1 @node File System Interface, Pipes and FIFOs, Low-Level I/O, Top
2 @c %MENU% Functions for manipulating files
3 @chapter File System Interface
5 This chapter describes the GNU C library's functions for manipulating
6 files. Unlike the input and output functions (@pxref{I/O on Streams};
7 @pxref{Low-Level I/O}), these functions are concerned with operating
8 on the files themselves rather than on their contents.
10 Among the facilities described in this chapter are functions for
11 examining or modifying directories, functions for renaming and deleting
12 files, and functions for examining and setting file attributes such as
13 access permissions and modification times.
16 * Working Directory:: This is used to resolve relative
18 * Accessing Directories:: Finding out what files a directory
20 * Working with Directory Trees:: Apply actions to all files or a selectable
21 subset of a directory hierarchy.
22 * Hard Links:: Adding alternate names to a file.
23 * Symbolic Links:: A file that ``points to'' a file name.
24 * Deleting Files:: How to delete a file, and what that means.
25 * Renaming Files:: Changing a file's name.
26 * Creating Directories:: A system call just for creating a directory.
27 * File Attributes:: Attributes of individual files.
28 * Making Special Files:: How to create special files.
29 * Temporary Files:: Naming and creating temporary files.
32 @node Working Directory
33 @section Working Directory
35 @cindex current working directory
36 @cindex working directory
37 @cindex change working directory
38 Each process has associated with it a directory, called its @dfn{current
39 working directory} or simply @dfn{working directory}, that is used in
40 the resolution of relative file names (@pxref{File Name Resolution}).
42 When you log in and begin a new session, your working directory is
43 initially set to the home directory associated with your login account
44 in the system user database. You can find any user's home directory
45 using the @code{getpwuid} or @code{getpwnam} functions; see @ref{User
48 Users can change the working directory using shell commands like
49 @code{cd}. The functions described in this section are the primitives
50 used by those commands and by other programs for examining and changing
51 the working directory.
54 Prototypes for these functions are declared in the header file
60 @deftypefun {char *} getcwd (char *@var{buffer}, size_t @var{size})
61 The @code{getcwd} function returns an absolute file name representing
62 the current working directory, storing it in the character array
63 @var{buffer} that you provide. The @var{size} argument is how you tell
64 the system the allocation size of @var{buffer}.
66 The GNU library version of this function also permits you to specify a
67 null pointer for the @var{buffer} argument. Then @code{getcwd}
68 allocates a buffer automatically, as with @code{malloc}
69 (@pxref{Unconstrained Allocation}). If the @var{size} is greater than
70 zero, then the buffer is that large; otherwise, the buffer is as large
71 as necessary to hold the result.
73 The return value is @var{buffer} on success and a null pointer on failure.
74 The following @code{errno} error conditions are defined for this function:
78 The @var{size} argument is zero and @var{buffer} is not a null pointer.
81 The @var{size} argument is less than the length of the working directory
82 name. You need to allocate a bigger array and try again.
85 Permission to read or search a component of the file name was denied.
89 You could implement the behavior of GNU's @w{@code{getcwd (NULL, 0)}}
90 using only the standard behavior of @code{getcwd}:
100 char *buffer = (char *) xmalloc (size);
101 if (getcwd (buffer, size) == buffer)
112 @xref{Malloc Examples}, for information about @code{xmalloc}, which is
113 not a library function but is a customary name used in most GNU
118 @deftypefn {Deprecated Function} {char *} getwd (char *@var{buffer})
119 This is similar to @code{getcwd}, but has no way to specify the size of
120 the buffer. The GNU library provides @code{getwd} only
121 for backwards compatibility with BSD.
123 The @var{buffer} argument should be a pointer to an array at least
124 @code{PATH_MAX} bytes long (@pxref{Limits for Files}). In the GNU
125 system there is no limit to the size of a file name, so this is not
126 necessarily enough space to contain the directory name. That is why
127 this function is deprecated.
132 @deftypefun {char *} get_current_dir_name (void)
134 This @code{get_current_dir_name} function is bascially equivalent to
135 @w{@code{getcwd (NULL, 0)}}. The only difference is that the value of
136 the @code{PWD} variable is returned if this value is correct. This is a
137 subtle difference which is visible if the path described by the
138 @code{PWD} value is using one or more symbol links in which case the
139 value returned by @code{getcwd} can resolve the symbol links and
140 therefore yield a different result.
142 This function is a GNU extension.
147 @deftypefun int chdir (const char *@var{filename})
148 This function is used to set the process's working directory to
151 The normal, successful return value from @code{chdir} is @code{0}. A
152 value of @code{-1} is returned to indicate an error. The @code{errno}
153 error conditions defined for this function are the usual file name
154 syntax errors (@pxref{File Name Errors}), plus @code{ENOTDIR} if the
155 file @var{filename} is not a directory.
160 @deftypefun int fchdir (int @var{filedes})
161 This function is used to set the process's working directory to
162 directory associated with the file descriptor @var{filedes}.
164 The normal, successful return value from @code{fchdir} is @code{0}. A
165 value of @code{-1} is returned to indicate an error. The following
166 @code{errno} error conditions are defined for this function:
170 Read permission is denied for the directory named by @code{dirname}.
173 The @var{filedes} argument is not a valid file descriptor.
176 The file descriptor @var{filedes} is not associated with a directory.
179 The function call was interrupt by a signal.
182 An I/O error occurred.
187 @node Accessing Directories
188 @section Accessing Directories
189 @cindex accessing directories
190 @cindex reading from a directory
191 @cindex directories, accessing
193 The facilities described in this section let you read the contents of a
194 directory file. This is useful if you want your program to list all the
195 files in a directory, perhaps as part of a menu.
197 @cindex directory stream
198 The @code{opendir} function opens a @dfn{directory stream} whose
199 elements are directory entries. You use the @code{readdir} function on
200 the directory stream to retrieve these entries, represented as
201 @w{@code{struct dirent}} objects. The name of the file for each entry is
202 stored in the @code{d_name} member of this structure. There are obvious
203 parallels here to the stream facilities for ordinary files, described in
204 @ref{I/O on Streams}.
207 * Directory Entries:: Format of one directory entry.
208 * Opening a Directory:: How to open a directory stream.
209 * Reading/Closing Directory:: How to read directory entries from the stream.
210 * Simple Directory Lister:: A very simple directory listing program.
211 * Random Access Directory:: Rereading part of the directory
212 already read with the same stream.
213 * Scanning Directory Content:: Get entries for user selected subset of
214 contents in given directory.
215 * Simple Directory Lister Mark II:: Revised version of the program.
218 @node Directory Entries
219 @subsection Format of a Directory Entry
222 This section describes what you find in a single directory entry, as you
223 might obtain it from a directory stream. All the symbols are declared
224 in the header file @file{dirent.h}.
228 @deftp {Data Type} {struct dirent}
229 This is a structure type used to return information about directory
230 entries. It contains the following fields:
234 This is the null-terminated file name component. This is the only
235 field you can count on in all POSIX systems.
238 This is the file serial number. For BSD compatibility, you can also
239 refer to this member as @code{d_ino}. In the GNU system and most POSIX
240 systems, for most files this the same as the @code{st_ino} member that
241 @code{stat} will return for the file. @xref{File Attributes}.
243 @item unsigned char d_namlen
244 This is the length of the file name, not including the terminating null
245 character. Its type is @code{unsigned char} because that is the integer
246 type of the appropriate size
248 @item unsigned char d_type
249 This is the type of the file, possibly unknown. The following constants
250 are defined for its value:
254 The type is unknown. On some systems this is the only value returned.
263 A named pipe, or FIFO. @xref{FIFO Special Files}.
266 A local-domain socket. @c !!! @xref{Local Domain}.
275 This member is a BSD extension. The symbol @code{_DIRENT_HAVE_D_TYPE}
276 is defined if this member is available. On systems where it is used, it
277 corresponds to the file type bits in the @code{st_mode} member of
278 @code{struct statbuf}. If the value cannot be determine the member
279 value is DT_UNKNOWN. These two macros convert between @code{d_type}
280 values and @code{st_mode} values:
284 @deftypefun int IFTODT (mode_t @var{mode})
285 This returns the @code{d_type} value corresponding to @var{mode}.
290 @deftypefun mode_t DTTOIF (int @var{dtype})
291 This returns the @code{st_mode} value corresponding to @var{dtype}.
295 This structure may contain additional members in the future. Their
296 availability is always announced in the compilation environment by a
297 macro names @code{_DIRENT_HAVE_D_@var{xxx}} where @var{xxx} is replaced
298 by the name of the new member. For instance, the member @code{d_reclen}
299 available on some systems is announced through the macro
300 @code{_DIRENT_HAVE_D_RECLEN}.
302 When a file has multiple names, each name has its own directory entry.
303 The only way you can tell that the directory entries belong to a
304 single file is that they have the same value for the @code{d_fileno}
307 File attributes such as size, modification times etc., are part of the
308 file itself, not of any particular directory entry. @xref{File
312 @node Opening a Directory
313 @subsection Opening a Directory Stream
316 This section describes how to open a directory stream. All the symbols
317 are declared in the header file @file{dirent.h}.
321 @deftp {Data Type} DIR
322 The @code{DIR} data type represents a directory stream.
325 You shouldn't ever allocate objects of the @code{struct dirent} or
326 @code{DIR} data types, since the directory access functions do that for
327 you. Instead, you refer to these objects using the pointers returned by
328 the following functions.
332 @deftypefun {DIR *} opendir (const char *@var{dirname})
333 The @code{opendir} function opens and returns a directory stream for
334 reading the directory whose file name is @var{dirname}. The stream has
337 If unsuccessful, @code{opendir} returns a null pointer. In addition to
338 the usual file name errors (@pxref{File Name Errors}), the
339 following @code{errno} error conditions are defined for this function:
343 Read permission is denied for the directory named by @code{dirname}.
346 The process has too many files open.
349 The entire system, or perhaps the file system which contains the
350 directory, cannot support any additional open files at the moment.
351 (This problem cannot happen on the GNU system.)
354 The @code{DIR} type is typically implemented using a file descriptor,
355 and the @code{opendir} function in terms of the @code{open} function.
356 @xref{Low-Level I/O}. Directory streams and the underlying
357 file descriptors are closed on @code{exec} (@pxref{Executing a File}).
360 In some situations it can be desirable to get hold of the file
361 descriptor which is created by the @code{opendir} call. For instance,
362 to switch the current working directory to the directory just read the
363 @code{fchdir} function could be used. Historically the @code{DIR} type
364 was exposed and programs could access the fields. This does not happen
365 in the GNU C library. Instead a separate function is provided to allow
370 @deftypefun int dirfd (DIR *@var{dirstream})
371 The function @code{dirfd} returns the file descriptor associated with
372 the directory stream @var{dirstream}. This descriptor can be used until
373 the directory is closed with @code{closedir}. If the directory stream
374 implementation is not using file descriptors the return value is
378 @node Reading/Closing Directory
379 @subsection Reading and Closing a Directory Stream
382 This section describes how to read directory entries from a directory
383 stream, and how to close the stream when you are done with it. All the
384 symbols are declared in the header file @file{dirent.h}.
388 @deftypefun {struct dirent *} readdir (DIR *@var{dirstream})
389 This function reads the next entry from the directory. It normally
390 returns a pointer to a structure containing information about the file.
391 This structure is statically allocated and can be rewritten by a
394 @strong{Portability Note:} On some systems @code{readdir} may not
395 return entries for @file{.} and @file{..}, even though these are always
396 valid file names in any directory. @xref{File Name Resolution}.
398 If there are no more entries in the directory or an error is detected,
399 @code{readdir} returns a null pointer. The following @code{errno} error
400 conditions are defined for this function:
404 The @var{dirstream} argument is not valid.
407 @code{readdir} is not thread safe. Multiple threads using
408 @code{readdir} on the same @var{dirstream} may overwrite the return
409 value. Use @code{readdir_r} when this is critical.
414 @deftypefun int readdir_r (DIR *@var{dirstream}, struct dirent *@var{entry}, struct dirent **@var{result})
415 This function is the reentrant version of @code{readdir}. Like
416 @code{readdir} it returns the next entry from the directory. But to
417 prevent conflicts between simultaneously running threads the result is
418 not stored in statically allocated memory. Instead the argument
419 @var{entry} points to a place to store the result.
421 The return value is @code{0} in case the next entry was read
422 successfully. In this case a pointer to the result is returned in
423 *@var{result}. It is not required that *@var{result} is the same as
424 @var{entry}. If something goes wrong while executing @code{readdir_r}
425 the function returns a value indicating the error (as described for
428 If there are no more directory entries, @code{readdir_r}'s return value is
429 @code{0}, and *@var{result} is set to @code{NULL}.
431 @strong{Portability Note:} On some systems @code{readdir_r} may not
432 return a NUL terminated string for the file name, even when there is no
433 @code{d_reclen} field in @code{struct dirent} and the file
434 name is the maximum allowed size. Modern systems all have the
435 @code{d_reclen} field, and on old systems multi-threading is not
436 critical. In any case there is no such problem with the @code{readdir}
437 function, so that even on systems without the @code{d_reclen} member one
438 could use multiple threads by using external locking.
440 It is also important to look at the definition of the @code{struct
441 dirent} type. Simply passing a pointer to an object of this type for
442 the second parameter of @code{readdir_r} might not be enough. Some
443 systems don't define the @code{d_name} element sufficiently long. In
444 this case the user has to provide additional space. There must be room
445 for at least @code{NAME_MAX + 1} characters in the @code{d_name} array.
446 Code to call @code{readdir_r} could look like this:
452 char b[offsetof (struct dirent, d_name) + NAME_MAX + 1];
455 if (readdir_r (dir, &u.d, &res) == 0)
460 To support large filesystems on 32-bit machines there are LFS variants
461 of the last two functions.
465 @deftypefun {struct dirent64 *} readdir64 (DIR *@var{dirstream})
466 The @code{readdir64} function is just like the @code{readdir} function
467 except that it returns a pointer to a record of type @code{struct
468 dirent64}. Some of the members of this data type (notably @code{d_ino})
469 might have a different size to allow large filesystems.
471 In all other aspects this function is equivalent to @code{readdir}.
476 @deftypefun int readdir64_r (DIR *@var{dirstream}, struct dirent64 *@var{entry}, struct dirent64 **@var{result})
477 The @code{readdir64_r} function is equivalent to the @code{readdir_r}
478 function except that it takes parameters of base type @code{struct
479 dirent64} instead of @code{struct dirent} in the second and third
480 position. The same precautions mentioned in the documentation of
481 @code{readdir_r} also apply here.
486 @deftypefun int closedir (DIR *@var{dirstream})
487 This function closes the directory stream @var{dirstream}. It returns
488 @code{0} on success and @code{-1} on failure.
490 The following @code{errno} error conditions are defined for this
495 The @var{dirstream} argument is not valid.
499 @node Simple Directory Lister
500 @subsection Simple Program to List a Directory
502 Here's a simple program that prints the names of the files in
503 the current working directory:
509 The order in which files appear in a directory tends to be fairly
510 random. A more useful program would sort the entries (perhaps by
511 alphabetizing them) before printing them; see
512 @ref{Scanning Directory Content}, and @ref{Array Sort Function}.
515 @node Random Access Directory
516 @subsection Random Access in a Directory Stream
519 This section describes how to reread parts of a directory that you have
520 already read from an open directory stream. All the symbols are
521 declared in the header file @file{dirent.h}.
525 @deftypefun void rewinddir (DIR *@var{dirstream})
526 The @code{rewinddir} function is used to reinitialize the directory
527 stream @var{dirstream}, so that if you call @code{readdir} it
528 returns information about the first entry in the directory again. This
529 function also notices if files have been added or removed to the
530 directory since it was opened with @code{opendir}. (Entries for these
531 files might or might not be returned by @code{readdir} if they were
532 added or removed since you last called @code{opendir} or
538 @deftypefun off_t telldir (DIR *@var{dirstream})
539 The @code{telldir} function returns the file position of the directory
540 stream @var{dirstream}. You can use this value with @code{seekdir} to
541 restore the directory stream to that position.
546 @deftypefun void seekdir (DIR *@var{dirstream}, off_t @var{pos})
547 The @code{seekdir} function sets the file position of the directory
548 stream @var{dirstream} to @var{pos}. The value @var{pos} must be the
549 result of a previous call to @code{telldir} on this particular stream;
550 closing and reopening the directory can invalidate values returned by
555 @node Scanning Directory Content
556 @subsection Scanning the Content of a Directory
558 A higher-level interface to the directory handling functions is the
559 @code{scandir} function. With its help one can select a subset of the
560 entries in a directory, possibly sort them and get a list of names as
565 @deftypefun int scandir (const char *@var{dir}, struct dirent ***@var{namelist}, int (*@var{selector}) (const struct dirent *), int (*@var{cmp}) (const void *, const void *))
567 The @code{scandir} function scans the contents of the directory selected
568 by @var{dir}. The result in *@var{namelist} is an array of pointers to
569 structure of type @code{struct dirent} which describe all selected
570 directory entries and which is allocated using @code{malloc}. Instead
571 of always getting all directory entries returned, the user supplied
572 function @var{selector} can be used to decide which entries are in the
573 result. Only the entries for which @var{selector} returns a non-zero
576 Finally the entries in *@var{namelist} are sorted using the
577 user-supplied function @var{cmp}. The arguments passed to the @var{cmp}
578 function are of type @code{struct dirent **}, therefore one cannot
579 directly use the @code{strcmp} or @code{strcoll} functions; instead see
580 the functions @code{alphasort} and @code{versionsort} below.
582 The return value of the function is the number of entries placed in
583 *@var{namelist}. If it is @code{-1} an error occurred (either the
584 directory could not be opened for reading or the malloc call failed) and
585 the global variable @code{errno} contains more information on the error.
588 As described above the fourth argument to the @code{scandir} function
589 must be a pointer to a sorting function. For the convenience of the
590 programmer the GNU C library contains implementations of functions which
591 are very helpful for this purpose.
595 @deftypefun int alphasort (const void *@var{a}, const void *@var{b})
596 The @code{alphasort} function behaves like the @code{strcoll} function
597 (@pxref{String/Array Comparison}). The difference is that the arguments
598 are not string pointers but instead they are of type
599 @code{struct dirent **}.
601 The return value of @code{alphasort} is less than, equal to, or greater
602 than zero depending on the order of the two entries @var{a} and @var{b}.
607 @deftypefun int versionsort (const void *@var{a}, const void *@var{b})
608 The @code{versionsort} function is like @code{alphasort} except that it
609 uses the @code{strverscmp} function internally.
612 If the filesystem supports large files we cannot use the @code{scandir}
613 anymore since the @code{dirent} structure might not able to contain all
614 the information. The LFS provides the new type @w{@code{struct
615 dirent64}}. To use this we need a new function.
619 @deftypefun int scandir64 (const char *@var{dir}, struct dirent64 ***@var{namelist}, int (*@var{selector}) (const struct dirent64 *), int (*@var{cmp}) (const void *, const void *))
620 The @code{scandir64} function works like the @code{scandir} function
621 except that the directory entries it returns are described by elements
622 of type @w{@code{struct dirent64}}. The function pointed to by
623 @var{selector} is again used to select the desired entries, except that
624 @var{selector} now must point to a function which takes a
625 @w{@code{struct dirent64 *}} parameter.
627 Similarly the @var{cmp} function should expect its two arguments to be
628 of type @code{struct dirent64 **}.
631 As @var{cmp} is now a function of a different type, the functions
632 @code{alphasort} and @code{versionsort} cannot be supplied for that
633 argument. Instead we provide the two replacement functions below.
637 @deftypefun int alphasort64 (const void *@var{a}, const void *@var{b})
638 The @code{alphasort64} function behaves like the @code{strcoll} function
639 (@pxref{String/Array Comparison}). The difference is that the arguments
640 are not string pointers but instead they are of type
641 @code{struct dirent64 **}.
643 Return value of @code{alphasort64} is less than, equal to, or greater
644 than zero depending on the order of the two entries @var{a} and @var{b}.
649 @deftypefun int versionsort64 (const void *@var{a}, const void *@var{b})
650 The @code{versionsort64} function is like @code{alphasort64}, excepted that it
651 uses the @code{strverscmp} function internally.
654 It is important not to mix the use of @code{scandir} and the 64-bit
655 comparison functions or vice versa. There are systems on which this
656 works but on others it will fail miserably.
658 @node Simple Directory Lister Mark II
659 @subsection Simple Program to List a Directory, Mark II
661 Here is a revised version of the directory lister found above
662 (@pxref{Simple Directory Lister}). Using the @code{scandir} function we
663 can avoid the functions which work directly with the directory contents.
664 After the call the returned entries are available for direct use.
670 Note the simple selector function in this example. Since we want to see
671 all directory entries we always return @code{1}.
674 @node Working with Directory Trees
675 @section Working with Directory Trees
676 @cindex directory hierarchy
677 @cindex hierarchy, directory
678 @cindex tree, directory
680 The functions described so far for handling the files in a directory
681 have allowed you to either retrieve the information bit by bit, or to
682 process all the files as a group (see @code{scandir}). Sometimes it is
683 useful to process whole hierarchies of directories and their contained
684 files. The X/Open specification defines two functions to do this. The
685 simpler form is derived from an early definition in @w{System V} systems
686 and therefore this function is available on SVID-derived systems. The
687 prototypes and required definitions can be found in the @file{ftw.h}
690 There are four functions in this family: @code{ftw}, @code{nftw} and
691 their 64-bit counterparts @code{ftw64} and @code{nftw64}. These
692 functions take as one of their arguments a pointer to a callback
693 function of the appropriate type.
697 @deftp {Data Type} __ftw_func_t
700 int (*) (const char *, const struct stat *, int)
703 The type of callback functions given to the @code{ftw} function. The
704 first parameter points to the file name, the second parameter to an
705 object of type @code{struct stat} which is filled in for the file named
706 in the first parameter.
709 The last parameter is a flag giving more information about the current
710 file. It can have the following values:
714 The item is either a normal file or a file which does not fit into one
715 of the following categories. This could be special files, sockets etc.
717 The item is a directory.
719 The @code{stat} call failed and so the information pointed to by the
720 second paramater is invalid.
722 The item is a directory which cannot be read.
724 The item is a symbolic link. Since symbolic links are normally followed
725 seeing this value in a @code{ftw} callback function means the referenced
726 file does not exist. The situation for @code{nftw} is different.
728 This value is only available if the program is compiled with
729 @code{_BSD_SOURCE} or @code{_XOPEN_EXTENDED} defined before including
730 the first header. The original SVID systems do not have symbolic links.
733 If the sources are compiled with @code{_FILE_OFFSET_BITS == 64} this
734 type is in fact @code{__ftw64_func_t} since this mode changes
735 @code{struct stat} to be @code{struct stat64}.
738 For the LFS interface and for use in the function @code{ftw64}, the
739 header @file{ftw.h} defines another function type.
743 @deftp {Data Type} __ftw64_func_t
746 int (*) (const char *, const struct stat64 *, int)
749 This type is used just like @code{__ftw_func_t} for the callback
750 function, but this time is called from @code{ftw64}. The second
751 parameter to the function is a pointer to a variable of type
752 @code{struct stat64} which is able to represent the larger values.
757 @deftp {Data Type} __nftw_func_t
760 int (*) (const char *, const struct stat *, int, struct FTW *)
765 The first three arguments are the same as for the @code{__ftw_func_t}
766 type. However for the third argument some additional values are defined
767 to allow finer differentiation:
770 The current item is a directory and all subdirectories have already been
771 visited and reported. This flag is returned instead of @code{FTW_D} if
772 the @code{FTW_DEPTH} flag is passed to @code{nftw} (see below).
774 The current item is a stale symbolic link. The file it points to does
778 The last parameter of the callback function is a pointer to a structure
779 with some extra information as described below.
781 If the sources are compiled with @code{_FILE_OFFSET_BITS == 64} this
782 type is in fact @code{__nftw64_func_t} since this mode changes
783 @code{struct stat} to be @code{struct stat64}.
786 For the LFS interface there is also a variant of this data type
787 available which has to be used with the @code{nftw64} function.
791 @deftp {Data Type} __nftw64_func_t
794 int (*) (const char *, const struct stat64 *, int, struct FTW *)
797 This type is used just like @code{__nftw_func_t} for the callback
798 function, but this time is called from @code{nftw64}. The second
799 parameter to the function is this time a pointer to a variable of type
800 @code{struct stat64} which is able to represent the larger values.
805 @deftp {Data Type} {struct FTW}
806 The information contained in this structure helps in interpreting the
807 name parameter and gives some information about the current state of the
808 traversal of the directory hierarchy.
812 The value is the offset into the string passed in the first parameter to
813 the callback function of the beginning of the file name. The rest of
814 the string is the path of the file. This information is especially
815 important if the @code{FTW_CHDIR} flag was set in calling @code{nftw}
816 since then the current directory is the one the current item is found
819 Whilst processing, the code tracks how many directories down it has gone
820 to find the current file. This nesting level starts at @math{0} for
821 files in the initial directory (or is zero for the initial file if a
829 @deftypefun int ftw (const char *@var{filename}, __ftw_func_t @var{func}, int @var{descriptors})
830 The @code{ftw} function calls the callback function given in the
831 parameter @var{func} for every item which is found in the directory
832 specified by @var{filename} and all directories below. The function
833 follows symbolic links if necessary but does not process an item twice.
834 If @var{filename} is not a directory then it itself is the only object
835 returned to the callback function.
837 The file name passed to the callback function is constructed by taking
838 the @var{filename} parameter and appending the names of all passed
839 directories and then the local file name. So the callback function can
840 use this parameter to access the file. @code{ftw} also calls
841 @code{stat} for the file and passes that information on to the callback
842 function. If this @code{stat} call was not successful the failure is
843 indicated by setting the third argument of the callback function to
844 @code{FTW_NS}. Otherwise it is set according to the description given
845 in the account of @code{__ftw_func_t} above.
847 The callback function is expected to return @math{0} to indicate that no
848 error occurred and that processing should continue. If an error
849 occurred in the callback function or it wants @code{ftw} to return
850 immediately, the callback function can return a value other than
851 @math{0}. This is the only correct way to stop the function. The
852 program must not use @code{setjmp} or similar techniques to continue
853 from another place. This would leave resources allocated by the
854 @code{ftw} function unfreed.
856 The @var{descriptors} parameter to @code{ftw} specifies how many file
857 descriptors it is allowed to consume. The function runs faster the more
858 descriptors it can use. For each level in the directory hierarchy at
859 most one descriptor is used, but for very deep ones any limit on open
860 file descriptors for the process or the system may be exceeded.
861 Moreover, file descriptor limits in a multi-threaded program apply to
862 all the threads as a group, and therefore it is a good idea to supply a
863 reasonable limit to the number of open descriptors.
865 The return value of the @code{ftw} function is @math{0} if all callback
866 function calls returned @math{0} and all actions performed by the
867 @code{ftw} succeeded. If a function call failed (other than calling
868 @code{stat} on an item) the function returns @math{-1}. If a callback
869 function returns a value other than @math{0} this value is returned as
870 the return value of @code{ftw}.
872 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} on a
873 32-bit system this function is in fact @code{ftw64}, i.e. the LFS
874 interface transparently replaces the old interface.
879 @deftypefun int ftw64 (const char *@var{filename}, __ftw64_func_t @var{func}, int @var{descriptors})
880 This function is similar to @code{ftw} but it can work on filesystems
881 with large files. File information is reported using a variable of type
882 @code{struct stat64} which is passed by reference to the callback
885 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} on a
886 32-bit system this function is available under the name @code{ftw} and
887 transparently replaces the old implementation.
892 @deftypefun int nftw (const char *@var{filename}, __nftw_func_t @var{func}, int @var{descriptors}, int @var{flag})
893 The @code{nftw} function works like the @code{ftw} functions. They call
894 the callback function @var{func} for all items found in the directory
895 @var{filename} and below. At most @var{descriptors} file descriptors
896 are consumed during the @code{nftw} call.
898 One difference is that the callback function is of a different type. It
899 is of type @w{@code{struct FTW *}} and provides the callback function
900 with the extra information described above.
902 A second difference is that @code{nftw} takes a fourth argument, which
903 is @math{0} or a bitwise-OR combination of any of the following values.
907 While traversing the directory symbolic links are not followed. Instead
908 symbolic links are reported using the @code{FTW_SL} value for the type
909 parameter to the callback function. If the file referenced by a
910 symbolic link does not exist @code{FTW_SLN} is returned instead.
912 The callback function is only called for items which are on the same
913 mounted filesystem as the directory given by the @var{filename}
914 parameter to @code{nftw}.
916 If this flag is given the current working directory is changed to the
917 directory of the reported object before the callback function is called.
918 When @code{ntfw} finally returns the current directory is restored to
921 If this option is specified then all subdirectories and files within
922 them are processed before processing the top directory itself
923 (depth-first processing). This also means the type flag given to the
924 callback function is @code{FTW_DP} and not @code{FTW_D}.
927 The return value is computed in the same way as for @code{ftw}.
928 @code{nftw} returns @math{0} if no failures occurred and all callback
929 functions returned @math{0}. In case of internal errors, such as memory
930 problems, the return value is @math{-1} and @var{errno} is set
931 accordingly. If the return value of a callback invocation was non-zero
932 then that value is returned.
934 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} on a
935 32-bit system this function is in fact @code{nftw64}, i.e. the LFS
936 interface transparently replaces the old interface.
941 @deftypefun int nftw64 (const char *@var{filename}, __nftw64_func_t @var{func}, int @var{descriptors}, int @var{flag})
942 This function is similar to @code{nftw} but it can work on filesystems
943 with large files. File information is reported using a variable of type
944 @code{struct stat64} which is passed by reference to the callback
947 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} on a
948 32-bit system this function is available under the name @code{nftw} and
949 transparently replaces the old implementation.
957 @cindex multiple names for one file
958 @cindex file names, multiple
960 In POSIX systems, one file can have many names at the same time. All of
961 the names are equally real, and no one of them is preferred to the
964 To add a name to a file, use the @code{link} function. (The new name is
965 also called a @dfn{hard link} to the file.) Creating a new link to a
966 file does not copy the contents of the file; it simply makes a new name
967 by which the file can be known, in addition to the file's existing name
970 One file can have names in several directories, so the organization
971 of the file system is not a strict hierarchy or tree.
973 In most implementations, it is not possible to have hard links to the
974 same file in multiple file systems. @code{link} reports an error if you
975 try to make a hard link to the file from another file system when this
978 The prototype for the @code{link} function is declared in the header
979 file @file{unistd.h}.
984 @deftypefun int link (const char *@var{oldname}, const char *@var{newname})
985 The @code{link} function makes a new link to the existing file named by
986 @var{oldname}, under the new name @var{newname}.
988 This function returns a value of @code{0} if it is successful and
989 @code{-1} on failure. In addition to the usual file name errors
990 (@pxref{File Name Errors}) for both @var{oldname} and @var{newname}, the
991 following @code{errno} error conditions are defined for this function:
995 You are not allowed to write to the directory in which the new link is
998 Some implementations also require that the existing file be accessible
999 by the caller, and use this error to report failure for that reason.
1003 There is already a file named @var{newname}. If you want to replace
1004 this link with a new link, you must remove the old link explicitly first.
1007 There are already too many links to the file named by @var{oldname}.
1008 (The maximum number of links to a file is @w{@code{LINK_MAX}}; see
1009 @ref{Limits for Files}.)
1012 The file named by @var{oldname} doesn't exist. You can't make a link to
1013 a file that doesn't exist.
1016 The directory or file system that would contain the new link is full
1017 and cannot be extended.
1020 In the GNU system and some others, you cannot make links to directories.
1021 Many systems allow only privileged users to do so. This error
1022 is used to report the problem.
1025 The directory containing the new link can't be modified because it's on
1026 a read-only file system.
1029 The directory specified in @var{newname} is on a different file system
1030 than the existing file.
1033 A hardware error occurred while trying to read or write the to filesystem.
1037 @node Symbolic Links
1038 @section Symbolic Links
1041 @cindex symbolic link
1042 @cindex link, symbolic
1044 The GNU system supports @dfn{soft links} or @dfn{symbolic links}. This
1045 is a kind of ``file'' that is essentially a pointer to another file
1046 name. Unlike hard links, symbolic links can be made to directories or
1047 across file systems with no restrictions. You can also make a symbolic
1048 link to a name which is not the name of any file. (Opening this link
1049 will fail until a file by that name is created.) Likewise, if the
1050 symbolic link points to an existing file which is later deleted, the
1051 symbolic link continues to point to the same file name even though the
1052 name no longer names any file.
1054 The reason symbolic links work the way they do is that special things
1055 happen when you try to open the link. The @code{open} function realizes
1056 you have specified the name of a link, reads the file name contained in
1057 the link, and opens that file name instead. The @code{stat} function
1058 likewise operates on the file that the symbolic link points to, instead
1059 of on the link itself.
1061 By contrast, other operations such as deleting or renaming the file
1062 operate on the link itself. The functions @code{readlink} and
1063 @code{lstat} also refrain from following symbolic links, because their
1064 purpose is to obtain information about the link. @code{link}, the
1065 function that makes a hard link, does too. It makes a hard link to the
1066 symbolic link, which one rarely wants.
1068 Some systems have for some functions operating on files have a limit on
1069 how many symbolic links are followed when resolving a path name. The
1070 limit if it exists is published in the @file{sys/param.h} header file.
1072 @comment sys/param.h
1074 @deftypevr Macro int MAXSYMLINKS
1076 The macro @code{MAXSYMLINKS} specifies how many symlinks some function
1077 will follow before returning @code{ELOOP}. Not all functions behave the
1078 same and this value is not the same a that returned for
1079 @code{_SC_SYMLOOP} by @code{sysconf}. In fact, the @code{sysconf}
1080 result can indicate that there is no fixed limit although
1081 @code{MAXSYMLINKS} exists and has a finite value.
1084 Prototypes for most of the functions listed in this section are in
1090 @deftypefun int symlink (const char *@var{oldname}, const char *@var{newname})
1091 The @code{symlink} function makes a symbolic link to @var{oldname} named
1094 The normal return value from @code{symlink} is @code{0}. A return value
1095 of @code{-1} indicates an error. In addition to the usual file name
1096 syntax errors (@pxref{File Name Errors}), the following @code{errno}
1097 error conditions are defined for this function:
1101 There is already an existing file named @var{newname}.
1104 The file @var{newname} would exist on a read-only file system.
1107 The directory or file system cannot be extended to make the new link.
1110 A hardware error occurred while reading or writing data on the disk.
1113 @comment not sure about these
1115 There are too many levels of indirection. This can be the result of
1116 circular symbolic links to directories.
1119 The new link can't be created because the user's disk quota has been
1127 @deftypefun int readlink (const char *@var{filename}, char *@var{buffer}, size_t @var{size})
1128 The @code{readlink} function gets the value of the symbolic link
1129 @var{filename}. The file name that the link points to is copied into
1130 @var{buffer}. This file name string is @emph{not} null-terminated;
1131 @code{readlink} normally returns the number of characters copied. The
1132 @var{size} argument specifies the maximum number of characters to copy,
1133 usually the allocation size of @var{buffer}.
1135 If the return value equals @var{size}, you cannot tell whether or not
1136 there was room to return the entire name. So make a bigger buffer and
1137 call @code{readlink} again. Here is an example:
1141 readlink_malloc (char *filename)
1147 char *buffer = (char *) xmalloc (size);
1148 int nchars = readlink (filename, buffer, size);
1157 @c @group Invalid outside example.
1158 A value of @code{-1} is returned in case of error. In addition to the
1159 usual file name errors (@pxref{File Name Errors}), the following
1160 @code{errno} error conditions are defined for this function:
1164 The named file is not a symbolic link.
1167 A hardware error occurred while reading or writing data on the disk.
1172 In some situations it is desirable to resolve all the to get the real
1173 name of a file where no prefix names a symbolic link which is followed
1174 and no filename in the path is @code{.} or @code{..}. This is for
1175 instance desirable if files have to be compare in which case different
1176 names can refer to the same inode.
1180 @deftypefun {char *} canonicalize_file_name (const char *@var{name})
1182 The @code{canonicalize_file_name} function returns the absolute name of
1183 the file named by @var{name} which contains no @code{.}, @code{..}
1184 components nor any repeated path separators (@code{/}) or symlinks. The
1185 result is passed back as the return value of the function in a block of
1186 memory allocated with @code{malloc}. If the result is not used anymore
1187 the memory should be freed with a call to @code{free}.
1189 In any of the path components except the last one is missing the
1190 function returns a NULL pointer. This is also what is returned if the
1191 length of the path reaches or exceeds @code{PATH_MAX} characters. In
1192 any case @code{errno} is set accordingly.
1196 The resulting path is too long. This error only occurs on systems which
1197 have a limit on the file name length.
1200 At least one of the path components is not readable.
1203 The input file name is empty.
1206 At least one of the path components does not exist.
1209 More than @code{MAXSYMLINKS} many symlinks have been followed.
1212 This function is a GNU extension and is declared in @file{stdlib.h}.
1215 The Unix standard includes a similar function which differs from
1216 @code{canonicalize_file_name} in that the user has to provide the buffer
1217 where the result is placed in.
1221 @deftypefun {char *} realpath (const char *restrict @var{name}, char *restrict @var{resolved})
1223 The @code{realpath} function behaves just like
1224 @code{canonicalize_file_name} but instead of allocating a buffer for the
1225 result it is placed in the buffer pointed to by @var{resolved}.
1227 One other difference is that the buffer @var{resolved} will contain the
1228 part of the path component which does not exist or is not readable if
1229 the function returns @code{NULL} and @code{errno} is set to
1230 @code{EACCES} or @code{ENOENT}.
1232 This function is declared in @file{stdlib.h}.
1235 The advantage of using this function is that it is more widely
1236 available. The drawback is that it reports failures for long path on
1237 systems which have no limits on the file name length.
1239 @node Deleting Files
1240 @section Deleting Files
1241 @cindex deleting a file
1242 @cindex removing a file
1243 @cindex unlinking a file
1245 You can delete a file with @code{unlink} or @code{remove}.
1247 Deletion actually deletes a file name. If this is the file's only name,
1248 then the file is deleted as well. If the file has other remaining names
1249 (@pxref{Hard Links}), it remains accessible under those names.
1253 @deftypefun int unlink (const char *@var{filename})
1254 The @code{unlink} function deletes the file name @var{filename}. If
1255 this is a file's sole name, the file itself is also deleted. (Actually,
1256 if any process has the file open when this happens, deletion is
1257 postponed until all processes have closed the file.)
1260 The function @code{unlink} is declared in the header file @file{unistd.h}.
1262 This function returns @code{0} on successful completion, and @code{-1}
1263 on error. In addition to the usual file name errors
1264 (@pxref{File Name Errors}), the following @code{errno} error conditions are
1265 defined for this function:
1269 Write permission is denied for the directory from which the file is to be
1270 removed, or the directory has the sticky bit set and you do not own the file.
1273 This error indicates that the file is being used by the system in such a
1274 way that it can't be unlinked. For example, you might see this error if
1275 the file name specifies the root directory or a mount point for a file
1279 The file name to be deleted doesn't exist.
1282 On some systems @code{unlink} cannot be used to delete the name of a
1283 directory, or at least can only be used this way by a privileged user.
1284 To avoid such problems, use @code{rmdir} to delete directories. (In the
1285 GNU system @code{unlink} can never delete the name of a directory.)
1288 The directory containing the file name to be deleted is on a read-only
1289 file system and can't be modified.
1295 @deftypefun int rmdir (const char *@var{filename})
1296 @cindex directories, deleting
1297 @cindex deleting a directory
1298 The @code{rmdir} function deletes a directory. The directory must be
1299 empty before it can be removed; in other words, it can only contain
1300 entries for @file{.} and @file{..}.
1302 In most other respects, @code{rmdir} behaves like @code{unlink}. There
1303 are two additional @code{errno} error conditions defined for
1309 The directory to be deleted is not empty.
1312 These two error codes are synonymous; some systems use one, and some use
1313 the other. The GNU system always uses @code{ENOTEMPTY}.
1315 The prototype for this function is declared in the header file
1322 @deftypefun int remove (const char *@var{filename})
1323 This is the @w{ISO C} function to remove a file. It works like
1324 @code{unlink} for files and like @code{rmdir} for directories.
1325 @code{remove} is declared in @file{stdio.h}.
1329 @node Renaming Files
1330 @section Renaming Files
1332 The @code{rename} function is used to change a file's name.
1334 @cindex renaming a file
1337 @deftypefun int rename (const char *@var{oldname}, const char *@var{newname})
1338 The @code{rename} function renames the file @var{oldname} to
1339 @var{newname}. The file formerly accessible under the name
1340 @var{oldname} is afterwards accessible as @var{newname} instead. (If
1341 the file had any other names aside from @var{oldname}, it continues to
1344 The directory containing the name @var{newname} must be on the same file
1345 system as the directory containing the name @var{oldname}.
1347 One special case for @code{rename} is when @var{oldname} and
1348 @var{newname} are two names for the same file. The consistent way to
1349 handle this case is to delete @var{oldname}. However, in this case
1350 POSIX requires that @code{rename} do nothing and report success---which
1351 is inconsistent. We don't know what your operating system will do.
1353 If @var{oldname} is not a directory, then any existing file named
1354 @var{newname} is removed during the renaming operation. However, if
1355 @var{newname} is the name of a directory, @code{rename} fails in this
1358 If @var{oldname} is a directory, then either @var{newname} must not
1359 exist or it must name a directory that is empty. In the latter case,
1360 the existing directory named @var{newname} is deleted first. The name
1361 @var{newname} must not specify a subdirectory of the directory
1362 @code{oldname} which is being renamed.
1364 One useful feature of @code{rename} is that the meaning of @var{newname}
1365 changes ``atomically'' from any previously existing file by that name to
1366 its new meaning (i.e. the file that was called @var{oldname}). There is
1367 no instant at which @var{newname} is non-existent ``in between'' the old
1368 meaning and the new meaning. If there is a system crash during the
1369 operation, it is possible for both names to still exist; but
1370 @var{newname} will always be intact if it exists at all.
1372 If @code{rename} fails, it returns @code{-1}. In addition to the usual
1373 file name errors (@pxref{File Name Errors}), the following
1374 @code{errno} error conditions are defined for this function:
1378 One of the directories containing @var{newname} or @var{oldname}
1379 refuses write permission; or @var{newname} and @var{oldname} are
1380 directories and write permission is refused for one of them.
1383 A directory named by @var{oldname} or @var{newname} is being used by
1384 the system in a way that prevents the renaming from working. This includes
1385 directories that are mount points for filesystems, and directories
1386 that are the current working directories of processes.
1390 The directory @var{newname} isn't empty. The GNU system always returns
1391 @code{ENOTEMPTY} for this, but some other systems return @code{EEXIST}.
1394 @var{oldname} is a directory that contains @var{newname}.
1397 @var{newname} is a directory but the @var{oldname} isn't.
1400 The parent directory of @var{newname} would have too many links
1404 The file @var{oldname} doesn't exist.
1407 The directory that would contain @var{newname} has no room for another
1408 entry, and there is no space left in the file system to expand it.
1411 The operation would involve writing to a directory on a read-only file
1415 The two file names @var{newname} and @var{oldname} are on different
1420 @node Creating Directories
1421 @section Creating Directories
1422 @cindex creating a directory
1423 @cindex directories, creating
1426 Directories are created with the @code{mkdir} function. (There is also
1427 a shell command @code{mkdir} which does the same thing.)
1432 @deftypefun int mkdir (const char *@var{filename}, mode_t @var{mode})
1433 The @code{mkdir} function creates a new, empty directory with name
1436 The argument @var{mode} specifies the file permissions for the new
1437 directory file. @xref{Permission Bits}, for more information about
1440 A return value of @code{0} indicates successful completion, and
1441 @code{-1} indicates failure. In addition to the usual file name syntax
1442 errors (@pxref{File Name Errors}), the following @code{errno} error
1443 conditions are defined for this function:
1447 Write permission is denied for the parent directory in which the new
1448 directory is to be added.
1451 A file named @var{filename} already exists.
1454 The parent directory has too many links (entries).
1456 Well-designed file systems never report this error, because they permit
1457 more links than your disk could possibly hold. However, you must still
1458 take account of the possibility of this error, as it could result from
1459 network access to a file system on another machine.
1462 The file system doesn't have enough room to create the new directory.
1465 The parent directory of the directory being created is on a read-only
1466 file system and cannot be modified.
1469 To use this function, your program should include the header file
1474 @node File Attributes
1475 @section File Attributes
1478 When you issue an @samp{ls -l} shell command on a file, it gives you
1479 information about the size of the file, who owns it, when it was last
1480 modified, etc. These are called the @dfn{file attributes}, and are
1481 associated with the file itself and not a particular one of its names.
1483 This section contains information about how you can inquire about and
1484 modify the attributes of a file.
1487 * Attribute Meanings:: The names of the file attributes,
1488 and what their values mean.
1489 * Reading Attributes:: How to read the attributes of a file.
1490 * Testing File Type:: Distinguishing ordinary files,
1491 directories, links...
1492 * File Owner:: How ownership for new files is determined,
1493 and how to change it.
1494 * Permission Bits:: How information about a file's access
1496 * Access Permission:: How the system decides who can access a file.
1497 * Setting Permissions:: How permissions for new files are assigned,
1498 and how to change them.
1499 * Testing File Access:: How to find out if your process can
1501 * File Times:: About the time attributes of a file.
1502 * File Size:: Manually changing the size of a file.
1505 @node Attribute Meanings
1506 @subsection The meaning of the File Attributes
1507 @cindex status of a file
1508 @cindex attributes of a file
1509 @cindex file attributes
1511 When you read the attributes of a file, they come back in a structure
1512 called @code{struct stat}. This section describes the names of the
1513 attributes, their data types, and what they mean. For the functions
1514 to read the attributes of a file, see @ref{Reading Attributes}.
1516 The header file @file{sys/stat.h} declares all the symbols defined
1522 @deftp {Data Type} {struct stat}
1523 The @code{stat} structure type is used to return information about the
1524 attributes of a file. It contains at least the following members:
1527 @item mode_t st_mode
1528 Specifies the mode of the file. This includes file type information
1529 (@pxref{Testing File Type}) and the file permission bits
1530 (@pxref{Permission Bits}).
1533 The file serial number, which distinguishes this file from all other
1534 files on the same device.
1537 Identifies the device containing the file. The @code{st_ino} and
1538 @code{st_dev}, taken together, uniquely identify the file. The
1539 @code{st_dev} value is not necessarily consistent across reboots or
1540 system crashes, however.
1542 @item nlink_t st_nlink
1543 The number of hard links to the file. This count keeps track of how
1544 many directories have entries for this file. If the count is ever
1545 decremented to zero, then the file itself is discarded as soon as no
1546 process still holds it open. Symbolic links are not counted in the
1550 The user ID of the file's owner. @xref{File Owner}.
1553 The group ID of the file. @xref{File Owner}.
1556 This specifies the size of a regular file in bytes. For files that are
1557 really devices this field isn't usually meaningful. For symbolic links
1558 this specifies the length of the file name the link refers to.
1560 @item time_t st_atime
1561 This is the last access time for the file. @xref{File Times}.
1563 @item unsigned long int st_atime_usec
1564 This is the fractional part of the last access time for the file.
1567 @item time_t st_mtime
1568 This is the time of the last modification to the contents of the file.
1571 @item unsigned long int st_mtime_usec
1572 This is the fractional part of the time of the last modification to the
1573 contents of the file. @xref{File Times}.
1575 @item time_t st_ctime
1576 This is the time of the last modification to the attributes of the file.
1579 @item unsigned long int st_ctime_usec
1580 This is the fractional part of the time of the last modification to the
1581 attributes of the file. @xref{File Times}.
1584 @item blkcnt_t st_blocks
1585 This is the amount of disk space that the file occupies, measured in
1586 units of 512-byte blocks.
1588 The number of disk blocks is not strictly proportional to the size of
1589 the file, for two reasons: the file system may use some blocks for
1590 internal record keeping; and the file may be sparse---it may have
1591 ``holes'' which contain zeros but do not actually take up space on the
1594 You can tell (approximately) whether a file is sparse by comparing this
1595 value with @code{st_size}, like this:
1598 (st.st_blocks * 512 < st.st_size)
1601 This test is not perfect because a file that is just slightly sparse
1602 might not be detected as sparse at all. For practical applications,
1603 this is not a problem.
1605 @item unsigned int st_blksize
1606 The optimal block size for reading of writing this file, in bytes. You
1607 might use this size for allocating the buffer space for reading of
1608 writing the file. (This is unrelated to @code{st_blocks}.)
1612 The extensions for the Large File Support (LFS) require, even on 32-bit
1613 machines, types which can handle file sizes up to @math{2^63}.
1614 Therefore a new definition of @code{struct stat} is necessary.
1618 @deftp {Data Type} {struct stat64}
1619 The members of this type are the same and have the same names as those
1620 in @code{struct stat}. The only difference is that the members
1621 @code{st_ino}, @code{st_size}, and @code{st_blocks} have a different
1622 type to support larger values.
1625 @item mode_t st_mode
1626 Specifies the mode of the file. This includes file type information
1627 (@pxref{Testing File Type}) and the file permission bits
1628 (@pxref{Permission Bits}).
1630 @item ino64_t st_ino
1631 The file serial number, which distinguishes this file from all other
1632 files on the same device.
1635 Identifies the device containing the file. The @code{st_ino} and
1636 @code{st_dev}, taken together, uniquely identify the file. The
1637 @code{st_dev} value is not necessarily consistent across reboots or
1638 system crashes, however.
1640 @item nlink_t st_nlink
1641 The number of hard links to the file. This count keeps track of how
1642 many directories have entries for this file. If the count is ever
1643 decremented to zero, then the file itself is discarded as soon as no
1644 process still holds it open. Symbolic links are not counted in the
1648 The user ID of the file's owner. @xref{File Owner}.
1651 The group ID of the file. @xref{File Owner}.
1653 @item off64_t st_size
1654 This specifies the size of a regular file in bytes. For files that are
1655 really devices this field isn't usually meaningful. For symbolic links
1656 this specifies the length of the file name the link refers to.
1658 @item time_t st_atime
1659 This is the last access time for the file. @xref{File Times}.
1661 @item unsigned long int st_atime_usec
1662 This is the fractional part of the last access time for the file.
1665 @item time_t st_mtime
1666 This is the time of the last modification to the contents of the file.
1669 @item unsigned long int st_mtime_usec
1670 This is the fractional part of the time of the last modification to the
1671 contents of the file. @xref{File Times}.
1673 @item time_t st_ctime
1674 This is the time of the last modification to the attributes of the file.
1677 @item unsigned long int st_ctime_usec
1678 This is the fractional part of the time of the last modification to the
1679 attributes of the file. @xref{File Times}.
1682 @item blkcnt64_t st_blocks
1683 This is the amount of disk space that the file occupies, measured in
1684 units of 512-byte blocks.
1686 @item unsigned int st_blksize
1687 The optimal block size for reading of writing this file, in bytes. You
1688 might use this size for allocating the buffer space for reading of
1689 writing the file. (This is unrelated to @code{st_blocks}.)
1693 Some of the file attributes have special data type names which exist
1694 specifically for those attributes. (They are all aliases for well-known
1695 integer types that you know and love.) These typedef names are defined
1696 in the header file @file{sys/types.h} as well as in @file{sys/stat.h}.
1697 Here is a list of them.
1699 @comment sys/types.h
1701 @deftp {Data Type} mode_t
1702 This is an integer data type used to represent file modes. In the
1703 GNU system, this is equivalent to @code{unsigned int}.
1706 @cindex inode number
1707 @comment sys/types.h
1709 @deftp {Data Type} ino_t
1710 This is an arithmetic data type used to represent file serial numbers.
1711 (In Unix jargon, these are sometimes called @dfn{inode numbers}.)
1712 In the GNU system, this type is equivalent to @code{unsigned long int}.
1714 If the source is compiled with @code{_FILE_OFFSET_BITS == 64} this type
1715 is transparently replaced by @code{ino64_t}.
1718 @comment sys/types.h
1720 @deftp {Data Type} ino64_t
1721 This is an arithmetic data type used to represent file serial numbers
1722 for the use in LFS. In the GNU system, this type is equivalent to
1723 @code{unsigned long longint}.
1725 When compiling with @code{_FILE_OFFSET_BITS == 64} this type is
1726 available under the name @code{ino_t}.
1729 @comment sys/types.h
1731 @deftp {Data Type} dev_t
1732 This is an arithmetic data type used to represent file device numbers.
1733 In the GNU system, this is equivalent to @code{int}.
1736 @comment sys/types.h
1738 @deftp {Data Type} nlink_t
1739 This is an arithmetic data type used to represent file link counts.
1740 In the GNU system, this is equivalent to @code{unsigned short int}.
1743 @comment sys/types.h
1745 @deftp {Data Type} blkcnt_t
1746 This is an arithmetic data type used to represent block counts.
1747 In the GNU system, this is equivalent to @code{unsigned long int}.
1749 If the source is compiled with @code{_FILE_OFFSET_BITS == 64} this type
1750 is transparently replaced by @code{blkcnt64_t}.
1753 @comment sys/types.h
1755 @deftp {Data Type} blkcnt64_t
1756 This is an arithmetic data type used to represent block counts for the
1757 use in LFS. In the GNU system, this is equivalent to @code{unsigned
1760 When compiling with @code{_FILE_OFFSET_BITS == 64} this type is
1761 available under the name @code{blkcnt_t}.
1764 @node Reading Attributes
1765 @subsection Reading the Attributes of a File
1767 To examine the attributes of files, use the functions @code{stat},
1768 @code{fstat} and @code{lstat}. They return the attribute information in
1769 a @code{struct stat} object. All three functions are declared in the
1770 header file @file{sys/stat.h}.
1774 @deftypefun int stat (const char *@var{filename}, struct stat *@var{buf})
1775 The @code{stat} function returns information about the attributes of the
1776 file named by @w{@var{filename}} in the structure pointed to by @var{buf}.
1778 If @var{filename} is the name of a symbolic link, the attributes you get
1779 describe the file that the link points to. If the link points to a
1780 nonexistent file name, then @code{stat} fails reporting a nonexistent
1783 The return value is @code{0} if the operation is successful, or
1784 @code{-1} on failure. In addition to the usual file name errors
1785 (@pxref{File Name Errors}, the following @code{errno} error conditions
1786 are defined for this function:
1790 The file named by @var{filename} doesn't exist.
1793 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} this
1794 function is in fact @code{stat64} since the LFS interface transparently
1795 replaces the normal implementation.
1800 @deftypefun int stat64 (const char *@var{filename}, struct stat64 *@var{buf})
1801 This function is similar to @code{stat} but it is also able to work on
1802 files larger then @math{2^31} bytes on 32-bit systems. To be able to do
1803 this the result is stored in a variable of type @code{struct stat64} to
1804 which @var{buf} must point.
1806 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} this
1807 function is available under the name @code{stat} and so transparently
1808 replaces the interface for small files on 32-bit machines.
1813 @deftypefun int fstat (int @var{filedes}, struct stat *@var{buf})
1814 The @code{fstat} function is like @code{stat}, except that it takes an
1815 open file descriptor as an argument instead of a file name.
1816 @xref{Low-Level I/O}.
1818 Like @code{stat}, @code{fstat} returns @code{0} on success and @code{-1}
1819 on failure. The following @code{errno} error conditions are defined for
1824 The @var{filedes} argument is not a valid file descriptor.
1827 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} this
1828 function is in fact @code{fstat64} since the LFS interface transparently
1829 replaces the normal implementation.
1834 @deftypefun int fstat64 (int @var{filedes}, struct stat64 *@var{buf})
1835 This function is similar to @code{fstat} but is able to work on large
1836 files on 32-bit platforms. For large files the file descriptor
1837 @var{filedes} should be obtained by @code{open64} or @code{creat64}.
1838 The @var{buf} pointer points to a variable of type @code{struct stat64}
1839 which is able to represent the larger values.
1841 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} this
1842 function is available under the name @code{fstat} and so transparently
1843 replaces the interface for small files on 32-bit machines.
1848 @deftypefun int lstat (const char *@var{filename}, struct stat *@var{buf})
1849 The @code{lstat} function is like @code{stat}, except that it does not
1850 follow symbolic links. If @var{filename} is the name of a symbolic
1851 link, @code{lstat} returns information about the link itself; otherwise
1852 @code{lstat} works like @code{stat}. @xref{Symbolic Links}.
1854 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} this
1855 function is in fact @code{lstat64} since the LFS interface transparently
1856 replaces the normal implementation.
1861 @deftypefun int lstat64 (const char *@var{filename}, struct stat64 *@var{buf})
1862 This function is similar to @code{lstat} but it is also able to work on
1863 files larger then @math{2^31} bytes on 32-bit systems. To be able to do
1864 this the result is stored in a variable of type @code{struct stat64} to
1865 which @var{buf} must point.
1867 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} this
1868 function is available under the name @code{lstat} and so transparently
1869 replaces the interface for small files on 32-bit machines.
1872 @node Testing File Type
1873 @subsection Testing the Type of a File
1875 The @dfn{file mode}, stored in the @code{st_mode} field of the file
1876 attributes, contains two kinds of information: the file type code, and
1877 the access permission bits. This section discusses only the type code,
1878 which you can use to tell whether the file is a directory, socket,
1879 symbolic link, and so on. For details about access permissions see
1880 @ref{Permission Bits}.
1882 There are two ways you can access the file type information in a file
1883 mode. Firstly, for each file type there is a @dfn{predicate macro}
1884 which examines a given file mode and returns whether it is of that type
1885 or not. Secondly, you can mask out the rest of the file mode to leave
1886 just the file type code, and compare this against constants for each of
1887 the supported file types.
1889 All of the symbols listed in this section are defined in the header file
1893 The following predicate macros test the type of a file, given the value
1894 @var{m} which is the @code{st_mode} field returned by @code{stat} on
1899 @deftypefn Macro int S_ISDIR (mode_t @var{m})
1900 This macro returns non-zero if the file is a directory.
1905 @deftypefn Macro int S_ISCHR (mode_t @var{m})
1906 This macro returns non-zero if the file is a character special file (a
1907 device like a terminal).
1912 @deftypefn Macro int S_ISBLK (mode_t @var{m})
1913 This macro returns non-zero if the file is a block special file (a device
1919 @deftypefn Macro int S_ISREG (mode_t @var{m})
1920 This macro returns non-zero if the file is a regular file.
1925 @deftypefn Macro int S_ISFIFO (mode_t @var{m})
1926 This macro returns non-zero if the file is a FIFO special file, or a
1927 pipe. @xref{Pipes and FIFOs}.
1932 @deftypefn Macro int S_ISLNK (mode_t @var{m})
1933 This macro returns non-zero if the file is a symbolic link.
1934 @xref{Symbolic Links}.
1939 @deftypefn Macro int S_ISSOCK (mode_t @var{m})
1940 This macro returns non-zero if the file is a socket. @xref{Sockets}.
1943 An alternate non-POSIX method of testing the file type is supported for
1944 compatibility with BSD. The mode can be bitwise AND-ed with
1945 @code{S_IFMT} to extract the file type code, and compared to the
1946 appropriate constant. For example,
1949 S_ISCHR (@var{mode})
1956 ((@var{mode} & S_IFMT) == S_IFCHR)
1961 @deftypevr Macro int S_IFMT
1962 This is a bit mask used to extract the file type code from a mode value.
1965 These are the symbolic names for the different file type codes:
1972 This is the file type constant of a directory file.
1978 This is the file type constant of a character-oriented device file.
1984 This is the file type constant of a block-oriented device file.
1990 This is the file type constant of a regular file.
1996 This is the file type constant of a symbolic link.
2002 This is the file type constant of a socket.
2008 This is the file type constant of a FIFO or pipe.
2011 The POSIX.1b standard introduced a few more objects which possibly can
2012 be implemented as object in the filesystem. These are message queues,
2013 semaphores, and shared memory objects. To allow differentiating these
2014 objects from other files the POSIX standard introduces three new test
2015 macros. But unlike the other macros it does not take the value of the
2016 @code{st_mode} field as the parameter. Instead they expect a pointer to
2017 the whole @code{struct stat} structure.
2021 @deftypefn Macro int S_TYPEISMQ (struct stat *@var{s})
2022 If the system implement POSIX message queues as distinct objects and the
2023 file is a message queue object, this macro returns a non-zero value.
2024 In all other cases the result is zero.
2029 @deftypefn Macro int S_TYPEISSEM (struct stat *@var{s})
2030 If the system implement POSIX semaphores as distinct objects and the
2031 file is a semaphore object, this macro returns a non-zero value.
2032 In all other cases the result is zero.
2037 @deftypefn Macro int S_TYPEISSHM (struct stat *@var{s})
2038 If the system implement POSIX shared memory objects as distinct objects
2039 and the file is an shared memory object, this macro returns a non-zero
2040 value. In all other cases the result is zero.
2044 @subsection File Owner
2046 @cindex owner of a file
2047 @cindex group owner of a file
2049 Every file has an @dfn{owner} which is one of the registered user names
2050 defined on the system. Each file also has a @dfn{group} which is one of
2051 the defined groups. The file owner can often be useful for showing you
2052 who edited the file (especially when you edit with GNU Emacs), but its
2053 main purpose is for access control.
2055 The file owner and group play a role in determining access because the
2056 file has one set of access permission bits for the owner, another set
2057 that applies to users who belong to the file's group, and a third set of
2058 bits that applies to everyone else. @xref{Access Permission}, for the
2059 details of how access is decided based on this data.
2061 When a file is created, its owner is set to the effective user ID of the
2062 process that creates it (@pxref{Process Persona}). The file's group ID
2063 may be set to either the effective group ID of the process, or the group
2064 ID of the directory that contains the file, depending on the system
2065 where the file is stored. When you access a remote file system, it
2066 behaves according to its own rules, not according to the system your
2067 program is running on. Thus, your program must be prepared to encounter
2068 either kind of behavior no matter what kind of system you run it on.
2072 You can change the owner and/or group owner of an existing file using
2073 the @code{chown} function. This is the primitive for the @code{chown}
2074 and @code{chgrp} shell commands.
2077 The prototype for this function is declared in @file{unistd.h}.
2081 @deftypefun int chown (const char *@var{filename}, uid_t @var{owner}, gid_t @var{group})
2082 The @code{chown} function changes the owner of the file @var{filename} to
2083 @var{owner}, and its group owner to @var{group}.
2085 Changing the owner of the file on certain systems clears the set-user-ID
2086 and set-group-ID permission bits. (This is because those bits may not
2087 be appropriate for the new owner.) Other file permission bits are not
2090 The return value is @code{0} on success and @code{-1} on failure.
2091 In addition to the usual file name errors (@pxref{File Name Errors}),
2092 the following @code{errno} error conditions are defined for this function:
2096 This process lacks permission to make the requested change.
2098 Only privileged users or the file's owner can change the file's group.
2099 On most file systems, only privileged users can change the file owner;
2100 some file systems allow you to change the owner if you are currently the
2101 owner. When you access a remote file system, the behavior you encounter
2102 is determined by the system that actually holds the file, not by the
2103 system your program is running on.
2105 @xref{Options for Files}, for information about the
2106 @code{_POSIX_CHOWN_RESTRICTED} macro.
2109 The file is on a read-only file system.
2115 @deftypefun int fchown (int @var{filedes}, int @var{owner}, int @var{group})
2116 This is like @code{chown}, except that it changes the owner of the open
2117 file with descriptor @var{filedes}.
2119 The return value from @code{fchown} is @code{0} on success and @code{-1}
2120 on failure. The following @code{errno} error codes are defined for this
2125 The @var{filedes} argument is not a valid file descriptor.
2128 The @var{filedes} argument corresponds to a pipe or socket, not an ordinary
2132 This process lacks permission to make the requested change. For details
2133 see @code{chmod} above.
2136 The file resides on a read-only file system.
2140 @node Permission Bits
2141 @subsection The Mode Bits for Access Permission
2143 The @dfn{file mode}, stored in the @code{st_mode} field of the file
2144 attributes, contains two kinds of information: the file type code, and
2145 the access permission bits. This section discusses only the access
2146 permission bits, which control who can read or write the file.
2147 @xref{Testing File Type}, for information about the file type code.
2149 All of the symbols listed in this section are defined in the header file
2153 @cindex file permission bits
2154 These symbolic constants are defined for the file mode bits that control
2155 access permission for the file:
2166 Read permission bit for the owner of the file. On many systems this bit
2167 is 0400. @code{S_IREAD} is an obsolete synonym provided for BSD
2178 Write permission bit for the owner of the file. Usually 0200.
2179 @w{@code{S_IWRITE}} is an obsolete synonym provided for BSD compatibility.
2189 Execute (for ordinary files) or search (for directories) permission bit
2190 for the owner of the file. Usually 0100. @code{S_IEXEC} is an obsolete
2191 synonym provided for BSD compatibility.
2197 This is equivalent to @samp{(S_IRUSR | S_IWUSR | S_IXUSR)}.
2203 Read permission bit for the group owner of the file. Usually 040.
2209 Write permission bit for the group owner of the file. Usually 020.
2215 Execute or search permission bit for the group owner of the file.
2222 This is equivalent to @samp{(S_IRGRP | S_IWGRP | S_IXGRP)}.
2228 Read permission bit for other users. Usually 04.
2234 Write permission bit for other users. Usually 02.
2240 Execute or search permission bit for other users. Usually 01.
2246 This is equivalent to @samp{(S_IROTH | S_IWOTH | S_IXOTH)}.
2252 This is the set-user-ID on execute bit, usually 04000.
2253 @xref{How Change Persona}.
2259 This is the set-group-ID on execute bit, usually 02000.
2260 @xref{How Change Persona}.
2267 This is the @dfn{sticky} bit, usually 01000.
2269 For a directory it gives permission to delete a file in that directory
2270 only if you own that file. Ordinarily, a user can either delete all the
2271 files in a directory or cannot delete any of them (based on whether the
2272 user has write permission for the directory). The same restriction
2273 applies---you must have both write permission for the directory and own
2274 the file you want to delete. The one exception is that the owner of the
2275 directory can delete any file in the directory, no matter who owns it
2276 (provided the owner has given himself write permission for the
2277 directory). This is commonly used for the @file{/tmp} directory, where
2278 anyone may create files but not delete files created by other users.
2280 Originally the sticky bit on an executable file modified the swapping
2281 policies of the system. Normally, when a program terminated, its pages
2282 in core were immediately freed and reused. If the sticky bit was set on
2283 the executable file, the system kept the pages in core for a while as if
2284 the program were still running. This was advantageous for a program
2285 likely to be run many times in succession. This usage is obsolete in
2286 modern systems. When a program terminates, its pages always remain in
2287 core as long as there is no shortage of memory in the system. When the
2288 program is next run, its pages will still be in core if no shortage
2289 arose since the last run.
2291 On some modern systems where the sticky bit has no useful meaning for an
2292 executable file, you cannot set the bit at all for a non-directory.
2293 If you try, @code{chmod} fails with @code{EFTYPE};
2294 @pxref{Setting Permissions}.
2296 Some systems (particularly SunOS) have yet another use for the sticky
2297 bit. If the sticky bit is set on a file that is @emph{not} executable,
2298 it means the opposite: never cache the pages of this file at all. The
2299 main use of this is for the files on an NFS server machine which are
2300 used as the swap area of diskless client machines. The idea is that the
2301 pages of the file will be cached in the client's memory, so it is a
2302 waste of the server's memory to cache them a second time. With this
2303 usage the sticky bit also implies that the filesystem may fail to record
2304 the file's modification time onto disk reliably (the idea being that
2305 no-one cares for a swap file).
2307 This bit is only available on BSD systems (and those derived from
2308 them). Therefore one has to use the @code{_BSD_SOURCE} feature select
2309 macro to get the definition (@pxref{Feature Test Macros}).
2312 The actual bit values of the symbols are listed in the table above
2313 so you can decode file mode values when debugging your programs.
2314 These bit values are correct for most systems, but they are not
2317 @strong{Warning:} Writing explicit numbers for file permissions is bad
2318 practice. Not only is it not portable, it also requires everyone who
2319 reads your program to remember what the bits mean. To make your program
2320 clean use the symbolic names.
2322 @node Access Permission
2323 @subsection How Your Access to a File is Decided
2324 @cindex permission to access a file
2325 @cindex access permission for a file
2326 @cindex file access permission
2328 Recall that the operating system normally decides access permission for
2329 a file based on the effective user and group IDs of the process and its
2330 supplementary group IDs, together with the file's owner, group and
2331 permission bits. These concepts are discussed in detail in @ref{Process
2334 If the effective user ID of the process matches the owner user ID of the
2335 file, then permissions for read, write, and execute/search are
2336 controlled by the corresponding ``user'' (or ``owner'') bits. Likewise,
2337 if any of the effective group ID or supplementary group IDs of the
2338 process matches the group owner ID of the file, then permissions are
2339 controlled by the ``group'' bits. Otherwise, permissions are controlled
2340 by the ``other'' bits.
2342 Privileged users, like @samp{root}, can access any file regardless of
2343 its permission bits. As a special case, for a file to be executable
2344 even by a privileged user, at least one of its execute bits must be set.
2346 @node Setting Permissions
2347 @subsection Assigning File Permissions
2349 @cindex file creation mask
2351 The primitive functions for creating files (for example, @code{open} or
2352 @code{mkdir}) take a @var{mode} argument, which specifies the file
2353 permissions to give the newly created file. This mode is modified by
2354 the process's @dfn{file creation mask}, or @dfn{umask}, before it is
2357 The bits that are set in the file creation mask identify permissions
2358 that are always to be disabled for newly created files. For example, if
2359 you set all the ``other'' access bits in the mask, then newly created
2360 files are not accessible at all to processes in the ``other'' category,
2361 even if the @var{mode} argument passed to the create function would
2362 permit such access. In other words, the file creation mask is the
2363 complement of the ordinary access permissions you want to grant.
2365 Programs that create files typically specify a @var{mode} argument that
2366 includes all the permissions that make sense for the particular file.
2367 For an ordinary file, this is typically read and write permission for
2368 all classes of users. These permissions are then restricted as
2369 specified by the individual user's own file creation mask.
2372 To change the permission of an existing file given its name, call
2373 @code{chmod}. This function uses the specified permission bits and
2374 ignores the file creation mask.
2377 In normal use, the file creation mask is initialized by the user's login
2378 shell (using the @code{umask} shell command), and inherited by all
2379 subprocesses. Application programs normally don't need to worry about
2380 the file creation mask. It will automatically do what it is supposed to
2383 When your program needs to create a file and bypass the umask for its
2384 access permissions, the easiest way to do this is to use @code{fchmod}
2385 after opening the file, rather than changing the umask. In fact,
2386 changing the umask is usually done only by shells. They use the
2387 @code{umask} function.
2389 The functions in this section are declared in @file{sys/stat.h}.
2394 @deftypefun mode_t umask (mode_t @var{mask})
2395 The @code{umask} function sets the file creation mask of the current
2396 process to @var{mask}, and returns the previous value of the file
2399 Here is an example showing how to read the mask with @code{umask}
2400 without changing it permanently:
2406 mode_t mask = umask (0);
2413 However, it is better to use @code{getumask} if you just want to read
2414 the mask value, because it is reentrant (at least if you use the GNU
2420 @deftypefun mode_t getumask (void)
2421 Return the current value of the file creation mask for the current
2422 process. This function is a GNU extension.
2427 @deftypefun int chmod (const char *@var{filename}, mode_t @var{mode})
2428 The @code{chmod} function sets the access permission bits for the file
2429 named by @var{filename} to @var{mode}.
2431 If @var{filename} is a symbolic link, @code{chmod} changes the
2432 permissions of the file pointed to by the link, not those of the link
2435 This function returns @code{0} if successful and @code{-1} if not. In
2436 addition to the usual file name errors (@pxref{File Name
2437 Errors}), the following @code{errno} error conditions are defined for
2442 The named file doesn't exist.
2445 This process does not have permission to change the access permissions
2446 of this file. Only the file's owner (as judged by the effective user ID
2447 of the process) or a privileged user can change them.
2450 The file resides on a read-only file system.
2453 @var{mode} has the @code{S_ISVTX} bit (the ``sticky bit'') set,
2454 and the named file is not a directory. Some systems do not allow setting the
2455 sticky bit on non-directory files, and some do (and only some of those
2456 assign a useful meaning to the bit for non-directory files).
2458 You only get @code{EFTYPE} on systems where the sticky bit has no useful
2459 meaning for non-directory files, so it is always safe to just clear the
2460 bit in @var{mode} and call @code{chmod} again. @xref{Permission Bits},
2461 for full details on the sticky bit.
2467 @deftypefun int fchmod (int @var{filedes}, int @var{mode})
2468 This is like @code{chmod}, except that it changes the permissions of the
2469 currently open file given by @var{filedes}.
2471 The return value from @code{fchmod} is @code{0} on success and @code{-1}
2472 on failure. The following @code{errno} error codes are defined for this
2477 The @var{filedes} argument is not a valid file descriptor.
2480 The @var{filedes} argument corresponds to a pipe or socket, or something
2481 else that doesn't really have access permissions.
2484 This process does not have permission to change the access permissions
2485 of this file. Only the file's owner (as judged by the effective user ID
2486 of the process) or a privileged user can change them.
2489 The file resides on a read-only file system.
2493 @node Testing File Access
2494 @subsection Testing Permission to Access a File
2495 @cindex testing access permission
2496 @cindex access, testing for
2497 @cindex setuid programs and file access
2499 In some situations it is desirable to allow programs to access files or
2500 devices even if this is not possible with the permissions granted to the
2501 user. One possible solution is to set the setuid-bit of the program
2502 file. If such a program is started the @emph{effective} user ID of the
2503 process is changed to that of the owner of the program file. So to
2504 allow write access to files like @file{/etc/passwd}, which normally can
2505 be written only by the super-user, the modifying program will have to be
2506 owned by @code{root} and the setuid-bit must be set.
2508 But beside the files the program is intended to change the user should
2509 not be allowed to access any file to which s/he would not have access
2510 anyway. The program therefore must explicitly check whether @emph{the
2511 user} would have the necessary access to a file, before it reads or
2514 To do this, use the function @code{access}, which checks for access
2515 permission based on the process's @emph{real} user ID rather than the
2516 effective user ID. (The setuid feature does not alter the real user ID,
2517 so it reflects the user who actually ran the program.)
2519 There is another way you could check this access, which is easy to
2520 describe, but very hard to use. This is to examine the file mode bits
2521 and mimic the system's own access computation. This method is
2522 undesirable because many systems have additional access control
2523 features; your program cannot portably mimic them, and you would not
2524 want to try to keep track of the diverse features that different systems
2525 have. Using @code{access} is simple and automatically does whatever is
2526 appropriate for the system you are using.
2528 @code{access} is @emph{only} only appropriate to use in setuid programs.
2529 A non-setuid program will always use the effective ID rather than the
2533 The symbols in this section are declared in @file{unistd.h}.
2537 @deftypefun int access (const char *@var{filename}, int @var{how})
2538 The @code{access} function checks to see whether the file named by
2539 @var{filename} can be accessed in the way specified by the @var{how}
2540 argument. The @var{how} argument either can be the bitwise OR of the
2541 flags @code{R_OK}, @code{W_OK}, @code{X_OK}, or the existence test
2544 This function uses the @emph{real} user and group IDs of the calling
2545 process, rather than the @emph{effective} IDs, to check for access
2546 permission. As a result, if you use the function from a @code{setuid}
2547 or @code{setgid} program (@pxref{How Change Persona}), it gives
2548 information relative to the user who actually ran the program.
2550 The return value is @code{0} if the access is permitted, and @code{-1}
2551 otherwise. (In other words, treated as a predicate function,
2552 @code{access} returns true if the requested access is @emph{denied}.)
2554 In addition to the usual file name errors (@pxref{File Name
2555 Errors}), the following @code{errno} error conditions are defined for
2560 The access specified by @var{how} is denied.
2563 The file doesn't exist.
2566 Write permission was requested for a file on a read-only file system.
2570 These macros are defined in the header file @file{unistd.h} for use
2571 as the @var{how} argument to the @code{access} function. The values
2572 are integer constants.
2577 @deftypevr Macro int R_OK
2578 Flag meaning test for read permission.
2583 @deftypevr Macro int W_OK
2584 Flag meaning test for write permission.
2589 @deftypevr Macro int X_OK
2590 Flag meaning test for execute/search permission.
2595 @deftypevr Macro int F_OK
2596 Flag meaning test for existence of the file.
2600 @subsection File Times
2602 @cindex file access time
2603 @cindex file modification time
2604 @cindex file attribute modification time
2605 Each file has three time stamps associated with it: its access time,
2606 its modification time, and its attribute modification time. These
2607 correspond to the @code{st_atime}, @code{st_mtime}, and @code{st_ctime}
2608 members of the @code{stat} structure; see @ref{File Attributes}.
2610 All of these times are represented in calendar time format, as
2611 @code{time_t} objects. This data type is defined in @file{time.h}.
2612 For more information about representation and manipulation of time
2613 values, see @ref{Calendar Time}.
2616 Reading from a file updates its access time attribute, and writing
2617 updates its modification time. When a file is created, all three
2618 time stamps for that file are set to the current time. In addition, the
2619 attribute change time and modification time fields of the directory that
2620 contains the new entry are updated.
2622 Adding a new name for a file with the @code{link} function updates the
2623 attribute change time field of the file being linked, and both the
2624 attribute change time and modification time fields of the directory
2625 containing the new name. These same fields are affected if a file name
2626 is deleted with @code{unlink}, @code{remove} or @code{rmdir}. Renaming
2627 a file with @code{rename} affects only the attribute change time and
2628 modification time fields of the two parent directories involved, and not
2629 the times for the file being renamed.
2631 Changing the attributes of a file (for example, with @code{chmod})
2632 updates its attribute change time field.
2634 You can also change some of the time stamps of a file explicitly using
2635 the @code{utime} function---all except the attribute change time. You
2636 need to include the header file @file{utime.h} to use this facility.
2641 @deftp {Data Type} {struct utimbuf}
2642 The @code{utimbuf} structure is used with the @code{utime} function to
2643 specify new access and modification times for a file. It contains the
2648 This is the access time for the file.
2650 @item time_t modtime
2651 This is the modification time for the file.
2657 @deftypefun int utime (const char *@var{filename}, const struct utimbuf *@var{times})
2658 This function is used to modify the file times associated with the file
2659 named @var{filename}.
2661 If @var{times} is a null pointer, then the access and modification times
2662 of the file are set to the current time. Otherwise, they are set to the
2663 values from the @code{actime} and @code{modtime} members (respectively)
2664 of the @code{utimbuf} structure pointed to by @var{times}.
2666 The attribute modification time for the file is set to the current time
2667 in either case (since changing the time stamps is itself a modification
2668 of the file attributes).
2670 The @code{utime} function returns @code{0} if successful and @code{-1}
2671 on failure. In addition to the usual file name errors
2672 (@pxref{File Name Errors}), the following @code{errno} error conditions
2673 are defined for this function:
2677 There is a permission problem in the case where a null pointer was
2678 passed as the @var{times} argument. In order to update the time stamp on
2679 the file, you must either be the owner of the file, have write
2680 permission for the file, or be a privileged user.
2683 The file doesn't exist.
2686 If the @var{times} argument is not a null pointer, you must either be
2687 the owner of the file or be a privileged user.
2690 The file lives on a read-only file system.
2694 Each of the three time stamps has a corresponding microsecond part,
2695 which extends its resolution. These fields are called
2696 @code{st_atime_usec}, @code{st_mtime_usec}, and @code{st_ctime_usec};
2697 each has a value between 0 and 999,999, which indicates the time in
2698 microseconds. They correspond to the @code{tv_usec} field of a
2699 @code{timeval} structure; see @ref{High-Resolution Calendar}.
2701 The @code{utimes} function is like @code{utime}, but also lets you specify
2702 the fractional part of the file times. The prototype for this function is
2703 in the header file @file{sys/time.h}.
2708 @deftypefun int utimes (const char *@var{filename}, struct timeval @var{tvp}@t{[2]})
2709 This function sets the file access and modification times of the file
2710 @var{filename}. The new file access time is specified by
2711 @code{@var{tvp}[0]}, and the new modification time by
2712 @code{@var{tvp}[1]}. This function comes from BSD.
2714 The return values and error conditions are the same as for the @code{utime}
2719 @subsection File Size
2721 Normally file sizes are maintained automatically. A file begins with a
2722 size of @math{0} and is automatically extended when data is written past
2723 its end. It is also possible to empty a file completely by an
2724 @code{open} or @code{fopen} call.
2726 However, sometimes it is necessary to @emph{reduce} the size of a file.
2727 This can be done with the @code{truncate} and @code{ftruncate} functions.
2728 They were introduced in BSD Unix. @code{ftruncate} was later added to
2731 Some systems allow you to extend a file (creating holes) with these
2732 functions. This is useful when using memory-mapped I/O
2733 (@pxref{Memory-mapped I/O}), where files are not automatically extended.
2734 However, it is not portable but must be implemented if @code{mmap}
2735 allows mapping of files (i.e., @code{_POSIX_MAPPED_FILES} is defined).
2737 Using these functions on anything other than a regular file gives
2738 @emph{undefined} results. On many systems, such a call will appear to
2739 succeed, without actually accomplishing anything.
2743 @deftypefun int truncate (const char *@var{filename}, off_t @var{length})
2745 The @code{truncate} function changes the size of @var{filename} to
2746 @var{length}. If @var{length} is shorter than the previous length, data
2747 at the end will be lost. The file must be writable by the user to
2748 perform this operation.
2750 If @var{length} is longer, holes will be added to the end. However, some
2751 systems do not support this feature and will leave the file unchanged.
2753 When the source file is compiled with @code{_FILE_OFFSET_BITS == 64} the
2754 @code{truncate} function is in fact @code{truncate64} and the type
2755 @code{off_t} has 64 bits which makes it possible to handle files up to
2756 @math{2^63} bytes in length.
2758 The return value is @math{0} for success, or @math{-1} for an error. In
2759 addition to the usual file name errors, the following errors may occur:
2764 The file is a directory or not writable.
2767 @var{length} is negative.
2770 The operation would extend the file beyond the limits of the operating system.
2773 A hardware I/O error occurred.
2776 The file is "append-only" or "immutable".
2779 The operation was interrupted by a signal.
2787 @deftypefun int truncate64 (const char *@var{name}, off64_t @var{length})
2788 This function is similar to the @code{truncate} function. The
2789 difference is that the @var{length} argument is 64 bits wide even on 32
2790 bits machines, which allows the handling of files with sizes up to
2793 When the source file is compiled with @code{_FILE_OFFSET_BITS == 64} on a
2794 32 bits machine this function is actually available under the name
2795 @code{truncate} and so transparently replaces the 32 bits interface.
2800 @deftypefun int ftruncate (int @var{fd}, off_t @var{length})
2802 This is like @code{truncate}, but it works on a file descriptor @var{fd}
2803 for an opened file instead of a file name to identify the object. The
2804 file must be opened for writing to successfully carry out the operation.
2806 The POSIX standard leaves it implementation defined what happens if the
2807 specified new @var{length} of the file is bigger than the original size.
2808 The @code{ftruncate} function might simply leave the file alone and do
2809 nothing or it can increase the size to the desired size. In this later
2810 case the extended area should be zero-filled. So using @code{ftruncate}
2811 is no reliable way to increase the file size but if it is possible it is
2812 probably the fastest way. The function also operates on POSIX shared
2813 memory segments if these are implemented by the system.
2815 @code{ftruncate} is especially useful in combination with @code{mmap}.
2816 Since the mapped region must have a fixed size one cannot enlarge the
2817 file by writing something beyond the last mapped page. Instead one has
2818 to enlarge the file itself and then remap the file with the new size.
2819 The example below shows how this works.
2821 When the source file is compiled with @code{_FILE_OFFSET_BITS == 64} the
2822 @code{ftruncate} function is in fact @code{ftruncate64} and the type
2823 @code{off_t} has 64 bits which makes it possible to handle files up to
2824 @math{2^63} bytes in length.
2826 The return value is @math{0} for success, or @math{-1} for an error. The
2827 following errors may occur:
2832 @var{fd} does not correspond to an open file.
2835 @var{fd} is a directory or not open for writing.
2838 @var{length} is negative.
2841 The operation would extend the file beyond the limits of the operating system.
2842 @c or the open() call -- with the not-yet-discussed feature of opening
2843 @c files with extra-large offsets.
2846 A hardware I/O error occurred.
2849 The file is "append-only" or "immutable".
2852 The operation was interrupted by a signal.
2854 @c ENOENT is also possible on Linux --- however it only occurs if the file
2855 @c descriptor has a `file' structure but no `inode' structure. I'm not
2856 @c sure how such an fd could be created. Perhaps it's a bug.
2864 @deftypefun int ftruncate64 (int @var{id}, off64_t @var{length})
2865 This function is similar to the @code{ftruncate} function. The
2866 difference is that the @var{length} argument is 64 bits wide even on 32
2867 bits machines which allows the handling of files with sizes up to
2870 When the source file is compiled with @code{_FILE_OFFSET_BITS == 64} on a
2871 32 bits machine this function is actually available under the name
2872 @code{ftruncate} and so transparently replaces the 32 bits interface.
2875 As announced here is a little example of how to use @code{ftruncate} in
2876 combination with @code{mmap}:
2884 add (off_t at, void *block, size_t size)
2886 if (at + size > len)
2888 /* Resize the file and remap. */
2889 size_t ps = sysconf (_SC_PAGESIZE);
2890 size_t ns = (at + size + ps - 1) & ~(ps - 1);
2892 if (ftruncate (fd, ns) < 0)
2894 np = mmap (NULL, ns, PROT_READ|PROT_WRITE, MAP_SHARED, fd, 0);
2895 if (np == MAP_FAILED)
2900 memcpy ((char *) start + at, block, size);
2905 The function @code{add} writes a block of memory at an arbitrary
2906 position in the file. If the current size of the file is too small it
2907 is extended. Note the it is extended by a round number of pages. This
2908 is a requirement of @code{mmap}. The program has to keep track of the
2909 real size, and when it has finished a final @code{ftruncate} call should
2910 set the real size of the file.
2912 @node Making Special Files
2913 @section Making Special Files
2914 @cindex creating special files
2915 @cindex special files
2917 The @code{mknod} function is the primitive for making special files,
2918 such as files that correspond to devices. The GNU library includes
2919 this function for compatibility with BSD.
2921 The prototype for @code{mknod} is declared in @file{sys/stat.h}.
2926 @deftypefun int mknod (const char *@var{filename}, int @var{mode}, int @var{dev})
2927 The @code{mknod} function makes a special file with name @var{filename}.
2928 The @var{mode} specifies the mode of the file, and may include the various
2929 special file bits, such as @code{S_IFCHR} (for a character special file)
2930 or @code{S_IFBLK} (for a block special file). @xref{Testing File Type}.
2932 The @var{dev} argument specifies which device the special file refers to.
2933 Its exact interpretation depends on the kind of special file being created.
2935 The return value is @code{0} on success and @code{-1} on error. In addition
2936 to the usual file name errors (@pxref{File Name Errors}), the
2937 following @code{errno} error conditions are defined for this function:
2941 The calling process is not privileged. Only the superuser can create
2945 The directory or file system that would contain the new file is full
2946 and cannot be extended.
2949 The directory containing the new file can't be modified because it's on
2950 a read-only file system.
2953 There is already a file named @var{filename}. If you want to replace
2954 this file, you must remove the old file explicitly first.
2958 @node Temporary Files
2959 @section Temporary Files
2961 If you need to use a temporary file in your program, you can use the
2962 @code{tmpfile} function to open it. Or you can use the @code{tmpnam}
2963 (better: @code{tmpnam_r}) function to provide a name for a temporary
2964 file and then you can open it in the usual way with @code{fopen}.
2966 The @code{tempnam} function is like @code{tmpnam} but lets you choose
2967 what directory temporary files will go in, and something about what
2968 their file names will look like. Important for multi-threaded programs
2969 is that @code{tempnam} is reentrant, while @code{tmpnam} is not since it
2970 returns a pointer to a static buffer.
2972 These facilities are declared in the header file @file{stdio.h}.
2977 @deftypefun {FILE *} tmpfile (void)
2978 This function creates a temporary binary file for update mode, as if by
2979 calling @code{fopen} with mode @code{"wb+"}. The file is deleted
2980 automatically when it is closed or when the program terminates. (On
2981 some other @w{ISO C} systems the file may fail to be deleted if the program
2982 terminates abnormally).
2984 This function is reentrant.
2986 When the sources are compiled with @code{_FILE_OFFSET_BITS == 64} on a
2987 32-bit system this function is in fact @code{tmpfile64}, i.e. the LFS
2988 interface transparently replaces the old interface.
2993 @deftypefun {FILE *} tmpfile64 (void)
2994 This function is similar to @code{tmpfile}, but the stream it returns a
2995 pointer to was opened using @code{tmpfile64}. Therefore this stream can
2996 be used for files larger then @math{2^31} bytes on 32-bit machines.
2998 Please note that the return type is still @code{FILE *}. There is no
2999 special @code{FILE} type for the LFS interface.
3001 If the sources are compiled with @code{_FILE_OFFSET_BITS == 64} on a 32
3002 bits machine this function is available under the name @code{tmpfile}
3003 and so transparently replaces the old interface.
3008 @deftypefun {char *} tmpnam (char *@var{result})
3009 This function constructs and returns a valid file name that does not
3010 refer to any existing file. If the @var{result} argument is a null
3011 pointer, the return value is a pointer to an internal static string,
3012 which might be modified by subsequent calls and therefore makes this
3013 function non-reentrant. Otherwise, the @var{result} argument should be
3014 a pointer to an array of at least @code{L_tmpnam} characters, and the
3015 result is written into that array.
3017 It is possible for @code{tmpnam} to fail if you call it too many times
3018 without removing previously-created files. This is because the limited
3019 length of the temporary file names gives room for only a finite number
3020 of different names. If @code{tmpnam} fails it returns a null pointer.
3022 @strong{Warning:} Between the time the pathname is constructed and the
3023 file is created another process might have created a file with the same
3024 name using @code{tmpnam}, leading to a possible security hole. The
3025 implementation generates names which can hardly be predicted, but when
3026 opening the file you should use the @code{O_EXCL} flag. Using
3027 @code{tmpfile} or @code{mkstemp} is a safe way to avoid this problem.
3032 @deftypefun {char *} tmpnam_r (char *@var{result})
3033 This function is nearly identical to the @code{tmpnam} function, except
3034 that if @var{result} is a null pointer it returns a null pointer.
3036 This guarantees reentrancy because the non-reentrant situation of
3037 @code{tmpnam} cannot happen here.
3039 @strong{Warning}: This function has the same security problems as
3045 @deftypevr Macro int L_tmpnam
3046 The value of this macro is an integer constant expression that
3047 represents the minimum size of a string large enough to hold a file name
3048 generated by the @code{tmpnam} function.
3053 @deftypevr Macro int TMP_MAX
3054 The macro @code{TMP_MAX} is a lower bound for how many temporary names
3055 you can create with @code{tmpnam}. You can rely on being able to call
3056 @code{tmpnam} at least this many times before it might fail saying you
3057 have made too many temporary file names.
3059 With the GNU library, you can create a very large number of temporary
3060 file names. If you actually created the files, you would probably run
3061 out of disk space before you ran out of names. Some other systems have
3062 a fixed, small limit on the number of temporary files. The limit is
3063 never less than @code{25}.
3068 @deftypefun {char *} tempnam (const char *@var{dir}, const char *@var{prefix})
3069 This function generates a unique temporary file name. If @var{prefix}
3070 is not a null pointer, up to five characters of this string are used as
3071 a prefix for the file name. The return value is a string newly
3072 allocated with @code{malloc}, so you should release its storage with
3073 @code{free} when it is no longer needed.
3075 Because the string is dynamically allocated this function is reentrant.
3077 The directory prefix for the temporary file name is determined by
3078 testing each of the following in sequence. The directory must exist and
3083 The environment variable @code{TMPDIR}, if it is defined. For security
3084 reasons this only happens if the program is not SUID or SGID enabled.
3087 The @var{dir} argument, if it is not a null pointer.
3090 The value of the @code{P_tmpdir} macro.
3093 The directory @file{/tmp}.
3096 This function is defined for SVID compatibility.
3098 @strong{Warning:} Between the time the pathname is constructed and the
3099 file is created another process might have created a file with the same
3100 name using @code{tempnam}, leading to a possible security hole. The
3101 implementation generates names which can hardly be predicted, but when
3102 opening the file you should use the @code{O_EXCL} flag. Using
3103 @code{tmpfile} or @code{mkstemp} is a safe way to avoid this problem.
3105 @cindex TMPDIR environment variable
3109 @c !!! are we putting SVID/GNU/POSIX.1/BSD in here or not??
3110 @deftypevr {SVID Macro} {char *} P_tmpdir
3111 This macro is the name of the default directory for temporary files.
3114 Older Unix systems did not have the functions just described. Instead
3115 they used @code{mktemp} and @code{mkstemp}. Both of these functions
3116 work by modifying a file name template string you pass. The last six
3117 characters of this string must be @samp{XXXXXX}. These six @samp{X}s
3118 are replaced with six characters which make the whole string a unique
3119 file name. Usually the template string is something like
3120 @samp{/tmp/@var{prefix}XXXXXX}, and each program uses a unique @var{prefix}.
3122 @strong{Note:} Because @code{mktemp} and @code{mkstemp} modify the
3123 template string, you @emph{must not} pass string constants to them.
3124 String constants are normally in read-only storage, so your program
3125 would crash when @code{mktemp} or @code{mkstemp} tried to modify the
3130 @deftypefun {char *} mktemp (char *@var{template})
3131 The @code{mktemp} function generates a unique file name by modifying
3132 @var{template} as described above. If successful, it returns
3133 @var{template} as modified. If @code{mktemp} cannot find a unique file
3134 name, it makes @var{template} an empty string and returns that. If
3135 @var{template} does not end with @samp{XXXXXX}, @code{mktemp} returns a
3138 @strong{Warning:} Between the time the pathname is constructed and the
3139 file is created another process might have created a file with the same
3140 name using @code{mktemp}, leading to a possible security hole. The
3141 implementation generates names which can hardly be predicted, but when
3142 opening the file you should use the @code{O_EXCL} flag. Using
3143 @code{mkstemp} is a safe way to avoid this problem.
3148 @deftypefun int mkstemp (char *@var{template})
3149 The @code{mkstemp} function generates a unique file name just as
3150 @code{mktemp} does, but it also opens the file for you with @code{open}
3151 (@pxref{Opening and Closing Files}). If successful, it modifies
3152 @var{template} in place and returns a file descriptor for that file open
3153 for reading and writing. If @code{mkstemp} cannot create a
3154 uniquely-named file, it returns @code{-1}. If @var{template} does not
3155 end with @samp{XXXXXX}, @code{mkstemp} returns @code{-1} and does not
3156 modify @var{template}.
3158 The file is opened using mode @code{0600}. If the file is meant to be
3159 used by other users this mode must be changed explicitly.
3162 Unlike @code{mktemp}, @code{mkstemp} is actually guaranteed to create a
3163 unique file that cannot possibly clash with any other program trying to
3164 create a temporary file. This is because it works by calling
3165 @code{open} with the @code{O_EXCL} flag, which says you want to create a
3166 new file and get an error if the file already exists.
3170 @deftypefun {char *} mkdtemp (char *@var{template})
3171 The @code{mkdtemp} function creates a directory with a unique name. If
3172 it succeeds, it overwrites @var{template} with the name of the
3173 directory, and returns @var{template}. As with @code{mktemp} and
3174 @code{mkstemp}, @var{template} should be a string ending with
3177 If @code{mkdtemp} cannot create an uniquely named directory, it returns
3178 @code{NULL} and sets @var{errno} appropriately. If @var{template} does
3179 not end with @samp{XXXXXX}, @code{mkdtemp} returns @code{NULL} and does
3180 not modify @var{template}. @var{errno} will be set to @code{EINVAL} in
3183 The directory is created using mode @code{0700}.
3186 The directory created by @code{mkdtemp} cannot clash with temporary
3187 files or directories created by other users. This is because directory
3188 creation always works like @code{open} with @code{O_EXCL}.
3189 @xref{Creating Directories}.
3191 The @code{mkdtemp} function comes from OpenBSD.