| blob | 339e849a9716806f0763f9645c7814de032cbdc7 |
1 /* tc-i386.c -- Assemble code for the Intel 80386
2 Copyright (C) 1989-2024 Free Software Foundation, Inc.
4 This file is part of GAS, the GNU Assembler.
6 GAS is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3, or (at your option)
9 any later version.
11 GAS is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with GAS; see the file COPYING. If not, write to the Free
18 Software Foundation, 51 Franklin Street - Fifth Floor, Boston, MA
19 02110-1301, USA. */
21 /* Intel 80386 machine specific gas.
22 Written by Eliot Dresselhaus (eliot@mgm.mit.edu).
23 x86_64 support by Jan Hubicka (jh@suse.cz)
24 VIA PadLock support by Michal Ludvig (mludvig@suse.cz)
25 Bugs & suggestions are completely welcome. This is free software.
26 Please help us make it better. */
39 #include <limits.h>
41 #ifndef INFER_ADDR_PREFIX
42 #define INFER_ADDR_PREFIX 1
43 #endif
45 #ifndef DEFAULT_ARCH
47 #endif
49 #ifndef INLINE
50 #if __GNUC__ >= 2
51 #define INLINE __inline__
52 #else
53 #define INLINE
54 #endif
55 #endif
57 /* Prefixes will be emitted in the order defined below.
58 WAIT_PREFIX must be the first prefix since FWAIT is really is an
59 instruction, and so must come before any prefixes.
60 The preferred prefix order is SEG_PREFIX, ADDR_PREFIX, DATA_PREFIX,
61 REP_PREFIX/HLE_PREFIX, LOCK_PREFIX. */
62 #define WAIT_PREFIX 0
63 #define SEG_PREFIX 1
64 #define ADDR_PREFIX 2
65 #define DATA_PREFIX 3
66 #define REP_PREFIX 4
67 #define HLE_PREFIX REP_PREFIX
68 #define BND_PREFIX REP_PREFIX
69 #define LOCK_PREFIX 5
73 /* we define the syntax here (modulo base,index,scale syntax) */
78 /* these are the instruction mnemonic suffixes in AT&T syntax or
79 memory operand size in Intel syntax. */
88 #define OPERAND_TYPE_NONE { .bitfield = { .class = ClassNone } }
90 /* This matches the C -> StaticRounding alias in the opcode table. */
91 #define commutative staticrounding
93 /*
94 'templates' is for grouping together 'template' structures for opcodes
95 of the same name. This is only used for storing the insns in the grand
96 ole hash table of insns.
97 The templates themselves start at START and range up to (but not including)
98 END.
99 */
101 {
104 }
105 templates;
107 /* 386 operand encoding bytes: see 386 book for details of this. */
109 {
113 }
114 modrm_byte;
116 /* x86-64 extension prefix. */
119 /* 386 opcode byte to code indirect addressing. */
121 {
125 }
126 sib_byte;
128 /* x86 arch names, types and features */
130 {
138 }
139 arch_entry;
151 #ifdef TE_PE
154 #endif
186 #ifdef OBJ_AOUT
188 #endif
189 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
192 /* GNU_PROPERTY_X86_ISA_1_USED. */
194 /* GNU_PROPERTY_X86_FEATURE_2_USED. */
196 /* Generate x86 used ISA and feature properties. */
198 #endif
202 /* parse_register() returns this when a register alias cannot be used. */
213 /* VEX prefix. */
215 {
216 /* VEX prefix is either 2 byte or 3 byte. EVEX is 4 byte. */
219 /* Destination or source register specifier. */
223 /* 'md_assemble ()' gathers together information and puts it into a
224 i386_insn. */
226 union i386_op
227 {
231 };
233 enum i386_error
234 {
236 operand_size_mismatch,
237 operand_type_mismatch,
238 register_type_mismatch,
239 number_of_operands_mismatch,
240 invalid_instruction_suffix,
241 bad_imm4,
242 unsupported_with_intel_mnemonic,
243 unsupported_syntax,
244 unsupported_EGPR_for_addressing,
245 unsupported_nf,
246 unsupported,
247 unsupported_on_arch,
248 unsupported_64bit,
249 no_vex_encoding,
250 no_evex_encoding,
251 invalid_sib_address,
252 invalid_vsib_address,
253 invalid_vector_register_set,
254 invalid_tmm_register_set,
255 invalid_dest_and_src_register_set,
256 invalid_dest_register_set,
257 invalid_pseudo_prefix,
258 unsupported_vector_index_register,
259 unsupported_broadcast,
260 broadcast_needed,
261 unsupported_masking,
262 mask_not_on_destination,
263 no_default_mask,
264 unsupported_rc_sae,
265 unsupported_vector_size,
266 unsupported_rsp_register,
267 internal_error,
268 };
270 struct _i386_insn
271 {
272 /* TM holds the template for the insn were currently assembling. */
273 insn_template tm;
275 /* SUFFIX holds the instruction size suffix for byte, word, dword
276 or qword, if given. */
279 /* OPCODE_LENGTH holds the number of base opcode bytes. */
282 /* OPERANDS gives the number of given operands. */
285 /* REG_OPERANDS, DISP_OPERANDS, MEM_OPERANDS, IMM_OPERANDS give the number
286 of given register, displacement, memory operands and immediate
287 operands. */
290 /* TYPES [i] is the type (see above #defines) which tells us how to
291 use OP[i] for the corresponding operand. */
294 /* Displacement expression, immediate expression, or register for each
295 operand. */
298 /* Flags for operands. */
300 #define Operand_PCrel 1
301 #define Operand_Mem 2
304 /* Relocation type for operand */
307 /* BASE_REG, INDEX_REG, and LOG2_SCALE_FACTOR are used to encode
308 the base index byte below. */
313 /* SEG gives the seg_entries of this insn. They are zero unless
314 explicit segment overrides are given. */
317 /* PREFIX holds all the given prefix opcodes (usually null).
318 PREFIXES is the number of prefix opcodes. */
322 /* .insn allows for reserved opcode spaces. */
325 /* .insn also allows (requires) specifying immediate size. */
328 /* Register is in low 3 bits of opcode. */
331 /* The operand to a branch insn indicates an absolute branch. */
334 /* The operand to a branch insn indicates a far branch. */
337 /* There is a memory operand of (%dx) which should be only used
338 with input/output instructions. */
341 /* Extended states. */
342 enum
343 {
344 /* Use MMX state. */
346 /* Use XMM state. */
348 /* Use YMM state. */
350 /* Use ZMM state. */
352 /* Use TMM state. */
354 /* Use MASK state. */
358 /* Has GOTPC or TLS relocation. */
361 /* RM and SIB are the modrm byte and the sib byte where the
362 addressing modes of this insn are encoded. */
363 modrm_byte rm;
364 rex_byte rex;
365 rex_byte vrex;
366 rex_byte rex2;
367 sib_byte sib;
368 vex_prefix vex;
370 /* Masking attributes.
372 The struct describes masking, applied to OPERAND in the instruction.
373 REG is a pointer to the corresponding mask register. ZEROING tells
374 whether merging or zeroing mask is used. */
375 struct Mask_Operation
376 {
379 /* The operand where this operation is associated. */
383 /* Rounding control and SAE attributes. */
384 struct RC_Operation
385 {
386 enum rc_type
387 {
389 rne,
390 rd,
391 ru,
392 rz,
393 saeonly
395 /* In Intel syntax the operand modifier form is supposed to be used, but
396 we continue to accept the immediate forms as well. */
400 /* Broadcasting attributes.
402 The struct describes broadcasting, applied to OPERAND. TYPE is
403 expresses the broadcast factor. */
404 struct Broadcast_Operation
405 {
406 /* Type of broadcast: {1to2}, {1to4}, {1to8}, {1to16} or {1to32}. */
409 /* Index of broadcasted operand. */
412 /* Number of bytes to broadcast. */
416 /* Compressed disp8*N attribute. */
419 /* Prefer load or store in encoding. */
420 enum
421 {
423 dir_encoding_load,
424 dir_encoding_store,
425 dir_encoding_swap
428 /* Prefer 8bit, 16bit, 32bit displacement in encoding. */
429 enum
430 {
432 disp_encoding_8bit,
433 disp_encoding_16bit,
434 disp_encoding_32bit
437 /* Prefer the REX byte in encoding. */
440 /* Prefer the REX2 prefix in encoding. */
443 /* No CSPAZO flags update. */
446 /* Disable instruction size optimization. */
449 /* How to encode instructions. */
450 enum
451 {
453 encoding_vex,
454 encoding_vex3,
456 encoding_evex,
457 encoding_evex512,
458 encoding_error
461 /* REP prefix. */
464 /* HLE prefix. */
467 /* Have BND prefix. */
470 /* Have NOTRACK prefix. */
473 /* Error message. */
475 };
479 /* Link RC type with corresponding string, that'll be looked for in
480 asm. */
481 struct RC_name
482 {
486 };
489 {
495 };
497 /* To be indexed by segment register number. */
499 ES_PREFIX_OPCODE,
500 CS_PREFIX_OPCODE,
501 SS_PREFIX_OPCODE,
502 DS_PREFIX_OPCODE,
503 FS_PREFIX_OPCODE,
504 GS_PREFIX_OPCODE
505 };
507 /* List of chars besides those in app.c:symbol_chars that can start an
508 operand. Used to prevent the scrubber eating vital white-space. */
510 #ifdef LEX_AT
511 "@"
512 #endif
513 #ifdef LEX_QM
514 "?"
515 #endif
516 ;
518 #if ((defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)) \
519 && !defined (TE_GNU) \
520 && !defined (TE_LINUX) \
521 && !defined (TE_Haiku) \
522 && !defined (TE_FreeBSD) \
523 && !defined (TE_DragonFly) \
524 && !defined (TE_NetBSD))
525 /* This array holds the chars that always start a comment. If the
526 pre-processor is disabled, these aren't very useful. The option
527 --divide will remove '/' from this list. */
529 #define SVR4_COMMENT_CHARS 1
532 #else
535 #endif
537 /* This array holds the chars that only start a comment at the beginning of
538 a line. If the line seems to have the form '# 123 filename'
539 .line and .file directives will appear in the pre-processed output.
540 Note that input_file.c hand checks for '#' at the beginning of the
541 first line of the input file. This is because the compiler outputs
542 #NO_APP at the beginning of its output.
543 Also note that comments started like this one will always work if
544 '/' isn't otherwise defined. */
549 /* Chars that can be used to separate mant from exp in floating point
550 nums. */
553 /* Chars that mean this number is a floating point constant
554 As in 0f12.456
555 or 0d1.2345e12. */
558 /* Tables for lexical analysis. */
563 /* Lexical macros. */
564 #define is_operand_char(x) (operand_chars[(unsigned char) x])
565 #define is_register_char(x) (register_chars[(unsigned char) x])
568 /* All non-digit non-letter characters that may occur in an operand and
569 which aren't already in extra_symbol_chars[]. */
572 /* md_assemble() always leaves the strings it's passed unaltered. To
573 effect this we maintain a stack of saved characters that we've smashed
574 with '\0's (indicating end of strings for various sub-fields of the
575 assembler instruction). */
578 #define END_STRING_AND_SAVE(s) \
580 #define RESTORE_END_STRING(s) \
581 do { *(s) = *--save_stack_p; } while (0)
583 /* The instruction we're assembling. */
586 /* Possible templates for current insn. */
589 /* Per instruction expressionS buffers: max displacements & immediates. */
593 /* Current operand we are working on. */
596 /* Are we processing a .insn directive? */
597 #define dot_insn() (i.tm.mnem_off == MN__insn)
604 /* __tls_get_addr/___tls_get_addr symbol for TLS. */
607 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
609 /* The ELF ABI to use. */
610 enum x86_elf_abi
611 {
612 I386_ABI,
613 X86_64_ABI,
614 X86_64_X32_ABI
615 };
618 #endif
620 #if defined (TE_PE) || defined (TE_PEP)
621 /* Use big object file format. */
623 #endif
625 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
626 /* 1 if generating code for a shared library. */
630 /* The other CFA base register for SFrame stack trace info. */
634 #endif
636 /* 1 for intel syntax,
637 0 if att syntax. */
640 static enum x86_64_isa
641 {
643 intel64 /* Intel64 ISA. */
646 /* 1 for intel mnemonic,
647 0 if att mnemonic. */
650 /* 1 if pseudo registers are permitted. */
653 /* 1 if register prefix % not required. */
656 /* 1 if the assembler should add BND prefix for all control-transferring
657 instructions supporting it, even if this prefix wasn't specified
658 explicitly. */
661 /* 1 if pseudo index register, eiz/riz, is allowed . */
664 /* 1 if the assembler should ignore LOCK prefix, even if it was
665 specified explicitly. */
668 /* 1 if the assembler should encode lfence, mfence, and sfence as
669 "lock addl $0, (%{re}sp)". */
672 /* 1 if lfence should be inserted after every load. */
675 /* Non-zero if lfence should be inserted before indirect branch. */
676 static enum lfence_before_indirect_branch_kind
677 {
679 lfence_branch_register,
680 lfence_branch_memory,
681 lfence_branch_all
682 }
683 lfence_before_indirect_branch;
685 /* Non-zero if lfence should be inserted before ret. */
686 static enum lfence_before_ret_kind
687 {
689 lfence_before_ret_not,
690 lfence_before_ret_or,
691 lfence_before_ret_shl
692 }
693 lfence_before_ret;
695 /* 1 if the assembler should generate relax relocations. */
697 static int generate_relax_relocations
700 static enum check_kind
701 {
703 check_warning,
704 check_error
705 }
708 /* Non-zero if branches should be aligned within power of 2 boundary. */
711 /* Types of branches to align. */
712 enum align_branch_kind
713 {
721 };
723 /* Type bits of branches to align. */
724 enum align_branch_bit
725 {
732 };
735 | align_branch_fused_bit
738 /* Types of condition jump used by macro-fusion. */
739 enum mf_jcc_kind
740 {
749 };
751 /* Types of compare flag-modifying insntructions used by macro-fusion. */
752 enum mf_cmp_kind
753 {
756 mf_cmp_incdec /* inc/dec */
757 };
759 /* The maximum padding size for fused jcc. CMP like instruction can
760 be 9 bytes and jcc can be 6 bytes. Leave room just in case for
761 prefixes. */
762 #define MAX_FUSED_JCC_PADDING_SIZE 20
764 /* The maximum number of prefixes added for an instruction. */
767 /* Optimization:
768 1. Clear the REX_W bit with register operand if possible.
769 2. Above plus use 128bit vector instruction to clear the full vector
770 register.
771 */
774 /* Optimization:
775 1. Clear the REX_W bit with register operand if possible.
776 2. Above plus use 128bit vector instruction to clear the full vector
777 register.
778 3. Above plus optimize "test{q,l,w} $imm8,%r{64,32,16}" to
779 "testb $imm7,%r8".
780 */
783 /* Register prefix used for error message. */
786 /* Used in 16 bit gcc mode to add an l suffix to call, ret, enter,
787 leave, push, and pop instructions so that gcc has the same stack
788 frame as in 32 bit mode. */
791 /* Non-zero to optimize code alignment. */
794 /* Non-zero to quieten some warnings. */
797 /* Guard to avoid repeated warnings about non-16-bit code on 16-bit CPUs. */
800 /* CPU name. */
804 /* CPU feature flags. */
807 /* ISA extensions available in 64-bit mode only. */
810 /* If we have selected a cpu we are generating instructions for. */
813 /* Cpu we are generating instructions for. */
816 /* CPU instruction set architecture used. */
819 /* CPU feature flags of instruction set architecture used. */
820 i386_cpu_flags cpu_arch_isa_flags;
822 /* If set, conditional jumps are not automatically promoted to handle
823 larger than a byte offset. */
826 /* This will be set from an expression parser hook if there's any
827 applicable operator involved in an expression. */
829 expr_operator_none,
830 expr_operator_present,
831 expr_large_value,
834 /* Encode SSE instructions with VEX prefix. */
837 /* Encode aligned vector move as unaligned vector move. */
840 /* Maximum permitted vector size. */
841 #define VSZ128 0
842 #define VSZ256 1
843 #define VSZ512 2
844 #define VSZ_DEFAULT VSZ512
847 /* Encode scalar AVX instructions with specific vector length. */
848 static enum
849 {
851 vex256
854 /* Encode VEX WIG instructions with specific vex.w. */
855 static enum
856 {
858 vexw1
861 /* Encode scalar EVEX LIG instructions with specific vector length. */
862 static enum
863 {
865 evexl256,
866 evexl512
869 /* Encode EVEX WIG instructions with specific evex.w. */
870 static enum
871 {
873 evexw1
876 /* Value to encode in EVEX RC bits, for SAE-only instructions. */
879 /* Pre-defined "_GLOBAL_OFFSET_TABLE_". */
882 /* The dwarf2 return column, adjusted for 32 or 64 bit. */
885 /* The dwarf2 data alignment, adjusted for 32 or 64 bit. */
888 /* Interface to relax_segment.
889 There are 3 major relax states for 386 jump insns because the
890 different types of jumps add different sizes to frags when we're
891 figuring out what sort of jump to choose to reach a given label.
893 BRANCH_PADDING, BRANCH_PREFIX and FUSED_JCC_PADDING are used to align
894 branches which are handled by md_estimate_size_before_relax() and
895 i386_generic_table_relax_frag(). */
897 /* Types. */
898 #define UNCOND_JUMP 0
899 #define COND_JUMP 1
900 #define COND_JUMP86 2
901 #define BRANCH_PADDING 3
902 #define BRANCH_PREFIX 4
903 #define FUSED_JCC_PADDING 5
905 /* Sizes. */
906 #define CODE16 1
907 #define SMALL 0
908 #define SMALL16 (SMALL | CODE16)
909 #define BIG 2
910 #define BIG16 (BIG | CODE16)
912 #ifndef INLINE
913 #ifdef __GNUC__
914 #define INLINE __inline__
915 #else
916 #define INLINE
917 #endif
918 #endif
920 #define ENCODE_RELAX_STATE(type, size) \
921 ((relax_substateT) (((type) << 2) | (size)))
922 #define TYPE_FROM_RELAX_STATE(s) \
923 ((s) >> 2)
924 #define DISP_SIZE_FROM_RELAX_STATE(s) \
925 ((((s) & 3) == BIG ? 4 : (((s) & 3) == BIG16 ? 2 : 1)))
927 /* This table is used by relax_frag to promote short jumps to long
928 ones where necessary. SMALL (short) jumps may be promoted to BIG
929 (32 bit long) ones, and SMALL16 jumps to BIG16 (16 bit long). We
930 don't allow a short jump in a 32 bit code segment to be promoted to
931 a 16 bit offset jump because it's slower (requires data size
932 prefix), and doesn't work, unless the destination is in the bottom
933 64k of the code segment (The top 16 bits of eip are zeroed). */
936 {
937 /* The fields are:
938 1) most positive reach of this state,
939 2) most negative reach of this state,
940 3) how many bytes this mode will have in the variable part of the frag
941 4) which index into the table to try if we can't fit into this one. */
943 /* UNCOND_JUMP states. */
946 /* dword jmp adds 4 bytes to frag:
947 0 extra opcode bytes, 4 displacement bytes. */
949 /* word jmp adds 2 byte2 to frag:
950 0 extra opcode bytes, 2 displacement bytes. */
953 /* COND_JUMP states. */
956 /* dword conditionals adds 5 bytes to frag:
957 1 extra opcode byte, 4 displacement bytes. */
959 /* word conditionals add 3 bytes to frag:
960 1 extra opcode byte, 2 displacement bytes. */
963 /* COND_JUMP86 states. */
966 /* dword conditionals adds 5 bytes to frag:
967 1 extra opcode byte, 4 displacement bytes. */
969 /* word conditionals add 4 bytes to frag:
970 1 displacement byte and a 3 byte long branch insn. */
972 };
974 #define ARCH(n, t, f, s) \
975 { STRING_COMMA_LEN (#n), s, PROCESSOR_ ## t, vsz_none, CPU_ ## f ## _FLAGS, \
976 CPU_NONE_FLAGS }
977 #define SUBARCH(n, e, d, s) \
978 { STRING_COMMA_LEN (#n), s, PROCESSOR_NONE, vsz_none, CPU_ ## e ## _FLAGS, \
979 CPU_ ## d ## _FLAGS }
980 #define VECARCH(n, e, d, v) \
981 { STRING_COMMA_LEN (#n), false, PROCESSOR_NONE, vsz_ ## v, \
982 CPU_ ## e ## _FLAGS, CPU_ ## d ## _FLAGS }
985 {
986 /* Do not replace the first two entries - i386_target_format() and
987 set_cpu_arch() rely on them being there in this order. */
1169 };
1171 #undef SUBARCH
1172 #undef ARCH
1174 #ifdef I386COFF
1175 /* Like s_lcomm_internal in gas/read.c but the alignment string
1176 is allowed to be optional. */
1180 {
1187 {
1192 }
1193 else
1194 {
1201 else
1203 }
1207 }
1209 static void
1211 {
1213 }
1214 #endif
1217 {
1218 #if !defined(OBJ_AOUT) && !defined(USE_ALIGN_PTWO)
1220 #else
1222 #endif
1224 #ifdef OBJ_AOUT
1226 #endif
1227 #ifdef I386COFF
1229 #endif
1243 #ifdef BFD64
1245 #endif
1254 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
1256 #else
1260 #endif
1261 #ifdef TE_PE
1264 #endif
1266 };
1268 /* For interface with expression (). */
1271 /* Hash table for instruction mnemonic lookup. */
1274 /* Hash table for register lookup. */
1276 \f
1277 /* Various efficient no-op patterns for aligning code labels.
1278 Note: Don't try to assemble the instructions in the comments.
1279 0L and 0w are not legal. */
1318 /* 32-bit NOPs patterns. */
1321 };
1322 /* 64-bit NOPs patterns. */
1325 };
1326 /* 16-bit NOPs patterns. */
1329 };
1330 /* nopl (%[re]ax) */
1333 /* nopl 0(%[re]ax) */
1336 /* nopl 0(%[re]ax,%[re]ax,1) */
1337 #define alt_5 (alt_6 + 1)
1338 /* nopw 0(%[re]ax,%[re]ax,1) */
1341 /* nopl 0L(%[re]ax) */
1344 /* nopl 0L(%[re]ax,%[re]ax,1) */
1345 #define alt_8 (alt_9 + 1)
1346 /* nopw 0L(%[re]ax,%[re]ax,1) */
1349 /* nopw %cs:0L(%[re]ax,%[re]ax,1) */
1350 #define alt_10 (alt_11 + 1)
1351 /* data16 nopw %cs:0L(%eax,%eax,1) */
1354 /* 32-bit and 64-bit NOPs patterns. */
1358 };
1361 /* data16 cs nopq 0L(%rax,%rax,1) */
1362 #define alt64_11 (alt64_15 + 4)
1363 /* data16 data16 cs nopq 0L(%rax,%rax,1) */
1364 #define alt64_12 (alt64_15 + 3)
1365 /* data16 data16 data16 cs nopq 0L(%rax,%rax,1) */
1366 #define alt64_13 (alt64_15 + 2)
1367 /* data16 data16 data16 data16 cs nopq 0L(%rax,%rax,1) */
1368 #define alt64_14 (alt64_15 + 1)
1369 /* data16 data16 data16 data16 data16 cs nopq 0L(%rax,%rax,1) */
1373 /* Long 64-bit NOPs patterns. */
1377 };
1379 /* Genenerate COUNT bytes of NOPs to WHERE from PATT with the maximum
1380 size of a single NOP instruction MAX_SINGLE_NOP_SIZE. */
1382 static void
1386 {
1387 /* Place the longer NOP first. */
1393 {
1395 max_single_nop_size);
1397 }
1407 {
1410 }
1411 }
1415 {
1417 }
1421 {
1423 }
1425 /* Genenerate COUNT bytes of NOPs to WHERE with the maximum size of a
1426 single NOP instruction LIMIT. */
1428 void
1430 {
1433 /* Maximum number of NOPs before switching to jump over NOPs. */
1437 {
1442 /* Allow NOP padding for jumps and calls. */
1446 /* Fall through. */
1449 }
1451 /* We need to decide which NOP sequence to use for 32bit and
1452 64bit. When -mtune= is used:
1454 1. For PROCESSOR_I?86, PROCESSOR_PENTIUM, PROCESSOR_IAMCU, and
1455 PROCESSOR_GENERIC32, f32_patt will be used.
1456 2. For the rest, alt_patt will be used.
1458 When -mtune= isn't used, alt_patt will be used if
1459 cpu_arch_isa_flags has CpuNop. Otherwise, f32_patt/f64_patt will
1460 be used.
1462 When -march= or .arch is used, we can't use anything beyond
1463 cpu_arch_isa_flags. */
1466 {
1469 /* Limit number of NOPs to 2 in 16-bit mode. */
1471 }
1472 else
1473 {
1476 {
1477 /* PROCESSOR_UNKNOWN means that all ISAs may be used, unless
1478 explicitly disabled. */
1480 {
1482 /* We use cpu_arch_isa_flags to check if we SHOULD
1483 optimize with nops. */
1492 {
1495 else
1497 }
1524 }
1525 }
1526 else
1527 {
1529 {
1531 /* When cpu_arch_isa is set, cpu_arch_tune shouldn't be
1532 PROCESSOR_UNKNOWN. */
1537 /* We use cpu_arch_isa_flags to check if we CAN optimize
1538 with nops. */
1545 }
1546 }
1549 {
1552 /* Limit number of NOPs to 2 for older processors. */
1554 }
1555 else
1556 {
1560 /* Limit number of NOPs to 7 for newer processors. */
1562 }
1563 }
1569 {
1570 /* Output NOPs for .nop directive. */
1572 {
1578 }
1579 }
1583 /* Emit a plain NOP first when the last thing we saw may not have been
1584 a proper instruction (e.g. a stand-alone prefix or .byte). */
1586 {
1589 }
1592 {
1593 /* Generate jump over NOPs. */
1596 {
1597 /* Use "jmp disp8" if possible. */
1602 }
1603 else
1604 {
1608 {
1612 }
1613 else
1614 {
1617 }
1621 {
1625 }
1629 }
1630 }
1632 /* Generate multiple NOPs. */
1634 }
1638 {
1640 {
1644 /* Fall through. */
1648 /* Fall through. */
1653 }
1654 }
1658 {
1660 {
1663 /* Fall through. */
1666 /* Fall through. */
1669 /* Fall through. */
1673 }
1677 }
1682 {
1684 {
1688 /* Fall through. */
1692 /* Fall through. */
1698 }
1699 }
1703 {
1705 {
1719 }
1721 }
1725 {
1727 }
1731 {
1733 }
1736 {
1741 {
1744 #ifndef WORDS_BIGENDIAN
1746 #else
1748 #endif
1751 #ifndef WORDS_BIGENDIAN
1753 #else
1755 #endif
1760 }
1763 #ifndef WORDS_BIGENDIAN
1765 #else
1767 #endif
1770 }
1774 {
1776 {
1780 /* Fall through. */
1784 /* Fall through. */
1788 /* Fall through. */
1792 /* Fall through. */
1797 }
1798 }
1803 {
1805 {
1809 /* Fall through. */
1813 /* Fall through. */
1817 /* Fall through. */
1821 /* Fall through. */
1827 }
1828 }
1832 {
1836 }
1838 static INLINE i386_cpu_flags
1840 {
1842 {
1845 /* Fall through. */
1848 /* Fall through. */
1851 /* Fall through. */
1854 /* Fall through. */
1860 }
1862 }
1864 static INLINE i386_cpu_flags
1866 {
1868 {
1871 /* Fall through. */
1874 /* Fall through. */
1877 /* Fall through. */
1880 /* Fall through. */
1886 }
1888 }
1890 static INLINE i386_cpu_flags
1892 {
1894 {
1897 /* Fall through. */
1900 /* Fall through. */
1903 /* Fall through. */
1906 /* Fall through. */
1912 }
1914 }
1919 {
1924 }
1926 #define CPU_FLAGS_ARCH_MATCH 0x1
1927 #define CPU_FLAGS_64BIT_MATCH 0x2
1929 #define CPU_FLAGS_PERFECT_MATCH \
1930 (CPU_FLAGS_ARCH_MATCH | CPU_FLAGS_64BIT_MATCH)
1932 /* Return CPU flags match bits. */
1934 static int
1936 {
1947 {
1948 /* This instruction is available on all archs. */
1950 }
1952 /* This instruction is available only on some archs. */
1954 /* Dual VEX/EVEX templates may need stripping of one of the flags. */
1956 {
1957 /* Dual AVX/AVX512 templates need to retain AVX512* only if we already
1958 know that EVEX encoding will be needed. */
1961 {
1963 {
1967 }
1968 /* need_evex_encoding(t) isn't reliable before operands were
1969 parsed. */
1971 {
1974 }
1975 }
1977 /* Dual non-APX/APX templates need massaging from what APX_F() in the
1978 opcode table has produced. While the direct transformation of the
1979 incoming cpuid&(cpuid|APX_F) would be to cpuid&(cpuid) / cpuid&(APX_F)
1980 respectively, it's cheaper to move to just cpuid / cpuid&APX_F
1981 instead. */
1987 {
1988 /* These checks (verifying that APX_F() was properly used in the
1989 opcode table entry) make sure there's no need for an "else" to
1990 the "if()" below. */
1999 }
2000 }
2004 else
2008 {
2009 /* AVX and AVX2 present at the same time express an operand size
2010 dependency - strip AVX2 for the purposes here. The operand size
2011 dependent check occurs in check_vecOperands(). */
2018 }
2020 }
2022 static INLINE i386_operand_type
2024 {
2031 {
2034 /* Fall through. */
2037 /* Fall through. */
2043 }
2045 }
2047 static INLINE i386_operand_type
2049 {
2054 {
2057 /* Fall through. */
2060 /* Fall through. */
2066 }
2068 }
2070 static INLINE i386_operand_type
2072 {
2081 {
2084 /* Fall through. */
2087 /* Fall through. */
2093 }
2095 }
2097 static INLINE i386_operand_type
2099 {
2104 {
2107 /* Fall through. */
2110 /* Fall through. */
2116 }
2118 }
2122 };
2124 enum operand_type
2125 {
2126 reg,
2127 imm,
2128 disp,
2129 anymem
2130 };
2134 {
2136 {
2163 }
2166 }
2168 /* Return 1 if there is no conflict in 8bit/16bit/32bit/64bit/80bit size
2169 between operand GIVEN and opeand WANTED for instruction template T. */
2174 {
2183 /* Don't allow 64-bit (memory) operands outside of 64-bit
2184 mode, when they're used where a 64-bit GPR could also
2185 be used. Checking is needed for Intel Syntax only. */
2186 || (intel_syntax
2193 }
2195 /* Return 1 if there is no conflict in SIMD register between operand
2196 GIVEN and opeand WANTED for instruction template T. */
2201 {
2210 }
2212 /* Return 1 if there is no conflict in any size between operand GIVEN
2213 and opeand WANTED for instruction template T. */
2218 {
2226 /* For scalar opcode templates to allow register and memory
2227 operands at the same time, some special casing is needed
2228 here. Also for v{,p}broadcast*, {,v}pmov{s,z}*, and
2229 down-conversion vpmov*. */
2240 }
2242 /* Return value has MATCH_STRAIGHT set if there is no size conflict on any
2243 operands for instruction template T, and it has MATCH_REVERSE set if there
2244 is no size conflict on any operands for the template with operands reversed
2245 (and the template allows for reversing in the first place). */
2247 #define MATCH_STRAIGHT 1
2248 #define MATCH_REVERSE 2
2252 {
2255 /* Don't check non-absolute jump instructions. */
2260 /* Check memory and accumulator operand size. */
2262 {
2270 {
2273 }
2277 {
2280 }
2284 {
2287 }
2290 {
2293 }
2294 }
2299 /* Check reverse. */
2303 {
2306 /* For FMA4 and XOP insns VEX.W controls just the first two
2307 register operands. And APX_F insns just swap the two source operands,
2308 with the 3rd one being the destination. */
2328 }
2331 }
2335 i386_operand_type given)
2336 {
2356 mismatch:
2359 }
2361 /* If given types g0 and g1 are registers they must be of the same type
2362 unless the expected operand type register overlap is null.
2363 Intel syntax sized memory operands are also checked here. */
2367 i386_operand_type t0,
2368 i386_operand_type g1,
2369 i386_operand_type t1)
2370 {
2392 /* If expectations overlap in no more than a single size, all is fine. */
2406 }
2410 {
2420 }
2424 {
2430 else
2432 }
2436 {
2438 }
2442 {
2444 }
2448 {
2450 }
2454 {
2456 }
2460 {
2461 #ifndef BFD64
2463 #else
2465 #endif
2470 {
2471 #ifndef BFD64
2473 #else
2475 #endif
2479 {
2480 #ifdef BFD64
2486 #endif
2489 }
2493 {
2502 /* Return 0 if NUM isn't properly aligned. */
2506 /* Check if NUM will fit in 8bit after shift. */
2508 }
2512 {
2513 /* Despite the name, check for imm3 if we're dealing with EVEX. */
2516 }
2518 static i386_operand_type
2520 {
2521 i386_operand_type t;
2527 {
2528 /* This code is disabled on the 486 because all the Imm1 forms
2529 in the opcode table are slower on the i486. They're the
2530 versions with the implicitly specified single-position
2531 displacement, which has another syntax if you really want to
2532 use that form. */
2539 }
2541 {
2549 }
2551 {
2556 }
2558 {
2563 }
2565 {
2569 }
2574 }
2576 static offsetT
2578 {
2579 addressT mask;
2582 {
2585 #ifdef BFD64
2587 #endif
2590 }
2597 }
2600 {
2602 }
2604 enum PREFIX_GROUP
2605 {
2607 PREFIX_LOCK,
2608 PREFIX_REP,
2609 PREFIX_DS,
2610 PREFIX_OTHER
2611 };
2613 /* Returns
2614 a. PREFIX_EXIST if attempting to add a prefix where one from the
2615 same class already exists.
2616 b. PREFIX_LOCK if lock prefix is added.
2617 c. PREFIX_REP if rep/repne prefix is added.
2618 d. PREFIX_DS if ds prefix is added.
2619 e. PREFIX_OTHER if other prefix is added.
2620 */
2622 static enum PREFIX_GROUP
2624 {
2630 {
2637 }
2638 else
2639 {
2641 {
2647 /* Fall through. */
2678 }
2681 }
2684 {
2688 }
2689 else
2693 }
2695 static void
2697 {
2701 {
2705 }
2708 {
2712 }
2717 }
2719 static void
2721 {
2723 }
2725 static void
2727 {
2732 }
2734 static void
2736 {
2742 }
2744 static void
2746 {
2747 /* Find out if register prefixing is specified. */
2752 {
2760 else
2763 }
2767 allow_naked_reg = (syntax_flag
2769 else
2773 }
2775 static void
2777 {
2779 }
2781 static void
2783 {
2785 }
2787 static void
2789 {
2794 {
2797 }
2798 else
2799 {
2802 }
2807 {
2817 else
2820 }
2821 else
2825 }
2827 static void
2829 i386_cpu_flags new_flag ATTRIBUTE_UNUSED)
2830 {
2831 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
2834 /* Intel MCU is only supported on ELF. */
2839 {
2840 /* Use cpu_arch_name if it is set in md_parse_option. Otherwise
2841 use default_arch. */
2845 }
2847 /* If we are targeting Intel MCU, we must enable it. */
2853 #endif
2854 }
2856 static void
2858 {
2862 else
2864 }
2867 {
2871 {
2874 }
2877 }
2880 {
2881 i386_cpu_flags flags
2885 {
2888 }
2890 cpu_arch_isa_flags
2892 }
2894 static void
2896 {
2898 {
2902 i386_cpu_flags flags;
2903 i386_cpu_flags isa_flags;
2919 {
2921 input_line_pointer++;
2923 }
2929 {
2935 else
2951 }
2954 {
2961 {
2966 };
2971 }
2972 else
2973 {
2986 }
2991 }
2994 {
2997 else
2998 {
3013 }
3014 }
3017 {
3020 {
3022 {
3026 {
3032 }
3035 {
3041 }
3056 }
3066 {
3071 #ifdef SVR4_COMMENT_CHARS
3073 #else
3075 #endif
3076 {
3079 {
3087 }
3089 }
3090 /* Fall through. */
3094 }
3098 }
3099 }
3102 {
3103 /* Disable an ISA extension. */
3107 {
3116 }
3117 }
3127 {
3135 ;
3136 else
3140 }
3143 }
3145 enum bfd_architecture
3147 {
3149 {
3153 }
3154 else
3156 }
3158 unsigned long
3160 {
3162 {
3165 else
3167 }
3170 {
3172 {
3176 }
3177 else
3179 }
3180 else
3182 }
3183 \f
3186 static void
3188 {
3192 {
3195 }
3196 else
3198 }
3200 void
3202 {
3203 /* Support pseudo prefixes like {disp32}. */
3206 /* Initialize op_hash hash table. */
3209 {
3216 }
3218 /* Initialize reg_hash hash table. */
3220 {
3225 {
3227 {
3230 {
3233 }
3235 {
3236 /* There's no point inserting st(<N>) in the hash table, as
3237 parentheses aren't included in register_chars[] anyway. */
3241 }
3246 {
3250 }
3257 }
3261 }
3262 }
3264 /* Fill in lexical tables: mnemonic_chars, operand_chars. */
3265 {
3270 {
3272 {
3276 }
3278 {
3282 }
3283 #ifdef SVR4_COMMENT_CHARS
3286 #endif
3290 }
3300 }
3303 {
3304 #if defined (OBJ_COFF) && defined (TE_PE)
3307 #else
3309 #endif
3311 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
3314 #endif
3315 }
3316 else
3317 {
3320 }
3322 /* NB: FUSED_JCC_PADDING frag must have sufficient room so that it
3323 can be turned into BRANCH_PREFIX frag. */
3326 }
3328 void
3330 {
3333 }
3335 void
3337 {
3340 }
3341 \f
3342 #ifdef DEBUG386
3344 /* Debugging routines for md_assemble. */
3350 static void
3352 {
3371 {
3389 }
3390 }
3392 static void
3394 {
3399 };
3416 {
3420 }
3421 }
3423 static void
3425 {
3430 {
3434 }
3436 {
3440 }
3441 }
3443 static void
3445 {
3450 }
3452 static struct type_name
3453 {
3454 i386_operand_type mask;
3456 }
3458 {
3493 };
3495 static void
3497 {
3499 i386_operand_type a;
3502 {
3506 }
3508 }
3511 \f
3512 static bfd_reloc_code_real_type
3516 bfd_reloc_code_real_type other)
3517 {
3519 {
3524 {
3548 }
3550 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
3552 {
3556 {
3559 }
3560 }
3561 #endif
3563 /* Sign-checking 4-byte relocations in 16-/32-bit code is pointless. */
3573 size);
3581 else
3584 }
3587 {
3591 {
3596 }
3598 }
3599 else
3600 {
3603 {
3605 }
3606 else
3608 {
3613 }
3616 }
3619 }
3621 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
3622 /* Here we decide which fixups can be adjusted to make them relative to
3623 the beginning of the section instead of the symbol. Basically we need
3624 to make sure that the dynamic relocations are done correctly, so in
3625 some cases we force the original symbol to be used. */
3627 int
3629 {
3633 /* Don't adjust pc-relative references to merge sections in 64-bit
3634 mode. */
3640 /* The x86_64 GOTPCREL are represented as 32bit PCrel relocations
3641 and changed later by validate_fix. */
3646 /* Adjust_reloc_syms doesn't know about the GOT. Need to keep symbol
3647 for size relocations. */
3685 }
3686 #endif
3690 {
3696 }
3698 static int
3700 {
3701 /* Note that the value returned is meaningful only for opcodes with (memory)
3702 operands, hence the code here is free to improperly handle opcodes that
3703 have no operands (for better performance and smaller code). */
3709 {
3710 /* fclex, fdecstp, fdisi, femms, feni, fincstp, finit, fsetpm, and
3711 the fs segment override prefix not currently handled because no
3712 call path can make opcodes without operands get here */
3731 {
3733 {
3739 }
3740 }
3746 }
3749 }
3753 {
3758 /* Dual VEX/EVEX templates need stripping one of the possible variants. */
3760 {
3764 {
3766 {
3770 }
3771 else
3772 {
3778 else
3780 }
3781 }
3788 {
3791 else
3793 }
3794 }
3796 /* Note that for pseudo prefixes this produces a length of 1. But for them
3797 the length isn't interesting at all. */
3803 }
3805 /* Build the VEX prefix. */
3807 static void
3809 {
3814 /* Check register specifier. */
3816 {
3817 register_specifier =
3820 }
3821 else
3824 /* Use 2-byte VEX prefix by swapping destination and source operand
3825 if there are more than 1 register operand. */
3834 {
3851 }
3853 /* Use 2-byte VEX prefix by swapping commutative source operands if there
3854 are no memory operands and at least 3 register ones. */
3860 /* .commutative aliases .staticrounding; disambiguate. */
3867 {
3884 }
3892 else
3893 {
3896 /* Determine vector length from the last multi-length vector
3897 operand. */
3903 {
3906 }
3907 }
3909 /* Check the REX.W bit and VEXW. */
3914 else
3917 /* Use 2-byte VEX prefix if possible. */
3922 {
3923 /* 2-byte VEX prefix. */
3929 /* Check the REX.R bit. */
3935 }
3936 else
3937 {
3938 /* 3-byte VEX prefix. */
3942 {
3956 }
3958 /* The high 3 bits of the second VEX byte are 1's compliment
3959 of RXB bits from REX. */
3968 }
3969 }
3973 {
3975 }
3977 /* We can use this function only when the current encoding is evex. */
3980 {
3984 }
3988 {
3991 }
3993 static unsigned int
3995 {
4012 {
4016 /* Fall through. */
4020 /* Fall through. */
4024 /* Fall through. */
4032 /* Fall through. */
4035 }
4042 {
4045 }
4053 else
4061 }
4063 /* Build the EVEX prefix. */
4065 static void
4067 {
4071 /* Check register specifier. */
4073 {
4079 /* The upper 16 registers are encoded in the fourth byte of the
4080 EVEX prefix. */
4084 }
4085 else
4086 {
4089 /* Encode upper 16 vector index register in the fourth byte of
4090 the EVEX prefix. */
4093 else
4095 }
4097 /* 4 byte EVEX prefix. */
4101 /* The high 3 bits of the second EVEX byte are 1's compliment of RXB
4102 bits from REX. */
4109 /* The fifth bit of the second EVEX byte is 1's compliment of the
4110 REX_R bit in VREX. */
4113 else
4117 {
4118 /* When all operands are registers, the REX_X bit in REX is not
4119 used. We reuse it to encode the upper 16 registers, which is
4120 indicated by the REX_B bit in VREX. The REX_X bit is encoded
4121 as 1's compliment. */
4123 {
4126 }
4127 }
4129 /* EVEX instructions shouldn't need the REX prefix. */
4133 /* Check the REX.W bit and VEXW. */
4138 else
4141 /* The third byte of the EVEX prefix. */
4147 /* The fourth byte of the EVEX prefix. */
4148 /* The zeroing-masking bit. */
4152 /* Don't always set the broadcast bit if there is no RC. */
4154 {
4155 /* Encode the vector length. */
4159 {
4162 /* Determine vector length from the last multi-length vector
4163 operand. */
4168 {
4170 {
4173 }
4175 {
4178 }
4180 {
4183 }
4186 {
4188 {
4200 }
4202 }
4203 }
4207 }
4210 {
4225 {
4228 }
4229 /* Fall through. */
4233 }
4235 /* Encode the broadcast bit. */
4238 }
4241 else
4246 }
4248 /* Build (2 bytes) rex2 prefix.
4249 | D5h |
4250 | m | R4 X4 B4 | W R X B |
4252 Rex2 reuses i.vex as they both encode i.tm.opcode_space in their prefixes.
4253 */
4254 static void
4256 {
4259 /* For the W R X B bits, the variables of rex prefix will be reused. */
4262 }
4264 /* Build the EVEX prefix (4-byte) for evex insn
4265 | 62h |
4266 | `R`X`B`R' | B'mmm |
4267 | W | v`v`v`v | `x' | pp |
4268 | z| L'L | b | `v | aaa |
4269 */
4270 static void
4272 {
4279 {
4282 }
4287 /* Encode the NDD bit of the instruction promoted from the legacy
4288 space. */
4292 /* Encode the NF bit. */
4295 }
4298 {
4299 /* Note that legacy encodings have at most 2 non-immediate operands. */
4303 /* Respect a user-specified REX prefix. */
4306 /* For 8 bit registers we need an empty rex prefix. Also if the
4307 instruction already has a prefix, we need to convert old
4308 registers to new ones. */
4316 {
4322 {
4323 /* Look for 8 bit operand that uses old registers. */
4326 {
4328 /* In case it is "hi" register, give up. */
4334 /* Otherwise it is equivalent to the extended register.
4335 Since the encoding doesn't change this is merely
4336 cosmetic cleanup for debug output. */
4338 }
4339 }
4340 }
4343 {
4344 /* Check if we can add a REX_OPCODE byte. Look for 8 bit operand
4345 that uses legacy register. If it is "hi" register, don't add
4346 rex and rex2 prefix. */
4354 {
4359 }
4363 }
4366 {
4368 /* The individual REX.RXBW bits got consumed. */
4370 }
4373 }
4375 static void
4377 {
4380 /* These AMD 3DNow! and SSE2 instructions have an opcode suffix
4381 which is coded in the same place as an 8-bit immediate field
4382 would be. Here we fake an 8-bit immediate operand from the
4383 opcode suffix stored in tm.extension_opcode.
4385 AVX instructions also use this encoding, for some of
4386 3 argument instructions. */
4400 }
4403 static int
4405 {
4407 {
4426 {
4430 }
4432 {
4436 }
4438 }
4439 }
4441 /* Encode aligned vector move as unaligned vector move. */
4443 static void
4445 {
4447 {
4450 /* movaps/movapd/vmovaps/vmovapd. */
4457 /* movdqa/vmovdqa/vmovdqa64/vmovdqa32. */
4464 }
4465 }
4467 /* Try the shortest encoding by shortening operand size. */
4469 static void
4471 {
4475 {
4476 /* Optimize: -O:
4477 lea symbol, %rN -> mov $symbol, %rN
4478 lea (%rM), %rN -> mov %rM, %rN
4479 lea (,%rM,1), %rN -> mov %rM, %rN
4481 and in 32-bit mode for 16-bit addressing
4483 lea (%rM), %rN -> movzx %rM, %rN
4485 and in 64-bit mode zap 32-bit addressing in favor of using a
4486 32-bit (or less) destination.
4487 */
4489 {
4493 }
4496 {
4497 /* Handle:
4498 lea symbol, %rN -> mov $symbol, %rN
4499 */
4501 {
4502 /* Don't transform a relocation to a 16-bit one. */
4510 {
4515 else
4516 {
4519 }
4520 }
4521 else
4522 {
4523 /* Subject to further optimization below. */
4528 }
4529 }
4530 /* Outside of 64-bit mode address and operand sizes have to match if
4531 a relocation is involved, as otherwise we wouldn't (currently) or
4532 even couldn't express the relocation correctly. */
4540 /* In 16-bit mode converting LEA with 16-bit addressing and a 32-bit
4541 destination is going to grow encoding size. */
4547 else
4548 {
4553 else
4559 /* NB: Add () to !i.prefix[ADDR_PREFIX] to silence
4560 GCC 5. */
4563 }
4568 {
4571 }
4572 }
4577 else
4578 {
4579 /* Handle:
4580 lea (%rM), %rN -> mov %rM, %rN
4581 lea (,%rM,1), %rN -> mov %rM, %rN
4582 lea (%rM), %rN -> movzx %rM, %rN
4583 */
4592 else
4597 {
4602 }
4603 else
4612 }
4619 }
4628 {
4629 /* Optimize: -Os:
4630 test $imm7, %r64/%r32/%r16 -> test $imm7, %r8
4631 */
4634 {
4636 /* Ignore the suffix. */
4638 /* Convert to byte registers. 8-bit registers are special,
4639 RegRex64 and non-RegRex64 each have 8 registers. */
4641 /* 32 (or 40) 8-bit registers. */
4644 /* 32 (or 40) 8-bit registers + 32 16-bit registers. */
4646 else
4647 /* 32 (or 40) 8-bit registers + 32 16-bit registers
4648 + 32 32-bit registers. */
4651 /* In 64-bit mode, the following byte registers cannot be accessed
4652 if using the Rex and Rex2 prefix: AH, BH, CH, DH */
4656 }
4657 }
4683 {
4684 /* Optimize: -O:
4685 andq $imm31, %r64 -> andl $imm31, %r32
4686 andq $imm7, %r64 -> andl $imm7, %r32
4687 testq $imm31, %r64 -> testl $imm31, %r32
4688 xorq %r64, %r64 -> xorl %r32, %r32
4689 subq %r64, %r64 -> subl %r32, %r32
4690 movq $imm31, %r64 -> movl $imm31, %r32
4691 movq $imm32, %r64 -> movl $imm32, %r32
4692 */
4695 {
4699 }
4700 else
4701 {
4704 }
4708 {
4709 /* Handle
4710 movq $imm31, %r64 -> movl $imm31, %r32
4711 movq $imm32, %r64 -> movl $imm32, %r32
4712 */
4717 {
4718 /* Handle
4719 movq $imm31, %r64 -> movl $imm31, %r32
4720 */
4725 }
4726 }
4727 }
4733 {
4734 /* Optimize: -O:
4735 xorb %rNb, %rNb, %rMb -> xorl %rMd, %rMd
4736 xorw %rNw, %rNw, %rMw -> xorl %rMd, %rMd
4737 xorl %rNd, %rNd, %rMd -> xorl %rMd, %rMd
4738 xorq %rN, %rN, %rM -> xorl %rMd, %rMd
4739 subb %rNb, %rNb, %rMb -> subl %rMd, %rMd
4740 subw %rNw, %rNw, %rMw -> subl %rMd, %rMd
4741 subl %rNd, %rNd, %rMd -> subl %rMd, %rMd
4742 subq %rN, %rN, %rM -> subl %rMd, %rMd
4743 */
4755 }
4757 && !optimize_for_space
4762 {
4763 /* Optimize: -O2:
4764 andb %rN, %rN -> testb %rN, %rN
4765 andw %rN, %rN -> testw %rN, %rN
4766 andq %rN, %rN -> testq %rN, %rN
4767 orb %rN, %rN -> testb %rN, %rN
4768 orw %rN, %rN -> testw %rN, %rN
4769 orq %rN, %rN -> testq %rN, %rN
4771 and outside of 64-bit mode
4773 andl %rN, %rN -> testl %rN, %rN
4774 orl %rN, %rN -> testl %rN, %rN
4775 */
4777 }
4783 {
4784 /* Optimize: -O:
4785 btw $n, %rN -> btl $n, %rN (outside of 16-bit mode, n < 16)
4786 btq $n, %rN -> btl $n, %rN (in 64-bit mode, n < 32, N < 8)
4787 btl $n, %rN -> btw $n, %rN (in 16-bit mode, n < 16)
4789 With <BT> one of bts, btr, and bts also:
4790 <BT>w $n, %rN -> btl $n, %rN (in 32-bit mode, n < 16)
4791 <BT>l $n, %rN -> btw $n, %rN (in 16-bit mode, n < 16)
4792 */
4794 {
4802 /* Fall through. */
4812 }
4813 }
4832 {
4833 /* Optimize: -O1:
4834 VOP, one of vandnps, vandnpd, vxorps, vxorpd, vpsubb, vpsubd,
4835 vpsubq and vpsubw:
4836 EVEX VOP %zmmM, %zmmM, %zmmN
4837 -> VEX VOP %xmmM, %xmmM, %xmmN (M and N < 16)
4838 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4839 EVEX VOP %ymmM, %ymmM, %ymmN
4840 -> VEX VOP %xmmM, %xmmM, %xmmN (M and N < 16)
4841 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4842 VEX VOP %ymmM, %ymmM, %ymmN
4843 -> VEX VOP %xmmM, %xmmM, %xmmN
4844 VOP, one of vpandn and vpxor:
4845 VEX VOP %ymmM, %ymmM, %ymmN
4846 -> VEX VOP %xmmM, %xmmM, %xmmN
4847 VOP, one of vpandnd and vpandnq:
4848 EVEX VOP %zmmM, %zmmM, %zmmN
4849 -> VEX vpandn %xmmM, %xmmM, %xmmN (M and N < 16)
4850 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4851 EVEX VOP %ymmM, %ymmM, %ymmN
4852 -> VEX vpandn %xmmM, %xmmM, %xmmN (M and N < 16)
4853 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4854 VOP, one of vpxord and vpxorq:
4855 EVEX VOP %zmmM, %zmmM, %zmmN
4856 -> VEX vpxor %xmmM, %xmmM, %xmmN (M and N < 16)
4857 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4858 EVEX VOP %ymmM, %ymmM, %ymmN
4859 -> VEX vpxor %xmmM, %xmmM, %xmmN (M and N < 16)
4860 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4861 VOP, one of kxord and kxorq:
4862 VEX VOP %kM, %kM, %kN
4863 -> VEX kxorw %kM, %kM, %kN
4864 VOP, one of kandnd and kandnq:
4865 VEX VOP %kM, %kM, %kN
4866 -> VEX kandnw %kM, %kM, %kN
4867 */
4869 {
4871 {
4877 }
4880 else
4882 }
4884 {
4887 }
4888 else
4893 {
4896 }
4897 }
4910 {
4911 /* Optimize: -O1:
4912 VOP, one of vmovdqa32, vmovdqa64, vmovdqu8, vmovdqu16,
4913 vmovdqu32 and vmovdqu64:
4914 EVEX VOP %xmmM, %xmmN
4915 -> VEX vmovdqa|vmovdqu %xmmM, %xmmN (M and N < 16)
4916 EVEX VOP %ymmM, %ymmN
4917 -> VEX vmovdqa|vmovdqu %ymmM, %ymmN (M and N < 16)
4918 EVEX VOP %xmmM, mem
4919 -> VEX vmovdqa|vmovdqu %xmmM, mem (M < 16)
4920 EVEX VOP %ymmM, mem
4921 -> VEX vmovdqa|vmovdqu %ymmM, mem (M < 16)
4922 EVEX VOP mem, %xmmN
4923 -> VEX mvmovdqa|vmovdquem, %xmmN (N < 16)
4924 EVEX VOP mem, %ymmN
4925 -> VEX vmovdqa|vmovdqu mem, %ymmN (N < 16)
4926 VOP, one of vpand, vpandn, vpor, vpxor:
4927 EVEX VOP{d,q} %xmmL, %xmmM, %xmmN
4928 -> VEX VOP %xmmL, %xmmM, %xmmN (L, M, and N < 16)
4929 EVEX VOP{d,q} %ymmL, %ymmM, %ymmN
4930 -> VEX VOP %ymmL, %ymmM, %ymmN (L, M, and N < 16)
4931 EVEX VOP{d,q} mem, %xmmM, %xmmN
4932 -> VEX VOP mem, %xmmM, %xmmN (M and N < 16)
4933 EVEX VOP{d,q} mem, %ymmM, %ymmN
4934 -> VEX VOP mem, %ymmM, %ymmN (M and N < 16)
4935 */
4939 {
4940 /* Since the VEX prefix has 2 or 3 bytes, the EVEX prefix
4941 has 4 bytes, EVEX Disp8 has 1 byte and VEX Disp32 has 4
4942 bytes, we choose EVEX Disp8 over VEX Disp32. */
4951 {
4954 }
4958 }
4965 /* VPAND, VPOR, and VPXOR are commutative. */
4976 }
4985 {
4986 /* Optimize: -Os:
4987 pcmpeqq %xmmN, %xmmN -> pcmpeqd %xmmN, %xmmN
4988 vpcmpeqq %xmmN, %xmmN, %xmmM -> vpcmpeqd %xmmN, %xmmN, %xmmM (N < 8)
4989 vpcmpeqq %ymmN, %ymmN, %ymmM -> vpcmpeqd %ymmN, %ymmN, %ymmM (N < 8)
4990 */
4993 }
5002 {
5003 /* Optimize: -O:
5004 pcmpgt[bwd] %mmN, %mmN -> pxor %mmN, %mmN
5005 pcmpgt[bwdq] %xmmN, %xmmN -> pxor %xmmN, %xmmN
5006 vpcmpgt[bwdq] %xmmN, %xmmN, %xmmM -> vpxor %xmmN, %xmmN, %xmmM (N < 8)
5007 vpcmpgt[bwdq] %xmmN, %xmmN, %xmmM -> vpxor %xmm0, %xmm0, %xmmM (N > 7)
5008 vpcmpgt[bwdq] %ymmN, %ymmN, %ymmM -> vpxor %ymmN, %ymmN, %ymmM (N < 8)
5009 vpcmpgt[bwdq] %ymmN, %ymmN, %ymmM -> vpxor %ymm0, %ymm0, %ymmM (N > 7)
5010 */
5014 {
5016 {
5029 }
5032 }
5033 }
5042 {
5043 /* Optimize: -Os:
5044 vpbroadcastq %xmmN, %xmmM -> vpunpcklqdq %xmmN, %xmmN, %xmmM (N < 8)
5045 */
5060 }
5061 }
5063 static void
5065 {
5073 }
5075 /* Return non-zero for load instruction. */
5077 static int
5079 {
5085 {
5086 /* Anysize insns: lea, invlpg, clflush, prefetch*, bndmk, bndcl, bndcu,
5087 bndcn, bndstx, bndldx, clflushopt, clwb, cldemote. */
5091 /* pop. */
5094 }
5097 {
5098 /* popf, popa. */
5103 /* movs, cmps, lods, scas. */
5107 /* outs, xlatb. */
5111 /* NB: For AMD-specific insns with implicit memory operands,
5112 they're intentionally not covered. */
5113 }
5115 /* No memory operand. */
5120 {
5123 }
5125 {
5126 /* test, not, neg, mul, imul, div, idiv. */
5130 /* inc, dec. */
5134 /* add, or, adc, sbb, and, sub, xor, cmp. */
5138 /* rol, ror, rcl, rcr, shl/sal, shr, sar. */
5143 /* Check for x87 instructions. */
5145 {
5146 /* Skip fst, fstp, fstenv, fstcw. */
5154 /* Skip fisttp, fist, fistp, fstp. */
5162 /* Skip fisttp, fst, fstp, fsave, fstsw. */
5171 /* Skip fisttp, fist, fistp, fbstp, fistp. */
5181 }
5182 }
5184 {
5185 /* bt, bts, btr, btc. */
5190 /* cmpxchg8b, cmpxchg16b, xrstors, vmptrld. */
5197 /* fxrstor, ldmxcsr, xrstor. */
5204 /* lgdt, lidt, lmsw. */
5210 }
5214 /* Check fake imm8 operand and 3 source operands. */
5218 dest--;
5220 /* add, or, adc, sbb, and, sub, xor, cmp, test, xchg. */
5229 /* Check for load instruction. */
5232 }
5234 /* Output lfence, 0xfaee8, after instruction. */
5236 static void
5238 {
5240 {
5241 /* There are also two REP string instructions that require
5242 special treatment. Specifically, the compare string (CMPS)
5243 and scan string (SCAS) instructions set EFLAGS in a manner
5244 that depends on the data being compared/scanned. When used
5245 with a REP prefix, the number of iterations may therefore
5246 vary depending on this data. If the data is a program secret
5247 chosen by the adversary using an LVI method,
5248 then this data-dependent behavior may leak some aspect
5249 of the secret. */
5252 {
5255 }
5260 }
5261 }
5263 /* Output lfence, 0xfaee8, before instruction. */
5265 static void
5267 {
5275 {
5276 /* Insert lfence before indirect branch if needed. */
5285 {
5286 /* Indirect branch via register. Don't insert lfence with
5287 -mlfence-after-load=yes. */
5291 }
5294 {
5298 }
5299 else
5303 {
5308 }
5315 }
5317 /* Output or/not/shl and lfence before near ret. */
5320 {
5322 {
5327 }
5329 /* Near ret ingore operand size override under CPU64. */
5335 {
5336 /* not: 0xf71424, may add prefix
5337 for operand size override or 64-bit code. */
5349 }
5350 else
5351 {
5356 {
5357 /* or: 0x830c2400, may add prefix
5358 for operand size override or 64-bit code. */
5361 }
5362 else
5363 {
5364 /* shl: 0xc1242400, may add prefix
5365 for operand size override or 64-bit code. */
5368 }
5372 }
5377 }
5378 }
5380 /* Shared helper for md_assemble() and s_insn(). */
5382 {
5392 }
5394 /* Helper for md_assemble() to decide whether to prepare for a possible 2nd
5395 parsing pass. Instead of introducing a rarely use new insn attribute this
5396 utilizes a common pattern between affected templates. It is deemed
5397 acceptable that this will lead to unnecessary pass 2 preparations in a
5398 limited set of cases. */
5400 {
5402 /* Note that all SSE2AVX templates have at least one operand. */
5408 }
5410 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
5412 /* DWARF register number for EFLAGS. Used for pushf/popf insns. */
5413 #define GINSN_DW2_REGNUM_EFLAGS 49
5414 /* DWARF register number for RSI. Used as dummy value when RegIP/RegIZ. */
5415 #define GINSN_DW2_REGNUM_RSI_DUMMY 4
5417 /* Identify the callee-saved registers in System V AMD64 ABI. */
5419 bool
5421 {
5429 }
5431 /* Check whether an instruction prefix which affects operation size
5432 accompanies. For insns in the legacy space, setting REX.W takes precedence
5433 over the operand-size prefix (66H) when both are used.
5435 The current users of this API are in the handlers for PUSH, POP or other
5436 instructions which affect the stack pointer implicitly: the operation size
5437 (16, 32, or 64 bits) determines the amount by which the stack pointer is
5438 incremented / decremented (2, 4 or 8). */
5440 static bool
5442 {
5444 }
5446 /* Get the DWARF register number for the given register entry.
5447 For specific byte/word/dword register accesses like al, cl, ah, ch, r8d,
5448 r20w etc., we need to identify the DWARF register number for the
5449 corresponding 8-byte GPR.
5451 This function is a hack - it relies on relative ordering of reg entries in
5452 the i386_regtab. FIXME - it will be good to allow a more direct way to get
5453 this information. */
5455 static unsigned int
5457 {
5461 /* ginsn creation is available for AMD64 abi only ATM. Other flag_code
5462 are not expected. */
5465 /* Watch out for RegIP, RegIZ. These are expected to appear only with
5466 base/index addressing modes. Although creating inaccurate data
5467 dependencies, using a dummy value (lets say volatile register rsi) will
5468 not hurt SCFI. TBD_GINSN_GEN_NOT_SCFI. */
5475 {
5477 /* For al, cl, dl, bl, bump over to axl, cxl, dxl, bxl respectively by
5478 adding 8. */
5481 /* For ah, ch, dh, bh, bump over to axl, cxl, dxl, bxl respectively by
5482 adding 4. */
5484 else
5485 {
5486 /* The code relies on the relative ordering of the reg entries in
5487 i386_regtab. There are 32 register entries between axl-r31b,
5488 ax-r31w etc. The assertions here ensures the code does not
5489 recurse indefinitely. */
5495 }
5498 }
5500 /* Sanity check - failure may indicate state corruption, bad ginsn or
5501 perhaps the i386-reg table and the current function got out of sync. */
5505 }
5509 {
5523 /* op %reg, symbol or even other cases where destination involves indirect
5524 access are unnecessary for SCFI correctness. TBD_GINSN_GEN_NOT_SCFI. */
5528 /* Skip detection of 8/16/32-bit op size; 'add/sub reg, reg/mem' ops always
5529 make the dest reg untraceable for SCFI. */
5531 /* op reg, reg/mem. */
5533 /* Of interest only when second opnd is not memory. */
5535 {
5542 }
5545 }
5549 {
5565 /* op symbol, %reg. */
5569 /* Skip detection of 8/16/32-bit op size; 'add/sub reg/mem, reg' ops always
5570 make the dest reg untraceable for SCFI. */
5572 /* op reg/mem, %reg. */
5576 {
5583 }
5585 {
5595 }
5598 }
5602 {
5603 offsetT src_imm;
5614 /* FIXME - create ginsn where dest is REG_SP / REG_FP only ? */
5615 /* Map for insn.tm.extension_opcode
5616 000 ADD 100 AND
5617 001 OR 101 SUB
5618 010 ADC 110 XOR
5619 011 SBB 111 CMP */
5621 /* add/sub/and imm, %reg only at this time for SCFI.
5622 Although all three ('and', 'or' , 'xor') make the destination reg
5623 untraceable, 'and' op is handled but not 'or' / 'xor' because we will look
5624 into supporting the DRAP pattern at some point. Other opcodes ('adc',
5625 'sbb' and 'cmp') are not generated here either. The ginsn representation
5626 does not have support for the latter three opcodes; GINSN_TYPE_OTHER may
5627 be added for these after x86_ginsn_unhandled () invocation if the
5628 destination register is REG_SP or REG_FP. */
5635 else
5638 /* TBD_GINSN_REPRESENTATION_LIMIT: There is no representation for when a
5639 symbol is used as an operand, like so:
5640 addq $simd_cmp_op+8, %rdx
5641 Skip generating any ginsn for this. */
5646 /* addq $1, symbol
5647 addq $1, -16(%rbp)
5648 These are not of interest for SCFI. Also, TBD_GINSN_GEN_NOT_SCFI. */
5652 /* 8/16/32-bit op size makes the destination reg untraceable for SCFI.
5653 Deal with this via the x86_ginsn_unhandled () code path. */
5659 /* The second operand may be a register or indirect access. For SCFI, only
5660 the case when the second opnd is a register is interesting. Revisit this
5661 if generating ginsns for a different gen mode TBD_GINSN_GEN_NOT_SCFI. */
5663 {
5665 /* For ginsn, keep the imm as second src operand. */
5672 }
5675 }
5677 /* Create ginsn(s) for MOV operations.
5679 The generated ginsns corresponding to mov with indirect access to memory
5680 (src or dest) suffer with loss of information: when both index and base
5681 registers are at play, only base register gets conveyed in ginsn. Note
5682 this TBD_GINSN_GEN_NOT_SCFI. */
5686 {
5698 /* mov %reg, symbol or mov symbol, %reg.
5699 Not of interest for SCFI. Also, TBD_GINSN_GEN_NOT_SCFI. */
5703 /* 8/16/32-bit op size makes the destination reg untraceable for SCFI.
5704 Handle mov reg, reg only. mov to or from a memory operand will make
5705 dest reg, when present, untraceable, irrespective of the op size. */
5711 {
5712 /* mov disp(%reg), %reg. */
5714 {
5719 }
5720 else
5724 }
5726 {
5727 /* mov %reg, disp(%reg). */
5730 {
5735 }
5736 else
5738 }
5749 }
5751 /* Generate appropriate ginsn for lea.
5753 Unhandled sub-cases (marked with TBD_GINSN_GEN_NOT_SCFI) also suffer with
5754 some loss of information in the final ginsn chosen eventually (type
5755 GINSN_TYPE_OTHER). But this is fine for now for GINSN_GEN_SCFI generation
5756 mode. */
5760 {
5765 offsetT index_scale;
5770 {
5771 /* lea disp(%base), %dst or lea disp(,%index,imm), %dst.
5772 Either index_reg or base_reg exists, but not both. Further, as per
5773 above, the case when just %index exists but is equal to RegIZ is
5774 excluded. If not excluded, a GINSN_TYPE_MOV of %rsi
5775 (GINSN_DW2_REGNUM_RSI_DUMMY) to %dst will be generated by this block.
5776 Such a mov ginsn is imprecise; so, exclude now and generate
5777 GINSN_TYPE_OTHER instead later via the x86_ginsn_unhandled ().
5778 Excluding other cases is required due to
5779 TBD_GINSN_REPRESENTATION_LIMIT. */
5786 /* It makes sense to represent a scale factor of 1 precisely here
5787 (i.e., not using GINSN_TYPE_OTHER, but rather similar to the
5788 base-without-index case). A non-zero scale factor is still OK if
5789 the index reg is zero reg.
5790 However, skip from here the case when disp has a symbol instead.
5791 TBD_GINSN_REPRESENTATION_LIMIT. */
5794 {
5799 /* Generate an ADD ginsn. */
5804 else
5805 /* Generate a MOV ginsn. */
5811 }
5812 }
5813 /* Skip handling other cases here,
5814 - when (i.index_reg && i.base_reg) is true,
5815 e.g., lea disp(%base,%index,imm), %dst
5816 We do not have a ginsn representation for multiply.
5817 - or, when (!i.index_reg && !i.base_reg) is true,
5818 e.g., lea symbol, %dst
5819 Not a frequent pattern. If %dst is a register of interest, the user is
5820 likely to use a MOV op anyway.
5821 Deal with these via the x86_ginsn_unhandled () code path to generate
5822 GINSN_TYPE_OTHER when necessary. TBD_GINSN_GEN_NOT_SCFI. */
5825 }
5829 {
5840 {
5846 }
5847 else
5848 {
5849 /* A non-zero addend in jump/JCC target makes control-flow tracking
5850 difficult. Skip SCFI for now. */
5854 }
5857 }
5861 {
5865 /* In 64-bit mode, the default stack update size is 8 bytes. */
5870 /* For non-zero size operands, bail out as untraceable for SCFI. */
5873 {
5876 }
5878 /* Check if this is a 16-bit op. */
5882 /* If the nesting level is 0, the processor pushes the frame pointer from
5883 the BP/EBP/RBP register onto the stack, copies the current stack
5884 pointer from the SP/ESP/RSP register into the BP/EBP/RBP register, and
5885 loads the SP/ESP/RSP register with the current stack-pointer value
5886 minus the value in the size operand. */
5904 }
5908 {
5912 /* In 64-bit mode, the default stack update size is 8 bytes. */
5915 /* Check if this is a 16-bit op. */
5919 /* The 'leave' instruction copies the contents of the RBP register
5920 into the RSP register to release all stack space allocated to the
5921 procedure. */
5926 /* Then it restores the old value of the RBP register from the stack. */
5940 }
5942 /* Check if an instruction is whitelisted.
5944 Some instructions may appear with REG_SP or REG_FP as destination, because
5945 which they are deemed 'interesting' for SCFI. Whitelist them here if they
5946 do not affect SCFI correctness. */
5948 static bool
5950 {
5955 {
5961 /* cmp imm, reg/rem. */
5972 /* cmp imm/reg/mem, reg/rem. */
5980 /* test imm/reg/mem, reg/mem. */
5988 }
5991 }
5993 #define X86_GINSN_UNHANDLED_NONE 0
5994 #define X86_GINSN_UNHANDLED_DEST_REG 1
5995 #define X86_GINSN_UNHANDLED_CFG 2
5996 #define X86_GINSN_UNHANDLED_STACKOP 3
5997 #define X86_GINSN_UNHANDLED_UNEXPECTED 4
5999 /* Check the input insn for its impact on the correctness of the synthesized
6000 CFI. Returns an error code to the caller. */
6002 static int
6004 {
6009 /* Keep an eye out for instructions affecting control flow. */
6012 /* Also, for any instructions involving an implicit update to the stack
6013 pointer. */
6016 /* Finally, also check if the missed instructions are affecting REG_SP or
6017 REG_FP. The destination operand is the last at all stages of assembly
6018 (due to following AT&T syntax layout in the internal representation). In
6019 case of Intel syntax input, this still remains true as swap_operands ()
6020 is done by now.
6021 PS: These checks do not involve index / base reg, as indirect memory
6022 accesses via REG_SP or REG_FP do not affect SCFI correctness.
6023 (Also note these instructions are candidates for other ginsn generation
6024 modes in future. TBD_GINSN_GEN_NOT_SCFI.) */
6027 {
6030 {
6034 }
6035 else
6036 /* Something unexpected. Indicate to caller. */
6038 }
6041 }
6043 /* Generate one or more generic GAS instructions, a.k.a, ginsns for the current
6044 machine instruction.
6046 Returns the head of linked list of ginsn(s) added, if success; Returns NULL
6047 if failure.
6049 The input ginsn_gen_mode GMODE determines the set of minimal necessary
6050 ginsns necessary for correctness of any passes applicable for that mode.
6051 For supporting the GINSN_GEN_SCFI generation mode, following is the list of
6052 machine instructions that must be translated into the corresponding ginsns
6053 to ensure correctness of SCFI:
6054 - All instructions affecting the two registers that could potentially
6055 be used as the base register for CFA tracking. For SCFI, the base
6056 register for CFA tracking is limited to REG_SP and REG_FP only for
6057 now.
6058 - All change of flow instructions: conditional and unconditional branches,
6059 call and return from functions.
6060 - All instructions that can potentially be a register save / restore
6061 operation.
6062 - All instructions that perform stack manipulation implicitly: the CALL,
6063 RET, PUSH, POP, ENTER, and LEAVE instructions.
6065 The function currently supports GINSN_GEN_SCFI ginsn generation mode only.
6066 To support other generation modes will require work on this target-specific
6067 process of creation of ginsns:
6068 - Some of such places are tagged with TBD_GINSN_GEN_NOT_SCFI to serve as
6069 possible starting points.
6070 - Also note that ginsn representation may need enhancements. Specifically,
6071 note some TBD_GINSN_INFO_LOSS and TBD_GINSN_REPRESENTATION_LIMIT markers.
6072 */
6076 {
6083 /* In 64-bit mode, the default stack update size is 8 bytes. */
6086 /* Currently supports generation of selected ginsns, sufficient for
6087 the use-case of SCFI only. */
6093 /* Until it is clear how to handle APX NDD and other new opcodes, disallow
6094 them from SCFI. */
6097 {
6099 opcode);
6101 }
6104 {
6106 /* Add opcodes 0x0/0x2 and sub opcodes 0x28/0x2a (with opcode_space
6107 SPACE_BASE) are 8-bit ops. While they are relevant for SCFI
6108 correctness, skip handling them here and use the x86_ginsn_unhandled
6109 code path to generate GINSN_TYPE_OTHER when necessary. */
6127 /* push fs / push gs have opcode_space == SPACE_0F. */
6131 /* Check if operation size is 16-bit. */
6148 /* pop fs / pop gs have opcode_space == SPACE_0F. */
6152 /* Check if operation size is 16-bit. */
6170 /* push reg. */
6172 /* Check if operation size is 16-bit. */
6190 /* pop reg. */
6196 /* Check if operation size is 16-bit. */
6211 /* Check if operation size is 16-bit. */
6214 /* Skip getting the value of imm from machine instruction
6215 because this is not important for SCFI. */
6228 /* PS: Opcodes 0x80 ... 0x8f with opcode_space SPACE_0F are present
6229 only after relaxation. They do not need to be handled for ginsn
6230 creation. */
6257 /* lea disp(%base,%index,imm), %dst. */
6264 /* pop to reg/mem. */
6266 {
6268 /* Use dummy register if no base or index. Unlike other opcodes,
6269 ginsns must be generated as this affect stack pointer. */
6270 dw2_regnum = (mem_reg
6273 }
6274 else
6280 /* Check if operation size is 16-bit. */
6294 /* pushf / pushfq. */
6295 /* Check if operation size is 16-bit. */
6303 /* FIXME - hardcode the actual DWARF reg number value. As for SCFI
6304 correctness, although this behaves simply a placeholder value; its
6305 just clearer if the value is correct. */
6317 /* popf / popfq. */
6318 /* Check if operation size is 16-bit. */
6321 /* FIXME - hardcode the actual DWARF reg number value. As for SCFI
6322 correctness, although this behaves simply a placeholder value; its
6323 just clearer if the value is correct. */
6340 /* push from reg/mem. */
6342 {
6343 /* Check if operation size is 16-bit. */
6352 {
6354 /* Use dummy register if no base or index. Unlike other opcodes,
6355 ginsns must be generated as this affect stack pointer. */
6356 dw2_regnum = (mem_reg
6359 }
6360 else
6367 }
6369 {
6370 /* jmp r/m. E.g., notrack jmp *%rax. */
6372 {
6377 }
6379 {
6380 /* jmp *0x0(,%rax,8). */
6385 }
6387 {
6392 }
6393 }
6395 {
6396 /* 0xFF /2 (call). */
6398 {
6403 }
6405 {
6410 }
6411 }
6418 /* Near ret. */
6426 /* enter. */
6433 /* leave. */
6448 /* PS: SCFI machinery does not care about which func is being
6449 called. OK to skip that info. */
6455 /* PS: opcode 0xe9 appears only after relaxation. Skip here. */
6457 /* If opcode_space != SPACE_BASE, this is not a jmp insn. Skip it
6458 for GINSN_GEN_SCFI. */
6461 /* Unconditional jmp. */
6467 /* TBD_GINSN_GEN_NOT_SCFI: Skip all other opcodes uninteresting for
6468 GINSN_GEN_SCFI mode. */
6470 }
6473 {
6474 /* For all unhandled insns that are not whitelisted, check that they do
6475 not impact SCFI correctness. */
6478 {
6482 /* Not all writes to REG_FP are harmful in context of SCFI. Simply
6483 generate a GINSN_TYPE_OTHER with destination set to the
6484 appropriate register. The SCFI machinery will bail out if this
6485 ginsn affects SCFI correctness. */
6499 opcode);
6504 }
6505 }
6508 }
6510 #endif
6512 /* This is the guts of the machine-dependent assembler. LINE points to a
6513 machine dependent instruction. This function is supposed to emit
6514 the frags/bytes it assembles to. */
6516 void
6518 {
6528 /* Initialize globals. */
6530 retry:
6533 /* Suppress optimization when the last thing we saw may not have been
6534 a proper instruction (e.g. a stand-alone prefix or .byte). */
6538 /* First parse an instruction mnemonic & call i386_operand for the operands.
6539 We assume that the scrubber has arranged it so that line[0] is the valid
6540 start of a (possibly prefixed) mnemonic. */
6544 {
6548 {
6552 /* No point in trying a 2nd pass - it'll only find the same suffix
6553 again. */
6556 }
6558 }
6560 /* NB: LINE may be change to be the same as XSTRDUP_COPY. */
6562 {
6563 /* Make a copy of the full line in case we need to retry. */
6566 }
6573 {
6576 }
6578 /* Now we've parsed the mnemonic into a set of templates, and have the
6579 operands at hand. */
6581 /* All Intel opcodes have reversed operands except for "bound", "enter",
6582 "invlpg*", "monitor*", "mwait*", "tpause", "umwait", "pvalidate",
6583 "rmpadjust", "rmpupdate", and "rmpquery". We also don't reverse
6584 intersegment "jmp" and "call" instructions with 2 immediate operands so
6585 that the immediate segment precedes the offset consistently in Intel and
6586 AT&T modes. */
6602 /* The order of the immediates should be reversed for 2-immediates EXTRQ
6603 and INSERTQ instructions. Also UWRMSR wants its immediate to be in the
6604 "canonical" place (first), despite it appearing last (in AT&T syntax, or
6605 because of the swapping above) in the incoming set of operands. */
6613 {
6614 /* For USER_MSR instructions, imm32 stands for the name of an model specific
6615 register (MSR). That's an unsigned quantity, whereas all other insns with
6616 32-bit immediate and 64-bit operand size use sign-extended
6617 immediates (imm32s). Therefore these insns are special-cased, bypassing
6618 the normal handling of immediates here. */
6620 {
6622 {
6625 }
6626 }
6627 else
6629 }
6634 /* Next, we find a template that matches the given insn,
6635 making sure the overlap of the given operands types is consistent
6636 with the template operand types. */
6639 {
6643 {
6646 no_match:
6650 }
6652 /* If a non-/only-64bit template (group) was found in pass 1, and if
6653 _some_ template (group) was found in pass 2, squash pass 1's
6654 error. */
6658 match_error:
6662 {
6707 {
6711 mnem_suffix);
6712 else
6715 mnem_suffix);
6716 }
6717 else
6718 {
6722 else
6725 }
6785 }
6789 }
6794 /* The opcode space check isn't strictly needed; it's there only to
6795 bypass the logic below when easily possible. */
6800 {
6801 /* Some KL and all WideKL insns have only implicit %xmm operands. */
6805 {
6810 }
6814 ? as_warn
6816 }
6822 /* Check if REP prefix is OK. */
6824 {
6828 }
6830 /* Check for lock without a lockable instruction. Destination operand
6831 must be memory unless it is xchg (0x86). */
6833 {
6838 {
6841 }
6843 /* Zap the redundant prefix from XCHG when optimizing. */
6846 }
6851 {
6852 /* Check for data size prefix on VEX/XOP/EVEX encoded and SIMD insns. */
6854 {
6857 }
6859 /* Don't allow e.g. KMOV in TLS code sequences. */
6862 {
6871 /* Allow APX: add %reg1, foo@gottpoff(%rip), %reg2. */
6873 /* Fall through. */
6881 }
6882 }
6884 /* Check if HLE prefix is OK. */
6888 /* Check BND prefix. */
6892 /* Check NOTRACK prefix. */
6897 {
6904 }
6906 /* Insert BND prefix. */
6908 {
6912 {
6915 }
6916 }
6918 /* Check string instruction segment overrides. */
6920 {
6925 }
6927 /* The memory operand of (%dx) should be only used with input/output
6928 instructions (base opcodes: 0x6c, 0x6e, 0xec, 0xee). */
6932 {
6936 }
6941 /* Past optimization there's no need to distinguish encoding_evex,
6942 encoding_evex512, and encoding_egpr anymore. */
6955 /* Check if IP-relative addressing requirements can be satisfied. */
6960 /* Update operand types and check extended states. */
6962 {
6965 {
6987 }
6988 }
6990 /* Make still unresolved immediate matches conform to size of immediate
6991 given in i.suffix. */
6998 /* For insns with operands there are more diddles to do to the opcode. */
7000 {
7003 }
7005 {
7006 /* UnixWare fsub no args is alias for fsubp, fadd -> faddp, etc. */
7008 }
7011 {
7013 {
7017 }
7019 /* Check for explicit REX prefix. */
7021 {
7024 }
7026 /* Check for explicit REX2 prefix. */
7028 {
7031 }
7037 else
7040 /* The individual REX.RXBW bits got consumed. */
7043 /* The rex2 bits got consumed. */
7045 }
7047 /* Handle conversion of 'int $3' --> special int3 insn. */
7050 {
7053 }
7059 {
7060 /* Convert "jmp constant" (and "call constant") to a jump (call) to
7061 the absolute address given by the constant. Since ix86 jumps and
7062 calls are pc relative, we need to generate a reloc. */
7065 }
7071 /* We are ready to output the insn. */
7074 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
7075 /* PS: SCFI is enabled only for System V AMD64 ABI. The ABI check has been
7076 performed in i386_target_format. */
7078 {
7082 }
7083 #endif
7088 {
7092 }
7093 else
7095 }
7097 /* The Q suffix is generally valid only in 64-bit mode, with very few
7098 exceptions: fild, fistp, fisttp, and cmpxchg8b. Note that for fild
7099 and fisttp only one of their two templates is matched below: That's
7100 sufficient since other relevant attributes are the same between both
7101 respective templates. */
7103 {
7109 }
7113 {
7122 {
7124 /* Pseudo-prefixes start with an opening figure brace. */
7126 {
7129 }
7131 {
7134 mnem_p++;
7136 {
7137 too_long:
7140 }
7141 l++;
7142 }
7143 /* Pseudo-prefixes end with a closing figure brace. */
7145 {
7151 /* Point l at the closing brace if there's no other separator. */
7155 }
7158 && (intel_syntax
7160 {
7166 }
7168 {
7171 else
7174 }
7176 /* Look up instruction (or prefix) via hash table. */
7183 {
7186 {
7192 }
7194 {
7200 }
7201 /* If we are in 16-bit mode, do not allow addr16 or data16.
7202 Similarly, in 32-bit mode, do not allow addr32 or data32. */
7208 {
7212 }
7215 {
7216 /* Handle pseudo prefixes. */
7218 {
7220 /* {disp8} */
7224 /* {disp16} */
7228 /* {disp32} */
7232 /* {load} */
7236 /* {store} */
7240 /* {vex} */
7244 /* {vex3} */
7248 /* {evex} */
7252 /* {rex} */
7256 /* {rex2} */
7260 /* {nf} */
7266 /* {nooptimize} */
7271 }
7273 {
7276 }
7277 }
7278 else
7279 {
7280 /* Add prefix, checking for repeated prefixes. */
7282 {
7294 else
7299 }
7300 }
7301 /* Skip past PREFIX_SEPARATOR and reset token_start. */
7303 }
7304 else
7306 }
7312 {
7313 /* Deprecated functionality (new code should use pseudo-prefixes instead):
7314 Check if we should swap operand or force 32bit displacement in
7315 encoding. */
7317 {
7320 else
7323 }
7327 {
7332 }
7337 {
7342 }
7343 else
7348 }
7351 {
7354 check_suffix:
7356 {
7357 /* See if we can get a match by trimming off a suffix. */
7359 {
7363 else
7364 /* Fall through. */
7374 {
7378 }
7381 /* Intel Syntax. */
7384 {
7387 else
7391 }
7392 /* For compatibility reasons accept MOVSD and CMPSD without
7393 operands even in AT&T mode. */
7396 {
7400 /* MOVS or CMPS */
7403 == SPACE_BASE
7405 {
7409 }
7410 else
7411 {
7414 }
7415 }
7417 }
7418 }
7421 {
7425 }
7426 }
7430 {
7431 /* Check for a branch hint. We allow ",pt" and ",pn" for
7432 predict taken and predict not taken respectively.
7433 I'm not sure that branch hints actually do anything on loop
7434 and jcxz insns (JumpByte) for current Pentium4 chips. They
7435 may work in the future and it doesn't hurt to accept them
7436 now. */
7438 {
7440 {
7444 }
7446 {
7450 }
7451 }
7452 }
7453 /* Any other comma loses. */
7455 {
7459 }
7461 /* Check if instruction is supported on specified architecture. */
7464 {
7472 }
7475 {
7478 else
7480 }
7483 }
7487 {
7490 /* 1 if operand is pending after ','. */
7494 {
7495 /* Non-zero if operand parens not balanced. */
7497 /* True if inside double quotes. */
7500 /* Skip optional white space before operand. */
7504 {
7509 }
7512 {
7514 {
7516 {
7520 }
7522 {
7527 }
7528 else
7530 }
7536 {
7541 }
7543 {
7548 }
7549 l++;
7550 }
7556 {
7558 MAX_OPERANDS);
7560 }
7562 /* Now parse operand adding info to 'i' as we go along. */
7566 {
7568 mnemonic);
7570 }
7573 operand_ok =
7576 else
7582 }
7583 else
7584 {
7586 {
7587 expecting_operand_after_comma:
7590 }
7592 {
7595 }
7596 }
7598 /* Now *l must be either ',' or END_OF_INSN. */
7600 {
7602 {
7603 /* Just skip it, if it's \n complain. */
7605 }
7607 }
7608 }
7610 }
7612 static void
7614 {
7616 i386_operand_type temp_type;
7641 {
7646 }
7648 {
7653 }
7654 }
7656 static void
7658 {
7660 {
7664 /* Fall through. */
7671 }
7674 {
7679 }
7680 }
7682 /* Try to ensure constant immediates are represented in the smallest
7683 opcode possible. */
7684 static void
7686 {
7693 {
7694 /* Figure out a suffix from the last register operand specified.
7695 We can't do this properly yet, i.e. excluding special register
7696 instances, but the following works for instructions with
7697 immediates. In any case, we can't set i.suffix yet. */
7702 {
7705 }
7707 {
7710 }
7712 {
7715 }
7717 {
7720 }
7721 }
7727 /* A more generic (but also more involved) way of dealing
7728 with the special case(s) would be to go look for
7729 DefaultSize attributes on any of the templates. */
7735 {
7737 {
7739 /* If a suffix is given, this operand may be shortened. */
7741 {
7760 }
7762 /* If this operand is at most 16 bits, convert it
7763 to a signed 16 bit number before trying to see
7764 whether it will fit in an even smaller size.
7765 This allows a 16-bit operand such as $0xffe0 to
7766 be recognised as within Imm8S range. */
7769 {
7772 }
7773 #ifdef BFD64
7774 /* Store 32-bit immediate in 64-bit for 64-bit BFD. */
7777 {
7781 }
7782 #endif
7787 /* We must avoid matching of Imm32 templates when 64bit
7788 only immediate is available. */
7797 /* Symbols and expressions. */
7799 /* Convert symbolic operand to proper sizes for matching, but don't
7800 prevent matching a set of insns that only supports sizes other
7801 than those matching the insn suffix. */
7802 {
7808 {
7824 }
7828 {
7831 }
7835 }
7837 }
7838 }
7839 }
7841 /* Try to use the smallest displacement type too. */
7842 static bool
7844 {
7850 {
7852 {
7861 /* Since displacement is signed extended to 64bit, don't allow
7862 disp32 if it is out of range. */
7868 {
7872 }
7873 }
7874 }
7876 /* Don't optimize displacement for movabs since it only takes 64bit
7877 displacement. */
7884 {
7886 {
7890 {
7895 }
7899 {
7900 /* If this operand is at most 16 bits, convert
7901 to a signed 16 bit number and don't use 64bit
7902 displacement. */
7905 }
7907 #ifdef BFD64
7908 /* Optimize 64-bit displacement to 32-bit for 64-bit BFD. */
7915 {
7916 /* If this operand is at most 32 bits, convert
7917 to a signed 32 bit number and don't use 64bit
7918 displacement. */
7922 }
7925 {
7928 }
7929 #endif
7936 }
7939 {
7943 }
7944 else
7945 /* We only support 64bit displacement on constants. */
7947 }
7950 }
7952 /* Return 1 if there is a match in broadcast bytes between operand
7953 GIVEN and instruction template T. */
7957 {
7966 }
7968 /* Check if operands are valid for the instruction. */
7970 static int
7972 {
7974 i386_cpu_flags cpu;
7976 /* Templates allowing for ZMMword as well as YMMword and/or XMMword for
7977 any one operand are implicity requiring AVX512VL support if the actual
7978 operand size is YMMword or XMMword. Since this function runs after
7979 template matching, there's no need to check for YMMword/XMMword in
7980 the template. */
7986 {
7988 {
7992 {
7995 }
7996 }
7997 }
7999 /* Somewhat similarly, templates specifying both AVX and AVX2 are
8000 requiring AVX2 support if the actual operand size is YMMword. */
8003 {
8005 {
8008 {
8011 }
8012 }
8013 }
8015 /* Without VSIB byte, we can't have a vector register for index. */
8021 {
8024 }
8026 /* Check if default mask is allowed. */
8029 {
8032 }
8034 /* For VSIB byte, we need a vector register for index, and all vector
8035 registers must be distinct. */
8037 {
8045 {
8048 }
8052 {
8069 {
8072 }
8074 }
8076 {
8083 {
8085 {
8088 }
8091 }
8092 }
8093 }
8095 /* For AMX instructions with 3 TMM register operands, all operands
8096 must be distinct. */
8102 {
8105 }
8107 /* For some special instructions require that destination must be distinct
8108 from source registers. */
8110 {
8115 /* #UD if dest_reg == src1_reg or dest_reg == src2_reg. */
8119 {
8122 }
8123 }
8125 /* Check if broadcast is supported by the instruction and is applied
8126 to the memory operand. */
8128 {
8131 /* Check if specified broadcast is supported in this instruction,
8132 and its broadcast bytes match the memory operand. */
8138 {
8139 bad_broadcast:
8142 }
8146 {
8171 }
8179 {
8183 }
8188 {
8193 {
8197 type,
8200 }
8201 }
8202 }
8203 /* If broadcast is supported in this instruction, we need to check if
8204 operand of one-element size isn't specified without broadcast. */
8206 {
8207 /* Find memory operand. */
8212 /* Check size of the memory operand. */
8214 {
8217 }
8218 }
8219 else
8222 /* Check if requested masking is supported. */
8224 {
8226 {
8229 }
8231 /* Common rules for masking:
8232 - mask register destinations permit only zeroing-masking, without
8233 that actually being expressed by a {z} operand suffix or EVEX.z,
8234 - memory destinations allow only merging-masking,
8235 - scatter/gather insns (i.e. ones using vSIB) only allow merging-
8236 masking. */
8241 {
8244 }
8245 }
8247 /* Check if masking is applied to dest operand. */
8249 {
8252 }
8254 /* Check RC/SAE. */
8256 {
8260 {
8263 }
8265 /* Non-EVEX.LIG forms need to have a ZMM register as at least one
8266 operand. */
8268 {
8273 {
8276 }
8277 }
8278 }
8280 /* Check the special Imm4 cases; must be the first operand. */
8290 {
8293 {
8296 }
8298 /* Turn off Imm<N> so that update_imm won't complain. */
8301 }
8303 /* Check vector Disp8 operand. */
8308 {
8313 else
8314 {
8320 {
8331 }
8334 {
8341 }
8346 {
8353 }
8355 /* For the check in fits_in_disp8(). */
8358 }
8363 {
8365 {
8368 }
8370 }
8371 }
8376 }
8378 /* Check if encoding requirements are met by the instruction. */
8380 static int
8382 {
8384 {
8387 }
8389 /* Vector size restrictions. */
8395 {
8398 }
8401 {
8407 /* This instruction must be encoded with VEX prefix. */
8409 {
8412 }
8417 /* This instruction must be encoded with EVEX prefix. */
8419 {
8422 }
8426 /* This instruction must be encoded with REX2 or EVEX prefix. */
8428 {
8431 }
8436 }
8439 }
8441 /* Check if Egprs operands are valid for the instruction. */
8443 static bool
8445 {
8450 {
8455 {
8458 }
8459 }
8463 {
8466 }
8468 /* Check if pseudo prefix {rex2} is valid. */
8470 {
8473 }
8476 }
8478 /* Check if APX operands are valid for the instruction. */
8479 static bool
8481 {
8482 /* Push2* and Pop2* cannot use RSP and Pop2* cannot pop two same registers.
8483 */
8485 {
8489 {
8492 }
8493 /* fall through */
8498 {
8501 }
8503 }
8505 }
8507 /* Check if the instruction use the REX registers or REX prefix. */
8508 static bool
8510 {
8512 {
8518 }
8524 /* Check pseudo prefix {rex} are valid. */
8526 }
8528 /* Optimize APX NDD insns to legacy insns. */
8529 static unsigned int
8531 {
8535 {
8543 /* If the first operand is the same as the third operand,
8544 these instructions need to support the ability to commutative
8545 the first two operands and still not change the semantics in order
8546 to be optimized. */
8552 }
8554 }
8556 /* Helper function for the progress() macro in match_template(). */
8560 {
8565 }
8569 {
8570 /* Points to template once we've found it. */
8573 i386_operand_type overlap4;
8579 #define progress(err) progress (err, specific_error, __LINE__, &errline)
8581 #if MAX_OPERANDS != 5
8583 #endif
8589 {
8593 /* Must have right number of operands. */
8597 /* Skip SSE2AVX templates when inapplicable. */
8600 {
8601 /* Another non-SSE2AVX template has to follow. */
8604 }
8606 /* Check processor support. */
8611 /* Check AT&T mnemonic. */
8617 /* Check AT&T/Intel syntax. */
8624 /* Check NF support. */
8629 /* Check Intel64/AMD64 ISA. */
8631 {
8633 /* Default: Don't accept Intel64. */
8638 /* -mamd64: Don't accept Intel64 and Intel64 only. */
8643 /* -mintel64: Don't accept AMD64. */
8647 }
8649 /* Check the suffix. */
8663 /* This is intentionally not
8665 if (i.jumpabsolute != (t->opcode_modifier.jump == JUMP_ABSOLUTE))
8667 as the case of a missing * on the operand is accepted (perhaps with
8668 a warning, issued further down). */
8673 /* In Intel syntax, normally we can check for memory operand size when
8674 there is no mnemonic suffix. But jmp and call have 2 different
8675 encodings with Dword memory operand size. Skip the "near" one
8676 (permitting a register operand) when "far" was requested. */
8685 /* In general, don't allow 32-bit operands on pre-386. */
8691 && (intel_syntax
8705 /* Do not verify operands when there are none. */
8707 {
8709 {
8712 }
8714 /* Check if pseudo prefix {rex2} is valid. */
8716 {
8719 }
8721 /* We've found a match; break out of loop. */
8723 }
8727 {
8728 /* There should be only one Disp operand. */
8733 {
8738 /* Address size prefix will turn Disp64 operand into Disp32 and
8739 Disp32/Disp16 one into Disp16/Disp32 respectively. */
8741 {
8744 /* Fall through. */
8748 {
8751 }
8757 {
8761 }
8764 }
8765 }
8766 }
8768 /* We check register size if needed. */
8770 {
8774 }
8775 else
8780 {
8785 /* Allow the ModR/M encoding to be requested by using the {load} or
8786 {store} pseudo prefix on an applicable insn. */
8793 /* Avoid BSWAP. */
8799 /* xchg %eax, %eax is a special case. It is an alias for nop
8800 only in 32bit mode and we can use opcode 0x90. In 64bit
8801 mode, we can't use 0x90 for xchg %eax, %eax since it should
8802 zero-extend %eax to %rax. */
8805 {
8812 /* Allow the ModR/M encoding to be requested by using the
8813 {load} or {store} pseudo prefix. */
8817 }
8822 {
8823 /* Force 0x8b encoding for "mov foo@GOT, %eax". */
8827 /* xrelease mov %eax, <disp> is another special case. It must not
8828 match the accumulator-only encoding of mov. */
8832 /* Allow the ModR/M encoding to be requested by using a suitable
8833 {load} or {store} pseudo prefix. */
8835 ? dir_encoding_store
8840 }
8842 /* Allow the ModR/M encoding to be requested by using the {load} or
8843 {store} pseudo prefix on an applicable insn. */
8850 {
8863 }
8864 /* Fall through. */
8869 /* Reverse direction of operands if swapping is possible in the first
8870 place (operands need to be symmetric) and
8871 - the load form is requested, and the template is a store form,
8872 - the store form is requested, and the template is a load form,
8873 - the non-default (swapped) form is requested. */
8882 {
8900 }
8902 /* If we want store form, we skip the current load. */
8908 /* Fall through. */
8919 {
8922 /* Check if other direction is valid ... */
8926 check_reverse:
8929 /* Try reversing direction of operands. */
8942 || (check_register
8947 {
8948 /* Does not match either direction. */
8951 }
8952 /* found_reverse_match holds which variant of D
8953 we've found. */
8957 {
8960 else
8962 /* FSUB{,R} and FDIV{,R} may need a 2nd bit flipped. */
8966 }
8968 {
8971 }
8974 {
8977 }
8980 /* MOV to/from CR/DR/TR, as an exception, follow
8981 the base opcode space encoding model. */
8987 else
8989 }
8990 else
8991 {
8992 /* Found a forward 2 operand match here. */
8993 check_operands_345:
8995 {
9003 {
9006 }
9007 /* Fall through. */
9021 {
9024 }
9025 /* Fall through. */
9039 {
9042 }
9044 }
9045 }
9046 /* Found either forward/reverse 2, 3 or 4 operand match here:
9047 slip through to break. */
9048 }
9050 /* Check if VEX/EVEX encoding requirements can be satisfied. */
9052 {
9055 }
9057 /* Check if EGPR operands(r16-r31) are valid. */
9059 {
9062 }
9064 /* Check if vector operands are valid. */
9066 {
9069 }
9071 /* Check if APX operands are valid. */
9073 {
9076 }
9078 /* Check whether to use the shorter VEX encoding for certain insns where
9079 the EVEX encoding comes first in the table. This requires the respective
9080 AVX-* feature to be explicitly enabled.
9082 Most of the respective insns have just a single EVEX and a single VEX
9083 template. The one that's presently different is generated using the
9084 Vxy / Exy constructs: There are 3 suffix-less EVEX forms, the latter
9085 two of which may fall back to their two corresponding VEX forms. */
9093 {
9094 i386_cpu_flags cpu;
9099 cpu_arch_isa_flags);
9105 {
9109 }
9111 }
9113 /* If we can optimize a NDD insn to legacy insn, like
9114 add %r16, %r8, %r8 -> add %r16, %r8,
9115 add %r8, %r16, %r8 -> add %r16, %r8, then rematch template.
9116 Note that the semantics have not been changed. */
9127 {
9131 {
9133 /* We ensure that the next template has the same input
9134 operands as the original matching template by the first
9135 opernd (ATT). To avoid someone support new NDD insns and
9136 put it in the wrong position. */
9149 /* Some non-legacy-map0/1 insns can be shorter when
9150 legacy-encoded and when no REX prefix is required. */
9154 {
9162 {
9165 }
9169 }
9171 }
9172 }
9174 /* We've found a match; break out of loop. */
9176 }
9178 #undef progress
9181 {
9182 /* We found no match. */
9185 }
9188 {
9195 {
9196 /* Warn them that a data or address size prefix doesn't
9197 affect assembly of the next line of code. */
9199 }
9200 }
9202 /* Copy the template we found. */
9209 /* APX insns acting on byte operands are WIG, yet that can't be expressed
9210 in the templates (they're also covering word/dword/qword operands). */
9213 {
9216 }
9219 {
9228 /* Fall through. */
9230 /* If we found a reverse match we must alter the opcode direction
9231 bit and clear/flip the regmem modifier one. found_reverse_match
9232 holds bits to change (different for int & float insns). */
9239 /* Certain SIMD insns have their load forms specified in the opcode
9240 table, and hence we need to _set_ RegMem instead of clearing it.
9241 We need to avoid setting the bit though on insns like KMOVW. */
9247 /* Fall through. */
9254 /* Only the first two register operands need reversing, alongside
9255 flipping VEX.W. */
9258 swap_first_2:
9263 }
9266 }
9268 static int
9270 {
9275 {
9279 register_prefix);
9281 }
9283 /* There's only ever one segment override allowed per instruction.
9284 This instruction possibly has a legal segment override on the
9285 second operand, so copy the segment to where non-string
9286 instructions store it, allowing common code. */
9290 }
9292 static int
9294 {
9297 /* If matched instruction specifies an explicit instruction mnemonic
9298 suffix, use it. */
9308 {
9311 /* MOVSX/MOVZX */
9318 /* movsx/movzx want only their source operand considered here, for the
9319 ambiguity checking below. The suffix will be replaced afterwards
9320 to represent the destination (register). */
9324 /* crc32 needs REX.W set regardless of suffix / source operand size. */
9328 /* If there's no instruction mnemonic suffix we try to invent one
9329 based on GPR operands. */
9331 {
9332 /* We take i.suffix from the last register operand specified,
9333 Destination register type is more significant than source
9334 register type. crc32 in SSE4.2 prefers source register
9335 type. */
9341 {
9352 else
9355 }
9357 /* As an exception, movsx/movzx silently default to a byte source
9358 in AT&T mode. */
9361 }
9363 {
9366 }
9368 {
9371 }
9373 {
9376 }
9378 {
9381 }
9384 /* Do nothing if the instruction is going to ignore the prefix. */
9385 ;
9386 else
9389 /* Undo the movsx/movzx change done above. */
9391 }
9394 {
9397 {
9398 /* stackop_size is set to LONG_MNEM_SUFFIX for the
9399 .code16gcc directive to support 16-bit mode with
9400 32-bit address. For IRET without a suffix, generate
9401 16-bit IRET (opcode 0xcf) to return from an interrupt
9402 handler. */
9404 {
9407 }
9408 /* Warn about changed behavior for segment register push/pop. */
9412 }
9413 }
9421 {
9423 {
9426 {
9431 }
9432 /* Fall through. */
9441 }
9442 }
9446 /* Also cover lret/retf/iret in 64-bit mode. */
9451 /* Explicit sizing prefixes are assumed to disambiguate insns. */
9453 /* Accept FLDENV et al without suffix. */
9455 {
9468 /* For [XYZ]MMWORD operands inspect operand sizes. While generally
9469 also suitable for AT&T syntax mode, it was requested that this be
9470 restricted to just Intel syntax. */
9473 {
9477 {
9479 {
9482 {
9487 }
9492 }
9495 {
9502 }
9509 /* Any properly sized operand disambiguates the insn. */
9513 {
9517 }
9521 {
9530 }
9531 }
9532 }
9534 /* Are multiple suffixes / operand sizes allowed? */
9536 {
9540 {
9543 }
9545 {
9549 }
9552 intel_syntax
9568 else
9570 }
9571 }
9574 {
9575 /* In Intel syntax, movsx/movzx must have a "suffix" (checked above).
9576 In AT&T syntax, if there is no suffix (warned about above), the default
9577 will be byte extension. */
9581 /* For further processing, the suffix should represent the destination
9582 (register). This is already the case when one was used with
9583 mov[sz][bw]*, but we need to replace it for mov[sz]x, or if there was
9584 no suffix to begin with. */
9586 {
9591 else
9595 }
9596 }
9602 /* Change the opcode based on the operand size given by i.suffix. */
9604 {
9605 /* Size floating point instruction. */
9608 {
9611 }
9612 /* fall through */
9615 /* It's not a byte, select word/dword operation. */
9617 {
9620 else
9622 }
9624 /* Set mode64 for an operand. */
9626 {
9630 /* Special case for xchg %rax,%rax. It is NOP and doesn't
9631 need rex64. */
9640 }
9642 /* fall through */
9644 /* Now select between word & dword operations via the operand
9645 size prefix, except for instructions that will ignore this
9646 prefix anyway. */
9654 {
9660 /* The DATA PREFIX of EVEX promoted from legacy APX instructions
9661 needs to be adjusted. */
9663 {
9666 }
9669 }
9674 /* Select word/dword/qword operation with explicit data sizing prefix
9675 when there are no suitable register operands. */
9680 /* ShiftCount */
9682 /* InOutPortReg */
9688 }
9691 {
9697 {
9698 /* The address size override prefix changes the size of the
9699 first operand. */
9702 {
9706 }
9713 }
9714 else
9715 {
9716 /* Check invalid register operand when the address size override
9717 prefix changes the size of register operands. */
9721 /* Check the register operand for the address size prefix if
9722 the memory operand has no real registers, like symbol, DISP
9723 or bogus (x32-only) symbol(%rip) when symbol(%eip) is meant. */
9732 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
9737 #else
9739 #endif
9747 else
9751 {
9756 {
9769 }
9774 }
9775 }
9776 }
9779 }
9781 static int
9783 {
9787 {
9788 /* Skip non-register operands. */
9792 /* If this is an eight bit register, it's OK. If it's the 16 or
9793 32 bit version of an eight bit register, we will just use the
9794 low portion, and that's OK too. */
9798 /* I/O port address operands are OK too. */
9803 /* crc32 only wants its source operand checked here. */
9807 /* Any other register is bad. */
9812 }
9814 }
9816 static int
9818 {
9822 /* Skip non-register operands. */
9825 /* Reject eight bit registers, except where the template requires
9826 them. (eg. movzb) */
9832 {
9834 register_prefix,
9839 }
9840 /* Error if the e prefix on a general reg is missing, or if the r
9841 prefix on a general reg is present. */
9847 {
9852 }
9854 }
9856 static int
9858 {
9862 /* Skip non-register operands. */
9865 /* Reject eight bit registers, except where the template requires
9866 them. (eg. movzb) */
9873 {
9875 register_prefix,
9880 }
9881 /* Error if the r prefix on a general reg is missing. */
9887 {
9888 /* Prohibit these changes in the 64bit mode, since the
9889 lowering is more complicated. */
9893 }
9895 }
9897 static int
9899 {
9902 /* Skip non-register operands. */
9905 /* Reject eight bit registers, except where the template requires
9906 them. (eg. movzb) */
9912 {
9914 register_prefix,
9919 }
9920 /* Error if the e or r prefix on a general reg is present. */
9926 {
9931 }
9933 }
9935 static int
9937 {
9943 {
9944 /* This combination is used on 8-bit immediates where e.g. $~0 is
9945 desirable to permit. We're past operand type matching, so simply
9946 put things back in the shape they were before introducing the
9947 distinction between Imm8, Imm8S, and Imm8|Imm8S. */
9949 }
9957 {
9963 };
9966 };
9969 };
9972 {
9973 i386_operand_type temp;
9977 {
9980 }
9984 {
9987 }
9988 else
9991 }
9995 {
9999 else
10001 }
10013 {
10017 }
10018 }
10022 }
10024 static int
10026 {
10029 /* Update the first 2 immediate operands. */
10032 {
10037 /* The 3rd operand can't be immediate operand. */
10039 }
10042 }
10046 {
10048 {
10052 }
10054 {
10057 }
10064 }
10068 {
10073 }
10075 static int
10077 {
10078 /* Default segment register this instruction will use for memory
10079 accesses. 0 means unknown. This is only for optimizing out
10080 unnecessary segment overrides. */
10088 {
10089 /* Legacy encoded insns allow explicit REX prefixes, so these prefixes
10090 need converting. */
10095 }
10096 /* ImmExt should be processed after SSE2AVX. */
10100 /* TILEZERO is unusual in that it has a single operand encoded in ModR/M.reg,
10101 not ModR/M.rm. To avoid special casing this in build_modrm_byte(), fake a
10102 new destination operand here, while converting the source one to register
10103 number 0. */
10105 {
10114 }
10117 {
10120 };
10125 /* The destination must be an xmm register. */
10132 {
10133 /* Keep xmm0 for instructions with VEX prefix and 3
10134 sources. */
10139 }
10142 {
10145 /* Add the implicit xmm0 for instructions with VEX prefix
10146 and 3 sources. */
10148 {
10153 }
10163 dupl++;
10164 dest++;
10169 }
10170 else
10171 {
10172 duplicate:
10181 }
10185 }
10188 {
10192 {
10196 /* We need to adjust fields in i.tm since they are used by
10197 build_modrm_byte. */
10201 }
10203 /* No adjustment to i.reg_operands: This was already done at the top
10204 of the function. */
10207 }
10209 {
10212 /* The second operand must be {x,y,z}mmN, where N is a multiple of 4. */
10224 }
10226 {
10227 /* The imul $imm, %reg instruction is converted into
10228 imul $imm, %reg, %reg, and the clr %reg instruction
10229 is converted into xor %reg, %reg. */
10235 else
10237 /* Pretend we saw the extra register operand. */
10244 }
10247 {
10248 /* The opcode is completed (modulo i.tm.extension_opcode which
10249 must be put into the modrm byte). Now, we make the modrm and
10250 index base bytes based on all the info we've collected. */
10255 {
10256 /* Warn about some common errors, but press on regardless. */
10258 {
10259 /* Reversed arguments on faddp or fmulp. */
10263 }
10265 {
10266 /* Extraneous `l' suffix on fp insn. */
10269 }
10270 }
10271 }
10273 {
10279 {
10283 }
10286 {
10289 }
10291 }
10294 {
10296 }
10298 {
10299 /* For the string instructions that allow a segment override
10300 on one of their operands, the default segment is ds. */
10302 }
10304 {
10305 /* The register operand is in the 1st or 2nd non-immediate operand. */
10312 /* Register goes in low 3 bits of opcode. */
10317 {
10321 }
10322 }
10327 {
10331 }
10335 {
10339 {
10342 }
10343 }
10345 /* If a segment was explicitly specified, and the specified segment
10346 is neither the default nor the one already recorded from a prefix,
10347 use an opcode prefix to select it. If we never figured out what
10348 the default segment is, then default_seg will be zero at this
10349 point, and the specified segment prefix will always be used. */
10353 {
10356 }
10358 }
10362 {
10365 /* Compensate for kludge in md_assemble(). */
10370 /* Accumulator (in particular %st), shift count (%cl), and alike need
10371 to be skipped just like immediate operands do. */
10382 {
10385 /* There are 2 kinds of instructions:
10386 1. 5 operands: 4 register operands or 3 register operands
10387 plus 1 memory operand plus one Imm4 operand, VexXDS, and
10388 VexW0 or VexW1. The destination must be either XMM, YMM or
10389 ZMM register.
10390 2. 4 operands: 4 register operands or 3 register operands
10391 plus 1 memory operand, with VexXDS.
10392 3. Other equivalent combinations when coming from s_insn(). */
10398 /* Of the first two non-immediate operands the one with the template
10399 not allowing for a memory one is encoded in the immediate operand. */
10402 else
10406 {
10409 }
10410 else
10414 {
10415 /* When there is no immediate operand, generate an 8bit
10416 immediate operand to encode the first operand. */
10423 }
10424 else
10425 {
10430 /* Turn on Imm8 again so that output_imm will generate it. */
10434 }
10438 }
10441 {
10442 /* VEX.vvvv encodes the last source register operand. */
10445 {
10448 }
10449 /* For vprot*, vpshl*, and vpsha*, XOP.W controls the swapping of src1
10450 and src2, and it requires fall through when the operands are swapped.
