Katana VentraIP

Crash (computing)

In computing, a crash, or system crash, occurs when a computer program such as a software application or an operating system stops functioning properly and exits. On some operating systems or individual applications, a crash reporting service will report the crash and any details relating to it (or give the user the option to do so), usually to the developer(s) of the application. If the program is a critical part of the operating system, the entire system may crash or hang, often resulting in a kernel panic or fatal system error.

"System crash" redirects here. Not to be confused with System Crash (TV series).

Most crashes are the result of a software bug. Typical causes include accessing invalid memory addresses,[a] incorrect address values in the program counter, buffer overflow, overwriting a portion of the affected program code due to an earlier bug, executing invalid machine instructions (an illegal or unauthorized opcode), or triggering an unhandled exception. The original software bug that started this chain of events is typically considered to be the cause of the crash, which is discovered through the process of debugging. The original bug can be far removed from the code that actually triggered the crash.


In early personal computers, attempting to write data to hardware addresses outside the system's main memory could cause hardware damage. Some crashes are exploitable and let a malicious program or hacker execute arbitrary code, allowing the replication of viruses or the acquisition of data which would normally be inaccessible.

attempting to read or write memory that is not allocated for reading or writing by that application (e.g., , x86-specific general protection fault)

segmentation fault

attempting to execute privileged or invalid instructions

attempting to perform I/O operations on devices to which it does not have permission to access

hardware

passing invalid arguments to system calls

attempting to access other system resources to which the application does not have permission to access

attempting to execute machine instructions with bad arguments (depending on CPU architecture): , operations on denormal number or NaN (not a number) values, memory access to unaligned addresses, etc.

divide by zero

Web server crashes[edit]

The software running the web server behind a website may crash, rendering it inaccessible entirely or providing only an error message instead of normal content.


For example: if a site is using an SQL database (such as MySQL) for a script (such as PHP) and that SQL database server crashes, then PHP will display a connection error.

Security and privacy implications of crashes[edit]

Depending on the application, the crash may contain the user's sensitive and private information.[6] Moreover, many software bugs which cause crashes are also exploitable for arbitrary code execution and other types of privilege escalation.[7][8] For example, a stack buffer overflow can overwrite the return address of a subroutine with an invalid value, which will cause, e.g., a segmentation fault, when the subroutine returns. However, if an exploit overwrites the return address with a valid value, the code in that address will be executed.

Crash reproduction[edit]

When crashes are collected in the field using a crash reporter, the next step for developers is to be able to reproduce them locally. For this, several techniques exist: STAR uses symbolic execution,[9] EvoCrash performs evolutionary search.[10]

Blue Screen of Death

Copy protection

Crash-only software

Data loss

Guru Meditation

Memory corruption

Memory protection

Page fault

Reboot

Safe mode

Segmentation Fault

Storage violation

SIGILL

SIGSEGV

SystemRescueCD

Undefined behavior

Picking Up The Pieces After A Computer Crash