state->regs[11], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R11B:
WRITE_BYTE_L(state->regs[11], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R12:
state->regs[12] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R12D:
WRITE_DWORD(state->regs[12], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R12W:
WRITE_WORD(state->regs[12], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R12B:
WRITE_BYTE_L(state->regs[12], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R13:
state->regs[13] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R13D:
WRITE_DWORD(state->regs[13], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R13W:
WRITE_WORD(state->regs[13], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R13B:
WRITE_BYTE_L(state->regs[13], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R14:
state->regs[14] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R14D:
WRITE_DWORD(state->regs[14], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R14W:
WRITE_WORD(state->regs[14], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R14B:
WRITE_BYTE_L(state->regs[14], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R15:
state->regs[15] = *(uint64_t *)value;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R15D:
WRITE_DWORD(state->regs[15], *(uint32_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R15W:
WRITE_WORD(state->regs[15], *(uint16_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_R15B:
WRITE_BYTE_L(state->regs[15], *(uint8_t *)value);
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_IDTR:
state->idt.limit = (uint16_t)((uc_x86_mmr *)value)->limit;
state->idt.base = ((uc_x86_mmr *)value)->base;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_GDTR:
state->gdt.limit = (uint16_t)((uc_x86_mmr *)value)->limit;
state->gdt.base = ((uc_x86_mmr *)value)->base;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_LDTR:
state->ldt.limit = ((uc_x86_mmr *)value)->limit;
state->ldt.base = ((uc_x86_mmr *)value)->base;
state->ldt.selector = (uint16_t)((uc_x86_mmr *)value)->selector;
state->ldt.flags = ((uc_x86_mmr *)value)->flags;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_TR:
state->tr.limit = ((uc_x86_mmr *)value)->limit;
state->tr.base = ((uc_x86_mmr *)value)->base;
state->tr.selector = (uint16_t)((uc_x86_mmr *)value)->selector;
state->tr.flags = ((uc_x86_mmr *)value)->flags;
2016-04-04 15:25:30 +00:00
break;
case UC_X86_REG_MSR:
x86_msr_write(uc, (uc_x86_msr *)value);
break;
case UC_X86_REG_MXCSR:
cpu_set_mxcsr(state, *(uint32_t *)value);
break;
case UC_X86_REG_XMM8:
case UC_X86_REG_XMM9:
case UC_X86_REG_XMM10:
case UC_X86_REG_XMM11:
case UC_X86_REG_XMM12:
case UC_X86_REG_XMM13:
case UC_X86_REG_XMM14:
case UC_X86_REG_XMM15:
{
float64 *src = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
reg->ZMM_D(0) = src[0];
reg->ZMM_D(1) = src[1];
break;
}
case UC_X86_REG_FS_BASE:
state->segs[R_FS].base = *(uint64_t *)value;
continue;
2016-04-04 15:25:30 +00:00
}
break;
2015-08-21 07:04:50 +00:00
#endif
2016-04-04 15:25:30 +00:00
}
2015-08-21 07:04:50 +00:00
}
return 0;
}
DEFAULT_VISIBILITY
2015-08-21 07:04:50 +00:00
int x86_uc_machine_init(struct uc_struct *uc)
{
return machine_initialize(uc);
}
static bool x86_stop_interrupt(int intno)
{
switch(intno) {
default:
return false;
case EXCP06_ILLOP:
return true;
}
}
static bool x86_insn_hook_validate(uint32_t insn_enum)
{
//for x86 we can only hook IN, OUT, SYSCALL, and SYSENTER
if (insn_enum != UC_X86_INS_IN
&& insn_enum != UC_X86_INS_OUT
&& insn_enum != UC_X86_INS_SYSCALL
&& insn_enum != UC_X86_INS_SYSENTER) {
return false;
}
return true;
}
void pc_machine_init_v2_2(struct uc_struct *uc);
DEFAULT_VISIBILITY
2015-08-21 07:04:50 +00:00
void x86_uc_init(struct uc_struct* uc)
{
apic_register_types(uc);
apic_common_register_types(uc);
register_accel_types(uc);
pc_machine_register_types(uc);
x86_cpu_register_types(uc);
pc_machine_init_v2_2(uc); // pc_piix
2015-08-21 07:04:50 +00:00
uc->reg_read = x86_reg_read;
uc->reg_write = x86_reg_write;
uc->reg_reset = x86_reg_reset;
uc->release = x86_release;
uc->set_pc = x86_set_pc;
uc->stop_interrupt = x86_stop_interrupt;
uc->insn_hook_validate = x86_insn_hook_validate;
2015-08-21 07:04:50 +00:00
uc_common_init(uc);
}
/* vim: set ts=4 sts=4 sw=4 et: */