生活随笔
收集整理的這篇文章主要介紹了
windbg-调试技巧(定长、不定长参数thiscall平衡堆栈方式不同)
小編覺得挺不錯的,現在分享給大家,幫大家做個參考.
C++程序的成員函數默認使用的調用約定是thiscall,這種約定是把this指針放到ECX寄存器中.This調用協定也是要求被調用函數負責清理棧,因此不支持可變數時的參數,當我們在C++類中定義了可變數量參數的成員函數時,偏譯器會自動改為使用C調用約定,當這種調用時,編譯器會將所有參數壓入棧中,再將this指針壓入棧:
關鍵兩點:1.this時,是被調用函靈敏清理棧 2.如果可變參數,則使用C約定,由調用者來清理
寫個小demo測試:
[cpp]?view plaincopy
#include?"stdafx.h"?? #include?<stdio.h>?? enum?MEAL?{BREAKFAST,?LUNCH,?SUPPER};?? ?? class?Cat?? {?? public:?? ????MEAL?Fun0(MEAL?i)?? ????{?? ????????return?i;????????? ????}?? ????char*?Fun1(MEAL?i,?...)?? ????{?? ????????return?0;?? ????}?? };?? ?? ?? int?main(int?argc,?char*?argv[])?? {?? ????? ????Cat?cat;?? ????cat.Fun0(BREAKFAST);?? ????cat.Fun1(BREAKFAST,?"meat",?"beaf",?"rice");?? ?? ????return?0;?? }??
[cpp]?view plaincopy
0:000>?x?ThisCall!Cat::*?? 00401060?ThisCall!Cat::Fun0?(MEAL)?? 00401090?ThisCall!Cat::Fun1?(MEAL)?? 0:000>?x?ThisCall!main?? 00401000?ThisCall!main?(int,?char?**)?? 0:000>?bp?00401000???
先在main處下斷點:
[cpp]?view plaincopy
ThisCall!main:?? 00401000?55??????????????push????ebp?? 00401001?8bec????????????mov?????ebp,esp?? 00401003?83ec44??????????sub?????esp,44h?? 00401006?53??????????????push????ebx?? 00401007?56??????????????push????esi?? 00401008?57??????????????push????edi?? 00401009?8d7dbc??????????lea?????edi,[ebp-44h]?? 0040100c?b911000000??????mov?????ecx,11h?? 00401011?b8cccccccc??????mov?????eax,0CCCCCCCCh?? 00401016?f3ab????????????rep?stos?dword?ptr?es:[edi]?? 00401018?6a00????????????push????0?? 0040101a?8d4dfc??????????lea?????ecx,[ebp-4]?? 0040101d?e83e000000??????call????ThisCall!Cat::Fun0?(00401060)?? 00401022?68fce04000??????push????offset?ThisCall!`string'?(0040e0fc)?? 00401027?68f4e04000??????push????offset?ThisCall!`string'?(0040e0f4)?? 0040102c?68ece04000??????push????offset?ThisCall!`string'?(0040e0ec)?? 00401031?6a00????????????push????0?? 00401033?8d45fc??????????lea?????eax,[ebp-4]?? 00401036?50??????????????push????eax?? 00401037?e854000000??????call????ThisCall!Cat::Fun1?(00401090)?? 0040103c?83c414??????????add?????esp,14h??
這樣就看得很清楚了.
總結
以上是生活随笔為你收集整理的windbg-调试技巧(定长、不定长参数thiscall平衡堆栈方式不同)的全部內容,希望文章能夠幫你解決所遇到的問題。
如果覺得生活随笔網站內容還不錯,歡迎將生活随笔推薦給好友。
