tags:

views:

1117

answers:

2
+7  Q: 

Syscall from inline asm in x86_64 Linux?

Hi,

Why does this print garbage instead of exiting my program gracefully? I use system calls this way on BSD, and I wonder what would I need to make it work in Linux.

int
main(int argc, char **argv)
{
    __asm ("movq $1,%rax; movq $0,%rdi; syscall"); /* exit(0) ? */
    return 0;
}

Thanks.

+2  A: 

Syscall 1 is exit on i386 but write on x86-64 I believe.

EDIT: this seems inaccurate: According to the web, which does not seem to have too much information about x86-64 Linux assembly this seems to be the expected register setup before the syscall instruction.

 rax  system call number
 rbx  arg0
 rcx  return address from syscall
 rdx  arg2
 rsi  arg3
 rdi  arg4
 r8   arg5
 r9   arg1    (expected by gcc in %rcx)
 r10-r15  should be saved/restored by C code
 rbp  dito What is dito??
Sean A.O. Harney  2009-07-30 02:10:22
Hmm, is this register information wrong? Is rdi for arg1 as OP suggests?
Sean A.O. Harney  2009-07-30 02:45:28
Yes. The order is rdi,rsi,rdx,... like in regular functions with the syscall number going to rax. This might have been true for the first Linux x86_64 versions that maybe copied the i386 abi, but I don't know for sure. Anyways in this case a bad value for arg1, etc. couldn't have possibly caused the problem as exit will always succeed and terminate the process.
jbcreix  2009-07-30 10:25:49
Yes, I was pretty sure the main issue was due to it using NR_write instead of NR_exit, but thought that the argument might be off also!
Sean A.O. Harney  2009-07-30 17:01:35
+11  A: 

Why does this print garbage instead of exiting my program gracefully?

Per CESA-2009-001, "Syscall 1 is exit on i386 but write on x86_64".

what would I need to make it work in Linux

Use the syscall ordinals from the current unistd_64.h

Hope this helps!

Marsh Ray  2009-07-30 02:13:30
thank you! this is it. I don't know why they had to change it though. So BSD uses the traditional numbers while Linux 64 has changed them. This means I cannot reuse my code though :(
jbcreix  2009-07-30 02:20:28
@jbcreix, out of curiosity *why* would you do this instead of using the portable calls `exit()` and `write()`? Isn't this just asking for trouble?
RBerteig  2009-07-30 06:25:49
The portable calls need linking to glibc or other C libraries. This way I can implement only the functions I need the way I need and independent from the OS. Of course static linking would achieve a similar result, but then there are licensing issues with GPL code.
jbcreix  2009-07-30 09:56:10
@jbcreix It looks like they changed them to conform to some common ABI. The definitions for i386 were in "entry.S", for x64 it's "unistd_64.h".@RBerteig Sometimes one just needs a challenge. Like writing an executable without linking to anything! It can also be a useful technique in security applications and exploit code.
Marsh Ray  2009-07-30 12:07:22

related questions

any good tool for makefile generation?
How do you pass a function as a parameter in C?
Where should a veteran C programmer start in order to master Java ?
Any good book on best practice and guidelines in developing a SDK in C?
How do you determine the size of a file in C?
Decoding printf statements in C (Printf Primer)
Shift operator in C
How to avoid redefining VERSION, PACKAGE, etc.
Alpha blending sprites in Nintendo DS Homebrew
When should I use type abstraction in embedded systems
How to implement continuations?
What are the barriers to understanding pointers and what can be done to overcome them?
Anyone have experience creating a shared library in MATLAB?
String.indexOf function in C
Passing multidimensional arrays as function arguments in C
C/C++ library for reading MIDI signals from a USB MIDI device
Choosing a static code analysis tool
How do you printf an unsigned long long int?
Good STL-like library for C.
Rockbox audio format
Why am I getting a malloc: double free error with realloc()?
Should I learn C?
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS