Human interfaces
Welcome to the first article of the book. The article is named after USB class and Linux facility Human Interface Devices (HID). HID facility in Linux supports keyboard, mouse and other input devices. Console, multimedia (or just media), sound (audio), video, graphics also are in the focus of this article. Security and debugging topics are very related to user and human interactions so are described here too.
| human interfaces |
|---|
| text interfaces |
| security |
| debugging |
| multimedia subsystems |
| human interface devices, input devices |
| HI drivers |
Text interfaces[editΒ | edit source]
Char devices[editΒ | edit source]
A character device file is an sequential access file like interface.
This kind of devices is used in many facilities from keyboard input to default interface for a sophisticated new driver.
You can find a list of registered char devices on the beginning the listing of /proc/devices. Input devices keyboard and mouse are examples of char devices.
Common key function cdev_add id adds a char device to the system.
Tip: Browse the cross-referencing site to explore nearby API and use cases
πΎ Historical: It is one of the most simple, fundamental and oldest concepts derived from UNIX.
β² API:
- dev_t id - device id consists of MAJOR id and MINOR id numbers
- cdev_init id
- cdev_device_add id
- register_chrdev id, unregister_chrdev id
- alloc_chrdev_region id / register_chrdev_region id,
- unregister_chrdev_region id
- uapi/linux/major.h inc
- linux/cdev.h inc
βοΈ Internals:
π References
- Char devices doc
- Character device drivers, linux-kernel-labs
- Character device files, on opensourceforu
πΎ Historical
Text terminals and console[editΒ | edit source]
ποΈ Acronyms:
- tty - πΎ historically TeleTYpewriter, means just terminal
- pty - pseudoterminal
- pts - pseudoterminal slave
- ptmx - pseudoterminal master
β² API:
- To find out current terminal:
- linux/tty.h inc
- register_console id obviously registers console id
- example virtio_console id
- include/linux/console.h src
- man 2 ioctl_console
βοΈ Internals:
π References
πΎ Historical
Security[editΒ | edit source]
The purpose of security is to restrict access across interfaces. One of the most frequently executed functions is may_open id. It rejects access of unauthorized users to open a file. It uses common function inode_permission id which checks for access rights to a given inode.
Authorization[editΒ | edit source]
π§ TODO
β² API:
Basic classic UNIX authorization is based on ownership and access mode.
Ownership is encoded by owning user id uid_t id and owning group id gid_t id.
umode_t id - just typedef used for encoding access mode. S_IRUSR id - minimal "read only by user" access mode. S_IALLUGO id - full access mode. Please read the source for details for other modes.
| modes | bits | Read | Write | Execute |
|---|---|---|---|---|
| bit offset | 2 | 1 | 0 | |
| Other | 0-2 | or | ow | ox |
| Group | 3-5 | gr | gw | gx |
| User | 6-8 | ur | uw | ux |
- man 2 chown βͺ do_fchownat id changes ownership for file or directory
- man 2 chmod βͺ do_fchmodat id changes access mode for file or directory
- man 2 access, man 2 faccessat βͺ do_faccessat id checks access rights
Common authorization errors:
βοΈ Internals:
- may_open id rejects unauthorized file opening
- inode_permission id checks for access rights to a given inode
π References:
Credentials[editΒ | edit source]
π§ TODO
β² API:
- man 1 id, man 1 test - shell utilities
- man 2 getuid βͺ current_uid id
- man 2 getgid
- man 2 geteuid is used by utility man 1 whoami
- Real, effective, and saved user/group IDs:
- man 2 getresuid, getresgid
- man 2 setreuid, setregid
- man 2 setfsuid - set user identity used for filesystem checks
- man 2 umask
- man 1 stat, man 2 stat βͺ vfs_fstat id, vfs_fstatat id
- man 2 statx βͺ do_statx id
- struct cred id - the security context of a task
βοΈ Internals:
- kstat id
- make_kuid id etc
- from_kuid_munged id etc
π References:
- Credentials in Linux doc
- man 7 credentials
- https://www.geeksforgeeks.org/real-effective-and-saved-userid-in-linux/
Cryptography[editΒ | edit source]
π§ TODO
ποΈ Acronyms:
β² API:
- AF_ALG id - User Space Interface doc
- linux/crypto.h inc - Scatterlist Cryptographic API.
- crypto inc
βοΈ Internals:
- crypto src
- drivers/crypto src
- lib/crypto src
- arch/x86/crypto src
- fs/crypto src - per-file encryption
- fs/ecryptfs src eCrypt FS - Encrypted filesystem that operates on the VFS layer.
- dm-crypt, drivers/md/dm-crypt.c src
π References
Namespaces[editΒ | edit source]
Linux namespaces provide the way to make tasks work with different objects using the same id. For example same IPC id may refer to different objects or same pid may refer to different tasks when used in different namespaces.
π§ TODO
β² API:
βοΈ Internals:
- kernel/nsproxy.c src
- fs/proc/namespaces.c src
- net/core/net_namespace.c src
- kernel/time/namespace.c src
π References:
Control Groups[editΒ | edit source]
π§ TODO: cgroups
β² API:
βοΈ Internals:
π References:
Audit[editΒ | edit source]
- kernel/audit.h src
- kernel/audit.c src
- kernel/auditsc.c src
- kernel/audit_tree.c src
- kernel/audit_watch.c src
- kernel/audit_fsnotify.c src
- kernel/auditfilter.c src
π§ TODO:
- man 2 fcntl βͺ do_fcntl id
- man 2 seccomp βͺ do_seccomp id
- man 2 bpf βͺ kernel/bpf/syscall.c src
- man 5 acl posix_acl id
- man 2 add_key βͺ security/keys/keyctl.c src
- chroot, man 2 chroot
- Address space layout randomization
π References:
- Security doc
- Linux Security Modules
- linux/security.h inc βΎ security src
- keys inc
- linux/verification.h inc
- certs src
- security ltp
- cve ltp
- http://kernsec.org/wiki/index.php/Main_Page
- SELinux http://selinuxproject.org/
Debugging[editΒ | edit source]
User space debug interfaces[editΒ | edit source]
β² Interfaces
- man 1 dmesg prints or control the kernel ring buffer
- man 1 strace traces system calls and signals
- man 2 ptrace process trace
- man 2 syslog
- man 3 klogctl
- man 5 core
- /sys/kernel/debug/ - debugfs
- dmesg --console-level <level>
- gdb /usr/src/linux/vmlinux /proc/kcore
- dynamic doc debug
- β¨ Example:
- echo "module atkbd +pfl" | sudo tee /sys/kernel/debug/dynamic_debug/control
βοΈ Internals
π References
- Development tools for the kernel doc
- DebugFS doc
- Kprobe-based Event Tracing doc
- Dynamic debug doc
- Linux Magic System Request Key Hacks doc
- Magic SysRq key
Printing to log[editΒ | edit source]
Most common functions
- pr_devel id- conditional debug-level message
- pr_debug id- conditional debug-level or dynamic doc message
- β¨ Example:
- echo "module atkbd +pfl" | sudo tee /sys/kernel/debug/dynamic_debug/control
- Message logging with printk doc
- Log messages with other levels:
π§ TODO. π advanced features
- pr_cont id- continues a previous log message in the same line
- print_hex_dump_bytes id
- print_hex_dump_debug id
- linux/printk.h inc
- dump_stack id
βοΈ Internals
- printk id
- kernel/printk/printk.c src
- arch/x86/kernel/traps.c src
- lib/dump_stack.c src
- kernel/trace src
- scripts/tracing/draw_functrace.py src
kgdb and kdb[editΒ | edit source]
β² Interfaces
βοΈ Internals
π References
π References for debugging
- Linux Tracing Technologies doc
- Function Tracer Design doc
- Tracepoint Analysis doc
- Function Tracer doc
- Using ftrace to hook to functions doc
- Kprobes doc
- Kprobe-based Event Tracing doc
- Uprobe-tracer: Uprobe-based Event Tracing doc
- Using the Linux Kernel Tracepoints doc
- Event Tracing doc
- Subsystem Trace Points: kmem doc
- Subsystem Trace Points: power doc
- NMI Trace Events doc
- In-kernel memory-mapped I/O tracing doc
- Event Histograms doc
- Histogram Design Notes doc
- Boot-time tracing doc
- Hardware Latency Detector doc
- Intel(R) Trace Hub (TH) doc
- Lockless Ring Buffer Design doc
- System Trace Module doc
- CoreSight - ARM Hardware Trace doc
- Fault injection doc
- Bisecting a bug doc
- samples/ftrace src
- samples/trace_events src
- samples/trace_printk src
- Development tools for the kernel doc
- linux/tracepoint.h inc
- logging ltp, tracing ltp
- Debugging by printing
- https://wiki.ubuntu.com/Kernel/Debugging
Multimedia subsystems[editΒ | edit source]
Graphics[editΒ | edit source]
Old graphics (not to be confused with v4l):
β² API:
βοΈ Internals:
Direct Rendering Manager (DRM)[editΒ | edit source]
DRM is responsible for interfacing with GPUs of modern video cards. DRM exposes an API that user-space programs can use to send commands and data to the GPU and perform operations such as configuring the mode setting of the display. User-space programs can use the DRM API to command the GPU to do hardware-accelerated 3D rendering and video decoding, as well as GPGPU computing.
β² API:
- /sys/class/drm/
- drm inc
- uapi/drm inc
- drm_dev_register id registers drm_device id
Advanced Linux Sound Architecture (ALSA)[editΒ | edit source]
ALSA is a software framework and part of the Linux kernel that provides an API for sound card device drivers. Some of the goals of the ALSA project at its inception were automatic configuration of sound-card hardware and graceful handling of multiple sound devices in a system.
The sound servers PulseAudio, JACK (low-latency professional-grade audio editing and mixing) and PipeWire, the higher-level abstraction APIs OpenAL, SDL audio, etc. work on top of ALSA and implemented sound card device drivers. On Linux systems, ALSA succeeded the older Open Sound System (OSS).
β² API:
- /proc/asound/cards, /sys/class/sound/
- snd_card id - central struct
- snd_card_new id
- snd_card_register id
- snd_device_ops id
- snd_device_new id creates an ALSA device component
- uapi/sound/asound.h inc
- sound/core.h inc
βοΈ Internals:
π References:
Video4Linux (V4L2)[editΒ | edit source]
V4L is a collection of device drivers and an API for supporting realtime video capture on Linux systems. It supports many USB webcams, TV tuners, and related devices, standardizing their output, so programmers can easily add video support to their applications. MythTV, tvtime and Tvheadend are typical applications that use the V4L framework.
β² API:
- v4l2_device_register id registers v4l2_device id
- video_register_device id registers video_device id
- examples drivers/media/test-drivers src
π References
HID[editΒ | edit source]
Generic human interface devices. Don't confuse with hiddev.
Input devices[editΒ | edit source]
Input device files are kind of char devices with id INPUT_MAJOR id. Classic input devices are keyboard and mouse.
β² API:
- In shell: cat /proc/bus/input/devices
- linux/input.h inc
- devm_input_allocate_device id, input_register_device id input_dev id
- input_report_key id input_sync id
π Examples:
β¨ Hands on:
sudo hexdump /dev/input/mice # dump your mouse movements events from your kernel
βοΈ Internals:
π References
HID devices[editΒ | edit source]
π§ TODO
β² API:
- hid_device id - device report descriptor. Operations: hid_allocate_device id, hid_add_device id . π Example usbhid_probe id
- uapi/linux/hid.h inc
- linux/hid.h inc
Camera[editΒ | edit source]
π§ TODO
β² API:
π References
HI device drivers[editΒ | edit source]
This section is about low level drivers to human interface peripheral devices.
β² HID API:
βοΈ Internals
- hid_bus_type id
- drivers/hid src
- drivers/hid/hid-core.c src
- drivers/accessibility src
- drivers/leds src
- samples/uhid/uhid-example.c src example of user mode HID driver
- drivers/input src : keyboard & mouse, misc, serio, tablet, touchscreen, gameport, joystick
- β¨ Hands on:
- echo "module atkbd +pfl" | sudo tee /sys/kernel/debug/dynamic_debug/control
USB HID
β² HID API:
βοΈ Internals:
π References
Graphics[editΒ | edit source]
π§ TODO
ποΈ Acronyms:
- FB - Framebuffer
- GPU - Graphics processing unit
- TFT (LCD) - Thin-film-transistor liquid-crystal display used for π€ embedded devices
- MIPI - π± Mobile Industry Processor Interface
- DBI - Display Bus Interface
- DSI - Display Serial Interface
- DCS - The Display Command Set
β² API:
- cat /proc/fb
- ls -l /sys/class/graphics
- linux/fb.h inc
- register_framebuffer id
- FBTFT_REGISTER_DRIVER id
- fbtft_display id
βοΈ Internals
π Examples:
π References:
Sound SoC - ASoC[editΒ | edit source]
ALSA System on Chip (ASoC) layer for or π€ embedded systems.
β² API:
- sound/soc.h inc
- snd_soc_card id
- is registered by devm_snd_soc_register_card id βΎ snd_soc_register_card id
- snd_soc_card id
βοΈ Internals:
π References:
- ASoC - ALSA SoC Layer doc
- ποΈ Acronyms SAI could be
- STM Serial Audio Interface: sound/soc/stm/stm32_sai.h src
- Freescale (FSL) Synchronous Audio Interface: sound/soc/fsl/fsl_sai.h src
βοΈ Internals: