我正在尝试从我的代码中启动一个进程, 最初我尝试了system()函数调用,。当我开始知道使用exec时,进程覆盖自身,调用可执行文件的二进制文件然后我尝试了exec()函数。
并且由于第一个参数(argv [0])是程序的名称,我故意将“datafile”作为第二个参数传递。执行时,我检查进程列表中的进程(通过ps -e / top),实际名称而不是“datafile”进程显示在进程列表中!有没有办法隐藏/重命名从子进程启动的二进制文件的名称?
void main()
{
pid_t pid;
int status;
fflush(stdout);
pid=fork();
if(pid<0)
exit(3);
if(pid==0)
{
execlp("/usr/bin/top","datafile",NULL); // "datafile" for deceiving the ps -e
//system(top);
}
else
{
waitpid(pid,&status,0);
printf("\nHello %d ",pid);
fflush(stdout);
exit(0);
}
}
执行二进制文件时,输出为:
Swap: 3998716 total, 165756 used, 3832960 free. 379712 cached Mem
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
3217 user 20 0 196840 12844 8120 S 0.7 0.8 0:09.02 unity-panel-ser
3650 user 20 0 320844 11976 7984 S 0.7 0.7 0:03.25 nm-applet
7774 user 20 0 5524 1324 936 R 0.7 0.1 0:00.04 top
630 message+ 20 0 5440 2016 1028 S 0.3 0.1 0:05.06 dbus-daemon
705 root 20 0 54864 4496 3572 S 0.3 0.3 0:05.11 NetworkManager
1025 mysql 20 0 326740 10380 1240 S 0.3 0.6 0:14.92 mysqld
1129 root 20 0 200856 60132 46616 S 0.3 3.7 5:26.94 Xorg
您好 7774
此处从mycode启动的“top command”在进程列表中可见! 我的目的是其他用户(包括root)不应该知道我正在触发什么命令,尽管进程列表中的多个a.out实例都可以!我期待输出如:
7774 user 20 0 196840 12844 8120 S 0.7 0.8 0:09.02 ./a.out
7773 user 20 0 320844 11976 7984 S 0.7 0.7 0:09.01 ./a.out
任何提示/帮助都会非常有成效。
更新 试过execv:
void main()
{
pid_t pid;
int status;
char *newargv[3] = { "neverkillme","www.yahoo.com", NULL };
fflush(stdout);
pid=fork();
if(pid<0) exit(3);
if(pid==0)
execv("/usr/bin/opera",newargv);
else
{
waitpid(pid,&status,0);
printf("\nneverkillme(opera) process's ID %d ",pid);
fflush(stdout);
exit(0);
}
}
输出:一旦我在新标签下运行a.out opera打开yahoo.com;但我可以看到“opera”被列为使用ps -e
的过程Initially:
ac@ac:~/Documents/C$ ps -e| grep a.out
ac@ac:~/Documents/C$ ps -e| grep opera
ac@ac:~/Documents/C$ ./a.out
** (opera:5248): CRITICAL **: os_bar_hide: assertion 'OS_IS_BAR (bar)' failed (opera:5248): Gtk-CRITICAL **: IA__gtk_widget_hide: assertion 'GTK_IS_WIDGET (widget)' failed
** (opera:5248): CRITICAL **: os_bar_set_parent: assertion 'OS_IS_BAR (bar)' failed
** (opera:5248): CRITICAL **: os_bar_hide: assertion 'OS_IS_BAR (bar)' failed (opera:5248): Gtk-CRITICAL **: IA__gtk_widget_hide: assertion 'GTK_IS_WIDGET (widget)' failed
** (opera:5248): CRITICAL **: os_bar_set_parent: assertion 'OS_IS_BAR (bar)' failed
** (opera:5248): CRITICAL **: os_bar_hide: assertion 'OS_IS_BAR (bar)' failed (opera:5248): Gtk-CRITICAL **: IA__gtk_widget_hide: assertion 'GTK_IS_WIDGET (widget)' failed
** (opera:5248): CRITICAL **: os_bar_set_parent: assertion 'OS_IS_BAR (bar)' failed
** (opera:5248): CRITICAL **: os_bar_hide: assertion 'OS_IS_BAR (bar)' failed (opera:5248): Gtk-CRITICAL **: IA__gtk_widget_hide: assertion 'GTK_IS_WIDGET (widget)' failed
** (opera:5248): CRITICAL **: os_bar_set_parent: assertion 'OS_IS_BAR (bar)' failed
** (opera:5248): CRITICAL **: os_bar_hide: assertion 'OS_IS_BAR (bar)' failed (opera:5248): Gtk-CRITICAL **: IA__gtk_widget_hide: assertion 'GTK_IS_WIDGET (widget)' failed
** (opera:5248): CRITICAL **: os_bar_set_parent: assertion 'OS_IS_BAR (bar)' failed
neverkillme(opera) process's ID 5248
ac@ac:~/Documents/C$ ps -e| grep opera
5248 pts/24 00:00:01 opera
cdac@cdac-Lenovo-B590:~/Documents/C$ ps -e| grep a.out
5247 pts/24 00:00:00 a.out
答案 0 :(得分:1)
不确定你是谁在这里捣乱;-),但问题的答案是使用execv()。第一个参数是实际运行的可执行文件的路径,第二个参数是程序将接收的argv []数组。如果更改其argv [0],则值将显示在top / ps而不是实际程序名称中。例如:
#include <unistd.h>
int main(int argc, char **argv) {
char *newargv[4] = { "hi mom!", "-d", "60", NULL };
execv("/usr/bin/top", newargv);
}
你可以检查一下:
$ ps ax | grep mom
26564 pts/10 S+ 0:00 hi mom! -d 60
26573 pts/9 S+ 0:00 grep mom