Chinaunix首页 | 论坛 | 博客

wangcong02345wangcong02345.blog.chinaunix.net

首页 |  博文目录 |  关于我

wangcong02345

  • 博客访问: 2150645
  • 博文数量: 438
  • 博客积分: 3871
  • 博客等级: 中校
  • 技术积分: 6075
  • 用 户 组: 普通用户
  • 注册时间: 2011-09-10 00:11
个人简介

邮箱: wangcong02345@163.com

文章分类

全部博文(438)

文章存档

2017年(15)

2016年(119)

2015年(91)

2014年(62)

2013年(56)

2012年(79)

2011年(16)

我的朋友
最近访客
推荐博文
相关博文
写操作系统----6.解析ELF格式的内核

分类: LINUX

2016-08-24 15:16:35

1.现在己经把ELF格式的kernel.bin加载到了0x70000处,
现在要解析ELF格式中的数据到0x1500
1.2 错误的代码
  1. cong@msi:/work/os/code/5kernel$ cat ./loader.S_bad
  2. org 0x500
  3. jmp begin
  4. ;segment discript
  5. TYPE_8 equ 0x8 ;code -->exec
  6. TYPE_2 equ 0x2 ;data -->r/w

  8. S_0 equ (0x0<<4) ;s=0-->gate
  9. S_1 equ (0x1<<4) ;s=1-->data/code

  11. DPL_0 equ (0x0<<5) ;privilege level
  12. DPL_3 equ (0x3<<5)

  14. P_0 equ (0x00<<7) ;not in memory
  15. P_1 equ (0x01<<7) ;in memory

  17. AVL_0 equ (0x00<<8)

  19. DB_0 equ (0x00<<10) ;16bit data&code
  20. DB_1 equ (0x01<<10) ;32bit data&code

  22. G_0 equ (0x00<<11) ;g=0,byte
  23. G_1 equ (0x01<<11) ;g=1,4K

  25. TI_0 equ (0x0<<2) ;TI=0,gdt
  26. TI_1 equ (0x1<<2) ;TI=1,ldt

  28. RPL_0 equ (0x0)

  30. ;PAGE
  31. PAGE_POS equ 0x1F0000 ;0xF0000-->0xFFFFF-->64K
  32. ;PAGE_POS equ 0x1F0100 ;0x100000-->1M
  33. PG_P_0 equ (0x0) ;not in memory
  34. PG_P_1 equ (0x1) ;in memory

  36. PG_RW_0 equ (0x0<<1) ;read,not write
  37. PG_RW_1 equ (0x1<<1) ;read,write

  39. PG_US_0 equ (0x0<<2) ;supervisor
  40. PG_US_1 equ (0x1<<2) ;user

  42. PG_PWT_0 equ (0x0<<3) ;memory
  43. PG_PWT_1 equ (0x1<<3) ;memory and cache

  45. PG_PCD_0 equ (0x0<<4) ;disable page level cache
  46. PG_PCD_1 equ (0x1<<4) ;enable page level cache

  48. PG_A_0 equ (0x0<<5) ;not accessed
  49. PG_A_1 equ (0x1<<5) ;accessed

  51. PG_D_0 equ (0x0<<6) ;not dirty
  52. PG_D_1 equ (0x1<<6) ;dirty

  54. PG_PAT_0 equ (0x0<<7) ;page attribute tabel
  55. PG_PAT_1 equ (0x1<<7) ;

  57. PG_G_0 equ (0x0<<8) ;global-->TLB
  58. PG_G_1 equ (0x1<<8) ;

  60. PG_AVL_0 equ (0x0<<9) ;available
  61. PG_AVL_1 equ (0x1<<9) ;

  63. ;PE
  64. PT_NULL equ 0

  66. %macro DESC 3
  67.     dw %1 & 0xFFFF ;limit[0-15]
  68.     dw %2 & 0xFFFF ;base[0-15]
  69.     db (%2>>16)&0xFF ;base[16-23]
  70.     db (%3&0xFF) ;prop[0-7]
  71.     db (((%1>>16)&0xF) | (%3>>4)&0xF0) ;limit[16-19]prop[8-11]
  72.     db (%2>>24) & 0xFF
  73. %endmacro
  74. gdt_base: DESC 0, 0, 0 ;desc_dummy
  75. gdt_code: DESC 0xFFFFFF, 0x0, (G_0|DB_1|AVL_0|P_1|DPL_0|S_1|TYPE_8)
  76. gdt_data: DESC 0xFFFFF, 0x0, (G_1|DB_1|AVL_0|P_1|DPL_0|S_1|TYPE_2)
  77. gdt_video: DESC 0xFFFF, 0xB8000, (G_0|DB_1|AVL_0|P_1|DPL_0|S_1|TYPE_2)

  79. gdt_ptr:
  80.     dw 32 ;gdt_limit: 4*8=32, only 4 gdt item
  81.     dd gdt_base ;gdt_base

  83. select_code equ (0x01<<3)|TI_0|RPL_0
  84. select_data equ (0x02<<3)|TI_0|RPL_0
  85. select_video equ (0x03<<3)|TI_0|RPL_0
  86. begin:
  87.     mov cx, ax
  88.     ;----------------- 打开A20 ----------------
  89.     in al,0x92
  90.     or al,0000_0010B
  91.     out 0x92,al

  93.     ;----------------- 加载GDT ----------------
  94.     lgdt [gdt_ptr]

  96.     ;----------------- cr0第0位置1 ----------------
  97.     mov eax, cr0
  98.     or eax, 0x00000001
  99.     mov cr0, eax

  101.     ;----------------- 跳到保护模式 ----------------
  102.     jmp select_code:protect_mode
  103. [bits 32]
  104. protect_mode:
  105.     mov ax, select_data
  106.     mov ds, ax
  107.     mov es, ax
  108.     mov ax, select_video
  109.     mov gs, ax
  110.     mov byte [gs:160], 'P'
  111.     mov byte [gs:161], 0xA4

  113.     call setup_page_table    

  115.     sgdt [gdt_ptr]
  116.     
  117.     or dword [gdt_ptr+2], 0xC0000000 ;gdt_ptr
  118.     or byte [gdt_base+7], 0xC0 ;change gdt_code base addr
  119.     or byte [gdt_base+8+7], 0xC0 ;change gdt_data base addr
  120.     or byte [gdt_base+16+7], 0xC0 ;change gdt_video base addr

  122.     or esp, 0xC0000000

  124.     mov eax, PAGE_POS
  125.     mov cr3, eax
  126.         
  127.     ;打开cr0的pg位
  128.     mov eax, cr0
  129.     or eax, 0x80000000
  130.     mov cr0, eax

  132.     lgdt [gdt_ptr]

  134.     mov byte [gs:162], 'G'
  135.     mov byte [gs:163], 0xA4

  137.  jmp select_code:enter_kernel     ;强制刷新流水线,更新gdt

  139. enter_kernel:
  140.    call kernel_init
  141.    mov esp, 0xc009f000
  142.    jmp 0xc0001500 ;read from PE


  145. ;----------------- 将kernel.bin中的segment拷贝到编译的地址 -----------
  146. kernel_init:
  147.    xor eax, eax
  148.    xor ebx, ebx        ;ebx记录程序头表地址
  149.    xor ecx, ecx        ;cx记录程序头表中的program header数量
  150.    xor edx, edx        ;dx 记录program header尺寸,即e_phentsize

  152.    mov dx, [0x70000+42]     ; 偏移文件42字节处的属性是e_phentsize,表示program header大小
  153.    mov ebx, [0x70000+28] ; 偏移文件开始部分28字节的地方是e_phoff,表示第1 个program header在文件中的偏移量
  154.                      ; 其实该值是0x34,不过还是谨慎一点,这里来读取实际值
  155.    add ebx, 0x70000
  156.    mov cx, [0x70000 + 44] ; 偏移文件开始部分44字节的地方是e_phnum,表示有几个program header
  157. _each_segment:
  158.    cmp byte [ebx + 0], PT_NULL         ; 若p_type等于 PT_NULL,说明此program header未使用。
  159.    je .PTNULL

  161.    ;为函数memcpy压入参数,参数是从右往左依然压入.函数原型类似于 memcpy(dst,src,size)
  162.    push dword [ebx + 16]         ; program header中偏移16字节的地方是p_filesz,压入函数memcpy的第三个参数:size
  163.    mov eax, [ebx + 4]             ; 距程序头偏移量为4字节的位置是p_offset
  164.    add eax, 0x70000     ; 加上kernel.bin被加载到的物理地址,eax为该段的物理地址
  165.    push eax                 ; 压入函数memcpy的第二个参数:源地址
  166.    push dword [ebx + 8]             ; 压入函数memcpy的第一个参数:目的地址,偏移程序头8字节的位置是p_vaddr,这就是目的地址
  167.    call mem_cpy                 ; 调用mem_cpy完成段复制
  168.    add esp,12                 ; 清理栈中压入的三个参数
  169. .PTNULL:
  170.    add ebx, edx                 ; edx为program header大小,即e_phentsize,在此ebx指向下一个program header
  171.    loop _each_segment
  172.    ret

  174. ;---------- 逐字节拷贝 mem_cpy(dst,src,size) ------------
  175. ;输入:栈中三个参数(dst,src,size)
  176. ;输出:
  177. ;---------------------------------------------------------
  178. mem_cpy:        
  179.    cld
  180.    push ebp
  181.    mov ebp, esp
  182.    push ecx         ; rep指令用到了ecx,但ecx对于外层段的循环还有用,故先入栈备份
  183.    mov edi, [ebp + 8]     ; dst
  184.    mov esi, [ebp + 12]     ; src
  185.    mov ecx, [ebp + 16]     ; size
  186.    rep movsb         ; 逐字节拷贝

  188.    ;恢复环境
  189.    pop ecx        
  190.    pop ebp
  191.    ret

  193. setup_page_table:
  194.     mov ecx, 0x400 ;1PTE:4K=0x1000
  195.     xor esi, esi
  196.     xor eax, eax
  197. _init_page_table:
  198.     mov [PAGE_POS+esi], eax
  199.     add esi,0x04
  200.     loop _init_page_table

  202.     ;PDE0, PDE768 use the same PTE0
  203.     mov eax, (PG_US_1|PG_RW_1|PG_P_1)
  204.     or eax, ((PAGE_POS+0x1000)&0xFFF000)
  205.     mov [PAGE_POS+0x0], eax
  206.     mov [PAGE_POS+0xc00], eax
  207.     sub eax, 0x1000
  208.     mov [PAGE_POS+0xFFC], eax

  210.     ;PTE for PDE0 and PDE768
  211.     mov ecx,256
  212.     xor esi,esi
  213.     mov eax, (PG_US_1|PG_RW_1|PG_P_1)
  214. _create_pte:
  215.     mov [PAGE_POS+0x1000+esi],eax
  216.     add esi,0x04
  217.     add eax,0x1000
  218.     loop _create_pte

  220.     ;create other PDE for kernel


  223.     ret
1.2.a 调试时发现用到了ss
  1. <bochs:21>
  2. Next at t=157027543
  3. (0) [0x000000000609] 0008:00000609 (unk. ctxt): call .+8 (0xc0000616) ; e808000000
  4. <bochs:22>
  5. (0).[157027548] [0x00000000061b] 0008:0000061b (unk. ctxt): mov edi, dword ptr ss:[ebp+8] ; 8b7d08
  6. Next at t=157027549
  7. (0) [0x0000fffffff0] f000:fff0 (unk. ctxt): jmpf 0xf000:e05b ; ea5be000f0
  8. <bochs:23> quit
  9. (0).[157027549] [0x0000fffffff0] f000:fff0 (unk. ctxt): jmpf 0xf000:e05b ; ea5be000f0
但是代码里面没有体现ss,   添加 mov ss, ax
1.2.b 
在jmp之前查看0x1500的数据,说明是正确的
  1. Next at t=157028922
  2. (0) [0x0000000005d0] 0008:000005d0 (unk. ctxt): jmp .-1073737941 (0x80001500) ; e92b0f00c0
  3. <bochs:40> xp /32 0x1500
  4. [bochs]:
  5. 0x00001500 <bogus+ 0>:    0xebe58955    0x000000fe    0x00000014    0x00000000
  6. 0x00001510 <bogus+ 16>:    0x00527a01    0x01087c01    0x04040c1b    0x00000188
  7. 0x00001520 <bogus+ 32>:    0x00000018    0x0000001c    0xffffffd8    0x00000005
  8. 0x00001530 <bogus+ 48>:    0x080e4100    0x0d420285    0x00000005    0x00000000
  9. 0x00001540 <bogus+ 64>:    0x00000000    0x00000000    0x00000000    0x00000000
  10. 0x00001550 <bogus+ 80>:    0x00000000    0x00000000    0x00000000    0x00000000
  11. 0x00001560 <bogus+ 96>:    0x00000000    0x00000000    0x00000000    0x00000000
  12. 0x00001570 <bogus+ 112>:    0x00000000    0x00000000    0x00000000    0x00000000
  13. <bochs:41> n
  14. (0).[157028922] [0x0000000005d0] 0008:000005d0 (unk. ctxt): jmp .-1073737941 (0x80001500) ; e92b0f00c0
  15. Next at t=157028923
  16. (0) [0x0000fffffff0] f000:fff0 (unk. ctxt): jmpf 0xf000:e05b ; ea5be000f0
  17. 但是在下一步跳转时出现了错误
1.2.c 
错误的gdt
  1. GDT[0x00]=??? descriptor hi=0xc0000000, lo=0x00000000
  2. GDT[0x01]=Code segment, base=0xc0000000, limit=0x000fffff, Execute-Only, Non-Conforming, Accessed, 32-bit
  3. GDT[0x02]=Data segment, base=0xc0000000, limit=0xffffffff, Read/Write, Accessed
  4. GDT[0x03]=Data segment, base=0x000b8000, limit=0x0000ffff, Read/Write, Accessed
正确的gdt
  1. GDT[0x00]=??? descriptor hi=0x00000000, lo=0x00000000
  2. GDT[0x01]=Code segment, base=0x00000000, limit=0xffffffff, Execute-Only, Non-Conforming, Accessed, 32-bit
  3. GDT[0x02]=Data segment, base=0x00000000, limit=0xffffffff, Read/Write, Accessed
  4. GDT[0x03]=Data segment, base=0xc00b8000, limit=0x00007fff, Read/Write, Accessed
发现是gdt中的code segment出错了,当然data segment也不对
1.3 正确的代码
  1. org 0x500
  2. jmp begin
  3. ;segment discript
  4. TYPE_8 equ 0x8 ;code -->exec
  5. TYPE_2 equ 0x2 ;data -->r/w

  7. S_0 equ (0x0<<4) ;s=0-->gate
  8. S_1 equ (0x1<<4) ;s=1-->data/code

  10. DPL_0 equ (0x0<<5) ;privilege level
  11. DPL_3 equ (0x3<<5)

  13. P_0 equ (0x00<<7) ;not in memory
  14. P_1 equ (0x01<<7) ;in memory

  16. AVL_0 equ (0x00<<8)

  18. DB_0 equ (0x00<<10) ;16bit data&code
  19. DB_1 equ (0x01<<10) ;32bit data&code

  21. G_0 equ (0x00<<11) ;g=0,byte
  22. G_1 equ (0x01<<11) ;g=1,4K

  24. TI_0 equ (0x0<<2) ;TI=0,gdt
  25. TI_1 equ (0x1<<2) ;TI=1,ldt

  27. RPL_0 equ (0x0)

  29. ;PAGE
  30. ;PAGE_POS equ 0x1F0000 ;0xF0000-->0xFFFFF-->64K
  31. PAGE_POS equ 0x100000 ;0xF0000-->0xFFFFF-->64K
  32. ;PAGE_POS equ 0x1F0100 ;0x100000-->1M
  33. PG_P_0 equ (0x0) ;not in memory
  34. PG_P_1 equ (0x1) ;in memory

