x86 asm 1
play

x86 ASM (1) 1 last time: VMs confjgurablity consistent - PowerPoint PPT Presentation

Jun 25, 2023 •143 likes •1.34k views

x86 ASM (1) 1 last time: VMs confjgurablity consistent environment isolation run malware in safe environment key mechanism: hardware support hardware gives VM monitor control when needed backup mechanism: emulation, binary translation 2

  1. SSE registers addps %xmm1, %xmm0 (single-precision fmoat) add packed single (single-precision fmoat) move packed single array of 4 fmoats movps %xmm0, result movps ones, %xmm1 SSE and SSE2 extensions brought vector instructions movps numbers, %xmm0 ... .float 0 .float 0 .float 0 .float 0 result: .float 1 .float 3 .float 5 .float 7 ones: numbers: .float 1 .float 2 .float 3. float 4 34 /* result contains: 1 + 1=2,2 + 3=5,3 + 5=8,4 + 7=11 */

  2. XMM registers %xmm0 through %xmm15 ( %xmm8 on 32-bit) each holds 128-bits — 32-bit fmoating point values ( addps ) 64-bit fmoating point values ( addpd ) 64/32/16/8-bit integers ( paddq/d/w/b ) a 32-bit fmoating point value, 96 unused bits ( addss ) a 64-bit fmoating point value, 64 unused bits ( addsd ) 35

  3. XMM registers %xmm0 through %xmm15 ( %xmm8 on 32-bit) each holds 128-bits — 32-bit fmoating point values ( addps ) 64-bit fmoating point values ( addpd ) 64/32/16/8-bit integers ( paddq/d/w/b ) a 32-bit fmoating point value, 96 unused bits ( addss ) a 64-bit fmoating point value, 64 unused bits ( addsd ) 35

  4. FP example multiplyEachElementOfArray: /* %rsi = array, %rdi length , %xmm0 multiplier */ loop : test %rdi, %rdi je done movss (%rsi), %xmm1 mulss %xmm0, %xmm1 movss %xmm1, (%rsi) subq $1, %rdi addq $4, %rsi jmp loop done: ret 36

  5. fmoating point calling convention use %xmm registers in order 37

  6. note: variadic functions variable number of arguments printf , scanf , … see man stdarg same as usual …but %rax contains number of %xmm used 38

  7. AVX recent Intel/AMD processors implement the AVX extension adds %ymm registers 256-bit versions of %xmm registers XMM0 is a name for the bottom 128 bits of YMM0 like RAX and EAX, or RDX and EDX (later extension: even larger zmm registers) 39

  8. addressing modes (1) $constant displacement(%base, %index, scale) displacement (absolute) displacement(%base) displacement(,%index, scale) 40 (= displacement + base + index × scale)

  9. addressing modes (2) displacement(%rip) (64-bit only) thing: .quad 42 ... movq thing(%rip), %rax (normally: label encoded as 32 or 64-bit address) helps relocatable code 41 encoded as ofgset from address of next instruction

  10. addressing modes (3) jmp *%rax (or call ) Intel syntax: jmp RAX what you’d expect to be jmp (%rax) jmp *(%rax) read value from memory at RAX PC becomes location in that value Intel syntax: jmp [RAX] jmp *(%rax,%rbx,8) 42

  11. recall(?): virtual memory Program B code = kernel-mode only trigger error real memory … OS data Program B data Program A data Program A code illuision of dedicated memory (set by OS) mapping (set by OS) mapping addresses Program B addresses Program A 43

  12. segmentation before virtual memory, there was segmentation fault? no segmentation computed address 0x70000 0x30000 2 0x50000 0x6F000 1 0x14300 0x60000 0 limit base seg # address 0x23456 ofgset: 0x1 segment #: 44 + < =

  13. x86 segmentation addresses you’ve seen are the ofgsets but every access uses a segment number! segment numbers come from registers CS — code segment number (jump, call, etc.) SS — stack segment number (push, pop, etc.) DS — data segment number (mov, add, etc.) ES, FS, GS — extra segments (never default) movq $42, % fs :100(%rsi) // move 42 to segment (# in FS), 45 instructions can have a segment override: // offset 100 + RSI

  14. program address after segmentation “virtual address” segment table from instruction + segment register Figure: Intel manuals, Vol 3A 46

  15. program address after segmentation “virtual address” segment table from instruction + segment register Figure: Intel manuals, Vol 3A 46

  16. program address after segmentation “virtual address” segment table from instruction + segment register Figure: Intel manuals, Vol 3A 46

  17. segments and privilege levels user mode/kernel mode in x86 — controlled by segment table entry! 64 versus 32-bit mode in x86 — controlled by segment table entry! 47

  18. x86 segment descriptor user or kernel mode? (if code) 64-bit or 32-bit or 16-bit mode? (if code) Figure: Intel manuals, Volume 3A 48

  19. x86 segment descriptor user or kernel mode? (if code) 64-bit or 32-bit or 16-bit mode? (if code) Figure: Intel manuals, Volume 3A 48

  20. x86 segment descriptor user or kernel mode? (if code) 64-bit or 32-bit or 16-bit mode? (if code) Figure: Intel manuals, Volume 3A 48

  21. 64-bit segmentation in 64-bit mode: limits are ignored base addresses are ignored …except for %fs , %gs efgectively: extra pointer register 49

  22. segments on x86 mostly unused even in 32-bit mode exception: thread-local storage — FS or GS acts as pointer! 50

  23. reading assembly guides the calling convention is your friend identify functions, arguments, purpose, etc. don’t be scared of the manuals or alternate resources if you don’t know what an instruction is… 51

  24. next: machine code what’s actually in binaries machine code data about machine code 52

  25. memory v. disk Used by OS (virtual) memory Stack Heap / other dynamic Writable data Code + Constants program header program on disk .text (code) .rodata (read-only data) .data .bss (zeroes; not stored) 53

  26. ELF (executable and linking format) Linux (and some others) executable/object fjle format header : machine type, fjle type, etc. program header : “segments” to load (also, some other information) segment 1 data segment 2 data section header : list of “sections”(mostly for linker) 54

  27. segments versus sections? note: ELF terminology; may not be true elsewhere! sections — exist in object fjles (and usually have information on intended purpose linkers combine these to create executables linkers might omit unneeded sections segments — exist in executables, used to load program segments are for 55 executables), used by linker program loader is dumb — doesn’t know what

  28. ELF example objdump -x /bin/busybox (on my laptop) -x : output all headers /bin/busybox: file format elf64-x86-64 /bin/busybox architecture: i386:x86-64, flags 0x00000102: EXEC_P, D_PAGED start address 0x0000000000401750 Program Header: [...] Sections: [...] 56

  29. ELF example objdump -x /bin/busybox (on my laptop) -x : output all headers /bin/busybox: /bin/busybox architecture: i386:x86-64, flags 0x00000102: EXEC_P, D_PAGED start address 0x0000000000401750 Program Header: [...] Sections: [...] 56 file format elf64-x86-64

  30. ELF example objdump -x /bin/busybox (on my laptop) -x : output all headers /bin/busybox: file format elf64-x86-64 /bin/busybox architecture: i386:x86-64, flags 0x00000102: EXEC_P, D_PAGED Program Header: [...] Sections: [...] 56 start address 0x0000000000401750

  31. a program header (1) from 0x0 bytes into the fjle readable and writable with 0x7d18 – 0x21ee bytes of zeroes to memory at 0x7dbea8 from 0x1dbea8 load 0x21ee bytes: readable and executable to memory at 0x40000 load 0x1db697 bytes: Program Header: [...] filesz 0x00021ee memsz 0x0007d18 flags rw- 0x01dbea8 vaddr 0x07dbea8 paddr 0x07dbea8 align 2**21 LOAD off filesz 0x01db697 memsz 0x01db697 flags r-x 0x0000000 vaddr 0x0400000 paddr 0x0400000 align 2**21 LOAD off 57

  32. a program header (1) from 0x0 bytes into the fjle readable and writable with 0x7d18 – 0x21ee bytes of zeroes to memory at 0x7dbea8 from 0x1dbea8 load 0x21ee bytes: readable and executable to memory at 0x40000 57 Program Header: [...] filesz 0x00021ee memsz 0x0007d18 flags rw- 0x01dbea8 vaddr 0x07dbea8 paddr 0x07dbea8 align 2**21 LOAD off filesz 0x01db697 memsz 0x01db697 flags r-x 0x0000000 vaddr 0x0400000 paddr 0x0400000 align 2**21 LOAD off load 0x1db697 bytes:

  33. a program header (1) from 0x0 bytes into the fjle readable and writable with 0x7d18 – 0x21ee bytes of zeroes to memory at 0x7dbea8 from 0x1dbea8 load 0x21ee bytes: readable and executable to memory at 0x40000 load 0x1db697 bytes: Program Header: [...] filesz 0x00021ee memsz 0x0007d18 flags rw- 0x01dbea8 vaddr 0x07dbea8 paddr 0x07dbea8 align 2**21 LOAD off filesz 0x01db697 memsz 0x01db697 flags r-x 0x0000000 vaddr 0x0400000 paddr 0x0400000 align 2**21 LOAD off 57

  34. a program header (1) from 0x0 bytes into the fjle readable and writable with 0x7d18 – 0x21ee bytes of zeroes to memory at 0x7dbea8 from 0x1dbea8 load 0x21ee bytes: readable and executable to memory at 0x40000 load 0x1db697 bytes: Program Header: [...] filesz 0x00021ee memsz 0x0007d18 flags rw- 0x01dbea8 vaddr 0x07dbea8 paddr 0x07dbea8 align 2**21 LOAD off filesz 0x01db697 memsz 0x01db697 flags r-x 0x0000000 vaddr 0x0400000 paddr 0x0400000 align 2**21 LOAD off 57

  35. a program header (2) filesz 0x0000000 memsz 0x0000000 flags rw- RELRO — make this read-only after runtime linking STACK — indicates stack is read/write TLS — thread-local storage region (used via %fs ) NOTE — comment filesz 0x0000158 memsz 0x0000158 flags r-- 0x01dbea8 vaddr 0x07dbea8 paddr 0x07dbea8 align 2**0 RELRO off 0x0000000 vaddr 0x0000000 paddr 0x0000000 align 2**4 Program Header: STACK off filesz 0x0000030 memsz 0x000007a flags r-- 0x01dbea8 vaddr 0x07dbea8 paddr 0x07dbea8 align 2**3 off TLS filesz 0x0000044 memsz 0x0000044 flags r-- 0x0000190 vaddr 0x0400190 paddr 0x0400190 align 2**2 NOTE off 58

