This is an archive of the discontinued LLVM Phabricator instance.

Paths

Table of Contentst

-
compiler-rt/lib/interception/
-
lib/
-
interception/
17/17
interception_win.cpp

Differential D151008

[sanitizer][asan][msvc] Teach GetInstructionSize about many instructions that appear in MSVC generated code.
AcceptedPublic

Authored by barcharcraz on May 19 2023, 5:10 PM.

Download Raw Diff

Details

Reviewers

akhuang
rnk
strega-nil
barcharcraz
vitalybuka

Summary

MSVC can sometimes generate instructions in function prologues that asan previously didn't know the size of. This teaches asan those sizes. This isn't super useful for using ASAN with non-msvc compilers, but it does stand alone.

Diff Detail

Repository: rG LLVM Github Monorepo

Event Timeline

barcharcraz created this revision.May 19 2023, 5:10 PM

Herald added a project: Restricted Project. · View Herald TranscriptMay 19 2023, 5:10 PM

Herald added a subscriber: Enna1. · View Herald Transcript

barcharcraz requested review of this revision.May 19 2023, 5:10 PM

Herald added a project: Restricted Project. · View Herald TranscriptMay 19 2023, 5:10 PM

Herald added a subscriber: Restricted Project. · View Herald Transcript

barcharcraz edited the summary of this revision. (Show Details)May 19 2023, 5:15 PM

barcharcraz edited the summary of this revision. (Show Details)

Harbormaster completed remote builds in B233325: Diff 523970.May 19 2023, 5:32 PM

vitalybuka added reviewers: akhuang, rnk.May 19 2023, 5:42 PM

We are growing a full x86 instruction decoder. :(

lgtm

This revision is now accepted and ready to land.May 22 2023, 11:08 AM

strega-nil requested changes to this revision.May 24 2023, 3:30 PM

strega-nil added a subscriber: strega-nil.

strega-nil added inline comments.

compiler-rt/lib/interception/interception_win.cpp
533	This is an incorrect machine code instruction; according to my disassembler, `EC 8B` results in: in al, dx .byte 8B which is clearly nonsense; additionally, I notice that it's a reverse of the "correct" two bytes, which says to me that someone got confused by byte to little-endian conversions.
535	These, OTOH, are correct; however, the constants should be capitalised and the formatting should be made closer to the other cases (same below).
546	I've not yet taken a look at these, and I need to go home; I'd appreciate if you'd just double check that these are correct (and also fix the formatting).

This revision now requires changes to proceed.May 24 2023, 3:30 PM

strega-nil added inline comments.May 24 2023, 7:24 PM

compiler-rt/lib/interception/interception_win.cpp
546	These again look to be reversed: 1 00000000 83E4F8 and esp, 0xFFFFFFF8 2 00000003 83EC64 sub esp, 64h
560	These are correct, otoh.
602
615
618
740	These are correct.
758	This is correct.

strega-nil added inline comments.May 25 2023, 10:18 AM

compiler-rt/lib/interception/interception_win.cpp
626
674
688
691	Style edits (please make the same edits below)
701–702
703	Please actually write out the opcode and operation (same below).
709	(side note, I really dislike `cmp DWORD PTR` rather than just `cmd DWORD`, but no change requested because that's the existing style) (make the same `P` => `PTR` change below)

correct instruction encodings
prevent clang-format from wrapping some lines

Harbormaster completed remote builds in B235657: Diff 527179.May 31 2023, 2:03 PM

strega-nil added a comment.May 31 2023, 4:31 PM

This comment was removed by strega-nil.

We can go back and do a formatting pass later, all the actual code looks correct to me though.

This revision is now accepted and ready to land.May 31 2023, 4:35 PM

correct a few more comments

Harbormaster completed remote builds in B235717: Diff 527248.May 31 2023, 6:28 PM

barcharcraz accepted this revision.Jun 7 2023, 4:47 PM

barcharcraz marked 10 inline comments as done.

barcharcraz requested review of this revision.Jun 7 2023, 4:49 PM

vitalybuka resigned from this revision.Jun 7 2023, 6:16 PM

strega-nil accepted this revision.Jun 14 2023, 11:09 AM

This revision is now accepted and ready to land.Jun 14 2023, 11:09 AM

barcharcraz added a subscriber: llvm-commits.Jul 11 2023, 4:22 PM

Revision Contents

Path

Size

compiler-rt/

lib/

interception/

interception_win.cpp

165 lines

Diff 527248

compiler-rt/lib/interception/interception_win.cpp

Show First 20 Lines • Show All 483 Lines • ▼ Show 20 Lines switch (*(u8*)address) {

case 0x56: // push esi / rsi case 0x56: // push esi / rsi

case 0x57: // push edi / rdi case 0x57: // push edi / rdi

case 0x5D: // pop ebp / rbp case 0x5D: // pop ebp / rbp

return 1; return 1;

case 0x6A: // 6A XX = push XX case 0x6A: // 6A XX = push XX

return 2; return 2;

// This instruction can be encoded with a 16-bit immediate but that is

// incredibly unlikely.

case 0x68: // 68 XX XX XX XX : push imm32

return 5;

case 0xb8: // b8 XX XX XX XX : mov eax, XX XX XX XX case 0xb8: // b8 XX XX XX XX : mov eax, XX XX XX XX

case 0xB9: // b9 XX XX XX XX : mov ecx, XX XX XX XX case 0xB9: // b9 XX XX XX XX : mov ecx, XX XX XX XX

return 5; return 5;

// Cannot overwrite control-instruction. Return 0 to indicate failure. // Cannot overwrite control-instruction. Return 0 to indicate failure.

case 0xE9: // E9 XX XX XX XX : jmp <label> case 0xE9: // E9 XX XX XX XX : jmp <label>

case 0xE8: // E8 XX XX XX XX : call <func> case 0xE8: // E8 XX XX XX XX : call <func>

case 0xC3: // C3 : ret case 0xC3: // C3 : ret

Show All 20 Lines #endif

switch (*(u16*)(address)) { switch (*(u16*)(address)) {

case 0x018A: // 8A 01 : mov al, byte ptr [ecx] case 0x018A: // 8A 01 : mov al, byte ptr [ecx]

case 0xFF8B: // 8B FF : mov edi, edi case 0xFF8B: // 8B FF : mov edi, edi

case 0xEC8B: // 8B EC : mov ebp, esp case 0xEC8B: // 8B EC : mov ebp, esp

case 0xc889: // 89 C8 : mov eax, ecx case 0xc889: // 89 C8 : mov eax, ecx

case 0xE589: // 89 E5 : mov ebp, esp case 0xE589: // 89 E5 : mov ebp, esp

case 0xC18B: // 8B C1 : mov eax, ecx case 0xC18B: // 8B C1 : mov eax, ecx

case 0xC033: // 33 C0 : xor eax, eax case 0xC033: // 33 C0 : xor eax, eax

case 0xC933: // 33 C9 : xor ecx, ecx case 0xC933: // 33 C9 : xor ecx, ecx

strega-nilUnsubmitted

Done

This is an incorrect machine code instruction; according to my disassembler, EC 8B results in:

in al, dx
.byte 8B

which is clearly nonsense; additionally, I notice that it's a reverse of the "correct" two bytes, which says to me that someone got confused by byte to little-endian conversions.

strega-nil: This is an incorrect machine code instruction; according to my disassembler, `EC 8B` results in…

case 0xD233: // 33 D2 : xor edx, edx case 0xD233: // 33 D2 : xor edx, edx

case 0xDB84: // 84 DB : test bl,bl

strega-nilUnsubmitted

Done

case 0xD233: // 33 D2 : xor edx, edx

- case 0xc084: // 84 c0 : test al,al

+ case 0xC084: // 84 C0 : test al, al

case 0xdb84: // 84 db : test bl,bl

These, OTOH, are correct; however, the constants should be capitalised and the formatting should be made closer to the other cases (same below).

strega-nil: These, OTOH, are correct; however, the constants should be capitalised and the formatting…

case 0xC984: // 84 C9 : test cl,cl

case 0xD284: // 84 D2 : test dl,dl

return 2; return 2;

// Cannot overwrite control-instruction. Return 0 to indicate failure. // Cannot overwrite control-instruction. Return 0 to indicate failure.

case 0x25FF: // FF 25 XX XX XX XX : jmp [XXXXXXXX] case 0x25FF: // FF 25 XX XX XX XX : jmp [XXXXXXXX]

return 0; return 0;

} }

switch (0x00FFFFFF & *(u32*)address) { switch (0x00FFFFFF & *(u32*)address) {

case 0xF8E484: // 83 E4 F8 : and esp, 0xFFFFFFF8

strega-nilUnsubmitted

Done

I've not yet taken a look at these, and I need to go home; I'd appreciate if you'd just double check that these are correct (and also fix the formatting).

strega-nil: I've not yet taken a look at these, and I need to go home; I'd appreciate if you'd just double…

strega-nilUnsubmitted

Done

These again look to be reversed:

1 00000000 83E4F8                  and esp, 0xFFFFFFF8
2 00000003 83EC64                  sub esp, 64h

strega-nil: These again look to be reversed: ``` 1 00000000 83E4F8 and esp…

case 0x64EC83: // 83 EC 64 : sub esp, 64h

return 3;

case 0x24A48D: // 8D A4 24 XX XX XX XX : lea esp, [esp + XX XX XX XX] case 0x24A48D: // 8D A4 24 XX XX XX XX : lea esp, [esp + XX XX XX XX]

return 7; return 7;

} }

#if SANITIZER_WINDOWS64 #if SANITIZER_WINDOWS64

switch (*(u8*)address) { switch (*(u8*)address) {

case 0xA1: // A1 XX XX XX XX XX XX XX XX : case 0xA1: // A1 XX XX XX XX XX XX XX XX :

// movabs eax, dword ptr ds:[XXXXXXXX] // movabs eax, dword ptr ds:[XXXXXXXX]

return 9; return 9;

case 0xF2:

switch (*(u32 *)(address + 1)) {

case 0x2444110f: // f2 0f 11 44 24 XX movsd mmword ptr [rsp +

strega-nilUnsubmitted

Done

These are correct, otoh.

strega-nil: These are correct, otoh.

// XX], xmm0

case 0x244c110f: // f2 0f 11 4c 24 XX movsd QWORD PTR

// [rsp+0x8],xmm1

case 0x2454110f: // f2 0f 11 54 24 XX movsd QWORD PTR

// [rsp+0x8],xmm2

case 0x245c110f: // f2 0f 11 5c 24 XX movsd QWORD PTR

// [rsp+0x8],xmm3

case 0x2464110f: // f2 0f 11 64 24 XX movsd QWORD PTR

// [rsp+0x8],xmm4

return 6;

}

break;

case 0x83: case 0x83:

const u8 next_byte = *(u8*)(address + 1); const u8 next_byte = *(u8*)(address + 1);

const u8 mod = next_byte >> 6; const u8 mod = next_byte >> 6;

const u8 rm = next_byte & 7; const u8 rm = next_byte & 7;

if (mod == 1 && rm == 4) if (mod == 1 && rm == 4)

return 5; // 83 ModR/M SIB Disp8 Imm8 return 5; // 83 ModR/M SIB Disp8 Imm8

// add|or|adc|sbb|and|sub|xor|cmp [r+disp8], imm8 // add|or|adc|sbb|and|sub|xor|cmp [r+disp8], imm8

} }

switch (*(u16*)address) { switch (*(u16*)address) {

case 0x5040: // push rax case 0x5040: // push rax

case 0x5140: // push rcx case 0x5140: // push rcx

case 0x5240: // push rdx case 0x5240: // push rdx

case 0x5340: // push rbx case 0x5340: // push rbx

case 0x5440: // push rsp case 0x5440: // push rsp

case 0x5540: // push rbp case 0x5540: // push rbp

case 0x5640: // push rsi case 0x5640: // push rsi

case 0x5740: // push rdi case 0x5740: // push rdi

case 0x5441: // push r12 case 0x5441: // push r12

case 0x5541: // push r13 case 0x5541: // push r13

case 0x5641: // push r14 case 0x5641: // push r14

case 0x5741: // push r15 case 0x5741: // push r15

case 0x9066: // Two-byte NOP case 0x9066: // Two-byte NOP

case 0xc084: // test al, al case 0xC084: // test al, al

case 0x018a: // mov al, byte ptr [rcx] case 0x018A: // mov al, byte ptr [rcx]

return 2; return 2;

case 0x7E80: // 80 7E YY XX cmp BYTE PTR [rsi+YY], XX

case 0x7D80: // 80 7D YY XX cmp BYTE PTR [rbp+YY], XX

strega-nilUnsubmitted

Done

case 0x7e80: // 80 7e YY XX cmp BYTE PTR [rsi+YY], XX

- case 0x7d80: // 80 7d YY XX cmp BYTE PTR [rdx+YY], XX

+ case 0x7d80: // 80 7d YY XX cmp BYTE PTR [rbp+YY], XX

case 0x7a80: // 80 7a YY XX cmp BYTE PTR [rdx+YY], XX

strega-nil:

case 0x7A80: // 80 7A YY XX cmp BYTE PTR [rdx+YY], XX

case 0x7880: // 80 78 YY XX cmp BYTE PTR [rax+YY], XX

case 0x7B80: // 80 7B YY XX cmp BYTE PTR [rbx+YY], XX

case 0x7980: // 80 79 YY XX cmp BYTE ptr [rcx+YY], XX

return 4;

case 0x058B: // 8B 05 XX XX XX XX : mov eax, dword ptr [XX XX XX XX] case 0x058B: // 8B 05 XX XX XX XX : mov eax, dword ptr [XX XX XX XX]

if (rel_offset) if (rel_offset)

*rel_offset = 2; *rel_offset = 2;

return 6; return 6;

case 0x7E81: // 81 7E YY XX XX XX XX cmp DWORD PTR [rsi+YY], XX XX XX XX

case 0x7D81: // 81 7D YY XX XX XX XX cmp DWORD PTR [rbp+YY], XX XX XX XX

strega-nilUnsubmitted

Done

case 0x7e81: // 81 7e YY XX XX XX XX cmp DWORD PTR [rsi+YY], XX XX XX XX

- case 0x7d81: // 81 7d YY XX XX XX XX cmp DWORD PTR [rdx+YY], XX XX XX XX

+ case 0x7d81: // 81 7d YY XX XX XX XX cmp DWORD PTR [rbp+YY], XX XX XX XX

case 0x7a81: // 81 7a YY XX XX XX XX cmp DWORD PTR [rdx+YY], XX XX XX XX

strega-nil:

case 0x7A81: // 81 7A YY XX XX XX XX cmp DWORD PTR [rdx+YY], XX XX XX XX

case 0x7881: // 81 78 YY XX XX XX XX cmp DWORD PTR [rax+YY], XX XX XX XX

case 0x7B81: // 81 7B YY XX XX XX XX cmp DWORD PTR [rbx+YY], XX XX XX XX

strega-nilUnsubmitted

Done

case 0x7881: // 81 78 YY XX XX XX XX cmp DWORD PTR [rax+YY], XX XX XX XX

- case 0x7b81: // 81 78 YY XX XX XX XX cmp DWORD PTR [rbx+YY], XX XX XX XX

+ case 0x7b81: // 81 7B YY XX XX XX XX cmp DWORD PTR [rbx+YY], XX XX XX XX

case 0x7981: // 81 79 YY XX XX XX XX cmp dword ptr [rcx+YY], XX XX XX XX

strega-nil:

case 0x7981: // 81 79 YY XX XX XX XX cmp dword ptr [rcx+YY], XX XX XX XX

return 7;

} }

switch (0x00FFFFFF & *(u32*)address) { switch (0x00FFFFFF & *(u32*)address) {

case 0xe58948: // 48 8b c4 : mov rbp, rsp

case 0xc18b48: // 48 8b c1 : mov rax, rcx

case 0xc48b48: // 48 8b c4 : mov rax, rsp

case 0xd9f748: // 48 f7 d9 : neg rcx

case 0xd12b48: // 48 2b d1 : sub rdx, rcx

case 0x07c1f6: // f6 c1 07 : test cl, 0x7 case 0x07c1f6: // f6 c1 07 : test cl, 0x7

case 0xc98548: // 48 85 C9 : test rcx, rcx case 0x10b70f: // 0f b7 10 : movzx edx, word ptr [rax]

case 0xd28548: // 48 85 d2 : test rdx, rdx case 0xc00b4d: // 4d 0b c0 : or r8, r8

strega-nilUnsubmitted

Done

case 0x10b70f: // 0f b7 10 : movzx edx, word ptr [rax]

- case 0xc00b4d: // 3d 0b c0 : or r8, r8

+ case 0xc00b4d: // 4d 0b c0 : or r8, r8

case 0xc03345: // 45 33 c0 : xor r8d, r8d

strega-nil:

case 0xc03345: // 45 33 c0 : xor r8d, r8d

case 0xc08548: // 48 85 c0 : test rax, rax

case 0xc0854d: // 4d 85 c0 : test r8, r8 case 0xc0854d: // 4d 85 c0 : test r8, r8

case 0xc08b41: // 41 8b c0 : mov eax, r8d

case 0xc0ff48: // 48 ff c0 : inc rax

case 0xc0ff49: // 49 ff c0 : inc r8

case 0xc18b41: // 41 8b c1 : mov eax, r9d

case 0xc18b48: // 48 8b c1 : mov rax, rcx

case 0xc18b4c: // 4c 8b c1 : mov r8, rcx

case 0xc1ff48: // 48 ff c1 : inc rcx

case 0xc1ff49: // 49 ff c1 : inc r9

case 0xc28b41: // 41 8b c2 : mov eax, r10d

case 0xc2b60f: // 0f b6 c2 : movzx eax, dl case 0xc2b60f: // 0f b6 c2 : movzx eax, dl

case 0xc03345: // 45 33 c0 : xor r8d, r8d case 0xc2ff48: // 48 ff c2 : inc rdx

case 0xc2ff49: // 49 ff c2 : inc r10

case 0xc38b41: // 41 8b c3 : mov eax, r11d

case 0xc3ff48: // 48 ff c3 : inc rbx

case 0xc3ff49: // 49 ff c3 : inc r11

case 0xc48b41: // 41 8b c4 : mov eax, r12d

case 0xc48b48: // 48 8b c4 : mov rax, rsp

case 0xc4ff49: // 49 ff c4 : inc r12

case 0xc5ff49: // 49 ff c5 : inc r13

case 0xc6ff48: // 48 ff c6 : inc rsi

case 0xc6ff49: // 49 ff c6 : inc r14

case 0xc7ff48: // 48 ff c7 : inc rdi

case 0xc7ff49: // 49 ff c7 : inc r15

case 0xc93345: // 45 33 c9 : xor r9d, r9d case 0xc93345: // 45 33 c9 : xor r9d, r9d

case 0xdb3345: // 45 33 DB : xor r11d, r11d case 0xc98548: // 48 85 c9 : test rcx, rcx

case 0xd98b4c: // 4c 8b d9 : mov r11, rcx case 0xc9854d: // 4d 85 c9 : test r9, r9

case 0xd28b4c: // 4c 8b d2 : mov r10, rdx case 0xc98b4c: // 4c 8b c9 : mov r9, rcx

case 0xc98b4c: // 4C 8B C9 : mov r9, rcx

case 0xc18b4c: // 4C 8B C1 : mov r8, rcx

case 0xd2b60f: // 0f b6 d2 : movzx edx, dl

case 0xca2b48: // 48 2b ca : sub rcx, rdx case 0xca2b48: // 48 2b ca : sub rcx, rdx

case 0x10b70f: // 0f b7 10 : movzx edx, WORD PTR [rax] case 0xd12b48: // 48 2b d1 : sub rdx, rcx

case 0xc00b4d: // 3d 0b c0 : or r8, r8

case 0xc08b41: // 41 8b c0 : mov eax, r8d

case 0xd18b48: // 48 8b d1 : mov rdx, rcx case 0xd18b48: // 48 8b d1 : mov rdx, rcx

case 0xdc8b4c: // 4c 8b dc : mov r11, rsp

case 0xd18b4c: // 4c 8b d1 : mov r10, rcx case 0xd18b4c: // 4c 8b d1 : mov r10, rcx

case 0xE0E483: // 83 E4 E0 : and esp, 0xFFFFFFE0 case 0xd28548: // 48 85 d2 : test rdx, rdx

