2 posix1e - a python module exposing the posix acl functions
4 Copyright (C) 2002-2008 Iustin Pop <iusty@k1024.org>
6 This library is free software; you can redistribute it and/or
7 modify it under the terms of the GNU Lesser General Public
8 License as published by the Free Software Foundation; either
9 version 2.1 of the License, or (at your option) any later version.
11 This library is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
16 You should have received a copy of the GNU Lesser General Public
17 License along with this library; if not, write to the Free Software
18 Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
25 #include <sys/types.h>
29 #include <acl/libacl.h>
30 #define get_perm acl_get_perm
32 #define get_perm acl_get_perm_np
35 #if PY_MAJOR_VERSION >= 3
37 #define PyInt_Check(op) PyLong_Check(op)
38 #define PyInt_FromString PyLong_FromString
39 #define PyInt_FromUnicode PyLong_FromUnicode
40 #define PyInt_FromLong PyLong_FromLong
41 #define PyInt_FromSize_t PyLong_FromSize_t
42 #define PyInt_FromSsize_t PyLong_FromSsize_t
43 #define PyInt_AsLong PyLong_AsLong
44 #define PyInt_AsSsize_t PyLong_AsSsize_t
45 #define PyInt_AsUnsignedLongMask PyLong_AsUnsignedLongMask
46 #define PyInt_AsUnsignedLongLongMask PyLong_AsUnsignedLongLongMask
47 #define PyInt_AS_LONG PyLong_AS_LONG
49 #define PyBytes_Check PyString_Check
50 #define PyBytes_AS_STRING PyString_AS_STRING
51 #define PyBytes_FromStringAndSize PyString_FromStringAndSize
52 #define PyBytes_FromString PyString_FromString
53 #define PyBytes_FromFormat PyString_FromFormat
54 #define PyBytes_ConcatAndDel PyString_ConcatAndDel
56 #define Py_TYPE(o) (((PyObject*)(o))->ob_type)
59 static PyTypeObject ACL_Type;
60 static PyObject* ACL_applyto(PyObject* obj, PyObject* args);
61 static PyObject* ACL_valid(PyObject* obj, PyObject* args);
63 #ifdef HAVE_ACL_COPY_EXT
64 static PyObject* ACL_get_state(PyObject *obj, PyObject* args);
65 static PyObject* ACL_set_state(PyObject *obj, PyObject* args);
69 static PyTypeObject Entry_Type;
70 static PyTypeObject Permset_Type;
71 static PyObject* Permset_new(PyTypeObject* type, PyObject* args,
75 static acl_perm_t holder_ACL_EXECUTE = ACL_EXECUTE;
76 static acl_perm_t holder_ACL_READ = ACL_READ;
77 static acl_perm_t holder_ACL_WRITE = ACL_WRITE;
91 PyObject *parent_acl; /* The parent acl, so it won't run out on us */
97 PyObject *parent_entry; /* The parent entry, so it won't run out on us */
98 acl_permset_t permset;
103 /* Creation of a new ACL instance */
104 static PyObject* ACL_new(PyTypeObject* type, PyObject* args,
108 newacl = type->tp_alloc(type, 0);
111 ((ACL_Object*)newacl)->acl = NULL;
113 ((ACL_Object*)newacl)->entry_id = ACL_FIRST_ENTRY;
120 /* Initialization of a new ACL instance */
121 static int ACL_init(PyObject* obj, PyObject* args, PyObject *keywds) {
122 ACL_Object* self = (ACL_Object*) obj;
124 static char *kwlist[] = { "file", "fd", "text", "acl", "filedef",
126 char *format = "|etisO!sH";
129 static char *kwlist[] = { "file", "fd", "text", "acl", "filedef", NULL };
130 char *format = "|etisO!s";
133 char *filedef = NULL;
136 ACL_Object* thesrc = NULL;
138 if(!PyTuple_Check(args) || PyTuple_Size(args) != 0 ||
139 (keywds != NULL && PyDict_Check(keywds) && PyDict_Size(keywds) > 1)) {
140 PyErr_SetString(PyExc_ValueError, "a max of one keyword argument"
144 if(!PyArg_ParseTupleAndKeywords(args, keywds, format, kwlist,
145 NULL, &file, &fd, &text, &ACL_Type,
153 /* Free the old acl_t without checking for error, we don't
155 if(self->acl != NULL)
159 self->acl = acl_get_file(file, ACL_TYPE_ACCESS);
160 else if(text != NULL)
161 self->acl = acl_from_text(text);
163 self->acl = acl_get_fd(fd);
164 else if(thesrc != NULL)
165 self->acl = acl_dup(thesrc->acl);
166 else if(filedef != NULL)
167 self->acl = acl_get_file(filedef, ACL_TYPE_DEFAULT);
169 else if(PyMapping_HasKeyString(keywds, kwlist[5]))
170 self->acl = acl_from_mode(mode);
173 self->acl = acl_init(0);
175 if(self->acl == NULL) {
176 PyErr_SetFromErrno(PyExc_IOError);
183 /* Standard type functions */
184 static void ACL_dealloc(PyObject* obj) {
185 ACL_Object *self = (ACL_Object*) obj;
186 PyObject *err_type, *err_value, *err_traceback;
187 int have_error = PyErr_Occurred() ? 1 : 0;
190 PyErr_Fetch(&err_type, &err_value, &err_traceback);
191 if(self->acl != NULL && acl_free(self->acl) != 0)
192 PyErr_WriteUnraisable(obj);
194 PyErr_Restore(err_type, err_value, err_traceback);
198 /* Converts the acl to a text format */
199 static PyObject* ACL_str(PyObject *obj) {
201 ACL_Object *self = (ACL_Object*) obj;
204 text = acl_to_text(self->acl, NULL);
206 return PyErr_SetFromErrno(PyExc_IOError);
208 ret = PyBytes_FromString(text);
209 if(acl_free(text) != 0) {
211 return PyErr_SetFromErrno(PyExc_IOError);
217 static char __to_any_text_doc__[] =
218 "Convert the ACL to a custom text format.\n"
220 "This method encapsulates the acl_to_any_text function. It allows a \n"
221 "customized text format to be generated for the ACL. See\n"
222 "acl_to_any_text(3) for more details.\n"
225 " - prefix: if given, this string will be prepended to all lines\n"
