unable to disassemble f3 48 0f 1e c8 (rdsspq rax) in Ubuntu 20.04

capstone-engine / capstone

Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

http://www.capstone-engine.org

7.61k stars 1.56k forks source link

unable to disassemble f3 48 0f 1e c8 (rdsspq rax) in Ubuntu 20.04 #1759

Open wine9527 opened 3 years ago

wine9527 commented 3 years ago

The function disasm stopped running when disassembling f3 48 0f 1e c8

n4sm commented 3 years ago

Refering to this , some CET instructions have been added in the next branch. And for me that's pretty efficient:

$ uname -a
Linux off 5.11.0-25-generic #27~20.04.1-Ubuntu SMP Tue Jul 13 17:41:23 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
$ cstool x64 "f3 48 0f 1e c8"
 0  f3 48 0f 1e c8                                   rdsspq     rax

windhl commented 1 year ago

In fact, when I use the Pin with XED, the result is: "nop rax, rcx", and there should be some update to fix it.