Re: Accessing program counter registers from within C or Aseembler.
From: linux-os
Date: Tue Nov 16 2004 - 16:57:05 EST
On Tue, 16 Nov 2004, A M wrote:
Hello,
Does anybody know how to access the address of the
current executing instruction in C while the program
is executing?
Sure. Any interrupt saves the return address. It can
be thus inspected. The debugger uses a software interrupt
to do the same thing. The offset of the current instruction
is in EIP for ix86 machines. The problem is that if you
execute code to get that EIP, you end up getting the EIP
of the code that reads the EIP (not too useful). Therefore,
you need to use an interrupt.
Also, is there a method to load a program image from
memory not a file (an exec that works with a memory
address)? Mainly I am looking for a method that brings
a program image into memory modify parts of it and
start the in-memory modified version.
extern char buffer[];
Make some code to load code into that buffer.
int (*funct)(void) = buffer;
Initialize a pointer to that buffer, then call it.
Note, code needs to be relocatable. If you don't know
what that means, don't do this at home.
In principle, the code is supposed to be loaded into the
.text segment. You can make a text-segment buffer using
assembly
.section .text
buffer: .long 0
.global buffer
.type buffer,@function
.org . + 0x1000
end:
.size buffer,.-buffer
.end
Can anybody think of a method to replace a thread
image without replacing the whole process image?
Thanks,
Ali
Just overwrite the code...
funct()
{
}
next()
{
}
main()
{
len = (funct - next);
memcpy(funct, new_code, len);
funct();
}
Cheers,
Dick Johnson
Penguin : Linux version 2.6.9 on an i686 machine (5537.79 BogoMips).
Notice : All mail here is now cached for review by John Ashcroft.
98.36% of all statistics are fiction.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/