DOCSLIB.ORG

Forward-Edge and Backward-Edge Control-Flow Integrity Performance in the Linux Kernel

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Forward-Edge and Backward-Edge Control-Flow Integrity Performance in the Linux Kernel Forward-Edge and Backward-Edge Control-Flow Integrity Performance in the Linux Kernel Christian Resell Thesis submitted for the degree of Master in Informatics: Programming and Networks 60 credits Department of Informatics Faculty of mathematics and natural sciences UNIVERSITY OF OSLO Spring 2020 Forward-Edge and Backward-Edge Control-Flow Integrity Performance in the Linux Kernel Christian Resell © 2020 Christian Resell Forward-Edge and Backward-Edge Control-Flow Integrity Performance in the Linux Kernel http://www.duo.uio.no/ Printed: Reprosentralen, University of Oslo Abstract This thesis will provide an overview of modern software defenses applied to the Linux kernel on the x86 64 and arm64 architectures. The main focus is the performance of forward-edge and backward-edge control-flow integrity. A requirement for control-flow integrity is to compile the Linux kernel with clang. Forward-edge control-flow integrity has an addition requirement of compiling the kernel with link-time optimization. Thus it is natural to also examine the effect of compiling the Linux kernel with clang, and what the performance impact of enabling link-time optimization is. The results gathered from the benchmarks show that link-time optimization provides a performance boost in almost every single macro benchmark. The re- sults also show that control-flow integrity comes at a cost. Kernels with control- flow integrity enabled perform worst in virtually all the benchmarks. Surpris- ingly, gcc performed better in the micro benchmarks, but performs slightly worse than clang on the macro benchmarks. 1 Acknowledgements First of all I would like to thank my supervisor, Knut Omang, for letting me choose my own topic for this thesis. His patience and great advice have been crucial for completing the thesis. Thanks to Aleksi Luukkonen for letting me use his hardware during the early stages of writing. This was very helpful for getting started. Thank you to Christoffer Buen for being a great rubber duck when I was stuck early in the research process. I would also like to thank my family for all the support they have given me through the years. Finally, I would like to thank my girlfriend, Marit Iren Rognli Tokle, for supporting me and putting up with me while I have been working on this thesis. June 15. 2020. Christian Resell 3 Contents 1 Introduction 1 1.1 Introduction . .1 1.2 Background and motivation . .1 1.3 Terms and definitions . .2 1.3.1 Vulnerability and exploit . .2 1.3.2 Kernel space and user space . .2 1.3.3 System calls . .2 1.3.4 Inlining . .2 1.4 Conventions . .3 1.5 Outline . .3 2 Linux kernel 4 2.1 Introduction . .4 2.2 History and distributions . .4 2.3 Android . .5 2.4 Android IPC — Binder . .6 2.5 Open source . .6 2.6 Architectures . .7 2.6.1 Calling conventions . .7 2.6.2 Prologues and epilogues . 12 3 Software vulnerabilities 14 3.1 Introduction . 14 3.2 Memory layout . 14 3.3 Memory corruption bugs . 17 3.4 Code-reuse attacks . 20 3.4.1 return-to-libc . 20 3.4.2 Return-oriented programming . 22 3.4.3 Jump-oriented programming . 23 3.4.4 Other attacks . 24 3.5 Memory corruption defenses . 24 3.5.1 Address space layout randomization . 24 3.5.2 Stack protection . 25 3.6 Other vulnerability classes . 26 3.6.1 Format string vulnerabilities . 26 3.6.2 Use-after-free vulnerabilities . 28 3.6.3 Type confusion . 28 3.6.4 Heap vulnerabilities in general . 28 5 3.6.5 Terminology . 28 4 Compilers and linkers 29 4.1 Introduction . 29 4.2 General information . 29 4.3 GNU Compiler Collection . 30 4.4 LLVM . 30 4.4.1 Vulnerability mitigations . 31 4.4.2 ASLR/PIE . 31 4.4.3 RELRO . 31 4.4.4 NX . 32 4.4.5 Fortify source . 32 4.4.6 Compiler mitigation summary . 34 4.4.7 Summary . 35 4.5 Link-time optimization . 35 4.5.1 Link-time optimization in LLVM . 35 4.6 Control-flow integrity . 36 4.6.1 Forward-edge control-flow integrity in clang . 