-
Notifications
You must be signed in to change notification settings - Fork 222
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
simple of syscall interception,What shall I do?(EFER HOOK or SysCall HOOK) #50
Comments
I don't know whether to do so....
|
I use it in |
Put: auto efer = msr::read<msr::efer_t>();
efer.syscall_enable = false;
msr::write(efer); here: https://github.com/wbenny/hvpp/blob/master/src/hvppdrv/vmexit_custom.cpp#L10 |
You also probably want this auto exception_bitmap = vp.exception_bitmap();
exception_bitmap.invalid_opcode = true;
vp.exception_bitmap(exception_bitmap); |
I'm sorry I forgot this code. |
Sorry to bother you again,It seems to trigger the patchguard mechanism, Even if I write like this
|
You need to actually enable RDMSR exits. Add this to the auto msr_bitmap = vmx::msr_bitmap_t{};
bitmap<>(msr_bitmap.rdmsr_high).set(msr::efer_t::msr_id - vmx::msr_bitmap_t::msr_id_high_min);
vp.msr_bitmap(msr_bitmap); |
Fatal System Error: 0x0000007f,
|
Without these codes, |
I'm sorry,I know it might be silly,But I don't know what to do.
I want to use EFER HOOK or SysCall HOOK,I see the code,
vmexit_passthrough_handler::handle_emulate_syscall
Settings may be required
efer.Bits.sce = false
....The text was updated successfully, but these errors were encountered: