Home/ Questions/Q 3324530
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-17T23:25:56+00:00

I am trying to learn assembly from scratch. I have been reading up quite

  • 0

I am trying to learn assembly from scratch. I have been reading up quite a bit, but even the following simple program I found in a reference book has me stumped:

section .data
msg db "Hello!", 0xa
len equ $ - msg
section .text

     global _start

_start:


move edx, len
move ecx, msg
move ebx, 1
move eax, 4
int  0x80
move ebx, 0
move eax, 1
int 0x80

Now apparently this is supposed to print “Hello”.
But I don’t even know whats happening at any of the stages.
The first two stages put the message length and messgae in two registers, which are never used again. I don’t understand why.

I don’t know why four different registers are needed.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    int 0x80 is a mechanism in some(a) UNIX-like operating systems for making system calls.

    For these calls, the registers are used for specific values. From the syscalls file:

    0 STD NOHIDE { int nosys(void); } syscall nosys_args int
1 STD NOHIDE { void exit(int rval); } exit rexit_args void
2 STD POSIX  { int fork(void); }
3 STD POSIX  { ssize_t read(int fd, void *buf, size_t nbyte); }
4 STD POSIX  { ssize_t write(int fd, const void *buf, size_t nbyte); }

    you can see that number 4 is the write call and needs three other parameters. Number 1 is exit and needs only the return code.

    When making the call, eax is the syscall that you’re making while ebx, ecx and edx are the three parameters (assuming they’re all needed – exit for example only needs one).

    So, you could comment the code as follows:

    move edx, len   ; length of message (nbyte).
move ecx, msg   ; message to print (buf).
move ebx, 1     ; file descriptor 1 (stdout).
move eax, 4     ; write syscall.
int  0x80       ; do it.

move ebx, 0     ; exit code (rval).
move eax, 1     ; exit syscall.
int 0x80        ; do it.

    (a) Later versions of Linux introduced a new interface which can use different methods based on which provides the best speed. For example, some Intel chips are much faster if you use sysenter rather than int 0x80.

    • 0