Bash – String pattern-matching with =~

bashregular expressionstring

I have problems to understand the string pattern matching with =~ in bash.

I wrote following function (don't be alarmed – it's just experimenting, not a security approach with md5sum):

md5 ()  { 
     [[ "$(md5sum $1)" =~ $2* ]] && echo fine || echo baarr; 
}

and tested it with some input. Here some reference:

md5sum wp.laenderliste
b1eb0d822e8d841249e3d68eeb3068d3  wp.laenderliste

It's unnecessarily hard to compare, if the source for the control sum does not contain the two blanks with the filename already. That's where the observations origins from, but more interesting than the many ways to solve that problem was my observation:

I define a control variable, and test my function with too short, but matching strings:

ok=b1eb0d822e8d841249e3d68eeb3068d3
for i in {29..32}; do md5 wp.laenderliste ${ok:1:$i} ;done 
fine
fine
fine
fine

That's expected and fine, since it is the purpose of the function, to ignore the mismatch of the missing " wp.laenderliste" and therefore even longer mismatches.

Now, if I append random stuff, which does not match, I expect, of course, errors, and get them:

for i in {29..32}; do md5 wp.laenderliste ${ok:1:$i}GU ;done 
baarr
baarr
baarr
baarr

As expected. But when there is only one, last mismatching character, see what happens:

for i in {29..32}; do md5 wp.laenderliste ${ok:1:$i}G ;done 
fine
fine
fine
fine

Is this me, not realizing how this is supposed to work (select is broken), or is there really an off-by-one-error in bash's pattern matching?

Mismatches in the mid of the string matter from count 1:

for i in 5 9 e ; do echo md5 wp.laenderliste ${ok//$i/_} ;done 
md5 wp.laenderliste b1eb0d822e8d841249e3d68eeb3068d3
md5 wp.laenderliste b1eb0d822e8d84124_e3d68eeb3068d3
md5 wp.laenderliste b1_b0d822_8d841249_3d68__b3068d3

for i in 5 9 e ; do md5 wp.laenderliste ${ok//$i/_} ;done 
fine
baarr
baarr

The bash-version:

bash -version
GNU bash, Version 4.3.48(1)-release (x86_64-pc-linux-gnu)
Copyright (C) 2013 Free Software Foundation, Inc.
Lizenz GPLv3+: GNU GPL Version 3 oder jünger <http://gnu.org/licenses/gpl.html>

Disclaimer: md5sum is only a useful against unintentional mistakes, not against attacks. I don't encourage using it.

And this question is not a search for better solutions or workarounds. It's about the =~ Operator, whether it should act as it does and if so, why.

Best Answer

=~ in ([[ ]]) is a regular expression pattern match (or rather, a search, see below). That's different from = (or ==) which uses the same patterns as with filename wildcards.

In particular, the asterisk in regular expressions means "zero or one copies of the preceding unit", so abc* means ab plus zero or more cs.

In your case, the trailing asterisk makes the final character of the function argument optional. In your final example, the pattern becomes ...68d3G*, and since G* matches the empty string, it matches a string like ...68d3. Regexese for "any string" is of .*, or "any character, any number of times".

Note that the regexp match searches for a match anywhere in the string, it doesn't need to be the whole string. So the pattern cde would be found in the string abcdefgh.

You might want to use something like this:

[[ "$(md5sum "$1")" = "$2 "* ]] && echo ok

We don't really need a regular expression match here, and since md5sum outputs the trailing space (plus filename) anyway, we can use that in the pattern to check that we match against the full pattern. So giving the function a truncated hash would not match.

Related Solutions

Bash – Filename Expansion: Find Utility Pattern Matching vs Bash Shell Pattern Matching

In the shell, you need to distinguish filename generation/expansion (aka globbing: a pattern that expands to a list of files) from pattern matching. globbing uses pattern matching internally, but it's really before all an operator to generate a list of files based on a pattern.

*/*.txt is a pattern which matches a sequence of 0 or more characters, followed by /, followed by a sequence of zero or more characters, followed by .txt. When used as a shell pattern as in:

case $file in
  */*.txt) echo match
esac

It will match on file=.foo/bar/baz.txt.

However, */*.txt as a glob is something related but more complex.

In expanding */*.txt into a list of files, the shell will open the current directory, list its content, find the non-hidden files of type directory (or symlink to directory) that match *, sort that list, open each of those, list their content, and find the non-hidden ones that match *.txt.

It will never expand .foo/bar/bar.txt even though that matches the pattern because that's not how it works. On the other hand, the file paths generated by a glob will all match that pattern.

Similarly, a glob like foo[a/b]baz* will find all the files whose name starts with b]baz in the foo[a directory.

So, we've seen already that for globbing, but not for pattern matching, / is special (globs are somehow split on / and each part treated separately) and dot-files are treated specially.

Shell globbing and pattern matching are part of the shell syntax. It's intertwined with quoting and other forms of expansion.

$ bash -c 'case "]" in [x"]"]) echo true; esac'
true

Quoting that ] removes its special meaning (of closing the previous [):

It can be even more confusing when you mix everything:

$ ls
*  \*  \a  x

$ p='\*' ksh -xc 'ls $p'
+ ls '\*' '\a'
\*  \a

OK \* is all the files starting with \.

$ p='\*' bash -xc 'ls $p'
+ ls '\*'
\*

It's not all the files starting with \. So, somehow, \ must have escaped the *, but then again it's not matching * either...

For find, it's a lot simpler. find descends the directory tree at each of the file argument it receives and then do the tests as instructed for each encountered file.

For -type f, that's true if the file is a regular file, false otherwise for -name <some-pattern>, that's true if the name of the currently considered file matches the pattern, false otherwise. There's no concept of hidden file or / handling or shell quoting here, that's just matching a string (the name of the file) against a pattern.

So for instance, -name '*foo[a/b]ar' (which passes -name and *foo[a/b]ar arguments to find) will match foobar and .fooaar. It will never match foo/bar, but that's because -name matches on the file name; it would with -path instead.

Now, there is one form of quoting/escaping -- for find -- recognised here, and that's only with backslash. That allows to escape operators. For the shell, it's done as part of the usual shell quoting (\ is one of the shell's quoting mechanisms). For find (fnmatch()), that's part of the pattern syntax.

For instance, -name '\**' would match on files whose name starts with *. -name '*[\^x]*' would match on files whose name contains ^ or x...

Now, as for the different operators recognised by find, fnmatch(), bash and various other shells, they should all agree at least on a common subset: *, ? and [...].

Whether a particular shell or find implementation uses the system's fnmatch() function or their own is up to the implementation. GNU find does at least on GNU systems. Shells are very unlikely to use them as it would make things complicated for them and not worth the effort.

bash certainly doesn't. Modern shells like ksh, bash, zsh also have extensions over *, ?, [...] and a number of options and special parameters (GLOBIGNORE/FIGNORE) to affect their globbing behaviour.

Also note that beside fnmatch() which implements shell pattern matching, there's also the glob() function that implements something similar to shell globbing.

Now, there can be subtle differences between the pattern matching operators in those various implementations.

For instance, for GNU fnmatch(), ?, * or [!x] would not match a byte or sequence of bytes that don't form valid characters while bash (and most other shells) would. For instance, on a GNU system, find . -name '*' may fail to match files whose name contains invalid characters, while bash -c 'echo *' will list them (as long as they don't start with .).

We've mentioned already the confusion that can be incurred by quoting.

Bash – Should I try to get rid of “Inappropriate ioctl for device” in strace output for a Bash script

You can't get rid of it and there's no reason to remove it anyway. This comes from bash checking whether the input is coming from a terminal (it calls isatty). It doesn't actually use this information in your case, only when various options are passed. If you're curious about the details, read the source code (read_builtin function in builtins/read.def).

The fact that the TCGETS ioctl returns ENOTTY is how the application can tell that the input isn't a terminal. It's expected. Just because a function returns an error status doesn't mean that something is wrong.

Best Answer

Related Solutions

Bash – Filename Expansion: Find Utility Pattern Matching vs Bash Shell Pattern Matching

Bash – Should I try to get rid of “Inappropriate ioctl for device” in strace output for a Bash script

Related Question