linfeng

> 我为x86加了kernel wp的保护，现在这个机制能检测到栈溢出了。但是还存在以下问题： > > 1. 要分配多一倍的内存 > 2. 栈溢出的时候,do_kern_addr_fault没实现。难以看到栈回溯。 内核栈的检测只是用来debug使用，在内核稳定后应该使用原有的实现，所以分配多一倍的内存并没有太多的副作用。 由于只有触发异常才能检测到栈溢出，很难从异常处理中进行堆栈回溯，这里只是暂时打印了触发该异常的函数

使用unwind进行堆栈展开时，它的工作方式是从当前栈帧逐步向上展开的，它不能对异常处理函数进行展开

In this case, the rbpf library cannot ensure that the memory has executable permissions. Developers need to ensure that the memory allocated by GlobalAlloc has executable permissions, which seems unreasonable...

As part of this discussion, perhaps we could examine existing eBPF interpreter implementations, such as [rbpf](https://github.com/qmonnet/rbpf), and decide whether to incorporate it into ostd. I've already implemented eBPF support in...

I agree with your opinion. In fact, there is another important reason for introducing kallsyms. Those eBPF programs based on kprobe may require the kernel to find their addresses based...

Thanks for your suggestions. I'll spend some time to fix and improve these issues, leading to a more robust ksym crate.

@tatetian Hi, it's been a while since our last discussion. I've revisited the Linux implementation and re-implemented the ksym crate. The main changes this time include the following: 1. Using...