PageRenderTime 63ms CodeModel.GetById 36ms RepoModel.GetById 0ms app.codeStats 0ms

/gnome-vfs-2.24.4/modules/file-method-acl.c

#
C | 1017 lines | 736 code | 213 blank | 68 comment | 186 complexity | 305a302ed45a09a41e9b13795f5c5cb9 MD5 | raw file
Possible License(s): GPL-2.0, LGPL-2.0 
    

  1. /* -*- Mode: C; indent-tabs-mode: t; c-basic-offset: 8; tab-width: 8 -*- */
    2. 

  2. /* gnome-vfs-acl.h - ACL Handling for the GNOME Virtual File System.
    3. 

  3.    Virtual File System.
    4. 

    5. 

  5.    Copyright (C) 2005 Christian Kellner
    6. 

  6.    Copyright (C) 2005 Sun Microsystems
    7. 

    8. 

  8.    The Gnome Library is free software; you can redistribute it and/or
    9. 

  9.    modify it under the terms of the GNU Library General Public License as
    10. 

  10.    published by the Free Software Foundation; either version 2 of the
    11. 

  11.    License, or (at your option) any later version.
    12. 

    13. 

  13.    The Gnome Library is distributed in the hope that it will be useful,
    14. 

  14.    but WITHOUT ANY WARRANTY; without even the implied warranty of
    15. 

  15.    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    16. 

  16.    Library General Public License for more details.
    17. 

    18. 

  18.    You should have received a copy of the GNU Library General Public
    19. 

  19.    License along with the Gnome Library; see the file COPYING.LIB.  If not,
    20. 

  20.    write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
    21. 

  21.    Boston, MA 02111-1307, USA.
    22. 

    23. 

  23.    Authors: Christian Kellner <gicmo@gnome.org>
    24. 

  24.             Alvaro Lopez Ortega <alvaro@sun.com>
    25. 

  25. */
    26. 

  26. 

  27. #ifdef HAVE_CONFIG_H
    28. 

  28. #include <config.h>
    29. 

  29. #endif
    30. 

  30. 

  31. #include <stdio.h>
    32. 

  32. #include <errno.h>
    33. 

  33. #include <string.h>
    34. 

  34. #include <unistd.h>
    35. 

  35. #include <stdlib.h>
    36. 

  36. #include <sys/types.h>
    37. 

  37. #ifdef HAVE_SYS_RESOURCE_H
    38. 

  38. #include <sys/resource.h>
    39. 

  39. #endif
    40. 

  40. 

  41. #ifdef HAVE_PWD_H
    42. 

  42. # include <pwd.h>
    43. 

  43. #endif
    44. 

  44. 

  45. #ifdef HAVE_GRP_H
    46. 

  46. # include <grp.h>
    47. 

  47. #endif
    48. 

  48. 

  49. #ifdef HAVE_POSIX_ACL
    50. 

  50. # include <acl/libacl.h>
    51. 

  51. #define HAVE_ACL 1
    52. 

  52. #endif
    53. 

  53. 

  54. #ifdef HAVE_SOLARIS_ACL
    55. 

  55. # include <sys/acl.h>
    56. 

  56. #define HAVE_ACL 1
    57. 

  57. #endif
    58. 

  58. 

  59. #include "file-method-acl.h"
    60. 

  60. 

  61. #define CMD_PERM_READ           4
    62. 

  62. #define CMD_PERM_WRITE          2
    63. 

  63. #define CMD_PERM_EXECUTE        1
    64. 

  64. #define CMD_PERM_COND_EXECUTE   8
    65. 

  65. 

  66. 

  67. #ifdef HAVE_ACL
    68. 

  68. 

  69. static char *
    70. 

  70. uid_to_string (uid_t uid) 
    71. 

  71. {
    72. 

  72. 	char *uid_string = NULL;
    73. 

  73. #ifdef HAVE_PWD_H
    74. 

  74. 	struct passwd *pw = NULL;
    75. 

  75. 	gpointer buffer = NULL;
    76. 

  76. 	gint error;
    77. 

  77. 

  78. #if defined (HAVE_POSIX_GETPWUID_R) || defined (HAVE_NONPOSIX_GETPWUID_R)	
    79. 

  79. 	struct passwd pwd;
    80. 

  80. 	glong  bufsize;
    81. 

  81. 	
    82. 

  82. #ifdef _SC_GETPW_R_SIZE_MAX
    83. 

  83. 	bufsize = sysconf (_SC_GETPW_R_SIZE_MAX);
    84. 

  84. #else
    85. 

  85. 	bufsize = 64;
    86. 

  86. #endif /* _SC_GETPW_R_SIZE_MAX */
    87. 

  87. 

  88. 	
    89. 

  89. 	do {
    90. 

  90. 		g_free (buffer);
    91. 

  91. 

  92. 		/* why bufsize + 6 see #156446 */
    93. 

  93. 		buffer = g_malloc (bufsize + 6);
    94. 

  94. 		errno = 0;
    95. 

  95. 		
    96. 

  96. #ifdef HAVE_POSIX_GETPWUID_R
    97. 

  97. 	    error = getpwuid_r (uid, &pwd, buffer, bufsize, &pw);
    98. 

  98.         error = error < 0 ? errno : error;
    99. 

  99. #else /* HAVE_NONPOSIX_GETPWUID_R */
    100. 

  100.        /* HPUX 11 falls into the HAVE_POSIX_GETPWUID_R case */
    101. 

  101. #if defined(_AIX) || defined(__hpux)
    102. 

  102. 	    error = getpwuid_r (uid, &pwd, buffer, bufsize);
    103. 

  103. 	    pw = error == 0 ? &pwd : NULL;
    104. 

  104. #else /* !_AIX */
    105. 

  105.         pw = getpwuid_r (uid, &pwd, buffer, bufsize);
    106. 

  106.         error = pw ? 0 : errno;
    107. 

  107. #endif /* !_AIX */            
    108. 

  108. #endif /* HAVE_NONPOSIX_GETPWUID_R */
    109. 

  109. 		
    110. 

  110. 	    if (pw == NULL) {
    111. 

  111. 		    if (error == 0 || error == ENOENT) {
    112. 

  112. 				break;
    113. 

  113. 		    }
    114. 

  114. 	    }
    115. 

  115. 

  116. 	    if (bufsize > 32 * 1024) {
    117. 

  117. 			break;
    118. 

  118. 	    }
    119. 

  119. 

  120. 	    bufsize *= 2;
    121. 

  121. 	    
    122. 

  122. 	} while (pw == NULL);
    123. 

  123. #endif /* HAVE_POSIX_GETPWUID_R || HAVE_NONPOSIX_GETPWUID_R */
    124. 

  124. 

  125. 	if (pw == NULL) {
    126. 

  126. 		setpwent ();
    127. 

  127. 		pw = getpwuid (uid);
    128. 

  128. 		endpwent ();
    129. 

  129. 	}
    130. 

  130. 

  131. 	if (pw != NULL) {
    132. 

  132. 		uid_string = g_strdup (pw->pw_name);
    133. 

  133. 	}
    134. 

  134. 

  135. #endif /* HAVE_PWD_H */
    136. 

  136. 	
    137. 

  137. 	if (uid_string == NULL) {
    138. 

  138. 		uid_string = g_strdup_printf ("%d", uid);
    139. 

  139. 	}
    140. 

  140. 	
    141. 

  141. 	return uid_string;	
    142. 

  142. }
    143. 

  143. 

  144. static char *
    145. 

  145. gid_to_string (gid_t gid) 
    146. 

  146. {
    147. 

  147. 	char *gid_string = NULL;
    148. 

  148. #ifdef HAVE_GETGRGID_R
    149. 

  149. 	struct group *gr = NULL;
    150. 

  150. 	gpointer buffer = NULL;
    151. 

  151. 	gint error;
    152. 

  152. 	struct group grp;
    153. 

  153. 	glong  bufsize;
    154. 

  154. 	
    155. 

  155. #ifdef _SC_GETGR_R_SIZE_MAX
    156. 

  156. 	bufsize = sysconf (_SC_GETGR_R_SIZE_MAX);
    157. 

  157. #else
    158. 

  158. 	bufsize = 64;
    159. 

  159. #endif /* _SC_GETPW_R_SIZE_MAX */
    160. 

  160. 

  161. 	do {
    162. 

  162. 		g_free (buffer);
    163. 

  163. 

  164. 		/* why bufsize + 6 see #156446 */
    165. 

  165. 		buffer = g_malloc (bufsize + 6);
    166. 

  166. 	    error = getgrgid_r (gid, &grp, buffer, bufsize, &gr);
    167. 

  167. 	    
    168. 

  168.         error = error < 0 ? errno : error;
    169. 

  169. 	
    170. 

  170. 		if (gr == NULL) {
    171. 

  171. 		    if (error == 0 || error == ENOENT) {
    172. 

  172. 				break;
    173. 

  173. 		    }
    174. 

  174. 	    }
    175. 

  175. 

  176. 	    if (bufsize > 32 * 1024) {
    177. 

  177. 			break;
    178. 

  178. 	    }
    179. 

  179. 

  180. 	    bufsize *= 2;
    181. 

  181. 	    
    182. 

  182. 	} while (gr == NULL);
    183. 

  183. 	
    184. 

  184. 	if (gr != NULL) {
    185. 