36 4.6.2 Cross-DSO CFI . 43 4.6.3 Backward-edge control-flow integrity in clang . 45 4.7 Hardware alternatives . 47 4.7.1 CET . 47 4.7.2 PAC . 48 5 Linux kernel internals 49 5.1 Introduction . 49 5.2 Linux kernel versions . 49 5.3 Build system . 50 5.4 Linux kernel security . 51 5.4.1 KASLR . 51 5.4.2 SMEP/PXN . 51 5.4.3 SMAP/PAN . 51 5.4.4 STRICT KERNEL RWX ..................... 51 5.4.5 STRICT DEVMEM ........................ 51 5.4.6 HARDENED USERCOPY ..................... 52 5.4.7 Page Table Isolation . 52 6 Forward-edge and backward-edge control-flow integrity in the Linux kernel 54 6.1 Introduction . 54 6.2 Building the Linux kernel with clang . 54 6.2.1 Variable-length arrays . 54 6.2.2 Assembly goto . 55 6.3 LTO, CFI, and SCS in Linux . 55 6.3.1 Link-time optimization . 55 6.3.2 Control-flow integrity . 56 6.3.3 CFI failure . 57 6.4 ShadowCallStack . 60 6 7 Performance benchmarks 64 7.1 Introduction . 64 7.2 Motivation and previous work . 66 7.3 Binary size . 68 7.4 Compile time . 68 7.5 Kernel performance . 69 7.6 WireGuard . 69 8 Results 71 8.1 Introduction . 71 8.2 QEMU results . 71 8.3 Binary size . 72 8.4 Compilation time . 72 8.5 Micro benchmarks . 73 8.5.1 LMBench . 73 8.6 Macro benchmarks . 86 8.6.1 Redis . 86 8.6.2 ApacheBench . 87 8.6.3 WireGuard . 92 8.7 Android benchmarks . 96 8.8 Summary . 96 8.9 Future work . 97 A Scripts 99 A.1 Linux kernel installation script . 99 A.2 Linux kernel build script . 100 A.3 Android Linux kernel build script . 102 A.4 Docker . 103 A.5 Benchmarking script . 103 A.6 Python benchmarking scripts . 104 A.7 WireGuard benchmarking . 123 B Code 132 B.1 CFI failure fixes . 132 B.2 Inline limit patch . 133 7 List of Tables 2.1 Android versions . .6 2.2 binder domains . .6 2.3 x86 64 registers . .8 2.4 arm64 registers . .8 3.1 ELF sections . 15 4.1 LLVM sub-projects . 30 4.2 Compiler mitigation summary . 34 4.3 CFI schemes . 36 5.1 Longterm release kernels . 50 7.1 x86 64 kernel configurations . 64 7.2 arm64 kernel configurations . 65 7.3 Micro and macro benchmarks . 69 7.4 LMBench bandwidth benchmarks description . ..
Load more

Recommended publications
  • Redhawk Linux User's Guide
    Linux® User’s Guide 0898004-520 May 2007 Copyright 2007 by Concurrent Computer Corporation. All rights reserved. This publication or any part thereof is intended for use with Concurrent products by Concurrent personnel, customers, and end–users. It may not be reproduced in any form without the written permission of the publisher. The information contained in this document is believed to be correct at the time of publication. It is subject to change without notice. Concurrent makes no warranties, expressed or implied, concerning the information contained in this document. To report an error or comment on a specific portion of the manual, photocopy the page in question and mark the correction or comment on the copy. Mail the copy (and any additional comments) to Concurrent Computer Corporation, 2881 Gateway Drive, Pompano Beach, Florida, 33069. Mark the envelope “Attention: Publications Department.” This publication may not be reproduced for any other reason in any form without written permission of the publisher. Concurrent Computer Corporation and its logo are registered trademarks of Concurrent Computer Corporation. All other Concurrent product names are trademarks of Concurrent while all other product names are trademarks or registered trademarks of their respective owners. Linux® is used pursuant to a sublicense from the Linux Mark Institute. Printed in U. S. A. Revision History: Date Level Effective With August 2002 000 RedHawk Linux Release 1.1 September 2002 100 RedHawk Linux Release 1.1 December 2002 200 RedHawk Linux Release 1.2 April 2003 300 RedHawk Linux Release 1.3, 1.4 December 2003 400 RedHawk Linux Release 2.0 March 2004 410 RedHawk Linux Release 2.1 July 2004 420 RedHawk Linux Release 2.2 May 2005 430 RedHawk Linux Release 2.3 March 2006 500 RedHawk Linux Release 4.1 May 2006 510 RedHawk Linux Release 4.1 May 2007 520 RedHawk Linux Release 4.2 Preface Scope of Manual This manual consists of three parts.
    [Show full text]
  • Debugging Kernel Problems
    Debugging Kernel Problems by GregLehey Edition for AsiaBSDCon 2004 Taipei, 13 March 2004 Debugging Kernel Problems by GregLehey([email protected]) Copyright © 1995-2004 GregLehey 3Debugging Kernel Problems Preface Debugging kernel problems is a black art. Not manypeople do it, and documentation is rare, in- accurate and incomplete. This document is no exception: faced with the choice of accuracyand completeness, I chose to attempt the latter.Asusual, time was the limiting factor,and this draft is still in beta status. This is a typical situation for the whole topic of kernel debugging: building debug tools and documentation is expensive,and the people who write them are also the people who use them, so there'satendencytobuild as much of the tool as necessary to do the job at hand. If the tool is well-written, it will be reusable by the next person who looks at a particular area; if not, it might fall into disuse. Consider this book a starting point for your own develop- ment of debugging tools, and remember: more than anywhere else, this is an area with ``some as- sembly required''. Debugging Kernel Problems 4 1 Introduction Operating systems fail. All operating systems contain bugs, and theywill sometimes cause the system to behave incorrectly.The BSD kernels are no exception. Compared to most other oper- ating systems, both free and commercial, the BSD kernels offer a large number of debugging tools. This tutorial examines the options available both to the experienced end user and also to the developer. In this tutorial, we’ll look at the following topics: • Howand whykernels fail.
    [Show full text]
  • Linux Kernel and Driver Development Training Slides
    Linux Kernel and Driver Development Training Linux Kernel and Driver Development Training © Copyright 2004-2021, Bootlin. Creative Commons BY-SA 3.0 license. Latest update: October 9, 2021. Document updates and sources: https://bootlin.com/doc/training/linux-kernel Corrections, suggestions, contributions and translations are welcome! embedded Linux and kernel engineering Send them to [email protected] - Kernel, drivers and embedded Linux - Development, consulting, training and support - https://bootlin.com 1/470 Rights to copy © Copyright 2004-2021, Bootlin License: Creative Commons Attribution - Share Alike 3.0 https://creativecommons.org/licenses/by-sa/3.0/legalcode You are free: I to copy, distribute, display, and perform the work I to make derivative works I to make commercial use of the work Under the following conditions: I Attribution. You must give the original author credit. I Share Alike. If you alter, transform, or build upon this work, you may distribute the resulting work only under a license identical to this one. I For any reuse or distribution, you must make clear to others the license terms of this work. I Any of these conditions can be waived if you get permission from the copyright holder. Your fair use and other rights are in no way affected by the above. Document sources: https://github.com/bootlin/training-materials/ - Kernel, drivers and embedded Linux - Development, consulting, training and support - https://bootlin.com 2/470 Hyperlinks in the document There are many hyperlinks in the document I Regular hyperlinks: https://kernel.org/ I Kernel documentation links: dev-tools/kasan I Links to kernel source files and directories: drivers/input/ include/linux/fb.h I Links to the declarations, definitions and instances of kernel symbols (functions, types, data, structures): platform_get_irq() GFP_KERNEL struct file_operations - Kernel, drivers and embedded Linux - Development, consulting, training and support - https://bootlin.com 3/470 Company at a glance I Engineering company created in 2004, named ”Free Electrons” until Feb.
    [Show full text]
  • Appendix B Development Tools
    Appendix B Development Tools Problem Statement Although more proprietary packages are available, there are abundant open source packages, giving its users unprecedented flexibility and freedom of choice, that most users can find an application that exactly meets their needs. However, it is also this pool of choices that drive individuals to share a wide range of preferences and biases. As a result, Linux/Open source packages (and softeware in general) is flooded with religious wars over programming languages, editors, licences, etc. Some are worthwhile debates, others are meaningless flamewars. Throughout Appendix B and next chapter, Appendix C, we intend to summarize a few essential tools (from our point of view) that may help readers to know the aspects and how-to of (1) development tools including programming, debugging, and maintaining, and (2) network experiment tools including name-addressing, perimeter probing, traffic-monitoring, benchmarking, simulating/emulating, and finally hacking. Section B.1 guides readers to begin the developing journey with programming tools. A good first step would be writing the first piece of codes using a Visual Improved (vim) text editor. Then compiling it to binary executables with GNU C compiler (gcc), and furthermore offloading some repetitive compiling steps to the make utility. The old 80/20 rule still works on programming where 80% of your codes come from 20% of your efforts leaving 80% of your efforts go buggy about your program. Therefore you would need some debugging tools as dicussed in Section 1.2. including source-level debugging, GNU Debugger (gdb), or a GUI fasion approach, Data Display Debugger (ddd), and debug the kernel itself using remote Kernel GNU Debugger (kgdb).
    [Show full text]
  • Devt: Let the Device Talk
    Iowa State University Capstones, Theses and Creative Components Dissertations Summer 2020 DevT: Let the Device Talk Chander Bhushan Gupta Follow this and additional works at: https://lib.dr.iastate.edu/creativecomponents Part of the Data Storage Systems Commons Recommended Citation Gupta, Chander Bhushan, "DevT: Let the Device Talk" (2020). Creative Components. 585. https://lib.dr.iastate.edu/creativecomponents/585 This Creative Component is brought to you for free and open access by the Iowa State University Capstones, Theses and Dissertations at Iowa State University Digital Repository. It has been accepted for inclusion in Creative Components by an authorized administrator of Iowa State University Digital Repository. For more information, please contact [email protected]. DevT: Let the Device Talk by Chander Bhushan Gupta A Creative Component submitted to the graduate faculty in partial fulfillment of the requirements for the degree of MASTER OF SCIENCE Major: Computer Engineering Program of Study Committee: Mai Zheng, Major Professor The student author, whose presentation of the scholarship herein was approved by the program of study committee, is solely responsible for the content of this creative component. The Graduate College will ensure this creative component is globally accessible and will not permit alterations after a degree is conferred. Iowa State University Ames, Iowa 2020 Copyright c Chander Bhushan Gupta, 2020. All rights reserved. ii TABLE OF CONTENTS Page LIST OF TABLES . iv LIST OF FIGURES . .v ACKNOWLEDGMENTS . vii ABSTRACT . viii CHAPTER 1. INTRODUCTION . .1 1.1 Motivation . .3 1.2 Related Work . .5 1.3 Outline . .6 CHAPTER 2. REVIEW OF LITERATURE . .7 2.1 Why FEMU? .
    [Show full text]
  • Thread Scheduling in Multi-Core Operating Systems Redha Gouicem
    Thread Scheduling in Multi-core Operating Systems Redha Gouicem To cite this version: Redha Gouicem. Thread Scheduling in Multi-core Operating Systems. Computer Science [cs]. Sor- bonne Université, 2020. English. tel-02977242 HAL Id: tel-02977242 https://hal.archives-ouvertes.fr/tel-02977242 Submitted on 24 Oct 2020 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Ph.D thesis in Computer Science Thread Scheduling in Multi-core Operating Systems How to Understand, Improve and Fix your Scheduler Redha GOUICEM Sorbonne Université Laboratoire d’Informatique de Paris 6 Inria Whisper Team PH.D.DEFENSE: 23 October 2020, Paris, France JURYMEMBERS: Mr. Pascal Felber, Full Professor, Université de Neuchâtel Reviewer Mr. Vivien Quéma, Full Professor, Grenoble INP (ENSIMAG) Reviewer Mr. Rachid Guerraoui, Full Professor, École Polytechnique Fédérale de Lausanne Examiner Ms. Karine Heydemann, Associate Professor, Sorbonne Université Examiner Mr. Etienne Rivière, Full Professor, University of Louvain Examiner Mr. Gilles Muller, Senior Research Scientist, Inria Advisor Mr. Julien Sopena, Associate Professor, Sorbonne Université Advisor ABSTRACT In this thesis, we address the problem of schedulers for multi-core architectures from several perspectives: design (simplicity and correct- ness), performance improvement and the development of application- specific schedulers.
    [Show full text]
  • Linux Update
    Linux Kernel Debugging Tools Jason Wessel - Product Architect for WR Linux Core Runtime - Kernel.org KGDB Maintainer June 23th, 2010 Agenda • Talk about a number of common kernel debugging tools • Describe high level tactics for using kernel debugging tools • Demonstrate using several tools The harsh reality is you could spend a whole day or more talking about each tool. *** Later find slides/code at: http://kgdb.wiki.kernel.org *** 2 © 2010 Wind River Exciting news • For 2.6.35-rc1 – kdb (the kernel debug shell) merged to mainline! – Ability to debug before console_init() – You can use the EHCI debug port with kgdb • There are thoughts about next few years of kgdb/kdb – Implement complete atomic kernel mode setting – Continue to improve the non ehci debug usb console – Improve keyboard panic handler – Further integration with kprobes and hw assisted debugging – netconsole / kgdboe v2 – Use dedicated HW queues • The only bad news is it takes a long time to get there. 3 © 2010 Wind River Is there anything better than kgdb? • Good – kgdb / kdb • Better – QEMU/KVM backend debugger – Virtual box backend debugger – vmware backend debugger – kdump/kexec • Best – ICE (usb or ethernet) – Simics (because it has backward stepping) • In a class by itself – printk() / trace_printk() The challenge is knowing what to use when... Working tools rock! 4 © 2010 Wind River A bit about printk() and timing • printk is probably the #1 most reliable debug • Any seasoned kernel developer has surely experienced: – Add a printk and the bug goes away! – Timing in
    [Show full text]
  • Using Kgdb and the Kgdb Internals.Pdf
    Using kgdb and the kgdb Internals Jason Wessel [email protected] Tom Rini [email protected] Amit S. Kale [email protected] Using kgdb and the kgdb Internals by Jason Wessel by Tom Rini by Amit S. Kale Copyright © 2008 Wind River Systems, Inc. Copyright © 2004-2005 MontaVista Software, Inc. Copyright © 2004 Amit S. Kale This file is licensed under the terms of the GNU General Public License version 2. This program is licensed "as is" without any warranty of any kind, whether express or implied. Table of Contents 1. Introduction............................................................................................................................................1 2. Compiling a kernel.................................................................................................................................2 3. Enable kgdb for debugging...................................................................................................................3 3.1. Kernel parameter: kgdbwait........................................................................................................3 3.2. Kernel parameter: kgdboc...........................................................................................................3 3.2.1. Using kgdboc..................................................................................................................3 3.3. Kernel parameter: kgdbcon.........................................................................................................4 4. Connecting gdb......................................................................................................................................6
    [Show full text]
  • Using Serial Kdb / Kgdb to Debug the Linux Kernel
    Using Serial kdb / kgdb to Debug the Linux Kernel Doug Anderson, Google Chrome OS Intro Chrome OS About Me ● Random kernel Engineer at Google working on Chrome OS. ● I like debugging. ● I like debuggers. ● Not the author nor maintainer of kdb / kgdb, but I fix bugs sometimes. ● I really only have deep experience with Linux on arm32 / arm64. Chrome OS About You ● You're a kernel Engineer. ● You sometimes run into crashes / hangs / bugs on devices you're working on. ● You have a serial connection to the device you're working on. ○ There are other ways to talk to kdb / kgdb, but I won't cover those. ● You're here in person (or watching a video), since much of this will be demo. ● You like to go for long romantic walks through the woods at night. Chrome OS Syllabus ● What is kdb / kgdb? ● What kdb / kgdb are best suited for ● Comparison to similar tools ● Getting setup ● Debugging your first problem ● Debugging your second problem ● Next steps Chrome OS What is kdb / kgdb? ● The docs are the authority. https://www.kernel.org/doc/html/v5.2/dev-tools/kgdb.html ● kdb = The Kernel DeBugger. A simple shell that can do simple peeks/pokes but also has commands that can print kernel state at time of crash. ● kgdb = The Kernel GDB server. Allows a second computer to run GDB and debug the kernel. Chrome OS Do I want kdb, or kgdb? ● Before my time, I believe you had to pick. Now, you can have both. ● kgdb just lets you use vanilla gdb to debug the kernel.
