Reputation: 398
Prevent child process from system calls
I want to create a child process that call another program (with C++ in Unix). But I want to restrict the child process not to call system(), fopen(), etc. (if it did, it would be terminated).
How to do that?
Upvotes: 4
Views: 804
Answers (3)
Reputation: 43688
Assuming your child process uses the C library to do the syscalls, it's a dynamic executable, and your system uses ELF, you could set LD_PRELOAD to a library that intercepts the functions you are interested in.
Failing that, you could do a Valgrind tool.
Upvotes: 1
Reputation: 72271
Tricky. If this is Linux or BSD, you might experiment with setrlimit(RLIMIT_NPROC, &lim). This won't terminate the child if it tries to create a process, but it will cause the system call to fork to fail. No clue if there's any more portable answer.
Upvotes: 0
Reputation: 132984
this might help you. It seems there is a way of handling different things a child process does via ptrace. HTH
Upvotes: 2
Related Questions
- Child process receives parent's SIGINT
- Disallowing printf in child process
- Using system("./some_program"), how to prevent termination of parent process when "some_program" dies?
- Can I prevent the user from running my C++ program in the background?
- How to stop the first child process from being executed?
- C++ How to prevent child process binding port after fork() on Linux?
- UNIX ptrace() block child's system calls
- Preventing processes to execute certain system calls
- How to prevent a system call from being executed with ptrace
- Preventing multiple process instances on Linux