executing insmod hangs the entire os
noyb noybee
afzalulh at gmail.com
Wed Feb 18 00:19:53 EST 2015
On Tue, Feb 17, 2015 at 11:59 PM, <Valdis.Kletnieks at vt.edu> wrote:
> On Tue, 17 Feb 2015 21:46:00 +0530, noyb noybee said:
>
>> am on a VM running CentOS 6.6 with kernel version 2.6.32-504.
>
> Which probably has kernel relocation and ASLR enabled.
>
>> unsigned long *syscall_table = (unsigned long *)0xffffffff81600560;
>
> So that isn't pointing at the syscall table in the running kernel.
>
>> syscall_table[__NR_chroot] = new_chroot;
>
> So you just trashed an essentially random location in memory.
Oh no, the memory location is retrieved dynamically every time the
module is compiled and loaded. Also, I am just experimenting with
hooking into system calls here. The project itself is not completed
planned at the moment, like you pointed out.
More information about the Kernelnewbies
mailing list