Cannot create temp file for here-document: Permission denied
Solution 1
I had added umask 777 before the here string. After removing the umask, the error went away. So lesson learned: There is a temporary file created for a here string (<<<), and this is related to a here document (<<), and you must have an appropriate umask set for these to work.
Solution 2
In my case I altered the /tmp directory default permissions (I think I've changed by mistake to 0777).
The solution was to revert it back to the default /tmp permission, which is 1777 in octal (1=sticky bit, 7=R+W+X).
So in a nutshell sudo chmod -R 1777 /tmp should fix the problem.
Solution 3
my personal experience with this problem was with umask binary notation, just like @eliptical-view. I supposed that writing:
umask 0644
would give me read and write access to the files I created, what's wrong
After I changed the umask to be
umask 0022
the error disappeared.
Actually, the binary notation should be understood as a binary complement.
So, in the umask's mask below when one writes 0 for the file owner, this user will have total access to the files he or she creates. The value 2 means the 2nd bit is masked, what means in this case, by default the other users will not be allowed to write to the files the file owner creates.
Related videos on Youtube
02 : 14
02 : 45
02 : 43
02 : 51
03 : 41
Elliptical view
Into air is deliberate fun. Finding one's skis later, less so.
Updated on September 18, 2022Comments
-
Elliptical view over 1 year
[Note: This similar Q concerns the same bash error message. It's been marked a duplicate of this other Q. But because I found a very different source for this error, I will answer my own Q below.]
This previously working bash script line
while ... do ... done <<< "$foo"one day started producing this error message:
cannot create temp file for here-document: Permission denied
-
pevik almost 5 yearsIn my case it was enabled IMA (ima_policy=appraise_tcbkernel parameter) with combination of/tmpnot beingtmpfs. But this is not really a common case :).
-
-
Rui F Ribeiro about 6 yearsInteresting indeed. +1 See unix.stackexchange.com/questions/166292/…
-
Stéphane Chazelas about 6 yearsIt also affects zsh and mksh, not ksh93 nor tcsh. Not dash, rc, es, nor yash either but that's because they use pipes instead of temp files. -
Stéphane Chazelas about 6 yearsIn the case of ksh93 and tcsh, it works because they open the file only once in read+write mode, write the data and then seek back to the beginning.
-
keithpjolley about 5 yearsYou probably don't want the
-Rflag. No reason to change everyone's files below/tmpto be read-write-executable by everyone. Some of those files are sensitive to the security of your users. -
Hilton Fernandes about 4 yearsThanks for the edit and correction, @Paulo Tomé. Indeed, it is usual (and clear) to use octal notation in
umask, for precisely three bits are involved in Posix file permissions -- for the owner, one of his or her groups, and everybody else. -
Paulo Tomé about 4 yearsYou're welcome. ;)
