This is default featured slide 1 title

Go to Blogger edit html and find these sentences.Now replace these sentences with your own descriptions.This theme is Bloggerized by Lasantha Bandara - Premiumbloggertemplates.com.

12345

2010年3月9日 星期二

QEMU指令memsave ,xp

晚上8:37    No comments

看QEMU說明書有幾個跟memory相關指令1.‘memsave addr size file’save to disk virtual memory dump starting at addr of size size.2.‘pmemsave addr size file’save to disk physical memory dump starting at addr of size size.3.‘xp /fmt addr’Physical memory dump starting at addr.一開始沒看說明書直接測試,一直得到跟想像不同的結果原來memsave指令是用虛擬位址,xp指令用實體位址.所以結論是在kernel mode想看兩者對應xp /10x 0x0 memsave 0xc0000000 10 test老師都教過一般情況kernel mode 的虛擬地址0xc0000000對應到實體位址0由此可以觀察到 ..ker...

Read More