I am trying to intercept a pointer overwrite. From the dump I can see we
have something like
L R10,X'88'(R13)
ST R1,0(R10)
which gets abend0C4 because R10 contains X'7FFFFFFF'. At some point the
stack addressed by R13 is getting overwritten. I have set a SLIP trap
using the command
SLIP
SET,SA,RANGE=(13000000,14000000),DATA=(13R?+88,EQ,7FFFFFFF),JOBNAME=...
since from the dumps the stack is normally in the range I specify. To
test I have deliberately set the pointer to X'7FFFFFFF' but the trap
isn't matched. Have I got the syntax right for what I want? I obviously
don't know exactly where the stack will be getmained when the program
starts. Does the RANGE specify instructions or data? Using an indirect
address in the DATA triplet seems to imply it's checked after every
instruction is executed.
TIA
-Robin
This message has been scanned by MailController - portal1.mailcontroller.co.uk
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
