I'm working on a program that needs to make a 32 bit process invoke a syscall. I wish to keep my program architecture independent, but the target will ...
I'm working on a program that needs to make a 32 bit process invoke a syscall. I wish to keep my program architecture independent, but the target will ...
I'm using ptrace system call in C language: But I don't know what void *addr refers to... In this example, I wanted to get the address of the curr ...
I work in a system that does not allow me to enable tracepoints at runtime. To work around this, I manually add printks near a trace point to during d ...
From the output of strace -o file lldb someprog, I found there is no ptrace. Then how can lldb get features like PTRACE_ATTACH/PTRACE_SINGLESTEP and ...
My goal is to use ptrace to set the program counter (and other registers) of a process running a 32-bit ARM executable on a 64-bit processor. If this ...
I am tracing some processes and their children using ptrace. I am trying to print specific system call (using Seccomp filter that notifies ptrace, see ...
Let us consider that I have an application that is to be executed on 1st node. This application however, cannot execute some function on this 1st node ...
I'm attempting to use ptrace to manipulate registers on aarch64. Looking at sys/user.h in my aarch64 toolchain (android-ndk-r10e), I see #elif define ...
Ptrace options dont set the correct status when the desired systemcalls resume in the parent process. I can only use whats seen here no PEEKUSER, SYSG ...
Basically the title, i can't get it to work, nor can i find any reason why it shouldn't work. ptrace(2)'s manual states that Linux 5.3+ is required a ...
I'm trying to redirect a tracee's stdout to a file. For this I've: attached to tracee mmap'd some memory copied the filename to tracee's memo ...
I want to create a simple tool (with C) which can do this tiny subset of gdbs features: Attach to an already running program (with PID) Inject i ...
In Linux, one can wait on any FD using select, poll or epoll. It is also possible to wait for child-processes to change state using wait, waitpid or w ...
I am struggling with the arm32v7/ubuntu image. My host is Win10 professional and docker with command: the binaries are built with crosscompiler(on ...
I'm toying ptrace with the code below. I found that the system call number for execve was 59 even when I compiled with the -m32 option. Since I'm usin ...
I want to build my own debugger, from scratch, so I am trying to pick up some of the concepts behind it. First, I am starting easy, using the ptrace l ...
I am trying to learn to use ptrace, I wrote a simple assembly stub that 1/ calls ptrace(0,0,0,0) (the syscall, not the libc function). Then displays h ...
What happens when ptrace SINGLESTEP is called in aarch64, Linux kernel? Linux reference for this question: 5.15.5 (latest stable in November 2021). ...
I'll try to summarize but it's gonna be complicated. I'm having an operating system course in my university, and i have a lab work to do. I'm working ...
Can you please tell me why child prints -38 instead of 999? I would like to change system call data returned to the caller. So I set 999 to make getpi ...