acl_set_fd — set an ACL by file descriptor


Linux Access Control Lists library (libacl, -lacl).


#include <sys/types.h>
#include <sys/acl.h>

acl_set_fd(int fd, acl_t acl);


The acl_set_fd() function associates an access ACL with the file referred to by fd.

The effective user ID of the process must match the owner of the file or the process must have the CAP_FOWNER capability for the request to succeed.

Return Value

The acl_set_fd() function returns the value 0 if successful; otherwise the value -1 is returned and the global variable errno is set to indicate the error.


If any of the following conditions occur, the acl_set_fd() function returns the value -1 and and sets errno to the corresponding value:


The fd argument is not a valid file descriptor.


The argument acl does not point to a valid ACL.

The ACL has more entries than the file referred to by fd can obtain.


The directory or file system that would contain the new ACL cannot be extended or the file system is out of file allocation resources.


The file identified by fd cannot be associated with the ACL because the file system on which the file is located does not support this.


The process does not have appropriate privilege to perform the operation to set the ACL.


This function requires modification of a file system which is currently read-only.


IEEE Std 1003.1e draft 17 (“POSIX.1e”, abandoned)

See Also

acl_delete_def_file(3), acl_get_file(3), acl_set_file(3), acl_valid(3), acl(5)


Derived from the FreeBSD manual pages written by Robert N M Watson ⟨⟩, and adapted for Linux by Andreas Gruenbacher ⟨⟩.

Referenced By

acl(5), acl_get_fd(3), acl_set_file(3).

March 23, 2002