Re: fuzzing xinetd services

From: Richard Moore (rich@westpoint.ltd.uk)
Date: Wed Dec 01 2004 - 10:57:28 EST


A bit tricky, but you could perhaps send an abort signal to the process
with kill if timing considerations allowed it. It should be noted though
that any application can choose not to dump core by changing the signal
handlers for signals like SEGV or SIGILL to SIGIGN. eg. We do this in
KDE in order to allow for a graphical crash handler that provides links
to the bug tracking system (and generates a stack trace if the binary
has symbols included).

Rich.

Jonas Hansen wrote:
> Hi,
> Does anybody know a more graceful way of getting core dumps from
> services that are under "parental control" (or for some other reason
> won't core dump, even with "ulimit -c unlimited") other than attaching
> gdb and force it? This is particularly annoying during fuzzing since you
> need to detect when/how it crashed.
>
> /Jonas
>
>

-- 
Richard Moore, Principle Software Engineer,
Westpoint Ltd,
Albion Wharf, 19 Albion Street, Manchester, M1 5LN, England
Tel: +44 161 237 1028
Fax: +44 161 237 1031


This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:09 EDT