2 posix1e - a python module exposing the posix acl functions
4 Copyright (C) 2002-2009, 2012 Iustin Pop <iusty@k1024.org>
6 This library is free software; you can redistribute it and/or
7 modify it under the terms of the GNU Lesser General Public
8 License as published by the Free Software Foundation; either
9 version 2.1 of the License, or (at your option) any later version.
11 This library is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
16 You should have received a copy of the GNU Lesser General Public
17 License along with this library; if not, write to the Free Software
18 Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
25 #include <sys/types.h>
29 #include <acl/libacl.h>
30 #define get_perm acl_get_perm
32 #define get_perm acl_get_perm_np
35 #if PY_MAJOR_VERSION >= 3
37 #define PyInt_Check(op) PyLong_Check(op)
38 #define PyInt_FromString PyLong_FromString
39 #define PyInt_FromUnicode PyLong_FromUnicode
40 #define PyInt_FromLong PyLong_FromLong
41 #define PyInt_FromSize_t PyLong_FromSize_t
42 #define PyInt_FromSsize_t PyLong_FromSsize_t
43 #define PyInt_AsLong PyLong_AsLong
44 #define PyInt_AsSsize_t PyLong_AsSsize_t
45 #define PyInt_AsUnsignedLongMask PyLong_AsUnsignedLongMask
46 #define PyInt_AsUnsignedLongLongMask PyLong_AsUnsignedLongLongMask
47 #define PyInt_AS_LONG PyLong_AS_LONG
49 #define PyBytes_Check PyString_Check
50 #define PyBytes_AS_STRING PyString_AS_STRING
51 #define PyBytes_FromStringAndSize PyString_FromStringAndSize
52 #define PyBytes_FromString PyString_FromString
53 #define PyBytes_FromFormat PyString_FromFormat
54 #define PyBytes_ConcatAndDel PyString_ConcatAndDel
56 /* Python 2.6 already defines Py_TYPE */
58 #define Py_TYPE(o) (((PyObject*)(o))->ob_type)
62 static PyTypeObject ACL_Type;
63 static PyObject* ACL_applyto(PyObject* obj, PyObject* args);
64 static PyObject* ACL_valid(PyObject* obj, PyObject* args);
66 #ifdef HAVE_ACL_COPY_EXT
67 static PyObject* ACL_get_state(PyObject *obj, PyObject* args);
68 static PyObject* ACL_set_state(PyObject *obj, PyObject* args);
72 static PyTypeObject Entry_Type;
73 static PyTypeObject Permset_Type;
74 static PyObject* Permset_new(PyTypeObject* type, PyObject* args,
78 static acl_perm_t holder_ACL_EXECUTE = ACL_EXECUTE;
79 static acl_perm_t holder_ACL_READ = ACL_READ;
80 static acl_perm_t holder_ACL_WRITE = ACL_WRITE;
94 PyObject *parent_acl; /* The parent acl, so it won't run out on us */
100 PyObject *parent_entry; /* The parent entry, so it won't run out on us */
101 acl_permset_t permset;
106 /* Creation of a new ACL instance */
107 static PyObject* ACL_new(PyTypeObject* type, PyObject* args,
111 newacl = type->tp_alloc(type, 0);
114 ((ACL_Object*)newacl)->acl = NULL;
116 ((ACL_Object*)newacl)->entry_id = ACL_FIRST_ENTRY;
123 /* Initialization of a new ACL instance */
124 static int ACL_init(PyObject* obj, PyObject* args, PyObject *keywds) {
125 ACL_Object* self = (ACL_Object*) obj;
127 static char *kwlist[] = { "file", "fd", "text", "acl", "filedef",
129 char *format = "|etisO!sH";
132 static char *kwlist[] = { "file", "fd", "text", "acl", "filedef", NULL };
133 char *format = "|etisO!s";
136 char *filedef = NULL;
139 ACL_Object* thesrc = NULL;
141 if(!PyTuple_Check(args) || PyTuple_Size(args) != 0 ||
142 (keywds != NULL && PyDict_Check(keywds) && PyDict_Size(keywds) > 1)) {
143 PyErr_SetString(PyExc_ValueError, "a max of one keyword argument"
147 if(!PyArg_ParseTupleAndKeywords(args, keywds, format, kwlist,
148 NULL, &file, &fd, &text, &ACL_Type,
156 /* Free the old acl_t without checking for error, we don't
158 if(self->acl != NULL)
162 self->acl = acl_get_file(file, ACL_TYPE_ACCESS);
163 else if(text != NULL)
164 self->acl = acl_from_text(text);
166 self->acl = acl_get_fd(fd);
167 else if(thesrc != NULL)
168 self->acl = acl_dup(thesrc->acl);
169 else if(filedef != NULL)
170 self->acl = acl_get_file(filedef, ACL_TYPE_DEFAULT);
172 else if(PyMapping_HasKeyString(keywds, kwlist[5]))
173 self->acl = acl_from_mode(mode);
176 self->acl = acl_init(0);
178 if(self->acl == NULL) {
179 PyErr_SetFromErrno(PyExc_IOError);
186 /* Standard type functions */
187 static void ACL_dealloc(PyObject* obj) {
188 ACL_Object *self = (ACL_Object*) obj;
189 PyObject *err_type, *err_value, *err_traceback;
190 int have_error = PyErr_Occurred() ? 1 : 0;
193 PyErr_Fetch(&err_type, &err_value, &err_traceback);
194 if(self->acl != NULL && acl_free(self->acl) != 0)
195 PyErr_WriteUnraisable(obj);
197 PyErr_Restore(err_type, err_value, err_traceback);
201 /* Converts the acl to a text format */
202 static PyObject* ACL_str(PyObject *obj) {
204 ACL_Object *self = (ACL_Object*) obj;
207 text = acl_to_text(self->acl, NULL);
209 return PyErr_SetFromErrno(PyExc_IOError);
211 ret = PyBytes_FromString(text);
212 if(acl_free(text) != 0) {
214 return PyErr_SetFromErrno(PyExc_IOError);
220 static char __to_any_text_doc__[] =
221 "Convert the ACL to a custom text format.\n"
223 "This method encapsulates the acl_to_any_text function. It allows a \n"
224 "customized text format to be generated for the ACL. See\n"
225 "acl_to_any_text(3) for more details.\n"
