[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <007601c8d5ca$18fa0e10$4aee2a30$@css.fujitsu.com>
Date: Tue, 24 Jun 2008 16:15:35 +0900
From: "Takashi Nishiie" <t-nishiie@...css.fujitsu.com>
To: "'Masami Hiramatsu'" <mhiramat@...hat.com>,
"'Alexey Dobriyan'" <adobriyan@...il.com>
Cc: "'Mathieu Desnoyers'" <mathieu.desnoyers@...ymtl.ca>,
"'Peter Zijlstra'" <peterz@...radead.org>,
"'Steven Rostedt'" <rostedt@...dmis.org>,
"'Frank Ch. Eigler'" <fche@...hat.com>,
"'Ingo Molnar'" <mingo@...e.hu>,
"'LKML'" <linux-kernel@...r.kernel.org>,
"'systemtap-ml'" <systemtap@...rces.redhat.com>,
"'Hideo AOKI'" <haoki@...hat.com>
Subject: RE: [RFC] Tracepoint proposal
Hi
Hiramatsu wrote:
>One reason why we need markers or other in-the-middle-of-function
>trace point is that some events happen inside functions, not it's
>interface.
Each kernel sub-system seems to have its own way of dealing with
debugging statements. Some of these methods include 'dprintk',
'pr_debug', 'dev_debug', 'DEBUGP'. I think that these functions are
the tracepoints that has been availably mounted without setting up
the tool set of the outside. I think whether mounting that unites
these functions can be done if kernel marker and tracepoint are used.
By the way, isn't there problem on security?
What kprobe, jprobe, and kernel marker, etc. offer looks like what
the framework of Linux Security Module had offered before. Gotten
kprobe, jprobe, and kernel marker, etc. should not be exported to the
userland for security because it becomes the hotbed of rootkits. Users
such as kprobe, jprobe, and kernel marker should not be Loadable Kernel
Module. I think that there are some solutions in LTTng about this
security problem. However, will the environment to be able to operate
SystemTap be really secure?
At least, kernel commandline option to invalidate all of kprobe,
jprobe, and kernel marker, etc. because of the batch might be
necessary.
Thank you,
--
Takashi Nishiie
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists