Linux Kernel

Table of Contents

• Linux Kernel

  • System Calls

  • Capabilities

  • Modules

    • Configuration

  • Schedulers

    • Processor

    • I/O

  • Initial RAM File System

    • Arch Linux

    • RHEL

  • Build

  • Install

    • Debian

  • Troubleshooting

    • Errors Messages

  • History

  • Bibliography

Linux is a kernel designed to be similar to the original UNIX kernel. It is a modern, free, and open source alternative that was originally created by Linus Torvalds. It is built to work on many processor architectures. “Linux” is sometimes used to generally describe the many operating systems that use the Linux kernel. [1] In the context of this Root Pages guide, the focus is on the actual kernel.

Each kernel new kernel in development normally goes through 7 to 9 weeks of release candidates before it is marked as stable. [12] At some point after the Linux git repository has added more than 2 million git objects, the major version number is increased. [13] The latest kernels can be found here.

The types of Linux kernel releases include:

• mainline = The latest development release that is working towards a stable release.

• stable = The current stable release.

• longterm = Long-term supported kernels are older versions that primarily only receive bug fixes.

• linux-next = Daily unstable development releases from the “master” git branch.

System Calls

Programs use system calls to interact with the kernel to do tasks.

Common system calls:

Call	Type	Description
accept	Network	Accept an incoming network connection.
bind	Network	Associate a network socket to a specific IP address.
chdir	Process	Change to a different working directory.
chmod	File	Change the mode permissions.
chown	File	Change the owner permissions.
chroot	Process	Change the working root directory.
close	File	Close a file.
connect	Network	Make an external network connection.
exec	Process	Execute/start a program.
exit	Process	End a process.
fork	Process	Spawn a new process.
getgid	Process	Find the group ID.
getuid	Process	Find the user ID.
kill	Process	Send a signal to a process.
link	File	Create a shortcut that mirrors an existing inode (a hard link).
mkdir	File	Create a directory.
mknod	File	Create a file (node).
mount	File	Mount a file system onto a directory.
nice	Process	Modify the priority of a process.
open	File	Open a file.
pause	Process	Temporarily stop a process from running until a signal is given to continue.
pipe	Process	Stream output data from one process to another.
read	File	Read data from a file.
setgid	Process	Change a process’ group ID.
setpriority	Process	Change a process’ kernel scheduling priority.
setuid	Process	Change a process’ user ID.
socket	File/Network/Process	Create a socket that can listen for requests. This can be a UNIX file socket, network port, or a special process.
symlink	File	Create a shortcut that redirects to another file (a symbolic link).
sync	File	Flush data from memory to the disk.
stat	File	View a file’s metadata.
time	Process	A count of seconds since 1970-01-01.
ulimit	Process	View and modify user process limits.
unlink	File	Delete a directory.
umask	File	View and modify the default permissions of files and directories.
wait	Process	Wait for a child process to end.
write	File	Write data to a file.

[2]

Capabilities

The root user with the user ID of 0 has access to all capabilities exposed by the Linux kernel. All other users are considered unprivileged and do not have access to any of the capabilities. Each capability allows certain system calls and other specific actions. Unprivileged users can be run binaries that a root user enables specific privileged capabilities on.

Common capabilities in the Linux kernel:

Capability	Description	System Calls
CAP_CHOWN	Change ownership of files and directories.	chown
CAP_KILL	Kill any process.	ioctl, kill
CAP_NET_ADMIN	Access to all networking functions.	setsockopt
CAP_NET_BIND_SERVICE	Bind to a port below 1024.	(None)
CAP_SYS_ADMIN	Provide a process most of the privileged capabilities.	accept, bdflush, clone, execve, fanotify_init, ioctl, ioprio_set, keyctl, lookup_dcookie, madvise, mount, nfsservctl, open, pipe, pivot_root, ptrace, quotactl, random, sched, seccomp, setdomainname, sethostname, setns, swapoff, swapon, syslog, umount, unshare, xattr
CAP_SYS_CHROOT	Change the root directory and namespace.	chroot, nets
CAP_SYS_NICE	Change the priority of a process.	ioprio_set, mbind, migrate_pages, move_pages, nice, sched_setattr, sched_setparam, sched_setscheduler, setpriority
CAP_SYS_RESOURCE	Change resource limits and quotas.	fcntl, ioctl, mq_overview, msgop, msgctl, prctl, setrlimit, unix
CAP_SYS_TIME	Change the system time.	adjtimex, settimeofday, stime

