Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.
Sign uptmpfiles: R! /dir/.* destroys root #5644
Comments
jsynacek
changed the title from
tmpfxles: R! /dir/.* destroys root
to
tmpfiles: R! /dir/.* destroys root
Mar 27, 2017
added a commit
to jsynacek/systemd
that referenced
this issue
Mar 28, 2017
jsynacek
referenced this issue
Mar 28, 2017
Merged
basic: forbid rm_rf() to remove paths ending with ".." #5653
martinpitt
closed this
in
#5653
Mar 29, 2017
added a commit
that referenced
this issue
Mar 29, 2017
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
poettering
Mar 30, 2017
Member
I am not sure I'd consider this much of a problem. Yeah, it's a UNIX pitfall, but "rm -rf /foo/.*" will work the exact same way, no?
|
I am not sure I'd consider this much of a problem. Yeah, it's a UNIX pitfall, but "rm -rf /foo/.*" will work the exact same way, no? |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
|
No, not on Fedora 24 at least. |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
louiz
Apr 7, 2017
no?
No
http://pubs.opengroup.org/onlinepubs/9699919799/utilities/rm.html#tag_20_111_16
The rm utility is forbidden to remove the names dot and dot-dot in order to avoid the consequences of inadvertently doing something like:
rm -r .*
louiz
commented
Apr 7, 2017
No http://pubs.opengroup.org/onlinepubs/9699919799/utilities/rm.html#tag_20_111_16
|
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
csirac2
Apr 16, 2017
Here's the regression tests in coreutils https://github.com/coreutils/coreutils/blob/e7a2580b96370da03c4d3553ccdf4ee66a14c6a4/tests/rm/r-4.sh#L39 which includes the rm -rf .//// case.
csirac2
commented
Apr 16, 2017
•
edited
Edited 1 time
-
csirac2
edited Apr 16, 2017 (most recent)
edited
-
Apr 16, 2017 (most recent)
|
Here's the regression tests in coreutils https://github.com/coreutils/coreutils/blob/e7a2580b96370da03c4d3553ccdf4ee66a14c6a4/tests/rm/r-4.sh#L39 which includes the |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
rysiekpl
Apr 17, 2017
For some people it's advisable to never miss a chance to stay silent.
Debian:
root@5afb081909c8:/# mkdir /foo/
root@5afb081909c8:/# rm -rf /foo/.*
rm: refusing to remove '.' or '..' directory: skipping '/foo/.'
rm: refusing to remove '.' or '..' directory: skipping '/foo/..'
Ubuntu:
root@b5d54715a834:/# mkdir /foo/
root@b5d54715a834:/# rm -rf /foo/.*
rm: refusing to remove '.' or '..' directory: skipping '/foo/.'
rm: refusing to remove '.' or '..' directory: skipping '/foo/..'
Busybox:
/ # mkdir /foo/
/ # rm -rf /foo/.*
rm: can't remove '.' or '..'
rm: can't remove '.' or '..'
It took a whole of 5mins to test all of these.
I find it particularly interesting since the comment I am referring to has been made after the issue has been solved already. Way to highlight how little consideration is being given to issues reported by systemd users. Bodes well for the whole project!..
rysiekpl
commented
Apr 17, 2017
|
For some people it's advisable to never miss a chance to stay silent. Debian:
Ubuntu:
Busybox:
It took a whole of 5mins to test all of these. I find it particularly interesting since the comment I am referring to has been made after the issue has been solved already. Way to highlight how little consideration is being given to issues reported by |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
thelounge-zz
Apr 17, 2017
I am not sure I'd consider this much of a problem.
shocking to hear
Yeah, it's a UNIX pitfall, but "rm -rf /foo/.*" will work the exact same way, no?
no, and you REALLY should know that as many others do or AT LEAST test it before pretend such nonsense - frankly, that below is not something theoretical, i do that for many years to get /tmp/ really empty
[root@testserver:/tmp]$ rm -rf .
./ ../ .font-unix/ .ICE-unix/ .Test-unix/ .X11-unix/ .XIM-unix/
[root@testserver:/tmp]$ rm -rf .*
rm: Entfernen von '.' Verzeichnis '..' nicht möglich: '.' wird übersprungen
rm: Entfernen von '.' Verzeichnis '..' nicht möglich: '..' wird übersprungen
thelounge-zz
commented
Apr 17, 2017
shocking to hear
no, and you REALLY should know that as many others do or AT LEAST test it before pretend such nonsense - frankly, that below is not something theoretical, i do that for many years to get /tmp/ really empty [root@testserver:/tmp]$ rm -rf . |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
thelounge-zz
Apr 17, 2017
and look how others see it as "much of a problem" when something by accident kills the whole OS - and yes i am terrible angry by that comment which shows something of an bad attitude
[root@testserver:~]$ rm -rf /
rm: it is dangerous to operate recursively on '/'
rm: use --no-preserve-root to override this failsafe
thelounge-zz
commented
Apr 17, 2017
|
and look how others see it as "much of a problem" when something by accident kills the whole OS - and yes i am terrible angry by that comment which shows something of an bad attitude [root@testserver:~]$ rm -rf / |
jsynacek commentedMar 27, 2017
•
edited
Edited 1 time
-
jsynacek
edited Mar 27, 2017 (most recent)
Do NOT run the reproducer without a proper backup and/or on a production system!
How to reproduce:
# mkdir -p /foo/dir{1,2}# touch /foo/.bar{1,2}# cat /etc/tmpfiles.d/test.confR! /foo/.* - - - - -Note the dot in the glob. When either using r!, or removing the dot and using R!, the bug doesn't reproduce.