  36. PG_RW_0 equ (0x0<<1) ;read,not write
  37. PG_RW_1 equ (0x1<<1) ;read,write

  39. PG_US_0 equ (0x0<<2) ;supervisor
  40. PG_US_1 equ (0x1<<2) ;user

  42. PG_PWT_0 equ (0x0<<3) ;memory
  43. PG_PWT_1 equ (0x1<<3) ;memory and cache

  45. PG_PCD_0 equ (0x0<<4) ;disable page level cache
  46. PG_PCD_1 equ (0x1<<4) ;enable page level cache

  48. PG_A_0 equ (0x0<<5) ;not accessed
  49. PG_A_1 equ (0x1<<5) ;accessed

  51. PG_D_0 equ (0x0<<6) ;not dirty
  52. PG_D_1 equ (0x1<<6) ;dirty

  54. PG_PAT_0 equ (0x0<<7) ;page attribute tabel
  55. PG_PAT_1 equ (0x1<<7) ;

  57. PG_G_0 equ (0x0<<8) ;global-->TLB
  58. PG_G_1 equ (0x1<<8) ;

  60. PG_AVL_0 equ (0x0<<9) ;available
  61. PG_AVL_1 equ (0x1<<9) ;

  63. ;PE
  64. PT_NULL equ 0

  66. %macro DESC 3
  67.     dw %1 & 0xFFFF ;limit[0-15]
  68.     dw %2 & 0xFFFF ;base[0-15]
  69.     db (%2>>16)&0xFF ;base[16-23]
  70.     db (%3&0xFF) ;prop[0-7]
  71.     db (((%1>>16)&0xF) | (%3>>4)&0xF0) ;limit[16-19]prop[8-11]
  72.     db (%2>>24) & 0xFF
  73. %endmacro
  74. gdt_base: DESC 0, 0, 0 ;desc_dummy
  75. gdt_code: DESC 0xFFFFF, 0x0, (G_1|DB_1|AVL_0|P_1|DPL_0|S_1|TYPE_8)    -->改gdt_code的granularity由字节到4K,增大code的段界限
  76. gdt_data: DESC 0xFFFFF, 0x0, (G_1|DB_1|AVL_0|P_1|DPL_0|S_1|TYPE_2)
  77. gdt_video: DESC 0xFFFF, 0xB8000, (G_0|DB_1|AVL_0|P_1|DPL_0|S_1|TYPE_2)

  79. gdt_ptr:
  80.     dw 32 ;gdt_limit: 4*8=32, only 4 gdt item
  81.     dd gdt_base ;gdt_base

  83. select_code equ (0x01<<3)|TI_0|RPL_0
  84. select_data equ (0x02<<3)|TI_0|RPL_0
  85. select_video equ (0x03<<3)|TI_0|RPL_0
  86. begin:
  87.     mov cx, ax
  88.     ;----------------- 打开A20 ----------------
  89.     in al,0x92
  90.     or al,0000_0010B
  91.     out 0x92,al

  93.     ;----------------- 加载GDT ----------------
  94.     lgdt [gdt_ptr]

  96.     ;----------------- cr0第0位置1 ----------------
  97.     mov eax, cr0
  98.     or eax, 0x00000001
  99.     mov cr0, eax

  101.     ;----------------- 跳到保护模式 ----------------
  102.     jmp select_code:protect_mode
  103. [bits 32]
  104. protect_mode:
  105.     mov ax, select_data
  106.     mov ds, ax
  107.     mov es, ax
  108.     mov ss, ax               -->因为下面有函数调用需要使用栈,所以这儿设置一下ss
  109.     mov ax, select_video
  110.     mov gs, ax
  111.     mov byte [gs:160], 'P'
  112.     mov byte [gs:161], 0xA4

  114.     call setup_page_table    

  116.     sgdt [gdt_ptr]
  117.     
  118.     or dword [gdt_ptr+2], 0xC0000000 ;gdt_ptr
  119.     ;or byte [gdt_base+7], 0xC0 ;change gdt_code base addr     -->不用改gdt_code的基址
  120.     ;or byte [gdt_base+8+7], 0xC0 ;change gdt_data base addr   -->不用改gdt_data的基址
  121.     or byte [gdt_base+16+7], 0xC0 ;change gdt_video base addr

  123.     or esp, 0xC0000000

  125.     mov eax, PAGE_POS
  126.     mov cr3, eax
  127.         
  128.     ;打开cr0的pg位
  129.     mov eax, cr0
  130.     or eax, 0x80000000
  131.     mov cr0, eax

  133.     lgdt [gdt_ptr]

