arch/arm64_symbolization
ARM64 architecture-specific rules for symbolization
- split_load(ea:address, nextea:address, dest:address, type:symbol)
Compute an immediate load performed across two consecutive instructions
Uses:
arch.load_operation,arch.store_operation,instruction,instruction_get_dest_op,instruction_get_op,next,op_immediate,op_indirect_mapped,op_regdirect_contains_regUsed by:
symbol_minus_symbol,symbolic_operand_attribute,symbolic_operand_mips_candidateRecursive:
cmp_defines,first_block_in_byte_interval,overlapping_instruction,split_load_for_symbolization,relocation_adjustment,call_tls_get_addr,simple_data_access_pattern,reg_def_use.def_used,base_relative_operand,split_load_total_points,block,litpool_confidence,reg_has_got,value_reg_limit,stack_def_use.live_var_used,split_load_point,split_load_operand,flags_and_jump_pair,wis_schedule_iter,unresolved_interval,code_in_block,compare_and_jump_indirect_op_valid,__agg_subclause3,inferred_main_in_reg,reg_used_for,is_padding,resolved_reaches,compare_and_jump_indirect,__agg_subclause2,padding_block_candidate,reg_reg_arithmetic_operation_defs,def_used_for_address,impossible_block,plt_block,arm_jump_table_block_instruction,composite_data_access,possible_target_from,jump_table_candidate_refined,base_relative_operation,split_load,__agg_single3,reg_has_base_image,no_value_reg_limit,relative_address_start,wis_schedule,plt_entry,reg_def_use.used_in_block,adjusts_stack_in_block,possible_target,initialized_data_segment,reg_def_use.live_var_at_block_end,cmp_reg_to_reg,indefinite_litpool_ref,negative_block_heuristic,contains_implausible_instr_seq,indexed_pc_relative_load,next_block_in_byte_interval,code_in_block_candidate,symbolic_expr_from_relocation,unlikely_have_symbolic_immediate,incomplete_block,arm_jump_table_data_block_limit,inferred_main_dispatch,arch.simple_data_load,data_block_limit,block_total_points,invalid_jump_table_candidate,stack_def_use.live_var_def,reg_def_use.live_var_def,arm_jump_table_block_start,block_overlap,stack_base_reg_move,may_fallthrough,__agg_single2,block_heuristic,__agg_subclause9,block_implies_block,segment_target_range,stack_def_use.live_var_at_prior_used,cinf_ldr_add_pc,no_return_call_propagated,unresolved_block_overlap,jump_table_max,common_tail,unresolved_interval_order,tls_get_addr,block_points_proportional,likely_fallthrough,block_boundaries,jump_table_element_access,block_points,invalid,jump_table_target,reg_def_use.used,arm_jump_table_candidate,reg_def_use.live_var_at_prior_used,no_return_call,arm_jump_table_skip_first_entry,stack_def_use.defined_in_block,split_load_conflict,arm_jump_table_candidate_start,stack_def_use.live_var_at_block_end,reg_def_use.last_def_in_block,arm_jump_table_cmp_limit,data_in_code,candidate_block_is_not_padding,inter_procedural_edge,known_block,instruction_memory_access_size,overlap_with_litpool,block_limit,function_inference.function_entry_initial,init_symbol_minus_symbol_candidate_arm,const_value_reg_used,self_contained_segment,stack_def_use.last_def_in_block,must_fallthrough,straight_line_last_def,padding_block_limit,jump_table_candidate,no_return_call_refined,block_candidate_dependency_edge,split_load_candidate,stack_def_use.block_last_def,last_value_reg_limit,relative_address,no_return_block,litpool_ref,symbol_minus_symbol_litpool_access_pattern,block_last_instruction,gp_relative_operand,data_in_code_propagate,block_candidate_boundaries,basic_target,compare_and_jump_immediate,wis_memo,__agg_subclause6,nop_in_padding_candidate,reg_def_use.defined_in_block,__agg_single6,relocation_adjustment_total,candidate_block_is_padding,wis_prior,reg_def_use.live_var_used,__agg_subclause7,wis_has_prior,compare_and_jump_register,block_instruction_next,arm_jump_table_data_block,value_reg,contains_plausible_instr_seq,relative_jump_table_entry_candidate,adrp_used,stack_def_use.def_used,got_relative_operand,__agg_subclause10,value_reg_edge,arch.reg_relative_load,reg_def_use.flow_def,hi_load_prop,jump_table_start,branch_to_calculated_pc_rel_addr,tls_desc_call,discarded_block,stack_def_use.live_var_used_in_block,data_segment,value_reg_unsupported,block_next,discarded_split_load,indexed_pc_relative_load_relative,litpool_symbolic_operand,data_block_candidate,reg_def_use.return_block_end,code_in_block_candidate_refined,after_end,jump_table_signed,reg_def_use.block_last_def,base_relative_jump,unresolved_interval_best_block,straight_line_def_used,unresolved_block,data_access,correlated_live_reg,jump_table_prelude,litpool_boundaries,init_ldr_add_pc,arch.extend_load,stack_def_use.used_in_block,stack_def_use.ref_in_block,reg_def_use.ref_in_block,reg_def_use.return_val_used
- adrp_used(EA:address, Reg:register, UsedEA:address, Dest:address)
A reference to a page-aligned value loaded by an adr or adrp instruction.
EA: Address of the adr/adrp instruction Reg: The register that holds the used value UsedEA: Address where the value is used Dest: The destination address
We care primarily about adrp, but sometimes if the target is close enough, the assembler will substitute an adr to the page-aligned address instead.
Reg is not necessarily the register loaded by adrp! It may be the result of:
adrp x0, label mov x1, x0
- UsedEA:
# x1 is used
and Reg would be
x1Uses:
arch.adr_dest,instructionRecursive:
cmp_defines,first_block_in_byte_interval,overlapping_instruction,split_load_for_symbolization,relocation_adjustment,call_tls_get_addr,simple_data_access_pattern,reg_def_use.def_used,base_relative_operand,split_load_total_points,block,litpool_confidence,reg_has_got,value_reg_limit,stack_def_use.live_var_used,split_load_point,split_load_operand,flags_and_jump_pair,wis_schedule_iter,unresolved_interval,code_in_block,compare_and_jump_indirect_op_valid,__agg_subclause3,inferred_main_in_reg,reg_used_for,is_padding,resolved_reaches,compare_and_jump_indirect,__agg_subclause2,padding_block_candidate,reg_reg_arithmetic_operation_defs,def_used_for_address,impossible_block,plt_block,arm_jump_table_block_instruction,composite_data_access,possible_target_from,jump_table_candidate_refined,base_relative_operation,split_load,__agg_single3,reg_has_base_image,no_value_reg_limit,relative_address_start,wis_schedule,plt_entry,reg_def_use.used_in_block,adjusts_stack_in_block,possible_target,initialized_data_segment,reg_def_use.live_var_at_block_end,cmp_reg_to_reg,indefinite_litpool_ref,negative_block_heuristic,contains_implausible_instr_seq,indexed_pc_relative_load,next_block_in_byte_interval,code_in_block_candidate,symbolic_expr_from_relocation,unlikely_have_symbolic_immediate,incomplete_block,arm_jump_table_data_block_limit,inferred_main_dispatch,arch.simple_data_load,data_block_limit,block_total_points,invalid_jump_table_candidate,stack_def_use.live_var_def,reg_def_use.live_var_def,arm_jump_table_block_start,block_overlap,stack_base_reg_move,may_fallthrough,__agg_single2,block_heuristic,__agg_subclause9,block_implies_block,segment_target_range,stack_def_use.live_var_at_prior_used,cinf_ldr_add_pc,no_return_call_propagated,unresolved_block_overlap,jump_table_max,common_tail,unresolved_interval_order,tls_get_addr,block_points_proportional,likely_fallthrough,block_boundaries,jump_table_element_access,block_points,invalid,jump_table_target,reg_def_use.used,arm_jump_table_candidate,reg_def_use.live_var_at_prior_used,no_return_call,arm_jump_table_skip_first_entry,stack_def_use.defined_in_block,split_load_conflict,arm_jump_table_candidate_start,stack_def_use.live_var_at_block_end,reg_def_use.last_def_in_block,arm_jump_table_cmp_limit,data_in_code,candidate_block_is_not_padding,inter_procedural_edge,known_block,instruction_memory_access_size,overlap_with_litpool,block_limit,function_inference.function_entry_initial,init_symbol_minus_symbol_candidate_arm,const_value_reg_used,self_contained_segment,stack_def_use.last_def_in_block,must_fallthrough,straight_line_last_def,padding_block_limit,jump_table_candidate,no_return_call_refined,block_candidate_dependency_edge,split_load_candidate,stack_def_use.block_last_def,last_value_reg_limit,relative_address,no_return_block,litpool_ref,symbol_minus_symbol_litpool_access_pattern,block_last_instruction,gp_relative_operand,data_in_code_propagate,block_candidate_boundaries,basic_target,compare_and_jump_immediate,wis_memo,__agg_subclause6,nop_in_padding_candidate,reg_def_use.defined_in_block,__agg_single6,relocation_adjustment_total,candidate_block_is_padding,wis_prior,reg_def_use.live_var_used,__agg_subclause7,wis_has_prior,compare_and_jump_register,block_instruction_next,arm_jump_table_data_block,value_reg,contains_plausible_instr_seq,relative_jump_table_entry_candidate,adrp_used,stack_def_use.def_used,got_relative_operand,__agg_subclause10,value_reg_edge,arch.reg_relative_load,reg_def_use.flow_def,hi_load_prop,jump_table_start,branch_to_calculated_pc_rel_addr,tls_desc_call,discarded_block,stack_def_use.live_var_used_in_block,data_segment,value_reg_unsupported,block_next,discarded_split_load,indexed_pc_relative_load_relative,litpool_symbolic_operand,data_block_candidate,reg_def_use.return_block_end,code_in_block_candidate_refined,after_end,jump_table_signed,reg_def_use.block_last_def,base_relative_jump,unresolved_interval_best_block,straight_line_def_used,unresolved_block,data_access,correlated_live_reg,jump_table_prelude,litpool_boundaries,init_ldr_add_pc,arch.extend_load,stack_def_use.used_in_block,stack_def_use.ref_in_block,reg_def_use.ref_in_block,reg_def_use.return_val_used
- split_load_tail(EA:address, Offset:number, Reg:register, Type:symbol)
An instruction which could be the second half of a split load.
- split_load_for_symbolization(ea:address, nextea:address, dest:address, type:symbol)
This version of split_load uses def_used, so this should not be used for the code inference step due to cyclic negation issue. Instead, this is for the symbolization step.
Uses:
split_load_tailUsed by:
symbolic_operand_attributeRecursive:
cmp_defines,first_block_in_byte_interval,overlapping_instruction,split_load_for_symbolization,relocation_adjustment,call_tls_get_addr,simple_data_access_pattern,reg_def_use.def_used,base_relative_operand,split_load_total_points,block,litpool_confidence,reg_has_got,value_reg_limit,stack_def_use.live_var_used,split_load_point,split_load_operand,flags_and_jump_pair,wis_schedule_iter,unresolved_interval,code_in_block,compare_and_jump_indirect_op_valid,__agg_subclause3,inferred_main_in_reg,reg_used_for,is_padding,resolved_reaches,compare_and_jump_indirect,__agg_subclause2,padding_block_candidate,reg_reg_arithmetic_operation_defs,def_used_for_address,impossible_block,plt_block,arm_jump_table_block_instruction,composite_data_access,possible_target_from,jump_table_candidate_refined,base_relative_operation,split_load,__agg_single3,reg_has_base_image,no_value_reg_limit,relative_address_start,wis_schedule,plt_entry,reg_def_use.used_in_block,adjusts_stack_in_block,possible_target,initialized_data_segment,reg_def_use.live_var_at_block_end,cmp_reg_to_reg,indefinite_litpool_ref,negative_block_heuristic,contains_implausible_instr_seq,indexed_pc_relative_load,next_block_in_byte_interval,code_in_block_candidate,symbolic_expr_from_relocation,unlikely_have_symbolic_immediate,incomplete_block,arm_jump_table_data_block_limit,inferred_main_dispatch,arch.simple_data_load,data_block_limit,block_total_points,invalid_jump_table_candidate,stack_def_use.live_var_def,reg_def_use.live_var_def,arm_jump_table_block_start,block_overlap,stack_base_reg_move,may_fallthrough,__agg_single2,block_heuristic,__agg_subclause9,block_implies_block,segment_target_range,stack_def_use.live_var_at_prior_used,cinf_ldr_add_pc,no_return_call_propagated,unresolved_block_overlap,jump_table_max,common_tail,unresolved_interval_order,tls_get_addr,block_points_proportional,likely_fallthrough,block_boundaries,jump_table_element_access,block_points,invalid,jump_table_target,reg_def_use.used,arm_jump_table_candidate,reg_def_use.live_var_at_prior_used,no_return_call,arm_jump_table_skip_first_entry,stack_def_use.defined_in_block,split_load_conflict,arm_jump_table_candidate_start,stack_def_use.live_var_at_block_end,reg_def_use.last_def_in_block,arm_jump_table_cmp_limit,data_in_code,candidate_block_is_not_padding,inter_procedural_edge,known_block,instruction_memory_access_size,overlap_with_litpool,block_limit,function_inference.function_entry_initial,init_symbol_minus_symbol_candidate_arm,const_value_reg_used,self_contained_segment,stack_def_use.last_def_in_block,must_fallthrough,straight_line_last_def,padding_block_limit,jump_table_candidate,no_return_call_refined,block_candidate_dependency_edge,split_load_candidate,stack_def_use.block_last_def,last_value_reg_limit,relative_address,no_return_block,litpool_ref,symbol_minus_symbol_litpool_access_pattern,block_last_instruction,gp_relative_operand,data_in_code_propagate,block_candidate_boundaries,basic_target,compare_and_jump_immediate,wis_memo,__agg_subclause6,nop_in_padding_candidate,reg_def_use.defined_in_block,__agg_single6,relocation_adjustment_total,candidate_block_is_padding,wis_prior,reg_def_use.live_var_used,__agg_subclause7,wis_has_prior,compare_and_jump_register,block_instruction_next,arm_jump_table_data_block,value_reg,contains_plausible_instr_seq,relative_jump_table_entry_candidate,adrp_used,stack_def_use.def_used,got_relative_operand,__agg_subclause10,value_reg_edge,arch.reg_relative_load,reg_def_use.flow_def,hi_load_prop,jump_table_start,branch_to_calculated_pc_rel_addr,tls_desc_call,discarded_block,stack_def_use.live_var_used_in_block,data_segment,value_reg_unsupported,block_next,discarded_split_load,indexed_pc_relative_load_relative,litpool_symbolic_operand,data_block_candidate,reg_def_use.return_block_end,code_in_block_candidate_refined,after_end,jump_table_signed,reg_def_use.block_last_def,base_relative_jump,unresolved_interval_best_block,straight_line_def_used,unresolved_block,data_access,correlated_live_reg,jump_table_prelude,litpool_boundaries,init_ldr_add_pc,arch.extend_load,stack_def_use.used_in_block,stack_def_use.ref_in_block,reg_def_use.ref_in_block,reg_def_use.return_val_used
- lo_reloc_index(RelocType:symbol, OpIndex:unsigned)
OpIndex: operand index for the corresponding relocation