Assembly Lanuage Programming

• if you do "add cx,1" with cx=0ffffh, the carry flag will be set

1. Z zero - indicates if the result of an arithmetic or logical instruction is 0
1. S sign - indicates if result was +ve or -ve
1. O overflow - when signed numbers are used, indicates an overflow e.g. for an 8 bit add, 7fh (127) + 1 = 80h which is -128 if we are using signed arithmetic

• normally, we use overflow to indicate errors in signed arithmetic and carry for unsigned arithmetic

• in fact we can address 1Mb in real mode i.e. 2²⁰ bytes

1. CS code segment

• the physical address of the next instruction = CS ´ 10h + logical address e.g. if CS=1231h and IP=60h then next instruction executed is 12310h + 60h
• full addresses are written as CS:IP e.g. 1231:0060h

1. DS data segment, SS stack segment, ES extra segment

• similar for other segments e.g. the physical address = (segment value) ´ 10h + logical address

1. different instructions default to using particular segments

• PUSH this puts things on the stack e.g. push ax

1. writes ax to (sp-2)
2. sp ß sp - 2

• POP retrieves the last thing that was pushed on the stack e.g. pop ax

1. when you push a 16 bit number in memory on Intel machines they are little-endian so least significant byte goes first e.g. suppose AX=1234h and we "push ax"
2. stack operations are often used to save registers e.g. after this routine ax,bx,cx will be unchanged

routine: push ax

push bx

push cx

< code which uses ax,bx,cx >

pop cx

pop bx

pop ax

ret

3. they are also used for subroutines (call/ret) the stack is used to store the return address during the call so when the ret is executed, it can return to the next instruction

• this is the same as "mov si,offset data" which is favored since it is smaller and faster

1. lea dx,[x][si]+100h

• this cannot be done with a mov (can only be done with lea)

• you need to specify "byte ptr" so assembler knows you mean a 8 bit add
• add word ptr [di],3 ; add 3 to contents of word at di

1. the flag registers described earlier are affected by arithmetic and logical operations

• "add cx,1" if after operation cx == 0 then the zero flag will be set

• e.g. cmp cl,10

jl l2 ; jumps if cl < 10 (cl not affected)

• to check if bit 2 is set

• to multiply by 10 = (1010 in binary) - faster than using mul

• cld clears direction flag (D=0)
• std sets direction flag (D=1)

1. during string instructions, DI always uses ES. SI defaults to DS but this can be changed with a segment override
1. lods - loads al or ax with a byte or word

• lodsb ; al = ds:[si]; si ß si ± 1
• lodsw ; ax = ds:[si]; si ß si ± 2
• stos - stores al or ax

• stosb ; es:[di] = al; di ß di ± 1
• stosw ; es:[di] = ax; di ß di ± 2

1. movs - move string (useful for copying)

• movsw ; es:[di] ß ds:[si], di ß di ± 2, si ß si ± 2

1. ins and outs used to in and out strings

• e.g. insb ; es:[di] ß [dx], di ß di ± 1

1. The advantage of string instructions is that we can combine them with "rep"

• e.g. to clear 10 bytes of memory

1. scas and cmps - string scan and string compare

• scans a string looking for a certain character
• compares two strings

• jmp start
• start is a label which indicates where to jump

1. we also need conditional jumps to implement loops,if etc

• (see table of conditional jump instructions)

1. different types of jumps

• short - these can only span between -128 to +127 and occupy 2 bytes (1 for opcode & 1 for distance)
• near - these are the same as short but 3 bytes so they can span ± 32K
• far - these are 5 bytes long and specify the segment to jump to as well

1. if our code segment is smaller than 64K, we will not need far jumps and do not need to modify cs. Similarly, if our data segment is <64K, we do not need to change ds.
1. for "call" there are near and far

• loope ; loop while equal

• loops while cx != 0 AND Z flag = 0

• loopne ; loop while not equal … AND Z != 0

• e.g. to read a character without echo

• ah always contains the function call number which specifies which operation you would like to do
• all registers not used in the call are preserved

1. the "int" performs a software interrupt which you can think of as a funny subroutine call (we will talk about interrupts in detail later)
2. int only takes 2 bytes whereas a far call takes 5 bytes

• e.g. low level video i/o, serial i/o, raw access to the disk
  

• [label:] mnemonic [operands] [;comment]

1. the label gives us a way to refer to an address (try to choose meaningful names for your labels)
2. the mnemonic is an 80x86 instruction or some assembler directive
3. operands are those arguments of the instruction or directive
4. comments make a program much easier to read

.MODEL SMALL

.STACK 200h

.DATA

Message db "This was printed using function 9 "

.CODE

START:

;you cannot do this -> mov ds,seg Message

;what is to be printed in DS:DX

mov ax,4c00h ;Returns control to DOS

int 21h ;MUST be here! Program will crash without it!

END START

1. .MODEL SMALL - tells the assembler that our code<64K and our data<64K (together they can be 128K)
1. .STACK 200h - defines stack segment to be 200h in size (strange things can happen if stack overflows)
1. .DATA - this indicates the start of the data segment
1. MESSAGE - this is a label for the data so we can reference it later. It gets translated to an address by the assembler
1. db - this places the bytes corresponding to the message in consecutive addresses in memory, starting at MESSAGE. It allocates memory
1. .CODE - start of code segment
1. START: - a label which is the first address that gets executed (data doesn’t get executed)
1. END START - exit point of the whole program (START) is the entry point

• e.g. org 100h ; forces the offset address to be 100h here

1. db - define byte

• e.g. db 100h, 1010b, 10, ?, "Hello", 0
• the ? means that the value can be anything
• dup can be used to define many bytes all the same e.g. "db 16 dup (?)" sets aside 16 bytes
• there is also dw - define word, dd - define double word

1. equ - is used to define a constant

• e.g. bufz equ 100

buf1 db bufz dup (?)

buf2 db bufz dup (?)

1. Macros

• sometimes instead of a subroutine, we want to insert a sequence of instructions - we can use a macro
• use this for code which needs to be inline don’t use it if a subroutine is suitable since it generates a lot of extra code
• comments should use ";;" (why?)
• it is equivalent to a #define in C compared with a subroutine
• e.g.

• local labels can be defined using local (otherwise a global l1 will be created and this macro can only be used once)

1. an example that shows all of this (produced using "tasm /l ex1")

2 0000 .MODEL SMALL

3 0000 .STACK 200h

4 =0064 bufz equ 100

5

6 pushregs macro

7 push ax

8 push bx

9 push cx

10 push dx

11 push si

12 push di

13 endm

14 ; macro with parameters

15 addmac macro x,y,res

16 push ax ; saves ax

17 mov ax,x

18 add ax,y

19 mov res,ax

20 pop ax

21 endm

22

23 0000 .DATA

24 org 200h

25 0200 A0 0A ?? 0A 48 65 6C+ db 0a0h, 1010b, ?, 10, "Hello", 0

26 6C 6F 00

27 020A 0001 0002 0003 dw 1, 2, 3

28 0210 64*(??) buf1 db bufz dup (?)

29 0274 64*(??) buf2 db bufz dup (?)

30

31 02D8 .CODE

32

33 0000 START: pushregs

1 34 0000 50 push ax

1 35 0001 53 push bx

1 36 0002 51 push cx

1 37 0003 52 push dx

1 38 0004 56 push si

1 39 0005 57 push di

40 addmac 2,4,bx

1 41 0006 50 push ax ; saves ax

1 42 0007 B8 0002 mov ax,2

1 43 000A 05 0004 add ax,4

1 44 000D 8B D8 mov bx,ax

1 45 000F 58 pop ax

46 END START

• easy to do but it makes your program larger and can be slower
• simply copy them to a variable instead of a register - you can have as many variables as you like (registers are limited), but registers are faster

1. Passing through the stack

• most powerful and flexible method of passing parameters and is the way C does it

• different people can write, debug & test different modules of the same program
• debugging and testing is made easier if the prog is split into smaller modules
• libraries of useful functions can be collected
• only the files that are modified need to be recompiled

1. this is why in assembler we separately assemble and link files

• all the reasons of above
• we often combine C and assembler together - the same linker is used

1. extern - much like "external" in C, this tells assembler that a variable or procedure is defined in a different file

• extrn name:type[,name,type]*
• for procedure names, the type can be "near", "far" or "proc" (proc means "near" for small models and "far" for larger models)
• for variable names, type can be "byte" (1), "word" (2), "dword" (4), "fword" (6), "qword" (8) or "tbyte" (10)
• e.g. extrn print:near, input:far

1. public - in the file that you actually define a procedure or variable you need to declare that as being public

• public print,input

• to update a clock - we get a timer interrupt every second and update the time
• to update the mouse pointer
• to make system calls
• note that in each example, the interrupts and program executing can run virtually independently of each other

• push PSW ; processor status word - contains all flags
• clears T and I flag bits
• push CS
• push IP
• gets the CS:IP from interrupt vector table which is at a FIXED memory address, dependent on the interrupt number
• jump to interrupt routine at CS:IP

1. when we return from an interrupt service routine using "iret" the reverse is done and all flags, CS and IP are restored
1. address for interrupt n is 0000:4*n since each interrupt vector is a far address and takes 4 bytes (32 bits)

• there are 256 interrupts available occupying the 1^st 1024 bytes of memory

1. I bit - interrupt enable bit

• hardware interrupts are enabled when I is set and cannot occur if they are clear
• can be set and cleared with STI and CLI
• (with the exception of a nonmaskable interrupt)

1. T bit is the trace bit

• when set, you get a type 1 interrupt after every instruction
• to set do a "pushf, "or" top of stack with 0100h and then popf.
• to clear, "pushf", "and" top of stack with 0feffh and then "popf"
• mostly used by debuggers which can take snapshots of executing software

1. the INTO instruction does a type 4 interrupt IF the overflow flag is set

• used after arithmetic instructions to jump to an error handler