如何在Linux上使用C执行期间切换用户 [英] How can I switch user during execution using C on Linux

问题描述

我正在Linux上使用C编写应用程序.在我的应用程序中，我需要在开始时以普通用户(非root用户)执行一些任务，而在执行过程中也需要以root用户执行一些任务.

I'm writing an application using C on Linux. In my application, I need to do some tasks at the beginning with normal user (Non root user) while I need to do some tasks with root user in the middle of execution as well.

顺便说一句，我不能修改普通用户的配置.因此，我无法将普通用户添加到sudoers.我也无法修改任何操作系统配置.

By the way, I cannot modify configurations of normal user. So I cannot add normal user to sudoers. I cannot modify any OS configurations as well.

我的应用程序真正要做的是执行应用程序，获取其输出以进行分析.

What my application really do is execute applications, get their outputs for analysing.

某些应用程序需要使用root运行.我使用多线程并行执行和分析这些应用程序的输出，然后将每个应用程序的报告存储在称为报告"的单例中.我在子流程中使用execvp调用这些应用程序.

Some applications need to be run with root. I use multi-threads to execute and analyse outputs of these applications in parallel then stores report of each application in a singleton called Report. I call these applications using execvp in sub-process.

我的应用程序的主要目的是自动化软件测试.并且大多数任务需要在不能为root的软件所有者中运行.

The main purpose of my application is to automate software testing. And most task is required to run in software owner which shall not be root.

所以，问题出在

• 如何在执行过程中切换用户?
• 无论如何，我可以在1个可执行文件中实现它吗?
• 使用POSIX API进行此操作更好.
• 以普通用户身份运行我的应用程序，为我的应用程序提供root密码，使用root密码切换到root.

推荐答案

详细了解 setuid 可执行文件和 setreuid(2)和 execve(2)系统调用.请注意，您需要使用chmod u+s将setuid标志放在可执行文件上(请参见 chmod(1)) > chown(1))并仔细编码，以避免安全漏洞.

Read more about setuid executables and setreuid(2) and execve(2) syscalls. Be careful, you'll need to put the setuid flag on the executable with chmod u+s (see chmod(1)) after changing its ownership (with chown(1)) and code carefully to avoid security holes.

^{(因此，我建议由知道 setuid 机制的人来检查您的代码并意识到安全问题)}

^{(so I recommend to have your code reviewed by someone knowing the setuid mechanism and aware of security issues)}

Setuid是获取(或撤消)特权的基本机制(由，sudo，super，login等使用).参见 credentials(7)& capabilities(7).

Setuid is the basic mechanism (used by su, sudo, super, login etc...) programs to get (or revoke) privileges. See credentials(7) & capabilities(7).

启动一些帮助程序(以root身份或在/usr/libexec/中启动一些setuid可执行文件...)并使用一些

It could be safer to start some helper process (as root, or start some setuid executable perhaps in /usr/libexec/ ...) and communicate with it using some inter-process communication facilities (like pipe(7)...). For example, it is not recommended to use GUI toolkits like GTK or Qt in root processes. If your app has some GUI, it is reasonable to run its GUI in a non-root (ordinary user) process and run as root the (hopefully small) helper process doing the real job requiring special privileges.

在编码之前，我建议阅读一本好书，例如 高级Linux编程 和 syscalls(2)以及每个系统调用. 安全性方面尤其重要.

Before coding, I recommend reading a good book like Advanced Linux Programming and syscalls(2) and the documentation of every system call you would use. Security aspects are especially important.

Setuid可执行文件不一定需要或使用任何密码.反过来说:需要密码的程序(特别是login，su，sudo等.)是setuid(它们是

Setuid executables don't necessarily require or use any password; it is the other way round: programs requiring passwords (notably login, su, sudo etc....) are setuid (and they are free software on Linux so you can study their source code); try ls -l /bin/su /usr/bin/sudo /bin/login to check that.

由于您要模拟各种用户环境，因此请注意 environ( 7).

Since you want to emulate various user environments, be aware of environ(7).

这篇关于如何在Linux上使用C执行期间切换用户的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！