{"id":181,"date":"2018-10-22T12:00:00","date_gmt":"2018-10-22T04:00:00","guid":{"rendered":"https:\/\/yeslq.com\/201810181.html"},"modified":"2019-05-07T10:43:44","modified_gmt":"2019-05-07T02:43:44","slug":"the-linux-command-line-errors-and_22","status":"publish","type":"post","link":"https:\/\/yeslq.com\/?p=181","title":{"rendered":"The Linux Command Line—Errors And Signals And Traps (Oh My!) – Part 2"},"content":{"rendered":"

\nThe Linux Command Line <\/a><\/i>by William Shotts<\/span><\/h1>\n
\n
<\/span><\/div>\n
\n<\/p>\n
\nErrors are not the only way that a script can terminate unexpectedly. You also have to be concerned with signals. Consider the following program:<\/div>\n
\n
#!\/bin\/bash\n\necho \"this script will endlessly loop until you stop it\"\nwhile true; do\n : # Do nothing\ndone\n<\/pre>\n<\/div>\n
\nAfter you launch this script it will appear to hang. Actually, like most programs that appear to hang, it is really stuck inside a loop. In this case, it is waiting for the true command to return a non-zero exit status, which it never does. Once started, the script will continue until bash receives a signal that will stop it. You can send such a signal by typing Ctrl-c which is the signal called SIGINT (short for SIGnal INTerrupt).<\/div>\n
\nCleaning Up After Yourself<\/h2>\n
\nOkay, so a signal can come along and make your script terminate. Why does it matter? Well, in many cases it doesn’t matter and you can ignore signals, but in some cases it will matter.<\/div>\n
\nLet’s take a look at another script:<\/div>\n
\n
#!\/bin\/bash\n\n# Program to print a text file with headers and footers\n\nTEMP_FILE=\/tmp\/printfile.txt\n\npr $1 > $TEMP_FILE\n\necho -n \"Print file? [y\/n]: \"\nread\nif [ \"$REPLY\" = \"y\" ]; then\n lpr $TEMP_FILE\nfi\n<\/pre>\n<\/div>\n
\nThis script processes a text file specified on the command line with the pr<\/a> command and stores the result in a temporary file. Next, it asks the user if they want to print the file. If the user types “y”, then the temporary file is passed to the lpr<\/a> program for printing (you may substitute less for lpr if you don’t actually have a printer attached to your system.)<\/div>\n
\nNow, I admit this script has a lot of design problems. While it needs a file name passed on the command line, it doesn’t check that it got one, and it doesn’t check that the file actually exists. But the problem I want to focus on here is the fact that when the script terminates, it leaves behind the temporary file.<\/div>\n
\nGood practice would dictate that we delete the temporary file $TEMP_FILE when the script terminates. This is easily accomplished by adding the following to the end of the script:<\/div>\n
\n
rm $TEMP_FILE\n<\/pre>\n<\/div>\n
\nThis would seem to solve the problem, but what happens if the user types ctrl-c when the “Print file? [y\/n]:” prompt appears? The script will terminate at the read command and the rm command is never executed. Clearly, we need a way to respond to signals such as SIGINT when the Ctrl-c key is typed.<\/div>\n
\nFortunately, bash provides a method to perform commands if and when signals are received.<\/div>\n
\ntrap<\/h2>\n
\nThe trap command allows you to execute a command when a signal is received by your script. It works like this:<\/div>\n
\n
trap arg signals\n<\/pre>\n<\/div>\n
\n“signals” is a list of signals to intercept and “arg” is a command to execute when one of the signals is received. For our printing script, we might handle the signal problem this way:<\/div>\n
\n
#!\/bin\/bash\n\n# Program to print a text file with headers and footers\n\nTEMP_FILE=\/tmp\/printfile.txt\n\ntrap \"rm $TEMP_FILE; exit\" SIGHUP SIGINT SIGTERM\n\npr $1 > $TEMP_FILE\n\necho -n \"Print file? [y\/n]: \"\nread\nif [ \"$REPLY\" = \"y\" ]; then\n lpr $TEMP_FILE\nfi\nrm $TEMP_FILE\n<\/pre>\n<\/div>\n
\nHere we have added a trap command that will execute “rm $TEMP_FILE” if any of the listed signals is received. The three signals listed are the most common ones that you will encounter, but there are many more that can be specified. For a complete list, type “trap -l”. In addition to listing the signals by name, you may alternately specify them by number.<\/div>\n
\n
\nSignal 9 From Outer Space<\/h2>\n
There is one signal that you cannot trap: SIGKILL or signal 9. The kernel immediately terminates any process sent this signal and no signal handling is performed. Since it will always terminate a program that is stuck, hung, or otherwise screwed up, it is tempting to think that it’s the easy way out when you have to get something to stop and go away. Often you will see references to the following command which sends the SIGKILL signal:
\nkill -9However, despite its apparent ease, you must remember that when you send this signal, no processing is done by the application. Often this is OK, but with many programs it’s not. In particular, many complex programs (and some not-so-complex) create lock files<\/i> to prevent multiple copies of the program from running at the same time. When a program that uses a lock file is sent a SIGKILL, it doesn’t get the chance to remove the lock file when it terminates. The presence of the lock file will prevent the program from restarting until the lock file is manually removed.
\nBe warned. Use SIGKILL as a last resort.<\/div>\n
\nA clean_up Function<\/h2>\n
\nWhile the trap command has solved the problem, we can see that it has some limitations. Most importantly, it will only accept a single string containing the command to be performed when the signal is received. You could get clever and use “;” and put multiple commands in the string to get more complex behavior, but frankly, it’s ugly. A better way would be to create a function that is called when you want to perform any actions at the end of your script. In my scripts, I call this function clean_up.<\/div>\n
\n
#!\/bin\/bash\n\n# Program to print a text file with headers and footers\n\nTEMP_FILE=\/tmp\/printfile.txt\n\nclean_up() {\n\n # Perform program exit housekeeping\n rm $TEMP_FILE\n exit\n}\n\ntrap clean_up SIGHUP SIGINT SIGTERM\n\npr $1 > $TEMP_FILE\n\necho -n \"Print file? [y\/n]: \"\nread\nif [ \"$REPLY\" = \"y\" ]; then\n lpr $TEMP_FILE\nfi\nclean_up\n<\/pre>\n<\/div>\n
\nThe use of a clean up function is a good idea for your error handling routines too. After all, when your program terminates (for whatever reason), you should clean up after yourself. Here is finished version of our program with improved error and signal handling:<\/div>\n
\n
#!\/bin\/bash\n\n# Program to print a text file with headers and footers\n\n# Usage: printfile file\n\n# Create a temporary file name that gives preference\n# to the user's local tmp directory and has a name\n# that is resistant to \"temp race attacks\"\n\nif [ -d \"~\/tmp\" ]; then\n TEMP_DIR=~\/tmp\nelse\n TEMP_DIR=\/tmp\nfi\nTEMP_FILE=$TEMP_DIR\/printfile.$$.$RANDOM\nPROGNAME=$(basename $0)\n\nusage() {\n\n # Display usage message on standard error\n echo \"Usage: $PROGNAME file\" 1>&2\n}\n\nclean_up() {\n\n # Perform program exit housekeeping\n # Optionally accepts an exit status\n rm -f $TEMP_FILE\n exit $1\n}\n\nerror_exit() {\n\n # Display error message and exit\n echo \"${PROGNAME}: ${1:-\"Unknown Error\"}\" 1>&2\n clean_up 1\n}\n\ntrap clean_up SIGHUP SIGINT SIGTERM\n\nif [ $# != \"1\" ]; then\n usage\n error_exit \"one file to print must be specified\"\nfi\nif [ ! -f \"$1\" ]; then\n error_exit \"file $1 cannot be read\"\nfi\n\npr $1 > $TEMP_FILE || error_exit \"cannot format file\"\n\necho -n \"Print file? [y\/n]: \"\nread\nif [ \"$REPLY\" = \"y\" ]; then\n lpr $TEMP_FILE || error_exit \"cannot print file\"\nfi\nclean_up\n<\/pre>\n<\/div>\n
\nCreating Safe Temporary Files<\/h2>\n
\nIn the program above, there a number of steps taken to help secure the temporary file used by this script. It is a Unix tradition to use a directory called \/tmpto place temporary files used by programs. Everyone may write files into this directory. This naturally leads to some security concerns. If possible, avoid writing files in the \/tmp directory. The preferred technique is to write them in a local directory such as ~\/tmp (a tmp subdirectory in the user’s home directory.) If you must write files in \/tmp, you must take steps to make sure the file names are not predictable. Predictable file names allow an attacker to create symbolic links to other files that the attacker wants you to overwrite.<\/div>\n
\nA good file name will help you figure out what wrote the file, but will not be entirely predictable. In the script above, the following line of code created the temporary file $TEMP_FILE:<\/div>\n
\n
TEMP_FILE=$TEMP_DIR\/printfile.$$.$RANDOM\n<\/pre>\n<\/div>\n
\nThe $TEMP_DIR variable contains either \/tmp or ~\/tmp depending on the availability of the directory. It is common practice to embed the name of the program into the file name. We have done that with the string “printfile”. Next, we use the $$ shell variable to embed the process id (pid) of the program. This further helps identify what process is responsible for the file. Surprisingly, the process id alone is not unpredictable enough to make the file safe, so we add the $RANDOM shell variable to append a random number to the file name. With this technique, we create a file name that is both easily identifiable and unpredictable.<\/div>\n
\nThere You Have It<\/h2>\n
\nThis concludes the LinuxCommand.org tutorials. I sincerely hope you found them both useful and enjoyable. If you did, continue your command line adventure by downloading my book<\/a>.<\/div>\n
\n<\/div>\n
<\/span><\/div>\n
\n
<\/span><\/div>\n","protected":false},"excerpt":{"rendered":"
The Linux Command Line by William Shotts Errors ar … \u9605\u8bfb\u66f4\u591a<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[50,51,52,53],"class_list":["post-181","post","type-post","status-publish","format-standard","hentry","category-uncategorized","tag-error","tag-linux","tag-shell","tag-the-linux-command-line"],"_links":{"self":[{"href":"https:\/\/yeslq.com\/index.php?rest_route=\/wp\/v2\/posts\/181","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/yeslq.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/yeslq.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/yeslq.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/yeslq.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=181"}],"version-history":[{"count":1,"href":"https:\/\/yeslq.com\/index.php?rest_route=\/wp\/v2\/posts\/181\/revisions"}],"predecessor-version":[{"id":323,"href":"https:\/\/yeslq.com\/index.php?rest_route=\/wp\/v2\/posts\/181\/revisions\/323"}],"wp:attachment":[{"href":"https:\/\/yeslq.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=181"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/yeslq.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=181"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/yeslq.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=181"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}