# 3.2
Parts of processors:
* The _program counter_ (commonly referred to as the PC, and called $%rip$ in x86-64) indicates the address in memory of the next instruction to be executed.

* The integer _register file_ contains 16 named locations storing 64-bit values. These registers can hold addresses (corresponding to C pointers) or integer data. Some registers are used to keep track of critical parts of the program state, while others are used to hold temporary data, such as the arguments and local variables of a procedure, as well as the value to be returned by a function.

* The condition code registers hold status information about the most recently executed arithmetic or logical instruction. These are used to implement con- ditional changes in the control or data flow, such as is required to implement `if` and `while` statements.

* A set of vector registers can each hold one or more integer or floating-point values.

The program memory contains the executable machine code for the program, some information required by the operating system, a run-time stack for managing procedure calls and returns, and blocks of memory allocated by the user (e.g., by using the malloc library function).

As mentioned earlier, the program memory is addressed using virtual addresses. At any given time, only limited subranges of virtual addresses are considered valid. For example, x86-64 virtual addresses are represented by 64-bit words. In current implementations of these machines, the upper $16$ bits must be set to zero, and so an address can potentially specify a byte over a range of $2^{48}$, or $64$ terabytes.

A single machine instruction performs only a very elementary operation. For example, it might add two numbers stored in registers, transfer data between memory and a register, or conditionally branch to a new instruction address. The compiler must generate sequences of such instructions to implement program constructs such as arithmetic expression evaluation, loops, or procedure calls and returns.

Several features about machine code and its disassembled representation are worth noting:

* x86-64 instructions can range in length from 1 to 15 bytes. The instruction encoding is designed so that commonly used instructions and those with fewer operands require a smaller number of bytes than do less common ones or ones with more operands.
* The instruction format is designed in such a way that from a given starting position, there is a unique decoding of the bytes into machine instructions. For example, only the instruction pushq %rbx can start with byte value 53.
* The disassembler determines the assembly code based purely on the byte sequences in the machine-code file. It does not require access to the source or assembly-code versions of the program.
* The disassembler uses a slightly different naming convention for the instructions than does the assembly code generated by gcc. In our example, it has omitted the suffix ‘q’ from many of the instructions. These suffixes are size designators and can be omitted in most cases. Conversely, the disassembler adds the suffix ‘q’ to the call and ret instructions. Again, these suffixes can safely be omitted.

Generating the actual executable code requires running a linker on the set of object-code files, one of which must contain a function main. Suppose in file main.c we had the follo

# 3.3
most assembly-code instructions gener- ated by gcc have a single-character suffix denoting the size of the operand. For example, the data movement instruction has four variants: movb (move byte), movw (move word), movl (move double word), and movq (move quad word). The suffix ‘l’ is used for double words, since 32-bit quantities are considered to be “long words.” The assembly code uses the suffix ‘l’ to denote a 4-byte integer as well as an 8-byte double-precision floating-point number. This causes no ambigu- ity, since floating-point code involves an entirely different set of instructions and registers.

# 3.4



![image.png](asset/ch3/1.png)
![image.png](asset/ch3/3.png)

```
1 movl $0x4050,%eax                 # Immediate--Register, 4 bytes
2 movw %bp,%sp                      # Register--Register, 2 bytes
3 movb (%rdi,%rcx),%al              # Memory--Register, 1 byte
4 movb $-17,(%esp)                  # Immediate--Memory, 1 byte
5 movq %rax,-12(%rbp)               # Register--Memory, 8 bytes
```

`movq` can only have immediate source operands
that can be represented as 32-bit two\'s-complement numbers.This value is then
sign extended to produce the 64-bit value for the destination. The movabsq instruction can have an arbitrary 64-bit immediate value as its source operand and
can only have a register as a destination.

```
1 movabsq $0x0011223344556677, %rax # %rax = 0011223344556677
2 movb $-1, %al                     # %rax = 00112233445566FF
3 movw $-1, %ax                     # %rax = 001122334455FFFF
4 movl $-1, %eax                    # %rax = 00000000FFFFFFFF
5 movq $-1, %rax                    # %rax = FFFFFFFFFFFFFFFF
```

那么这是为什么呢？
* 64位数的操作在指令架构集中需要额外的标记，这个标记会增加指令的长度，所以默认是操作32位数
* [difference-between-movq-and-movabsq-in-x86-64](https://stackoverflow.com/questions/40315803/difference-between-movq-and-movabsq-in-x86-64)

`cltq` has no
operands—it always uses register `%eax` as its source and `%rax` as the destination for
the sign-extended result. It therefore has the exact same effect as the instruction
movslq `%eax`, `%rax`, but it has a more compact encoding.

### **Practice Problem 3.4**
Assume variables sp and dp are declared with types
```
src_t *sp;
dest_t *dp;
```
where `src_t` and `dest_t` are data types declared with typedef. We wish to use
the appropriate pair of data movement instructions to implement the operation
```
*dp = (dest_t) *sp;
```

__int -> char__:

Ans:

为什么答案是 
```
movl (%rdi), %eax   Read 4 bytes
movb %al, (%rsi)    Store low-order byte
```
而不是
```
movb (%rdi), %al    Read 1 bytes
movb %al, (%rsi)    Store low-order byte
```
实测两者都是可以的，但是从内存搬到寄存器时不能裁剪原来类型的值，尽管后者所占的机器码更少。

__char -> int__:

Ans:
为什么答案是
```
movsbw (%rdi), %ax  Read byte and sign-extend
movw %ax, (%rsi)    Store 2 bytes
```
而不是
```
movb (%rdi), %al    Read byte
movsbw %al, (%rsi)  Extend and store 2 bytes
```
因为 `movsbw` 的destination只能是寄存器，不能是内存

__unsigned char -> long__:

Ans:
为什么答案是
```
movzbl (%rdi), %eax Read byte and zero-extend
movq %rax, (%rsi)   Store 8 bytes
```
而不是
```
movzbq (%rdi), %rax Read byte and zero-extend
movq %rax, (%rsi)   Store 8 bytes
```
[知乎上可能的解释](https://www.zhihu.com/question/490868415)，即x86-64机器上`movzbl`会自动将 upper 4 byte 置0。所以使用`movzbl`代替`movzbq`可以减少指令长度。


![image.png](./asset/ch3/2.png)

The `pushq` instruction provides the ability to push data onto the stack, while
the `popq` instruction pops it. Each of these instructions **takes a single operand**—the
data source for pushing and the data destination for popping.

the behavior of the instruction `pushq %rbp` is equivalent to that of the
pair of instructions
```
subq $8,%rsp          Decrement stack pointer
movq %rbp,(%rsp)      Store %rbp on stack
```

except that the pushq instruction is encoded in the machine code as a single byte,
whereas the pair of instructions shown above requires a total of 8 bytes. 

Popping a quad word involves reading from the top-of-stack location and
then incrementing the stack pointer by 8. Therefore, the instruction `popq %rax`
is equivalent to the following pair of instructions:
```
movq (%rsp),%rax      Read %rax from stack
addq $8,%rsp          Increment stack pointer
```

# 3.5

## 3.5.1`leaq`
The _load effective address instruction_ `leaq` is actually a variant of the `movq` instruction.
It has the form of an instruction that reads from memory to a register. The destination operand must be a register.

![image.png](./asset/ch3/4.png)

## 3.5.2 Unary and Binary Operations
This operand can be either a register or
a memory location. For example, the instruction `incq (%rsp)` causes the 8-byte
element on the top of the stack to be incremented. This syntax is reminiscent of
the C increment (++) and decrement (--) operators.

## 3.5.3 Shift Operations
The final group consists of shift operations, where the shift amount is given first
and the value to shift is given second. Both arithmetic and logical right shifts are
possible. The different shift instructions can specify the shift amount either as
an immediate value or with the single-byte register %cl.

## 3.5.5 Special Arithmetic Operations

![image.png](./asset/ch3/5.png)