case 0xd2854d: // 4d 85 d2 : test r10, r10

case 0xd28b4c: // 4c 8b d2 : mov r10, rdx

case 0xd2b60f: // 0f b6 d2 : movzx edx, dl

case 0xd98b4c: // 4c 8b d9 : mov r11, rcx

case 0xd9f748: // 48 f7 d9 : neg rcx

case 0xdb3345: // 45 33 db : xor r11d, r11d

case 0xdb8548: // 48 85 db : test rbx, rbx

case 0xdb854d: // 4d 85 db : test r11, r11

case 0xdc8b4c: // 4c 8b dc : mov r11, rsp

case 0xe0e483: // 83 e4 e0 : and esp, 0xffffffe0

case 0xe48548: // 48 85 e4 : test rsp, rsp

case 0xe4854d: // 4d 85 e4 : test r12, r12

case 0xe58948: // 48 89 c4 : mov rbp, rsp

strega-nilUnsubmitted

Done

case 0xe4854d: // 4d 85 e4 : test r12, r12

- case 0xe58948: // 48 8b c4 : mov rbp, rsp

+ case 0xe58948: // 48 89 e5 : mov rbp, rsp

case 0xed8548: // 48 85 ed : test rbp, rbp

strega-nil:

case 0xed8548: // 48 85 ed : test rbp, rbp

case 0xed854d: // 4d 85 ed : test r13, r13

case 0xf6854d: // 4d 85 f6 : test r14, r14

case 0xff854d: // 4d 85 ff : test r15, r15

return 3; return 3;

case 0x245489: // 89 54 24 XX : mov DWORD PTR[rsp + XX], edx

case 0x428d44: // 44 8d 42 XX : lea r8d , [rdx + XX]

case 0x588948: // 48 89 58 XX : mov QWORD PTR[rax + XX], rbx

case 0xec8348: // 48 83 ec XX : sub rsp, XX case 0xec8348: // 48 83 ec XX : sub rsp, XX

case 0xf88349: // 49 83 f8 XX : cmp r8, XX case 0xf88349: // 49 83 f8 XX : cmp r8, XX

case 0x588948: // 48 89 58 XX : mov QWORD PTR[rax + XX], rbx

return 4; return 4;

case 0x246483: // 83 64 24 XX YY : and DWORD PTR [rsp+XX], YY

strega-nilUnsubmitted

Done

return 4;

- case 0x246483: // 83 64 24 00 00 : and DWORD PTR [rsp+xx],0x0

+ case 0x246483: // 83 64 24 XX YY : and DWORD PTR [rsp+XX], YY

return 5;

strega-nil:

return 5;

case 0x788166: // 66 81 78 XX YY YY cmp WORD PTR [rax+XX], YY YY

strega-nilUnsubmitted

Done

return 5;

- case 0x788166: // 66 81 78 YY XX XX cmp WORD PTR [rax+0xYY], XX XX

+ case 0x788166: // 66 81 78 XX YY YY : cmp WORD PTR [rax+XX], YY YY

case 0x798166: // 66 81 79 YY XX XX cmp WORD PTR [rcx+0xYY], XX XX

Style edits (please make the same edits below)

strega-nil: Style edits (please make the same edits below)

case 0x798166: // 66 81 79 XX YY YY cmp WORD PTR [rcx+XX], YY YY

case 0x7a8166: // 66 81 7a XX YY YY cmp WORD PTR [rdx+XX], YY YY

case 0x7b8166: // 66 81 7b XX YY YY cmp WORD PTR [rbx+XX], YY YY

case 0x7e8166: // 66 81 7e XX YY YY cmp WORD PTR [rsi+XX], YY YY

case 0x7f8166: // 66 81 7f XX YY YY cmp WORD PTR [rdi+XX], YY YY

return 6;

case 0xec8148: // 48 81 EC XX XX XX XX : sub rsp, XXXXXXXX case 0xec8148: // 48 81 EC XX XX XX XX : sub rsp, XXXXXXXX

return 7; return 7;

// clang-format off

strega-nilUnsubmitted

Done

return 7;

- case 0x788141: // 41 81 78 YY XX XX XX XX cmp DWORD PTR [r8+YY], XX XX XX

- // XX

+ case 0x788141: // 41 81 78 XX YY YY YY YY : cmp DWORD PTR [r8+YY], XX XX XX XX

case 0x798141: // r9

strega-nil:

case 0x788141: // 41 81 78 XX YY YY YY YY : cmp DWORD PTR [r8+YY], XX XX XX XX

strega-nilUnsubmitted

Done

// XX

- case 0x798141: // r9

+ case 0x798141: // 41 81 79 XX YY YY YY YY : cmp DWORD PTR [r9+XX], YY YY YY YY

case 0x7a8141: // r10

Please actually write out the opcode and operation (same below).

strega-nil: Please actually write out the opcode and operation (same below).

case 0x798141: // 41 81 78 XX YY YY YY YY : cmp DWORD PTR [r9+YY], XX XX XX XX

case 0x7a8141: // 41 81 78 XX YY YY YY YY : cmp DWORD PTR [r10+YY], XX XX XX XX

case 0x7b8141: // 41 81 78 XX YY YY YY YY : cmp DWORD PTR [r11+YY], XX XX XX XX

case 0x7c8141: // 41 81 78 XX YY YY YY YY : cmp DWORD PTR [r12+YY], XX XX XX XX

case 0x7d8141: // 41 81 78 XX YY YY YY YY : cmp DWORD PTR [r13+YY], XX XX XX XX

case 0x7e8141: // 41 81 78 XX YY YY YY YY : cmp DWORD PTR [r14+YY], XX XX XX XX

strega-nilUnsubmitted

Done

case 0x7e8141: // r14

- case 0x7f8141: // 41 81 78 YY XX XX XX XX cmp DWORD P [r15+YY], XX XX XX XX

+ case 0x7f8141: // 41 81 7F XX YY YY YY YY cmp DWORD PTR [r15+XX], YY YY YY YY

case 0x247c81: // 81 7c 24 YY XX XX XX XX cmp DWORD P [rsp+YY], XX XX XX XX

(side note, I really dislike cmp DWORD PTR rather than just cmd DWORD, but no change requested because that's the existing style)
(make the same P => PTR change below)

strega-nil: (side note, I really dislike `cmp DWORD PTR` rather than just `cmd DWORD`, but no change…

case 0x7f8141: // 41 81 78 YY XX XX XX XX cmp DWORD P [r15+YY], XX XX XX XX

case 0x247c81: // 81 7c 24 YY XX XX XX XX cmp DWORD P [rsp+YY], XX XX XX XX

return 8;

// clang-format on

case 0x058b48: // 48 8b 05 XX XX XX XX : case 0x058b48: // 48 8b 05 XX XX XX XX :

// mov rax, QWORD PTR [rip + XXXXXXXX] // mov rax, QWORD PTR [rip + XXXXXXXX]

case 0x25ff48: // 48 ff 25 XX XX XX XX : case 0x25ff48: // 48 ff 25 XX XX XX XX :

// rex.W jmp QWORD PTR [rip + XXXXXXXX] // rex.W jmp QWORD PTR [rip + XXXXXXXX]

// Instructions having offset relative to 'rip' need offset adjustment. // Instructions having offset relative to 'rip' need offset adjustment.

if (rel_offset) if (rel_offset)

*rel_offset = 3; *rel_offset = 3;

Show All 9 Lines switch (*(u32*)(address)) {

case 0x246c8948: // 48 89 6C 24 XX : mov QWORD ptr [rsp + XX], rbp case 0x246c8948: // 48 89 6C 24 XX : mov QWORD ptr [rsp + XX], rbp

case 0x245c8948: // 48 89 5c 24 XX : mov QWORD PTR [rsp + XX], rbx case 0x245c8948: // 48 89 5c 24 XX : mov QWORD PTR [rsp + XX], rbx

case 0x24748948: // 48 89 74 24 XX : mov QWORD PTR [rsp + XX], rsi case 0x24748948: // 48 89 74 24 XX : mov QWORD PTR [rsp + XX], rsi

case 0x247c8948: // 48 89 7c 24 XX : mov QWORD PTR [rsp + XX], rdi case 0x247c8948: // 48 89 7c 24 XX : mov QWORD PTR [rsp + XX], rdi

case 0x244C8948: // 48 89 4C 24 XX : mov QWORD PTR [rsp + XX], rcx case 0x244C8948: // 48 89 4C 24 XX : mov QWORD PTR [rsp + XX], rcx

case 0x24548948: // 48 89 54 24 XX : mov QWORD PTR [rsp + XX], rdx case 0x24548948: // 48 89 54 24 XX : mov QWORD PTR [rsp + XX], rdx

case 0x244c894c: // 4c 89 4c 24 XX : mov QWORD PTR [rsp + XX], r9 case 0x244c894c: // 4c 89 4c 24 XX : mov QWORD PTR [rsp + XX], r9

case 0x2444894c: // 4c 89 44 24 XX : mov QWORD PTR [rsp + XX], r8 case 0x2444894c: // 4c 89 44 24 XX : mov QWORD PTR [rsp + XX], r8

case 0x244c8944: // 44 89 4c 24 XX mov DWORD PTR [rsp + XX], r9d

strega-nilUnsubmitted

Done

These are correct.

strega-nil: These are correct.

case 0x24448944: // 44 89 44 24 XX mov DWORD PTR [rsp + XX], r8d

case 0x246c8d48: // 48 8d 6c 24 XX : lea rbp, [rsp + XX]

return 5; return 5;

case 0x24648348: // 48 83 64 24 XX : and QWORD PTR [rsp + XX], YY case 0x24648348: // 48 83 64 24 XX YY : and QWORD PTR [rsp + XX], YY

return 6; return 6;

} }

#else #else

switch (*(u8*)address) { switch (*(u8*)address) {

case 0xA1: // A1 XX XX XX XX : mov eax, dword ptr ds:[XXXXXXXX] case 0xA1: // A1 XX XX XX XX : mov eax, dword ptr ds:[XXXXXXXX]

return 5; return 5;

} }

switch (*(u16*)address) { switch (*(u16*)address) {

case 0x458B: // 8B 45 XX : mov eax, dword ptr [ebp + XX] case 0x458B: // 8B 45 XX : mov eax, dword ptr [ebp + XX]

case 0x5D8B: // 8B 5D XX : mov ebx, dword ptr [ebp + XX] case 0x5D8B: // 8B 5D XX : mov ebx, dword ptr [ebp + XX]

case 0x7D8B: // 8B 7D XX : mov edi, dword ptr [ebp + XX] case 0x7D8B: // 8B 7D XX : mov edi, dword ptr [ebp + XX]

case 0x758B: // 8B 75 XX : mov esi, dword ptr [ebp + XX]

strega-nilUnsubmitted

Done

This is correct.

strega-nil: This is correct.

case 0xEC83: // 83 EC XX : sub esp, XX case 0xEC83: // 83 EC XX : sub esp, XX

case 0x75FF: // FF 75 XX : push dword ptr [ebp + XX] case 0x75FF: // FF 75 XX : push dword ptr [ebp + XX]

return 3; return 3;

case 0xC1F7: // F7 C1 XX YY ZZ WW : test ecx, WWZZYYXX case 0xC1F7: // F7 C1 XX YY ZZ WW : test ecx, WWZZYYXX

case 0x25FF: // FF 25 XX YY ZZ WW : jmp dword ptr ds:[WWZZYYXX] case 0x25FF: // FF 25 XX YY ZZ WW : jmp dword ptr ds:[WWZZYYXX]

return 6; return 6;

case 0x3D83: // 83 3D XX YY ZZ WW TT : cmp TT, WWZZYYXX case 0x3D83: // 83 3D XX YY ZZ WW TT : cmp TT, WWZZYYXX

return 7; return 7;

▲ Show 20 Lines • Show All 453 Lines • Show Last 20 Lines

This is an archive of the discontinued LLVM Phabricator instance.

[sanitizer][asan][msvc] Teach GetInstructionSize about many instructions that appear in MSVC generated code.AcceptedPublic

Details

Diff Detail

Event Timeline

Revision Contents

Diff 527248

compiler-rt/lib/interception/interception_win.cpp

[sanitizer][asan][msvc] Teach GetInstructionSize about many instructions that appear in MSVC generated code.
AcceptedPublic