Linux Kernel Mastery: Design Principles & Case Studies

About Course

Master Linux Kernel Development Through Real-World Bug-Driven Learning

This is not a traditional theory-based kernel course. You’ll learn Linux kernel internals by analyzing, reproducing, and fixing real production bugs from kernel.org bugzilla. Every concept is taught through actual kernel issues, giving you practical skills that directly translate to professional kernel development.

Core Learning Methodology

Bug-Driven Kernel Mastery

Learn kernel subsystems by studying real bugs that affected production systems
Understand why kernel code is designed a certain way by analyzing actual issues
Develop deep intuition for kernel architecture through hands-on bug analysis
Build a portfolio of kernel patches as you progress through the course

Complete Bug Resolution Workflow

For every kernel bug covered, you will:

Analyze – Study the bug report and understand the problem
Explore – Navigate kernel source code to find relevant subsystems
Reproduce – Use provided VM images or build custom reproducers
Instrument – Add logging and tracing to understand execution flow
Fix – Study the upstream patch and understand the solution
Test – Validate the fix in isolated environments
Document – Create visual diagrams and detailed analysis
Contribute – Learn to submit patches following kernel standards

While bugs are continuously added, you’ll gain expertise across major kernel areas:

Core Subsystems

Memory Management (MM subsystem)
Process Scheduling and Task Management
Virtual File System (VFS) and File Systems
Networking Stack (TCP/IP, packet handling)
Block Layer and Storage
Device Drivers and Hardware Interaction
System Calls and Kernel Entry Points
Locking and Synchronization Mechanisms

Fundamental Concepts

User space vs kernel space architecture
Virtual memory and address space management
Interrupt handling and bottom halves
Kernel threading and work queues
Reference counting and object lifecycle
Error handling and resource management
Hardware abstraction and platform support
Boot sequence and initialization

Advanced Topics

Race conditions and concurrency bugs
Memory corruption and use-after-free issues
Performance bottlenecks and optimization
Security vulnerabilities and hardening
Compatibility and regression issues
Cross-architecture considerations
Kernel configuration and build system

Course Content

Linux Kernel Issues List

Linux Kernel Issues List
Bug to start with

Linux Kernel – Analyzing Crash Dump – Ex: 218536
https://bugzilla.kernel.org/show_bug.cgi?id=218536

Case Study 1 – Huge Page

Case Study 2 – OOM Killer
OOM Killer

Case Study 3 – Memory Management Deep Dive

Case Study 4 – Bug 60665 – TCP Backlog Overflow Fix
Bug Details Bugzilla: https://bugzilla.kernel.org/show_bug.cgi?id=60665 Summary: int backlog is assigned to unsigned short sk_max_ack_backlog causing overflow

Case Study 5 – Bug 209949 – swap is not activated
With kernel 5.10 RC 1, swap is not activated, swapon says "file is not commited".

Dmesg : Bug 209949
Bug Analysis
VISUAL ANALYSIS: Swap Activation Bug with Diagrams
Understanding – FILE HOLES, SPARSE FILES, AND SWAP SECURITY
Pressing enter 1000times is not a hole
Why – File size != only what you wrote
WHY ext4 developers migrated to iomap
What is 512-byte or block-sized paradigm ?
UNDERSTANDING: ext4, bmap, and iomap – The Complete Picture
UNDERSTANDING: iomap.type and File Mapping Details
how does that iomap.type field actually get set?
sudo swapon /home/lakshmi/swapfile
logging swap out path – RAM is under pressure & pages get swapped to disk.

Case Study 6 – What is User Space and Kernel Space ? What Actually Makes “User Space “User Space”

User Space, Kernel Space and Main Memory ( RAM )
User vs Kernel Space
User Space vs Kernel Space – 2
Demo
Virtual vs Physical: Linear Split vs Scattered Mapping
Virtual vs Physical: Linear Split vs Scattered Mapping – 2
Where are CPU_Ring and PTE_US_bit Stored?
CPU_Ring and PTE_US_bit – Physical Storage Locations – Visual
Who Sets CPL and U/S Bits?
Who Sets CPL and U/S Bits? – Simple Visual
All Scenarios Where CPL Changes from 3 to 0
All CPL 3→0 Scenarios – Quick Reference
U/S Bit :Lifecycle and Management, When this bit gets set or reset
Real-World Example: U/S Bit Settings for User Process
Why Check U/S Bit When Virtual Address Range Seems Obvious?

Case Study 7 – How does the kernel discover the hardware?

Architecture-Dependent Hardware Discovery in Linux : ACPI, Device Tree, and PCI
The Complete Boot Sequence & Who Calls What.
“ACPI Bus” is a Software Abstraction for Real Hardware
What Is Linux Device Model ? (The Unified Model)
How Devices Connect To Buses
Why Virtual Buses Exist – The Problem They Solve
ACPI Sub-System Architecture – A Virtual Bus – Code
ACPI Initialization Sequence – Bus First, Devices Second, Drivers Third
E820 vs ACPI | What Is E820 and How Is It Linked to ACPI?
ACPI Memory Hotplug (The Exception)
BIOS Creates, Kernel Reads – ACPI Tables
Complete drivers/acpi/ File Breakdown
Actual Hardware Layout
Relationship Between BIOS & The Kernel
E820 alternatives across all major architectures. x86_64, ARM, PowerPC etc
🔌 PCI Self-Discovery : How It Works
ACPI_Spec_6_5_Aug29 PDF

