disassemble on Linux x64

disassemble on Linux x64

[jj shen]

Hi,

I try to disassemble a simple program on x64 Linux using GDB.

The test program is like:

>  main()
>  {
>      getuid();
>  }

"disassemble main" shows that getuid() corresponds to "callq addr".
But when I try to "disassemble getuid" or "disassemble addr", GDB says
it is not a vaild function address.

Why, while it is ok on x86 Linux? Is callq a new instruction added by
x86-64? What is the difference to the call instruction?

Another question: do I need to use a 32-bit GDB to debug 32-bit program?

Thanks,

Shen

Re: disassemble on Linux x64

[Daniel Jacobowitz]

On Fri, May 04, 2007 at 03:57:11AM +0800, jj shen wrote:
> "disassemble main" shows that getuid() corresponds to "callq addr".
> But when I try to "disassemble getuid" or "disassemble addr", GDB says
> it is not a vaild function address.

Start the program running first.  Those functions are in shared
libraries.  You may be seeing the PLT entry.

> Is callq a new instruction added by x86-64? What is the difference
> to the call instruction?

Roughly nothing.

> Another question: do I need to use a 32-bit GDB to debug 32-bit program?

No.

-- 
Daniel Jacobowitz
CodeSourcery