hook of syscall

From: Tabei Koji (koji_tabei@trendmicro.co.jp)
Date: Tue Apr 18 2000 - 01:58:21 EST

Next message: A. Haumer: "Re: [RFC] automount based devfs replacement"
Previous message: Cyrille Chepelov (home): "Re: kswapd a zombie."
Next in thread: Tigran Aivazian: "Re: hook of syscall"
Reply: Tigran Aivazian: "Re: hook of syscall"
Maybe reply: Tabei Koji: "RE: hook of syscall"
Maybe reply: Borislav Deianov: "Re: hook of syscall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi all,

I would like to implement a hook procedure of sys_open/sys_close in kernel
module.
(it is a thing like WindowsNT FilterDriver.)
I copied the address of my function(hook_syscall_open) to sys_call_table[5].

   asmlinkage int hook_syscall_open (const char * filename, int flags, int
mode)
   {
        long (*sys_open)(const char *,int,int) = real_sys_open;

        printk("original sys_open addr %x\n", sys_open );
        return ( sys_open(filename,flags,mode) );
   }

It calls original sys_open. But, Oops occurs.
Is the hook of sys_xxx possible?
If it is possible, Do you know a document or a sample?

Thanks,
Kozy

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: A. Haumer: "Re: [RFC] automount based devfs replacement"
Previous message: Cyrille Chepelov (home): "Re: kswapd a zombie."
Next in thread: Tigran Aivazian: "Re: hook of syscall"
Reply: Tigran Aivazian: "Re: hook of syscall"
Maybe reply: Tabei Koji: "RE: hook of syscall"
Maybe reply: Borislav Deianov: "Re: hook of syscall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Apr 23 2000 - 21:00:12 EST