Hi I'm working on a page replacement algorithm simulator for which I require a trace of applications. I've managed to get the execution address sequence...
I'm using ptrace to get the EIP value and the instruction to be executed for the child process. Here the child process can be any application like gcc, grep, ls, etc. The output's as follows, where the EIP value would contain the next address to be executed. EIP: 40101584 Instruction executed: f0013d5b EIP: 40101585 Instruction executed: fff0013d EIP: 4010b381 Instruction executed: 13dd389 EIP: 4010b381 Instruction executed: 13dd389 EIP: 4010b381 Instruction executed: 13dd389 EIP: 4010b381 Instruction executed: 13dd389 EIP: 400dbafd Instruction executed: 13dd389 How do I translate the WORD that the EIP points to i.e. how do I know what the "Instruction Executed" value stands for. In static translations I guess we use the System.map file for the mapping. What do I use for dynamic cases. I need to classify the instruction as a Read/Write. If I know the opcode, operand, etc..maybe I would be able to classify these instructions as a Read/Write. I might be wrong here, quite a novice at this..any sort of help would be appreciated. Somebody suggested I can use a disassembler..libdisasm. Would be grateful if somebody could help me out here and tell me how I can proceed. Thanks Jose ________________________________________________________________________ Yahoo! India Matrimony: Find your life partner online Go to: http://yahoo.shaadi.com/india-matrimony ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ linux-india-help mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/linux-india-help
