On Tue, Feb 17, 2015 at 11:59 PM, <Valdis.Kletnieks@xxxxxx> wrote: > On Tue, 17 Feb 2015 21:46:00 +0530, noyb noybee said: > >> am on a VM running CentOS 6.6 with kernel version 2.6.32-504. > > Which probably has kernel relocation and ASLR enabled. > >> unsigned long *syscall_table = (unsigned long *)0xffffffff81600560; > > So that isn't pointing at the syscall table in the running kernel. > >> syscall_table[__NR_chroot] = new_chroot; > > So you just trashed an essentially random location in memory. Oh no, the memory location is retrieved dynamically every time the module is compiled and loaded. Also, I am just experimenting with hooking into system calls here. The project itself is not completed planned at the moment, like you pointed out. _______________________________________________ Kernelnewbies mailing list Kernelnewbies@xxxxxxxxxxxxxxxxx http://lists.kernelnewbies.org/mailman/listinfo/kernelnewbies
