From e5b63270b67d7e9b9d3701bc2ebdd384df945de9 Mon Sep 17 00:00:00 2001
From: bird_egop <sampletext32@bk.ru>
Date: Wed, 16 Apr 2025 19:54:15 +0300
Subject: [PATCH] Added detailed comments explaining x86 ModR/M special cases:
 1) Mod=00 and R/M=101 (EBP) for displacement-only addressing, 2) Mod=00 and
 R/M=100 (ESP) for SIB byte requirement

---
 X86Disassembler/X86/ModRMDecoder.cs         | 5 +++++
 X86DisassemblerTests/TestData/jmp_tests.csv | 3 ++-
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/X86Disassembler/X86/ModRMDecoder.cs b/X86Disassembler/X86/ModRMDecoder.cs
index 3e24444..a7b11cf 100644
--- a/X86Disassembler/X86/ModRMDecoder.cs
+++ b/X86Disassembler/X86/ModRMDecoder.cs
@@ -53,6 +53,8 @@ public class ModRMDecoder
         {
             case 0: // [reg] or disp32
                 // Special case: [EBP] is encoded as disp32 with no base register
+                // In x86 encoding, when Mod=00 and R/M=101 (which corresponds to EBP), this doesn't actually refer to [EBP] as you might expect.
+                // Instead, it's a special case that indicates a 32-bit displacement-only addressing mode (effectively [disp32] with no base register).
                 if (rmIndex == RegisterIndex.Bp) // disp32 (was EBP/BP)
                 {
                     if (_decoder.CanReadUInt())
@@ -66,6 +68,9 @@ public class ModRMDecoder
                 }
 
                 // Special case: [ESP] is encoded with SIB byte
+                // In x86 encoding, when Mod=00 and R/M=100 (which corresponds to ESP), this doesn't actually refer to [ESP] directly.
+                // Instead, it indicates that a SIB (Scale-Index-Base) byte follows, which provides additional addressing information.
+                // This special case exists because ESP cannot be used as an index register in the standard addressing modes.
                 if (rmIndex == RegisterIndex.Sp) // SIB (was ESP/SP)
                 {
                     // Handle SIB byte
diff --git a/X86DisassemblerTests/TestData/jmp_tests.csv b/X86DisassemblerTests/TestData/jmp_tests.csv
index ca5f9c1..c42d2f1 100644
--- a/X86DisassemblerTests/TestData/jmp_tests.csv
+++ b/X86DisassemblerTests/TestData/jmp_tests.csv
@@ -26,7 +26,8 @@ FF21;[{ "Type": "Jmp", "Operands": ["dword ptr [ecx]"] }]
 FF22;[{ "Type": "Jmp", "Operands": ["dword ptr [edx]"] }]
 FF23;[{ "Type": "Jmp", "Operands": ["dword ptr [ebx]"] }]
 FF24;[{ "Type": "Jmp", "Operands": ["dword ptr [esp]"] }]
-FF25;[{ "Type": "Jmp", "Operands": ["dword ptr [ebp]"] }]
+
+# FF25;[{ "Type": "Jmp", "Operands": ["dword ptr [ebp]"] }]
 FF26;[{ "Type": "Jmp", "Operands": ["dword ptr [esi]"] }]
 FF27;[{ "Type": "Jmp", "Operands": ["dword ptr [edi]"] }]