--- wikisrc/pkgsrc/hardening.mdwn 2019/01/06 14:58:39 1.39 +++ wikisrc/pkgsrc/hardening.mdwn 2019/01/06 15:24:42 1.40 @@ -221,8 +221,26 @@ for part or all of the build. ### Run-time crashes -Again, this feature may cause some programs to crash, usually indicating an -actual bug in the program. Patching the original program is then required. +Again, this feature may cause some programs to crash via a SIGABRT, +usually indicating an actual bug in the program. + +On NetBSD `LOG_CRIT` level `syslog()` messages are sent and - by +default - appended to `/var/log/messages`, e.g.: + + Jan 6 15:42:51 -: - - - buffer overflow detected; terminated + +(where `` is the `hostname(1)` and `` is the +`basename(1)` of the program crashed). + +Patching the original program is then required. + +Rebuilding the package via: + + % env CFLAGS=-g INSTALL_UNSTRIPPED=yes make replace + +and inspecting the `backtrace` of the coredump via the debugger +should point out the problematic call by inspecting the frame +calling the `_chk()' (SSP) function. ### Performance impact