WIP [mips] Fixing PR for r5900: merged from dev, integrate MIPS version awareness, fix 3-op variants of MULT/U and MADD/U, WIP tweaking register size on R5900

Author: galenbwill

arch/mips/arch_mips.cpp

@@ -534,7 +534,7 @@ class MipsArchitecture: public Architecture
 				il.AddInstruction(il.If(GetConditionForInstruction(il, instr, GetAddressSize()), trueCode, falseCode));
 				il.MarkLabel(trueCode);
 				il.SetCurrentAddress(this, addr + instr.size);
-				GetLowLevelILForInstruction(this, addr + instr.size, il, secondInstr, GetAddressSize(), m_decomposeFlags);
+				GetLowLevelILForInstruction(this, addr + instr.size, il, secondInstr, GetAddressSize(), m_decomposeFlags, m_version);
 				for (size_t i = 0; i < instrInfo.branchCount; i++)
 				{
 					if (instrInfo.branchType[i] == TrueBranch)
@@ -560,7 +560,7 @@ class MipsArchitecture: public Architecture
 				nop = il.Nop();
 				il.AddInstruction(nop);
 
-				GetLowLevelILForInstruction(this, addr + instr.size, il, secondInstr, GetAddressSize(), m_decomposeFlags);
+				GetLowLevelILForInstruction(this, addr + instr.size, il, secondInstr, GetAddressSize(), m_decomposeFlags, m_version);
 
 				LowLevelILInstruction delayed;
 				uint32_t clobbered = BN_INVALID_REGISTER;
@@ -587,7 +587,7 @@ class MipsArchitecture: public Architecture
 				}
 				else
 				{
-					status = GetLowLevelILForInstruction(this, addr, il, instr, GetAddressSize(), m_decomposeFlags);
+					status = GetLowLevelILForInstruction(this, addr, il, instr, GetAddressSize(), m_decomposeFlags, m_version);
 				}
 
 				if (clobbered != BN_INVALID_REGISTER)
@@ -752,12 +752,12 @@ class MipsArchitecture: public Architecture
 				else
 					base->operation = is32bit ? MIPS_LW : MIPS_LD;
 
-				return GetLowLevelILForInstruction(this, addrToUse, il, *base, GetAddressSize(), m_decomposeFlags);
+				return GetLowLevelILForInstruction(this, addrToUse, il, *base, GetAddressSize(), m_decomposeFlags, m_version);
 			}
 		}
 
 		len = instr.size;
-		return GetLowLevelILForInstruction(this, addr, il, instr, GetAddressSize(), m_decomposeFlags);
+		return GetLowLevelILForInstruction(this, addr, il, instr, GetAddressSize(), m_decomposeFlags, m_version);
 	}
 
 	virtual bool GetInstructionInfo(const uint8_t* data, uint64_t addr, size_t maxLen, InstructionInfo& result) override
@@ -1570,7 +1570,12 @@ class MipsArchitecture: public Architecture
 			REG_DESAVE,
 		};
 
-		if ((m_decomposeFlags & DECOMPOSE_FLAGS_CAVIUM) != 0)
+		if (m_version == MIPS_R5900) {
+			// TODO: R5900 has 128-bit wide GPRs, $lo and $hi are 128-bit, and $lo1 and $hi1 are the upper 64 bits of $lo and $hi
+			uint32_t r5900_registers[] = { REG_LO1, REG_HI1 };
+			registers.insert(registers.end(), std::begin(r5900_registers), std::end(r5900_registers));
+		}
+		else if ((m_decomposeFlags & DECOMPOSE_FLAGS_CAVIUM) != 0)
 		{
 			uint32_t cavium_registers[] =
 			{
@@ -1888,7 +1893,11 @@ class MipsArchitecture: public Architecture
 			REG_DESAVE,
 		};
 
-		if ((m_decomposeFlags & DECOMPOSE_FLAGS_CAVIUM) != 0)
+		if (m_version == MIPS_R5900) {
+			uint32_t r5900_registers[] = { REG_LO1, REG_HI1 };
+			registers.insert(registers.end(), std::begin(r5900_registers), std::end(r5900_registers));
+		}
+		else if ((m_decomposeFlags & DECOMPOSE_FLAGS_CAVIUM) != 0)
 		{
 			uint32_t cavium_registers[] =
 			{
@@ -2098,6 +2107,18 @@ class MipsArchitecture: public Architecture
 	virtual BNRegisterInfo GetRegisterInfo(uint32_t reg) override
 	{
 		BNRegisterInfo result = {reg, 0, m_bits / 8, NoExtend};
+		if (m_version == MIPS_R5900) {
+			switch (reg) {
+			case REG_LO:
+			case REG_HI:
+			case REG_LO1:
+			case REG_HI1:
+				result.size = 64 / 8;
+			default:
+				if (REG_ZERO <= reg && reg <= REG_RA)
+					result.size = 128 / 8;
+			}
+		}
 		return result;
 	}
 

arch/mips/il.cpp

@@ -796,7 +796,7 @@ static void SignExtendHiLo(LowLevelILFunction& il, size_t registerSize)
 	}
 }
 
-bool GetLowLevelILForInstruction(Architecture* arch, uint64_t addr, LowLevelILFunction& il, Instruction& instr, size_t addrSize, uint32_t decomposeFlags)
+bool GetLowLevelILForInstruction(Architecture* arch, uint64_t addr, LowLevelILFunction& il, Instruction& instr, size_t addrSize, uint32_t decomposeFlags, MipsVersion version)
 {
 	LowLevelILLabel trueLabel, falseLabel, doneLabel, dirFlagSet, dirFlagClear, dirFlagDone;
 	InstructionOperand& op1 = instr.operands[0];
@@ -1179,15 +1179,61 @@ bool GetLowLevelILForInstruction(Architecture* arch, uint64_t addr, LowLevelILFu
 			SignExtendHiLo(il, registerSize);
 			break;
 		case MIPS_MULT:
-			il.AddInstruction(il.SetRegisterSplit(4, REG_HI, REG_LO, il.MultDoublePrecSigned(4, ReadILOperand(il, instr, 1, registerSize), ReadILOperand(il, instr, 2, registerSize))));
-			SignExtendHiLo(il, registerSize);
-			if (rd != REG_ZERO)
-				// mflo
-				il.AddInstruction(SetRegisterOrNop(il, registerSize, registerSize, rd, il.Register(registerSize, REG_LO)));
+			if (version == MIPS_R5900 && instr.numOperands == 3) {
+				auto temp = LLIL_TEMP(0);
+				il.AddInstruction(il.SetRegister(8, temp,
+				il.MultDoublePrecSigned(4,
+						ReadILOperand(il, instr, 2, registerSize),
+						ReadILOperand(il, instr, 3, registerSize))));
+				il.AddInstruction(il.SetRegister(registerSize, REG_HI, il.SignExtend(8, il.ArithShiftRight(8, il.Register(8, temp), il.Const(8, 32)))));
+				il.AddInstruction(il.SetRegister(registerSize, REG_LO, il.SignExtend(8, il.LowPart(4, il.Register(8, temp)))));
+				// il.AddInstruction(il.SetRegisterSplit(4, REG_HI, REG_LO,
+				// 	il.MultDoublePrecSigned(8,
+				// 		ReadILOperand(il, instr, 2, registerSize),
+				// 		ReadILOperand(il, instr, 3, registerSize))));
+				SignExtendHiLo(il, registerSize);
+				auto rd = op1.reg;
+				if (rd != REG_ZERO)
+					il.AddInstruction(SetRegisterOrNop(il, registerSize, registerSize, rd, il.Register(registerSize, REG_LO)));
+			}
+			// if (version == MIPS_R5900 && instr.numOperands == 3) {
+			// 	il.AddInstruction(il.SetRegisterSplit(4, REG_HI, REG_LO,
+			// 		il.MultDoublePrecSigned(8,
+			// 			ReadILOperand(il, instr, 2, registerSize),
+			// 			ReadILOperand(il, instr, 3, registerSize))));
+			// 	SignExtendHiLo(il, registerSize);
+			// 	auto rd = op1.reg;
+			// 	if (rd != REG_ZERO)
+			// 		il.AddInstruction(SetRegisterOrNop(il, registerSize, registerSize, rd, il.Register(registerSize, REG_LO)));
+			// }
+			else
+			{
+				il.AddInstruction(il.SetRegisterSplit(4, REG_HI, REG_LO,
+					il.MultDoublePrecSigned(4,
+						ReadILOperand(il, instr, 1, registerSize),
+						ReadILOperand(il, instr, 2, registerSize))));
+				SignExtendHiLo(il, registerSize);
+			}
 			break;
 		case MIPS_MULTU:
-			il.AddInstruction(il.SetRegisterSplit(4, REG_HI, REG_LO, il.MultDoublePrecUnsigned(4, ReadILOperand(il, instr, 1, registerSize), ReadILOperand(il, instr, 2, registerSize))));
-			SignExtendHiLo(il, registerSize);
+			if (version == MIPS_R5900 && instr.numOperands == 3) {
+				il.AddInstruction(il.SetRegisterSplit(4, REG_HI, REG_LO,
+					il.MultDoublePrecUnsigned(4,
+						ReadILOperand(il, instr, 2, registerSize),
+						ReadILOperand(il, instr, 3, registerSize))));
+				SignExtendHiLo(il, registerSize);
+				auto rd = op1.reg;
+				if (rd != REG_ZERO)
+					il.AddInstruction(SetRegisterOrNop(il, registerSize, registerSize, rd, il.Register(registerSize, REG_LO)));
+			}
+			else
+			{
+				il.AddInstruction(il.SetRegisterSplit(4, REG_HI, REG_LO,
+					il.MultDoublePrecUnsigned(4,
+						ReadILOperand(il, instr, 1, registerSize),
+						ReadILOperand(il, instr, 2, registerSize))));
+				SignExtendHiLo(il, registerSize);
+			}
 			break;
 		case MIPS_DMULT:
 			il.AddInstruction(il.SetRegisterSplit(8, REG_HI, REG_LO, il.MultDoublePrecSigned(8, ReadILOperand(il, instr, 1, registerSize), ReadILOperand(il, instr, 2, registerSize))));

arch/mips/il.h

@@ -88,6 +88,7 @@ bool GetLowLevelILForInstruction(
 		BinaryNinja::LowLevelILFunction& il,
 		mips::Instruction& instr,
 		size_t addrSize,
-		uint32_t decomposeFlags);
+		uint32_t decomposeFlags,
+		mips::MipsVersion version);
 
 BinaryNinja::ExprId GetConditionForInstruction(BinaryNinja::LowLevelILFunction& il, mips::Instruction& instr, size_t registerSize);

arch/mips/mips/mips.c

@@ -22,6 +22,7 @@ using namespace mips;
 	do { \
 	instruction->operands[0].operandClass = A;\
 	instruction->operands[0].VAR(A) = a;\
+	instruction->numOperands = 1;\
 	} while (0);
 
 #define INS_2(A,a,B,b)\
@@ -30,6 +31,7 @@ using namespace mips;
 	instruction->operands[0].VAR(A) = a;\
 	instruction->operands[1].operandClass = B;\
 	instruction->operands[1].VAR(B) = b;\
+	instruction->numOperands = 2;\
 	} while (0);
 
 #define INS_3(A,a,B,b,C,c)\
@@ -40,6 +42,7 @@ using namespace mips;
 	instruction->operands[1].VAR(B) = b;\
 	instruction->operands[2].operandClass = C;\
 	instruction->operands[2].VAR(C) = c;\
+	instruction->numOperands = 3;\
 	} while (0);
 
 #define INS_4(A,a,B,b,C,c,D,d)\
@@ -52,6 +55,7 @@ using namespace mips;
 	instruction->operands[2].VAR(C) = c;\
 	instruction->operands[3].operandClass = D;\
 	instruction->operands[3].VAR(D) = d;\
+	instruction->numOperands = 4;\
 	} while (0);
 
