Open System Services System Calls Reference Manual (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

281

282

283

284

285

286

287

288

289

290

System Functions (k - m) mknod(2)

• Access permission and attribute bits set according to the value of the mode parameter,

modiﬁed as described in "ACL Inheritance" in the acl(5) reference page.

Upon successful completion of the function call, the st_atime, st_ctime, and st_mtime ﬁelds of

the ﬁle are marked for update. The st_ctime and st_mtime ﬁelds of the directory that contains

the new entry are also marked for update.

Accessing Files in Restricted-Access Filesets

When accessing a ﬁle in a restricted-access ﬁleset, the super ID (255,255 in the Guardian

environment, 65535 in the OSS environment) is restricted by the same ﬁle permissions and

owner privileges as any other user ID: It has no special privileges unless the executable ﬁle

started by the super ID has the PRIVSETID ﬁle privilege. In this case, the process started by the

super ID can switch to another ID and then access ﬁles in restricted-access ﬁlesets as that ID.

Executable ﬁles that have the PRIVSOARFOPEN privilege and that are started by a member of

the Safeguard SECURITY-OSS-ADMINISTRATOR (SOA) group have the appropriate privilege

to use this function on any ﬁle in a restricted-access ﬁleset. However, Network File System

(NFS) clients are not granted SOA group privileges, even if these clients are accessing the sys-

tem with a user ID that is a member of the SOA security group.

For more information about restricted-access ﬁlesets and ﬁle privileges, see the Open System Ser-

vices Management and Operations Guide.

Use From the Guardian Environment

The mknod( ) function can be used by a Guardian process when the process has been compiled

using the #deﬁne _XOPEN_SOURCE_EXTENDED 1 feature-test macro or an equivalent com-

piler command option.

The mknod( ) function is one of a set of functions that have the following effects when the ﬁrst

of them is called from the Guardian environment:

• Two Guardian ﬁle-system ﬁle numbers (not necessarily the next two available) are allo-

cated for the root directory and the current working directory. These ﬁle numbers cannot

be closed by calling the Guardian FILE_CLOSE_ procedure.

• The current working directory is assigned from the VOLUME attribute of the Guardian

environment =_DEFAULTS DEFINE.

• The use of static memory by the process increases slightly.

These effects occur only when the ﬁrst of the set of functions is called. The effects are not cumu-

lative.

Use on Guardian Objects

When S_IFREG is speciﬁed for the mode parameter, the path parameter can be any valid version

of the following:

/G/vol/subvol Where vol already exists. If vol does not exist, the function call fails and errno

is set to the value of [EINVAL].

/G/vol/subvol/fileid

Where vol already exists and ﬁleid speciﬁes a regular disk ﬁle (an odd unstruc-

tured Enscribe ﬁle). If vol does not exist, the function call fails and errno is set

to the value of [EINVAL].

only /G/vol is speciﬁed, the function call fails and errno is set to the value of [EPERM].

When S_IFCHR is speciﬁed for the mode parameter, any speciﬁcation for the path parameter

that uses /G causes the function call to fail and errno to be set to [EPERM].

527186-023 Hewlett-Packard Company 4−55