| blob | 8dc7425763ba144e20e04e9763abbceae5c18e21 |
1 /* tc-i386.c -- Assemble code for the Intel 80386
2 Copyright (C) 1989-2022 Free Software Foundation, Inc.
4 This file is part of GAS, the GNU Assembler.
6 GAS is free software; you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation; either version 3, or (at your option)
9 any later version.
11 GAS is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with GAS; see the file COPYING. If not, write to the Free
18 Software Foundation, 51 Franklin Street - Fifth Floor, Boston, MA
19 02110-1301, USA. */
21 /* Intel 80386 machine specific gas.
22 Written by Eliot Dresselhaus (eliot@mgm.mit.edu).
23 x86_64 support by Jan Hubicka (jh@suse.cz)
24 VIA PadLock support by Michal Ludvig (mludvig@suse.cz)
25 Bugs & suggestions are completely welcome. This is free software.
26 Please help us make it better. */
37 #include <limits.h>
39 #ifndef INFER_ADDR_PREFIX
40 #define INFER_ADDR_PREFIX 1
41 #endif
43 #ifndef DEFAULT_ARCH
45 #endif
47 #ifndef INLINE
48 #if __GNUC__ >= 2
49 #define INLINE __inline__
50 #else
51 #define INLINE
52 #endif
53 #endif
55 /* Prefixes will be emitted in the order defined below.
56 WAIT_PREFIX must be the first prefix since FWAIT is really is an
57 instruction, and so must come before any prefixes.
58 The preferred prefix order is SEG_PREFIX, ADDR_PREFIX, DATA_PREFIX,
59 REP_PREFIX/HLE_PREFIX, LOCK_PREFIX. */
60 #define WAIT_PREFIX 0
61 #define SEG_PREFIX 1
62 #define ADDR_PREFIX 2
63 #define DATA_PREFIX 3
64 #define REP_PREFIX 4
65 #define HLE_PREFIX REP_PREFIX
66 #define BND_PREFIX REP_PREFIX
67 #define LOCK_PREFIX 5
71 /* we define the syntax here (modulo base,index,scale syntax) */
76 /* these are the instruction mnemonic suffixes in AT&T syntax or
77 memory operand size in Intel syntax. */
83 /* Intel Syntax. Use a non-ascii letter since since it never appears
84 in instructions. */
89 /* This matches the C -> StaticRounding alias in the opcode table. */
90 #define commutative staticrounding
92 /*
93 'templates' is for grouping together 'template' structures for opcodes
94 of the same name. This is only used for storing the insns in the grand
95 ole hash table of insns.
96 The templates themselves start at START and range up to (but not including)
97 END.
98 */
100 {
103 }
104 templates;
106 /* 386 operand encoding bytes: see 386 book for details of this. */
108 {
112 }
113 modrm_byte;
115 /* x86-64 extension prefix. */
118 /* 386 opcode byte to code indirect addressing. */
120 {
124 }
125 sib_byte;
127 /* x86 arch names, types and features */
129 {
136 }
137 arch_entry;
147 #ifdef TE_PE
150 #endif
182 #ifndef I386COFF
184 #endif
185 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
188 /* GNU_PROPERTY_X86_ISA_1_USED. */
190 /* GNU_PROPERTY_X86_FEATURE_2_USED. */
192 /* Generate x86 used ISA and feature properties. */
194 #endif
198 /* parse_register() returns this when a register alias cannot be used. */
209 /* VEX prefix. */
211 {
212 /* VEX prefix is either 2 byte or 3 byte. EVEX is 4 byte. */
215 /* Destination or source register specifier. */
219 /* 'md_assemble ()' gathers together information and puts it into a
220 i386_insn. */
222 union i386_op
223 {
227 };
229 enum i386_error
230 {
232 operand_size_mismatch,
233 operand_type_mismatch,
234 register_type_mismatch,
235 number_of_operands_mismatch,
236 invalid_instruction_suffix,
237 bad_imm4,
238 unsupported_with_intel_mnemonic,
239 unsupported_syntax,
240 unsupported,
241 invalid_sib_address,
242 invalid_vsib_address,
243 invalid_vector_register_set,
244 invalid_tmm_register_set,
245 invalid_dest_and_src_register_set,
246 unsupported_vector_index_register,
247 unsupported_broadcast,
248 broadcast_needed,
249 unsupported_masking,
250 mask_not_on_destination,
251 no_default_mask,
252 unsupported_rc_sae,
253 invalid_register_operand,
254 };
256 struct _i386_insn
257 {
258 /* TM holds the template for the insn were currently assembling. */
259 insn_template tm;
261 /* SUFFIX holds the instruction size suffix for byte, word, dword
262 or qword, if given. */
265 /* OPCODE_LENGTH holds the number of base opcode bytes. */
268 /* OPERANDS gives the number of given operands. */
271 /* REG_OPERANDS, DISP_OPERANDS, MEM_OPERANDS, IMM_OPERANDS give the number
272 of given register, displacement, memory operands and immediate
273 operands. */
276 /* TYPES [i] is the type (see above #defines) which tells us how to
277 use OP[i] for the corresponding operand. */
280 /* Displacement expression, immediate expression, or register for each
281 operand. */
284 /* Flags for operands. */
286 #define Operand_PCrel 1
287 #define Operand_Mem 2
289 /* Relocation type for operand */
292 /* BASE_REG, INDEX_REG, and LOG2_SCALE_FACTOR are used to encode
293 the base index byte below. */
298 /* SEG gives the seg_entries of this insn. They are zero unless
299 explicit segment overrides are given. */
302 /* Copied first memory operand string, for re-checking. */
305 /* PREFIX holds all the given prefix opcodes (usually null).
306 PREFIXES is the number of prefix opcodes. */
310 /* Register is in low 3 bits of opcode. */
313 /* The operand to a branch insn indicates an absolute branch. */
316 /* There is a memory operand of (%dx) which should be only used
317 with input/output instructions. */
320 /* Extended states. */
321 enum
322 {
323 /* Use MMX state. */
325 /* Use XMM state. */
327 /* Use YMM state. */
329 /* Use ZMM state. */
331 /* Use TMM state. */
333 /* Use MASK state. */
337 /* Has GOTPC or TLS relocation. */
340 /* RM and SIB are the modrm byte and the sib byte where the
341 addressing modes of this insn are encoded. */
342 modrm_byte rm;
343 rex_byte rex;
344 rex_byte vrex;
345 sib_byte sib;
346 vex_prefix vex;
348 /* Masking attributes.
350 The struct describes masking, applied to OPERAND in the instruction.
351 REG is a pointer to the corresponding mask register. ZEROING tells
352 whether merging or zeroing mask is used. */
353 struct Mask_Operation
354 {
357 /* The operand where this operation is associated. */
361 /* Rounding control and SAE attributes. */
362 struct RC_Operation
363 {
364 enum rc_type
365 {
367 rne,
368 rd,
369 ru,
370 rz,
371 saeonly
373 /* In Intel syntax the operand modifier form is supposed to be used, but
374 we continue to accept the immediate forms as well. */
378 /* Broadcasting attributes.
380 The struct describes broadcasting, applied to OPERAND. TYPE is
381 expresses the broadcast factor. */
382 struct Broadcast_Operation
383 {
384 /* Type of broadcast: {1to2}, {1to4}, {1to8}, {1to16} or {1to32}. */
387 /* Index of broadcasted operand. */
390 /* Number of bytes to broadcast. */
394 /* Compressed disp8*N attribute. */
397 /* Prefer load or store in encoding. */
398 enum
399 {
401 dir_encoding_load,
402 dir_encoding_store,
403 dir_encoding_swap
406 /* Prefer 8bit, 16bit, 32bit displacement in encoding. */
407 enum
408 {
410 disp_encoding_8bit,
411 disp_encoding_16bit,
412 disp_encoding_32bit
415 /* Prefer the REX byte in encoding. */
418 /* Disable instruction size optimization. */
421 /* How to encode vector instructions. */
422 enum
423 {
425 vex_encoding_vex,
426 vex_encoding_vex3,
427 vex_encoding_evex,
428 vex_encoding_error
431 /* REP prefix. */
434 /* HLE prefix. */
437 /* Have BND prefix. */
440 /* Have NOTRACK prefix. */
443 /* Error message. */
445 };
449 /* Link RC type with corresponding string, that'll be looked for in
450 asm. */
451 struct RC_name
452 {
456 };
459 {
465 };
467 /* To be indexed by segment register number. */
469 ES_PREFIX_OPCODE,
470 CS_PREFIX_OPCODE,
471 SS_PREFIX_OPCODE,
472 DS_PREFIX_OPCODE,
473 FS_PREFIX_OPCODE,
474 GS_PREFIX_OPCODE
475 };
477 /* List of chars besides those in app.c:symbol_chars that can start an
478 operand. Used to prevent the scrubber eating vital white-space. */
480 #ifdef LEX_AT
481 "@"
482 #endif
483 #ifdef LEX_QM
484 "?"
485 #endif
486 ;
488 #if ((defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)) \
489 && !defined (TE_GNU) \
490 && !defined (TE_LINUX) \
491 && !defined (TE_Haiku) \
492 && !defined (TE_FreeBSD) \
493 && !defined (TE_DragonFly) \
494 && !defined (TE_NetBSD))
495 /* This array holds the chars that always start a comment. If the
496 pre-processor is disabled, these aren't very useful. The option
497 --divide will remove '/' from this list. */
499 #define SVR4_COMMENT_CHARS 1
502 #else
505 #endif
507 /* This array holds the chars that only start a comment at the beginning of
508 a line. If the line seems to have the form '# 123 filename'
509 .line and .file directives will appear in the pre-processed output.
510 Note that input_file.c hand checks for '#' at the beginning of the
511 first line of the input file. This is because the compiler outputs
512 #NO_APP at the beginning of its output.
513 Also note that comments started like this one will always work if
514 '/' isn't otherwise defined. */
519 /* Chars that can be used to separate mant from exp in floating point
520 nums. */
523 /* Chars that mean this number is a floating point constant
524 As in 0f12.456
525 or 0d1.2345e12. */
528 /* Tables for lexical analysis. */
534 /* Lexical macros. */
535 #define is_mnemonic_char(x) (mnemonic_chars[(unsigned char) x])
536 #define is_operand_char(x) (operand_chars[(unsigned char) x])
537 #define is_register_char(x) (register_chars[(unsigned char) x])
539 #define is_identifier_char(x) (identifier_chars[(unsigned char) x])
541 /* All non-digit non-letter characters that may occur in an operand. */
544 /* md_assemble() always leaves the strings it's passed unaltered. To
545 effect this we maintain a stack of saved characters that we've smashed
546 with '\0's (indicating end of strings for various sub-fields of the
547 assembler instruction). */
550 #define END_STRING_AND_SAVE(s) \
552 #define RESTORE_END_STRING(s) \
553 do { *(s) = *--save_stack_p; } while (0)
555 /* The instruction we're assembling. */
558 /* Possible templates for current insn. */
561 /* Per instruction expressionS buffers: max displacements & immediates. */
565 /* Current operand we are working on. */
568 /* We support four different modes. FLAG_CODE variable is used to distinguish
569 these. */
572 CODE_32BIT,
573 CODE_16BIT,
574 CODE_64BIT };
580 /* __tls_get_addr/___tls_get_addr symbol for TLS. */
583 #if ((defined (OBJ_MAYBE_COFF) && defined (OBJ_MAYBE_AOUT)) \
584 || defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) \
585 || defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O))
587 /* The ELF ABI to use. */
588 enum x86_elf_abi
589 {
590 I386_ABI,
591 X86_64_ABI,
592 X86_64_X32_ABI
593 };
596 #endif
598 #if defined (TE_PE) || defined (TE_PEP)
599 /* Use big object file format. */
601 #endif
603 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
604 /* 1 if generating code for a shared library. */
608 /* The other CFA base register for SFrame unwind info. */
612 #endif
614 /* 1 for intel syntax,
615 0 if att syntax. */
618 static enum x86_64_isa
619 {
621 intel64 /* Intel64 ISA. */
624 /* 1 for intel mnemonic,
625 0 if att mnemonic. */
628 /* 1 if pseudo registers are permitted. */
631 /* 1 if register prefix % not required. */
634 /* 1 if the assembler should add BND prefix for all control-transferring
635 instructions supporting it, even if this prefix wasn't specified
636 explicitly. */
639 /* 1 if pseudo index register, eiz/riz, is allowed . */
642 /* 1 if the assembler should ignore LOCK prefix, even if it was
643 specified explicitly. */
646 /* 1 if the assembler should encode lfence, mfence, and sfence as
647 "lock addl $0, (%{re}sp)". */
650 /* 1 if lfence should be inserted after every load. */
653 /* Non-zero if lfence should be inserted before indirect branch. */
654 static enum lfence_before_indirect_branch_kind
655 {
657 lfence_branch_register,
658 lfence_branch_memory,
659 lfence_branch_all
660 }
661 lfence_before_indirect_branch;
663 /* Non-zero if lfence should be inserted before ret. */
664 static enum lfence_before_ret_kind
665 {
667 lfence_before_ret_not,
668 lfence_before_ret_or,
669 lfence_before_ret_shl
670 }
671 lfence_before_ret;
673 /* Types of previous instruction is .byte or prefix. */
674 static struct
675 {
676 segT seg;
680 enum last_insn_kind
681 {
683 last_insn_directive,
684 last_insn_prefix
688 /* 1 if the assembler should generate relax relocations. */
690 static int generate_relax_relocations
693 static enum check_kind
694 {
696 check_warning,
697 check_error
698 }
701 /* Non-zero if branches should be aligned within power of 2 boundary. */
704 /* Types of branches to align. */
705 enum align_branch_kind
706 {
714 };
716 /* Type bits of branches to align. */
717 enum align_branch_bit
718 {
725 };
728 | align_branch_fused_bit
731 /* Types of condition jump used by macro-fusion. */
732 enum mf_jcc_kind
733 {
742 };
744 /* Types of compare flag-modifying insntructions used by macro-fusion. */
745 enum mf_cmp_kind
746 {
749 mf_cmp_incdec /* inc/dec */
750 };
752 /* The maximum padding size for fused jcc. CMP like instruction can
753 be 9 bytes and jcc can be 6 bytes. Leave room just in case for
754 prefixes. */
755 #define MAX_FUSED_JCC_PADDING_SIZE 20
757 /* The maximum number of prefixes added for an instruction. */
760 /* Optimization:
761 1. Clear the REX_W bit with register operand if possible.
762 2. Above plus use 128bit vector instruction to clear the full vector
763 register.
764 */
767 /* Optimization:
768 1. Clear the REX_W bit with register operand if possible.
769 2. Above plus use 128bit vector instruction to clear the full vector
770 register.
771 3. Above plus optimize "test{q,l,w} $imm8,%r{64,32,16}" to
772 "testb $imm7,%r8".
773 */
776 /* Register prefix used for error message. */
779 /* Used in 16 bit gcc mode to add an l suffix to call, ret, enter,
780 leave, push, and pop instructions so that gcc has the same stack
781 frame as in 32 bit mode. */
784 /* Non-zero to optimize code alignment. */
787 /* Non-zero to quieten some warnings. */
790 /* Guard to avoid repeated warnings about non-16-bit code on 16-bit CPUs. */
793 /* CPU name. */
797 /* CPU feature flags. */
800 /* If we have selected a cpu we are generating instructions for. */
803 /* Cpu we are generating instructions for. */
806 /* CPU feature flags of cpu we are generating instructions for. */
809 /* CPU instruction set architecture used. */
812 /* CPU feature flags of instruction set architecture used. */
813 i386_cpu_flags cpu_arch_isa_flags;
815 /* If set, conditional jumps are not automatically promoted to handle
816 larger than a byte offset. */
819 /* Encode SSE instructions with VEX prefix. */
822 /* Encode aligned vector move as unaligned vector move. */
825 /* Encode scalar AVX instructions with specific vector length. */
826 static enum
827 {
829 vex256
832 /* Encode VEX WIG instructions with specific vex.w. */
833 static enum
834 {
836 vexw1
839 /* Encode scalar EVEX LIG instructions with specific vector length. */
840 static enum
841 {
843 evexl256,
844 evexl512
847 /* Encode EVEX WIG instructions with specific evex.w. */
848 static enum
849 {
851 evexw1
854 /* Value to encode in EVEX RC bits, for SAE-only instructions. */
857 /* Pre-defined "_GLOBAL_OFFSET_TABLE_". */
860 /* The dwarf2 return column, adjusted for 32 or 64 bit. */
863 /* The dwarf2 data alignment, adjusted for 32 or 64 bit. */
866 /* Interface to relax_segment.
867 There are 3 major relax states for 386 jump insns because the
868 different types of jumps add different sizes to frags when we're
869 figuring out what sort of jump to choose to reach a given label.
