Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to intercept sytem calls
Operating Systems AIX How to intercept sytem calls Post 302249409 by bakunin on Tuesday 21st of October 2008 09:37:01 AM
Old 10-21-2008
How to intercept sytem calls
I would like to port a small utility from Linux to AIX and, lacking any software development knowledge for AIX, need some help:

I have a library called Snoopy. Basically it intercepts the execv() and execve() system calls and logs them to the syslog-facility AUTHPRIV then passes control over to the original system calls. It does so by adding an entry into /etc/ld.so.preload so that the library gets preloaded and can intercept the systemcalls by its own versions of them.

I am now looking for an analogous solution for AIX to intercept these two system calls with their logging versions. Any ideas?

bakunin
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

UNIX Sytem 5, release 3

Will UNIX Sytem 5, release 3 run on a Pentium (clock speed 100-200 MHz)? thanks (5 Replies)
Discussion started by: samklyle
5 Replies

2. Programming

sco unix 5.0.5 call sytem() function question!please help me!

i want to know the return value of calling system function in the sco unix 5.0.5.what is the meaning of the return value? ............ int ret; char cmd; strcpy(cmd,"compress -F -c file >file.Z"); ret = system(cmd); ............. i want to know how to judge whether the file's compress is... (4 Replies)
Discussion started by: hit
4 Replies

3. IP Networking

intercept the ip address of a telnet session

The situation: a Unix system (UnixWare 7.1.3) to which are connected other systems; various p.c. on the LAN that they connect Unix to the system via TelNet. The problem: I need to intercept the address IP of the p.cs. connected via telnet to the Unix system. Particularly, I have to know the... (2 Replies)
Discussion started by: paololrp
2 Replies

4. IP Networking

Identification of data calls & voice calls

Is there any facility to filter/identify the data calls and voice calls coming throug modem? OR Can we get the data or voice calls information through a script(preferably C Kermit)? (0 Replies)
Discussion started by: pcsaji
0 Replies

5. AIX

created sytem from mksysb

Hi, Whats are the changes I need if I have created the system from production server? I restore if from mksysb. I know I need to change the /etc/hosts and ip address. What else? Thanks in advance, Itik (0 Replies)
Discussion started by: itik
0 Replies

6. Shell Programming and Scripting

Script to send something via UDP and intercept at other end?

I am looking to do a shell script that can send something simple via UDP from server 1 - to server 2 I want to be able to see on server 2 that I received everything expected.. ie.. I am looking at this to avoid using ping / traceroute to highlight network issues.. if a UDP packet gets lost... (1 Reply)
Discussion started by: frustrated1
1 Replies

7. UNIX for Advanced & Expert Users

Is it, and if so, how is it possible to intercept system messages going to SYSLOG

HI all, I'm trying to improve my systems to detect attempts to break in to my servers. For instance, I currently use crontab checking the /var/log/messages every 1 minute, but I feel it would be more efficient to do the processing only when messages are generated. Is this possible, and if so... (4 Replies)
Discussion started by: bennerg
4 Replies

8. AIX

How to trace file sytem size change?

I need write a script to trace filesystem size change, such as /home will increase some size and then release some space. I don't know when increase happen. I want to get the size before increase and the size after release. How to write this script? (1 Reply)
Discussion started by: rainbow_bean
1 Replies

9. UNIX for Advanced & Expert Users

Video Cards :: Video Memory Intercept and Redirect

I need a broad spectrum understanding on this subject, and any help would be greatly appreciated. First of all, as I understand it... The way the video hardware works is the CPU sends information about input and possible changes to the display, the video card receives these changes, makes the... (2 Replies)
Discussion started by: ciNG
2 Replies

10. Shell Programming and Scripting

To determine the File Sytem Usage on Multiple UNIX server

Hello All :) I want to write a shell script to find the file system usage on multiple UNIX servers. Commands: df -g fsJCAPS Below script works fine and it displays results on terminal/console. I want to store /redirect output on to local server from where I'm running the script. ... (3 Replies)
Discussion started by: Mohammad Nawaz
3 Replies

LEARN ABOUT CENTOS

perlos400

PERLOS400(1)						 Perl Programmers Reference Guide					      PERLOS400(1)

NAME

       perlos400 - Perl version 5 on OS/400

DESCRIPTION

       This document describes various features of IBM's OS/400 operating system that will affect how Perl version 5 (hereafter just Perl) is
       compiled and/or runs.

