fcml  1.2.2
fcml_disassembler.h
Go to the documentation of this file.
1 /*
2  * FCML - Free Code Manipulation Library.
3  * Copyright (C) 2010-2020 Slawomir Wojtasiak
4  *
5  * This library is free software; you can redistribute it and/or
6  * modify it under the terms of the GNU Lesser General Public
7  * License as published by the Free Software Foundation; either
8  * version 2.1 of the License, or (at your option) any later version.
9  *
10  * This library is distributed in the hope that it will be useful,
11  * but WITHOUT ANY WARRANTY; without even the implied warranty of
12  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13  * Lesser General Public License for more details.
14  *
15  * You should have received a copy of the GNU Lesser General Public
16  * License along with this library; if not, write to the Free Software
17  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
18  */
19 
26 #ifndef FCML_DISASSEMBLER_H_
27 #define FCML_DISASSEMBLER_H_
28 
29 #include "fcml_lib_export.h"
30 
31 #include "fcml_instructions.h"
32 #include "fcml_types.h"
33 #include "fcml_errors.h"
34 #include "fcml_common.h"
35 #include "fcml_dialect.h"
36 
37 #ifdef __cplusplus
38 extern "C" {
39 #endif
40 
42 #define FCML_DASM_PREFIXES_COUNT 12
43 
45 #define FCML_DASM_CONDITIONAL_GROUP_1 0x00
46 
47 #define FCML_DASM_CONDITIONAL_GROUP_2 0x01
48 
50 typedef struct fcml_st_disassembler fcml_st_disassembler;
51 
53 typedef struct fcml_st_disassembler_conf {
56  fcml_bool increment_ip;
59  fcml_bool enable_error_messages;
61  fcml_bool carry_flag_conditional_suffix;
64  fcml_uint8_t conditional_group;
69  fcml_bool short_forms;
72  fcml_bool extend_disp_to_asa;
76  fcml_bool fail_if_unknown_instruction;
77 } fcml_st_disassembler_conf;
78 
80 typedef struct fcml_st_disassembler_context {
82  fcml_st_disassembler *disassembler;
84  fcml_st_disassembler_conf configuration;
86  fcml_st_entry_point entry_point;
88  fcml_ptr code;
90  fcml_usize code_length;
91 } fcml_st_disassembler_context;
92 
93 /* Prefixes */
94 
97 typedef enum fcml_en_prefix_types {
98  FCML_PT_GROUP_UNKNOWN = 0,
99  FCML_PT_GROUP_1 = 1,
100  FCML_PT_GROUP_2,
101  FCML_PT_GROUP_3,
102  FCML_PT_GROUP_4,
103  FCML_PT_REX,
104  FCML_PT_VEX,
105  FCML_PT_XOP,
106  FCML_PT_EVEX
107 } fcml_en_prefix_types;
108 
110 typedef struct fcml_st_instruction_prefix {
112  fcml_uint8_t prefix;
114  fcml_en_prefix_types prefix_type;
116  fcml_bool mandatory_prefix;
120  fcml_uint8_t avx_bytes[3];
121 } fcml_st_instruction_prefix;
122 
127 typedef struct fcml_st_prefixes_details {
129  fcml_st_instruction_prefix prefixes[FCML_DASM_PREFIXES_COUNT];
131  fcml_int prefixes_count;
133  fcml_int prefixes_bytes_count;
135  fcml_bool is_branch;
137  fcml_bool is_nobranch;
139  fcml_bool is_lock;
141  fcml_bool is_rep;
143  fcml_bool is_repne;
145  fcml_bool is_xrelease;
147  fcml_bool is_xacquire;
149  fcml_bool is_vex;
151  fcml_bool is_evex;
153  fcml_bool is_xop;
155  fcml_bool is_avx;
157  fcml_bool is_rex;
159  fcml_uint8_t avx_first_byte;
161  fcml_uint8_t R;
163  fcml_uint8_t R_prim;
165  fcml_uint8_t X;
167  fcml_uint8_t B;
169  fcml_uint8_t b;
171  fcml_uint8_t W;
173  fcml_uint8_t L;
175  fcml_uint8_t L_prim;
177  fcml_uint8_t mmmm;
179  fcml_uint8_t vvvv;
181  fcml_uint8_t pp;
183  fcml_uint8_t z;
185  fcml_uint8_t V_prim;
187  fcml_uint8_t aaa;
188 } fcml_st_prefixes_details;
189 
191 typedef struct fcml_st_operand_details {
193  fcml_en_access_mode access_mode;
194 } fcml_st_operand_details;
195 
199 typedef struct fcml_st_raw_displacement {
201  fcml_st_integer displacement;
203  fcml_nuint32_t N;
204 } fcml_st_raw_displacement;
205 
207 typedef struct fcml_st_decoded_modrm_details {
209  fcml_uint8_t modrm;
211  fcml_nuint8_t sib;
214  fcml_bool is_rip;
216  fcml_bool is_modrm;
218  fcml_st_raw_displacement displacement;
219 } fcml_st_decoded_modrm_details;
220 
222 typedef struct fcml_st_instruction_details {
229  fcml_bool is_shortcut;
232  fcml_bool is_pseudo_op;
234  fcml_uint8_t instruction_code[FCML_INSTRUCTION_SIZE];
236  fcml_usize instruction_size;
238  fcml_st_prefixes_details prefixes_details;
240  fcml_st_operand_details operand_details[FCML_OPERANDS_COUNT];
242  fcml_st_decoded_modrm_details modrm_details;
247  fcml_bool opcode_field_s_bit;
252  fcml_bool opcode_field_w_bit;
254  fcml_en_instruction instruction;
256  fcml_en_pseudo_operations pseudo_op;
259  fcml_uint16_t addr_mode;
261  fcml_uint64_t instruction_group;
263  fcml_uint8_t tuple_type;
264 } fcml_st_instruction_details;
265 
267 typedef struct fcml_st_disassembler_result {
269  fcml_st_ceh_error_container errors;
272  fcml_st_instruction_details instruction_details;
274  fcml_st_instruction instruction;
275 } fcml_st_disassembler_result;
276 
290 LIB_EXPORT fcml_ceh_error LIB_CALL fcml_fn_disassembler_init(
291  const fcml_st_dialect *dialect, fcml_st_disassembler **disassembler);
292 
309 LIB_EXPORT fcml_ceh_error LIB_CALL fcml_fn_disassemble(
310  fcml_st_disassembler_context *context,
311  fcml_st_disassembler_result *result);
312 
327 LIB_EXPORT void LIB_CALL fcml_fn_disassembler_result_prepare(
328  fcml_st_disassembler_result *result);
329 
340 LIB_EXPORT void LIB_CALL fcml_fn_disassembler_result_free(
341  fcml_st_disassembler_result *result);
342 
349 LIB_EXPORT void LIB_CALL fcml_fn_disassembler_free(
350  fcml_st_disassembler *disassembler);
351 
352 #ifdef __cplusplus
353 }
354 #endif
355 
356 #endif /* FCML_DISASSEMBLER_H_ */
fcml_st_prefixes_details::mmmm
fcml_uint8_t mmmm
m-mmmm field of XOP or VEX prefix.
Definition: fcml_disassembler.h:177
fcml_st_prefixes_details::is_xacquire
fcml_bool is_xacquire
FCML_TRUE if xacquire explicit prefix exists.
Definition: fcml_disassembler.h:147
fcml_st_operand_details::access_mode
fcml_en_access_mode access_mode
Instruction operand access mode READ, WRITE or both.
Definition: fcml_disassembler.h:193
fcml_st_prefixes_details::is_rep
fcml_bool is_rep
FCML_TRUE if rep explicit prefix exists.
Definition: fcml_disassembler.h:141
fcml_st_instruction_details::opcode_field_s_bit
fcml_bool opcode_field_s_bit
Opcode field 's'.
Definition: fcml_disassembler.h:247
fcml_st_disassembler_result::instruction
fcml_st_instruction instruction
Decoded instruction in its generic form.
Definition: fcml_disassembler.h:274
fcml_st_prefixes_details::vvvv
fcml_uint8_t vvvv
vvvv field of XOP or VEX prefix.
Definition: fcml_disassembler.h:179
fcml_st_disassembler_context
struct fcml_st_disassembler_context fcml_st_disassembler_context
Disassembler context.
fcml_st_prefixes_details::V_prim
fcml_uint8_t V_prim
V’ field of EVEX prefix.
Definition: fcml_disassembler.h:185
fcml_st_prefixes_details::is_vex
fcml_bool is_vex
FCML_TRUE if VEX prefix exists.
Definition: fcml_disassembler.h:149
fcml_st_decoded_modrm_details::is_rip
fcml_bool is_rip
True if RIP encoding is used by decoded instruction.
Definition: fcml_disassembler.h:214
fcml_en_instruction
fcml_en_instruction
Instruction codes.
Definition: fcml_instructions.h:184
fcml_st_prefixes_details::is_repne
fcml_bool is_repne
FCML_TRUE if repne explicit prefix exists.
Definition: fcml_disassembler.h:143
fcml_st_raw_displacement
Displacement in raw form.
Definition: fcml_disassembler.h:199
fcml_st_disassembler_context::configuration
fcml_st_disassembler_conf configuration
Disassembler configuration.
Definition: fcml_disassembler.h:84
fcml_st_prefixes_details::R_prim
fcml_uint8_t R_prim
EVEX R’ High-16 register specifier modifier.
Definition: fcml_disassembler.h:163
fcml_en_pseudo_operations
fcml_en_pseudo_operations
Pseudo operations.
Definition: fcml_instructions.h:1539
fcml_st_raw_displacement
struct fcml_st_raw_displacement fcml_st_raw_displacement
Displacement in raw form.
fcml_st_prefixes_details
Contains some additional information about all decoded instruction prefixes.
Definition: fcml_disassembler.h:127
fcml_st_instruction_details::pseudo_op
fcml_en_pseudo_operations pseudo_op
Pseudo operation code.
Definition: fcml_disassembler.h:256
fcml_st_disassembler_result::instruction_details
fcml_st_instruction_details instruction_details
Additional disassembler specific information about decoded instruction.
Definition: fcml_disassembler.h:272
fcml_st_prefixes_details::prefixes_bytes_count
fcml_int prefixes_bytes_count
Number of bytes used by all decoded prefixes.
Definition: fcml_disassembler.h:133
fcml_st_disassembler_context
Disassembler context.
Definition: fcml_disassembler.h:80
fcml_nuint8_t
Definition: fcml_types.h:217
fcml_en_prefix_types
fcml_en_prefix_types
Available types of instruction prefixes.
Definition: fcml_disassembler.h:97
fcml_st_instruction_details::instruction_group
fcml_uint64_t instruction_group
Instruction group.
Definition: fcml_disassembler.h:261
fcml_en_access_mode
fcml_en_access_mode
Operand access mode.
Definition: fcml_common.h:542
fcml_st_ceh_error_container
Container for all collected errors and warnings.
Definition: fcml_errors.h:180
fcml_st_prefixes_details::is_nobranch
fcml_bool is_nobranch
FCML_TRUE if nobranch prefix exists.
Definition: fcml_disassembler.h:137
fcml_common.h
Definitions of common structures used by FCML components.
fcml_fn_disassembler_free
LIB_EXPORT void LIB_CALL fcml_fn_disassembler_free(fcml_st_disassembler *disassembler)
Frees disassembler instance.
fcml_st_prefixes_details::is_avx
fcml_bool is_avx
True if it is an AVX instruction (VEX/XOP/EVEX).
Definition: fcml_disassembler.h:155
fcml_st_instruction_details::instruction
fcml_en_instruction instruction
Instruction code/number.
Definition: fcml_disassembler.h:254
fcml_st_decoded_modrm_details::is_modrm
fcml_bool is_modrm
True if ModR/M exists.
Definition: fcml_disassembler.h:216
fcml_st_dialect
struct fcml_st_dialect fcml_st_dialect
Assembler dialect.
Definition: fcml_dialect.h:36
fcml_st_prefixes_details::prefixes_count
fcml_int prefixes_count
Number of decoded prefixes.
Definition: fcml_disassembler.h:131
fcml_st_instruction_details::is_pseudo_op
fcml_bool is_pseudo_op
True if given instruction is a short form of pseudo-ops instructions.
Definition: fcml_disassembler.h:232
fcml_st_instruction
Generic instruction model.
Definition: fcml_common.h:783
fcml_st_prefixes_details::is_xop
fcml_bool is_xop
FCML_TRUE if XOP prefix exists.
Definition: fcml_disassembler.h:153
fcml_st_disassembler_conf
Disassembler configuration.
Definition: fcml_disassembler.h:53
fcml_st_decoded_modrm_details
struct fcml_st_decoded_modrm_details fcml_st_decoded_modrm_details
Some basic information about decoded ModR/M and SIB bytes.
fcml_st_prefixes_details::is_evex
fcml_bool is_evex
FCML TRUE if EVEX prefix exists.
Definition: fcml_disassembler.h:151
fcml_st_disassembler_context::code
fcml_ptr code
Pointer to the encoded instruction.
Definition: fcml_disassembler.h:88
fcml_st_disassembler_conf::increment_ip
fcml_bool increment_ip
Set to true in order to make disassembler to increment IP address by length of the disassembled instr...
Definition: fcml_disassembler.h:56
fcml_st_decoded_modrm_details
Some basic information about decoded ModR/M and SIB bytes.
Definition: fcml_disassembler.h:207
fcml_lib_export.h
Handles Win32 DLL symbols importing/exporting.
FCML_OPERANDS_COUNT
#define FCML_OPERANDS_COUNT
Maximal number of the instruction operands.
Definition: fcml_common.h:35
fcml_st_disassembler_conf::enable_error_messages
fcml_bool enable_error_messages
True if optional error and warning messages should be collected during processing.
Definition: fcml_disassembler.h:59
fcml_st_operand_details
Some additional disassembler specific information about decoded operands.
Definition: fcml_disassembler.h:191
fcml_st_prefixes_details::L
fcml_uint8_t L
L field of XOP or VEX prefix.
Definition: fcml_disassembler.h:173
fcml_st_instruction_details::tuple_type
fcml_uint8_t tuple_type
avx-512 tuple type
Definition: fcml_disassembler.h:263
fcml_st_prefixes_details
struct fcml_st_prefixes_details fcml_st_prefixes_details
Contains some additional information about all decoded instruction prefixes.
fcml_st_disassembler_conf::extend_disp_to_asa
fcml_bool extend_disp_to_asa
True if displacement should be sign extended to effective address size; otherwise false...
Definition: fcml_disassembler.h:72
fcml_st_prefixes_details::B
fcml_uint8_t B
B field of REX,XOP or VEX prefix.
Definition: fcml_disassembler.h:167
fcml_st_instruction_details::modrm_details
fcml_st_decoded_modrm_details modrm_details
Details about decoded ModR/M and SIB bytes.
Definition: fcml_disassembler.h:242
fcml_nuint32_t
Definition: fcml_types.h:227
fcml_st_instruction_prefix::prefix
fcml_uint8_t prefix
Prefix itself as raw byte.
Definition: fcml_disassembler.h:112
fcml_st_operand_details
struct fcml_st_operand_details fcml_st_operand_details
Some additional disassembler specific information about decoded operands.
fcml_st_disassembler_conf::fail_if_unknown_instruction
fcml_bool fail_if_unknown_instruction
If set to true assembler will return FCML_CEH_GEC_UNKNOWN_INSTRUCTION error code if instruction is no...
Definition: fcml_disassembler.h:76
fcml_st_disassembler_conf::short_forms
fcml_bool short_forms
Set to true in order to use short forms.
Definition: fcml_disassembler.h:69
fcml_st_prefixes_details::W
fcml_uint8_t W
W field of REX,XOP or VEX/EVEX prefix.
Definition: fcml_disassembler.h:171
fcml_st_instruction_prefix::prefix_type
fcml_en_prefix_types prefix_type
Type of the prefix.
Definition: fcml_disassembler.h:114
fcml_st_disassembler_result
Reusable disassembler result holder.
Definition: fcml_disassembler.h:267
fcml_st_prefixes_details::X
fcml_uint8_t X
X field of REX,XOP or VEX prefix.
Definition: fcml_disassembler.h:165
fcml_st_disassembler_context::entry_point
fcml_st_entry_point entry_point
Instruction entry point configuration.
Definition: fcml_disassembler.h:86
fcml_st_raw_displacement::displacement
fcml_st_integer displacement
Displacement as encoded in disp8/disp16/disp32/disp8*N.
Definition: fcml_disassembler.h:201
fcml_fn_disassembler_result_free
LIB_EXPORT void LIB_CALL fcml_fn_disassembler_result_free(fcml_st_disassembler_result *result)
Cleans result holder.
fcml_st_instruction_prefix
Describes one decoded prefix.
Definition: fcml_disassembler.h:110
fcml_st_instruction_prefix::mandatory_prefix
fcml_bool mandatory_prefix
FCML_TRUE if prefix is treated as mandatory one.
Definition: fcml_disassembler.h:116
fcml_fn_disassembler_result_prepare
LIB_EXPORT void LIB_CALL fcml_fn_disassembler_result_prepare(fcml_st_disassembler_result *result)
Prepares reusable result holder for disassembler.
fcml_st_disassembler_conf
struct fcml_st_disassembler_conf fcml_st_disassembler_conf
Disassembler configuration.
fcml_st_prefixes_details::R
fcml_uint8_t R
R field of REX,XOP or VEX prefix.
Definition: fcml_disassembler.h:161
fcml_st_prefixes_details::is_branch
fcml_bool is_branch
FCML_TRUE if branch prefix exists.
Definition: fcml_disassembler.h:135
fcml_st_prefixes_details::is_rex
fcml_bool is_rex
FCML_TRUE if REX prefix exists.
Definition: fcml_disassembler.h:157
fcml_st_prefixes_details::L_prim
fcml_uint8_t L_prim
L’ field of EVEX prefix.
Definition: fcml_disassembler.h:175
fcml_st_decoded_modrm_details::displacement
fcml_st_raw_displacement displacement
Raw displacement.
Definition: fcml_disassembler.h:218
fcml_st_instruction_details::addr_mode
fcml_uint16_t addr_mode
Code of the instruction form/addressing mode of the instruction above.
Definition: fcml_disassembler.h:259
fcml_st_disassembler_conf::conditional_group
fcml_uint8_t conditional_group
There are two groups of suffixes for conditional instructions, you can choose which one should be use...
Definition: fcml_disassembler.h:64
fcml_st_instruction_details::prefixes_details
fcml_st_prefixes_details prefixes_details
Some additional information about decoded instruction prefixes.
Definition: fcml_disassembler.h:238
fcml_st_integer
Definition: fcml_types.h:257
fcml_st_instruction_details::is_shortcut
fcml_bool is_shortcut
True if this is a shortcut.
Definition: fcml_disassembler.h:229
fcml_st_disassembler_context::disassembler
fcml_st_disassembler * disassembler
Disassembler used to decode instructions.
Definition: fcml_disassembler.h:82
fcml_instructions.h
Instruction codes and addressing modes/instruction forms.
FCML_INSTRUCTION_SIZE
#define FCML_INSTRUCTION_SIZE
Maximal number of bytes instruction can use.
Definition: fcml_common.h:37
fcml_st_disassembler_context::code_length
fcml_usize code_length
Size of the code in the buffer above.
Definition: fcml_disassembler.h:90
FCML_DASM_PREFIXES_COUNT
#define FCML_DASM_PREFIXES_COUNT
Maximal number of instruction prefixes.