  135.     mov byte [gs:162], 'G'
  136.     mov byte [gs:163], 0xA4

  138.  jmp select_code:enter_kernel     ;强制刷新流水线,更新gdt

  140. enter_kernel:
  141.    call kernel_init
  142.    mov esp, 0xc009f000
  143.    ;mov dword [0xC0001500], 0x00
  144.    jmp dword 0xC0001500 ;read from PE
  145.    ;jmp 0x1500 ;read from PE


  148. ;----------------- 将kernel.bin中的segment拷贝到编译的地址 -----------
  149. kernel_init:
  150.    xor eax, eax
  151.    xor ebx, ebx        ;ebx记录程序头表地址
  152.    xor ecx, ecx        ;cx记录程序头表中的program header数量
  153.    xor edx, edx        ;dx 记录program header尺寸,即e_phentsize

  155.    mov dx, [0x70000+42]     ; 偏移文件42字节处的属性是e_phentsize,表示program header大小
  156.    mov ebx, [0x70000+28] ; 偏移文件开始部分28字节的地方是e_phoff,表示第1 个program header在文件中的偏移量
  157.                      ; 其实该值是0x34,不过还是谨慎一点,这里来读取实际值
  158.    add ebx, 0x70000
  159.    mov cx, [0x70000 + 44] ; 偏移文件开始部分44字节的地方是e_phnum,表示有几个program header
  160. _each_segment:
  161.    cmp byte [ebx + 0], PT_NULL         ; 若p_type等于 PT_NULL,说明此program header未使用。
  162.    je .PTNULL

  164.    ;为函数memcpy压入参数,参数是从右往左依然压入.函数原型类似于 memcpy(dst,src,size)
  165.    push dword [ebx + 16]         ; program header中偏移16字节的地方是p_filesz,压入函数memcpy的第三个参数:size
  166.    mov eax, [ebx + 4]             ; 距程序头偏移量为4字节的位置是p_offset
  167.    add eax, 0x70000     ; 加上kernel.bin被加载到的物理地址,eax为该段的物理地址
  168.    push eax                 ; 压入函数memcpy的第二个参数:源地址
  169.    push dword [ebx + 8]             ; 压入函数memcpy的第一个参数:目的地址,偏移程序头8字节的位置是p_vaddr,这就是目的地址
  170.    call mem_cpy                 ; 调用mem_cpy完成段复制
  171.    add esp,12                 ; 清理栈中压入的三个参数
  172. .PTNULL:
  173.    add ebx, edx                 ; edx为program header大小,即e_phentsize,在此ebx指向下一个program header
  174.    loop _each_segment
  175.    ret

  177. ;---------- 逐字节拷贝 mem_cpy(dst,src,size) ------------
  178. ;输入:栈中三个参数(dst,src,size)
  179. ;输出:
  180. ;---------------------------------------------------------
  181. mem_cpy:        
  182.    cld
  183.    push ebp
  184.    mov ebp, esp
  185.    push ecx         ; rep指令用到了ecx,但ecx对于外层段的循环还有用,故先入栈备份
  186.    mov edi, [ebp + 8]     ; dst
  187.    mov esi, [ebp + 12]     ; src
  188.    mov ecx, [ebp + 16]     ; size
  189.    rep movsb         ; 逐字节拷贝

  191.    ;恢复环境
  192.    pop ecx        
  193.    pop ebp
  194.    ret

  196. setup_page_table:
  197.     mov ecx, 0x400 ;1PTE:4K=0x1000
  198.     xor esi, esi
  199.     xor eax, eax
  200. _init_page_table:
  201.     mov [PAGE_POS+esi], eax
  202.     add esi,0x04
  203.     loop _init_page_table

  205.     ;PDE0, PDE768 use the same PTE0
  206.     mov eax, (PG_US_1|PG_RW_1|PG_P_1)
  207.     or eax, ((PAGE_POS+0x1000)&0xFFF000)
  208.     mov [PAGE_POS+0x0], eax
  209.     mov [PAGE_POS+0xc00], eax
  210.     sub eax, 0x1000
  211.     mov [PAGE_POS+0xFFC], eax

  213.     ;PTE for PDE0 and PDE768
  214.     mov ecx,256
  215.     xor esi,esi
  216.     mov eax, (PG_US_1|PG_RW_1|PG_P_1)
  217. _create_pte:
  218.     mov [PAGE_POS+0x1000+esi],eax
  219.     add esi,0x04
  220.     add eax,0x1000
  221.     loop _create_pte

  223.     ;create other PDE for kernel
  224.     mov eax, (PG_US_1|PG_RW_1|PG_P_1)
  225.     or eax, ((PAGE_POS+0x2000)&0xFFF000)
  226.     mov ecx,254
  227.     mov esi,0x04
  228. _create_pde:
  229.     mov [PAGE_POS+0xc00+esi], eax
  230.     add esi, 0x04
  231.     add eax, 0x1000
  232.     loop _create_pde

  234.     ret
1.4 代码打包
6kernel.rar(下载后改名为6kernel.rar)

附录: ELF解析测试程序
  1. #include <stdio.h>
  2. #include <stdlib.h>
  3. #include <string.h>
  4. #include <errno.h>
  5. #include <sys/types.h>
  6. #include <sys/stat.h>
  7. #include <fcntl.h>
  8. #include <stdint.h>
  9. #define dbmsg(fmt, args ...) printf("%s:%s[%d]: "fmt"\n", __FILE__,__FUNCTION__, __LINE__,##args)

  11. typedef uint16_t Elf32_Half;
  12. typedef uint32_t Elf32_Word;
  13. typedef uint32_t Elf32_Addr;
  14. typedef uint32_t Elf32_Off;

  16. #define EI_NIDENT (16)

  18. typedef struct
  19. {
  20.     unsigned char e_ident[EI_NIDENT]; /* Magic number and other info */
  21.     Elf32_Half e_type; /* Object file type */
  22.     Elf32_Half e_machine; /* Architecture */
  23.     Elf32_Word e_version; /* Object file version */
  24.     Elf32_Addr e_entry; /* Entry point virtual address */
  25.     Elf32_Off e_phoff; /* Program header table file offset */
  26.     Elf32_Off e_shoff; /* Section header table file offset */
  27.     Elf32_Word e_flags; /* Processor-specific flags */
  28.     Elf32_Half e_ehsize; /* ELF header size in bytes */
  29.     Elf32_Half e_phentsize; /* Program header table entry size */
  30.     Elf32_Half e_phnum; /* Program header table entry count */
  31.     Elf32_Half e_shentsize; /* Section header table entry size */
  32.     Elf32_Half e_shnum; /* Section header table entry count */
  33.     Elf32_Half e_shstrndx; /* Section header string table index */
  34. } Elf32_Ehdr;


  37. int readelf(int fd)
  38. {
  39.     int i;
  40.     unsigned char* p;
  41.     unsigned char buf[2048];    
  42.     Elf32_Ehdr h;
  43.     read(fd, &h, sizeof(h));
  44.     p = (unsigned char*)&h;
  45.     for(i=0; i<sizeof(h); i++)
  46.     {
  47.         printf("%2d=0x%02x ", i, p[i]);
  48.         if((i+1)%16==0)
  49.             printf("\n");
  50.     }
  51.     printf("\n");
  52.     printf("header_size=%d\n", sizeof(h));
  53.     printf("type=0x%x,mach=0x%x\n",h.e_type, h.e_machine);
  54.     printf("entry=0x%x,phnum=0x%x\n",h.e_entry, h.e_phnum);
  55.     return 0;
  56. }

  58. int main ( int argc, char *argv[] )
  59. {
  60.     int fd = open("./kernel.bin", O_RDWR);
  61.     if(fd < 0)
  62.     {
  63.         dbmsg("open error");
  64.         return -1;
  65.     }
  66.     readelf(fd);
  67.     return EXIT_SUCCESS;
  68. }


阅读(1283) | 评论(0) | 转发(0) |
0

上一篇:写操作系统----5.解决读取kernel跨段

下一篇:写操作系统----7.实现printf

给主人留下些什么吧!~~
关于我们 | 关于IT168 | 联系方式 | 广告合作 | 法律声明 | 免费注册

Copyright 2001-2010 ChinaUnix.net All Rights Reserved 北京皓辰网域网络信息技术有限公司. 版权所有

感谢所有关心和支持过ChinaUnix的朋友们

16024965号-6