Bugtraq mailing list archives

Re: export LD_LIBRARY_PATH in /etc/profile.d/* files

From: mlh () zip com au
Date: Wed, 18 Dec 2002 09:29:33 +1100


On Tue, Dec 17, 2002 at 06:51:00PM +0000, rich () annexia org wrote:

On a machine I administrate I recently discovered an entry in
/etc/profile.d/oracle.sh:

export LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/home/oracle/OraHome1/lib

I noticed today that this leaves the value of LD_LIBRARY_PATH as:

:/home/oracle/OraHome1/lib

 
[ ... ]

If the desired effect is really to have shared libraries loaded from
whatever the current directory is, then the administrator should add
the single dot . to LD_LIBRARY_PATH.


But isn't a . in LD_LIBRARY_PATH the same as an empty entry.
Or anyway, just as insecure?

What the original script should do is append to LD_LIBRARY_PATH
only if it is already defined.  It's quite a common mistake I fear.

Scripts should do:
LD_LIBRARY_PATH=${LD_LIBRARY_PATH:+${LD_LIBRARY_PATH}:}$ORACLE_HOME/lib

Which is the same as

if [ -n "$LD_LIBRARY_PATH" ]
then
        LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:$ORACLE_HOME/lib
else
        LD_LIBRARY_PATH=$ORACLE_HOME/lib
fi

Even Oracle's own oraenv script gets it wrong, but at least it
leaves the empty entry at the end.

Matt

Current thread:

export LD_LIBRARY_PATH in /etc/profile.d/* files rich (Dec 17)
- Re: export LD_LIBRARY_PATH in /etc/profile.d/* files mlh (Dec 17)
- <Possible follow-ups>
- Re: export LD_LIBRARY_PATH in /etc/profile.d/* files Antonomasia (Dec 18)