  185. 		gid_string = g_strdup (gr->gr_name);
    186. 

  186. 	}
    187. 

  187. 	
    188. 

  188. #endif
    189. 

  189. 	if (gid_string == NULL) {
    190. 

  190. 		gid_string = g_strdup_printf ("%d", gid);
    191. 

  191. 	}
    192. 

  192. 	
    193. 

  193. 	return gid_string;
    194. 

  194. }
    195. 

  195. 

  196. static uid_t
    197. 

  197. string_to_uid (const char *uid)
    198. 

  198. {
    199. 

  199. 	struct passwd *passwd;
    200. 

  200. 	
    201. 

  201. 	passwd = getpwnam(uid);
    202. 

  202. 	if (passwd == NULL) return 0;
    203. 

  203. 	
    204. 

  204. 	return passwd->pw_uid;
    205. 

  205. }
    206. 

  206. 

  207. 

  208. static gid_t
    209. 

  209. string_to_gid (const char *gid)
    210. 

  210. {
    211. 

  211. 	struct group *group;
    212. 

  212.         
    213. 

  213. 	group = getgrnam (gid);
    214. 

  214. 	if (group == NULL) return 0;
    215. 

  215.         
    216. 

  216. 	return group->gr_gid;
    217. 

  217. }
    218. 

  218. 

  219. 

  220. /* ************************************************************************** */
    221. 

  221. /* POSIX ACL */
    222. 

  222. 

  223. #ifdef HAVE_POSIX_ACL
    224. 

  224. #define POSIX_N_TAGS 3
    225. 

  225. 

  226. static int
    227. 

  227. permset_to_perms (acl_permset_t set, GnomeVFSACLPerm *tags)
    228. 

  228. {
    229. 

  229. 	int i;
    230. 

  230. 	
    231. 

  231. 	memset (tags, 0, sizeof (GnomeVFSACLPerm) * (POSIX_N_TAGS + 1));
    232. 

  232. 	i = 0;
    233. 

  233. 

  234. 	if (acl_get_perm (set, ACL_READ) == 1) {
    235. 

  235. 		tags[0] = GNOME_VFS_ACL_READ;
    236. 

  236. 		i++;
    237. 

  237. 	}
    238. 

  238. 	
    239. 

  239. 	if (acl_get_perm (set, ACL_WRITE) == 1) {
    240. 

  240. 		tags[i] = GNOME_VFS_ACL_WRITE;
    241. 

  241. 		i++;
    242. 

  242. 	}
    243. 

  243. 	
    244. 

  244. 	if (acl_get_perm (set, ACL_EXECUTE)) {
    245. 

  245. 		tags[i] = GNOME_VFS_ACL_EXECUTE;	
    246. 

  246. 	}
    247. 

  247. 

  248. 	return i;
    249. 

  249. }
    250. 

  250. 

  251. static acl_entry_t
    252. 

  252. find_entry (acl_t acl, acl_tag_t type, id_t id)
    253. 

  253. {
    254. 

  254.         acl_entry_t  ent;
    255. 

  255.         acl_tag_t    e_type;
    256. 

  256.         id_t        *e_id_p;
    257. 

  257. 	
    258. 

  258.         if (acl_get_entry(acl, ACL_FIRST_ENTRY, &ent) != 1)
    259. 

  259.                 return NULL;
    260. 

  260. 	
    261. 

  261.         for(;;) {
    262. 

  262.                 acl_get_tag_type(ent, &e_type);
    263. 

  263.                 if (type == e_type) {
    264. 

  264.                         if (id == ACL_UNDEFINED_ID) 
    265. 

  265.                                 return ent;
    266. 

  266. 			
    267. 

  267. 			e_id_p = acl_get_qualifier(ent);
    268. 

  268. 			
    269. 

  269. 			if (e_id_p == NULL)
    270. 

  270. 				return NULL;
    271. 

  271. 			
    272. 

  272. 			if (*e_id_p == id) {
    273. 

  273. 				acl_free(e_id_p);
    274. 

  274. 				return ent;
    275. 

  275. 			}
    276. 

  276. 			
    277. 

  277. 			acl_free(e_id_p);
    278. 

  278.                 }
    279. 

  279. 		
    280. 

  280.                 if (acl_get_entry(acl, ACL_NEXT_ENTRY, &ent) != 1)
    281. 

  281.                         return NULL;
    282. 

  282.         }
    283. 

  283. }
    284. 

  284. 

  285. static void
    286. 

  286. set_permset (acl_permset_t permset, mode_t perm)
    287. 

  287. {
    288. 

  288.         if (perm & CMD_PERM_READ)
    289. 

  289.                 acl_add_perm (permset, ACL_READ);
    290. 

  290.         else
    291. 

  291.                 acl_delete_perm (permset, ACL_READ);
    292. 

  292. 	   
    293. 

  293.         if (perm & CMD_PERM_WRITE)
    294. 

  294.                 acl_add_perm (permset, ACL_WRITE);
    295. 

  295.         else
    296. 

  296.                 acl_delete_perm (permset, ACL_WRITE);
    297. 

  297. 	   
    298. 

  298.         if (perm & CMD_PERM_EXECUTE)
    299. 

  299.                 acl_add_perm (permset, ACL_EXECUTE);
    300. 

  300.         else
    301. 

  301.                 acl_delete_perm (permset, ACL_EXECUTE);
    302. 

  302. }
    303. 

  303. 

  304. static int
    305. 

  305. clone_entry (acl_t  from_acl, acl_tag_t from_type,
    306. 

  306. 	     acl_t *to_acl,   acl_tag_t to_type)
    307. 

  307. {
    308. 

  308.         acl_entry_t from_entry;
    309. 

  309. 	acl_entry_t to_entry;
    310. 

  310. 	
    311. 

  311.         from_entry = find_entry(from_acl, from_type, ACL_UNDEFINED_ID);
    312. 

  312.         if (from_entry == NULL) return 1;
    313. 

  313. 	
    314. 

  314. 	if (acl_create_entry(to_acl, &to_entry) != 0)
    315. 

  315. 		return -1;
    316. 

  316. 	
    317. 

  317. 	acl_copy_entry(to_entry, from_entry);
    318. 

  318. 	acl_set_tag_type(to_entry, to_type);
    319. 

  319. 	
    320. 

  320. 	return 0;
    321. 

  321. }
    322. 

  322. 

  323. static int
    324. 

  324. posix_acl_read (GnomeVFSACL *acl,
    325. 

  325.                 acl_t        p_acl,
    326. 

  326.                 gboolean     def)
    327. 

  327. {
    328. 

  328. 	acl_entry_t    entry;
    329. 

  329. 	int            res;
    330. 

  330. 	int            e_id;
    331. 

  331. 	int            n;
    332. 

  332. 

  333. 	if (p_acl == NULL) {
    334. 

  334. 		return 0;	
    335. 

  335. 	}
    336. 

  336. 

  337. 	n = 0;
    338. 

  338. 	e_id = ACL_FIRST_ENTRY;	
    339. 

  339. 	while ((res = acl_get_entry (p_acl, e_id, &entry)) == 1) {
    340. 

  340. 		GnomeVFSACLPerm   pset[POSIX_N_TAGS + 1];
    341. 

  341. 		GnomeVFSACLKind   kind;
    342. 

  342. 		GnomeVFSACE      *ace;
    343. 

  343. 		acl_permset_t     e_ps;
    344. 

  344. 		acl_tag_t         e_type;
    345. 

  345. 		void             *e_qf;
    346. 

  346. 		char             *id;	
    347. 

  347. 		
    348. 

  348. 		e_id   = ACL_NEXT_ENTRY;	
    349. 

  349. 		e_type = ACL_UNDEFINED_ID;
    350. 

  350. 		e_qf   = NULL;
    351. 

  351. 		
    352. 

  352. 		/* prop = (def) ? GNOME_VFS_ACL_DEFAULT : GNOME_VFS_ACL_TYPE_NULL; */
    353. 

  353. 		/* Read "default"	
    354. 

  354. 		 */
    355. 

  355. 	
    356. 

  356. 		res = acl_get_tag_type (entry, &e_type);
    357. 

  357. 

  358. 		if (res == -1 || e_type == ACL_UNDEFINED_ID || e_type == ACL_MASK) {
    359. 

  359. 			continue;
    360. 

  360. 		}
    361. 

  361. 		
    362. 

  362. 		if (def == FALSE && (e_type != ACL_USER && e_type != ACL_GROUP)) {
    363. 

  363. 			/* skip the standard unix permissions */
    364. 

  364. 			continue;	
    365. 

  365. 		}
    366. 

  366. 

  367. 		res = acl_get_permset (entry, &e_ps);
    368. 

  368. 

  369. 		if (res == -1) {
    370. 

  370. 			continue;
    371. 

  371. 		}
    372. 

  372. 		
    373. 

  373. 		e_qf = acl_get_qualifier (entry);
    374. 

  374. 		
    375. 

  375. 		id   = NULL;
    376. 

  376. 		kind = GNOME_VFS_ACL_KIND_NULL;
    377. 

  377. 		switch (e_type) {
    378. 

  378. 

  379. 		case ACL_USER:
    380. 

  380. 			id = uid_to_string (*(uid_t *) e_qf);	
    381. 

  381. 			/* FALLTHROUGH */
    382. 

  382. 			
    383. 

  383. 		case ACL_USER_OBJ:
    384. 

  384. 			kind = GNOME_VFS_ACL_USER;
    385. 

  385. 			break;
    386. 

  386. 

  387. 		case ACL_GROUP:
    388. 

  388. 			id = gid_to_string (*(gid_t *) e_qf);
    389. 

  389. 			/* FALLTHROUGH */
    390. 

  390. 

  391. 		case ACL_GROUP_OBJ:
    392. 

  392. 			kind = GNOME_VFS_ACL_GROUP;
    393. 

  393. 			break;
    394. 

  394. 			
    395. 

  395. 		case ACL_MASK:
    396. 

  396. 		case ACL_OTHER:
    397. 

  397. 			kind = GNOME_VFS_ACL_OTHER;
    398. 

  398. 			break;
    399. 

  399. 		}
    400. 

  400. 		
    401. 

  401. 		permset_to_perms (e_ps, pset);
    402. 

  402. 		ace = gnome_vfs_ace_new (kind, id, pset);
    403. 

  403. 

  404. 		g_free (id);
    405. 

  405. 

  406. 		if (def) {
    407. 

  407. 			g_object_set (G_OBJECT(ace), "inherit", def, NULL);
    408. 

  408. 		}
    409. 

  409. 

  410. 		gnome_vfs_acl_set (acl, ace);
    411. 

  411. 		g_object_unref (ace);
    412. 

  412. 

  413. 		if (e_qf) {
    414. 

  414. 			acl_free (e_qf);
    415. 

  415. 		}
    416. 

  416. 		
    417. 

  417. 		n++;
    418. 

  418. 	}
    419. 

  419. 	
    420. 

  420. 	return n;
    421. 

  421. }
    422. 

  422. 

  423. #endif /* HAVE_POSIX_ACL */
    424. 

  424. 

  425. 

  426. /* ************************************************************************** */
    427. 

  427. /* SOLARIS ACL */
    428. 

  428. 

  429. #ifdef HAVE_SOLARIS_ACL
    430. 

  430. #define SOLARIS_N_TAGS 3
    431. 

  431. 

  432. static gboolean
    433. 

  433. fixup_acl (GnomeVFSACL *acl, GSList *acls)
    434. 

  434. {
    435. 

  435. 	GSList   *i;
    436. 

  436. 	gboolean  defaults     = FALSE;
    437. 

  437. 	gboolean  user_obj     = FALSE;
    438. 

  438. 	gboolean  group_obj    = FALSE;
    439. 

  439. 	gboolean  other_obj    = FALSE;
    440. 

  440. 	gboolean  mask_obj     = FALSE;
    441. 

  441. 	gboolean  class_needed = FALSE;
    442. 

  442. 	gboolean  changed      = FALSE;
    443. 

  443. 

  444. 	/* Is there some default entry?
    445. 

  445. 	 */
    446. 

  446. 	for (i=acls; i != NULL; i=i->next) {
    447. 

  447. 		const char       *id_str;
    448. 

  448. 		GnomeVFSACLKind   kind;
    449. 

  449. 		GnomeVFSACE      *ace = GNOME_VFS_ACE(i->data);
    450. 

  450. 	
    451. 

  451. 		if (!gnome_vfs_ace_get_inherit(ace)) 
    452. 

  452. 			continue;
    453. 

  453. 

  454. 		defaults = TRUE;
    455. 

  455. 

  456. 		id_str = gnome_vfs_ace_get_id (ace);
    457. 

  457. 		kind   = gnome_vfs_ace_get_kind (ace);
    458. 

  458. 

  459. 		switch (kind) {
    460. 

  460. 		case GNOME_VFS_ACL_USER:
    461. 

  461. 			if (id_str == NULL)
    462. 

  462. 				user_obj = TRUE;
    463. 

  463. 			else
    464. 

  464. 				class_needed = TRUE;
    465. 

  465. 			break;
    466. 

  466. 		case GNOME_VFS_ACL_GROUP:
    467. 

  467. 			if (id_str == NULL)
    468. 

  468. 				group_obj = TRUE;
    469. 

  469. 			else
    470. 

  470. 				class_needed = TRUE;
    471. 

  471. 			break;
    472. 

  472. 	        case GNOME_VFS_ACL_OTHER:
    473. 

  473. 			if (id_str == NULL)
    474. 

  474. 				other_obj = TRUE;
    475. 

  475. 			break;
    476. 

  476. 	        case GNOME_VFS_ACL_MASK:
    477. 

  477. 			if (id_str == NULL)
    478. 

  478. 				mask_obj = TRUE;
    479. 

  479. 			break;
    480. 

  480. 		default:
    481. 

  481. 			break;
    482. 

  482. 		}
    483. 

