This is the mail archive of the systemtap@sourceware.org mailing list for the systemtap project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [RFC] Tracepoint proposal

From: fche at redhat dot com (Frank Ch. Eigler)
To: "Takashi Nishiie" <t-nishiie at np dot css dot fujitsu dot com>
Cc: "'Masami Hiramatsu'" <mhiramat at redhat dot com>, "'Alexey Dobriyan'" <adobriyan at gmail dot com>, "'Mathieu Desnoyers'" <mathieu dot desnoyers at polymtl dot ca>, "'Peter Zijlstra'" <peterz at infradead dot org>, "'Steven Rostedt'" <rostedt at goodmis dot org>, "'Ingo Molnar'" <mingo at elte dot hu>, "'LKML'" <linux-kernel at vger dot kernel dot org>, "'systemtap-ml'" <systemtap at sources dot redhat dot com>, "'Hideo AOKI'" <haoki at redhat dot com>
Date: Tue, 24 Jun 2008 07:55:25 -0400
Subject: Re: [RFC] Tracepoint proposal
References: <485BE2C6.1080901@redhat.com> <20080620174529.GB10943@Krystal> <1213992446.3223.195.camel@lappy.programming.kicks-ass.net> <20080622171135.GA19432@Krystal> <20080622175928.GA5022@martell.zuzino.mipt.ru> <20080622182705.GA23301@Krystal> <20080624002010.GA4777@martell.zuzino.mipt.ru> <486071AF.3080709@redhat.com> <007601c8d5ca$18fa0e10$4aee2a30$@css.fujitsu.com>

"Takashi Nishiie" <t-nishiie@np.css.fujitsu.com> writes:

> [...]
> Each kernel sub-system seems to have its own way of dealing with 
> debugging statements. Some of these methods include 'dprintk', 
> 'pr_debug', 'dev_debug', 'DEBUGP'. I think that these functions are
> the tracepoints that has been availably mounted without setting up 
> the tool set of the outside. I think whether mounting that unites 
> these functions can be done if kernel marker and tracepoint are used.

There are efforts underway to collect these various debug methods into
a single run-time-dynamic stream, which may even turn out to connect
to markers.

> By the way, isn't there problem on security?  What kprobe, jprobe,
> and kernel marker, etc. offer looks like what the framework of Linux
> Security Module had offered before.  Gotten kprobe, jprobe, and
> kernel marker, etc. should not be exported to the userland for
> security because it becomes the hotbed of rootkits.

These are all kernel-side facilities with no direct connection to
user-land.

> Users such as kprobe, jprobe, and kernel marker should not be
> Loadable Kernel Module. [...]

That would defeat their usefulness.  Remember, kernel modules run with
no hardware-level restrictions at all, so if an adversary managed to
load up some kernel malware module, the game is over, whether or not
they use kprobes.

- FChE

References:
- [RFC][Patch 2/2] markers: example of irq regular kernel markers
  - From: Masami Hiramatsu
- Re: [RFC][Patch 2/2] markers: example of irq regular kernel markers
  - From: Mathieu Desnoyers
- Re: [RFC][Patch 2/2] markers: example of irq regular kernel markers
  - From: Peter Zijlstra
- [RFC] Tracepoint proposal
  - From: Mathieu Desnoyers
- Re: [RFC] Tracepoint proposal
  - From: Alexey Dobriyan
- Re: [RFC] Tracepoint proposal
  - From: Mathieu Desnoyers
- Re: [RFC] Tracepoint proposal
  - From: Alexey Dobriyan
- Re: [RFC] Tracepoint proposal
  - From: Masami Hiramatsu
- RE: [RFC] Tracepoint proposal
  - From: Takashi Nishiie

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]