When accepting PIDs as input, is there any sane validation that can take place? When accepting PIDs as input, is there any sane validation that can take place? unix unix

When accepting PIDs as input, is there any sane validation that can take place?


c unix pid

If you're on Linux, you can try doing a access("/proc/$PID/").Or more generally, you can do a kill(pid, 0) as explained in this answer to see if the process exists.

Of course, whatever you do, a syscall will be involved

c unix pid

Try the kill() function, with a signal of zero.Here's a snippet from the man page for kill() on Ubuntu:

int kill(pid_t pid, int sig);

If sig is 0, then no signal is sent, but error checking is still performed; this can be used to check for the existence of a process ID or process group ID.

c unix pid

Why? Stop second guessing users. The kernel will do all sanity checking for you. That is the most valid input validation for a PID - is the operation I'm trying to do successful. 0 is a valid number for a PID in certain situations. So are negative numbers.

If your code runs as a privileged process and you're trying to limit the damage it can do, then you'd need some serious validation rather than "sanity checking". But if it doesn't then there no reason for you to do anything. "No such process" is a good enough error message.

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last