Linux kernel syscall implementation tracker
Project description
Systrack
A tool to analyze Linux kernel images (vmlinux
) and extract information about
implemented syscalls, written in Python 3 with readelf
and addr2line
as the
only external dependencies. Given a vmlinux
image, Systrack can extract
syscall numbers, names, symbol names, definition locations within kernel
sources, function signatures, and more.
Systrack can configure and build kernels for all its supported architectures, and works best at analyzing kernels that it has configured and built by itself.
Limitations
- Old kernel versions: Systrack was mainly designed for and tested on modern kernels (>= v4.0) and has not been tested on older kernels. It should still somewhat work on older kernels, but without the same level of guarantee on the correctness of the output. Support for old kernels may come gradually in the future.
- Relocatable kernel support: Systrack does not currently parse and apply ELF relocations. This means that Systrack does not support kernels using relocation entries for the syscall table. On some architectures (notably MIPS) if the kernel is relocatable the syscall table is relocated at startup and does not contain valid virtual addresses: Systrack will currently fail to analyze such kernels.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
systrack-0.1rc1.tar.gz
(62.4 kB
view hashes)
Built Distribution
Close
Hashes for systrack-0.1rc1-py2.py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 1e9242a0eaeb3c32448ec3bc13205f0076605fce4408d148e209df0eca7e653c |
|
MD5 | 4e776102838025cf52e738a42f09a07f |
|
BLAKE2b-256 | af97b7db1cfadada18f548d7709d20480cc804fbce4910d5cca49f0a062c0f87 |