226 " - separator: a single character (defaults to '\\n'); this will be\n"
227 " user to separate the entries in the ACL\n"
228 " - options: a bitwise combination of:\n"
229 " - TEXT_ABBREVIATE: use 'u' instead of 'user', 'g' instead of \n"
231 " - TEXT_NUMERIC_IDS: User and group IDs are included as decimal\n"
232 " numbers instead of names\n"
233 " - TEXT_SOME_EFFECTIVE: Include comments denoting the effective\n"
234 " permissions when some are masked\n"
235 " - TEXT_ALL_EFFECTIVE: Include comments after all ACL entries\n"
236 " affected by an ACL_MASK entry\n"
237 " - TEXT_SMART_INDENT: Used in combination with the _EFFECTIVE\n"
238 " options, this will ensure that comments \n"
239 " are alligned to the fourth tab position\n"
240 " (assuming one tab equals eight spaces)\n"
243 /* Converts the acl to a custom text format */
244 static PyObject* ACL_to_any_text(PyObject *obj, PyObject *args,
247 ACL_Object *self = (ACL_Object*) obj;
249 char *arg_prefix = NULL;
250 char arg_separator = '\n';
252 static char *kwlist[] = {"prefix", "separator", "options", NULL};
254 if (!PyArg_ParseTupleAndKeywords(args, kwds, "|sci", kwlist, &arg_prefix,
255 &arg_separator, &arg_options))
258 text = acl_to_any_text(self->acl, arg_prefix, arg_separator, arg_options);
260 return PyErr_SetFromErrno(PyExc_IOError);
262 ret = PyBytes_FromString(text);
263 if(acl_free(text) != 0) {
265 return PyErr_SetFromErrno(PyExc_IOError);
270 static char __check_doc__[] =
271 "Check the ACL validity.\n"
273 "This is a non-portable, Linux specific extension that allow more\n"
274 "information to be retrieved in case an ACL is not valid than the\n"
275 "validate() method.\n"
277 "This method will return either False (the ACL is valid), or a tuple\n"
278 "with two elements. The first element is one of the following\n"
280 " - ACL_MULTI_ERROR: The ACL contains multiple entries that have a\n"
281 " tag type that may occur at most once\n"
282 " - ACL_DUPLICATE_ERROR: The ACL contains multiple ACL_USER or \n"
283 " ACL_GROUP entries with the same ID\n"
284 " - ACL_MISS_ERROR: A required entry is missing\n"
285 " - ACL_ENTRY_ERROR: The ACL contains an invalid entry tag type\n"
287 "The second element of the tuple is the index of the entry that is\n"
288 "invalid (in the same order as by iterating over the ACL entry)\n"
291 /* The acl_check method */
292 static PyObject* ACL_check(PyObject* obj, PyObject* args) {
293 ACL_Object *self = (ACL_Object*) obj;
297 if((result = acl_check(self->acl, &eindex)) == -1)
298 return PyErr_SetFromErrno(PyExc_IOError);
303 return PyTuple_Pack(2, PyInt_FromLong(result), PyInt_FromLong(eindex));
306 /* Implementation of the rich compare for ACLs */
307 static PyObject* ACL_richcompare(PyObject* o1, PyObject* o2, int op) {
308 ACL_Object *acl1, *acl2;
312 if(!PyObject_IsInstance(o2, (PyObject*)&ACL_Type)) {
317 PyErr_SetString(PyExc_TypeError, "can only compare to an ACL");
321 acl1 = (ACL_Object*)o1;
322 acl2 = (ACL_Object*)o2;
323 if((n=acl_cmp(acl1->acl, acl2->acl))==-1)
324 return PyErr_SetFromErrno(PyExc_IOError);
327 ret = n == 0 ? Py_True : Py_False;
330 ret = n == 1 ? Py_True : Py_False;
333 ret = Py_NotImplemented;
339 static char __equiv_mode_doc__[] =
340 "Return the octal mode the ACL is equivalent to.\n"
342 "This is a non-portable, Linux specific extension that checks\n"
343 "if the ACL is a basic ACL and returns the corresponding mode.\n"
345 "An IOerror exception will be raised if the ACL is an extended ACL\n"
348 /* The acl_equiv_mode method */
349 static PyObject* ACL_equiv_mode(PyObject* obj, PyObject* args) {
350 ACL_Object *self = (ACL_Object*) obj;
353 if(acl_equiv_mode(self->acl, &mode) == -1)
354 return PyErr_SetFromErrno(PyExc_IOError);
355 return PyInt_FromLong(mode);
359 /* Implementation of the compare for ACLs */
360 static int ACL_nocmp(PyObject* o1, PyObject* o2) {
362 PyErr_SetString(PyExc_TypeError, "cannot compare ACLs using cmp()");
367 static char __applyto_doc__[] =
368 "Apply the ACL to a file or filehandle.\n"
371 " - either a filename or a file-like object or an integer; this\n"
372 " represents the filesystem object on which to act\n"
373 " - optional flag representing the type of ACL to set, either\n"
374 " ACL_TYPE_ACCESS (default) or ACL_TYPE_DEFAULT\n"
377 /* Applyes the ACL to a file */
378 static PyObject* ACL_applyto(PyObject* obj, PyObject* args) {
379 ACL_Object *self = (ACL_Object*) obj;
381 acl_type_t type = ACL_TYPE_ACCESS;
385 if (!PyArg_ParseTuple(args, "O|i", &myarg, &type))
388 if(PyBytes_Check(myarg)) {
389 char *filename = PyBytes_AS_STRING(myarg);
390 nret = acl_set_file(filename, type, self->acl);
391 } else if (PyUnicode_Check(myarg)) {
393 PyUnicode_AsEncodedString(myarg,
394 Py_FileSystemDefaultEncoding, "strict");
397 const char *filename = PyBytes_AS_STRING(o);
398 nret = acl_set_file(filename, type, self->acl);
400 } else if((fd = PyObject_AsFileDescriptor(myarg)) != -1) {
401 nret = acl_set_fd(fd, self->acl);
403 PyErr_SetString(PyExc_TypeError, "argument 1 must be string, int,"
404 " or file-like object");
408 return PyErr_SetFromErrno(PyExc_IOError);
411 /* Return the result */
416 static char __valid_doc__[] =
417 "Test the ACL for validity.\n"
