assembly - Self modifying code always segmentation faults on Linux -

-

i found article self modifying code , tried examples, segmentation faults. fas can understand, there violation in memory permissions. code segment (r)ead/e(x)ecute , attempt of writting results fault. there way test program either changing memory permissions @ runtime or before? i'm using linux , example written in gas assembly.

.extern memcpy .section .data string:         .asciz  "whatever" string_end: .section .bss         .lcomm buf, string_end-string .section .text .globl main main:         call changer         mov $string, %edx label:         push string_end-string         push $buf         push $string         call memcpy changer:         mov $offset_to_write, %esi         mov $label, %edi         mov $0xb, %ecx loop1:         lodsb         stosb         loop loop1         ret offset_to_write:         push 0         call exit end:

so after modification suggested osgx here working code.(actually if assemble&link&run crashes if watch using gdb modifies code!)

.extern memcpy .section .data string:         .asciz  "giorgos" string_end: .section .bss         .lcomm buf, string_end-string .section .text .globl main main:         lea (main), %esi                # start of memory region                                         # change permissions (smc-enabled)         andl $0xfffff000, %esi          # align start of pagesize         pushl   $7                      # permissions==r|w|x         pushl   $4096                   # page size         pushl   %esi                    # computed start address         call    mprotect          call    changer                 # function smc         mov     $string, %edx label:         push    string_end-string       # code overridden         push    $buf                    # , never executed!         push    $string         call    memcpy changer:         mov     $offset_to_write, %esi  # simple copy bytes algorithm         mov     $label, %edi         mov     $0xb, %ecx loop1:         lodsb         stosb         loop    loop1         ret offset_to_write:                        # these instructions         push    $0                      # executed         call    exit end:

you should change memory access permissions in runtime. 

#include <sys/mman.h>  void *addr  = get_address_of_instruction_pointer(); int  length = 4096;   /* size of page */  if (mprotect(addr, length, prot_read | prot_write | prot_exec) == 0) {     /* current code page writable , code allowed execution */ }

Comments

Post a Comment

Popular posts from this blog

python - No exponential form of the z-axis in matplotlib-3D-plots -

-
Image
i have similar problem described in how prevent numbers being changed exponential form in python matplotlib figure : i don't want (in special case) weird scientific formatting of axis. problem different have problem @ z -axis. 2-d plots can use ax.get_yaxis().get_major_formatter().set_useoffset(false) . , there no function ax.get_zaxis() what use format z -axis same way? edit: example: from mpl_toolkits.mplot3d import axes3d import numpy np import sys import matplotlib import matplotlib.pyplot pyplot def func(xi, ti): res = 10e3 + np.cos(ti) * np.sin(xi) return res if __name__ == '__main__': timespacing = 20 timestart = 0 timeend = 1 time = np.linspace(timestart, timeend, timespacing) widthspacing = 50 widthstart = 0 widthend = 3 width = np.linspace(widthstart, widthend, widthspacing) reslist = [] matplotlib.rcparams['legend.fontsize'] = 10 fig = pyplot.figure() ax = fig.gca(projection = '3d...
Read more

php - Best Light server (Linux + Web server + Database) for Raspberry Pi -

-
i install web server database on raspberry pi (little computer). computer has 1gb ram. i want know best combination: linux distribution , web server , dbms run local server multiple users minimal latency, use php on server. , best settings performance , not have bugs (memory usage, disable plugin, disable service, etc)? i thought light debian , lighttpd server , sqlite database. solution? i think lighttpd + sqlite great choice. linux distro, debian @ centos or tiny core linux , although i'm not sure of compatibility pi. obviously, can't go wrong raspbian if want use in production , more stable performance, few more pi's , set them in cluster .
Read more

c# - "Newtonsoft.Json.JsonSerializationException unable to find constructor to use for types" error when deserializing class -

-
i developing app in xamarin android. have splash screen serialize class , pass mainactivity using intent . when try deserialize in mainactivity error message : "serializationexception unable find constructor use types" serialization : void loaddata() { currency currency = new currency(this); intent = new intent(this, typeof(mainactivity)); intent.putextra("currency", newtonsoft.json.jsonconvert.serializeobject(currency)); startactivity(intent); } deserialization : cur = newtonsoft.json.jsonconvert.deserializeobject<currency> (intent.getstringextra("currency")); // error here class constructor : public currency(context context) { thiscontext = context; } i began experiencing problem after added parameter context context constructor. has caused this? how can solve it? possible serialize/deserialize class has parameters? you need have empty constructor in currency class in order deserialize it. ...
Read more