 
@@ -126,7 +130,7 @@ static Operation mips_base_table[7][8][8] = {
 		{MIPS_INVALID, MIPS_INVALID, MIPS_J,       MIPS_JAL,      MIPS_BEQ,      MIPS_BNE,     MIPS_BLEZ,   MIPS_BGTZ},
 		{MIPS_ADDI,    MIPS_ADDIU,   MIPS_SLTI,    MIPS_SLTIU,    MIPS_ANDI,     MIPS_ORI,     MIPS_XORI,   MIPS_LUI},
 		{MIPS_COP0,    MIPS_COP1,    MIPS_COP2,    MIPS_INVALID,  MIPS_BEQL,     MIPS_BNEL,    MIPS_BLEZL,  MIPS_BGTZL},
-		{MIPS_DADDI,   MIPS_DADDIU,  MIPS_LDL,	   MIPS_LDR,  	  MIPS_INVALID,  MIPS_INVALID, MIPS_LQ,     MIPS_SQ},
+		{MIPS_DADDI,   MIPS_DADDIU,  MIPS_LDL,	  MIPS_LDR,  	 MIPS_INVALID,  MIPS_INVALID, MIPS_LQ,     MIPS_SQ},
 		{MIPS_LB,      MIPS_LH,      MIPS_LWL,     MIPS_LW,       MIPS_LBU,      MIPS_LHU,     MIPS_LWR,    MIPS_LWU},
 		{MIPS_SB,      MIPS_SH,      MIPS_SWL,     MIPS_SW,       MIPS_SDL,      MIPS_SDR,     MIPS_SWR,    MIPS_CACHE},
 		{MIPS_INVALID, MIPS_LWC1,    MIPS_INVALID, MIPS_PREF,     MIPS_INVALID,  MIPS_INVALID, MIPS_LDC2,   MIPS_LD},
@@ -1509,7 +1513,10 @@ static const char * const RegisterStrings[] = {
 	"CVMX_HSH_STARTSHA512",
 	"CVMX_GFM_XORMUL1",
 
-	"sa"
+	"sa",
+
+	"$lo1",
+	"$hi1",
 };
 
 static const char * const FlagStrings[] = {
@@ -1657,6 +1664,8 @@ uint32_t mips_decompose_instruction(
 				instruction->operation = mips32_special3_table[ins.decode.func_hi][ins.decode.func_lo];
 			else if (version == MIPS_64)
 				instruction->operation = mips64_special3_table[ins.decode.func_hi][ins.decode.func_lo];
+			else if (version == MIPS_R5900)
+				instruction->operation = mips_base_table[version-1][ins.decode.op_hi][ins.decode.op_lo];
 			break;
 		default:
 			if ((flags & DECOMPOSE_FLAGS_CAVIUM) == 0)
@@ -2546,6 +2555,8 @@ uint32_t mips_decompose_instruction(
 			instruction->operands[0].reg = ins.i.rt;
 			instruction->operands[1].reg = ins.i.rs;
 			instruction->operands[1].immediate = ins.i.immediate;
+	        if (instruction->operation == MIPS_SQ)
+				instruction->operands[1].immediate = MIPS_SQ;
 			break;
 		case MIPS_PREF:
 		case MIPS_PREFX:
@@ -2590,7 +2601,9 @@ uint32_t mips_decompose_instruction(
 			instruction->operands[0].operandClass = IMM;
 			instruction->operands[1].operandClass = MEM_IMM;
 			instruction->operands[0].reg = version != MIPS_R5900 ? ins.i.rt : (FPREG_F0 + ins.f.ft);
-			instruction->operands[1].reg = version != MIPS_R5900 ? ins.i.rs : (FPREG_F0 + ins.f.fr);
+			// This special case for the R5900 seems wrong: it's trying to use a FP register for the base register
+			// instruction->operands[1].reg = version != MIPS_R5900 ? ins.i.rs : (FPREG_F0 + ins.f.fr);
+			instruction->operands[1].reg = ins.i.rs;
 			instruction->operands[1].immediate = ins.i.immediate;
 			break;
 		//3 operand instructions

arch/mips/mips/mips.h

@@ -1163,6 +1163,10 @@ namespace mips
 
 		R5900_SA,
 
+		// R5900 Special registers (upper 64 bits of $lo and $hi)
+		REG_LO1,
+		REG_HI1,
+
 		// Last valid register
 		END_REG
 	};
@@ -1335,6 +1339,7 @@ namespace mips
 		Operation operation;
 		InstructionOperand operands[MAX_OPERANDS];
 		uint32_t size;
+		uint32_t numOperands;
 	};
 
 #ifndef __cplusplus

arch/mips/mips/test.c

@@ -78,6 +78,8 @@ int main(int ac, char **av)
 			version = MIPS_3;
 		else if (!strcmp("-mips4", av[1]))
 			version = MIPS_4;
+		else if (!strcmp("-r5900", av[1]))
+			version = MIPS_R5900;
 		else if (!strcmp("-cavium", av[1]))
 		{
 			version = MIPS_64;