Linux Kernel Debugging and Security - LFD440

Learn the methods and internal infrastructure of the Linux kernel. This course focuses on the important tools used for debugging and monitoring the kernel, and how security features are implemented and controlled. [4 days]

Course description

This course provides experienced programmers with a solid understanding of the Linux kernel, debugging techniques and tools. This four day course includes extensive hands-on exercises and demonstrations designed to give you the necessary tools to develop and debug Linux kernel code.

Course details

Who should attend?

This course is for those interested in learning how to write Linux kernel code and understand security aspects of the Linux kernel.


Previous knowledge

Knowledge of basic kernel interfaces and methods such as how to write, compile, load and unload modules, use synchronization primitives, and the basics of memory allocation and management, such as is provided by LFD420. Pre-class preparation material will be provided before class, an outline of which is provided in the details below.

Preparation before class

In order to take LFD440 Linux Kernel Debugging and Security, you should have a good working knowledge of basic kernel interfaces and methods such as how to write, compile, load and unload modules, use synchronization primitives, and the basics of memory allocation and management, such as is provided by LFD420. Pre-class preparation material will be provided before class, an outline of which is provided here:
1. Kernel Architecture I
2. Kernel Programming Preview
3. Modules
4. Kernel Architecture II
5. Kernel Configuration and Compilation
6. Kernel Style and General Considerations
7. Race Conditions and Synchronization Methods
8. Memory Addressing
9. Memory Allocation

Course Materials

As part of your registration, a printed copy of the course manual will be provided.

Details
Where
Stockholm
When
17 Dec, 2018
Number of days
4
Price
USD 3150
Where
Stockholm, Bucharest or on-site
When
On request
Number of days
4
Price

Course outline

1. Introduction
2. Preliminaries
3. Kernel Features
4. Monitoring and Debugging
5. The proc Filesystem **
6. kprobes
7. Ftrace
8. Perf
9. Crash
10. Kernel Core Dumps
11. Virtualization**
12. QEMU
13. Linux Kernel Debugging Tools
14. Embedded Linux**
15. Notifiers**
16. CPU Frequency Scaling**
17. Netlink Sockets**
18. Introduction to Linux Kernel Security
19. Linux Security Modules (LSM)
20. SELinux
21. AppArmor
22. Netfilter
23. The Virtual File System
24. Flash Memory Filesystems
25. Filesystems in User-Space (FUSE)**
26. Journaling Filesystems**
** These sections may be considered in part or in whole as optional. They contain either background reference material, specialized topics, or advanced subjects. The instructor may choose to cover or not cover them depending on classroom experience and time constraints.