将mach端口传递给子进程
将mach端口传递给子进程
提问于 2016-01-19 00:33:55
我试图将一个mach端口传递给Mac上用fork创建的子进程。我看到这一点,所以质疑Sharing Mach ports with child processes,但它没有一个解决方案,它只是描述了问题。看看这个站点ipc.html,它包含了将mach端口传递给子进程的说明,但不幸的是,它们不是示例代码。
我尝试实现端口交换,但是子进程无法接收父进程发送的消息,recv_port内部的recv_port与invalid name一起失败。下面是我到目前为止的情况。对不起,这么多代码,mach IPC有点让人难以简短。
那么,既然引导端口hack不再起作用,那么如何在Mac上将mach端口传递给子进程呢?
编辑
我更改了代码示例,以反映在他的回答中提出的要点,子进程创建一个具有发送权限的端口,并将其发送给父进程。但是,父进程不能接收子进程创建和发送的端口,而只能挂起recv_port。
#include <stdio.h>
#include <mach/mach.h>
#include <mach/error.h>
#include <mach/message.h>
#include <unistd.h>
static int32_t
send_port(mach_port_t remote_port, mach_port_t port)
{
kern_return_t err;
struct
{
mach_msg_header_t header;
mach_msg_body_t body;
mach_msg_port_descriptor_t task_port;
} msg;
msg.header.msgh_remote_port = remote_port;
msg.header.msgh_local_port = MACH_PORT_NULL;
msg.header.msgh_bits = MACH_MSGH_BITS (MACH_MSG_TYPE_COPY_SEND, 0) |
MACH_MSGH_BITS_COMPLEX;
msg.header.msgh_size = sizeof msg;
msg.body.msgh_descriptor_count = 1;
msg.task_port.name = port;
msg.task_port.disposition = MACH_MSG_TYPE_COPY_SEND;
msg.task_port.type = MACH_MSG_PORT_DESCRIPTOR;
err = mach_msg_send(&msg.header);
if(err != KERN_SUCCESS)
{
mach_error("Can't send mach msg\n", err);
return (-1);
}
return (0);
}
static int32_t
recv_port(mach_port_t recv_port, mach_port_t *port)
{
kern_return_t err;
struct
{
mach_msg_header_t header;
mach_msg_body_t body;
mach_msg_port_descriptor_t task_port;
mach_msg_trailer_t trailer;
} msg;
err = mach_msg(&msg.header, MACH_RCV_MSG,
0, sizeof msg, recv_port,
MACH_MSG_TIMEOUT_NONE, MACH_PORT_NULL);
if(err != KERN_SUCCESS)
{
mach_error("Can't recieve mach message\n", err);
return (-1);
}
*port = msg.task_port.name;
return 0;
}
static int32_t
setup_recv_port(mach_port_t *recv_port)
{
kern_return_t err;
mach_port_t port = MACH_PORT_NULL;
err = mach_port_allocate(mach_task_self (),
MACH_PORT_RIGHT_RECEIVE, &port);
if(err != KERN_SUCCESS)
{
mach_error("Can't allocate mach port\n", err);
return (-1);
}
err = mach_port_insert_right(mach_task_self (),
port,
port,
MACH_MSG_TYPE_MAKE_SEND);
if(err != KERN_SUCCESS)
{
mach_error("Can't insert port right\n", err);
return (-1);
}
(*recv_port) = port;
return (0);
}
pid_t
fork_pass_port(mach_port_t pass_port, int32_t (*child_start)(mach_port_t port, void *arg), void *arg)
{
pid_t pid = 0;
int32_t rtrn = 0;
kern_return_t err;
mach_port_t special_port = MACH_PORT_NULL;
/* Setup the mach port. */
if(setup_recv_port(&pass_port) != 0)
{
printf("Can't setup mach port\n");
return (-1);
}
/* Grab our current task's(process's) HOST_NAME special port. */
err = task_get_special_port(mach_task_self(), TASK_HOST_PORT, &special_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't get special port:\n", err);
return (-1);
}
/* Set the HOST_NAME special port as the parent recv port. */
err = task_set_special_port(mach_task_self(), TASK_HOST_PORT, pass_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't set special port:\n", err);
return (-1);
}
pid = fork();
if(pid == 0)
{
mach_port_t host_port = MACH_PORT_NULL;
mach_port_t port = MACH_PORT_NULL;
/* In the child process grab the port passed by the parent. */
err = task_get_special_port(mach_task_self(), TASK_HOST_PORT, &pass_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't get special port:\n", err);
return (-1);
}
/* Create a port with a send right. */
if(setup_recv_port(&port) != 0)
{
printf("Can't setup mach port\n");
return (-1);
}
/* Send port to parent. */
rtrn = send_port(pass_port, port);
if(rtrn < 0)
{
printf("Can't send port\n");
return (-1);
}
/* Now that were done passing the mach port, start the function passed by the caller. */
child_start(pass_port, arg);
/* Exit and clean up the child process. */
_exit(0);
}
else if(pid > 0)
{
mach_port_t child_port = MACH_PORT_NULL;
rtrn = recv_port(pass_port, &child_port);
if(rtrn < 0)
{
printf("Can't recv port\n");
return (-1);
}
/* Reset parents special port. */
err = task_set_special_port(mach_task_self(), TASK_HOST_PORT, special_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't set special port:\n", err);
return (-1);
}
return (0);
}
else
{
/* Error, so cleanup the mach port. */
err = mach_port_deallocate(mach_task_self(), pass_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't deallocate mach port\n", err);
return (-1);
}
perror("fork");
return (-1);
}
}
static int32_t start(mach_port_t port, void *arg)
{
printf("Started\n");
return (0);
}
int main(void)
{
char *arg = "argument";
mach_port_t port = MACH_PORT_NULL;
pid_t pid = fork_pass_port(port, start, arg);
if(pid < 0)
{
printf("Can't fork and pass msg port\n");
return (-1);
}
return (0);
}回答 2
Stack Overflow用户
回答已采纳
发布于 2016-02-17 03:47:02
我想出了如何通过特殊端口继承来传递mach端口。在调用fork之前,必须将TASK_BOOTSTRAP_PORT临时替换为要传递的端口。其他特殊端口以这样或那样的方式失效。下面是一个“港口交换舞蹈”的例子。
注意,这段代码只在OSX10.11.3上进行了测试,在以前或将来的OSX版本上可能不起作用。
#include <stdio.h>
#include <mach/mach.h>
#include <mach/error.h>
#include <mach/message.h>
#include <unistd.h>
#define SPECIAL_PORT TASK_BOOTSTRAP_PORT
static int32_t
send_port(mach_port_t remote_port, mach_port_t port)
{
kern_return_t err;
struct
{
mach_msg_header_t header;
mach_msg_body_t body;
mach_msg_port_descriptor_t task_port;
} msg;
msg.header.msgh_remote_port = remote_port;
msg.header.msgh_local_port = MACH_PORT_NULL;
msg.header.msgh_bits = MACH_MSGH_BITS (MACH_MSG_TYPE_COPY_SEND, 0) |
MACH_MSGH_BITS_COMPLEX;
msg.header.msgh_size = sizeof msg;
msg.body.msgh_descriptor_count = 1;
msg.task_port.name = port;
msg.task_port.disposition = MACH_MSG_TYPE_COPY_SEND;
msg.task_port.type = MACH_MSG_PORT_DESCRIPTOR;
err = mach_msg_send(&msg.header);
if(err != KERN_SUCCESS)
{
mach_error("Can't send mach msg\n", err);
return (-1);
}
return (0);
}
static int32_t
recv_port(mach_port_t recv_port, mach_port_t *port)
{
kern_return_t err;
struct
{
mach_msg_header_t header;
mach_msg_body_t body;
mach_msg_port_descriptor_t task_port;
mach_msg_trailer_t trailer;
} msg;
err = mach_msg(&msg.header, MACH_RCV_MSG,
0, sizeof msg, recv_port,
MACH_MSG_TIMEOUT_NONE, MACH_PORT_NULL);
if(err != KERN_SUCCESS)
{
mach_error("Can't recieve mach message\n", err);
return (-1);
}
(*port) = msg.task_port.name;
return 0;
}
static int32_t
setup_recv_port(mach_port_t *recv_port)
{
kern_return_t err;
mach_port_t port = MACH_PORT_NULL;
err = mach_port_allocate(mach_task_self (),
MACH_PORT_RIGHT_RECEIVE, &port);
if(err != KERN_SUCCESS)
{
mach_error("Can't allocate mach port\n", err);
return (-1);
}
err = mach_port_insert_right(mach_task_self (),
port,
port,
MACH_MSG_TYPE_MAKE_SEND);
if(err != KERN_SUCCESS)
{
mach_error("Can't insert port right\n", err);
return (-1);
}
(*recv_port) = port;
return (0);
}
static int32_t
start(mach_port_t port, void *arg)
{
return (0);
}
static pid_t
fork_pass_port(mach_port_t *pass_port,
int32_t (*child_start)(mach_port_t port, void *arg),
void *arg)
{
pid_t pid = 0;
int32_t rtrn = 0;
kern_return_t err;
mach_port_t special_port = MACH_PORT_NULL;
/* Allocate the mach port. */
if(setup_recv_port(pass_port) != 0)
{
printf("Can't setup mach port\n");
return (-1);
}
/* Grab our current process's bootstrap port. */
err = task_get_special_port(mach_task_self(), SPECIAL_PORT, &special_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't get special port:\n", err);
return (-1);
}
/* Set the special port as the parent recv port. */
err = task_set_special_port(mach_task_self(), SPECIAL_PORT, (*pass_port));
if(err != KERN_SUCCESS)
{
mach_error("Can't set special port:\n", err);
return (-1);
}
pid = fork();
if(pid == 0)
{
mach_port_t bootstrap_port = MACH_PORT_NULL;
mach_port_t port = MACH_PORT_NULL;
/* In the child process grab the port passed by the parent. */
err = task_get_special_port(mach_task_self(), SPECIAL_PORT, pass_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't get special port:\n", err);
return (-1);
}
/* Create a port with a send right. */
if(setup_recv_port(&port) != 0)
{
printf("Can't setup mach port\n");
return (-1);
}
/* Send port to parent. */
rtrn = send_port((*pass_port), port);
if(rtrn < 0)
{
printf("Can't send port\n");
return (-1);
}
/* Receive the real bootstrap port from the parent. */
rtrn = recv_port(port, &bootstrap_port);
if(rtrn < 0)
{
printf("Can't receive bootstrap port\n");
return (-1);
}
/* Set the bootstrap port back to normal. */
err = task_set_special_port(mach_task_self(), SPECIAL_PORT, bootstrap_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't set special port:\n", err);
return (-1);
}
/* Now that were done with the port dance, start the function passed by the caller. */
child_start((*pass_port), arg);
/* Exit and clean up the child process. */
_exit(0);
}
else if(pid > 0)
{
mach_port_t child_port = MACH_PORT_NULL;
/* Grab the child's recv port. */
rtrn = recv_port((*pass_port), &child_port);
if(rtrn < 0)
{
printf("Can't recv port\n");
return (-1);
}
/* Send the child the original bootstrap port. */
rtrn = send_port(child_port, special_port);
if(rtrn < 0)
{
printf("Can't send bootstrap port\n");
return (-1);
}
/* Reset parents special port. */
err = task_set_special_port(mach_task_self(), SPECIAL_PORT, special_port);
if(err != KERN_SUCCESS)
{
mach_error("Can't set special port:\n", err);
return (-1);
}
return (0);
}
else
{
/* Error, so cleanup the mach port. */
err = mach_port_deallocate(mach_task_self(), (*pass_port));
if(err != KERN_SUCCESS)
{
mach_error("Can't deallocate mach port\n", err);
return (-1);
}
perror("fork");
return (-1);
}
}
int main(void)
{
/* Argument to pass to the child process. */
char *arg = "argument";
/* Mach port we want to pass to the child. */
mach_port_t port = MACH_PORT_NULL;
pid_t pid = fork_pass_port(&port, start, arg);
if(pid < 0)
{
printf("Can't fork and pass msg port\n");
return (-1);
}
return (0);
}Stack Overflow用户
发布于 2016-01-19 04:08:01
对于任何给定的端口,只有一个接收权。父级拥有它创建的端口的接收权限。特殊端口的继承仅用于发送权限。因此,子节点只继承您通信端口的发送权限。
您所链接的文章所建议的是,子端口通过此端口向父端口发送消息。孩子应该创建自己的新端口,并拥有接收权。根据您是否需要进行双工通信,它的消息将为该端口携带一个发送或发送--一次右转到父端口。子节点将该发送(-once)直接放在消息的msgh_local_port中;父服务器将在msgh_remote_port中接收它。父服务器可以使用该发送(-once)权限进行应答,而应答可以将发送权限传递到原始主机端口。子程序可以使用它来恢复其主机端口。
或者,您可以这样做:
- 通过特殊端口继承传递给子节点,这是父进程的任务端口的发送权限;这样,子节点几乎可以对父进程执行任何操作
- 让子节点使用
mach_port_extract_right()从父端口提取通信端口的接收权限。 - 为了安全起见,它是否解除了父任务端口的发送权限?
它还可以提取原始主机端口的发送权限,而不是通过IPC接收它,这应该更简单。
所有这些都说明,是什么使您认为主机端口比引导端口更安全呢?
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/34866604
复制相关文章
相似问题
腾讯云开发者
