Linux Assembly Tutorial
Quickstart
Written by: Derick Swanepoel (derick@maple.up.ac.za)
Version 1.0 - 2002-04-19, 01:50am
Download as zipfile
JMP Step-by-Step Guide
Contents
- 1. Intro
- 2. Comparison of a Linux assembly program and a DOS assembly program
- 3. More About Linux System Calls
- 4. Command Line Arguments and Writing to a File
- 5. Compiling and Linking
1. Intro
This Quickstart aims to show you the ropes on Linux assembly as quickly as possible.
Basically, it just points out the differences between a Linux and DOS assembly program
with just enough explanation not to confuse you. For more detail and why things are the
way they are, see the Step-by-Step Guide.
2. Comparison of a Linux assembly program and a DOS assembly program
| Linux |
DOS |
SECTION .DATA
hello: db 'Hello world!',10
helloLen: equ $-hello
SECTION .TEXT
GLOBAL _START
_START:
; Write 'Hello world!' to the screen
mov eax,4 ; 'write' system call
mov ebx,1 ; file descriptor 1 = screen
mov ecx,hello ; string to write
mov edx,helloLen ; length of string to write
int 80h ; call the kernel
; Terminate program
mov eax,1 ; 'exit' system call
mov ebx,0 ; exit with error code 0
int 80h ; call the kernel
|
DOSSEG
.MODEL LARGE
.STACK 200h
.DATA
hello db 'Hello world!',10,13,'$'
helloLen db 14
.CODE
ASSUME CS:@CODE, DS:@DATA
START:
mov ax,@data
mov ds,ax
; Write 'Hello world!' to the screen
mov ah,09h ; 'print' DOS service
mov dx,offset hello ; string to write
int 21h ; call DOS service
; Terminate program
mov ah,4Ch ; 'exit' DOS service
mov ax,0 ; exit with error code 0
int 21h ; call DOS service
END START
|
Compiling: nasm -f elf hello.asm
Linking: ld -s -o hello hello.o
|
Compiling: tasm hello.asm
Linking: tlink hello.obj
|
Lets compare each part in the two programs:
- The first three lines of the DOS program doesn't exist in the Linux program. Linux is a 32-bit
protected mode operating system, and in 32-bit assembly there are no memory models. Also, all
segment registers and paging have already been set up to give you the same 32-bit 4Gb address space,
so you can ignore all segment registers. It is also not necessary to specify the stack size.
- Some differences between the Linux NASM structure and DOS TASM/MASM structure:
- The first two lines after the START: label in the DOS program make sure that the DS
register points to the data segment. Once again, Linux doesn't need this because the segments are
taken care of for us.
- In 16-bit DOS assembly, we use the normal 16-bit registers AX, BX, CX, DX etc. In 32-bit Linux
assembly we use the 32-bit extended registers EAX, EBX, ECX, EDX etc. (Note that there is no such
thing as EAL. AX is the low 16 bits of EAX, while AH is the high 8 bits of AX and AL is the low 8 bits of AX.)
- In DOS, when we want the memory address of a variable to be put in a register, we must use offset
to point to the offset of the variable in the correct segment (mov dx,offset hello). In Linux,
we don't need offset because it's implied - we just write mov ecx,hello
- In DOS, we call int 21h to use a DOS service like printing out a string. In Linux, you use
system calls, which are accessed by calling int 80h (the kernel interrupt). In DOS the function
number (eg. 9 to print a string) always goes in AX; in Linux it always goes in EAX. As in the example,
if we want to print out a string we use the "write" syscall, which is function number 4. We put '4' in EAX,
the number of the file descriptor to write to in EBX (in this case '1', the screen), the location of the
string to print in ECX (mov ecx,hello), and the length of the string in EDX (mov ecx,helloLen).
Then we call the kernel interrupt (int 80h), and voila!
- To exit a Linux program, we use the exit syscall (function 1, so we write mov eax,1). We want to
exit with an exit code of 0 (no error), so we put 0 in EBX. Then we call the kernel with int 80h again,
and we're done.
In this case it looks like it's more work than in DOS, but when it comes to creating, reading and writing files,
Linux syscalls are much easier to use than their DOS counterparts.
3. More About Linux System Calls
There are six registers that are used for the arguments that a system call takes. The first argument goes
in EBX, the second in ECX, then EDX, ESI, EDI, and finally EBP, if there are so many. If there are more than
six arguments, EBX must contain the memory location where the list of arguments is stored.
All the syscalls are listed in /usr/include/asm/unistd.h, together with their numbers.
However, for your convenience you can simply find them in this Linux System Call Table,
together with some other useful information (eg. what arguments they take). The syscalls are fully documented
in section 2 of the manual pages, so you can just go man 2 write to find out what the write syscall
does, what arguments it takes, etc.
| Linux |
section .data
hello db 'Hello, world!',10 ; Our dear string
helloLen equ $ - hello ; Length of our dear string
section .text
global _start
_start:
pop ebx ; argc (argument count)
pop ebx ; argv[0] (argument 0, the program name)
pop ebx ; The first real arg, a filename
mov eax,8 ; The syscall number for creat() (we already have the filename in ebx)
mov ecx,00644Q ; Read/write permissions in octal (rw_rw_rw_)
int 80h ; Call the kernel
; Now we have a file descriptor in eax
test eax,eax ; Lets make sure the file descriptor is valid
js skipWrite ; If the file descriptor has the sign flag
; (which means it's less than 0) there was an oops,
; so skip the writing. Otherwise call the filewrite "procedure"
call fileWrite
skipWrite:
mov ebx,eax ; If there was an error, save the errno in ebx
mov eax,1 ; Put the exit syscall number in eax
int 80h ; Bail out
; proc fileWrite - write a string to a file
fileWrite:
mov ebx,eax ; sys_creat returned file descriptor into eax, now move into ebx
mov eax,4 ; sys_write
; ebx is already set up
mov ecx,hello ; We are putting the ADDRESS of hello in ecx
mov edx,helloLen ; This is the VALUE of helloLen because it's a constant (defined with equ)
int 80h
mov eax,6 ; sys_close (ebx already contains file descriptor)
int 80h
ret
; endp fileWrite
|
| DOS |
DOSSEG
.MODEL LARGE
.STACK 200h
.DATA
filename db 14 dup (0)
filehandle dw
hello db 'Hello World!',10,13,'$'
helloLen db 12
.CODE
ASSUME CS:@CODE, DS:@DATA
START:
mov AX,@DATA
mov ES,AX ; Point ES to the data segment for now
mov ah,62h
int 21h ; Get the PSP
mov ds,bx
mov bx,81h ; Starting at the first printable character
add bl, byte ptr [ds:80h] ; Get address of last character
mov cl, byte ptr [ds:80h] ; Also put it in CL
inc cl
mov [ds:bx], word ptr 0 ; Null terminate the argument
mov si,81h
mov di,0 ; Copy the first argument into the data segment
rep movsb ; into the filename variable
mov AX,@DATA
mov DS,AX ; Point DS to the data segment, like normal
call fileCreate
call fileWrite
call fileClose
mov AX,4C00h
int 21h ; Bye-bye!
END START
proc fileCreate
mov ah,3Ch ; Creat DOS service (yes, it is called 'creat')
mov cx,0 ; File attributes
mov dx,offset filename ; Put ADDRESS of filename in DX
int 21h
mov [filehandle],ax ; File handle is returned in AX, put in a variable
ret
endp fileCreate
proc fileClose
mov ah,3Eh
mov bx,[filehandle]
int 21h
ret
endp fileClose
proc fileWrite
mov ah, 40h
mov bx, [filehandle]
mov dx, offset hello ; ADDRESS of string to be written
xor cx, cx ; If I don't do this, things blow up in my face
mov cl, [helloLen] ; VALUE of length of string to be written
int 21h
ret
endp fileWrite
|
As you can see, the Linux program is much simpler than the DOS one (40 lines in Linux, with liberal
commenting, vs. 66 for DOS). Everything makes sense in the Linux program, whereas a lot of the stuff
in the DOS one still makes me go "Huh?" Lets check out the differences:
- Firstly, getting the command line arguments of the Linux program is way easier
than the DOS one. All the arguments are sitting on the stack when the program starts, so all we
need to do is pop them off. The first value popped off is the number of arguments (called
argc in C/C++), the second is the name of the program, and finally we get the actual command line
arguments. Coolest of all, when we pop the command line argument off the stack, it actually puts
the address of that string in EBX, so once again no segment/offset missions.
This just took us an entire 3 instructions - compared to the 14 insane ones for the DOS program!
No messing around with PSPs and stuff - simple, isn't it?
- NB: NASM doesn't have procedures like you may have used in TASM. That's because procedures
don't really exist in assembly: everything is a label. So if you want to write a "procedure" in NASM,
you don't use proc and endp, but instead just put a label (eg. filewrite:)
at the beginning of the "procedure's" code. If you want to, you can put comments at the start and end
of the code just to make it look a bit more like a procedure (like I did in the example).
- NB2: When you jump to a label with JMP or any of the jump instructions,
you don't RET from it. Never! If you're lucky it won't explode on you, but it's
definitely not right. The only time you RET is when you've called the "procedure" with
CALL. Otherwise you're just going to have to jump around like a kangaroo weaving a spaghetti
code masterpiece. (Note that this is applicable to any assembly, not just Linux or NASM).
- Next we create the file: notice the file permissions in Linux (you can find out more about them
by reading the creat syscall's manpage – yes, it is spelled "creat"). Since we want to be smart
with Linux, why not also include some error checking while we're at it? We can easily check if the
creat syscall failed by checking the value it returned: if it's less than 0 then something broke, so
skip the writing part and exit with the error code.
- Now we write 'Hello world!' to the file using the file descriptor (called file handle in DOS)
returned by the creat syscall. Then we close it, and exit.
Not so hectic at all.
On the side: If you look at the DOS service functions (int 21h), you may notice that there
are quite a few that have exactly the same names as their Unix/Linux syscall counterparts – even though
DOS is quite unlike Unix and very much incompatible with it. For example:
DOS 3Ch = CREAT, Unix 08h = creat and DOS 43h = CHMOD, Unix 0Fh = chmod.
Mmm... so where did these DOS functions get their names? From Unix of course! What is really amusing is
that Microsoft never bothered to spell "CREAT" right – they kept it exactly like Unix's "creat".
5. Compiling and Linking
To compile a program with NASM:
nasm -f elf program.asm
To link the object file produced by NASM into an executable:
ld -s -o program program.o
The -f elf option tells NASM to compile this in Linux ELF format. This option is necessary because
NASM can compile many different formats (even DOS .COM files if you're so inclined).
The -s option for Ld tells it to strip all symbol information (which you don't need) from the output
file. -o program specifies the name of the output executable file. If you leave it out it
will always be a.out
Appendix A. References
Writing a useful program with NASM
The NASM documentation
Introduction to UNIX assembly programming
Linux Assembler Tutorial by Robin Miyagi
Section 2 of the manpages
asmtut/index.html0100644000102300017500000010155407460765636014256 0ustar dericklabusers
Linux Assembly Tutorial
Step-by-Step Guide
Written by: Derick Swanepoel (derick@maple.up.ac.za)
Version 1.0 - 2002-04-19, 01:50am
Download as zipfile
JMP Quickstart
Contents
- 1. Introduction
- 2. Why this Tutorial?
- 3. The Netwide Assembler (NASM)
- 3.1 A Note on Assemblers
- 3.2 Where do I get NASM?
- 4. Introduction to Linux Assembly
- 4.1 Main Differences Between DOS and Linux Assembly
- 4.2 The Parts of an Assembly Program
- 4.3 Linux System Calls
- 4.3.1 Reading the Manpages
- 4.4 "Hello World!" in Linux Assembly
- 4.5 Compiling and Linking
- 5. More Advanced Concepts
- 5.1 Command Line Arguments and the Stack
- 5.2 "Procedures" and Jumping
- 6. Conclusion
- Appendix A. The terminal is your friend - how to use it
- Appendix B. Installing NASM (and other stuff) on Linux
- Appendix C. References
1. Introduction
This tutorial is an introduction to coding assembly in Linux. There are two "versions" to accommodate
various people:
- The Step-by-Step Guide: This version explains everything in detail. It assumes that you have done at
least a little bit of DOS assembly, and that you have Linux on your computer (although you may not have
used it much yet). Since not everyone may know how to use Linux, there are links to sections where I explain
how to do basic things like use the terminal and the DOS-equivalent commands.
- The Quickstart: If you're in a hurry and just want to see a Linux
assembly program, compile it and run it, this is for you. It assumes that you understand basic DOS assembly,
and that you know how to use the terminal. Basically, it just points out the differences between a Linux and
DOS assembly program with just enough explanation not to confuse you.
The assembler I'll be using is NASM (Netwide Assembler). Lots of the stuff in this tutorial came from other
tuts and the NASM documentation – see the References section for more info.
2. Why this Tutorial?
Mainly, the reason for this tutorial is to make assembly programming easier, better and more practical
by doing it in Linux instead of DOS. Also, it may teach you a bit of Linux while you're at it (unless you're already
at home with it).
Programming in assembly may seem quite masochistic (and writing entire programs in it simply ridiculous),
especially in these days of super-optimizing compilers and visual development tools that do just about everything
for you. However, there is an advantage in understanding more about the inner workings of your processor and
kernel, and assembly is a good way of learning this. Sometimes assembly can be extremely useful for sticking inline
in a C/C++ program. And if your program really has a "need for speed", you can tweak and optimize
the assembly generated by the compiler (of course, you need to be pretty elite to produce better code than today's
compilers.)
Since there was this notion that we were to be taught how to use Linux during COS284 (sort of as an aside),
the idea was that we would code assembly in Linux. But not Linux assembly - DOS assembly, in a DOS emulator,
with a DOS text editor. Of course, this entirely defeats the purpose, but maybe it was to be done this way mainly
because there aren't so many Linux assembly tutorials and sample code as for DOS. Well, here is a tutorial that'll
teach you the basics of Linux assembly.
3. The Netwide Assembler (NASM)
Linux will almost always be intalled with the default assemblers as and as86 available, and
quite likely also gas. However, we will be using NASM, the Netwide Assembler. It uses the Intel syntax
just like TASM, MASM, and other DOS assemblers, and the structure is also fairly similar. (Useless info: as and
gas use the AT&T syntax, which is somewhat different – eg. all registers must be prefixed
with a %, and the source operand comes before the destination. See the References for a link to a tut using as
and AT&T syntax.)
NASM is cool because it's portable (there are Linux, Unix and DOS versions), it's free and it's powerful with lots of
nice features. Trust me.
If you selected "Development Tools" when you installed Linux, chances are you already have NASM. It comes
standard with most Linux distributions, so you don't need to download it. To check if you've got it, just ask Linux,
"Where is NASM?" Here's how:
- Open a terminal. (For some basic Linux terminal skills, go to
The terminal is your friend - how to use it)
- Type whereis nasm and press ENTER.
If you see a line that says something like nasm: /usr/bin/nasm then you're fine. If all you see is
nasm: then you need to install NASM. Here are some instructions on how to
install NASM (or anything else) on Linux.
If you feel like getting the latest and greatest version of NASM, visit their website
www.cryogen.com/Nasm, or get it with FTP from our local Linux
mirror ftp.kernel.za.org/pub/software/devel/nasm/binaries.
4. Introduction to Linux Assembly
- In DOS assembly, most things get done with the DOS services interrupt int 21h, and the BIOS
service interrupts like int 10h and int 16h. In Linux, all these functions are handled by the
kernel. Everything gets done with "kernel system calls", and you call the kernel with int 80h. One of
the wonderful things about Linux system calls are that there are fewer of them (about 190) than DOS, but they
are far more practical (you don't have obsolete crap like functions that load casette BASIC and things left over
from DOS 1.0). Linux system calls create files, handle processes and other such useful stuff - no strings attached
(mmm, bad pun ;-)
- Linux is a true, 32-bit protected mode operating system, so this enables us to do real, up-to-date 32-bit
assembly. This 32-bit code runs in the flat memory model, which basically means you don't have to worry
about segments at all. This makes life a lot easier, because you never need to use a segment override or modify
any segment register, and every address is 32 bits long and contains only an offset part. (If this is just a lot of
waffling to you, don't worry, just know that it's good and will simplify things for you.)
- In 32-bit assembly, you use the extended 32-bit registers EAX, EBX, ECX and so on instead of the normal
16-bit registers AX, BX, CX etc.
- DOS is dead. It's 16-bit. It's obsolete. The only people that still write DOS assembly are crazy old hackers that
are too attached to their 386s to throw them away. Linux assembly has practical applications (parts of the OS are
written in assembler, hardware drivers are often coded in assembler).
An assembly program can be divided into three sections:
- The .data section
This section is for "declaring initialized data", in other words defining "variables" that already contain stuff.
However this data does not change at runtime so they're not really variables. The .data section is used
for things like filenames and buffer sizes, and you can also define constants using the EQU instruction.
Here you can use the DB, DW, DD, DQ and DT instructions. For example:
section .data
message: db 'Hello world!' ; Declare message to contain the bytes 'Hello world!' (without quotes)
msglength: equ 12 ; Declare msglength to have the constant value 12
buffersize: dw 1024 ; Declare buffersize to be a word containing 1024
- The .bss section
This section is where you declare your variables. You use the RESB, RESW, RESD, RESQ and REST
instructions to reserve uninitialized space in memory for your variables, like this:
section .bss
filename: resb 255 ; Reserve 255 bytes
number: resb 1 ; Reserve 1 byte
bignum: resw 1 ; Reserve 1 word (1 word = 2 bytes)
realarray: resq 10 ; Reserve an array of 10 reals
- The .text section
This is where the actual assembly code is written. The .text section must begin with the declaration
global _start, which just tells the kernel where the program execution begins. (It's like the main
function in C or Java, only it's not a function, just a starting point.) Eg.:
section .text
global _start
_start:
pop ebx ; Here is the where the program actually begins
.