10451 */
10452 /* Fall through. */
10453 /* VEX.vvvv encodes the first source register operand. */
10457 /* VEX.vvvv encodes the destination register operand. */
10464 }
10472 {
10475 }
10478 {
10480 {
10486 {
10487 /* The index register of VSIB shouldn't be RegIZ. */
10494 {
10499 }
10501 /* Since the mandatory SIB always has index register, so
10502 the code logic remains unchanged. The non-mandatory SIB
10503 without index register is allowed and will be handled
10504 later. */
10506 {
10509 else
10512 }
10513 }
10518 {
10523 {
10524 /* Both check for VSIB and mandatory non-vector SIB. */
10527 /* Operand is just <disp> */
10530 {
10531 /* 64bit mode overwrites the 32bit absolute
10532 addressing by RIP relative addressing and
10533 absolute addressing is encoded by one of the
10534 redundant SIB forms. */
10539 }
10542 {
10545 }
10546 else
10547 {
10550 }
10551 }
10553 {
10554 /* !i.base_reg && i.index_reg */
10557 else
10565 }
10566 }
10567 /* RIP addressing for 64bit mode. */
10569 {
10579 }
10581 {
10584 {
10594 {
10597 {
10598 /* fake (%bp) into 0(%bp) */
10601 else
10604 }
10605 }
10611 }
10615 {
10619 else
10621 }
10623 }
10625 {
10627 {
10631 }
10637 /* x86-64 ignores REX prefix bit here to avoid decoder
10638 complications. */
10644 {
10648 else
10650 }
10653 {
10654 /* Only check for VSIB. */
10659 /* <disp>(%esp) becomes two byte modrm with no index
10660 register. We've already stored the code for esp
10661 in i.rm.regmem ie. ESCAPE_TO_TWO_BYTE_ADDRESSING.
10662 Any base register besides %esp will not use the
10663 extra modrm byte. */
10665 }
10667 {
10670 else
10674 }
10680 else
10681 {
10685 {
10689 else
10691 }
10693 }
10694 }
10697 {
10698 /* Fakes a zero displacement assuming that i.types[op]
10699 holds the correct displacement size. */
10709 }
10710 }
10711 else
10712 {
10716 }
10722 }
10723 else
10724 {
10727 {
10733 }
10734 else
10735 {
10740 }
10741 }
10743 /* Fill in i.rm.reg field with extension opcode (if any) or the
10744 appropriate register. */
10748 {
10751 }
10752 else
10753 {
10757 }
10760 {
10764 }
10767 }
10771 {
10774 else
10776 }
10778 static unsigned int
10780 {
10787 }
10789 static void
10791 {
10796 relax_substateT subtype;
10798 offsetT off;
10801 {
10804 }
10811 {
10815 }
10816 /* Pentium4 branch hints. */
10819 {
10820 prefix++;
10822 }
10824 {
10825 prefix++;
10827 }
10829 /* BND prefixed jump. */
10831 {
10832 prefix++;
10834 }
10839 /* It's always a symbol; End frag & setup for relax.
10840 Make sure there is enough room in this frag for the largest
10841 instruction we may generate in md_convert_frag. This is 2
10842 bytes for the opcode and room for the prefix and largest
10843 displacement. */
10845 /* Prefix and 1 opcode byte go in fr_fix. */
10862 else
10871 {
10872 /* Handle complex expressions. */
10875 }
10877 /* 1 possible extra opcode + 4 byte displacement go in var part.
10878 Pass reloc in fr_var. */
10880 }
10882 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
10883 /* Return TRUE iff PLT32 relocation should be used for branching to
10884 symbol S. */
10886 static bool
10888 {
10889 /* PLT32 relocation is ELF only. */
10893 #ifdef TE_SOLARIS
10894 /* Don't emit PLT32 relocation on Solaris: neither native linker nor
10895 krtld support it. */
10897 #endif
10899 /* Since there is no need to prepare for PLT branch on x86-64, we
10900 can generate R_X86_64_PLT32, instead of R_X86_64_PC32, which can
10901 be used as a marker for 32-bit PC-relative branches. */
10908 /* Weak or undefined symbol need PLT32 relocation. */
10912 /* Non-global symbol doesn't need PLT32 relocation. */
10916 /* Other global symbols need PLT32 relocation. NB: Symbol with
10917 non-default visibilities are treated as normal global symbol
10918 so that PLT32 relocation can be used as a marker for 32-bit
10919 PC-relative branches. It is useful for linker relaxation. */
10921 }
10922 #endif
10924 static void
10926 {
10933 {
10934 /* This is a loop or jecxz type instruction. */
10937 {
10940 }
10941 /* Pentium4 branch hints. */
10944 {
10947 }
10948 }
10949 else
10950 {
10958 {
10962 }
10967 }
10969 /* BND prefixed jump. */
10971 {
10974 }
10977 {
10980 }
10986 {
10989 }
10993 {
10996 /* Fall through. */
11002 }
11004 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
11009 #endif
11016 /* All jumps handled here are signed, but don't unconditionally use a
11017 signed limit check for 32 and 16 bit jumps as we want to allow wrap
11018 around at 4G (outside of 64-bit mode) and 64k (except for XBEGIN)
11019 respectively. */
11021 {
11035 }
11036 }
11038 static void
11040 {
11052 {
11056 }
11068 {
11071 }
11073 /* 1 opcode; 2 segment; offset */
11084 {
11090 {
11093 }
11095 }
11096 else
11103 else
11106 }
11108 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
11109 void
11111 {
11126 /* The .note.gnu.property section layout:
11128 Field Length Contents
11129 ---- ---- ----
11130 n_namsz 4 4
11131 n_descsz 4 The note descriptor size
11132 n_type 4 NT_GNU_PROPERTY_TYPE_0
11133 n_name 4 "GNU"
11134 n_desc n_descsz The program property array
11135 .... .... ....
11136 */
11138 /* Create the .note.gnu.property section. */
11141 (SEC_ALLOC
11142 | SEC_LOAD
11143 | SEC_DATA
11144 | SEC_HAS_CONTENTS
11148 {
11151 }
11152 else
11153 {
11156 }
11161 /* GNU_PROPERTY_X86_ISA_1_USED: 4-byte type + 4-byte data size
11162 + 4-byte data */
11164 /* Align GNU_PROPERTY_X86_ISA_1_USED. */
11168 /* GNU_PROPERTY_X86_FEATURE_2_USED: 4-byte type + 4-byte data size
11169 + 4-byte data */
11171 /* Align GNU_PROPERTY_X86_FEATURE_2_USED. */
11176 /* Section size: n_namsz + n_descsz + n_type + n_name + n_descsz. */
11179 /* Write n_namsz. */
11182 /* Write n_descsz. */
11185 /* Write n_type. */
11188 /* Write n_name. */
11191 /* Write 4-byte type. */
11195 /* Write 4-byte data size. */
11198 /* Write 4-byte data. */
11201 /* Zero out paddings. */
11206 /* Write 4-byte type. */
11210 /* Write 4-byte data size. */
11213 /* Write 4-byte data. */
11217 /* Zero out paddings. */
11222 /* We probably can't restore the current segment, for there likely
11223 isn't one yet... */
11226 }
11228 bool
11230 {
11231 /* At this time, SFrame stack trace is supported for AMD64 ABI only. */
11233 }
11235 bool
11237 {
11238 /* In AMD64, return address is always stored on the stack at a fixed offset
11239 from the CFA (provided via x86_sframe_cfa_ra_offset ()).
11240 Do not track explicitly via an SFrame Frame Row Entry. */
11242 }
11244 offsetT
11246 {
11249 }
11251 unsigned char
11253 {
11257 {
11260 }
11263 }
11265 #endif
11267 static unsigned int
11270 {
11274 {
11281 }
11284 }
11286 /* Return 1 for test, and, cmp, add, sub, inc and dec which may
11287 be macro-fused with conditional jumps.
11288 NB: If TEST/AND/CMP/ADD/SUB/INC/DEC is of RIP relative address,
11289 or is one of the following format:
11291 cmp m, imm
11292 add m, imm
11293 sub m, imm
11294 test m, imm
11295 and m, imm
11296 inc m
11297 dec m
11299 it is unfusible. */
11301 static int
11303 {
11304 /* No RIP address. */
11308 /* No opcodes outside of base encoding space. */
11312 /* add, sub without add/sub m, imm. */
11318 {
11321 }
11323 /* and without and m, imm. */
11327 {
11330 }
11332 /* test without test m imm. */
11337 {
11340 }
11342 /* cmp without cmp m, imm. */
11346 {
11349 }
11351 /* inc, dec without inc/dec m. */
11356 {
11359 }
11362 }
11364 /* Return 1 if a FUSED_JCC_PADDING frag should be generated. */
11366 static int
11369 {
11370 /* NB: Don't work with COND_JUMP86 without i386. */
11378 {
11385 }
11388 }
11390 /* Return 1 if a BRANCH_PREFIX frag should be generated. */
11392 static int
11394 {
11395 /* NB: Don't work with COND_JUMP86 without i386. Don't add prefix
11396 to PadLock instructions since they include prefixes in opcode. */
11398 || !align_branch_prefix_size
11404 /* Don't add prefix if it is a prefix or there is no operand in case
11405 that segment prefix is special. */
11418 }
11420 /* Return 1 if a BRANCH_PADDING frag should be generated. */
11422 static int
11426 {
11429 /* NB: Don't work with COND_JUMP86 without i386. */
11438 /* Check for jcc and direct jmp. */
11440 {
11442 {
11445 }
11446 else
11447 {
11448 /* Because J<cc> and JN<cc> share same group in macro-fusible table,
11449 igore the lowest bit. */
11454 }
11455 }
11457 {
11458 /* Near ret. */
11462 }
11463 else
11464 {
11465 /* Check for indirect jmp, direct and indirect calls. */
11467 {
11468 /* Direct call. */
11472 }
11476 {
11477 /* Indirect call and jmp. */
11481 }
11485 && tls_get_addr
11489 {
11491 /* No padding to call to global or undefined tls_get_addr. */
11495 }
11496 }
11500 {
11506 }
11509 }
11511 static void
11513 {
11515 offsetT insn_start_off;
11518 /* The initializer is arbitrary just to avoid uninitialized error.
11519 it's actually either assigned in add_branch_padding_frag_p
11520 or never be used. */
11523 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
11525 {
11543 {
11550 }
11552 /* vzeroall / vzeroupper */
11557 /* ldmxcsr / stmxcsr / vldmxcsr / vstmxcsr */
11591 /* LAHF-SAHF insns in 64-bit mode. */
11598 /* Any VEX encoded insns execpt for AVX512F, AVX512BW, AVX512DQ,
11599 XOP, FMA4, LPW, TBM, and AMX. */
11614 || (x86_feature_2_used
11615 & (GNU_PROPERTY_X86_FEATURE_2_XSAVE
11616 | GNU_PROPERTY_X86_FEATURE_2_XSAVEOPT
11623 /* Any EVEX encoded insns except for AVX512ER, AVX512PF,
11624 AVX512-4FMAPS, and AVX512-4VNNIW. */
11631 }
11632 #endif
11634 /* Tie dwarf2 debug info to the address at the start of the insn.
11635 We can't do this after the insn has been output as the current
11636 frag may have been closed off. eg. by frag_var. */
11643 {
11645 /* Branch can be 8 bytes. Leave some room for prefixes. */
11648 /* Align section to boundary. */
11651 /* Make room for padding. */
11654 /* Start of the padding. */
11666 }
11670 {
11673 }
11675 /* Output jumps. */
11683 else
11684 {
11685 /* Output normal instructions here. */
11695 {
11696 /* Encode lfence, mfence, and sfence as
11697 f0 83 04 24 00 lock addl $0x0, (%{re}sp). */
11704 {
11709 }
11710 else
11713 }
11715 /* Some processors fail on LOCK prefix. This options makes
11716 assembler ignore LOCK prefix and serves as a workaround. */
11718 {
11723 }
11726 /* Skip if this is a branch. */
11727 ;
11729 {
11730 /* Make room for padding. */
11743 }
11745 {
11748 /* Make room for padding. */
11759 }
11761 /* Since the VEX/EVEX prefix contains the implicit prefix, we
11762 don't need the explicit prefix. */
11764 {
11766 {
11780 {
11784 /* Check for pseudo prefixes. */
11793 }
11797 }
11799 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
11800 /* For x32, add a dummy REX_OPCODE prefix for mov/add with
11801 R_X86_64_GOTTPOFF relocation so that linker can safely
11802 perform IE->LE optimization. A dummy REX_OPCODE prefix
11803 is also needed for lea with R_X86_64_GOTPC32_TLSDESC
11804 relocation for GDesc -> IE/LE optimization. */
11812 #endif
11814 /* The prefix bytes. */
11820 {
11823 }
11824 }
11825 else
11826 {
11830 {
11836 /* There should be no other prefixes for instructions
11837 with VEX prefix. */
11839 }
11841 /* For EVEX instructions i.vrex should become 0 after
11842 build_evex_prefix. For VEX instructions upper 16 registers
11843 aren't available, so VREX should be 0. */
11846 /* Now the VEX prefix. */
11848 {
11852 }
11853 else
11855 }
11857 /* Now the opcode; be careful about word order here! */
11861 {
11873 }
11878 {
11880 }
11881 else
11882 {
11886 {
11891 }
11894 {
11896 /* Put out high byte first: can't use md_number_to_chars! */
11898 /* Fall through. */
11905 }
11907 }
11909 /* Now the modrm byte and sib byte (if present). */
11911 {
11915 /* If i.rm.regmem == ESP (4)
11916 && i.rm.mode != (Register mode)
11917 && not 16 bit
11918 ==> need second modrm byte. */
11925 }
11933 /*
11934 * frag_now_fix () returning plain abs_section_offset when we're in the
11935 * absolute section, and abs_section_offset not getting updated as data
11936 * gets added to the frag breaks the logic below.
11937 */
11939 {
11942 {
11945 j);
11946 else
11948 j);
11949 }
11951 {
11952 /* NB: Don't add prefix with GOTPC relocation since
11953 output_disp() above depends on the fixed encoding
11954 length. Can't add prefix with TLS relocation since
11955 it breaks TLS linker optimization. */
11957 /* Prefix count on the current instruction. */
11961 /* REX byte is encoded in VEX/EVEX prefix. */
11963 count++;
11965 /* Count prefixes for extended opcode maps. */
11968 {
11972 count++;
11980 }
11984 {
11985 /* Set the maximum prefix size in BRANCH_PREFIX
11986 frag. */
11991 else
11993 }
11994 else
11995 {
11996 /* Remember the maximum prefix size in FUSED_JCC_PADDING
11997 frag. */
12001 else
12006 }
12008 /* Use existing segment prefix if possible. Use CS
12009 segment prefix in 64-bit mode. In 32-bit mode, use SS
12010 segment prefix with ESP/EBP base register and use DS
12011 segment prefix without ESP/EBP base register. */
12020 else
12022 }
12023 }
12024 }
12026 /* NB: Don't work with COND_JUMP86 without i386. */
12030 {
12031 /* Terminate each frag so that we can add prefix and check for
12032 fused jcc. */
12035 }
12037 #ifdef DEBUG386
12039 {
12041 }
12043 }
12045 /* Return the size of the displacement operand N. */
12047 static int
12049 {
12059 }
12061 /* Return the size of the immediate operand N. */
12063 static int
12065 {
12074 }
12076 static void
12078 {
12083 {
12085 {
12091 {
12095 size);
12098 }
12099 else
12100 {
12110 /* We can't have 8 bit displacement here. */
12113 /* The PC relative address is computed relative
12114 to the instruction boundary, so in case immediate
12115 fields follows, we need to adjust the value. */
12117 {
12123 {
12124 /* Only one immediate is allowed for PC
12125 relative address, except with .insn. */
12128 }
12129 /* We should find at least one immediate. */
12132 }
12144 && ((symbol_get_value_expression
12148 {
12150 {
12155 }
12158 else
12159 /* Don't do the adjustment for x86-64, as there
12160 the pcrel addressing is relative to the _next_
12161 insn, and that is taken care of in other code. */
12163 }
12165 {
12167 {
12186 }
12187 }
12190 reloc_type);
12198 {
12199 /* Only "add %reg1, foo@gottpoff(%rip), %reg2" is
12200 allowed in md_assemble. Set fx_tcbit2 for EVEX
12201 prefix. */
12204 }
12207 {
12209 {
12210 /* Set fx_tcbit for REX2 prefix. */
12214 }
12215 }
12216 /* In 64-bit, i386_validate_fix updates only (%rip)
12217 relocations. */
12221 /* Check for "call/jmp *mem", "mov mem, %reg",
12222 "test %reg, mem" and "binop mem, %reg" where binop
12223 is one of adc, add, and, cmp, or, sbb, sub, xor
12224 instructions without data prefix. Always generate
12225 R_386_GOT32X for "sym*GOT" operand in 32-bit mode. */
12237 {
12239 {
12241 {
12242 /* Set fx_tcbit for REX2 prefix. */
12245 }
12247 {
12248 /* Set fx_tcbit3 for REX2 prefix. */
12253 else
12255 }
12256 }
12260 }
12261 }
12262 }
12263 }
12264 }
12266 static void
12268 {
12273 {
12275 {
12281 {
12282 offsetT val;
12285 size);
12288 }
12289 else
12290 {
12291 /* Not absolute_section.
12292 Need a 32-bit fixup (don't support 8bit
12293 non-absolute imms). Try to support other
12294 sizes ... */
12304 else
12310 /* This is tough to explain. We end up with this one if we
12311 * have operands that look like
12312 * "_GLOBAL_OFFSET_TABLE_+[.-.L284]". The goal here is to
12313 * obtain the absolute address of the GOT, and it is strongly
12314 * preferable from a performance point of view to avoid using
12315 * a runtime relocation for this. The actual sequence of
12316 * instructions often look something like:
12317 *
12318 * call .L66
12319 * .L66:
12320 * popl %ebx
12321 * addl $_GLOBAL_OFFSET_TABLE_+[.-.L66],%ebx
12322 *
12323 * The call and pop essentially return the absolute address
12324 * of the label .L66 and store it in %ebx. The linker itself
12325 * will ultimately change the first operand of the addl so
12326 * that %ebx points to the GOT, but to keep things simple, the
12327 * .o file must have this operand set so that it generates not
12328 * the absolute address of .L66, but the absolute address of
12329 * itself. This allows the linker itself simply treat a GOTPC
12330 * relocation as asking for a pcrel offset to the GOT to be
12331 * added in, and the addend of the relocation is stored in the
12332 * operand field for the instruction itself.
12333 *
12334 * Our job here is to fix the operand so that it would add
12335 * the correct offset so that %ebx would point to itself. The
12336 * thing that is tricky is that .-.L66 will point to the
12337 * beginning of the instruction, so we need to further modify
12338 * the operand so that it will point to itself. There are
12339 * other cases where you have something like:
12340 *
12341 * .long $_GLOBAL_OFFSET_TABLE_+[.-.L66]
12342 *
12343 * and here no correction would be required. Internally in
12344 * the assembler we treat operands of this form as not being
12345 * pcrel since the '.' is explicitly mentioned, and I wonder
12346 * whether it would simplify matters to do it this way. Who
12347 * knows. In earlier versions of the PIC patches, the
12348 * pcrel_adjust field was used to store the correction, but
12349 * since the expression is not pcrel, I felt it would be
12350 * confusing to do it this way. */
12355 && GOT_symbol
12359 && ((symbol_get_value_expression
12362 {
12372 }
12375 }
12376 }
12377 }
12378 }
12379 \f
12380 /* x86_cons_fix_new is called via the expression parsing code when a
12381 reloc is needed. We use this hook to get the correct .got reloc. */
12384 void
12387 {
12390 #ifdef TE_PE
12392 {
12395 }
12398 #endif
12401 }
12403 /* Export the ABI address size for use by TC_ADDRESS_BYTES for the
12404 purpose of the `.dc.a' internal pseudo-op. */
12406 int
12408 {
12412 }
12414 #if (!(defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) || defined (OBJ_MACH_O)) \
12415 || defined (LEX_AT)) && !defined (TE_PE)
12416 # define lex_got(reloc, adjust, types) NULL
12417 #else
12418 /* Parse operands of the form
12419 <symbol>@GOTOFF+<nnn>
12420 and similar .plt or .got references.
12422 If we find one, set up the correct relocation in RELOC and copy the
12423 input string, minus the `@GOTOFF' into a malloc'd buffer for
12424 parsing by the calling routine. Return this buffer, and if ADJUST
12425 is non-null set it to the length of the string we removed from the
12426 input line. Otherwise return NULL. */
12431 {
12432 /* Some of the relocations depend on the size of what field is to
12433 be relocated. But in our callers i386_immediate and i386_displacement
12434 we don't yet know the operand size (this will be set by insn
12435 matching). Hence we record the word32 relocation here,
12436 and adjust the reloc according to the real size in reloc(). */
12437 static const struct
12438 {
12444 }
12445 gotrel[] =
12446 {
12448 #define OPERAND_TYPE_IMM32_32S_DISP32 { .bitfield = \
12449 { .imm32 = 1, .imm32s = 1, .disp32 = 1 } }
12450 #define OPERAND_TYPE_IMM32_32S_64_DISP32 { .bitfield = \
12451 { .imm32 = 1, .imm32s = 1, .imm64 = 1, .disp32 = 1 } }
12452 #define OPERAND_TYPE_IMM32_32S_64_DISP32_64 { .bitfield = \
12453 { .imm32 = 1, .imm32s = 1, .imm64 = 1, .disp32 = 1, .disp64 = 1 } }
12454 #define OPERAND_TYPE_IMM64_DISP64 { .bitfield = \
12455 { .imm64 = 1, .disp64 = 1 } }
12457 #ifndef TE_PE
12458 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
12460 BFD_RELOC_SIZE32 },
12462 #endif
12464 BFD_RELOC_X86_64_PLTOFF64 },
12467 BFD_RELOC_X86_64_PLT32 },
12470 BFD_RELOC_X86_64_GOTPLT64 },
12473 BFD_RELOC_X86_64_GOTOFF64 },
12476 BFD_RELOC_X86_64_GOTPCREL },
12479 BFD_RELOC_X86_64_TLSGD },
12482 _dummy_first_bfd_reloc_code_real },
12485 BFD_RELOC_X86_64_TLSLD },
12488 BFD_RELOC_X86_64_GOTTPOFF },
12491 BFD_RELOC_X86_64_TPOFF32 },
12494 _dummy_first_bfd_reloc_code_real },
12497 BFD_RELOC_X86_64_DTPOFF32 },
12500 _dummy_first_bfd_reloc_code_real },
12503 _dummy_first_bfd_reloc_code_real },
12506 BFD_RELOC_X86_64_GOT32 },
12509 BFD_RELOC_X86_64_GOTPC32_TLSDESC },
12512 BFD_RELOC_X86_64_TLSDESC_CALL },
12516 BFD_RELOC_32_SECREL },
12518 #endif
12520 #undef OPERAND_TYPE_IMM32_32S_DISP32
12521 #undef OPERAND_TYPE_IMM32_32S_64_DISP32
12522 #undef OPERAND_TYPE_IMM32_32S_64_DISP32_64
12523 #undef OPERAND_TYPE_IMM64_DISP64
12525 };
12529 #if defined (OBJ_MAYBE_ELF) && !defined (TE_PE)
12532 #endif
12539 {
12542 {
12544 {
12551 {
12553 {
12556 }
12557 else
12559 }
12564 /* The length of the first part of our input line. */
12567 /* The second part goes from after the reloc token until
12568 (and including) an end_of_line char or comma. */
12575 /* Allocate and copy string. The trailing NUL shouldn't
12576 be necessary, but be safe. */
12580 /* Replace the relocation token with ' ', so that
12581 errors like foo@GOTOFF1 will be detected. */
12583 else
12584 /* Increment length by 1 if the relocation token is
12585 removed. */
12586 len++;
12592 }
12597 }
12598 }
12600 /* Might be a symbol version string. Don't as_bad here. */
12602 }
12603 #endif
12605 bfd_reloc_code_real_type
12607 {
12614 #if ((defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)) \
12615 && !defined (LEX_AT)) \
12616 || defined (TE_PE)
12618 {
12619 /* Handle @GOTOFF and the like in an expression. */
12632 {
12633 /* expression () has merrily parsed up to the end of line,
12634 or a comma - in the wrong buffer. Transfer how far
12635 input_line_pointer has moved to the right buffer. */
12636 input_line_pointer = (save
12645 {
12650 }
12654 {
12659 }
12660 }
12661 }
12662 else
12663 #endif
12671 /* If not 64bit, massage value, to account for wraparound when !BFD64. */
12677 }
12679 static void
12681 {
12686 }
12688 static void
12690 {
12695 valueT val;
12706 {
12707 bad:
12712 }
12722 {
12725 }
12727 {
12733 {
12735 /* Arrange for build_vex_prefix() to emit 0x8f. */
12739 }
12740 }
12743 {
12746 }
12750 : evex
12754 {
12757 }
12763 {
12764 /* Only address size and segment override prefixes are permitted with
12765 VEX/XOP/EVEX encodings. */
12769 {
12774 {
12781 }
12782 }
12783 }
12786 {
12787 /* Length specifier (VEX.L, XOP.L, EVEX.L'L). */
12789 {
12792 {
12796 else
12803 else
12819 {
12822 else
12825 }
12827 }
12835 {
12838 else
12841 }
12846 {
12849 else
12852 }
12857 {
12860 }
12862 }
12863 }
12866 {
12867 /* embedded prefix (VEX.pp, XOP.pp, EVEX.pp). */
12869 {
12877 {
12880 }
12885 {
12888 }
12890 {
12893 }
12895 }
12896 }
12899 {
12900 /* Encoding space (VEX.mmmmm, EVEX.mmmm). */
12902 {
12907 {
12910 }
12914 {
12917 }
12922 {
12928 {
12931 }
12932 }
12934 }
12935 }
12938 {
12939 /* VEX.W, XOP.W, EVEX.W */
12941 {
12952 {
12955 }
12957 }
12961 }
12964 {
12965 /* Improve diagnostic a little. */
12969 }
12971 /* Before processing the opcode expression, find trailing "+r" or
12972 "/<digit>" specifiers. */
12974 {
12984 {
12989 }
12995 {
13001 }
13002 }
13015 /* Trim off a prefix if present. */
13017 {
13021 {
13029 }
13030 }
13032 /* Parse operands, if any, before evaluating encoding space. */
13034 {
13044 {
13047 }
13050 {
13054 }
13056 /* No need to distinguish encoding_evex and encoding_evex512. */
13059 }
13061 /* Trim off encoding space. */
13063 {
13069 {
13078 }
13081 }
13083 /* Arrange for build_vex_prefix() to properly emit 0xC4/0xC5.
13084 Also avoid hitting abort() there or in build_evex_prefix(). */
13089 {
13092 }
13095 /* Handle operands, if any. */
13097 {
13098 i386_operand_type combined;
13103 {
13105 {
13108 }
13111 else
13113 }
13115 /* Are we to emit ModR/M encoding? */
13126 {
13129 }
13131 /* Enforce certain constraints on operands. */
13134 {
13137 {
13140 }
13141 /* Fall through. */
13144 {
13147 }
13157 {
13160 }
13161 /* Fall through. */
13164 {
13167 }
13168 /* Fall through. */
13172 }
13174 /* Bring operands into canonical order (imm, mem, reg). */
13175 do
13176 {
13180 {
13185 {
13188 }
13189 }
13190 }
13193 /* For Intel syntax swap the order of register operands. */
13196 {
13203 /* Fall through. */
13211 }
13213 /* Enforce constraints when using VSIB. */
13218 {
13220 {
13223 }
13227 {
13228 /* We could allow two register operands, encoding the 2nd one in
13229 an 8-bit immediate like for 4-register-operand insns, but that
13230 would require ugly fiddling with process_operands() and/or
13231 build_modrm_byte(). */
13234 }
13237 }
13239 /* Establish operand size encoding. */
13243 {
13244 /* Look for 8-bit operands that use old registers. */
13257 {
13260 }
13263 {
13284 }
13292 }
13296 {
13302 }
13305 {
13312 }
13314 {
13316 {
13321 }
13325 }
13328 {
13330 {
13335 }
13336 }
13338 {
13340 {
13341 /* Do _not_ consider AVX512VL here. */
13348 }
13351 {
13355 {
13359 }
13370 {
13374 }
13375 }
13376 }
13386 /* Establish size for immediate operands. */
13388 {
13397 {
13400 else
13402 }
13406 {
13409 else
13411 }
13413 {
13416 /* Oddly enough imm_size() checks imm64 first, so the bit needs
13417 zapping since smallest_imm_type() sets it unconditionally. */
13419 {
13423 }
13426 }
13427 else
13428 /* Non-constant expressions are sized heuristically. */
13430 {
13434 }
13435 }
13441 }
13443 /* Don't set opcode until after processing operands, to avoid any
13444 potential special casing there. */
13455 {
13458 }
13461 {
13467 }
13469 {
13475 }
13476 else
13485 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
13486 /* PS: SCFI is enabled only for System V AMD64 ABI. The ABI check has been
13487 performed in i386_target_format. */
13490 #endif
13492 done:
13498 /* Make sure dot_insn() won't yield "true" anymore. */
13500 }
13502 #ifdef TE_PE
13503 static void
13505 {
13506 expressionS exp;
13508 do
13509 {
13515 }
13518 input_line_pointer--;
13520 }
13522 static void
13524 {
13525 expressionS exp;
13527 do
13528 {
13534 }
13537 input_line_pointer--;
13539 }
13540 #endif
13542 /* Handle Rounding Control / SAE specifiers. */
13546 {
13550 {
13552 {
13554 {
13557 }
13560 {
13570 }
13575 }
13576 }
13579 }
13581 /* Handle Vector operations. */
13585 {
13591 {
13594 {
13595 op_string++;
13597 /* Check broadcasts. */
13599 {
13614 {
13616 op_string++;
13617 }
13620 {
13622 op_string++;
13623 }
13624 else
13625 {
13628 }
13629 op_string++;
13632 {
13642 }
13647 /* For .insn a data size specifier may be appended. */
13650 }
13651 /* Check .insn special cases. */
13653 {
13654 dot_insn_modifier:
13656 {
13672 /* This isn't really a "vector" operation, but a sign/size
13673 specifier for immediate operands of .insn. Note that AT&T
13674 syntax handles the same in i386_immediate(). */
13683 {
13688 }
13690 }
13691 }
13692 /* Check masking operation. */
13694 {
13698 /* k0 can't be used for write mask. */
13700 {
13704 }
13707 {
13710 }
13713 else
13714 {
13717 /* Only "{z}" is allowed here. No need to check
13718 zeroing mask explicitly. */
13720 {
13723 }
13724 }
13727 }
13728 /* Check zeroing-flag for masking operation. */
13730 {
13732 {
13736 }
13737 else
13738 {
13740 {
13741 duplicated_vec_op:
13744 }
13748 /* Only "{%k}" is allowed here. No need to check mask
13749 register explicitly. */
13751 {
13753 saved);
13755 }
13756 }
13758 op_string++;
13759 }
13763 else
13767 {
13770 }
13771 op_string++;
13773 /* Strip whitespace since the addition of pseudo prefixes
13774 changed how the scrubber treats '{'. */
13779 }
13780 unknown_vec_op:
13781 /* We don't know this one. */
13784 }
13787 {
13790 }
13793 }
13795 static int
13797 {
13802 i386_operand_type types;
13807 {
13809 MAX_IMMEDIATE_OPERANDS);
13811 }
13829 /* For .insn immediates there may be a size specifier. */
13832 {
13837 {
13842 }
13843 }
13851 {
13856 }
13859 {
13862 }
13865 }
13867 static int
13870 {
13872 {
13875 imm_start);
13877 }
13879 {
13880 /* Size it properly later. */
13883 /* If not 64bit, sign/zero extend val, to account for wraparound
13884 when !BFD64. */
13888 }
13889 #if (defined (OBJ_AOUT) || defined (OBJ_MAYBE_AOUT))
13897 {
13900 }
13901 #endif
13902 else
13903 {
13904 /* This is an address. The size of the address will be
13905 determined later, depending on destination register,
13906 suffix, or the default for the section. */
13913 types);
13914 }
13917 }
13921 {
13922 offsetT val;
13929 {
13943 {
13948 scale);
13952 }
13953 }
13955 {
13959 }
13963 }
13965 static int
13967 {
13977 {
13979 MAX_MEMORY_OPERANDS);
13981 }
13988 {
13992 {
13996 }
13999 else
14001 }
14002 else
14003 {
14004 /* For PC-relative branches, the width of the displacement may be
14005 dependent upon data size, but is never dependent upon address size.
14006 Also make sure to not unintentionally match against a non-PC-relative
14007 branch template. */
14012 {
14018 }
14023 {
14027 else
14029 }
14030 else
14031 {
14034 ? WORD_MNEM_SUFFIX
14038 {
14041 }
14042 }
14043 }
14045 bigdisp);
14054 #ifndef GCC_ASM_O_HACK
14055 #define GCC_ASM_O_HACK 0
14056 #endif
14057 #if GCC_ASM_O_HACK
14061 {
14062 /* This hack is to avoid a warning when using the "o"
14063 constraint within gcc asm statements.
14064 For instance:
14066 #define _set_tssldt_desc(n,addr,limit,type) \
14067 __asm__ __volatile__ ( \
14068 "movw %w2,%0\n\t" \
14069 "movw %w1,2+%0\n\t" \
14070 "rorl $16,%1\n\t" \
14071 "movb %b1,4+%0\n\t" \
14072 "movb %4,5+%0\n\t" \
14073 "movb $0,6+%0\n\t" \
14074 "movb %h1,7+%0\n\t" \
14075 "rorl $16,%1" \
14076 : "=o"(*(n)) : "q" (addr), "ri"(limit), "i"(type))
14078 This works great except that the output assembler ends
14079 up looking a bit weird if it turns out that there is
14080 no offset. You end up producing code that looks like:
14082 #APP
14083 movw $235,(%eax)
14084 movw %dx,2+(%eax)
14085 rorl $16,%edx
14086 movb %dl,4+(%eax)
14087 movb $137,5+(%eax)
14088 movb $0,6+(%eax)
14089 movb %dh,7+(%eax)
14090 rorl $16,%edx
14091 #NO_APP
14093 So here we provide the missing zero. */
14096 }
14097 #endif
14108 #if GCC_ASM_O_HACK
14110 #endif
14113 {
14118 }
14125 }
14127 static int
14130 {
14133 /* We do this to make sure that the section symbol is in
14134 the symbol table. We will ultimately change the relocation
14135 to be relative to the beginning of the section. */
14139 {
14153 else
14155 }
14160 {
14161 inv_disp:
14163 disp_start);
14165 }
14168 {
14169 /* Sizing gets taken care of by optimize_disp().
14171 If not 64bit, sign/zero extend val, to account for wraparound
14172 when !BFD64. */
14176 }
14178 #if (defined (OBJ_AOUT) || defined (OBJ_MAYBE_AOUT))
14186 {
14189 }
14190 #endif
14195 /* Check if this is a displacement only operand. */
14202 }
14204 /* Return the active addressing mode, taking address override and
14205 registers forming the address into consideration. Update the
14206 address override prefix if necessary. */
14208 static enum flag_code
14210 {
14217 /* Avoid replacing the "16-bit addressing not allowed" diagnostic
14218 from md_assemble() by "is not a valid base/index expression"
14219 when there is a base and/or index. */
14221 {
14222 /* MPX insn memory operands with neither base nor index must be forced
14223 to use 32-bit addressing in 16-bit mode. */
14229 }
14230 else
14231 {
14234 #if INFER_ADDR_PREFIX
14236 {
14237 /* Infer address prefix from the first memory operand. */
14244 {
14252 {
14255 /* Change the size of any displacement too. At most one
14256 of Disp16 or Disp32 is set.
14257 FIXME. There doesn't seem to be any real need for
14258 separate Disp16 and Disp32 flags. The same goes for
14259 Imm16 and Imm32. Removing them would probably clean
14260 up the code quite a lot. */
14264 {
14267 };
14271 }
14272 }
14273 }
14274 }
14275 #endif
14276 }
14279 }
14281 /* Make sure the memory operand we've been dealt is valid.
14282 Return 1 on success, 0 on a failure. */
14284 static int
14286 {
14292 {
14293 /* Memory operands of string insns are special in that they only allow
14294 a single register (rDI, rSI, or rBX) as their memory address. */
14297 {
14301 };
14307 {
14315 expected_reg
14318 }
14319 else
14320 expected_reg
14326 {
14327 /* The second memory operand must have the same size as
14328 the first one. */
14339 operand_string,
14341 register_prefix,
14345 }
14346 else
14349 bad_address:
14353 }
14354 else
14355 {
14359 {
14360 /* 32-bit/64-bit checks. */
14362 {
14363 bad_disp:
14367 }
14385 /* bndmk, bndldx, bndstx and mandatory non-vector SIB have special restrictions. */
14390 {
14391 /* They cannot use RIP-relative addressing. */
14393 {
14396 }
14398 /* bndldx and bndstx ignore their scale factor. */
14402 }
14403 }
14404 else
14405 {
14406 /* 16-bit checks. */
14421 }
14422 }
14424 }
14426 /* Handle vector immediates. */
14428 static int
14430 {
14441 {
14444 }
14447 {
14450 }
14452 /* Internally this doesn't count as an operand. */
14456 }
14459 {
14463 }
14465 /* Parse OPERAND_STRING into the i386_insn structure I. Returns zero
14466 on error. */
14468 static int
14470 {
14478 /* We check for an absolute prefix (differentiating,
14479 for example, 'jmp pc_relative_label' from 'jmp *absolute_label'. */
14482 {
14487 }
14489 /* Check if operand is a register. */
14491 {
14492 i386_operand_type temp;
14497 /* Check for a segment override by searching for ':' after a
14498 segment register. */
14503 {
14506 /* Skip the ':' and whitespace. */
14511 /* Handle case of %es:*foo. */
14514 {
14519 }
14522 {
14525 }
14527 }
14529 /* Handle vector operations. */
14531 {
14535 }
14538 {
14541 }
14543 /* Reject pseudo registers for .insn. */
14545 {
14549 }
14554 temp);
14559 /* A GPR may follow an RC or SAE immediate only if a (vector) register
14560 operand was also present earlier on. */
14563 {
14572 }
14573 }
14575 {
14578 }
14580 {
14583 {
14586 }
14590 {
14594 }
14595 }
14597 {
14598 /* If it is a RC or SAE immediate, do the necessary placement check:
14599 Only another immediate or a GPR may precede it. */
14603 {
14607 }
14608 }
14610 {
14611 /* This is a memory reference of some sort. */
14614 /* Start and end of displacement string expression (if found). */
14618 do_memory_reference:
14619 /* Check for base index form. We detect the base index form by
14620 looking for an ')' at the end of the operand, searching
14621 for the '(' matching it, and finding a REGISTER_PREFIX or ','
14622 after the '('. */
14625 /* Handle vector operations. */
14631 {
14635 {
14651 }
14654 {
14657 }
14661 }
14663 /* If we only have a displacement, set-up for it to be parsed later. */
14668 {
14673 /* We've already checked that the number of left & right ()'s are
14674 equal, and that there's a matching set of double quotes. */
14677 {
14683 {
14688 }
14689 }
14693 /* Skip past '(' and whitespace. */
14702 {
14708 {
14714 }
14716 /* There may be an index reg or scale factor here. */
14718 {
14725 {
14732 {
14736 }
14738 {
14741 operand_string);
14743 }
14744 }
14746 {
14752 }
14754 /* Check for scale factor. */
14756 {
14766 {
14769 operand_string);
14771 }
14772 }
14774 {
14779 }
14780 }
14782 {
14785 operand_string);
14787 }
14788 }
14790 {
14796 }
14797 }
14799 /* If there's an expression beginning the operand, parse it,
14800 assuming displacement_string_start and
14801 displacement_string_end are meaningful. */
14803 {
14805 displacement_string_end))
14807 }
14809 /* Special case for (%dx) while doing input/output op. */
14817 {
14823 }
14829 }
14830 else
14831 {
14832 /* It's not a memory operand; argh! */
14836 op_string);
14838 }
14840 }
14841 \f
14842 /* Calculate the maximum variable size (i.e., excluding fr_fix)
14843 that an rs_machine_dependent frag may reach. */
14845 unsigned int
14847 {
14848 /* The only relaxable frags are for jumps.
14849 Unconditional jumps can grow by 4 bytes and others by 5 bytes. */
14852 }
14854 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
14855 static int
14857 {
14858 /* STT_GNU_IFUNC symbol must go through PLT. */
14864 /* Symbol may be weak or local. */
14867 /* Global symbols with non-default visibility can't be preempted. */
14873 {
14876 /* Symbol with PLT relocation may be preempted. */
14880 }
14882 /* Global symbols with default visibility in a shared library may be
14883 preempted by another definition. */
14885 }
14886 #endif
14888 /* Table 3-2. Macro-Fusible Instructions in Haswell Microarchitecture
14889 Note also work for Skylake and Cascadelake.
14890 ---------------------------------------------------------------------
14891 | JCC | ADD/SUB/CMP | INC/DEC | TEST/AND |
14892 | ------ | ----------- | ------- | -------- |
14893 | Jo | N | N | Y |
14894 | Jno | N | N | Y |
14895 | Jc/Jb | Y | N | Y |
14896 | Jae/Jnb | Y | N | Y |
14897 | Je/Jz | Y | Y | Y |
14898 | Jne/Jnz | Y | Y | Y |
14899 | Jna/Jbe | Y | N | Y |
14900 | Ja/Jnbe | Y | N | Y |
14901 | Js | N | N | Y |
14902 | Jns | N | N | Y |
14903 | Jp/Jpe | N | N | Y |
14904 | Jnp/Jpo | N | N | Y |
14905 | Jl/Jnge | Y | Y | Y |
14906 | Jge/Jnl | Y | Y | Y |
14907 | Jle/Jng | Y | Y | Y |
14908 | Jg/Jnle | Y | Y | Y |
14909 --------------------------------------------------------------------- */
14910 static int
14912 {
14922 }
14924 /* Return the next non-empty frag. */
14928 {
14929 /* There may be a frag with a ".fill 0" when there is no room in
14930 the current frag for frag_grow in output_insn. */
14936 ;
14938 }
14940 /* Return the next jcc frag after BRANCH_PADDING. */
14944 {
14952 {
14960 }
14963 }
14965 /* Classify BRANCH_PADDING, BRANCH_PREFIX and FUSED_JCC_PADDING frags. */
14967 static void
14969 {
14979 /* First scan for BRANCH_PADDING and FUSED_JCC_PADDING. Convert
14980 FUSED_JCC_PADDING and merge BRANCH_PADDING. */
14984 {
14988 {
14990 /* The BRANCH_PADDING frag must be followed by a branch
14991 frag. */
14996 /* Check if this is a fused jcc:
14997 FUSED_JCC_PADDING
14998 CMP like instruction
14999 BRANCH_PADDING
15000 COND_JUMP
15001 */
15006 {
15007 /* The BRANCH_PADDING frag is merged with the
15008 FUSED_JCC_PADDING frag. */
15010 /* CMP like instruction size. */
15013 /* Skip to branch_fragP. */
15015 }
15017 {
15018 /* Turn FUSED_JCC_PADDING into BRANCH_PREFIX if it isn't
15019 a fused jcc. */
15020 next_fragP->fr_subtype
15024 /* This will be updated in the BRANCH_PREFIX scan. */
15026 }
15027 else
15030 }
15031 }
15033 /* Stop if there is no BRANCH_PREFIX. */
15037 /* Scan for BRANCH_PREFIX. */
15039 {
15045 /* Count all BRANCH_PREFIX frags before BRANCH_PADDING and
15046 COND_JUMP_PREFIX. */
15051 {
15053 /* Skip rs_fill frags. */
15056 /* Stop for all other frags. */
15059 /* rs_machine_dependent frags. */
15062 {
15063 /* Count BRANCH_PREFIX frags. */
15065 {
15068 }
15069 else
15070 max_prefix_length
15072 }
15077 {
15078 /* Stop at BRANCH_PADDING and FUSED_JCC_PADDING. */
15081 }
15082 else
15083 /* Stop for other rs_machine_dependent frags. */
15085 }
15089 /* Skip to the next frag. */
15091 }
15092 }
15094 /* Compute padding size for
15096 FUSED_JCC_PADDING
15097 CMP like instruction
15098 BRANCH_PADDING
15099 COND_JUMP/UNCOND_JUMP
15101 or
15103 BRANCH_PADDING
15104 COND_JUMP/UNCOND_JUMP
15105 */
15107 static int
15109 {
15113 /* The start address of the BRANCH_PADDING or FUSED_JCC_PADDING frag. */
15118 /* CMP like instrunction size. */
15121 /* The base size of the branch frag. */
15124 /* Add opcode and displacement bytes for the rs_machine_dependent
15125 branch frag. */
15129 /* Check if branch is within boundary and doesn't end at the last
15130 byte. */
15133 /* Padding needed to avoid crossing boundary. */
15135 else
15136 /* No padding needed. */
15139 /* The return value may be saved in tc_frag_data.length which is
15140 unsigned byte. */
15145 }
15147 /* i386_generic_table_relax_frag()
15149 Handle BRANCH_PADDING, BRANCH_PREFIX and FUSED_JCC_PADDING frags to
15150 grow/shrink padding to align branch frags. Hand others to
15151 relax_frag(). */
15153 long
15155 {
15158 {
15162 /* When the BRANCH_PREFIX frag is used, the computed address
15163 must match the actual address and there should be no padding. */
15169 /* Update the padding size. */
15174 }
15176 {
15182 /* Use the padding set by the leading BRANCH_PREFIX frag. */
15186 /* Compute the relative address of the padding frag in the very
15187 first time where the BRANCH_PREFIX frag sizes are zero. */
15192 /* First update the last length from the previous interation. */
15200 {
15202 {
15205 {
15209 else
15213 }
15214 }
15215 else
15217 }
15219 /* Check the padding size for the padding frag. */
15220 padding_size = i386_branch_padding_size
15225 /* Check if there is change from the last interation. */
15227 {
15228 /* Update the expected address of the padding frag. */
15233 }
15236 {
15237 /* No padding if there is no sufficient room. Clear the
15238 expected address of the padding frag. */
15241 }
15242 else
15243 /* Store the expected address of the padding frag. */
15250 /* Update the length for the current interation. */
15258 {
15260 {
15263 {
15267 else
15271 }
15272 }
15273 else
15275 }
15279 }
15281 }
15283 /* md_estimate_size_before_relax()
15285 Called just before relax() for rs_machine_dependent frags. The x86
15286 assembler uses these frags to handle variable size jump
15287 instructions.
