Zhibo Shen
Reputation: 145
Get linear address of FS:[0] in 32-bit protected mode / MSVC inline asm
I used this instruction in Visual C++ inline assembly
lea eax, FS:[0]
Why did eax get a zero?
And how do I get the linear address of FS:[0]?
Upvotes: 3
Views: 893
Answers (2)
Ross Ridge
Reputation: 39621
Assuming FS points to the Windows Thread Information Block (TIB), also known as the Thread Environment Block (TEB), you get the linear address of the TIB by reading the 32-bit value at fs:[0x18]. The best way to do this in Visual C++ is to use the __readfsdword intrinsic:
TEB *teb = (TEB *) __readfsdword(0x18);
Upvotes: 6
Brendan
Reputation: 37212
The LEA instruction ("Load Effective Address") is badly named (e.g. should probably be called LEO/"Load Effective Offset") because it only calculates the offset within a segment.
Upvotes: 3
Related Questions
- Getting the address of the function that called my function with inline assembly
- x86 E8 and FF calls, how to find the E8 shifting address 'on the fly'? basic x86 ASM calls
- Inline __asm code for getting the address of TIB (fs:[0x18])
- Retrieving x64 register values with inline asm
- How do I get address of class member function by asm in GCC?
- how to get the address of an asm function in c
- Inline assembler get address of pointer Visual Studio
- Get variable address using inline assembly
- How do you get the raw address of a function?
- How can I decode this instruction "call *fs:0x334" to know the exact function address?