Software:mkstemp

From HandWiki

In computing, mkstemp is a POSIX function for creating a temporary file (a computer file which usually ceases to exist when the program, which opened the file, closes it or terminates).[1] It accepts an argument that determines the location of the temporary file, and the prefix of its generated filename.[1] After mkstemp was added to the Single UNIX Specification, the function tempnam() was deprecated,[1] because the latter carried the risk that a temporary file with the same name could be created by another thread or process within the time from when the caller obtains the temporary filename and attempts to create it.[2] mkstemp does not suffer from this problem.[3]

Usage

Inclusion

C
#include <stdlib.h> // per IEEE Std 1003.1, 2004
#include <unistd.h> // for "legacy" systems
C++
#include <cstdlib>  // per IEEE Std 1003.1, 2004
#include <unistd.h> // for "legacy" systems

Declaration

int mkstemp(char* template);

Requirements

  • The parameter template must be a modifiable, null-terminated character array.
  • The contents of template must be in the format of a valid file path, with six trailing 'X's.
  • The parameter template must not have been used in a previous invocation of mkstemp.

Semantics

  • The trailing 'X's in template are overwritten to generate a unique file name for the resulting temporary file.
  • The function reports a valid file descriptor to a temporary file on success; on failure, it reports -1.

Example

The following code is an example of the usage of mkstemp; the local variable filename is modified by mkstemp and will contain the path to the new file:[4]

#include <stdlib.h>

void example()
{
    char filename[] = "/tmp/prefXXXXXX";
    mkstemp(filename);
}

Error conditions

It is unspecified if mkstemp sets errno, and what values of errno are set, in the event of failure.[1]

Mechanism

The mkstemp function generates a filename according to the supplied argument for the template, and attempts to create it. It repeats this process until a file has been successfully created.[5] After this, it opens the file and returns the file descriptor to the caller,[6] with the data buffer that was passed to the function with the template now containing the new filename.[7] The file can be deleted immediately after the mkstemp call returns to prevent other processes from opening it, but the file can still be used because the calling process will still have a valid file descriptor.[5] Older versions of mkstemp created the file with an umask of 0666, resulting in the temporary files being readable and writable to all users, and thus presenting a security vulnerability; this is mitigated by setting the umask manually before calling mkstemp.[6] Newer versions of the function create the file with the umask 600, so that only the owner of the file may read from and write to it.[7]

See also

References

  1. 1.0 1.1 1.2 1.3 mkstemp by OpenGroup
  2. "tempnam". Open Group Base Specifications. OpenGroup. 2018. http://pubs.opengroup.org/onlinepubs/9699919799/functions/tempnam.html. 
  3. "Standard Library Functions". Temporary Files. Addison-Wesley. 2013. p. 169. ISBN 9780321638007. 
  4. "Characters and Strings (STR)". STR30-C. Do not attempt to modify string literals (2 ed.). Addison-Wesley. 2014-04-25. p. 203. ISBN 9780133805291. 
  5. 5.0 5.1 "Access Control". Temporary files on Unix. O'Reilly Media. 2003. p. 66. ISBN 9780596003944. 
  6. 6.0 6.1 Chen, Hao; Dean, Drew (2004). "Model Checking One Million Lines of C Code". Network and Distributed System Security Symposium (Internet Society) 4. http://seclab.cs.ucdavis.edu/papers/Hao-Chen-papers/ndss04.pdf. Retrieved 2019-05-18. 
  7. 7.0 7.1 "Defensive Programming for Red Hat Enterprise Linux (and What To Do If Something Goes Wrong)". 2009-04-08. p. 7. http://pdfs.semanticscholar.org/c613/325c8cb647f0e94fe2be85ce34060e30d313.pdf.