    [Show full text]
  • GDB and Linux Kernel Awareness Peter Griffin Background & Purpose of This Talk 1
    GDB and Linux Kernel Awareness Peter Griffin Background & Purpose of this talk 1. Many of us need to debug the Linux kernel 2. Proprietary tools like Trace32 and DS-5 are very $$$ 3. Open source debuggers like GDB lack many ‘kernel debug’ features found in expensive proprietary tools. So... 1. What exists today in open source? 2. How we can make it better? 3. Where we should make the changes? 4. What are the challenges? High level Overview ● Ways to debug Linux using GDB ● Pros / Cons ● What does “Linux kernel awareness” mean? ● Different approaches to implement “awareness” ● Pros / Cons ● Proposed plan for moving forward Ways to debug the Linux kernel with GDB (1) 1. GDB client using gdbremote protocol a. to a KGDB stub in the kernel b. to Qemu running a kernel on an architecture of your choice c. to gdbremote compliant JTAG probe e.g. OpenOCD a. KGDB and GDB ● Debug stub in the kernel compliant with gdbremote protocol. ● Enable using CONFIG_KGDB + Already supported on many platforms + All kernel threads enumerated in GDB (via gdbremote) - Requires cooperation between debugger and kernel stub - less suitable for serious crashes e.g. memory corruption. - Isn’t enabled in production systems. - Requires enough support for serial or ethernet (no good for bringup). Host Target system gdbremote serial / ethernet Linux GDB KGDB b. Qemu and gdbserver Advantages + Qemu is open source and has gdbremote stub + No “real” hardware required + Good for testing generic kernel code, on many architectures + Good environment for developing GDB linux awareness extensions Disadvantages - If your bug is SoC or board related it is unlikely to be useful Dev Host .
    [Show full text]
  • The Linux Kernel: Configuring the Kernel Part 22
    The Linux Kernel: Configuring the Kernel Part 22 In this article, we will continue to configure the kernel hacks and then we will configure the whole security system. The next feature to configure is needed by Alpha and s390 processor (Force weak per­cpu definitions). This feature offers a fix for an addressing issue commonly seen in such processors. Other processors do not need this feature enabled. Kernel dumps can be tested with this special debugging tool (Linux Kernel Dump Test Tool Module). This software will allow a kernel developer to trigger a fake error that will cause a kernel dump. The kernel developers can then ensure that the dumps complete successfully. The kernel offers some different error injection modules that allow kernel developers to test the notifiers (CPU notifier error injection module), (PM notifier error injection module), and (Memory hotplug notifier error injection module). A notifier informs the system that the hardware is present, which is important for hotplugging. These error injection modules trigger an error in this notification system so developers can test the notification system's error handling abilities. The "Fault­injection framework" driver offers various tools for testing fault­handling. The "Latency measuring infrastructure" driver provides the LatencyTOP tool used to find the userspace object that is blocking/interfering with a kernel execution/task. Next, we have a sub­menu titled "Tracers" that contains a list of various tracers. A tracer is a piece of code that watches various kernel functions. Every time a particular function starts, a tracer will be called to watch the function.
    [Show full text]
  • Xen/Linux Kernel Debugging Daniel Kiper - [email protected] Presentation Plan
    <Insert Picture Here> From printk to QEMU: Xen/Linux Kernel debugging Daniel Kiper - [email protected] Presentation plan • printk and companions • gdb • kgdb, GDB stub, … • QEMU • kdump • Documentation • Questions and Answers printk usage … printk(KERN_DEBUG ”Something went wrong\n”) … • Linux Kernel has some useful abreviations: pr_info(), pr_debug(), … • … and pr_info_once(), pr_debug_once(), … • All functions/macros accept most of standard C printf() format strings • /proc/sys/kernel/printk controls log levels serial console scenario Null modem connection Debugging host Debugged target printk and Linux serial/early console • printk output is send usualy to graphic card by default • This behavior is not very useful for debugging because output may disappear • Serial console is a solution in this case • Linux Kernel serial console activation: /boot/vmlinuz … console=ttyS0,115200n8 … • Linux Kernel early console activation: /boot/vmlinuz … earlyprintk=ttyS0,115200 … • Other useful Linux Kernel logging options: • debug • loglevel=<0-7> printk and Xen serial console • Xen serial console activation: /boot/xen.gz … com1=115200,8n1 console=com1 … • Other Xen useful logging options: • sync_console • console_to_ring • loglvl=all • guest_loglvl=all • apic_verbosity=debug serial console and asm x86 USB debug port • Serial port requires some initialization • Good and working asm x86 example could be found in kexec-tools source (kexec-tools/purgatory/arch/i386/console-x86.c) • USB EHCI debug port is similart solution to serial console • Linux Kernel has support for USB debug port • There is a RFC implementation for Xen, too • However, machines must be connect through special device How to check logs • Linux logs: • /var/log/dmesg • /var/log/syslog • /var/log/messages • Xen logs: • xm dmesg • xl dmesg printk summary • Simple and reliable • Does not interfere program run (in contrast to e.g.
    [Show full text]