Looking for a way to disassemble the running kernel. Can I do it through /dev/kmem? I am running linux 2.6.32. Or can I use a kernel module to run through the kernel. I am beginner to this. All I want to do is check the kernel image for some malicious module, by looking at the whether some specific instruction occured or not.
View 4 RepliesI have a small file (<200 bytes) with x86 instructions which I would like to translate into assembly language. I know gdb has a disassembler, but I have been unable to get gdb to load my file -- it's not in a valid format.
View 5 Replies View RelatedI want to be able to disassemble a binary file, modify the assembly source, then assemble the modified assembly source back into a modified binary file. Purpose for this is pretty much just to play around with the Crackmes (www.crackmes.de) game.
Now, disassembly is easy, there are several tools that do it, including the standard objdump with the -d argument. However, how would you assemble an assembly source file created with objdump -d? GCC for sure doesn't want to assemble it in that format. What program, script, or arguments to GCC (none that I can think of) can be used to accomplish this? If someone also has some good tips for tools in general for Crackmes beyond what is standard in GNU/Linux I'd love to hear about it.
Fedora, and other distros install a PAE kernel if the hardware supports it.
Are there any negative effect on running a PAE kernel on a machine with less than 3-4Gb ram ?
I'm just trying to know if is there is a way to run the first version of linux in a virtual machine. Since I am very new to this, my aim is to learn something basic on how the first version of linux kernel was built and worked.
View 1 Replies View RelatedI need to run an executable from initramfs which after executing should restart the system. How is it possible?.I tried using exec within the init of initramfs but it shows kernel panic (I guess exec after executing the binary it tries to exit and exiting with pid 1 is giving the panic).
View 2 Replies View RelatedI'm running a Xen VDS from a hosting company.
I'm trying to update the kernel, because the one that is running is rather "old":
Code:
I try to update the kernel with yum, but fail :
Code:
No Packages marked for Update
Code:
No Packages marked for Update
Code:
So where to get a more up to date kernel?
I accidentally deleted my .config for my kernel configuration on Linux, and seem to remember there was a way to retrieve the kernel configuration via the proc filesystem somehow. Is this still possible, and if so how would I do it?
View 1 Replies View RelatedI am currently struggling with one of my tasks.I was asked to find a way how to determine how much time an _already running_ process is spending in user and kernel space.E.G. <some tool> <pid>[Control] + [c]<pid> spent 12.1 seconds in user and 1.52 seconds in kernel space.Does something like this exist? Basically I guess I am looking for something similar to time, except that the process is already running.So..a) Is there a tool which fulfills this task?b) Is there a way to write your own software which does the job? Is it even possible to code something I am looking for?I recently found strace -c -p <pid>, but well, this is not exactly what I was looking for.
View 3 Replies View RelatedI have an x86 pc and installed lucid these are the details of my distribution version:
I am trying to build a kernel module i am getting the following error:
How to build kernel modules
I have been trying to build linux from source code and run it from my machine (intel platform).
Here's what I did:
Code:
I am using Grub2. When I rebooted the new kernel was in the grub list all right. But booting from that kernel fails with no errors or warning. The screen just goes blank. The disk usage indicator LED also doesn't glow which I guess means that the kernel isn't being read from the disk. I rebooted using my older kernel and it booted properly. Then, when I listed my /boot directory, I noticed that there was no initrd.img for 2.6.39. kernel in there, which I think is the problem.
I've read about some sort of tools that help with kernel configuration.Can anyone tell me anything about these?It seems that you use the tool(s) on a running system. You use the running system for a while. The tool(s) gathers data and leaves bread crumbs. The tool(s) then process the bread crumbs to create a candidate config file for a fresh kernel build. The goal is a kernel build that contains parts you actually use and omits parts you don't use or don't need -- all the while using arcane knowledge of dependencies among various kernel features to (hopefully) avoid building a still-born kernel.
View 6 Replies View RelatedI am using AT91SAM9260 and running Linux 2.6.27 on it. Once i sync the Kernel clock and cmos clock with the reference clock and leave it for 1 day, i see a drift of nearly 8-10 sec. The kernel clock is running faster. How can i correct this?
