.\" This manpage has been automatically generated by docbook2man 
.\" from a DocBook document.  This tool can be found at:
.\" <http://shell.ipoline.com/~elmert/comp/docbook2X/> 
.\" Please send any bug reports, improvements, comments, patches, 
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "AVC_HAS_PERM" "9" "09 October 2005" "" ""

.SH NAME
avc_has_perm \- Check permissions and perform any appropriate auditing.
.SH SYNOPSIS
"SYNOPSIS"
.sp
\fB
.sp
int avc_has_perm  (u32 \fIssid\fB, u32 \fItsid\fB, u16 \fItclass\fB, u32 \fIrequested\fB, struct avc_audit_data * \fIauditdata\fB);
\fR
.SH "ARGUMENTS"
.TP
\fB\fIssid\fB\fR
source security identifier
.TP
\fB\fItsid\fB\fR
target security identifier
.TP
\fB\fItclass\fB\fR
target security class
.TP
\fB\fIrequested\fB\fR
requested permissions, interpreted based on \fItclass\fR
.TP
\fB\fIauditdata\fB\fR
auxiliary audit data
.SH "DESCRIPTION"
.PP
Check the AVC to determine whether the \fIrequested\fR permissions are granted
for the SID pair (\fIssid\fR, \fItsid\fR), interpreting the permissions
based on \fItclass\fR, and call the security server on a cache miss to obtain
a new decision and add it to the cache.  Audit the granting or denial of
permissions in accordance with the policy.  Return 0 if all \fIrequested\fR
permissions are granted, -EACCES if any permissions are denied, or
another -errno upon other errors.