rdre8
Reputation: 49
x86 instructions, interpretation by stack pointer
The following instructions:
0xffffd096 push eax
0xffffd097 push 0x41414141
Oxffffd09c push 0x42424242
affect the stack as follows:
0xffffd024|+0x0000 "BBBBAAAA" <- esp
0xffffd028|+0x0004 "AAAA"
0xffffd02c|+0x0008 Ox00000000
Why does the stack pointer automatically reference the two consecutive push imm \x68 opcodes as merged, distinct from the earlier push eax \x50 opcode?
Upvotes: -1
Views: 44
Answers (1)
Diego Ferruchelli
Reputation: 874
I think you're misreading the output.
You have eight bytes ("BBBBAAAA") beginning at 0xffffd024|+0x0000.
You have four bytes ("AAAA") beginning at 0xffffd028|+0x0004.
Both "AAAA" are the same.
(The tool you're using may be printing each "line" from the start address until it founds a 0x00, as if they were C strings.)
From top of stack (lower address) to bottom:
0xffffd024|+0x0000 "BBBB" (four bytes, 0x42424242)
0xffffd028|+0x0004 "AAAA" (four bytes, 0x41414141)
0xffffd02c|+0x0008 Ox00000000 (four bytes, the content of eax)
Upvotes: 2
Related Questions
- How do you implement a Stack and a Queue in JavaScript?
- What exactly is the base pointer and stack pointer? To what do they point?
- Which is faster: Stack allocation or Heap allocation
- Stack smashing detected
- Why is Java Vector (and Stack) class considered obsolete or deprecated?
- What's happening in this simple x86 assembly function call code snippet from Wikibooks?
- x86 registers: MBR/MDR and instruction registers
- 20 bytes are reserved on the stack for no apparent reason when C code is compiled into machine code
- Basic usage stack
- Why is FLD1 loading NaN instead?