|
DynamoRIO
|
#include <drsyscall_record.h>
Detailed Description
Describes a system call number, parameter, memory region, or the return value.
Field Documentation
◆ _raw_bytes
| uint8_t syscall_record_t_::_raw_bytes[SYSCALL_RECORD_UNION_SIZE_BYTES] |
The _raw_bytes entry is for initialization purposes and must be first in this list. A byte array is used for initialization rather than an existing struct to avoid incomplete initialization due to padding or alignment constraints within a struct. This array is not intended to be used.
◆ address
| uint8_t* syscall_record_t_::address |
The address of the memory region.
◆
| START_PACKED_STRUCTURE { ... } syscall_record_t_::content |
The memory address and the size of a syscall parameter. It is used for type DRSYS_MEMORY_CONTENT.
◆ ordinal
| uint16_t syscall_record_t_::ordinal |
The ordinal of the parameter. Set to -1 for a return value.
◆
| START_PACKED_STRUCTURE { ... } syscall_record_t_::param |
The parameter of a syscall. It is used for type DRSYS_PRECALL_PARAM and DRSYS_POSTCALL_PARAM.
◆ return_value
| reg_t syscall_record_t_::return_value |
The return value of the syscall. It is used for type DRSYS_RETURN_VALUE.
◆ size
| size_t syscall_record_t_::size |
The size of the memory region.
◆ syscall_number [1/2]
| uint16_t syscall_record_t_::syscall_number |
The syscall number. It is used for type DRSYS_SYSCALL_NUMBER_DEPRECATED or DRSYS_RECORD_END_DEPRECATED. This is limited to system call numbers that can fit in 16 bits.
- Deprecated:
- Replaced by syscall_number_timestamp.syscall_number.
◆ syscall_number [2/2]
| drsys_sysnum_t syscall_record_t_::syscall_number |
The syscall number.
◆
| START_PACKED_STRUCTURE { ... } syscall_record_t_::syscall_number_timestamp |
The syscall number and a timestamp. It is used for type DRSYS_SYSCALL_NUMBER_TIMESTAMP and DRSYS_RECORD_END_TIMESTAMP.
◆ timestamp
| uint64_t syscall_record_t_::timestamp |
The timestamp marks the beginning of the syscall for DRSYS_SYSCALL_NUMBER_TIMESTAMP, and the end of the syscall for DRSYS_RECORD_END_TIMESTAMP.
◆ value
| reg_t syscall_record_t_::value |
The value of the parameter.
The documentation for this struct was generated from the following file:
- /home/runner/work/dynamorio/dynamorio/ext/drsyscall/drsyscall_record.h
DynamoRIO version 11.90.20312 --- Fri Aug 15 2025 03:31:12