Linux Shell Files Security CP – Is cp –no-clobber Vulnerable to Race Condition?

cpfileslinuxSecurityshell

The man page for cp(1) says

--no-clobber do not overwrite an existing file

However, wouldn't the following scenario be possible?

cp checks the file existence, let's assume the file doesn't exist (yet)
Some other process writes to the same path, so now there is data written to the previously not existing file
Since cp isn't aware of the now existing file, it overwrites the data

Is cp --no-clobber vulnerable to this race condition? And if not, how does cp avoid the situation above?

Best Answer

cp isn’t vulnerable to this race condition. When --no-clobber is set, it checks whether the destination already exists; if it determines it doesn’t, and it should therefore proceed with the copy, it remembers that it’s supposed to copy to a new file. When the time comes to open the destination file, it opens it with flags which enforce its creation, O_CREAT and O_EXCL; the operating system then checks that the file doesn’t exist while opening it, and fails (EEXIST) if it does.

Related Solutions

Linux – Single command to check if file exists, and print (custom) message to stdout

Sounds like you need the exit status reversed, so you could do:

system("[ ! -e file ]; echo $?")

or:

system("[ -e file ]; echo $((!$?))")

(note that -f is for if file exists and is a regular file).

Confusion on the cp command when creating a new directory

The command cp Foo Bar says "Copy the Foo directory to Bar". If it already exists, it will put Foo inside of Bar. If you want explicitly to copy the contents of Foo, use cp -r Foo/ Bar/ or, better, use rsync -a. To elaborate: if Bar does not exist, it will be created wtih cp; if it does not, it will act as the destination into which you want to copy files.

Best Answer

Related Solutions

Linux – Single command to check if file exists, and print (custom) message to stdout

Confusion on the cp command when creating a new directory

Related Question