writing to kernel memory from a auth'ed program or other approaches to solving this prob?
- From: Chris Markle <cmarkle@xxxxxxxxxxxx>
- Date: Wed, 07 Dec 2005 13:56:57 -0800
Folks,
We have a customer running RH Ent Linux 3 (2.4-kernel based). Our application runs as root and setuid's to a runtime user. Linux is not so inclined to generate a core dump for this type of app. We know about core-setuid-ok in /proc/sys/kernel, but that seems to not be working in this case to get core dumps. So we'd like to figure out how to get a core at this existing customer without doing things like shipping him new Linux or messy things of that ilk.
One thought I had was why not figure out how to set the dumpable flag in the pid's task structure like prctl(PR_SET_DUMPABLE) would do. This has led me into a whole romp through Linux trying to figure out how to access kernel memory so I could set (obviously with a root program) this freakin' bit. So far I have not figured out how to do this.
- Can one write to the kernel in Linux like you can do in Solaris with kvm_xxx() routines?
- If one could, any ideas how I could find the address of the task_structure for an arbitrary pid?
- Any other ideas of how I could do this?
It would be nice if we could just write, test, and send the customer a program and just say "run this and we'll finally be able to get a core file"...
Chris .
- Follow-Ups:
- Prev by Date: Re: /dev/fanout : A one-to-many multiplexer (beta)
- Next by Date: Re: writing to kernel memory from a auth'ed program or other approachesto solving this prob?
- Previous by thread: problem with usb jet flash...
- Next by thread: Re: writing to kernel memory from a auth'ed program or other approachesto solving this prob?
- Index(es):
Relevant Pages
|
|
