From: Rajat Sharma <fs.rajat@gmail.com>
To: Gaurav Saxena <grvsaxena419@gmail.com>
Cc: linux-fsdevel@vger.kernel.org
Subject: Re: Intercepting system calls
Date: Mon, 26 Dec 2011 11:23:30 +0530 [thread overview]
Message-ID: <CAAYFAvrkSEC8uNxLd_WoTPHrxM+SoTbHpy6WESoyRVv8NuuL=A@mail.gmail.com> (raw)
In-Reply-To: <CAOh0hwP36oyZaeZFSWWDm6dfHu31ZQBOdvypjb6nzo9gtBVPhw@mail.gmail.com>
Hi Gaurav,
I would suggest to take a wrapfs source (a null stackable file-system)
and customize it for your need. Well Erez (wrapfs author) puts his
continuous efforts in stabilizing wrapfs and porting to new kernels
and he is approachable too. In-fact he has acknowledged on of my patch
and merged it into wrapfs tree.
Agreed that you can do stuffs like patching system call table but I
(and most of us here) would categorize that as pure hack, as there
exist no framework provided by kernel to do that. Also any approach
you take to patch system call table won't be stable.
Thanks,
Rajat
On Sat, Dec 24, 2011 at 2:39 PM, Gaurav Saxena <grvsaxena419@gmail.com> wrote:
> Hello all,
>
> I am writing an application which would create a backup for the system
> so that it could be restored as it is. For example I create a backup
> using my application. I just do nothing at time of backup so it would
> be fast. Now whenever I see any deletion I would save that file so
> that I could restore it. Also I would like to see for
> modification/rename. I cannot do this using inotify as I would be
> notified after actual deletion/write. I don't want to use SELinux
> because I want to implement this on existing installed system. I was
> earlier thinking of replacing system calls for open/unlink with my
> custom calls which will call my functions before actual work and then
> I would decide what to do I would also want to reject unlink request
> for some of the files. But as I now know that its not working in
> linux>3.0 . I had also seen dazuko which is not supporting linux>3.0
> yet. Also there used to be a redirfs which used to work earlier but
> the latest kernel is not supported yet. I think a method could be to
> replace unlink in syscall table with my unlink function but I don't
> find any good method of doing that, as syscall table is no longer
> exported. I would like to implement this in a kernel module instead of
> modifying kernel code itself. Please suggest some method of doing
> that.
> Thanks to you all for your help.
>
> --
> Thanks and Regards ,
> Gaurav
> --
> To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
--
To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
next prev parent reply other threads:[~2011-12-26 5:53 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <CAOh0hwO03GJ2ApNW6GV5fJKJ4S+hTv3An7vLTO4qaL4U9grdJg@mail.gmail.com>
2011-12-24 9:09 ` Intercepting system calls Gaurav Saxena
2011-12-26 5:53 ` Rajat Sharma [this message]
2011-12-28 5:59 ` Gaurav Saxena
2011-12-28 13:44 ` Rajat Sharma
2011-12-29 6:42 ` Gaurav Saxena
2011-12-29 8:49 ` Rajat Sharma
2011-12-29 10:23 ` Gaurav Saxena
2011-12-29 11:11 ` Rajat Sharma
2011-12-29 12:06 ` Gaurav Saxena
2011-12-29 12:25 ` Rajat Sharma
2011-12-29 12:32 ` Gaurav Saxena
[not found] ` <CALJfu6NrF2fjsWUi4gnV9X6AN3rcecL=6=j9ZZADaRGwz3mECw@mail.gmail.com>
2011-12-29 13:12 ` Rajat Sharma
2011-12-29 14:03 ` Gaurav Saxena
2011-12-29 14:32 ` Gaurav Saxena
2012-01-20 7:38 ` Gaurav Saxena
2011-12-29 14:01 ` Gaurav Saxena
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CAAYFAvrkSEC8uNxLd_WoTPHrxM+SoTbHpy6WESoyRVv8NuuL=A@mail.gmail.com' \
--to=fs.rajat@gmail.com \
--cc=grvsaxena419@gmail.com \
--cc=linux-fsdevel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).