• Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

Anyone do Pascal?

Collapse
X
  •  
  • Filter
  • Time
  • Show
Clear All
new posts

    Anyone do Pascal?

    If you do, I'd be grateful if you could let us know how & why this works:

    Program SelfModify;

    Const
    AnzNOPs = 10;

    Type
    TTestProc = Procedure;

    Var
    code : Pointer;
    Run : TTestProc;
    pb : ^Byte;
    pw : ^Word Absolute pb;
    i : LongInt;

    begin
    GetMem(code, AnzNOPs + 7); {7 Bytes For proc header & end}
    pb := code; {pb = ^start of routine to build}

    pb^ := $55;
    INC(pb); {push bp}
    pw^ := $E589;
    INC(pw); {mov bp,sp}
    For i := 1 to AnzNOPs DO
    begin
    pb^ := $90;
    INC(pb); {nop's}
    end;
    pb^ := $5D;
    INC(pb); {pop bp}
    pb^ := $CA;
    INC(pb);
    pw^ := $0000; {retf 0}

    {$IFDEF DPMI}
    WriteLN('Protected Mode');
    code:= Ptr(Seg(code) + SelectorInc, Ofs(code)); {alias-selector}
    {$else}
    WriteLN('Real Mode');
    {$endIF}

    Run := TTestProc(code); {that's a Type-cast!}
    Run; {call routine}

    FreeMem(code, AnzNOPs + 7);
    WriteLN('Alive and kicking!');
    end.

    #2
    pascal

    I dont see why the pascal is important, this could be done in many languages. Is this turbo pascal / delphi ? I seem to remember that Borland used TT.... for their object model stuff but I dont know what other people used.

    he is dynamically allocating memory, writing code into it (plus the return info) and then executing the code.

    // alloc AnzNOPs + 7 bytes of memory and set ptr code to point to it
    GetMem(code, AnzNOPs + 7); {7 Bytes For proc header & end

    then a chunk of machine code gets written into the memory you just allocated. his comments tell you what the hex will actually do. bp is a pointer to byte, he steps through the memory a byte at a time (inc bp) writting values bp^=...

    the real/dpmi mode is the processor/memory mode real is effectivly dos 640k etc protected mode is giving access to extended memory like any thing since the 286
    pointers are different

    think of Run as a pointer to a function, so cast code into a pointer to a fn, then call the function.

    finally free the memory

    Comment


      #3
      re:

      cheers Mark. they dont make programming languages like they used to. try doing that in Java..hehe

      Comment


        #4
        Re: re:

        I hate pascal.

        This is not feature of Pascal but feature of assembly - they just patch up their own code with assembly that does nothing then returns. These days code segments are often read only and you can't overwrite it. It also degrades performance a lot, I dont know if you remember Wolf 3D but it run better on 286 than 386 specifically due to self modifiying code (textures were all converted into code) and this was not nice thing for 386.

        anyway, Mark beaten me to it.

        Comment

        Working...
        X