[panda-users] Osi_linux plugin

Manolis Stamatogiannakis mstamat at gmail.com
Wed Apr 15 14:40:55 EDT 2015 

When you run the plugin, kernelinfo.conf must exist in your current
directory. So just soft-link it from the source directory of the plugin.

In your case however, the stock kernelinfo.conf won't work because it
currently contains only information for the 32bit kernel used by debian
stable.
So you have to compile the kernelinfo module in a guest running (ideally)
the same kernel you want to introspect.
Then insert it into the kernel (insertion always fails) and use the
supplied python script to extract the offsets for that kernel.

The offsets should then be appended to kernelinfo.conf. Also make a pull
request for the updated kernelinfo.conf when you do this.

IIRC, the kernelinfo module had some glitches which prevented it from
compiling in recent kernels (e.g. 3.20). So if you encounter any problems,
drop me an email so that I expedit making a pull request for the fixed
version.

Cheers,
M.




M.

2015-04-15 8:26 GMT-07:00 Simone Mazzoni <simone.mazzoni13 at gmail.com>:

> Hello,
>
> I tried to use the osi_linux plugin to get the current process in
> execution but it seems not to work.
> I tried to execute panda with -panda 'osi;osi_linux;osi_test' but it gives
> me the following error:
>
>
> Any idea of the reason?
>
> I noticed see that the plugin contain a "utils/kernelinfo" folder that
> should contain a script or something to extract the correct offset of the
> running kernel, but I do not understand how to use it.
>
> I tried running the osi_test on an Debian SO and on a Ubuntu 14.04 SO.
>
> Thanks for the help.
>
> - Simone
>
> _______________________________________________
> panda-users mailing list
> panda-users at mit.edu
> http://mailman.mit.edu/mailman/listinfo/panda-users
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/mailman/private/panda-users/attachments/20150415/6d388777/attachment-0001.htm
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Schermata 2015-04-15 alle 17.23.00.png
Type: image/png
Size: 121425 bytes
Desc: not available
Url : http://mailman.mit.edu/mailman/private/panda-users/attachments/20150415/6d388777/attachment-0001.png

More information about the panda-users mailing list