Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I’m trying to understand a little code:
jg 0x00000047
dec esp
inc esi
add [ecx],eax
What is the value of eax? These are the four first sentences of the program and i don’t know if there is a default value or if the previous sentences add something to eax.
My OS is Linux and the executable is compiled by gcc4.3 from a C source code (gcc file.c exec)
Some instructions implicitly update the registers, even if the destinations aren’t listed explicitly in the code. Some examples:
cpuidreturns values in eax, ebx, ecx and edxloopdecrements ecxrepstring instructions change ecx, edi and esirdmsrchanges eax and edxmulanddivchange eax and edxAnd there are many other examples.
You can’t assume just by seeing that eax isn’t listed in the code that it’s not changed.
Even assuming you know which registers are affected by which instructions, the only times you have any guarantee for a value are:
At any other time, you can never make assumptions on the values.