syscall
美 
英
例句
Essentially any tool that could be used for detecting such a rootkit is susceptible to false results due to syscall hijacking.
基本上任何可能被这样的rootkit检测工具易于使用,由于系统调用劫持错误的结果。
Upon return from the system call, syscall_exit is eventually reached, and a call to resume_userspace transitions back to user-space.
从系统调用中返回后,最终执行syscall_exit,并调用resume_userspace返回用户空间。
As you can see, the syscall function includes as its first argument the index of the system call table to use.
正如您所见,syscall函数使用了系统调用表中使用的索引作为第一个参数。
Under UNIX, calling the kernel consists of an operation known as a syscall or trap.
UNIX下的内核调用由所谓的syscall或者trap操作构成。
With the syscall function, you can call a system call by specifying its call index and a set of arguments.
使用syscall函数,您可以通过指定它的调用索引和一组参数来调用系统调用。
Keep in mind the original 7 bytes are saved and copied back into the original syscall so that it may be called within the evil syscall.
请记住原来的7个字节保存和复制到原来的系统调用,以便它可能在邪恶的系统调用回调。
Listing 6 shows an application that uses each of your system calls as defined by the _syscall macros.
清单6显示的应用程序使用了_syscall宏定义的所有系统调用。
With the first method, you call your new functions as identified by their index through the syscall function.
使用第一种方法,您可以通过syscall函数调用由其索引所标识的新函数。
In the end, the syscall interface provides the means to transfer control between the user-space application and the kernel.
最后,系统调用接口提供了在用户空间应用程序和内核之间转移控制的方法。
A blocking syscall, like a read will only return once data is available.
阻塞的系统调用,就拿读取来说,直到数据准备好的时候才会返回。
The syscall function is architecture specific but uses a mechanism to transfer control to the kernel.
syscall函数特定于架构,使用一种机制将控制权交给内核。
The request_key syscall searches a process keyring for a key.
request_key系统调用搜索一个进程keyring,寻找一个密钥。
Note also that the input (syscall number) is consumed (used) before the output (the return value of syscall) is produced.
另请注意,输入(syscall号)在产生输出(syscall的返回值)之前被消耗(使用)。
With syscall probes, the input arguments and return values are available to the VUE script.
通过使用系统调用探测,可以在VUE脚本中使用输入参数和返回值。
Now, here's how you use the _syscall macros to make your new system calls visible to the user-space.
现在,让我们来看一下如何使用_syscall宏来使新系统调用对于用户空间可见。
Syscall hijack is one way that we talk about in our other paper and also the Syscall modification too.
系统调用劫持是一种方法,我们谈论我们的其他文件,并修改过的系统调用。
Finally, the syscall keyctl provides a number of functions for managing keys.
最后,系统调用keyctl提供许多用来管理密钥的函数。
The add_key syscall is used to create keys of type type and length plen.
add_key系统调用用来创建类型为type、长度为plen的密钥。
For example, the mnkod(2) syscall is implemented by creating a plain file, then recording the requested file type in the pseudo database.
例如,mnkod(2)系统调用是通过创建一个纯文本文件来实现,然后在pseudo数据库中记录所请求的文件类型。
Next, you have a syscall probe.
接下来是一个syscall探针。
Research on Syscall-based Intrusion Detection Technology for Linux System
基于系统调用的Linux系统入侵检测技术研究
Markov Chain Model of Syscall-based Intrusion Detection
基于系统调用入侵检测的马氏链模型
Make syscall that fails convert to common error code return common error code decide execution based on common error code
如果考虑到将平台相关的错误码转换为通用的错误码,那么上面的代码段可以修改为如下
Listing 1: Sample syscall ProbeVue script
清单1:系统调用ProbeVue脚本示例
