Open System Services Porting Guide (G06.24+, H06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

141

142

143

144

145

146

147

148

149

150

Table Of Contents

What’s New in This Manual
About This Manual
1 Introduction to Porting
- Overview of Porting
- Overview of the OSS Environment
2 The Development Environment
- TNS/R Native, TNS/E Native, and TNS Environments
- Compilation Options for C and C++ Programs
- Moving or Accessing Source Files
- Working on the NonStop System
3 Useful Porting Tools
- lint Tool
- findcalls Tool
- CodeCheck Tool
- Open Systems Portability Checker (OSPC) Tool
4 Interoperating Between User Environments
- Purpose of Interoperability
  - C Programming and Interoperability
  - Scopes of Interoperability
- The OSS User Environment
- OSS Commands for the Guardian User
- Guardian Commands for the UNIX User
- OSS Pathname and Guardian Filename Conversions
- Running the OSS Shell and Commands From TACL
- Running Guardian Commands From the OSS Shell
- Running OSS Processes With Guardian Attributes
- Using OSS Commands to Manage Guardian Objects
  - Managing Guardian Processes From the OSS Shell
  - Manipulating Guardian Files From the OSS Shell
5 Interoperating Between Programming Environments
- Interoperability
  - Major Differences Between Programming Environments
- Header Files
- API Interoperability
  - API Interoperability Tables
  - Environment-Specific Functions
- Process Interoperability
- File Interoperability
- Native Signal Interoperability
- I/O Interoperability
- Mixed-Module Programming
  - Design Considerations and Steps
- Mixed-Language Programming
6 OSS Porting Considerations
- UNIX Features Requiring Substitution
- Using Interprocess Communication (IPC) Mechanisms
- Memory Model Considerations
  - Memory Allocation and Deallocation
  - Virtual Memory Management
- Considering Design Trade-Offs
- Using Process-Creation Calls
- The SIGCHLD Signal and the Creation of Zombie Processes
- Performing File Operations
- Porting Servers and Demons
7 Porting UNIX Applications to the OSS Environment
- General Porting Guidelines
- Using Functional Equivalents
- Differences Between OSS and UNIX Environments
- OSS C Programming Considerations
- Using HP Extensions
- Using the OSS Internationalization Subsystem
8 Migrating Guardian Applications to the OSS Environment
- General Migration Guidelines
- C Compiler Issues for Guardian Programs
- Using New and Extended Guardian Procedures
- Using OSS Functions in a Guardian Program
- Interoperating With OSS Programs
- Starting an OSS Program From the Guardian Environment
- C Compiler Considerations for OSS Programs
- Porting a Guardian Program to the OSS Environment
9 Porting From Specific UNIX Systems
- The UNIX Workstation Development Environment
- C Compilation on a Workstation
  - Sun C Compiler
  - GNU C Compiler
- Resolving the Endian Problem
10 Native Migration Overview
- General Migration Issues
- Native Environment Features
- C Development Tools
- User Library Migration Issues
- C Language Compilers
- Using the C Run-Time Library
- Guardian Procedure Features
- TAL to pTAL Conversion
11 Porting or Migrating Sockets Applications
- Porting UNIX Sockets Applications to the OSS Environment
- Porting Guardian Sockets Applications to the OSS Environment
- Interoperability of OSS and Guardian Sockets in an OSS Application
12 Porting Threaded Applications
- Change in Error Reporting
- Considerations for Porting DCE Threads to Standard POSIX Threads
- General Considerations for Porting to Standard POSIX Threads
A Equivalent OSS and UNIX Commands for Guardian Users
B Equivalent Guardian Commands for OSS and UNIX Users
C Equivalent Inspect Debugging Commands for dbx Commands
D Equivalent Native Inspect Debugging Commands for dbx Commands
E Standard POSIX Threads Functions: Differences Between the Previous and Current Standards
- Reference Pages for Thread Functions
- Changed Thread Functions
Glossary
Index

Porting UNIX Applications to the OSS Environment

Open System Services Porting Guide—520573-006

7-9

Security Model

A common security model is implemented across the OSS and Guardian

environments. An object-oriented, access control mechanism is used in which the

attributes of the object, rather than the function used to access the object, determine

who can access the object; the security model of the target object applies. With this

security model, the Guardian access rules are used to access Guardian objects, and

the OSS access rules are used to access OSS objects. For OSS objects (files,

processes), the security mechanism used is identical to that used in other UNIX

environments. Security discussions related to accessing objects within the OSS and

Guardian environments follow.

Process-Identity Attributes

Process identity attributes are stored in the process control block for each process.

These are used to identify the user, the primary group to which the user belongs, and

the supplementary groups to which the user belongs. The process identity attributes

are used to determine which rights a user has as the owner of the process.

Process-identity attributes relevant in the OSS and Guardian environments are:

•

Authentication type

•

Effective user ID (EUID)

•

Effective group ID (EGID)

•

Group list

•

Logon name

Other process-identity attributes that are mostly useful in the OSS environment are:

•

Real user ID (RUID)

•

Real group ID (RGID)

•

Saved-set user ID (SSUID)

•

Saved-set group ID (SSGID)

OSS functions such as getpwnam(), getuid(), and so on, can be used to access

information about the user, alias, group, and other relevant process-identity attributes.

File Attributes and Access

OSS files have different attributes than Guardian disk files. For example, the file

protection bits, the file owner ID, and the group ID are stored differently for OSS files

than for Guardian disk files.

Guardian files are protected by a 12-bit security vector and optionally by the Safeguard

Access Control Lists (ACLs). The ACLs are associated with Guardian files.

The security vector associated with a Guardian file consists of four 3-bit permission

fields, one field for each permission: Read, Write, Execute, and Purge. The seven

classes of accessors (any, community, group, network, owner, super, user) are

encoded in the three bits.