15289 Any symbol that is now undefined will not become defined.
15290 Return the correct fr_subtype in the frag.
15291 Return the initial "guess for variable size of frag" to caller.
15292 The guess is actually the growth beyond the fixed part. Whatever
15293 we do to grow the fixed or variable part contributes to our
15294 returned value. */
15296 int
15298 {
15302 {
15305 }
15307 /* We've already got fragP->fr_subtype right; all we have to do is
15308 check for un-relaxable symbols. On an ELF system, we can't relax
15309 an externally visible symbol, because it may be overridden by a
15310 shared library. */
15312 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
15313 || (IS_ELF
15316 #endif
15317 #if defined (OBJ_COFF) && defined (TE_PE)
15320 #endif
15321 )
15322 {
15323 /* Symbol is undefined in this segment, or we need to keep a
15324 reloc so that weak symbols can be overridden. */
15335 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
15340 #endif
15341 else
15348 {
15350 /* Make jmp (0xeb) a (d)word displacement jump. */
15356 reloc_type);
15362 {
15363 /* Negate the condition, and branch past an
15364 unconditional jump. */
15367 /* Insert an unconditional jump. */
15369 /* We added two extra opcode bytes, and have a two byte
15370 offset. */
15375 reloc_type);
15377 }
15378 /* Fall through. */
15382 {
15387 BFD_RELOC_8_PCREL);
15390 }
15392 /* This changes the byte-displacement jump 0x7N
15393 to the (d)word-displacement jump 0x0f,0x8N. */
15396 /* We've added an opcode byte. */
15401 reloc_type);
15407 }
15409 /* All jumps handled here are signed, but don't unconditionally use a
15410 signed limit check for 32 and 16 bit jumps as we want to allow wrap
15411 around at 4G (outside of 64-bit mode) and 64k. */
15417 }
15419 /* Guess size depending on current relax state. Initially the relax
15420 state will correspond to a short jump and we return 1, because
15421 the variable part of the frag (the branch offset) is one byte
15422 long. However, we can relax a section more than once and in that
15423 case we must either set fr_subtype back to the unrelaxed state,
15424 or return the value for the appropriate branch. */
15426 }
15428 /* Called after relax() is finished.
15430 In: Address of frag.
15431 fr_type == rs_machine_dependent.
15432 fr_subtype is what the address relaxed to.
15434 Out: Any fixSs and constants are set up.
15435 Caller will turn frag into a ".space 0". */
15437 void
15440 {
15443 offsetT target_address;
15444 offsetT opcode_address;
15446 offsetT displacement_from_opcode_start;
15451 {
15452 /* Generate nop padding. */
15455 {
15460 {
15467 {
15470 {
15492 }
15496 else
15499 }
15500 else
15501 {
15505 }
15509 {
15530 }
15536 }
15540 else
15544 }
15546 }
15550 /* Address we want to reach in file space. */
15553 /* Address opcode resides at in file space. */
15556 /* Displacement from opcode start to fill into instruction. */
15560 {
15561 /* Don't have to change opcode. */
15564 }
15565 else
15566 {
15573 {
15612 }
15613 }
15615 /* If size if less then four we are sure that the operand fits,
15616 but if it's 4, then it could be that the displacement is larger
15617 then -/+ 2GB. */
15619 && object_64bit
15623 {
15626 /* Make us emit 0. */
15628 }
15629 /* Now put displacement after opcode. */
15634 }
15635 \f
15636 /* Apply a fixup (fixP) to segment data, once it has been determined
15637 by our caller that we have all the info we need to fix it up.
15639 Parameter valP is the pointer to the value of the bits.
15641 On the 386, immediates, displacements, and data pointers are all in
15642 the same (little-endian) format, so we don't need to care about which
15643 we are handling. */
15645 void
15647 {
15651 #if !defined (TE_Mach)
15653 {
15655 {
15672 }
15673 }
15681 {
15682 /* This is a hack. There should be a better way to handle this.
15683 This covers for the fact that bfd_install_relocation will
15684 subtract the current location (for partial_inplace, PC relative
15685 relocations); see more below. */
15686 #ifndef OBJ_AOUT
15688 #ifdef TE_PE
15690 #endif
15691 )
15693 #endif
15694 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
15696 {
15703 {
15704 /* Yes, we add the values in twice. This is because
15705 bfd_install_relocation subtracts them out again. I think
15706 bfd_install_relocation is broken, but I don't dare change
15707 it. FIXME. */
15709 }
15710 }
15711 #endif
15712 #if defined (OBJ_COFF) && defined (TE_PE)
15713 /* For some reason, the PE format does not store a
15714 section address offset for a PC relative symbol. */
15718 #endif
15719 }
15720 #if defined (OBJ_COFF) && defined (TE_PE)
15723 /* PR 16858: Do not modify weak function references. */
15725 {
15726 #if !defined (TE_PEP)
15727 /* For x86 PE weak function symbols are neither PC-relative
15728 nor do they set S_IS_FUNCTION. So the only reliable way
15729 to detect them is to check the flags of their containing
15730 section. */
15733 ;
15734 else
15735 #endif
15737 }
15738 #endif
15740 /* Fix a few things - the dynamic linker expects certain values here,
15741 and we must not disappoint it. */
15742 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
15745 {
15748 /* Make the jump instruction point to the address of the operand.
15749 At runtime we merely add the offset to the actual PLT entry.
15750 NB: Subtract the offset size only for jump instructions. */
15769 /* Fallthrough */
15794 }
15797 /* If not 64bit, massage value, to account for wraparound when !BFD64. */
15804 /* Are we finished with this relocation now? */
15806 {
15809 {
15816 }
15817 }
15818 #if defined (OBJ_COFF) && defined (TE_PE)
15820 {
15822 /* Remember value for tc_gen_reloc. */
15824 /* Clear out the frag for now. */
15826 }
15827 #endif
15829 {
15832 /* Remember value for tc_gen_reloc. */
15835 }
15838 }
15839 \f
15842 {
15843 /* This outputs the LITTLENUMs in REVERSE order;
15844 in accord with the bigendian 386. */
15846 }
15847 \f
15852 {
15856 else
15860 }
15862 /* Verify that @r can be used in the current context. */
15865 {
15890 {
15896 {
15902 }
15903 }
15906 {
15911 {
15922 }
15923 }
15936 /* Don't allow fake index register unless allow_index_reg isn't 0. */
15940 /* Upper 16 vector registers are only available with VREX in 64bit
15941 mode, and require EVEX encoding. */
15943 {
15949 {
15960 }
15961 }
15964 {
15970 {
15981 }
15982 }
15996 }
15998 /* REG_STRING starts *before* REGISTER_PREFIX. */
16002 {
16008 /* Skip possible REGISTER_PREFIX and possible whitespace. */
16017 {
16020 s++;
16021 }
16030 /* Handle floating point regs, allowing spaces in the (i) part. */
16032 {
16042 {
16047 {
16053 {
16057 }
16058 }
16059 /* We have "%st(" then garbage. */
16061 }
16062 }
16065 }
16067 /* REG_STRING starts *before* REGISTER_PREFIX. */
16071 {
16076 else
16079 {
16088 {
16094 }
16096 {
16100 {
16105 }
16107 {
16111 }
16112 }
16115 }
16117 }
16119 int
16121 {
16125 /* We only know the terminating character here. It being double quote could
16126 be the closing one of a quoted symbol name, or an opening one from a
16127 following string (or another quoted symbol name). Since the latter can't
16128 be valid syntax for anything, bailing in either case is good enough. */
16136 {
16142 }
16146 }
16148 void
16150 {
16155 {
16159 {
16163 }
16171 {
16177 }
16178 else
16179 {
16182 }
16184 }
16185 }
16187 #ifdef BFD64
16188 /* To maintain consistency with !BFD64 builds of gas record, whether any
16189 (binary) operator was involved in an expression. As expressions are
16190 evaluated in only 32 bits when !BFD64, we use this to decide whether to
16191 truncate results. */
16195 {
16200 {
16201 /* Since the expression parser applies unary operators fine to bignum
16202 operands, we don't need to be concerned of respective operands not
16203 fitting in 32 bits. */
16207 }
16208 /* This isn't entirely right: The pattern can also result when constant
16209 expressions are folded (e.g. 0xffffffff + 1). */
16220 }
16221 #endif
16222 \f
16223 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
16225 #else
16227 #endif
16229 #define OPTION_32 (OPTION_MD_BASE + 0)
16230 #define OPTION_64 (OPTION_MD_BASE + 1)
16231 #define OPTION_DIVIDE (OPTION_MD_BASE + 2)
16232 #define OPTION_MARCH (OPTION_MD_BASE + 3)
16233 #define OPTION_MTUNE (OPTION_MD_BASE + 4)
16234 #define OPTION_MMNEMONIC (OPTION_MD_BASE + 5)
16235 #define OPTION_MSYNTAX (OPTION_MD_BASE + 6)
16236 #define OPTION_MINDEX_REG (OPTION_MD_BASE + 7)
16237 #define OPTION_MNAKED_REG (OPTION_MD_BASE + 8)
16238 #define OPTION_MRELAX_RELOCATIONS (OPTION_MD_BASE + 9)
16239 #define OPTION_MSSE2AVX (OPTION_MD_BASE + 10)
16240 #define OPTION_MSSE_CHECK (OPTION_MD_BASE + 11)
16241 #define OPTION_MOPERAND_CHECK (OPTION_MD_BASE + 12)
16242 #define OPTION_MAVXSCALAR (OPTION_MD_BASE + 13)
16243 #define OPTION_X32 (OPTION_MD_BASE + 14)
16244 #define OPTION_MADD_BND_PREFIX (OPTION_MD_BASE + 15)
16245 #define OPTION_MEVEXLIG (OPTION_MD_BASE + 16)
16246 #define OPTION_MEVEXWIG (OPTION_MD_BASE + 17)
16247 #define OPTION_MBIG_OBJ (OPTION_MD_BASE + 18)
16248 #define OPTION_MOMIT_LOCK_PREFIX (OPTION_MD_BASE + 19)
16249 #define OPTION_MEVEXRCIG (OPTION_MD_BASE + 20)
16250 #define OPTION_MSHARED (OPTION_MD_BASE + 21)
16251 #define OPTION_MAMD64 (OPTION_MD_BASE + 22)
16252 #define OPTION_MINTEL64 (OPTION_MD_BASE + 23)
16253 #define OPTION_MFENCE_AS_LOCK_ADD (OPTION_MD_BASE + 24)
16254 #define OPTION_X86_USED_NOTE (OPTION_MD_BASE + 25)
16255 #define OPTION_MVEXWIG (OPTION_MD_BASE + 26)
16256 #define OPTION_MALIGN_BRANCH_BOUNDARY (OPTION_MD_BASE + 27)
16257 #define OPTION_MALIGN_BRANCH_PREFIX_SIZE (OPTION_MD_BASE + 28)
16258 #define OPTION_MALIGN_BRANCH (OPTION_MD_BASE + 29)
16259 #define OPTION_MBRANCHES_WITH_32B_BOUNDARIES (OPTION_MD_BASE + 30)
16260 #define OPTION_MLFENCE_AFTER_LOAD (OPTION_MD_BASE + 31)
16261 #define OPTION_MLFENCE_BEFORE_INDIRECT_BRANCH (OPTION_MD_BASE + 32)
16262 #define OPTION_MLFENCE_BEFORE_RET (OPTION_MD_BASE + 33)
16263 #define OPTION_MUSE_UNALIGNED_VECTOR_MOVE (OPTION_MD_BASE + 34)
16266 {
16268 #if (defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) \
16269 || defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O))
16271 #endif
16272 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
16276 #endif
16293 # if defined (TE_PE) || defined (TE_PEP)
16295 #endif
16306 OPTION_MLFENCE_BEFORE_INDIRECT_BRANCH},
16311 };
16314 int
16316 {
16321 {
16330 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
16331 /* -Qy, -Qn: SVR4 arguments controlling whether a .comment section
16332 should be emitted or not. FIXME: Not implemented. */
16338 /* -V: SVR4 argument to print version ID. */
16343 /* -k: Ignore for FreeBSD compatibility. */
16348 /* -s: On i386 Solaris, this tells the native assembler to use
16349 .stab instead of .stab.excl. We always use .stab anyhow. */
16361 else
16366 #endif
16367 #if (defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) \
16368 || defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O))
16370 {
16380 {
16383 }
16387 }
16389 #endif
16391 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
16394 {
16400 {
16403 }
16407 }
16408 else
16411 #endif
16414 {
16421 {
16424 }
16428 }
16432 #ifdef SVR4_COMMENT_CHARS
16433 {
16444 }
16445 #endif
16451 /* Allow -march=+nosse. */
16453 arch++;
16454 do
16455 {
16467 {
16473 {
16474 /* Processor. */
16488 }
16492 {
16493 /* ISA extension. */
16497 {
16503 {
16510 {
16517 }
16519 }
16520 /* Fall through. */
16524 }
16527 }
16528 }
16531 {
16532 /* Disable an ISA extension. */
16536 {
16541 }
16542 }
16548 }
16557 {
16560 {
16564 }
16565 }
16575 else
16584 else
16612 else
16623 else
16632 else
16641 else
16656 else
16669 else
16678 else
16682 # if defined (TE_PE) || defined (TE_PEP)
16686 #endif
16693 else
16702 else
16711 else
16717 {
16721 }
16728 else
16730 arg);
16742 else
16744 arg);
16752 else
16757 {
16761 {
16763 {
16766 }
16768 {
16774 /* Limit alignment power to 31. */
16776 {
16779 }
16780 }
16781 }
16783 }
16787 {
16790 /* Some processors only support 5 prefixes. */
16792 {
16795 }
16797 arg);
16798 }
16805 do
16806 {
16822 else
16825 }
16833 align_branch = (align_branch_jcc_bit
16834 | align_branch_fused_bit
16848 {
16850 /* Turn off -Os. */
16852 }
16854 {
16856 /* Turn on all encoding optimizations. */
16858 }
16859 else
16860 {
16862 /* Turn off -Os. */
16864 }
16869 }
16871 }
16873 #define MESSAGE_TEMPLATE \
16874 " "
16879 {
16883 /* Reserve 2 spaces for ", " or ",\0" */
16886 /* Check if there is any room. */
16888 {
16890 {
16893 }
16895 }
16896 else
16897 {
16898 /* Output the current message now and start a new one. */
16908 }
16912 }
16914 static void
16916 {
16930 {
16937 }
16940 {
16941 /* Should it be skipped? */
16948 {
16949 /* It is an extension. Skip if we aren't asked to show it. */
16952 }
16954 {
16955 /* It is an processor. Skip if we show only extension. */
16957 }
16959 {
16960 /* It is an impossible processor - skip. */
16962 }
16965 }
16967 /* Display disabled extensions. */
16970 {
16980 }
16984 }
16986 void
16988 {
16989 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
16994 #endif
16999 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17002 #endif
17003 #ifdef BFD64
17004 # if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17007 # elif defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O)
17010 # endif
17011 #endif
17012 #ifdef SVR4_COMMENT_CHARS
17015 #else
17018 #endif
17064 else
17077 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17084 else
17088 #endif
17089 #if defined (TE_PE) || defined (TE_PEP)
17092 #endif
17104 else
17135 }
17137 #if ((defined (OBJ_MAYBE_COFF) && defined (OBJ_MAYBE_AOUT)) \
17138 || defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) \
17139 || defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O))
17141 /* Pick the target format to use. */
17145 {
17147 {
17149 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17152 else
17154 #endif
17155 }
17159 {
17162 {
17172 }
17175 cpu_arch_name);
17176 }
17177 else
17180 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17183 #endif
17189 {
17190 #if defined (OBJ_MAYBE_AOUT) || defined (OBJ_AOUT)
17193 #endif
17194 #if defined (OBJ_MAYBE_COFF) || defined (OBJ_COFF)
17195 # if defined (TE_PE) || defined (TE_PEP)
17198 {
17201 }
17203 # elif defined (TE_GO32)
17206 # else
17209 # endif
17210 #endif
17211 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
17213 {
17217 {
17220 #ifndef TE_SOLARIS
17222 #endif
17227 #ifndef TE_SOLARIS
17229 #endif
17235 #ifndef TE_SOLARIS
17237 #endif
17241 }
17243 {
17247 }
17248 else
17250 }
17251 #endif
17252 #if defined (OBJ_MACH_O)
17255 {
17259 }
17260 else
17262 #endif
17266 }
17267 }
17270 \f
17271 symbolS *
17273 {
17278 {
17280 {
17285 };
17287 }
17289 }
17291 #if defined (OBJ_AOUT) || defined (OBJ_MAYBE_AOUT)
17292 /* Round up a section size to the appropriate boundary. */
17294 valueT
17296 {
17298 {
17299 /* For a.out, force the section size to be aligned. If we don't do
17300 this, BFD will align it for us, but it will not write out the
17301 final bytes of the section. This may be a bug in BFD, but it is
17302 easier to fix it here since that is how the other a.out targets
17303 work. */
17308 }
17311 }
17312 #endif
17314 /* On the i386, PC-relative offsets are relative to the start of the
17315 next instruction. That is, the address of the offset, plus its
17316 size, since the offset is always the last part of the insn. */
17318 long
17320 {
17322 }
17324 #ifdef OBJ_AOUT
17326 static void
17328 {
17334 }
17336 #endif
17338 /* Remember constant directive. */
17340 void
17342 {
17347 {
17351 }
17352 }
17354 int
17356 {
17358 {
17366 }
17368 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17375 /* BFD_RELOC_X86_64_GOTTPOFF:
17376 1. fx_tcbit -> BFD_RELOC_X86_64_CODE_4_GOTTPOFF
17377 2. fx_tcbit2 -> BFD_RELOC_X86_64_CODE_6_GOTTPOFF
17378 BFD_RELOC_X86_64_GOTPC32_TLSDESC:
17379 1. fx_tcbit -> BFD_RELOC_X86_64_CODE_4_GOTPC32_TLSDESC
17380 BFD_RELOC_32_PCREL:
17381 1. fx_tcbit -> BFD_RELOC_X86_64_GOTPCRELX
17382 2. fx_tcbit2 -> BFD_RELOC_X86_64_REX_GOTPCRELX
17383 3. fx_tcbit3 -> BFD_RELOC_X86_64_CODE_4_GOTPCRELX
17384 4. else -> BFD_RELOC_X86_64_GOTPCREL
17385 */
17387 {
17392 }
17396 #endif
17399 {
17401 {
17403 {
17406 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17413 else
17414 #endif
17416 }
17417 else
17418 {
17421 else
17423 }
17425 }
17426 }
17427 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17428 else
17429 {
17430 /* NB: Commit 292676c1 resolved PLT32 reloc aganst local symbol
17431 to section. Since PLT32 relocation must be against symbols,
17432 turn such PLT32 relocation into PC32 relocation. */
17439 {
17443 }
17444 }
17445 #endif
17448 }
17450 arelent *
17452 {
17454 bfd_reloc_code_real_type code;
17457 {
17458 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17473 else
17476 {
17477 /* Resolve size relocation against local symbol to size of
17478 the symbol plus addend. */
17484 {
17488 }
17493 && object_64bit
17501 }
17503 {
17507 }
17508 #endif
17509 /* Fall through. */
17554 #ifdef TE_PE
17557 #endif
17562 {
17563 /* Don't turn BFD_RELOC_X86_64_32S into BFD_RELOC_32. */
17566 }
17567 /* Fall through. */
17570 {
17572 {
17582 #ifdef BFD64
17584 #endif
17585 }
17586 }
17587 else
17588 {
17590 {
17600 #ifdef BFD64
17602 #endif
17603 }
17604 }
17606 }
17611 && GOT_symbol
17613 {
17616 else
17618 }
17620 && GOT_symbol
17622 {
17624 }
17633 {
17634 /* HACK: Since i386 ELF uses Rel instead of Rela, encode the
17635 vtable entry to be used in the relocation's section offset. */
17638 #if defined (OBJ_COFF) && defined (TE_PE)
17641 else
17642 #endif
17644 }
17645 /* Use the rela in 64bit mode. */
17646 else
17647 {
17650 {
17666 }
17670 else
17672 {
17695 }
17696 }
17700 {
17704 /* Set howto to a garbage value so that we can keep going. */
17707 }
17710 }
17714 void
17716 {
17731 {
17734 {
17739 }
17740 }
17741 }
17743 void
17745 {
17748 }
17750 int
17752 {
17753 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
17756 #endif
17758 }
17760 #ifdef TE_PE
17761 void
17763 {
17764 expressionS exp;
17770 }
17771 #endif
17773 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
17774 int
17776 {
17783 }
17785 void
17787 {
17794 /* Find the (or make a) list entry to save state into. */
17799 {
17804 }
17807 /* Find the list entry to load state from. */
17813 else
17816 }
17818 #ifdef TE_SOLARIS
17819 void
17821 {
17824 }
17825 #endif
17827 /* For ELF on x86-64, add support for SHF_X86_64_LARGE. */
17829 bfd_vma
17831 {
17833 {
17838 }
17839 else
17842 }
17844 static void
17846 {
17848 {
17851 }
17852 else
17853 {
17859 {
17860 flagword applicable;
17864 /* The .lbss section is for local .largecomm symbols. */
17871 }
17880 }
17881 }