HP-UX Reference (11i v3 07/02) - 2 System Calls (vol 5)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

121

122

123

124

125

126

127

128

129

130

getaccess(2) getaccess(2)

access() getaccess()

Checks all ACL entries (HFS and JFS File Sys-

tems only)

Same

Uses real uid, real gid, and supplementary

groups list

Uses speciﬁed uid and groups list; macros avail-

able for typical values

Checks speciﬁc mode value, returns succeed or

fail

Returns all mode bits, each on or off

Checks path to ﬁle using caller’s effective IDs Same

W_OK false if shared-text ﬁle currently being

executed

Same

W_OK false if ﬁle on read-only ﬁle system Same

X_OK not modiﬁed for ﬁle currently open for

writing

Same

R_OK and W_OK always true for superuser

(except as described in Security Restrictions)or

users with DAC_READ and DAC_WRITE

privileges.

Same

X_OK always true for superuser or users with

DAC_READ and DAC_WRITE privileges. See

privileges(5) for more information about

privileged access on systems that support ﬁne-

grained privileges.

X_OK true for superuser or users with

DAC_READ and DAC_WRITE privilege if ﬁle is

not a regular:ﬁle or execute is set in. See

privileges(5) for more information about

privileged access on systems that support ﬁne-

grained privileges.

Security Restrictions

If the caller’s user ID is 0, or has the

DACREAD and DACWRITE privilege, or if it is UID_EUID ,

UID_RUID,orUID_SUID (see <sys/getaccess.h>

) and the process’s respective user ID is 0, R_OK

and W_OK are always set except when W_OK is cleared for ﬁles on read-only ﬁle systems or shared-text pro-

grams being executed. X_OK is set if and only if the ﬁle is not a regular ﬁle or the execute bit is set in any

of the ﬁle’s ACL entries.

See privileges(5) for more information about privileged access on systems that support ﬁne-grained

privileges.

RETURN VALUE

getaccess() returns the following values:

>0 Successful completion. Returns a non-negative value representing the access rights of the

speciﬁed user to the speciﬁed ﬁle.

-1 Failure. errno is set to indicate the error.

ERRORS

getaccess() fails if any of the following conditions are encountered:

[EACCES] A component of the path preﬁx denies search permission to the caller.

[EFAULT] path or gidset points outside the allocated address space of the process. The

reliable detection of this error is implementation dependent.

[EINVAL] ngroups is invalid; ngroups is either zero, an unrecognized negative value, or

a value larger than sysconf(_SC_NGROUPS_MAX) +1.

[EINVAL] gidset contains an invalid group ID value.

[EINVAL] The value of label or privs is not a null pointer.

[ELOOP] Too many symbolic links were encountered in translating the path name.

[ENAMETOOLONG] The length of the speciﬁed path name exceeds

PATH_MAX bytes, or the

length of a component of the path name exceeds

NAME_MAX bytes while

_POSIX_NO_TRUNC is in effect.

[ENOENT] The named ﬁle does not exist (for example, path is null or a component of

path does not exist).

122 Hewlett-Packard Company − 2 − HP-UX 11i Version 3: February 2007