The Tor Browser / file revision

 // Copyright (c) 2012, Google Inc.

 // All rights reserved.

 //

 // Redistribution and use in source and binary forms, with or without

 // modification, are permitted provided that the following conditions are

 // met:

 //

 //     * Redistributions of source code must retain the above copyright

 // notice, this list of conditions and the following disclaimer.

 //     * Redistributions in binary form must reproduce the above

 // copyright notice, this list of conditions and the following disclaimer

 // in the documentation and/or other materials provided with the

 // distribution.

 //     * Neither the name of Google Inc. nor the names of its

 // contributors may be used to endorse or promote products derived from

 // this software without specific prior written permission.

 //

 // THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

 // "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

 // LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR

 // A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT

 // OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

 // SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT

 // LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,

 // DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY

 // THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT

 // (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE

 // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

 // Android doesn't provide mkdtemp(). Keep this implementation in an

 // C++ anonymous namespace to avoid conflicts on Chromium (which

 // already provides an extern "C" mkdtemp function).

 //

 // The reason this is inlined here is to avoid linking a new object file

 // into each unit test program (i.e. keep build files simple).

 #ifndef GOOGLE_BREAKPAD_COMMON_ANDROID_TESTING_MKDTEMP_H

 #define GOOGLE_BREAKPAD_COMMON_ANDROID_TESTING_MKDTEMP_H

 #include <assert.h>

 #include <errno.h>

 #include <stdlib.h>

 #include <stdio.h>

 #include <string.h>

 #include <sys/stat.h>

 namespace {

 char* mkdtemp(char* path) {

   if (path == NULL) {

     errno = EINVAL;

     return NULL;

   }

   // 'path' must be terminated with six 'X'

   const char kSuffix[] = "XXXXXX";

   const size_t kSuffixLen = strlen(kSuffix);

   char* path_end = path + strlen(path);

   if (static_cast<size_t>(path_end - path) < kSuffixLen ||

       memcmp(path_end - kSuffixLen, kSuffix, kSuffixLen) != 0) {

     errno = EINVAL;

     return NULL;

   }

   // If 'path' contains a directory separator, check that it exists to

   // avoid looping later.

   char* sep = strrchr(path, '/');

   if (sep != NULL) {

     struct stat st;

     int ret;

     *sep = '\0';  // temporarily zero-terminate the dirname.

     ret = stat(path, &st);

     *sep = '/';   // restore full path.

     if (ret < 0)

       return NULL;

     if (!S_ISDIR(st.st_mode)) {

       errno = ENOTDIR;

       return NULL;

     }

   }

   // Loop. On each iteration, replace the XXXXXX suffix with a random

   // number.

   int tries;

   for (tries = 128; tries > 0; tries--) {

     int random = rand() % 1000000;

     snprintf(path_end - kSuffixLen, kSuffixLen + 1, "%0d", random);

     if (mkdir(path, 0700) == 0)

       return path;  // Success

     if (errno != EEXIST)

       return NULL;

   }

   assert(errno == EEXIST);

   return NULL;

 }

 }  // namespace

 #endif  // GOOGLE_BREAKPAD_COMMON_ANDROID_TESTING_MKDTEMP_H