debugging the linux kernel with gdb
play

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the - PowerPoint PPT Presentation

Oct 09, 2022 •474 likes •884 views

Debugging the Linux Kernel with GDB Kieran Bingham Debugging the Linux Kernel with GDB Many of us need to debug the Linux kernel Proprietary tools like Trace32 and DS-5 are $$$ Open source debuggers like GDB lack kernel

  1. Debugging the Linux Kernel with GDB Kieran Bingham

  2. Debugging the Linux Kernel with GDB ● Many of us need to debug the Linux kernel ● Proprietary tools like Trace32 and DS-5 are $$$ ● Open source debuggers like GDB lack ‘kernel awareness’ features found in proprietary tools ● What exists today ● How you can use it to get data ● How can we make it better

  3. {They, we} wouldn’t … would {they, we} ?

  4. Linus (~2000) I don't like debuggers. Never have, probably never will. I use gdb all the time, but I tend to use it not as a debugger, but as You can use a kernel debugger if you a disassembler on steroids that want to, and I won't give you the cold you can program. shoulder because you have "sullied" yourself. But I'm not going to help you use one, and I would frankly prefer people not to use kernel debuggers that much. http://lwn.net/2000/0914/a/lt-debugger.php3

  5. Why? There is always code to debug. We don’t always write it ourselves. But we do have to fix it

  6. How can we improve free tools ● Both LLDB and GDB have extension capabilities ● Jan Kizka has led the way, adding Kernel support for GDB ● OpenOCD provides free JTAG connectivity ● Automated testing needed

  7. Coming Up ● Target options ○ KGDB ○ QEmu/KVM/UML ○ JTAG ○ Core Dumps ● Linux Awareness ○ Thread Awareness ○ Module Support ○ Data retrieval ○ Extending with Python ● Q+A

  8. Targets for debugging Linux with GDB ● GDB client using the gdbremote protocol a. Connection to a KGDB stub in a running kernel b. Connect to a QEmu stub running a virtual kernel environment c. To a gdbremote compliant JTAG probe, such as OpenOCD ● GDB session on host a. Core Dump file b. UML Kernel

  9. Core Dumps KGDB JTAG Good Better Qemu

  10. Targets: KGDB with GDB ● Debug stub in the kernel compliant with gdbremote protocol ○ Enable with CONFIG_KGDB + Already supported on many platforms + All kernel threads enumerated in GDB (via gdbremote) - Requires cooperation between debugger and kernel stub - Less suitable for serious crashes - Isn’t enabled on production systems - Requires enough support for serial or ethernet Host Target Gdbremote serial/ethernet Linux GDB KGDB

  11. Targets: QEmu + Qemu is open source and has gdbremote stub + No ‘real’ hardware required + Good for testing generic kernel code on many architectures + Good environment for developing Kernel Awareness extensions - Unlikely to be useful for SoC or board related issues Development Host Qemu GDB Client GDB Stub Server Linux Kernel

  12. Targets : Qemu (Example) qemu-system-arm -kernel ./zImage -dtb ./vexpress-v2p-ca15-tc1.dtb -M vexpress-a15 -smp 2 -m 1024 -append 'root=/dev/nfs nfsroot=10.0.2.2:/opt/root/armv7/,tcp,v3 rw ip=dhcp mem=1024M raid=noautodetect rootwait console=ttyAMA0,38400n8 devtmpfs.mount=0' -nographic -gdb tcp::32770 [ 0.000000] Booting Linux on physical CPU 0x0 [ 0.000000] Linux version 4.6.0-rc1 (kbingham@CookieMonster) (gcc version 5.2.1 20151010 (Ubuntu 5.2.1-22ubuntu1) ) #13 SMP Thu Mar 31 10:33:19 BST 2016 [ 0.000000] CPU: ARMv7 Processor [412fc0f1] revision 1 (ARMv7), cr=10c5387d [ 0.000000] CPU: PIPT / VIPT nonaliasing data cache, PIPT instruction cache [ 0.000000] Machine model: V2P-CA15 [ ….. ] [ 3.989042] IP-Config: Got DHCP answer from 10.0.2.2, my address is 10.0.2.15 [ 3.991451] IP-Config: Complete: [ 3.991672] device=eth0, hwaddr=52:54:00:12:34:56, ipaddr=10.0.2.15, mask=255.255.255.0, gw=10.0.2.2 [ 3.991900] host=10.0.2.15, domain=, nis-domain=(none) [ 3.992039] bootserver=10.0.2.2, rootserver=10.0.2.2, rootpath= nameserver0=10.0.2.3 arm-linux-gdb ./linux/vmlinux -iex 'add-auto-load-safe-path ./linux' -ex 'target remote localhost:32770' Remote debugging using localhost:32770 cpu_v7_do_idle () at /home/lkd/sources/linux/arch/arm/mm/proc-v7.S:74 74 ret lr (gdb) info threads Id Target Id Frame * 1 Thread 1 (CPU#0 [halted ]) cpu_v7_do_idle () at /home/lkd/sources/linux/arch/arm/mm/proc-v7.S:74 2 Thread 2 (CPU#1 [halted ]) cpu_v7_do_idle () at /home/lkd/sources/linux/arch/arm/mm/proc-v7.S:74 (gdb) bt #0 cpu_v7_do_idle () at /home/lkd/sources/linux/arch/arm/mm/proc-v7.S:74 #1 0xc0308728 in arch_cpu_idle () at /home/lkd/sources/linux/arch/arm/kernel/process.c:72 #2 0xc0376b28 in cpuidle_idle_call () at /home/lkd/sources/linux/kernel/sched/idle.c:151 #3 cpu_idle_loop () at /home/lkd/sources/linux/kernel/sched/idle.c:242 #4 cpu_startup_entry (state=<optimized out>) at /home/lkd/sources/linux/kernel/sched/idle.c:291 #5 0xc0ae8a30 in rest_init () at /home/lkd/sources/linux/init/main.c:408 #6 0xc0f00c5c in start_kernel () at /home/lkd/sources/linux/init/main.c:661

  13. Targets : Qemu (Example) qemu-system-arm -kernel ./zImage -dtb ./vexpress-v2p-ca15-tc1.dtb -M vexpress-a15 -smp 2 -m 1024 -append 'root=/dev/nfs nfsroot=10.0.2.2:/opt/root/armv7/,tcp,v3 rw ip=dhcp mem=1024M raid=noautodetect rootwait console=ttyAMA0,38400n8 devtmpfs.mount=0' -nographic -gdb tcp::32770 [ 0.000000] Booting Linux on physical CPU 0x0 [ 0.000000] Linux version 4.6.0-rc1 (kbingham@CookieMonster) (gcc version 5.2.1 20151010 (Ubuntu 5.2.1-22ubuntu1) ) #13 SMP Thu Mar 31 10:33:19 BST 2016 [ 0.000000] CPU: ARMv7 Processor [412fc0f1] revision 1 (ARMv7), cr=10c5387d [ 0.000000] CPU: PIPT / VIPT nonaliasing data cache, PIPT instruction cache [ 0.000000] Machine model: V2P-CA15 [ ….. ] [ 3.989042] IP-Config: Got DHCP answer from 10.0.2.2, my address is 10.0.2.15 [ 3.991451] IP-Config: Complete: [ 3.991672] device=eth0, hwaddr=52:54:00:12:34:56, ipaddr=10.0.2.15, mask=255.255.255.0, gw=10.0.2.2 QEmu is a user process trying to mount NFS on ports above 1024 [ 3.991900] host=10.0.2.15, domain=, nis-domain=(none) [ 3.992039] bootserver=10.0.2.2, rootserver=10.0.2.2, rootpath= nameserver0=10.0.2.3 This isn’t allowed by default, so we need to add the ‘insecure’ option $ cat /etc/exports arm-linux-gdb ./linux/vmlinux -iex 'add-auto-load-safe-path ./linux' -ex 'target remote localhost:32770' Remote debugging using localhost:32770 /opt/rootfs *(rw,sync,no_subtree_check,no_root_squash, insecure ) cpu_v7_do_idle () at /home/lkd/sources/linux/arch/arm/mm/proc-v7.S:74 74 ret lr (gdb) info threads Id Target Id Frame * 1 Thread 1 (CPU#0 [halted ]) cpu_v7_do_idle () at /home/lkd/sources/linux/arch/arm/mm/proc-v7.S:74 2 Thread 2 (CPU#1 [halted ]) cpu_v7_do_idle () at /home/lkd/sources/linux/arch/arm/mm/proc-v7.S:74 (gdb) bt #0 cpu_v7_do_idle () at /home/lkd/sources/linux/arch/arm/mm/proc-v7.S:74 #1 0xc0308728 in arch_cpu_idle () at /home/lkd/sources/linux/arch/arm/kernel/process.c:72 #2 0xc0376b28 in cpuidle_idle_call () at /home/lkd/sources/linux/kernel/sched/idle.c:151 #3 cpu_idle_loop () at /home/lkd/sources/linux/kernel/sched/idle.c:242 #4 cpu_startup_entry (state=<optimized out>) at /home/lkd/sources/linux/kernel/sched/idle.c:291 #5 0xc0ae8a30 in rest_init () at /home/lkd/sources/linux/init/main.c:408 #6 0xc0f00c5c in start_kernel () at /home/lkd/sources/linux/init/main.c:661

  14. Targets: JTAG + OpenOCD is open source + Supports gdbremote protocol + Supports many ARM/MIPS CPUs + Supports many FTDI based JTAG probes http://openocd.org http://elinux.org/JTAG Host OpenOCD Target System Telnet telnet JTAG JTAG GDB Client gdbserver

  15. Targets: Core Dumps ● CONFIG_PROC_KCORE ○ sudo gdb vmlinux /proc/kcore ○ Virtual ELF core file of live kernel ○ No modifications can be made ● CONFIG_PROC_VMCORE ○ /proc/vmcore ○ Used in conjunction with kexec, kdump and the crash utility from RedHat ○ py-crash, and libkdumpfile support coming to GDB from SUSE https://en.wikipedia.org/wiki/Kdump_(Linux) @ V4711 https://www.suse.com/documentation/sles-12/book_sle_tuning/data/part_tuning_dumps.html

  16. Linux Awareness ● Provide the debugger with additional knowledge of the underlying operating system to enable a better debugging experience. ○ Where is the Task List? ○ What is in the Kernel Log Buffer? ○ What modules are loaded? Where? ● We split Linux Awareness into three areas 1. Task Awareness ● Ability to report all task_structs as threads in GDB ● Provides selectable GDB threads with context commands 2. Loadable Module Support ● Hooks for automatic symbol resolution when modules are inserted 3. OS Helper Commands ● Interacting with the debugger to obtain useful information

  17. GDB C Extension - Linux Kernel Debugger (LKD) ● Original tools written at ST Micro provide “Linux Awareness” ● ST-LKD based on GDB 7.6 ● Developed for STMC2 JTAG debugger ● Upstream project started by Peter Griffin, supported by ST and Linaro

  18. Where to put the ‘awareness’ 1. Scripting in GDB (Python/Guile) 2. C extension in GDB 3. Awareness in GDB Stub 1 Linux Source 2 3 Python Plugin gdbremote GDB Stub GDB Client Kgdb / OpenOCD Guile Plugin

  19. Kernel Awareness More knowledge of Target Linux Source More knowledge of Linux KGDB GDB Client QEmu/KVM | JTAG Remote | Core Dump

  20. LKD-C vs LKD-Python LKD-C LKD-Python + Reference code available + Awareness lives in source tree + Working now + Generic approach for other OS’s + Or languages …. - Puts Linux specific code into - gdb.Target layer exposes gdb GDB internal hooks to the outside - Must be robust!

Recommend

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019

Linux Kernel Debugging Linux Kernel Debugging Advanced Operating Systems 2018/2019 http://d3s.mff.cuni.cz CHARLES UNIVERSITY IN PRAGUE faculty of mathematjcs and physics faculty of mathematjcs and physics Vlastimil Babka vbabka@suse.cz

1.6k views • 62 slides
Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda

Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda

Linux Kernel Debugging Your kernel just oopsed - What do you do, hotshot? Muli Ben-Yehuda mulix@mulix.org IBM Haifa Research Lab Kernel Debugging, Haifux 2003 p.1/19 Kernel Debugging - Why? Why would we want to debug the kernel? after

308 views • 19 slides
Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE

Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE

Debugging Enterprise Kernels: A Real World Example Vlastimil Babka Linux Kernel Developer, SUSE Labs vbabka@suse.cz Enterprise Linux Distro (including Kernel) The software installation (e.g. ISO) itself is free (and open source, obviously)

933 views • 54 slides
Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging

Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging

Kernel Debugging and Virtualization John Baldwin January 15, 2015 What is Kernel Debugging Step in Kernel Development Post-Mortem Crash Analysis Live Inspection Performance Analysis Userland Debugging Wait, Userland

216 views • 10 slides
Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May

Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May

Introduction to Debugging the Introduction to Debugging the FreeBSD Kernel FreeBSD Kernel May 17, 2008 John Baldwin jhb@FreeBSD.org Introduction Introduction Existing Documentation DDB kgdb Debugging Strategies 2 Existing

640 views • 26 slides
Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module

Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module

Intro to Linux Kernel Programming Don Porter Lab 4 You will write a Linux kernel module Linux is written in C, but does not include all standard libraries And some other idiosyncrasies This lecture will give you a crash

1.35k views • 22 slides
1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel

1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel

1 Theres a kernel security researcher named Dan Rosenberg whose done a lot of linux kernel vulnerability research Thats unavoidable, but the linux kernel developers dont do very much to make the situation any better. -- Basically, the

625 views • 36 slides
Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for

Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for

Hacking on Xen in the Linux Kernel Lisa Nguyen, Linux Kernel Intern FOSS Outreach Program for Women LinuxCon North America 2013 Agenda Introduction What Got Me Interested in OPW Project Overview Xen Block Ring Protocol

922 views • 13 slides
Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules

Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules

Introduction to Linux Kernel Modules Luca Abeni luca.abeni@santannapisa.it Linux Kernel Modules Kernel module: code that can be dynamically loaded/unloaded into the kernel at runtime Change the kernel code without needing to reboot

545 views • 13 slides
GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The

GNU/Linux Why use it? What is Linux? Linux is a UNIX-like, GPL-licensed open-source kernel. The GNU userland consists of libc, the init system (SystemD) X11 GUI toolkits etc. Ask the audience Who has used

442 views • 22 slides
. Kernel The Variability Model of the Linux Extra Conclusions Linux Study Introduction .

. Kernel The Variability Model of the Linux Extra Conclusions Linux Study Introduction .

. Krzysztof Czarnecki, Andrzej Wsowski The Variability Model of the Linux Kernel . . January 26, 2010 IT University of Copenhagen University of Leipzig University of Waterloo Steven She, Rafael Lotufo, Thorsten Berger, . Kernel The

928 views • 39 slides
BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR)

BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR)

BRUCE DAWSON VALVE GETTING STARTED DEBUGGING ON LINUX (MAKING IT EASY IN LESS THAN AN HOUR) Linux Debugging Challenges: Default debugger is intimidating to new users Tough to get symbols and source to show up Many tricks needed

544 views • 40 slides
The Kernel Abstrac/on Debugging as Engineering Much of your

The Kernel Abstrac/on Debugging as Engineering Much of your

The Kernel Abstrac/on Debugging as Engineering Much of your /me in this course will be spent debugging In industry, 50% of soBware dev is

883 views • 50 slides
Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux

Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux

Linux Kernel Security &amp; Hardening Thomas Lamprecht January 17, 2019 Introduction The Linux Kernel Widespread Deployed on: powerful (high performance compute clusters) sensitive (bank, gov. systems, ..) safety critical

995 views • 29 slides
Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

3/1/20 COMP 790: OS Implementation COMP 790: OS Implementation Logical Diagram Binary Memory Threads Formats Allocators User Todays Lecture Linux Kernel Synchronization System Calls Synchronization in Kernel the kernel RCU File

647 views • 8 slides
Normal and Exotic use cases of NUMA features in the Linux Kernel Christopher Lameter, Ph.D.

Normal and Exotic use cases of NUMA features in the Linux Kernel Christopher Lameter, Ph.D.

Normal and Exotic use cases of NUMA features in the Linux Kernel Christopher Lameter, Ph.D. cl@linux.com Collaboration Summit, Napa Valley, 2014 Non Uniform Memory access in the Linux Kernel Memory is segmented into nodes so that

518 views • 12 slides
Making C Less Dangerous in the Linux Kernel Kees Cook | @keescook LINUX.CONF.AU 21-25 January

Making C Less Dangerous in the Linux Kernel Kees Cook | @keescook LINUX.CONF.AU 21-25 January

Making C Less Dangerous in the Linux Kernel Kees Cook | @keescook LINUX.CONF.AU 21-25 January The Linux of Things | #LCA2019 | @linuxconfau 2019 Christchurch, NZ Making C Less Dangerous in the Linux Kernel Linux Conf AU January 25,

505 views • 29 slides
service in Linux Kernel Vikas Shivappa (vikas.shivappa@linux.intel.com) 1 Agenda Problem

service in Linux Kernel Vikas Shivappa (vikas.shivappa@linux.intel.com) 1 Agenda Problem

Introduction to Cache Quality of service in Linux Kernel Vikas Shivappa (vikas.shivappa@linux.intel.com) 1 Agenda Problem definition Existing techniques Why use Kernel QOS framework Intel Cache qos support Kernel

1.5k views • 32 slides
Linux Device Drivers Linux Device Drivers Kernel 2.6 1. Introduction Dr. Wolfgang Koch 2.

Linux Device Drivers Linux Device Drivers Kernel 2.6 1. Introduction Dr. Wolfgang Koch 2.

Linux Device Drivers Linux Device Drivers Kernel 2.6 1. Introduction Dr. Wolfgang Koch 2. Kernel Modules Friedrich Schiller University Jena 3. Char Drivers Department of Mathematics and 4. Advanced Char Drivers Computer Science 5.

531 views • 12 slides
CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&amp;A)

CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&amp;A)

CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&amp;A) Alberto Alvarez CS423: Operating Systems Design MP1 Goals Get yourself familiar with Linux kernel programming Learn to use the kernels linked

451 views • 32 slides
Memory Barriers in the Linux Kernel Semantics and Practices Embedded Linux Conference April

Memory Barriers in the Linux Kernel Semantics and Practices Embedded Linux Conference April

Memory Barriers in the Linux Kernel Semantics and Practices Embedded Linux Conference April 2016. San Diego, CA. Davidlohr Bueso &lt;dave@stgolabs.net&gt; SUSE Labs. Agenda 1. Introduction Reordering Examples Underlying need for

773 views • 54 slides
Assembly Programming on Linux Assembly Programming on Linux Necessity OS Kernel Development

Assembly Programming on Linux Assembly Programming on Linux Necessity OS Kernel Development

Assembly Programming on Linux Assembly Programming on Linux Necessity OS Kernel Development 80x86 Sparc Alpha Some device drivers SCSI Controller Video Card Network Card Others that has ROM on board .. Compiler/Interpreter/Cross

282 views • 11 slides
Kernel support for user debugging: ptrace, utrace, and what's next Roland McGrath Kernel support

Kernel support for user debugging: ptrace, utrace, and what's next Roland McGrath Kernel support

Kernel support for user debugging: ptrace, utrace, and what's next Roland McGrath Kernel support for user debugging What is ptrace? What is wrong with ptrace? What we do about it? How do we support the next generation of tracing

352 views • 21 slides
CS533 Concepts of Operating Systems Linux Kernel Locking Techniques Intro to kernel locking

CS533 Concepts of Operating Systems Linux Kernel Locking Techniques Intro to kernel locking

CS533 Concepts of Operating Systems Linux Kernel Locking Techniques Intro to kernel locking techniques (Linux) Why do we need locking in the kernel? o Which problems are we trying to solve? What implementation choices do we have? o Is

407 views • 30 slides

More recommend