lkmpg icon indicating copy to clipboard operation
lkmpg copied to clipboard

Published 20 hours ago verified publisher icon sysprog21

Add system call "stealing" sample using kprobe handler

Open haodongnj opened this issue 1 year ago • 1 comments

The syscall-steal example does't work on my x84 Laptops with kernel 6.1 on Debian and 5.15 on Ubuntu. As mentioned in this answer on stack overflow, syscall table is no longer used to invoke system call on x86 arch after this commit, which is backed-ported to many LTS kernel versions. So maybe an extra example without using syscall table can make it easy to understand the situation for beginners like me .

haodongnj avatar Jun 20 '24 14:06 haodongnj

Reported by CI:

examples/syscall-steal2.c:35:15: warning: symbol 'syscall_kprobe' was not declared. Should it be static?

jserv avatar Jun 20 '24 19:06 jserv

Thank @haodongnj for contributing!

jserv avatar Jul 04 '24 23:07 jserv