Support ELF core dump creation on guest crash #417
Conversation
dblnz
added
the
kind/enhancement
dblnz
force-pushed
the
gdb-coredump-elfcore
branch
from
d5892ec to
52c3c71
Compare
dblnz
force-pushed
the
gdb-coredump-elfcore
branch
7 times, most recently
from
cc8a48d to
0126ce3
Compare
There was a problem hiding this comment.
Pull Request Overview
This PR adds support for ELF core dump generation on guest crash by introducing crashdump metadata and integrating it into the hypervisor initialization and crashdump context API. Key changes include:
- Introducing the SandboxMetadata structure and propagating a new crashdump parameter across hypervisor modules.
- Implementing a crashdump_context method that gathers register and memory state from various hypervisors.
- Integrating the elfcore dependency and functionality in a new crashdump module.
Reviewed Changes
Copilot reviewed 12 out of 12 changed files in this pull request and generated no comments.
Show a summary per file
| File | Description |
|---|---|
| src/hyperlight_host/src/sandbox/uninitialized_evolve.rs | Passes crashdump metadata to hypervisor handler initialization. |
| src/hyperlight_host/src/sandbox/uninitialized.rs | Introduces SandboxMetadata to support crash dump context. |
| src/hyperlight_host/src/hypervisor/windows_hypervisor_platform.rs | Adds a get_xsave function and crash dump integration. |
| src/hyperlight_host/src/hypervisor/mod.rs | Updates the hypervisor trait to use crashdump_context instead of get_memory_regions. |
| src/hyperlight_host/src/hypervisor/kvm.rs | Implements crashdump_context with register mapping and xsave conversion. |
| src/hyperlight_host/src/hypervisor/inprocess.rs | Marks crashdump_context as unsupported in in-process mode. |
| src/hyperlight_host/src/hypervisor/hyperv_windows.rs | Integrates crashdump_context and replaces the get_memory_regions implementation. |
| src/hyperlight_host/src/hypervisor/hyperv_linux.rs | Adds a crashdump_context implementation with register mapping and xsave handling. |
| src/hyperlight_host/src/hypervisor/crashdump.rs | Implements core dump creation using elfcore and adds custom memory reading. |
| src/hyperlight_host/Cargo.toml | Adds the elfcore dependency for ELF core dump support. |
Comments suppressed due to low confidence (2)
src/hyperlight_host/src/hypervisor/hyperv_windows.rs:535
- Using unwrap() for OsString to String conversion may lead to a runtime panic if the conversion fails; consider handling conversion errors or using to_string_lossy() instead.
Path::new(&path).file_name().map(|name| name.to_os_string().into_string().unwrap()).unwrap()
src/hyperlight_host/src/hypervisor/hyperv_linux.rs:707
- Using unwrap() for converting an OsString to a String here might result in a panic if the conversion fails; consider using a more robust conversion strategy such as to_string_lossy().
Path::new(&path).file_name().map(|name| name.to_os_string().into_string().unwrap()).unwrap()
src/hyperlight_host/Cargo.toml
Outdated
| @@ -46,6 +46,7 @@ tempfile = { version = "3.19", optional = true } | |||
| serde_yaml = "0.9" | |||
| anyhow = "1.0" | |||
| metrics = "0.24.2" | |||
| elfcore = { git = "https://github.com/dblnz/elfcore.git", branch = "split-linux-impl-from-elfcore" } | |||
There was a problem hiding this comment.
This needs to be change after the elfcore PR is merged
dblnz
force-pushed
the
gdb-coredump-elfcore
branch
from
0126ce3 to
51ce291
Compare
There was a problem hiding this comment.
Pull Request Overview
This PR adds support for generating ELF core dump files when a guest crashes. The changes integrate a new crashdump feature across the codebase by introducing a new SandboxMetadata structure, updating various hypervisor implementations with a crashdump_context function, and adding a dedicated crashdump module along with necessary dependency updates.
- Introduces crashdump support via conditional compilation (#[cfg(crashdump)]) and metadata propagation.
- Implements crashdump_context functions in multiple hypervisor modules.
- Adds a new crashdump module and updates Cargo.toml to include the elfcore dependency.
Reviewed Changes
Copilot reviewed 12 out of 12 changed files in this pull request and generated 1 comment.
Show a summary per file
| File | Description |
|---|---|
| src/hyperlight_host/src/sandbox/uninitialized_evolve.rs | Introduces crashdump metadata propagation in sandbox initialization. |
| src/hyperlight_host/src/sandbox/uninitialized.rs | Defines SandboxMetadata and integrates metadata handling in guest binary parsing. |
| src/hyperlight_host/src/hypervisor/windows_hypervisor_platform.rs | Adds a new get_xsave function for crashdump support. |
| src/hyperlight_host/src/hypervisor/kvm.rs | Implements crashdump_context using vCPU register and XSAVE information. |
| src/hyperlight_host/src/hypervisor/inprocess.rs | Marks crashdump_context as unimplemented for in-process mode. |
| src/hyperlight_host/src/hypervisor/hypervisor_handler.rs | Updates hypervisor handler functions to accept crashdump metadata. |
| src/hyperlight_host/src/hypervisor/hyperv_windows.rs | Adds crashdump_context support and propagates metadata in HypervWindowsDriver. |
| src/hyperlight_host/src/hypervisor/hyperv_linux.rs | Implements crashdump_context for HypervLinuxDriver with register extraction and metadata. |
| src/hyperlight_host/src/hypervisor/crashdump.rs | Introduces the crashdump module with GuestView, GuestMemReader, and the core dump generation function. |
| src/hyperlight_host/Cargo.toml | Adds the elfcore dependency needed for ELF core dump creation. |
| println!("Memory dumped to file: {:?}", persist_path); | ||
| log::error!("Memory dumped to file: {:?}", persist_path); | ||
| println!("Core dump created successfully: {}", path_string); | ||
| log::error!("Core dump file: {}", path_string); |
There was a problem hiding this comment.
Logging a successful core dump creation as an error may be misleading. Consider using 'log::info' or 'log::debug' to indicate a normal, successful operation.
| log::error!("Core dump file: {}", path_string); | |
| log::info!("Core dump file: {}", path_string); |
Copilot uses AI. Check for mistakes.
There was a problem hiding this comment.
Looks great. Left some nit comments.
By the way (unrelated to your PR), we should simplify each driver to include only the core VM functionality, (like run, set_reg, get_regs, etc.). Then, we can rely on a dyn Hypervisor to avoid duplicating functionality across different implementations.
dblnz
force-pushed
the
gdb-coredump-elfcore
branch
3 times, most recently
from
4d4b87f to
964a139
Compare
- the core dump file is an ELF file with special segments that describe the guest's memory when it crashed, the CPU register's values and other special notes that tell the debugger how to set up a debugging session starting from the core dump Signed-off-by: Doru Blânzeanu <dblnz@pm.me>
Signed-off-by: Doru Blânzeanu <dblnz@pm.me>
…he sandbox - only store the binary path for now Signed-off-by: Doru Blânzeanu <dblnz@pm.me>
Signed-off-by: Doru Blânzeanu <dblnz@pm.me>
…b and lldb using vscode Signed-off-by: Doru Blânzeanu <dblnz@pm.me>
…e to generics Signed-off-by: Doru Blânzeanu <dblnz@pm.me>
dblnz
force-pushed
the
gdb-coredump-elfcore
branch
from
964a139 to
94a55d1
Compare
| To dump the details of the memory configuration, the virtual processors register state and the contents of the VM memory set the feature `crashdump` and run a debug build. This will result in a dump file being created in the temporary directory. The name and location of the dump file will be printed to the console and logged as an error message. | ||
| ## Dumping the guest state to an ELF core dump | ||
|
|
||
| To dump the state of the vCPU (general purpose registers, registers) to an `ELF` core dump file set the feature `crashdump` and run a debug build. This will result in a dump file being created in the temporary directory. |
There was a problem hiding this comment.
btw what happens if you run in release mode?
There was a problem hiding this comment.
For now, the crashdump feature is gated by the debug build.
There are two scenarios here:
- Run release mode with
crashdumpwhich will only make the guest crash and the guest return an error that the guest panicked (no core dump) - After I remove the
debugonly option forcrashdump, thecore dumpfile is correctly generated in the release mode, but the symbols are scarce (it just shows the function names). I haven't checked, but for release builds the debug symbols might be stripped
There was a problem hiding this comment.
I think that we should add support for release builds, and maybe document the changes needed to the release profile when building the guest to support full symbols (or perhaps even add a profile that does that as an example) The other option (and maybe preferable) would be to set the option to create full debug info but to use split-debug-info on our release builds, we would still need to test this and document it
| To dump the details of the memory configuration, the virtual processors register state and the contents of the VM memory set the feature `crashdump` and run a debug build. This will result in a dump file being created in the temporary directory. The name and location of the dump file will be printed to the console and logged as an error message. | ||
| ## Dumping the guest state to an ELF core dump | ||
|
|
||
| To dump the state of the vCPU (general purpose registers, registers) to an `ELF` core dump file set the feature `crashdump` and run a debug build. This will result in a dump file being created in the temporary directory. |
There was a problem hiding this comment.
Unless I am mistaken this only happens if there is an unexpected VM exit or unhandled exception in the guest not just by turning on the feature?
| ### Inspecting the core dump | ||
|
|
||
| After the core dump has been created, to inspect the state of the guest, load the core dump file using `gdb` or `lldb`. | ||
| A `gdb` version later than `15.0` and `lldb` version later than `17` have been used to test this feature. |
There was a problem hiding this comment.
| A `gdb` version later than `15.0` and `lldb` version later than `17` have been used to test this feature. | |
| **NOTE: This feature has been tested with version `15.0` of `gdb` and version `17` of `lldb` , earlier versions may not work, it is recommended to use these versions or later.** |
| let filename = ctx | ||
| .filename | ||
| .as_ref() | ||
| .map_or_else(|| "<unknown>".to_string(), |s| s.to_string()); |
There was a problem hiding this comment.
| .map_or_else(|| "<unknown>".to_string(), |s| s.to_string()); | |
| .map_or("<unknown>".to_string(), |s| s.to_string()); |
| let cmd = ctx | ||
| .binary | ||
| .as_ref() | ||
| .map_or_else(|| "<unknown>".to_string(), |s| s.to_string()); |
There was a problem hiding this comment.
| .map_or_else(|| "<unknown>".to_string(), |s| s.to_string()); | |
| .map_or("<unknown>".to_string(), |s| s.to_string()); |
Purpose
Description
This depends on PR.
This closes #310