From 85a01fe90f7377e6db36f117c8a1217e15be5401 Mon Sep 17 00:00:00 2001
From: Galen Williamson <galen@vector35.com>
Date: Fri, 15 Aug 2025 16:38:43 -0400
Subject: [PATCH] [aarch64] Enable Always and Never Branch patching for
 TBZ/TBNZ and CBZ/CBNZ

---
 arch/arm64/arch_arm64.cpp | 18 +++++++++++++-----
 1 file changed, 13 insertions(+), 5 deletions(-)

diff --git a/arch/arm64/arch_arm64.cpp b/arch/arm64/arch_arm64.cpp
index b0e979952..7ca02a7e4 100644
--- a/arch/arm64/arch_arm64.cpp
+++ b/arch/arm64/arch_arm64.cpp
@@ -1168,7 +1168,7 @@ class Arm64Architecture : public Architecture
 		Instruction instr;
 		if (!Disassemble(data, addr, len, instr))
 			return false;
-		return IsConditionalBranch(instr);
+		return IsConditionalJump(instr);
 	}
 
 
@@ -1177,7 +1177,7 @@ class Arm64Architecture : public Architecture
 		Instruction instr;
 		if (!Disassemble(data, addr, len, instr))
 			return false;
-		return IsConditionalBranch(instr);
+		return IsConditionalJump(instr);
 	}
 
 
@@ -1230,9 +1230,17 @@ class Arm64Architecture : public Architecture
 			return false;
 
 		uint32_t* value = (uint32_t*)data;
-		// Combine the immediate in the first operand with the unconditional branch opcode to form
-		// an unconditional branch instruction
-		*value = (5 << 26) | (((uint32_t)((instr.operands[0].immediate - addr) >> 2)) & 0x03ffffff);
+		if (IsConditionalBranch(instr))
+		{
+			// Combine the immediate in the first operand with the unconditional branch opcode to form
+			// an unconditional branch instruction
+			*value = (5 << 26) | (((uint32_t)((instr.operands[0].immediate - addr) >> 2)) & 0x03ffffff);
+		}
+		else
+		{
+			// Force to a *BZ, then change the register to zero register (WZR or XZR, determined by bit 31)
+			*value = (*value & ~(1 << 24)) | 0x0f;
+		}
 		return true;
 	}