kernel debugging
play

Kernel debugging Tools to understand whatever it is that is - PowerPoint PPT Presentation

May 15, 2023 •561 likes •1.43k views

Kernel debugging Tools to understand whatever it is that is happening in there Dominique Martinet CEA January 9, 2020 CEA | January 9, 2020 | PAGE 1/75 Introduction 1 Foreword Hands on setup Crash 2 3 Perf SystemTap 4 eBPF:

  1. Kernel debugging Tools to understand whatever it is that is happening in there Dominique Martinet CEA January 9, 2020 CEA | January 9, 2020 | PAGE 1/75

  2. Introduction 1 Foreword Hands on setup Crash 2 3 Perf SystemTap 4 eBPF: bcc-tools, bpftrace 5 Introduction CEA | January 9, 2020 | PAGE 2/75

  3. What to expect Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace Mostly to use as a cookbook No magic to be found here, you still need to: Try to understand what you’re analyzing Read code Play the detective game But this should at least help get some tools to work on that Foreword CEA | January 9, 2020 | PAGE 3/75

  4. Prerequisites Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace Some understanding of C For proper debugging, assembly also help, but we will skip that here Standard unix commands Good to know (will be brief reminders during hands on): What is and how to read a stack trace Know kernel basic types (most specificially lists) Foreword CEA | January 9, 2020 | PAGE 4/75

  5. VM Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace These slides are supposed to come with a centos7 VM you can log into. Send a mail for image URL if required. Import disk image somewhere or run something similar to this: $ qemu-system-x86_64 -hda kdebug.qcow2 -serial mon:stdio \ -enable-kvm -nographic -smp 16 -m 20G \ -cdrom ~/cloud.iso If you do not have a cloud-init image, you should get a login prompt where root:toor will get you in. Hands on setup CEA | January 9, 2020 | PAGE 5/75

  6. Introduction 1 2 Crash lustre client LBUG Lustre server load Glance at another example Perf 3 SystemTap 4 eBPF: bcc-tools, bpftrace 5 Crash CEA | January 9, 2020 | PAGE 6/75

  7. Crash Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace Tool to analyze kernel state Mostly a big wrapper around gdb Live analysis Cannot get stack trace for active threads (think /proc/<pid>/stack ) Depending on used driver, can modify current VM memory (not default) No lock taken when traversing structures: here be dragons. Post-mortem analysis ( kexec-kdump ) found in /var/crash/<ip>-<date>/vmcore Crash CEA | January 9, 2020 | PAGE 7/75

  8. Getting started Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace Run crash # cd /var/crash/client_lbug # crash /usr/lib/debug/lib/modules/3.10.0*/vmlinux vmcore ... PANIC: "Kernel panic - not syncing: LBUG" PID: 12295 COMMAND: "trinity-c30" ... crash> Crash notes Can print this again anytime with sys Process shown here is whatever was active on the CPU that caused the crash It will be used by default for various commands if not specified In case of emergency, type help . lustre client LBUG CEA | January 9, 2020 | PAGE 8/75

  9. Analysis - dmesg Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace crash> dmesg | tail -n 31 | head -n 13 [ 319.474274] LustreError: 12295:0:(file.c:2200:ll_put_grouplock()) ASSERTION( fd->fd_grouplock.lg_lock != ((void *)0) ) failed: [ 319.478957] LustreError: 12295:0:(file.c:2200:ll_put_grouplock()) LBUG [ 319.481942] Pid: 12295, comm: trinity-c30 3.10.0-957.21.3.el7.x86_64 #1 SMP Tue Jun 18 16:35:19 UTC 2019 [ 319.485441] Call Trace: [ 319.487361] [<ffffffffc08227cc>] libcfs_call_trace+0x8c/0xc0 [libcfs] [ 319.490289] [<ffffffffc082287c>] lbug_with_loc+0x4c/0xa0 [libcfs] [ 319.493359] [<ffffffffc0fcb92c>] ll_put_grouplock.isra.46+0x37c/0x380 [lustre] [ 319.496729] [<ffffffffc0fde8d6>] ll_file_ioctl+0xb76/0x4a20 [lustre] [ 319.500151] [<ffffffffa4e569d0>] do_vfs_ioctl+0x3a0/0x5a0 [ 319.502573] [<ffffffffa4e56c71>] SyS_ioctl+0xa1/0xc0 [ 319.505419] [<ffffffffa5375ddb>] system_call_fastpath+0x22/0x27 [ 319.508395] [<ffffffffffffffff>] 0xffffffffffffffff [ 319.511226] Kernel panic - not syncing: LBUG Crash notes Can use pipes like one would in shell Can also redirect in files! lustre client LBUG CEA | January 9, 2020 | PAGE 9/75

  10. Analysis - bt Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace crash> bt PID: 12295 TASK: ffff9f955eae6180 CPU: 4 COMMAND: "trinity-c30" #0 [ffff9f94f45dfb80] machine_kexec at ffffffffa4c63934 #1 [ffff9f94f45dfbe0] __crash_kexec at ffffffffa4d1d162 #2 [ffff9f94f45dfcb0] panic at ffffffffa535c81b #3 [ffff9f94f45dfd30] lbug_with_loc at ffffffffc08228cb [libcfs] #4 [ffff9f94f45dfd50] ll_put_grouplock at ffffffffc0fcb92c [lustre] #5 [ffff9f94f45dfda0] ll_file_ioctl at ffffffffc0fde8d6 [lustre] #6 [ffff9f94f45dfe80] do_vfs_ioctl at ffffffffa4e569d0 #7 [ffff9f94f45dff00] sys_ioctl at ffffffffa4e56c71 #8 [ffff9f94f45dff50] system_call_fastpath at ffffffffa5375ddb RIP: 00007f7a30a931c9 RSP: 00007fff2314c668 RFLAGS: 00010216 RAX: 0000000000000010 RBX: 0000000000000010 RCX: ffffffffa5375d21 RDX: 000000007ffff000 RSI: 000000004008669f RDI: 0000000000000037 RBP: 00007f7a310ad000 R8: 00000064200a4f56 R9: ffffffffbbbbbbbc R10: 0000000110c10320 R11: 0000000000000246 R12: 00007f7a310ad058 R13: 00007f7a311866b0 R14: 0000000000000000 R15: 00007f7a310ad000 ORIG_RAX: 0000000000000010 CS: 0033 SS: 002b Crash notes Can be much more verbose with switches: -l for line numbers -FF for (full?) frame Registers position matters: syscall entry (here) or interrupt. calling convention for syscall on x86_64: RAX = syscall#, then RDI, RSI, RDX, R10, R8, R9 here, the first argument of ioctl is a fd, in RDI. lustre client LBUG CEA | January 9, 2020 | PAGE 10/75

  11. Analysis - files Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace crash> p/d 0x37 $1 = 55 crash> files PID: 12295 TASK: ffff9f955eae6180 CPU: 4 COMMAND: "trinity-c30" ROOT: / CWD: /tmp/trinity/tmp FD FILE DENTRY INODE TYPE PATH ... 55 ffff9f956da1ff00 ffff9f94e6411cc0 ffff9f920bdaad90 REG /mnt/lustre0/testdir/testfile Crash notes No trinity logs here but could help figure what happened from these or application code lustre client LBUG CEA | January 9, 2020 | PAGE 11/75

  12. Analysis - bt -FF Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace crash> bt -FF ... #6 [ffff9f94f45dfe80] do_vfs_ioctl at ffffffffa4e569d0 ffff9f94f45dfe88: [ffff9f94e6411cc0:dentry] [ffff9f94f45d669f:mm_struct] ffff9f94f45dfe98: ffff9f958ed1590b ffff9f94f45dfe80 ffff9f94f45dfea8: do_setitimer+476 0000000000000000 ffff9f94f45dfeb8: 00000000ece1f068 [ffff9f956da1ff00:kmalloc-256] ffff9f94f45dfec8: 0000000000000037 00000000ece1f068 ffff9f94f45dfed8: [ffff9f956da1ff00:kmalloc-256] 0000000000000037 ffff9f94f45dfee8: 000000004008669f 000000007ffff000 ffff9f94f45dfef8: ffff9f94f45dff48 sys_ioctl+161 Crash notes Can find here the dentry and file from files command The [addr:slab] syntax only means the address is within the slab: it could be anywhere within the struct! Slabs of same size will be shared, e.g. even if the code has a kmem_cache_create() you will not necessarily see it here. lustre client LBUG CEA | January 9, 2020 | PAGE 12/75

  13. Analysis - bt -l Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace crash> mod -s libcfs crash> mod -s lustre crash> bt -l ... #4 [ffff9f94f45dfd50] ll_put_grouplock at ffffffffc0fcb92c [lustre] /usr/src/debug/lustre-2.12.3/lustre/llite/file.c: 2200 #5 [ffff9f94f45dfda0] ll_file_ioctl at ffffffffc0fde8d6 [lustre] /usr/src/debug/lustre-2.12.3/lustre/llite/file.c: 3388 #6 [ffff9f94f45dfe80] do_vfs_ioctl at ffffffffa4e569d0 /usr/src/debug/kernel-3.10.0-957.21.3.el7/linux-3.10.0-957.21.3.el7.x86_64/fs/ioctl.c: ... Crash notes mod -s <module> or mod -S . . . now to read some code and undersatnd what happened! cscope helps lustre client LBUG CEA | January 9, 2020 | PAGE 13/75

  14. Closure on client crash Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace Crash isn’t magical, you still need to read code and understand how we got there. lustre client LBUG CEA | January 9, 2020 | PAGE 14/75

  15. Closure on client crash Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace Crash isn’t magical, you still need to read code and understand how we got there. @@ static int ll_put_grouplock(struct inode *inode, ... if (!(fd->fd_flags & LL_FILE_GROUP_LOCKED)) { spin_unlock(&lli->lli_lock); CWARN("no group lock held\n"); RETURN(-EINVAL); } LASSERT(fd->fd_grouplock.lg_lock != NULL); lustre client LBUG CEA | January 9, 2020 | PAGE 14/75

  16. Closure on client crash Introduction Crash Perf SystemTap eBPF: bcc-tools, bpftrace Crash isn’t magical, you still need to read code and understand how we got there. @@ static int ll_put_grouplock(struct inode *inode, ... if (!(fd->fd_flags & LL_FILE_GROUP_LOCKED)) { spin_unlock(&lli->lli_lock); CWARN("no group lock held\n"); RETURN(-EINVAL); } LASSERT(fd->fd_grouplock.lg_lock != NULL); Did something reset fd_grouplock to NULL without touching the flag? Or did something modify fd_flags without setting the grouplock? lustre client LBUG CEA | January 9, 2020 | PAGE 14/75

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many of us need to debug the Linux kernel Proprietary tools like Trace32 and DS-5 are $$$ Open source debuggers like GDB lack kernel

884 views • 40 slides
Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging

Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging

Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging Step in Kernel Development Post-Mortem Crash Analysis Live Inspection Performance Analysis Userland Debugging Wait, Userland

216 views • 10 slides
Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda

Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda

Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda mulix@mulix.org IBM Haifa Research Lab Kernel Debugging, Haifux 2003 p.1/19 Kernel Debugging - Why? Why would we want to debug the kernel? after

308 views • 19 slides
Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May

Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May

Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May 17, 2008 John Baldwin jhb@FreeBSD.org Introduction Introduction Existing Documentation DDB kgdb Debugging Strategies 2 Existing

640 views • 26 slides
Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019 http://d3s.mff.cuni.cz CHARLES UNIVERSITY IN PRAGUE faculty of mathematjcs and physics faculty of mathematjcs and physics Vlastimil Babka vbabka@suse.cz

1.6k views • 62 slides
The Kernel Abstrac/on Debugging as Engineering Much of your

The Kernel Abstrac/on Debugging as Engineering Much of your

The Kernel Abstrac/on Debugging as Engineering Much of your /me in this course will be spent debugging In industry, 50% of soBware dev is

883 views • 50 slides
Kernel support for user debugging: ptrace, utrace, and what's next Roland McGrath Kernel support

Kernel support for user debugging: ptrace, utrace, and what's next Roland McGrath Kernel support

Kernel support for user debugging: ptrace, utrace, and what's next Roland McGrath Kernel support for user debugging What is ptrace? What is wrong with ptrace? What we do about it? How do we support the next generation of tracing

352 views • 21 slides
Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE

Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE

Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE Labs vbabka@suse.cz Enterprise Linux Distro (including Kernel) The software installation (e.g. ISO) itself is free (and open source, obviously)

933 views • 54 slides
Reverse Debugging of Kernel Failures in Deployed Systems Xinyang Ge, Ben Niu and Weidong Cui

Reverse Debugging of Kernel Failures in Deployed Systems Xinyang Ge, Ben Niu and Weidong Cui

Reverse Debugging of Kernel Failures in Deployed Systems Xinyang Ge, Ben Niu and Weidong Cui Microsoft Research USENIX Annual Technical Conference, 2020 What happened before the crash? REPT: Reverse Execution with Processor Trace REPT:

593 views • 21 slides
Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and

Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and

Chapter 15 Debugging Debugging with High Level Languages Same goals as low-level debugging Examine and set values in memory Execute portions of program Stop execution when (and where) desired Want debugging tools to operate on

274 views • 9 slides
Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production

Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production

Welcome to Advanced .NET Debugging Debugging Tools Module Overview Introduction to Debugging Problems in Production Challenges in debugging Production issues Production Environment Debugging Timeline Tools for .NET Debugging Review 3

622 views • 47 slides
Debugging OVS Jus.n Pe0t April 14, 2011 Main Components

Debugging OVS Jus.n Pe0t April 14, 2011 Main Components

Debugging OVS Jus.n Pe0t April 14, 2011 Main Components Control Cluster Off-box ovsdb-server ovs-vswitchd User Kernel Management Protocol

531 views • 20 slides
Visual Debugging Software What is Debugging Visualization Visualizing

Visual Debugging Software What is Debugging Visualization Visualizing

Visual Debugging Software What is Debugging Visualization Visualizing Program State Incremental interactive unfolding (DDD) Visual Memory Abstract representations (traversal-based) Debugging Focusing: memory

433 views • 5 slides
Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination.

Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination.

Debugging Techniques for C Programs Debugging Basics Will focus on the gcc/gdb combination. Will also talk about the ddd gui for gdb (lots of value added to gdb). First, debugging in the abstract: Program state is a snapshot

475 views • 20 slides
FreeBSD and GDB John Baldwin June 11, 2016 Overview

FreeBSD and GDB John Baldwin June 11, 2016 Overview

FreeBSD and GDB John Baldwin June 11, 2016 Overview Structure of GDB Recent Userland Debugging Changes Kernel Debugging GDB Concepts Inferior

883 views • 44 slides
1 Crashes, interrupts, and backtrace Watchpoints GDB will automatically stop if the program

1 Crashes, interrupts, and backtrace Watchpoints GDB will automatically stop if the program

Debugging and debuggers Debugging in the development cycle You have probably already had the experience of making Edit a mistake in a program Speaking roughly, debugging is the process: After you know that your code is wrong

911 views • 3 slides
INTERIM REPORT JULY-SEPTEMBER 2019 CEO Camilla Hoflund and CFO Claes Engvall October 22, 2019

INTERIM REPORT JULY-SEPTEMBER 2019 CEO Camilla Hoflund and CFO Claes Engvall October 22, 2019

INTERIM REPORT JULY-SEPTEMBER 2019 CEO Camilla Hoflund and CFO Claes Engvall October 22, 2019 STUDSVIK IN BRIEF Key customers Nuclear industry Utilities, Vendors, Research Organizations and Regulators Radio isotope industry The

531 views • 11 slides
Lunar Environment Monitoring Station Ethan Burbridge, Vertex Aerospace Mehdi Benna, NASA Goddard

Lunar Environment Monitoring Station Ethan Burbridge, Vertex Aerospace Mehdi Benna, NASA Goddard

TFAWS Interdisciplinary Paper Session Lunar Environment Monitoring Station Ethan Burbridge, Vertex Aerospace Mehdi Benna, NASA Goddard Mitchell Hamman, ADC Aerospace Alan Kopelove, QUEST Thermal Group Robin Ripley, NASA Goddard Rommel Zara,

649 views • 29 slides
Report to the UCSF Community Advisory Group August 2015 In accordance with UCSFs commitment to

Report to the UCSF Community Advisory Group August 2015 In accordance with UCSFs commitment to

Report to the UCSF Community Advisory Group August 2015 In accordance with UCSFs commitment to communicate on the progress of implementing the LRDP, the following is an update on the 10-Year Capital Financial Plan, which proposes allocation of

189 views • 17 slides
Session 14a Poster Highlights Session 14a Poster Highlights Radiation Oncology, Radiobiology

Session 14a Poster Highlights Session 14a Poster Highlights Radiation Oncology, Radiobiology

Session 14a Poster Highlights Session 14a Poster Highlights Radiation Oncology, Radiobiology Radiation Oncology, Radiobiology Over 50 posters Over 50 posters Worldwide participation Worldwide participation Wide spectrum of

567 views • 21 slides
Water Works System Master Planning For a Sustainable Community Presented By: Robert G. Mitchard

Water Works System Master Planning For a Sustainable Community Presented By: Robert G. Mitchard

Water Works System Master Planning For a Sustainable Community Presented By: Robert G. Mitchard Village of Algonquin Director of Public Works Jeffrey W. Freeman, P.E., CFM, LEED AP Engineering Enterprises, Inc. March 20, 2012 Presentation

900 views • 33 slides
Introduction Magnetic reconnection is Very powerful energy converter Very common in the

Introduction Magnetic reconnection is Very powerful energy converter Very common in the

Self-similar evolution of fast magnetic reconnection in free-space: A new model for astrophysical reconnection Shin-ya Nitta The Graduate University for Advanced Studies, Hayama Center for Advanced Studies E-mail:

172 views • 15 slides
P a rt icle Colli s ion s in Tur b u len t Flow s Michel Vok u hle Labo r a t oi r e de P hy s i

P a rt icle Colli s ion s in Tur b u len t Flow s Michel Vok u hle Labo r a t oi r e de P hy s i

COLE NORMALE SUP RIEURE DE LYON P a rt icle Colli s ion s in Tur b u len t Flow s Michel Vok u hle Labo r a t oi r e de P hy s i qu e 13 Decembe r 2 0 13 C O LE NORMALE SUP R IE UR E DE LYON M . Vok u hle P a rt icle Colli s ion s

797 views • 60 slides
FINDING YOUR VOICE IN THE REGULATORY AGE NIGEL CANNINGS CTO nigel.cannings@intelligentvoice.com

FINDING YOUR VOICE IN THE REGULATORY AGE NIGEL CANNINGS CTO nigel.cannings@intelligentvoice.com

FINDING YOUR VOICE IN THE REGULATORY AGE NIGEL CANNINGS CTO nigel.cannings@intelligentvoice.com @intelligentvox 2017! 2016? 2015 THE YEAR OF VOICE As almost 50% of all corporate data will have a voice component within 5 years, either as

610 views • 22 slides

More recommend