CS13 April Lectures

04/02/97

Numbering Systems

3 systems we will use in this class:

Decimal
Binary
Hexidecimal

There is a difference between a numbers representation and the amount that it represents. Ex: 1010 = 10 in binary, 1,010 in decimal. 10₁₆ = 16 in decimal, not 10.

Positional Numbering System

Examples:

123₁₀ = 1 * 10² + 2 * 10¹ + 3 * 10⁰ = 100 + 20 + 3 = 123

1010₂ = 1 * 2³ + 0 * 2² + 1 * 2¹ + 0 * 2⁰ = 8 + 0 + 2 + 0 = 10

Conventions for specifying a number's base:

Suffix Representation
1010 (no suffix)	decimal
1010d or 1010t	decimal
1010b	binary
1010h	hexidecimal
Subscript Representation
N_B	The Number N in Base B

Problem with binary representation: Have to write a lot of digits to represent integers. Ex: 101010111011111 ~= 30,000

Solution: It is easy to convert between binary and hexidecimal representations. Memorize the following chart:

1111	F	0111	7
1110	E	0110	6
1101	D	0101	5
1100	C	0100	4
1011	B	0011	3
1010	A	0010	2
1001	9	0001	1
1000	8	0000	0

Now you can quite easily convert from binary to hexidecimal numbers:

1010 1011 1011 1111 Divide the number into 4 bit nibbles

A B B F Conver each nibble into hexidecimal according to the chart

Conventions to Follow When Writing Decimal Numbers:

If we were to write 10256781056, it would be difficult to look at the number and right away tell if it were 100 million, 1 billion, 10 billion, etc. However, if we separate the number into triples with commas, as in 10,256,781,056, it is much easier to read and tell that the number is 10 billion... Likewise, when writing binary numbers, separate the digits into 4-bit nibbles, ex: 10111011 = 1011 1011. This way is much easier to read (as well as convert quickly to hexidecimal).

Unsigned Integers

With n bits, we can represent 2ⁿ different values. As a convention, those values will be all integers on the range from 0 -> 2ⁿ - 1. Some common examples are:

2⁸	256
2¹⁶	65,536
2³²	~4 billion

Bit Identification

Bit Number	76543210
	10110111

Bit number 7 is the H.O. (High Order) bit, also called the most significant bit (MSB). Bit number 0 is the L.O. (Low Order) bit, also called the least significant bit (LSB). Likewise, a word can be divided in the H.O. and L.O. bytes (bits 15-8, and 7-0, respectively). It also follows that a dword can be divided into H.O. and L.O. words (bits 31-16, and 15-0, respectively).

04/04/97

Number representation systems

One's compliment integer representation: The H.O. Bit denotes the sign (+/-) of the integer. If it is set (1), then the number is negative. If it is clear (0), then it is positive. This system is very intuitive and makes it simple to convert between positive and negative numbers. However, there are two representations of zero (1000 0000 and 0000 0000). This means that computers using the one's compliment representation must have hardware to resolve the two different versions of zero, making them more complex and costly.

Two's compliment integer representation: Suppose we have a positive number and we want to negate it. Here are the steps to do this:
- Invert all of the bits
- Add one (ignoring any overflow that occurs)
- The Two's compliment system applies only to fixed length values.
Here are some examples on how to use the two's compliment system:

0100 0000 Start off with 127

1011 1111 Negate all of the digits

1100 0000 Add 1, this is the result (-127)

Now, add these two values (127 and -127) together, we should get zero:

0100 0000 Start off with 127

1100 0000 Add -127

0000 0000 Ignoring the overflow, the answer is zero.

Now, suppose we want to negate zero:

0000 0000 Start off with 127

1111 1111 Negate all of the digits

0000 0000 Add 1 (ignoring the overflow), the result is zero

As you can see, there is only one representation of zero (0000 0000). This is the main reason that two's compliment system is the system used most today. However, because there is only one zero, there will be one more negative value than positive. For 16-bit numbers, the range is from -32,768 - 32,767.
Operations
- Boolean Operations:
  - Diatic operations
    - AND, OR, XOR
  - Monatic operations
    - NOT
  Truth tables for the boolean operations
- Bitwise operations: Perform the operation on each pair of bits. Example:
  
  Binary Hex
  
  X 1010 1110 AE
  
  Y 1111 0101 F5
  
  X AND Y 1010 0100 A4
  
  X OR Y 1111 1111 FF
  
  X XOR Y 0101 1011 5B
  
  Interesting properties of bitwise operators:
  - X AND Y -> set X=0, then the result is always zero. Set X=1, result is always Y. You can use this property for "Masking operations" . Example: If you want to set bit 3 to zero, then bitwise AND the number with 1111 0111, and all of the other bits will stay what they are, except for bit 3 that will be set to zero. Likewise, if you want to set all of the bits in a number to zero except bit 3, then bitwise AND it with 0000 1000.
  - X OR Y -> The same masking techniques can be used with OR to force particular bits to 1.
  - X XOR Y -> Use XOR as a mask to selectively invert bits.
  - There are 16 boolean operations (NAND, NOR, etc.)
    - You can represent any one of these 16 operations with just an AND and a NOT, i.e. a NAND.

04/07/97

Shifts and Rotates

Shifts
- Left: Move all bits to the left one space. The H.O. bit is lost (actually stored in the flags) and a zero (0) is stored in the L.O. bit.
- Right: Same as left, except the L.O. bit is lost and a zero is shifted into the H.O. bit.
- Interesting points about shifts: A Shift-left (SHL) is the equivalent of multiplication by 2. A Shift-right (SHR) is the same as division by 2. In general, shifting to the left i times is the same as multiplying the original value by 2 ⁱ times. Using these operations instead of DIV & MUL is much faster! However, it should be noted that these shifts only work for unsigned values. Here's an example:
  
  1000 0000 -128
  
  0100 0000 SHR by one digit, the result is +64
  
  In order to use shifts on signed values, you must use an arithmetic shift.
- Arithmetic Shifts: Same as regular shifts, except in Shift-right, the value of the L.O. bit is still lost, but the value of the H.O. bit is copied back into the H.O. bit. In C++, the shift operator (>>) performs an arithmetic shift.
Rotates
- Left: all of the bits are shifted to the left one bit, except instead of shifting in a zero and losing the H.O. bit, the H.O. bit is shifted into the L.O. bit.
- Right: all bits shifted right, and the L.O. bit is shifted into the H.O. bit.

What can all of this be used for?

These can be combined with masks to manipulate values as needed. Here's an example: Suppose that you are designing software to manipulate a hardware device where you need to read off four bits from an eight bit value, where the bits you want to read are in the pattern B = x1x2x0x3, where the x's are arbitrary values and the numbers are the bit positions that you want to read. You want to store those bit positions in a value A = xxxx3201. How will you do this?

((B SHL 3) AND 1000b) OR	Shift the 3 bit into the third value and mask off all the other bits
((B SHR 2) AND 101b) OR	Shift the value right 2 so that the 2 and 0 bits are in the proper place, then mask off all the other values
((B ROL 3) AND 10b)	Now shift the 1 bit into the proper place and mask it

More places where you may want to use bit manipulation:
- ASCII character set: 'A' - 'Z' and 'a' - 'z' differ only by bit number 5. Therefore, to convert between upper and lower case, just flip bit number 5. '0' - '9' = 30h - 39h. To convert from ASCII to decimal digits, just subtract 30h. 'A' - 'Z' = 41h - 5Ah. Subtract 40h, and you get 1 - 26.

Memory

Overview of Van Neuman Architecture
Memory: Basically can be viewed as an array, where the index into the array is the memory address. Each byte in memory has a unique address associated with it. A pointer into the array called the IP (Instruction Pointer) contains the address of the next instruction to execute. By manipulating IP, you can instruct the computer on whether to treat data in memeory as data or as an instruction. This feature allows a programmer to write "Self-Modifying Code", by changing the value of some memory and pointing the IP at it. However, this code is often impossible to debug and is in general a bad idea.

04/09/97

Computer architecture continued...

Bus: a collection of wires travelling between CPU, I/O devices, and memory. Address bus- lines that allow specifying adresses in memory (32 lines on Pentium, allows 2³² ~= 4 billion different memory locations can be specified. This is equal to about 4 gigabytes of memory). Data bus has 16 lines.

Registers: There are a limited amount of registers. They can only hold data (instructions can not be executed out of registers). Each register has a name and size associated with it. On Pentium, there are 8, 16, and 32 bit register sets.

Register Type	Size	Name
General Purpose Registers	8 bit	AH, AL, BH, BL, CH, CL, DH, DL
	16 bit	AX, BX, CX, DX, SI, DI, BP, SP
	32 bit	EAX, EBX, ECX, EDX, ESI, EDI, EBP, ESP
Special Purpose Registers	16 bit	IP, FLAGS
	32 bit	EIP, EFLAGS
Segment Registers	16 bit	CS, DS, ES, SS, FS, GS

Some points to note about the registers:

The 16-bit general purpose registers (AX, BX, CX, DX) overlay their 8-bit counterparts (AH, AL, BH, BL, CH, CL, DH, DL). Therefore, if you modify AH, you are also modifying AX. Similarly, if you modify AX, for are also modifying both AH and AL.
The same principle applies to the 32-bit registers (EAX, EBX, ECX, EDX, ESI, EDI, EBP, ESP) that all overlay their 16-bit counterparts (AX, BX, CX, DX, SI, DI, BP, SP).
The FLAGS register is really a collection of single bit values, or flags. Some of the important one's we'll use are carry, sign, overflow, zero, and direction. These flags are also known as condition codes.
The H.O. word of the EFLAGS register is protected. Usually only the operating system can access the H.O. 16 bits of the EFLAGS register.
FS and GS appear only on the 386 and higher.
You cannot use the segment registers, IP, or FLAGS with instructions that call for general purpose registers.

How do we interface registers with memory? Put address you want on address bus, data from that address is returned on the data bus. If you are accessing more that 8 bits, the lowest address is returned into the L.O. byte, and the next address goes into the H.O. byte. Here's an example:
Suppose you have the following data in memory:
1000: 10 02 45 23
What is the value of the word at memory address 1000. Answer is 0210h. This is because the value at location 1000 (10) goes into the L.O. byte, and the value at location 1001 (02) goes into the H.O. byte. This method of memory organization is known as Little Endian format.

There is also a Big Endian format where the H.O. byte is the first byte stored in memory. However, most machines (including Intel) use Little Endian format.
TO convert between Little and Big Endian, rotate the 32 bit value 16 bits, or use the special instructions provided on 386 and higher (BSWAP).

Memory Address consist of two components, the segment and the offset. The format for specifying the memory location is seg:offset. For more information on the memory subsystem, see Art of ASM chapter 3

04/11/97

Quick disucssion on memory and CPU clock speed and relation to overall system performance:

Basically, the CPU can only function as quickly as the memory does. Most of today's memory operates at ~ 15 MHz. Regardless of how fast the processor is operating (25 MHz 386, or a 200 MHz Pentium), it can really only operate as fast as the memory, because a majority of those cycles will be wasted on wait states until the memory returns the required data. The example given to explain this phenomenon is that of a quarter-mile drag race between a Volkswagon (the 386) and a Ferrari (the Pentium), where there is a 25 mile per hour speed limit (and neither driver breaks the law). The Ferrari will accelerate to 25 much faster, but in the end, will only win by the difference in the time it took to get up to 25 MPH. This small gain in speed does not justify the price between the Ferrari and the Volkswagon (or the 386 and the Pentium!)
However, the limitation of the memory can be overcome by inserting a cache, an extremely fast memory that will provide the required data in 1 clock cycle, so that no wait states need to be inserted. The drag race model is now changed to represent a race where there is no speed limit, but the race can only be completed in a certain amount of time. This way, the Ferrari (Pentium) can drive around in circles at 200 MPH all he wants, but will still get to the finish line at the same time as the Volkswagon. This is how a Pentium goes much faster than a 386, but is still limited by the speed (or lack thereof) of the memory.
The cache takes advantage of the principle of Locality of Reference to feed data into the cache that has a good chance of being needed. There are two types:
- Temporal Locality: Referenced data has a good chance of being needed again soon (due to loops in programs).
- Spacial Locality: For some data referenced, other data that is close to that data in memory (either before or after) is likely to be accessed soon (due to sequential execution of instructions in programs).

Segments continued...
Segmented Addresses - Take the format seg:offset, where seg is 16 bits, allowing up to 65,535 segments, and offset is:

16 bits on the 8086 - 80286 : Allows 64K segments
32 bits on the 80386 and higher : Allows 4 GB segments

We will limit ourselves to using 16 bit segments, but because our programs will never be more than 64K, it won't matter. Really, we don't need to concern ourselves with segments.
Segment Registers - These are special registers that point to certain segments so that we do not need to specify what segment we are accessing in our instructions (they default to the segments pointed at by these registers)
CS - Code Segment : register points to the 64K block where you put your machine instructions.
DS - Data Segment
ES - Extra Segment : this extra segment can be used as an extra data segment if you use more than 64K.
SS - Stack Segment
In most programs we will be writing in this class, all we'll need is CS, DS, & SS.

Consider the following HLL code fragment:
int i, j
i = 100
How will these instructions be represented in assembly? The compiler will create a symbol table where the label will be stored along with it's address in memory.

name address

i 1000h

j 1004h

So, if we want to set i to 100, then the instruction will be MOV DS:[1000h], 100.

How does the PC access memory?
The MOV instruction is the primary way to access memory. It takes the following form:
MOV dest, src
Where dest and src must take one of the following forms:

dest src

reg reg/mem

reg/mem reg

reg/mem constant

Some points to note about the MOV instruction:

There are no memory to memory moves! Therefore, if you want to do something like a = b, you must use a register
MOV AX, b
MOV a, AX
The size of the operands must be the same.

Addressing Modes on the 8086
There are 17 different addressing modes on the 8086. On the 80386 and above, there are something like 1000! You will not be required to know the 80386 modes, but you must memorize the 17 8086 addressing modes.

Direct/Displacement Only : Has a 1 byte instruction code and a 2 byte offset. By default, the data is assumed to be in the data segment. However, you can also specify to access data in a different segment. Examples:

MOV AX, [1000h] Moves data from DS:1000h into AX

MOV AX, ES:[1000h] Moves data from ES:1000h into AX
Memory Dereference : Basically the same as dest = *src. The location to dereference must be in BX, DI, SI, or BP. The first three default into the data segement, while BP defaults into the stack segment. Examples:

MOV AX, [BX] Suppose the value in BX is 1000h, move the data from DS:[1000h] into AX

MOV AX, [BP] Suppose tha value in BP is 1000h, move the data from SS:[1000h] into AX

04/14/97

Addressing modes continued...

MOV reg, disp
MOV reg, [bx|si|di|bp] : Move value pointed at by bx|si|di|bp into reg.
MOV reg, [bx|si|di|bp + disp] : The sum of bx|si|di|bp and displacement is used to point at the value in memory to load into reg.
MOV reg, [bx|bp + si|di] : Adds to registers together, sum is offset into either data segment or stack segment, depending if bx or bp is used, respectively.
MOV reg, [bx|bp + si|di + disp] : The two regsiters and the displacement are added to form the pointer into memory.

These forms make up the 17 addressing modes on the 8086. Here are some interesting points to note:

MOV [bx], i : This is not a valid instruction because it is a memory-to-memory move ([bx] is a memory addressing mode)
The MOV reg, [bx|si|di|bp + disp] mode is often used to index into an array, where the base address of the array is loaded into disp. Here's an example:
To set A[i] = 0:
MOV BX, i
MOV AL, 0
MOV [BX + A], AL

Notice, a sematically equivalent way to do the last command would be MOV A[BX], AL, which looks more like a High Level Langauge array access.
Only valid registers to use in addressing modes are bx, si, di, and bp
Trick for memorizing memory addressing modes:

disp bx
bp si
di

Take 0 or 1 item from each column.

Assembly Langauge Programming

Shell.asm - template file for writing programs. Contains four segments directives to use for programming:

cseg Code segment : all machine instructions go here

dseg Data segment : declare variables here

sseg Stack segment : where values go when you use push and pop; you don't need to worry about this segment.

zzzzzzseg Heap where data is allocated dynamically with malloc and free

Point to Note: it is the programs responsibility to make sure that the CS register points at the code segment and that the DS register points at the data segment. However, you won't need to worry about this either, because it is already done for you in the Shell.asm file.
Here's another point: For each of your programs, make a copy of the Shell.asm file and delete the comments that tell you where to put things. These are only for your benefit, and are not reasonable comments. Remove them.

Segment definitions in Assembly Dseg

Desg segment para public 'data'

Name of segment Identifier Align the segment on 16-bit boundaries Other modules can see the segment For identifying this segment when there are other segments with the same name.

ends

Variables in the Dseg are global.

Variable declarations in Assembly

 name		type	value(s)

Points to Note:

Do not indent declarations. Start them in column 1.
Start the type field in column 17 (2 tab stops)
Start the value field in column 25 (3rd tab stop)
Variable names are the same as in C (letter followed by letters, numbers, and underscores).
Types are: byte, sbyte, word, sword, dword, sdword
If you would rather use C-like types (char, integer, float), use the MASM typedef directive:
```
char 		typedef byte

integer		typedef	sword
```
INT is a reserved word in MASM (for interrupt).
To initialize a value to undefined, type ? in the value field. Example:
```
A		integer	?
```

04/16/97

Variable declarations continued...


integer		typedef	sword

char		typedef byte

longint		typedef sdword



Dseg		segment	...

i		integer	0

j		integer 10

a		char	'A'

b		longint ?

Dseg		ends

Here is what the segment looks like in memory:

location	value
5	b
4	a
2	j
0	i

Here's some code sequence examples:


mov ax, i <==> mov ax, ds:[0] 

mov cx, j <==> mov cx, ds:[2] 



; The next two lines do ax = i



mov bx, 0 

mov ax, [bx]

Each segment has a location counter that tells the assembler where to put new data in that segment. It then inserts the data and bumps the location counter by the size of that data.
Note: C & CH should not be used as variable names for characters as they are reserved words. C is used to tell the assembler you will be linking your code with C code, and CH is a register (the H.O. byte of CX).

Array declarations


Dseg		segment

i		integer	0,1,2,3

Dseg		ends

Here are some code examples of how to access the values of i:


mov	bx, 0

mov	ax, [bx+i]		; ax = i[0]

mov	bx, 2	

mov	cx, [bx+i]		; cx = i[1]

If you try to load i[1] byt loading bx with 1, it will not work because you will get the H.O. byte of i[0] and and the L.O. byte of i[1]. You must load bx with the index (1) times the size of the element (2 bytes). In general: a[index] = BaseAddress(A) + (index * size_of_element)

Characters


Dseg		segment

A		char	'R','A','N','D','Y'

B		char	'RANDY', 0

C		char	'Randy', ' Hyde', 0

D		char	'Randy Hyde',0

E		char	'Randy'

		char	' Hyde'

		byte	0

Dseg		ends

In this data segment declaration, A & B are equivalent, as are C, D, and E.

This leads to new way to declare arrays:


Dseg		segment

A		char	64 dup(?)

Dseg		ends

This makes 64 dupicate copies of ?, the base address of which is at A.

04/18/97

Arrays

Consider the following data segment declarations:


Dseg		segment	...

A		word	64 dup(?)

B		word	64 dup(0,1,2,3)

S		byte	256 dup('stack')

D		word	4 dup(4 dup(?))

Dseg		ends

A is a simple one-dimensional array of 64 words (128 bytes). B is a single dimension array of 256 words (512 bytes), where the values are initialized to 0,1,2,3,0,1,2,3,0,1,... S is a declaration typical of what you would see in the Shell.asm file to define and initialize the stack. Each letter in 'stack' is a byte, so the size of the stack would be 256 * 5 = 1,280 bytes. The final array D is a two-dimensional 4x4 array, totaling 16 words, or 32 bytes in overall size. Notice that the assembler doesn't really specify any particular attributes a 2-dimensional array delcared this way. You could just have easily declared the array this way:


D		word	16 dup(?)

The fact that the array has two dimensions is only relevant in how you treat the contiguous block of memory that is set aside by the delcaration. There are two different ways that you can access two-dimensional arrays:

Row-Major and Column-Major Ordering

Suppose you have a two-dimensional array B declared as follows:


B		word	4 dup(4 dup(?))

Which will result in a two dimensional array appearing as follows:

	Columns
Rows		0,0	0,1	0,2	0,3
		1,0	1,1	1,2	1,3
		2,0	2,1	2,2	2,3
		3,0	3,1	3,2	3,3

Conventionally, there are two different methods used to map this two-dimensioanl block into a one-dimensional block of memory.

Row Major Ordering: Travel across each row of the array and put each item in sequentially in memory.
Column Major Ordering: Basically the same as Row Major, except that you traverse down the columns.

Here is what the memory will look like for each scheme:

Row Major Ordering		Column Major Ordering
0,0		0,0
0,1		1,0
0,2		2,0
0,3		3,0
1,0		0,1
1,1		1,1
1,2		2,1
1,3		3,1
...		...
3,2		2,3
3,3		3,3

For this class, we will mostly use Row Major ordering. This is mainly due to the fact that C/C++ also uses Row Major Ordering, so if we want to link our assembly programs with C or C++, they will both need to use the same array ordering scheme.

Here are formulas to use for both schemes, supposing you want to access B[y,x]

Row Major: Base(B) + [(Y * row_size) + X] * element_size
Col Major: Base(B) + [(X * col_size) + Y] * element_size

Instruction sequences used to access array elements in assembly (using Row Major Ordering), supposing you want to do AX = B[i,j], where B is an 4 x 4 array of words:


mov	bx, i

imul 	bx, 4		; multiply by rowsize

add	bx, j

add	bx, bx		; multiply by element size (2)

mov	ax, B[bx]

04/21/97

Structures and Pointers

A structure in assembly language is basically the same as a C++ class. For example:

Declaring Structures

In C++: In Assembly:

Struct { int i; int j; float f; } MyStruct;

MyStruct struct i sword ? j sword ? f real4 ? MyStruct ends

Using Structures

MyStruct m; m.i = ... m.j = ... m.f = ...

m MyStruct {} mov m.i, ... mov m.j, ... mov m.f, ...

Array of structs:
Declaring:


x		MyStruct 10dup({})

Accessing:


mov	bx, index

imul	bx, 8		; multiply by the size of the struct

mov	x[bx].i, 0

Notice, you can also use the assembly language sizeof function to compute the size of the structure, which would make the second line above be:


imul	bx, sizeof(MyStruct)

There are two reasons why this is a good idea:

You don't have to compute the size of the struct (which can be complicated for large structres)
The computed size of the struct is automatically changed by the assembler if you add or delete fields, so you don't have to go through your program and change them all by hand.

Pointers

2 types:

Far: 32-bits, consists of the segment and offset within that segment.
Near: 16-bits, just an offset in a segment.

Declaring pointers: (in data segment)


I		word	?

myPtr		dword	I 		; declare a far pointer to I

myNPtr		word	I		; initialize myNPtr with address of I

Using Pointers:


mov	ES, myPtr+2			

mov	BX, myPtr

mov	AX, ES:[BX]			; mov ax, I

Notice, instead of the two move instructions, there is an assembly language instruction

 les	bx, myPtr

that will automatically load ES:BX with the 32-bit operand field, where the H.O. byte goes into ES, and the L.O. byte goes into the register specified (in this case, BX). There are also lds, lfs, lgs, and lss, which do the same with those repsective registers. The general form of the instruction is:


l*s	reg, 32-bit value

Where * is e,d,f,g, or s.

Problems with far pointers: They are larger and instructions used to access them are slow.

Problems with near pointers: Only holds the offset, so you have to know what segment the data is in. However, they are smaller and you can use the mov instruction to access them, instead of l*s (which is much slower).

Physical address: Suppose you have a seg:offset address, xxxx:yyyy, how do you compute the physical address in memory where it will be mapped?

xxxx0 Append a zero to the segment

+yyyy Add the offset

ppppp Result is physical address in memory

Given this method, where would the following addresses be mapped? 100:1000 & 200:0.

100:1000 200:0

1000 2000 Append zero to segment

1000 0000 Add in offset

2000 2000 Physical address

Both of these addresses map to the same spot in memory. If we were to compare pointers to each of these two values, the program would say they are the same, when really they are different. In reality, for any possible address, there are 16 possible forms to access it. The solution: Normalized Addresses, of the form xxxx:y. Insert a colon between the least significant digit and the one before it.

04/23/97

Delcaring Constants in Assembly:


RowSize=4

ColSize=4

; in data segment...

MatrixOne	word	RowSize dup(ColSize dup(?)) ; creates 4 x 4 matrix

Note: Put all constants at beginning of source file (right after includes), so if someone sees a constant they know right where they can look up it's value.

2 attributes of a variable in memory: value and address. Example: consider the following data segment declaration:


I	word	10

Ptr	dword 	I

J	word	20

Here are the attributes of the three variables:

Variable	Address	Value
I	DS:0	10
Ptr	DS:2	DS:0
J	DS:6	20

Suppose you want to set Ptr as a pointer to J. Consider the following code:


lea	ax, J

mov	Ptr, ax	

mov	Ptr+2, ds

This is not an acceptable way to move the pointer because the mov instruction has mis-matched types (pointer is 32-bits, the registers only 16). To remedy this, use the following method:


lea	ax, J

mov	word ptr Ptr, ax

mov	word ptr Ptr+2, ds

This tells the assembler to treat the L.O. word of Ptr as a 16-bit value, thus making the mov instruction have compatibly operand types. Note: word ptr will only work on memory locations, not registers. Another way you could have done this is with the les instruction:


les	bx, Ptr

mov	es:[bx], ax		; Ptr now points at J (which was stored in ax)

Another instruction you can use is the lea instruction (load effective address), which loads a 16-bit destination with the offset of it's source operand. Example:


lea	ax, i

Which is basically the same as the following in C:


int *pi;

int i;

pi=&i;

Suppose you want to move a constant into a register, as in the following:


mov	[bx], const

This is unacceptable to the assembler because it doesn't know the size of the what bx is pointing at. To alleviate this problem, use


mov	word ptr [bx], const

This tells the assembler to treat the value pointed at by bx as a 16-bit word.

Dynamic memory allocation:

malloc: routine will allocate memory on the stack and return a pointer to it in es:di. The amount of bytes allocated is specified by the value in the cx register. Example: consider the following declaration of a 64 x 16 matrix of words in the data segment:

 

A	word	64 dup(16 dup(?))

Here is how you would allocate it dynamically:


mov	cx, 64*16*2		; cx now holds number of byte to allocate 

				; (rowsize * colsize * itemsize)

malloc				; allocate memory on heap

mov	word ptr A, di		; set A equal to the pointer to the newly

mov	word ptr A+2, es	; allocated memory

Now, if we want to access A[x][y] = ax:


; the following 4 instruction compute the index using row-major ordering

mov	bx, y			

imul	bx, 16

add	bx, x

add	bx, bx

les	di, A			; load es:di with the base address of the

				; array (previosly stored in A)

mov	es:[di+bx], ax		; use base + offset addressing mode to 

				; access array element.

Accessing fields in structures through pointers:

Suppose you have the following structure, and pointer to that structrue, declared in the data segment:


S		struct

i		word	?

j		word 	?

...

S		ends

MyStruct	S	{}

SPtr		dword	MyStruct

Now, how would you access fields in the structure through the pointer? Consider the following:


les	di, SPtr

mov	ax, es:[di].i

This method will not work because es:di doesn't know which structure it's pointing at, so it doesn't know which i you mean to access (a field named i could appear in many different structures). You must tell the assembler which structure you mean to access in the following manner:


mov	ax, es:[di].S.i

This method indicates to the assembler what structure es:di is pointing at.

04/25/97

Introduction to the UCR Standard Library

Detailed documentation on the standard library routines can be found in Chapter 7 in the Art of Assembly Text.

To use the library, you must have the following include directives in your source file:


include 	stdlib.o

includelib	stdlib.lib

Note: these are already included for you in the shell.asm template file. You must also have include & lib environment variables set up with paths to these files. This has already been done on the machines in the lab under Windows 95.

Overview of some useful routines:

print: prints to STDOUT the data pointed at by es:di
Usage example:
```
 

print

byte "Hello World",cr,lf,0
```
cr and lf are pre-defined constants that indicate a carriage return and a line feed, repsectively. The 0 byte at the end is what terminates the routine, which basically will print everything it sees until it finds that zero byte. Neglecting to put the zero byte will yield some strange results. Note: You cannot print variables with print, only string constants.
puts: puts a string to STDOUT
Usage example: consider the following data segment declarations:
```
SomeStr		char	"Hello World",cr,lf,0

ptr2SomeStr	dword	SomeStr
```
To print out the contents of SomeStr using puts:
```
les	di, ptr2SomeStr

puts		
```
However, if you don't want to have to use a pointer, you could do the following:
```
mov	di, ds

mov	es, di

lea	di, SomeStr
```
Note: you cannot just load es with ds, because you cannot mov segment registers into segment registers. You must go through a general purpose register. The above operation is so common, there is an instruction that does exactly that:
```
lesi	SomeStr			; loads es:di with the address of SomeStr
```

gets: Reads a string from STDIN, storing it in the variable pointed ad by es:di
Usage Example:


; in data segment...

Input		char	128 dup(?)

...

; in code segment...

lesi	Input			; es:di now points at Input

gets				; reads STDIN, stores results in Input

print

byte "You just entered:",0

puts				; prints Input to screen (es:di still points

				; at Input)

puti: prints an integer to STDOUT pointed at by ax. Also available are putu (to print an unsigned integer), putisizem and putusize. The put*size instruction will print the value in ax formatted with as many spaces as indicated by the value in cx. Usage Example:
```
	mov	cx, 3

	mov	ax, 5

lp:	putisize

	sub	ax, 1

	cmp	ax, 0

	jgt	lp

	putcr
```
This code sequence will output the following to the screen:
```
  5  4  3  2  1
```
Each integer printed to the screen is buffered by 3 spaces (the value in cx).

Conditional jumps based on comparisons:

Signed Unsigned

jg jump greater ja jump above

jge jump greater or equal jae jump above or equal

jl jump less than jb jump below

jle jump less than or equal jbe jump below or equal

je jump equal

jne jump not equal

Note: all of these functions have a jn* counterpart, which is the exact opposite. For example, jng is the opposite of jg. Also, jng is the exact same as jle. However, it is bad form to use jle as an opposite to jg if you wish to test the opposite condition, because it can be very confusing. It is much more clear what you are intending to do if you use the jn* form of these conditional jump operations.

Conditional Jumps based on Flags:

jc Jump if carry

jnc Jump if carry

js Jump if sign

jns Jump if no sign

jo Jump if overflow

jno Jump if no overflow

jz Jump if zero

jnz Jump if not zero

These comparisons test the conditions of the flags and jump if the said condition is true.

04/28/97

Stack Operations

push mem/reg sp = sp-2
ss:[sp] = mem/reg

pop mem/reg mem/reg = ss:[sp]
sp = sp+2

Points to note about stack:

As you push values onto the stack, it grows downward in memory.
Stack pointer keeps track of where the stack is in the stack segment.

Why use stack? Store values. Consider the following example:


push	ax

; series of instructions affecting ax

pop 	ax			; restores original value of ax

You must pop registers in the opposite order that they were pushed in. Example:
```
push 	ax

push	bx

push	cx

push	dx

...

pop	ax

pop	bx

pop	cx

pop	dx
```
In this example, ax will get the old value of dx, bx will get cx's old value, and so on.
The stack is a LIFO data structure - Last In, First Out.
Functions and Procedures should preserve the value of registers. Stack is the main way this is achieved. At the beginning of such a routine, push all of the registers that the routine will be using to complete it's computations. Right before returning, pop all the registers back off the stack (in reverse order) to restore their original values.
Call and return also use the stack. Consider the following:
```
myputs	proc	near

...

	ret

myputs	endp

...

call 	myputs
```
When the call myputs instruction is executed, the location of the next instruction to execute (stored in the IP register) is pushed onto the stack. Then, control is transfered over to myputs. When myputs is done, the ret instruction will pop IP off the stack, and execute that instruction (the next instruction after the call instruction) next.

Here's the code for myputs:


; assumes es:di points to a string to print 

myputs		proc	near

		push	di		; save di, since we'll be changing it's value

whilelp:	mov	al, es:[di]

		cmp	al, 0		; check for zero byte (end of string)

		je	done

		putc			; print character in al

		inc 	di		

		jmp	whilelp

done:		pop	di		; restore di's old value

		ret

myputs		endp

3 common errors to avoid when working with the stack:

Pushing values and forgetting to pop them
Popping values you havn't pushed
Popping values in the same order you pushed them (should be reverse order)

Here is the code for getu, which reads an unsigned integer from the stdin.