871 BRANCH_PADDING, BRANCH_PREFIX and FUSED_JCC_PADDING are used to align
872 branches which are handled by md_estimate_size_before_relax() and
873 i386_generic_table_relax_frag(). */
875 /* Types. */
876 #define UNCOND_JUMP 0
877 #define COND_JUMP 1
878 #define COND_JUMP86 2
879 #define BRANCH_PADDING 3
880 #define BRANCH_PREFIX 4
881 #define FUSED_JCC_PADDING 5
883 /* Sizes. */
884 #define CODE16 1
885 #define SMALL 0
886 #define SMALL16 (SMALL | CODE16)
887 #define BIG 2
888 #define BIG16 (BIG | CODE16)
890 #ifndef INLINE
891 #ifdef __GNUC__
892 #define INLINE __inline__
893 #else
894 #define INLINE
895 #endif
896 #endif
898 #define ENCODE_RELAX_STATE(type, size) \
899 ((relax_substateT) (((type) << 2) | (size)))
900 #define TYPE_FROM_RELAX_STATE(s) \
901 ((s) >> 2)
902 #define DISP_SIZE_FROM_RELAX_STATE(s) \
903 ((((s) & 3) == BIG ? 4 : (((s) & 3) == BIG16 ? 2 : 1)))
905 /* This table is used by relax_frag to promote short jumps to long
906 ones where necessary. SMALL (short) jumps may be promoted to BIG
907 (32 bit long) ones, and SMALL16 jumps to BIG16 (16 bit long). We
908 don't allow a short jump in a 32 bit code segment to be promoted to
909 a 16 bit offset jump because it's slower (requires data size
910 prefix), and doesn't work, unless the destination is in the bottom
911 64k of the code segment (The top 16 bits of eip are zeroed). */
914 {
915 /* The fields are:
916 1) most positive reach of this state,
917 2) most negative reach of this state,
918 3) how many bytes this mode will have in the variable part of the frag
919 4) which index into the table to try if we can't fit into this one. */
921 /* UNCOND_JUMP states. */
924 /* dword jmp adds 4 bytes to frag:
925 0 extra opcode bytes, 4 displacement bytes. */
927 /* word jmp adds 2 byte2 to frag:
928 0 extra opcode bytes, 2 displacement bytes. */
931 /* COND_JUMP states. */
934 /* dword conditionals adds 5 bytes to frag:
935 1 extra opcode byte, 4 displacement bytes. */
937 /* word conditionals add 3 bytes to frag:
938 1 extra opcode byte, 2 displacement bytes. */
941 /* COND_JUMP86 states. */
944 /* dword conditionals adds 5 bytes to frag:
945 1 extra opcode byte, 4 displacement bytes. */
947 /* word conditionals add 4 bytes to frag:
948 1 displacement byte and a 3 byte long branch insn. */
950 };
952 #define ARCH(n, t, f, s) \
953 { STRING_COMMA_LEN (#n), s, PROCESSOR_ ## t, CPU_ ## f ## _FLAGS, \
954 CPU_NONE_FLAGS }
955 #define SUBARCH(n, e, d, s) \
956 { STRING_COMMA_LEN (#n), s, PROCESSOR_NONE, CPU_ ## e ## _FLAGS, \
957 CPU_ ## d ## _FLAGS }
960 {
961 /* Do not replace the first two entries - i386_target_format() and
962 set_cpu_arch() rely on them being there in this order. */
1129 };
1131 #undef SUBARCH
1132 #undef ARCH
1134 #ifdef I386COFF
1135 /* Like s_lcomm_internal in gas/read.c but the alignment string
1136 is allowed to be optional. */
1140 {
1147 {
1152 }
1153 else
1154 {
1161 else
1163 }
1167 }
1169 static void
1171 {
1173 }
1174 #endif
1177 {
1178 #if !defined(OBJ_AOUT) && !defined(USE_ALIGN_PTWO)
1180 #else
1182 #endif
1184 #ifndef I386COFF
1186 #else
1188 #endif
1201 #ifdef BFD64
1203 #endif
1212 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
1214 #else
1218 #endif
1219 #ifdef TE_PE
1222 #endif
1224 };
1226 /* For interface with expression (). */
1229 /* Hash table for instruction mnemonic lookup. */
1232 /* Hash table for register lookup. */
1234 \f
1235 /* Various efficient no-op patterns for aligning code labels.
1236 Note: Don't try to assemble the instructions in the comments.
1237 0L and 0w are not legal. */
1260 /* 32-bit NOPs patterns. */
1263 };
1264 /* 16-bit NOPs patterns. */
1267 };
1268 /* nopl (%[re]ax) */
1271 /* nopl 0(%[re]ax) */
1274 /* nopl 0(%[re]ax,%[re]ax,1) */
1277 /* nopw 0(%[re]ax,%[re]ax,1) */
1280 /* nopl 0L(%[re]ax) */
1283 /* nopl 0L(%[re]ax,%[re]ax,1) */
1286 /* nopw 0L(%[re]ax,%[re]ax,1) */
1289 /* nopw %cs:0L(%[re]ax,%[re]ax,1) */
1292 /* data16 nopw %cs:0L(%eax,%eax,1) */
1295 /* 32-bit and 64-bit NOPs patterns. */
1299 };
1301 /* Genenerate COUNT bytes of NOPs to WHERE from PATT with the maximum
1302 size of a single NOP instruction MAX_SINGLE_NOP_SIZE. */
1304 static void
1308 {
1309 /* Place the longer NOP first. */
1315 {
1317 max_single_nop_size);
1319 }
1323 /* Use the smaller one if the requsted one isn't available. */
1325 {
1326 max_single_nop_size--;
1328 }
1337 {
1340 {
1341 /* Use the smaller one plus one-byte NOP if the needed one
1342 isn't available. */
1343 last--;
1347 }
1348 else
1350 }
1351 }
1355 {
1357 }
1361 {
1363 }
1365 /* Genenerate COUNT bytes of NOPs to WHERE with the maximum size of a
1366 single NOP instruction LIMIT. */
1368 void
1370 {
1373 /* Maximum number of NOPs before switching to jump over NOPs. */
1377 {
1382 /* Allow NOP padding for jumps and calls. */
1386 /* Fall through. */
1389 }
1391 /* We need to decide which NOP sequence to use for 32bit and
1392 64bit. When -mtune= is used:
1394 1. For PROCESSOR_I386, PROCESSOR_I486, PROCESSOR_PENTIUM and
1395 PROCESSOR_GENERIC32, f32_patt will be used.
1396 2. For the rest, alt_patt will be used.
1398 When -mtune= isn't used, alt_patt will be used if
1399 cpu_arch_isa_flags has CpuNop. Otherwise, f32_patt will
1400 be used.
1402 When -march= or .arch is used, we can't use anything beyond
1403 cpu_arch_isa_flags. */
1406 {
1409 /* Limit number of NOPs to 2 in 16-bit mode. */
1411 }
1412 else
1413 {
1415 {
1416 /* PROCESSOR_UNKNOWN means that all ISAs may be used. */
1418 {
1420 /* We use cpu_arch_isa_flags to check if we SHOULD
1421 optimize with nops. */
1424 else
1452 }
1453 }
1454 else
1455 {
1457 {
1459 /* When cpu_arch_isa is set, cpu_arch_tune shouldn't be
1460 PROCESSOR_UNKNOWN. */
1476 /* We use cpu_arch_isa_flags to check if we CAN optimize
1477 with nops. */
1480 else
1491 else
1499 }
1500 }
1503 {
1505 /* Limit number of NOPs to 2 for older processors. */
1507 }
1508 else
1509 {
1511 /* Limit number of NOPs to 7 for newer processors. */
1513 }
1514 }
1520 {
1521 /* Output NOPs for .nop directive. */
1523 {
1529 }
1530 }
1535 {
1536 /* Generate jump over NOPs. */
1539 {
1540 /* Use "jmp disp8" if possible. */
1545 }
1546 else
1547 {
1551 {
1555 }
1556 else
1557 {
1560 }
1564 {
1568 }
1572 }
1573 }
1575 /* Generate multiple NOPs. */
1577 }
1581 {
1583 {
1587 /* Fall through. */
1591 /* Fall through. */
1596 }
1597 }
1601 {
1603 {
1606 /* Fall through. */
1609 /* Fall through. */
1612 /* Fall through. */
1616 }
1620 }
1625 {
1627 {
1631 /* Fall through. */
1635 /* Fall through. */
1641 }
1642 }
1646 {
1648 {
1652 /* Fall through. */
1656 /* Fall through. */
1660 /* Fall through. */
1664 /* Fall through. */
1669 }
1670 }
1675 {
1677 {
1681 /* Fall through. */
1685 /* Fall through. */
1689 /* Fall through. */
1693 /* Fall through. */
1699 }
1700 }
1704 {
1707 }
1709 static INLINE i386_cpu_flags
1711 {
1713 {
1716 /* Fall through. */
1719 /* Fall through. */
1722 /* Fall through. */
1725 /* Fall through. */
1731 }
1733 }
1735 static INLINE i386_cpu_flags
1737 {
1739 {
1742 /* Fall through. */
1745 /* Fall through. */
1748 /* Fall through. */
1751 /* Fall through. */
1757 }
1759 }
1761 static INLINE i386_cpu_flags
1763 {
1765 {
1768 /* Fall through. */
1771 /* Fall through. */
1774 /* Fall through. */
1777 /* Fall through. */
1783 }
1785 }
1789 #define CPU_FLAGS_ARCH_MATCH 0x1
1790 #define CPU_FLAGS_64BIT_MATCH 0x2
1792 #define CPU_FLAGS_PERFECT_MATCH \
1793 (CPU_FLAGS_ARCH_MATCH | CPU_FLAGS_64BIT_MATCH)
1795 /* Return CPU flags match bits. */
1797 static int
1799 {
1807 {
1808 /* This instruction is available on all archs. */
1810 }
1811 else
1812 {
1813 /* This instruction is available only on some archs. */
1816 /* AVX512VL is no standalone feature - match it and then strip it. */
1821 /* AVX and AVX2 present at the same time express an operand size
1822 dependency - strip AVX2 for the purposes here. The operand size
1823 dependent check occurs in check_vecOperands(). */
1829 {
1831 {
1832 /* We need to check a few extra flags with AVX. */
1840 }
1842 {
1843 /* We need to check a few extra flags with AVX512F. */
1849 }
1850 else
1852 }
1853 }
1855 }
1857 static INLINE i386_operand_type
1859 {
1866 {
1869 /* Fall through. */
1872 /* Fall through. */
1878 }
1880 }
1882 static INLINE i386_operand_type
1884 {
1889 {
1892 /* Fall through. */
1895 /* Fall through. */
1901 }
1903 }
1905 static INLINE i386_operand_type
1907 {
1916 {
1919 /* Fall through. */
1922 /* Fall through. */
1928 }
1930 }
1932 static INLINE i386_operand_type
1934 {
1939 {
1942 /* Fall through. */
1945 /* Fall through. */
1951 }
1953 }
1965 enum operand_type
1966 {
1967 reg,
1968 imm,
1969 disp,
1970 anymem
1971 };
1975 {
1977 {
2004 }
2007 }
2009 /* Return 1 if there is no conflict in 8bit/16bit/32bit/64bit/80bit size
2010 between operand GIVEN and opeand WANTED for instruction template T. */
2015 {
2026 }
2028 /* Return 1 if there is no conflict in SIMD register between operand
2029 GIVEN and opeand WANTED for instruction template T. */
2034 {
2043 }
2045 /* Return 1 if there is no conflict in any size between operand GIVEN
2046 and opeand WANTED for instruction template T. */
2051 {
2059 /* For scalar opcode templates to allow register and memory
2060 operands at the same time, some special casing is needed
2061 here. Also for v{,p}broadcast*, {,v}pmov{s,z}*, and
2062 down-conversion vpmov*. */
2073 }
2075 /* Return value has MATCH_STRAIGHT set if there is no size conflict on any
2076 operands for instruction template T, and it has MATCH_REVERSE set if there
2077 is no size conflict on any operands for the template with operands reversed
2078 (and the template allows for reversing in the first place). */
2080 #define MATCH_STRAIGHT 1
2081 #define MATCH_REVERSE 2
2085 {
2088 /* Don't check non-absolute jump instructions. */
2093 /* Check memory and accumulator operand size. */
2095 {
2103 {
2106 }
2110 {
2113 }
2117 {
2120 }
2123 {
2126 }
2127 }
2132 /* Check reverse. */
2137 {
2140 /* For 4- and 5-operand insns VEX.W controls just the first two
2141 register operands. */
2160 }
2163 }
2167 i386_operand_type given)
2168 {
2188 mismatch:
2191 }
2193 /* If given types g0 and g1 are registers they must be of the same type
2194 unless the expected operand type register overlap is null.
2195 Intel syntax sized memory operands are also checked here. */
2199 i386_operand_type t0,
2200 i386_operand_type g1,
2201 i386_operand_type t1)
2202 {
2224 /* If expectations overlap in no more than a single size, all is fine. */
2238 }
2242 {
2252 }
2256 {
2262 else
2264 }
2268 {
2270 }
2274 {
2276 }
2280 {
2282 }
2286 {
2288 }
2292 {
2293 #ifndef BFD64
2295 #else
2297 #endif
2302 {
2303 #ifndef BFD64
2305 #else
2307 #endif
2311 {
2312 #ifdef BFD64
2318 #endif
2321 }
2325 {
2334 /* Return 0 if NUM isn't properly aligned. */
2338 /* Check if NUM will fit in 8bit after shift. */
2340 }
2344 {
2346 }
2348 static i386_operand_type
2350 {
2351 i386_operand_type t;
2357 {
2358 /* This code is disabled on the 486 because all the Imm1 forms
2359 in the opcode table are slower on the i486. They're the
2360 versions with the implicitly specified single-position
2361 displacement, which has another syntax if you really want to
2362 use that form. */
2369 }
2371 {
2377 }
2379 {
2384 }
2386 {
2390 }
2392 {
2395 }
2400 }
2402 static offsetT
2404 {
2405 addressT mask;
2408 {
2411 #ifdef BFD64
2413 #endif
2416 }
2423 }
2425 enum PREFIX_GROUP
2426 {
2428 PREFIX_LOCK,
2429 PREFIX_REP,
2430 PREFIX_DS,
2431 PREFIX_OTHER
2432 };
2434 /* Returns
2435 a. PREFIX_EXIST if attempting to add a prefix where one from the
2436 same class already exists.
2437 b. PREFIX_LOCK if lock prefix is added.
2438 c. PREFIX_REP if rep/repne prefix is added.
2439 d. PREFIX_DS if ds prefix is added.
2440 e. PREFIX_OTHER if other prefix is added.
2441 */
2443 static enum PREFIX_GROUP
2445 {
2451 {
2458 }
2459 else
2460 {
2462 {
2468 /* Fall through. */
2499 }
2502 }
2505 {
2509 }
2510 else
2514 }
2516 static void
2518 {
2523 {
2526 }
2527 else
2528 {
2531 }
2533 {
2536 else
2540 }
2542 {
2545 else
2549 }
2551 }
2553 static void
2555 {
2557 }
2559 static void
2561 {
2568 }
2570 static void
2572 {
2573 /* Find out if register prefixing is specified. */
2578 {
2586 else
2589 }
2595 allow_naked_reg = (intel_syntax
2597 else
2605 }
2607 static void
2609 {
2611 }
2613 static void
2615 {
2617 }
2619 static void
2621 {
2626 {
2629 }
2630 else
2631 {
2634 }
2639 {
2649 else
2652 }
2653 else
2657 }
2659 static void
2661 i386_cpu_flags new_flag ATTRIBUTE_UNUSED)
2662 {
2663 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
2666 /* Intel MCU is only supported on ELF. */
2671 {
2672 /* Use cpu_arch_name if it is set in md_parse_option. Otherwise
2673 use default_arch. */
2677 }
2679 /* If we are targeting Intel MCU, we must enable it. */
2685 #endif
2686 }
2688 static void
2690 {
2694 else
2696 }
2698 static void
2700 {
2702 {
2706 i386_cpu_flags flags;
2707 i386_cpu_flags isa_flags;
2718 {
2723 i386_cpu_flags flags;
2726 {
2729 else
2730 {
2738 {
2741 }
2742 else
2743 {
2746 }
2750 {
2753 }
2756 }
2757 }
2759 {
2765 else
2780 }
2782 {
2789 {
2794 };
2799 }
2800 else
2801 {
2813 }
2818 }
2821 {
2824 {
2826 {
2834 {
2837 }
2838 else
2839 {
2842 }
2846 {
2849 }
2852 }
2861 {
2865 }
2866 else
2867 cpu_arch_isa_flags
2873 }
2874 }
2877 {
2878 /* Disable an ISA extension. */
2882 {
2886 {
2890 }
2894 }
2895 }
2901 }
2902 else
2908 {
2918 ;
2919 else
2923 }
2926 }
2928 enum bfd_architecture
2930 {
2932 {
2937 }
2938 else
2940 }
2942 unsigned long
2944 {
2946 {
2949 else
2951 }
2954 {
2956 {
2960 }
2961 else
2963 }
2964 else
2966 }
2967 \f
2968 void
2970 {
2971 /* Support pseudo prefixes like {disp32}. */
2974 /* Initialize op_hash hash table. */
2977 {
2981 /* Setup for loop. */
2987 {
2991 {
2992 /* different name --> ship out current template list;
2993 add to hash table; & begin anew. */
3002 }
3003 }
3004 }
3006 /* Initialize reg_hash hash table. */
3008 {
3013 {
3015 {
3018 {
3021 }
3023 {
3024 /* There's no point inserting st(<N>) in the hash table, as
3025 parentheses aren't included in register_chars[] anyway. */
3029 }
3034 {
3038 }
3045 }
3049 }
3050 }
3052 /* Fill in lexical tables: mnemonic_chars, operand_chars. */
3053 {
3058 {
3060 {
3064 }
3066 {
3070 }
3072 {
3075 }
3076 #ifdef SVR4_COMMENT_CHARS
3079 #endif
3084 {
3087 }
3088 }
3090 #ifdef LEX_AT
3092 #endif
3093 #ifdef LEX_QM
3096 #endif
3105 }
3108 {
3109 #if defined (OBJ_COFF) && defined (TE_PE)
3112 #else
3114 #endif
3116 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
3119 #endif
3120 }
3121 else
3122 {
3125 }
3127 /* NB: FUSED_JCC_PADDING frag must have sufficient room so that it
3128 can be turned into BRANCH_PREFIX frag. */
3131 }
3133 void
3135 {
3138 }
3140 void
3142 {
3145 }
3146 \f
3147 #ifdef DEBUG386
3149 /* Debugging routines for md_assemble. */
3155 static void
3157 {
3176 {
3194 }
3195 }
3197 static void
3199 {
3204 };
3221 {
3225 }
3226 }
3228 static void
3230 {
3235 {
3239 }
3241 {
3245 }
3246 }
3248 static void
3250 {
3255 }
3257 static struct type_name
3258 {
3259 i386_operand_type mask;
3261 }
3263 {
3298 };
3300 static void
3302 {
3304 i386_operand_type a;
3307 {
3311 }
3313 }
3316 \f
3317 static bfd_reloc_code_real_type
3321 bfd_reloc_code_real_type other)
3322 {
3324 {
3329 {
3353 }
3355 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
3357 {
3361 {
3364 }
3365 }
3366 #endif
3368 /* Sign-checking 4-byte relocations in 16-/32-bit code is pointless. */
3378 size);
3386 else
3389 }
3392 {
3396 {
3401 }
3403 }
3404 else
3405 {
3408 {
3410 }
3411 else
3413 {
3418 }
3421 }
3424 }
3426 /* Here we decide which fixups can be adjusted to make them relative to
3427 the beginning of the section instead of the symbol. Basically we need
3428 to make sure that the dynamic relocations are done correctly, so in
3429 some cases we force the original symbol to be used. */
3431 int
3433 {
3434 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
3438 /* Don't adjust pc-relative references to merge sections in 64-bit
3439 mode. */
3445 /* The x86_64 GOTPCREL are represented as 32bit PCrel relocations
3446 and changed later by validate_fix. */
3451 /* Adjust_reloc_syms doesn't know about the GOT. Need to keep symbol
3452 for size relocations. */
3485 #endif
3487 }
3491 {
3498 }
3500 static int
3502 {
3503 /* Note that the value returned is meaningful only for opcodes with (memory)
3504 operands, hence the code here is free to improperly handle opcodes that
3505 have no operands (for better performance and smaller code). */
3511 {
3512 /* fclex, fdecstp, fdisi, femms, feni, fincstp, finit, fsetpm, and
3513 the fs segment override prefix not currently handled because no
3514 call path can make opcodes without operands get here */
3533 {
3535 {
3541 }
3542 }
3548 }
3551 }
3555 {
3560 /* Note that for pseudo prefixes this produces a length of 1. But for them
3561 the length isn't interesting at all. */
3567 }
3569 /* Build the VEX prefix. */
3571 static void
3573 {
3578 /* Check register specifier. */
3580 {
3581 register_specifier =
3584 }
3585 else
3588 /* Use 2-byte VEX prefix by swapping destination and source operand
3589 if there are more than 1 register operand. */
3598 {
3601 i386_operand_type temp_type;
3622 }
3624 /* Use 2-byte VEX prefix by swapping commutative source operands if there
3625 are no memory operands and at least 3 register ones. */
3635 {
3638 i386_operand_type temp_type;
3659 }
3665 else
3666 {
3669 /* Determine vector length from the last multi-length vector
3670 operand. */
3676 {
3679 }
3680 }
3682 /* Check the REX.W bit and VEXW. */
3687 else
3690 /* Use 2-byte VEX prefix if possible. */
3695 {
3696 /* 2-byte VEX prefix. */
3702 /* Check the REX.R bit. */
3708 }
3709 else
3710 {
3711 /* 3-byte VEX prefix. */
3715 {
3728 }
3730 /* The high 3 bits of the second VEX byte are 1's compliment
3731 of RXB bits from REX. */
3738 }
3739 }
3743 {
3747 }
3751 {
3753 }
3755 static unsigned int
3757 {
3776 {
3780 /* Fall through. */
3784 /* Fall through. */
3788 /* Fall through. */
3796 /* Fall through. */
3799 }
3806 {
3809 }
3817 else
3825 }
3827 /* Build the EVEX prefix. */
3829 static void
3831 {
3835 /* Check register specifier. */
3837 {
3843 /* The upper 16 registers are encoded in the fourth byte of the
3844 EVEX prefix. */
3848 }
3849 else
3850 {
3853 /* Encode upper 16 vector index register in the fourth byte of
3854 the EVEX prefix. */
3857 else
3859 }
3861 /* 4 byte EVEX prefix. */
3865 /* The high 3 bits of the second EVEX byte are 1's compliment of RXB
3866 bits from REX. */
3871 /* The fifth bit of the second EVEX byte is 1's compliment of the
3872 REX_R bit in VREX. */
3875 else
3879 {
3880 /* When all operands are registers, the REX_X bit in REX is not
3881 used. We reuse it to encode the upper 16 registers, which is
3882 indicated by the REX_B bit in VREX. The REX_X bit is encoded
3883 as 1's compliment. */
3885 {
3888 }
3889 }
3891 /* EVEX instructions shouldn't need the REX prefix. */
3895 /* Check the REX.W bit and VEXW. */
3900 else
3903 /* The third byte of the EVEX prefix. */
3909 /* The fourth byte of the EVEX prefix. */
3910 /* The zeroing-masking bit. */
3914 /* Don't always set the broadcast bit if there is no RC. */
3916 {
3917 /* Encode the vector length. */
3922 {
3925 /* Determine vector length from the last multi-length vector
3926 operand. */
3931 {
3933 {
3936 }
3938 {
3941 }
3943 {
3946 }
3948 {
3950 {
3962 }
3964 }
3965 }
3969 }
3972 {
3988 }
3990 /* Encode the broadcast bit. */
3993 }
3996 else
4001 }
4003 static void
4005 {
4008 /* These AMD 3DNow! and SSE2 instructions have an opcode suffix
4009 which is coded in the same place as an 8-bit immediate field
4010 would be. Here we fake an 8-bit immediate operand from the
4011 opcode suffix stored in tm.extension_opcode.
4013 AVX instructions also use this encoding, for some of
4014 3 argument instructions. */
4028 }
4031 static int
4033 {
4035 {
4054 {
4058 }
4060 {
4064 }
4066 }
4067 }
4069 /* Encode aligned vector move as unaligned vector move. */
4071 static void
4073 {
4075 {
4078 /* movaps/movapd/vmovaps/vmovapd. */
4085 /* movdqa/vmovdqa/vmovdqa64/vmovdqa32. */
4092 }
4093 }
4095 /* Try the shortest encoding by shortening operand size. */
4097 static void
4099 {
4104 {
4105 /* Optimize: -O:
4106 lea symbol, %rN -> mov $symbol, %rN
4107 lea (%rM), %rN -> mov %rM, %rN
4108 lea (,%rM,1), %rN -> mov %rM, %rN
4110 and in 32-bit mode for 16-bit addressing
4112 lea (%rM), %rN -> movzx %rM, %rN
4114 and in 64-bit mode zap 32-bit addressing in favor of using a
4115 32-bit (or less) destination.
4116 */
4118 {
4122 }
4125 {
4126 /* Handle:
4127 lea symbol, %rN -> mov $symbol, %rN
4128 */
4130 {
4131 /* Don't transform a relocation to a 16-bit one. */
4139 {
4144 else
4145 {
4148 }
4149 }
4150 else
4151 {
4152 /* Subject to further optimization below. */
4157 }
4158 }
4159 /* Outside of 64-bit mode address and operand sizes have to match if
4160 a relocation is involved, as otherwise we wouldn't (currently) or
4161 even couldn't express the relocation correctly. */
4169 /* In 16-bit mode converting LEA with 16-bit addressing and a 32-bit
4170 destination is going to grow encoding size. */
4176 else
4177 {
4182 else
4188 /* NB: Add () to !i.prefix[ADDR_PREFIX] to silence
4189 GCC 5. */
4192 }
4197 {
4200 }
4201 }
4206 else
4207 {
4208 /* Handle:
4209 lea (%rM), %rN -> mov %rM, %rN
4210 lea (,%rM,1), %rN -> mov %rM, %rN
4211 lea (%rM), %rN -> movzx %rM, %rN
4212 */
4221 else
4226 {
4231 }
4232 else
4241 }
4248 }
4260 {
4261 /* Optimize: -Os:
4262 test $imm7, %r64/%r32/%r16 -> test $imm7, %r8
4263 */
4266 {
4268 /* Ignore the suffix. */
4270 /* Convert to byte registers. */
4275 else
4280 }
4281 }
4310 {
4311 /* Optimize: -O:
4312 andq $imm31, %r64 -> andl $imm31, %r32
4313 andq $imm7, %r64 -> andl $imm7, %r32
4314 testq $imm31, %r64 -> testl $imm31, %r32
4315 xorq %r64, %r64 -> xorl %r32, %r32
4316 subq %r64, %r64 -> subl %r32, %r32
4317 movq $imm31, %r64 -> movl $imm31, %r32
4318 movq $imm32, %r64 -> movl $imm32, %r32
4319 */
4322 {
4323 /* Handle
4324 movq $imm31, %r64 -> movl $imm31, %r32
4325 movq $imm32, %r64 -> movl $imm32, %r32
4326 */
4336 {
4337 /* Handle
4338 movq $imm31, %r64 -> movl $imm31, %r32
4339 */
4344 }
4345 }
4346 }
4348 && !optimize_for_space
4355 {
4356 /* Optimize: -O2:
4357 andb %rN, %rN -> testb %rN, %rN
4358 andw %rN, %rN -> testw %rN, %rN
4359 andq %rN, %rN -> testq %rN, %rN
4360 orb %rN, %rN -> testb %rN, %rN
4361 orw %rN, %rN -> testw %rN, %rN
4362 orq %rN, %rN -> testq %rN, %rN
4364 and outside of 64-bit mode
4366 andl %rN, %rN -> testl %rN, %rN
4367 orl %rN, %rN -> testl %rN, %rN
4368 */
4370 }
4389 {
4390 /* Optimize: -O1:
4391 VOP, one of vandnps, vandnpd, vxorps, vxorpd, vpsubb, vpsubd,
4392 vpsubq and vpsubw:
4393 EVEX VOP %zmmM, %zmmM, %zmmN
4394 -> VEX VOP %xmmM, %xmmM, %xmmN (M and N < 16)
4395 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4396 EVEX VOP %ymmM, %ymmM, %ymmN
4397 -> VEX VOP %xmmM, %xmmM, %xmmN (M and N < 16)
4398 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4399 VEX VOP %ymmM, %ymmM, %ymmN
4400 -> VEX VOP %xmmM, %xmmM, %xmmN
4401 VOP, one of vpandn and vpxor:
4402 VEX VOP %ymmM, %ymmM, %ymmN
4403 -> VEX VOP %xmmM, %xmmM, %xmmN
4404 VOP, one of vpandnd and vpandnq:
4405 EVEX VOP %zmmM, %zmmM, %zmmN
4406 -> VEX vpandn %xmmM, %xmmM, %xmmN (M and N < 16)
4407 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4408 EVEX VOP %ymmM, %ymmM, %ymmN
4409 -> VEX vpandn %xmmM, %xmmM, %xmmN (M and N < 16)
4410 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4411 VOP, one of vpxord and vpxorq:
4412 EVEX VOP %zmmM, %zmmM, %zmmN
4413 -> VEX vpxor %xmmM, %xmmM, %xmmN (M and N < 16)
4414 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4415 EVEX VOP %ymmM, %ymmM, %ymmN
4416 -> VEX vpxor %xmmM, %xmmM, %xmmN (M and N < 16)
4417 -> EVEX VOP %xmmM, %xmmM, %xmmN (M || N >= 16) (-O2)
4418 VOP, one of kxord and kxorq:
4419 VEX VOP %kM, %kM, %kN
4420 -> VEX kxorw %kM, %kM, %kN
4421 VOP, one of kandnd and kandnq:
4422 VEX VOP %kM, %kM, %kN
4423 -> VEX kandnw %kM, %kM, %kN
4424 */
4426 {
4428 {
4432 }
4435 else
4437 }
4439 {
4442 }
4443 else
4448 {
4451 }
4452 }
4463 {
4464 /* Optimize: -O1:
4465 VOP, one of vmovdqa32, vmovdqa64, vmovdqu8, vmovdqu16,
4466 vmovdqu32 and vmovdqu64:
4467 EVEX VOP %xmmM, %xmmN
4468 -> VEX vmovdqa|vmovdqu %xmmM, %xmmN (M and N < 16)
4469 EVEX VOP %ymmM, %ymmN
4470 -> VEX vmovdqa|vmovdqu %ymmM, %ymmN (M and N < 16)
4471 EVEX VOP %xmmM, mem
4472 -> VEX vmovdqa|vmovdqu %xmmM, mem (M < 16)
4473 EVEX VOP %ymmM, mem
4474 -> VEX vmovdqa|vmovdqu %ymmM, mem (M < 16)
4475 EVEX VOP mem, %xmmN
4476 -> VEX mvmovdqa|vmovdquem, %xmmN (N < 16)
4477 EVEX VOP mem, %ymmN
4478 -> VEX vmovdqa|vmovdqu mem, %ymmN (N < 16)
4479 VOP, one of vpand, vpandn, vpor, vpxor:
4480 EVEX VOP{d,q} %xmmL, %xmmM, %xmmN
4481 -> VEX VOP %xmmL, %xmmM, %xmmN (L, M, and N < 16)
4482 EVEX VOP{d,q} %ymmL, %ymmM, %ymmN
4483 -> VEX VOP %ymmL, %ymmM, %ymmN (L, M, and N < 16)
4484 EVEX VOP{d,q} mem, %xmmM, %xmmN
4485 -> VEX VOP mem, %xmmM, %xmmN (M and N < 16)
4486 EVEX VOP{d,q} mem, %ymmM, %ymmN
4487 -> VEX VOP mem, %ymmM, %ymmN (M and N < 16)
4488 */
4492 {
4493 /* Since the VEX prefix has 2 or 3 bytes, the EVEX prefix
4494 has 4 bytes, EVEX Disp8 has 1 byte and VEX Disp32 has 4
4495 bytes, we choose EVEX Disp8 over VEX Disp32. */
4504 {
4507 }
4511 }
4518 /* VPAND, VPOR, and VPXOR are commutative. */
4529 }
4530 }
4532 /* Return non-zero for load instruction. */
4534 static int
4536 {
4542 {
4543 /* Anysize insns: lea, invlpg, clflush, prefetch*, bndmk, bndcl, bndcu,
4544 bndcn, bndstx, bndldx, clflushopt, clwb, cldemote. */
4548 /* pop. */
4551 }
4554 {
4555 /* popf, popa. */
4560 /* movs, cmps, lods, scas. */
4564 /* outs, xlatb. */
4568 /* NB: For AMD-specific insns with implicit memory operands,
4569 they're intentionally not covered. */
4570 }
4572 /* No memory operand. */
4577 {
4578 /* vldmxcsr. */
4585 }
4587 {
4588 /* test, not, neg, mul, imul, div, idiv. */
4593 /* inc, dec. */
4597 /* add, or, adc, sbb, and, sub, xor, cmp. */
4601 /* rol, ror, rcl, rcr, shl/sal, shr, sar. */
4607 /* Check for x87 instructions. */
4609 {
4610 /* Skip fst, fstp, fstenv, fstcw. */
4618 /* Skip fisttp, fist, fistp, fstp. */
4626 /* Skip fisttp, fst, fstp, fsave, fstsw. */
4635 /* Skip fisttp, fist, fistp, fbstp, fistp. */
4645 }
4646 }
4648 {
4649 /* bt, bts, btr, btc. */
4654 /* cmpxchg8b, cmpxchg16b, xrstors, vmptrld. */
4661 /* fxrstor, ldmxcsr, xrstor. */
4668 /* lgdt, lidt, lmsw. */
4674 }
4678 /* Check fake imm8 operand and 3 source operands. */
4682 dest--;
4684 /* add, or, adc, sbb, and, sub, xor, cmp, test, xchg. */
4697 /* xadd. */
4702 /* Check for load instruction. */
4705 }
4707 /* Output lfence, 0xfaee8, after instruction. */
4709 static void
4711 {
4713 {
4714 /* There are also two REP string instructions that require
4715 special treatment. Specifically, the compare string (CMPS)
4716 and scan string (SCAS) instructions set EFLAGS in a manner
4717 that depends on the data being compared/scanned. When used
4718 with a REP prefix, the number of iterations may therefore
4719 vary depending on this data. If the data is a program secret
4720 chosen by the adversary using an LVI method,
4721 then this data-dependent behavior may leak some aspect
4722 of the secret. */
4726 {
4729 }
4734 }
4735 }
4737 /* Output lfence, 0xfaee8, before instruction. */
4739 static void
4741 {
4749 {
4750 /* Insert lfence before indirect branch if needed. */
4759 {
4760 /* Indirect branch via register. Don't insert lfence with
4761 -mlfence-after-load=yes. */
4765 }
4768 {
4772 }
4773 else
4778 {
4783 }
4790 }
4792 /* Output or/not/shl and lfence before near ret. */
4796 {
4799 {
4804 }
4806 /* Near ret ingore operand size override under CPU64. */
4812 {
4813 /* not: 0xf71424, may add prefix
4814 for operand size override or 64-bit code. */
4826 }
4827 else
4828 {
4833 {
4834 /* or: 0x830c2400, may add prefix
4835 for operand size override or 64-bit code. */
4838 }
4839 else
4840 {
4841 /* shl: 0xc1242400, may add prefix
4842 for operand size override or 64-bit code. */
4845 }
4849 }
4854 }
4855 }
4857 /* This is the guts of the machine-dependent assembler. LINE points to a
4858 machine dependent instruction. This function is supposed to emit
4859 the frags/bytes it assembles to. */
4861 void
4863 {
4868 /* Initialize globals. */
4877 /* First parse an instruction mnemonic & call i386_operand for the operands.
4878 We assume that the scrubber has arranged it so that line[0] is the valid
4879 start of a (possibly prefixed) mnemonic. */
4893 /* Now we've parsed the mnemonic into a set of templates, and have the
4894 operands at hand. */
4896 /* All Intel opcodes have reversed operands except for "bound", "enter",
4897 "invlpg*", "monitor*", "mwait*", "tpause", "umwait", "pvalidate",
4898 "rmpadjust", "rmpupdate", and "rmpquery". We also don't reverse
4899 intersegment "jmp" and "call" instructions with 2 immediate operands so
4900 that the immediate segment precedes the offset consistently in Intel and
4901 AT&T modes. */
4917 /* The order of the immediates should be reversed
4918 for 2 immediates extrq and insertq instructions */
4930 {
4932 {
4941 /* Since displacement is signed extended to 64bit, don't allow
4942 disp32 if it is out of range. */
4948 {
4952 }
4953 }
4954 }
4956 /* Don't optimize displacement for movabs since it only takes 64bit
4957 displacement. */
4964 /* Next, we find a template that matches the given insn,
4965 making sure the overlap of the given operands types is consistent
4966 with the template operand types. */
4972 /* The opcode space check isn't strictly needed; it's there only to
4973 bypass the logic below when easily possible. */
4978 {
4982 {
4987 }
4991 ? as_warn
4993 }
4999 /* Check if REP prefix is OK. */
5001 {
5005 }
5007 /* Check for lock without a lockable instruction. Destination operand
5008 must be memory unless it is xchg (0x86). */
5014 {
5017 }
5019 /* Check for data size prefix on VEX/XOP/EVEX encoded and SIMD insns. */
5024 {
5027 }
5029 /* Check if HLE prefix is OK. */
5033 /* Check BND prefix. */
5037 /* Check NOTRACK prefix. */
5042 {
5049 }
5051 /* Insert BND prefix. */
5053 {
5057 {
5060 }
5061 }
5063 /* Check string instruction segment overrides. */
5065 {
5070 }
5072 /* The memory operand of (%dx) should be only used with input/output
5073 instructions (base opcodes: 0x6c, 0x6e, 0xec, 0xee). */
5077 {
5081 }
5092 /* Check if IP-relative addressing requirements can be satisfied. */
5097 /* Update operand types and check extended states. */
5099 {
5102 {
5121 }
5122 }
5124 /* Make still unresolved immediate matches conform to size of immediate
5125 given in i.suffix. */
5132 /* We only need to check those implicit registers for instructions
5133 with 3 operands or less. */
5140 /* For insns with operands there are more diddles to do to the opcode. */
5142 {
5145 }
5147 {
5148 /* UnixWare fsub no args is alias for fsubp, fadd -> faddp, etc. */
5150 }
5153 {
5155 {
5159 }
5161 /* Check for explicit REX prefix. */
5163 {
5166 }
5170 else
5173 /* The individual REX.RXBW bits got consumed. */
5175 }
5177 /* Handle conversion of 'int $3' --> special int3 insn. XOP or FMA4
5178 instructions may define INT_OPCODE as well, so avoid this corner
5179 case for those instructions that use MODRM. */
5184 {
5187 }
5193 {
5194 /* Convert "jmp constant" (and "call constant") to a jump (call) to
5195 the absolute address given by the constant. Since ix86 jumps and
5196 calls are pc relative, we need to generate a reloc. */
5199 }
5201 /* For 8 bit registers we need an empty rex prefix. Also if the
5202 instruction already has a prefix, we need to convert old
5203 registers to new ones. */
5212 {
5217 {
5218 /* Look for 8 bit operand that uses old registers. */
5221 {
5223 /* In case it is "hi" register, give up. */
5229 /* Otherwise it is equivalent to the extended register.
5230 Since the encoding doesn't change this is merely
5231 cosmetic cleanup for debug output. */
5234 }
5235 }
5236 }
5239 {
5240 /* Check if we can add a REX_OPCODE byte. Look for 8 bit operand
5241 that uses legacy register. If it is "hi" register, don't add
5242 the REX_OPCODE byte. */
5249 {
5253 }
5257 }
5264 /* We are ready to output the insn. */
5272 {
5276 }
5277 else
5279 }
5283 {
5292 {
5295 {
5298 mnem_p++;
5300 {
5303 }
5304 l++;
5305 }
5308 && (intel_syntax
5311 {
5315 }
5317 {
5320 else
5323 }
5325 /* Look up instruction (or prefix) via hash table. */
5330 && current_templates
5332 {
5334 {
5340 }
5341 /* If we are in 16-bit mode, do not allow addr16 or data16.
5342 Similarly, in 32-bit mode, do not allow addr32 or data32. */
5348 {
5352 }
5355 {
5356 /* Handle pseudo prefixes. */
5358 {
5360 /* {disp8} */
5364 /* {disp16} */
5368 /* {disp32} */
5372 /* {load} */
5376 /* {store} */
5380 /* {vex} */
5384 /* {vex3} */
5388 /* {evex} */
5392 /* {rex} */
5396 /* {nooptimize} */
5401 }
5402 }
5403 else
5404 {
5405 /* Add prefix, checking for repeated prefixes. */
5407 {
5419 else
5424 }
5425 }
5426 /* Skip past PREFIX_SEPARATOR and reset token_start. */
5428 }
5429 else
5431 }
5434 {
5435 /* Deprecated functionality (new code should use pseudo-prefixes instead):
5436 Check if we should swap operand or force 32bit displacement in
5437 encoding. */
5449 else
5454 }
5457 {
5458 check_suffix:
5460 {
5461 /* See if we can get a match by trimming off a suffix. */
5463 {
5467 else
5468 /* Fall through. */
5473 current_templates
5479 {
5482 current_templates
5484 }
5487 /* Intel Syntax. */
5490 {
5493 else
5496 current_templates
5498 }
5500 }
5501 }
5504 {
5507 }
5508 }
5512 {
5513 /* Check for a branch hint. We allow ",pt" and ",pn" for
5514 predict taken and predict not taken respectively.
5515 I'm not sure that branch hints actually do anything on loop
5516 and jcxz insns (JumpByte) for current Pentium4 chips. They
5517 may work in the future and it doesn't hurt to accept them
5518 now. */
5520 {
5522 {
5526 }
5528 {
5532 }
5533 }
5534 }
5535 /* Any other comma loses. */
5537 {
5541 }
5543 /* Check if instruction is supported on specified architecture. */
5546 {
5550 }
5557 else
5564 }
5568 {
5571 /* 1 if operand is pending after ','. */
5575 {
5576 /* Non-zero if operand parens not balanced. */
5578 /* True if inside double quotes. */
5581 /* Skip optional white space before operand. */
5585 {
5590 }
5593 {
5595 {
5597 {
5601 }
5603 {
5608 }
5609 else
5611 }
5617 {
5622 }
5624 {
5629 }
5630 l++;
5631 }
5637 {
5639 MAX_OPERANDS);
5641 }
5643 /* Now parse operand adding info to 'i' as we go along. */
5647 {
5649 mnemonic);
5651 }
5654 operand_ok =
5657 else
5663 }
5664 else
5665 {
5667 {
5668 expecting_operand_after_comma:
5671 }
5673 {
5676 }
5677 }
5679 /* Now *l must be either ',' or END_OF_INSN. */
5681 {
5683 {
5684 /* Just skip it, if it's \n complain. */
5686 }
5688 }
5689 }
5691 }
5693 static void
5695 {
5697 i386_operand_type temp_type;
5718 {
5723 }
5725 {
5730 }
5731 }
5733 static void
5735 {
5737 {
5741 /* Fall through. */
5748 }
5751 {
5756 }
5757 }
5759 /* Try to ensure constant immediates are represented in the smallest
5760 opcode possible. */
5761 static void
5763 {
5770 {
5771 /* Figure out a suffix from the last register operand specified.
5772 We can't do this properly yet, i.e. excluding special register
5773 instances, but the following works for instructions with
5774 immediates. In any case, we can't set i.suffix yet. */
5779 {
5782 }
5784 {
5787 }
5789 {
5792 }
5794 {
5797 }
5798 }
5804 {
5806 {
5808 /* If a suffix is given, this operand may be shortened. */
5810 {
5829 }
5831 /* If this operand is at most 16 bits, convert it
5832 to a signed 16 bit number before trying to see
5833 whether it will fit in an even smaller size.
5834 This allows a 16-bit operand such as $0xffe0 to
5835 be recognised as within Imm8S range. */
5838 {
5841 }
5842 #ifdef BFD64
5843 /* Store 32-bit immediate in 64-bit for 64-bit BFD. */
5846 {
5850 }
5851 #endif
5856 /* We must avoid matching of Imm32 templates when 64bit
5857 only immediate is available. */
5866 /* Symbols and expressions. */
5868 /* Convert symbolic operand to proper sizes for matching, but don't
5869 prevent matching a set of insns that only supports sizes other
5870 than those matching the insn suffix. */
5871 {
5877 {
5893 }
5897 {
5900 }
5904 }
5906 }
5907 }
5908 }
5910 /* Try to use the smallest displacement type too. */
5911 static void
5913 {
5918 {
5920 {
5924 {
5929 }
5933 {
5934 /* If this operand is at most 16 bits, convert
5935 to a signed 16 bit number and don't use 64bit
5936 displacement. */
5939 }
5941 #ifdef BFD64
5942 /* Optimize 64-bit displacement to 32-bit for 64-bit BFD. */
5949 {
5950 /* If this operand is at most 32 bits, convert
5951 to a signed 32 bit number and don't use 64bit
5952 displacement. */
5956 }
5959 {
5962 }
5963 #endif
5970 }
5973 {
5977 }
5978 else
5979 /* We only support 64bit displacement on constants. */
5981 }
5982 }
5984 /* Return 1 if there is a match in broadcast bytes between operand
5985 GIVEN and instruction template T. */
5989 {
5998 }
6000 /* Check if operands are valid for the instruction. */
6002 static int
6004 {
6006 i386_cpu_flags cpu;
6008 /* Templates allowing for ZMMword as well as YMMword and/or XMMword for
6009 any one operand are implicity requiring AVX512VL support if the actual
6010 operand size is YMMword or XMMword. Since this function runs after
6011 template matching, there's no need to check for YMMword/XMMword in
6012 the template. */
6017 {
6019 {
6023 {
6026 }
6027 }
6028 }
6030 /* Somewhat similarly, templates specifying both AVX and AVX2 are
6031 requiring AVX2 support if the actual operand size is YMMword. */
6035 {
6037 {
6040 {
6043 }
6044 }
6045 }
6047 /* Without VSIB byte, we can't have a vector register for index. */
6053 {
6056 }
6058 /* Check if default mask is allowed. */
6061 {
6064 }
6066 /* For VSIB byte, we need a vector register for index, and all vector
6067 registers must be distinct. */
6069 {
6077 {
6080 }
6084 {
6101 {
6104 }
6106 }
6108 {
6115 {
6117 {
6120 }
6123 }
6124 }
6125 }
6127 /* For AMX instructions with 3 TMM register operands, all operands
6128 must be distinct. */
6134 {
6137 }
6139 /* For some special instructions require that destination must be distinct
6140 from source registers. */
6142 {
6147 /* #UD if dest_reg == src1_reg or dest_reg == src2_reg. */
6151 {
6154 }
6155 }
6157 /* Check if broadcast is supported by the instruction and is applied
6158 to the memory operand. */
6160 {
6163 /* Check if specified broadcast is supported in this instruction,
6164 and its broadcast bytes match the memory operand. */
6170 {
6171 bad_broadcast:
6174 }
6181 {
6202 }
6210 {
6214 }
6219 {
6224 {
6228 type,
6231 }
6232 }
6233 }
6234 /* If broadcast is supported in this instruction, we need to check if
6235 operand of one-element size isn't specified without broadcast. */
6237 {
6238 /* Find memory operand. */
6243 /* Check size of the memory operand. */
6245 {
6248 }
6249 }
6250 else
6253 /* Check if requested masking is supported. */
6255 {
6257 {
6262 {
6266 }
6269 /* Memory destinations allow only merging masking. */
6271 {
6272 /* Find memory operand. */
6278 {
6281 }
6282 }
6286 }
6287 }
6289 /* Check if masking is applied to dest operand. */
6291 {
6294 }
6296 /* Check RC/SAE. */
6298 {
6302 {
6305 }
6307 /* Non-EVEX.LIG forms need to have a ZMM register as at least one
6308 operand. */
6310 {
6315 {
6318 }
6319 }
6320 }
6322 /* Check the special Imm4 cases; must be the first operand. */
6324 {
6327 {
6330 }
6332 /* Turn off Imm<N> so that update_imm won't complain. */
6334 }
6336 /* Check vector Disp8 operand. */
6339 {
6344 else
6345 {
6351 {
6362 }
6365 {
6372 }
6377 {
6384 }
6386 /* For the check in fits_in_disp8(). */
6389 }
6394 {
6396 {
6399 }
6401 }
6402 }
6407 }
6409 /* Check if encoding requirements are met by the instruction. */
6411 static int
6413 {
6415 {
6418 }
6421 {
6422 /* This instruction must be encoded with EVEX prefix. */
6424 {
6427 }
6429 }
6432 {
6433 /* This instruction template doesn't have VEX prefix. */
6435 {
6438 }
6440 }
6443 }
6445 /* Helper function for the progress() macro in match_template(). */
6449 {
6454 }
6458 {
6459 /* Points to template once we've found it. */
6462 i386_operand_type overlap4;
6464 i386_opcode_modifier suffix_check;
6469 #define progress(err) progress (err, specific_error, __LINE__, &errline)
6471 #if MAX_OPERANDS != 5
6473 #endif
6478 /* Prepare for mnemonic suffix check. */
6481 {
6498 /* NB: In Intel syntax, normally we can check for memory operand
6499 size when there is no mnemonic suffix. But jmp and call have
6500 2 different encodings with Dword memory operand size, one with
6501 No_ldSuf and the other without. i.suffix is set to
6502 LONG_DOUBLE_MNEM_SUFFIX to skip the one with No_ldSuf. */
6505 }
6508 {
6512 /* Must have right number of operands. */
6516 /* Check processor support. */
6521 /* Check AT&T mnemonic. */
6526 /* Check AT&T/Intel syntax. */
6532 /* Check Intel64/AMD64 ISA. */
6534 {
6536 /* Default: Don't accept Intel64. */
6541 /* -mamd64: Don't accept Intel64 and Intel64 only. */
6546 /* -mintel64: Don't accept AMD64. */
6550 }
6552 /* Check the suffix. */
6567 /* This is intentionally not
6569 if (i.jumpabsolute != (t->opcode_modifier.jump == JUMP_ABSOLUTE))
6571 as the case of a missing * on the operand is accepted (perhaps with
6572 a warning, issued further down). */
6580 /* In general, don't allow
6581 - 64-bit operands outside of 64-bit mode,
6582 - 32-bit operands on pre-386. */
6594 && (intel_syntax
6608 /* Do not verify operands when there are none. */
6610 {
6612 {
6615 }
6617 /* We've found a match; break out of loop. */
6619 }
6623 {
6624 /* There should be only one Disp operand. */
6629 {
6634 /* Address size prefix will turn Disp64 operand into Disp32 and
6635 Disp32/Disp16 one into Disp16/Disp32 respectively. */
6637 {
6640 /* Fall through. */
6644 {
6647 }
6653 {
6657 }
6660 }
6661 }
6662 }
6665 {
6667 /* Force 0x8b encoding for "mov foo@GOT, %eax". */
6676 /* Don't allow KMOV in TLS code sequences. */
6682 }
6684 /* We check register size if needed. */
6686 {
6690 }
6691 else
6696 {
6702 /* xchg %eax, %eax is a special case. It is an alias for nop
6703 only in 32bit mode and we can use opcode 0x90. In 64bit
6704 mode, we can't use 0x90 for xchg %eax, %eax since it should
6705 zero-extend %eax to %rax. */
6714 /* xrelease mov %eax, <disp> is another special case. It must not
6715 match the accumulator-only encoding of mov. */
6723 /* Fall through. */
6728 /* Reverse direction of operands if swapping is possible in the first
6729 place (operands need to be symmetric) and
6730 - the load form is requested, and the template is a store form,
6731 - the store form is requested, and the template is a load form,
6732 - the non-default (swapped) form is requested. */
6737 {
6755 }
6756 /* If we want store form, we skip the current load. */
6762 /* Fall through. */
6773 {
6776 /* Check if other direction is valid ... */
6780 check_reverse:
6783 /* Try reversing direction of operands. */
6793 || (check_register
6798 {
6799 /* Does not match either direction. */
6802 }
6803 /* found_reverse_match holds which variant of D
6804 we've found. */
6808 {
6810 /* FSUB{,R} and FDIV{,R} may need a 2nd bit flipped. */
6814 }
6816 {
6819 }
6822 /* MOV to/from CR/DR/TR, as an exception, follow
6823 the base opcode space encoding model. */
6827 else
6829 }
6830 else
6831 {
6832 /* Found a forward 2 operand match here. */
6833 check_operands_345:
6835 {
6843 {
6846 }
6847 /* Fall through. */
6861 {
6864 }
6865 /* Fall through. */
6879 {
6882 }
6884 }
6885 }
6886 /* Found either forward/reverse 2, 3 or 4 operand match here:
6887 slip through to break. */
6888 }
6890 /* Check if VEX/EVEX encoding requirements can be satisfied. */
6892 {
6895 }
6897 /* Check if vector operands are valid. */
6899 {
6902 }
6904 /* We've found a match; break out of loop. */
6906 }
6908 #undef progress
6911 {
6912 /* We found no match. */
6915 {
6985 }
6989 }
6992 {
6999 {
7000 /* Warn them that a data or address size prefix doesn't
7001 affect assembly of the next line of code. */
7003 }
7004 }
7006 /* Copy the template we found. */
7014 {
7019 /* If we found a reverse match we must alter the opcode direction
7020 bit and clear/flip the regmem modifier one. found_reverse_match
7021 holds bits to change (different for int & float insns). */
7028 /* Certain SIMD insns have their load forms specified in the opcode
7029 table, and hence we need to _set_ RegMem instead of clearing it.
7030 We need to avoid setting the bit though on insns like KMOVW. */
7038 /* Only the first two register operands need reversing, alongside
7039 flipping VEX.W. */
7046 }
7049 }
7051 static int
7053 {
7058 {
7062 register_prefix);
7064 }
7066 /* There's only ever one segment override allowed per instruction.
7067 This instruction possibly has a legal segment override on the
7068 second operand, so copy the segment to where non-string
7069 instructions store it, allowing common code. */
7073 }
7075 static int
7077 {
7080 /* If matched instruction specifies an explicit instruction mnemonic
7081 suffix, use it. */
7091 {
7094 /* MOVSX/MOVZX */
7101 /* CRC32 */
7106 /* movsx/movzx want only their source operand considered here, for the
7107 ambiguity checking below. The suffix will be replaced afterwards
7108 to represent the destination (register). */
7112 /* crc32 needs REX.W set regardless of suffix / source operand size. */
7116 /* If there's no instruction mnemonic suffix we try to invent one
7117 based on GPR operands. */
7119 {
7120 /* We take i.suffix from the last register operand specified,
7121 Destination register type is more significant than source
7122 register type. crc32 in SSE4.2 prefers source register
7123 type. */
7129 {
7140 else
7143 }
7145 /* As an exception, movsx/movzx silently default to a byte source
7146 in AT&T mode. */
7149 }
7151 {
7154 }
7156 {
7159 }
7161 {
7164 }
7166 {
7169 }
7172 /* Do nothing if the instruction is going to ignore the prefix. */
7173 ;
7174 else
7177 /* Undo the movsx/movzx change done above. */
7179 }
7182 {
7185 {
7186 /* stackop_size is set to LONG_MNEM_SUFFIX for the
7187 .code16gcc directive to support 16-bit mode with
7188 32-bit address. For IRET without a suffix, generate
7189 16-bit IRET (opcode 0xcf) to return from an interrupt
7190 handler. */
7192 {
7195 }
7196 /* Warn about changed behavior for segment register push/pop. */
7200 }
7201 }
7209 {
7211 {
7214 {
7219 }
7220 /* Fall through. */
7229 }
7230 }
7234 /* Also cover lret/retf/iret in 64-bit mode. */
7239 /* Explicit sizing prefixes are assumed to disambiguate insns. */
7241 /* Accept FLDENV et al without suffix. */
7243 {
7258 /* For [XYZ]MMWORD operands inspect operand sizes. While generally
7259 also suitable for AT&T syntax mode, it was requested that this be
7260 restricted to just Intel syntax. */
7263 {
7267 {
7270 {
7278 }
7285 /* Any properly sized operand disambiguates the insn. */
7289 {
7293 }
7297 {
7306 }
7307 }
7308 }
7310 /* Are multiple suffixes / operand sizes allowed? */
7312 {
7316 {
7319 }
7321 {
7325 }
7328 intel_syntax
7344 else
7346 }
7347 }
7350 {
7351 /* In Intel syntax, movsx/movzx must have a "suffix" (checked above).
7352 In AT&T syntax, if there is no suffix (warned about above), the default
7353 will be byte extension. */
7357 /* For further processing, the suffix should represent the destination
7358 (register). This is already the case when one was used with
7359 mov[sz][bw]*, but we need to replace it for mov[sz]x, or if there was
7360 no suffix to begin with. */
7362 {
7367 else
7371 }
7372 }
7378 /* Change the opcode based on the operand size given by i.suffix. */
7380 {
7381 /* Size floating point instruction. */
7384 {
7387 }
7388 /* fall through */
7391 /* It's not a byte, select word/dword operation. */
7393 {
7396 else
7398 }
7399 /* fall through */
7401 /* Now select between word & dword operations via the operand
7402 size prefix, except for instructions that will ignore this
7403 prefix anyway. */
7411 {
7419 }
7421 /* Set mode64 for an operand. */
7426 /* Special case for xchg %rax,%rax. It is NOP and doesn't
7427 need rex64. */
7440 /* Select word/dword/qword operation with explicit data sizing prefix
7441 when there are no suitable register operands. */
7446 /* ShiftCount */
7448 /* InOutPortReg */
7451 /* CRC32 */
7455 }
7458 {
7464 {
7465 /* The address size override prefix changes the size of the
7466 first operand. */
7469 {
7473 }
7480 }
7481 else
7482 {
7483 /* Check invalid register operand when the address size override
7484 prefix changes the size of register operands. */
7488 /* Check the register operand for the address size prefix if
7489 the memory operand has no real registers, like symbol, DISP
7490 or bogus (x32-only) symbol(%rip) when symbol(%eip) is meant. */
7499 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
7504 #else
7506 #endif
7514 else
7518 {
7523 {
7536 }
7541 }
7542 }
7543 }
7546 }
7548 static int
7550 {
7554 {
7555 /* Skip non-register operands. */
7559 /* If this is an eight bit register, it's OK. If it's the 16 or
7560 32 bit version of an eight bit register, we will just use the
7561 low portion, and that's OK too. */
7565 /* I/O port address operands are OK too. */
7570 /* crc32 only wants its source operand checked here. */
7577 /* Any other register is bad. */
7582 }
7584 }
7586 static int
7588 {
7592 /* Skip non-register operands. */
7595 /* Reject eight bit registers, except where the template requires
7596 them. (eg. movzb) */
7602 {
7604 register_prefix,
7609 }
7610 /* Error if the e prefix on a general reg is missing. */
7615 {
7620 }
7621 /* Warn if the r prefix on a general reg is present. */
7626 {
7630 }
7632 }
7634 static int
7636 {
7640 /* Skip non-register operands. */
7643 /* Reject eight bit registers, except where the template requires
7644 them. (eg. movzb) */
7650 {
7652 register_prefix,
7657 }
7658 /* Warn if the r prefix on a general reg is missing. */
7664 {
7665 /* Prohibit these changes in the 64bit mode, since the
7666 lowering is more complicated. */
7670 }
7672 }
7674 static int
7676 {
7679 /* Skip non-register operands. */
7682 /* Reject eight bit registers, except where the template requires
7683 them. (eg. movzb) */
7689 {
7691 register_prefix,
7696 }
7697 /* Error if the e or r prefix on a general reg is present. */
7703 {
7708 }
7710 }
7712 static int
7714 {
7722 {
7724 {
7725 i386_operand_type temp;
7729 {
7732 }
7736 {
7739 }
7740 else
7743 }
7747 {
7750 else
7752 }
7764 {
7768 }
7769 }
7773 }
7775 static int
7777 {
7780 /* Update the first 2 immediate operands. */
7783 {
7788 /* The 3rd operand can't be immediate operand. */
7790 }
7793 }
7795 static int
7797 {
7798 /* Default segment register this instruction will use for memory
7799 accesses. 0 means unknown. This is only for optimizing out
7800 unnecessary segment overrides. */
7804 {
7805 /* Legacy encoded insns allow explicit REX prefixes, so these prefixes
7806 need converting. */
7810 }
7811 /* ImmExt should be processed after SSE2AVX. */
7816 {
7821 /* The destination must be an xmm register. */
7828 {
7830 {
7831 /* Keep xmm0 for instructions with VEX prefix and 3
7832 sources. */
7836 }
7837 else
7838 {
7839 /* We remove the first xmm0 and keep the number of
7840 operands unchanged, which in fact duplicates the
7841 destination. */
7843 {
7848 }
7849 }
7850 }
7852 {
7857 /* Add the implicit xmm0 for instructions with VEX prefix
7858 and 3 sources. */
7860 {
7865 }
7875 dupl++;
7876 dest++;
7881 }
7882 else
7883 {
7884 duplicate:
7893 }
7897 }
7900 {
7904 {
7908 /* We need to adjust fields in i.tm since they are used by
7909 build_modrm_byte. */
7913 }
7918 }
7920 {
7923 /* The second operand must be {x,y,z}mmN, where N is a multiple of 4. */
7935 }
7937 {
7938 /* The imul $imm, %reg instruction is converted into
7939 imul $imm, %reg, %reg, and the clr %reg instruction
7940 is converted into xor %reg, %reg. */
7946 else
7948 /* Pretend we saw the extra register operand. */
7955 }
7958 {
7959 /* The opcode is completed (modulo i.tm.extension_opcode which
7960 must be put into the modrm byte). Now, we make the modrm and
7961 index base bytes based on all the info we've collected. */
7964 }
7966 {
7972 {
7976 }
7979 {
7982 }
7984 }
7987 {
7989 }
7991 {
7992 /* For the string instructions that allow a segment override
7993 on one of their operands, the default segment is ds. */
7995 }
7997 {
7998 /* The register or float register operand is in operand
7999 0 or 1. */
8002 /* Register goes in low 3 bits of opcode. */
8007 {
8008 /* Warn about some common errors, but press on regardless.
8009 The first case can be generated by gcc (<= 2.8.1). */
8011 {
8012 /* Reversed arguments on faddp, fsubp, etc. */
8016 }
8017 else
8018 {
8019 /* Extraneous `l' suffix on fp insn. */
8022 }
8023 }
8024 }
8030 {
8034 {
8037 }
8038 }
8040 /* If a segment was explicitly specified, and the specified segment
8041 is neither the default nor the one already recorded from a prefix,
8042 use an opcode prefix to select it. If we never figured out what
8043 the default segment is, then default_seg will be zero at this
8044 point, and the specified segment prefix will always be used. */
8048 {
8051 }
8053 }
8057 {
8059 {
8063 }
8065 {
8068 }
8072 }
8076 {
8083 {
8090 /* There are 2 kinds of instructions:
8091 1. 5 operands: 4 register operands or 3 register operands
8092 plus 1 memory operand plus one Imm4 operand, VexXDS, and
8093 VexW0 or VexW1. The destination must be either XMM, YMM or
8094 ZMM register.
8095 2. 4 operands: 4 register operands or 3 register operands
8096 plus 1 memory operand, with VexXDS. */
8103 /* If VexW1 is set, the first non-immediate operand is the source and
8104 the second non-immediate one is encoded in the immediate operand. */
8106 {
8109 }
8110 else
8111 {
8114 }
8117 {
8118 /* When there is no immediate operand, generate an 8bit
8119 immediate operand to encode the first operand. */
8129 }
8130 else
8131 {
8136 /* Turn on Imm8 again so that output_imm will generate it. */
8143 }
8147 }
8148 else
8151 /* i.reg_operands MUST be the number of real register operands;
8152 implicit registers do not count. If there are 3 register
8153 operands, it must be a instruction with VexNDS. For a
8154 instruction with VexNDD, the destination register is encoded
8155 in VEX prefix. If there are 4 register operands, it must be
8156 a instruction with VEX prefix and 3 sources. */
8163 {
8165 {
8170 /* When there are 3 operands, one of them may be immediate,
8171 which may be the first or the last operand. Otherwise,
8172 the first operand must be shift count register (cl) or it
8173 is an instruction with VexNDS. */
8183 else
8187 /* When there are 4 operands, the first two must be 8bit
8188 immediate operands. The source operand will be the 3rd
8189 one.
8191 For instructions with VexNDS, if the first operand
8192 an imm8, the source operand is the 2nd one. If the last
8193 operand is imm8, the source operand is the first one. */
8203 else
8204 {
8207 else
8209 }
8217 }
8220 {
8224 {
8225 /* For instructions with VexNDS, the register-only source
8226 operand must be a 32/64bit integer, XMM, YMM, ZMM, or mask
8227 register. It is encoded in VEX prefix. */
8229 i386_operand_type op;
8232 /* Swap two source operands if needed. */
8234 {
8237 }
8238 else
8249 dest++;
8250 }
8251 }
8254 /* One of the register operands will be encoded in the i.rm.reg
8255 field, the other in the combined i.rm.mode and i.rm.regmem
8256 fields. If no form of this instruction supports a memory
8257 destination operand, then we assume the source operand may
8258 sometimes be a memory operand and so we need to store the
8259 destination in the i.rm.reg field. */
8262 {
8267 }
8268 else
8269 {
8274 }
8276 {
8281 }
8282 }
8283 else
8288 {
8298 {
8299 /* The index register of VSIB shouldn't be RegIZ. */
8306 {
8311 }
8313 /* Since the mandatory SIB always has index register, so
8314 the code logic remains unchanged. The non-mandatory SIB
8315 without index register is allowed and will be handled
8316 later. */
8318 {
8321 else
8324 }
8325 }
8330 {
8335 {
8336 /* Both check for VSIB and mandatory non-vector SIB. */
8339 /* Operand is just <disp> */
8342 {
8343 /* 64bit mode overwrites the 32bit absolute
8344 addressing by RIP relative addressing and
8345 absolute addressing is encoded by one of the
8346 redundant SIB forms. */
8351 }
8354 {
8357 }
8358 else
8359 {
8362 }
8363 }
8365 {
8366 /* !i.base_reg && i.index_reg */
8369 else
8378 }
8379 }
8380 /* RIP addressing for 64bit mode. */
8382 {
8392 }
8394 {
8397 {
8407 {
8410 {
8411 /* fake (%bp) into 0(%bp) */
8414 else
8417 }
8418 }
8424 }
8428 {
8432 else
8434 }
8436 }
8438 {
8440 {
8444 }
8451 /* x86-64 ignores REX prefix bit here to avoid decoder
8452 complications. */
8458 {
8462 else
8464 }
8467 {
8468 /* Only check for VSIB. */
8473 /* <disp>(%esp) becomes two byte modrm with no index
8474 register. We've already stored the code for esp
8475 in i.rm.regmem ie. ESCAPE_TO_TWO_BYTE_ADDRESSING.
8476 Any base register besides %esp will not use the
8477 extra modrm byte. */
8479 }
8481 {
8484 else
8489 }
8495 else
8496 {
8500 {
8504 else
8506 }
8508 }
8509 }
8512 {
8513 /* Fakes a zero displacement assuming that i.types[op]
8514 holds the correct displacement size. */
8524 }
8527 }
8528 else
8532 {
8535 else
8536 {
8537 /* VEX.vvvv encodes one of the sources when the first
8538 operand is not an immediate. */
8541 else
8543 }
8545 /* Destination is a XMM register encoded in the ModRM.reg
8546 and VEX.R bit. */
8551 /* ModRM.rm and VEX.B encodes the other source. */
8553 {
8558 else
8563 }
8564 }
8566 {
8569 {
8574 }
8575 }
8576 /* Fill in i.rm.reg or i.rm.regmem field with register operand
8577 (if any) based on i.tm.extension_opcode. Again, we must be
8578 careful to make sure that segment/control/debug/test/MMX
8579 registers are coded into the i.rm.reg field. */
8581 {
8600 {
8601 /* For instructions with VexNDS, the register-only
8602 source operand is encoded in VEX prefix. */
8606 {
8609 }
8610 else
8611 {
8612 /* Check register-only source operand when two source
8613 operands are swapped. */
8616 {
8621 }
8622 else
8623 {
8626 }
8627 }
8628 }
8630 {
8631 /* For instructions with VexNDD, the register destination
8632 is encoded in VEX prefix. */
8634 {
8635 /* There is no memory operand. */
8638 }
8639 else
8640 {
8641 /* There are only 2 non-immediate operands. */
8645 }
8646 }
8647 else
8651 {
8661 }
8663 /* Don't set OP operand twice. */
8665 {
8666 /* If there is an extension opcode to put here, the
8667 register number must be put into the regmem field. */
8669 {
8673 }
8674 else
8675 {
8679 }
8680 }
8682 /* Now, if no memory operand has set i.rm.mode = 0, 1, 2 we
8683 must set it to 3 to indicate this is a register operand
8684 in the regmem field. */
8687 }
8689 /* Fill in i.rm.reg field with extension opcode (if any). */
8692 }
8694 }
8698 {
8701 else
8703 }
8705 static unsigned int
8707 {
8714 }
8716 static void
8718 {
8723 relax_substateT subtype;
8725 offsetT off;
8728 {
8731 }
8738 {
8742 }
8743 /* Pentium4 branch hints. */
8746 {
8747 prefix++;
8749 }
8751 {
8752 prefix++;
8754 }
8756 /* BND prefixed jump. */
8758 {
8759 prefix++;
8761 }
8766 /* It's always a symbol; End frag & setup for relax.
8767 Make sure there is enough room in this frag for the largest
8768 instruction we may generate in md_convert_frag. This is 2
8769 bytes for the opcode and room for the prefix and largest
8770 displacement. */
8772 /* Prefix and 1 opcode byte go in fr_fix. */
8789 else
8798 {
8799 /* Handle complex expressions. */
8802 }
8806 /* 1 possible extra opcode + 4 byte displacement go in var part.
8807 Pass reloc in fr_var. */
8809 }
8811 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
8812 /* Return TRUE iff PLT32 relocation should be used for branching to
8813 symbol S. */
8815 static bool
8817 {
8818 /* PLT32 relocation is ELF only. */
8822 #ifdef TE_SOLARIS
8823 /* Don't emit PLT32 relocation on Solaris: neither native linker nor
8824 krtld support it. */
8826 #endif
8828 /* Since there is no need to prepare for PLT branch on x86-64, we
8829 can generate R_X86_64_PLT32, instead of R_X86_64_PC32, which can
8830 be used as a marker for 32-bit PC-relative branches. */
8837 /* Weak or undefined symbol need PLT32 relocation. */
8841 /* Non-global symbol doesn't need PLT32 relocation. */
8845 /* Other global symbols need PLT32 relocation. NB: Symbol with
8846 non-default visibilities are treated as normal global symbol
8847 so that PLT32 relocation can be used as a marker for 32-bit
8848 PC-relative branches. It is useful for linker relaxation. */
8850 }
8851 #endif
8853 static void
8855 {
8862 {
8863 /* This is a loop or jecxz type instruction. */
8866 {
8869 }
8870 /* Pentium4 branch hints. */
8873 {
8876 }
8877 }
8878 else
8879 {
8887 {
8891 }
8896 }
8898 /* BND prefixed jump. */
8900 {
8903 }
8906 {
8909 }
8915 {
8918 }
8922 {
8925 /* Fall through. */
8931 }
8933 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
8938 #endif
8945 /* All jumps handled here are signed, but don't unconditionally use a
8946 signed limit check for 32 and 16 bit jumps as we want to allow wrap
8947 around at 4G (outside of 64-bit mode) and 64k (except for XBEGIN)
8948 respectively. */
8950 {
8964 }
8965 }
8967 static void
8969 {
8981 {
8985 }
8997 {
9000 }
9002 /* 1 opcode; 2 segment; offset */
9013 {
9019 {
9022 }
9024 }
9025 else
9032 else
9035 }
9037 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
9038 void
9040 {
9055 /* The .note.gnu.property section layout:
9057 Field Length Contents
9058 ---- ---- ----
9059 n_namsz 4 4
9060 n_descsz 4 The note descriptor size
9061 n_type 4 NT_GNU_PROPERTY_TYPE_0
9062 n_name 4 "GNU"
9063 n_desc n_descsz The program property array
9064 .... .... ....
9065 */
9067 /* Create the .note.gnu.property section. */
9070 (SEC_ALLOC
9071 | SEC_LOAD
9072 | SEC_DATA
9073 | SEC_HAS_CONTENTS
9077 {
9080 }
9081 else
9082 {
9085 }
9090 /* GNU_PROPERTY_X86_ISA_1_USED: 4-byte type + 4-byte data size
9091 + 4-byte data */
9093 /* Align GNU_PROPERTY_X86_ISA_1_USED. */
9097 /* GNU_PROPERTY_X86_FEATURE_2_USED: 4-byte type + 4-byte data size
9098 + 4-byte data */
9100 /* Align GNU_PROPERTY_X86_FEATURE_2_USED. */
9105 /* Section size: n_namsz + n_descsz + n_type + n_name + n_descsz. */
9108 /* Write n_namsz. */
9111 /* Write n_descsz. */
9114 /* Write n_type. */
9117 /* Write n_name. */
9120 /* Write 4-byte type. */
9124 /* Write 4-byte data size. */
9127 /* Write 4-byte data. */
9130 /* Zero out paddings. */
9135 /* Write 4-byte type. */
9139 /* Write 4-byte data size. */
9142 /* Write 4-byte data. */
9146 /* Zero out paddings. */
9151 /* We probably can't restore the current segment, for there likely
9152 isn't one yet... */
9155 }
9157 bool
9159 {
9160 /* At this time, SFrame unwind is supported for AMD64 ABI only. */
9162 }
9164 bool
9166 {
9167 /* In AMD64, return address is always stored on the stack at a fixed offset
9168 from the CFA (provided via x86_sframe_cfa_ra_offset ()).
9169 Do not track explicitly via an SFrame Frame Row Entry. */
9171 }
9173 offsetT
9175 {
9178 }
9180 unsigned char
9182 {
9186 {
9189 }
9192 }
9194 #endif
9196 static unsigned int
9199 {
9203 {
9210 }
9213 }
9215 /* Return 1 for test, and, cmp, add, sub, inc and dec which may
9216 be macro-fused with conditional jumps.
9217 NB: If TEST/AND/CMP/ADD/SUB/INC/DEC is of RIP relative address,
9218 or is one of the following format:
9220 cmp m, imm
9221 add m, imm
9222 sub m, imm
9223 test m, imm
9224 and m, imm
9225 inc m
9226 dec m
9228 it is unfusible. */
9230 static int
9232 {
9233 /* No RIP address. */
9237 /* No opcodes outside of base encoding space. */
9241 /* add, sub without add/sub m, imm. */
9247 {
9250 }
9252 /* and without and m, imm. */
9256 {
9259 }
9261 /* test without test m imm. */
9266 {
9269 }
9271 /* cmp without cmp m, imm. */
9275 {
9278 }
9280 /* inc, dec without inc/dec m. */
9285 {
9288 }
9291 }
9293 /* Return 1 if a FUSED_JCC_PADDING frag should be generated. */
9295 static int
9297 {
9298 /* NB: Don't work with COND_JUMP86 without i386. */
9306 {
9314 }
9317 }
9319 /* Return 1 if a BRANCH_PREFIX frag should be generated. */
9321 static int
9323 {
9324 /* NB: Don't work with COND_JUMP86 without i386. Don't add prefix
9325 to PadLock instructions since they include prefixes in opcode. */
9327 || !align_branch_prefix_size
9333 /* Don't add prefix if it is a prefix or there is no operand in case
9334 that segment prefix is special. */
9348 }
9350 /* Return 1 if a BRANCH_PADDING frag should be generated. */
9352 static int
9355 {
9358 /* NB: Don't work with COND_JUMP86 without i386. */
9367 /* Check for jcc and direct jmp. */
9369 {
9371 {
9374 }
9375 else
9376 {
9377 /* Because J<cc> and JN<cc> share same group in macro-fusible table,
9378 igore the lowest bit. */
9383 }
9384 }
9386 {
9387 /* Near ret. */
9391 }
9392 else
9393 {
9394 /* Check for indirect jmp, direct and indirect calls. */
9396 {
9397 /* Direct call. */
9401 }
9405 {
9406 /* Indirect call and jmp. */
9410 }
9414 && tls_get_addr
9418 {
9420 /* No padding to call to global or undefined tls_get_addr. */
9424 }
9425 }
9430 {
9436 }
9439 }
9441 static void
9443 {
9445 offsetT insn_start_off;
9448 /* The initializer is arbitrary just to avoid uninitialized error.
9449 it's actually either assigned in add_branch_padding_frag_p
9450 or never be used. */
9453 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
9455 {
9475 {
9482 }
9484 /* vzeroall / vzeroupper */
9489 /* ldmxcsr / stmxcsr / vldmxcsr / vstmxcsr */
9526 /* LAHF-SAHF insns in 64-bit mode. */
9533 /* Any VEX encoded insns execpt for AVX512F, AVX512BW, AVX512DQ,
9534 XOP, FMA4, LPW, TBM, and AMX. */
9549 || (x86_feature_2_used
9550 & (GNU_PROPERTY_X86_FEATURE_2_XSAVE
9551 | GNU_PROPERTY_X86_FEATURE_2_XSAVEOPT
9558 /* Any EVEX encoded insns except for AVX512ER, AVX512PF,
9559 AVX512-4FMAPS, and AVX512-4VNNIW. */
9566 }
9567 #endif
9569 /* Tie dwarf2 debug info to the address at the start of the insn.
9570 We can't do this after the insn has been output as the current
9571 frag may have been closed off. eg. by frag_var. */
9578 {
9580 /* Branch can be 8 bytes. Leave some room for prefixes. */
9583 /* Align section to boundary. */
9586 /* Make room for padding. */
9589 /* Start of the padding. */
9601 }
9605 {
9608 }
9610 /* Output jumps. */
9618 else
9619 {
9620 /* Output normal instructions here. */
9630 {
9631 /* Encode lfence, mfence, and sfence as
9632 f0 83 04 24 00 lock addl $0x0, (%{re}sp). */
9639 {
9644 }
9645 else
9648 }
9650 /* Some processors fail on LOCK prefix. This options makes
9651 assembler ignore LOCK prefix and serves as a workaround. */
9653 {
9658 }
9661 /* Skip if this is a branch. */
9662 ;
9664 {
9665 /* Make room for padding. */
9678 }
9680 {
9683 /* Make room for padding. */
9694 }
9696 /* Since the VEX/EVEX prefix contains the implicit prefix, we
9697 don't need the explicit prefix. */
9699 {
9701 {
9715 {
9719 /* Check for pseudo prefixes. */
9728 }
9732 }
9734 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
9735 /* For x32, add a dummy REX_OPCODE prefix for mov/add with
9736 R_X86_64_GOTTPOFF relocation so that linker can safely
9737 perform IE->LE optimization. A dummy REX_OPCODE prefix
9738 is also needed for lea with R_X86_64_GOTPC32_TLSDESC
9739 relocation for GDesc -> IE/LE optimization. */
9746 #endif
9748 /* The prefix bytes. */
9752 }
9753 else
9754 {
9758 {
9764 /* There should be no other prefixes for instructions
9765 with VEX prefix. */
9767 }
9769 /* For EVEX instructions i.vrex should become 0 after
9770 build_evex_prefix. For VEX instructions upper 16 registers
9771 aren't available, so VREX should be 0. */
9774 /* Now the VEX prefix. */
9776 {
9780 }
9781 else
9783 }
9785 /* Now the opcode; be careful about word order here! */
9789 {
9801 }
9806 {
9808 }
9809 else
9810 {
9814 {
9819 }
9822 {
9824 /* Put out high byte first: can't use md_number_to_chars! */
9826 /* Fall through. */
9833 }
9835 }
9837 /* Now the modrm byte and sib byte (if present). */
9839 {
9843 /* If i.rm.regmem == ESP (4)
9844 && i.rm.mode != (Register mode)
9845 && not 16 bit
9846 ==> need second modrm byte. */
9853 }
9861 /*
9862 * frag_now_fix () returning plain abs_section_offset when we're in the
9863 * absolute section, and abs_section_offset not getting updated as data
9864 * gets added to the frag breaks the logic below.
9865 */
9867 {
9871 j);
9873 {
9874 /* NB: Don't add prefix with GOTPC relocation since
9875 output_disp() above depends on the fixed encoding
9876 length. Can't add prefix with TLS relocation since
9877 it breaks TLS linker optimization. */
9879 /* Prefix count on the current instruction. */
9883 /* REX byte is encoded in VEX/EVEX prefix. */
9885 count++;
9887 /* Count prefixes for extended opcode maps. */
9890 {
9894 count++;
9902 }
9906 {
9907 /* Set the maximum prefix size in BRANCH_PREFIX
9908 frag. */
9913 else
9915 }
9916 else
9917 {
9918 /* Remember the maximum prefix size in FUSED_JCC_PADDING
9919 frag. */
9923 else
9928 }
9930 /* Use existing segment prefix if possible. Use CS
9931 segment prefix in 64-bit mode. In 32-bit mode, use SS
9932 segment prefix with ESP/EBP base register and use DS
9933 segment prefix without ESP/EBP base register. */
9942 else
9944 }
9945 }
9946 }
9948 /* NB: Don't work with COND_JUMP86 without i386. */
9952 {
9953 /* Terminate each frag so that we can add prefix and check for
9954 fused jcc. */
9957 }
9959 #ifdef DEBUG386
9961 {
9963 }
9965 }
9967 /* Return the size of the displacement operand N. */
9969 static int
9971 {
9981 }
9983 /* Return the size of the immediate operand N. */
9985 static int
9987 {
9996 }
9998 static void
10000 {
10005 {
10007 {
10013 {
10017 size);
10020 }
10021 else
10022 {
10032 /* We can't have 8 bit displacement here. */
10035 /* The PC relative address is computed relative
10036 to the instruction boundary, so in case immediate
10037 fields follows, we need to adjust the value. */
10039 {
10045 {
10046 /* Only one immediate is allowed for PC
10047 relative address. */
10051 }
10052 /* We should find the immediate. */
10054 }
10066 && ((symbol_get_value_expression
10070 {
10072 {
10077 }
10080 else
10081 /* Don't do the adjustment for x86-64, as there
10082 the pcrel addressing is relative to the _next_
10083 insn, and that is taken care of in other code. */
10085 }
10087 {
10089 {
10105 }
10106 }
10109 reloc_type);
10115 /* Check for "call/jmp *mem", "mov mem, %reg",
10116 "test %reg, mem" and "binop mem, %reg" where binop
10117 is one of adc, add, and, cmp, or, sbb, sub, xor
10118 instructions without data prefix. Always generate
10119 R_386_GOT32X for "sym*GOT" operand in 32-bit mode. */
10121 && (generate_relax_relocations
10122 || (!object_64bit
10135 {
10137 {
10142 }
10143 else
10145 }
10146 }
10147 }
10148 }
10149 }
10151 static void
10153 {
10158 {
10160 {
10166 {
10167 offsetT val;
10170 size);
10173 }
10174 else
10175 {
10176 /* Not absolute_section.
10177 Need a 32-bit fixup (don't support 8bit
10178 non-absolute imms). Try to support other
10179 sizes ... */
10187 else
10193 /* This is tough to explain. We end up with this one if we
10194 * have operands that look like
10195 * "_GLOBAL_OFFSET_TABLE_+[.-.L284]". The goal here is to
10196 * obtain the absolute address of the GOT, and it is strongly
10197 * preferable from a performance point of view to avoid using
10198 * a runtime relocation for this. The actual sequence of
10199 * instructions often look something like:
10200 *
10201 * call .L66
10202 * .L66:
10203 * popl %ebx
10204 * addl $_GLOBAL_OFFSET_TABLE_+[.-.L66],%ebx
10205 *
10206 * The call and pop essentially return the absolute address
10207 * of the label .L66 and store it in %ebx. The linker itself
10208 * will ultimately change the first operand of the addl so
10209 * that %ebx points to the GOT, but to keep things simple, the
10210 * .o file must have this operand set so that it generates not
10211 * the absolute address of .L66, but the absolute address of
10212 * itself. This allows the linker itself simply treat a GOTPC
10213 * relocation as asking for a pcrel offset to the GOT to be
10214 * added in, and the addend of the relocation is stored in the
10215 * operand field for the instruction itself.
10216 *
10217 * Our job here is to fix the operand so that it would add
10218 * the correct offset so that %ebx would point to itself. The
10219 * thing that is tricky is that .-.L66 will point to the
10220 * beginning of the instruction, so we need to further modify
10221 * the operand so that it will point to itself. There are
10222 * other cases where you have something like:
10223 *
10224 * .long $_GLOBAL_OFFSET_TABLE_+[.-.L66]
10225 *
10226 * and here no correction would be required. Internally in
10227 * the assembler we treat operands of this form as not being
10228 * pcrel since the '.' is explicitly mentioned, and I wonder
10229 * whether it would simplify matters to do it this way. Who
10230 * knows. In earlier versions of the PIC patches, the
10231 * pcrel_adjust field was used to store the correction, but
10232 * since the expression is not pcrel, I felt it would be
10233 * confusing to do it this way. */
10238 && GOT_symbol
10242 && ((symbol_get_value_expression
10245 {
10255 }
10258 }
10259 }
10260 }
10261 }
10262 \f
10263 /* x86_cons_fix_new is called via the expression parsing code when a
10264 reloc is needed. We use this hook to get the correct .got reloc. */
10267 void
10270 {
10273 #ifdef TE_PE
10275 {
10278 }
10281 #endif
10284 }
10286 /* Export the ABI address size for use by TC_ADDRESS_BYTES for the
10287 purpose of the `.dc.a' internal pseudo-op. */
10289 int
10291 {
10295 }
10297 #if (!(defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) || defined (OBJ_MACH_O)) \
10298 || defined (LEX_AT)) && !defined (TE_PE)
10299 # define lex_got(reloc, adjust, types) NULL
10300 #else
10301 /* Parse operands of the form
10302 <symbol>@GOTOFF+<nnn>
10303 and similar .plt or .got references.
10305 If we find one, set up the correct relocation in RELOC and copy the
10306 input string, minus the `@GOTOFF' into a malloc'd buffer for
10307 parsing by the calling routine. Return this buffer, and if ADJUST
10308 is non-null set it to the length of the string we removed from the
10309 input line. Otherwise return NULL. */
10314 {
10315 /* Some of the relocations depend on the size of what field is to
10316 be relocated. But in our callers i386_immediate and i386_displacement
10317 we don't yet know the operand size (this will be set by insn
10318 matching). Hence we record the word32 relocation here,
10319 and adjust the reloc according to the real size in reloc(). */
10320 static const struct
10321 {
10327 }
10328 gotrel[] =
10329 {
10330 #ifndef TE_PE
10331 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
10333 BFD_RELOC_SIZE32 },
10335 #endif
10337 BFD_RELOC_X86_64_PLTOFF64 },
10340 BFD_RELOC_X86_64_PLT32 },
10343 BFD_RELOC_X86_64_GOTPLT64 },
10346 BFD_RELOC_X86_64_GOTOFF64 },
10349 BFD_RELOC_X86_64_GOTPCREL },
10352 BFD_RELOC_X86_64_TLSGD },
10355 _dummy_first_bfd_reloc_code_real },
10358 BFD_RELOC_X86_64_TLSLD },
10361 BFD_RELOC_X86_64_GOTTPOFF },
10364 BFD_RELOC_X86_64_TPOFF32 },
10367 _dummy_first_bfd_reloc_code_real },
10370 BFD_RELOC_X86_64_DTPOFF32 },
10373 _dummy_first_bfd_reloc_code_real },
10376 _dummy_first_bfd_reloc_code_real },
10379 BFD_RELOC_X86_64_GOT32 },
10382 BFD_RELOC_X86_64_GOTPC32_TLSDESC },
10385 BFD_RELOC_X86_64_TLSDESC_CALL },
10389 BFD_RELOC_32_SECREL },
10391 #endif
10392 };
10396 #if defined (OBJ_MAYBE_ELF) && !defined (TE_PE)
10399 #endif
10406 {
10409 {
10411 {
10418 {
10420 {
10423 }
10424 else
10426 }
10431 /* The length of the first part of our input line. */
10434 /* The second part goes from after the reloc token until
10435 (and including) an end_of_line char or comma. */
10442 /* Allocate and copy string. The trailing NUL shouldn't
10443 be necessary, but be safe. */
10447 /* Replace the relocation token with ' ', so that
10448 errors like foo@GOTOFF1 will be detected. */
10450 else
10451 /* Increment length by 1 if the relocation token is
10452 removed. */
10453 len++;
10459 }
10464 }
10465 }
10467 /* Might be a symbol version string. Don't as_bad here. */
10469 }
10470 #endif
10472 bfd_reloc_code_real_type
10474 {
10477 #if ((defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)) \
10478 && !defined (LEX_AT)) \
10479 || defined (TE_PE)
10484 {
10485 /* Handle @GOTOFF and the like in an expression. */
10498 {
10499 /* expression () has merrily parsed up to the end of line,
10500 or a comma - in the wrong buffer. Transfer how far
10501 input_line_pointer has moved to the right buffer. */
10502 input_line_pointer = (save
10511 {
10516 }
10520 {
10525 }
10526 }
10527 }
10528 else
10535 #else
10537 #endif
10539 /* If not 64bit, massage value, to account for wraparound when !BFD64. */
10544 }
10546 static void
10548 {
10553 }
10555 #ifdef TE_PE
10556 static void
10558 {
10559 expressionS exp;
10561 do
10562 {
10568 }
10571 input_line_pointer--;
10573 }
10575 static void
10577 {
10578 expressionS exp;
10580 do
10581 {
10587 }
10590 input_line_pointer--;
10592 }
10593 #endif
10595 /* Handle Rounding Control / SAE specifiers. */
10599 {
10603 {
10605 {
10607 {
10610 }
10615 }
10616 }
10619 }
10621 /* Handle Vector operations. */
10625 {
10631 {
10634 {
10635 op_string++;
10637 /* Check broadcasts. */
10639 {
10654 {
10656 op_string++;
10657 }
10660 {
10662 op_string++;
10663 }
10664 else
10665 {
10668 }
10669 op_string++;
10673 }
10674 /* Check masking operation. */
10676 {
10680 /* k0 can't be used for write mask. */
10682 {
10686 }
10689 {
10692 }
10695 else
10696 {
10699 /* Only "{z}" is allowed here. No need to check
10700 zeroing mask explicitly. */
10702 {
10705 }
10706 }
10709 }
10710 /* Check zeroing-flag for masking operation. */
10712 {
10714 {
10718 }
10719 else
10720 {
10722 {
10723 duplicated_vec_op:
10726 }
10730 /* Only "{%k}" is allowed here. No need to check mask
10731 register explicitly. */
10733 {
10735 saved);
10737 }
10738 }
10740 op_string++;
10741 }
10745 else
10749 {
10752 }
10753 op_string++;
10755 /* Strip whitespace since the addition of pseudo prefixes
10756 changed how the scrubber treats '{'. */
10761 }
10762 unknown_vec_op:
10763 /* We don't know this one. */
10766 }
10769 {
10772 }
10775 }
10777 static int
10779 {
10784 i386_operand_type types;
10789 {
10791 MAX_IMMEDIATE_OPERANDS);
10793 }
10816 {
10821 }
10824 {
10827 }
10830 }
10832 static int
10835 {
10837 {
10840 imm_start);
10842 }
10844 {
10845 /* Size it properly later. */
10848 /* If not 64bit, sign/zero extend val, to account for wraparound
10849 when !BFD64. */
10852 }
10853 #if (defined (OBJ_AOUT) || defined (OBJ_MAYBE_AOUT))
10861 {
10864 }
10865 #endif
10866 else
10867 {
10868 /* This is an address. The size of the address will be
10869 determined later, depending on destination register,
10870 suffix, or the default for the section. */
10877 types);
10878 }
10881 }
10885 {
10886 offsetT val;
10893 {
10907 {
10912 scale);
10916 }
10917 }
10919 {
10923 }
10927 }
10929 static int
10931 {
10941 {
10943 MAX_MEMORY_OPERANDS);
10945 }
10952 {
10956 {
10960 }
10963 else
10965 }
10966 else
10967 {
10968 /* For PC-relative branches, the width of the displacement may be
10969 dependent upon data size, but is never dependent upon address size.
