Presentation is loading. Please wait.

Presentation is loading. Please wait.

./a.out Having fun with system internals Facundo de la Cruz

Published byVictoria Cornelia Martin Modified over 8 years ago

Similar presentations

Presentation on theme: "./a.out Having fun with system internals Facundo de la Cruz"— Presentation transcript:

1 ./a.out Having fun with system internals Facundo de la Cruz (@_tty0)

2 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

3 Facundo M. de la Cruz (tty0) IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

4 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

5 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

6 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

7 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

8 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

9 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

10 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

11 Facundo M. de la Cruz IT Consultant on DC Solutions High Availability Expert Red Hat Enterprise Linux Certified Instructor Oracle Solaris official Instructor GPG ID: 0x5627089 I write on my blog and in my Twitter http://codigounix.blogspot.com.ar/ http://twitter.com/_tty0 About me

12 ➔ Real mode - 20 bits segmented memory address space. - Only 1 MB of memory can be addressed. - Direct access to BIOS (EFI/UEFI ???) ➔ Protected mode - Provide protected memory. - Memory paging support. - Global Descriptor Table (GDT) and Local Descriptor Table (LDT). ➔ Long mode - 64 bits address: 16 EB of memory address (16 billion of GB) - 64 bits instructions and registers. - 16 and 32 bits programs are executed in a sub mode. - Extension of the 32-bit instruction set, but unlike the 16–to–32-bit transition CPU operation modes

13 There are four privilege levels, numbered 0 (most privileged) to 3 (least privileged), and three main resources being protected: memory, I/O ports, and the ability to execute certain machine instructions. About 15 machine instructions, out of dozens, are restricted by the CPU to ring zero. CPU privilege separation

14 System calls

15 o An exit program in ANSI C o The same program in INTEL x86 ASM System calls

16

17 From arch/x86/include/asm/unistd_32.h

18 System calls From arch/x86/include/asm/unistd_32.h From exit(3) man page

19 Having fun with ELF

20

21 From../include/linux/elf.h

22 Having fun with ELF

23 From../include/linux/elf.h

24 Having fun with ELF From../include/linux/elf.h

25 Having fun with ELF

26

27

28

29 ELF Sections and Segments.bss Uninitialized data ( static int i; ).data Initialized data (static, global, and local variables).rodata Static constants and strings..text Program instructions (code)

30 ELF Sections and Segments.bss Uninitialized data ( static int i; ).data Initialized data (static, global, and local variables).rodata Static constants and strings..text Program instructions (code)

31 ELF Sections and Segments

32

33

34 Shellcode looks like…

35 Questions??? }:-)

36 And finishing… Thanks…

Download ppt "./a.out Having fun with system internals Facundo de la Cruz"

Similar presentations

Memory Management Unit

Memory Management Unit
Processor Privilege-Levels

Processor Privilege-Levels
Copyright © 2001, Daniel W. Lewis. All Rights Reserved. CHAPTER 11 SYSTEM INITIALIZATION.

Copyright © 2001, Daniel W. Lewis. All Rights Reserved. CHAPTER 11 SYSTEM INITIALIZATION.
Presented By Dr. Shazzad Hosain Asst. Prof. EECS, NSU

Presented By Dr. Shazzad Hosain Asst. Prof. EECS, NSU
SPIM and MIPS programming

SPIM and MIPS programming
Memory Management Paging &Segmentation CS311, CS350 & CS550.

Memory Management Paging &Segmentation CS311, CS350 & CS550.
4/14/2017 Discussed Earlier segmentation - the process address space is divided into logical pieces called segments. The following are the example of types.

4/14/2017 Discussed Earlier segmentation - the process address space is divided into logical pieces called segments. The following are the example of types.
Intel 80386 MP.

Intel MP.
OS Memory Addressing.

OS Memory Addressing.
CSC 322 Operating Systems Concepts Lecture - 18: by Ahmed Mumtaz Mustehsan Special Thanks To: Tanenbaum, Modern Operating Systems 3 e, (c) 2008 Prentice-Hall,

CSC 322 Operating Systems Concepts Lecture - 18: by Ahmed Mumtaz Mustehsan Special Thanks To: Tanenbaum, Modern Operating Systems 3 e, (c) 2008 Prentice-Hall,
Day 11 Processes. Operating Systems Control Tables.

Day 11 Processes. Operating Systems Control Tables.
Memory Management (II)

Memory Management (II)
CS2422 Assembly Language & System Programming September 22, 2005.

CS2422 Assembly Language & System Programming September 22, 2005.
16.317 Microprocessor Systems Design I Instructor: Dr. Michael Geiger Fall 2012 Lecture 15: Protected mode intro.

Microprocessor Systems Design I Instructor: Dr. Michael Geiger Fall 2012 Lecture 15: Protected mode intro.
Protected Mode. Protected Mode (1 of 2) 4 GB addressable RAM –(00000000 to FFFFFFFFh) Each program assigned a memory partition which is protected from.

Protected Mode. Protected Mode (1 of 2) 4 GB addressable RAM –( to FFFFFFFFh) Each program assigned a memory partition which is protected from.
Xen and the Art of Virtualization. Introduction  Challenges to build virtual machines Performance isolation  Scheduling priority  Memory demand  Network.

Xen and the Art of Virtualization. Introduction  Challenges to build virtual machines Performance isolation  Scheduling priority  Memory demand  Network.
Zen and the Art of Virtualization Paul Barham, et al. University of Cambridge, Microsoft Research Cambridge Published by ACM SOSP’03 Presented by Tina.

Zen and the Art of Virtualization Paul Barham, et al. University of Cambridge, Microsoft Research Cambridge Published by ACM SOSP’03 Presented by Tina.
Intel 80286.

Intel
Interrupts  Interrupt is a process where an external device can get the attention of the microprocessor.  The process starts from the I/O device  The.

Interrupts  Interrupt is a process where an external device can get the attention of the microprocessor.  The process starts from the I/O device  The.
Instructor: Yuzhuang Hu Memory Hierarchy.

Instructor: Yuzhuang Hu Memory Hierarchy.

Similar presentations

Ads by Google