5.5 asm/disasm

Author: SSharshunov

librz/arch/isa/luac/v54/disassembly_54.c

@@ -136,7 +136,7 @@ int lua54_disasm(RzAsmOp *op, const ut8 *buf, int len, LuaOpNameList opnames) {
 		break;
 
 	case OP_RETURN0: /*		return						*/
-		asm_string = rz_str_newf("return0");
+		asm_string = rz_str_dup(opnames[opcode]);
 		break;
 
 		/* iABx instructions */

librz/arch/isa/luac/v55/arch_55.h

@@ -110,8 +110,8 @@ typedef enum {
 	OP_BORK, /*	A B C	R[A] := R[B] | K[C]:integer			*/
 	OP_BXORK, /*	A B C	R[A] := R[B] ~ K[C]:integer			*/
 
-	OP_SHRI, /*	A B sC	R[A] := R[B] >> sC				*/
 	OP_SHLI, /*	A B sC	R[A] := sC << R[B]				*/
+	OP_SHRI, /*	A B sC	R[A] := R[B] >> sC				*/
 
 	OP_ADD, /*	A B C	R[A] := R[B] + R[C]				*/
 	OP_SUB, /*	A B C	R[A] := R[B] - R[C]				*/
@@ -176,6 +176,10 @@ typedef enum {
 
 	OP_VARARG, /*	A C	R[A], R[A+1], ..., R[A+C-2] = vararg		*/
 
+	OP_GETVARG, /* A B C    R[A] := R[B][R[C]], R[B] is vararg parameter    */
+
+	OP_ERRNNIL, /*   A Bx    raise error if R[A] ~= nil (K[Bx - 1] is global name)*/
+
 	OP_VARARGPREP, /*A	(adjust vararg parameters)			*/
 
 	OP_EXTRAARG /*	Ax	extra (larger) argument for previous opcode	*/

librz/arch/isa/luac/v55/assembly_55.c

@@ -9,23 +9,20 @@ static LuaInstruction encode_instruction(ut8 opcode, const char *arg_start, ut16
 	int args[4];
 	char buffer[64]; // buffer for digits
 	int cur_cnt = 0;
-	int delta_offset;
-
-	if (arg_num > sizeof(args)) {
-		return -1;
-	}
 
 	for (int i = 0; i < arg_num; ++i) {
-		delta_offset = lua_load_next_arg_start(arg_start, buffer);
-		if (delta_offset == 0) {
-			return -1;
-		}
-		if (lua_is_valid_num_value_string(buffer)) {
+		const int delta_offset = lua_load_next_arg_start(arg_start, buffer);
+		char *ptr = strchr(buffer, 'k');
+		if (ptr != NULL) {
+			*ptr = '\0';
 			args[i] = lua_convert_str_to_num(buffer);
-			arg_start += delta_offset;
-		} else {
-			return -1;
+			args[arg_num] = 1;
+			arg_num++;
+			flag |= PARAM_k;
+			break;
 		}
+		args[i] = lua_convert_str_to_num(buffer);
+		arg_start += delta_offset;
 	}
 
 	LUA_SET_OPCODE(instruction, opcode);
@@ -95,27 +92,20 @@ static LuaInstruction encode_instruction(ut8 opcode, const char *arg_start, ut16
 }
 
 bool lua55_assembly(const char *input, st32 input_size, LuaInstruction *instruction_p) {
-	const char *opcode_start; // point to the header
-	const char *opcode_end; // point to the first white space
-	int opcode_len;
-
-	const char *arg_start;
-
-	ut8 opcode;
-	LuaInstruction instruction = 0x00;
-
 	/* Find the opcode */
-	opcode_start = input;
-	opcode_end = strchr(input, ' ');
+	const char *opcode_start = input; ///< point to the header
+	const char *opcode_end = strchr(input, ' '); ///< point to the first white space
 	if (opcode_end == NULL) {
 		opcode_end = input + input_size;
 	}
 
-	opcode_len = opcode_end - opcode_start;
-	opcode = get_lua54_opcode_by_name(opcode_start, opcode_len);
+	const int opcode_len = opcode_end - opcode_start;
+	const ut8 opcode = get_lua55_opcode_by_name(opcode_start, opcode_len);
 
 	/* Find the arguments */
-	arg_start = rz_str_trim_head_ro(opcode_end);
+	const char *arg_start = rz_str_trim_head_ro(opcode_end);
+
+	LuaInstruction instruction = 0x00;
 
 	/* Encode opcode and args */
 	switch (opcode) {
@@ -152,14 +142,18 @@ bool lua55_assembly(const char *input, st32 input_size, LuaInstruction *instruct
 	// iABC k instruction
 	case OP_TAILCALL:
 	case OP_RETURN:
-	case OP_NEWTABLE:
-	case OP_SETLIST:
-	case OP_MMBINK:
 	case OP_SETTABUP:
 	case OP_SETTABLE:
 	case OP_SETI:
 	case OP_SETFIELD:
 	case OP_SELF:
+		instruction = encode_instruction(opcode, arg_start,
+			PARAM_A | PARAM_B | PARAM_C,
+			3);
+		break;
+	case OP_NEWTABLE:
+	case OP_SETLIST:
+	case OP_MMBINK:
 		instruction = encode_instruction(opcode, arg_start,
 			PARAM_A | PARAM_B | PARAM_C | PARAM_k,
 			4);
@@ -235,8 +229,8 @@ bool lua55_assembly(const char *input, st32 input_size, LuaInstruction *instruct
 	// A with k
 	case OP_TEST:
 		instruction = encode_instruction(opcode, arg_start,
-			PARAM_A | PARAM_k,
-			2);
+			PARAM_A,
+			1);
 		break;
 	// no arg
 	case OP_RETURN0:

librz/arch/isa/luac/v55/disassembly_55.c

@@ -101,15 +101,15 @@ int lua55_disasm(RzAsmOp *op, const ut8 *buf, int len, LuaOpNameList opnames) {
 	case OP_LE: /*	        A B k	if ((R[A] <= R[B]) ~= k) then pc++		*/
 	case OP_TESTSET: /*	A B k	if (not R[B] == k) then pc++ else R[A] := R[B]	*/
 	case OP_EQK: /*	        A B k	if ((R[A] == K[B]) ~= k) then pc++		*/
-		asm_string = luaop_new_str_2arg_ex(opnames[opcode], a, b, isk);
+		asm_string = luaop_new_str_2arg_ex_ki(opnames[opcode], a, b, isk);
 		break;
 		/* iABC - A & sB with k instructions */
 	case OP_EQI: /*	        A sB k	if ((R[A] == sB) ~= k) then pc++		*/
 	case OP_LTI: /*	        A sB k	if ((R[A] < sB) ~= k) then pc++			*/
 	case OP_LEI: /*	        A sB k	if ((R[A] <= sB) ~= k) then pc++		*/
 	case OP_GTI: /*	        A sB k	if ((R[A] > sB) ~= k) then pc++			*/
 	case OP_GEI: /*	        A sB k	if ((R[A] >= sB) ~= k) then pc++		*/
-		asm_string = luaop_new_str_2arg_ex(opnames[opcode], a, sb, isk);
+		asm_string = luaop_new_str_2arg_ex_ki(opnames[opcode], a, sb, isk);
 		break;
 
 		/* iABC - A & C instructions */
@@ -136,7 +136,7 @@ int lua55_disasm(RzAsmOp *op, const ut8 *buf, int len, LuaOpNameList opnames) {
 		break;
 
 	case OP_RETURN0: /*		return						*/
-		asm_string = rz_str_newf("RETURN0");
+		asm_string = rz_str_dup(opnames[opcode]);
 		break;
 
 		/* iABx instructions */

librz/arch/isa/luac/v55/opcode_55.c

@@ -47,8 +47,8 @@ LuaOpNameList get_lua55_opnames(void) {
 	list[OP_BANDK] = "bandk",
 	list[OP_BORK] = "bork",
 	list[OP_BXORK] = "bxork",
-	list[OP_SHRI] = "shri",
 	list[OP_SHLI] = "shli",
+	list[OP_SHRI] = "shri",
 	list[OP_ADD] = "add",
 	list[OP_SUB] = "sub",
 	list[OP_MUL] = "mul",
@@ -96,6 +96,8 @@ LuaOpNameList get_lua55_opnames(void) {
 	list[OP_SETLIST] = "setlist",
 	list[OP_CLOSURE] = "closure",
 	list[OP_VARARG] = "vararg",
+	list[OP_GETVARG] = "getvarg",
+	list[OP_ERRNNIL] = "errnnil",
 	list[OP_VARARGPREP] = "varargprep",
 	list[OP_EXTRAARG] = "extraarg",
 	list[LUA_NUM_OPCODES] = NULL;
@@ -207,6 +209,8 @@ ut8 get_lua55_opcode_by_name(const char *name, int limit) {
 	lua_strcase("closure") return OP_CLOSURE;
 
 	lua_strcase("vararg") return OP_VARARG;
+	lua_strcase("getvarg") return OP_GETVARG;
+	lua_strcase("errnnil") return OP_ERRNNIL;
 
 	lua_strcase("varargprep") return OP_VARARGPREP;
 

test/db/analysis/luac

@@ -22,8 +22,8 @@ EXPECT=<<EOF
 |     ,===< 0x00000055      jmp   5
 |     |`--> 0x00000059      gettabup 0 0 0
 |     | :   0x0000005d      addi  0 0 1
-|     | :   0x00000061      mmbini 0 1 6 0
-|     | :   0x00000065      settabup 0 0 0 0
+|     | :   0x00000061      mmbini 0 1 6
+|     | :   0x00000065      settabup 0 0 0
 |     `-`=< 0x00000069      jmp   -8
 EOF
 RUN

test/db/asm/luac_5.4_0

@@ -28,7 +28,6 @@ ad "setfield 0 2 1" 12000201
 ad "gettabup 0 0 3" 0b000003
 ad "closure 1 1" cf800000
 ad "setfield 0 4 1" 12000401
-ad "gettabup 0 0 3" 0b000003
 ad "self 0 0 2k" 14800002
 ad "loadi 2 1000" 0181f381
 ad "call 0 3 2" 44000302

test/db/asm/luac_5.5_0

@@ -0,0 +1,55 @@
+ad "settabup 0 0 1k" 0f800001
+ad "lti 0 50 0" 3e00b100
+ad "jmp 5" 38020080
+ad "addi 0 0 1" 15000080
+ad "mmbini 0 1 6" 2f008006
+ad "loadk 1 10" 83000500
+ad "jmp 4" b8010080
+ad "call 0 2 1" 44000201
+ad "test 0k" 42800000
+ad "gti 0 40 0" 4000a700
+ad "add 4 4 3" 22020403
+ad "eqi 0 0 0" 3d007f00
+ad "forprep 0 4" 4a000200
+ad "closure 0 1" 4f800000
+ad "newtable 2 2 0" 13010200
+ad "setfield 2 44 21k" 12812c15
+
+# official luac -l
+ad "varargprep 0" 53000000
+ad "newtable 0 0 0" 13000000
+ad "extraarg 0" 54000000
+ad "settabup 0 0 0" 0f000000
+ad "gettabup 0 0 0" 0b000000
+ad "gettabup 1 0 0" 8b000000
+ad "setfield 0 1 1" 12000101
+ad "closure 1 0" cf000000
+ad "setfield 0 2 1" 12000201
+ad "closure 1 1" cf800000
+ad "setfield 0 3 1" 12000301
+ad "self 0 0 2" 14000002
+ad "loadi 2 1000" 0181f381
+ad "call 0 3 2" 44000302
+ad "settabup 0 4 0" 0f000400
+ad "gettabup 0 0 4" 0b000004
+ad "self 0 0 3" 14000003
+ad "loadi 2 100" 01813180
+ad "call 0 3 1" 44000301
+ad "return 0 1 1" 46000101
+
+ad "newtable 2 0 0" 13010000
+ad "gettabup 3 0 0" 8b010000
+ad "move 4 2" 00020200
+ad "gettabup 5 0 1" 8b020001
+ad "call 3 3 1" c4010301
+ad "setfield 2 2 1" 12010201
+
+d "return1 2" 48010200 # wrong assembling
+#ad "return1 1" 48010200 # ??
+#ad "return0" c7010100 # ?? Not wrong in official
+d "return0" 47010100 # ?? Not wrong in official, but wrong assembling
+
+ad "getfield 2 0 0" 0e010000
+ad "sub 2 2 1" 23010201
+ad "mmbin 2 1 7" 2e010107
+ad "setfield 0 0 2" 12000002