1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
|
/* File: athread.a */
/* Author: John van Groningen */
/* Machine: amd64 */
.intel_syntax noprefix
.text
.globl _pthread_setspecific
.globl _pthread_getspecific
.globl _clean_new_thread
_clean_new_thread:
push rbx
push rbp
push r12
push r13
push r14
push r15
sub rsp,24
mov qword ptr 8[rsp],rdi
mov rdi,768
att_call _malloc
mov rbx,rax
mov rdi,qword ptr _tlsp_tls_index[rip]
mov rsi,rax
att_call _pthread_setspecific
mov r9,rbx
mov rdi,qword ptr 8[rsp]
mov rbx,qword ptr 8[rdi]
test rbx,rbx
cmove rbx,qword ptr (main_thread_local_storage+heap_size_offset)[rip]
mov qword ptr heap_size_offset[r9],rbx
mov rbx,qword ptr 16[rdi]
test rbx,rbx
cmove rbx,qword ptr (main_thread_local_storage+a_stack_size_offset)[rip]
mov qword ptr a_stack_size_offset[r9],rbx
call init_thread
mov qword ptr saved_heap_p_offset[r9],rdi
mov qword ptr saved_r15_offset[r9],r15
mov qword ptr saved_a_stack_p_offset[r9],rsi
mov qword ptr halt_sp_offset[r9],rsp
mov rdi,qword ptr 8[rsp]
call qword ptr [rdi]
mov rdi,qword ptr _tlsp_tls_index[rip]
att_call _pthread_getspecific
mov r9,rax
add rsp,24
jmp exit_thread
init_thread:
lea rax,128[rsp]
sub rsp,32+8
mov rax,qword ptr heap_size_offset[r9]
sub rax,7
xor rdx,rdx
mov rbx,65
div rbx
mov qword ptr heap_size_65_offset[r9],rax
mov rax,qword ptr heap_size_offset[r9]
sub rax,7
xor rdx,rdx
mov rbx,257
div rbx
mov heap_size_257_offset[r9],rax
add rax,7
and rax,-8
mov qword ptr heap_copied_vector_size_offset[r9],rax
mov qword ptr heap_end_after_copy_gc_offset[r9],0
mov rax,qword ptr heap_size_offset[r9]
add rax,7
and rax,-8
mov qword ptr heap_size_offset[r9],rax
add rax,7
mov rbp,rsp
and rsp,-16
mov rbx,r9
.if LINUX
mov rdi,rax
att_call _malloc
.else
mov rcx,rax
call allocate_memory
.endif
mov rsp,rbp
mov r9,rbx
test rax,rax
je init_thread_no_memory_2
mov heap_mbp_offset[r9],rax
lea rdi,7[rax]
and rdi,-8
mov heap_p_offset[r9],rdi
mov rbp,rsp
and rsp,-16
mov rbx,r9
.if LINUX
mov r14,rdi
mov rdi,qword ptr a_stack_size_offset[r9]
add rdi,7
att_call _malloc
mov rdi,r14
.else
mov rcx,qword ptr a_stack_size_offset[r9]
add rcx,7
.if 0
call allocate_memory_with_guard_page_at_end
.else
call allocate_memory
.endif
.endif
mov rsp,rbp
mov r9,rbx
test rax,rax
je init_thread_no_memory_3
mov stack_mbp_offset[r9],rax
add rax,qword ptr a_stack_size_offset[r9]
add rax,7+4095
and rax,-4096
/* mov qword ptr a_stack_guard_page[rip],rax */
sub rax,qword ptr a_stack_size_offset[r9]
add rax,7
and rax,-8
mov rsi,rax
mov stack_p_offset[r9],rax
/* lea rcx,(caf_list+8) */
/* mov qword ptr caf_listp,rcx */
/* lea rcx,__Nil-8 */
/* mov qword ptr finalizer_list,rcx */
/* mov qword ptr free_finalizer_list,rcx */
mov heap_p1_offset[r9],rdi
mov rbp,qword ptr heap_size_257_offset[r9]
shl rbp,4
lea rax,[rdi+rbp*8]
mov heap_copied_vector_offset[r9],rax
add rax,heap_copied_vector_size_offset[r9]
mov heap_p2_offset[r9],rax
mov byte ptr garbage_collect_flag_offset[r9],0
test byte ptr _flags[rip],64
je init_thread_no_mark1
mov rax,qword ptr heap_size_65_offset[r9]
mov qword ptr heap_vector_offset[r9],rdi
add rdi,rax
add rdi,7
and rdi,-8
mov qword ptr heap_p3_offset[r9],rdi
lea rbp,[rax*8]
mov byte ptr garbage_collect_flag_offset [r9],-1
init_thread_no_mark1:
mov rax,qword ptr heap_size_offset[r9]
mov rbx,4000
test byte ptr _flags[rip],64
jne init_thread_no_mark9
add rbx,rbx
init_thread_no_mark9:
cmp rax,rbx
jle init_thread_too_large_or_too_small
shr rax,3
cmp rax,rbp
att_jge init_thread_too_large_or_too_small
mov rbp,rax
init_thread_too_large_or_too_small:
lea rax,[rdi+rbp*8]
mov heap_end_after_gc_offset[r9],rax
test byte ptr _flags[rip],64
je init_thread_no_mark2
mov qword ptr bit_vector_size_offset[r9],rbp
init_thread_no_mark2:
mov qword ptr bit_counter_offset[r9],0
mov qword ptr zero_bits_before_mark_offset[r9],0
mov r15,rbp
add rsp,32+8
xor rax,rax
ret
init_thread_no_memory_2:
mov rax,1
ret
init_thread_no_memory_3:
mov rbp,rsp
and rsp,-16
mov rbx,r9
.if LINUX
mov rdi,heap_mbp_offset[r9]
att_call _free
.else
mov rcx,heap_mbp_offset[r9]
call free_memory
.endif
mov rsp,rbp
mov r9,rbx
add rsp,32
mov rax,1
ret
exit_thread:
att_call add_execute_time
mov rbp,rsp
and rsp,-16
mov rbx,r9
.if LINUX
mov rdi,stack_mbp_offset[r9]
att_call _free
mov r9,rbx
mov rdi,heap_mbp_offset[r9]
att_call _free
mov rdi,rbx
att_call _free
.else
mov rcx,stack_mbp_offset[r9]
sub rsp,32
call free_memory
mov r9,rbx
mov rcx,heap_mbp_offset[r9]
call free_memory
call GetProcessHeap
mov rcx,rax
xor rdx,rdx
mov r8,rbx
call HeapFree
add rsp,32
.endif
mov rsp,rbp
pop r15
pop r14
pop r13
pop r12
pop rbp
pop rbx
xor rax,rax
ret
/* bit_counter_offset = 0 ? */
/* zero_bits_before_mark_offset = 1 =0 ? */
/* a_stack_guard_page */
/* caf_list */
/* caf_listp */
/* finalizer_list */
/* free_finalizer_list */
/* initial_heap_size */
|
