Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: ptrace-GETREGS
Top Forums Programming ptrace-GETREGS Post 302289716 by nicos on Friday 20th of February 2009 09:58:05 AM
Old 02-20-2009
ptrace-GETREGS
hello everybody!!
I want to post a question!I am confused about the explanation of ptrace command.
long ins;
ins=ptrace(PTRACE_GETREGS,pid,NULL,&regs); with this command i am able to read, for instance, regs.eip context or get regs.eip address?
And if i write the commad ptrace(PEEKTEXT,pid,regs.eip,NULL); after it, I get the next command that the program will execute or now i get the regs.eip context?

thanx in advance!
 

6 More Discussions You Might Find Interesting

1. Programming

[FreeBSD] ptrace( ) - Device busy

Hello, I'm trying to obtain process memory contents using ptrace( ) on FreeBSD 4.7. I know this is neither portable nor clean, yet I'd really like to get it to work... I read the manual help page and did a google search, but couldn't find anything helpful. First, the code I'm using to read an... (5 Replies)
Discussion started by: Driver
5 Replies

2. Programming

Tracing self process using ptrace()

Kindly correct me if any of the foll is wrong: I want to trace the current process from the C program itself which I think can be done using ptrace(PTRACE_ATTACH,getpid(),0,0); I would like to get control back after a segmentation fault, or arithmetric exception (i.e. all signals that end... (1 Reply)
Discussion started by: vpraveen84
1 Replies

3. Programming

regarding ptrace equivalent in solairs

hi,'m using the 5.11 kernel version on amd64 architecture, 32-bit. i need help on the following issues 1)a proper structure to represent the register structure in the architecture 2)a function which would change the register values of the child when the control is with the parent.. ptrace_setregs... (0 Replies)
Discussion started by: sayaproj
0 Replies

4. Solaris

System call trapping using ptrace.

Hello experts, I am trying to trap system calls using ptrace available on Salaris. How to get the system call number which I am going to trap. In Linux I have done like below: ptrace(PTRACE_PEEKUSER, pid, 4 * ORIG_EAX, NULL); where PTRACE_PEEKUSER : is the request, this specifies the... (1 Reply)
Discussion started by: Patel
1 Replies

5. UNIX for Advanced & Expert Users

gdb and ptrace ????

Hi all What 's the relationship between gdb and ptrace, if the kernel does not support ptrace, can gdb work ? Is there some one can explain this for me (3 Replies)
Discussion started by: yanglei_fage
3 Replies

6. Programming

ptrace-get register values

Hi,All, I use ptrace to capture the OPEN syscall, and find problems on getting filename as its argument. Basically, what ebx returns is a pointer to the filename of file to open. My code is as follows, and the program keep throwing segment fault. Besides, even if I can get filePath, how can I know... (2 Replies)
Discussion started by: tristartom
2 Replies

LEARN ABOUT DEBIAN

libunwind-ptrace

LIBUNWIND-PTRACE(3)					       Programming Library					       LIBUNWIND-PTRACE(3)

NAME

       libunwind-ptrace -- ptrace() support in libunwind

SYNOPSIS

       #include <libunwind-ptrace.h>

       unw_accessors_t _UPT_accessors;

       void *_UPT_create(pid_t);
       void _UPT_destroy(void *);

       int _UPT_find_proc_info(unw_addr_space_t, unw_word_t, unw_proc_info_t *, int, void *);
       void _UPT_put_unwind_info(unw_addr_space_t, unw_proc_info_t *, void *);
       int _UPT_get_dyn_info_list_addr(unw_addr_space_t, unw_word_t *, void *);
       int _UPT_access_mem(unw_addr_space_t, unw_word_t, unw_word_t *, int, void *);
       int _UPT_access_reg(unw_addr_space_t, unw_regnum_t, unw_word_t *, int, void *);
       int _UPT_access_fpreg(unw_addr_space_t, unw_regnum_t, unw_fpreg_t *, int, void *);
       int _UPT_get_proc_name(unw_addr_space_t, unw_word_t, char *, size_t, unw_word_t *, void *);
       int _UPT_resume(unw_addr_space_t, unw_cursor_t *, void *);

DESCRIPTION

       The  ptrace(2)  system-call makes it possible for a process to gain access to the machine-state and virtual memory of another process. With
       the right set of call-back routines, it is therefore possible to hook up libunwind to another process via ptrace(2).  While it's  not  very
       difficult to do so directly, libunwind further facilitates this task by providing ready-to-use callbacks for this purpose. The routines and
       variables implementing this facility use a name-prefix of _UPT, which is stands for ``unwind-via-ptrace''.

       An application that wants to use the _UPT-facility first needs to create a new libunwind address-space that represents the target  process.
       This  is done by calling unw_create_addr_space().  In many cases, the application will simply want to pass the address of _UPT_accessors as
       the first argument to this routine. Doing so will ensure that libunwind will be able to properly unwind the target  process.   However,	in
       special	circumstances, an application may prefer to use only portions of the _UPT-facility.  For this reason, the individual callback rou-
       tines (_UPT_find_proc_info(), _UPT_put_unwind_info(), etc.) are also available for direct use. Of course, the addresses of  these  routines
       could  also  be	picked	up from _UPT_accessors, but doing so would prevent static initialization. Also, when using _UPT_accessors, all the
       callback routines will be linked into the application, even if they are never actually called.

       Next, the application can turn on ptrace-mode on the target process, either by forking a new process,  invoking	PTRACE_TRACEME,  and  then
       starting  the target program (via execve(2)), or by directly attaching to an already running process (via PTRACE_ATTACH).  Either way, once
       the process-ID (pid) of the target process is known, a _UPT-info-structure can be created by calling _UPT_create(), passing the pid of  the
       target  process	as  the  only  argument. The returned void-pointer then needs to be passed as the ``argument'' pointer (third argument) to
       unw_init_remote().

       The _UPT_resume() routine can be used to resume execution of the target process. It simply  invokes  ptrace(2)  with  a	command  value	of
       PTRACE_CONT.

       When the application is done using libunwind on the target process, _UPT_destroy() needs to be called, passing it the void-pointer that was
       returned by the corresponding call to _UPT_create().  This ensures that all memory and other resources are freed up.

AVAILABILITY

       Since ptrace(2) works within a single machine only, the _UPT-facility by definition is not available in libunwind-versions  configured  for
       cross-unwinding.

THREAD SAFETY

       The  _UPT-facility assumes that a single _UPT-info structure is never shared between threads. Because of this, no explicit locking is used.
       As long as only one thread uses a _UPT-info structure at any given time, this facility is thread-safe.

RETURN VALUE

       _UPT_create() may return a NULL pointer if it fails to create the _UPT-info-structure for any reason. For the current  implementation,  the
       only reason this call may fail is when the system is out of memory.

FILES

       libunwind-ptrace.h
	       Headerfile to include when using the interface defined by this library.

       -lunwind-ptrace -lunwind-generic
	       Linker-switches to add when building a program that uses the functions defined by this library.

SEE ALSO

       execve(2), libunwind(3), ptrace(2)

AUTHOR

       David Mosberger-Tang
       Email: dmosberger@gmail.com
       WWW: http://www.nongnu.org/libunwind/.

Programming Library						  16 August 2007					       LIBUNWIND-PTRACE(3)
All times are GMT -4. The time now is 11:57 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy