ROOT does not work when launched from non-accessible folder #12409

ktf · 2023-03-02T08:15:14Z

[x ] Checked for duplicates

Describe the bug

ROOT 6.28.00 does not work correctly when $PWD is not accessible by the user.

If I do:

mkdir -p foo
cd foo
chmod 000 .
root

it fails with:

input_line_2:1:10: fatal error: cannot open file './cling/Interpreter/RuntimeUniverse.h': Permission denied
#include "cling/Interpreter/RuntimeUniverse.h"
         ^
Replaced symbol atexit cannot be found in JIT!
Replaced symbol at_quick_exit cannot be found in JIT!
input_line_4:2:10: fatal error: cannot open file './TError.h': Permission denied
#include "TError.h"
         ^
input_line_5:1:10: fatal error: cannot open file './cling/Interpreter/DynamicLookupRuntimeUniverse.h': Permission denied
#include "cling/Interpreter/DynamicLookupRuntimeUniverse.h"

the same snippet works fine with 6.26.10.

Notice things work fine with just the x bit set (i.e. chmod 100 . still works).

Expected behavior

The standard root prompt without any error.

To Reproduce

See above.

mkdir -p foo
cd foo
chmod 000 .
root

Setup

ROOT 6.28.00, both el7 and ubuntu.

Additional context

While this can look like a corner case, it reflects the way ALICE runs its online reconstruction jobs, so it's rather critical for us. I am in parallel trying to understand if the unaccessible cwd can be avoided, but this might have non trivial implications (and its for sure beyond my responsibilities).

ktf · 2023-03-02T08:15:40Z

@knopers @vascobarroso FYI

ktf · 2023-03-02T08:22:08Z

@Barthelemy

ktf · 2023-03-02T08:24:44Z

I had a typo in the reproducer, now corrected.

ktf · 2023-03-02T08:27:43Z

For ALICE people see also https://alice.its.cern.ch/jira/browse/O2-3591.

ktf · 2023-03-02T08:28:08Z

FYI @pzhristov

Axel-Naumann · 2023-03-03T08:27:53Z

Update: I can reproduce this with the (for our tests nicer) case

mkdir cling
chmod a-xr cling
root

which gives the same diagnostics as above.

These headers are part of cling, not user code, so starting with the current directory is pointless and can actually be counterproductive. This helps with root-project#12409 but not enough; any dictionary header will still try to access "./".

Axel-Naumann · 2023-03-03T11:42:53Z

clang does not work when launched from non-accessible folder, either:

$ mkdir noread
$ cd noread/
$ chmod a-rwx .
$ echo '#include "ROOT/config/RVersion.hxx"' | clang++ -I. -I$ROOTSYS/include/  -fsyntax-only -x c++ -
<stdin>:1:10: fatal error: cannot open file './ROOT/config/RVersion.hxx': Permission denied
#include "ROOT/config/RVersion.hxx"
         ^
1 error generated.

I.e. clang tries to argue "don't do that". But I would argue "clang, please." because it even just goes on and finds the header!

This was introduced here, with subsequent refinements to not have so many irrelevant errors. #12418 now adds another case.

These headers are part of cling, not user code, so starting with the current directory is pointless and can actually be counterproductive. This helps with #12409 but not enough; any dictionary header will still try to access "./".

These headers are part of cling, not user code, so starting with the current directory is pointless and can actually be counterproductive. This helps with root-project/root#12409 but not enough; any dictionary header will still try to access "./".

These headers are part of cling, not user code, so starting with the current directory is pointless and can actually be counterproductive. This helps with root-project#12409 but not enough; any dictionary header will still try to access "./". (cherry picked from commit e660b0b)

These headers are part of cling, not user code, so starting with the current directory is pointless and can actually be counterproductive. This helps with #12409 but not enough; any dictionary header will still try to access "./". (cherry picked from commit e660b0b)

Axel-Naumann · 2023-03-09T09:48:32Z

Fixed in master and 6.28/02, thanks for reporting!

These headers are part of cling, not user code, so starting with the current directory is pointless and can actually be counterproductive. This helps with root-project#12409 but not enough; any dictionary header will still try to access "./".

Axel-Naumann · 2023-05-17T14:56:24Z

Follow-up to potentially upstream this: https://discourse.llvm.org/t/evil-elements-in-header-search-path-cause-havoc/70705

ktf added the bug label Mar 2, 2023

Axel-Naumann assigned Axel-Naumann and vgvassilev Mar 2, 2023

Axel-Naumann added experiment Affects an experiment / reported by its software & computimng experts priority:critical labels Mar 2, 2023

Axel-Naumann mentioned this issue Mar 3, 2023

Survive header inclusion with unreadable -I elements #12418

Merged

Axel-Naumann closed this as completed Mar 9, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ROOT does not work when launched from non-accessible folder #12409

ROOT does not work when launched from non-accessible folder #12409

ktf commented Mar 2, 2023 •

edited

Loading

ktf commented Mar 2, 2023

ktf commented Mar 2, 2023

ktf commented Mar 2, 2023

ktf commented Mar 2, 2023

ktf commented Mar 2, 2023

Axel-Naumann commented Mar 3, 2023

Axel-Naumann commented Mar 3, 2023

Axel-Naumann commented Mar 9, 2023

Axel-Naumann commented May 17, 2023

ROOT does not work when launched from non-accessible folder #12409

ROOT does not work when launched from non-accessible folder #12409

Comments

ktf commented Mar 2, 2023 • edited Loading

Describe the bug

Expected behavior

To Reproduce

Setup

Additional context

ktf commented Mar 2, 2023

ktf commented Mar 2, 2023

ktf commented Mar 2, 2023

ktf commented Mar 2, 2023

ktf commented Mar 2, 2023

Axel-Naumann commented Mar 3, 2023

Axel-Naumann commented Mar 3, 2023

Axel-Naumann commented Mar 9, 2023

Axel-Naumann commented May 17, 2023

ktf commented Mar 2, 2023 •

edited

Loading