228 " - prefix: if given, this string will be prepended to all lines\n"
229 " - separator: a single character (defaults to '\\n'); this will be\n"
230 " user to separate the entries in the ACL\n"
231 " - options: a bitwise combination of:\n"
232 " - TEXT_ABBREVIATE: use 'u' instead of 'user', 'g' instead of \n"
234 " - TEXT_NUMERIC_IDS: User and group IDs are included as decimal\n"
235 " numbers instead of names\n"
236 " - TEXT_SOME_EFFECTIVE: Include comments denoting the effective\n"
237 " permissions when some are masked\n"
238 " - TEXT_ALL_EFFECTIVE: Include comments after all ACL entries\n"
239 " affected by an ACL_MASK entry\n"
240 " - TEXT_SMART_INDENT: Used in combination with the _EFFECTIVE\n"
241 " options, this will ensure that comments \n"
242 " are alligned to the fourth tab position\n"
243 " (assuming one tab equals eight spaces)\n"
246 /* Converts the acl to a custom text format */
247 static PyObject* ACL_to_any_text(PyObject *obj, PyObject *args,
250 ACL_Object *self = (ACL_Object*) obj;
252 const char *arg_prefix = NULL;
253 char arg_separator = '\n';
255 static char *kwlist[] = {"prefix", "separator", "options", NULL};
257 if (!PyArg_ParseTupleAndKeywords(args, kwds, "|sci", kwlist, &arg_prefix,
258 &arg_separator, &arg_options))
261 text = acl_to_any_text(self->acl, arg_prefix, arg_separator, arg_options);
263 return PyErr_SetFromErrno(PyExc_IOError);
265 ret = PyBytes_FromString(text);
266 if(acl_free(text) != 0) {
268 return PyErr_SetFromErrno(PyExc_IOError);
273 static char __check_doc__[] =
274 "Check the ACL validity.\n"
276 "This is a non-portable, Linux specific extension that allow more\n"
277 "information to be retrieved in case an ACL is not valid than the\n"
278 "validate() method.\n"
280 "This method will return either False (the ACL is valid), or a tuple\n"
281 "with two elements. The first element is one of the following\n"
283 " - ACL_MULTI_ERROR: The ACL contains multiple entries that have a\n"
284 " tag type that may occur at most once\n"
285 " - ACL_DUPLICATE_ERROR: The ACL contains multiple ACL_USER or \n"
286 " ACL_GROUP entries with the same ID\n"
287 " - ACL_MISS_ERROR: A required entry is missing\n"
288 " - ACL_ENTRY_ERROR: The ACL contains an invalid entry tag type\n"
290 "The second element of the tuple is the index of the entry that is\n"
291 "invalid (in the same order as by iterating over the ACL entry)\n"
294 /* The acl_check method */
295 static PyObject* ACL_check(PyObject* obj, PyObject* args) {
296 ACL_Object *self = (ACL_Object*) obj;
300 if((result = acl_check(self->acl, &eindex)) == -1)
301 return PyErr_SetFromErrno(PyExc_IOError);
306 return Py_BuildValue("(ii)", result, eindex);
309 /* Implementation of the rich compare for ACLs */
310 static PyObject* ACL_richcompare(PyObject* o1, PyObject* o2, int op) {
311 ACL_Object *acl1, *acl2;
315 if(!PyObject_IsInstance(o2, (PyObject*)&ACL_Type)) {
320 PyErr_SetString(PyExc_TypeError, "can only compare to an ACL");
324 acl1 = (ACL_Object*)o1;
325 acl2 = (ACL_Object*)o2;
326 if((n=acl_cmp(acl1->acl, acl2->acl))==-1)
327 return PyErr_SetFromErrno(PyExc_IOError);
330 ret = n == 0 ? Py_True : Py_False;
333 ret = n == 1 ? Py_True : Py_False;
336 ret = Py_NotImplemented;
342 static char __equiv_mode_doc__[] =
343 "Return the octal mode the ACL is equivalent to.\n"
345 "This is a non-portable, Linux specific extension that checks\n"
346 "if the ACL is a basic ACL and returns the corresponding mode.\n"
348 "An IOerror exception will be raised if the ACL is an extended ACL\n"
351 /* The acl_equiv_mode method */
352 static PyObject* ACL_equiv_mode(PyObject* obj, PyObject* args) {
353 ACL_Object *self = (ACL_Object*) obj;
356 if(acl_equiv_mode(self->acl, &mode) == -1)
357 return PyErr_SetFromErrno(PyExc_IOError);
358 return PyInt_FromLong(mode);
362 /* Implementation of the compare for ACLs */
363 static int ACL_nocmp(PyObject* o1, PyObject* o2) {
365 PyErr_SetString(PyExc_TypeError, "cannot compare ACLs using cmp()");
370 static char __applyto_doc__[] =
371 "Apply the ACL to a file or filehandle.\n"
374 " - either a filename or a file-like object or an integer; this\n"
375 " represents the filesystem object on which to act\n"
376 " - optional flag representing the type of ACL to set, either\n"
377 " ACL_TYPE_ACCESS (default) or ACL_TYPE_DEFAULT\n"
380 /* Applyes the ACL to a file */
381 static PyObject* ACL_applyto(PyObject* obj, PyObject* args) {
382 ACL_Object *self = (ACL_Object*) obj;
384 acl_type_t type = ACL_TYPE_ACCESS;
388 if (!PyArg_ParseTuple(args, "O|I", &myarg, &type))
391 if(PyBytes_Check(myarg)) {
392 char *filename = PyBytes_AS_STRING(myarg);
393 nret = acl_set_file(filename, type, self->acl);
394 } else if (PyUnicode_Check(myarg)) {
396 PyUnicode_AsEncodedString(myarg,
397 Py_FileSystemDefaultEncoding, "strict");
400 const char *filename = PyBytes_AS_STRING(o);
401 nret = acl_set_file(filename, type, self->acl);
403 } else if((fd = PyObject_AsFileDescriptor(myarg)) != -1) {
404 nret = acl_set_fd(fd, self->acl);
406 PyErr_SetString(PyExc_TypeError, "argument 1 must be string, int,"
407 " or file-like object");
411 return PyErr_SetFromErrno(PyExc_IOError);
414 /* Return the result */
419 static char __valid_doc__[] =
420 "Test the ACL for validity.\n"
422 "This method tests the ACL to see if it is a valid ACL\n"
423 "in terms of the filesystem. More precisely, it checks that:\n"
425 "The ACL contains exactly one entry with each of the\n"
426 "ACL_USER_OBJ, ACL_GROUP_OBJ, and ACL_OTHER tag types. Entries\n"
427 "with ACL_USER and ACL_GROUP tag types may appear zero or more\n"
428 "times in an ACL. An ACL that contains entries of ACL_USER or\n"
429 "ACL_GROUP tag types must contain exactly one entry of the \n"
430 "ACL_MASK tag type. If an ACL contains no entries of\n"
431 "ACL_USER or ACL_GROUP tag types, the ACL_MASK entry is optional.\n"
433 "All user ID qualifiers must be unique among all entries of\n"
434 "the ACL_USER tag type, and all group IDs must be unique among all\n"
435 "entries of ACL_GROUP tag type.\n"
437 "The method will return 1 for a valid ACL and 0 for an invalid one.\n"
438 "This has been chosen because the specification for acl_valid in\n"
439 "the POSIX.1e standard documents only one possible value for errno\n"
440 "in case of an invalid ACL, so we can't differentiate between\n"
441 "classes of errors. Other suggestions are welcome.\n"
444 /* Checks the ACL for validity */
445 static PyObject* ACL_valid(PyObject* obj, PyObject* args) {
446 ACL_Object *self = (ACL_Object*) obj;
448 if(acl_valid(self->acl) == -1) {
457 #ifdef HAVE_ACL_COPY_EXT
458 static PyObject* ACL_get_state(PyObject *obj, PyObject* args) {
459 ACL_Object *self = (ACL_Object*) obj;
464 size = acl_size(self->acl);
466 return PyErr_SetFromErrno(PyExc_IOError);
468 if((ret = PyBytes_FromStringAndSize(NULL, size)) == NULL)
470 buf = PyBytes_AsString(ret);
472 if((nsize = acl_copy_ext(buf, self->acl, size)) == -1) {
474 return PyErr_SetFromErrno(PyExc_IOError);
480 static PyObject* ACL_set_state(PyObject *obj, PyObject* args) {
481 ACL_Object *self = (ACL_Object*) obj;
486 /* Parse the argument */
487 if (!PyArg_ParseTuple(args, "s#", &buf, &bufsize))
490 /* Try to import the external representation */
491 if((ptr = acl_copy_int(buf)) == NULL)
492 return PyErr_SetFromErrno(PyExc_IOError);
494 /* Free the old acl. Should we ignore errors here? */
495 if(self->acl != NULL) {
496 if(acl_free(self->acl) == -1)
497 return PyErr_SetFromErrno(PyExc_IOError);
502 /* Return the result */
510 /* tp_iter for the ACL type; since it can be iterated only
511 * destructively, the type is its iterator
513 static PyObject* ACL_iter(PyObject *obj) {
514 ACL_Object *self = (ACL_Object*)obj;
515 self->entry_id = ACL_FIRST_ENTRY;
520 /* the tp_iternext function for the ACL type */
521 static PyObject* ACL_iternext(PyObject *obj) {
522 ACL_Object *self = (ACL_Object*)obj;
523 acl_entry_t the_entry_t;
524 Entry_Object *the_entry_obj;
527 nerr = acl_get_entry(self->acl, self->entry_id, &the_entry_t);
528 self->entry_id = ACL_NEXT_ENTRY;
530 return PyErr_SetFromErrno(PyExc_IOError);
532 /* Docs says this is not needed */
533 /*PyErr_SetObject(PyExc_StopIteration, Py_None);*/
537 the_entry_obj = (Entry_Object*) PyType_GenericNew(&Entry_Type, NULL, NULL);
538 if(the_entry_obj == NULL)
541 the_entry_obj->entry = the_entry_t;
543 the_entry_obj->parent_acl = obj;
544 Py_INCREF(obj); /* For the reference we have in entry->parent */
546 return (PyObject*)the_entry_obj;
549 static char __ACL_delete_entry_doc__[] =
550 "Deletes an entry from the ACL.\n"
552 "Note: Only with level 2\n"
554 " - the Entry object which should be deleted; note that after\n"
555 " this function is called, that object is unusable any longer\n"
556 " and should be deleted\n"
559 /* Deletes an entry from the ACL */
560 static PyObject* ACL_delete_entry(PyObject *obj, PyObject *args) {
561 ACL_Object *self = (ACL_Object*)obj;
564 if (!PyArg_ParseTuple(args, "O!", &Entry_Type, &e))
567 if(acl_delete_entry(self->acl, e->entry) == -1)
568 return PyErr_SetFromErrno(PyExc_IOError);
570 /* Return the result */
575 static char __ACL_calc_mask_doc__[] =
576 "Compute the file group class mask.\n"
578 "The calc_mask() method calculates and sets the permissions \n"
579 "associated with the ACL_MASK Entry of the ACL.\n"
580 "The value of the new permissions is the union of the permissions \n"
581 "granted by all entries of tag type ACL_GROUP, ACL_GROUP_OBJ, or \n"
582 "ACL_USER. If the ACL already contains an ACL_MASK entry, its \n"
583 "permissions are overwritten; if it does not contain an ACL_MASK \n"
584 "Entry, one is added.\n"
586 "The order of existing entries in the ACL is undefined after this \n"
590 /* Updates the mask entry in the ACL */
591 static PyObject* ACL_calc_mask(PyObject *obj, PyObject *args) {
592 ACL_Object *self = (ACL_Object*)obj;
594 if(acl_calc_mask(&self->acl) == -1)
595 return PyErr_SetFromErrno(PyExc_IOError);
597 /* Return the result */
602 static char __ACL_append_doc__[] =
603 "Append a new Entry to the ACL and return it.\n"
605 "This is a convenience function to create a new Entry \n"
606 "and append it to the ACL.\n"
607 "If a parameter of type Entry instance is given, the \n"
608 "entry will be a copy of that one (as if copied with \n"
609 "Entry.copy()), otherwise, the new entry will be empty.\n"
612 /* Convenience method to create a new Entry */
613 static PyObject* ACL_append(PyObject *obj, PyObject *args) {
614 ACL_Object* self = (ACL_Object*) obj;
615 Entry_Object* newentry;
616 Entry_Object* oldentry = NULL;
619 newentry = (Entry_Object*)PyType_GenericNew(&Entry_Type, NULL, NULL);
620 if(newentry == NULL) {
624 if (!PyArg_ParseTuple(args, "|O!", &Entry_Type, &oldentry)) {
629 nret = acl_create_entry(&self->acl, &newentry->entry);
632 return PyErr_SetFromErrno(PyExc_IOError);
635 if(oldentry != NULL) {
636 nret = acl_copy_entry(newentry->entry, oldentry->entry);
639 return PyErr_SetFromErrno(PyExc_IOError);
643 newentry->parent_acl = obj;
646 return (PyObject*)newentry;
649 /***** Entry type *****/
651 /* Creation of a new Entry instance */
652 static PyObject* Entry_new(PyTypeObject* type, PyObject* args,
656 newentry = PyType_GenericNew(type, args, keywds);
658 if(newentry != NULL) {
659 ((Entry_Object*)newentry)->entry = NULL;
660 ((Entry_Object*)newentry)->parent_acl = NULL;
666 /* Initialization of a new Entry instance */
667 static int Entry_init(PyObject* obj, PyObject* args, PyObject *keywds) {
668 Entry_Object* self = (Entry_Object*) obj;
669 ACL_Object* parent = NULL;
671 if (!PyArg_ParseTuple(args, "O!", &ACL_Type, &parent))
674 if(acl_create_entry(&parent->acl, &self->entry) == -1) {
675 PyErr_SetFromErrno(PyExc_IOError);
679 self->parent_acl = (PyObject*)parent;
685 /* Free the Entry instance */
686 static void Entry_dealloc(PyObject* obj) {
687 Entry_Object *self = (Entry_Object*) obj;
688 PyObject *err_type, *err_value, *err_traceback;
689 int have_error = PyErr_Occurred() ? 1 : 0;
692 PyErr_Fetch(&err_type, &err_value, &err_traceback);
693 if(self->parent_acl != NULL) {
694 Py_DECREF(self->parent_acl);
695 self->parent_acl = NULL;
698 PyErr_Restore(err_type, err_value, err_traceback);
702 /* Converts the entry to a text format */
703 static PyObject* Entry_str(PyObject *obj) {
707 PyObject *format, *kind;
708 Entry_Object *self = (Entry_Object*) obj;
710 if(acl_get_tag_type(self->entry, &tag) == -1) {
711 PyErr_SetFromErrno(PyExc_IOError);
714 if(tag == ACL_USER || tag == ACL_GROUP) {
715 if((p = acl_get_qualifier(self->entry)) == NULL) {
716 PyErr_SetFromErrno(PyExc_IOError);
719 qualifier = *(uid_t*)p;
725 format = PyBytes_FromString("ACL entry for ");
729 case ACL_UNDEFINED_TAG:
730 kind = PyBytes_FromString("undefined type");
733 kind = PyBytes_FromString("the owner");
736 kind = PyBytes_FromString("the group");
739 kind = PyBytes_FromString("the others");
742 kind = PyBytes_FromFormat("user with uid %d", qualifier);
745 kind = PyBytes_FromFormat("group with gid %d", qualifier);
748 kind = PyBytes_FromString("the mask");
751 kind = PyBytes_FromString("UNKNOWN_TAG_TYPE!");
758 PyBytes_ConcatAndDel(&format, kind);
762 /* Sets the tag type of the entry */
763 static int Entry_set_tag_type(PyObject* obj, PyObject* value, void* arg) {
764 Entry_Object *self = (Entry_Object*) obj;
767 PyErr_SetString(PyExc_TypeError,
768 "tag type deletion is not supported");
772 if(!PyInt_Check(value)) {
773 PyErr_SetString(PyExc_TypeError,
774 "tag type must be integer");
777 if(acl_set_tag_type(self->entry, (acl_tag_t)PyInt_AsLong(value)) == -1) {
778 PyErr_SetFromErrno(PyExc_IOError);
785 /* Returns the tag type of the entry */
786 static PyObject* Entry_get_tag_type(PyObject *obj, void* arg) {
787 Entry_Object *self = (Entry_Object*) obj;
790 if (self->entry == NULL) {
791 PyErr_SetString(PyExc_AttributeError, "entry attribute");
794 if(acl_get_tag_type(self->entry, &value) == -1) {
795 PyErr_SetFromErrno(PyExc_IOError);
799 return PyInt_FromLong(value);
802 /* Sets the qualifier (either uid_t or gid_t) for the entry,
803 * usable only if the tag type if ACL_USER or ACL_GROUP
805 static int Entry_set_qualifier(PyObject* obj, PyObject* value, void* arg) {
806 Entry_Object *self = (Entry_Object*) obj;
810 PyErr_SetString(PyExc_TypeError,
811 "qualifier deletion is not supported");
815 if(!PyInt_Check(value)) {
816 PyErr_SetString(PyExc_TypeError,
817 "tag type must be integer");
820 uidgid = PyInt_AsLong(value);
821 if(acl_set_qualifier(self->entry, (void*)&uidgid) == -1) {
822 PyErr_SetFromErrno(PyExc_IOError);
829 /* Returns the qualifier of the entry */
830 static PyObject* Entry_get_qualifier(PyObject *obj, void* arg) {
831 Entry_Object *self = (Entry_Object*) obj;
835 if (self->entry == NULL) {
836 PyErr_SetString(PyExc_AttributeError, "entry attribute");
839 if((p = acl_get_qualifier(self->entry)) == NULL) {
840 PyErr_SetFromErrno(PyExc_IOError);
846 return PyInt_FromLong(value);
849 /* Returns the parent ACL of the entry */
850 static PyObject* Entry_get_parent(PyObject *obj, void* arg) {
851 Entry_Object *self = (Entry_Object*) obj;
853 Py_INCREF(self->parent_acl);
854 return self->parent_acl;
857 /* Returns the a new Permset representing the permset of the entry
858 * FIXME: Should return a new reference to the same object, which
859 * should be created at init time!
861 static PyObject* Entry_get_permset(PyObject *obj, void* arg) {
862 Entry_Object *self = (Entry_Object*)obj;
866 p = Permset_new(&Permset_Type, NULL, NULL);
869 ps = (Permset_Object*)p;
870 if(acl_get_permset(self->entry, &ps->permset) == -1) {
871 PyErr_SetFromErrno(PyExc_IOError);
875 ps->parent_entry = obj;
881 /* Sets the permset of the entry to the passed Permset */
882 static int Entry_set_permset(PyObject* obj, PyObject* value, void* arg) {
883 Entry_Object *self = (Entry_Object*)obj;
886 if(!PyObject_IsInstance(value, (PyObject*)&Permset_Type)) {
887 PyErr_SetString(PyExc_TypeError, "argument 1 must be posix1e.Permset");
890 p = (Permset_Object*)value;
891 if(acl_set_permset(self->entry, p->permset) == -1) {
892 PyErr_SetFromErrno(PyExc_IOError);
898 static char __Entry_copy_doc__[] =
899 "Copy an ACL entry.\n"
901 "This method sets all the parameters to those of another\n"
902 "entry, even one of another's ACL\n"
904 " - src, instance of type Entry\n"
907 /* Sets all the entry parameters to another's entry */
908 static PyObject* Entry_copy(PyObject *obj, PyObject *args) {
909 Entry_Object *self = (Entry_Object*)obj;
912 if(!PyArg_ParseTuple(args, "O!", &Entry_Type, &other))
915 if(acl_copy_entry(self->entry, other->entry) == -1)
916 return PyErr_SetFromErrno(PyExc_IOError);
922 /**** Permset type *****/
924 /* Creation of a new Permset instance */
925 static PyObject* Permset_new(PyTypeObject* type, PyObject* args,
927 PyObject* newpermset;
929 newpermset = PyType_GenericNew(type, args, keywds);
931 if(newpermset != NULL) {
932 ((Permset_Object*)newpermset)->permset = NULL;
933 ((Permset_Object*)newpermset)->parent_entry = NULL;
939 /* Initialization of a new Permset instance */
940 static int Permset_init(PyObject* obj, PyObject* args, PyObject *keywds) {
941 Permset_Object* self = (Permset_Object*) obj;
942 Entry_Object* parent = NULL;
944 if (!PyArg_ParseTuple(args, "O!", &Entry_Type, &parent))
947 if(acl_get_permset(parent->entry, &self->permset) == -1) {
948 PyErr_SetFromErrno(PyExc_IOError);
952 self->parent_entry = (PyObject*)parent;
958 /* Free the Permset instance */
959 static void Permset_dealloc(PyObject* obj) {
960 Permset_Object *self = (Permset_Object*) obj;
961 PyObject *err_type, *err_value, *err_traceback;
962 int have_error = PyErr_Occurred() ? 1 : 0;
965 PyErr_Fetch(&err_type, &err_value, &err_traceback);
966 if(self->parent_entry != NULL) {
967 Py_DECREF(self->parent_entry);
968 self->parent_entry = NULL;
971 PyErr_Restore(err_type, err_value, err_traceback);
975 /* Permset string representation */
976 static PyObject* Permset_str(PyObject *obj) {
977 Permset_Object *self = (Permset_Object*) obj;
980 pstr[0] = get_perm(self->permset, ACL_READ) ? 'r' : '-';
981 pstr[1] = get_perm(self->permset, ACL_WRITE) ? 'w' : '-';
982 pstr[2] = get_perm(self->permset, ACL_EXECUTE) ? 'x' : '-';
983 return PyBytes_FromStringAndSize(pstr, 3);
986 static char __Permset_clear_doc__[] =
987 "Clear all permissions from the permission set.\n"
990 /* Clears all permissions from the permset */
991 static PyObject* Permset_clear(PyObject* obj, PyObject* args) {
992 Permset_Object *self = (Permset_Object*) obj;
994 if(acl_clear_perms(self->permset) == -1)
995 return PyErr_SetFromErrno(PyExc_IOError);
997 /* Return the result */
1002 static PyObject* Permset_get_right(PyObject *obj, void* arg) {
1003 Permset_Object *self = (Permset_Object*) obj;
1005 if(get_perm(self->permset, *(acl_perm_t*)arg)) {
1009 Py_INCREF(Py_False);
1014 static int Permset_set_right(PyObject* obj, PyObject* value, void* arg) {
1015 Permset_Object *self = (Permset_Object*) obj;
1019 if(!PyInt_Check(value)) {
1020 PyErr_SetString(PyExc_ValueError, "a maximum of one argument must"
1024 on = PyInt_AsLong(value);
1026 nerr = acl_add_perm(self->permset, *(acl_perm_t*)arg);
1028 nerr = acl_delete_perm(self->permset, *(acl_perm_t*)arg);
1030 PyErr_SetFromErrno(PyExc_IOError);
1036 static char __Permset_add_doc__[] =
1037 "Add a permission to the permission set.\n"
1039 "The add() function adds the permission contained in \n"
1040 "the argument perm to the permission set. An attempt \n"
1041 "to add a permission that is already contained in the \n"
1042 "permission set is not considered an error.\n"
1045 " - perm: a permission (ACL_WRITE, ACL_READ, ACL_EXECUTE, ...)\n"
1047 "Return value: None\n"
1049 "Can raise: IOError\n"
1052 static PyObject* Permset_add(PyObject* obj, PyObject* args) {
1053 Permset_Object *self = (Permset_Object*) obj;
1056 if (!PyArg_ParseTuple(args, "i", &right))
1059 if(acl_add_perm(self->permset, (acl_perm_t) right) == -1)
1060 return PyErr_SetFromErrno(PyExc_IOError);
1062 /* Return the result */
1067 static char __Permset_delete_doc__[] =
1068 "Delete a permission from the permission set.\n"
1070 "The delete() function deletes the permission contained in \n"
1071 "the argument perm from the permission set. An attempt \n"
1072 "to delete a permission that is not contained in the \n"
1073 "permission set is not considered an error.\n"
1075 " - perm a permission (ACL_WRITE, ACL_READ, ACL_EXECUTE, ...)\n"
1076 "Return value: None\n"
1078 "Can raise: IOError\n"
1081 static PyObject* Permset_delete(PyObject* obj, PyObject* args) {
1082 Permset_Object *self = (Permset_Object*) obj;
1085 if (!PyArg_ParseTuple(args, "i", &right))
1088 if(acl_delete_perm(self->permset, (acl_perm_t) right) == -1)
1089 return PyErr_SetFromErrno(PyExc_IOError);
1091 /* Return the result */
1096 static char __Permset_test_doc__[] =
1097 "Test if a permission exists in the permission set.\n"
1099 "The test() function tests if the permission contained in \n"
1100 "the argument perm exits the permission set.\n"
1102 " - perm a permission (ACL_WRITE, ACL_READ, ACL_EXECUTE, ...)\n"
1103 "Return value: Boolean\n"
1105 "Can raise: IOError\n"
1108 static PyObject* Permset_test(PyObject* obj, PyObject* args) {
1109 Permset_Object *self = (Permset_Object*) obj;
1113 if (!PyArg_ParseTuple(args, "i", &right))
1116 ret = get_perm(self->permset, (acl_perm_t) right);
1118 return PyErr_SetFromErrno(PyExc_IOError);
1124 Py_INCREF(Py_False);
1131 static char __ACL_Type_doc__[] =
1132 "Type which represents a POSIX ACL\n"
1134 "Parameters (only one keword parameter should be provided):\n"
1135 " - file=\"...\", meaning create ACL representing\n"
1136 " the access ACL of that file\n"
1137 " - filedef=\"...\", meaning create ACL representing\n"
1138 " the default ACL of that directory\n"
1139 " - fd=<int>, meaning create ACL representing\n"
1140 " the access ACL of that file descriptor\n"
1141 " - text=\"...\", meaning create ACL from a \n"
1142 " textual description\n"
1143 " - acl=<ACL instance>, meaning create a copy\n"
1144 " of an existing ACL instance\n"
1145 " - mode=<int>, meaning create an ACL from a numeric mode\n"
1146 " (e.g. mode=0644) (this is valid only when the C library\n"
1147 " provides the acl_from_mode call)\n"
1149 "If no parameters are passed, create an empty ACL; this\n"
1150 "makes sense only when your OS supports ACL modification\n"
1151 "(i.e. it implements full POSIX.1e support)\n"
1154 /* ACL type methods */
1155 static PyMethodDef ACL_methods[] = {
1156 {"applyto", ACL_applyto, METH_VARARGS, __applyto_doc__},
1157 {"valid", ACL_valid, METH_NOARGS, __valid_doc__},
1159 {"to_any_text", (PyCFunction)ACL_to_any_text, METH_VARARGS | METH_KEYWORDS,
1160 __to_any_text_doc__},
1161 {"check", ACL_check, METH_NOARGS, __check_doc__},
1162 {"equiv_mode", ACL_equiv_mode, METH_NOARGS, __equiv_mode_doc__},
1164 #ifdef HAVE_ACL_COPYEXT
1165 {"__getstate__", ACL_get_state, METH_NOARGS,
1166 "Dumps the ACL to an external format."},
1167 {"__setstate__", ACL_set_state, METH_VARARGS,
1168 "Loads the ACL from an external format."},
1171 {"delete_entry", ACL_delete_entry, METH_VARARGS, __ACL_delete_entry_doc__},
1172 {"calc_mask", ACL_calc_mask, METH_NOARGS, __ACL_calc_mask_doc__},
1173 {"append", ACL_append, METH_VARARGS, __ACL_append_doc__},
1175 {NULL, NULL, 0, NULL}
1179 /* The definition of the ACL Type */
1180 static PyTypeObject ACL_Type = {
1182 PyVarObject_HEAD_INIT(NULL, 0)
1184 PyObject_HEAD_INIT(NULL)
1190 ACL_dealloc, /* tp_dealloc */
1194 ACL_nocmp, /* tp_compare */
1196 0, /* tp_as_number */
1197 0, /* tp_as_sequence */
1198 0, /* tp_as_mapping */
1201 ACL_str, /* tp_str */
1202 0, /* tp_getattro */
1203 0, /* tp_setattro */
1204 0, /* tp_as_buffer */
1205 Py_TPFLAGS_DEFAULT, /* tp_flags */
1206 __ACL_Type_doc__, /* tp_doc */
1207 0, /* tp_traverse */
1210 ACL_richcompare, /* tp_richcompare */
1212 0, /* tp_richcompare */
1214 0, /* tp_weaklistoffset */
1220 0, /* tp_iternext */
1222 ACL_methods, /* tp_methods */
1227 0, /* tp_descr_get */
1228 0, /* tp_descr_set */
1229 0, /* tp_dictoffset */
1230 ACL_init, /* tp_init */
1232 ACL_new, /* tp_new */
1237 /* Entry type methods */
1238 static PyMethodDef Entry_methods[] = {
1239 {"copy", Entry_copy, METH_VARARGS, __Entry_copy_doc__},
1240 {NULL, NULL, 0, NULL}
1243 static char __Entry_tagtype_doc__[] =
1244 "The tag type of the current entry\n"
1247 " - ACL_UNDEFINED_TAG\n"
1250 " - ACL_GROUP_OBJ\n"
1256 static char __Entry_qualifier_doc__[] =
1257 "The qualifier of the current entry\n"
1259 "If the tag type is ACL_USER, this should be a user id.\n"
1260 "If the tag type if ACL_GROUP, this should be a group id.\n"
1261 "Else, it doesn't matter.\n"
1264 static char __Entry_parent_doc__[] =
1265 "The parent ACL of this entry\n"
1268 static char __Entry_permset_doc__[] =
1269 "The permission set of this ACL entry\n"
1273 static PyGetSetDef Entry_getsets[] = {
1274 {"tag_type", Entry_get_tag_type, Entry_set_tag_type,
1275 __Entry_tagtype_doc__},
1276 {"qualifier", Entry_get_qualifier, Entry_set_qualifier,
1277 __Entry_qualifier_doc__},
1278 {"parent", Entry_get_parent, NULL, __Entry_parent_doc__},
1279 {"permset", Entry_get_permset, Entry_set_permset, __Entry_permset_doc__},
1283 static char __Entry_Type_doc__[] =
1284 "Type which represents an entry in an ACL.\n"
1286 "The type exists only if the OS has full support for POSIX.1e\n"
1287 "Can be created either by:\n"
1289 " >>> e = posix1e.Entry(myACL) # this creates a new entry in the ACL\n"
1290 " >>> e = myACL.append() # another way for doing the same thing\n"
1293 " >>> for entry in myACL:\n"
1294 " ... print entry\n"
1296 "Note that the Entry keeps a reference to its ACL, so even if \n"
1297 "you delete the ACL, it won't be cleaned up and will continue to \n"
1298 "exist until its Entry(ies) will be deleted.\n"
1300 /* The definition of the Entry Type */
1301 static PyTypeObject Entry_Type = {
1303 PyVarObject_HEAD_INIT(NULL, 0)
1305 PyObject_HEAD_INIT(NULL)
1309 sizeof(Entry_Object),
1311 Entry_dealloc, /* tp_dealloc */
1317 0, /* tp_as_number */
1318 0, /* tp_as_sequence */
1319 0, /* tp_as_mapping */
1322 Entry_str, /* tp_str */
1323 0, /* tp_getattro */
1324 0, /* tp_setattro */
1325 0, /* tp_as_buffer */
1326 Py_TPFLAGS_DEFAULT, /* tp_flags */
1327 __Entry_Type_doc__, /* tp_doc */
1328 0, /* tp_traverse */
1330 0, /* tp_richcompare */
1331 0, /* tp_weaklistoffset */
1333 0, /* tp_iternext */
1334 Entry_methods, /* tp_methods */
1336 Entry_getsets, /* tp_getset */
1339 0, /* tp_descr_get */
1340 0, /* tp_descr_set */
1341 0, /* tp_dictoffset */
1342 Entry_init, /* tp_init */
1344 Entry_new, /* tp_new */
1347 /* Permset type methods */
1348 static PyMethodDef Permset_methods[] = {
1349 {"clear", Permset_clear, METH_NOARGS, __Permset_clear_doc__, },
1350 {"add", Permset_add, METH_VARARGS, __Permset_add_doc__, },
1351 {"delete", Permset_delete, METH_VARARGS, __Permset_delete_doc__, },
1352 {"test", Permset_test, METH_VARARGS, __Permset_test_doc__, },
1353 {NULL, NULL, 0, NULL}
1356 static char __Permset_execute_doc__[] =
1357 "Execute permsission\n"
1359 "This is a convenience method of access; the \n"
1360 "same effect can be achieved using the functions\n"
1361 "add(), test(), delete(), and those can take any \n"
1362 "permission defined by your platform.\n"
1365 static char __Permset_read_doc__[] =
1366 "Read permsission\n"
1368 "This is a convenience method of access; the \n"
1369 "same effect can be achieved using the functions\n"
1370 "add(), test(), delete(), and those can take any \n"
1371 "permission defined by your platform.\n"
1374 static char __Permset_write_doc__[] =
1375 "Write permsission\n"
1377 "This is a convenience method of access; the \n"
1378 "same effect can be achieved using the functions\n"
1379 "add(), test(), delete(), and those can take any \n"
1380 "permission defined by your platform.\n"
1383 /* Permset getset */
1384 static PyGetSetDef Permset_getsets[] = {
1385 {"execute", Permset_get_right, Permset_set_right,
1386 __Permset_execute_doc__, &holder_ACL_EXECUTE},
1387 {"read", Permset_get_right, Permset_set_right,
1388 __Permset_read_doc__, &holder_ACL_READ},
1389 {"write", Permset_get_right, Permset_set_right,
1390 __Permset_write_doc__, &holder_ACL_WRITE},
1394 static char __Permset_Type_doc__[] =
1395 "Type which represents the permission set in an ACL entry\n"
1397 "The type exists only if the OS has full support for POSIX.1e\n"
1398 "Can be retrieved either by:\n\n"
1399 ">>> perms = myEntry.permset\n"
1402 ">>> perms = posix1e.Permset(myEntry)\n"
1404 "Note that the Permset keeps a reference to its Entry, so even if \n"
1405 "you delete the entry, it won't be cleaned up and will continue to \n"
1406 "exist until its Permset will be deleted.\n"
1409 /* The definition of the Permset Type */
1410 static PyTypeObject Permset_Type = {
1412 PyVarObject_HEAD_INIT(NULL, 0)
1414 PyObject_HEAD_INIT(NULL)
1418 sizeof(Permset_Object),
1420 Permset_dealloc, /* tp_dealloc */
1426 0, /* tp_as_number */
1427 0, /* tp_as_sequence */
1428 0, /* tp_as_mapping */
1431 Permset_str, /* tp_str */
1432 0, /* tp_getattro */
1433 0, /* tp_setattro */
1434 0, /* tp_as_buffer */
1435 Py_TPFLAGS_DEFAULT, /* tp_flags */
1436 __Permset_Type_doc__,/* tp_doc */
1437 0, /* tp_traverse */
1439 0, /* tp_richcompare */
1440 0, /* tp_weaklistoffset */
1442 0, /* tp_iternext */
1443 Permset_methods, /* tp_methods */
1445 Permset_getsets, /* tp_getset */
1448 0, /* tp_descr_get */
1449 0, /* tp_descr_set */
1450 0, /* tp_dictoffset */
1451 Permset_init, /* tp_init */
1453 Permset_new, /* tp_new */
1458 /* Module methods */
1460 static char __deletedef_doc__[] =
1461 "Delete the default ACL from a directory.\n"
1463 "This function deletes the default ACL associated with \n"
1464 "a directory (the ACL which will be ANDed with the mode\n"
1465 "parameter to the open, creat functions).\n"
1467 " - a string representing the directory whose default ACL\n"
1468 " should be deleted\n"
1471 /* Deletes the default ACL from a directory */
1472 static PyObject* aclmodule_delete_default(PyObject* obj, PyObject* args) {
1475 /* Parse the arguments */
1476 if (!PyArg_ParseTuple(args, "et", NULL, &filename))
1479 if(acl_delete_def_file(filename) == -1) {
1480 return PyErr_SetFromErrno(PyExc_IOError);
1483 /* Return the result */
1489 static char __has_extended_doc__[] =
1490 "Check if a file or filehandle has an extended ACL.\n"
1493 " - either a filename or a file-like object or an integer; this\n"
1494 " represents the filesystem object on which to act\n"
1497 /* Check for extended ACL a file or fd */
1498 static PyObject* aclmodule_has_extended(PyObject* obj, PyObject* args) {
1503 if (!PyArg_ParseTuple(args, "O", &myarg))
1506 if(PyBytes_Check(myarg)) {
1507 const char *filename = PyBytes_AS_STRING(myarg);
1508 nret = acl_extended_file(filename);
1509 } else if (PyUnicode_Check(myarg)) {
