Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > comp.os.linux.development.apps > #58

Re: mkdir() and thread safety()

Show all headers | View raw

David Schwartz <davids@webmaster.com> writes:
> On Mar 28, 5:59 am, Rainer Weikusat <rweiku...@mssgmbh.com> wrote:
>> Also, the UNIX(*) standard demands that mkdir is supposed to fail with
>> EEXIST when the named file already existed. This is not possible when
>> mkdir is not an atomic operation.
>
> Yes, it is. The algorithm I specified will always fail if the named
> file already existed before the operation started.

The operation starts when the 'backend' (whatever that happens to be)
starts  to process the mkdir request, not at some arbitrarily distant
random time in the past. It is not possible to fail with EEXIST when a
file already existed before a mkdir request was processed unless no
such file can be created between the time the test for existence is
made and the directory creation request is actually processed. Your
'algorithm' is in no way different from one where the OS creates a
database of all files during bootup and uses that to determine if some
file exists until the next boot in this respect: Some check is
made. Then, and unspecified amount of time passses. Then, an operation
is carried out, based on the presumption that the result of this check
is still valid. Put into pseudocode in a slightly different context:

	rc = stat("/tmp/toastbrot", &st);
        if (rc == -1 && errno == ENOENT) {
        	rc = open("/tmp/toastbrot", O_CREAT | O_RDWR, 0666);
		if (rc != -1) {
                	write(rc, "will we kill /etc/shadow", sizeof("will we kill /etc/shadow"));
        		close(rc);
		}
	}                
        	
and the answer to this question is: The guy who wrote this cannot
imagine that it would be possible. But it is.

> There is no requirement for atomicity. You can't just make up requirements because
> they seem reasonable to you.

And there is also no requirement that the implementation doesn't use
the 'file database created during booting' in the way I outlined
above EXCEPT that this would also be a broken implementation because
of the TOCTOU-race. Coming to think of it, it should also be okay to
let mkdir fail randomly with EEXIST since the result is again
identical: mkdir will or won't fail for some reason which has no
specific relation to the state of the filesystem at the time the
request was executed whatsoever.

Back to comp.os.linux.development.apps | Previous | Next — Previous in thread | Next in thread | Find similar

Thread

Re: mkdir() and thread safety() David Schwartz <davids@webmaster.com> - 2011-03-30 14:53 -0700
  Re: mkdir() and thread safety() Richard Kettlewell <rjk@greenend.org.uk> - 2011-03-30 23:20 +0100
    Re: mkdir() and thread safety() Rainer Weikusat <rweikusat@mssgmbh.com> - 2011-03-31 11:17 +0100
  Re: mkdir() and thread safety() Rainer Weikusat <rweikusat@mssgmbh.com> - 2011-03-31 11:14 +0100
    Re: mkdir() and thread safety() George Neuner <gneuner2@comcast.net> - 2011-03-31 19:13 -0400
      Re: mkdir() and thread safety() Rainer Weikusat <rweikusat@mssgmbh.com> - 2011-04-01 16:52 +0100
        Re: mkdir() and thread safety() George Neuner <gneuner2@comcast.net> - 2011-04-03 13:59 -0400
          Re: mkdir() and thread safety() Rainer Weikusat <rweikusat@mssgmbh.com> - 2011-04-08 23:59 +0100
    Re: mkdir() and thread safety() David Schwartz <davids@webmaster.com> - 2011-04-01 12:22 -0700
      Re: mkdir() and thread safety() Rainer Weikusat <rweikusat@mssgmbh.com> - 2011-04-01 21:03 +0100
        Re: mkdir() and thread safety() David Schwartz <davids@webmaster.com> - 2011-04-01 14:27 -0700
      Re: mkdir() and thread safety() Rainer Weikusat <rweikusat@mssgmbh.com> - 2011-04-01 21:23 +0100
        Re: mkdir() and thread safety() David Schwartz <davids@webmaster.com> - 2011-04-01 14:28 -0700

csiph-web