diff options
author | Malfurious <m@lfurio.us> | 2021-08-15 03:59:50 -0400 |
---|---|---|
committer | Malfurious <m@lfurio.us> | 2021-08-15 03:59:50 -0400 |
commit | b9b94713fc64b0b9443c3114c0c79d641db20a67 (patch) | |
tree | 12f521ccbce7a76d35b40261887ebb04a65be9b9 /docs/re/arch_x86.txt | |
parent | caf24aa1eeded533824c01f7289ec3b7cdc84634 (diff) | |
download | lib-des-gnux-b9b94713fc64b0b9443c3114c0c79d641db20a67.tar.gz lib-des-gnux-b9b94713fc64b0b9443c3114c0c79d641db20a67.zip |
Update documentation on x86 architecture
Some new links are added from the latest CTF.
Signed-off-by: Malfurious <m@lfurio.us>
Diffstat (limited to '')
-rw-r--r-- | docs/re/arch_x86.txt | 107 |
1 files changed, 107 insertions, 0 deletions
diff --git a/docs/re/arch_x86.txt b/docs/re/arch_x86.txt new file mode 100644 index 0000000..dcb7775 --- /dev/null +++ b/docs/re/arch_x86.txt @@ -0,0 +1,107 @@ +Instruction Set References +-------------------------- +https://en.wikipedia.org/wiki/X86_instruction_listings +https://stackoverflow.com/questions/3818856/what-does-the-rep-stos-x86-assembly-instruction-sequence-do +https://stackoverflow.com/questions/6555094/what-does-cltq-do-in-assembly + + +Register Names / Sizes +---------------------- +"Traditional" general-purpose registers: + rax, rbx, rcx, rdx, rsi, rdi, rbp, rsp + + MSB LSB + +--------+--------+--------+--------+--------+--------+--------+--------+ + | rax | + +--------+--------+--------+--------+--------+--------+--------+--------+ + | eax | + +--------+--------+--------+--------+ + | ax | + +--------+--------+ + | ah | al | + +--------+--------+ + +Additional x86_64 general-purpose registers: + r8, r9, r10, r11, r12, r13, r14, r15 + + MSB LSB + +--------+--------+--------+--------+--------+--------+--------+--------+ + | r8 | + +--------+--------+--------+--------+--------+--------+--------+--------+ + | r8d | + +--------+--------+--------+--------+ + | r8w | + +--------+--------+ + * Note: High byte of lower | r8b / | + 16-bit word is inaccessible | r8l | + +--------+ + + +Calling Conventions +------------------- +Passing function arguments is arch-dependent: see below. The caller return +address is pushed after any argument values. + +Often, the called function will use the base pointer register to mark the stack +address at the bottom of the new stack frame and adjust the stack pointer +register to allocate space for the new frame in full. The old bp value is saved +on the stack above the return address. See below for an illustration of the +stack. + +On return, the original base and stack pointer values are restored. Any pushed +argument values remain on the stack and are the responsibility of the caller. +The function return value is stored in the a register. + ++----------------------------+ <- sp (register) top of stack +| | lower addresses +| space for local function | +| storage: variables, arrays | +| | +| | ++============================+ <- bp (register) +| saved base pointer | ++----------------------------+ +| saved instruction pointer | ++============================+ +| function argument ?? | ++----------------------------+ +| function argument ?? | ++----------------------------+ +| ... | ++----------------------------+ +| | +| | +| | +| caller stack frame | +| | +| | +| | ++============================+ <- saved base pointer (on stack) +| caller saved base ptr | +.............................. higher addresses + + + 32-bit (x86) + ------------ + All function arguments are pushed to the stack in reverse order, leaving the + first arguent on the top of the stack. + + Stack pointer register: esp + Base pointer register: ebp + Return value in: eax + + + 64-bit (x86_64) + --------------- + The first six arguments are stored in registers. All remaining arguments + are pushed to the stack in reverse order. + + Argument #1: rdi + Argument #2: rsi + Argument #3: rdx + Argument #4: rcx + Argument #5: r8 + Argument #6: r15 + Stack pointer register: rsp + Base pointer register: rbp + Return value in: rax |