linux kernel debugging
play

Linux Kernel Debugging Your kernel just oopsed - What do you do, - PowerPoint PPT Presentation

Feb 27, 2023 •112 likes •308 views

Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda mulix@mulix.org IBM Haifa Research Lab Kernel Debugging, Haifux 2003 p.1/19 Kernel Debugging - Why? Why would we want to debug the kernel? after

  1. Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda mulix@mulix.org IBM Haifa Research Lab Kernel Debugging, Haifux 2003 – p.1/19

  2. Kernel Debugging - Why? • Why would we want to debug the kernel? after all, it’s the one part of the system that we never have to worry about, because it always works. • Well, no. Kernel Debugging, Haifux 2003 – p.2/19

  3. Kernel Debugging - Why?(cont) • Because a driver is not working as well as it should, or is not working at all. • Because we have a school or work project. • Because the kernel is crashing, and we don’t know why. • Because we want to learn how the kernel works. • Because it’s fun! Real men hack kernels ;-) Kernel Debugging, Haifux 2003 – p.3/19

  4. Broad Overview of the Kernel • Over a million lines of code. • Documentation/ • drivers/ • kernel/ • arch/ • fs/ • lib/ • mm/ • net/ • Others: security/ include/ sound/ init/ usr/ crypto/ ipc/ Kernel Debugging, Haifux 2003 – p.4/19

  5. Broad Kernel Overview (cont) • Supports runtime loading and unloading of additional code (kernel modules). • Configured using Kconfig, a domain specifc configuration language. • Built using kbuild, a collection of complex Makefiles. • Heavily dependant on gcc and gccisms. Does not use or link with user space libraries, although supplies many of them - sprintf, memcpy, strlen, printk (not printf!). Kernel Debugging, Haifux 2003 – p.5/19

  6. Read the Source, Luke • The source is there - use it to figure out what’s going on. • Linux kernel developers frown upon binary only modules, because they don’t have the source and thus cannot debug them. • Later kernels include facilities to mark when a binary only module has been loaded (“tainted kernels”). Kernel developers will kindly refuse to help debug a problem when a kernel has been tainted. Kernel Debugging, Haifux 2003 – p.6/19

  7. Read the Source, Luke (cont) Use the right tools for the job. Tools to navigate the source include: • lxr - http://www.iglu.org.il/lxr/ • find and grep • ctags, etags, gtags and their ilk. Use a good IDE • emacs • vi • One brave soul I heard about used MS Visual Studio! Kernel Debugging, Haifux 2003 – p.7/19

  8. Use the source The two oldest and most useful debugging aids are • Your brain. • printf. Use them! the kernel gives you printk, which • Can be called from interrupt context. • Behaves mostly like printf, except that it doesn’t support floating point. Kernel Debugging, Haifux 2003 – p.8/19

  9. Use the Source (cont) Use something like this snippet to turn printks on and off depending on whether you’re building a debug or relase build. #ifdef DEBUG_FOO #define CDBG(msg, args...) do { \ printk(KERN_DEBUG "[%s] " msg , __func__ , ##args );\ } while (0) #else /* !defined(DEBUG_FOO) */ #define CDBG(msg, args...) do {} while (0) #endif /* !defined(DEBUG_FOO) */ Kernel Debugging, Haifux 2003 – p.9/19

  10. Use the Source (cont) • For really tough bugs, write code to solve bugs. Don’t be afraid to insert new kernel modules to monitor or affect your primary development focus. • Code defensively . Whenever you suspect memory overwrites or use after free, use memory poisoning. • Enable all of the kernel debug options - they will find your bugs for you! • #define assert(x) do { if (!(x)) BUG(); } while (0) • Linux 2.5 has BUG_ON(). Kernel Debugging, Haifux 2003 – p.10/19

  11. Kernel Debuggers Linux has several kernel debuggers, none of which are in the main tree (for the time being). The two most common are • kdb - http://oss.sgi.com/projects/kdb • kgdb - http://kgdb.sourceforge.net/ Kernel Debugging, Haifux 2003 – p.11/19

  12. KGDB • Requires two machines, a slave and a master. • gdb runs on the master, controlling a gdb stub in the slave kernel via the serial port. • When an OOPS or a panic occurs, you drop into the debugger. • Very very useful for the situations where you dump core in an interrupt handler and no oops data makes it to disk - you drop into the debugger with the correct backtrace. Kernel Debugging, Haifux 2003 – p.12/19

  13. ksymoops • Read Documentation/oops-tracing.txt • Install ksymoops, available from ftp://ftp.il.kernel.org • Run it on the oops (get it from the logs, serial console, or copy from the screen). • ksymoops gives you a human readable back trace. • Sometimes the oops data can be trusted ("easy" bugs like a NULL pointer dereference) and sometimes it’s no more than a general hint to what is going wrong (memory corruption overwrite EIP). Kernel Debugging, Haifux 2003 – p.13/19

  14. ksymoops(cont) • Linux 2.5 includes an "in kernel" oops tracer, called kksymoops. Don’t forget to enable it when compiling your new 2.5 kernel! • It can be found under Kernel Hacking -> Load all symbols for debugging/kksymoops (CONFIG_KALLSYMS). Kernel Debugging, Haifux 2003 – p.14/19

  15. ksymoops(cont) Unable to handle kernel NULL pointer dereference at virtual address 00000000 printing eip: c014a9cc *pde = 00000000 Oops: 0002 CPU: 0 EIP: 0060:[<c014a9cc>] Not tainted EFLAGS: 00010202 EIP is at sys_open+0x2c/0x90 eax: 00000001 ebx: 00000001 ecx: ffffffff edx: 00000000 esi: bffffaec edi: ce07e000 ebp: cdbcffbc esp: cdbcffb0 ds: 007b es: 007b ss: 0068 Process cat (pid: 862, threadinfo=cdbce000 task=cdcf7380) Stack: bffffaec 40013020 bffff9b4 cdbce000 c010adc7 bffffaec 00008000 00000000 40013020 bffff9b4 bffff868 00000005 0000007b 0000007b 00000005 420dabd4 00000073 00000246 bffff848 0000007b Call Trace: [<c010adc7>] syscall_call+0x7/0xb Code: 89 1d 00 00 00 00 e8 59 fc ff ff 89 c6 85 f6 78 2f 8b 4d 10 Kernel Debugging, Haifux 2003 – p.15/19

  16. LKCD • LKCD - Linux Kernel Crash Dump • http://lkcd.sf.net • Saves a dump of the system’s state at the time the dump occurs. • A dump occurs when the kernel panics or oopses, or when requested by the administrator. • Must be configured before the crash occurs! Kernel Debugging, Haifux 2003 – p.16/19

  17. Making sense of kernel data • System.map - kernel function addresses • /proc/kcore - image of system memory • vmlinux - the uncompressed kernel, can be disassembled using objdump(1). Kernel Debugging, Haifux 2003 – p.17/19

  18. User Mode Linux • For some kinds of kernel development (architecture independent, file systems, memory management), using UML is a life saver. • Allows you to run the Linux kernel in user space, and debug it with gdb. • Work is underway at making valgrind work on UML, which is expected to find many bugs. Kernel Debugging, Haifux 2003 – p.18/19

  19. Happy Hacking! Questions? Comments? Happy Oopsing! Kernel Debugging, Haifux 2003 – p.19/19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many of us need to debug the Linux kernel Proprietary tools like Trace32 and DS-5 are $$$ Open source debuggers like GDB lack kernel

884 views • 40 slides
Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019 http://d3s.mff.cuni.cz CHARLES UNIVERSITY IN PRAGUE faculty of mathematjcs and physics faculty of mathematjcs and physics Vlastimil Babka vbabka@suse.cz

1.6k views • 62 slides
Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE

Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE

Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE Labs vbabka@suse.cz Enterprise Linux Distro (including Kernel) The software installation (e.g. ISO) itself is free (and open source, obviously)

933 views • 54 slides
Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging

Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging

Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging Step in Kernel Development Post-Mortem Crash Analysis Live Inspection Performance Analysis Userland Debugging Wait, Userland

216 views • 10 slides
Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May

Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May

Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May 17, 2008 John Baldwin jhb@FreeBSD.org Introduction Introduction Existing Documentation DDB kgdb Debugging Strategies 2 Existing

640 views • 26 slides
Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module

Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module

Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module Linux is written in C, but does not include all standard libraries And some other idiosyncrasies This lecture will give you a crash

1.35k views • 22 slides
1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel

1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel

1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel vulnerability research Thats unavoidable, but the linux kernel developers dont do very much to make the situation any better. -- Basically, the

625 views • 36 slides
Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for

Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for

Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for Women LinuxCon North America 2013 Agenda Introduction What Got Me Interested in OPW Project Overview Xen Block Ring Protocol

922 views • 13 slides
Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules

Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules

Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules Kernel module: code that can be dynamically loaded/unloaded into the kernel at runtime Change the kernel code without needing to reboot

545 views • 13 slides
GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The GNU userland consists of libc, the init system (SystemD) X11 GUI toolkits etc. Ask the audience Who has used

442 views • 22 slides
. Kernel The Variability Model of the Linux Extra Conclusions Linux Study Introduction .

. Kernel The Variability Model of the Linux Extra Conclusions Linux Study Introduction .

. Krzysztof Czarnecki, Andrzej Wsowski The Variability Model of the Linux Kernel . . January 26, 2010 IT University of Copenhagen University of Leipzig University of Waterloo Steven She, Rafael Lotufo, Thorsten Berger, . Kernel The

928 views • 39 slides
BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR)

BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR)

BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR) Linux Debugging Challenges: Default debugger is intimidating to new users Tough to get symbols and source to show up Many tricks needed

544 views • 40 slides
The Kernel Abstrac/on Debugging as Engineering Much of your

The Kernel Abstrac/on Debugging as Engineering Much of your

The Kernel Abstrac/on Debugging as Engineering Much of your /me in this course will be spent debugging In industry, 50% of soBware dev is

883 views • 50 slides
Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux

Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux

Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux Kernel Widespread Deployed on: powerful (high performance compute clusters) sensitive (bank, gov. systems, ..) safety critical

995 views • 29 slides
Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

3/1/20 COMP 790: OS Implementation COMP 790: OS Implementation Logical Diagram Binary Memory Threads Formats Allocators User Todays Lecture Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

647 views • 8 slides
Normal and Exotic use cases of NUMA features in the Linux Kernel Christopher Lameter, Ph.D.

Normal and Exotic use cases of NUMA features in the Linux Kernel Christopher Lameter, Ph.D.

Normal and Exotic use cases of NUMA features in the Linux Kernel Christopher Lameter, Ph.D. cl@linux.com Collaboration Summit, Napa Valley, 2014 Non Uniform Memory access in the Linux Kernel Memory is segmented into nodes so that

518 views • 12 slides
Figure out what problem you are solving. Test individual methods before

Figure out what problem you are solving. Test individual methods before

Engineering Methodology Requirements Program Debugging Algorithm (Special Topic) TOPICS Example Engineering Methodology Coding Requirements, Algorithm, Example, Coding Testing and Debugging Testing methodologies Test

47 views • 3 slides
Cool Cisco IOS Commands: debug interface debug interface When you are performing debugs you have

Cool Cisco IOS Commands: debug interface debug interface When you are performing debugs you have

Cool Cisco IOS Commands: debug interface debug interface When you are performing debugs you have at least two concerns: 1) making sure the that debug does not clobber the CPU of your device, and 2) filtering the debug output to get to the

460 views • 9 slides
FSU Depa rtment of Computer Science DEPARTMENT OF COMPUTER SCIENCE Flo rida State

FSU Depa rtment of Computer Science DEPARTMENT OF COMPUTER SCIENCE Flo rida State

On Debugging Real-Time Applications F rank Mueller and David Whalley FSU Depa rtment of Computer Science DEPARTMENT OF COMPUTER SCIENCE Flo rida State Universit y T allahassee, FL 32304-4019 e-mail: mueller@cs.fsu.edu

342 views • 13 slides
REPT: Reverse Debugging of Failures in Deployed Software Weidong Cui 1 , Xinyang Ge 1 , Baris

REPT: Reverse Debugging of Failures in Deployed Software Weidong Cui 1 , Xinyang Ge 1 , Baris

REPT: Reverse Debugging of Failures in Deployed Software Weidong Cui 1 , Xinyang Ge 1 , Baris Kasikci 2 , Ben Niu 1 , Upamanyu Sharma 2 , Ruoyu Wang 3 , and Insu Yun 4 Microsoft Research 1 University of Michigan 2 Arizona State University 3 Georgia

700 views • 31 slides
SDPaxos: Building Efficient Semi-Decentralized Geo-replicated State Machines Hanyu Zhao * , Quanlu

SDPaxos: Building Efficient Semi-Decentralized Geo-replicated State Machines Hanyu Zhao * , Quanlu

SDPaxos: Building Efficient Semi-Decentralized Geo-replicated State Machines Hanyu Zhao * , Quanlu Zhang , Zhi Yang * , Ming Wu , Yafei Dai * * Peking University Microsoft Research Replication for Fault Tolerance Peking

863 views • 39 slides
Locking the Web Open The Decentralized Web @brewster_kahle Code is Law But it is huge. We

Locking the Web Open The Decentralized Web @brewster_kahle Code is Law But it is huge. We

Locking the Web Open The Decentralized Web @brewster_kahle Code is Law But it is huge. We actually know. We collect 1 billion pages a week at the Internet Archive. Slide 4 And we are still behind. We now. know Web pages only last about

599 views • 30 slides
Decentralized Server Selection for Cloud Services Patrick Wendell, Princeton University Joint

Decentralized Server Selection for Cloud Services Patrick Wendell, Princeton University Joint

DONAR Decentralized Server Selection for Cloud Services Patrick Wendell, Princeton University Joint work with Joe Wenjie Jiang, Michael J. Freedman, and Jennifer Rexford Outline Server selection background Constraint-based policy

696 views • 51 slides
Approaching Infinity: Governance, and the case for experimentation By Brett Sun Approaching

Approaching Infinity: Governance, and the case for experimentation By Brett Sun Approaching

Approaching Infinity: Governance, and the case for experimentation By Brett Sun Approaching Infinity: Governance, and the case for experimentation By Brett Sun Or perhaps better put, Lets throw things on the wall and see what

383 views • 36 slides

More recommend