How do I get a coredump from a setcap executable?

About

Asked 4/8, 2011 at 21:28 Answered 4/8, 2011 at 21:47

Solved linux debugging privileges elevated-privileges

To prevent the escape of privileged data, setcap executables on Linux don't dump core:

ijw@build$ cat > test.c
main() { abort(); }
ijw@build$ gcc test.c
test.c: In function ‘main’:
test.c:1: warning: incompatible implicit declaration of built-in function ‘abort’
ijw@build$ ./a.out 
Aborted (core dumped)
ijw@build$ sudo setcap "cap_net_admin=+ep" a.out                 
ijw@build$ ./a.out 
Aborted

Is there any way to enable it when you're debugging and actually want to see the core file?

Brillatsavarin answered 4/8, 2011 at 21:28 Comment(2)

Is core dumping enabled? ulimit -c unlimited – Alterant 4/8, 2011 at 21:40

Yep, I use coredumps on all my other stuff without problem. – Brillatsavarin 4/8, 2011 at 21:42

I have two answers after more research.

You can change the system behaviour in its entirety. This isn't really suitable beyond a one user development machine but it does the trick:
```
echo 1 > /proc/sys/fs/suid_dumpable
```
Tested, works.
You can change the behaviour of the specific program by calling prctl() in it:
```
prctl(PR_SET_DUMPABLE, 1);
```
In this way, the privileged program determines for itself that it should be dumpable, and the system as a whole is not affected.

I've not tried this one.

Brillatsavarin answered 4/8, 2011 at 21:47 Comment(0)

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags