Linked by Thom Holwerda on Fri 23rd May 2008 21:37 UTC, submitted by yourabi
FreeBSD "FreeBSD 7.0 has already been released. If you are a real hacker, the best way to jump in and learn it is hacking together an introductory kernel module. In this article I'll implement a very basic module that prints a message when it is loaded, and another when it is unloaded. I'll also cover the mechanics of compiling our module using standard tools and rebuilding the stock FreeBSD kernel. Let's do it!"
Order by: Score:
Some small notes
by Doc Pain on Fri 23rd May 2008 23:04 UTC
Doc Pain
Member since:

First of all, I'd like to state that the article was interesting to me and it was written in an understandable way. I'm a (nearly) fulltime FreeBSD user, so some minor revisions came into my mind when I read the article. Here they are:

The mentioned command sequence

cd /usr/src/sys/amd64

won't work. The author writes "If you are on an x86 based machine, the kernel is located in the /usr/src/sys/i386 directory. [...] The kernel configuration file is located in a directory called conf." correctly, but misses to add the conf subdirectory to his commands. They should be:

# cd /usr/src/sys/amd64/conf

For the AMD64 arch, /usr/src/sys/amd64/conf would be the correct path.

You can shorten the path, too, because there's a symlink /sys pointing at /usr/src/sys, so /sys/i386/conf is a valid cd parameter.

Side note: The author states that these procedures work fine with the 7.0-RELEASE kernel (stock kernel); be sure to build kernel and world if you updated your sources before, because kernel and world should be the same version (e. g. 7.0-RELEASE-p1).

If you want to read up some more about this topic, don't miss the high quality FreeBSD handbook: - the author mentions this source, too.

An interesting starting point, after all. I'm still thinking about writing a KLD module to read from a Sun type 5 keyboard attached to the serial port... say hello world to /dev/skbd0. :-)

Reply Score: 14

Comment by
by on Sat 24th May 2008 08:59 UTC
Member since:

excellent. now go write about newbus.

Reply Score: 1

syntax error
by hanne on Sat 24th May 2008 15:33 UTC
Member since:

Nice! Code contains a syntax error though

switch event --> switch (event)

Reply Score: 1

A great book
by Espartano on Sat 24th May 2008 16:46 UTC
Member since:

A great book to learn more about this topic is:

Designing BSD Rootkits
An Introduction to Kernel Hacking
by Joseph Kong

April 2007, 142 pp.
ISBN-10 1-59327-142-5
ISBN-13 978-1-59327-142-8

the only problem is that this book is based on FreeBSD 6.x ;)

Reply Score: 2

RE: A great book
by libray on Mon 26th May 2008 14:53 UTC in reply to "A great book"
libray Member since:

Precisely why lkm are turned off on my secure servers.

Reply Score: 2

so good ...
by gnemmi on Mon 26th May 2008 04:06 UTC
Member since:

Why isn't there more articles like this?
An updated version of: The Design and Implementation of the FreeBSD Operating System ?

Interesting readings are so few and far between nowadays .. in the internet times .. when interesting readings should abound ... it's such a shame given all the chances we have now and that other only dreamt of ...

Reply Score: 1

Excellent article!
by obsidian on Mon 26th May 2008 07:30 UTC
Member since:

A very good read!

I was wondering about the exact thing that the article mentioned (how to enable the ULE scheduler in FreeBSD 7.0). Really good to see this article which gives a good description of how to do that (and many thanks to Doc Pain for his revisions too).

Edited 2008-05-26 07:33 UTC

Reply Score: 1