Proceedings of the Institute for System Programming of the RAS
RUS  ENG    JOURNALS   PEOPLE   ORGANISATIONS   CONFERENCES   SEMINARS   VIDEO LIBRARY   PACKAGE AMSBIB  
General information
Latest issue
Archive

Search papers
Search references

RSS
Latest issue
Current issues
Archive issues
What is RSS



Proceedings of ISP RAS:
Year:
Volume:
Issue:
Page:
Find






Personal entry:
Login:
Password:
Save password
Enter
Forgotten password?
Register


Proceedings of the Institute for System Programming of the RAS, 2018, Volume 30, Issue 3, Pages 93–98
DOI: https://doi.org/10.15514/ISPRAS-2018-30(3)-7
(Mi tisp327)
 

This article is cited in 1 scientific paper (total in 1 paper)

Configurable system call tracer in QEMU emulator

A. V. Ivanov, P. M. Dovgaluk, V. A. Makarov

Yaroslav-the-Wise Novgorod State University
Full-text PDF (412 kB) Citations (1)
References:
Abstract: Sometimes programmers face the task of analyzing the work of a compiled program. To do this, there are many different tools for debugging and tracing written programs. One of these tools is the analysis of the application through system calls. With a detailed study of the mechanism of system calls, you can find a lot of nuances that you have to deal with when developing a program analyzer using system calls. This paper discusses the implementation of a tracer that allows you to analyze programs based on system calls. In addition, the paper describes the problems that I had to face in its design and development. Now there are a lot of different operating systems and for each operating system must be developed its own approach to implementing the debugger. The same problem arises with the architecture of the processor, under which the operating system is running. For each architecture, the analyzer must change its behavior and adjust to it. As a solution to this problem, the paper proposes to describe the operating system model, which we analyze. The model description is a configuration file that can be changed depending on the needs of the operating systems. When a system call is detected the plugin collects the information downloaded from the configuration file. In a configuration file, arguments are expressions, so we need to implement a parser that needs to recognize input expressions and calculate their values. After calculating the values of all expressions, the tracer formalizes the collected data and outputs it to the log file.
Keywords: QEMU, configurable system calls, debugging, plugin, system calls, tracing.
Funding agency Grant number
Russian Foundation for Basic Research 18-07-00900
The work was supported by the Russian Foundation of Basic Research (research grant 18-07-00900 А)
Bibliographic databases:
Document Type: Article
Language: English
Citation: A. V. Ivanov, P. M. Dovgaluk, V. A. Makarov, “Configurable system call tracer in QEMU emulator”, Proceedings of ISP RAS, 30:3 (2018), 93–98
Citation in format AMSBIB
\Bibitem{IvaDovMak18}
\by A.~V.~Ivanov, P.~M.~Dovgaluk, V.~A.~Makarov
\paper Configurable system call tracer in QEMU emulator
\jour Proceedings of ISP RAS
\yr 2018
\vol 30
\issue 3
\pages 93--98
\mathnet{http://mi.mathnet.ru/tisp327}
\crossref{https://doi.org/10.15514/ISPRAS-2018-30(3)-7}
\elib{https://elibrary.ru/item.asp?id=35192496}
Linking options:
  • https://www.mathnet.ru/eng/tisp327
  • https://www.mathnet.ru/eng/tisp/v30/i3/p93
  • This publication is cited in the following 1 articles:
    Citing articles in Google Scholar: Russian citations, English citations
    Related articles in Google Scholar: Russian articles, English articles
    Proceedings of the Institute for System Programming of the RAS
    Statistics & downloads:
    Abstract page:161
    Full-text PDF :128
    References:24
     
      Contact us:
     Terms of Use  Registration to the website  Logotypes © Steklov Mathematical Institute RAS, 2024