.
.
As you can see, so far things are still more or less DOSish. Next we'll look at system calls in more detail,
and once that is done you'll be able to write your first Linux assembly program!
Linux system calls are called in exactly the same way as DOS system calls:
- You put the system call number in EAX (we're dealing with 32-bit registers here, remember)
- You set up the arguments to the system call in EBX, ECX, etc.
- You call the relevant interrupt (for DOS, 21h; for Linux, 80h)
- The result is usually returned in EAX
There are six registers that are used for the arguments that the system call takes. The first argument goes
in EBX, the second in ECX, then EDX, ESI, EDI, and finally EBP, if there are so many. If there are more than
six arguments, EBX must contain the memory location where the list of arguments is stored - but don't worry
about this because it's unlikely that you'll use a syscall with more than six arguments. The wonderful thing
about this scheme is that Linux uses it consistently – all system calls are designed this way, there
are no confusing exceptions.
Some example code always helps:
mov eax,1 ; The exit syscall number
mov ebx,0 ; Have an exit code of 0
int 80h ; Interrupt 80h, the thing that pokes the kernel and says, "Yo, do this"
But how do you find out what these system calls are, and what they do, and what arguments they take?
Firstly, all the syscalls are listed in /usr/include/asm/unistd.h, together with their numbers
(the value to put in EAX before you call int 80h). However, for your convenience you
can simply find them in this Linux System Call Table, together with some
other useful information (eg. what arguments they take). Take a look at the list of syscalls –
there are things like sys_write (4), sys_nice (34) and of course sys_exit (1).
To find out just what these things do, you can look them up in the Linux manual pages (commonly
called "the manpages"). That is what the next section is about.
First, open a terminal (or switch to one of the 6 consoles with CTRL+ALT+F1 through F6
- to get back to graphical mode press CTRL+ALT+F7). Say now you want to know what the "write"
syscall does. Type man 2 write and press ENTER. This will bring up the manual page on "write"
from section 2 of the manpages.
Under the NAME section is the syscall's name and what it does – in this case:
write - write to a file descriptor
This is the syscall you use to write to, well, a file. But you also use it to print stuff on the screen.
"Why the heck is that?" you ask. See, in Linux everything is a file. Things like the screen, mice, printers,
etc. are special files called "device files", but you read and write to them just like you do to a text file.
This actually makes sense, because reading/writing files is one of the simplest things to do in programming,
so why not do everything in the same simple way - but I digress.
Next, under the SYNOPSIS section you see a fairly ugly line:
ssize_t write(int fd, const void *buf, size_t count);
OK, if you know C it won't be ugly, because this is just the C definition of the syscall. As you can see,
it takes three arguments: the file descriptor, followed by the buffer, and then how many bytes to write,
which should be however long the buffer is. (The DESCRIPTION section tells us what the arguments are
for.) The file descriptor (fd) is an integer, the buffer (buf) is a pointer to a memory
location (that's what the * means), so it's also an integer, and the bytes to write (count) is of
type size_t, which is also an integer. This makes sense because we put values for these arguments in the
registers EBX, ECX and EDX, which are all 32-bit integers. Finally, the write syscall returns a value in EAX:
the number of bytes actually written. This can be used to verify if all went well. DESCRIPTION fdbufcount
Now we can finally write our first Linux assembly program!
Of course, the appropriate way to begin would be to print out "Hello world!" To print to the screen, we write
to the special file called STDOUT (standard output), which is file descriptor 1. Here is the program in full:
section .data
hello: db 'Hello world!',10 ; 'Hello world!' plus a linefeed character
helloLen: equ $-hello ; Length of the 'Hello world!' string
; (I'll explain soon)
section .text
global _start
_start:
mov eax,4 ; The system call for write (sys_write)
mov ebx,1 ; File descriptor 1 - standard output
mov ecx,hello ; Put the offset of hello in ecx
mov edx,helloLen ; helloLen is a constant, so we don't need to say
; mov edx,[helloLen] to get it's actual value
int 80h ; Call the kernel
mov eax,1 ; The system call for exit (sys_exit)
mov ebx,0 ; Exit with return code of 0 (no error)
int 80h
Copy this program into a text editor of your choice (I use vi or SciTE),
and save it as hello.asm in your home directory (/home/yourname).
- If you don't have a terminal or console open, open one now.
- Make sure you are in the same directory as where you saved hello.asm.
- To assemble the program, type
nasm -f elf hello.asm
If there are any errors, NASM will tell you on what line you did what wrong.
- Now type ld -s -o hello hello.o
This will link the object file NASM produced into an executable file.
- Run your program by typing ./hello
(To run programs/scripts in the current directory, you must always type ./ before the name,
unless the current directory is in the path.)
You should see Hello world! printed to the screen. Congratulations! You have just written your
first assembly program in Linux! Hello world!
5. More Advanced Concepts
Before I go on, you're probably wondering what that equ $-hello thing is doing in our
Hello World program (line 3). As you may remember, when you use equ to declare a variable (instead of
db, for example), you are actually declaring a constant. Declaring the length of our string as a
constant is sensible because it sure isn't going to change. But how does $-hello turn out to be the
length of 'Hello world!' ? When NASM sees a '$' it replaces it with the assembly position at the beginning of
that line. (That is also the position at the end of the previous line.) So subtracting the position of a variable
from '$' will give us the number of bytes between the variable and '$'. If we want to declare a variable that
contains the length of a string we've declared by saying hello: db 'Hello world!',10 then we just stick
helloLen: equ $-hello on the next line. That will make helloLen equal to the number of bytes
that hello takes up in memory, which in this case is 13 (the linefeed character also counts). Don't
worry if this confuses you – just remember that it's a neat and easy way to declare the length of a string.
If you're more than just casually interested, I'd encourage you to check out the NASM documentation for more
information on these things, and how to use some of the other neat features that I'm not going to mention in
this tutorial.
Getting the command line arguments from a DOS program is not an enjoyable experience, because working with the
PSP and having to worry about segments is simply a pain. In Linux things are much simpler: all arguments are
available on the stack when the program starts, so to get them you just pop them off.
As an example, say you run a program called program and give it three arguments:
./program foo bar 42
The stack will then look as follows:
|
|
| Number of arguments (argc), including the program name |
| Name of the program (argv[0]) |
| Argument 1, the first real argument (argv[1]) |
| Argument 2 (argv[2]) |
| Argument 3 (argv[3]) (Note: this is the string "42", not the number 42) |
|
Now lets write the program program that takes the three arguments:
section .text
global _start
_start:
pop eax ; Get the number of arguments
pop ebx ; Get the program name
pop ebx ; Get the first actual argument ("foo")
pop ecx ; "bar"
pop edx ; "42"
mov eax,1
mov ebx,0
int 80h ; Exit
After all that popping, EAX contains the number of arguments, EBX points to wherever "foo" is stored
in memory, ECX points to "bar" and EDX to "42". This is obviously way more elegant and simple
than in DOS. It took us just 5 lines to get the arguments and even how many there are, while in DOS it
takes 14 rather complicated lines just to get one argument! Note that the 3rdpop
overwrites the value we put in EBX with the 2ndpop (which was the program name).
Unless you have a really good reason, you can usually chuck away the program name as we did here. way one rd pop
nd pop
NB: NASM doesn't have procedure definitions like you may have used in TASM. That's because procedures
don't really exist in assembly: everything is a label. So if you want to write a "procedure" in NASM,
you don't use proc and endp, but instead just put a label (eg. fileWrite:)
at the beginning of the "procedure's" code. If you want to, you can put comments at the start and end
of the code just to make it look a bit more like a procedure. Here's an example in both Linux and DOS:
| Linux |
DOS |
; proc fileWrite - write a string to a file
fileWrite:
mov eax,4 ; write system call
mov ebx,[filedesc] ; File descriptor
mov ecx,stuffToWrite
mov edx,[stuffLen]
int 80h
ret
; endp fileWrite
|
proc fileWrite
mov ah,40h ; write DOS service
mov bx,[filehandle] ; File handle
mov cl,[stuffLen]
mov dx,offset stuffToWrite
int 21h
ret
endp fileWrite
|
NB2: I assume that you're familiar with labels and jumping to them with instructions
like JMP, JE or JGE. Now that you've seen that "procedures" are actually labels,
there is one very important thing to remember: If you are planning to return from a procedure (with the
RET instruction), don't jump to it! As in "never!" Doing that will cause a segmentation
fault on Linux (which is OK – all your program does is terminate), but in DOS it may blow up in your
face with various degrees of terribleness. The rule to remember is:
You may jump to labels, but you must call a procedure.
Calling a procedure is of course done with the CALL instruction. This makes life a bit difficult
when you want to do things like "if-then-else". If you have a situation such as "if this happens, call
procedure 1, else call procedure 2" there's only one thing to do: Jump around like a kangaroo weaving a
spaghetti code masterpiece. Lets look at an example. First, here is some normal, sane code:
if (AX == 'w') {
writeFile();
} else {
doSomethingElse();
}
This is how you would do it in assembly:
cmp AX,'w' ; Does AX contain 'w'?
jne skipWrite ; If not, skip writing by jumping to another label, and doSomethingElse there...
call writeFile ; ...else call the writeFile procedure...
jmp outOfThisMess ; ...and jump past all of this spaghetti
skipWrite:
call doSomethingElse
outOfThisMess:
... ; The rest of the program goes on here
Note that this is applicable to any assembly, not just Linux or NASM.
Now we can finally take a look at a program that does something remotely useful, containing
almost everything we've covered. In the Quickstart version of this tutorial, I have included a
Linux and a DOS version of the program we wrote in Practical 3 (the one that writes 'Hello world!'
to the file given as a command line argument). Check it out
and see how much simpler and logical the Linux program is compared to the DOS one.
6. Conclusion
Well, that's about it for this tutorial. I hope this has been a suitable introduction to doing
assembly programming in Linux. If you have any questions, suggestions or problems, feel free to
e-mail me at derick@maple.up.ac.za. This is my first
tutorial and I'm no assembly hacker either, so I welcome your comments.
Good luck and happy coding!
Appendix A. The terminal is your friend - how to use it
The terminal / console is an integral and very useful part of Linux. Linux has an excellent set of
command line utilities and programs, and you can control the whole system without a GUI. Sometimes
this is actually easier and faster. For programming in assembly you are obviously going to have to
work in the terminal, and this part will show you how.
Before you start, keep in mind that Unix/Linux is case sensitive, so
"Blah" is not the same as "blah" or "blaH".
- Opening a terminal: If you're in KDE or Gnome, simply click on the terminal icon or
browse the "Start"-menu for a terminal program. Alternatively you can switch to one of the 6 text-mode
consoles by pressing CTRL+ALT+F1 through F6. To get back to graphics mode press
CTRL+ALT+F7. When you open a terminal or log in on a console, you are plonked into your
home directory, which is called whatever your username is. You are presented with a prompt that
looks something like this:
[delta@quantumcow asmtut]$
The part before the '@' tells you your username (mine is delta), then the computer name
(quantumcow), and then the top-level current directory (asmtut).
- Finding out where you are: At the prompt, type pwd. This will show you the
"present working directory", in other words where you are now. For example:
[delta@quantumcow asmtut]$ pwd
/home/delta/asmtut
- Changing directories: To change to another directory you use the cd command.
Note that it works a bit different than the DOS cd. Firstly, there must be a space between
"cd" and the directory name. Secondly, in Unix/Linux, the directory separator is a forward slash (/)
not a backslash (\). To change to the parent directory of the current one, you go cd ...
To go up two levels in the directory tree, type cd ../... Here are some examples – try them out:
[delta@quantumcow asmtut]$ cd /usr/share/doc
[delta@quantumcow doc]$ pwd
/usr/share/doc
[delta@quantumcow doc]$ cd ..
[delta@quantumcow share]$ cd ../..
[delta@quantumcow /]$
At the end of this example, you end up in the root directory, / (similar to C:\). Now to
get back to your home directory, type cd ~
The tilde (~) is a shortcut for your home directory.
- Finding out what's in a directory: To list the current directory's contents, type ls.
If you're in your home directory and haven't used Linux much, there probably won't be many files.
Change to a directory like /etc and list its contents – lots of files! (The /etc directory
is where most of the system's configuration files are stored.) To get some more info, you can do a
"long list" by typing ls -l or simply ll. In my home directory it looks like this:
Directories are highlighted in blue, executable files in green, compressed archives in red and images in purple.
- Finding out what's in a file: You can use either cat or less to view the contents
of a file. Use less when you know the output will be more than one screen long, because less
will pause at every screen of text, and allows you to scroll up and down.
[delta@quantumcow asmtut]$ cat foo.txt
Hello, world!
- The wonders of tab-completion: Linux has a wonderful feature called tab-completion. Almost anywhere,
when you are typing in the name of a file or directory, you can press the TAB key and Linux will complete
the name for you. This is especially useful when you're dealing with things that have long names. Try find a
directory with really long directory names in it, and then cd to one of them using tab-completion.
For example, type cd /usr/share/doc/cons and press TAB. Tada! Linux has completed
the name for you, (console-tools-19990829/) and you can just press ENTER.
If you try typing cd /usr/share/doc/proc and then press TAB you'll hear a beep. That's because
there are more than one directory in /usr/share/doc that starts with "proc", so Linux doesn't know which one you
want. If you press TAB again it will display the directories starting with "proc". Now you can type some
more letters of the directory you want (just enough to identify it uniquely will do), and press TAB again.
Neat, isn't it?
It is often useful to have more than just one terminal open, for example one to compile your program in and another
to read manpages with. Also, most window managers (KDE, Gnome, IceWM are window managers) allow you to work on
multiple desktops. So when one desktop gets cluttered with windows, just go to another one and "start with a clean
slate!" In KDE and Gnome you'll see four numbered little squares on the taskbar. Click on one and it takes you to
that desktop. (You can have up to 10 desktops if you want.) I have on one rare occasion worked on 4 consoles and
3 desktops at the same time because of all the different stuff I was doing!
Appendix B. Installing NASM (and other stuff) on Linux
In order to install programs on your Linux system, you must be root (administrator). You can decide whether you
want to do this with the GUI utilities or in a terminal – I recommend you try both, for the added experience ;)
Using KDE / Gnome
If you're working in KDE / Gnome, installing things is fairly straightforward:
- If you are logged in as a normal user, log out and log in as root.
- Pop your Linux CD in your CD-ROM drive, and it should be automounted (NASM is on the 2nd CD).
You can then use a file manager (Konqueror, Nautilus) to go to /mnt/cdrom where you should see the
contents of the Linux CD. If there's nothing, go to the desktop, right-click on the CD-ROM icon and click "Mount".
- In /mnt/cdrom, go to RedHat, then RPMS. You should see a lot of files with the extension
.RPM – look for nasm-0.98-8.i386.rpm.
- Click/double-click on it to open it with the package manager. From there it shouldn't be too much of a
mission to install. Also install nasm-doc-0.98-8.i386.rpm, the documentation for NASM.
Using the Terminal
Installing stuff by means of a terminal isn't difficult either:
- If you weren't logged in as root, become root in the terminal by typing su
(for "substitute user"). After entering your password, you will now be logged in on that terminal as root.
- Mount the CD-ROM by typing mount /dev/cdrom
- Change to the packages directory: cd /mnt/cdrom/RedHat/RPMS
- Install NASM with the RedHat Package Manager, by typing: rpm -i nasm-0.98-8.i386.rpm
(Hint: use tab-completion!)
Also install nasm-doc-0.98-8.i386.rpm, the documentation for NASM.
- If you su'd to become root, type exit to log out and stop being root.
If everything was successful, congratulations! You're well on your way to becoming an elite Linux user.
If something broke, feel free to e-mail me and I'll do my best to help. Good luck, and happy hacking in Linux!
Appendix C. References
Writing a useful program with NASM
The NASM documentation
Introduction to UNIX assembly programming
Linux Assembler Tutorial by Robin Miyagi
Section 2 of the manpages
asmtut/syscalls.html0100644000102300017500000023010207457741702014766 0ustar dericklabusers
(source)
Linux System Call Table
The following table lists the system calls for the Linux 2.2 kernel.
It could also be thought of as an API for the interface between user
space and kernel space.
My motivation for making this table was to make programming in assembly
language easier when using only system calls and not the C library
(for more information on this topic, go to
http://www.linuxassembly.org).
On the left are the numbers of the system calls. This number will be
put in register %eax. On the right of the table are the types of values
to be put into the remaining registers before calling the software interrupt
'int 0x80'. After each syscall, an integer is returned in %eax.
For convenience, the kernel source file where each system call is
located is linked to in the column labelled "Source". In order to use
the hyperlinks, you must first copy this page to your own machine because
the links take you directly to the source code on your system. You must
have the kernel source installed (or linked from) under '/usr/src/linux'
for this to work.
Note for sys_ipc (117): this syscall takes six arguments, so it can't fit
into the five registers %ebx - %edi; the last parameter (not shown) is of type 'long'. This
syscall requires a special call method where a pointer is put in %ebx which points to an array
containing the six arguments.
I will now explain exactly where in the kernel source that I got the information in the table above.
I do this because 1) changes in the source are bound to happen, 2) you might be curious,
or 3) I might've made an error.
System Call Numbers
For the numbers of the syscalls, look in
arch/i386/kernel/entry.S
for sys_call_table.
The syscall numbers are offsets into that table.
Several spots in the table are occupied by the syscall
sys_ni_syscall. This is a placeholder
that either replaces an obsolete syscall or reserves a spot for
future syscalls.
Incidentally, the system calls are called from the function
system_call in the same file; in particular,
they are called with the assembly instruction
'call *SYMBOL_NAME(sys_call_table)(,%eax,4)'.
The part '*SYMBOL_NAME(sys_call_table)' just gets
replaced by a symbol name in sys_call_table.
SYMBOL_NAME is a macro defined in
include/linux/linkage.h, and it just replaces
itself with its argument.
Typedefs
Here are the typedef declarations in the prototypes above:
Struct Declarations
Here are the struct declarations for the table at the top:
| exception_table_entry |
include/linux/module.h:
struct exception_table_entry {
unsigned long insn, fixup;
};
|
|---|
| iovec |
include/linux/uio.h:
struct iovec {
void *iov_base;
__kernel_size_t iov_len;
};
|
|---|
| itimerval |
include/linux/time.h:
struct itimerval {
struct timeval it_interval; /* timer interval */
struct timeval it_value; /* current value */
};
|
|---|
| kernel_sym |
include/linux/module.h:
struct kernel_sym {
unsigned long value;
char name[60];
};
|
|---|
| mmap_arg_struct |
arch/i386/kernel/sys_i386.c:
struct mmap_arg_struct {
unsigned long addr;
unsigned long len;
unsigned long prot;
unsigned long flags;
unsigned long fd;
unsigned long offset;
};
|
|---|
| module |
include/linux/module.h:
struct module {
unsigned long size_of_struct; /* sizeof(module) */
struct module *next;
const char *name;
unsigned long size;
union {
atomic_t usecount;
long pad;
} uc;
unsigned long flags; /* AUTOCLEAN et al */
unsigned nsyms;
unsigned ndeps;
struct module_symbol *syms;
struct module_ref *deps;
struct module_ref *refs;
int (*init)(void);
void (*cleanup)(void);
const struct exception_table_entry *ex_table_start;
const struct exception_table_entry *ex_table_end;
/* Members past this point are extensions to the basic
module support and are optional. Use mod_opt_member()
to examine them. */
const struct module_persist *persist_start;
const struct module_persist *persist_end;
int (*can_unload)(void);
};
|
|---|
| module_persist |
include/linux/module.h:
struct module_persist; /* yes, it's empty */
|
|---|
| module_ref |
include/linux/module.h:
struct module_ref {
struct module *dep; /* "parent" pointer */
struct module *ref; /* "child" pointer */
struct module_ref *next_ref;
};
|
|---|
| module_symbol |
include/linux/module.h:
struct module_symbol {
unsigned long value;
const char *name;
};
|
|---|
| new_utsname |
include/linux/utsname.h:
struct new_utsname {
char sysname[65];
char nodename[65];
char release[65];
char version[65];
char machine[65];
char domainname[65];
};
|
|---|
| __old_kernel_stat |
include/asm/stat.h:
struct __old_kernel_stat {
unsigned short st_dev;
unsigned short st_ino;
unsigned short st_mode;
unsigned short st_nlink;
unsigned short st_uid;
unsigned short st_gid;
unsigned short st_rdev;
unsigned long st_size;
unsigned long st_atime;
unsigned long st_mtime;
unsigned long st_ctime;
};
|
|---|
| oldold_utsname |
include/linux/utsname.h:
struct oldold_utsname {
char sysname[9];
char nodename[9];
char release[9];
char version[9];
char machine[9];
};
|
|---|
| old_sigaction |
include/asm/signal.h:
struct old_sigaction {
__sighandler_t sa_handler;
old_sigset_t sa_mask;
unsigned long sa_flags;
void (*sa_restorer)(void);
};
|
|---|
| old_utsname |
include/linux/utsname.h:
struct old_utsname {
char sysname[65];
char nodename[65];
char release[65];
char version[65];
char machine[65];
};
|
|---|
| pollfd |
include/asm/poll.h:
struct pollfd {
int fd;
short events;
short revents;
};
|
|---|
| pt_regs |
include/asm/ptrace.h:
struct pt_regs {
long ebx;
long ecx;
long edx;
long esi;
long edi;
long ebp;
long eax;
int xds;
int xes;
long orig_eax;
long eip;
int xcs;
long eflags;
long esp;
int xss;
};
|
|---|
| revectored_struct |
include/asm/vm86.h:
struct revectored_struct {
unsigned long __map[8];
};
|
|---|
| rlimit |
include/linux/resource.h:
struct rlimit {
long rlim_cur;
long rlim_max;
};
|
|---|
| rusage |
include/linux/resource.h:
struct rusage {
struct timeval ru_utime; /* user time used */
struct timeval ru_stime; /* system time used */
long ru_maxrss; /* maximum resident set size */
long ru_ixrss; /* integral shared memory size */
long ru_idrss; /* integral unshared data size */
long ru_isrss; /* integral unshared stack size */
long ru_minflt; /* page reclaims */
long ru_majflt; /* page faults */
long ru_nswap; /* swaps */
long ru_inblock; /* block input operations */
long ru_oublock; /* block output operations */
long ru_msgsnd; /* messages sent */
long ru_msgrcv; /* messages received */
long ru_nsignals; /* signals received */
long ru_nvcsw; /* voluntary context switches */
long ru_nivcsw; /* involuntary '' */
};
|
|---|
| sched_param |
include/linux/sched.h:
struct sched_param {
int sched_priority;
};
|
|---|
| sel_arg_struct |
arch/i386/kernel/sys_i386.c:
struct sel_arg_struct {
unsigned long n;
fd_set *inp, *outp, *exp;
struct timeval *tvp;
};
|
|---|
| sigaction |
include/asm/signal.h:
struct sigaction {
__sighandler_t sa_handler;
unsigned long sa_flags;
void (*sa_restorer)(void);
sigset_t sa_mask; /* mask last for extensibility */
};
|
|---|
| stat |
include/asm/stat.h:
struct stat {
unsigned short st_dev;
unsigned short __pad1;
unsigned long st_ino;
unsigned short st_mode;
unsigned short st_nlink;
unsigned short st_uid;
unsigned short st_gid;
unsigned short st_rdev;
unsigned short __pad2;
unsigned long st_size;
unsigned long st_blksize;
unsigned long st_blocks;
unsigned long st_atime;
unsigned long __unused1;
unsigned long st_mtime;
unsigned long __unused2;
unsigned long st_ctime;
unsigned long __unused3;
unsigned long __unused4;
unsigned long __unused5;
|
|---|
| statfs |
include/asm/statfs.h:
struct statfs {
long f_type;
long f_bsize;
long f_blocks;
long f_bfree;
long f_bavail;
long f_files;
long f_ffree;
__kernel_fsid_t f_fsid;
long f_namelen;
long f_spare[6];
};
|
|---|
| __sysctl_args |
include/linux/sysctl.h
struct __sysctl_args {
int *name;
int nlen;
void *oldval;
size_t *oldlenp;
void *newval;
size_t newlen;
unsigned long __unused[4];
};
|
|---|
| sysinfo |
include/linux/kernel.h:
struct sysinfo {
long uptime; /* Seconds since boot */
unsigned long loads[3]; /* 1, 5, and 15 minute load averages */
unsigned long totalram; /* Total usable main memory size */
unsigned long freeram; /* Available memory size */
unsigned long sharedram; /* Amount of shared memory */
unsigned long bufferram; /* Memory used by buffers */
unsigned long totalswap; /* Total swap space size */
unsigned long freeswap; /* swap space still available */
unsigned short procs; /* Number of current processes */
char _f[22]; /* Pads structure to 64 bytes */
};
|
|---|
| timex |
include/linux/timex.h:
struct timex {
unsigned int modes; /* mode selector */
long offset; /* time offset (usec) */
long freq; /* frequency offset (scaled ppm) */
long maxerror; /* maximum error (usec) */
long esterror; /* estimated error (usec) */
int status; /* clock command/status */
long constant; /* pll time constant */
long precision; /* clock precision (usec) (read only) */
long tolerance; /* clock frequency tolerance (ppm)
* (read only)
*/
struct timeval time; /* (read only) */
long tick; /* (modified) usecs between clock ticks */
long ppsfreq; /* pps frequency (scaled ppm) (ro) */
long jitter; /* pps jitter (us) (ro) */
int shift; /* interval duration (s) (shift) (ro) */
long stabil; /* pps stability (scaled ppm) (ro) */
long jitcnt; /* jitter limit exceeded (ro) */
long calcnt; /* calibration intervals (ro) */
long errcnt; /* calibration errors (ro) */
long stbcnt; /* stability limit exceeded (ro) */
int :32; int :32; int :32; int :32;
int :32; int :32; int :32; int :32;
int :32; int :32; int :32; int :32;
};
|
|---|
| timespec |
include/linux/time.h:
struct timespec {
time_t tv_sec; /* seconds */
long tv_nsec; /* nanoseconds */
};
|
|---|
| timeval |
include/linux/time.h:
struct timeval {
time_t tv_sec; /* seconds */
suseconds_t tv_usec; /* microseconds */
};
|
|---|
| timezone |
include/linux/time.h:
struct timezone {
int tz_minuteswest; /* minutes west of Greenwich */
int tz_dsttime; /* type of dst correction */
};
|
|---|
| tms |
include/linux/times.h
struct tms {
clock_t tms_utime;
clock_t tms_stime;
clock_t tms_cutime;
clock_t tms_cstime;
};
|
|---|
| ustat |
include/linux/types.h:
struct ustat {
__kernel_daddr_t f_tfree;
__kernel_ino_t f_tinode;
char f_fname[6];
char f_fpack[6];
};
|
|---|
| utimbuf |
include/linux/utime.h:
struct utimbuf {
time_t actime;
time_t modtime;
};
|
|---|
| vm86plus_info_struct |
include/asm/vm86.h:
struct vm86plus_info_struct {
unsigned long force_return_for_pic:1;
unsigned long vm86dbg_active:1;
unsigned long vm86dbg_TFpendig:1;
unsigned long unused:28;
unsigned long is_vm86pus:1;
unsigned char vm86dbg_intxxtab[32];
};
|
|---|
| vm86plus_struct |
include/asm/vm86.h:
struct vm86plus_struct {
struct vm86_regs regs;
unsigned long flags;
unsigned long screen_bitmap;
unsigned long cpu_type;
struct revectored_struct int_revectored;
struct revectored_struct int21_revectored;
struct vm86plus_info_struct vm86plus;
};
|
|---|
| vm86_regs |
include/asm/vm86.h:
struct vm86_regs {
/* normal regs, with special meaning for the segment descriptors.. */
long ebx;
long ecx;
long edx;
long esi;
long edi;
long ebp;
long eax;
long __null_ds;
long __null_es;
long __null_fs;
long __null_gs;
long orig_eax;
long eip;
unsigned short cs, __csh;
long eflags;
long esp;
unsigned short ss, __ssh;
/* these are specific to v86 mode: */
unsigned short es, __esh;
unsigned short ds, __dsh;
unsigned short fs, __fsh;
unsigned short gs, __gsh;
};
|
|---|
| vm86_struct |
include/asm/vm86.h:
struct vm86_struct {
struct vm86_regs regs;
unsigned long flags;
unsigned long screen_bitmap;
unsigned long cpu_type;
struct revectored_struct int_revectored;
struct revectored_struct int21_revectored;
};
|
|---|