[17]

Modules

The kernel is composed of a large number of modules. These can be found here:

/lib/modules/<KERNEL_VERSION>/

View all of the loaded modules:

$ sudo lsmod

Custom modules can be compiled for a specific kernel and copied in their respective driver directory. A few common drivers types are “iscsi”, “net/ethernet”, “net/wireless”, “usb”, “pci”, “video”, etc.

/lib/modules/<KERNEL_VERSION>/kernel/drivers/<DRIVER_TYPE>/

After copying over the necessary *.ko file(s) for custom modules, load

$ sudo depmod <MODULE>

If there are a large number of new modules, it is possible to make sure all module dependencies are installed.

$ sudo depmod --all

Modules can be temporarily loaded:

$ sudo modprobe <MODULE>

Or permanently add the module to a file with the extension “.conf” in the modules load directory.

Files: /etc/modules-load.d/*.conf

Modules can be deactivated by running one of these two commands:

$ sudo rmmod <MODULE>

$ sudo modprobe -r <MODULE>

Modules can also be blocked from starting on boot:

File: /etc/modprobe.d/blacklist.conf

blacklist <MODULE>

[3]

Configuration

Options

View all of the available options for a kernel module [15]:

$ modinfo --parameters <KERNEL_MODULE> # Method 1
$ ls -1 /sys/module/<KERNEL_MODULE>/parameters/ # Method 2

Temporarily set module parameters:

$ sudo modprobe -r <KERNEL_MODULE>
$ sudo modprobe <KERNEL_MODULE> <PARAMETER>=<VALUE>

There are two ways to permanently set options: (1) modprobe configuration or (2) GRUB configuration.

1. modprobe:

   $ sudo vim /etc/modprobe.d/<MODPROBE_FILENAME>.conf
   options <KERNEL_MODULE> <PARAMETER>=<VALUE>
   

2. GRUB:

   $ vim /etc/default/grub
   GRUB_CMDLINE_LINUX="<PARAMETER>=<VALUE>"
   $ sudo grub-mkconfig -o /boot/grub/grub.cfg
   

Alias

Create a short and/or memorable alias name for the kernel module:

$ sudo vim /etc/modprobe.d/<MODPROBE_FILENAME>.conf
alias <ALIAS> <KERNEL_MODULE>

[16]

Schedulers

Processor

The Linux kernel can handling incoming requests differently depending on the scheduler method. By default, all processes use the Completely Fair Scheduler (CFS) that tries to handle all incoming tasks equally. It is only technically possible to change the default scheduler by modifying the Linux kernel’s source code and then recompiling the kernel. [5] There are 5 different kernel scheduling policies that can be set to processes manually. These are set by using the chrt command.

• SCHED_BATCH = Batch handles CPU-intensive tasks with real time priority.

• SCHED_FIFO (first-in first-out) = Handles each task that is requested, in order.

• SCHED_IDLE = Tasks will only be processed when the processor is mostly idle.

• SCHED_OTHER (CFS) = All tasks are treated equally and are handled with the same amount of priority.

• SCHED_RR (round robin) = This is similar to SCHED_BATCH except that tasks are handled for a short amount of time before moving onto a different task to handle.

The relevant sysctl parameters can be adjusted for system-wide scheduling settings are:

$ sudo sysctl -a | grep "sched_"
kernel.sched_autogroup_enabled = 0
kernel.sched_cfs_bandwidth_slice_us = 5000
kernel.sched_child_runs_first = 0
kernel.sched_latency_ns = 6000000
kernel.sched_migration_cost_ns = 500000
kernel.sched_min_granularity_ns = 10000000
kernel.sched_nr_migrate = 32
kernel.sched_rr_timeslice_ms = 100
kernel.sched_rt_period_us = 1000000
kernel.sched_rt_runtime_us = 950000
kernel.sched_schedstats = 0
kernel.sched_shares_window_ns = 10000000
kernel.sched_time_avg_ms = 1000
kernel.sched_tunable_scaling = 1
kernel.sched_wakeup_granularity_ns = 15000000

[4]

I/O

The kernel provides many input/output (I/O) schedulers to configure how a hard drive handles a queue of read/write requests from the operating system. Different schedulers can be used to adjust performance based on the hardware and/or software requirements.

• Deadline = Large I/O requests are done in high-priority sectors until smaller I/O requests are about to time out. Then Deadline takes care of the small tasks before continuing with the original large I/O task. This is ideal for heavy read/write applications on a spinning disk drive.

• CFQ (Completely Fair Queueing) = All I/O requests are treated equally and are handled in the order that they are received. [6]

• NOOP (No Operation) = Only basic merging of read and/or write requests and no rescheduling. This is ideal for virtual drives (such as QCOW2) where the hypervisor node handles the I/O scheduling [7] and physical flash based media or RAID cards with write-back cache where the hardware’s firmware takes care of the sorting. [6]

Temporarily change the scheduler to one of the three options:

$ sudo echo {deadline|cfg|noop} > /sys/block/<DEVICE>/queue/scheduler

Permanently change the scheduler by appending the existing GRUB_CMDLINE_LINUX kernel arguments:

$ sudo vim /etc/default/grub
GRUB_CMDLINE_LINUX="elevator={deadline|cfg|noop}"
$ sudo grub-mkconfig -o /boot/grub/grub.cfg

[7]

Initial RAM File System

The initramfs (initial RAM file system) is used to boot up a system before loading the full Linux kernel. It is the successor to the initrd (initial RAM disk). A boot loader, such as GRUB, loads the initramfs first. This usually contains a minimum copy of the kernel and drivers required to boot up the system. Once the boot initialization is complete, the initramfs continues to load all of the available kernel modules. [8][9]

Arch Linux

All modifications of the initramfs in Arch Linux are handled by the “mkinitcpio” utility.

File: /etc/mkinitcpio.conf

• MODULES = A list of kernel modules to compile in.

• FILES = A list of files that should be included in the initramfs.

• BINARIES = A list of binaries that should be included to use in the initramfs environment. This is useful for having more recovery utilities. The “mkinitcpio” program will automatically detect the binary’s dependencies and add them to the initramfs image.

• HOOKS = Custom hooks for compiling in certain software packages.

  • Common hooks:

    • btrfs = BtrFS RAID.

    • net = Add networking.

    • mdadm = mdadm software RAID modules.

    • fsck = FSCK utilities for available operating systems.

    • encrypt = LUKS encryption modules.

    • lvm2 = Logical volume manager (LVM) modules.

    • shutdown = Allows the initramfs to properly shutdown.

Create a new initramfs.

$ sudo mkinitcpio

[10]

RHEL

On Red Hat Enterprise Linux (RHEL) based operating systems (such as RHEL itself, CentOS, and Fedora), Dracut is used to manage the initramfs.

File: /etc/dracut.conf

• add_drivers+= A list of kernel modules to compile in.

• install_items+= A list of files to compile in.

• add_dracutmodules+= A list of Dracut modules to compile.

[11]

Build

• Install the build dependencies for the Linux kernel:

  • Debian:

    $ sudo apt-get install bc build-essential cpio dwarves findutils flex git kmod libelf-dev libncurses5-dev libssl-dev linux-source rsync
    

  • Fedora:

    $ sudo dnf install bc bison diffutils elfutils-libelf-devel findutils flex git gcc make openssl-devel rpm-build rsync
    

• Download the Linux kernel source code:

  • Using the newest kernels from here.

  • Or using any kernel version from here.

  • Or from the stable kernel git repository:

    • Using a specific version tag:

      $ git clone https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ --depth=1 --branch v<VERSION_MAJOR>.<VERSION_MINOR>.<VERSION_PATCH>
      

    • Using a specific version branch:

      $ git clone https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/ --depth=1 --branch linux-<VERSION_MAJOR>.<VERSION_MINOR>.y
      

• Add the kernel headers to the system to help with building DKMS modules in the future. The “linux” folder will need to later be renamed to reflect the output of uname -r of the installed kernel.

  • Arch Linux:

    $ sudo cp -r ./linux* /usr/lib/modules/
    

  • Debian:

    $ sudo cp -r ./linux* /usr/src/
    

  • Fedora:

    $ sudo cp -r ./linux* /usr/src/kernels/
    

• Create the .config file in the top-level of the kernel directory. It defines what features will be built for the Linux kernel.

  • Use a default configuration:

    $ cd ./linux/
    $ make defconfig
    

• Build the Linux kernel:

  • Generic:

    $ make -j $(nproc)
    

  • DEB (Debian) packages:

    $ make -j $(nproc) bindeb-pkg
    

  • RPM (Fedora) packages:

    $ make -j $(nproc) binrpm-pkg
    

• Install the Linux kernel:

  • Generic:

    $ sudo make install
    $ sudo make modules_install
    

  • DEB (Debian) packages:

    $ sudo dpkg -i ../linux-*.deb
    

  • RPM (Fedora) packages:

    $ sudo rpm -iU ~/rpmbuild/RPMS/x86_64/kernel-*.rpm
    

[18][19]

Install

Debian

The latest Linux kernels for both Debian and Ubuntu are provided by the Ubuntu project.

• These are the required DEB packages that need to be downloaded and installed:

  • linux-headers (all) = The full Linux kernel source code.

  • linux-headers (generic) = The source code specific to a CPU architecture.

  • linux-image-unsigned = The Linux kernel image.

  • linux-modules = Additional/useful Linux kernel modules.

• Find the desired Linux kernel version from here. Set these variables based on the built packages. This example is for Linux 5.10.0.

  $ export KERNEL_VERSION_SHORT="5.10"
  $ export KERNEL_VERSION_FULL="5.10.0-051000"
  $ export KERNEL_DATE="202012132330"
  $ export KERNEL_ARCHITECTURE="amd64" # Or use "arm64" or "ppc64el".
  

• Download the required packages.

  $ curl -LO https://kernel.ubuntu.com/~kernel-ppa/mainline/v${KERNEL_VERSION_SHORT}/amd64/linux-image-unsigned-${KERNEL_VERSION_FULL}-generic_${KERNEL_VERSION_FULL}.${KERNEL_DATE}_${KERNEL_ARCHITECTURE}.deb
  $ curl -LO https://kernel.ubuntu.com/~kernel-ppa/mainline/v${KERNEL_VESION_SHORT}/amd64/linux-modules-${KERNEL_VERSION_FULL}-generic_${KERNEL_VERSION_FULL}.${KERNEL_DATE}_${KERNEL_ARCHITECTURE}.deb
  $ curl -LO https://kernel.ubuntu.com/~kernel-ppa/mainline/v${KERNEL_VERSION_SHORT}/amd64/linux-headers-${KERNEL_VERSION_FULL}-generic_${KERNEL_VERSION_FULL}.${KERNEL_DATE}_${KERNEL_ARCHITECTURE}.deb
  $ curl -LO https://kernel.ubuntu.com/~kernel-ppa/mainline/v${KERNEL_VERSION_SHORT}/amd64/linux-headers-${KERNEL_VERSION_FULL}_${KERNEL_VERSION_FULL}.${KERNEL_DATE}_all.deb
  

• Install the packages.

  $ sudo dpkg -i ./*.deb
  

[14]

Troubleshooting

Errors Messages

Compiling

This is a list of common errors and warnings that make occur while building a kernel and how to resolve them.

• .config:<LINE_NUMBER>:warning: symbol value '<SYMBOL_VALUE>' invalid for <CONFIG_OPTION> = The symbol (y, n, or m) is invalid. Use a different symbol.

• .config:<LINE_NUMBER>:warning: override: reassigning to symbol <CONFIG_OPTION> = A configuration option is listed more than once. Remove the duplicates.

History

• Latest

• < 2021.10.01

• < 2019.01.01

• < 2018.01.01

Bibliography

1. “About Linux Kernel.” The Linux Kernel Archives. April 23, 2017. Accessed July 9, 2016. https://www.kernel.org/linux.html

2. “UNIX System Calls.” University of Miami’s Department of Computer Science. August 22, 2016. Accessed July 1, 2017. http://www.cs.miami.edu/home/wuchtys/CSC322-17S/Content/UNIXProgramming/UNIXSystemCalls.shtml

3. “Kernel modules.” The Arch Linux Wiki. August 8, 2016. Accessed November 19, 2016. https://wiki.archlinux.org/index.php/Kernel_modules

4. “Tuning the Task Scheduler.” openSUSE Documentation. December 15, 2016. Accessed July 9, 2017. https://doc.opensuse.org/documentation/leap/tuning/html/book.sle.tuning/cha.tuning.taskscheduler.html

5. “Change Linux CPU default scheduler.” A else B. January 6, 2016. Accessed July 9, 2017. https://aelseb.wordpress.com/2016/01/06/change-linux-cpu-default-scheduler/

6. Linux System Programming. (Love: O’Reilly Media, Inc., 2007).

7. “What is the suggested I/O scheduler to improve disk performance when using Red Hat Enterprise Linux with virtualization?” Red Hat Knowledgebase. December 16, 2016. Accessed December 18, 2016. https://access.redhat.com/solutions/5427

8. ‘The Kernel Newbie Corner: “initrd” and “initramfs”–What’s Up With That?’ Linux.com September 30, 2009. Accessed November 19, 2016. https://www.linux.com/learn/kernel-newbie-corner-initrd-and-initramfs-whats

9. “ramfs, rootfs and initramfs.” The Linux Kernel Documentation. May 29, 2015. Accessed November 19, 2016. https://www.kernel.org/doc/Documentation/filesystems/ramfs-rootfs-initramfs.txt

10. “mkinitcpio.” The Arch Linux Wiki. November 13, 2016. Accessed November 19, 2016. https://wiki.archlinux.org/index.php/mkinitcpio

11. “Dracut.” The Linux Kernel Archives. October, 2013. Accessed November 19, 2016. https://www.kernel.org/pub/linux/utils/boot/dracut/dracut.html

12. “Which Linux Kernel Version Is ‘Stable’?” Linux.com. February 3, 2018. Accessed September 25, 2018. https://www.linux.com/blog/learn/2018/2/which-linux-kernel-version-stable

13. “Linux Kernel 5.0 to Be Released When We Hit 6M Git Objects, Says Linus Torvalds.” Softpedia News. October 9, 2016. Accessed September 25, 2018. https://news.softpedia.com/news/linux-kernel-5-0-to-be-released-when-we-hit-6m-git-objects-says-linus-torvalds-509108.shtml

14. “How to install Linux 5.8 Kernel on Ubuntu 20.04 LTS.” Linux Shout. August 5, 2020. Accessed December 13, 2020. https://www.how2shout.com/linux/install-linux-5-8-kernel-on-ubuntu-20-04-lts/

15. “How can I know/list available options for kernel modules?” Ask Ubuntu. December 13, 2017. Accessed January 21, 2021. https://askubuntu.com/questions/59135/how-can-i-know-list-available-options-for-kernel-modules

16. “Kernel module.” Arch Wiki. October 14, 2020. Accessed January 21, 2021. https://wiki.archlinux.org/index.php/Kernel_module

17. “capabilities (7).” Linux manual page. June 20, 2021. Accessed August 2, 2021. https://man7.org/linux/man-pages/man7/capabilities.7.html

18. “BuildADebianKernelPackage.” Debian Wiki. December 1, 2021. Accessed January 10, 2022. https://wiki.debian.org/BuildADebianKernelPackage

19. “How to compile vanilla Linux kernel from source on Fedora.” LinuxConfig.org. May 30, 2019. Accessed January 10, 2022. https://linuxconfig.org/how-to-compile-vanilla-linux-kernel-from-source-on-fedora