difference between b main and b *main / find main return address in C

Question

What is the difference between b main and b *main in gdb?
I want to find main return address using gdb.

Is it right?

(gdb) b main
(gdb) r
(gdb) x/x $esp

For 1) see http://stackoverflow.com/q/40960758/72178. – ks1322 Dec 10 '16 at 17:17 — ks1322, Dec 10 '16 at 17:17

score 0 · Accepted Answer · edited May 23 '17 at 12:30

Is it right?

No.

This would be correct if you used b *main (on 32-bit i*86 host), but not if you use b main.

As this answer explains, the former sets a breakpoint in the first instruction of main (when the stack pointer still points just below the return address pushed by the CALL instruction), the latter on the first instruction after function prolog (at which point several other values have likely been pushed onto the stack).

difference between b main and b *main / find main return address in C

1 Answers1