cs356 discussion 3
play

CS356 : Discussion #3 Assembly Instructions What about programs - PowerPoint PPT Presentation

Dec 15, 2023 •371 likes •688 views

CS356 : Discussion #3 Assembly Instructions What about programs that operate on data? Integer and Floating-Point Formats Twos Complement IEEE 754 Machine-Level Programs Operand specifiers Data movement Arithmetic and

  1. CS356 : Discussion #3 Assembly Instructions

  2. What about programs that operate on data? Integer and Floating-Point Formats ● Two’s Complement ● IEEE 754 Machine-Level Programs ● Operand specifiers ● Data movement Arithmetic and logic operations ● Stack manipulation ● ● Control structures ● Procedures High-Level Programs ● C/C++ ● Java Python ●

  3. Why learning assembly? Understanding the machine ● Reverse engineering ● Security analysis Performance tuning (rarely) ● Beware: the compiler applies several optimizations! ● Rearrange execution order. Eliminate unneeded computations. ● Replace slow operations with faster ones. ● ● Change recursive operations with iterative ones. Compilation C → ASM (compiler) → object program (assembler) → executable (linker) ● ● “ gcc -Og -S input.c ” produces the assembly of the input program

  4. Programmer-Visible State CPU Memory Addresses Registers Stack Data Heap PC Data Condition Instructions Code Codes ● Instructions and data must be read from main memory. Instructions are executed on registers . ●

  5. 16 ⨉ 64-bit general registers w (2 bytes) b (1 byte) l (4 bytes) q (8 bytes) %ax accumulate %rax %eax base %bx %ebx %rbx %cx counter %rcx %ecx %dx data %rdx %edx source index %si %rsi %esi destination index %rdi %edi %di stack pointer %sp %rsp %esp base pointer %bp %rbp %ebp In addition: %r8 to %r15 ( %r8d / %r8w / %r8b for lower 4 / 2 / 1 bytes) ●

  6. Operand Forms Different ways to specify source values and output location. Immediate: $ imm to use a constant input value, e.g., $0xFF . Register: % reg to use the value contained in a register, e.g., %rax . Memory reference Absolute : addr , e.g., 0x1122334455667788 [use a fixed address] ● Indirect : (% reg ) , e.g., (%rax) [use the address contained in a q register ] ● ● Base+displacement : imm (% reg ) , e.g., 16(%rax) [add a displacement] ● Indexed: (% reg1 ,% reg2 ) , e.g., (%rax,%rbx) [add another register] Indexed+displacement: imm (% reg1 ,% reg2 ) [add both] ● Scaled indexed: imm (% reg1 ,% reg2 , c ) [use address: imm + reg1 + reg2 * c ] ● c must be one of 1, 2, 4, 8 Variants: omit imm or reg1 or both . E.g., (,%rax,4) (A memory reference selects the first byte.)

  7. Operand Forms: Examples Which one is correct? ● A. (%rax, , 4) ● B. (%rax, %rsp, 3) ● C. 123 ● D. $1(%rbx, %rbp, 1)

  8. Operand Forms: Examples Which one is correct? ● A. (%rax, , 4) ● B. (%rax, %rsp, 3) ● C. 123 ● D. $1(%rbx, %rbp, 1) Solution: C

  9. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? ● %rax ● 0x104 ● $0x108 ● (%rax) ● (%eax) ● 4(%rax) ● 9(%rax,%rdx) ● 260(%rcx,%rdx) ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  10. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 ● $0x108 ● (%rax) ● (%eax) ● 4(%rax) ● 9(%rax,%rdx) ● 260(%rcx,%rdx) ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  11. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 ● (%rax) ● (%eax) ● 4(%rax) ● 9(%rax,%rdx) ● 260(%rcx,%rdx) ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  12. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) ● (%eax) ● 4(%rax) ● 9(%rax,%rdx) ● 260(%rcx,%rdx) ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  13. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) ● 4(%rax) ● 9(%rax,%rdx) ● 260(%rcx,%rdx) ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  14. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) Illegal ● 4(%rax) ● 9(%rax,%rdx) ● 260(%rcx,%rdx) ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  15. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) Illegal ● 4(%rax) 0xAB ● 9(%rax,%rdx) ● 260(%rcx,%rdx) ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  16. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) Illegal ● 4(%rax) 0xAB ● 9(%rax,%rdx) 0x11 ● 260(%rcx,%rdx) ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  17. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) Illegal ● 4(%rax) 0xAB ● 9(%rax,%rdx) 0x11 ● 260(%rcx,%rdx) 0x13 ● 0xFC(,%rcx,4) ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  18. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) Illegal ● 4(%rax) 0xAB ● 9(%rax,%rdx) 0x11 ● 260(%rcx,%rdx) 0x13 ● 0xFC(,%rcx,4) 0xFF ● (%rax,%rdx,4) ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  19. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) Illegal ● 4(%rax) 0xAB ● 9(%rax,%rdx) 0x11 ● 260(%rcx,%rdx) 0x13 ● 0xFC(,%rcx,4) 0xFF ● (%rax,%rdx,4) 0x11 ● 0x4(%rax,%rdx,3) ● $4(%rax,%rcx)

  20. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) Illegal ● 4(%rax) 0xAB ● 9(%rax,%rdx) 0x11 ● 260(%rcx,%rdx) 0x13 ● 0xFC(,%rcx,4) 0xFF ● (%rax,%rdx,4) 0x11 ● 0x4(%rax,%rdx,3) Illegal ● $4(%rax,%rcx)

  21. Operand Forms: Examples Values at each memory address: Values in registers: ● ● 0x100: 0xFF %rax: 0x100 ● ● 0x104: 0xAB %rcx: 0x1 ● ● 0x108: 0x13 %rdx: 0x3 ● 0x10C: 0x11 Operand value? Solutions: ● %rax 0x100 ● 0x104 0xAB ● $0x108 0x108 ● (%rax) 0xFF ● (%eax) Illegal ● 4(%rax) 0xAB ● 9(%rax,%rdx) 0x11 ● 260(%rcx,%rdx) 0x13 ● 0xFC(,%rcx,4) 0xFF ● (%rax,%rdx,4) 0x11 ● 0x4(%rax,%rdx,3) Illegal ● $4(%rax,%rcx) Illegal

  22. Data Movement: Instructions Move to register/memory (register operands must match size codes) movb src, dst (1 byte) ● movw src, dst (2 bytes) ● ● movl src, dst (4 bytes / with register destination, the others are set to 0) ● movq src, dst (8 bytes) movabsq imm, reg (8 bytes / 64-bit source value allowed into register) ● ( movq only supports a 32-bit immediate; movabsq allows a 64-bit immediate) (Either src or dst can refer to a memory location, not both; no imm as dst .) Move from register/memory to register (zero extension) ● movzbw src, reg (byte to word) movzbl src, reg (byte to double word) ● movzbq src, reg (byte to quad word) ● ● movzwl src, reg (word to double word) ● movzwq src, reg (word to quad word) Same, but with sign extension (replicate MSB) : movsbw , movsbl , movsbq , movswl , movswq , movslq , cltq ( %eax to %rax ) ●

Recommend

CS356 : Discussion #4 Assembly Instructions & Debugging with GDB Last week: Operand Forms

CS356 : Discussion #4 Assembly Instructions & Debugging with GDB Last week: Operand Forms

CS356 : Discussion #4 Assembly Instructions & Debugging with GDB Last week: Operand Forms Different ways to specify source values and output location. Immediate: $ imm to use a constant input value, e.g., $0xFF . Register: % reg to use the

302 views • 29 slides
CS356 : Discussion #5 Assembly Procedures and Arrays Procedures Functions are a key abstraction

CS356 : Discussion #5 Assembly Procedures and Arrays Procedures Functions are a key abstraction

CS356 : Discussion #5 Assembly Procedures and Arrays Procedures Functions are a key abstraction in software They break down a problem into subproblems. Reusable functionality: they can be invoked from many points. Well-defined

366 views • 17 slides
CS356 : Discussion #9 Cache Lab & Review for Midterm II Illustrations from CS:APP3e textbook

CS356 : Discussion #9 Cache Lab & Review for Midterm II Illustrations from CS:APP3e textbook

CS356 : Discussion #9 Cache Lab & Review for Midterm II Illustrations from CS:APP3e textbook Cache Lab Goal To write a small C simulator of caching strategies. Expect about 200-300 lines of code. Starting point in your

469 views • 28 slides
CS356 : Discussion #10 Dynamic Memory and Cache Lab Illustrations from CS:APP3e textbook Cache

CS356 : Discussion #10 Dynamic Memory and Cache Lab Illustrations from CS:APP3e textbook Cache

CS356 : Discussion #10 Dynamic Memory and Cache Lab Illustrations from CS:APP3e textbook Cache Lab Goal To write a small C simulator of caching strategies. Expect about 200-300 lines of code. Starting point in your repository.

498 views • 26 slides
CS356 : Discussion #15 Review for Final Exam Marco Paolieri (paolieri@usc.edu) Illustrations

CS356 : Discussion #15 Review for Final Exam Marco Paolieri (paolieri@usc.edu) Illustrations

CS356 : Discussion #15 Review for Final Exam Marco Paolieri (paolieri@usc.edu) Illustrations from CS:APP3e textbook Processor Organization Pipeline: Computing Throughput and Delay n clock (ps) tput (GIPS) 1 320 3.125 2 170

469 views • 42 slides
CS356 : Discussion #2 Integer Operations & Floating-Point Operations Integers in C (64-bit

CS356 : Discussion #2 Integer Operations & Floating-Point Operations Integers in C (64-bit

CS356 : Discussion #2 Integer Operations & Floating-Point Operations Integers in C (64-bit architecture) Type Size (bytes) Unsigned Range Signed Range 1 0 to 255 -128 to 127 char 2 0 to 65535 -32,768 to 32,767 short 4 0 to 4G

933 views • 60 slides
CS356 : Discussion #11 Dynamic Memory, Allocation Lab and Linking Illustrations from CS:APP3e

CS356 : Discussion #11 Dynamic Memory, Allocation Lab and Linking Illustrations from CS:APP3e

CS356 : Discussion #11 Dynamic Memory, Allocation Lab and Linking Illustrations from CS:APP3e textbook malloc and free in action Each square represents 4 bytes. malloc returns addresses at multiples of 8 bytes (64 bit). If there is a problem,

460 views • 34 slides
CS356 : Discussion #14 Processor Architecture Marco Paolieri (paolieri@usc.edu) Illustrations

CS356 : Discussion #14 Processor Architecture Marco Paolieri (paolieri@usc.edu) Illustrations

CS356 : Discussion #14 Processor Architecture Marco Paolieri (paolieri@usc.edu) Illustrations from CS:APP3e textbook Processor Families Instruction Set Architecture (ISA) Instructions supported by a processor (and their byte-level encoding).

432 views • 30 slides
Introduction to CS356 CS356 Object-Oriented Design and Programming http://cs356.yusun.io

Introduction to CS356 CS356 Object-Oriented Design and Programming http://cs356.yusun.io

Introduction to CS356 CS356 Object-Oriented Design and Programming http://cs356.yusun.io September 26, 2014 Yu Sun, Ph.D. http://yusun.io yusun@csupomona.edu About Myself PhD in Software Engineering Ph.D. Research in Software Engineering

588 views • 30 slides
CS356 : Discussion #13 Review for Final Exam Illustrations from CS:APP3e textbook Processor

CS356 : Discussion #13 Review for Final Exam Illustrations from CS:APP3e textbook Processor

CS356 : Discussion #13 Review for Final Exam Illustrations from CS:APP3e textbook Processor Organization Pipeline Hazards: Stalling and Forwarding Stalling Forwarding Structural

515 views • 47 slides
SOLID: Principles of OOD CS356 Object-Oriented Design and Programming http://cs356.yusun.io

SOLID: Principles of OOD CS356 Object-Oriented Design and Programming http://cs356.yusun.io

SOLID: Principles of OOD CS356 Object-Oriented Design and Programming http://cs356.yusun.io October 17, 2014 Yu Sun, Ph.D. http://yusun.io yusun@csupomona.edu Part of the presentation comes from Martin, Robert Cecil. Agile software

805 views • 65 slides
CS356 Unit 11 Linking 11.2 In complex C projects... We would like to: Split source into

CS356 Unit 11 Linking 11.2 In complex C projects... We would like to: Split source into

11.1 CS356 Unit 11 Linking 11.2 In complex C projects... We would like to: Split source into multiple .h / .c Should .c include .h? Before or after system libraries? Compile these .h / .c units separately as .o files But only

1k views • 51 slides
CS356 Unit 4 Intro to x86 Instruction Set 4.2 Why Learn Assembly To understand something of

CS356 Unit 4 Intro to x86 Instruction Set 4.2 Why Learn Assembly To understand something of

4.1 CS356 Unit 4 Intro to x86 Instruction Set 4.2 Why Learn Assembly To understand something of the limitation of the HW we are running on Helpful to understand performance To utilize certain HW options that high-level languages

954 views • 81 slides
CS356 Unit 4 x86 Instruction Set 4.2 Why Learn Assembly Understand hardware limitations

CS356 Unit 4 x86 Instruction Set 4.2 Why Learn Assembly Understand hardware limitations

4.1 CS356 Unit 4 x86 Instruction Set 4.2 Why Learn Assembly Understand hardware limitations Understand performance Use HW options that high-level languages don't allow (e.g., operating systems, utilizing special HW features, etc.)

1.11k views • 94 slides
CS356 Unit 7 Data Layout & Intermediate Stack Frames 7.2 Structs CS:APP 3.9.1 Structs

CS356 Unit 7 Data Layout & Intermediate Stack Frames 7.2 Structs CS:APP 3.9.1 Structs

7.1 CS356 Unit 7 Data Layout & Intermediate Stack Frames 7.2 Structs CS:APP 3.9.1 Structs are just collections of heterogeneous data Each member is laid out in consecutive memory locations, with some padding inserted to ensure

604 views • 33 slides
Acknowledgement Part of the presentation is based on Prof. Douglas Schmidts lecture

Acknowledgement Part of the presentation is based on Prof. Douglas Schmidts lecture

Overview of Design Patterns CS356 Object-Oriented Design and Programming http://cs356.yusun.io October 24, 2014 Yu Sun, Ph.D. http://yusun.io yusun@csupomona.edu Acknowledgement Part of the presentation is based on Prof. Douglas

934 views • 66 slides
Recap: Refactoring Improve the structure of code No value gain at the moment, but

Recap: Refactoring Improve the structure of code No value gain at the moment, but

Anti-Patterns CS356 Object-Oriented Design and Programming http://cs356.yusun.io December 1, 2014 Yu Sun, Ph.D. http://yusun.io yusun@csupomona.edu Recap: Refactoring Improve the structure of code No value gain at the moment, but

817 views • 38 slides
CS356 Unit 9 Virtual Memory & Address Translation 9.2 Indirection Indirection means

CS356 Unit 9 Virtual Memory & Address Translation 9.2 Indirection Indirection means

9.1 CS356 Unit 9 Virtual Memory & Address Translation 9.2 Indirection Indirection means using one entity to refer to another Examples: A variable name vs. it's physical memory address Phone number vs. cell tower

844 views • 53 slides
CS356 Unit 15 Review 15.2 Final Jeopardy Binary Instruction Random Riddles Memory Processor

CS356 Unit 15 Review 15.2 Final Jeopardy Binary Instruction Random Riddles Memory Processor

15.1 CS356 Unit 15 Review 15.2 Final Jeopardy Binary Instruction Random Riddles Memory Processor Programming Brainteasers Inquiry Madness Predicaments Pickles 100 100 100 100 100 100 200 200 200 200 200 200 300 300 300

468 views • 36 slides
CS356 Unit 10 Memory Allocation & Heap Management 10.2 BASIC OS CONCEPTS & TERMINOLOGY

CS356 Unit 10 Memory Allocation & Heap Management 10.2 BASIC OS CONCEPTS & TERMINOLOGY

10.1 CS356 Unit 10 Memory Allocation & Heap Management 10.2 BASIC OS CONCEPTS & TERMINOLOGY 10.3 User vs. Kernel Mode Kernel mode is a special processor mode for executing trusted (OS) code Certain features/privileges (such

936 views • 38 slides
CS356 Unit 10 Memory Allocation & Heap Management BASIC OS CONCEPTS & TERMINOLOGY 10.3

CS356 Unit 10 Memory Allocation & Heap Management BASIC OS CONCEPTS & TERMINOLOGY 10.3

10.1 10.2 CS356 Unit 10 Memory Allocation & Heap Management BASIC OS CONCEPTS & TERMINOLOGY 10.3 10.4 User vs. Kernel Mode Processes Program/Process Kernel mode is a special mode of the processor for executing __________

147 views • 10 slides
CS356 Unit 12 Processor Hardware Organization Pipelining 12.2 From combinational to sequential

CS356 Unit 12 Processor Hardware Organization Pipelining 12.2 From combinational to sequential

12.1 CS356 Unit 12 Processor Hardware Organization Pipelining 12.2 From combinational to sequential logic BASIC HW 12.3 Logic Circuits Combinational Combinational Logic Logic Outputs Inputs Performs a specific function (Usually

709 views • 57 slides
CS356 Unit 5 x86 Control Flow 5.2 JUMP/BRANCHING OVERVIEW 5.3 Concept of Jumps/Branches

CS356 Unit 5 x86 Control Flow 5.2 JUMP/BRANCHING OVERVIEW 5.3 Concept of Jumps/Branches

5.1 CS356 Unit 5 x86 Control Flow 5.2 JUMP/BRANCHING OVERVIEW 5.3 Concept of Jumps/Branches Assembly is executed in sequential movq addq order by default ---- Jump instruction (aka "branches") ---- ---- cause execution

649 views • 32 slides
Goals Understand the terms and ideas used in a modern, high-performance processor CS356 Unit

Goals Understand the terms and ideas used in a modern, high-performance processor CS356 Unit

12b.1 12b.2 Goals Understand the terms and ideas used in a modern, high-performance processor CS356 Unit 12b Various systems have different kinds of processors and you should understand the pros and cons of each kind of processor

588 views • 16 slides

More recommend