Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

What is better "int 0x80" or "syscall" in 32-bit code on Linux?

Tags:

linux

x86

assembly

32-bit

system-calls

I study the Linux kernel and found out that for x86_64 architecture the interrupt int 0x80 doesn't work for calling system calls1.

For the i386 architecture (32-bit x86 user-space), what is more preferable: syscall or int 0x80 and why?

I use Linux kernel version 3.4.

Footnote 1: int 0x80 does work in some cases in 64-bit code, but is never recommended. What happens if you use the 32-bit int 0x80 Linux ABI in 64-bit code?

like image 474
Alex Avatar asked Oct 09 '12 18:10

Alex

People also ask

What is the purpose of int 0x80?

int 0x80 is the assembly language instruction that is used to invoke system calls in Linux on x86 (i.e., Intel-compatible) processors. An assembly language is a human-readable notation for the machine language that a specific type of processor (also called a central processing unit or CPU) uses.

What is the use of syscall and INT 80h and where it is used?

On the Intel family of microprocessors, such as the Pentium, int 80h is the assembly language op code for interrupt 80h . This is the syscall interrupt on a typical Intel-based Unix system, such as FreeBSD. It allows application programmers to obtain system services from the Unix kernel.

What are Linux system calls?

A system call is a programmatic way a program requests a service from the kernel, and strace is a powerful tool that allows you to trace the thin layer between user processes and the Linux kernel. To understand how an operating system works, you first need to understand how system calls work.

What is x86 syscall?

On a 64-bit x86 Linux machine, there's a special instruction "syscall" to make system calls: a request to the kernel to do something. You identify which system call you'd like to make by loading a syscall number into register rax.

1 Answers

  • syscall is the default way of entering kernel mode on x86-64. This instruction is not available in 32 bit modes of operation on Intel processors.
  • sysenter is an instruction most frequently used to invoke system calls in 32 bit modes of operation. It is similar to syscall, a bit more difficult to use though, but that is the kernel's concern.
  • int 0x80 is a legacy way to invoke a system call and should be avoided.

The preferred way to invoke a system call is to use vDSO, a part of memory mapped in each process address space that allows to use system calls more efficiently (for example, by not entering kernel mode in some cases at all). vDSO also takes care of more difficult, in comparison to the legacy int 0x80 way, handling of syscall or sysenter instructions.

Also, see this and this.

like image 125
Paweł Dziepak Avatar answered Sep 19 '22 18:09

Paweł Dziepak
Sign in to Comment

Related questions

Explain the effects of export LANG, LC_CTYPE, and LC_ALL [closed]
How to use gdb with LD_PRELOAD
When grep "\\" XXFile I got "Trailing Backslash"
CLI pdf viewer for linux [closed]
How do you kill all Linux processes that are older than a certain age?
Linux shared memory: shmget() vs mmap()?
Is /usr/local/lib searched for shared libraries?
What are various options / arguments for "./configure" in Linux
64 bit ntohl() in C++?
Rsync to Amazon Ec2 Instance
Tomcat 7: How to set initial heap size correctly?
Classpath does not work under linux
Round a divided number in Bash
Where is the x86-64 System V ABI documented?
rsync - mkstemp failed: Permission denied (13) [closed]
Whole one core dedicated to single process
git: can't push (unpacker error) related to permission issues
tcp_tw_reuse vs tcp_tw_recycle : Which to use (or both)?
How to use debug version of libc
DSO missing from command line [duplicate]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!