[Bug 2109979] [NEW] max size of user coredump is 0x7ffff000

[Launchpad Bug Tracker]

You have been subscribed to a public bug:

In the code there is a snippet from '/usr/share/apport/apport' on ubuntu
24.04:

```
    # Priming read
    if from_report:
...
        error_log('writing core dump %s of size %i' % (core_name, core_size))
        os.write(core_file, r['CoreDump'])
```

Looking to the fact, that os.write is a low-level function, which is
(most probably) came to write() function of the kernel (see 'man 2
write'), we have following note in the manual:

```
NOTES
...

       On Linux, write() (and similar system calls) will transfer at most 0x7ffff000 (2,147,479,552) bytes, returning the number of bytes actually transferred.  (This is true on both 32-bit and 64-bit systems.)
```

The fact is that coredumps are limited by this number. When trying to
catch bigger one, we have file sized exactly 0x7ffff000 bytes; and
they're trunked (i.e. recognized as damaged by gdb) with this default.

** Affects: apport
     Importance: High
         Status: New

** Affects: apport (Ubuntu)
     Importance: High
         Status: Triaged

-- 
max size of user coredump is 0x7ffff000
https://bugs.launchpad.net/bugs/2109979
You received this bug notification because you are a member of Ubuntu Foundations Bugs, which is subscribed to apport in Ubuntu.