| 2004 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2005 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | |
| 2006 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Oct | Oct | |
| 2007 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | 2007 |
| 2008 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | 2008 |
| 2009 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | 2009 |
| 2010 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | 2010 |
| 2011 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | 2011 |
| 2012 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | 2012 |
| 2013 | Jan | Feb | Mar | Apr | May | Jun | Jul | Aug | Sep | Oct | Nov | Dec | 2013 |
Tue 31st Jan 2012 @ 23:08 2012: rm -rf /
It is commonly said that Solaris 10 will not allow you to issue a rm -rf / command. Few get to try it, but it was being discussed in the office today, so I thought I'd try it on a virtual machine.
The classic rm -rf / gets the message "rm of / is not allowed" and a return code of 2. Some variations get the same, whilst others (such as cd /; rm -rf .) get no message, a return code of zero, but nothing happens. Here is a transcript:
$ ssh sunflare
Password:
Last login: Tue Jan 31 21:38:05 2012 from goldie
Oracle Corporation SunOS 5.10 Generic Patch January 2005
steve@sunflare:~$ su -
Password:
Oracle Corporation SunOS 5.10 Generic Patch January 2005
# bash
root@sunflare:/# df -h
Filesystem size used avail capacity Mounted on
/dev/md/dsk/d10 9.6G 3.6G 5.9G 38% /
/devices 0K 0K 0K 0% /devices
ctfs 0K 0K 0K 0% /system/contract
proc 0K 0K 0K 0% /proc
mnttab 0K 0K 0K 0% /etc/mnttab
swap 2.1G 992K 2.1G 1% /etc/svc/volatile
objfs 0K 0K 0K 0% /system/object
sharefs 0K 0K 0K 0% /etc/dfs/sharetab
fd 0K 0K 0K 0% /dev/fd
swap 2.1G 72K 2.1G 1% /tmp
swap 2.1G 32K 2.1G 1% /var/run
/dev/md/dsk/d60 4.6G 4.7M 4.6G 1% /export/home
root@sunflare:/# rm -rf /
rm of / is not allowed
root@sunflare:/# echo $?
2
root@sunflare:/# cd /usr
root@sunflare:/usr# rm -rf ../
rm of / is not allowed
root@sunflare:/usr# cd /tmp
root@sunflare:/tmp# rm -rf ../
rm of / is not allowed
root@sunflare:/tmp# cd /usr/sfw/bin
root@sunflare:/usr/sfw/bin# rm -rf ../../..
root@sunflare:/usr/sfw/bin# cd /
root@sunflare:/# rm -rf .
root@sunflare:/# echo $?
0
root@sunflare:/# pwd
/
root@sunflare:/# df -h .
Filesystem size used avail capacity Mounted on
/dev/md/dsk/d10 9.6G 3.6G 5.9G 38% /
root@sunflare:/# cd /dev
root@sunflare:/dev# rm -rf ../tmp/../
rm of / is not allowed
root@sunflare:/dev# rm -rf ../tmp/..
root@sunflare:/dev# exit
steve@sunflare:~$ logout
Connection to sunflare closed.
$
Wed 25th Jan 2012 @ 23:08 2012: Binary (In)Compatability: Solaris 11 : A Response
An article on rootvg.net, Binary (In)Compatability: Solaris 11, claims that in the Oracle Solaris 11 ISV Adoption Guide, the Executive Overview says, simply - Q. quaranteed? A. not any longer. This is actually a paraphrase. The later quote is correct:
This document is designed to help independent software vendors (ISVs) transition their applications smoothly from Oracle Solaris 10 to Oracle Solaris 11. It provides a list of all currently known modifications, which may be needed for existing applications to run on Oracle Solaris 11. The majority of applications will work without any modification.
Actually, this document explains issues beyond the ABI; as new features are introduced, and previously deprecated functions are removed, the operating environment will change. The ABI is still guaranteed, however.
What the document does cover are listed clearly:
It discusses the currently known border cases where configuration changes may be needed due to:
The document clearly states that Oracle Solaris 11 and Oracle Solaris 11 are planned to be binary compatible with previous Oracle
Solaris versions2. This means that existing application binaries should run on Oracle Solaris 11 (and higher) without recompilation, as long as that applications were coded to standard, published Oracle Solaris APIs and ABIs. Presumably the repetition of "Oracle Solaris 11" is a typo related to the removal of OpenSolaris, though that is just a guess on my part.
So - the binary compatibility guarantee is the same as it always has been. Software which makes assumptions about older versions of Solaris may need checking - parsing the output of "df" is different for ZFS filesystems. Using the pkginfo command to check availability of a software package won't work for IFS packages. Depending on an obsolete driver would also make no sense, just as AIX6 does not support POWER3 architecture, for example.
The document further clarifies the situation - same as it ever was:
Oracle Solaris provides a binary guarantee – that an application that complies with the Oracle Solaris ABI developed and built on an earlier version of Oracle Solaris should run unmodified on Oracle
Solaris 11 on the same architecture. In order to provide this guarantee, the application must meet the following restrictions:
Oracle Solaris provides a number of tools to check an application’s compliance against the Oracle Solaris ABI.
On Oracle Solaris 10 the appcert and apptrace tools can be used to perform static and dynamic checking of an application to test for ABI compliance. This can be done a system running Oracle Solaris 10 before testing the application on Oracle Solaris 11.
The Oracle Solaris Ready Test Suite, used on Oracle Solaris 10 to determine if an application can be deployed in a zone, includes an ABI compliance check.
The document also goes into some detail of changes in Solaris Zones; one of the biggest is that Branded Zones for Solaris 8 and Solaris 9 are no longer supported, but as they were never supported for production use, that is of very little relevance.
So, the Solaris binary compatibility guarantee is just as healthy as it has ever been.
The RootVG.net article suggests that the answer is to "use shared libraries and API's. The new shared libraries do the work, should it be necessary, to make it work." Clinging to the past, whilst adding complexities to library code is not the way to deal with the huge feature changes and massive development work that has happened in Solaris 10 and Solaris 11. Maintaining a clear and supported ABI is the solution. Solaris has always done that, and continues to do that, whilst also maintaining Unix as a first-class 21st century operating system.