  36. a section header 2**3 00000000007dbed8 001dbed8 2**3 CONTENTS, ALLOC, LOAD, DATA 19 .fini_array 00000010 00000000007dbee8 00000000007dbee8 001dbee8 CONTENTS, ALLOC, LOAD, DATA 00000010 20 .jcr 00000008 00000000007dbef8 00000000007dbef8 001dbef8 2**3 CONTENTS, ALLOC, LOAD, DATA 21 .data.rel.ro 000000e8 00000000007dbf00 00000000007dbed8 18 .init_array 001dbf00 00000030 2**3 CONTENTS, ALLOC, LOAD, READONLY, DATA 15 .gcc_except_table 0000020b 00000000005db48c 00000000005db48c 001db48c 2**0 CONTENTS, ALLOC, LOAD, READONLY, DATA 16 .tdata 00000000007dbea8 ALLOC, THREAD_LOCAL 00000000007dbea8 001dbea8 2**3 CONTENTS, ALLOC, LOAD, DATA, THREAD_LOCAL 17 .tbss 0000004a 00000000007dbed8 00000000007dbed8 001dbed8 2**3 00000000007dbf00 2**6 00000000005c72b0 27 .note.stapsdt 0000100c 001de096 2**6 ALLOC 26 __libc_freeres_ptrs 00000070 00000000007e3b50 00000000007e3b50 001de096 2**3 ALLOC 0000000000000000 00000000007de0c0 0000000000000000 001de098 2**2 CONTENTS, READONLY 28 .gnu_debuglink 00000034 0000000000000000 0000000000000000 001df0a4 2**0 CONTENTS, READONLY 00000000007de0c0 00005a90 CONTENTS, ALLOC, LOAD, DATA 00000000007dc000 22 .got 00000010 00000000007dbfe8 00000000007dbfe8 001dbfe8 2**3 CONTENTS, ALLOC, LOAD, DATA 23 .got.plt 000000c8 00000000007dc000 25 .bss 001dc000 2**3 CONTENTS, ALLOC, LOAD, DATA 24 .data 00001f96 00000000007dc100 00000000007dc100 001dc100 2**6 CONTENTS, ALLOC, LOAD, DATA 001c72b0 00000000005c72b0 Sections: 0000000000400410 3 .init 0000001a 00000000004003e8 00000000004003e8 000003e8 2**2 CONTENTS, ALLOC, LOAD, READONLY, CODE 4 .plt 00000160 0000000000400410 2**3 00000410 2**4 CONTENTS, ALLOC, LOAD, READONLY, CODE 5 .text 0017ff1d 0000000000400570 0000000000400570 00000570 2**4 CONTENTS, ALLOC, LOAD, READONLY, CODE CONTENTS, ALLOC, LOAD, READONLY, DATA 000001d8 0000000000580490 00000190 Idx Name Size VMA LMA File off Algn 0 .note.ABI-tag 00000020 0000000000400190 0000000000400190 2**2 00000000004001d8 CONTENTS, ALLOC, LOAD, READONLY, DATA 1 .note.gnu.build-id 00000024 00000000004001b0 00000000004001b0 000001b0 2**2 CONTENTS, ALLOC, LOAD, READONLY, DATA 2 .rela.plt 00000210 00000000004001d8 6 __libc_freeres_fn 00002032 0000000000580490 000141dc 00000000005c7290 2**3 CONTENTS, ALLOC, LOAD, READONLY, DATA 11 .stapsdt.base 00000001 00000000005c7288 00000000005c7288 001c7288 2**0 CONTENTS, ALLOC, LOAD, READONLY, DATA 12 __libc_atexit 00000008 00000000005c7290 00000000005c71c8 001c7290 2**3 CONTENTS, ALLOC, LOAD, READONLY, DATA 13 __libc_thread_subfreeres 00000018 00000000005c7298 00000000005c7298 001c7298 2**3 CONTENTS, ALLOC, LOAD, READONLY, DATA 14 .eh_frame 001c71c8 00000000005c71c8 00180490 00000000005826ec 2**4 CONTENTS, ALLOC, LOAD, READONLY, CODE 7 __libc_thread_freeres_fn 0000021b 00000000005824d0 00000000005824d0 001824d0 2**4 CONTENTS, ALLOC, LOAD, READONLY, CODE 8 .fini 00000009 00000000005826ec 10 __libc_subfreeres 000000c0 001826ec 2**2 CONTENTS, ALLOC, LOAD, READONLY, CODE 9 .rodata 00044ac8 0000000000582700 0000000000582700 00182700 2**6 CONTENTS, ALLOC, LOAD, READONLY, DATA 59

  37. sections tons of “sections” not actually needed/used to run program size, fjle ofgset, fmags (code/data/etc.) some sections aren’t stored (no “CONTENTS” fmag) — just zeroes 60

