Coding

summary

<p>The Unix <a href="http://www.freebsd.org/cgi/man.cgi?query=rename&apropos=0&sektion=2"><tt>rename(2)</tt></a> system call—<a href="http://perldoc.perl.org/functions/rename.html"><tt>rename</tt></a> in Perl, Ruby, and other languages—caMelCased <tt>renameTo</tt> in Java—offers atomic file renaming under a single filesystem. <a href="http://en.wikipedia.org/wiki/Atomism">Atomic</a> here means the file is either renamed, or it is not, even if the system should crash. Workflows that move files can benefit from atomic copies: a truncated <tt>/etc/passwd</tt> file could render a system unusable; an incomplete <tt>index.html</tt> may confuse customers or bring ridicule to a company; an incomplete <tt>report.csv</tt> may silently omit crucial data.</p> <!-- technorati tags start --><p style="text-align:right;font-size:10px;">Technorati Tags: <a href="http://www.technorati.com/tag/coding" rel="tag">coding</a>, <a href="http://www.technorati.com/tag/Unix" rel="tag">Unix</a></p><!-- technorati tags end --> <br /> <h2>Implementation</h2> <p>The sample Ruby code below first writes the source file to a temporary file in the same directory as the permanent filename, then uses the <tt>rename</tt> call once the copy completes. <a href="http://samba.anu.edu.au/rsync/"><tt>rsync</tt></a>, <a href="http://www.cfengine.org/"><tt>cfengine</tt></a>, and other programs use this method to ensure complete all-or-nothing file copies.</p> <p class="sial-block-code">#!/usr/bin/ruby # # Usage: $0 source_file destination_file # # TODO error, exception handling and cleanup as # necessary for the implementation. require "ftools"; require "tempfile"; program = File.basename($0); src_file = ARGV[0]; src_stat = File.stat(src_file); dst_file = ARGV[1]; # If directory the target, copy file into # that directory if FileTest::directory?(dst_file) dst_dir = dst_file dst_file = File.join(dst_dir,File.basename(src_file)) else dst_dir = File.dirname(dst_file) end File.mkpath(dst_dir); tf = Tempfile.open("#{program}-tmp", tmpdir=dst_dir) File.copy(src_file, tf.path) File.chmod(src_stat.mode, tf.path) # TODO apply checksum verification here if paranoid # that the filesystem or underlying storage might have # corrupted the file, or if calculating the MDN as part # of the AS2 protocol. File.rename(tf.path, dst_file)</p> <h2>Concerns with rename()</h2> <p>The <tt>rename</tt> documentation often includes dire warnings: that <tt>rename</tt> does not work across filesystem boundaries, that it is not portable, or that it fails should the destination file exist. The first concern is not a problem for files being renamed under the same filesystem, much less the same parent directory. The common <a href="http://www.freebsd.org/cgi/man.cgi?query=mv&sektion=1"><tt>mv(1)</tt></a> command uses <tt>rename(2)</tt> should the source and destination reside on the same filesystem:</p> <p class="sial-block-shell">$ <kbd>ktrace mv source/cat dest</kbd> $ <kbd>kdump -f ktrace.out| tail -22</kbd> 5228 mv NAMI "dest" 5228 mv RET stat 0 5228 mv CALL lstat(0xbffff41f,0xbffff220) 5228 mv NAMI "source/cat" 5228 mv RET lstat 0 5228 mv CALL lstat(0xbffff42a,0xbffff1c0) 5228 mv NAMI "dest" 5228 mv RET lstat 0 5228 mv CALL access(0xbfffedc0,0) 5228 mv NAMI "dest/cat" 5228 mv RET access 0 5228 mv CALL lstat(0xbffff41f,0xbfffece0) 5228 mv NAMI "source/cat" 5228 mv RET lstat 0 5228 mv CALL access(0xbfffedc0,0x2) 5228 mv NAMI "dest/cat" 5228 mv RET access 0 5228 mv CALL <b>rename</b>(0xbffff41f,0xbfffedc0) 5228 mv NAMI "source/cat" 5228 mv NAMI "dest/cat" 5228 mv RET rename 0 5228 mv CALL exit(0)</p> <p>Portability can be a concern, as detailed in <a href="http://perldoc.perl.org/perlport.html#System-Interaction"><tt>perlport</tt></a>:</p> <blockquote><tt>Some platforms can't delete or rename files held open by the system, this limitation may also apply to changing filesystem metainformation like file permissions or owners. Remember to "close" files when you are done with them. Don't "unlink" or "rename" an open file. Don't "tie" or "open" a file already tied or opened; "untie" or "close" it first.</tt></blockquote> <p>Portability is best addressed by <a href="http://perldoc.perl.org/Test/More.html">unit tests</a>: when building the software, perform various test <tt>rename</tt> calls, and use these results to determine if the software will work on the new system. Unit tests should also consider various failure or degraded performance conditions, for example when data arrives slowly—copies over a wide area network, or large amounts of data—a condition unlikely in a test environment unless forced somehow.</p> <p>Behavior when the target file exists depends on the implementation; <tt>mv(1)</tt> offers a <tt>-f</tt> option, or fails. Other software may need to clobber the target, fail with an alert, or first perform metadata comparisons, such as file modification time, file size, or a <a href="http://en.wikipedia.org/wiki/Cryptographic_hash_function">checksum</a> on the file contents. Checking whether the target exists prior to the <tt>rename</tt> call is perhaps a <a href="http://sial.org/blog/2008/05/file_exists_perldoc_f_x.html">needless race condition</a>.</p> <h2>Network Copies</h2> <p>A similar method can also be used with protocols such as <a href="http://en.wikipedia.org/wiki/SSH_file_transfer_protocol">SFTP</a> for file transfers: first upload the data to a temporary file, then use the <tt>rename</tt> command to move the complete file to the final location. Note that uploading and renaming—while a good practice over directly copying the file—does not guarantee that the data was received, uncorrupted, by the target system. In contrast, the <a href="http://en.wikipedia.org/wiki/AS2">AS2</a> protocol returns success only if the file contents are cryptographically verified by the target system, making it suitable for workflows where the data must not be truncated, corrupted, or otherwise altered.</p> 2008-10-11T16:24:40-0700 317