The forgotten art of assembly
•Télécharger en tant que ODP, PDF•
0 j'aime•254 vues
basic information about assembly language
Recommandé
Contenu connexe
Tendances
Tendances (18)
Similaire à The forgotten art of assembly
Similaire à The forgotten art of assembly (20)
Plus de Marian Marinov
Plus de Marian Marinov (20)
Dernier
Dernier (20)
The forgotten art of assembly
- 1. The lost art of AssemblyThe lost art of Assembly
- 2. I have learned Assembly 3 times :)
- 3. http://www.atmel.com/webdoc/avrassembler/avrassembler.wb_instruction_list.html I have learned Assembly 3 times :)
- 4. I have learned Assembly 3 times :)
- 5. I have learned Assembly 3 times :)
- 7. Registers EIP - Instruction Pointer ESP - Stack Pointer EBP - Frame base pointer (function base pointer) EAX - RAX (sometimes counter) EBX - RBX ECX - RBX ESI - RSI (source) EDI - RDI (destination)
- 8. Registers EXX - 32bit RXX - 64bit XMM - 128bit YMM - 256bit ZMM - 512bit AVX 512 - 256 ZMM0 - ZMM31 255 - 128 YMM0 - YMM31 127 - 0 XMM0 - XMM31 https://software.intel.com/en-us/isa-extensions https://software.intel.com/en-us/blogs/2013/avx-512-instructions
- 9. Basic instructions ● mov ● add ● jumps – jcc – jle – jne ● int – call – ret
- 10. int 0x80 Definition int 0x80 is the assembly language instruction that is used to invoke system calls in Linux on x86 (i.e., Intel-compatible) processors. http://www.linfo.org/int_0x80.html
- 11. Assembly vs. Disassemby :) section .data msg db "Hello, world!", 0x0a section .text global _start _start: ; SYSCALL: write(1, msg, 14) mov eax, 4 mov ebx, 1 mov ecx, msg mov edx, 14 int 0x80 ; SYSCALL: exit(0) mov eax, 1 mov ebx, 0 int 0x80 Disassembly of section .text: 08048080 <_start>: 8048080: b8 04 00 00 00 mov eax,0x4 8048085: bb 01 00 00 00 mov ebx,0x1 804808a: b9 a4 90 04 08 mov ecx,0x80490a4 804808f: ba 0e 00 00 00 mov edx,0xe 8048094: cd 80 int 0x80 8048096: b8 01 00 00 00 mov eax,0x1 804809b: bb 00 00 00 00 mov ebx,0x0 80480a0: cd 80 int 0x80 Disassembly of section .data: 080490a4 <msg>: 80490a4: 48 dec eax 80490a5: 65 6c gs ins BYTE PTR es:[edi],dx 80490a7: 6c ins BYTE PTR es:[edi],dx 80490a8: 6f outs dx,DWORD PTR ds:[esi] 80490a9: 2c 20 sub al,0x20 80490ab: 77 6f ja 804911c <_end+0x68> 80490ad: 72 6c jb 804911b <_end+0x67> 80490af: 64 21 0a and DWORD PTR fs:[edx],ecx 48 65 6c 6c 6f 2c 20 77 6f 72 6c 64 21 0a = Hello, world! https://www.rapidtables.com/convert/number/hex-to-ascii.html
- 12. DEMO time
- 13. The ELF format ● Executable and Linkable Format ● 4bytes magic number ● 32/64bit binary ● instruction set architecture ● interpreter for the program https://en.wikipedia.org/wiki/Executable_and_Linkable_Format http://www.skyfree.org/linux/references/ELF_Format.pdf
- 14. readelf Section Headers: [Nr] Name Type Addr Off Size ES Flg Lk Inf Al [ 0] NULL 00000000 000000 000000 00 0 0 0 [ 1] .interp PROGBITS 08048134 000134 000013 00 A 0 0 1 [ 2] .note.ABI-tag NOTE 08048148 000148 000020 00 A 0 0 4 [ 3] .hash HASH 08048168 000168 000028 04 A 4 0 4 [ 4] .dynsym DYNSYM 08048190 000190 000050 10 A 5 1 4 [ 5] .dynstr STRTAB 080481e0 0001e0 00004a 00 A 0 0 1 [ 6] .gnu.version VERSYM 0804822a 00022a 00000a 02 A 4 0 2 [ 7] .gnu.version_r VERNEED 08048234 000234 000020 00 A 5 1 4 [ 8] .rel.dyn REL 08048254 000254 000008 08 A 4 0 4 [ 9] .rel.plt REL 0804825c 00025c 000010 08 AI 4 23 4 [10] .init PROGBITS 0804826c 00026c 00002d 00 AX 0 0 4 [11] .plt PROGBITS 080482a0 0002a0 000030 04 AX 0 0 16 [12] .plt.got PROGBITS 080482d0 0002d0 000008 00 AX 0 0 8 [13] .text PROGBITS 080482e0 0002e0 000220 00 AX 0 0 16 [15] .rodata PROGBITS 0804851c 00051c 000016 00 A 0 0 4 [24] .data PROGBITS 08049710 000710 000008 00 WA 0 0 4 [25] .bss NOBITS 08049718 000718 000008 00 WA 0 0 4 https://greek0.net/elf.html
- 15. objdump$ objdump -d -m intel hello-asm Disassembly of section .text: 08048080 <_start>: 8048080: b8 04 00 00 00 mov eax,0x4 8048085: bb 01 00 00 00 mov ebx,0x1 804808a: b9 a4 90 04 08 mov ecx,0x80490a4 804808f: ba 0e 00 00 00 mov edx,0xe 8048094: cd 80 int 0x80 8048096: b8 01 00 00 00 mov eax,0x1 804809b: bb 00 00 00 00 mov ebx,0x0 80480a0: cd 80 int 0x80 Disassembly of section .data: 080490a4 <msg>: 80490a4: 48 dec eax 80490a5: 65 6c gs ins BYTE PTR es:[edi],dx 80490a7: 6c ins BYTE PTR es:[edi],dx 80490a8: 6f outs dx,DWORD PTR ds:[esi] 80490a9: 2c 20 sub al,0x20 80490ab: 77 6f ja 804911c <_end+0x68> 80490ad: 72 6c jb 804911b <_end+0x67> 80490af: 64 21 0a and DWORD PTR fs:[edx],ecx
- 16. Builds :) hello-dbg-asm: hello.asm nasm -g -f elf hello.asm && ld hello.o -o hello-asm hello-c-static: hello.c gcc -static hello.c -o hello-c-static hello-asm: hello.asm nasm -f elf hello.asm && ld hello.o -o hello-asm for1: for.c gcc for.c -o for1 for2: for.c gcc -fopt-info-vec for.c -O2 -ftree-vectorize -o for2 for3: for.c gcc -fopt-info-vec for.c -O3 -o for3 foravx: for.c gcc -O3 for.c -fopt-info-vec -mavx -o foravx # gcc -O3 for.c -fopt-info-vec -mavx2 -o foravx
- 17. Inline assembly #define MSG "Hello, world!" int main() { asm( "int $0x80nt" : : "a"(4), "b"(1), "c"(MSG), "d"(14) ); }
- 18. Inline assembly asm( "int $0x80nt" : : "a"(4),"b"(1),"c"(MSG),"d"(14) ); // a,b,c,d-registers (eax,ebx,ecx & edx) asm( “assembly instructions” : return values : assignment variables https://gcc.gnu.org/onlinedocs/gcc/Extended-Asm.html