LinuxQuestions.org - can i modify int 80 vector to a user-defined vector

- Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)

- - can i modify int 80 vector to a user-defined vector (https://www.linuxquestions.org/questions/linux-security-4/can-i-modify-int-80-vector-to-a-user-defined-vector-296587/)

qqrilxk

03-02-2005 01:09 AM

can i modify int 80 vector to a user-defined vector

in linux2.6 i want to modify int 80 vector to point to a user-defined vector hander,so that i can capture all the arguments that system calls passed and to do what i want .then at the end of the user-defined vector hander call the int 80 vector hander. i know there are many ways to get the system calls arguments,but i just like to do like that .how can i to implement it ?

btmiller

03-03-2005 08:46 PM

Probably the best way to do it is to add the code you want into the syscall entry routine in the kernel (dig around in entry.S since I'm not sure off the top of my head how the kernel interrupt entry routine works). SELinux and grsecurity sdo something like this, I think, so you might want to look at how they did it.

All times are GMT -5. The time now is 11:04 PM.