DragonFly On-Line Manual Pages

PRIV_FORK(3)                      Subroutines                     PRIV_FORK(3)

NAME
       priv_fork - create a child Privman managed process

SYNOPSIS
       #include <privman.h>

       pid_t priv_fork(void);

DESCRIPTION
       priv_fork creates both a child process, and a child Privman manager
       process, and connects them together.  The child process of the calling
       process will actually be the child of the calling process.  The new
       Privman manager process will be a child of the old Privman manager.

       The managed process can, of course, call regular fork() at any time.
       If it does, the child process will inherit the pipe to the Privman
       manager process.  This will not allow the child to cause the manager
       process to grant unauthorized privilege, but may cause it to become
       highly confused.

FILES
       ${prefix}/etc/privman.d/ appname
              The application's configuration file.  See privman_conf(5) for
              more details.  The configuration file will have to set the fork
              statement to true for this call to succeed.

BUGS
       There are probably races in error handing, but they should not be
       exploitable.  They may make proper error handling impossible.

AUTHOR
       Network Associates. Send email to <privman@nailabs.com>

SEE ALSO
       priv_bind(3) priv_daemon(3) priv_execve(3) priv_fopen(3) priv_init(3)
       privman_conf(5) priv_open(3) priv_pam(3) priv_rerunas(3) privman(7)

Unix                            SEPTEMBER 2002                    PRIV_FORK(3)