I am trying to override the kill command In my module by replacing the pointer stored in sys_call_table, to a pointer to function i implemented.
I used the kallsyms_lookup_name() syscall to get the address of the table, and lookup_address() to get the address of the page.
now, my problem is the kernel protecting the page with r/w flag.
So, given a virtual page address, is there a way to modify the r/w flag?
↧
Changing virtual page premissions
↧