419 "This method tests the ACL to see if it is a valid ACL\n"
420 "in terms of the filesystem. More precisely, it checks that:\n"
422 "The ACL contains exactly one entry with each of the\n"
423 "ACL_USER_OBJ, ACL_GROUP_OBJ, and ACL_OTHER tag types. Entries\n"
424 "with ACL_USER and ACL_GROUP tag types may appear zero or more\n"
425 "times in an ACL. An ACL that contains entries of ACL_USER or\n"
426 "ACL_GROUP tag types must contain exactly one entry of the \n"
427 "ACL_MASK tag type. If an ACL contains no entries of\n"
428 "ACL_USER or ACL_GROUP tag types, the ACL_MASK entry is optional.\n"
430 "All user ID qualifiers must be unique among all entries of\n"
431 "the ACL_USER tag type, and all group IDs must be unique among all\n"
432 "entries of ACL_GROUP tag type.\n"
434 "The method will return 1 for a valid ACL and 0 for an invalid one.\n"
435 "This has been chosen because the specification for acl_valid in\n"
436 "the POSIX.1e standard documents only one possible value for errno\n"
437 "in case of an invalid ACL, so we can't differentiate between\n"
438 "classes of errors. Other suggestions are welcome.\n"
441 /* Checks the ACL for validity */
442 static PyObject* ACL_valid(PyObject* obj, PyObject* args) {
443 ACL_Object *self = (ACL_Object*) obj;
445 if(acl_valid(self->acl) == -1) {
454 #ifdef HAVE_ACL_COPY_EXT
455 static PyObject* ACL_get_state(PyObject *obj, PyObject* args) {
456 ACL_Object *self = (ACL_Object*) obj;
461 size = acl_size(self->acl);
463 return PyErr_SetFromErrno(PyExc_IOError);
465 if((ret = PyBytes_FromStringAndSize(NULL, size)) == NULL)
467 buf = PyBytes_AsString(ret);
469 if((nsize = acl_copy_ext(buf, self->acl, size)) == -1) {
471 return PyErr_SetFromErrno(PyExc_IOError);
477 static PyObject* ACL_set_state(PyObject *obj, PyObject* args) {
478 ACL_Object *self = (ACL_Object*) obj;
483 /* Parse the argument */
484 if (!PyArg_ParseTuple(args, "s#", &buf, &bufsize))
487 /* Try to import the external representation */
488 if((ptr = acl_copy_int(buf)) == NULL)
489 return PyErr_SetFromErrno(PyExc_IOError);
491 /* Free the old acl. Should we ignore errors here? */
492 if(self->acl != NULL) {
493 if(acl_free(self->acl) == -1)
494 return PyErr_SetFromErrno(PyExc_IOError);
499 /* Return the result */
507 /* tp_iter for the ACL type; since it can be iterated only
508 * destructively, the type is its iterator
510 static PyObject* ACL_iter(PyObject *obj) {
511 ACL_Object *self = (ACL_Object*)obj;
512 self->entry_id = ACL_FIRST_ENTRY;
517 /* the tp_iternext function for the ACL type */
518 static PyObject* ACL_iternext(PyObject *obj) {
519 ACL_Object *self = (ACL_Object*)obj;
520 acl_entry_t the_entry_t;
521 Entry_Object *the_entry_obj;
524 nerr = acl_get_entry(self->acl, self->entry_id, &the_entry_t);
525 self->entry_id = ACL_NEXT_ENTRY;
527 return PyErr_SetFromErrno(PyExc_IOError);
529 /* Docs says this is not needed */
530 /*PyErr_SetObject(PyExc_StopIteration, Py_None);*/
534 the_entry_obj = (Entry_Object*) PyType_GenericNew(&Entry_Type, NULL, NULL);
535 if(the_entry_obj == NULL)
538 the_entry_obj->entry = the_entry_t;
540 the_entry_obj->parent_acl = obj;
541 Py_INCREF(obj); /* For the reference we have in entry->parent */
543 return (PyObject*)the_entry_obj;
546 static char __ACL_delete_entry_doc__[] =
547 "Deletes an entry from the ACL.\n"
549 "Note: Only with level 2\n"
551 " - the Entry object which should be deleted; note that after\n"
552 " this function is called, that object is unusable any longer\n"
553 " and should be deleted\n"
556 /* Deletes an entry from the ACL */
557 static PyObject* ACL_delete_entry(PyObject *obj, PyObject *args) {
558 ACL_Object *self = (ACL_Object*)obj;
561 if (!PyArg_ParseTuple(args, "O!", &Entry_Type, &e))
564 if(acl_delete_entry(self->acl, e->entry) == -1)
565 return PyErr_SetFromErrno(PyExc_IOError);
567 /* Return the result */
572 static char __ACL_calc_mask_doc__[] =
573 "Compute the file group class mask.\n"
575 "The calc_mask() method calculates and sets the permissions \n"
576 "associated with the ACL_MASK Entry of the ACL.\n"
577 "The value of the new permissions is the union of the permissions \n"
578 "granted by all entries of tag type ACL_GROUP, ACL_GROUP_OBJ, or \n"
579 "ACL_USER. If the ACL already contains an ACL_MASK entry, its \n"
580 "permissions are overwritten; if it does not contain an ACL_MASK \n"
581 "Entry, one is added.\n"
583 "The order of existing entries in the ACL is undefined after this \n"
587 /* Updates the mask entry in the ACL */
588 static PyObject* ACL_calc_mask(PyObject *obj, PyObject *args) {
589 ACL_Object *self = (ACL_Object*)obj;
591 if(acl_calc_mask(&self->acl) == -1)
592 return PyErr_SetFromErrno(PyExc_IOError);
594 /* Return the result */
599 static char __ACL_append_doc__[] =
600 "Append a new Entry to the ACL and return it.\n"
602 "This is a convenience function to create a new Entry \n"
603 "and append it to the ACL.\n"
604 "If a parameter of type Entry instance is given, the \n"
605 "entry will be a copy of that one (as if copied with \n"
606 "Entry.copy()), otherwise, the new entry will be empty.\n"
609 /* Convenience method to create a new Entry */
610 static PyObject* ACL_append(PyObject *obj, PyObject *args) {
611 ACL_Object* self = (ACL_Object*) obj;
612 Entry_Object* newentry;
613 Entry_Object* oldentry = NULL;
616 newentry = (Entry_Object*)PyType_GenericNew(&Entry_Type, NULL, NULL);
617 if(newentry == NULL) {
621 if (!PyArg_ParseTuple(args, "|O!", &Entry_Type, &oldentry))
624 nret = acl_create_entry(&self->acl, &newentry->entry);
627 return PyErr_SetFromErrno(PyExc_IOError);
630 if(oldentry != NULL) {
631 nret = acl_copy_entry(newentry->entry, oldentry->entry);
634 return PyErr_SetFromErrno(PyExc_IOError);
638 newentry->parent_acl = obj;
641 return (PyObject*)newentry;
644 /***** Entry type *****/
646 /* Creation of a new Entry instance */
647 static PyObject* Entry_new(PyTypeObject* type, PyObject* args,
651 newentry = PyType_GenericNew(type, args, keywds);
653 if(newentry != NULL) {
654 ((Entry_Object*)newentry)->entry = NULL;
655 ((Entry_Object*)newentry)->parent_acl = NULL;
661 /* Initialization of a new Entry instance */
662 static int Entry_init(PyObject* obj, PyObject* args, PyObject *keywds) {
663 Entry_Object* self = (Entry_Object*) obj;
664 ACL_Object* parent = NULL;
666 if (!PyArg_ParseTuple(args, "O!", &ACL_Type, &parent))
669 if(acl_create_entry(&parent->acl, &self->entry) == -1) {
670 PyErr_SetFromErrno(PyExc_IOError);
674 self->parent_acl = (PyObject*)parent;
680 /* Free the Entry instance */
681 static void Entry_dealloc(PyObject* obj) {
682 Entry_Object *self = (Entry_Object*) obj;
683 PyObject *err_type, *err_value, *err_traceback;
684 int have_error = PyErr_Occurred() ? 1 : 0;
687 PyErr_Fetch(&err_type, &err_value, &err_traceback);
688 if(self->parent_acl != NULL) {
689 Py_DECREF(self->parent_acl);
690 self->parent_acl = NULL;
693 PyErr_Restore(err_type, err_value, err_traceback);
697 /* Converts the entry to a text format */
698 static PyObject* Entry_str(PyObject *obj) {
702 PyObject *format, *kind;
703 Entry_Object *self = (Entry_Object*) obj;
705 if(acl_get_tag_type(self->entry, &tag) == -1) {
706 PyErr_SetFromErrno(PyExc_IOError);
709 if(tag == ACL_USER || tag == ACL_GROUP) {
710 if((p = acl_get_qualifier(self->entry)) == NULL) {
711 PyErr_SetFromErrno(PyExc_IOError);
714 qualifier = *(uid_t*)p;
720 format = PyBytes_FromString("ACL entry for ");
723 if(tag == ACL_UNDEFINED_TAG) {
724 kind = PyBytes_FromString("undefined type");
725 } else if(tag == ACL_USER_OBJ) {
726 kind = PyBytes_FromString("the owner");
727 } else if(tag == ACL_GROUP_OBJ) {
728 kind = PyBytes_FromString("the group");
729 } else if(tag == ACL_OTHER) {
730 kind = PyBytes_FromString("the others");
731 } else if(tag == ACL_USER) {
732 kind = PyBytes_FromFormat("user with uid %d", qualifier);
733 } else if(tag == ACL_GROUP) {
734 kind = PyBytes_FromFormat("group with gid %d", qualifier);
735 } else if(tag == ACL_MASK) {
736 kind = PyBytes_FromString("the mask");
738 kind = PyBytes_FromString("UNKNOWN_TAG_TYPE!");
742 PyBytes_ConcatAndDel(&format, kind);
747 /* Sets the tag type of the entry */
748 static int Entry_set_tag_type(PyObject* obj, PyObject* value, void* arg) {
749 Entry_Object *self = (Entry_Object*) obj;
752 PyErr_SetString(PyExc_TypeError,
753 "tag type deletion is not supported");
757 if(!PyInt_Check(value)) {
758 PyErr_SetString(PyExc_TypeError,
759 "tag type must be integer");
762 if(acl_set_tag_type(self->entry, (acl_tag_t)PyInt_AsLong(value)) == -1) {
763 PyErr_SetFromErrno(PyExc_IOError);
770 /* Returns the tag type of the entry */
771 static PyObject* Entry_get_tag_type(PyObject *obj, void* arg) {
772 Entry_Object *self = (Entry_Object*) obj;
775 if (self->entry == NULL) {
776 PyErr_SetString(PyExc_AttributeError, "entry attribute");
779 if(acl_get_tag_type(self->entry, &value) == -1) {
780 PyErr_SetFromErrno(PyExc_IOError);
784 return PyInt_FromLong(value);
787 /* Sets the qualifier (either uid_t or gid_t) for the entry,
788 * usable only if the tag type if ACL_USER or ACL_GROUP
790 static int Entry_set_qualifier(PyObject* obj, PyObject* value, void* arg) {
791 Entry_Object *self = (Entry_Object*) obj;
795 PyErr_SetString(PyExc_TypeError,
796 "qualifier deletion is not supported");
800 if(!PyInt_Check(value)) {
801 PyErr_SetString(PyExc_TypeError,
802 "tag type must be integer");
805 uidgid = PyInt_AsLong(value);
806 if(acl_set_qualifier(self->entry, (void*)&uidgid) == -1) {
807 PyErr_SetFromErrno(PyExc_IOError);
814 /* Returns the qualifier of the entry */
815 static PyObject* Entry_get_qualifier(PyObject *obj, void* arg) {
816 Entry_Object *self = (Entry_Object*) obj;
820 if (self->entry == NULL) {
821 PyErr_SetString(PyExc_AttributeError, "entry attribute");
824 if((p = acl_get_qualifier(self->entry)) == NULL) {
825 PyErr_SetFromErrno(PyExc_IOError);
831 return PyInt_FromLong(value);
834 /* Returns the parent ACL of the entry */
835 static PyObject* Entry_get_parent(PyObject *obj, void* arg) {
836 Entry_Object *self = (Entry_Object*) obj;
838 Py_INCREF(self->parent_acl);
839 return self->parent_acl;
842 /* Returns the a new Permset representing the permset of the entry
843 * FIXME: Should return a new reference to the same object, which
844 * should be created at init time!
846 static PyObject* Entry_get_permset(PyObject *obj, void* arg) {
847 Entry_Object *self = (Entry_Object*)obj;
851 p = Permset_new(&Permset_Type, NULL, NULL);
854 ps = (Permset_Object*)p;
855 if(acl_get_permset(self->entry, &ps->permset) == -1) {
856 PyErr_SetFromErrno(PyExc_IOError);
859 ps->parent_entry = obj;
865 /* Sets the permset of the entry to the passed Permset */
866 static int Entry_set_permset(PyObject* obj, PyObject* value, void* arg) {
867 Entry_Object *self = (Entry_Object*)obj;
870 if(!PyObject_IsInstance(value, (PyObject*)&Permset_Type)) {
871 PyErr_SetString(PyExc_TypeError, "argument 1 must be posix1e.Permset");
874 p = (Permset_Object*)value;
875 if(acl_set_permset(self->entry, p->permset) == -1) {
876 PyErr_SetFromErrno(PyExc_IOError);
882 static char __Entry_copy_doc__[] =
883 "Copy an ACL entry.\n"
885 "This method sets all the parameters to those of another\n"
886 "entry, even one of another's ACL\n"
888 " - src, instance of type Entry\n"
891 /* Sets all the entry parameters to another's entry */
892 static PyObject* Entry_copy(PyObject *obj, PyObject *args) {
893 Entry_Object *self = (Entry_Object*)obj;
896 if(!PyArg_ParseTuple(args, "O!", &Entry_Type, &other))
899 if(acl_copy_entry(self->entry, other->entry) == -1)
900 return PyErr_SetFromErrno(PyExc_IOError);
906 /**** Permset type *****/
908 /* Creation of a new Permset instance */
909 static PyObject* Permset_new(PyTypeObject* type, PyObject* args,
911 PyObject* newpermset;
913 newpermset = PyType_GenericNew(type, args, keywds);
915 if(newpermset != NULL) {
916 ((Permset_Object*)newpermset)->permset = NULL;
917 ((Permset_Object*)newpermset)->parent_entry = NULL;
923 /* Initialization of a new Permset instance */
924 static int Permset_init(PyObject* obj, PyObject* args, PyObject *keywds) {
925 Permset_Object* self = (Permset_Object*) obj;
926 Entry_Object* parent = NULL;
928 if (!PyArg_ParseTuple(args, "O!", &Entry_Type, &parent))
931 if(acl_get_permset(parent->entry, &self->permset) == -1) {
932 PyErr_SetFromErrno(PyExc_IOError);
936 self->parent_entry = (PyObject*)parent;
942 /* Free the Permset instance */
943 static void Permset_dealloc(PyObject* obj) {
944 Permset_Object *self = (Permset_Object*) obj;
945 PyObject *err_type, *err_value, *err_traceback;
946 int have_error = PyErr_Occurred() ? 1 : 0;
949 PyErr_Fetch(&err_type, &err_value, &err_traceback);
950 if(self->parent_entry != NULL) {
951 Py_DECREF(self->parent_entry);
952 self->parent_entry = NULL;
955 PyErr_Restore(err_type, err_value, err_traceback);
959 /* Permset string representation */
960 static PyObject* Permset_str(PyObject *obj) {
961 Permset_Object *self = (Permset_Object*) obj;
964 pstr[0] = get_perm(self->permset, ACL_READ) ? 'r' : '-';
965 pstr[1] = get_perm(self->permset, ACL_WRITE) ? 'w' : '-';
966 pstr[2] = get_perm(self->permset, ACL_EXECUTE) ? 'x' : '-';
967 return PyBytes_FromStringAndSize(pstr, 3);
970 static char __Permset_clear_doc__[] =
971 "Clear all permissions from the permission set.\n"
974 /* Clears all permissions from the permset */
975 static PyObject* Permset_clear(PyObject* obj, PyObject* args) {
976 Permset_Object *self = (Permset_Object*) obj;
978 if(acl_clear_perms(self->permset) == -1)
979 return PyErr_SetFromErrno(PyExc_IOError);
981 /* Return the result */
986 static PyObject* Permset_get_right(PyObject *obj, void* arg) {
987 Permset_Object *self = (Permset_Object*) obj;
989 if(get_perm(self->permset, *(acl_perm_t*)arg)) {
998 static int Permset_set_right(PyObject* obj, PyObject* value, void* arg) {
999 Permset_Object *self = (Permset_Object*) obj;
1003 if(!PyInt_Check(value)) {
1004 PyErr_SetString(PyExc_ValueError, "a maximum of one argument must"
1008 on = PyInt_AsLong(value);
1010 nerr = acl_add_perm(self->permset, *(acl_perm_t*)arg);
1012 nerr = acl_delete_perm(self->permset, *(acl_perm_t*)arg);
1014 PyErr_SetFromErrno(PyExc_IOError);
1020 static char __Permset_add_doc__[] =
1021 "Add a permission to the permission set.\n"
1023 "The add() function adds the permission contained in \n"
1024 "the argument perm to the permission set. An attempt \n"
1025 "to add a permission that is already contained in the \n"
1026 "permission set is not considered an error.\n"
1029 " - perm: a permission (ACL_WRITE, ACL_READ, ACL_EXECUTE, ...)\n"
1031 "Return value: None\n"
1033 "Can raise: IOError\n"
1036 static PyObject* Permset_add(PyObject* obj, PyObject* args) {
1037 Permset_Object *self = (Permset_Object*) obj;
1040 if (!PyArg_ParseTuple(args, "i", &right))
1043 if(acl_add_perm(self->permset, (acl_perm_t) right) == -1)
1044 return PyErr_SetFromErrno(PyExc_IOError);
1046 /* Return the result */
1051 static char __Permset_delete_doc__[] =
1052 "Delete a permission from the permission set.\n"
1054 "The delete() function deletes the permission contained in \n"
1055 "the argument perm from the permission set. An attempt \n"
1056 "to delete a permission that is not contained in the \n"
1057 "permission set is not considered an error.\n"
1059 " - perm a permission (ACL_WRITE, ACL_READ, ACL_EXECUTE, ...)\n"
1060 "Return value: None\n"
1062 "Can raise: IOError\n"
1065 static PyObject* Permset_delete(PyObject* obj, PyObject* args) {
1066 Permset_Object *self = (Permset_Object*) obj;
1069 if (!PyArg_ParseTuple(args, "i", &right))
1072 if(acl_delete_perm(self->permset, (acl_perm_t) right) == -1)
1073 return PyErr_SetFromErrno(PyExc_IOError);
1075 /* Return the result */
1080 static char __Permset_test_doc__[] =
1081 "Test if a permission exists in the permission set.\n"
1083 "The test() function tests if the permission contained in \n"
1084 "the argument perm exits the permission set.\n"
1086 " - perm a permission (ACL_WRITE, ACL_READ, ACL_EXECUTE, ...)\n"
1087 "Return value: Boolean\n"
1089 "Can raise: IOError\n"
1092 static PyObject* Permset_test(PyObject* obj, PyObject* args) {
1093 Permset_Object *self = (Permset_Object*) obj;
1097 if (!PyArg_ParseTuple(args, "i", &right))
1100 ret = get_perm(self->permset, (acl_perm_t) right);
1102 return PyErr_SetFromErrno(PyExc_IOError);
1108 Py_INCREF(Py_False);
1115 static char __ACL_Type_doc__[] =
1116 "Type which represents a POSIX ACL\n"
1118 "Parameters (only one keword parameter should be provided):\n"
1119 " - file=\"...\", meaning create ACL representing\n"
1120 " the access ACL of that file\n"
1121 " - filedef=\"...\", meaning create ACL representing\n"
1122 " the default ACL of that directory\n"
1123 " - fd=<int>, meaning create ACL representing\n"
1124 " the access ACL of that file descriptor\n"
1125 " - text=\"...\", meaning create ACL from a \n"
1126 " textual description\n"
1127 " - acl=<ACL instance>, meaning create a copy\n"
1128 " of an existing ACL instance\n"
1129 " - mode=<int>, meaning create an ACL from a numeric mode\n"
1130 " (e.g. mode=0644) (this is valid only when the C library\n"
1131 " provides the acl_from_mode call)\n"
1133 "If no parameters are passed, create an empty ACL; this\n"
1134 "makes sense only when your OS supports ACL modification\n"
1135 "(i.e. it implements full POSIX.1e support)\n"
1138 /* ACL type methods */
1139 static PyMethodDef ACL_methods[] = {
1140 {"applyto", ACL_applyto, METH_VARARGS, __applyto_doc__},
1141 {"valid", ACL_valid, METH_NOARGS, __valid_doc__},
1143 {"to_any_text", (PyCFunction)ACL_to_any_text, METH_VARARGS | METH_KEYWORDS,
1144 __to_any_text_doc__},
1145 {"check", ACL_check, METH_NOARGS, __check_doc__},
1146 {"equiv_mode", ACL_equiv_mode, METH_NOARGS, __equiv_mode_doc__},
1148 #ifdef HAVE_ACL_COPYEXT
1149 {"__getstate__", ACL_get_state, METH_NOARGS,
1150 "Dumps the ACL to an external format."},
1151 {"__setstate__", ACL_set_state, METH_VARARGS,
1152 "Loads the ACL from an external format."},
1155 {"delete_entry", ACL_delete_entry, METH_VARARGS, __ACL_delete_entry_doc__},
1156 {"calc_mask", ACL_calc_mask, METH_NOARGS, __ACL_calc_mask_doc__},
1157 {"append", ACL_append, METH_VARARGS, __ACL_append_doc__},
1159 {NULL, NULL, 0, NULL}
1163 /* The definition of the ACL Type */
1164 static PyTypeObject ACL_Type = {
1166 PyVarObject_HEAD_INIT(NULL, 0)
1168 PyObject_HEAD_INIT(NULL)
1174 ACL_dealloc, /* tp_dealloc */
1178 ACL_nocmp, /* tp_compare */
1180 0, /* tp_as_number */
1181 0, /* tp_as_sequence */
1182 0, /* tp_as_mapping */
1185 ACL_str, /* tp_str */
1186 0, /* tp_getattro */
1187 0, /* tp_setattro */
1188 0, /* tp_as_buffer */
1189 Py_TPFLAGS_DEFAULT, /* tp_flags */
1190 __ACL_Type_doc__, /* tp_doc */
1191 0, /* tp_traverse */
1194 ACL_richcompare, /* tp_richcompare */
1196 0, /* tp_richcompare */
1198 0, /* tp_weaklistoffset */
1204 0, /* tp_iternext */
1206 ACL_methods, /* tp_methods */
1211 0, /* tp_descr_get */
1212 0, /* tp_descr_set */
1213 0, /* tp_dictoffset */
1214 ACL_init, /* tp_init */
1216 ACL_new, /* tp_new */
1221 /* Entry type methods */
1222 static PyMethodDef Entry_methods[] = {
1223 {"copy", Entry_copy, METH_VARARGS, __Entry_copy_doc__},
1224 {NULL, NULL, 0, NULL}
1227 static char __Entry_tagtype_doc__[] =
1228 "The tag type of the current entry\n"
1231 " - ACL_UNDEFINED_TAG\n"
1234 " - ACL_GROUP_OBJ\n"
1240 static char __Entry_qualifier_doc__[] =
1241 "The qualifier of the current entry\n"
1243 "If the tag type is ACL_USER, this should be a user id.\n"
1244 "If the tag type if ACL_GROUP, this should be a group id.\n"
1245 "Else, it doesn't matter.\n"
1248 static char __Entry_parent_doc__[] =
1249 "The parent ACL of this entry\n"
1252 static char __Entry_permset_doc__[] =
1253 "The permission set of this ACL entry\n"
1257 static PyGetSetDef Entry_getsets[] = {
1258 {"tag_type", Entry_get_tag_type, Entry_set_tag_type,
1259 __Entry_tagtype_doc__},
1260 {"qualifier", Entry_get_qualifier, Entry_set_qualifier,
1261 __Entry_qualifier_doc__},
1262 {"parent", Entry_get_parent, NULL, __Entry_parent_doc__},
1263 {"permset", Entry_get_permset, Entry_set_permset, __Entry_permset_doc__},
1267 static char __Entry_Type_doc__[] =
1268 "Type which represents an entry in an ACL.\n"
1270 "The type exists only if the OS has full support for POSIX.1e\n"
1271 "Can be created either by:\n"
1273 " >>> e = posix1e.Entry(myACL) # this creates a new entry in the ACL\n"
1274 " >>> e = myACL.append() # another way for doing the same thing\n"
1277 " >>> for entry in myACL:\n"
1278 " ... print entry\n"
1280 "Note that the Entry keeps a reference to its ACL, so even if \n"
1281 "you delete the ACL, it won't be cleaned up and will continue to \n"
1282 "exist until its Entry(ies) will be deleted.\n"
1284 /* The definition of the Entry Type */
1285 static PyTypeObject Entry_Type = {
1287 PyVarObject_HEAD_INIT(NULL, 0)
1289 PyObject_HEAD_INIT(NULL)
1293 sizeof(Entry_Object),
1295 Entry_dealloc, /* tp_dealloc */
1301 0, /* tp_as_number */
1302 0, /* tp_as_sequence */
1303 0, /* tp_as_mapping */
1306 Entry_str, /* tp_str */
1307 0, /* tp_getattro */
1308 0, /* tp_setattro */
1309 0, /* tp_as_buffer */
1310 Py_TPFLAGS_DEFAULT, /* tp_flags */
1311 __Entry_Type_doc__, /* tp_doc */
1312 0, /* tp_traverse */
1314 0, /* tp_richcompare */
1315 0, /* tp_weaklistoffset */
1317 0, /* tp_iternext */
1318 Entry_methods, /* tp_methods */
1320 Entry_getsets, /* tp_getset */
1323 0, /* tp_descr_get */
1324 0, /* tp_descr_set */
1325 0, /* tp_dictoffset */
1326 Entry_init, /* tp_init */
1328 Entry_new, /* tp_new */
1331 /* Permset type methods */
1332 static PyMethodDef Permset_methods[] = {
1333 {"clear", Permset_clear, METH_NOARGS, __Permset_clear_doc__, },
1334 {"add", Permset_add, METH_VARARGS, __Permset_add_doc__, },
1335 {"delete", Permset_delete, METH_VARARGS, __Permset_delete_doc__, },
1336 {"test", Permset_test, METH_VARARGS, __Permset_test_doc__, },
1337 {NULL, NULL, 0, NULL}
1340 static char __Permset_execute_doc__[] =
1341 "Execute permsission\n"
1343 "This is a convenience method of access; the \n"
1344 "same effect can be achieved using the functions\n"
1345 "add(), test(), delete(), and those can take any \n"
1346 "permission defined by your platform.\n"
1349 static char __Permset_read_doc__[] =
1350 "Read permsission\n"
1352 "This is a convenience method of access; the \n"
1353 "same effect can be achieved using the functions\n"
1354 "add(), test(), delete(), and those can take any \n"
1355 "permission defined by your platform.\n"
1358 static char __Permset_write_doc__[] =
1359 "Write permsission\n"
1361 "This is a convenience method of access; the \n"
1362 "same effect can be achieved using the functions\n"
1363 "add(), test(), delete(), and those can take any \n"
1364 "permission defined by your platform.\n"
1367 /* Permset getset */
1368 static PyGetSetDef Permset_getsets[] = {
1369 {"execute", Permset_get_right, Permset_set_right,
1370 __Permset_execute_doc__, &holder_ACL_EXECUTE},
1371 {"read", Permset_get_right, Permset_set_right,
1372 __Permset_read_doc__, &holder_ACL_READ},
1373 {"write", Permset_get_right, Permset_set_right,
1374 __Permset_write_doc__, &holder_ACL_WRITE},
1378 static char __Permset_Type_doc__[] =
1379 "Type which represents the permission set in an ACL entry\n"
1381 "The type exists only if the OS has full support for POSIX.1e\n"
1382 "Can be retrieved either by:\n\n"
1383 ">>> perms = myEntry.permset\n"
1386 ">>> perms = posix1e.Permset(myEntry)\n"
1388 "Note that the Permset keeps a reference to its Entry, so even if \n"
1389 "you delete the entry, it won't be cleaned up and will continue to \n"
1390 "exist until its Permset will be deleted.\n"
1393 /* The definition of the Permset Type */
1394 static PyTypeObject Permset_Type = {
1396 PyVarObject_HEAD_INIT(NULL, 0)
1398 PyObject_HEAD_INIT(NULL)
1402 sizeof(Permset_Object),
1404 Permset_dealloc, /* tp_dealloc */
1410 0, /* tp_as_number */
1411 0, /* tp_as_sequence */
1412 0, /* tp_as_mapping */
1415 Permset_str, /* tp_str */
1416 0, /* tp_getattro */
1417 0, /* tp_setattro */
1418 0, /* tp_as_buffer */
1419 Py_TPFLAGS_DEFAULT, /* tp_flags */
1420 __Permset_Type_doc__,/* tp_doc */
1421 0, /* tp_traverse */
1423 0, /* tp_richcompare */
1424 0, /* tp_weaklistoffset */
1426 0, /* tp_iternext */
1427 Permset_methods, /* tp_methods */
1429 Permset_getsets, /* tp_getset */
1432 0, /* tp_descr_get */
1433 0, /* tp_descr_set */
1434 0, /* tp_dictoffset */
1435 Permset_init, /* tp_init */
1437 Permset_new, /* tp_new */
1442 /* Module methods */
1444 static char __deletedef_doc__[] =
1445 "Delete the default ACL from a directory.\n"
1447 "This function deletes the default ACL associated with \n"
1448 "a directory (the ACL which will be ANDed with the mode\n"
1449 "parameter to the open, creat functions).\n"
1451 " - a string representing the directory whose default ACL\n"
1452 " should be deleted\n"
1455 /* Deletes the default ACL from a directory */
1456 static PyObject* aclmodule_delete_default(PyObject* obj, PyObject* args) {
1459 /* Parse the arguments */
1460 if (!PyArg_ParseTuple(args, "et", NULL, &filename))
1463 if(acl_delete_def_file(filename) == -1) {
1464 return PyErr_SetFromErrno(PyExc_IOError);
1467 /* Return the result */
1473 static char __has_extended_doc__[] =
1474 "Check if a file or filehandle has an extended ACL.\n"
1477 " - either a filename or a file-like object or an integer; this\n"
1478 " represents the filesystem object on which to act\n"
1481 /* Check for extended ACL a file or fd */
1482 static PyObject* aclmodule_has_extended(PyObject* obj, PyObject* args) {
1487 if (!PyArg_ParseTuple(args, "O", &myarg))
1490 if(PyBytes_Check(myarg)) {
1491 const char *filename = PyBytes_AS_STRING(myarg);
1492 nret = acl_extended_file(filename);
1493 } else if (PyUnicode_Check(myarg)) {
1495 PyUnicode_AsEncodedString(myarg,
1496 Py_FileSystemDefaultEncoding, "strict");
1499 const char *filename = PyBytes_AS_STRING(o);
1500 nret = acl_extended_file(filename);
1502 } else if((fd = PyObject_AsFileDescriptor(myarg)) != -1) {
1503 nret = acl_extended_fd(fd);
1505 PyErr_SetString(PyExc_TypeError, "argument 1 must be string, int,"
1506 " or file-like object");
1510 return PyErr_SetFromErrno(PyExc_IOError);
1513 /* Return the result */
1514 return PyBool_FromLong(nret);
1518 /* The module methods */
1519 static PyMethodDef aclmodule_methods[] = {
1520 {"delete_default", aclmodule_delete_default, METH_VARARGS,
1523 {"has_extended", aclmodule_has_extended, METH_VARARGS,
1524 __has_extended_doc__},
1526 {NULL, NULL, 0, NULL}
1529 static char __posix1e_doc__[] =
1530 "POSIX.1e ACLs manipulation\n"
1532 "This module provides support for manipulating POSIX.1e ACLS\n"
1534 "Depending on the operating system support for POSIX.1e, \n"
1535 "the ACL type will have more or less capabilities:\n"
1536 " - level 1, only basic support, you can create\n"
1537 " ACLs from files and text descriptions;\n"
1538 " once created, the type is immutable\n"
1539 " - level 2, complete support, you can alter\n"
1540 " the ACL once it is created\n"
1542 "Also, in level 2, more types are available, corresponding\n"
1543 "to acl_entry_t (the Entry type), acl_permset_t (the Permset type).\n"
1545 "The existence of level 2 support and other extensions can be\n"
1546 "checked by the constants:\n"
1547 " - HAS_ACL_ENTRY for level 2 and the Entry/Permset classes\n"
1548 " - HAS_ACL_FROM_MODE for ACL(mode=...) usage\n"
1549 " - HAS_ACL_CHECK for the ACL().check function\n"
1550 " - HAS_EXTENDED_CHECK for the module-level has_extended function\n"
1551 " - HAS_EQUIV_MODE for the ACL().equiv_mode method\n"
1555 ">>> import posix1e\n"
1556 ">>> acl1 = posix1e.ACL(file=\"file.txt\") \n"
1562 ">>> b = posix1e.ACL(text=\"u::rx,g::-,o::-\")\n"
1568 ">>> b.applyto(\"file.txt\")\n"
1569 ">>> print posix1e.ACL(file=\"file.txt\")\n"
1579 static struct PyModuleDef posix1emodule = {
1580 PyModuleDef_HEAD_INIT,
1587 #define INITERROR return NULL
1590 PyInit_posix1e(void)
1593 #define INITERROR return
1595 void initposix1e(void)
1600 Py_TYPE(&ACL_Type) = &PyType_Type;
1601 if(PyType_Ready(&ACL_Type) < 0)
1605 Py_TYPE(&Entry_Type) = &PyType_Type;
1606 if(PyType_Ready(&Entry_Type) < 0)
1609 Py_TYPE(&Permset_Type) = &PyType_Type;
1610 if(PyType_Ready(&Permset_Type) < 0)
1615 m = PyModule_Create(&posix1emodule);
1617 m = Py_InitModule3("posix1e", aclmodule_methods, __posix1e_doc__);
1622 d = PyModule_GetDict(m);
1626 Py_INCREF(&ACL_Type);
1627 if (PyDict_SetItemString(d, "ACL",
1628 (PyObject *) &ACL_Type) < 0)
1631 /* 23.3.6 acl_type_t values */
1632 PyModule_AddIntConstant(m, "ACL_TYPE_ACCESS", ACL_TYPE_ACCESS);
1633 PyModule_AddIntConstant(m, "ACL_TYPE_DEFAULT", ACL_TYPE_DEFAULT);
1637 Py_INCREF(&Entry_Type);
1638 if (PyDict_SetItemString(d, "Entry",
1639 (PyObject *) &Entry_Type) < 0)
1642 Py_INCREF(&Permset_Type);
1643 if (PyDict_SetItemString(d, "Permset",
1644 (PyObject *) &Permset_Type) < 0)
1647 /* 23.2.2 acl_perm_t values */
1648 PyModule_AddIntConstant(m, "ACL_READ", ACL_READ);
1649 PyModule_AddIntConstant(m, "ACL_WRITE", ACL_WRITE);
1650 PyModule_AddIntConstant(m, "ACL_EXECUTE", ACL_EXECUTE);
1652 /* 23.2.5 acl_tag_t values */
1653 PyModule_AddIntConstant(m, "ACL_UNDEFINED_TAG", ACL_UNDEFINED_TAG);
1654 PyModule_AddIntConstant(m, "ACL_USER_OBJ", ACL_USER_OBJ);
1655 PyModule_AddIntConstant(m, "ACL_USER", ACL_USER);
1656 PyModule_AddIntConstant(m, "ACL_GROUP_OBJ", ACL_GROUP_OBJ);
1657 PyModule_AddIntConstant(m, "ACL_GROUP", ACL_GROUP);
1658 PyModule_AddIntConstant(m, "ACL_MASK", ACL_MASK);
1659 PyModule_AddIntConstant(m, "ACL_OTHER", ACL_OTHER);
1661 /* Document extended functionality via easy-to-use constants */
1662 PyModule_AddIntConstant(m, "HAS_ACL_ENTRY", 1);
1664 PyModule_AddIntConstant(m, "HAS_ACL_ENTRY", 0);
1668 /* Linux libacl specific acl_to_any_text constants */
1669 PyModule_AddIntConstant(m, "TEXT_ABBREVIATE", TEXT_ABBREVIATE);
1670 PyModule_AddIntConstant(m, "TEXT_NUMERIC_IDS", TEXT_NUMERIC_IDS);
1671 PyModule_AddIntConstant(m, "TEXT_SOME_EFFECTIVE", TEXT_SOME_EFFECTIVE);
1672 PyModule_AddIntConstant(m, "TEXT_ALL_EFFECTIVE", TEXT_ALL_EFFECTIVE);
1673 PyModule_AddIntConstant(m, "TEXT_SMART_INDENT", TEXT_SMART_INDENT);
1675 /* Linux libacl specific acl_check constants */
1676 PyModule_AddIntConstant(m, "ACL_MULTI_ERROR", ACL_MULTI_ERROR);
1677 PyModule_AddIntConstant(m, "ACL_DUPLICATE_ERROR", ACL_DUPLICATE_ERROR);
1678 PyModule_AddIntConstant(m, "ACL_MISS_ERROR", ACL_MISS_ERROR);
1679 PyModule_AddIntConstant(m, "ACL_ENTRY_ERROR", ACL_ENTRY_ERROR);
1681 /* declare the Linux extensions */
1682 PyModule_AddIntConstant(m, "HAS_ACL_FROM_MODE", 1);
1683 PyModule_AddIntConstant(m, "HAS_ACL_CHECK", 1);
1684 PyModule_AddIntConstant(m, "HAS_EXTENDED_CHECK", 1);
1685 PyModule_AddIntConstant(m, "HAS_EQUIV_MODE", 1);
1687 PyModule_AddIntConstant(m, "HAS_ACL_FROM_MODE", 0);
1688 PyModule_AddIntConstant(m, "HAS_ACL_CHECK", 0);
1689 PyModule_AddIntConstant(m, "HAS_EXTENDED_CHECK", 0);
1690 PyModule_AddIntConstant(m, "HAS_EQUIV_MODE", 0);