| blob | 0bb7a24cbd08c73ffce9955008ec6ed71e89046d |
1 /* Target-dependent code for AMD64.
3 Copyright (C) 2001-2024 Free Software Foundation, Inc.
5 Contributed by Jiri Smid, SuSE Labs.
7 This file is part of GDB.
9 This program is free software; you can redistribute it and/or modify
10 it under the terms of the GNU General Public License as published by
11 the Free Software Foundation; either version 3 of the License, or
12 (at your option) any later version.
14 This program is distributed in the hope that it will be useful,
15 but WITHOUT ANY WARRANTY; without even the implied warranty of
16 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 GNU General Public License for more details.
19 You should have received a copy of the GNU General Public License
20 along with this program. If not, see <http://www.gnu.org/licenses/>. */
42 #include <algorithm>
53 /* Note that the AMD64 architecture was previously known as x86-64.
54 The latter is (forever) engraved into the canonical system name as
55 returned by config.guess, and used as the name for the AMD64 port
56 of GNU/Linux. The BSD's have renamed their ports to amd64; they
57 don't like to shout. For GDB we prefer the amd64_-prefix over the
58 x86_64_-prefix since it's so much easier to type. */
60 /* Register information. */
63 {
66 /* %r8 is indeed register number 8. */
70 /* %st0 is register number 24. */
74 /* %xmm0 is register number 40. */
78 };
81 {
86 };
89 {
94 };
97 {
102 };
105 {
110 };
113 {
115 };
118 {
121 };
124 {
133 };
136 {
145 };
152 };
155 "pkru"
156 };
158 /* DWARF Register Number Mapping as defined in the System V psABI,
159 section 3.6. */
162 {
163 /* General Purpose Registers RAX, RDX, RCX, RBX, RSI, RDI. */
168 /* Frame Pointer Register RBP. */
169 AMD64_RBP_REGNUM,
171 /* Stack Pointer Register RSP. */
172 AMD64_RSP_REGNUM,
174 /* Extended Integer Registers 8 - 15. */
184 /* Return Address RA. Mapped to RIP. */
185 AMD64_RIP_REGNUM,
187 /* SSE Registers 0 - 7. */
193 /* Extended SSE Registers 8 - 15. */
199 /* Floating Point Registers 0-7. */
205 /* MMX Registers 0 - 7.
206 We have to handle those registers specifically, as their register
207 number within GDB depends on the target (or they may even not be
208 available at all). */
211 /* Control and Status Flags Register. */
212 AMD64_EFLAGS_REGNUM,
214 /* Selector Registers. */
215 AMD64_ES_REGNUM,
216 AMD64_CS_REGNUM,
217 AMD64_SS_REGNUM,
218 AMD64_DS_REGNUM,
219 AMD64_FS_REGNUM,
220 AMD64_GS_REGNUM,
224 /* Segment Base Address Registers. */
230 /* Special Selector Registers. */
234 /* Floating Point Control Registers. */
235 AMD64_MXCSR_REGNUM,
236 AMD64_FCTRL_REGNUM,
237 AMD64_FSTAT_REGNUM,
239 /* XMM16-XMM31. */
249 /* Reserved. */
254 /* Mask Registers. */
259 };
264 /* Convert DWARF register number REG to the appropriate register
265 number used by GDB. */
267 static int
269 {
281 }
283 /* Map architectural register numbers to gdb register numbers. */
286 {
302 AMD64_R15_REGNUM /* %r15 */
303 };
308 /* Convert architectural register number REG to the appropriate register
309 number used by GDB. */
311 static int
313 {
317 }
319 /* Register names for byte pseudo-registers. */
322 {
326 };
328 /* Number of lower byte registers. */
329 #define AMD64_NUM_LOWER_BYTE_REGS 16
331 /* Register names for word pseudo-registers. */
334 {
337 };
339 /* Register names for dword pseudo-registers. */
342 {
345 "eip"
346 };
348 /* Return the name of register REGNUM. */
352 {
366 else
368 }
373 {
377 {
380 /* Extract (always little endian). */
382 {
385 /* Special handling for AH, BH, CH, DH. */
387 }
388 else
390 }
392 {
396 }
397 else
399 }
401 static void
404 {
408 {
412 {
415 }
416 else
418 }
420 {
423 }
424 else
426 }
428 /* Implement the 'ax_pseudo_register_collect' gdbarch method. */
430 static int
433 {
437 {
442 else
445 }
447 {
452 }
453 else
455 }
457 \f
459 /* Register classes as defined in the psABI. */
461 enum amd64_reg_class
462 {
463 AMD64_INTEGER,
464 AMD64_SSE,
465 AMD64_SSEUP,
466 AMD64_X87,
467 AMD64_X87UP,
468 AMD64_COMPLEX_X87,
469 AMD64_NO_CLASS,
470 AMD64_MEMORY
471 };
473 /* Return the union class of CLASS1 and CLASS2. See the psABI for
474 details. */
476 static enum amd64_reg_class
478 {
479 /* Rule (a): If both classes are equal, this is the resulting class. */
483 /* Rule (b): If one of the classes is NO_CLASS, the resulting class
484 is the other class. */
490 /* Rule (c): If one of the classes is MEMORY, the result is MEMORY. */
494 /* Rule (d): If one of the classes is INTEGER, the result is INTEGER. */
498 /* Rule (e): If one of the classes is X87, X87UP, COMPLEX_X87 class,
499 MEMORY is used as class. */
505 /* Rule (f): Otherwise class SSE is used. */
507 }
511 /* Return true if TYPE is a structure or union with unaligned fields. */
513 static bool
515 {
518 {
520 {
523 /* Ignore static fields, empty fields (for example nested
524 empty structures), and bitfields (these are handled by
525 the caller). */
547 }
548 }
551 }
553 /* Classify field I of TYPE starting at BITOFFSET according to the rules for
554 structures and union types, and store the result in THECLASS. */
556 static void
560 {
568 /* Ignore static fields, or empty fields, for example nested
569 empty structures.*/
579 {
580 /* Each field of an object is classified recursively. */
585 }
592 /* This is a bit of an odd case: We have a field that would
593 normally fit in one of the two eightbytes, except that
594 it is placed in a way that this field straddles them.
595 This has been seen with a structure containing an array.
597 The ABI is a bit unclear in this case, but we assume that
598 this field's class (stored in subclass[0]) must also be merged
599 into class[1]. In other words, our field has a piece stored
600 in the second eight-byte, and thus its class applies to
601 the second eight-byte as well.
603 In the case where the field length exceeds 8 bytes,
604 it should not be necessary to merge the field class
605 into class[1]. As LEN > 8, subclass[1] is necessarily
606 different from AMD64_NO_CLASS. If subclass[1] is equal
607 to subclass[0], then the normal class[1]/subclass[1]
608 merging will take care of everything. For subclass[1]
609 to be different from subclass[0], I can only see the case
610 where we have a SSE/SSEUP or X87/X87UP pair, which both
611 use up all 16 bytes of the aggregate, and are already
612 handled just fine (because each portion sits on its own
613 8-byte). */
617 }
619 /* Classify TYPE according to the rules for aggregate (structures and
620 arrays) and union types, and store the result in CLASS. */
622 static void
624 {
625 /* 1. If the size of an object is larger than two times eight bytes, or
626 it is a non-trivial C++ object, or it has unaligned fields, then it
627 has class memory.
629 It is important that the trivially_copyable check is before the
630 unaligned fields check, as C++ classes with virtual base classes
631 will have fields (for the virtual base classes) with non-constant
632 loc_bitpos attributes, which will cause an assert to trigger within
633 the unaligned field check. As classes with virtual bases are not
634 trivially copyable, checking that first avoids this problem. */
639 {
642 }
644 /* 2. Both eightbytes get initialized to class NO_CLASS. */
647 /* 3. Each field of an object is classified recursively so that
648 always two fields are considered. The resulting class is
649 calculated according to the classes of the fields in the
650 eightbyte: */
653 {
656 /* All fields in an array have the same type. */
660 }
661 else
662 {
665 /* Structure or union. */
671 }
673 /* 4. Then a post merger cleanup is done: */
675 /* Rule (a): If one of the classes is MEMORY, the whole argument is
676 passed in memory. */
680 /* Rule (b): If SSEUP is not preceded by SSE, it is converted to
681 SSE. */
686 }
688 /* Classify TYPE, and store the result in CLASS. */
690 static void
692 {
698 /* Arguments of types (signed and unsigned) _Bool, char, short, int,
699 long, long long, and pointers are in the INTEGER class. Similarly,
700 range types, used by languages such as Ada, are also in the INTEGER
701 class. */
709 /* Arguments of types _Float16, float, double, _Decimal32, _Decimal64 and
710 __m64 are in class SSE. */
713 /* FIXME: __m64 . */
716 /* Arguments of types __float128, _Decimal128 and __m128 are split into
717 two halves. The least significant ones belong to class SSE, the most
718 significant one to class SSEUP. */
720 /* FIXME: __float128, __m128. */
723 /* The 64-bit mantissa of arguments of type long double belongs to
724 class X87, the 16-bit exponent plus 6 bytes of padding belongs to
725 class X87UP. */
727 /* Class X87 and X87UP. */
730 /* Arguments of complex T - where T is one of the types _Float16, float or
731 double - get treated as if they are implemented as:
733 struct complexT {
734 T real;
735 T imag;
736 };
738 */
744 /* A variable of type complex long double is classified as type
745 COMPLEX_X87. */
749 /* Aggregates. */
753 }
755 static enum return_value_convention
759 {
770 /* 1. Classify the return type with the classification algorithm. */
773 /* 2. If the type has class MEMORY, then the caller provides space
774 for the return value and passes the address of this storage in
775 %rdi as if it were the first argument to the function. In effect,
776 this address becomes a hidden first argument.
778 On return %rax will contain the address that has been passed in
779 by the caller in %rdi. */
781 {
782 /* As indicated by the comment above, the ABI guarantees that we
783 can always find the return value just after the function has
784 returned. */
787 {
788 ULONGEST addr;
792 }
795 }
799 {
802 }
804 /* 8. If the class is COMPLEX_X87, the real part of the value is
805 returned in %st0 and the imaginary part in %st1. */
807 {
809 {
812 }
815 {
820 /* Fix up the tag word such that both %st(0) and %st(1) are
821 marked as valid. */
823 }
826 }
832 {
837 {
839 /* 3. If the class is INTEGER, the next available register
840 of the sequence %rax, %rdx is used. */
845 /* 4. If the class is SSE, the next available SSE register
846 of the sequence %xmm0, %xmm1 is used. */
851 /* 5. If the class is SSEUP, the eightbyte is passed in the
852 upper half of the last used SSE register. */
859 /* 6. If the class is X87, the value is returned on the X87
860 stack in %st0 as 80-bit x87 number. */
867 /* 7. If the class is X87UP, the value is returned together
868 with the previous X87 value in %st0. */
880 }
890 }
893 }
894 \f
896 static CORE_ADDR
899 {
901 {
907 AMD64_R9_REGNUM /* %r9 */
908 };
910 {
911 /* %xmm0 ... %xmm7 */
916 };
925 /* Reserve a register for the "hidden" argument. */
927 integer_reg++;
930 {
938 /* Classify argument. */
941 /* Calculate the number of integer and SSE registers needed for
942 this argument. */
944 {
946 needed_integer_regs++;
948 needed_sse_regs++;
949 }
951 /* Check whether enough registers are available, and if the
952 argument should be passed in registers at all. */
956 {
957 /* The argument will be passed on the stack. */
960 }
961 else
962 {
963 /* The argument will be passed in registers. */
970 {
975 {
995 }
1001 }
1002 }
1003 }
1005 /* Allocate space for the arguments on the stack. */
1008 /* The psABI says that "The end of the input argument area shall be
1009 aligned on a 16 byte boundary." */
1012 /* Write out the arguments to the stack. */
1014 {
1021 }
1023 /* The psABI says that "For calls that may call functions that use
1024 varargs or stdargs (prototype-less calls or calls to functions
1025 containing ellipsis (...) in the declaration) %al is used as
1026 hidden argument to specify the number of SSE registers used. */
1029 }
1031 static CORE_ADDR
1035 function_call_return_method return_method,
1036 CORE_ADDR struct_addr)
1037 {
1041 /* BND registers can be in arbitrary values at the moment of the
1042 inferior call. This can cause boundary violations that are not
1043 due to a real bug or even desired by the user. The best to be done
1044 is set the BND registers to allow access to the whole memory, INIT
1045 state, before pushing the inferior call. */
1048 /* Pass arguments. */
1051 /* Pass "hidden" argument". */
1053 {
1056 }
1058 /* Store return address. */
1063 /* Finally, update the stack pointer... */
1067 /* ...and fake a frame pointer. */
1071 }
1072 \f
1073 /* Displaced instruction handling. */
1075 /* A partially decoded instruction.
1076 This contains enough details for displaced stepping purposes. */
1078 struct amd64_insn
1079 {
1080 /* The number of opcode bytes. */
1082 /* The offset of the REX/VEX instruction encoding prefix or -1 if
1083 not present. */
1085 /* The offset to the first opcode byte. */
1087 /* The offset to the modrm byte or -1 if not present. */
1090 /* The raw instruction. */
1092 };
1094 struct amd64_displaced_step_copy_insn_closure
1096 {
1099 {}
1101 /* For rip-relative insns, saved copy of the reg we use instead of %rip. */
1104 ULONGEST tmp_save;
1106 /* Details of the instruction. */
1109 /* The possibly modified insn. */
1111 };
1113 /* WARNING: Keep onebyte_has_modrm, twobyte_has_modrm in sync with
1114 ../opcodes/i386-dis.c (until libopcodes exports them, or an alternative,
1115 at which point delete these in favor of libopcodes' versions). */
1118 /* 0 1 2 3 4 5 6 7 8 9 a b c d e f */
1119 /* ------------------------------- */
1136 /* ------------------------------- */
1137 /* 0 1 2 3 4 5 6 7 8 9 a b c d e f */
1138 };
1141 /* 0 1 2 3 4 5 6 7 8 9 a b c d e f */
1142 /* ------------------------------- */
1159 /* ------------------------------- */
1160 /* 0 1 2 3 4 5 6 7 8 9 a b c d e f */
1161 };
1165 static int
1167 {
1169 }
1171 /* True if PFX is the start of the 2-byte VEX prefix. */
1173 static bool
1175 {
1177 }
1179 /* True if PFX is the start of the 3-byte VEX prefix. */
1181 static bool
1183 {
1185 }
1187 /* Skip the legacy instruction prefixes in INSN.
1188 We assume INSN is properly sentineled so we don't have to worry
1189 about falling off the end of the buffer. */
1193 {
1195 {
1197 {
1213 }
1215 }
1218 }
1220 /* Return an integer register (other than RSP) that is unused as an input
1221 operand in INSN.
1222 In order to not require adding a rex prefix if the insn doesn't already
1223 have one, the result is restricted to RAX ... RDI, sans RSP.
1224 The register numbering of the result follows architecture ordering,
1225 e.g. RDI = 7. */
1227 static int
1229 {
1230 /* 1 bit for each reg */
1233 /* There can be at most 3 int regs used as inputs in an insn, and we have
1234 7 to choose from (RAX ... RDI, sans RSP).
1235 This allows us to take a conservative approach and keep things simple.
1236 E.g. By avoiding RAX, we don't have to specifically watch for opcodes
1237 that implicitly specify RAX. */
1239 /* Avoid RAX. */
1241 /* Similarily avoid RDX, implicit operand in divides. */
1243 /* Avoid RSP. */
1246 /* If the opcode is one byte long and there's no ModRM byte,
1247 assume the opcode specifies a register. */
1251 /* Mark used regs in the modrm/sib bytes. */
1253 {
1260 /* Assume the reg field of the modrm byte specifies a register. */
1264 {
1269 }
1270 else
1271 {
1273 }
1274 }
1279 /* Finally, find a free reg. */
1280 {
1284 {
1287 }
1289 /* We shouldn't get here. */
1291 }
1292 }
1294 /* Extract the details of INSN that we need. */
1296 static void
1298 {
1309 /* Skip legacy instruction prefixes. */
1312 /* Skip REX/VEX instruction encoding prefixes. */
1314 {
1317 }
1319 {
1320 /* Don't record the offset in this case because this prefix has
1321 no REX.B equivalent. */
1323 }
1325 {
1328 }
1333 {
1334 /* Two or three-byte opcode. */
1338 /* Check for three-byte opcode. */
1340 {
1353 }
1354 }
1355 else
1356 {
1357 /* One-byte opcode. */
1360 }
1363 {
1366 }
1367 }
1369 /* Update %rip-relative addressing in INSN.
1371 %rip-relative addressing only uses a 32-bit displacement.
1372 32 bits is not enough to be guaranteed to cover the distance between where
1373 the real instruction is and where its copy is.
1374 Convert the insn to use base+disp addressing.
1375 We set base = pc + insn_length so we can leave disp unchanged. */
1377 static void
1381 {
1384 CORE_ADDR rip_base;
1387 ULONGEST orig_value;
1389 /* Compute the rip-relative address. */
1394 /* We need a register to hold the address.
1395 Pick one not used in the insn.
1396 NOTE: arch_tmp_regno uses architecture ordering, e.g. RDI = 7. */
1400 /* Position of the not-B bit in the 3-byte VEX prefix (in byte 1). */
1403 /* REX.B should be unset (VEX.!B set) as we were using rip-relative
1404 addressing, but ensure it's unset (set for VEX) anyway, tmp_regno
1405 is not r8-r15. */
1407 {
1413 else
1415 }
1422 /* Convert the ModRM field to be base+disp. */
1432 }
1434 static void
1438 {
1442 {
1446 {
1447 /* The insn uses rip-relative addressing.
1448 Deal with it. */
1450 }
1451 }
1452 }
1454 displaced_step_copy_insn_closure_up
1458 {
1460 /* Extra space for sentinels so fixup_{riprel,displaced_copy} don't have to
1461 continually watch for running off the end of the buffer. */
1470 /* Set up the sentinel space so we don't have to worry about running
1471 off the end of the buffer. An excessive number of leading prefixes
1472 could otherwise cause this. */
1477 /* GDB may get control back after the insn after the syscall.
1478 Presumably this is a kernel bug.
1479 If this is a syscall, make sure there's a nop afterwards. */
1480 {
1485 }
1487 /* Modify the insn to cope with the address where it will be executed from.
1488 In particular, handle any rip-relative addressing. */
1497 /* This is a work around for a problem with g++ 4.8. */
1499 }
1501 static int
1503 {
1507 {
1508 /* jump near, absolute indirect (/4) */
1512 /* jump far, absolute indirect (/5) */
1515 }
1518 }
1520 /* Return non-zero if the instruction DETAILS is a jump, zero otherwise. */
1522 static int
1524 {
1527 /* jump short, relative. */
1531 /* jump near, relative. */
1536 }
1538 static int
1540 {
1544 {
1545 /* Call near, absolute indirect (/2) */
1549 /* Call far, absolute indirect (/3) */
1552 }
1555 }
1557 static int
1559 {
1560 /* NOTE: gcc can emit "repz ; ret". */
1564 {
1574 }
1575 }
1577 static int
1579 {
1585 /* call near, relative */
1590 }
1592 /* Return non-zero if INSN is a system call, and set *LENGTHP to its
1593 length in bytes. Otherwise, return zero. */
1595 static int
1597 {
1601 {
1604 }
1607 }
1609 /* Classify the instruction at ADDR using PRED.
1610 Throw an error if the memory can't be read. */
1612 static int
1615 {
1626 }
1628 /* The gdbarch insn_is_call method. */
1630 static int
1632 {
1634 }
1636 /* The gdbarch insn_is_ret method. */
1638 static int
1640 {
1642 }
1644 /* The gdbarch insn_is_jump method. */
1646 static int
1648 {
1650 }
1652 /* Fix up the state of registers and memory after having single-stepped
1653 a displaced instruction. */
1655 void
1660 {
1661 amd64_displaced_step_copy_insn_closure *dsc
1664 /* The offset we applied to the instruction's address. */
1673 /* If we used a tmp reg, restore it. */
1676 {
1680 }
1682 /* The list of issues to contend with here is taken from
1683 resume_execution in arch/x86/kernel/kprobes.c, Linux 2.6.28.
1684 Yay for Free Software! */
1686 /* Relocate the %rip back to the program's instruction stream,
1687 if necessary. */
1689 /* Except in the case of absolute or indirect jump or call
1690 instructions, or a return instruction, the new rip is relative to
1691 the displaced instruction; make it relative to the original insn.
1692 Well, signal handler returns don't need relocation either, but we use the
1693 value of %rip to recognize those; see below. */
1698 {
1703 /* A signal trampoline system call changes the %rip, resuming
1704 execution of the main program after the signal handler has
1705 returned. That makes them like 'return' instructions; we
1706 shouldn't relocate %rip.
1708 But most system calls don't, and we do need to relocate %rip.
1710 Our heuristic for distinguishing these cases: if stepping
1711 over the system call instruction left control directly after
1712 the instruction, the we relocate --- control almost certainly
1713 doesn't belong in the displaced copy. Otherwise, we assume
1714 the instruction has put control where it belongs, and leave
1715 it unrelocated. Goodness help us if there are PC-relative
1716 system calls. */
1718 /* GDB can get control back after the insn after the syscall.
1719 Presumably this is a kernel bug. Fixup ensures it's a nop, we
1720 add one to the length for it. */
1723 else
1724 {
1727 /* If we just stepped over a breakpoint insn, we don't backup
1728 the pc on purpose; this is to match behaviour without
1729 stepping. */
1736 }
1737 }
1739 /* If the instruction was PUSHFL, then the TF bit will be set in the
1740 pushed value, and should be cleared. We'll leave this for later,
1741 since GDB already messes up the TF flag when stepping over a
1742 pushfl. */
1744 /* If the instruction was a call, the return address now atop the
1745 stack is the address following the copied instruction. We need
1746 to make it the address following the original instruction. */
1748 {
1749 ULONGEST rsp;
1750 ULONGEST retaddr;
1761 }
1762 }
1764 /* If the instruction INSN uses RIP-relative addressing, return the
1765 offset into the raw INSN where the displacement to be adjusted is
1766 found. Returns 0 if the instruction doesn't use RIP-relative
1767 addressing. */
1769 static int
1771 {
1773 {
1777 {
1778 /* The displacement is found right after the ModRM byte. */
1780 }
1781 }
1784 }
1786 static void
1788 {
1791 }
1793 static void
1796 {
1799 /* Extra space for sentinels. */
1810 /* Set up the sentinel space so we don't have to worry about running
1811 off the end of the buffer. An excessive number of leading prefixes
1812 could otherwise cause this. */
1820 /* Skip legacy instruction prefixes. */
1823 /* Adjust calls with 32-bit relative addresses as push/jump, with
1824 the address pushed being the location where the original call in
1825 the user program would return to. */
1827 {
1829 CORE_ADDR ret_addr;
1832 /* Where "ret" in the original code will return to. */
1835 /* If pushing an address higher than or equal to 0x80000000,
1836 avoid 'pushq', as that sign extends its 32-bit operand, which
1837 would be incorrect. */
1839 {
1843 }
1844 else
1845 {
1865 }
1867 /* Push the push. */
1870 /* Convert the relative call to a relative jump. */
1873 /* Adjust the destination offset. */
1882 /* Write the adjusted jump into its displaced location. */
1885 }
1889 {
1890 /* Adjust jumps with 32-bit relative addresses. Calls are
1891 already handled above. */
1894 /* Adjust conditional jumps. */
1897 }
1900 {
1907 }
1909 /* Write the adjusted instruction into its displaced location. */
1911 }
1913 \f
1914 /* The maximum number of saved registers. This should include %rip. */
1915 #define AMD64_NUM_SAVED_REGS AMD64_NUM_GREGS
1917 struct amd64_frame_cache
1918 {
1919 /* Base address. */
1920 CORE_ADDR base;
1922 CORE_ADDR sp_offset;
1923 CORE_ADDR pc;
1925 /* Saved registers. */
1927 CORE_ADDR saved_sp;
1930 /* Do we have a frame? */
1932 };
1934 /* Initialize a frame cache. */
1936 static void
1938 {
1941 /* Base address. */
1947 /* Saved registers. We initialize these to -1 since zero is a valid
1948 offset (that's where %rbp is supposed to be stored).
1949 The values start out as being offsets, and are later converted to
1950 addresses (at which point -1 is interpreted as an address, still meaning
1951 "invalid"). */
1957 /* Frameless until proven otherwise. */
1959 }
1961 /* Allocate and initialize a frame cache. */
1965 {
1971 }
1973 /* GCC 4.4 and later, can put code in the prologue to realign the
1974 stack pointer. Check whether PC points to such code, and update
1975 CACHE accordingly. Return the first instruction after the code
1976 sequence or CURRENT_PC, whichever is smaller. If we don't
1977 recognize the code, return PC. */
1979 static CORE_ADDR
1982 {
1983 /* There are 2 code sequences to re-align stack before the frame
1984 gets set up:
1986 1. Use a caller-saved saved register:
1988 leaq 8(%rsp), %reg
1989 andq $-XXX, %rsp
1990 pushq -8(%reg)
1992 2. Use a callee-saved saved register:
1994 pushq %reg
1995 leaq 16(%rsp), %reg
1996 andq $-XXX, %rsp
1997 pushq -8(%reg)
1999 "andq $-XXX, %rsp" can be either 4 bytes or 7 bytes:
2001 0x48 0x83 0xe4 0xf0 andq $-16, %rsp
2002 0x48 0x81 0xe4 0x00 0xff 0xff 0xff andq $-256, %rsp
2003 */
2012 /* Check caller-saved saved register. The first instruction has
2013 to be "leaq 8(%rsp), %reg". */
2018 {
2019 /* MOD must be binary 10 and R/M must be binary 100. */
2023 /* REG has register number. */
2026 /* Check the REX.R bit. */
2031 }
2032 else
2033 {
2034 /* Check callee-saved saved register. The first instruction
2035 has to be "pushq %reg". */
2041 {
2042 /* Check the REX.B bit. */
2047 }
2048 else
2051 /* Get register. */
2054 offset++;
2056 /* The next instruction has to be "leaq 16(%rsp), %reg". */
2063 /* MOD must be binary 10 and R/M must be binary 100. */
2067 /* REG has register number. */
2070 /* Check the REX.R bit. */
2074 /* Registers in pushq and leaq have to be the same. */
2079 }
2081 /* Rigister can't be %rsp nor %rbp. */
2085 /* The next instruction has to be "andq $-XXX, %rsp". */
2094 /* The next instruction has to be "pushq -8(%reg)". */
2097 offset++;
2100 {
2101 /* Check the REX.B bit. */
2105 }
2106 else
2109 /* 8bit -8 is 0xf8. REG must be binary 110 and MOD must be binary
2110 01. */
2115 /* R/M has register. */
2118 /* Registers in leaq and pushq have to be the same. */
2126 }
2128 /* Similar to amd64_analyze_stack_align for x32. */
2130 static CORE_ADDR
2133 {
2134 /* There are 2 code sequences to re-align stack before the frame
2135 gets set up:
2137 1. Use a caller-saved saved register:
2139 leaq 8(%rsp), %reg
2140 andq $-XXX, %rsp
2141 pushq -8(%reg)
2143 or
2145 [addr32] leal 8(%rsp), %reg
2146 andl $-XXX, %esp
2147 [addr32] pushq -8(%reg)
2149 2. Use a callee-saved saved register:
2151 pushq %reg
2152 leaq 16(%rsp), %reg
2153 andq $-XXX, %rsp
2154 pushq -8(%reg)
2156 or
2158 pushq %reg
2159 [addr32] leal 16(%rsp), %reg
2160 andl $-XXX, %esp
2161 [addr32] pushq -8(%reg)
2163 "andq $-XXX, %rsp" can be either 4 bytes or 7 bytes:
2165 0x48 0x83 0xe4 0xf0 andq $-16, %rsp
2166 0x48 0x81 0xe4 0x00 0xff 0xff 0xff andq $-256, %rsp
2168 "andl $-XXX, %esp" can be either 3 bytes or 6 bytes:
2170 0x83 0xe4 0xf0 andl $-16, %esp
2171 0x81 0xe4 0x00 0xff 0xff 0xff andl $-256, %esp
2172 */
2181 /* Skip optional addr32 prefix. */
2184 /* Check caller-saved saved register. The first instruction has
2185 to be "leaq 8(%rsp), %reg" or "leal 8(%rsp), %reg". */
2190 {
2191 /* MOD must be binary 10 and R/M must be binary 100. */
2195 /* REG has register number. */
2198 /* Check the REX.R bit. */
2203 }
2204 else
2205 {
2206 /* Check callee-saved saved register. The first instruction
2207 has to be "pushq %reg". */
2211 {
2212 /* Check the REX.B bit. */
2217 }
2221 /* Get register. */
2224 offset++;
2226 /* Skip optional addr32 prefix. */
2228 offset++;
2230 /* The next instruction has to be "leaq 16(%rsp), %reg" or
2231 "leal 16(%rsp), %reg". */
2238 /* MOD must be binary 10 and R/M must be binary 100. */
2242 /* REG has register number. */
2245 /* Check the REX.R bit. */
2249 /* Registers in pushq and leaq have to be the same. */
2254 }
2256 /* Rigister can't be %rsp nor %rbp. */
2260 /* The next instruction may be "andq $-XXX, %rsp" or
2261 "andl $-XXX, %esp". */
2263 offset--;
2272 /* Skip optional addr32 prefix. */
2274 offset++;
2276 /* The next instruction has to be "pushq -8(%reg)". */
2279 offset++;
2282 {
2283 /* Check the REX.B bit. */
2287 }
2288 else
2291 /* 8bit -8 is 0xf8. REG must be binary 110 and MOD must be binary
2292 01. */
2297 /* R/M has register. */
2300 /* Registers in leaq and pushq have to be the same. */
2308 }
2310 /* Do a limited analysis of the prologue at PC and update CACHE
2311 accordingly. Bail out early if CURRENT_PC is reached. Return the
2312 address where the analysis stopped.
2314 We will handle only functions beginning with:
2316 pushq %rbp 0x55
2317 movq %rsp, %rbp 0x48 0x89 0xe5 (or 0x48 0x8b 0xec)
2319 or (for the X32 ABI):
2321 pushq %rbp 0x55
2322 movl %esp, %ebp 0x89 0xe5 (or 0x8b 0xec)
2324 The `endbr64` instruction can be found before these sequences, and will be
2325 skipped if found.
2327 Any function that doesn't start with one of these sequences will be
2328 assumed to have no prologue and thus no valid frame pointer in
2329 %rbp. */
2331 static CORE_ADDR
2335 {
2337 /* The `endbr64` instruction. */
2339 /* There are two variations of movq %rsp, %rbp. */
2342 /* Ditto for movl %esp, %ebp. */
2347 gdb_byte op;
2354 else
2359 /* Check for the `endbr64` instruction, skip it if found. */
2361 {
2368 }
2374 {
2375 /* Take into account that we've executed the `pushq %rbp' that
2376 starts this instruction sequence. */
2380 /* If that's all, return now. */
2386 /* Check for `movq %rsp, %rbp'. */
2389 {
2390 /* OK, we actually have a frame. */
2393 }
2395 /* For X32, also check for `movl %esp, %ebp'. */
2397 {
2400 {
2401 /* OK, we actually have a frame. */
2404 }
2405 }
2408 }
2411 }
2413 /* Work around false termination of prologue - GCC PR debug/48827.
2415 START_PC is the first instruction of a function, PC is its minimal already
2416 determined advanced address. Function returns PC if it has nothing to do.
2418 84 c0 test %al,%al
2419 74 23 je after
2420 <-- here is 0 lines advance - the false prologue end marker.
2421 0f 29 85 70 ff ff ff movaps %xmm0,-0x90(%rbp)
2422 0f 29 4d 80 movaps %xmm1,-0x80(%rbp)
2423 0f 29 55 90 movaps %xmm2,-0x70(%rbp)
2424 0f 29 5d a0 movaps %xmm3,-0x60(%rbp)
2425 0f 29 65 b0 movaps %xmm4,-0x50(%rbp)
2426 0f 29 6d c0 movaps %xmm5,-0x40(%rbp)
2427 0f 29 75 d0 movaps %xmm6,-0x30(%rbp)
2428 0f 29 7d e0 movaps %xmm7,-0x20(%rbp)
2429 after: */
2431 static CORE_ADDR
2433 {
2452 /* START_PC can be from overlayed memory, ignored here. */
2456 /* test %al,%al */
2459 /* je AFTER */
2465 {
2466 /* 0x0f 0x29 0b??000101 movaps %xmmreg?,-0x??(%rbp) */
2471 /* 0b01?????? */
2473 {
2474 /* 8-bit displacement. */
2476 }
2477 /* 0b10?????? */
2479 {
2480 /* 32-bit displacement. */
2482 }
2483 else
2485 }
2487 /* je AFTER */
2492 }
2494 /* Return PC of first real instruction. */
2496 static CORE_ADDR
2498 {
2500 CORE_ADDR pc;
2501 CORE_ADDR func_addr;
2504 {
2505 CORE_ADDR post_prologue_pc
2509 /* LLVM backend (Clang/Flang) always emits a line note before the
2510 prologue and another one after. We trust clang and newer Intel
2511 compilers to emit usable line notes. */
2518 }
2527 }
2528 \f
2530 /* Normal frames. */
2532 static void
2535 {
2544 cache);
2547 {
2548 /* We didn't find a valid frame. If we're at the start of a
2549 function, or somewhere half-way its prologue, the function's
2550 frame probably hasn't been fully setup yet. Try to
2551 reconstruct the base address for the stack frame by looking
2552 at the stack pointer. For truly "frameless" functions this
2553 might work too. */
2556 {
2557 /* Stack pointer has been saved. */
2561 /* We're halfway aligning the stack. */
2565 /* This will be added back below. */
2567 }
2568 else
2569 {
2573 }
2574 }
2575 else
2576 {
2579 }
2581 /* Now that we have the base address for the stack frame we can
2582 calculate the value of %rsp in the calling frame. */
2585 /* For normal frames, %rip is stored at 8(%rbp). If we don't have a
2586 frame we find it at the same offset from the reconstructed base
2587 address. If we're halfway aligning the stack, %rip is handled
2588 differently (see above). */
2592 /* Adjust all the saved registers such that they contain addresses
2593 instead of offsets. */
2599 }
2603 {
2612 try
2613 {
2615 }
2617 {
2620 }
2623 }
2625 static enum unwind_stop_reason
2628 {
2635 /* This marks the outermost frame. */
2640 }
2642 static void
2645 {
2652 {
2653 /* This marks the outermost frame. */
2655 }
2656 else
2658 }
2663 {
2678 }
2681 {
2683 NORMAL_FRAME,
2684 amd64_frame_unwind_stop_reason,
2685 amd64_frame_this_id,
2686 amd64_frame_prev_register,
2687 NULL,
2688 default_frame_sniffer
2689 };
2690 \f
2691 /* Generate a bytecode expression to get the value of the saved PC. */
2693 static void
2696 CORE_ADDR scope)
2697 {
2698 /* The following sequence assumes the traditional use of the base
2699 register. */
2705 }
2706 \f
2708 /* Signal trampolines. */
2710 /* FIXME: kettenis/20030419: Perhaps, we can unify the 32-bit and
2711 64-bit variants. This would require using identical frame caches
2712 on both platforms. */
2716 {
2721 CORE_ADDR addr;
2730 try
2731 {
2743 }
2745 {
2748 }
2752 }
2754 static enum unwind_stop_reason
2757 {
2765 }
2767 static void
2770 {
2777 {
2778 /* This marks the outermost frame. */
2780 }
2781 else
2783 }
2788 {
2789 /* Make sure we've initialized the cache. */
2793 }
2795 static int
2799 {
2803 /* We shouldn't even bother if we don't have a sigcontext_addr
2804 handler. */
2809 {
2812 }
2815 {
2821 }
2824 }
2827 {
2829 SIGTRAMP_FRAME,
2830 amd64_sigtramp_frame_unwind_stop_reason,
2831 amd64_sigtramp_frame_this_id,
2832 amd64_sigtramp_frame_prev_register,
2833 NULL,
2834 amd64_sigtramp_frame_sniffer
2835 };
2836 \f
2838 static CORE_ADDR
2840 {
2845 }
2848 {
2850 amd64_frame_base_address,
2851 amd64_frame_base_address,
2852 amd64_frame_base_address
2853 };
2855 /* Implement core of the stack_frame_destroyed_p gdbarch method. */
2857 static int
2859 {
2860 gdb_byte insn;
2864 /* PC is pointing at the next instruction to be executed. If it is
2865 equal to the epilogue start, it means we're right before it starts,
2866 so the stack is still valid. */
2877 }
2879 /* Normal frames, but in a function epilogue. */
2881 /* Implement the stack_frame_destroyed_p gdbarch method.
2883 The epilogue is defined here as the 'ret' instruction, which will
2884 follow any instruction such as 'leave' or 'pop %ebp' that destroys
2885 the function's stack frame. */
2887 static int
2889 {
2897 }
2899 static int
2903 {
2908 /* We're not in the inner frame, so assume we're not in an epilogue. */
2911 bool unwind_valid_p
2914 {
2916 /* Don't override the symtab unwinders, skip
2917 "amd64 epilogue override". */
2919 }
2920 else
2921 {
2923 /* "amd64 epilogue override" unwinder already ran, skip
2924 "amd64 epilogue". */
2926 }
2928 /* Check whether we're in an epilogue. */
2930 }
2932 static int
2936 {
2939 }
2941 static int
2945 {
2948 }
2952 {
2964 try
2965 {
2966 /* Cache base will be %rsp plus cache->sp_offset (-8). */
2971 /* Cache pc will be the frame func. */
2974 /* The previous value of %rsp is cache->base plus 16. */
2977 /* The saved %rip will be at cache->base plus 8. */
2981 }
2983 {
2986 }
2989 }
2991 static enum unwind_stop_reason
2994 {
3002 }
3004 static void
3008 {
3010 this_cache);
3014 else
3016 }
3019 {
3021 NORMAL_FRAME,
3022 amd64_epilogue_frame_unwind_stop_reason,
3023 amd64_epilogue_frame_this_id,
3024 amd64_frame_prev_register,
3025 NULL,
3026 amd64_epilogue_override_frame_sniffer
3027 };
3030 {
3032 NORMAL_FRAME,
3033 amd64_epilogue_frame_unwind_stop_reason,
3034 amd64_epilogue_frame_this_id,
3035 amd64_frame_prev_register,
3036 NULL,
3037 amd64_epilogue_frame_sniffer
3038 };
3040 static struct frame_id
3042 {
3043 CORE_ADDR fp;
3048 }
3050 /* 16 byte align the SP per frame requirements. */
3052 static CORE_ADDR
3054 {
3056 }
3057 \f
3059 /* Supply register REGNUM from the buffer specified by FPREGS and LEN
3060 in the floating-point register set REGSET to register cache
3061 REGCACHE. If REGNUM is -1, do this for all registers in REGSET. */
3063 static void
3066 {
3072 }
3074 /* Collect register REGNUM from the register cache REGCACHE and store
3075 it in the buffer specified by FPREGS and LEN as described by the
3076 floating-point register set REGSET. If REGNUM is -1, do this for
3077 all registers in REGSET. */
3079 static void
3083 {
3089 }
3092 {
3094 };
3095 \f
3097 /* Figure out where the longjmp will land. Slurp the jmp_buf out of
3098 %rdi. We expect its value to be a pointer to the jmp_buf structure
3099 from which we extract the address that we will land at. This
3100 address is copied into PC. This routine returns non-zero on
3101 success. */
3103 static int
3105 {
3107 CORE_ADDR jb_addr;
3113 /* If JB_PC_OFFSET is -1, we have no way to find out where the
3114 longjmp will land. */
3119 jb_addr= extract_typed_address
3127 }
3130 {
3137 };
3139 /* Implement the "in_indirect_branch_thunk" gdbarch function. */
3141 static bool
3143 {
3145 AMD64_RAX_REGNUM,
3146 AMD64_RIP_REGNUM);
3147 }
3149 void
3152 {
3158 NULL };
3160 NULL };
3162 /* AMD64 generally uses `fxsave' instead of `fsave' for saving its
3163 floating-point registers. */
3175 {
3189 }
3192 {
3196 }
3199 {
3203 }
3206 {
3208 }
3211 {
3215 }
3220 /* Avoid wiring in the MMX registers for now. */
3224 amd64_pseudo_register_read_value);
3227 amd64_ax_pseudo_register_collect);
3231 /* AMD64 has an FPU and 16 SSE registers. */
3235 /* This is what all the fuss is about. */
3240 /* In contrast to the i386, on AMD64 a `long double' actually takes
3241 up 128 bits, even though it's still based on the i387 extended
3242 floating-point format which has only 80 significant bits. */
3247 /* Register numbers of various important registers. */
3253 /* The "default" register numbering scheme for AMD64 is referred to
3254 as the "DWARF Register Number Mapping" in the System V psABI.
3255 The preferred debugging format for all known AMD64 targets is
3256 actually DWARF2, and GCC doesn't seem to support DWARF (that is
3257 DWARF-1), but we provide the same mapping just in case. This
3258 mapping is also used for stabs, which GCC does support. */
3262 /* We don't override SDB_REG_RO_REGNUM, since COFF doesn't seem to
3263 be in use on any of the supported AMD64 targets. */
3265 /* Call dummy code. */
3282 /* Hook the function epilogue frame unwinder. This unwinder is
3283 appended to the list first, so that it supersedes the other
3284 unwinders in function epilogues. */
3289 /* Hook the prologue-based frame unwinders. */
3302 /* SystemTap variables and functions. */
3306 stap_register_indirection_prefixes);
3308 stap_register_indirection_suffixes);
3310 i386_stap_is_single_operand);
3312 i386_stap_parse_special_token);
3318 amd64_in_indirect_branch_thunk);
3321 }
3323 /* Initialize ARCH for x86-64, no osabi. */
3325 static void
3327 {
3330 }
3334 {
3338 {
3344 }
3347 }
3349 void
3352 {
3362 }
3364 /* Initialize ARCH for x64-32, no osabi. */
3366 static void
3368 {
3371 }
3373 /* Return the target description for a specified XSAVE feature mask. */
3377 {
3390 segments);
3393 }
3396 void
3398 {
3400 amd64_none_init_abi);
3402 amd64_x32_none_init_abi);
3403 }
3404 \f
3406 /* The 64-bit FXSAVE format differs from the 32-bit format in the
3407 sense that the instruction pointer and data pointer are simply
3408 64-bit offsets into the code segment and the data segment instead
3409 of a selector offset pair. The functions below store the upper 32
3410 bits of these pointers (instead of just the 16-bits of the segment
3411 selector). */
3413 /* Fill register REGNUM in REGCACHE with the appropriate
3414 floating-point or SSE register value from *FXSAVE. If REGNUM is
3415 -1, do this for all registers. This function masks off any of the
3416 reserved bits in *FXSAVE. */
3418 void
3421 {
3429 {
3436 }
3437 }
3439 /* Similar to amd64_supply_fxsave, but use XSAVE extended state. */
3441 void
3444 {
3452 {
3454 ULONGEST clear_bv;
3458 /* If the FISEG and FOSEG registers have not been initialised yet
3459 (their CLEAR_BV bit is set) then their default values of zero will
3460 have already been setup by I387_SUPPLY_XSAVE. */
3462 {
3467 }
3468 }
3469 }
3471 /* Fill register REGNUM (if it is a floating-point or SSE register) in
3472 *FXSAVE with the value from REGCACHE. If REGNUM is -1, do this for
3473 all registers. This function doesn't touch any of the reserved
3474 bits in *FXSAVE. */
3476 void
3479 {
3487 {
3492 }
3493 }
3495 /* Similar to amd64_collect_fxsave, but use XSAVE extended state. */
3497 void
3500 {
3508 {
3515 }
3516 }