; Assumes:

; In data segment ... 

; Input		byte	(128dup(?))

geti		proc	near

		push 	es

		push	di

BadNum:		lesi	Input		; es:di points at Input string

		gets			; reads string into es:di (Input)

SkipSpcs:	cmp	byte ptr es:[di], ' '

		jne	notspace

		inc	di

		jmp	SkipSpcs

NotSpace:	cmp	byte ptr es:[di], '0'

		jb	RetryMsg

		cmp	byte ptr es:[di], '9'

		jna	GoodNum

RetryMsg:	print

		byte "Invalid Integer, try again.",cr,lf,0

		jmp	BadNum

GoodNum:	atou			; convert string to unsigned int

		pop	di

		pop	es

		ret

getu		endp

04/30/97

Text Equates Text Equates (defined using the testequ directive) are used to literally substitute one substring for another. You define text equates in the following manner:


name		textequ

When your program is assembled, everywhere that name appears in the source code, the assembler will insert "substitute." For the following example, assumeyou have written a procedure _geti. Using text equates allows you to do something like the following:


geti		textequ

Now, instead of calling the procedure, you can simply write the name of the procedure (actually the text equated name, the real name is _geti), effectively making it appear like an instruction rather than a procedure. The routines in the standard library are declared in this fashion.

Parameter Passing

There are many different methods of passing parameters and places of passing them. The main ways we will study is pass by reference & pass by value. The main place we'll be passing our parameters is on the stack. Heres an example:


; ReadArray[i][j] - assumes pointer to the array to read values into 

;                   passed as parameter in es:di

ReadArray	proc	near

		getu			; returns unsigned int in ax

		mov	bx, i

		imul	bx, numcols	 

		add	bx, j

		add	bx, bx	

		mov 	es:[di+bx], ax

ReadArray	endp

Here's an example of the usage:


		lesi	A1		; es:di holds base address of A1

		ReadArray	

		lesi	A2		; es:di holds base address of A2

		ReadArray

Note: The ReadArray procedure clearly affects the ax and bx registers. These registers should be pushed on the stack upon entry, and popped of the stack on exit, to preserve their values.

0100 0000	Start off with 127
1011 1111	Negate all of the digits
1100 0000	Add 1, this is the result (-127)

0000 0000	Start off with 127
1111 1111	Negate all of the digits
0000 0000	Add 1 (ignoring the overflow), the result is zero

	Binary	Hex
X	1010 1110	AE
Y	1111 0101	F5
X AND Y	1010 0100	A4
X OR Y	1111 1111	FF
X XOR Y	0101 1011	5B

MOV AX, [1000h]	Moves data from DS:1000h into AX
MOV AX, ES:[1000h]	Moves data from ES:1000h into AX

MOV AX, [BX]	Suppose the value in BX is 1000h, move the data from DS:[1000h] into AX
MOV AX, [BP]	Suppose tha value in BP is 1000h, move the data from SS:[1000h] into AX

cseg	Code segment : all machine instructions go here
dseg	Data segment : declare variables here
sseg	Stack segment : where values go when you use push and pop; you don't need to worry about this segment.
zzzzzzseg	Heap where data is allocated dynamically with malloc and free

Desg	segment	para	public	'data'
Name of segment	Identifier	Align the segment on 16-bit boundaries	Other modules can see the segment	For identifying this segment when there are other segments with the same name.
ends

Declaring Structures
In C++:	In Assembly:
Struct { int i; int j; float f; } MyStruct;	MyStruct struct i sword ? j sword ? f real4 ? MyStruct ends
Using Structures
MyStruct m; m.i = ... m.j = ... m.f = ...	m MyStruct {} mov m.i, ... mov m.j, ... mov m.f, ...

xxxx0	Append a zero to the segment
+yyyy	Add the offset
ppppp	Result is physical address in memory

100:1000	200:0
1000	2000	Append zero to segment
1000	0000	Add in offset
2000	2000	Physical address

Signed		Unsigned
jg	jump greater	ja	jump above
jge	jump greater or equal	jae	jump above or equal
jl	jump less than	jb	jump below
jle	jump less than or equal	jbe	jump below or equal
je	jump equal
jne	jump not equal

jc	Jump if carry
jnc	Jump if carry
js	Jump if sign
jns	Jump if no sign
jo	Jump if overflow
jno	Jump if no overflow
jz	Jump if zero
jnz	Jump if not zero

push mem/reg	sp = sp-2 ss:[sp] = mem/reg
pop mem/reg	mem/reg = ss:[sp] sp = sp+2