  38. selected sections .init / .fini based on http://people.redhat.com/mpolacek/src/devconf2012.pdf try/catch related .eh_frame linking related .got / .plt global constructors/destructors read-only data .text .rodata other writeable data .data initially zero data (block started by symbol) .bss program code 61

  39. other executable formats PE (Portable Executable) — Windows Mach-O — MacOS X broadly similar to ELF difgerences: whether segment/section distinction exists how linking/debugging info represented how program start info represented 62

  40. executable startup: naive copy segments into memory jump to start address assumes everything is in executable 63

  41. executable startup: with linking libraries often seperate from executable when true: dynamic linking 64

  42. linking callq printf callq 0x458F0 65

  43. static v. dynamic linking static linking — linking done to create executable dynamic linking — linking done when executable is run 66

  44. linking data structures example: main: in assembly adds symbol table entry for main example: call printf adds relocation for name printf 67 symbol table: name ⇒ (section, ofgset) relocation table: ofgset ⇒ (name, kind)

  45. hello.s .data string: .asciz "Hello, World!" .text .globl main main: movq $string, %rdi call puts ret 68 ␣

  46. hello.o undefjned symbol: look for puts elsewhere OFFSET TYPE VALUE 0000000000000003 R_X86_64_32S .data 0000000000000008 R_X86_64_PC32 puts-0x0000000000000004 insert address of puts, format for call 0000000000000000 puts insert address of string, format for movq difgerent ways to represent address 32S — signed 32-bit value PC32 — 32-bit difgerence from current address list of kinds in ABI document (with calling conventions) g : global — used by other fjles l : local .text segment beginning plus 0 bytes RELOCATION RECORDS FOR [.text]: *UND* SYMBOL TABLE: 0000000000000000 l 0000000000000000 l d .text 0000000000000000 .text 0000000000000000 l d .data 0000000000000000 .data d 0000000000000000 .bss 0000000000000000 .bss 0000000000000000 l .data 0000000000000000 string 0000000000000000 g .text 0000000000000000 main 69

  47. hello.o undefjned symbol: look for puts elsewhere OFFSET TYPE VALUE 0000000000000003 R_X86_64_32S .data 0000000000000008 R_X86_64_PC32 puts-0x0000000000000004 insert address of puts, format for call 0000000000000000 puts insert address of string, format for movq difgerent ways to represent address 32S — signed 32-bit value PC32 — 32-bit difgerence from current address list of kinds in ABI document (with calling conventions) g : global — used by other fjles l : local .text segment beginning plus 0 bytes RELOCATION RECORDS FOR [.text]: *UND* SYMBOL TABLE: 0000000000000000 l 0000000000000000 l d .text 0000000000000000 .text 0000000000000000 l d .data 0000000000000000 .data d 0000000000000000 .bss 0000000000000000 .bss 0000000000000000 l .data 0000000000000000 string 0000000000000000 g .text 0000000000000000 main 69

  48. hello.o undefjned symbol: look for puts elsewhere OFFSET TYPE VALUE 0000000000000003 R_X86_64_32S .data 0000000000000008 R_X86_64_PC32 puts-0x0000000000000004 insert address of puts, format for call 0000000000000000 puts insert address of string, format for movq difgerent ways to represent address 32S — signed 32-bit value PC32 — 32-bit difgerence from current address list of kinds in ABI document (with calling conventions) g : global — used by other fjles l : local .text segment beginning plus 0 bytes RELOCATION RECORDS FOR [.text]: *UND* SYMBOL TABLE: 0000000000000000 l 0000000000000000 l d .text 0000000000000000 .text 0000000000000000 l d .data 0000000000000000 .data d 0000000000000000 .bss 0000000000000000 .bss 0000000000000000 l .data 0000000000000000 string 0000000000000000 g .text 0000000000000000 main 69

  49. hello.o undefjned symbol: look for puts elsewhere OFFSET TYPE VALUE 0000000000000003 R_X86_64_32S .data 0000000000000008 R_X86_64_PC32 puts-0x0000000000000004 insert address of puts, format for call 0000000000000000 puts insert address of string, format for movq difgerent ways to represent address 32S — signed 32-bit value PC32 — 32-bit difgerence from current address list of kinds in ABI document (with calling conventions) g : global — used by other fjles l : local .text segment beginning plus 0 bytes RELOCATION RECORDS FOR [.text]: *UND* SYMBOL TABLE: 0000000000000000 l 0000000000000000 l d .text 0000000000000000 .text 0000000000000000 l d .data 0000000000000000 .data d 0000000000000000 .bss 0000000000000000 .bss 0000000000000000 l .data 0000000000000000 string 0000000000000000 g .text 0000000000000000 main 69

  50. hello.o insert address of puts, format for call RELOCATION RECORDS FOR [.text]: OFFSET TYPE VALUE .data puts-0x0000000000000004 undefjned symbol: look for puts elsewhere insert address of string, format for movq SYMBOL TABLE: difgerent ways to represent address 32S — signed 32-bit value PC32 — 32-bit difgerence from current address list of kinds in ABI document (with calling conventions) g : global — used by other fjles l : local .text segment beginning plus 0 bytes 0000000000000000 puts *UND* 0000000000000000 0000000000000000 l 0000000000000000 l d .text 0000000000000000 .text 0000000000000000 l d .data 0000000000000000 .data d 0000000000000000 main .bss 0000000000000000 .bss 0000000000000000 l .data 0000000000000000 string 0000000000000000 g .text 69 0000000000000003 R_X86_64_32S 0000000000000008 R_X86_64_PC32

  51. hello.o undefjned symbol: look for puts elsewhere OFFSET TYPE VALUE 0000000000000003 R_X86_64_32S .data 0000000000000008 R_X86_64_PC32 puts-0x0000000000000004 insert address of puts, format for call 0000000000000000 puts insert address of string, format for movq difgerent ways to represent address 32S — signed 32-bit value PC32 — 32-bit difgerence from current address list of kinds in ABI document (with calling conventions) g : global — used by other fjles l : local .text segment beginning plus 0 bytes RELOCATION RECORDS FOR [.text]: *UND* SYMBOL TABLE: 0000000000000000 l 0000000000000000 l d .text 0000000000000000 .text 0000000000000000 l d .data 0000000000000000 .data d 0000000000000000 .bss 0000000000000000 .bss 0000000000000000 l .data 0000000000000000 string .text 0000000000000000 main 69 0000000000000000 g

  52. hello.o undefjned symbol: look for puts elsewhere OFFSET TYPE VALUE 0000000000000003 R_X86_64_32S .data 0000000000000008 R_X86_64_PC32 puts-0x0000000000000004 insert address of puts, format for call 0000000000000000 puts insert address of string, format for movq difgerent ways to represent address 32S — signed 32-bit value PC32 — 32-bit difgerence from current address list of kinds in ABI document (with calling conventions) g : global — used by other fjles l : local .text segment beginning plus 0 bytes RELOCATION RECORDS FOR [.text]: *UND* SYMBOL TABLE: 0000000000000000 l 0000000000000000 l d .text 0000000000000000 .text 0000000000000000 l d .data 0000000000000000 .data d 0000000000000000 .bss 0000000000000000 .bss 0000000000000000 l .data 0000000000000000 string 0000000000000000 g .text 0000000000000000 main 69

  53. dynamic versus static linking dynamic linking could work the same as static linking but it doesn’t performance issue: avoid changing code same code for multiple instances of program same memory for fjlesystem as loaded program complexity issue: keep OS loader simple 70

  54. next time: dynamic linking and machine code 71

  55. RE assignment assembly reading practice 72

  56. interlude: strace strace — system call tracer indicates what system calls (operating system services) used by a program 73

  57. statically linked hello.exe = 0x20c8000 standard library shutdown implementation of puts memory allocation standard library startup +++ exited with 14 +++ = ? exit_group(14) = 14 write(1, "Hello, World!\n", 14) fstat(1, st_mode=S_IFCHR|0620, st_rdev=makedev(136, 1), ...) = 0 = -1 ENOENT (No such file or directory) access("/etc/ld.so.nohwcap", F_OK) brk(0x20c8000) gcc -static -o hello-static.exe hello.s = 0x20c71c0 brk(0x20c71c0) readlink("/proc/self/exe", "/home/cr4bd/spring2017/cs4630/sl"..., 4096) = 62 = 0 arch_prctl(ARCH_SET_FS, 0x20a5880) = 0x20a61c0 brk(0x20a61c0) = 0x20a5000 brk(NULL) uname(sysname="Linux", nodename="reiss-lenovo", ...) = 0 execve("./hello-static.exe", ["./hello-static.exe"], [/* 46 vars */]) = 0 strace ./hello-static.exe : 74

  58. statically linked hello.exe = 0x20c8000 standard library shutdown implementation of puts memory allocation standard library startup +++ exited with 14 +++ = ? exit_group(14) = 14 write(1, "Hello, World!\n", 14) fstat(1, st_mode=S_IFCHR|0620, st_rdev=makedev(136, 1), ...) = 0 = -1 ENOENT (No such file or directory) access("/etc/ld.so.nohwcap", F_OK) brk(0x20c8000) gcc -static -o hello-static.exe hello.s = 0x20c71c0 brk(0x20c71c0) readlink("/proc/self/exe", "/home/cr4bd/spring2017/cs4630/sl"..., 4096) = 62 = 0 arch_prctl(ARCH_SET_FS, 0x20a5880) = 0x20a61c0 brk(0x20a61c0) = 0x20a5000 brk(NULL) uname(sysname="Linux", nodename="reiss-lenovo", ...) = 0 execve("./hello-static.exe", ["./hello-static.exe"], [/* 46 vars */]) = 0 strace ./hello-static.exe : 74

  59. statically linked hello.exe = 0x20c8000 standard library shutdown implementation of puts memory allocation standard library startup +++ exited with 14 +++ = ? exit_group(14) = 14 write(1, "Hello, World!\n", 14) fstat(1, st_mode=S_IFCHR|0620, st_rdev=makedev(136, 1), ...) = 0 = -1 ENOENT (No such file or directory) access("/etc/ld.so.nohwcap", F_OK) brk(0x20c8000) gcc -static -o hello-static.exe hello.s = 0x20c71c0 brk(0x20c71c0) readlink("/proc/self/exe", "/home/cr4bd/spring2017/cs4630/sl"..., 4096) = 62 = 0 arch_prctl(ARCH_SET_FS, 0x20a5880) = 0x20a61c0 brk(0x20a61c0) = 0x20a5000 brk(NULL) uname(sysname="Linux", nodename="reiss-lenovo", ...) = 0 execve("./hello-static.exe", ["./hello-static.exe"], [/* 46 vars */]) = 0 strace ./hello-static.exe : 74

  60. statically linked hello.exe = 0x20c8000 standard library shutdown implementation of puts memory allocation standard library startup +++ exited with 14 +++ = ? exit_group(14) = 14 write(1, "Hello, World!\n", 14) fstat(1, st_mode=S_IFCHR|0620, st_rdev=makedev(136, 1), ...) = 0 = -1 ENOENT (No such file or directory) access("/etc/ld.so.nohwcap", F_OK) brk(0x20c8000) gcc -static -o hello-static.exe hello.s = 0x20c71c0 brk(0x20c71c0) readlink("/proc/self/exe", "/home/cr4bd/spring2017/cs4630/sl"..., 4096) = 62 = 0 arch_prctl(ARCH_SET_FS, 0x20a5880) = 0x20a61c0 brk(0x20a61c0) = 0x20a5000 brk(NULL) uname(sysname="Linux", nodename="reiss-lenovo", ...) = 0 execve("./hello-static.exe", ["./hello-static.exe"], [/* 46 vars */]) = 0 strace ./hello-static.exe : 74

  61. statically linked hello.exe = 0x20c8000 standard library shutdown implementation of puts memory allocation standard library startup +++ exited with 14 +++ = ? exit_group(14) = 14 write(1, "Hello, World!\n", 14) fstat(1, st_mode=S_IFCHR|0620, st_rdev=makedev(136, 1), ...) = 0 = -1 ENOENT (No such file or directory) access("/etc/ld.so.nohwcap", F_OK) brk(0x20c8000) gcc -static -o hello-static.exe hello.s = 0x20c71c0 brk(0x20c71c0) readlink("/proc/self/exe", "/home/cr4bd/spring2017/cs4630/sl"..., 4096) = 62 = 0 arch_prctl(ARCH_SET_FS, 0x20a5880) = 0x20a61c0 brk(0x20a61c0) = 0x20a5000 brk(NULL) uname(sysname="Linux", nodename="reiss-lenovo", ...) = 0 execve("./hello-static.exe", ["./hello-static.exe"], [/* 46 vars */]) = 0 strace ./hello-static.exe : 74

  62. dynamically linked hello.exe mmap(0x7fdfee912000, 14752, PROT_READ|PROT_WRITE, ..., -1, 0) = 0x7fdfee912000 allocate zero-initialized data segment for C library load standard C library ( 3 = opened fjle) read standard C library header memory allocation (difgerent method) the standard C library (includes puts +++ exited with 14 +++ = ? exit_group(14) = 14 write(1, "Hello, World!\n", 14) ... = 0 close(3) mmap(0x7fdfee90c000, 24576, PROT_READ|PROT_WRITE, ..., 3, 0x1bf000) = 0x7fdfee90c000 gcc -o hello.exe hello.s mprotect(0x7fdfee70c000, 2097152, PROT_NONE) = 0 mmap(NULL, 3967392, PROT_READ|PROT_EXEC, ..., 3, 0) = 0x7fdfee54d000 fstat(3, st_mode=S_IFREG|0755, st_size=1864888, ...) = 0 read(3, "\177ELF\2\1\1\3\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0P\t\2\0\0\0\0\0"..., 832) = 832 open("/lib/x86_64-linux-gnu/libc.so.6", O_RDONLY|O_CLOEXEC) = 3 ... fstat(3, st_mode=S_IFREG|0644, st_size=137808, ...) = 0 open("/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3 = -1 ENOENT (No such file or directory) access("/etc/ld.so.preload", R_OK) mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fdfeeb39000 ... execve("./hello.exe", ["./hello.exe"], [/* 46 vars */]) = 0 strace ./hello.exe : 75

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ABI Compatibility Through A Customizable Language Kevin Atkinson PhD Thesis University of Utah

ABI Compatibility Through A Customizable Language Kevin Atkinson PhD Thesis University of Utah

ABI Compatibility Through A Customizable Language Kevin Atkinson PhD Thesis University of Utah 1 Application Programmer Interface (API) class X { virtual int f(); Library ... API }; Application Library class Y API int main() { X

708 views • 51 slides
eBASH: ECRYPT, VAMPIRE ECRYPT Benchmarking European Union has funded of All Submitted Hashes

eBASH: ECRYPT, VAMPIRE ECRYPT Benchmarking European Union has funded of All Submitted Hashes

eBASH: ECRYPT, VAMPIRE ECRYPT Benchmarking European Union has funded of All Submitted Hashes ECRYPT I network (20042008), ECRYPT II network (20082012). http://bench.cr.yp.to /ebash.html ECRYPTs virtual labs include D. J.

782 views • 30 slides
Resilience of randomized RNS arithmetic with respect to side-channel leaks of cryptographic

Resilience of randomized RNS arithmetic with respect to side-channel leaks of cryptographic

Resilience of randomized RNS arithmetic with respect to side-channel leaks of cryptographic computation Jrme Courtois jerome.courtois@lip6.fr May 5, 2019 In collaboration with Lokmane Abbas-Turki and Jean-Claude Bajard Jrme Courtois

1.45k views • 44 slides
CS 241: Systems Programming Lecture 30. Dynamic Libraries Fall 2019 Prof. Stephen Checkoway 1

CS 241: Systems Programming Lecture 30. Dynamic Libraries Fall 2019 Prof. Stephen Checkoway 1

CS 241: Systems Programming Lecture 30. Dynamic Libraries Fall 2019 Prof. Stephen Checkoway 1 Announcements No class on Friday No o ffi ce hours Thursday or Friday of this week 2 Last time Static libraries (or archives) are a way of bundling

490 views • 18 slides
CSE440: Introduction to HCI Methods for Design, Prototyping and Evaluating User Interaction

CSE440: Introduction to HCI Methods for Design, Prototyping and Evaluating User Interaction

CSE440: Introduction to HCI Methods for Design, Prototyping and Evaluating User Interaction Lecture 14: Nigini Oliveira Patterns Manaswi Saha Liang He Jian Li Zheng Jeremy Viny Course Progress Patterns a general repeatable solution

788 views • 61 slides
CSE 440: Introduction to HCI User Interface Design, Prototyping, and Evaluation Lecture 14:

CSE 440: Introduction to HCI User Interface Design, Prototyping, and Evaluation Lecture 14:

CSE 440: Introduction to HCI User Interface Design, Prototyping, and Evaluation Lecture 14: James Fogarty Patterns Alex Fiannaca Lauren Milne Saba Kawas Kelsey Munsell Tuesday/Thursday 12:00 to 1:20 Today Course Progress Mockups Due

744 views • 72 slides
Building Faster Mobile Websites WebRTC the nuts and bolts of hitting the 1000 millisecond

Building Faster Mobile Websites WebRTC the nuts and bolts of hitting the 1000 millisecond

Building Faster Mobile Websites WebRTC the nuts and bolts of hitting the 1000 millisecond &quot;time to glass&quot; target ... +Ilya Grigorik @igrigorik Video of the talk: http://bit.ly/12GFKDE Make The Web Faster, Google What's the

1.34k views • 51 slides
Metrics and models for Web performance evaluation or, How to measure SpeedIndex from raw encrypted

Metrics and models for Web performance evaluation or, How to measure SpeedIndex from raw encrypted

Metrics and models for Web performance evaluation or, How to measure SpeedIndex from raw encrypted packets, and why it matters QoE = f(QoS) This talk Dario Rossi dario.rossi@huawei.com Director, DataCom (*) Lab Brussels, Feb 1 st 2020 Huawei

557 views • 29 slides
EmailMarke+ng Wri+ngTipstoImproveEmailResults Craig Stouffer Mark

EmailMarke+ng Wri+ngTipstoImproveEmailResults Craig Stouffer Mark

EmailMarke+ng Wri+ngTipstoImproveEmailResults Craig Stouffer Mark Feldman Pinpointe On-Demand NetProspex VP Marketing cstouffer@pinpointe.com mfeldman@NetProspex.com (408) 834-7577 (781) 290-5714 @pinpointe

676 views • 31 slides
Introduction to Human Computer Interaction Course on NPTEL, Spring 2018 Week 6.1 Ponnurangam

Introduction to Human Computer Interaction Course on NPTEL, Spring 2018 Week 6.1 Ponnurangam

Introduction to Human Computer Interaction Course on NPTEL, Spring 2018 Week 6.1 Ponnurangam Kumaraguru (PK) Associate Professor ACM Distinguished &amp; TEDx Speaker Linkedin/in/ponguru/ fb/ponnurangam.kumaraguru, @ponguru 1 Core

565 views • 34 slides
Marketing &amp; Brand Director MVMT Speaker Headshot Marketing &amp; Brand Director, MVMT

Marketing &amp; Brand Director MVMT Speaker Headshot Marketing &amp; Brand Director, MVMT

Marketing &amp; Brand Director MVMT Speaker Headshot Marketing &amp; Brand Director, MVMT MarketingSherpa Summit 2016 MarketingSherpa Summit 2017 2 1 2 3 4 5 6 2015 Giveaway Posted on social and participants had to provide their

525 views • 31 slides
Adaptation to Large Screens: A Case for Model-based User Interfaces?! Michael Nebeling W3C

Adaptation to Large Screens: A Case for Model-based User Interfaces?! Michael Nebeling W3C

Adaptation to Large Screens: A Case for Model-based User Interfaces?! Michael Nebeling W3C Workshop on Future Standards of MBUI 14 May 2010 Michael Nebeling - Institute of Information Systems ETH Zurich - nebeling@inf.ethz.ch 1 Critique of

680 views • 9 slides
Web Design Patterns Pressman, Chapter 12 (parts) James A. Landay, Jason I. Hong Instructor:

Web Design Patterns Pressman, Chapter 12 (parts) James A. Landay, Jason I. Hong Instructor:

Web Design Patterns Pressman, Chapter 12 (parts) James A. Landay, Jason I. Hong Instructor: Peter Baumann email: p.baumann@jacobs-university.de tel: -3178 office: room 88, Research 1 320312 Software Engineering (P. Baumann) Web Design

480 views • 28 slides
Mobile, Metrics &amp; Mayhem Mobile Analytics Making sense from data your users give you

Mobile, Metrics &amp; Mayhem Mobile Analytics Making sense from data your users give you

Mobile, Metrics &amp; Mayhem Mobile Analytics Making sense from data your users give you Presentation by: Vincent Baskerville | @whoisvince vince baskerville | @whoisvince realize your brand nation prove the business value guide

585 views • 44 slides
How to Rank Your Website on Page #1 of Google SEARCH ENGINE OPTIMISATION (SEO) Topics Covered

How to Rank Your Website on Page #1 of Google SEARCH ENGINE OPTIMISATION (SEO) Topics Covered

Equinet Academy How to Rank Your Website on Page #1 of Google SEARCH ENGINE OPTIMISATION (SEO) Topics Covered 1 SEO 101 2 Keyword Research 3 On-Page SEO 4 Off-Page SEO 5 SEO Analytics Search Engine Optimization (SEO) Training Course

817 views • 60 slides
ECON 950 Winter 2020 Prof. James MacKinnon 6. Trees and Forests Tree-based methods partition

ECON 950 Winter 2020 Prof. James MacKinnon 6. Trees and Forests Tree-based methods partition

ECON 950 Winter 2020 Prof. James MacKinnon 6. Trees and Forests Tree-based methods partition the feature space into a set of rectangles. One popular method is CART , for classification and regression trees . The fitted value for any

452 views • 22 slides
Generic programming Advanced functional programming - Lecture 10 Wouter Swierstra University of

Generic programming Advanced functional programming - Lecture 10 Wouter Swierstra University of

Generic programming Advanced functional programming - Lecture 10 Wouter Swierstra University of Utrecht 1 Today Type-directed programming in action Generic programming: theory and practice Examples of type families 2 Motivation

1.36k views • 115 slides
CMPS 112: Spring 2019 Comparative Programming Languages Higher-Order Functions Owen

CMPS 112: Spring 2019 Comparative Programming Languages Higher-Order Functions Owen

CMPS 112: Spring 2019 Comparative Programming Languages Higher-Order Functions Owen Arden UC Santa Cruz Based on course materials developed by Nadia Polikarpova Plan for this week Last week: user-defined data types and

635 views • 20 slides
Derived categories and cubic persurfaces Paolo Stellari hypersurfaces Paolo Stellari Roma,

Derived categories and cubic persurfaces Paolo Stellari hypersurfaces Paolo Stellari Roma,

Derived categories and cubic hy- Derived categories and cubic persurfaces Paolo Stellari hypersurfaces Paolo Stellari Roma, February 2011 Outline Derived categories The geometric setting and cubic hy- 1 persurfaces Paolo Stellari

707 views • 37 slides
Semi-Separating equilibrium Let us consider the following sequential game with incomplete

Semi-Separating equilibrium Let us consider the following sequential game with incomplete

E CON S 424 S TRATEGY AND G AME T HEORY H ANDOUT ON P ERFECT B AYESIAN E QUILIBRIUM - III Semi-Separating equilibrium Let us consider the following sequential game with incomplete information. Two players are playing the following

378 views • 10 slides
URLs every page and every image on a website has a URL (or Uniform Resource Locator) the URL is

URLs every page and every image on a website has a URL (or Uniform Resource Locator) the URL is

URLs every page and every image on a website has a URL (or Uniform Resource Locator) the URL is made up of the domain name followed by the path to that page or image creative.colorado.edu/~identikey/hello-world.html domain name path site

281 views • 10 slides
IT350 Web &amp; Internet Programming Fall 2016 Set 2: Introduction to HTML5 Introduction and

IT350 Web &amp; Internet Programming Fall 2016 Set 2: Introduction to HTML5 Introduction and

IT350 Web &amp; Internet Programming Fall 2016 Set 2: Introduction to HTML5 Introduction and Editing HTML5 HTML 5 (HyperText Markup Language 5) A markup language that specifies the structure and content of documents Separates

169 views • 12 slides
Uniform Resource Locators (URLs) Scheme Port Number Query

Uniform Resource Locators (URLs) Scheme Port Number Query

Uniform Resource Locators (URLs) Scheme Port Number Query http://www.company.com:81/a/b/c.html?user=Alice&amp;year=2008#p2 Host Name Hierarchical portion Fragment CS 142 Lecture Notes: URLs and Links Slide 1 &lt;a&gt; Examples Full

315 views • 4 slides
HTML Basics Joan Boone jpboone@email.unc.edu Slide 1 Topics Part 1: HTML Documents Part 2:

HTML Basics Joan Boone jpboone@email.unc.edu Slide 1 Topics Part 1: HTML Documents Part 2:

INLS 572 Web Development HTML Basics Joan Boone jpboone@email.unc.edu Slide 1 Topics Part 1: HTML Documents Part 2: HTML 5.3, Current Specification Part 3: HTML + CSS Slide 2 HTML Basics: Document Structure HTML defines the structure

530 views • 20 slides

More recommend