jpassing.com
Kernel | Johannes Passing's Blog
https://jpassing.com/category/kernel
Johannes Passing's Blog. Archive for the 'Kernel' Category. Windows Hotpatching: A Walkthrough. May 3, 2011. As discussed in the last post. Windows 2003 SP1 introduced a technology known as Hotpatching. An integral part of this technology is Hotpatching. Which refers to the process of applying an updated on the fly by using runtime code modification techniques. Moreover, there is this. Admittedly very terse) discussion about the actual implementation of hotpatching. To apply the hotpatch. Hotpatching...
jpassing.com
concurrency | Johannes Passing's Blog
https://jpassing.com/tag/concurrency
Johannes Passing's Blog. Runtime Code Modification Explained, Part 1: Dealing With Memory. January 12, 2015. Runtime code modification, of self modifying code. As it is often referred to, has been used for decades — to implement JITters, writing highly optimized algorithms, or to do all kinds of interesting. Certain gauarantees made by the CPU, which in turn requires the programmer to pay more attection to certain details. Dangerous Detours, Part 1: Introduction. Dangerous Detours, Part 2: Unexpected Beh...
jpassing.com
C | Johannes Passing's Blog
https://jpassing.com/category/c-2
Johannes Passing's Blog. Archive for the 'C' Category. May 2, 2011. And yes, this behaviour is documented on MSDN. But it is stupid anyway. However, where WIN32 can be of use is when writing code targeting multiple platforms — as WIN32 is always defined, it can be used as an indicator that you compile for Windows, regardless of the compiler used (another option is to use MSC VER, but that is compiler-specific). Johannes Passing, M.Sc., living in Berlin, Germany. Contact Johannes: jpassing (at) acm org.
jpassing.com
Runtime Code Modification Explained, Part 2: Cache Coherency Issues | Johannes Passing's Blog
https://jpassing.com/2015/01/19/runtime-code-modification-explained-part-2-cache-coherency-issues
Johannes Passing's Blog. Runtime Code Modification Explained, Part 1: Dealing With Memory. Runtime Code Modification Explained, Part 3: Cross-Modifying Code and Atomicity. Runtime Code Modification Explained, Part 2: Cache Coherency Issues. January 19, 2015. The order in which a program specifies memory loads and stores to be conducted is referred to as program order. Respecting the memory model implemented by the processor is thus crucial in order to achieve safe operation. Although both read and st...
jpassing.com
Win32 | Johannes Passing's Blog
https://jpassing.com/category/win32
Johannes Passing's Blog. Archive for the 'Win32' Category. May 2, 2011. And yes, this behaviour is documented on MSDN. But it is stupid anyway. However, where WIN32 can be of use is when writing code targeting multiple platforms — as WIN32 is always defined, it can be used as an indicator that you compile for Windows, regardless of the compiler used (another option is to use MSC VER, but that is compiler-specific). How to test MFC applications using Visual Assert or cfix. September 26, 2010. At this poin...
jpassing.com
Publications | Johannes Passing's Blog
https://jpassing.com/other
Johannes Passing's Blog. NTrace: Function Boundary Tracing for Windows on IA-32. With Alexander Schmidt, Martin von Löwis, and Andreas Polze. In Proceedings of the 16th Working Conference on Reverse Engineering. October 13-16, 2009, Lille, France. To appear. Hoes Lane / P.O. Box 1331 / Piscataway, NJ 08855-1331, USA. Telephone: Intl. 908-562-3966. Presentation slides (PPTX, 21 Slides). Presentation slides (PDF, 21 Slides). The slides contain some animations, so prefer the PPTX version. Along the discussi...
jpassing.com
Debugging | Johannes Passing's Blog
https://jpassing.com/category/debugging
Johannes Passing's Blog. Archive for the 'Debugging' Category. Windows Hotpatching: A Walkthrough. May 3, 2011. As discussed in the last post. Windows 2003 SP1 introduced a technology known as Hotpatching. An integral part of this technology is Hotpatching. Which refers to the process of applying an updated on the fly by using runtime code modification techniques. Moreover, there is this. Admittedly very terse) discussion about the actual implementation of hotpatching. To apply the hotpatch. Hotpatch...
katsumiinoue.wordpress.com
Windows dtrace like tool runs faster than on Solaris | INOUE Katsumi's Blog
https://katsumiinoue.wordpress.com/2010/01/18/windows-dtrace-like-tool-runs-faster-than-on-solaris
INOUE Katsumi's Blog. Copied from http:/ blogs.sun.com/LetTheSunshineIn. Laquo; Cygwin tells you Windows java.exe default thread stack size. Knowing virtual machine guest IP address. Windows dtrace like tool runs faster than on Solaris. I stumbled upon an interesting tool. This tool is not yet downloadable. I think this tool is more closer to google:”truss”(google:”strace” on linux) than to google:”dtrace”. This entry was posted on 2010/01/18 at 06:34 and is filed under misc. Feed You can leave a response.
jpassing.com
#ifdef _WIN32 | Johannes Passing's Blog
https://jpassing.com/2011/05/02/ifdef-_win32
Johannes Passing's Blog. Windows Hotpatching: A Walkthrough. May 2, 2011. And yes, this behaviour is documented on MSDN. But it is stupid anyway. However, where WIN32 can be of use is when writing code targeting multiple platforms — as WIN32 is always defined, it can be used as an indicator that you compile for Windows, regardless of the compiler used (another option is to use MSC VER, but that is compiler-specific). Responses to “#ifdef WIN32”. Feed for this Entry. May 2, 2011 at 1:04 pm. A C/C unit tes...
jpassing.com
Uncategorized | Johannes Passing's Blog
https://jpassing.com/category/uncategorized
Johannes Passing's Blog. Archive for the 'Uncategorized' Category. Runtime Code Modification Explained, Part 4: Keeping Execution Flow Intact. February 8, 2015. On a multiprocessor system, threads are subject to concurrent execution. While one thread is currently performing code modifications, another thread, running on a different processor, may concurrently execute the affected code. If only a single instruction is to be modified and the cited algorithm for cross-modifying code is used, concurrent exec...