10970 Also make sure to not unintentionally match against a non-PC-relative
10971 branch template. */
10978 {
10984 }
10986 {
10989 }
10993 {
10997 else
10999 }
11000 else
11001 {
11004 ? WORD_MNEM_SUFFIX
11008 {
11011 }
11012 }
11013 }
11015 bigdisp);
11024 #ifndef GCC_ASM_O_HACK
11025 #define GCC_ASM_O_HACK 0
11026 #endif
11027 #if GCC_ASM_O_HACK
11031 {
11032 /* This hack is to avoid a warning when using the "o"
11033 constraint within gcc asm statements.
11034 For instance:
11036 #define _set_tssldt_desc(n,addr,limit,type) \
11037 __asm__ __volatile__ ( \
11038 "movw %w2,%0\n\t" \
11039 "movw %w1,2+%0\n\t" \
11040 "rorl $16,%1\n\t" \
11041 "movb %b1,4+%0\n\t" \
11042 "movb %4,5+%0\n\t" \
11043 "movb $0,6+%0\n\t" \
11044 "movb %h1,7+%0\n\t" \
11045 "rorl $16,%1" \
11046 : "=o"(*(n)) : "q" (addr), "ri"(limit), "i"(type))
11048 This works great except that the output assembler ends
11049 up looking a bit weird if it turns out that there is
11050 no offset. You end up producing code that looks like:
11052 #APP
11053 movw $235,(%eax)
11054 movw %dx,2+(%eax)
11055 rorl $16,%edx
11056 movb %dl,4+(%eax)
11057 movb $137,5+(%eax)
11058 movb $0,6+(%eax)
11059 movb %dh,7+(%eax)
11060 rorl $16,%edx
11061 #NO_APP
11063 So here we provide the missing zero. */
11066 }
11067 #endif
11077 #if GCC_ASM_O_HACK
11079 #endif
11082 {
11087 }
11094 }
11096 static int
11099 {
11102 /* We do this to make sure that the section symbol is in
11103 the symbol table. We will ultimately change the relocation
11104 to be relative to the beginning of the section. */
11108 {
11122 else
11124 }
11129 {
11130 inv_disp:
11132 disp_start);
11134 }
11137 {
11138 /* Sizing gets taken care of by optimize_disp().
11140 If not 64bit, sign/zero extend val, to account for wraparound
11141 when !BFD64. */
11144 }
11146 #if (defined (OBJ_AOUT) || defined (OBJ_MAYBE_AOUT))
11154 {
11157 }
11158 #endif
11163 /* Check if this is a displacement only operand. */
11170 }
11172 /* Return the active addressing mode, taking address override and
11173 registers forming the address into consideration. Update the
11174 address override prefix if necessary. */
11176 static enum flag_code
11178 {
11185 /* Avoid replacing the "16-bit addressing not allowed" diagnostic
11186 from md_assemble() by "is not a valid base/index expression"
11187 when there is a base and/or index. */
11189 {
11190 /* MPX insn memory operands with neither base nor index must be forced
11191 to use 32-bit addressing in 16-bit mode. */
11197 }
11198 else
11199 {
11202 #if INFER_ADDR_PREFIX
11204 {
11205 /* Infer address prefix from the first memory operand. */
11212 {
11220 {
11223 /* Change the size of any displacement too. At most one
11224 of Disp16 or Disp32 is set.
11225 FIXME. There doesn't seem to be any real need for
11226 separate Disp16 and Disp32 flags. The same goes for
11227 Imm16 and Imm32. Removing them would probably clean
11228 up the code quite a lot. */
11234 }
11235 }
11236 }
11237 #endif
11238 }
11241 }
11243 /* Make sure the memory operand we've been dealt is valid.
11244 Return 1 on success, 0 on a failure. */
11246 static int
11248 {
11256 {
11257 /* Memory operands of string insns are special in that they only allow
11258 a single register (rDI, rSI, or rBX) as their memory address. */
11261 {
11265 };
11271 {
11281 expected_reg
11284 }
11285 else
11286 expected_reg
11292 {
11293 /* The second memory operand must have the same size as
11294 the first one. */
11305 operand_string,
11307 register_prefix,
11311 }
11312 else
11315 bad_address:
11319 }
11320 else
11321 {
11323 {
11324 /* 32-bit/64-bit checks. */
11326 {
11327 bad_disp:
11331 }
11349 /* bndmk, bndldx, bndstx and mandatory non-vector SIB have special restrictions. */
11357 {
11358 /* They cannot use RIP-relative addressing. */
11360 {
11363 }
11365 /* bndldx and bndstx ignore their scale factor. */
11371 }
11372 }
11373 else
11374 {
11375 /* 16-bit checks. */
11390 }
11391 }
11393 }
11395 /* Handle vector immediates. */
11397 static int
11399 {
11410 {
11413 }
11416 {
11419 }
11421 /* Internally this doesn't count as an operand. */
11425 }
11427 /* Only string instructions can have a second memory operand, so
11428 reduce current_templates to just those if it contains any. */
11429 static int
11431 {
11441 {
11451 /* Determine whether to re-check the first memory operand. */
11458 {
11464 }
11465 }
11468 }
11471 {
11475 }
11477 /* Parse OPERAND_STRING into the i386_insn structure I. Returns zero
11478 on error. */
11480 static int
11482 {
11490 /* We check for an absolute prefix (differentiating,
11491 for example, 'jmp pc_relative_label' from 'jmp *absolute_label'. */
11493 {
11498 }
11500 /* Check if operand is a register. */
11502 {
11503 i386_operand_type temp;
11508 /* Check for a segment override by searching for ':' after a
11509 segment register. */
11514 {
11517 /* Skip the ':' and whitespace. */
11522 /* Handle case of %es:*foo. */
11524 {
11529 }
11532 {
11535 }
11537 }
11539 /* Handle vector operations. */
11541 {
11545 }
11548 {
11551 }
11555 temp);
11560 /* A GPR may follow an RC or SAE immediate only if a (vector) register
11561 operand was also present earlier on. */
11564 {
11573 }
11574 }
11576 {
11579 }
11581 {
11584 {
11587 }
11591 {
11595 }
11596 }
11598 {
11599 /* If it is a RC or SAE immediate, do the necessary placement check:
11600 Only another immediate or a GPR may precede it. */
11604 {
11608 }
11609 }
11611 {
11612 /* This is a memory reference of some sort. */
11615 /* Start and end of displacement string expression (if found). */
11619 do_memory_reference:
11625 {
11629 }
11631 /* Check for base index form. We detect the base index form by
11632 looking for an ')' at the end of the operand, searching
11633 for the '(' matching it, and finding a REGISTER_PREFIX or ','
11634 after the '('. */
11637 /* Handle vector operations. */
11643 {
11647 {
11663 }
11666 {
11669 }
11673 }
11675 /* If we only have a displacement, set-up for it to be parsed later. */
11680 {
11685 /* We've already checked that the number of left & right ()'s are
11686 equal, and that there's a matching set of double quotes. */
11689 {
11695 {
11700 }
11701 }
11705 /* Skip past '(' and whitespace. */
11714 {
11720 {
11726 }
11728 /* There may be an index reg or scale factor here. */
11730 {
11737 {
11744 {
11748 }
11750 {
11753 operand_string);
11755 }
11756 }
11758 {
11764 }
11766 /* Check for scale factor. */
11768 {
11778 {
11781 operand_string);
11783 }
11784 }
11786 {
11791 }
11792 }
11794 {
11797 operand_string);
11799 }
11800 }
11802 {
11808 }
11809 }
11811 /* If there's an expression beginning the operand, parse it,
11812 assuming displacement_string_start and
11813 displacement_string_end are meaningful. */
11815 {
11817 displacement_string_end))
11819 }
11821 /* Special case for (%dx) while doing input/output op. */
11829 {
11833 }
11841 }
11842 else
11843 {
11844 /* It's not a memory operand; argh! */
11848 op_string);
11850 }
11852 }
11853 \f
11854 /* Calculate the maximum variable size (i.e., excluding fr_fix)
11855 that an rs_machine_dependent frag may reach. */
11857 unsigned int
11859 {
11860 /* The only relaxable frags are for jumps.
11861 Unconditional jumps can grow by 4 bytes and others by 5 bytes. */
11864 }
11866 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
11867 static int
11869 {
11870 /* STT_GNU_IFUNC symbol must go through PLT. */
11876 /* Symbol may be weak or local. */
11879 /* Global symbols with non-default visibility can't be preempted. */
11885 {
11888 /* Symbol with PLT relocation may be preempted. */
11892 }
11894 /* Global symbols with default visibility in a shared library may be
11895 preempted by another definition. */
11897 }
11898 #endif
11900 /* Table 3-2. Macro-Fusible Instructions in Haswell Microarchitecture
11901 Note also work for Skylake and Cascadelake.
11902 ---------------------------------------------------------------------
11903 | JCC | ADD/SUB/CMP | INC/DEC | TEST/AND |
11904 | ------ | ----------- | ------- | -------- |
11905 | Jo | N | N | Y |
11906 | Jno | N | N | Y |
11907 | Jc/Jb | Y | N | Y |
11908 | Jae/Jnb | Y | N | Y |
11909 | Je/Jz | Y | Y | Y |
11910 | Jne/Jnz | Y | Y | Y |
11911 | Jna/Jbe | Y | N | Y |
11912 | Ja/Jnbe | Y | N | Y |
11913 | Js | N | N | Y |
11914 | Jns | N | N | Y |
11915 | Jp/Jpe | N | N | Y |
11916 | Jnp/Jpo | N | N | Y |
11917 | Jl/Jnge | Y | Y | Y |
11918 | Jge/Jnl | Y | Y | Y |
11919 | Jle/Jng | Y | Y | Y |
11920 | Jg/Jnle | Y | Y | Y |
11921 --------------------------------------------------------------------- */
11922 static int
11924 {
11934 }
11936 /* Return the next non-empty frag. */
11940 {
11941 /* There may be a frag with a ".fill 0" when there is no room in
11942 the current frag for frag_grow in output_insn. */
11948 ;
11950 }
11952 /* Return the next jcc frag after BRANCH_PADDING. */
11956 {
11964 {
11972 }
11975 }
11977 /* Classify BRANCH_PADDING, BRANCH_PREFIX and FUSED_JCC_PADDING frags. */
11979 static void
11981 {
11991 /* First scan for BRANCH_PADDING and FUSED_JCC_PADDING. Convert
11992 FUSED_JCC_PADDING and merge BRANCH_PADDING. */
11996 {
12000 {
12002 /* The BRANCH_PADDING frag must be followed by a branch
12003 frag. */
12008 /* Check if this is a fused jcc:
12009 FUSED_JCC_PADDING
12010 CMP like instruction
12011 BRANCH_PADDING
12012 COND_JUMP
12013 */
12018 {
12019 /* The BRANCH_PADDING frag is merged with the
12020 FUSED_JCC_PADDING frag. */
12022 /* CMP like instruction size. */
12025 /* Skip to branch_fragP. */
12027 }
12029 {
12030 /* Turn FUSED_JCC_PADDING into BRANCH_PREFIX if it isn't
12031 a fused jcc. */
12032 next_fragP->fr_subtype
12036 /* This will be updated in the BRANCH_PREFIX scan. */
12038 }
12039 else
12042 }
12043 }
12045 /* Stop if there is no BRANCH_PREFIX. */
12049 /* Scan for BRANCH_PREFIX. */
12051 {
12057 /* Count all BRANCH_PREFIX frags before BRANCH_PADDING and
12058 COND_JUMP_PREFIX. */
12063 {
12065 /* Skip rs_fill frags. */
12068 /* Stop for all other frags. */
12071 /* rs_machine_dependent frags. */
12074 {
12075 /* Count BRANCH_PREFIX frags. */
12077 {
12080 }
12081 else
12082 max_prefix_length
12084 }
12089 {
12090 /* Stop at BRANCH_PADDING and FUSED_JCC_PADDING. */
12093 }
12094 else
12095 /* Stop for other rs_machine_dependent frags. */
12097 }
12101 /* Skip to the next frag. */
12103 }
12104 }
12106 /* Compute padding size for
12108 FUSED_JCC_PADDING
12109 CMP like instruction
12110 BRANCH_PADDING
12111 COND_JUMP/UNCOND_JUMP
12113 or
12115 BRANCH_PADDING
12116 COND_JUMP/UNCOND_JUMP
12117 */
12119 static int
12121 {
12125 /* The start address of the BRANCH_PADDING or FUSED_JCC_PADDING frag. */
12130 /* CMP like instrunction size. */
12133 /* The base size of the branch frag. */
12136 /* Add opcode and displacement bytes for the rs_machine_dependent
12137 branch frag. */
12141 /* Check if branch is within boundary and doesn't end at the last
12142 byte. */
12145 /* Padding needed to avoid crossing boundary. */
12147 else
12148 /* No padding needed. */
12151 /* The return value may be saved in tc_frag_data.length which is
12152 unsigned byte. */
12157 }
12159 /* i386_generic_table_relax_frag()
12161 Handle BRANCH_PADDING, BRANCH_PREFIX and FUSED_JCC_PADDING frags to
12162 grow/shrink padding to align branch frags. Hand others to
12163 relax_frag(). */
12165 long
12167 {
12170 {
12174 /* When the BRANCH_PREFIX frag is used, the computed address
12175 must match the actual address and there should be no padding. */
12181 /* Update the padding size. */
12186 }
12188 {
12194 /* Use the padding set by the leading BRANCH_PREFIX frag. */
12198 /* Compute the relative address of the padding frag in the very
12199 first time where the BRANCH_PREFIX frag sizes are zero. */
12204 /* First update the last length from the previous interation. */
12212 {
12214 {
12217 {
12221 else
12225 }
12226 }
12227 else
12229 }
12231 /* Check the padding size for the padding frag. */
12232 padding_size = i386_branch_padding_size
12237 /* Check if there is change from the last interation. */
12239 {
12240 /* Update the expected address of the padding frag. */
12245 }
12248 {
12249 /* No padding if there is no sufficient room. Clear the
12250 expected address of the padding frag. */
12253 }
12254 else
12255 /* Store the expected address of the padding frag. */
12262 /* Update the length for the current interation. */
12270 {
12272 {
12275 {
12279 else
12283 }
12284 }
12285 else
12287 }
12291 }
12293 }
12295 /* md_estimate_size_before_relax()
12297 Called just before relax() for rs_machine_dependent frags. The x86
12298 assembler uses these frags to handle variable size jump
12299 instructions.
12301 Any symbol that is now undefined will not become defined.
12302 Return the correct fr_subtype in the frag.
12303 Return the initial "guess for variable size of frag" to caller.
12304 The guess is actually the growth beyond the fixed part. Whatever
12305 we do to grow the fixed or variable part contributes to our
12306 returned value. */
12308 int
12310 {
12314 {
12317 }
12319 /* We've already got fragP->fr_subtype right; all we have to do is
12320 check for un-relaxable symbols. On an ELF system, we can't relax
12321 an externally visible symbol, because it may be overridden by a
12322 shared library. */
12324 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
12325 || (IS_ELF
12328 #endif
12329 #if defined (OBJ_COFF) && defined (TE_PE)
12332 #endif
12333 )
12334 {
12335 /* Symbol is undefined in this segment, or we need to keep a
12336 reloc so that weak symbols can be overridden. */
12347 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
12351 #endif
12352 else
12359 {
12361 /* Make jmp (0xeb) a (d)word displacement jump. */
12367 reloc_type);
12373 {
12374 /* Negate the condition, and branch past an
12375 unconditional jump. */
12378 /* Insert an unconditional jump. */
12380 /* We added two extra opcode bytes, and have a two byte
12381 offset. */
12386 reloc_type);
12388 }
12389 /* Fall through. */
12393 {
12398 BFD_RELOC_8_PCREL);
12401 }
12403 /* This changes the byte-displacement jump 0x7N
12404 to the (d)word-displacement jump 0x0f,0x8N. */
12407 /* We've added an opcode byte. */
12412 reloc_type);
12418 }
12420 /* All jumps handled here are signed, but don't unconditionally use a
12421 signed limit check for 32 and 16 bit jumps as we want to allow wrap
12422 around at 4G (outside of 64-bit mode) and 64k. */
12428 }
12430 /* Guess size depending on current relax state. Initially the relax
12431 state will correspond to a short jump and we return 1, because
12432 the variable part of the frag (the branch offset) is one byte
12433 long. However, we can relax a section more than once and in that
12434 case we must either set fr_subtype back to the unrelaxed state,
12435 or return the value for the appropriate branch. */
12437 }
12439 /* Called after relax() is finished.
12441 In: Address of frag.
12442 fr_type == rs_machine_dependent.
12443 fr_subtype is what the address relaxed to.
12445 Out: Any fixSs and constants are set up.
12446 Caller will turn frag into a ".space 0". */
12448 void
12451 {
12454 offsetT target_address;
12455 offsetT opcode_address;
12457 offsetT displacement_from_opcode_start;
12462 {
12463 /* Generate nop padding. */
12466 {
12471 {
12478 {
12481 {
12503 }
12507 else
12510 }
12511 else
12512 {
12516 }
12520 {
12541 }
12547 }
12551 else
12555 }
12557 }
12561 /* Address we want to reach in file space. */
12564 /* Address opcode resides at in file space. */
12567 /* Displacement from opcode start to fill into instruction. */
12571 {
12572 /* Don't have to change opcode. */
12575 }
12576 else
12577 {
12584 {
12623 }
12624 }
12626 /* If size if less then four we are sure that the operand fits,
12627 but if it's 4, then it could be that the displacement is larger
12628 then -/+ 2GB. */
12630 && object_64bit
12634 {
12637 /* Make us emit 0. */
12639 }
12640 /* Now put displacement after opcode. */
12645 }
12646 \f
12647 /* Apply a fixup (fixP) to segment data, once it has been determined
12648 by our caller that we have all the info we need to fix it up.
12650 Parameter valP is the pointer to the value of the bits.
12652 On the 386, immediates, displacements, and data pointers are all in
12653 the same (little-endian) format, so we don't need to care about which
12654 we are handling. */
12656 void
12658 {
12662 #if !defined (TE_Mach)
12664 {
12666 {
12683 }
12684 }
12692 {
12693 /* This is a hack. There should be a better way to handle this.
12694 This covers for the fact that bfd_install_relocation will
12695 subtract the current location (for partial_inplace, PC relative
12696 relocations); see more below. */
12697 #ifndef OBJ_AOUT
12699 #ifdef TE_PE
12701 #endif
12702 )
12704 #endif
12705 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
12707 {
12714 {
12715 /* Yes, we add the values in twice. This is because
12716 bfd_install_relocation subtracts them out again. I think
12717 bfd_install_relocation is broken, but I don't dare change
12718 it. FIXME. */
12720 }
12721 }
12722 #endif
12723 #if defined (OBJ_COFF) && defined (TE_PE)
12724 /* For some reason, the PE format does not store a
12725 section address offset for a PC relative symbol. */
12729 #endif
12730 }
12731 #if defined (OBJ_COFF) && defined (TE_PE)
12734 /* PR 16858: Do not modify weak function references. */
12736 {
12737 #if !defined (TE_PEP)
12738 /* For x86 PE weak function symbols are neither PC-relative
12739 nor do they set S_IS_FUNCTION. So the only reliable way
12740 to detect them is to check the flags of their containing
12741 section. */
12744 ;
12745 else
12746 #endif
12748 }
12749 #endif
12751 /* Fix a few things - the dynamic linker expects certain values here,
12752 and we must not disappoint it. */
12753 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
12756 {
12759 /* Make the jump instruction point to the address of the operand.
12760 At runtime we merely add the offset to the actual PLT entry.
12761 NB: Subtract the offset size only for jump instructions. */
12777 /* Fallthrough */
12802 }
12805 /* If not 64bit, massage value, to account for wraparound when !BFD64. */
12812 /* Are we finished with this relocation now? */
12814 {
12817 {
12824 }
12825 }
12826 #if defined (OBJ_COFF) && defined (TE_PE)
12828 {
12830 /* Remember value for tc_gen_reloc. */
12832 /* Clear out the frag for now. */
12834 }
12835 #endif
12837 {
12840 /* Remember value for tc_gen_reloc. */
12843 }
12846 }
12847 \f
12850 {
12851 /* This outputs the LITTLENUMs in REVERSE order;
12852 in accord with the bigendian 386. */
12854 }
12855 \f
12860 {
12864 else
12868 }
12870 /* Verify that @r can be used in the current context. */
12873 {
12898 {
12904 {
12910 }
12911 }
12921 /* Don't allow fake index register unless allow_index_reg isn't 0. */
12925 /* Upper 16 vector registers are only available with VREX in 64bit
12926 mode, and require EVEX encoding. */
12928 {
12937 }
12949 }
12951 /* REG_STRING starts *before* REGISTER_PREFIX. */
12955 {
12961 /* Skip possible REGISTER_PREFIX and possible whitespace. */
12970 {
12973 s++;
12974 }
12976 /* For naked regs, make sure that we are not dealing with an identifier.
12977 This prevents confusing an identifier like `eax_var' with register
12978 `eax'. */
12986 /* Handle floating point regs, allowing spaces in the (i) part. */
12988 {
12998 {
13003 {
13009 {
13013 }
13014 }
13015 /* We have "%st(" then garbage. */
13017 }
13018 }
13021 }
13023 /* REG_STRING starts *before* REGISTER_PREFIX. */
13027 {
13032 else
13035 {
13044 {
13050 }
13052 {
13060 {
13064 }
13066 }
13069 }
13071 }
13073 int
13075 {
13083 {
13087 {
13090 }
13091 else
13094 }
13098 }
13100 void
13102 {
13107 {
13111 {
13115 }
13123 {
13129 }
13130 else
13131 {
13134 }
13136 }
13137 }
13139 \f
13140 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
13142 #else
13144 #endif
13146 #define OPTION_32 (OPTION_MD_BASE + 0)
13147 #define OPTION_64 (OPTION_MD_BASE + 1)
13148 #define OPTION_DIVIDE (OPTION_MD_BASE + 2)
13149 #define OPTION_MARCH (OPTION_MD_BASE + 3)
13150 #define OPTION_MTUNE (OPTION_MD_BASE + 4)
13151 #define OPTION_MMNEMONIC (OPTION_MD_BASE + 5)
13152 #define OPTION_MSYNTAX (OPTION_MD_BASE + 6)
13153 #define OPTION_MINDEX_REG (OPTION_MD_BASE + 7)
13154 #define OPTION_MNAKED_REG (OPTION_MD_BASE + 8)
13155 #define OPTION_MRELAX_RELOCATIONS (OPTION_MD_BASE + 9)
13156 #define OPTION_MSSE2AVX (OPTION_MD_BASE + 10)
13157 #define OPTION_MSSE_CHECK (OPTION_MD_BASE + 11)
13158 #define OPTION_MOPERAND_CHECK (OPTION_MD_BASE + 12)
13159 #define OPTION_MAVXSCALAR (OPTION_MD_BASE + 13)
13160 #define OPTION_X32 (OPTION_MD_BASE + 14)
13161 #define OPTION_MADD_BND_PREFIX (OPTION_MD_BASE + 15)
13162 #define OPTION_MEVEXLIG (OPTION_MD_BASE + 16)
13163 #define OPTION_MEVEXWIG (OPTION_MD_BASE + 17)
13164 #define OPTION_MBIG_OBJ (OPTION_MD_BASE + 18)
13165 #define OPTION_MOMIT_LOCK_PREFIX (OPTION_MD_BASE + 19)
13166 #define OPTION_MEVEXRCIG (OPTION_MD_BASE + 20)
13167 #define OPTION_MSHARED (OPTION_MD_BASE + 21)
13168 #define OPTION_MAMD64 (OPTION_MD_BASE + 22)
13169 #define OPTION_MINTEL64 (OPTION_MD_BASE + 23)
13170 #define OPTION_MFENCE_AS_LOCK_ADD (OPTION_MD_BASE + 24)
13171 #define OPTION_X86_USED_NOTE (OPTION_MD_BASE + 25)
13172 #define OPTION_MVEXWIG (OPTION_MD_BASE + 26)
13173 #define OPTION_MALIGN_BRANCH_BOUNDARY (OPTION_MD_BASE + 27)
13174 #define OPTION_MALIGN_BRANCH_PREFIX_SIZE (OPTION_MD_BASE + 28)
13175 #define OPTION_MALIGN_BRANCH (OPTION_MD_BASE + 29)
13176 #define OPTION_MBRANCHES_WITH_32B_BOUNDARIES (OPTION_MD_BASE + 30)
13177 #define OPTION_MLFENCE_AFTER_LOAD (OPTION_MD_BASE + 31)
13178 #define OPTION_MLFENCE_BEFORE_INDIRECT_BRANCH (OPTION_MD_BASE + 32)
13179 #define OPTION_MLFENCE_BEFORE_RET (OPTION_MD_BASE + 33)
13180 #define OPTION_MUSE_UNALIGNED_VECTOR_MOVE (OPTION_MD_BASE + 34)
13183 {
13185 #if (defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) \
13186 || defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O))
13188 #endif
13189 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
13193 #endif
13210 # if defined (TE_PE) || defined (TE_PEP)
13212 #endif
13223 OPTION_MLFENCE_BEFORE_INDIRECT_BRANCH},
13228 };
13231 int
13233 {
13238 {
13247 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
13248 /* -Qy, -Qn: SVR4 arguments controlling whether a .comment section
13249 should be emitted or not. FIXME: Not implemented. */
13255 /* -V: SVR4 argument to print version ID. */
13260 /* -k: Ignore for FreeBSD compatibility. */
13265 /* -s: On i386 Solaris, this tells the native assembler to use
13266 .stab instead of .stab.excl. We always use .stab anyhow. */
13278 else
13283 #endif
13284 #if (defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) \
13285 || defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O))
13287 {
13297 {
13300 }
13304 }
13306 #endif
13308 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
13311 {
13317 {
13320 }
13324 }
13325 else
13328 #endif
13335 #ifdef SVR4_COMMENT_CHARS
13336 {
13347 }
13348 #endif
13354 /* Allow -march=+nosse. */
13356 arch++;
13357 do
13358 {
13365 {
13368 {
13369 /* Processor. */
13380 {
13383 }
13385 }
13389 {
13390 /* ISA extension. */
13391 i386_cpu_flags flags;
13397 {
13401 }
13402 else
13403 cpu_arch_isa_flags
13407 }
13408 }
13411 {
13412 /* Disable an ISA extension. */
13416 {
13417 i386_cpu_flags flags;
13422 {
13426 }
13428 }
13429 }
13435 }
13444 {
13447 {
13452 }
13453 }
13463 else
13472 else
13499 else
13510 else
13519 else
13528 else
13543 else
13556 else
13565 else
13569 # if defined (TE_PE) || defined (TE_PEP)
13573 #endif
13580 else
13589 else
13598 else
13604 {
13608 }
13615 else
13617 arg);
13629 else
13631 arg);
13639 else
13644 {
13648 {
13650 {
13653 }
13655 {
13661 /* Limit alignment power to 31. */
13663 {
13666 }
13667 }
13668 }
13670 }
13674 {
13677 /* Some processors only support 5 prefixes. */
13679 {
13682 }
13684 arg);
13685 }
13692 do
13693 {
13709 else
13712 }
13720 align_branch = (align_branch_jcc_bit
13721 | align_branch_fused_bit
13735 {
13737 /* Turn off -Os. */
13739 }
13741 {
13743 /* Turn on all encoding optimizations. */
13745 }
13746 else
13747 {
13749 /* Turn off -Os. */
13751 }
13756 }
13758 }
13760 #define MESSAGE_TEMPLATE \
13761 " "
13766 {
13770 /* Reserve 2 spaces for ", " or ",\0" */
13773 /* Check if there is any room. */
13775 {
13777 {
13780 }
13782 }
13783 else
13784 {
13785 /* Output the current message now and start a new one. */
13795 }
13799 }
13801 static void
13803 {
13817 {
13824 }
13827 {
13828 /* Should it be skipped? */
13835 {
13836 /* It is an extension. Skip if we aren't asked to show it. */
13839 }
13841 {
13842 /* It is an processor. Skip if we show only extension. */
13844 }
13846 {
13847 /* It is an impossible processor - skip. */
13849 }
13852 }
13854 /* Display disabled extensions. */
13857 {
13867 }
13871 }
13873 void
13875 {
13876 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
13881 #endif
13886 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
13889 #endif
13890 #ifdef BFD64
13891 # if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
13894 # elif defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O)
13897 # endif
13898 #endif
13899 #ifdef SVR4_COMMENT_CHARS
13902 #else
13905 #endif
13951 else
13964 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
13971 else
13975 #endif
13976 #if defined (TE_PE) || defined (TE_PEP)
13979 #endif
13991 else
14022 }
14024 #if ((defined (OBJ_MAYBE_COFF) && defined (OBJ_MAYBE_AOUT)) \
14025 || defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF) \
14026 || defined (TE_PE) || defined (TE_PEP) || defined (OBJ_MACH_O))
14028 /* Pick the target format to use. */
14032 {
14034 {
14038 else
14040 }
14044 {
14047 {
14056 {
14059 }
14060 }
14063 cpu_arch_name);
14064 }
14065 else
14074 {
14075 #if defined (OBJ_MAYBE_AOUT) || defined (OBJ_AOUT)
14078 #endif
14079 #if defined (OBJ_MAYBE_COFF) || defined (OBJ_COFF)
14080 # if defined (TE_PE) || defined (TE_PEP)
14083 {
14086 }
14088 # elif defined (TE_GO32)
14091 # else
14094 # endif
14095 #endif
14096 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
14098 {
14102 {
14105 #ifndef TE_SOLARIS
14107 #endif
14112 #ifndef TE_SOLARIS
14114 #endif
14120 #ifndef TE_SOLARIS
14122 #endif
14126 }
14128 {
14132 }
14133 else
14135 }
14136 #endif
14137 #if defined (OBJ_MACH_O)
14140 {
14144 }
14145 else
14147 #endif
14151 }
14152 }
14155 \f
14156 symbolS *
14158 {
14163 {
14165 {
14170 };
14172 }
14174 }
14176 /* Round up a section size to the appropriate boundary. */
14178 valueT
14180 {
14181 #if (defined (OBJ_AOUT) || defined (OBJ_MAYBE_AOUT))
14183 {
14184 /* For a.out, force the section size to be aligned. If we don't do
14185 this, BFD will align it for us, but it will not write out the
14186 final bytes of the section. This may be a bug in BFD, but it is
14187 easier to fix it here since that is how the other a.out targets
14188 work. */
14193 }
14194 #endif
14197 }
14199 /* On the i386, PC-relative offsets are relative to the start of the
14200 next instruction. That is, the address of the offset, plus its
14201 size, since the offset is always the last part of the insn. */
14203 long
14205 {
14207 }
14209 #ifndef I386COFF
14211 static void
14213 {
14216 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
14219 #endif
14223 }
14225 #endif
14227 /* Remember constant directive. */
14229 void
14231 {
14234 {
14240 {
14244 else
14246 }
14249 }
14250 }
14252 int
14254 {
14256 {
14264 }
14266 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
14272 #endif
14275 {
14277 {
14279 {
14282 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
14285 ? BFD_RELOC_X86_64_REX_GOTPCRELX
14287 else
14288 #endif
14290 }
14291 else
14292 {
14295 else
14297 }
14299 }
14300 }
14301 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
14302 else
14303 {
14304 /* NB: Commit 292676c1 resolved PLT32 reloc aganst local symbol
14305 to section. Since PLT32 relocation must be against symbols,
14306 turn such PLT32 relocation into PC32 relocation. */
14313 {
14317 }
14318 }
14319 #endif
14322 }
14324 arelent *
14326 {
14328 bfd_reloc_code_real_type code;
14331 {
14332 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
14347 else
14350 {
14351 /* Resolve size relocation against local symbol to size of
14352 the symbol plus addend. */
14358 {
14362 }
14367 && object_64bit
14375 }
14377 {
14381 }
14382 #endif
14383 /* Fall through. */
14424 #ifdef TE_PE
14427 #endif
14432 {
14433 /* Don't turn BFD_RELOC_X86_64_32S into BFD_RELOC_32. */
14436 }
14437 /* Fall through. */
14440 {
14442 {
14452 #ifdef BFD64
14454 #endif
14455 }
14456 }
14457 else
14458 {
14460 {
14470 #ifdef BFD64
14472 #endif
14473 }
14474 }
14476 }
14481 && GOT_symbol
14483 {
14486 else
14488 }
14490 && GOT_symbol
14492 {
14494 }
14503 {
14504 /* HACK: Since i386 ELF uses Rel instead of Rela, encode the
14505 vtable entry to be used in the relocation's section offset. */
14508 #if defined (OBJ_COFF) && defined (TE_PE)
14511 else
14512 #endif
14514 }
14515 /* Use the rela in 64bit mode. */
14516 else
14517 {
14520 {
14536 }
14540 else
14542 {
14561 }
14562 }
14566 {
14570 /* Set howto to a garbage value so that we can keep going. */
14573 }
14576 }
14580 void
14582 {
14597 {
14599 {
14603 }
14604 else
14606 }
14607 }
14609 void
14611 {
14615 {
14618 expressionS exp;
14625 }
14629 }
14631 int
14633 {
14634 #if defined (OBJ_MAYBE_ELF) || defined (OBJ_ELF)
14637 #endif
14639 }
14641 int
14643 {
14650 }
14652 #ifdef TE_SOLARIS
14653 void
14655 {
14658 }
14659 #endif
14661 #ifdef TE_PE
14662 void
14664 {
14665 expressionS exp;
14671 }
14672 #endif
14674 #if defined (OBJ_ELF) || defined (OBJ_MAYBE_ELF)
14675 /* For ELF on x86-64, add support for SHF_X86_64_LARGE. */
14677 bfd_vma
14679 {
14681 {
14686 }
14687 else
14690 }
14692 bfd_vma
14694 {
14699 }
14701 static void
14703 {
14705 {
14708 }
14709 else
14710 {
14716 {
14717 flagword applicable;
14721 /* The .lbss section is for local .largecomm symbols. */
14728 }
14737 }
14738 }