Man page - acl_check(3)

Packages contains this manual

Package:  libacl1-dev
apt-get install libacl1-dev

Manuals in package:
• acl_init(3)
• acl_extended_file(3)
• acl_free(3)
• acl_get_permset(3)
• acl_get_qualifier(3)
• acl_get_perm(3)
• acl_copy_entry(3)
• acl_from_text(3)
• acl_error(3)
• acl_set_qualifier(3)
• acl_check(3)
• acl_set_file(3)
• acl_delete_def_file(3)
• acl_create_entry(3)
• acl_from_mode(3)
• acl_get_file(3)
• acl_clear_perms(3)
• acl_get_fd(3)
• acl_equiv_mode(3)
• acl_calc_mask(3)
• acl_add_perm(3)
• acl_extended_fd(3)
• acl_to_text(3)
• acl_copy_ext(3)
• acl_delete_entry(3)
• acl_set_fd(3)
• acl_set_tag_type(3)
• acl_cmp(3)
• acl_to_any_text(3)
• acl_dup(3)
• acl_size(3)
• acl_delete_perm(3)
• acl_get_entry(3)
• acl_extended_file_nofollow(3)
• acl_get_tag_type(3)
• acl_entries(3)
• acl_set_permset(3)
• acl_copy_int(3)
• acl_valid(3)
Documentations in package:
• libacl1-dev

Manual

---

ACL_CHECK (3) Library Functions Manual ACL_CHECK (3)

NAME

acl_check — check an ACL for validity

LIBRARY

Linux Access Control Lists library (libacl, -lacl).

SYNOPSIS

#include <sys/types.h>
#include <acl/libacl.h>

int

acl_check ( acl_t acl , int *last );

DESCRIPTION

The acl_check () function checks the ACL referred to by the argument acl for validity.

The three required entries ACL_USER_OBJ, ACL_GROUP_OBJ, and ACL_OTHER must exist exactly once in the ACL. If the ACL contains any ACL_USER or ACL_GROUP entries, then an ACL_MASK entry is also required. The ACL may contain at most one ACL_MASK entry.

The user identifiers must be unique among all entries of type ACL_USER. The group identifiers must be unique among all entries of type ACL_GROUP.

If the ACL referred to by acl is invalid, acl_check () returns a positive error code that indicates which type of error was detected. The following symbolic error codes are defined:

ACL_MULTI_ERROR

The ACL contains multiple entries that have a tag type that may occur at most once.

ACL_DUPLICATE_ERROR

The ACL contains multiple ACL_USER entries with the same user ID, or multiple ACL_GROUP entries with the same group ID.

ACL_MISS_ERROR

A required entry is missing.

ACL_ENTRY_ERROR

The ACL contains an invalid entry tag type.

The acl_error () function can be used to translate error codes to text messages.

In addition, if the pointer last is not NULL , acl_check () assigns the number of the ACL entry at which the error was detected to the value pointed to by last . Entries are numbered starting with zero, in the order in which they would be returned by the acl_get_entry () function.

RETURN VALUE

If successful, the acl_check () function returns 0 if the ACL referred to by acl is valid, and a positive error code if the ACL is invalid. Otherwise, a value of -1 is returned and the global variable errno is set to indicate the error.

ERRORS

If any of the following conditions occur, the acl_check () function returns -1 and sets errno to the corresponding value:

[EINVAL]

The argument acl is not a valid pointer to an ACL.

STANDARDS

This is a non-portable, Linux specific extension to the ACL manipulation functions defined in IEEE Std 1003.1e draft 17 (“POSIX.1e”, abandoned).

SEE ALSO

acl_valid (3), acl (5)

AUTHOR

Written by Andreas Gruenbacher <andreas.gruenbacher@gmail.com>. Linux ACL March 23, 2002 ACL_CHECK (3)

---