Core dump and setuid-root

Core dump and setuid-root

Post by Simon Pry » Wed, 25 Jun 1997 04:00:00

I am trying to get a setuid-root process to core dump when
calling abort() or receiving "core" signals (Solaris 2.5).

Under Solaris 2.5, man core(4) says:

     A process with an effective user ID different from the
     real user ID will not produce a core image.

This indeed seems to be the case.

If, in the setuid-root program, after I've done all the
necessary "root" functionality, I reset the euid to ruid with:


I still do not get a core dump if I send it a "core" action
signal. Despite "ps" and "/usr/proc/bin/pcred" showing that
euid == ruid.

All the write persmissions in directories & ulimits, etc,
are okay.

A get a core if I remove the "setuid-root" bit and then send
it a "core" signal (eg kill -4 <pid>).

Does anyone know any other "setuid-root" reasons why a core
file is not dumped?



| Alcatel Bell,              phone: +32 3 829 5130            |
| Space Dept. RS31,          fax:   +32 3 829 5502            |
| Berkenrodelei 33,                                           |
| 2660 Hoboken, Belgium.                                      |


1. dump core or not dump core


Some of my programs dump core, others don't. I tried
it on RedHat 6.1 and Mandrake 7.0 with kernels 2.2.14
and 2.2.15. I tried tcsh and bash with coredumpsize
set to 1GB. It seems to be application specific.

Is there any other criteria when suppressing apart from
the type of signal and the size limitation?
The application that doesn't dump core contains signal
handlers for some signals, but not for SEGV or ABRT.



 Dept of Elec. & Comp. Engr.
 University of California       Phone: (805) 893-7788
 Santa Barbara, CA 93106        Fax:   (805) 893-3262

2. Newbie Needs Installation Help.

3. core dumps core dumps everywhere...

4. Adaptec 1515 ?

5. Core dump of setuid program? Howto?

6. random reboots

7. Enabling core dumps for setuid programs

8. Linux Printing

9. setuid program core dumping under solaris2.4

10. configuring dumping of core in setuid programs

11. core dump in setuid process ?

12. Security holes in VGA setuid-root utils

13. setuid-root and rsh?