1.\" Copyright (c) 1980, 1983, 1986, 1991, 1993 2.\" The Regents of the University of California. All rights reserved. 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 3. Neither the name of the University nor the names of its contributors 13.\" may be used to endorse or promote products derived from this software 14.\" without specific prior written permission. 15.\" 16.\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 17.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 18.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 19.\" ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 20.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 21.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 22.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 23.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 24.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 25.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 26.\" SUCH DAMAGE. 27.\" 28.\" @(#)intro.2 8.5 (Berkeley) 2/27/95 29.\" $FreeBSD: src/lib/libc/sys/intro.2,v 1.48 2007/01/09 00:28:14 imp Exp $ 30.\" 31.Dd February 27, 1995 32.Dt INTRO 2 33.Os 34.Sh NAME 35.Nm intro 36.Nd introduction to system calls and error numbers 37.Sh LIBRARY 38.Lb libc 39.Sh SYNOPSIS 40.In errno.h 41.Sh DESCRIPTION 42This section provides an overview of the system calls, 43their error returns, and other common definitions and concepts. 44.\".Pp 45.\".Sy System call restart 46.\".Pp 47.\"(more later...) 48.Sh RETURN VALUES 49Nearly all of the system calls provide an error number referenced via 50the external identifier 51.Va errno . 52This identifier is defined in 53.In errno.h 54as 55.Pp 56.Dl extern __thread int errno; 57.Dl static __inline int * __error(void); 58.Dl #define errno (* __error()) 59.Pp 60This means there exists a thread-local 61.Va errno 62variable, though it is shadowed by the inline 63.Fn __error 64function to allow compilation of source code which 65erroneously itself declares 66.Va errno 67as 68.Vt extern int errno; 69which collides with the thread-local declaration. 70The 71.Fn __error 72function returns a pointer the thread specific 73.Va errno 74variable. 75As it is defined 76.Vt inline , 77it will compile to a no-op, effectively producing 78the same code as if the define wouldn't exist. 79.Pp 80When a system call detects an error, 81it returns an integer value 82indicating failure (usually -1) 83and sets the variable 84.Va errno 85accordingly. 86(This allows interpretation of the failure on receiving 87a -1 and to take action accordingly.) 88Successful calls never set 89.Va errno ; 90once set, it remains until another error occurs. 91It should only be examined after an error. 92Note that a number of system calls overload the meanings of these 93error numbers, and that the meanings must be interpreted according 94to the type and circumstances of the call. 95.Pp 96The following is a complete list of the errors and their 97names as given in 98.In sys/errno.h . 99.Bl -hang -width Ds 100.It Er 0 Em "Undefined error: 0" . 101Not used. 102.It Er 1 EPERM Em "Operation not permitted" . 103An attempt was made to perform an operation limited to processes 104with appropriate privileges or to the owner of a file or other 105resources. 106.It Er 2 ENOENT Em "No such file or directory" . 107A component of a specified pathname did not exist, or the 108pathname was an empty string. 109.It Er 3 ESRCH Em "No such process" . 110No process could be found corresponding to that specified by the given 111process ID. 112.It Er 4 EINTR Em "Interrupted system call" . 113An asynchronous signal (such as 114.Dv SIGINT 115or 116.Dv SIGQUIT ) 117was caught by the process during the execution of an interruptible 118function. 119If the signal handler performs a normal return, the 120interrupted system call will seem to have returned the error condition. 121.It Er 5 EIO Em "Input/output error" . 122Some physical input or output error occurred. 123This error will not be reported until a subsequent operation on the same file 124descriptor and may be lost (over written) by any subsequent errors. 125.It Er 6 ENXIO Em "Device not configured" . 126Input or output on a special file referred to a device that did not 127exist, or 128made a request beyond the limits of the device. 129This error may also occur when, for example, 130a tape drive is not online or no disk pack is 131loaded on a drive. 132.It Er 7 E2BIG Em "Argument list too long" . 133The number of bytes used for the argument and environment 134list of the new process exceeded the current limit 135.Dv ( NCARGS 136in 137.In sys/param.h ) . 138.It Er 8 ENOEXEC Em "Exec format error" . 139A request was made to execute a file 140that, although it has the appropriate permissions, 141was not in the format required for an 142executable file. 143.It Er 9 EBADF Em "Bad file descriptor" . 144A file descriptor argument was out of range, referred to no open file, 145or a read (write) request was made to a file that was only open for 146writing (reading). 147.It Er 10 ECHILD Em "\&No child processes" . 148A 149.Xr wait 2 150or 151.Xr waitpid 2 152function was executed by a process that had no existing or unwaited-for 153child processes. 154.It Er 11 EDEADLK Em "Resource deadlock avoided" . 155An attempt was made to lock a system resource that 156would have resulted in a deadlock situation. 157.It Er 12 ENOMEM Em "Cannot allocate memory" . 158The new process image required more memory than was allowed by the hardware 159or by system-imposed memory management constraints. 160A lack of swap space is normally temporary; however, 161a lack of core is not. 162Soft limits may be increased to their corresponding hard limits. 163.It Er 13 EACCES Em "Permission denied" . 164An attempt was made to access a file in a way forbidden 165by its file access permissions. 166.It Er 14 EFAULT Em "Bad address" . 167The system detected an invalid address in attempting to 168use an argument of a call. 169.It Er 15 ENOTBLK Em "Block device required" . 170A block device operation was attempted on a non-block device or file. 171.It Er 16 EBUSY Em "Device busy" . 172An attempt to use a system resource which was in use at the time 173in a manner which would have conflicted with the request. 174.It Er 17 EEXIST Em "File exists" . 175An existing file was mentioned in an inappropriate context, 176for instance, as the new link name in a 177.Xr link 2 178system call. 179.It Er 18 EXDEV Em "Cross-device link" . 180A hard link to a file on another file system 181was attempted. 182.It Er 19 ENODEV Em "Operation not supported by device" . 183An attempt was made to apply an inappropriate 184function to a device, 185for example, 186trying to read a write-only device such as a printer. 187.It Er 20 ENOTDIR Em "Not a directory" . 188A component of the specified pathname existed, but it was 189not a directory, when a directory was expected. 190.It Er 21 EISDIR Em "Is a directory" . 191An attempt was made to open a directory with write mode specified. 192.It Er 22 EINVAL Em "Invalid argument" . 193Some invalid argument was supplied. 194(For example, 195specifying an undefined signal to a 196.Xr signal 3 197function 198or a 199.Xr kill 2 200system call). 201.It Er 23 ENFILE Em "Too many open files in system" . 202Maximum number of file descriptors allowable on the system 203has been reached and a requests for an open cannot be satisfied 204until at least one has been closed. 205.It Er 24 EMFILE Em "Too many open files" . 206(As released, the limit on the number of 207open files per process is 64.) 208The 209.Xr getdtablesize 2 210system call will obtain the current limit. 211.It Er 25 ENOTTY Em "Inappropriate ioctl for device" . 212A control function (see 213.Xr ioctl 2 ) 214was attempted for a file or 215special device for which the operation was inappropriate. 216.It Er 26 ETXTBSY Em "Text file busy" . 217The new process was a pure procedure (shared text) file 218which was open for writing by another process, or 219while the pure procedure file was being executed an 220.Xr open 2 221call requested write access. 222.It Er 27 EFBIG Em "File too large" . 223The size of a file exceeded the maximum. 224.It Er 28 ENOSPC Em "No space left on device" . 225A 226.Xr write 2 227to an ordinary file, the creation of a 228directory or symbolic link, or the creation of a directory 229entry failed because no more disk blocks were available 230on the file system, or the allocation of an inode for a newly 231created file failed because no more inodes were available 232on the file system. 233.It Er 29 ESPIPE Em "Illegal seek" . 234An 235.Xr lseek 2 236system call was issued on a socket, pipe or 237.Tn FIFO . 238.It Er 30 EROFS Em "Read-only file system" . 239An attempt was made to modify a file or directory 240on a file system that was read-only at the time. 241.It Er 31 EMLINK Em "Too many links" . 242Maximum allowable hard links to a single file has been exceeded (limit 243of 32767 hard links per file). 244.It Er 32 EPIPE Em "Broken pipe" . 245A write on a pipe, socket or 246.Tn FIFO 247for which there is no process 248to read the data. 249.It Er 33 EDOM Em "Numerical argument out of domain" . 250A numerical input argument was outside the defined domain of the mathematical 251function. 252.It Er 34 ERANGE Em "Result too large" . 253A numerical result of the function was too large to fit in the 254available space (perhaps exceeded precision). 255.It Er 35 EAGAIN Em "Resource temporarily unavailable" . 256This is a temporary condition and later calls to the 257same routine may complete normally. 258.It Er 36 EINPROGRESS Em "Operation now in progress" . 259An operation that takes a long time to complete (such as 260a 261.Xr connect 2 ) 262was attempted on a non-blocking object (see 263.Xr fcntl 2 ) . 264.It Er 37 EALREADY Em "Operation already in progress" . 265An operation was attempted on a non-blocking object that already 266had an operation in progress. 267.It Er 38 ENOTSOCK Em "Socket operation on non-socket" . 268Self-explanatory. 269.It Er 39 EDESTADDRREQ Em "Destination address required" . 270A required address was omitted from an operation on a socket. 271.It Er 40 EMSGSIZE Em "Message too long" . 272A message sent on a socket was larger than the internal message buffer 273or some other network limit. 274.It Er 41 EPROTOTYPE Em "Protocol wrong type for socket" . 275A protocol was specified that does not support the semantics of the 276socket type requested. 277For example, you cannot use the 278.Tn ARPA 279Internet 280.Tn UDP 281protocol with type 282.Dv SOCK_STREAM . 283.It Er 42 ENOPROTOOPT Em "Protocol not available" . 284A bad option or level was specified in a 285.Xr getsockopt 2 286or 287.Xr setsockopt 2 288call. 289.It Er 43 EPROTONOSUPPORT Em "Protocol not supported" . 290The protocol has not been configured into the 291system or no implementation for it exists. 292.It Er 44 ESOCKTNOSUPPORT Em "Socket type not supported" . 293The support for the socket type has not been configured into the 294system or no implementation for it exists. 295.It Er 45 EOPNOTSUPP Em "Operation not supported" . 296The attempted operation is not supported for the type of object referenced. 297Usually this occurs when a file descriptor refers to a file or socket 298that cannot support this operation, 299for example, trying to 300.Em accept 301a connection on a datagram socket. 302.It Er 46 EPFNOSUPPORT Em "Protocol family not supported" . 303The protocol family has not been configured into the 304system or no implementation for it exists. 305.It Er 47 EAFNOSUPPORT Em "Address family not supported by protocol family" . 306An address incompatible with the requested protocol was used. 307For example, you should not necessarily expect to be able to use 308.Tn NS 309addresses with 310.Tn ARPA 311Internet protocols. 312.It Er 48 EADDRINUSE Em "Address already in use" . 313Only one usage of each address is normally permitted. 314.It Er 49 EADDRNOTAVAIL Em "Cannot assign requested address" . 315Normally results from an attempt to create a socket with an 316address not on this machine. 317.It Er 50 ENETDOWN Em "Network is down" . 318A socket operation encountered a dead network. 319.It Er 51 ENETUNREACH Em "Network is unreachable" . 320A socket operation was attempted to an unreachable network. 321.It Er 52 ENETRESET Em "Network dropped connection on reset" . 322The host you were connected to crashed and rebooted. 323.It Er 53 ECONNABORTED Em "Software caused connection abort" . 324A connection abort was caused internal to your host machine. 325.It Er 54 ECONNRESET Em "Connection reset by peer" . 326A connection was forcibly closed by a peer. 327This normally 328results from a loss of the connection on the remote socket 329due to a timeout or a reboot. 330.It Er 55 ENOBUFS Em "\&No buffer space available" . 331An operation on a socket or pipe was not performed because 332the system lacked sufficient buffer space or because a queue was full. 333.It Er 56 EISCONN Em "Socket is already connected" . 334A 335.Xr connect 2 336request was made on an already connected socket; or, 337a 338.Xr sendto 2 339or 340.Xr sendmsg 2 341request on a connected socket specified a destination 342when already connected. 343.It Er 57 ENOTCONN Em "Socket is not connected" . 344An request to send or receive data was disallowed because 345the socket was not connected and (when sending on a datagram socket) 346no address was supplied. 347.It Er 58 ESHUTDOWN Em "Cannot send after socket shutdown" . 348A request to send data was disallowed because the socket 349had already been shut down with a previous 350.Xr shutdown 2 351call. 352.It Er 60 ETIMEDOUT Em "Operation timed out" . 353A 354.Xr connect 2 355or 356.Xr send 2 357request failed because the connected party did not 358properly respond after a period of time. 359(The timeout 360period is dependent on the communication protocol.) 361.It Er 61 ECONNREFUSED Em "Connection refused" . 362No connection could be made because the target machine actively 363refused it. 364This usually results from trying to connect 365to a service that is inactive on the foreign host. 366.It Er 62 ELOOP Em "Too many levels of symbolic links" . 367A path name lookup involved more than 32 368.Pq Dv MAXSYMLINKS 369symbolic links. 370.It Er 63 ENAMETOOLONG Em "File name too long" . 371A component of a path name exceeded 372.Brq Dv NAME_MAX 373characters, or an entire 374path name exceeded 375.Brq Dv PATH_MAX 376characters. 377(See also the description of 378.Dv _PC_NO_TRUNC 379in 380.Xr pathconf 2 . ) 381.It Er 64 EHOSTDOWN Em "Host is down" . 382A socket operation failed because the destination host was down. 383.It Er 65 EHOSTUNREACH Em "No route to host" . 384A socket operation was attempted to an unreachable host. 385.It Er 66 ENOTEMPTY Em "Directory not empty" . 386A directory with entries other than 387.Ql .\& 388and 389.Ql ..\& 390was supplied to a remove directory or rename call. 391.It Er 67 EPROCLIM Em "Too many processes" . 392.It Er 68 EUSERS Em "Too many users" . 393The quota system ran out of table entries. 394.It Er 69 EDQUOT Em "Disc quota exceeded" . 395A 396.Xr write 2 397to an ordinary file, the creation of a 398directory or symbolic link, or the creation of a directory 399entry failed because the user's quota of disk blocks was 400exhausted, or the allocation of an inode for a newly 401created file failed because the user's quota of inodes 402was exhausted. 403.It Er 70 ESTALE Em "Stale NFS file handle" . 404An attempt was made to access an open file (on an 405.Tn NFS 406file system) 407which is now unavailable as referenced by the file descriptor. 408This may indicate the file was deleted on the 409.Tn NFS 410server or some 411other catastrophic event occurred. 412.It Er 72 EBADRPC Em "RPC struct is bad" . 413Exchange of 414.Tn RPC 415information was unsuccessful. 416.It Er 73 ERPCMISMATCH Em "RPC version wrong" . 417The version of 418.Tn RPC 419on the remote peer is not compatible with 420the local version. 421.It Er 74 EPROGUNAVAIL Em "RPC prog. not avail" . 422The requested program is not registered on the remote host. 423.It Er 75 EPROGMISMATCH Em "Program version wrong" . 424The requested version of the program is not available 425on the remote host 426.Pq Tn RPC . 427.It Er 76 EPROCUNAVAIL Em "Bad procedure for program" . 428An 429.Tn RPC 430call was attempted for a procedure which does not exist 431in the remote program. 432.It Er 77 ENOLCK Em "No locks available" . 433A system-imposed limit on the number of simultaneous file 434locks was reached. 435.It Er 78 ENOSYS Em "Function not implemented" . 436Attempted a system call that is not available on this 437system. 438.It Er 79 EFTYPE Em "Inappropriate file type or format" . 439The file was the wrong type for the operation, or a data file had 440the wrong format. 441.It Er 80 EAUTH Em "Authentication error" . 442Attempted to use an invalid authentication ticket to mount a 443.Tn NFS 444file system. 445.It Er 81 ENEEDAUTH Em "Need authenticator" . 446An authentication ticket must be obtained before the given 447.Tn NFS 448file system may be mounted. 449.It Er 82 EIDRM Em "Identifier removed" . 450An IPC identifier was removed while the current process was waiting on it. 451.It Er 83 ENOMSG Em "No message of desired type" . 452An IPC message queue does not contain a message of the desired type, or a 453message catalog does not contain the requested message. 454.It Er 84 EOVERFLOW Em "Value too large to be stored in data type" . 455A numerical result of the function was too large to be stored in the caller 456provided space. 457.It Er 85 ECANCELED Em "Operation canceled" . 458The scheduled operation was canceled. 459.It Er 86 EILSEQ Em "Illegal byte sequence" . 460While decoding a multibyte character the function came along an 461invalid or an incomplete sequence of bytes or the given wide 462character is invalid. 463.It Er 87 ENOATTR Em "Attribute not found" . 464The specified extended attribute does not exist. 465.It Er 88 EDOOFUS Em "Programming error" . 466A function or API is being abused in a way which could only be detected 467at run-time. 468.El 469.Sh DEFINITIONS 470.Bl -tag -width Ds 471.It Process ID . 472Each active process in the system is uniquely identified by a non-negative 473integer called a process ID. 474The range of this ID is from 0 to 99999. 475.It Parent process ID 476A new process is created by a currently active process (see 477.Xr fork 2 ) . 478The parent process ID of a process is initially the process ID of its creator. 479If the creating process exits, 480the parent process ID of each child is set to the ID of a system process, 481.Xr init 8 . 482.It Process Group 483Each active process is a member of a process group that is identified by 484a non-negative integer called the process group ID. 485This is the process 486ID of the group leader. 487This grouping permits the signaling of related 488processes (see 489.Xr termios 4 ) 490and the job control mechanisms of 491.Xr csh 1 . 492.It Session 493A session is a set of one or more process groups. 494A session is created by a successful call to 495.Xr setsid 2 , 496which causes the caller to become the only member of the only process 497group in the new session. 498.It Session leader 499A process that has created a new session by a successful call to 500.Xr setsid 2 , 501is known as a session leader. 502Only a session leader may acquire a terminal as its controlling terminal (see 503.Xr termios 4 ) . 504.It Controlling process 505A session leader with a controlling terminal is a controlling process. 506.It Controlling terminal 507A terminal that is associated with a session is known as the controlling 508terminal for that session and its members. 509.It "Terminal Process Group ID" 510A terminal may be acquired by a session leader as its controlling terminal. 511Once a terminal is associated with a session, any of the process groups 512within the session may be placed into the foreground by setting 513the terminal process group ID to the ID of the process group. 514This facility is used 515to arbitrate between multiple jobs contending for the same terminal; 516(see 517.Xr csh 1 518and 519.Xr tty 4 ) . 520.It "Orphaned Process Group" 521A process group is considered to be 522.Em orphaned 523if it is not under the control of a job control shell. 524More precisely, a process group is orphaned 525when none of its members has a parent process that is in the same session 526as the group, 527but is in a different process group. 528Note that when a process exits, the parent process for its children 529is changed to be 530.Xr init 8 , 531which is in a separate session. 532Not all members of an orphaned process group are necessarily orphaned 533processes (those whose creating process has exited). 534The process group of a session leader is orphaned by definition. 535.It "Real User ID and Real Group ID" 536Each user on the system is identified by a positive integer 537termed the real user ID. 538.Pp 539Each user is also a member of one or more groups. 540One of these groups is distinguished from others and 541used in implementing accounting facilities. 542The positive 543integer corresponding to this distinguished group is termed 544the real group ID. 545.Pp 546All processes have a real user ID and real group ID. 547These are initialized from the equivalent attributes 548of the process that created it. 549.It "Effective User Id, Effective Group Id, and Group Access List" 550Access to system resources is governed by two values: 551the effective user ID, and the group access list. 552The first member of the group access list is also known as the 553effective group ID. 554(In POSIX.1, the group access list is known as the set of supplementary 555group IDs, and it is unspecified whether the effective group ID is 556a member of the list.) 557.Pp 558The effective user ID and effective group ID are initially the 559process's real user ID and real group ID respectively. 560Either 561may be modified through execution of a set-user-ID or set-group-ID 562file (possibly by one its ancestors) (see 563.Xr execve 2 ) . 564By convention, the effective group ID (the first member of the group access 565list) is duplicated, so that the execution of a set-group-ID program 566does not result in the loss of the original (real) group ID. 567.Pp 568The group access list is a set of group IDs 569used only in determining resource accessibility. 570Access checks 571are performed as described below in ``File Access Permissions''. 572.It "Saved Set User ID and Saved Set Group ID" 573When a process executes a new file, the effective user ID is set 574to the owner of the file if the file is set-user-ID, and the effective 575group ID (first element of the group access list) is set to the group 576of the file if the file is set-group-ID. 577The effective user ID of the process is then recorded as the saved set-user-ID, 578and the effective group ID of the process is recorded as the saved set-group-ID. 579These values may be used to regain those values as the effective user 580or group ID after reverting to the real ID (see 581.Xr setuid 2 ) . 582(In POSIX.1, the saved set-user-ID and saved set-group-ID are optional, 583and are used in setuid and setgid, but this does not work as desired 584for the super-user.) 585.It Super-user 586A process is recognized as a 587.Em super-user 588process and is granted special privileges if its effective user ID is 0. 589.It Descriptor 590An integer assigned by the system when a file is referenced 591by 592.Xr open 2 593or 594.Xr dup 2 , 595or when a socket is created by 596.Xr pipe 2 , 597.Xr socket 2 598or 599.Xr socketpair 2 , 600which uniquely identifies an access path to that file or socket from 601a given process or any of its children. 602.It File Name 603Names consisting of up to 604.Brq Dv NAME_MAX 605characters may be used to name 606an ordinary file, special file, or directory. 607.Pp 608These characters may be arbitrary eight-bit values, 609excluding 610.Dv NUL 611.Tn ( ASCII 6120) and the 613.Ql \&/ 614character (slash, 615.Tn ASCII 61647). 617.Pp 618Note that it is generally unwise to use 619.Ql \&* , 620.Ql \&? , 621.Ql \&[ 622or 623.Ql \&] 624as part of 625file names because of the special meaning attached to these characters 626by the shell. 627.It Path Name 628A path name is a 629.Dv NUL Ns -terminated 630character string starting with an 631optional slash 632.Ql \&/ , 633followed by zero or more directory names separated 634by slashes, optionally followed by a file name. 635The total length of a path name must be less than 636.Brq Dv PATH_MAX 637characters. 638(On some systems, this limit may be infinite.) 639.Pp 640If a path name begins with a slash, the path search begins at the 641.Em root 642directory. 643Otherwise, the search begins from the current working directory. 644A slash by itself names the root directory. 645An empty 646pathname refers to the current directory. 647.It Directory 648A directory is a special type of file that contains entries 649that are references to other files. 650Directory entries are called links. 651By convention, a directory 652contains at least two links, 653.Ql .\& 654and 655.Ql \&.. , 656referred to as 657.Em dot 658and 659.Em dot-dot 660respectively. 661Dot refers to the directory itself and 662dot-dot refers to its parent directory. 663.It "Root Directory and Current Working Directory" 664Each process has associated with it a concept of a root directory 665and a current working directory for the purpose of resolving path 666name searches. 667A process's root directory need not be the root 668directory of the root file system. 669.It File Access Permissions 670Every file in the file system has a set of access permissions. 671These permissions are used in determining whether a process 672may perform a requested operation on the file (such as opening 673a file for writing). 674Access permissions are established at the 675time a file is created. 676They may be changed at some later time 677through the 678.Xr chmod 2 679call. 680.Pp 681File access is broken down according to whether a file may be: read, 682written, or executed. 683Directory files use the execute 684permission to control if the directory may be searched. 685.Pp 686File access permissions are interpreted by the system as 687they apply to three different classes of users: the owner 688of the file, those users in the file's group, anyone else. 689Every file has an independent set of access permissions for 690each of these classes. 691When an access check is made, the system 692decides if permission should be granted by checking the access 693information applicable to the caller. 694.Pp 695Read, write, and execute/search permissions on 696a file are granted to a process if: 697.Pp 698The process's effective user ID is that of the super-user. 699(Note: 700even the super-user cannot execute a non-executable file.) 701.Pp 702The process's effective user ID matches the user ID of the owner 703of the file and the owner permissions allow the access. 704.Pp 705The process's effective user ID does not match the user ID of the 706owner of the file, and either the process's effective 707group ID matches the group ID 708of the file, or the group ID of the file is in 709the process's group access list, 710and the group permissions allow the access. 711.Pp 712Neither the effective user ID nor effective group ID 713and group access list of the process 714match the corresponding user ID and group ID of the file, 715but the permissions for ``other users'' allow access. 716.Pp 717Otherwise, permission is denied. 718.It Sockets and Address Families 719A socket is an endpoint for communication between processes. 720Each socket has queues for sending and receiving data. 721.Pp 722Sockets are typed according to their communications properties. 723These properties include whether messages sent and received 724at a socket require the name of the partner, whether communication 725is reliable, the format used in naming message recipients, etc. 726.Pp 727Each instance of the system supports some 728collection of socket types; consult 729.Xr socket 2 730for more information about the types available and 731their properties. 732.Pp 733Each instance of the system supports some number of sets of 734communications protocols. 735Each protocol set supports addresses of a certain format. 736An Address Family is the set of addresses for a specific group of protocols. 737Each socket has an address 738chosen from the address family in which the socket was created. 739.El 740.Sh SEE ALSO 741.Xr intro 3 , 742.Xr perror 3 743