       By far the easiest way to build Perl for OS/400 is to use the PASE (Portable Application Solutions Environment), for more information see
       <http://www.iseries.ibm.com/developer/factory/pase/index.html> This environment allows one to use AIX APIs while programming, and it
       provides a runtime that allows AIX binaries to execute directly on the PowerPC iSeries.

   Compiling Perl for OS/400 PASE
       The recommended way to build Perl for the OS/400 PASE is to build the Perl 5 source code (release 5.8.1 or later) under AIX.

       The trick is to give a special parameter to the Configure shell script when running it on AIX:

	 sh Configure -DPASE ...

       The default installation directory of Perl under PASE is /QOpenSys/perl.  This can be modified if needed with Configure parameter
       -Dprefix=/some/dir.

       Starting from OS/400 V5R2 the IBM Visual Age compiler is supported on OS/400 PASE, so it is possible to build Perl natively on OS/400.  The
       easier way, however, is to compile in AIX, as just described.

       If you don't want to install the compiled Perl in AIX into /QOpenSys (for packaging it before copying it to PASE), you can use a Configure
       parameter: -Dinstallprefix=/tmp/QOpenSys/perl.  This will cause the "make install" to install everything into that directory, while the
       installed files still think they are (will be) in /QOpenSys/perl.

       If building natively on PASE, please do the build under the /QOpenSys directory, since Perl is happier when built on a case sensitive
       filesystem.

   Installing Perl in OS/400 PASE
       If you are compiling on AIX, simply do a "make install" on the AIX box.	Once the install finishes, tar up the /QOpenSys/perl directory.
       Transfer the tarball to the OS/400 using FTP with the following commands:

	 > binary
	 > site namefmt 1
	 > put perl.tar /QOpenSys

       Once you have it on, simply bring up a PASE shell and extract the tarball.

       If you are compiling in PASE, then "make install" is the only thing you will need to do.

       The default path for perl binary is /QOpenSys/perl/bin/perl.  You'll want to symlink /QOpenSys/usr/bin/perl to this file so you don't have
       to modify your path.

   Using Perl in OS/400 PASE
       Perl in PASE may be used in the same manner as you would use Perl on AIX.

       Scripts starting with #!/usr/bin/perl should work if you have /QOpenSys/usr/bin/perl symlinked to your perl binary.  This will not work if
       you've done a setuid/setgid or have environment variable PASE_EXEC_QOPENSYS="N".  If you have V5R1, you'll need to get the latest PTFs to
       have this feature.  Scripts starting with #!/QOpenSys/perl/bin/perl should always work.

   Known Problems
       When compiling in PASE, there is no "oslevel" command.  Therefore, you may want to create a script called "oslevel" that echoes the level
       of AIX that your version of PASE runtime supports.  If you're unsure, consult your documentation or use "4.3.3.0".

       If you have test cases that fail, check for the existence of spool files.  The test case may be trying to use a syscall that is not
       implemented in PASE.  To avoid the SIGILL, try setting the PASE_SYSCALL_NOSIGILL environment variable or have a handler for the SIGILL.	If
       you can compile programs for PASE, run the config script and edit config.sh when it gives you the option.  If you want to remove fchdir(),
       which isn't implement in V5R1, simply change the line that says:

       d_fchdir='define'

       to

       d_fchdir='undef'

       and then compile Perl.  The places where fchdir() is used have alternatives for systems that do not have fchdir() available.

   Perl on ILE
       There exists a port of Perl to the ILE environment.  This port, however, is based quite an old release of Perl, Perl 5.00502 (August 1998).
       (As of July 2002 the latest release of Perl is 5.8.0, and even 5.6.1 has been out since April 2001.)  If you need to run Perl on ILE,
       though, you may need this older port: <http://www.cpan.org/ports/#os400> Note that any Perl release later than 5.00502 has not been ported
       to ILE.

       If you need to use Perl in the ILE environment, you may want to consider using Qp2RunPase() to call the PASE version of Perl.

AUTHORS

       Jarkko Hietaniemi <jhi@iki.fi> Bryan Logan <bryanlog@us.ibm.com> David Larson <larson1@us.ibm.com>

perl v5.16.3							    2013-03-04							      PERLOS400(1)
All times are GMT -4. The time now is 08:24 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy