Comments on: Overriding System Functions for Fun and Profit http://hackerboss.com/overriding-system-functions-for-fun-and-profit/ Developing software and managing development teams. Sun, 08 Aug 2010 20:15:47 +0000 http://wordpress.org/?v= hourly 1 By: Ville Laurikarihttp://hackerboss.com/overriding-system-functions-for-fun-and-profit/comment-page-1/#comment-442 Ville Laurikari Fri, 16 Oct 2009 06:39:00 +0000 http://hackerboss.com/?p=1014#comment-442 Johnny, I think your problem might be related to a GCC optimization. <a href="http://nion.modprobe.de/blog/archives/680-gcc-and-printfputs-optimizations.html" rel="nofollow">GCC sometimes replaces calls to <code>printf()</code> with <code>puts()</code> as an optimization</a>.A simple test confirms this: <pre lang="bash"> $ cat hello.c #include <stdio.h> int main() { printf("Hello, World!\n"); return 0; } $ gcc -o hello hello.c $ nm --undefined-only hello w _Jv_RegisterClasses w __gmon_start__ U __libc_start_main@@GLIBC_2.2.5 U puts@@GLIBC_2.2.5 </pre>My code calls <code>printf()</code>, but the resulting executable actually calls <code>puts()</code>!You need to override both <code>puts()</code> and <code>printf()</code> to catch all cases. Another option is to recompile using -fno-builtin-printf, but that's probably defeating the purpose of using LD_PRELOAD in the first place. Johnny, I think your problem might be related to a GCC optimization. GCC sometimes replaces calls to printf() with puts() as an optimization.

A simple test confirms this:

$ cat hello.c
#include <stdio.h>
int main() { printf("Hello, World!\n"); return 0; }
$ gcc -o hello hello.c
$ nm --undefined-only hello
                 w _Jv_RegisterClasses
                 w __gmon_start__
                 U __libc_start_main@@GLIBC_2.2.5
                 U puts@@GLIBC_2.2.5

My code calls printf(), but the resulting executable actually calls puts()!

You need to override both puts() and printf() to catch all cases. Another option is to recompile using -fno-builtin-printf, but that’s probably defeating the purpose of using LD_PRELOAD in the first place.

]]> By: Johnnyhttp://hackerboss.com/overriding-system-functions-for-fun-and-profit/comment-page-1/#comment-440 Johnny Fri, 16 Oct 2009 05:07:03 +0000 http://hackerboss.com/?p=1014#comment-440 I successfully defined my own malloc/free functions, but for printf(), seems there're some problem. Have you check it? Thanks. I successfully defined my own malloc/free functions, but for printf(), seems there’re some problem. Have you check it? Thanks.

]]> By: Johnnyhttp://hackerboss.com/overriding-system-functions-for-fun-and-profit/comment-page-1/#comment-425 Johnny Thu, 15 Oct 2009 07:21:30 +0000 http://hackerboss.com/?p=1014#comment-425 It's what I really need for current project. Thanks.I need to dump all debugging messages sent to console to a file/memory. At least three solutions are available: 1. Deploy wrapped printf all over the system. Our codes are from different team/company, different wrapper functions are used to output to console, so unify them is a little difficult (even inside our team, due to historical reason, printf of system library and wrappers are mix-used, NOT well organized!) 2. Touch UART driver: it's a good solution, but we don't want it. No reason. 3. Hook into printf: I find the solution here :-) It’s what I really need for current project. Thanks.

I need to dump all debugging messages sent to console to a file/memory. At least three solutions are available:
1. Deploy wrapped printf all over the system. Our codes are from different team/company, different wrapper functions are used to output to console, so unify them is a little difficult (even inside our team, due to historical reason, printf of system library and wrappers are mix-used, NOT well organized!)
2. Touch UART driver: it’s a good solution, but we don’t want it. No reason.
3. Hook into printf: I find the solution here :-)

]]> By: lonelycoderhttp://hackerboss.com/overriding-system-functions-for-fun-and-profit/comment-page-1/#comment-348 lonelycoder Fri, 25 Sep 2009 10:30:59 +0000 http://hackerboss.com/?p=1014#comment-348 I was aware of this ld_preload thing, but I though it was some kind of black magic to use it. Thanks. I was aware of this ld_preload thing, but I though it was some kind of black magic to use it. Thanks.

]]> By: hackerbosshttp://hackerboss.com/overriding-system-functions-for-fun-and-profit/comment-page-1/#comment-345 hackerboss Thu, 24 Sep 2009 10:20:08 +0000 http://hackerboss.com/?p=1014#comment-345 <p>Overriding System Functions for Fun and Profit: <a href="http://bit.ly/mJzch" rel="nofollow">http://bit.ly/mJzch</a></p> <p><i>This comment was originally posted on <a href="http://twitter.com/hackerboss/statuses/4338802037" rel="nofollow">Twitter</a></i></p> Overriding System Functions for Fun and Profit: http://bit.ly/mJzch

This comment was originally posted on Twitter

]]>