Case Study 8 – Core Memory Management Initialization

Memory (RAM) Initialization Sequence – In 9 Stages
What is DIMM Slot (Dual In-line Memory Module Slot), looped by BIOS code, to find RAM ?
Physical Memory ( RAM ) Changes During 9 Stages of Initialization
Virtual Address Space – Stage 10 in Detail
Page Frame DataBase (struct page) – Stage 9 In Detail
Memblock Allocations During – Stage 4 – 7 in Detail
Compete list of all page flags.
Is All RAM is tracked by struct page after Stage 9
What Is initrd ( initial ramdisk ) Why Do We Need initrd ?
What E820 Map Contains ?
Virtual Memory Setup – Creating Initial Page Table: create_initial_page_tables()
Part2 – Virtual Memory Setup – create_initial_page_tables()
Memblock Design: How It Tracks Allocations
Major Subsystems That Use Memblock
THE COMPLETE MEMORY INITIALIZATION SEQUENCE

Case Study 9 – Memblock Allocator Guide Reference Kernel 5.15.0-rc1

Case Study 10 – PCI Device Discovery in Linux Kernel

Student Ratings & Reviews

No Review Yet

About Course

Master Linux Kernel Development Through Real-World Bug-Driven Learning

Core Learning Methodology

Bug-Driven Kernel Mastery

Complete Bug Resolution Workflow

Core Subsystems

Fundamental Concepts

Advanced Topics

What Will You Learn?

Course Content

Linux Kernel Issues List

Linux Kernel Issues List

Bug to start with

Linux Kernel – Analyzing Crash Dump – Ex: 218536 https://bugzilla.kernel.org/show_bug.cgi?id=218536

Linux Kernel – Tracing Dmesg

Decoding – tcp_rcv_space_adjust+0xbe/0x160

Kernel Stack Trace Debugging

Full Analysis – divide error in tcp_rcv_space_adjust

Case Study 1 – Huge Page

Huge Page Sample – video and text

Hugepages in Linux

Overview of Huge Pages

Case Study 2 – OOM Killer OOM Killer

OOM Killer Internals

Code Changes

Reproducer program

memcg OOM execution

memcg OOM execution – Dmesg

memcg OOM execution – Patch

memcg OOM execution – SYSTEM OOM vs MEMCG OOM – Side by Side Comparison

System wide OOM & memcg oom

Case Study 3 – Memory Management Deep Dive

Types of memory hardware or software handled

Case Study 4 – Bug 60665 – TCP Backlog Overflow Fix Bug Details Bugzilla: https://bugzilla.kernel.org/show_bug.cgi?id=60665 Summary: int backlog is assigned to unsigned short sk_max_ack_backlog causing overflow

Overview – Bug #60665 – TCP Backlog Overflow

Reproducing the Bug

Bug Reproduced – The Smoking Gun Evidence:

Linux Kernel Networking Internals – From Backlog Bug

Quick Reference: Logging Locations for Backlog Bug Study

Hands-On Tutorial: Adding Logs to Study the Backlog Bug

Bug Fix

Sync queue, Accept queue and hash table

Case Study 5 – Bug 209949 – swap is not activated With kernel 5.10 RC 1, swap is not activated, swapon says "file is not commited".

Dmesg : Bug 209949

Bug Analysis

VISUAL ANALYSIS: Swap Activation Bug with Diagrams

Understanding – FILE HOLES, SPARSE FILES, AND SWAP SECURITY

Pressing enter 1000times is not a hole

Why – File size != only what you wrote

WHY ext4 developers migrated to iomap

What is 512-byte or block-sized paradigm ?

UNDERSTANDING: ext4, bmap, and iomap – The Complete Picture

UNDERSTANDING: iomap.type and File Mapping Details

how does that iomap.type field actually get set?

sudo swapon /home/lakshmi/swapfile

logging swap out path – RAM is under pressure & pages get swapped to disk.

Case Study 6 – What is User Space and Kernel Space ? What Actually Makes “User Space “User Space”

User Space, Kernel Space and Main Memory ( RAM )

User vs Kernel Space

User Space vs Kernel Space – 2

Demo

Virtual vs Physical: Linear Split vs Scattered Mapping

Virtual vs Physical: Linear Split vs Scattered Mapping – 2

Where are CPU_Ring and PTE_US_bit Stored?

CPU_Ring and PTE_US_bit – Physical Storage Locations – Visual

Who Sets CPL and U/S Bits?

Who Sets CPL and U/S Bits? – Simple Visual

All Scenarios Where CPL Changes from 3 to 0

All CPL 3→0 Scenarios – Quick Reference

U/S Bit :Lifecycle and Management, When this bit gets set or reset

Real-World Example: U/S Bit Settings for User Process

Why Check U/S Bit When Virtual Address Range Seems Obvious?

Case Study 7 – How does the kernel discover the hardware?

Architecture-Dependent Hardware Discovery in Linux : ACPI, Device Tree, and PCI

The Complete Boot Sequence & Who Calls What.

“ACPI Bus” is a Software Abstraction for Real Hardware

What Is Linux Device Model ? (The Unified Model)

How Devices Connect To Buses

Why Virtual Buses Exist – The Problem They Solve

ACPI Sub-System Architecture – A Virtual Bus – Code

Linux Kernel – Analyzing Crash Dump – Ex: 218536
https://bugzilla.kernel.org/show_bug.cgi?id=218536

Case Study 2 – OOM Killer
OOM Killer

Case Study 4 – Bug 60665 – TCP Backlog Overflow Fix
Bug Details Bugzilla: https://bugzilla.kernel.org/show_bug.cgi?id=60665 Summary: int backlog is assigned to unsigned short sk_max_ack_backlog causing overflow

Case Study 5 – Bug 209949 – swap is not activated
With kernel 5.10 RC 1, swap is not activated, swapon says "file is not commited".