Presentation is loading. Please wait.

Presentation is loading. Please wait.

By Sam Nasr September 28, 2004 Understanding MSIL.

Published byMegan Vega Modified over 10 years ago

Similar presentations

Presentation on theme: "By Sam Nasr September 28, 2004 Understanding MSIL."— Presentation transcript:

1 By Sam Nasr September 28, 2004 Understanding MSIL

2 Objectives Learn MSIL terminology Learn MSIL terminology Understand sections of an Assembly Understand sections of an Assembly Discuss IL Tools Discuss IL Tools Discuss additional resources Discuss additional resources

3 Advantages of Understanding MSIL Better understanding=Better troubleshooting. Better understanding=Better troubleshooting. Understanding of possible security vulnerabilities. Understanding of possible security vulnerabilities. All roads lead to CLR All roads lead to CLR

4 Definitions CLR: Common Language Runtime CLR: Common Language Runtime Assembly: Managed.Net application. Assembly: Managed.Net application. Each assembly contains minimum 1 prime module, but possibly other additional modules. Each assembly contains minimum 1 prime module, but possibly other additional modules. Module: Managed executable Module: Managed executable

5 Definitions Metadata: Data descriptors (i.e. info that describes the data). Metadata: Data descriptors (i.e. info that describes the data). MSIL: Microsoft Intermediate Language MSIL: Microsoft Intermediate Language ILDASM: Intermediate Language Disassembler. ILDASM: Intermediate Language Disassembler.

6 Background Compiling in a.Net Framework (IL, similar to JVM) VS. Compiling in a traditional environment (native executable code)

7 Execution in.Net.Net Applications (assemblies) consist of one or more managed executables, each carrying metadata and managed code..Net Applications (assemblies) consist of one or more managed executables, each carrying metadata and managed code. JIT Compiler compiles IL to machine code dynamically as needed. JIT Compiler compiles IL to machine code dynamically as needed. Objects are loaded only when used. Objects are loaded only when used. Machine code compilations are cached for subsequent executions. Machine code compilations are cached for subsequent executions.

8 Execution in.Net Code is executed in Managed Environment (type control, garbage collection, exception handling). Code is executed in Managed Environment (type control, garbage collection, exception handling). Can compile from IL to native machine code using NGEN utility. Can compile from IL to native machine code using NGEN utility. Cost of Code: (Sizes of Hello World.exe) Cost of Code: (Sizes of Hello World.exe) C#(3K) VS. C(32K) VS. C++(173K)

9 CLR Requirements The CLR requires the following information about each method, which is available through metadata. 1. Instructions: each method has a pointer to the instruction set. 2. Signature: describes the calling convention, return type, parameter count and type

10 CLR Requirements 3. Exception Handling Array: a list of exceptions and the offset address to the handling code. 4. Evaluation Stack Size: typically seen as.maxstack in the ILDASM listing. 5. Locals Array: all local variables used.

11 Example 1. Create a program in Visual Studio.Net 2. Debug and compile. 3. Use ILDASM to generate.IL file. 4. Use file editor to edit.IL file. 5. Use ILASM to create the new assembly.

12 Reading IL RVA: Relative Virtual Address RVA: Relative Virtual Address ldstr: loads a string token ldstr: loads a string token.assembly extern: defines an external application referenced in the existing program..assembly extern: defines an external application referenced in the existing program..module: defines the current module..module: defines the current module..field: defines a metadata item used in the module.field: defines a metadata item used in the module

13 Reading IL.method: defines a member method of the given class..method: defines a member method of the given class..entrypoint: defines the entry point of the current method.entrypoint: defines the entry point of the current method.locals init: defines the single local variable of the current method..locals init: defines the single local variable of the current method.

14 ILDASM Conventions

15 MSIL Utilities ildasm.exe: Converts IL to human readable code ildasm.exe: Converts IL to human readable code C:\Program Files\Microsoft Visual Studio.NET\ FrameworkSDK\Bin dumpbin.exe: Converts IL to human readable code dumpbin.exe: Converts IL to human readable code C:\Program Files\Microsoft Visual Studio.NET\Vc7\bin Reflector.exe: Converts IL to human readable code Reflector.exe: Converts IL to human readable code http://www.aisto.com/roeder/dotnet/ ILASM.EXE: Converts human readable code to IL ILASM.EXE: Converts human readable code to ILC:\WINDOWS\Microsoft.NET\Framework\v1.1.4322 NGEN.exe: Compiles IL to machine code. NGEN.exe: Compiles IL to machine code.C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322

16 Resources Inside Microsoft.NET IL Assembler by Serge Lidin Inside Microsoft.NET IL Assembler by Serge Lidin.NET Common Language Runtime Unleashed by Kevin Burton.NET Common Language Runtime Unleashed by Kevin Burton (http://www.samspublishing.com/title/0672321246) http://www.samspublishing.com/title/0672321246 Assemblies Ins and Outs by Chris Rausch (http://www.vbdotnetheaven.com) Assemblies Ins and Outs by Chris Rausch (http://www.vbdotnetheaven.com)http://www.vbdotnetheaven.com DotFuscator DotFuscator (http://www.preemptive.com/products/dotfuscator/FAQ.html) http://www.preemptive.com/products/dotfuscator/FAQ.html

Download ppt "By Sam Nasr September 28, 2004 Understanding MSIL."

Similar presentations

What is.Net Gary Devendorf. .Net Framework.Net framework works like the Domino Objects only much lower level and very complete It is part of the OS (or.

What is.Net Gary Devendorf. .Net Framework.Net framework works like the Domino Objects only much lower level and very complete It is part of the OS (or.
Ahead of Time Dynamic Translation PreJit/NGEN by any other name George Bosworth Microsoft MRE04 March 21, 2004.

Ahead of Time Dynamic Translation PreJit/NGEN by any other name George Bosworth Microsoft MRE04 March 21, 2004.
Introduction to .NET Framework

Introduction to .NET Framework
.NET Framework Overview

.NET Framework Overview
2004-06-16pa 1 Porting BETA to ROTOR ROTOR Projects Presentation Day, June 16 2004 by Peter Andersen.

pa 1 Porting BETA to ROTOR ROTOR Projects Presentation Day, June by Peter Andersen.
Using.NET Platform Note: Most of the material of these slides have been taken & extended from Nakov’s excellent overview for.NET framework, MSDN and wikipedia.

Using.NET Platform Note: Most of the material of these slides have been taken & extended from Nakov’s excellent overview for.NET framework, MSDN and wikipedia.
Building Localized Applications with Microsoft.NET Framework and Visual Studio.NET Achim Ruopp International Program Manager Microsoft Corp.

Building Localized Applications with Microsoft.NET Framework and Visual Studio.NET Achim Ruopp International Program Manager Microsoft Corp.
History of.Net Introduced by Microsoft Earlier technology was VC++ and VB VC++ comes with so many library and VB was so easy to use and not flexible to.

History of.Net Introduced by Microsoft Earlier technology was VC++ and VB VC++ comes with so many library and VB was so easy to use and not flexible to.
.NET IL Obfuscation Presented by: Sarath Chandra Dorbala.

.NET IL Obfuscation Presented by: Sarath Chandra Dorbala.
Disassembling for Fun Jason Haley. Who is this guy?  Certifiable (MCSD.net certified that is)  Blog –

Disassembling for Fun Jason Haley. Who is this guy?  Certifiable (MCSD.net certified that is)  Blog –
Debugging Production SharePoint Applications Wouter van Vugt.

Debugging Production SharePoint Applications Wouter van Vugt.
.NET Framework Overview Pingping Ma Nov 16 th, 2006.

.NET Framework Overview Pingping Ma Nov 16 th, 2006.
R.GOVINDARAJULU International Institute of Information Technology Hyderabad, India.. ROTOR-BASED CURRICULUM DEVELOPMENT.

R.GOVINDARAJULU International Institute of Information Technology Hyderabad, India.. ROTOR-BASED CURRICULUM DEVELOPMENT.
Introducing the Common Language Runtime for.NET. The Common Language Runtime The Common Language Runtime (CLR) The Common Language Runtime (CLR) –Execution.

Introducing the Common Language Runtime for.NET. The Common Language Runtime The Common Language Runtime (CLR) The Common Language Runtime (CLR) –Execution.
Introducing the Common Language Runtime. The Common Language Runtime The Common Language Runtime (CLR) The Common Language Runtime (CLR) –Execution engine.

Introducing the Common Language Runtime. The Common Language Runtime The Common Language Runtime (CLR) The Common Language Runtime (CLR) –Execution engine.
1 An Introduction to Visual Basic 2005. 2 Objectives Explain the history of programming languages Define the terminology used in object-oriented programming.

1 An Introduction to Visual Basic Objectives Explain the history of programming languages Define the terminology used in object-oriented programming.
Platforms and tools for Web Services and Mobile Applications Introduction to C# Bent Thomsen Aalborg University 3rd and 4th of June 2004.

Platforms and tools for Web Services and Mobile Applications Introduction to C# Bent Thomsen Aalborg University 3rd and 4th of June 2004.
A Free sample background from www.powerpointbackgrounds.com © 2001 By Default!Slide 1.NET Overview BY: Pinkesh Desai.

A Free sample background from © 2001 By Default!Slide 1.NET Overview BY: Pinkesh Desai.
Lecture Roger Sutton CO530 Automation Tools 5: Class Libraries and Assemblies 1.

Lecture Roger Sutton CO530 Automation Tools 5: Class Libraries and Assemblies 1.
1 Introduction to.NET Framework. 2.NETFramework Internet COM+ Orchestration Orchestration Windows.NET Enterprise ServersBuildingBlockServices Visual Studio.NET.

1 Introduction to.NET Framework. 2.NETFramework Internet COM+ Orchestration Orchestration Windows.NET Enterprise ServersBuildingBlockServices Visual Studio.NET.

Similar presentations

Ads by Google