mirror of
https://github.com/crash-utility/crash
synced 2024-12-11 19:54:34 +00:00
578fc08b82
Support compiling the module against a different kernel version than the currently running one by allowing to set either KVER or KDIR variables on the make commandline. Also modernize the makefile slightly and make use of the kernel's 'clean' target to ensure to remove all generated files. Signed-off-by: Mathias Krause <minipli@grsecurity.net> |
||
|---|---|---|
| .. | ||
| crash.c | ||
| Makefile | ||
| README | ||
For live system analysis, the physical memory source must be one of the following devices: /dev/mem /proc/kcore /dev/crash If the live system kernel was configured with CONFIG_STRICT_DEVMEM or CONFIG_HARDENED_USERCOPY, then /dev/mem cannot be used. If the live system kernel was configured without CONFIG_PROC_KCORE, or if /proc/kcore is non-functional, then /proc/kcore cannot be used. The third alternative is this /dev/crash driver. Presuming that /lib/modules/`uname -r`/build points to a kernel build tree or kernel "devel" package tree, the module can simply be built and installed like so: # make ... # insmod crash.ko Once installed, the /dev/crash driver will be used by default for live system crash sessions.