DOCSLIB.ORG

X86 Control Flow 5.2

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
X86 Control Flow 5.2 5.1 CS356 Unit 5 x86 Control Flow 5.2 JUMP/BRANCHING OVERVIEW 5.3 Concept of Jumps/Branches • Assembly is executed in sequential movq addq order by default ---- ---- • Jump instruction (aka "branches") ---- cause execution to skip ahead or ---- back to some other location movq • Jumps are used to implement control addq structures like if statements & loops ---- jmp ---- if( x < 0 ){ while ( x > 0 ){ ---- } else { } } 5.4 Jump/Branch Instructions • Jump (aka "branch") instructions allow us to jump backward or forward in our code • How? By manipulating the Program Counter (PC) • Operation: PC = PC + displacement – Compiler/programmer specifies a "label" for the instruction to branch to; then the assembler will determine the displacement Instrucs. In Memory Instrucs. In Memory Proc. Proc. 0x400 label ---- 0x400 ---- 0x404 PC/IP 0x400 0x404 jmp label PC/IP 0x424 ---- 0x408 0x408 ---- ---- . ---- . ---- . ---- 0x424 jmp label 0x424 label ---- ---- Jump Forward => Conditional Jump Back => Loop 5.5 Conditional vs. Unconditional Jumps • Two kinds of jumps/branches if( x < 0 ){ < ---- • Conditional ---- >= } – Jump only if a condition is true, else { otherwise continue sequentially } – x86 instructions: je, jne, jge, … (see next slides) while ( x < 0 ){ < – Need a way to compare and check >= conditions F } – Needed for if, while, for L1: jge L2 • Unconditional ---- ---- – Always jump to a new location jmp L1 – x86 instruction: jmp label L2: ---- x86 View 5.6 Condition Codes MAKING A DECISION 5.7 Condition Codes (Flags) CS:APP 3.6.1 Processor • The processor hardware performs several %rax = 1 tests on the result of most instructions %rcx = 0x80000000 • Each test generates a True/False (1 or 0) outcome which are recorded in various bits of %rdx = 2 the FLAGS register in the process EFLAGS Reg • The tests and associated bits are: – SF = Sign Flag 31 11 7 6 0 • Tests if the result is negative (just a copy of the 0 0 0 0 MSB of the result of the instruction) – ZF = Zero Flag OF SF ZF CF • Tests if the result is equal to 0 subl %edx, %eax – OF = 2’s complement Overflow Flag 0 1 0 1 • Set if signed overflow has occurred OF SF ZF CF – CF = Carry Flag Unsigned Overflow • Not just the carry-out; 1 if unsigned overflow • Unsigned Overflow: if (ADD and Cout=1) or (SUB and Cout=0) 5.8 cmp and test Instructions • cmp[bwql] src1, src2 – Compares src2 to src1 (e.g. src2 < src1, src2 == src1) – Performs (src2 – src1) and sets the condition codes based on the result – src1 & src2 is not changed (subtraction result is only used for condition codes and then discarded) • test[bwql] src1, src2 – Performs (src1 & src2) and sets condition codes – src2 is not changed – Often used with the src1 = src2 (i.e. test %eax, %eax) to check if a value is 0 or negative 5.9 Condition Code Exercises Processor Registers 0000 0000 0000 0001 rax EFLAGS Reg 0000 0000 0000 0000 rbx 31 11 7 6 0 0000 0000 0000 8801 rcx ? ? ? ? 