vfs_read() vfs_write()两函数的原形如下: ssize_t vfs_read(struct file* filp, char __user* buffer, size_t len, loff_t* pos); ssize_t vfs_write(struct file* filp, const char __user* buffer, size_t len, loff_t* pos); 注意这两个函数的第二个参数buffer,前面都有__user修饰符,这...
no-SMEP/ no-SMAP/ KPTI/ KASLR/ modprobe_path search/ invalid fpos use/ zero-addr mapping https://blog.smallkirby.com/posts/shared-knote/ I added check /proc/sys/vm/mmap_min/addr in my first procedures list. pprofile from LINE CTF 2021 SMEP/ SMAP/ KPTI/ KASLR/ pointer validation/ mo...
if (file->f_op->write) ret = file->f_op->write(file, buf, count, &file->f_pos); else ret = -EINVAL; if (ret > 0) add_wchar(current->signal, ret); } rcu_read_unlock(); return ret; } SYSCALL_DEFINE3()宏用于定义系统调用,在真实内核代码中还有一些复杂的操作,例如错误处理、信...
+0x014 bDestroyed : Pos 31, 1 Bit ... +0x060 lpfnWndProc : Ptr32 long Interestingly, one of the flags in this bit mask is the bServerSideWindowProc flag. This flag indicates whether the window procedure associated with the current window should be executed in user mode or in kernel ...
unsigned long hook_pos = hook - 2; if (probe_kernel_read((void *)olds, (void *)hook_pos, sizeof(nops))) if (copy_from_kernel_nofault((void *)olds, (void *)hook_pos, sizeof(nops))) return -EFAULT; if (memcmp((void *)nops, (void *)olds, sizeof(nops))) { @@ -97,7...
廖威雄,就职于珠海全志科技股份有限公司,负责Linux IO全栈研发、性能优化、开源社区开发交流、Linux 内核...
res=watchdog.cancellableSendMessage(self.obj.windowHandle,EM_POSFROMCHAR,offset,None) point=textInfos.Point(winUser.LOWORD(res),winUser.HIWORD(res)) (left,top,width,height)=self.obj.location point.x=point.x+left point.y=point.y+topreturnpoint ...
问题描述: 使用4.18与5.10分别测试fio randwrite,有下面几种差异: 在单线程时候,5.10表现比4.18差:4.18 IOPS为289k;5.10 IOPS为234k。 并...
(file->f_mode) before operating on file descriptor: $ cat -n linux-3.10.7/fs/read_write.c [...] 353 ssize_t vfs_read(struct file *file, char __user *buf, size_t count, loff_t *pos) 354 { 355 ssize_t ret; 356 357 if (!(file->f_mode & FMODE_READ)) 358 return -...
> > + error = xfs_reflink_end_cow(ip, pos, written); > > + > > + return error; > > What is the advantage of the ioemap_end handler here? It adds another > indirect funtion call to the fast path, so if we can avoid it, I'd ...