Open System Services Programmer's Guide
Final ResultDirectory Search
Denial
1
Standard OSS
Permissions Result
POSIX ACL ResultOSS SEEP Result
SuccessNOYESNoneNORECORD
Failure (because
standard permissions
result of NO)
NONONoneNORECORD
1
Directory-search authorization error due to Standard OSS Permissions
The OSS name server performs its normal standard OSS permissions or POSIX ACLs evaluation
upon a NORECORD ruling from the OSS SEEP.
NOTE: An OSS SEEP response timeout is treated as NORECORD for all users.
OSS SEEP Interprocess-Communication Messages
The OSS name server communicates with the OSS SEEP by opening the process and then sending
messages using the standard file system API WRITEREAD[X]. The message is divided into three
sections: Header_Data, Subject_Data, and Message_Data.
Two message types are supported, one for the handshake message and the other for the
authorization request. The handshake message does not contain the subject data and message
data sections.
The OSS SEEP’s response consists of only the header data section.
Figure 9 OSS SEEP Message Buffer
The message structure is published in DDL form for use by OSS SEEP developers. The message
structures are defined in the new SEEPDDL module.
The OSS SEEP provides its response and status information by altering fields in the Header_Data
and returning it to the OSS name server. The OSS SEEP does not return the Subject_Data. The OSS
SEEP might return the Message_Response_Data, depending on the type of event.
OSS SEEP Programming 279