0000 0000 0000 0002 rdx OF SF ZF CF – addl $0x7fffffff,%rdx 0000 0000 8000 0001 rdx 1 1 0 0 – andb %al, %bl OF SF ZF CF 0 0 1 0 0000 0000 0000 0000 rbx OF SF ZF CF – addb $0xff, %al 0 0 1 1 0000 0000 0000 0000 rax OF SF ZF CF – cmpw $0x7000, %cx 0000 0000 0000 1801 result 1 0 0 0 0000 0000 0000 8801 rcx OF SF ZF CF 5.10 Conditional Branches Processor • Comparison in x86 is usually a 2-step %rax = 1 (2-instruction) process %rdx = 2 • Step 1: cmpl %edx, %eax – Execute an instruction that will compare or examine the data (e.g. cmp, test, etc.) EFLAGS Reg – Results of comparison will be saved in the EFLAGS register via the condition 31 11 7 6 0 codes 0 1 0 1 • Step 2: OF SF ZF CF – Use a conditional jump (je, jne, jl, etc.) that will check for a certain comparison jne L1 # jump if ZF=0 result of the previous instruction 0 1 0 0 OF SF ZF CF 5.11 Conditional Jump Instructions CS:APP 3.6.3 • Figure 3.15 from CS:APP, 3e Instruction Synonym Jump Condition Description jmp label jmp *(Operand) je label jz ZF Equal / zero jne label jnz ~ZF Not equal / not zero js label SF Negative jns label ~SF Non-negative jg label jnle ~(SF ^ OF) & ~ZF Greater (signed >) jge label jnl ~(SF ^ OF) Greater or Equal (signed >=) jl label jnge (SF ^ OF) Less (signed <) jle label jng (SF ^ OF) | ZF Less of equal (signed <=) ja label jnbe ~CF & ~ZF Above (unsigned >) jae label jnb ~CF Above or equal (unsigned >=) jb label jnae CF Below (unsigned <) jbe label jna CF | ZF Below or equal (unsigned <=) Reminder: For all jump instructions other than jmp (which is unconditional), some previous instruction (cmp, test, etc.) is needed to set the condition codes to be examined by the jmp 5.12 Condition Code Exercises Processor Registers 0000 0000 0000 0001 rax 0000 0000 0000 0002 rbx 0000 0000 ffff fffe rcx 0000 0000 0000 0000 rdx Order: f1: OF SF ZF CF __1__ testl %edx, %edx 0 0 1 0 __2__ je L2 __5___ L1: cmpw %bx, %ax 0 1 0 1 __6___ jge L3 __3,7_ L2: incl %ecx 0 1 0 0 0 0 1 1 __4,8_ js L1 ____9_ L3: ret 5.13 Control Structure Examples 1 CS:APP 3.6.5 // x = %edi, y = %esi, res = %rdx func1: void func1(int x, int y, int *res) cmpl %esi, %edi { jge .L2 movl %edi, (%rdx) if(x < y) *res = x; ret else *res = y; .L2: movl %esi, (%rdx) gcc -S -Og func1.c } ret // x = %edi, y = %esi, res = %rdx func2: void func2(int x, int y, int *res) cmpl $-1, %edi je .L6 { cmpl $-1, %esi if(x == -1 || y == -1) je .L6 *res = y-1; testl %edi, %edi else if(x > 0 && y < x) jle .L5 *res = x+1; cmpl %esi, %edi jle .L5 else addl $1, %edi *res = 0; movl %edi, (%rdx) ret } .L5: gcc -S –O3 func2.c movl $0, (%rdx) ret .L6: subl $1, %esi movl %esi, (%rdx) ret 5.14 Control Structure Examples 2 CS:APP 3.6.7 // str = %rdi func3: int func3(char str[]) movl $0, %eax { jmp .L2 .L3: int i = 0; addl $1, %eax while(str[i] != 0){ .L2: i++; movslq %eax, %rdx gcc -S -Og func3.c } cmpb $0, (%rdi,%rdx) return i; jne .L3 } ret func4: // dat = %rdi, len = %esi movl (%rdi), %eax int func4(int dat[], int len) movl $1, %edx { jmp .L2 int i, min = dat[0]; .L4: for(i=1; i < len; i++){ movslq %edx, %rcx movl (%rdi,%rcx,4), %ecx if(dat[i] < min){ cmpl %ecx, %eax min = dat[i]; jle .L3 } movl %ecx, %eax } gcc -S -Og func4.c .L3: return min; addl $1, %edx .L2: } cmpl %esi, %edx jl .L4 ret 5.15 Branch Displacements CS:APP 3.6.4 // dat = %rdi, len = %esi • Recall: Jumps perform PC = PC + displacement int func4(int dat[], int len) { • int i, min = dat[0]; Assembler converts jumps and labels to for(i=1; i < len; i++){ appropriate displacements if(dat[i] < min){ min = dat[i]; } • Examine the disassembled output (below) } return min; especially the machine code in the left column } – Displacements are in the 2nd byte of the instruction C Code – Recall: PC increments to point at next instruction while jump is fetched and BEFORE the jump is executed func4: movl (%rdi), %eax 0000000000000000 <func4>: movl $1, %edx 0: 8b 07 mov (%rdi),%eax jmp .L2 2: ba 01 00 00 00 mov $0x1,%edx .L4: 7: eb 0f jmp 18 <func4+0x18> movslq %edx, %rcx 9: 48 63 ca movslq %edx,%rcx movl (%rdi,%rcx,4), %ecx c: 8b 0c 8f mov (%rdi,%rcx,4),%ecx cmpl %ecx, %eax f: 39 c8 cmp %ecx,%eax jle .L3 11: 7e 02 jle 15 <func4+0x15> movl %ecx, %eax 13: 89 c8 mov %ecx,%eax .L3: 15: 83 c2 01 add $0x1,%edx addl $1, %edx 18: 39 f2 cmp %esi,%edx .L2: 1a: 7c ed jl 9 <func4+0x9> cmpl %esi, %edx 1c: f3 c3 retq jl .L4 ret x86 Disassembled Output x86 Assembler 5.16 CONDITIONAL MOVES 5.17 Cost of Jumps CS:APP 3.6.6 func1: • Fact: Modern processors execute multiple instructions cmpl $-1, %edi je .L6 at one time cmpl $-1, %esi je .L6 – While earlier instructions are executing the processor testl %edi, %edi jle .L5 can be fetching and decoding later instructions cmpl %esi, %edi jl .L5 – This overlapped execution is known as pipelining and is addl $1, %edi movl %edi, (%rdx) key to obtaining good performance ret .L5: • Problem: Conditional jumps limit pipelining because movl $0, (%rdx) ret when we reach a jump, the comparison results it relies .L6: subl $1, %esi on may not be computed yet movl %esi, (%rdx) ret – It is unclear which instruction to fetch next – To be safe we have to stop and wait for the jump condition to be known time cmpl fetch decode execute jne fetch decode execute ??? fetch 5.18 Cost of Jumps func1: • Solution: When modern processors reach a Currently executing cmpl $-1, %edi Fetching here je .L6 jump before the comparison condition is cmpl $-1, %esi known, it will predict whether the jump Should we go je .L6 sequentially or jump? testl %edi, %edi condition will be true (aka "branch jle .L5 cmpl %esi, %edi prediction") and "speculatively" execute down jl .L5 addl $1, %edi the chosen path movl %edi, (%rdx) ret – If the guess is right…we win and get good .L5: performance movl $0, (%rdx) ret – If the guess is wrong…we lose and will have to .L6: subl $1, %esi throw away the wrongly fetched/decoded movl %esi, (%rdx) instructions once we realize the jump was ret mispredicted 5.19 Conditional Move Concept int cmove1(int x, int* res) { if(x > 5) *res = x+1; • Potential better solution: Be more else *res = x-1; pipelining friendly and compute both } results and only store the correct result C Code cmove1: when the condition is known cmpl $5, %edi jle .L2 • Allows for pure sequential execution addl $1, %edi movl %edi, (%rsi) – ret With jumps, we had to choose which .L2: instruction to fetch next subl $1, %edi movl %edi, (%rsi) – With conditional moves, we only need to ret choose whether to save or discard a With Jumps (-Og Optimization) computed result cmove1: int cmove1(int x) leal 1(%rdi), %edx { leal -1(%rdi), %eax int then_val = x+1; cmpl $6, %edi int temp = x-1; cmovge %edx, %eax if(x > 5) temp = then_val; movl %eax, (%rsi) *res = temp; ret } Equivalent C code With Conditional Moves (-O3 Optimization) 5.20 Conditional Move Instruction • Similar to (cond) ? x : y • Syntax: cmov[cond] src, reg – Cond = Same conditions as jumps (e, ne, l, le, g, ge) – Destination must be a register – If condition is true, reg = src – If condition is false, reg is unchanged (i.e.
Load more

Recommended publications
  • E0C88 CORE CPU MANUAL NOTICE No Part of This Material May Be Reproduced Or Duplicated in Any Form Or by Any Means Without the Written Permission of Seiko Epson
    MF658-04 CMOS 8-BIT SINGLE CHIP MICROCOMPUTER E0C88 Family E0C88 CORE CPU MANUAL NOTICE No part of this material may be reproduced or duplicated in any form or by any means without the written permission of Seiko Epson. Seiko Epson reserves the right to make changes to this material without notice. Seiko Epson does not assume any liability of any kind arising out of any inaccuracies contained in this material or due to its application or use in any product or circuit and, further, there is no representation that this material is applicable to products requiring high level reliability, such as medical products. Moreover, no license to any intellectual property rights is granted by implication or otherwise, and there is no representation or warranty that anything made in accordance with this material will be free from any patent or copyright infringement of a third party. This material or portions thereof may contain technology or the subject relating to strategic products under the control of the Foreign Exchange and Foreign Trade Control Law of Japan and may require an export license from the Ministry of International Trade and Industry or other approval from another government agency. Please note that "E0C" is the new name for the old product "SMC". If "SMC" appears in other manuals understand that it now reads "E0C". © SEIKO EPSON CORPORATION 1999 All rights reserved. CONTENTS E0C88 Core CPU Manual PREFACE This manual explains the architecture, operation and instruction of the core CPU E0C88 of the CMOS 8-bit single chip microcomputer E0C88 Family. Also, since the memory configuration and the peripheral circuit configuration is different for each device of the E0C88 Family, you should refer to the respective manuals for specific details other than the basic functions.
    [Show full text]
  • Cmp Instruction in Assembly Language
    Cmp Instruction In Assembly Language booby-trapsDamien pedaling sound. conjointly? Untidiest SupposableGraham precools, and uncleansed his ilexes geologisesNate shrouds globed her chokos contemptuously. espied or It works because when a short jump if the stack to fill out over an implied subtraction of assembly language is the arithmetic operation of using our point Jump if actual assembler or of assembly is correct results in sequence will stay organized. If you want to prove that will you there is cmp instruction in assembly language, sp can also accept one, it takes quite useful sample programs in game reports to. Acts as the instruction pointer should be checked for? Please switch your skills, cmp instruction cmp in assembly language. To double word register onto the next step process in assembly language equivalent to collect great quiz. The comparisons and the ip value becomes a row! Subsequent generations became new game code starts in main program plays a few different memory locations declared with. Want to switch, many commands to thumb instructions will not examine the difference between filtration and in assembly language are used as conditional jumps are calls to the call. Note that was no difference in memory operands and its corresponding comparison yielded an explicit, xor is running but also uses a perennial study guide can exit? Each question before you want to see the control flow and play this instruction cmp in assembly language? This value off this for assembly language, cmp instruction in assembly language? But shl can explicitly directed as efficient ways to compare values stored anywhere in terms indicated by cmp instruction in assembly language calling convention rules.
    [Show full text]
  • 1 Assembly Language Programming Status Flags the Status Flags Reflect the Outcomes of Arithmetic and Logical Operations Performe
    Assembly Language Programming Status Flags The status flags reflect the outcomes of arithmetic and logical operations performed by the CPU. • The carry flag (CF) is set when the result of an unsigned arithmetic operation is too large to fit into the destination. • The overflow flag (OF) is set when the result of a signed arithmetic operation is too large or too small to fit into the destination. • The sign flag (SF) is set when the result of an arithmetic or logical operation generates a negative result. • The zero flag (ZF) is set when the result of an arithmetic or logical operation generates a result of zero. Assembly Programs We are going to run assembly programs from (http://www.kipirvine.com/asm/) using Visual Studio. I have downloaded all of the example programs and placed them in CS430 Pub. Copy them onto your local machine and start up Visual Studio. The first program we are going to run is below. Copy this into the Project_Sample project in the examples folder. Run the program. Let’s talk about what this program does. TITLE Add and Subtract ; This program ; Last update: 06/01/2006 INCLUDE Irvine32.inc .code main PROC mov eax,10000h add eax,40000h sub eax,20000h call DumpRegs exit main ENDP END main 1 What’s the difference between the previous program and this one: TITLE Add and Subtract, Version 2 (AddSub2.asm) ; This program adds and subtracts 32-bit integers ; and stores the sum in a variable. ; Last update: 06/01/2006 INCLUDE Irvine32.inc .data val1 dword 10000h val2 dword 40000h val3 dword 20000h finalVal dword ? .code main PROC mov eax,val1 ; start with 10000h add eax,val2 ; add 40000h sub eax,val3 ; subtract 20000h mov finalVal,eax ; store the result (30000h) call DumpRegs ; display the registers exit main ENDP END main Data Transfer Instructions The MOV instruction copies from a source operand to a destination operand.
    [Show full text]
  • ARM Instruction Set
    4 ARM Instruction Set This chapter describes the ARM instruction set. 4.1 Instruction Set Summary 4-2 4.2 The Condition Field 4-5 4.3 Branch and Exchange (BX) 4-6 4.4 Branch and Branch with Link (B, BL) 4-8 4.5 Data Processing 4-10 4.6 PSR Transfer (MRS, MSR) 4-17 4.7 Multiply and Multiply-Accumulate (MUL, MLA) 4-22 4.8 Multiply Long and Multiply-Accumulate Long (MULL,MLAL) 4-24 4.9 Single Data Transfer (LDR, STR) 4-26 4.10 Halfword and Signed Data Transfer 4-32 4.11 Block Data Transfer (LDM, STM) 4-37 4.12 Single Data Swap (SWP) 4-43 4.13 Software Interrupt (SWI) 4-45 4.14 Coprocessor Data Operations (CDP) 4-47 4.15 Coprocessor Data Transfers (LDC, STC) 4-49 4.16 Coprocessor Register Transfers (MRC, MCR) 4-53 4.17 Undefined Instruction 4-55 4.18 Instruction Set Examples 4-56 ARM7TDMI-S Data Sheet 4-1 ARM DDI 0084D Final - Open Access ARM Instruction Set 4.1 Instruction Set Summary 4.1.1 Format summary The ARM instruction set formats are shown below. 3 3 2 2 2 2 2 2 2 2 2 2 1 1 1 1 1 1 1 1 1 1 9876543210 1 0 9 8 7 6 5 4 3 2 1 0 9 8 7 6 5 4 3 2 1 0 Cond 0 0 I Opcode S Rn Rd Operand 2 Data Processing / PSR Transfer Cond 0 0 0 0 0 0 A S Rd Rn Rs 1 0 0 1 Rm Multiply Cond 0 0 0 0 1 U A S RdHi RdLo Rn 1 0 0 1 Rm Multiply Long Cond 0 0 0 1 0 B 0 0 Rn Rd 0 0 0 0 1 0 0 1 Rm Single Data Swap Cond 0 0 0 1 0 0 1 0 1 1 1 1 1 1 1 1 1 1 1 1 0 0 0 1 Rn Branch and Exchange Cond 0 0 0 P U 0 W L Rn Rd 0 0 0 0 1 S H 1 Rm Halfword Data Transfer: register offset Cond 0 0 0 P U 1 W L Rn Rd Offset 1 S H 1 Offset Halfword Data Transfer: immediate offset Cond 0
    [Show full text]
  • (PSW). Seven Bits Remain Unused While the Rest Nine Are Used
    8086/8088MP INSTRUCTOR: ABDULMUTTALIB A. H. ALDOURI The Flags Register It is a 16-bit register, also called Program Status Word (PSW). Seven bits remain unused while the rest nine are used. Six are status flags and three are control flags. The control flags can be set/reset by the programmer. 1. DF (Direction Flag) : controls the direction of operation of string instructions. (DF=0 Ascending order DF=1 Descending order) 2. IF (Interrupt Flag): controls the interrupt operation in 8086µP. (IF=0 Disable interrupt IF=1 Enable interrupt) 3. TF (Trap Flag): controls the operation of the microprocessor. (TF=0 Normal operation TF=1 Single Step operation) The status flags are set/reset depending on the results of some arithmetic or logical operations during program execution. 1. CF (Carry Flag) is set (CF=1) if there is a carry out of the MSB position resulting from an addition operation or subtraction. 2. AF (Auxiliary Carry Flag) AF is set if there is a carry out of bit 3 resulting from an addition operation. 3. SF (Sign Flag) set to 1 when result is negative. When result is positive it is set to 0. 4. ZF (Zero Flag) is set (ZF=1) when result of an arithmetic or logical operation is zero. For non-zero result this flag is reset (ZF=0). 5. PF (Parity Flag) this flag is set to 1 when there is even number of one bits in result, and to 0 when there is odd number of one bits. 6. OF (Overflow Flag) set to 1 when there is a signed overflow.
    [Show full text]
  • AVR Control Transfer -AVR Branching
    1 | P a g e AVR Control Transfer -AVR Branching Reading The AVR Microcontroller and Embedded Systems using Assembly and C) by Muhammad Ali Mazidi, Sarmad Naimi, and Sepehr Naimi Chapter 3: Branch, Call, and Time Delay Loop Section 3.1: Branching and Looping (Branch Only) Additional Reading Introduction to AVR assembler programming for beginners, controlling sequential execution of the program http://www.avr-asm-tutorial.net/avr_en/beginner/JUMP.html AVR Assembler User Guide http://www.atmel.com/dyn/resources/prod documents/doc1022.pdf 2 | P a g e TABLE OF CONTENTS Instruction Set Architecture (Review) ...................................................................................................................... 4 Instruction Set (Review) ........................................................................................................................................... 5 Jump Instructions..................................................................................................................................................... 6 How the Direct Unconditional Control Transfer Instructions jmp and call Work ...................................................... 7 How the Relative Unconditional Control Transfer Instructions rjmp and rcall Work ................................................ 8 Branch Instructions .................................................................................................................................................. 9 How the Relative Conditional Control Transfer Instruction
    [Show full text]
  • Multiplication and Division Instructions
    MultiplicationMultiplication andand DivisionDivision InstructionsInstructions • MUL Instruction • IMUL Instruction • DIV Instruction • Signed Integer Division • Implementing Arithmetic Expressions Irvine, Kip R. Assembly Language for Intel-Based Computers, 2003. 1 MULMUL InstructionInstruction • The MUL (unsigned multiply) instruction multiplies an 8-, 16-, or 32-bit operand by either AL, AX, or EAX. • The instruction formats are: MUL r/m8 MUL r/m16 MUL r/m32 Implied operands: Irvine, Kip R. Assembly Language for Intel-Based Computers, 2003. 2 MULMUL ExamplesExamples 100h * 2000h, using 16-bit operands: .data val1 WORD 2000h The Carry flag indicates whether or val2 WORD 100h not the upper half of .code the product contains mov ax,val1 significant digits. mul val2 ; DX:AX = 00200000h, CF=1 12345h * 1000h, using 32-bit operands: mov eax,12345h mov ebx,1000h mul ebx ; EDX:EAX = 0000000012345000h, CF=0 Irvine, Kip R. Assembly Language for Intel-Based Computers, 2003. 3 YourYour turnturn .. .. .. What will be the hexadecimal values of DX, AX, and the Carry flag after the following instructions execute? mov ax,1234h mov bx,100h mul bx DX = 0012h, AX = 3400h, CF = 1 Irvine, Kip R. Assembly Language for Intel-Based Computers, 2003. 4 YourYour turnturn .. .. .. What will be the hexadecimal values of EDX, EAX, and the Carry flag after the following instructions execute? mov eax,00128765h mov ecx,10000h mul ecx EDX = 00000012h, EAX = 87650000h, CF = 1 Irvine, Kip R. Assembly Language for Intel-Based Computers, 2003. 5 IMULIMUL InstructionInstruction • IMUL (signed integer multiply ) multiplies an 8-, 16-, or 32-bit signed operand by either AL, AX, or EAX • Preserves the sign of the product by sign-extending it into the upper half of the destination register Example: multiply 48 * 4, using 8-bit operands: mov al,48 mov bl,4 imul bl ; AX = 00C0h, OF=1 OF=1 because AH is not a sign extension of AL.
    [Show full text]
  • Overview of IA-32 Assembly Programming
    Overview of IA-32 assembly programming Lars Ailo Bongo University of Tromsø Contents 1 Introduction ...................................................................................................................... 2 2 IA-32 assembly programming.......................................................................................... 3 2.1 Assembly Language Statements................................................................................ 3 2.1 Modes........................................................................................................................4 2.2 Registers....................................................................................................................4 2.2.3 Data Registers .................................................................................................... 4 2.2.4 Pointer and Index Registers................................................................................ 4 2.2.5 Control Registers................................................................................................ 5 2.2.6 Segment registers ............................................................................................... 7 2.3 Addressing................................................................................................................. 7 2.3.1 Bit and Byte Order ............................................................................................. 7 2.3.2 Data Types.........................................................................................................
    [Show full text]
  • Assembly Language: IA-X86
    Assembly Language for x86 Processors X86 Processor Architecture CS 271 Computer Architecture Purdue University Fort Wayne 1 Outline Basic IA Computer Organization IA-32 Registers Instruction Execution Cycle Basic IA Computer Organization Since the 1940's, the Von Neumann computers contains three key components: Processor, called also the CPU (Central Processing Unit) Memory and Storage Devices I/O Devices Interconnected with one or more buses Data Bus Address Bus data bus Control Bus registers Processor I/O I/O IA: Intel Architecture Memory Device Device (CPU) #1 #2 32-bit (or i386) ALU CU clock control bus address bus Processor The processor consists of Datapath ALU Registers Control unit ALU (Arithmetic logic unit) Performs arithmetic and logic operations Control unit (CU) Generates the control signals required to execute instructions Memory Address Space Address Space is the set of memory locations (bytes) that are addressable Next ... Basic Computer Organization IA-32 Registers Instruction Execution Cycle Registers Registers are high speed memory inside the CPU Eight 32-bit general-purpose registers Six 16-bit segment registers Processor Status Flags (EFLAGS) and Instruction Pointer (EIP) 32-bit General-Purpose Registers EAX EBP EBX ESP ECX ESI EDX EDI 16-bit Segment Registers EFLAGS CS ES SS FS EIP DS GS General-Purpose Registers Used primarily for arithmetic and data movement mov eax 10 ;move constant integer 10 into register eax Specialized uses of Registers eax – Accumulator register Automatically
    [Show full text]
  • CS221 Booleans, Comparison, Jump Instructions Chapter 6 Assembly Language Is a Great Choice When It Comes to Working on Individu
    CS221 Booleans, Comparison, Jump Instructions Chapter 6 Assembly language is a great choice when it comes to working on individual bits of data. While some languages like C and C++ include bitwise operators, several high-level languages are missing these operations entirely (e.g. Visual Basic 6.0). At times these operations can be quite useful. First we will describe some common bit operations, and then discuss conditional jumps. AND Instruction The AND instruction performs a Boolean AND between all bits of the two operands. For example: mov al, 00111011b and al, 00001111b The result is that AL contains 00001011. We have “multiplied” each corresponding bit. We have used AND for a common operation in this case, to clear out the high nibble. Sometimes the operand we are AND’ing something with is called a bit mask because wherever there is a zero the result is zero (masking out the original data), and wherever we have a one, we copy the original data through the mask. For example, consider an ASCII character. “Low” ASCII ignores the high bit; we only need the low 7 bits and we might use the high bit for either special characters or perhaps as a parity bit. Given an arbitrary 8 bits for a character, we could apply a mask that removes the high bit and only retains the low bits: and al, 01111111b OR Instruction The OR instruction performs a Boolean OR between all bits of the two operands. For example: mov al, 00111011b or al, 00001111b As a result AL contains 00111111. We have “Added” each corresponding bit, throwing away the carry.
    [Show full text]
  • Instruction Set Architecture
    Instruction Set Architecture EE3376 1 –Adapted from notes from BYU ECE124 Topics to Cover… l MSP430 ISA l MSP430 Registers, ALU, Memory l Instruction Formats l Addressing Modes l Double Operand Instructions l Single Operand Instructions l Jump Instructions l Emulated Instructions – http://en.wikipedia.org/wiki/TI_MSP430 2 –Adapted from notes from BYU ECE124 Levels of Transformation –Problems –Algorithms – C Instructions –Language (Program) –Programmable –Assembly Language – MSP 430 ISA –Machine (ISA) Architecture –Computer Specific –Microarchitecture –Manufacturer Specific –Circuits –Devices 3 –Adapted from notes from BYU ECE124 Instruction Set Architecture l The computer ISA defines all of the programmer-visible components and operations of the computer – memory organization l address space -- how may locations can be addressed? l addressibility -- how many bits per location? – register set (a place to store a collection of bits) l how many? what size? how are they used? – instruction set l Opcodes (operation selection codes) l data types (data types: byte or word) l addressing modes (coding schemes to access data) l ISA provides all information needed for someone that wants to write a program in machine language (or translate 4 from a high-level language to machine language). –Adapted from notes from BYU ECE124 MSP430 Instruction Set Architecture l MSP430 CPU specifically designed to allow the use of modern programming techniques, such as: – the computation of jump addresses – data processing in tables – use of high-level languages such as C. l 64KB memory space with 16 16-bit registers that reduce fetches to memory. l Implements RISC architecture with 27 instructions and 7 addressing modes.
    [Show full text]
  • CS107, Lecture 13 Assembly: Control Flow and the Runtime Stack
    CS107, Lecture 13 Assembly: Control Flow and The Runtime Stack Reading: B&O 3.6 This document is copyright (C) Stanford Computer Science and Nick Troccoli, licensed under Creative Commons Attribution 2.5 License. All rights reserved. Based on slides created by Marty Stepp, Cynthia Lee, Chris Gregg, and others. 1 Learning Goals • Learn how assembly implements loops and control flow • Learn how assembly calls functions. 2 Plan For Today • Control Flow • Condition Codes • Assembly Instructions • Break: Announcements • Function Calls and the Stack 3 mov Variants • mov only updates the specific register bytes or memory locations indicated. • Exception: movl writing to a register will also set high order 4 bytes to 0. • Suffix sometimes optional if size can be inferred. 4 No-Op • The nop/nopl instructions are “no-op” instructions – they do nothing! • No-op instructions do nothing except increment %rip • Why? To make functions align on nice multiple-of-8 address boundaries. “Sometimes, doing nothing is the way to be most productive.” – Philosopher Nick 5 Mov • Sometimes, you’ll see the following: mov %ebx, %ebx • What does this do? It zeros out the top 32 register bits, because when mov is performed on an e- register, the rest of the 64 bits are zeroed out. 6 xor • Sometimes, you’ll see the following: xor %ebx, %ebx • What does this do? It sets %ebx to zero! May be more efficient than using mov. 7 Plan For Today • Control Flow • Condition Codes • Assembly Instructions • Break: Announcements • Function Calls and the Stack 8 Control • In C, we have control flow statements like if, else, while, for, etc.
    [Show full text]