{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Juvenile、少年° 的问题《How to disassemble a system call》','https://www.manongdao.com/q-378709.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
If I have the virtual address of system call, can I disassemble that system call? I want to do it on running kernel to find what all address are handled by the particular system call while running.
I am running 32 bit 2.6.38 kernel (x86).
相关问题
- Is shmid returned by shmget() unique across proces
- how to get running process information in java?
- Kernel oops Oops: 80000005 on arm embedded system
- Error building gcc 4.8.3 from source: libstdc++.so
- Why should we check WIFEXITED after wait in order
I am not sure you question is very meaningful.
Please read more about system calls, kernels, operating systems, linux, and the linux kernel
Essentially, a system call is (from the application point of view) an atomic operation implemented by one machine instruction (
int 0x80,syscall, etc.) with a few book-keeping instructions before (e.g. loading the system call arguments to registers) and after (e.g. settingerrno). When it happens, control goes into the kernel, with a (sort-of) different address space and a different protection ring; here is the list of linux syscallsThe real code doing the system call is inside the kernel. You can get the Linux kernel code on kernel.org
See also the Linux Assembly Howto and asm.sourceforge.net
To understand what system calls a given application or process is doing, use strace