yuzu/unicorn
1
0
Fork 0
mirror of https://github.com/yuzu-emu/unicorn.git synced 2025-01-25 15:01:07 +00:00
Code Issues Packages Projects Releases Wiki Activity
unicorn/qemu/target/i386/unicorn.c
Emilio G. Cota f7c984d21f
translate-all: use a binary search tree to track TBs in TBContext 
This is a prerequisite for supporting multiple TCG contexts, since
we will have threads generating code in separate regions of
code_gen_buffer.

For this we need a new field (.size) in struct tb_tc to keep
track of the size of the translated code. This field uses a size_t
to avoid adding a hole to the struct, although really an unsigned
int would have been enough.

The comparison function we use is optimized for the common case:
insertions. Profiling shows that upon booting debian-arm, 98%
of comparisons are between existing tb's (i.e. a->size and b->size
are both !0), which happens during insertions (and removals, but
those are rare). The remaining cases are lookups. From reading the glib
sources we see that the first key is always the lookup key. However,
the code does not assume this to always be the case because this
behaviour is not guaranteed in the glib docs. However, we embed
this knowledge in the code as a branch hint for the compiler.

Note that tb_free does not free space in the code_gen_buffer anymore,
since we cannot easily know whether the tb is the last one inserted
in code_gen_buffer. The next patch in this series renames tb_free
to tb_remove to reflect this.

Performance-wise, lookups in tb_find_pc are the same as before:
O(log n). However, insertions are O(log n) instead of O(1), which
results in a small slowdown when booting debian-arm:

Performance counter stats for 'build/arm-softmmu/qemu-system-arm \
-machine type=virt -nographic -smp 1 -m 4096 \
-netdev user,id=unet,hostfwd=tcp::2222-:22 \
-device virtio-net-device,netdev=unet \
-drive file=img/arm/jessie-arm32.qcow2,id=myblock,index=0,if=none \
-device virtio-blk-device,drive=myblock \
-kernel img/arm/aarch32-current-linux-kernel-only.img \
-append console=ttyAMA0 root=/dev/vda1 \
-name arm,debug-threads=on -smp 1' (10 runs):

- Before:

8048.598422 task-clock (msec) # 0.931 CPUs utilized ( +- 0.28% )
16,974 context-switches # 0.002 M/sec ( +- 0.12% )
0 cpu-migrations # 0.000 K/sec
10,125 page-faults # 0.001 M/sec ( +- 1.23% )
35,144,901,879 cycles # 4.367 GHz ( +- 0.14% )
<not supported> stalled-cycles-frontend
<not supported> stalled-cycles-backend
65,758,252,643 instructions # 1.87 insns per cycle ( +- 0.33% )
10,871,298,668 branches # 1350.707 M/sec ( +- 0.41% )
192,322,212 branch-misses # 1.77% of all branches ( +- 0.32% )

8.640869419 seconds time elapsed ( +- 0.57% )

- After:
8146.242027 task-clock (msec) # 0.923 CPUs utilized ( +- 1.23% )
17,016 context-switches # 0.002 M/sec ( +- 0.40% )
0 cpu-migrations # 0.000 K/sec
18,769 page-faults # 0.002 M/sec ( +- 0.45% )
35,660,956,120 cycles # 4.378 GHz ( +- 1.22% )
<not supported> stalled-cycles-frontend
<not supported> stalled-cycles-backend
65,095,366,607 instructions # 1.83 insns per cycle ( +- 1.73% )
10,803,480,261 branches # 1326.192 M/sec ( +- 1.95% )
195,601,289 branch-misses # 1.81% of all branches ( +- 0.39% )

8.828660235 seconds time elapsed ( +- 0.38% )

Backports commit 2ac01d6dafabd4a726254eea98824c798d416ee4 from qemu
2018-03-13 16:18:29 -04:00

1372 lines
57 KiB
C
Raw Blame History

/* Unicorn Emulator Engine */
/* By Nguyen Anh Quynh <aquynh@gmail.com>, 2015 */
#include "qemu/osdep.h"
#include "cpu.h"
#include "hw/boards.h"
#include "hw/i386/pc.h"
#include "sysemu/cpus.h"
#include "unicorn.h"
#include "tcg.h"
#include "unicorn_common.h"
#include <unicorn/x86.h> /* needed for uc_x86_mmr */
#include "uc_priv.h"
static void cpu_get_fp80(uint64_t *pmant, uint16_t *pexp, floatx80 f)
{
CPU_LDoubleU temp;
temp.d = f;
*pmant = temp.l.lower;
*pexp = temp.l.upper;
}
static floatx80 cpu_set_fp80(uint64_t mant, uint16_t upper)
{
CPU_LDoubleU temp;
temp.l.upper = upper;
temp.l.lower = mant;
return temp.d;
}
#define X86_NON_CS_FLAGS (DESC_P_MASK | DESC_S_MASK | DESC_W_MASK | DESC_A_MASK)
static void load_seg_16_helper(CPUX86State *env, int seg, uint32_t selector)
{
cpu_x86_load_seg_cache(env, seg, selector, (selector << 4), 0xffff, X86_NON_CS_FLAGS);
}
extern void helper_wrmsr(CPUX86State *env);
extern void helper_rdmsr(CPUX86State *env);
const int X86_REGS_STORAGE_SIZE = offsetof(CPUX86State, tlb_table);
static void x86_set_pc(struct uc_struct *uc, uint64_t address)
{
CPUX86State *state = uc->cpu->env_ptr;
state->eip = address;
}
void x86_release(void *ctx);
void x86_release(void *ctx)
{
TCGContext *s = (TCGContext *) ctx;
release_common(ctx);
// arch specific
g_tree_destroy(s->tb_ctx.tb_tree);
}
void x86_reg_reset(struct uc_struct *uc)
{
CPUArchState *env = uc->cpu->env_ptr;
env->features[FEAT_1_EDX] = CPUID_CX8 | CPUID_CMOV | CPUID_SSE2 | CPUID_FXSR | CPUID_SSE | CPUID_CLFLUSH;
env->features[FEAT_1_ECX] = CPUID_EXT_SSSE3 | CPUID_EXT_SSE41 | CPUID_EXT_SSE42 | CPUID_EXT_AES;
env->features[FEAT_8000_0001_EDX] = CPUID_EXT2_3DNOW | CPUID_EXT2_RDTSCP;
env->features[FEAT_8000_0001_ECX] = CPUID_EXT3_LAHF_LM | CPUID_EXT3_ABM | CPUID_EXT3_SKINIT | CPUID_EXT3_CR8LEG;
env->features[FEAT_7_0_EBX] = CPUID_7_0_EBX_BMI1 | CPUID_7_0_EBX_BMI2 | CPUID_7_0_EBX_ADX | CPUID_7_0_EBX_SMAP;
memset(env->regs, 0, sizeof(env->regs));
memset(env->segs, 0, sizeof(env->segs));
memset(env->cr, 0, sizeof(env->cr));
memset(&env->ldt, 0, sizeof(env->ldt));
memset(&env->gdt, 0, sizeof(env->gdt));
memset(&env->tr, 0, sizeof(env->tr));
memset(&env->idt, 0, sizeof(env->idt));
env->eip = 0;
env->eflags = 0;
env->eflags0 = 0;
env->cc_op = CC_OP_EFLAGS;
env->fpstt = 0; /* top of stack index */
env->fpus = 0;
env->fpuc = 0;
memset(env->fptags, 0, sizeof(env->fptags)); /* 0 = valid, 1 = empty */
env->mxcsr = 0;
memset(env->xmm_regs, 0, sizeof(env->xmm_regs));
memset(&env->xmm_t0, 0, sizeof(env->xmm_t0));
memset(&env->mmx_t0, 0, sizeof(env->mmx_t0));
memset(env->opmask_regs, 0, sizeof(env->opmask_regs));
/* sysenter registers */
env->sysenter_cs = 0;
env->sysenter_esp = 0;
env->sysenter_eip = 0;
env->efer = 0;
env->star = 0;
env->vm_hsave = 0;
env->tsc = 0;
env->tsc_adjust = 0;
env->tsc_deadline = 0;
env->mcg_status = 0;
env->msr_ia32_misc_enable = 0;
env->msr_ia32_feature_control = 0;
env->msr_fixed_ctr_ctrl = 0;
env->msr_global_ctrl = 0;
env->msr_global_status = 0;
env->msr_global_ovf_ctrl = 0;
memset(env->msr_fixed_counters, 0, sizeof(env->msr_fixed_counters));
memset(env->msr_gp_counters, 0, sizeof(env->msr_gp_counters));
memset(env->msr_gp_evtsel, 0, sizeof(env->msr_gp_evtsel));
#ifdef TARGET_X86_64
env->lstar = 0;
env->cstar = 0;
env->fmask = 0;
env->kernelgsbase = 0;
#endif
// TODO: reset other registers in CPUX86State qemu/target-i386/cpu.h
// properly initialize internal setup for each mode
switch(uc->mode) {
default:
break;
case UC_MODE_16:
env->hflags = 0;
env->cr[0] = 0;
//undo the damage done by the memset of env->segs above
//for R_CS, not quite the same as x86_cpu_reset
cpu_x86_load_seg_cache(env, R_CS, 0, 0, 0xffff,
DESC_P_MASK | DESC_S_MASK | DESC_CS_MASK |
DESC_R_MASK | DESC_A_MASK);
//remainder yields same state as x86_cpu_reset
load_seg_16_helper(env, R_DS, 0);
load_seg_16_helper(env, R_ES, 0);
load_seg_16_helper(env, R_SS, 0);
load_seg_16_helper(env, R_FS, 0);
load_seg_16_helper(env, R_GS, 0);
break;
case UC_MODE_32:
env->hflags |= HF_CS32_MASK | HF_SS32_MASK | HF_OSFXSR_MASK;
cpu_x86_update_cr0(env, CR0_PE_MASK); // protected mode
break;
case UC_MODE_64:
env->hflags |= HF_CS32_MASK | HF_SS32_MASK | HF_CS64_MASK | HF_LMA_MASK | HF_OSFXSR_MASK;
env->hflags &= ~(HF_ADDSEG_MASK);
cpu_x86_update_cr0(env, CR0_PE_MASK); // protected mode
break;
}
}
static int x86_msr_read(struct uc_struct *uc, uc_x86_msr *msr)
{
CPUX86State *env = (CPUX86State *)uc->cpu->env_ptr;
uint64_t ecx = env->regs[R_ECX];
uint64_t eax = env->regs[R_EAX];
uint64_t edx = env->regs[R_EDX];
env->regs[R_ECX] = msr->rid;
helper_rdmsr(env);
msr->value = ((uint32_t)env->regs[R_EAX]) |
((uint64_t)((uint32_t)env->regs[R_EDX]) << 32);
env->regs[R_EAX] = eax;
env->regs[R_ECX] = ecx;
env->regs[R_EDX] = edx;
/* The implementation doesn't throw exception or return an error if there is one, so
* we will return 0. */
return 0;
}
static int x86_msr_write(struct uc_struct *uc, uc_x86_msr *msr)
{
CPUX86State *env = (CPUX86State *)uc->cpu->env_ptr;
uint64_t ecx = env->regs[R_ECX];
uint64_t eax = env->regs[R_EAX];
uint64_t edx = env->regs[R_EDX];
env->regs[R_ECX] = msr->rid;
env->regs[R_EAX] = (unsigned int)msr->value;
env->regs[R_EDX] = (unsigned int)(msr->value >> 32);
helper_wrmsr(env);
env->regs[R_ECX] = ecx;
env->regs[R_EAX] = eax;
env->regs[R_EDX] = edx;
/* The implementation doesn't throw exception or return an error if there is one, so
* we will return 0. */
return 0;
}
int x86_reg_read(struct uc_struct *uc, unsigned int *regs, void **vals, int count)
{
CPUState *mycpu = uc->cpu;
CPUX86State *state = &X86_CPU(uc, mycpu)->env;
int i;
for (i = 0; i < count; i++) {
unsigned int regid = regs[i];
void *value = vals[i];
switch(regid) {
default:
break;
case UC_X86_REG_FP0:
case UC_X86_REG_FP1:
case UC_X86_REG_FP2:
case UC_X86_REG_FP3:
case UC_X86_REG_FP4:
case UC_X86_REG_FP5:
case UC_X86_REG_FP6:
case UC_X86_REG_FP7:
{
floatx80 reg = state->fpregs[regid - UC_X86_REG_FP0].d;
cpu_get_fp80(value, (uint16_t*)((char*)value+sizeof(uint64_t)), reg);
}
continue;
case UC_X86_REG_FPSW:
{
uint16_t fpus = state->fpus;
fpus = fpus & ~0x3800;
fpus |= (state->fpstt & 0x7) << 11;
*(uint16_t*) value = fpus;
}
continue;
case UC_X86_REG_FPCW:
*(uint16_t*) value = state->fpuc;
continue;
case UC_X86_REG_FPTAG:
{
#define EXPD(fp) (fp.l.upper & 0x7fff)
#define MANTD(fp) (fp.l.lower)
#define MAXEXPD 0x7fff
int fptag, exp, i;
uint64_t mant;
CPU_LDoubleU tmp;
fptag = 0;
for (i = 7; i >= 0; i--) {
fptag <<= 2;
if (state->fptags[i]) {
fptag |= 3;
} else {
tmp.d = state->fpregs[i].d;
exp = EXPD(tmp);
mant = MANTD(tmp);
if (exp == 0 && mant == 0) {
/* zero */
fptag |= 1;
} else if (exp == 0 || exp == MAXEXPD
|| (mant & (1LL << 63)) == 0) {
/* NaNs, infinity, denormal */
fptag |= 2;
}
}
}
*(uint16_t*) value = fptag;
}
continue;
case UC_X86_REG_XMM0:
case UC_X86_REG_XMM1:
case UC_X86_REG_XMM2:
case UC_X86_REG_XMM3:
case UC_X86_REG_XMM4:
case UC_X86_REG_XMM5:
case UC_X86_REG_XMM6:
case UC_X86_REG_XMM7:
{
float64 *dst = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
dst[0] = reg->ZMM_D(0);
dst[1] = reg->ZMM_D(1);
continue;
}
case UC_X86_REG_YMM0:
case UC_X86_REG_YMM1:
case UC_X86_REG_YMM2:
case UC_X86_REG_YMM3:
case UC_X86_REG_YMM4:
case UC_X86_REG_YMM5:
case UC_X86_REG_YMM6:
case UC_X86_REG_YMM7:
{
float64 *dst = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
dst[0] = reg->ZMM_D(0);
dst[1] = reg->ZMM_D(1);
dst[2] = reg->ZMM_D(2);
dst[3] = reg->ZMM_D(3);
continue;
}
}
switch(uc->mode) {
default:
break;
case UC_MODE_16:
switch(regid) {
default: break;
case UC_X86_REG_ES:
*(int16_t *)value = state->segs[R_ES].selector;
continue;
case UC_X86_REG_SS:
*(int16_t *)value = state->segs[R_SS].selector;
continue;
case UC_X86_REG_DS:
*(int16_t *)value = state->segs[R_DS].selector;
continue;
case UC_X86_REG_FS:
*(int16_t *)value = state->segs[R_FS].selector;
continue;
case UC_X86_REG_GS:
*(int16_t *)value = state->segs[R_GS].selector;
continue;
}
// fall-thru
case UC_MODE_32:
switch(regid) {
default:
break;
case UC_X86_REG_CR0:
case UC_X86_REG_CR1:
case UC_X86_REG_CR2:
case UC_X86_REG_CR3:
case UC_X86_REG_CR4:
*(int32_t *)value = state->cr[regid - UC_X86_REG_CR0];
break;
case UC_X86_REG_DR0:
case UC_X86_REG_DR1:
case UC_X86_REG_DR2:
case UC_X86_REG_DR3:
case UC_X86_REG_DR4:
case UC_X86_REG_DR5:
case UC_X86_REG_DR6:
case UC_X86_REG_DR7:
*(int32_t *)value = state->dr[regid - UC_X86_REG_DR0];
break;
case UC_X86_REG_EFLAGS:
*(int32_t *)value = cpu_compute_eflags(state);
break;
case UC_X86_REG_EAX:
*(int32_t *)value = state->regs[R_EAX];
break;
case UC_X86_REG_AX:
*(int16_t *)value = READ_WORD(state->regs[R_EAX]);
break;
case UC_X86_REG_AH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EAX]);
break;
case UC_X86_REG_AL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EAX]);
break;
case UC_X86_REG_EBX:
*(int32_t *)value = state->regs[R_EBX];
break;
case UC_X86_REG_BX:
*(int16_t *)value = READ_WORD(state->regs[R_EBX]);
break;
case UC_X86_REG_BH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EBX]);
break;
case UC_X86_REG_BL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EBX]);
break;
case UC_X86_REG_ECX:
*(int32_t *)value = state->regs[R_ECX];
break;
case UC_X86_REG_CX:
*(int16_t *)value = READ_WORD(state->regs[R_ECX]);
break;
case UC_X86_REG_CH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_ECX]);
break;
case UC_X86_REG_CL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_ECX]);
break;
case UC_X86_REG_EDX:
*(int32_t *)value = state->regs[R_EDX];
break;
case UC_X86_REG_DX:
*(int16_t *)value = READ_WORD(state->regs[R_EDX]);
break;
case UC_X86_REG_DH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EDX]);
break;
case UC_X86_REG_DL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EDX]);
break;
case UC_X86_REG_ESP:
*(int32_t *)value = state->regs[R_ESP];
break;
case UC_X86_REG_SP:
*(int16_t *)value = READ_WORD(state->regs[R_ESP]);
break;
case UC_X86_REG_EBP:
*(int32_t *)value = state->regs[R_EBP];
break;
case UC_X86_REG_BP:
*(int16_t *)value = READ_WORD(state->regs[R_EBP]);
break;
case UC_X86_REG_ESI:
*(int32_t *)value = state->regs[R_ESI];
break;
case UC_X86_REG_SI:
*(int16_t *)value = READ_WORD(state->regs[R_ESI]);
break;
case UC_X86_REG_EDI:
*(int32_t *)value = state->regs[R_EDI];
break;
case UC_X86_REG_DI:
*(int16_t *)value = READ_WORD(state->regs[R_EDI]);
break;
case UC_X86_REG_EIP:
*(int32_t *)value = state->eip;
break;
case UC_X86_REG_IP:
*(int16_t *)value = READ_WORD(state->eip);
break;
case UC_X86_REG_CS:
*(int16_t *)value = (uint16_t)state->segs[R_CS].selector;
break;
case UC_X86_REG_DS:
*(int16_t *)value = (uint16_t)state->segs[R_DS].selector;
break;
case UC_X86_REG_SS:
*(int16_t *)value = (uint16_t)state->segs[R_SS].selector;
break;
case UC_X86_REG_ES:
*(int16_t *)value = (uint16_t)state->segs[R_ES].selector;
break;
case UC_X86_REG_FS:
*(int16_t *)value = (uint16_t)state->segs[R_FS].selector;
break;
case UC_X86_REG_GS:
*(int16_t *)value = (uint16_t)state->segs[R_GS].selector;
break;
case UC_X86_REG_IDTR:
((uc_x86_mmr *)value)->limit = (uint16_t)state->idt.limit;
((uc_x86_mmr *)value)->base = (uint32_t)state->idt.base;
break;
case UC_X86_REG_GDTR:
((uc_x86_mmr *)value)->limit = (uint16_t)state->gdt.limit;
((uc_x86_mmr *)value)->base = (uint32_t)state->gdt.base;
break;
case UC_X86_REG_LDTR:
((uc_x86_mmr *)value)->limit = state->ldt.limit;
((uc_x86_mmr *)value)->base = (uint32_t)state->ldt.base;
((uc_x86_mmr *)value)->selector = (uint16_t)state->ldt.selector;
((uc_x86_mmr *)value)->flags = state->ldt.flags;
break;
case UC_X86_REG_TR:
((uc_x86_mmr *)value)->limit = state->tr.limit;
((uc_x86_mmr *)value)->base = (uint32_t)state->tr.base;
((uc_x86_mmr *)value)->selector = (uint16_t)state->tr.selector;
((uc_x86_mmr *)value)->flags = state->tr.flags;
break;
case UC_X86_REG_MSR:
x86_msr_read(uc, (uc_x86_msr *)value);
break;
}
break;
#ifdef TARGET_X86_64
case UC_MODE_64:
switch(regid) {
default:
break;
case UC_X86_REG_CR0:
case UC_X86_REG_CR1:
case UC_X86_REG_CR2:
case UC_X86_REG_CR3:
case UC_X86_REG_CR4:
*(int64_t *)value = state->cr[regid - UC_X86_REG_CR0];
break;
case UC_X86_REG_DR0:
case UC_X86_REG_DR1:
case UC_X86_REG_DR2:
case UC_X86_REG_DR3:
case UC_X86_REG_DR4:
case UC_X86_REG_DR5:
case UC_X86_REG_DR6:
case UC_X86_REG_DR7:
*(int64_t *)value = state->dr[regid - UC_X86_REG_DR0];
break;
case UC_X86_REG_EFLAGS:
*(int64_t *)value = cpu_compute_eflags(state);
break;
case UC_X86_REG_RAX:
*(uint64_t *)value = state->regs[R_EAX];
break;
case UC_X86_REG_EAX:
*(int32_t *)value = READ_DWORD(state->regs[R_EAX]);
break;
case UC_X86_REG_AX:
*(int16_t *)value = READ_WORD(state->regs[R_EAX]);
break;
case UC_X86_REG_AH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EAX]);
break;
case UC_X86_REG_AL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EAX]);
break;
case UC_X86_REG_RBX:
*(uint64_t *)value = state->regs[R_EBX];
break;
case UC_X86_REG_EBX:
*(int32_t *)value = READ_DWORD(state->regs[R_EBX]);
break;
case UC_X86_REG_BX:
*(int16_t *)value = READ_WORD(state->regs[R_EBX]);
break;
case UC_X86_REG_BH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EBX]);
break;
case UC_X86_REG_BL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EBX]);
break;
case UC_X86_REG_RCX:
*(uint64_t *)value = state->regs[R_ECX];
break;
case UC_X86_REG_ECX:
*(int32_t *)value = READ_DWORD(state->regs[R_ECX]);
break;
case UC_X86_REG_CX:
*(int16_t *)value = READ_WORD(state->regs[R_ECX]);
break;
case UC_X86_REG_CH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_ECX]);
break;
case UC_X86_REG_CL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_ECX]);
break;
case UC_X86_REG_RDX:
*(uint64_t *)value = state->regs[R_EDX];
break;
case UC_X86_REG_EDX:
*(int32_t *)value = READ_DWORD(state->regs[R_EDX]);
break;
case UC_X86_REG_DX:
*(int16_t *)value = READ_WORD(state->regs[R_EDX]);
break;
case UC_X86_REG_DH:
*(int8_t *)value = READ_BYTE_H(state->regs[R_EDX]);
break;
case UC_X86_REG_DL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EDX]);
break;
case UC_X86_REG_RSP:
*(uint64_t *)value = state->regs[R_ESP];
break;
case UC_X86_REG_ESP:
*(int32_t *)value = READ_DWORD(state->regs[R_ESP]);
break;
case UC_X86_REG_SP:
*(int16_t *)value = READ_WORD(state->regs[R_ESP]);
break;
case UC_X86_REG_SPL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_ESP]);
break;
case UC_X86_REG_RBP:
*(uint64_t *)value = state->regs[R_EBP];
break;
case UC_X86_REG_EBP:
*(int32_t *)value = READ_DWORD(state->regs[R_EBP]);
break;
case UC_X86_REG_BP:
*(int16_t *)value = READ_WORD(state->regs[R_EBP]);
break;
case UC_X86_REG_BPL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EBP]);
break;
case UC_X86_REG_RSI:
*(uint64_t *)value = state->regs[R_ESI];
break;
case UC_X86_REG_ESI:
*(int32_t *)value = READ_DWORD(state->regs[R_ESI]);
break;
case UC_X86_REG_SI:
*(int16_t *)value = READ_WORD(state->regs[R_ESI]);
break;
case UC_X86_REG_SIL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_ESI]);
break;
case UC_X86_REG_RDI:
*(uint64_t *)value = state->regs[R_EDI];
break;
case UC_X86_REG_EDI:
*(int32_t *)value = READ_DWORD(state->regs[R_EDI]);
break;
case UC_X86_REG_DI:
*(int16_t *)value = READ_WORD(state->regs[R_EDI]);
break;
case UC_X86_REG_DIL:
*(int8_t *)value = READ_BYTE_L(state->regs[R_EDI]);
break;
case UC_X86_REG_RIP:
*(uint64_t *)value = state->eip;
break;
case UC_X86_REG_EIP:
*(int32_t *)value = READ_DWORD(state->eip);
break;
case UC_X86_REG_IP:
*(int16_t *)value = READ_WORD(state->eip);
break;
case UC_X86_REG_CS:
*(int16_t *)value = (uint16_t)state->segs[R_CS].selector;
break;
case UC_X86_REG_DS:
*(int16_t *)value = (uint16_t)state->segs[R_DS].selector;
break;
case UC_X86_REG_SS:
*(int16_t *)value = (uint16_t)state->segs[R_SS].selector;
break;
case UC_X86_REG_ES:
*(int16_t *)value = (uint16_t)state->segs[R_ES].selector;
break;
case UC_X86_REG_FS:
*(int16_t *)value = (uint16_t)state->segs[R_FS].selector;
break;
case UC_X86_REG_GS:
*(int16_t *)value = (uint16_t)state->segs[R_GS].selector;
break;
case UC_X86_REG_R8:
*(int64_t *)value = READ_QWORD(state->regs[8]);
break;
case UC_X86_REG_R8D:
*(int32_t *)value = READ_DWORD(state->regs[8]);
break;
case UC_X86_REG_R8W:
*(int16_t *)value = READ_WORD(state->regs[8]);
break;
case UC_X86_REG_R8B:
*(int8_t *)value = READ_BYTE_L(state->regs[8]);
break;
case UC_X86_REG_R9:
*(int64_t *)value = READ_QWORD(state->regs[9]);
break;
case UC_X86_REG_R9D:
*(int32_t *)value = READ_DWORD(state->regs[9]);
break;
case UC_X86_REG_R9W:
*(int16_t *)value = READ_WORD(state->regs[9]);
break;
case UC_X86_REG_R9B:
*(int8_t *)value = READ_BYTE_L(state->regs[9]);
break;
case UC_X86_REG_R10:
*(int64_t *)value = READ_QWORD(state->regs[10]);
break;
case UC_X86_REG_R10D:
*(int32_t *)value = READ_DWORD(state->regs[10]);
break;
case UC_X86_REG_R10W:
*(int16_t *)value = READ_WORD(state->regs[10]);
break;
case UC_X86_REG_R10B:
*(int8_t *)value = READ_BYTE_L(state->regs[10]);
break;
case UC_X86_REG_R11:
*(int64_t *)value = READ_QWORD(state->regs[11]);
break;
case UC_X86_REG_R11D:
*(int32_t *)value = READ_DWORD(state->regs[11]);
break;
case UC_X86_REG_R11W:
*(int16_t *)value = READ_WORD(state->regs[11]);
break;
case UC_X86_REG_R11B:
*(int8_t *)value = READ_BYTE_L(state->regs[11]);
break;
case UC_X86_REG_R12:
*(int64_t *)value = READ_QWORD(state->regs[12]);
break;
case UC_X86_REG_R12D:
*(int32_t *)value = READ_DWORD(state->regs[12]);
break;
case UC_X86_REG_R12W:
*(int16_t *)value = READ_WORD(state->regs[12]);
break;
case UC_X86_REG_R12B:
*(int8_t *)value = READ_BYTE_L(state->regs[12]);
break;
case UC_X86_REG_R13:
*(int64_t *)value = READ_QWORD(state->regs[13]);
break;
case UC_X86_REG_R13D:
*(int32_t *)value = READ_DWORD(state->regs[13]);
break;
case UC_X86_REG_R13W:
*(int16_t *)value = READ_WORD(state->regs[13]);
break;
case UC_X86_REG_R13B:
*(int8_t *)value = READ_BYTE_L(state->regs[13]);
break;
case UC_X86_REG_R14:
*(int64_t *)value = READ_QWORD(state->regs[14]);
break;
case UC_X86_REG_R14D:
*(int32_t *)value = READ_DWORD(state->regs[14]);
break;
case UC_X86_REG_R14W:
*(int16_t *)value = READ_WORD(state->regs[14]);
break;
case UC_X86_REG_R14B:
*(int8_t *)value = READ_BYTE_L(state->regs[14]);
break;
case UC_X86_REG_R15:
*(int64_t *)value = READ_QWORD(state->regs[15]);
break;
case UC_X86_REG_R15D:
*(int32_t *)value = READ_DWORD(state->regs[15]);
break;
case UC_X86_REG_R15W:
*(int16_t *)value = READ_WORD(state->regs[15]);
break;
case UC_X86_REG_R15B:
*(int8_t *)value = READ_BYTE_L(state->regs[15]);
break;
case UC_X86_REG_IDTR:
((uc_x86_mmr *)value)->limit = (uint16_t)state->idt.limit;
((uc_x86_mmr *)value)->base = state->idt.base;
break;
case UC_X86_REG_GDTR:
((uc_x86_mmr *)value)->limit = (uint16_t)state->gdt.limit;
((uc_x86_mmr *)value)->base = state->gdt.base;
break;
case UC_X86_REG_LDTR:
((uc_x86_mmr *)value)->limit = state->ldt.limit;
((uc_x86_mmr *)value)->base = state->ldt.base;
((uc_x86_mmr *)value)->selector = (uint16_t)state->ldt.selector;
((uc_x86_mmr *)value)->flags = state->ldt.flags;
break;
case UC_X86_REG_TR:
((uc_x86_mmr *)value)->limit = state->tr.limit;
((uc_x86_mmr *)value)->base = state->tr.base;
((uc_x86_mmr *)value)->selector = (uint16_t)state->tr.selector;
((uc_x86_mmr *)value)->flags = state->tr.flags;
break;
case UC_X86_REG_MSR:
x86_msr_read(uc, (uc_x86_msr *)value);
break;
}
break;
#endif
}
}
return 0;
}
int x86_reg_write(struct uc_struct *uc, unsigned int *regs, void *const *vals, int count)
{
CPUState *mycpu = uc->cpu;
CPUX86State *state = &X86_CPU(uc, mycpu)->env;
int i;
for (i = 0; i < count; i++) {
unsigned int regid = regs[i];
const void *value = vals[i];
switch(regid) {
default:
break;
case UC_X86_REG_FP0:
case UC_X86_REG_FP1:
case UC_X86_REG_FP2:
case UC_X86_REG_FP3:
case UC_X86_REG_FP4:
case UC_X86_REG_FP5:
case UC_X86_REG_FP6:
case UC_X86_REG_FP7:
{
uint64_t mant = *(uint64_t*) value;
uint16_t upper = *(uint16_t*) ((char*)value + sizeof(uint64_t));
state->fpregs[regid - UC_X86_REG_FP0].d = cpu_set_fp80(mant, upper);
}
continue;
case UC_X86_REG_FPSW:
{
uint16_t fpus = *(uint16_t*) value;
state->fpus = fpus & ~0x3800;
state->fpstt = (fpus >> 11) & 0x7;
}
continue;
case UC_X86_REG_FPCW:
state->fpuc = *(uint16_t *)value;
continue;
case UC_X86_REG_FPTAG:
{
int i;
uint16_t fptag = *(uint16_t*) value;
for (i = 0; i < 8; i++) {
state->fptags[i] = ((fptag & 3) == 3);
fptag >>= 2;
}
continue;
}
break;
case UC_X86_REG_XMM0:
case UC_X86_REG_XMM1:
case UC_X86_REG_XMM2:
case UC_X86_REG_XMM3:
case UC_X86_REG_XMM4:
case UC_X86_REG_XMM5:
case UC_X86_REG_XMM6:
case UC_X86_REG_XMM7:
{
float64 *src = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
reg->ZMM_D(0) = src[0];
reg->ZMM_D(1) = src[1];
continue;
}
case UC_X86_REG_YMM0:
case UC_X86_REG_YMM1:
case UC_X86_REG_YMM2:
case UC_X86_REG_YMM3:
case UC_X86_REG_YMM4:
case UC_X86_REG_YMM5:
case UC_X86_REG_YMM6:
case UC_X86_REG_YMM7:
{
float64 *src = (float64*)value;
ZMMReg *reg = &state->xmm_regs[regid - UC_X86_REG_XMM0];
reg->ZMM_D(4) = src[0];
reg->ZMM_D(5) = src[1];
reg->ZMM_D(6) = src[2];
reg->ZMM_D(7) = src[3];
continue;
}
}
switch(uc->mode) {
default:
break;
case UC_MODE_16:
switch(regid) {
default: break;
case UC_X86_REG_ES:
load_seg_16_helper(state, R_ES, *(uint16_t *)value);
continue;
case UC_X86_REG_SS:
load_seg_16_helper(state, R_SS, *(uint16_t *)value);
continue;
case UC_X86_REG_DS:
load_seg_16_helper(state, R_DS, *(uint16_t *)value);
continue;
case UC_X86_REG_FS:
load_seg_16_helper(state, R_FS, *(uint16_t *)value);
continue;
case UC_X86_REG_GS:
load_seg_16_helper(state, R_GS, *(uint16_t *)value);
continue;
}
// fall-thru
case UC_MODE_32:
switch(regid) {
default:
break;
case UC_X86_REG_CR0:
case UC_X86_REG_CR1:
case UC_X86_REG_CR2:
case UC_X86_REG_CR3:
case UC_X86_REG_CR4:
state->cr[regid - UC_X86_REG_CR0] = *(uint32_t *)value;
break;
case UC_X86_REG_DR0:
case UC_X86_REG_DR1:
case UC_X86_REG_DR2:
case UC_X86_REG_DR3:
case UC_X86_REG_DR4:
case UC_X86_REG_DR5:
case UC_X86_REG_DR6:
case UC_X86_REG_DR7:
state->dr[regid - UC_X86_REG_DR0] = *(uint32_t *)value;
break;
case UC_X86_REG_EFLAGS:
cpu_load_eflags(state, *(uint32_t *)value, -1);
state->eflags0 = *(uint32_t *)value;
break;
case UC_X86_REG_EAX:
state->regs[R_EAX] = *(uint32_t *)value;
break;
case UC_X86_REG_AX:
WRITE_WORD(state->regs[R_EAX], *(uint16_t *)value);
break;
case UC_X86_REG_AH:
WRITE_BYTE_H(state->regs[R_EAX], *(uint8_t *)value);
break;
case UC_X86_REG_AL:
WRITE_BYTE_L(state->regs[R_EAX], *(uint8_t *)value);
break;
case UC_X86_REG_EBX:
state->regs[R_EBX] = *(uint32_t *)value;
break;
case UC_X86_REG_BX:
WRITE_WORD(state->regs[R_EBX], *(uint16_t *)value);
break;
case UC_X86_REG_BH:
WRITE_BYTE_H(state->regs[R_EBX], *(uint8_t *)value);
break;
case UC_X86_REG_BL:
WRITE_BYTE_L(state->regs[R_EBX], *(uint8_t *)value);
break;
case UC_X86_REG_ECX:
state->regs[R_ECX] = *(uint32_t *)value;
break;
case UC_X86_REG_CX:
WRITE_WORD(state->regs[R_ECX], *(uint16_t *)value);
break;
case UC_X86_REG_CH:
WRITE_BYTE_H(state->regs[R_ECX], *(uint8_t *)value);
break;
case UC_X86_REG_CL:
WRITE_BYTE_L(state->regs[R_ECX], *(uint8_t *)value);
break;
case UC_X86_REG_EDX:
state->regs[R_EDX] = *(uint32_t *)value;
break;
case UC_X86_REG_DX:
WRITE_WORD(state->regs[R_EDX], *(uint16_t *)value);
break;
case UC_X86_REG_DH:
WRITE_BYTE_H(state->regs[R_EDX], *(uint8_t *)value);
break;
case UC_X86_REG_DL:
WRITE_BYTE_L(state->regs[R_EDX], *(uint8_t *)value);
break;
case UC_X86_REG_ESP:
state->regs[R_ESP] = *(uint32_t *)value;
break;
case UC_X86_REG_SP:
WRITE_WORD(state->regs[R_ESP], *(uint16_t *)value);
break;
case UC_X86_REG_EBP:
state->regs[R_EBP] = *(uint32_t *)value;
break;
case UC_X86_REG_BP:
WRITE_WORD(state->regs[R_EBP], *(uint16_t *)value);
break;
case UC_X86_REG_ESI:
state->regs[R_ESI] = *(uint32_t *)value;
break;
case UC_X86_REG_SI:
WRITE_WORD(state->regs[R_ESI], *(uint16_t *)value);
break;
case UC_X86_REG_EDI:
state->regs[R_EDI] = *(uint32_t *)value;
break;
case UC_X86_REG_DI:
WRITE_WORD(state->regs[R_EDI], *(uint16_t *)value);
break;
case UC_X86_REG_EIP:
state->eip = *(uint32_t *)value;
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_IP:
WRITE_WORD(state->eip, *(uint16_t *)value);
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_CS:
cpu_x86_load_seg(state, R_CS, *(uint16_t *)value);
break;
case UC_X86_REG_DS:
cpu_x86_load_seg(state, R_DS, *(uint16_t *)value);
break;
case UC_X86_REG_SS:
cpu_x86_load_seg(state, R_SS, *(uint16_t *)value);
break;
case UC_X86_REG_ES:
cpu_x86_load_seg(state, R_ES, *(uint16_t *)value);
break;
case UC_X86_REG_FS:
cpu_x86_load_seg(state, R_FS, *(uint16_t *)value);
break;
case UC_X86_REG_GS:
cpu_x86_load_seg(state, R_GS, *(uint16_t *)value);
break;
case UC_X86_REG_IDTR:
state->idt.limit = (uint16_t)((uc_x86_mmr *)value)->limit;
state->idt.base = (uint32_t)((uc_x86_mmr *)value)->base;
break;
case UC_X86_REG_GDTR:
state->gdt.limit = (uint16_t)((uc_x86_mmr *)value)->limit;
state->gdt.base = (uint32_t)((uc_x86_mmr *)value)->base;
break;
case UC_X86_REG_LDTR:
state->ldt.limit = ((uc_x86_mmr *)value)->limit;
state->ldt.base = (uint32_t)((uc_x86_mmr *)value)->base;
state->ldt.selector = (uint16_t)((uc_x86_mmr *)value)->selector;
state->ldt.flags = ((uc_x86_mmr *)value)->flags;
break;
case UC_X86_REG_TR:
state->tr.limit = ((uc_x86_mmr *)value)->limit;
state->tr.base = (uint32_t)((uc_x86_mmr *)value)->base;
state->tr.selector = (uint16_t)((uc_x86_mmr *)value)->selector;
state->tr.flags = ((uc_x86_mmr *)value)->flags;
break;
case UC_X86_REG_MSR:
x86_msr_write(uc, (uc_x86_msr *)value);
break;
}
break;
#ifdef TARGET_X86_64
case UC_MODE_64:
switch(regid) {
default:
break;
case UC_X86_REG_CR0:
case UC_X86_REG_CR1:
case UC_X86_REG_CR2:
case UC_X86_REG_CR3:
case UC_X86_REG_CR4:
state->cr[regid - UC_X86_REG_CR0] = *(uint64_t *)value;
break;
case UC_X86_REG_DR0:
case UC_X86_REG_DR1:
case UC_X86_REG_DR2:
case UC_X86_REG_DR3:
case UC_X86_REG_DR4:
case UC_X86_REG_DR5:
case UC_X86_REG_DR6:
case UC_X86_REG_DR7:
state->dr[regid - UC_X86_REG_DR0] = *(uint64_t *)value;
break;
case UC_X86_REG_EFLAGS:
cpu_load_eflags(state, *(uint64_t *)value, -1);
state->eflags0 = *(uint64_t *)value;
break;
case UC_X86_REG_RAX:
state->regs[R_EAX] = *(uint64_t *)value;
break;
case UC_X86_REG_EAX:
WRITE_DWORD(state->regs[R_EAX], *(uint32_t *)value);
break;
case UC_X86_REG_AX:
WRITE_WORD(state->regs[R_EAX], *(uint16_t *)value);
break;
case UC_X86_REG_AH:
WRITE_BYTE_H(state->regs[R_EAX], *(uint8_t *)value);
break;
case UC_X86_REG_AL:
WRITE_BYTE_L(state->regs[R_EAX], *(uint8_t *)value);
break;
case UC_X86_REG_RBX:
state->regs[R_EBX] = *(uint64_t *)value;
break;
case UC_X86_REG_EBX:
WRITE_DWORD(state->regs[R_EBX], *(uint32_t *)value);
break;
case UC_X86_REG_BX:
WRITE_WORD(state->regs[R_EBX], *(uint16_t *)value);
break;
case UC_X86_REG_BH:
WRITE_BYTE_H(state->regs[R_EBX], *(uint8_t *)value);
break;
case UC_X86_REG_BL:
WRITE_BYTE_L(state->regs[R_EBX], *(uint8_t *)value);
break;
case UC_X86_REG_RCX:
state->regs[R_ECX] = *(uint64_t *)value;
break;
case UC_X86_REG_ECX:
WRITE_DWORD(state->regs[R_ECX], *(uint32_t *)value);
break;
case UC_X86_REG_CX:
WRITE_WORD(state->regs[R_ECX], *(uint16_t *)value);
break;
case UC_X86_REG_CH:
WRITE_BYTE_H(state->regs[R_ECX], *(uint8_t *)value);
break;
case UC_X86_REG_CL:
WRITE_BYTE_L(state->regs[R_ECX], *(uint8_t *)value);
break;
case UC_X86_REG_RDX:
state->regs[R_EDX] = *(uint64_t *)value;
break;
case UC_X86_REG_EDX:
WRITE_DWORD(state->regs[R_EDX], *(uint32_t *)value);
break;
case UC_X86_REG_DX:
WRITE_WORD(state->regs[R_EDX], *(uint16_t *)value);
break;
case UC_X86_REG_DH:
WRITE_BYTE_H(state->regs[R_EDX], *(uint8_t *)value);
break;
case UC_X86_REG_DL:
WRITE_BYTE_L(state->regs[R_EDX], *(uint8_t *)value);
break;
case UC_X86_REG_RSP:
state->regs[R_ESP] = *(uint64_t *)value;
break;
case UC_X86_REG_ESP:
WRITE_DWORD(state->regs[R_ESP], *(uint32_t *)value);
break;
case UC_X86_REG_SP:
WRITE_WORD(state->regs[R_ESP], *(uint16_t *)value);
break;
case UC_X86_REG_SPL:
WRITE_BYTE_L(state->regs[R_ESP], *(uint8_t *)value);
break;
case UC_X86_REG_RBP:
state->regs[R_EBP] = *(uint64_t *)value;
break;
case UC_X86_REG_EBP:
WRITE_DWORD(state->regs[R_EBP], *(uint32_t *)value);
break;
case UC_X86_REG_BP:
WRITE_WORD(state->regs[R_EBP], *(uint16_t *)value);
break;
case UC_X86_REG_BPL:
WRITE_BYTE_L(state->regs[R_EBP], *(uint8_t *)value);
break;
case UC_X86_REG_RSI:
state->regs[R_ESI] = *(uint64_t *)value;
break;
case UC_X86_REG_ESI:
WRITE_DWORD(state->regs[R_ESI], *(uint32_t *)value);
break;
case UC_X86_REG_SI:
WRITE_WORD(state->regs[R_ESI], *(uint16_t *)value);
break;
case UC_X86_REG_SIL:
WRITE_BYTE_L(state->regs[R_ESI], *(uint8_t *)value);
break;
case UC_X86_REG_RDI:
state->regs[R_EDI] = *(uint64_t *)value;
break;
case UC_X86_REG_EDI:
WRITE_DWORD(state->regs[R_EDI], *(uint32_t *)value);
break;
case UC_X86_REG_DI:
WRITE_WORD(state->regs[R_EDI], *(uint16_t *)value);
break;
case UC_X86_REG_DIL:
WRITE_BYTE_L(state->regs[R_EDI], *(uint8_t *)value);
break;
case UC_X86_REG_RIP:
state->eip = *(uint64_t *)value;
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_EIP:
WRITE_DWORD(state->eip, *(uint32_t *)value);
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_IP:
WRITE_WORD(state->eip, *(uint16_t *)value);
// force to quit execution and flush TB
uc->quit_request = true;
uc_emu_stop(uc);
break;
case UC_X86_REG_CS:
state->segs[R_CS].selector = *(uint16_t *)value;
break;
case UC_X86_REG_DS:
state->segs[R_DS].selector = *(uint16_t *)value;
break;
case UC_X86_REG_SS:
state->segs[R_SS].selector = *(uint16_t *)value;
break;
case UC_X86_REG_ES:
state->segs[R_ES].selector = *(uint16_t *)value;
break;
case UC_X86_REG_FS:
state->segs[R_FS].selector = *(uint16_t *)value;
break;
case UC_X86_REG_GS:
state->segs[R_GS].selector = *(uint16_t *)value;
break;
case UC_X86_REG_R8:
state->regs[8] = *(uint64_t *)value;
break;
case UC_X86_REG_R8D:
WRITE_DWORD(state->regs[8], *(uint32_t *)value);
break;
case UC_X86_REG_R8W:
WRITE_WORD(state->regs[8], *(uint16_t *)value);
break;
case UC_X86_REG_R8B:
WRITE_BYTE_L(state->regs[8], *(uint8_t *)value);
break;
case UC_X86_REG_R9:
state->regs[9] = *(uint64_t *)value;
break;
case UC_X86_REG_R9D:
WRITE_DWORD(state->regs[9], *(uint32_t *)value);
break;
case UC_X86_REG_R9W:
WRITE_WORD(state->regs[9], *(uint16_t *)value);
break;
case UC_X86_REG_R9B:
WRITE_BYTE_L(state->regs[9], *(uint8_t *)value);
break;
case UC_X86_REG_R10:
state->regs[10] = *(uint64_t *)value;
break;
case UC_X86_REG_R10D:
WRITE_DWORD(state->regs[10], *(uint32_t *)value);
break;
case UC_X86_REG_R10W:
WRITE_WORD(state->regs[10], *(uint16_t *)value);
break;
case UC_X86_REG_R10B:
WRITE_BYTE_L(state->regs[10], *(uint8_t *)value);
break;
case UC_X86_REG_R11:
state->regs[11] = *(uint64_t *)value;
break;
case UC_X86_REG_R11D:
WRITE_DWORD(state->regs[11], *(uint32_t *)value);
break;
case UC_X86_REG_R11W:
WRITE_WORD(state->regs[11], *(uint16_t *)value);
break;
case UC_X86_REG_R11B:
WRITE_BYTE_L(state->regs[11], *(uint8_t *)value);
break;
case UC_X86_REG_R12:
state->regs[12] = *(uint64_t *)value;
break;
case UC_X86_REG_R12D:
WRITE_DWORD(state->regs[12], *(uint32_t *)value);
break;
case UC_X86_REG_R12W:
WRITE_WORD(state->regs[12], *(uint16_t *)value);
break;
case UC_X86_REG_R12B:
WRITE_BYTE_L(state->regs[12], *(uint8_t *)value);
break;
case UC_X86_REG_R13:
state->regs[13] = *(uint64_t *)value;
break;
case UC_X86_REG_R13D:
WRITE_DWORD(state->regs[13], *(uint32_t *)value);
break;
case UC_X86_REG_R13W:
WRITE_WORD(state->regs[13], *(uint16_t *)value);
break;
case UC_X86_REG_R13B:
WRITE_BYTE_L(state->regs[13], *(uint8_t *)value);
break;
case UC_X86_REG_R14:
state->regs[14] = *(uint64_t *)value;
break;
case UC_X86_REG_R14D:
WRITE_DWORD(state->regs[14], *(uint32_t *)value);
break;
case UC_X86_REG_R14W:
WRITE_WORD(state->regs[14], *(uint16_t *)value);
break;
case UC_X86_REG_R14B:
WRITE_BYTE_L(state->regs[14], *(uint8_t *)value);
break;
case UC_X86_REG_R15:
state->regs[15] = *(uint64_t *)value;
break;
case UC_X86_REG_R15D:
WRITE_DWORD(state->regs[15], *(uint32_t *)value);
break;
case UC_X86_REG_R15W:
WRITE_WORD(state->regs[15], *(uint16_t *)value);
break;
case UC_X86_REG_R15B:
WRITE_BYTE_L(state->regs[15], *(uint8_t *)value);
break;
case UC_X86_REG_IDTR:
state->idt.limit = (uint16_t)((uc_x86_mmr *)value)->limit;
state->idt.base = ((uc_x86_mmr *)value)->base;
break;
case UC_X86_REG_GDTR:
state->gdt.limit = (uint16_t)((uc_x86_mmr *)value)->limit;
state->gdt.base = ((uc_x86_mmr *)value)->base;
break;
case UC_X86_REG_LDTR:
state->ldt.limit = ((uc_x86_mmr *)value)->limit;
state->ldt.base = ((uc_x86_mmr *)value)->base;
state->ldt.selector = (uint16_t)((uc_x86_mmr *)value)->selector;
state->ldt.flags = ((uc_x86_mmr *)value)->flags;
break;
case UC_X86_REG_TR:
state->tr.limit = ((uc_x86_mmr *)value)->limit;
state->tr.base = ((uc_x86_mmr *)value)->base;
state->tr.selector = (uint16_t)((uc_x86_mmr *)value)->selector;
state->tr.flags = ((uc_x86_mmr *)value)->flags;
break;
case UC_X86_REG_MSR:
x86_msr_write(uc, (uc_x86_msr *)value);
break;
}
break;
#endif
}
}
return 0;
}
DEFAULT_VISIBILITY
int x86_uc_machine_init(struct uc_struct *uc)
{
return machine_initialize(uc);
}
static bool x86_stop_interrupt(int intno)
{
switch(intno) {
default:
return false;
case EXCP06_ILLOP:
return true;
}
}
static bool x86_insn_hook_validate(uint32_t insn_enum)
{
//for x86 we can only hook IN, OUT, and SYSCALL
if (insn_enum != UC_X86_INS_IN
&& insn_enum != UC_X86_INS_OUT
&& insn_enum != UC_X86_INS_SYSCALL) {
return false;
}
return true;
}
void pc_machine_init_v2_2(struct uc_struct *uc);
DEFAULT_VISIBILITY
void x86_uc_init(struct uc_struct* uc)
{
apic_register_types(uc);
apic_common_register_types(uc);
register_accel_types(uc);
pc_machine_register_types(uc);
x86_cpu_register_types(uc);
pc_machine_init_v2_2(uc); // pc_piix
uc->reg_read = x86_reg_read;
uc->reg_write = x86_reg_write;
uc->reg_reset = x86_reg_reset;
uc->release = x86_release;
uc->set_pc = x86_set_pc;
uc->stop_interrupt = x86_stop_interrupt;
uc->insn_hook_validate = x86_insn_hook_validate;
uc_common_init(uc);
}
/* vim: set ts=4 sts=4 sw=4 et: */
Reference in a new issue View git blame Copy permalink