4

I want to check my understanding of the following bootloader code:

BITS 16

start:
    mov ax, 07C0h   ; Set up 4K stack space after this bootloader
    add ax, 288     ; (4096 + 512) / 16 bytes per paragraph
    mov ss, ax
    mov sp, 4096

    mov ax, 07C0h       ; Set data segment to where we're loaded
    mov ds, ax

    mov si, text_string ; Put string position into SI
    call print_string   ; Call our string-printing routine

    jmp $           ; Jump here - infinite loop!

    text_string db 'This is my cool new OS!', 0

print_string:           ; Routine: output string in SI to screen
    mov ah, 0Eh     ; int 10h 'print char' function

.repeat:
    lodsb           ; Get character from string
    cmp al, 0
    je .done        ; If char is zero, end of string
    int 10h         ; Otherwise, print it
    jmp .repeat

.done:
ret

    times 510-($-$$) db 0   ; Pad remainder of boot sector with 0s
    dw 0xAA55       ; The standard PC boot signature

Here's my understanding of the code:

mov ax, 07C0h:

  • Memory address can be obtained from the stack segment value (stored in the ss registers) and offset (which is stored in the sp register). You obtain the address by doing the following: stack segment value x 16 + offset value.
  • We're using segment 07C0h to set up space in our code. So when 07C0h is offset with 0, it will reference to address to 0x7C00. BIOS attempts to boot code from 0x7C00. An example of code that is copied in 0x7C00 is the MBR.
  • Each segment increments in blocks of 16 bytes, so 07C0h will give you address range 0x7C00-0x7C0F. The next segment 07C1h will give you address 0x7C10-0x7C1F.

add ax, 288

  • To set up a 4K stack space after the bootloader, we need to add 288 obtained from (4096 + 512)/16 bytes per paragraph. The decimal value 288 is equal to 120h.
  • The value stored in the ax register now is 08e0h which I've obtained by: 07c0h + 120h = 08e0h (120h is decimal 288).

mov ss, ax

  • Copy the value in register ax into the ss register. The offset now contains segment: 08e0h.

mov sp, 4096

  • The offset value is 4096 which is 0x1000h. The ss:sp pair gives the value 08e0:1000.
  • The bottom of the stack starts at memory address 0x8e00 and top of the stack is at 0x9e00 (from 0x8e00 + 0x1000 = 0x9e00).

Here's a diagram of the code in memory and the space allocated as below.

enter image description here

Note: the bootloader and the memory reference in this diagram are most likely incorrect, I am assuming that it won't be sequential and the assembler will compile the machine code differently. However, the start of the code will be starting at the lower memory address (0x7C00) and the boot signature will start at the higher address (0xaa55 disk signature starts at 0x7c0:0x1fe (physical address 0x7c0*16 + 0x1fe=0x7dfe) which are the last two bytes of the first 512 byte sector which runs from 0x7c0:0x0000 to 0x7c0:0x200(0x7C32 which is the end of the 512 bytes)).

It strange to see space allocated are two blocks of 4096 bytes though: one for the stack and the other contains the code and data. I suspect I am missing something here.

supmethods
  • 525
  • 6
  • 18
  • 0x7C0 is put in AX. 288 (decimal) is added to it. 288 decimal is 0x120. So after the add AX=0x8e0. 0x8e0 is placed in SS (Stack segment).4096(0x1000) is placed in SP.The stack pointer is thus SS:SP=0x8e0:0x1000 . That is physical address 0x8e0*16+0x1000=0x9E00. The stack grows down from there but will wrap at 0x8e0:0000 back to the top of the 64kb segment. – Michael Petch Sep 01 '18 at 12:48
  • 0xaa55 disk signature starts at 0x7c0:0x1fe (physical address 0x7c0*16+0x1fe=0x7dfe) which are the last two bytes of the first 512 byte sector which runs from 0x7c0:0x0000 to 0x7c0:0x200 – Michael Petch Sep 01 '18 at 12:52
  • Thanks. For ease of others understanding when referencing to this post, I have edited with corrections made by Michael Petch. Corrections are 18h to 120h (288 decimal), 07d8h to 08e0h (7c0h + 120h), 256h to 1000h (4096 decimal), top of stack at 0x9e00, stack wrapped at 0x8e00, and boot signature address: 0x7dfe. – supmethods Sep 02 '18 at 05:22

1 Answers1

1

following bootloader code:

It's missing info how it will set up relative address of assembled code, i.e. how the local offsets will be calculated. Usually bootloaders start with org 0x7C00 to make it explicit the code expects to be started at cs:ip = 0000:7C00. But would you do that, the ds=07C0 would be wrong, that one suggests the code expects the offsets be assembled as if it starts at 07C0:0000 instead of 0000:7C00. While both addresses target the identical physical memory address, the segment:offset pairs are different then.

Each segment increments in blocks of 16 bytes, so 07C0h will give you address range 0x7C00-0x7C0F. The next segment 07C1h will give you address 0x7C10-0x7C1F.

Each segment gives you 64kiB range, although the start address advances only by 16 bytes, so there's lot of overlap between segments and you can address the same physical address by many combinations. I.e. ds=07C0 gives you window into physical memory range 07C00-17BFF.

Then your conversions of values to hexadecimal are wrong (see also Michael comments), 288 = 0x120, and 4096 = 0x1000, but you correctly conclude there's 512B of bootloader code (single sector of block device), 4096B of spare space, and then 4096B of stack space. Would you fill up the stack by pushing more than 4096 bytes into it, it will not hit the spare space after code, but will wrap around to 08E0:FFFE (well above the original start of stack).

I am assuming that it won't be sequential and the assembler will compile the machine code differently.

Quite opposite, instructions and defined bytes in the source code are emitted sequentially in the resulting machine code. Use the "listing" command line switch to see yourself how the assembler emits machine code for particular lines. Would you for example move the text_string db 'This is my cool new OS!', 0 line at the beginning after BITS 16 directive, that text would be then at the beginning of machine code, loaded and executed by BIOS at/from 0000:7C00 address, executing the text bytes as instructions.

Ped7g
  • 16,236
  • 3
  • 26
  • 63
  • 3
    This code is based on [MikeOS's original bootloader](http://mikeos.sourceforge.net/write-your-own-os.html) and they do not use an `org` directive so it defaults to `org 0x0000`. Their bootloader is in fact designed to use the segment of 0x7c0. – Michael Petch Sep 01 '18 at 13:25
  • 4
    Often bootloaders that relocate themselves from physical address 0x7c00 to lower memory (ie: 0x600) will use 0x7c0 as the initial segment and offset of 0x0000. An `org 0x0000` can easily be relocated to any segment. – Michael Petch Sep 01 '18 at 13:39
  • I found an excellent post by Michael regarding the use of ORG directive. It suggests setting registers explicitly to ensure code work as intended on different hardware/virtual emulator. Here's the [link](https://stackoverflow.com/questions/34411336/reading-from-memory-in-8086-real-mode-while-using-org-0x0000/34425506#34425506). Regarding the segment range, I didn't pay attention to the 20-bit address and the left shift of the SS value. So the range is 64kib per segment. Thanks for pointing it out. – supmethods Sep 04 '18 at 00:00
  • @supmethods 64kiB ("b" is often used for "bits", while "B" is usually used for bytes ... not everyone follows it, so you should always also check against convention/topic/what-makes-sense, but being aware of the two is a must, if you work in assembly. (and if you will read older books/texts, then "kB" always mean "kiB", i.e. "kibi" 2^10, not "kilo" 10^3. If bored, check https://en.wikipedia.org/wiki/Binary_prefix for details ... in the beginning of IT era there was no need to differentiate them, because everybody knew what made sense in IT context, but then disk vendors used 10^3 and ruined it – Ped7g Sep 04 '18 at 01:30