14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
|
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
|
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
+
+
-
-
+
+
-
-
+
+
-
-
-
+
+
+
-
+
-
-
-
-
-
-
+
+
+
+
+
+
-
+
-
+
-
+
-
-
-
+
+
+
-
-
-
+
+
+
-
-
+
+
-
-
+
+
-
-
+
+
-
-
-
+
+
+
-
+
-
-
-
-
-
-
+
+
+
+
+
+
-
+
-
+
-
+
-
-
-
+
+
+
-
-
-
+
+
+
-
+
|
*/
#include "config.h"
.globl _OFForward
.globl _OFForward_stret
.intel_syntax noprefix
/* Work around assembler bugs. */
.macro call
.att_syntax
/* Use uppercase instruction to avoid recursion. */
CALL $0
.intel_syntax noprefix
.endmacro
.macro jmp
.att_syntax
/* Use uppercase instruction to avoid recursion. */
JMP $0
.intel_syntax noprefix
.endmacro
.section __TEXT, __cstring, cstring_literals
Lstr_forwardingTargetForSelector_:
.asciz "forwardingTargetForSelector:"
.section __OBJC, __message_refs, literal_pointers, no_dead_strip
Lsel_forwardingTargetForSelector_:
.long Lstr_forwardingTargetForSelector_
.section __OBJC, __image_info
.long 0, 0
.section __TEXT, __text, regular, pure_instructions
_OFForward:
push ebp
mov ebp, esp
pushl %ebp
movl %esp, %ebp
push ebx
sub esp, 20
pushl %ebx
subl $20, %esp
call LgetEIP
0:
mov eax, [ebp + 8]
mov [esp], eax
movl 8(%ebp), %eax
movl %eax, (%esp)
call _object_getClass
mov [esp], eax
mov eax, [ebx + Lsel_forwardingTargetForSelector_ - 0b]
mov [esp + 4], eax
movl %eax, (%esp)
movl Lsel_forwardingTargetForSelector_-0b(%ebx), %eax
movl %eax, 4(%esp)
call _class_respondsToSelector
test eax, eax
testl %eax, %eax
jz 0f
mov eax, [ebp + 8]
mov [esp], eax
mov eax, [ebx + Lsel_forwardingTargetForSelector_ - 0b]
mov [esp + 4], eax
mov eax, [ebp + 12]
mov [esp + 8], eax
movl 8(%ebp), %eax
movl %eax, (%esp)
movl Lsel_forwardingTargetForSelector_-0b(%ebx), %eax
movl %eax, 4(%esp)
movl 12(%ebp), %eax
movl %eax, 8(%esp)
call _objc_msgSend
test eax, eax
testl %eax, %eax
jz 0f
cmp eax, [ebp + 8]
cmpl 8(%ebp), %eax
je 0f
mov [ebp + 8], eax
movl %eax, 8(%ebp)
add esp, 20
pop ebx
pop ebp
addl $20, %esp
popl %ebx
popl %ebp
jmp _objc_msgSend
0:
add esp, 20
pop ebx
pop ebp
addl $20, %esp
popl %ebx
popl %ebp
jmp _OFMethodNotFound
_OFForward_stret:
push ebp
mov ebp, esp
pushl %ebp
movl %esp, %ebp
push ebx
sub esp, 20
pushl %ebx
subl $20, %esp
call LgetEIP
0:
mov eax, [ebp + 12]
mov [esp], eax
movl 12(%ebp), %eax
movl %eax, (%esp)
call _object_getClass
mov [esp], eax
mov eax, [ebx + Lsel_forwardingTargetForSelector_ - 0b]
mov [esp + 4], eax
movl %eax, (%esp)
movl Lsel_forwardingTargetForSelector_-0b(%ebx), %eax
movl %eax, 4(%esp)
call _class_respondsToSelector
test eax, eax
testl %eax, %eax
jz 0f
mov eax, [ebp + 12]
mov [esp], eax
mov eax, [ebx + Lsel_forwardingTargetForSelector_ - 0b]
mov [esp + 4], eax
mov eax, [ebp + 16]
mov [esp + 8], eax
movl 12(%ebp), %eax
movl %eax, (%esp)
movl Lsel_forwardingTargetForSelector_-0b(%ebx), %eax
movl %eax, 4(%esp)
movl 16(%ebp), %eax
movl %eax, 8(%esp)
call _objc_msgSend
test eax, eax
testl %eax, %eax
jz 0f
cmp eax, [ebp + 12]
cmpl 12(%ebp), %eax
je 0f
mov [ebp + 12], %eax
movl %eax, 12(%ebp)
add esp, 20
pop ebx
pop ebp
addl $20, %esp
popl %ebx
popl %ebp
jmp _objc_msgSend_stret
0:
add esp, 20
pop ebx
pop ebp
addl $20, %esp
popl %ebx
popl %ebp
jmp _OFMethodNotFound_stret
LgetEIP:
mov ebx, [esp]
movl (%esp), %ebx
ret
|