My Octopress Blog

A blogging framework for hackers.

User Mode Linux Built From Scratch !!!

Linux From Scratch
“Linux From Scratch (LFS) is a project that provides you with step-by-step instructions for building your own custom Linux system, entirely from source code.”
Homepage is : http://www.linuxfromscratch.org/ .

Use Mode Linux
“User-Mode Linux is a safe, secure way of running Linux versions and Linux processes. Run buggy software, experiment with new Linux kernels or distributions, and poke around in the internals of Linux, all without risking your main Linux setup.
User-Mode Linux gives you a virtual machine that may have more hardware and software virtual resources than your actual, physical computer. Disk storage for the virtual machine is entirely contained inside a single file on your physical machine. You can assign your virtual machine only the hardware access you want it to have. With properly limited access, nothing you do on the virtual machine can change or damage your real computer, or its software.”

UML - The kernel on top of a kernel 

To get the complete idea, it is true that the UML kernel can be booted and shutdown from your Linux system, just like another application. It will not cause your Linux system to halt in any way.

How is the required privilege levels setup for the UML kernel?
The privilege levels in a Linux system ranges from 0 (ring 0) to 3 (ring 3). Ring 0 gives you complete power. You can change the contents of any register, do anything. Ring 3 is the user mode. It also has the lowest privilege.

This is the same in the UML kernel too.

Can a C code get privilege level 0?
Yes it can. Through system calls. But it cannot be allowed just like that. Allowing a C code full control will be like allowing viruses to grow in Linux! The C code must be able to make system calls, and simultaneously not be the one who is in possession of the control flow.

This is the specific design technique employed in Linux. When a system call occurs in a C code, there will be a switching from ring 0 to ring 3. It will be simultaneously accompanied with transfer of control from the C program to the Linux kernel. No hassle there.

Thus, total safety is ensured.

How is the UML kernel designed then?
A Linux kernel comprises of two parts:
1) the hardware dependent part - specifically, everything inside the ’arch
                                                    folder in the kernel source code.
2) others

What is done in the UML kernel is that:
1) take away all the hardware dependent part of the kernel.
2) simply replace it with the system calls of the kernel layer below
    it (pure C code).
    (the UML kernel will behave just as an application)

Consider a sample executable binary ‘a.out’ compiled inside the UML kernel, from a sample file ‘a.c’.

Fig 1. The kernel layers

a.out makes a system call
e.g. read( )


replace a.out’s call with the address of
its own read( )










The mechanism:
The UML kernel uses ptrace( ) to freeze ‘a.out’, the moment it invokes a system call. Then, the address of this function call is replaced with a corresponding system call address that is part of the UML kernel itself.

Everything works fine, in a cute way.

Compiling and Booting the UML kernel

While compiling the kernel, just add an extra parameter ’ARCH=um’ to all the steps outlined in the Linux kernel README.
After compilation, an executable binary called ’linux’ will be created.

Assuming ‘linux’ is present in your current directory, to boot into the UML kernel give the command as:
    ./linux ubda=< path of the filesystem >

where filesystem can be a physical partition, or one created with the dd and mkfs/mke2fs commands.

Some Snapshots

‘Make’ing Glibc 
Fig 2. Running ‘make’ for glibc
 ‘Configure’ing Bash
Fig 3. ‘Config’uring Bash
Linguistic Perl 
    The configuration settings for Perl, created by Larry Wall, was the most “linguistic” out of these!  Some excerpts are:



Fig 4. Excerpts from the ‘configure’ settings for Perl5

Man pages


    These had a make install’ with one of the shortest SBU, and looked a bit of a variety too!

Fig 5. ‘make install’ of man pages
Bash without name !
    During the process, there is a time when ‘chroot’ is used to completely move into the LFS installation and start using the programs already setup inside it.  At this point, the Bash will be setup without creating the /etc/passwd file. Now the Bash will say that it has no name !
Fig 6. Bash without /etc/passwd
After the Bash has been recompiled and installed properly with respect to the LFS system, and the /etc/passwd file created, the Bash prompt reverts back to normal.
Fig 7. Bash after recompiling and creating /etc/passwd
Booting in …
Fig 8. Booting into the UML kernel
Powering off …
Fig 9. Powering off the UML kernel