get backtrace of KVM VM from host

public inbox for elfutils@sourceware.org
 help / color / mirror / Atom feed

* get backtrace of KVM VM from host
@ 2018-05-21  8:27 Justin Cinkelj
  2018-05-22 14:05 ` Mark Wielaard
  0 siblings, 1 reply; 3+ messages in thread
From: Justin Cinkelj @ 2018-05-21  8:27 UTC (permalink / raw)
  To: elfutils-devel

(crossposting from KVM maillist)

Hi

Is it possible to get stack backtrace into KVM VM from the host side? So 
if I run './stack -p PID' (stack from elfutilfs 
https://sourceware.org/elfutils/), I get backtrace of some process. I 
would like to do the same for VM. I can assume VM will run only a kernel 
(a unikernel, like OSv or IncludeOS), so most/all debug symbols will be 
there in a single file, and at least IncludeOS doesnt load any code 
beside its own kernel.

I did notice KVM_GET_REGS and KVM_SET_MEMORY_REGION, and at least for 
trivial examples (like https://github.com/dpw/kvm-hello-world) this 
provides enough information to track which code was loaded into VM, 
observe current stack content and registers. I can only guess much more 
work is required to get similar result with qemu-kvm. Hence I'm asking 
if this is already implemented.

Thank you,
Justin

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: get backtrace of KVM VM from host
  2018-05-21  8:27 get backtrace of KVM VM from host Justin Cinkelj
@ 2018-05-22 14:05 ` Mark Wielaard
  2018-05-22 15:07   ` Justin Cinkelj
  0 siblings, 1 reply; 3+ messages in thread
From: Mark Wielaard @ 2018-05-22 14:05 UTC (permalink / raw)
  To: Justin Cinkelj, elfutils-devel

Hi,

On Mon, 2018-05-21 at 10:26 +0200, Justin Cinkelj wrote:
> Is it possible to get stack backtrace into KVM VM from the host side?
> So 
> if I run './stack -p PID' (stack from elfutilfs 
> https://sourceware.org/elfutils/), I get backtrace of some process. I 
> would like to do the same for VM. I can assume VM will run only a kernel 
> (a unikernel, like OSv or IncludeOS), so most/all debug symbols will be 
> there in a single file, and at least IncludeOS doesnt load any code 
> beside its own kernel.
> 
> I did notice KVM_GET_REGS and KVM_SET_MEMORY_REGION, and at least for 
> > trivial examples (like https://github.com/dpw/kvm-hello-world) this 
> provides enough information to track which code was loaded into VM, 
> observe current stack content and registers. I can only guess much more 
> work is required to get similar result with qemu-kvm. Hence I'm asking 
> if this is already implemented.

Providing the registers and memory view inside the KVM VM would be the
first step. elfutils would also need to know the memory/ELF process
layout. For a normal process that would come from e.g. /proc/pid/maps.
Using such a layout eu-stack would then be able to find the unwind
tables and symbols associated with a particular address.

I believe qemu already has an gdb stub that gdb can use to get at the
registers, memory and process layout. Maybe you could adapt that
provide the information needed.

Cheers,

Mark

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: get backtrace of KVM VM from host
  2018-05-22 14:05 ` Mark Wielaard
@ 2018-05-22 15:07   ` Justin Cinkelj
  0 siblings, 0 replies; 3+ messages in thread
From: Justin Cinkelj @ 2018-05-22 15:07 UTC (permalink / raw)
  To: Mark Wielaard, elfutils-devel

Something like that was suggested at KVM devel list too. I was able to 
get an useful backtrace for a trivial VM (a single ELF file, VM code 
runs directly from (virtual) physical memory). Well, that was more to 
learn a bit about elfutils than anything else. A more realistic VM will 
be more difficult, I guess.

Justin

On 05/22/2018 04:04 PM, Mark Wielaard wrote:
> Hi,
>
> On Mon, 2018-05-21 at 10:26 +0200, Justin Cinkelj wrote:
>> Is it possible to get stack backtrace into KVM VM from the host side?
>> So
>> if I run './stack -p PID' (stack from elfutilfs
>> https://sourceware.org/elfutils/), I get backtrace of some process. I
>> would like to do the same for VM. I can assume VM will run only a kernel
>> (a unikernel, like OSv or IncludeOS), so most/all debug symbols will be
>> there in a single file, and at least IncludeOS doesnt load any code
>> beside its own kernel.
>>
>> I did notice KVM_GET_REGS and KVM_SET_MEMORY_REGION, and at least for
>>> trivial examples (like https://github.com/dpw/kvm-hello-world) this
>> provides enough information to track which code was loaded into VM,
>> observe current stack content and registers. I can only guess much more
>> work is required to get similar result with qemu-kvm. Hence I'm asking
>> if this is already implemented.
> Providing the registers and memory view inside the KVM VM would be the
> first step. elfutils would also need to know the memory/ELF process
> layout. For a normal process that would come from e.g. /proc/pid/maps.
> Using such a layout eu-stack would then be able to find the unwind
> tables and symbols associated with a particular address.
>
> I believe qemu already has an gdb stub that gdb can use to get at the
> registers, memory and process layout. Maybe you could adapt that
> provide the information needed.
>
> Cheers,
>
> Mark

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2018-05-22 15:07 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2018-05-21  8:27 get backtrace of KVM VM from host Justin Cinkelj
2018-05-22 14:05 ` Mark Wielaard
2018-05-22 15:07   ` Justin Cinkelj

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).