View 8 Replies View RelatedI'm running Debian Squeeze and last night i upgraded to the latest kernel release. Rebooted and noticed that as the system temp rises the fan runs louder(as expected)t unlike before, it no longer gets quieter as the temp drops again. I didn't really think the OS managed that so bit confused why it is happening.I booted into Windows 7 and with the exact same temps the fan drops back down to a quieter state
View 9 Replies View RelatedI'm looking to extract a config from a working kernel..that much was pretty easy..all ya gotta do is "cp /proc/config.gz ." which will put it in whatever directory you're currently in and then do a "gzip -d config.gz" to get the config file.
Now...after that it gets a bit tricky..Linus says you should never compile a kernel in /usr/src/ because those header files in ../include should never change. He says you should extract a new kernel gz in your home directory and compile it there. I tend to agree (who am I to argue?). Anyway..whereever your sources are this is where you need to copy the config file...
Like this...my home dir is "/home/dart". So I would put the kernel sources there under "/home/dart/linux". I would cd to /home/dart/linux and do "cp /proc/config.gz ." then "gzip -d config.gz" which should leave you with a file called "config", then "mv config .config"
Now here's where I run into a problem..when I do "make xconfig" I get this...
Tried to install the qt3-devel packages from CD but guess what? I ran into cdrom errors which is what I was trying to fix in the first **** place...catch 22 eh?
I am having acer aspire 4736 laptop, i installed opensuse 11.4 64bit after installation completes system restarted and icompleted post-install configuration . then when i restarted again and selected to boot from opensuse first splash screen comes but within a second it went off again it comes only for a moment & went off but system is still running there is no display for all text as well as graphics modes(alt+ctrl+f1......f7). i restarted my system again and again it started well only once or twice for lots of time .
I checked in failsafe mode also there in display properties it is not able to detect moniter. i selected default settings it is showing some x11 org not found like that error.
I have the latest release of Lucid Lynx installed. I want to try out audio recording on Linux so I want to know if it's possible to use a real time kernel with Lucid. So I installed the 2.6.31 real time kernel. It shows up in GRUB, but when I boot it gives me the message:
mounting none on /dev failed No such device
It then takes me to the login screen, and once I enter my password it just takes me back to the login.
I'm trying to debug a module I programmed but I don't want to do it on the running host but against UML (don't want to reboot every 5 minutes).
The UML kernel I downloaded is 2.6.38.2. I have already downloaded the ubuntu kernel headers for this version (they belong to natty though I'm running maverick.... when I installed the .deb file with dpkg I had no problem at all).
Now I'd like to build said module against these headers. How can I do it?
Here's the makefile for my module code...
[URL]... Anyone got this going on slackware? I've a single cpu and twincore here and the videos of the original patch were impressive. I tried it and I don't have /sys/fs/cgroup anything. So I added the cgroup scheduler in 2.6.35, but no dice. Do I have to go to git or 2.6.37??
View 2 Replies View Relatedis there a common reason why modules get mismatched with the running kernel version?why do I always get that uneasy feeling like I'm headed in the wrong direction?
View 4 Replies View RelatedGrub use to open an old kernel I tried to edit /boot/grub/menu.lst to open the one I wanted. The edit gets saved but it still opens in the wrong kernel. i.e when edit menu.lst it has no effect. I have tried running sudo grub-update. I've read piles of forum entries to no avail. I am running Jaunty.
View 7 Replies View RelatedI'm new to ubuntu and I wanted to setup a headless server (Asus Hummingbird, 2GB RAM, Ubuntu Server 11.04). The installation was successful but: After I tried starting my server without any connected monitor, the server did not start -> I run into a kernel panic (if I connect the monitor after a while I can see the messages on the screen, Keyboard lights flash...). What do I have to do to get the machine running without any monitor? My second problem is, that the Network is always powered down on system power down -> no WOL is possible. Is there an easy way of enabling the WOL function? I tried several things from different tutorials but nothing worked...
View 3 Replies View RelatedThis morning I ran the automatic upgrade provided on the repositories, updating my kernel from 2.6.38-8 to 2.6.38-10.Unfortunately, upon reboot I discovered that a series of patches I'd applied in order to get my wireless card on my desktop working had been undone (see I had to run a modified version of the instruction set in order to get my wireless back on.My question: is there a way to trigger this every time the kernel upgrades? I'd hate to have to run this cumbersome set of commands manually every time.
View 2 Replies View RelatedI'm using Slackware 13.1 32bit and can't run virtualbox when I try to boot the virtual machine it shows me a window with the following message:
Quote:
Kernel driver not installed (rc=-1908)
The VirtualBox Linux kernel driver (vboxdrv) is either not loaded or there is a permission problem with /dev/vboxdrv. Please reinstall the kernel module by executing
'/etc/init.d/vboxdrv setup'
run - /etc/rc.d/rc.vboxdrv setup
Quote:
Stopping VirtualBox kernel module ...done.
Recompiling VirtualBox kernel module ...failed!
(Look at /var/log/vbox-install.log to find out what went wrong)
Check /var/log/vbox-install.log
Quote:
make KBUILD_VERBOSE=1 -C /lib/modules/2.6.33.4-smp/build SUBDIRS=/tmp/vbox.0 SRCROOT=/tmp/vbox.0 modules
test -e include/generated/autoconf.h -a -e include/config/auto.conf || (
echo;
[code]....
I presume there is something in the JWM window manager - or Puppy Linux Lupu 5.01 itself that is conflicting with the normal loading of GMPLAYER....
I would like to know how to troubleshoot, and fix this problem if possible (even a workaround would be great).
Where can I find the vmlinux file corresponding to my current running fedora core 10 kernel? I find only vmlinuz file in /boot
View 5 Replies View RelatedI am trying to install VMware on my machine. I have downloaded VMware and I am now trying to configure it. After accepting the EULA, the program states;
Code:
None of the pre-built vmmon modules for VMware Server is suitable for your running kernel. Do you want this program to try to build the vmmon module for your system (you need to have a C compiler installed on your system)? [yes] y Then;
Code:
Using compiler "/usr/bin/gcc". Use environment variable CC to override. What is the location of the directory of C header files that match your running kernel? [/usr/src/linux/include] The path "/usr/src/linux/include" is not an existing directory. What is the location of the directory of C header files that match your running kernel? [/usr/src/linux/include] /usr/bin/gcc The path "/usr/bin/gcc" is not an existing directory. What is the location of the directory of C header files that match your running kernel?[/usr/src/linux/include] How do i find where the C header files are?
I am having a problem with my Fedora11, I am not sure wether it is software or hardware but this looks serious. My computer is running very slow and freezes up every few seconds. Every time I reboot I would get a kernel failure pop-up.
This is what the message says:
Kernel failure message 1:
Kernel failure message 2:
Call Trace:
I need to install VMWare Workstation on Fedora 13, but I keep running into the following error -
"C header files matching your running kernel were not found...."
It's looking for 2.6.33.3-85.fc13.i686 but when I did a - yum install kernel-devel I got 2.6.33.5-124.fc13.i686
when I do - yum install kernel-devel `uname -r`
I get the following -
Loaded plugins: presto, refresh-packagekit
Setting up Install Process
Package kernel-devel-2.6.33.5-124.fc13.i686 already installed and latest version
[code]....
this isn't so much slackware specific as it is general linux related, but using the default huge slackware kernel included with 13.1, acpi reports cpu temps of about 55 celsius i always like to run my own kernels though, and using the latest stable kernel, i have compiled one using what i believe is necessary for my hardware, and everything works as expected except that acpi reports my cpu temp as 80 celsius at idle, causing my fan to be running constantly
so without simply using the generic config included with slack in the newer kernel, what do you think might be causing the thermal issues? i used diff on the two configs and the output is over 5,000 lines, so thats not a huge help, and im really not even sure what to be looking for the cpu is an intel i7 720qm, so if anyone might know any specific settings for that processor type needed for acpi to interface with it properly that would be much obliged here is my config for potential review: [URL] also, if i disable acpi entirely, the fan operates as normal but i cannot get readings obviously