gdb - How to get Control Register (CR2) value? -

-

do have way find value of cr2 core of x86-64 ? info registers doesn't show it.

(gdb) info registers  rax            0x7fc9ca854000   140504662884352 rbx            0x119ad58        18459992 rcx            0xa0000  655360 rdx            0x7fca99045300   140508127318784 rsi            0x1      1 rdi            0x120    288 rbp            0x7fc9d0104e40   0x7fc9d0104e40 rsp            0x7fc9d0104c70   0x7fc9d0104c70 r8             0x0      0 r9             0xc0     192 r10            0x0      0 r11            0x7fca1432b2e0   140505898988256 r12            0x7fc9c95e5d80   140504643558784 r13            0x800a0003       2148139011 r14            0x0      0 r15            0x7fc94537d198   140502426440088 rip            0x666831 0x666831  eflags         0x10206  [ pf if rf ] cs             0x33     51 ss             0x2b     43 ds             0x0      0 es             0x0      0 fs             0x0      0 gs             0x0      0 st0            0        (raw 0x00000000000000000000) st1            0        (raw 0x00000000000000000000) st2            0        (raw 0x00000000000000000000) st3            0        (raw 0x00000000000000000000) st4            0        (raw 0x00000000000000000000) st5            0        (raw 0x00000000000000000000) st6            0        (raw 0x00000000000000000000) st7            0        (raw 0x00000000000000000000) fctrl          0x37f    895 fstat          0x0      0 ftag           0xffff   65535 fiseg          0x0      0 fioff          0x0      0 foseg          0x0      0 fooff          0x0      0 fop            0x0      0 xmm0           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x0 <repeats 16 times>},   v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0x0, 0x0, 0x0, 0x0},   v2_int64 = {0x0, 0x0},   uint128 = 0x00000000000000000000000000000000 } xmm1           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x0 <repeats 16 times>},   v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0x0, 0x0, 0x0, 0x0},   v2_int64 = {0x0, 0x0},   uint128 = 0x00000000000000000000000000000000 } xmm2           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x21, 0x80, 0x0 <repeats 14 times>},   v8_int16 = {0x8021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0x8021, 0x0, 0x0, 0x0},   v2_int64 = {0x8021, 0x0},   uint128 = 0x00000000000000000000000000008021 } xmm3           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0xa8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v8_int16 = {0xa8, 0x0, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0},   v4_int32 = {0xa8, 0x0, 0x58, 0x0},   v2_int64 = {0xa8, 0x58},   uint128 = 0x000000000000005800000000000000a8 } xmm4           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x0 <repeats 16 times>},   v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0x0, 0x0, 0x0, 0x0},   v2_int64 = {0x0, 0x0},   uint128 = 0x00000000000000000000000000000000 } xmm5           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x92, 0xff, 0x0 <repeats 14 times>},   v8_int16 = {0xff92, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0xff92, 0x0, 0x0, 0x0},   v2_int64 = {0xff92, 0x0},   uint128 = 0x0000000000000000000000000000ff92 } xmm6           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0xf8, 0x51, 0x0, 0x0, 0x33, 0xcc, 0x0, 0x0, 0xc9, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v8_int16 = {0x51f8, 0x0, 0xcc33, 0x0, 0x7fc9, 0x0, 0x0, 0x0},   v4_int32 = {0x51f8, 0xcc33, 0x7fc9, 0x0},   v2_int64 = {0xcc33000051f8, 0x7fc9},   uint128 = 0x0000000000007fc90000cc33000051f8 } xmm7           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x0 <repeats 16 times>},   v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0x0, 0x0, 0x0, 0x0},   v2_int64 = {0x0, 0x0},   uint128 = 0x00000000000000000000000000000000 } xmm8           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x0 <repeats 16 times>},   v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0x0, 0x0, 0x0, 0x0},   v2_int64 = {0x0, 0x0},   uint128 = 0x00000000000000000000000000000000 } xmm9           {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0xe8, 0x3b, 0x3, 0x0, 0xf8, 0x97, 0x2, 0x0, 0x92, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v8_int16 = {0x3be8, 0x3, 0x97f8, 0x2, 0xff92, 0x0, 0x0, 0x0},   v4_int32 = {0x33be8, 0x297f8, 0xff92, 0x0},   v2_int64 = {0x297f800033be8, 0xff92},   uint128 = 0x000000000000ff92000297f800033be8 } xmm10          {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x82, 0xa3, 0x1, 0x0, 0x66, 0x98, 0x1, 0x0, 0x92, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v8_int16 = {0xa382, 0x1, 0x9866, 0x1, 0xff92, 0x0, 0x0, 0x0},   v4_int32 = {0x1a382, 0x19866, 0xff92, 0x0},   v2_int64 = {0x198660001a382, 0xff92},   uint128 = 0x000000000000ff92000198660001a382 } xmm11          {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x92, 0xff, 0x0 <repeats 14 times>},   v8_int16 = {0xff92, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0xff92, 0x0, 0x0, 0x0},   v2_int64 = {0xff92, 0x0},   uint128 = 0x0000000000000000000000000000ff92 } xmm12          {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0xf8, 0x51, 0x0, 0x0, 0x33, 0xcc, 0x0, 0x0, 0xc9, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v8_int16 = {0x51f8, 0x0, 0xcc33, 0x0, 0x7fc9, 0x0, 0x0, 0x0},   v4_int32 = {0x51f8, 0xcc33, 0x7fc9, 0x0},   v2_int64 = {0xcc33000051f8, 0x7fc9},   uint128 = 0x0000000000007fc90000cc33000051f8 } xmm13          {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x0 <repeats 16 times>},   v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v4_int32 = {0x0, 0x0, 0x0, 0x0},   v2_int64 = {0x0, 0x0},   uint128 = 0x00000000000000000000000000000000 } xmm14          {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0xe8, 0x3b, 0x3, 0x0, 0xf8, 0x97, 0x2, 0x0, 0x92, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v8_int16 = {0x3be8, 0x3, 0x97f8, 0x2, 0xff92, 0x0, 0x0, 0x0},   v4_int32 = {0x33be8, 0x297f8, 0xff92, 0x0},   v2_int64 = {0x297f800033be8, 0xff92},   uint128 = 0x000000000000ff92000297f800033be8 } xmm15          {   v4_float = {0x0, 0x0, 0x0, 0x0},   v2_double = {0x0, 0x0},   v16_int8 = {0x82, 0xa3, 0x1, 0x0, 0x66, 0x98, 0x1, 0x0, 0x92, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},   v8_int16 = {0xa382, 0x1, 0x9866, 0x1, 0xff92, 0x0, 0x0, 0x0},   v4_int32 = {0x1a382, 0x19866, 0xff92, 0x0},   v2_int64 = {0x198660001a382, 0xff92},   uint128 = 0x000000000000ff92000198660001a382 } mxcsr          0x1f80   [ im dm zm om um pm ]

