1 files changed, 70 insertions, 0 deletions

diff --git a/toj/center/src/judgk_syscall.h b/toj/center/src/judgk_syscall.h
new file mode 100755
index 0000000..2ee6afb
--- /dev/null
+++ b/toj/center/src/judgk_syscall.h
@@ -0,0 +1,70 @@
+#define SYSCALL_WHITELIST_SIZE 45
+
+static int syscall_init_hook(void);
+static int syscall_whitelist_cmp(const void *a,const void *b);
+static int syscall_addr_write(unsigned long addr,unsigned int *size,int *restore);
+static int syscall_addr_restore(unsigned long addr,int restore);
+
+static unsigned long* syscall_table;
+static unsigned int syscall_max;
+static unsigned int syscall_whitelist[SYSCALL_WHITELIST_SIZE] = {
+    __NR_execve,
+    __NR_open,
+    __NR_creat,
+    __NR_unlink,
+    __NR_access,
+    __NR_truncate,
+    __NR_stat,
+    __NR_lstat,
+    __NR_readlink,
+    __NR_exit,
+    __NR_read,
+    __NR_write,
+    __NR_close,
+    __NR_lseek,
+    __NR_getpid,
+    __NR_getuid,
+    __NR_dup,
+    __NR_brk,
+    __NR_getgid,
+    __NR_geteuid,
+    __NR_getegid,
+    __NR_dup2,
+    __NR_ftruncate,
+    __NR_fstat,
+    __NR_personality,
+    __NR_readv,
+    __NR_writev,
+    __NR_getresuid,
+    __NR_pread64,
+    __NR_pwrite64,
+    __NR_fcntl,
+    __NR_mmap,
+    __NR_munmap,
+    __NR_ioctl,
+    __NR_uname,
+    __NR_gettid,
+    __NR_set_thread_area,
+    __NR_get_thread_area,
+    __NR_set_tid_address,
+    __NR_exit_group,
+    __NR_arch_prctl,
+    __NR_times,
+    __NR_time,
+    __NR_clock_gettime,
+    __NR_dup3
+};
+
+int judgk_syscall_hook(void);
+int judgk_syscall_unhook(void);
+int judgk_syscall_check(void);
+int judgk_syscall_block(void);
+
+unsigned long *judgk_syscall_ori_table;
+
+extern struct judgk_proc_info* judgk_proc_task_lookup(struct task_struct *task);
+extern long hook_sys_block(void);
+
+//typedef asmlinkage long (*func_sys_nanosleep)(struct timespec __user *rqtp,struct timespec __user *rmtp);
+//func_sys_nanosleep ori_sys_nanosleep;
+//asmlinkage long hook_sys_nanosleep(struct timespec __user *rqtp,struct timespec __user *rmtp);