1511 PyUnicode_AsEncodedString(myarg,
1512 Py_FileSystemDefaultEncoding, "strict");
1515 const char *filename = PyBytes_AS_STRING(o);
1516 nret = acl_extended_file(filename);
1518 } else if((fd = PyObject_AsFileDescriptor(myarg)) != -1) {
1519 nret = acl_extended_fd(fd);
1521 PyErr_SetString(PyExc_TypeError, "argument 1 must be string, int,"
1522 " or file-like object");
1526 return PyErr_SetFromErrno(PyExc_IOError);
1529 /* Return the result */
1530 return PyBool_FromLong(nret);
1534 /* The module methods */
1535 static PyMethodDef aclmodule_methods[] = {
1536 {"delete_default", aclmodule_delete_default, METH_VARARGS,
1539 {"has_extended", aclmodule_has_extended, METH_VARARGS,
1540 __has_extended_doc__},
1542 {NULL, NULL, 0, NULL}
1545 static char __posix1e_doc__[] =
1546 "POSIX.1e ACLs manipulation\n"
1548 "This module provides support for manipulating POSIX.1e ACLS\n"
1550 "Depending on the operating system support for POSIX.1e, \n"
1551 "the ACL type will have more or less capabilities:\n"
1552 " - level 1, only basic support, you can create\n"
1553 " ACLs from files and text descriptions;\n"
1554 " once created, the type is immutable\n"
1555 " - level 2, complete support, you can alter\n"
1556 " the ACL once it is created\n"
1558 "Also, in level 2, more types are available, corresponding\n"
1559 "to acl_entry_t (the Entry type), acl_permset_t (the Permset type).\n"
1561 "The existence of level 2 support and other extensions can be\n"
1562 "checked by the constants:\n"
1563 " - HAS_ACL_ENTRY for level 2 and the Entry/Permset classes\n"
1564 " - HAS_ACL_FROM_MODE for ACL(mode=...) usage\n"
1565 " - HAS_ACL_CHECK for the ACL().check function\n"
1566 " - HAS_EXTENDED_CHECK for the module-level has_extended function\n"
1567 " - HAS_EQUIV_MODE for the ACL().equiv_mode method\n"
1571 ">>> import posix1e\n"
1572 ">>> acl1 = posix1e.ACL(file=\"file.txt\") \n"
1578 ">>> b = posix1e.ACL(text=\"u::rx,g::-,o::-\")\n"
1584 ">>> b.applyto(\"file.txt\")\n"
1585 ">>> print posix1e.ACL(file=\"file.txt\")\n"
1595 static struct PyModuleDef posix1emodule = {
1596 PyModuleDef_HEAD_INIT,
1603 #define INITERROR return NULL
1606 PyInit_posix1e(void)
1609 #define INITERROR return
1611 void initposix1e(void)
1616 Py_TYPE(&ACL_Type) = &PyType_Type;
1617 if(PyType_Ready(&ACL_Type) < 0)
1621 Py_TYPE(&Entry_Type) = &PyType_Type;
1622 if(PyType_Ready(&Entry_Type) < 0)
1625 Py_TYPE(&Permset_Type) = &PyType_Type;
1626 if(PyType_Ready(&Permset_Type) < 0)
1631 m = PyModule_Create(&posix1emodule);
1633 m = Py_InitModule3("posix1e", aclmodule_methods, __posix1e_doc__);
1638 d = PyModule_GetDict(m);
1642 Py_INCREF(&ACL_Type);
1643 if (PyDict_SetItemString(d, "ACL",
1644 (PyObject *) &ACL_Type) < 0)
1647 /* 23.3.6 acl_type_t values */
1648 PyModule_AddIntConstant(m, "ACL_TYPE_ACCESS", ACL_TYPE_ACCESS);
1649 PyModule_AddIntConstant(m, "ACL_TYPE_DEFAULT", ACL_TYPE_DEFAULT);
1653 Py_INCREF(&Entry_Type);
1654 if (PyDict_SetItemString(d, "Entry",
1655 (PyObject *) &Entry_Type) < 0)
1658 Py_INCREF(&Permset_Type);
1659 if (PyDict_SetItemString(d, "Permset",
1660 (PyObject *) &Permset_Type) < 0)
1663 /* 23.2.2 acl_perm_t values */
1664 PyModule_AddIntConstant(m, "ACL_READ", ACL_READ);
1665 PyModule_AddIntConstant(m, "ACL_WRITE", ACL_WRITE);
1666 PyModule_AddIntConstant(m, "ACL_EXECUTE", ACL_EXECUTE);
1668 /* 23.2.5 acl_tag_t values */
1669 PyModule_AddIntConstant(m, "ACL_UNDEFINED_TAG", ACL_UNDEFINED_TAG);
1670 PyModule_AddIntConstant(m, "ACL_USER_OBJ", ACL_USER_OBJ);
1671 PyModule_AddIntConstant(m, "ACL_USER", ACL_USER);
1672 PyModule_AddIntConstant(m, "ACL_GROUP_OBJ", ACL_GROUP_OBJ);
1673 PyModule_AddIntConstant(m, "ACL_GROUP", ACL_GROUP);
1674 PyModule_AddIntConstant(m, "ACL_MASK", ACL_MASK);
1675 PyModule_AddIntConstant(m, "ACL_OTHER", ACL_OTHER);
1677 /* Document extended functionality via easy-to-use constants */
1678 PyModule_AddIntConstant(m, "HAS_ACL_ENTRY", 1);
1680 PyModule_AddIntConstant(m, "HAS_ACL_ENTRY", 0);
1684 /* Linux libacl specific acl_to_any_text constants */
1685 PyModule_AddIntConstant(m, "TEXT_ABBREVIATE", TEXT_ABBREVIATE);
1686 PyModule_AddIntConstant(m, "TEXT_NUMERIC_IDS", TEXT_NUMERIC_IDS);
1687 PyModule_AddIntConstant(m, "TEXT_SOME_EFFECTIVE", TEXT_SOME_EFFECTIVE);
1688 PyModule_AddIntConstant(m, "TEXT_ALL_EFFECTIVE", TEXT_ALL_EFFECTIVE);
1689 PyModule_AddIntConstant(m, "TEXT_SMART_INDENT", TEXT_SMART_INDENT);
1691 /* Linux libacl specific acl_check constants */
1692 PyModule_AddIntConstant(m, "ACL_MULTI_ERROR", ACL_MULTI_ERROR);
1693 PyModule_AddIntConstant(m, "ACL_DUPLICATE_ERROR", ACL_DUPLICATE_ERROR);
1694 PyModule_AddIntConstant(m, "ACL_MISS_ERROR", ACL_MISS_ERROR);
1695 PyModule_AddIntConstant(m, "ACL_ENTRY_ERROR", ACL_ENTRY_ERROR);
1697 /* declare the Linux extensions */
1698 PyModule_AddIntConstant(m, "HAS_ACL_FROM_MODE", 1);
1699 PyModule_AddIntConstant(m, "HAS_ACL_CHECK", 1);
1700 PyModule_AddIntConstant(m, "HAS_EXTENDED_CHECK", 1);
1701 PyModule_AddIntConstant(m, "HAS_EQUIV_MODE", 1);
1703 PyModule_AddIntConstant(m, "HAS_ACL_FROM_MODE", 0);
1704 PyModule_AddIntConstant(m, "HAS_ACL_CHECK", 0);
1705 PyModule_AddIntConstant(m, "HAS_EXTENDED_CHECK", 0);
1706 PyModule_AddIntConstant(m, "HAS_EQUIV_MODE", 0);