Definition: fcml_disassembler.h:42
fcml_st_instruction_details::opcode_field_w_bit
fcml_bool opcode_field_w_bit
Opcode field 'w'.
Definition: fcml_disassembler.h:252
fcml_st_decoded_modrm_details::modrm
fcml_uint8_t modrm
ModR/M byte if exists.
Definition: fcml_disassembler.h:209
fcml_st_disassembler_result::errors
fcml_st_ceh_error_container errors
All errors and warnings messages going here.
Definition: fcml_disassembler.h:269
fcml_st_decoded_modrm_details::sib
fcml_nuint8_t sib
SIB byte if exists.
Definition: fcml_disassembler.h:211
fcml_st_entry_point
Describes address of an instruction code.
Definition: fcml_common.h:824
fcml_st_disassembler_conf::carry_flag_conditional_suffix
fcml_bool carry_flag_conditional_suffix
True if suffixes for carry flag has to be used by disassembler.
Definition: fcml_disassembler.h:61
fcml_st_instruction_details
struct fcml_st_instruction_details fcml_st_instruction_details
Additional instruction details provided by disassembler.
fcml_dialect.h
Structures and functions related to dialects.
fcml_st_prefixes_details::is_xrelease
fcml_bool is_xrelease
FCML_TRUE if xrelease explicit prefix exists.
Definition: fcml_disassembler.h:145
fcml_errors.h
Global error handling related declarations.
fcml_st_instruction_details::instruction_size
fcml_usize instruction_size
Instruction size in bytes.
Definition: fcml_disassembler.h:236
fcml_st_prefixes_details::aaa
fcml_uint8_t aaa
Embedded opmask register specifier.
Definition: fcml_disassembler.h:187
fcml_st_prefixes_details::avx_first_byte
fcml_uint8_t avx_first_byte
First byte of AVX prefix.
Definition: fcml_disassembler.h:159
fcml_st_prefixes_details::is_lock
fcml_bool is_lock
FCML_TRUE if lock explicit prefix exists.
Definition: fcml_disassembler.h:139
fcml_st_disassembler_result
struct fcml_st_disassembler_result fcml_st_disassembler_result
Reusable disassembler result holder.
fcml_st_prefixes_details::b
fcml_uint8_t b
b field of EVEX prefix.
Definition: fcml_disassembler.h:169
fcml_st_disassembler
struct fcml_st_disassembler fcml_st_disassembler
This structure and type declaration represents an abstract disassembler.
Definition: fcml_disassembler.h:50
fcml_fn_disassembler_init
LIB_EXPORT fcml_ceh_error LIB_CALL fcml_fn_disassembler_init(const fcml_st_dialect *dialect, fcml_st_disassembler **disassembler)
Initializes disassembler instance.
fcml_st_instruction_details
Additional instruction details provided by disassembler.
Definition: fcml_disassembler.h:222
fcml_ceh_error
fcml_uint16_t fcml_ceh_error
All error codes should be held in variables of this type.
Definition: fcml_errors.h:156
fcml_types.h
Types declarations.
fcml_st_prefixes_details::z
fcml_uint8_t z
z field of EVEX prefix
Definition: fcml_disassembler.h:183
fcml_fn_disassemble
LIB_EXPORT fcml_ceh_error LIB_CALL fcml_fn_disassemble(fcml_st_disassembler_context *context, fcml_st_disassembler_result *result)
Disassembles one instruction from provided code buffer.
fcml_st_raw_displacement::N
fcml_nuint32_t N
Scaling factor N in EVEX specific compressed disp8*N.
Definition: fcml_disassembler.h:203
fcml_st_instruction_prefix
struct fcml_st_instruction_prefix fcml_st_instruction_prefix
Describes one decoded prefix.
fcml_st_prefixes_details::pp
fcml_uint8_t pp
pp field of XOP or VEX/EVEX prefix.
Definition: fcml_disassembler.h:181
Generated by   doxygen 1.8.13