This post is continuing the OS series loosely based on Operating Systems: Three Easy Pieces and diving into concepts discussed therein. In particular, I look at the Linux scheduler CFS and use ftrace to track some of its functions to see how runtimes and weights of tasks are updated.
A short discussion about how to restore the symbol table of the Linux kernel vmlinux. To allow matching with addresses in the text segment I account for the address offset introduced by ASLR between the source and running kernel. With GDB set up like this I find offsets of struct members used in the kernel.
This is the beginning of a series contemplating OS concepts discussed in the book Operating Systems: Three Easy Pieces. I recently found out about the tracer ftrace and am planning to use it throughout the series. This post dives into what happens on the kernel side when using the terminal.
This series is a catch-all for interesting tidbits learned from the pwn.college course taught by @Zardus and the associated CTF-style challenges. The course is all about binary exploitation ranging from code injection to memory corruption and rop chain challenges.
More …