Linux Socket Programming by Example - Warren Gay
CloseLinux Socket Programming by Example
   Table of Contents
  OpenPreface>
   I: Basic Socket Concepts
  Open1. Introducing Sockets
  Open2. Domains and Address Families
  Open3. Address Conversion Functions
  Open4. Socket Types and Protocols
  Open5. Binding Addresses to a Socket
  Open6. Connectionless-Oriented Protocols
  Open7. Connection-Oriented Protocols for Clients
  Open8. Connection-Oriented Protocols for Servers
  Open9. Hostname and Network Name Lookups
   II: Advanced Socket Programming
  Open10. Using Standard I/O on Sockets
  Open11. Concurrent Client Servers
  Open12. Socket Options
  Open13. Broadcasting with UDP
  Open14. Out-of-Band Data
  Open15. Using the inetd Daemon
  Open16. Network Security Programming
  Close17. Passing Credentials and File Descriptors
    Problem Statement
    Introducing Ancillary Data
    Introducing I/O Vectors
    The sendmsg(2) and recvmsg(2) Functions
    Ancillary Data Structures and Macros
    Presenting an Ancillary Data Example
    Testing the Socket Server
    What's Next
  Open18. A Practical Network Project
   Appendixes
  OpenA. Socket Function Quick Reference
  OpenB. Socket-Related Structures Reference
   C. Useful Network Tables
   glossary
   Index
< BACKCONTINUE >
159231153036212041242100244042145096184017042031058173141099048169011022003055218224053149

Chapter 17. Passing Credentials and File Descriptors

If you share your Linux host with other users, you might have had reason to struggle with certain resource access issues. In this chapter, you will see how credentials can be obtained from a local socket and how file descriptors can be transmitted by sockets as well. These two important features open an entirely new avenue of security access solutions for your users, while keeping your machine secure.

These features are provided for by the use of socket ancillary data. This is an advanced topic, which might be beyond what many beginning programmers want to tackle. Beginners might want to simply skim this chapter or skip to the next.

The intermediate to advanced readers, however, will want to study this chapter carefully, as an introduction to the processing of ancillary data. Emphasis has been placed on a practical example that can be studied and experimented with.

This chapter covers the following topics:

  • How to send user credentials to a local server process

  • How to receive and interpret user credentials

  • How to send a file descriptor to another process on the local host

  • How to receive a file descriptor from another process on the local host
< BACKCONTINUE >

Index terms contained in this section

assing
      credentials
      file descriptors
iles
      descriptors
redentials