When you run given binary, the kernel marks it as being executed which is then used to disallow opening it for writing. Similarly, when a file is opened for writing, it is marked as such and execve fails.
The error is ETXTBSY or Text file busy.
Situation with scripts is a little bit more involved. Doing "sh script.sh" will typically result in execve of /bin/sh, i.e. the kernel does not really know nor care what script.sh is.
Let's consider a file with the following content being passed to execve:
#!/bin/sh
echo meh
exit 0
A special handler recognizes #! and proceeds to change the executed binary to /bin/sh.
However, once execution gets going, you can open the file for writing no problem.
This poses two questions:
- will the execution fail if the script is opened for writing?
- will opening the file for writing ever fail because the script is being executed?
Let's experiment. The following program will help:
#include <sys/types.h>
#include <sys/stat.h>
#include <errno.h>
#include <fcntl.h>
#include <unistd.h>
#include <stdio.h>
int
main(int argc, char **argv)
{
int fd;
if (argc != 2)
return 1;
for (;;) {
fd = open(argv[1], O_WRONLY);
if (fd != -1) {
close(fd);
continue;
}
perror("open");
}
return 1;
}
As you can see the program just repeatedly tries to open the file for writing.
We will run the script ("script.sh") in one terminal, while running the program in another. That is:
shell1$ ./write script.sh
shell2$ while true; do ./script.sh; done
And this gives....
shell1$ ./write script.sh
open: Text file busy
open: Text file busy
open: Text file busy
open: Text file busy
open: Text file busy
open: Text file busy
[snip]
shell2$ while true; do ./script.sh; done
zsh: text file busy: ./script.sh
zsh: text file busy: ./script.sh
meh
meh
zsh: text file busy: ./script.sh
meh
[snip]
So we see 2 failure modes:
- sometimes we fail to execve because the file is opened for writing
- sometimes we fail to open for writing because the file is being executed
The second condition is transient - the file is unmarked as the kernel proceeds to look up /bin/sh instead of the script.
A side observation is that if you have a file which is executable by others, they may interfere with your attempts to write it by repeatedly calling execve.h
No comments:
Post a Comment