Commit 927a44e6 authored by Sebastian Lackner's avatar Sebastian Lackner Committed by Alexandre Julliard

ntoskrnl.exe: Fix incorrect interpretation of SIB byte when parsing x86 opcode.

parent bd6a5de2
...@@ -139,7 +139,7 @@ static BYTE *INSTR_GetOperandAddr( CONTEXT *context, BYTE *instr, ...@@ -139,7 +139,7 @@ static BYTE *INSTR_GetOperandAddr( CONTEXT *context, BYTE *instr,
GET_VAL( &sib, BYTE ); GET_VAL( &sib, BYTE );
rm = sib & 7; rm = sib & 7;
ss = sib >> 6; ss = sib >> 6;
switch(sib >> 3) switch((sib >> 3) & 7)
{ {
case 0: index = context->Eax; break; case 0: index = context->Eax; break;
case 1: index = context->Ecx; break; case 1: index = context->Ecx; break;
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment