4.3BSD-Reno/share/man/cat3/acl_check.0
ACL_CHECK(3) 4.0 ACL_CHECK(3)
N�NA�AM�ME�E
acl_canonicalize_principal, acl_check, acl_exact_match,
acl_add, acl_delete, acl_initialize - Access control list
routines
S�SY�YN�NO�OP�PS�SI�IS�S
c�cc�c <�<f�fi�il�le�es�s>�> -�-l�la�ac�cl�l -�-l�lk�kr�rb�b
#�#i�in�nc�cl�lu�ud�de�e <�<k�kr�rb�b.�.h�h>�>
a�ac�cl�l_�_c�ca�an�no�on�ni�ic�ca�al�li�iz�ze�e_�_p�pr�ri�in�nc�ci�ip�pa�al�l(�(p�pr�ri�in�nc�ci�ip�pa�al�l,�, b�bu�uf�f)�)
c�ch�ha�ar�r *�*p�pr�ri�in�nc�ci�ip�pa�al�l;�;
c�ch�ha�ar�r *�*b�bu�uf�f;�;
a�ac�cl�l_�_c�ch�he�ec�ck�k(�(a�ac�cl�l,�, p�pr�ri�in�nc�ci�ip�pa�al�l)�)
c�ch�ha�ar�r *�*a�ac�cl�l;�;
c�ch�ha�ar�r *�*p�pr�ri�in�nc�ci�ip�pa�al�l;�;
a�ac�cl�l_�_e�ex�xa�ac�ct�t_�_m�ma�at�tc�ch�h(�(a�ac�cl�l,�, p�pr�ri�in�nc�ci�ip�pa�al�l)�)
c�ch�ha�ar�r *�*a�ac�cl�l;�;
c�ch�ha�ar�r *�*p�pr�ri�in�nc�ci�ip�pa�al�l;�;
a�ac�cl�l_�_a�ad�dd�d(�(a�ac�cl�l,�, p�pr�ri�in�nc�ci�ip�pa�al�l)�)
c�ch�ha�ar�r *�*a�ac�cl�l;�;
c�ch�ha�ar�r *�*p�pr�ri�in�nc�ci�ip�pa�al�l;�;
a�ac�cl�l_�_d�de�el�le�et�te�e(�(a�ac�cl�l,�, p�pr�ri�in�nc�ci�ip�pa�al�l)�)
c�ch�ha�ar�r *�*a�ac�cl�l;�;
c�ch�ha�ar�r *�*p�pr�ri�in�nc�ci�ip�pa�al�l;�;
a�ac�cl�l_�_i�in�ni�it�ti�ia�al�li�iz�ze�e(�(a�ac�cl�l_�_f�fi�il�le�e,�, m�mo�od�de�e)�)
c�ch�ha�ar�r *�*a�ac�cl�l_�_f�fi�il�le�e;�;
i�in�nt�t m�mo�od�de�e;�;
D�DE�ES�SC�CR�RI�IP�PT�TI�IO�ON�N
I�In�nt�tr�ro�od�du�uc�ct�ti�io�on�n
An access control list (ACL) is a list of principals, where
each principal is represented by a text string which cannot
contain whitespace. The library allows application programs
to refer to named access control lists to test membership
and to atomically add and delete principals using a natural
and intuitive interface. At present, the names of access
control lists are required to be Unix filenames, and refer
to human-readable Unix files; in the future, when a
networked ACL server is implemented, the names may refer to
a different namespace specific to the ACL service.
P�Pr�ri�in�nc�ci�ip�pa�al�l N�Na�am�me�es�s
Principal names have the form
<name>[.<instance>][@<realm>]
Printed 7/27/90 Kerberos 1
ACL_CHECK(3) 4.0 ACL_CHECK(3)
e.g.:
asp
asp.root
asp@ATHENA.MIT.EDU
asp.@ATHENA.MIT.EDU
asp.root@ATHENA.MIT.EDU
It is possible for principals to be underspecified. If an
instance is missing, it is assumed to be "". If realm is
missing, it is assumed to be the local realm as determined
by _�k_�r_�b__�g_�e_�t__�l_�r_�e_�a_�l_�m(3). The canonical form contains all of
name, instance, and realm; the acl_add and acl_delete rou-
tines will always leave the file in that form. Note that
the canonical form of asp@ATHENA.MIT.EDU is actually
asp.@ATHENA.MIT.EDU.
R�Ro�ou�ut�ti�in�ne�es�s
_�a_�c_�l__�c_�a_�n_�o_�n_�i_�c_�a_�l_�i_�z_�e__�p_�r_�i_�n_�c_�i_�p_�a_�l stores the canonical form of
_�p_�r_�i_�n_�c_�i_�p_�a_�l in _�b_�u_�f. _�B_�u_�f must contain enough space to store a
principal, given the limits on the sizes of name, instance,
and realm specified as ANAME_SZ, INST_SZ, and REALM_SZ,
respectively, in /_�u_�s_�r/_�i_�n_�c_�l_�u_�d_�e/_�k_�r_�b._�h.
_�a_�c_�l__�c_�h_�e_�c_�k returns nonzero if _�p_�r_�i_�n_�c_�i_�p_�a_�l appears in _�a_�c_�l.
Returns 0 if principal does not appear in acl, or if an
error occurs. Canonicalizes principal before checking, and
allows the ACL to contain wildcards. The only supported
wildcards are entries of the form name.*@realm, *.*@realm,
and *.*@*. An asterisk matches any value for the its com-
ponent field. For example, "jtkohl.*@*" would match princi-
pal jtkohl, with any instance and any realm.
_�a_�c_�l__�e_�x_�a_�c_�t__�m_�a_�t_�c_�h performs like _�a_�c_�l__�c_�h_�e_�c_�k, but does no canoni-
calization or wildcard matching.
_�a_�c_�l__�a_�d_�d atomically adds _�p_�r_�i_�n_�c_�i_�p_�a_�l to _�a_�c_�l. Returns 0 if suc-
cessful, nonzero otherwise. It is considered a failure if
_�p_�r_�i_�n_�c_�i_�p_�a_�l is already in _�a_�c_�l. This routine will canonicalize
_�p_�r_�i_�n_�c_�i_�p_�a_�l, but will treat wildcards literally.
_�a_�c_�l__�d_�e_�l_�e_�t_�e atomically deletes _�p_�r_�i_�n_�c_�i_�p_�a_�l from _�a_�c_�l. Returns 0
if successful, nonzero otherwise. It is considered a
failure if _�p_�r_�i_�n_�c_�i_�p_�a_�l is not already in _�a_�c_�l. This routine
will canonicalize _�p_�r_�i_�n_�c_�i_�p_�a_�l, but will treat wildcards
literally.
_�a_�c_�l__�i_�n_�i_�t_�i_�a_�l_�i_�z_�e initializes _�a_�c_�l__�f_�i_�l_�e. If the file _�a_�c_�l__�f_�i_�l_�e
does not exist, _�a_�c_�l__�i_�n_�i_�t_�i_�a_�l_�i_�z_�e creates it with mode _�m_�o_�d_�e.
If the file _�a_�c_�l__�f_�i_�l_�e exists, _�a_�c_�l__�i_�n_�i_�t_�i_�a_�l_�i_�z_�e removes all
members. Returns 0 if successful, nonzero otherwise. WARN-
ING: Mode argument is likely to change with the eventual
introduction of an ACL service.
Printed 7/27/90 Kerberos 2
ACL_CHECK(3) 4.0 ACL_CHECK(3)
N�NO�OT�TE�ES�S
In the presence of concurrency, there is a very small chance
that _�a_�c_�l__�a_�d_�d or _�a_�c_�l__�d_�e_�l_�e_�t_�e could report success even though
it would have had no effect. This is a necessary side
effect of using lock files for concurrency control rather
than flock(2), which is not supported by NFS.
The current implementation caches ACLs in memory in a hash-
table format for increased efficiency in checking member-
ship; one effect of the caching scheme is that one file
descriptor will be kept open for each ACL cached, up to a
maximum of 8.
S�SE�EE�E A�AL�LS�SO�O
kerberos(3), krb_get_lrealm(3)
A�AU�UT�TH�HO�OR�R
James Aspnes (MIT Project Athena)
Printed 7/27/90 Kerberos 3