Hi Mulyadi, I see what you mean. How do I know if this is happening? When I do 'x/i $eip' I get a completely sane result with exactly the instructions I want.
On 03/15/2012 07:13 PM, Mulyadi Santosa wrote: > Hi... > > On Thu, Mar 15, 2012 at 23:03, Jacques <jacq...@rambo-mes.net> wrote: >> I'm running an application in qemu through the userspace qemu-i386 and >> attaching to the process with gdb. I have pygdb scripts that then >> interact with gdb. >> >> The issue is that at some point I want to change $eip and redirect >> instruction flow. I then set $eip to the value I need which gives me the >> following: >> >> Program received signal SIGSEGV, Segmentation fault. >> 0x46367046 in ?? () > > I am not keen in this kind of situation,but I think you hit "non > existing" EIP. By that, I mean maybe you think such EIP truly exist > (based on ELF info perhaps?), but in reality since qemu user mode do > dynamic translations and not really following ELF offset, you got > segfault. > >
0x0B03082C.asc
Description: application/pgp-keys