from intel's instruction set manual page 3-514 "mov — move to/from control registers".

this instruction can executed when current privilege level 0.

as gdb ring 3 process, can't read cr2 , other control register.

of course, process core dumps wouldn't have control registers because these registers not part of task state.


Comments

Post a Comment

Popular posts from this blog

How to access named pipes using JavaScript in Firefox add-on? -

-
i'm trying access named pipe in firefox add-on. code, based on solution 2 this codeproject question, is: var file = components.classes["@mozilla.org/file/local;1"].createinstance(components.interfaces.nsilocalfile); file.initwithpath("\\\\.\\pipe\\test"); var text = "some text written"; var writer = components.classes["@mozilla.org/network/file-output-stream;1"].createinstance(components.interfaces.nsifileoutputstream); // open file read/write access, , create if not exist. writer.init (file, 0x04 | 0x08, -1, 0); writer.write (text, text.length); writer.flush (); writer.close (); when run firefox scratchpad, get: /* exception: component returned failure code: 0x80520012 (ns_error_file_not_found) [nsifileoutputstream.init] @6 */ line 6 line call writer.init. i've played passing different flags writer.init, no luck. i'm able write normal file path code, not named pipe path. i've been searching more information of da...
Read more

multithreading - OPAL (Open Phone Abstraction Library) Transport not terminated when reattaching thread? -

-
i in process of writing application using opal makes h323 calls. have looked online number of working examples , have managed put resembles should like, @ present able call external ip via application when accept call craps out , dies. leaving me with: 0:12.949 setupcall:8752 sert.cxx(259) assertion fail: transport not terminated when reattaching thread , file d:\voip\software\opal\src\opal\transports.cxx, line 1021 passertfunc(0xde3f88, 0xffffffffd228226f, 0, 0) + 0x82 passertfunc(0x10d6e5f8, 0x3fd, 0, 0x10d6eb98) + 0x15b opaltransport::attachthread(0xde5870, 0xffffffffd22fc76b, 0, 0) + 0x96 h323connection::setupconnection(0xffffffffd22fc713, 0, 0, 0xde6ea8) + 0x196 asynchcallsetup(0x10d3572c, 0, 0, 0xdd0108) + 0x7c pthread1arg<psafeptr<opalconnection,psafeptrbase> >::main(0xffffffffd2282faf from have deduced, perhaps incorrectly if there thread lock issue caused (possibly arising fact application sending expected h323 call, throwing in c...
Read more

node.js - req param returns an empty array -

-
i using node.js , mongodb geolocation app , req param returns empty array exports.findpressure = function(req, res) { var queryobject = req.param('q'); console.log(queryobject); db.collection('pressure', function(err, collection) { collection.find( { loc: { $near :[ req.param('q') ] , $maxdistance : 5 }},{"value" : 1, _id : 0}) .sort({_id : -1}).limit(1).toarray(function(err, items) { res.send(items); }); }); }; the longitude , latitude values displayed in console listening on port 3000... connected 'weather' database 8.9068256,52.019347499999995 /pressure?q=8.9068256,52.019347499999995 200 27ms - 2b the url follows http://localhost:3000/pressure?q=8.9068256,52.019347499999995 if use values 8.9068256,52.019347499999995 getting value database if use req.param('q') returning empty array you seem passing values part of query string. req.query.q should contain comma-s...
Read more