/usr/src/bin/csh/sem.c

Bug Summary

File:	src/bin/csh/sem.c
Warning:	line 261, column 3 This assignment is prohibited after a successful vfork

Annotated Source Code

Press '?' to see keyboard shortcuts

Show analyzer invocation

clang -cc1 -cc1 -triple amd64-unknown-openbsd7.0 -analyze -disable-free -disable-llvm-verifier -discard-value-names -main-file-name sem.c -analyzer-store=region -analyzer-opt-analyze-nested-blocks -analyzer-checker=core -analyzer-checker=apiModeling -analyzer-checker=unix -analyzer-checker=deadcode -analyzer-checker=security.insecureAPI.UncheckedReturn -analyzer-checker=security.insecureAPI.getpw -analyzer-checker=security.insecureAPI.gets -analyzer-checker=security.insecureAPI.mktemp -analyzer-checker=security.insecureAPI.mkstemp -analyzer-checker=security.insecureAPI.vfork -analyzer-checker=nullability.NullPassedToNonnull -analyzer-checker=nullability.NullReturnedFromNonnull -analyzer-output plist -w -setup-static-analyzer -mrelocation-model pic -pic-level 1 -pic-is-pie -mframe-pointer=all -relaxed-aliasing -fno-rounding-math -mconstructor-aliases -munwind-tables -target-cpu x86-64 -target-feature +retpoline-indirect-calls -target-feature +retpoline-indirect-branches -tune-cpu generic -debugger-tuning=gdb -fcoverage-compilation-dir=/usr/src/bin/csh/obj -resource-dir /usr/local/lib/clang/13.0.0 -I /usr/src/bin/csh -I . -internal-isystem /usr/local/lib/clang/13.0.0/include -internal-externc-isystem /usr/include -O2 -fdebug-compilation-dir=/usr/src/bin/csh/obj -ferror-limit 19 -fwrapv -D_RET_PROTECTOR -ret-protector -fgnuc-version=4.2.1 -vectorize-loops -vectorize-slp -fno-builtin-malloc -fno-builtin-calloc -fno-builtin-realloc -fno-builtin-valloc -fno-builtin-free -fno-builtin-strdup -fno-builtin-strndup -analyzer-output=html -faddrsig -D__GCC_HAVE_DWARF2_CFI_ASM=1 -o /home/ben/Projects/vmm/scan-build/2022-01-12-194120-40624-1 -x c /usr/src/bin/csh/sem.c

1/*	$OpenBSD: sem.c,v 1.23 2019/06/28 13:34:58 deraadt Exp $	*/
2/*	$NetBSD: sem.c,v 1.9 1995/09/27 00:38:50 jtc Exp $	*/

4/*-
* Copyright (c) 1980, 1991, 1993
*	The Regents of the University of California.  All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
* 1. Redistributions of source code must retain the above copyright
*    notice, this list of conditions and the following disclaimer.
* 2. Redistributions in binary form must reproduce the above copyright
*    notice, this list of conditions and the following disclaimer in the
*    documentation and/or other materials provided with the distribution.
* 3. Neither the name of the University nor the names of its contributors
*    may be used to endorse or promote products derived from this software
*    without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
* ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
* SUCH DAMAGE.
*/

33#include <sys/types.h>
34#include <sys/stat.h>
35#include <errno(*__errno()).h>
36#include <fcntl.h>
37#include <stdlib.h>
38#include <string.h>
39#include <unistd.h>
40#include <limits.h>
41#include <stdarg.h>

43#include "csh.h"
44#include "proc.h"
45#include "extern.h"

47static void	 vffree(int);
48static Char	*splicepipe(struct command *t, Char *);
49static void	 doio(struct command *t, int *, int *);
50static void	 chkclob(char *);

52void
53execute(struct command *t, int wanttty, int *pipein, int *pipeout)
54{
  bool    forked = 0;
  struct biltins *bifunc;
  int     pid = 0;
  int     pv[2];
  sigset_t sigset;

  static sigset_t csigset;

  static sigset_t ocsigset;
  static int onosigchld = 0;
  static int nosigchld = 0;

  UNREGISTER(forked)(void) &forked;
  UNREGISTER(bifunc)(void) &bifunc;
  UNREGISTER(wanttty)(void) &wanttty;

  if (t == 0)
1
Assuming 't' is not equal to null→
2
←
Taking false branch→
return;

  if (t->t_dflg & F_AMPERSAND(1<<0))
3
←
Assuming the condition is false→
4
←
Taking false branch→
wanttty = 0;
  switch (t->t_dtyp) {
5
←
Control jumps to 'case 1:'  at line 78→

  case NODE_COMMAND1:
if ((t->t_dcom[0][0] & (QUOTE0100000U | TRIM0077777)) == QUOTE0100000U)
6
←
Assuming the condition is false→
7
←
Taking false branch→
   (void) memmove(t->t_dcom[0], t->t_dcom[0] + 1,
(Strlen(t->t_dcom[0] + 1) + 1) * sizeof(Char));
if ((t->t_dflg & F_REPEAT(1<<10)) == 0)
8
←
Assuming the condition is false→
9
←
Taking false branch→
   Dfix(t);		/* $ " ' \ */
if (t->t_dcom[0] == 0)
10
←
Taking false branch→
   return;
/* fall into... */

  case NODE_PAREN2:
if (t->t_dflg & F_PIPEOUT(1<<3))
11
←
Assuming the condition is false→
12
←
Taking false branch→
   mypipe(pipeout);
/*
* Must do << early so parent will know where input pointer should be.
* If noexec then this is all we do.
*/
if (t->t_dflg & F_READ(1<<9)) {
13
←
Assuming the condition is false→
14
←
Taking false branch→
   (void) close(0);
   heredoc(t->t_dlefL.T_dlef);
   if (noexec)
(void) close(0);
}

set(STRstatus, Strsave(STR0));

/*
* This mess is the necessary kludge to handle the prefix builtins:
* nice, nohup, time.  These commands can also be used by themselves,
* and this is not handled here. This will also work when loops are
* parsed.
*/
while (t->t_dtyp == NODE_COMMAND1)
15
←
Loop condition is true.  Entering loop body→
   if (eq(t->t_dcom[0], STRnice)(Strcmp(t->t_dcom[0], STRnice) == 0))
16
←
Assuming the condition is true→
17
←
Taking true branch→
if (t->t_dcom[1])
18
←
Assuming the condition is false→
19
←
Taking false branch→
    if (strchr("+-", t->t_dcom[1][0]))
	if (t->t_dcom[2]) {
	    setname("nice")(bname = ("nice"));
	    t->t_nice =
		getn(t->t_dcom[1]);
	    lshift(t->t_dcom, 2);
	    t->t_dflg |= F_NICE(1<<11);
	}
	else
	    break;
    else {
	t->t_nice = 4;
	lshift(t->t_dcom, 1);
	t->t_dflg |= F_NICE(1<<11);
    }
else
    break;
20
←
 Execution continues on line 148→
   else if (eq(t->t_dcom[0], STRnohup)(Strcmp(t->t_dcom[0], STRnohup) == 0))
if (t->t_dcom[1]) {
    t->t_dflg |= F_NOHUP(1<<12);
    lshift(t->t_dcom, 1);
}
else
    break;
   else if (eq(t->t_dcom[0], STRtime)(Strcmp(t->t_dcom[0], STRtime) == 0))
if (t->t_dcom[1]) {
    t->t_dflg |= F_TIME(1<<13);
    lshift(t->t_dcom, 1);
}
else
    break;
   else
break;

/* is it a command */
if (t->t_dtyp20.1
Field 't_dtyp' is equal to NODE_COMMAND
 == NODE_COMMAND1) {
21
←
Taking true branch→
   /*
    * Check if we have a builtin function and remember which one.
    */
   bifunc = isbfunc(t);
   if (noexec) {
22
←
Assuming 'noexec' is 0→
23
←
Taking false branch→
/*
 * Continue for builtins that are part of the scripting language
 */
if (bifunc &&
    bifunc->bfunct != dobreak   && bifunc->bfunct != docontin &&
    bifunc->bfunct != doelse    && bifunc->bfunct != doend    &&
    bifunc->bfunct != doforeach && bifunc->bfunct != dogoto   &&
    bifunc->bfunct != doif      && bifunc->bfunct != dorepeat &&
    bifunc->bfunct != doswbrk   && bifunc->bfunct != doswitch &&
    bifunc->bfunct != dowhile   && bifunc->bfunct != dozip)
    break;
   }
}
else {			/* not a command */
   bifunc = NULL((void *)0);
   if (noexec)
break;
}

/*
* We fork only if we are timed, or are not the end of a parenthesized
* list and not a simple builtin function. Simple meaning one that is
* not pipedout, niced, nohupped, or &'d. It would be nice(?) to not
* fork in some of these cases.
*/
/*
* Prevent forking cd, pushd, popd, chdir cause this will cause the
* shell not to change dir!
*/
if (bifunc && (bifunc->bfunct == dochngd ||
24
←
Assuming 'bifunc' is null→
       bifunc->bfunct == dopushd ||
       bifunc->bfunct == dopopd))
   t->t_dflg &= ~(F_NICE(1<<11));
if (((t->t_dflg & F_TIME(1<<13)) || ((t->t_dflg & F_NOFORK(1<<4)) == 0 &&
25
←
Assuming the condition is true→
    (!bifunc || t->t_dflg &
     (F_PIPEOUT(1<<3) | F_AMPERSAND(1<<0) | F_NICE(1<<11) | F_NOHUP(1<<12))))) ||
/*
* We have to fork for eval too.
*/
   (bifunc && (t->t_dflg & (F_PIPEIN(1<<2) | F_PIPEOUT(1<<3))) != 0 &&
    bifunc->bfunct == doeval)) {
   if (t->t_dtyp == NODE_PAREN2 ||
26
←
Assuming field 't_dtyp' is not equal to NODE_PAREN→
28
←
Taking false branch→
t->t_dflg & (F_REPEAT(1<<10) | F_AMPERSAND(1<<0)) || bifunc27.1
'bifunc' is null
) {
27
←
Assuming the condition is false→
forked++;
/*
 * We need to block SIGCHLD here, so that if the process does
 * not die before we can set the process group
 */
if (wanttty >= 0 && !nosigchld) {
    sigemptyset(&sigset);
    sigaddset(&sigset, SIGCHLD20);
    sigprocmask(SIG_BLOCK1, &sigset, &csigset);
    nosigchld = 1;
}

pid = pfork(t, wanttty);
if (pid == 0 && nosigchld) {
    sigprocmask(SIG_SETMASK3, &csigset, NULL((void *)0));
    nosigchld = 0;
}
else if (pid != 0 && (t->t_dflg & F_AMPERSAND(1<<0)))
    backpid = pid;

   }
   else {
int     ochild, osetintr, ohaderr, odidfds;
int     oSHIN, oSHOUT, oSHERR, oOLDSTD, otpgrp;
sigset_t osigset;

/*
 * Prepare for the vfork by saving everything that the child
 * corrupts before it exec's. Note that in some signal
 * implementations which keep the signal info in user space
 * (e.g. Sun's) it will also be necessary to save and restore
 * the current sigaction's for the signals the child touches
 * before it exec's.
 */
if (wanttty >= 0 && !nosigchld && !noexec) {
29
←
Assuming 'wanttty' is < 0→
    sigemptyset(&sigset);
    sigaddset(&sigset, SIGCHLD20);
    sigprocmask(SIG_BLOCK1, &sigset, &csigset);
    nosigchld = 1;
}
sigemptyset(&sigset);
sigaddset(&sigset, SIGCHLD20);
sigaddset(&sigset, SIGINT2);
sigprocmask(SIG_BLOCK1, &sigset, &osigset);
ochild = child;
osetintr = setintr;
ohaderr = haderr;
odidfds = didfds;
oSHIN = SHIN;
oSHOUT = SHOUT;
oSHERR = SHERR;
oOLDSTD = OLDSTD;
otpgrp = tpgrp;
ocsigset = csigset;
onosigchld = nosigchld;
Vsav = Vdp = NULL((void *)0);
Vexpath = 0;
Vt = 0;
pid = vfork();

if (pid == -1) {
30
←
Taking false branch→
    sigprocmask(SIG_SETMASK3, &osigset, NULL((void *)0));
    stderror(ERR_NOPROC49);
}
forked++;
31
←
This assignment is prohibited after a successful vfork
if (pid) {	/* parent */
    child = ochild;
    setintr = osetintr;
    haderr = ohaderr;
    didfds = odidfds;
    SHIN = oSHIN;
    SHOUT = oSHOUT;
    SHERR = oSHERR;
    OLDSTD = oOLDSTD;
    tpgrp = otpgrp;
    csigset = ocsigset;
    nosigchld = onosigchld;

    free(Vsav);
    Vsav = NULL((void *)0);
    free(Vdp);
    Vdp = NULL((void *)0);
    free(Vexpath);
    Vexpath = NULL((void *)0);
    blkfree((Char **) Vt);
    Vt = NULL((void *)0);
    /* this is from pfork() */
    palloc(pid, t);
    sigprocmask(SIG_SETMASK3, &osigset, NULL((void *)0));
}
else {		/* child */
    /* this is from pfork() */
    int     pgrp;
    bool    ignint = 0;

    if (nosigchld) {
	sigprocmask(SIG_SETMASK3, &csigset, NULL((void *)0));
	nosigchld = 0;
    }

    if (setintr)
	ignint =
	    (tpgrp == -1 &&
	     (t->t_dflg & F_NOINTERRUPT(1<<5)))
	    || (gointr && eq(gointr, STRminus)(Strcmp(gointr, STRminus) == 0));
    pgrp = pcurrjob ? pcurrjob->p_jobid : getpid();
    child++;
    if (setintr) {
	setintr = 0;
	if (ignint) {
	    (void) signal(SIGINT2, SIG_IGN(void (*)(int))1);
	    (void) signal(SIGQUIT3, SIG_IGN(void (*)(int))1);
	}
	else {
	    (void) signal(SIGINT2, vffree);
	    (void) signal(SIGQUIT3, SIG_DFL(void (*)(int))0);
	}

	if (wanttty >= 0) {
	    (void) signal(SIGTSTP18, SIG_DFL(void (*)(int))0);
	    (void) signal(SIGTTIN21, SIG_DFL(void (*)(int))0);
	    (void) signal(SIGTTOU22, SIG_DFL(void (*)(int))0);
	}

	(void) signal(SIGTERM15, parterm);
    }
    else if (tpgrp == -1 &&
	     (t->t_dflg & F_NOINTERRUPT(1<<5))) {
	(void) signal(SIGINT2, SIG_IGN(void (*)(int))1);
	(void) signal(SIGQUIT3, SIG_IGN(void (*)(int))1);
    }

    pgetty(wanttty, pgrp);
    if (t->t_dflg & F_NOHUP(1<<12))
	(void) signal(SIGHUP1, SIG_IGN(void (*)(int))1);
    if (t->t_dflg & F_NICE(1<<11))
	(void) setpriority(PRIO_PROCESS0, 0, t->t_nice);
}

   }
}
if (pid != 0) {
   /*
    * It would be better if we could wait for the whole job when we
    * knew the last process had been started.  Pwait, in fact, does
    * wait for the whole job anyway, but this test doesn't really
    * express our intentions.
    */
   if (didfds == 0 && t->t_dflg & F_PIPEIN(1<<2)) {
(void) close(pipein[0]);
(void) close(pipein[1]);
   }
   if ((t->t_dflg & F_PIPEOUT(1<<3)) == 0) {
if (nosigchld) {
    sigprocmask(SIG_SETMASK3, &csigset, NULL((void *)0));
    nosigchld = 0;
}
if ((t->t_dflg & F_AMPERSAND(1<<0)) == 0)
    pwait();
   }
   break;
}
doio(t, pipein, pipeout);
if (t->t_dflg & F_PIPEOUT(1<<3)) {
   (void) close(pipeout[0]);
   (void) close(pipeout[1]);
}
/*
* Perform a builtin function. If we are not forked, arrange for
* possible stopping
*/
if (bifunc) {
   func(t, bifunc);
   if (forked)
exitstat();
   break;
}
if (t->t_dtyp != NODE_PAREN2) {
   doexec(NULL((void *)0), t);
   /* NOTREACHED */
}
/*
* For () commands must put new 0,1,2 in FSH* and recurse
*/
OLDSTD = dcopy(0, FOLDSTD19);
SHOUT = dcopy(1, FSHOUT17);
SHERR = dcopy(2, FSHERR18);
(void) close(SHIN);
SHIN = -1;
didfds = 0;
wanttty = -1;
t->t_dspr->t_dflg |= t->t_dflg & F_NOINTERRUPT(1<<5);
execute(t->t_dspr, wanttty, NULL((void *)0), NULL((void *)0));
exitstat();

  case NODE_PIPE3:
t->t_dcarL.T_dcar->t_dflg |= F_PIPEOUT(1<<3) |
   (t->t_dflg & (F_PIPEIN(1<<2) | F_AMPERSAND(1<<0) | F_STDERR(1<<7) | F_NOINTERRUPT(1<<5)));
execute(t->t_dcarL.T_dcar, wanttty, pipein, pv);
t->t_dcdrR.T_dcdr->t_dflg |= F_PIPEIN(1<<2) | (t->t_dflg &
	(F_PIPEOUT(1<<3) | F_AMPERSAND(1<<0) | F_NOFORK(1<<4) | F_NOINTERRUPT(1<<5)));
if (wanttty > 0)
   wanttty = 0;	/* got tty already */
execute(t->t_dcdrR.T_dcdr, wanttty, pv, pipeout);
break;

  case NODE_LIST4:
if (t->t_dcarL.T_dcar) {
   t->t_dcarL.T_dcar->t_dflg |= t->t_dflg & F_NOINTERRUPT(1<<5);
   execute(t->t_dcarL.T_dcar, wanttty, NULL((void *)0), NULL((void *)0));
   /*
    * In strange case of A&B make a new job after A
    */
   if (t->t_dcarL.T_dcar->t_dflg & F_AMPERSAND(1<<0) && t->t_dcdrR.T_dcdr &&
(t->t_dcdrR.T_dcdr->t_dflg & F_AMPERSAND(1<<0)) == 0)
pendjob();
}
if (t->t_dcdrR.T_dcdr) {
   t->t_dcdrR.T_dcdr->t_dflg |= t->t_dflg &
(F_NOFORK(1<<4) | F_NOINTERRUPT(1<<5));
   execute(t->t_dcdrR.T_dcdr, wanttty, NULL((void *)0), NULL((void *)0));
}
break;

  case NODE_OR5:
  case NODE_AND6:
if (t->t_dcarL.T_dcar) {
   t->t_dcarL.T_dcar->t_dflg |= t->t_dflg & F_NOINTERRUPT(1<<5);
   execute(t->t_dcarL.T_dcar, wanttty, NULL((void *)0), NULL((void *)0));
   if ((getn(value(STRstatus)value1(STRstatus, &shvhed)) == 0) !=
(t->t_dtyp == NODE_AND6))
return;
}
if (t->t_dcdrR.T_dcdr) {
   t->t_dcdrR.T_dcdr->t_dflg |= t->t_dflg &
(F_NOFORK(1<<4) | F_NOINTERRUPT(1<<5));
   execute(t->t_dcdrR.T_dcdr, wanttty, NULL((void *)0), NULL((void *)0));
}
break;
  }
  /*
   * Fall through for all breaks from switch
   *
   * If there will be no more executions of this command, flush all file
   * descriptors. Places that turn on the F_REPEAT bit are responsible for
   * doing donefds after the last re-execution
   */
  if (didfds && !(t->t_dflg & F_REPEAT(1<<10)))
donefds();
446}

448static void
449vffree(int i)
450{
  _exit(i);
452}

454/*
* Expand and glob the words after an i/o redirection.
* If more than one word is generated, then update the command vector.
*
* This is done differently in all the shells:
* 1. in the bourne shell and ksh globbing is not performed
* 2. Bash/csh say ambiguous
* 3. zsh does i/o to/from all the files
* 4. itcsh concatenates the words.
*
* I don't know what is best to do. I think that Ambiguous is better
* than restructuring the command vector, because the user can get
* unexpected results. In any case, the command vector restructuring
* code is present and the user can choose it by setting noambiguous
*/
469static Char *
470splicepipe(struct command *t, Char *cp) /* word after < or > */
471{
  Char *blk[2];

  if (adrof(STRnoambiguous)adrof1(STRnoambiguous, &shvhed)) {
Char **pv;

blk[0] = Dfix1(cp); /* expand $ */
blk[1] = NULL((void *)0);

gflag = 0, tglob(blk);
if (gflag) {
   pv = globall(blk);
   if (pv == NULL((void *)0)) {
setname(vis_str(blk[0]))(bname = (vis_str(blk[0])));
free(blk[0]);
stderror(ERR_NAME0x10000000 | ERR_NOMATCH50);
   }
   gargv = NULL((void *)0);
   if (pv[1] != NULL((void *)0)) { /* we need to fix the command vector */
Char **av = blkspl(t->t_dcom, &pv[1]);
free(t->t_dcom);
t->t_dcom = av;
   }
   free(blk[0]);
   blk[0] = pv[0];
   free(pv);
}
  }
  else {
blk[0] = globone(blk[1] = Dfix1(cp), G_ERROR0);
free(blk[1]);
  }
  return(blk[0]);
504}

506/*
* Perform io redirection.
* We may or maynot be forked here.
*/
510static void
511doio(struct command *t, int *pipein, int *pipeout)
512{
  int fd;
  Char *cp;
  int flags = t->t_dflg;

  if (didfds || (flags & F_REPEAT(1<<10)))
return;
  if ((flags & F_READ(1<<9)) == 0) {/* F_READ already done */
if (t->t_dlefL.T_dlef) {
   char    tmp[PATH_MAX1024];

   /*
    * so < /dev/std{in,out,err} work
    */
   (void) dcopy(SHIN, 0);
   (void) dcopy(SHOUT, 1);
   (void) dcopy(SHERR, 2);
   cp = splicepipe(t, t->t_dlefL.T_dlef);
   strlcpy(tmp, short2str(cp), sizeof tmp);
   free(cp);
   if ((fd = open(tmp, O_RDONLY0x0000)) == -1)
stderror(ERR_SYSTEM55, tmp, strerror(errno(*__errno())));
   (void) dmove(fd, 0);
}
else if (flags & F_PIPEIN(1<<2)) {
   (void) close(0);
   (void) dup(pipein[0]);
   (void) close(pipein[0]);
   (void) close(pipein[1]);
}
else if ((flags & F_NOINTERRUPT(1<<5)) && tpgrp == -1) {
   (void) close(0);
   (void) open(_PATH_DEVNULL"/dev/null", O_RDONLY0x0000);
}
else {
   (void) close(0);
   (void) dup(OLDSTD);
   (void) fcntl(STDIN_FILENO0, F_SETFD2, 0);
}
  }
  if (t->t_dritR.T_drit) {
char    tmp[PATH_MAX1024];

cp = splicepipe(t, t->t_dritR.T_drit);
strlcpy(tmp, short2str(cp), sizeof tmp);
free(cp);
/*
* so > /dev/std{out,err} work
*/
(void) dcopy(SHOUT, 1);
(void) dcopy(SHERR, 2);
if ((flags & F_APPEND(1<<1)) &&
   (fd = open(tmp, O_WRONLY0x0001 | O_APPEND0x0008)) >= 0);
else {
   if (!(flags & F_OVERWRITE(1<<8)) && adrof(STRnoclobber)adrof1(STRnoclobber, &shvhed)) {
if (flags & F_APPEND(1<<1))
    stderror(ERR_SYSTEM55, tmp, strerror(errno(*__errno())));
chkclob(tmp);
   }
   if ((fd = open(tmp, O_WRONLY0x0001 | O_CREAT0x0200 | O_TRUNC0x0400, 0666)) == -1)
stderror(ERR_SYSTEM55, tmp, strerror(errno(*__errno())));
}
(void) dmove(fd, 1);
  }
  else if (flags & F_PIPEOUT(1<<3)) {
(void) close(1);
(void) dup(pipeout[1]);
  }
  else {
(void) close(1);
(void) dup(SHOUT);
(void) fcntl(STDOUT_FILENO1, F_SETFD2, 0);
  }

  (void) close(2);
  if (flags & F_STDERR(1<<7)) {
(void) dup(1);
  }
  else {
(void) dup(SHERR);
(void) fcntl(STDERR_FILENO2, F_SETFD2, 0);
  }
  didfds = 1;
595}

597void
598mypipe(int *pv)
599{

  if (pipe(pv) == -1)
goto oops;
  pv[0] = dmove(pv[0], -1);
  pv[1] = dmove(pv[1], -1);
  if (pv[0] >= 0 && pv[1] >= 0)
return;
607oops:
  stderror(ERR_PIPE54);
609}

611static void
612chkclob(char *cp)
613{
  struct stat stb;

  if (stat(cp, &stb) == -1)
return;
  if (S_ISCHR(stb.st_mode)((stb.st_mode & 0170000) == 0020000))
return;
  stderror(ERR_EXISTS41, cp);
621}