  483. 	}
    484. 

  484. 

  485. 	if (!defaults) return FALSE;
    486. 

  486. 

  487. 	/* Add the missing ACEs
    488. 

  488. 	 */
    489. 

  489. 	if (!user_obj) {
    490. 

  490. 		GnomeVFSACE     *ace;
    491. 

  491. 		GnomeVFSACLPerm perms[] = {GNOME_VFS_ACL_READ,
    492. 

  492. 					   GNOME_VFS_ACL_WRITE,
    493. 

  493. 					   GNOME_VFS_ACL_EXECUTE, 0};
    494. 

  494. 

  495. 		ace = gnome_vfs_ace_new (GNOME_VFS_ACL_USER, NULL, perms);
    496. 

  496. 		gnome_vfs_ace_set_inherit (ace, TRUE);
    497. 

  497. 		gnome_vfs_acl_set (acl, ace);
    498. 

  498. 		g_slist_append(acls, ace);
    499. 

  499. 

  500. 		changed = TRUE;
    501. 

  501. 	}
    502. 

  502. 

  503. 	if (!group_obj) {
    504. 

  504. 		GnomeVFSACE     *ace;
    505. 

  505. 		GnomeVFSACLPerm  perms[] = {0};
    506. 

  506. 

  507. 		ace = gnome_vfs_ace_new (GNOME_VFS_ACL_GROUP, NULL, perms);
    508. 

  508. 		gnome_vfs_ace_set_inherit (ace, TRUE);
    509. 

  509. 		gnome_vfs_acl_set (acl, ace);
    510. 

  510. 

  511. 		changed = TRUE;
    512. 

  512. 	}
    513. 

  513. 

  514. 	if (!other_obj) {
    515. 

  515. 		GnomeVFSACE     *ace;
    516. 

  516. 		GnomeVFSACLPerm  perms[] = {0};
    517. 

  517. 

  518. 		ace = gnome_vfs_ace_new (GNOME_VFS_ACL_OTHER, NULL, perms);
    519. 

  519. 		gnome_vfs_ace_set_inherit (ace, TRUE);
    520. 

  520. 		gnome_vfs_acl_set (acl, ace);
    521. 

  521. 

  522. 		changed = TRUE;
    523. 

  523. 	}	
    524. 

  524. 

  525. 	if (class_needed && !mask_obj) {
    526. 

  526. 		GnomeVFSACE     *ace;
    527. 

  527. 		GnomeVFSACLPerm  perms[] = {GNOME_VFS_ACL_READ,
    528. 

  528. 					    GNOME_VFS_ACL_WRITE,
    529. 

  529. 					    GNOME_VFS_ACL_EXECUTE, 0};
    530. 

  530. 

  531. 		ace = gnome_vfs_ace_new (GNOME_VFS_ACL_MASK, NULL, perms);
    532. 

  532. 		gnome_vfs_ace_set_inherit (ace, TRUE);
    533. 

  533. 		gnome_vfs_acl_set (acl, ace);
    534. 

  534. 

  535. 		changed = TRUE;
    536. 

  536. 	}
    537. 

  537. 

  538. 	return changed;
    539. 

  539. }
    540. 

  540. 

  541. static int
    542. 

  542. permset_to_perms (int set, GnomeVFSACLPerm *tags)
    543. 

  543. {
    544. 

  544. 	int i;
    545. 

  545. 	
    546. 

  546. 	memset (tags, 0, sizeof (GnomeVFSACLPerm) * (SOLARIS_N_TAGS + 1));
    547. 

  547. 	i = 0;
    548. 

  548. 

  549. 	if (set & 4) {
    550. 

  550. 		tags[i] = GNOME_VFS_ACL_READ;
    551. 

  551. 		i++;
    552. 

  552. 	}
    553. 

  553. 

  554. 	if (set & 2) {
    555. 

  555. 		tags[i] = GNOME_VFS_ACL_WRITE;
    556. 

  556. 		i++;
    557. 

  557. 	}
    558. 

  558. 

  559. 	if (set & 1) {
    560. 

  560. 		tags[i] = GNOME_VFS_ACL_EXECUTE;
    561. 

  561. 		i++;
    562. 

  562. 	}
    563. 

  563. 

  564. 	return i;
    565. 

  565. }
    566. 

  566. 

  567. static int
    568. 

  568. solaris_acl_read (GnomeVFSACL *acl,
    569. 

  569. 		  aclent_t    *aclp,
    570. 

  570. 		  int          aclcnt,
    571. 

  571. 		  gboolean     def)
    572. 

  572. {
    573. 

  573. 	int       i;
    574. 

  574. 	aclent_t *tp;
    575. 

  575. 

  576. 	for (tp = aclp, i=0; i < aclcnt; tp++, i++) {
    577. 

  577. 		GnomeVFSACE     *ace;
    578. 

  578. 		GnomeVFSACLKind  kind;
    579. 

  579. 		GnomeVFSACLPerm  pset[SOLARIS_N_TAGS+1];
    580. 

  580. 		char            *id;
    581. 

  581. 

  582. 		id   = NULL;
    583. 

  583. 		kind = GNOME_VFS_ACL_KIND_NULL;
    584. 

  584. 

  585. 		switch (tp->a_type) {
    586. 

  586. 		case USER:
    587. 

  587. 		case DEF_USER:
    588. 

  588. 			id = uid_to_string(tp->a_id);
    589. 

  589. 		case USER_OBJ:
    590. 

  590. 		case DEF_USER_OBJ:
    591. 

  591. 			kind = GNOME_VFS_ACL_USER;
    592. 

  592. 			break;
    593. 

  593. 

  594. 		case GROUP:
    595. 

  595. 		case DEF_GROUP:
    596. 

  596. 			id = gid_to_string(tp->a_id);			
    597. 

  597. 		case GROUP_OBJ:
    598. 

  598. 		case DEF_GROUP_OBJ:
    599. 

  599. 			kind = GNOME_VFS_ACL_GROUP;
    600. 

  600. 			break;
    601. 

  601. 

  602. 		case OTHER_OBJ:
    603. 

  603. 		case DEF_OTHER_OBJ:
    604. 

  604. 			kind = GNOME_VFS_ACL_OTHER;
    605. 

  605. 			break;
    606. 

  606. 

  607. 		case CLASS_OBJ:
    608. 

  608. 		case DEF_CLASS_OBJ:
    609. 

  609. 			kind = GNOME_VFS_ACL_MASK;
    610. 

  610. 			break;
    611. 

  611. 

  612. 		default:
    613. 

  613. 			g_warning ("Unhandled Solaris ACE: %d\n", tp->a_type);
    614. 

  614. 		}
    615. 

  615. 

  616. 		permset_to_perms (tp->a_perm, pset);
    617. 

  617. 		ace = gnome_vfs_ace_new (kind, id, pset);
    618. 

  618. 

  619. 		if (tp->a_type & ACL_DEFAULT)
    620. 

  620. 			gnome_vfs_ace_set_inherit (ace, TRUE);
    621. 

  621. 

  622. 		gnome_vfs_acl_set (acl, ace);
    623. 

  623. 		g_object_unref (ace);
    624. 

  624. 	}
    625. 

  625. 

  626. 	return 0;
    627. 

  627. }
    628. 

  628. 

  629. static GnomeVFSResult
    630. 

  630. translate_ace_into_aclent (GnomeVFSACE *ace, aclent_t *aclp)
    631. 

  631. {
    632. 

  632.  	int               re;
    633. 

  633. 	gboolean          is_default = FALSE;
    634. 

  634. 	const char       *id_str;
    635. 

  635. 	GnomeVFSACLKind   kind;
    636. 

  636. 	int               id;
    637. 

  637. 	
    638. 

  638. 	id_str     = gnome_vfs_ace_get_id (ace);
    639. 

  639. 	kind       = gnome_vfs_ace_get_kind (ace);
    640. 

  640. 	is_default = gnome_vfs_ace_get_inherit (ace);
    641. 

  641. 

  642. 	aclp->a_perm = 0;
    643. 

  643. 	aclp->a_id   = 0;
    644. 

  644. 	aclp->a_type = 0;
    645. 

  645. 

  646. 	/* Permissions
    647. 

  647. 	 */
    648. 

  648. 	if (gnome_vfs_ace_check_perm (ace, GNOME_VFS_ACL_READ)) {
    649. 

  649. 		aclp->a_perm |= 4;
    650. 

  650. 	}
    651. 

  651. 	if (gnome_vfs_ace_check_perm (ace, GNOME_VFS_ACL_WRITE)) {
    652. 

  652. 		aclp->a_perm |= 2;
    653. 

  653. 	} 
    654. 

  654. 	if (gnome_vfs_ace_check_perm (ace, GNOME_VFS_ACL_EXECUTE)) {
    655. 

  655. 		aclp->a_perm |= 1;
    656. 

  656. 	}
    657. 

  657. 

  658. 	/* Kind
    659. 

  659. 	 */
    660. 

  660. 	id = NULL;
    661. 

  661. 	switch (kind) {
    662. 

  662. 		case GNOME_VFS_ACL_USER:
    663. 

  663. 			if (id_str) {
    664. 

  664. 				aclp->a_type = (is_default) ? DEF_USER : USER;
    665. 

  665. 				aclp->a_id = string_to_uid (id_str);
    666. 

  666. 			} else {
    667. 

  667. 				aclp->a_type = (is_default) ? DEF_USER_OBJ : USER_OBJ;
    668. 

  668. 			}
    669. 

  669. 			break;
    670. 

  670. 		case GNOME_VFS_ACL_GROUP:
    671. 

  671. 			if (id_str) {
    672. 

  672. 				aclp->a_type = (is_default) ? DEF_GROUP : GROUP;
    673. 

  673. 				aclp->a_id = string_to_gid (id_str);
    674. 

  674. 			} else {
    675. 

  675. 				aclp->a_type = (is_default) ? DEF_GROUP_OBJ : GROUP_OBJ;				
    676. 

  676. 			}
    677. 

  677. 			break;
    678. 

  678. 	        case GNOME_VFS_ACL_OTHER:
    679. 

  679. 			aclp->a_type = (is_default) ? DEF_OTHER_OBJ : OTHER_OBJ;
    680. 

  680. 			break;
    681. 

  681. 

  682. 		case GNOME_VFS_ACL_MASK:
    683. 

  683. 			aclp->a_type = (is_default) ? DEF_CLASS_OBJ : CLASS_OBJ;
    684. 

  684. 			break;
    685. 

  685. 

  686. 		default:
    687. 

  687. 			return GNOME_VFS_ERROR_NOT_SUPPORTED;			
    688. 

  688. 	}
    689. 

  689. 

  690. 	return GNOME_VFS_OK;
    691. 

  691. }
    692. 

  692. 

  693. #endif /* HAVE_SOLARIS_ACL */
    694. 

  694. 

  695. 

  696. 

  697. /* ************************************************************************** */
    698. 

  698. /* Common */
    699. 

  699. 

  700. static GnomeVFSResult
    701. 

  701. aclerrno_to_vfserror (int acl_errno)
    702. 

  702. {
    703. 

  703. 	switch (acl_errno) {
    704. 

  704. 	case ENOENT:			 
    705. 

  705. 	case EINVAL:       
    706. 

  706. 		return GNOME_VFS_ERROR_BAD_FILE;
    707. 

  707. 	case ENOSYS:
    708. 

  708. 		return GNOME_VFS_ERROR_NOT_SUPPORTED;
    709. 

  709. 	case EACCES:     
    710. 

  710. 		return GNOME_VFS_ERROR_ACCESS_DENIED;
    711. 

  711. 	case ENAMETOOLONG: 
    712. 

  712. 		return GNOME_VFS_ERROR_NAME_TOO_LONG;
    713. 

  713. 	case EPERM:
    714. 

  714. 		return GNOME_VFS_ERROR_NOT_PERMITTED;
    715. 

  715. 	case ENOSPC:
    716. 

  716. 		return GNOME_VFS_ERROR_NO_SPACE;
    717. 

  717. 	case EROFS:
    718. 

  718. 		return GNOME_VFS_ERROR_READ_ONLY_FILE_SYSTEM;
    719. 

  719. 	default:
    720. 

  720. 		break;
    721. 

  721. 	}
    722. 

  722. 	
    723. 

  723. 	return GNOME_VFS_ERROR_GENERIC;
    724. 

  724. }
    725. 

  725. 

  726. #endif /* HAVE_ACL */
    727. 

  727. 

  728. GnomeVFSResult file_get_acl (const char       *path,
    729. 

  729.                              GnomeVFSFileInfo *info,
    730. 

  730.                              struct stat      *statbuf,
    731. 

  731.                              GnomeVFSContext  *context)
    732. 

  732. {
    733. 

  733. #ifdef HAVE_SOLARIS_ACL	
    734. 

  734. 	int       re;
    735. 

  735. 	int       aclcnt;
    736. 

  736. 	aclent_t *aclp;
    737. 

  737. 

  738. 	if (info->acl != NULL) {
    739. 

  739. 		gnome_vfs_acl_clear (info->acl);
    740. 

  740. 	} else {
    741. 

  741. 		info->acl = gnome_vfs_acl_new ();
    742. 

  742. 	}
    743. 

  743. 	
    744. 

  744. 	aclcnt = acl (path, GETACLCNT, 0, NULL);
    745. 

  745. 	if (aclcnt < 0) {
    746. 

  746. 		return aclerrno_to_vfserror (errno);
    747. 

  747. 	}
    748. 

  748. 

  749. 	if (aclcnt < MIN_ACL_ENTRIES) {
    750. 

  750. 		return GNOME_VFS_ERROR_INTERNAL;
    751. 

  751. 	}
    752. 

  752. 

  753. 	aclp = (aclent_t *)malloc(sizeof (aclent_t) * aclcnt);
    754. 

  754. 	if (aclp == NULL) {
    755. 

  755. 		return GNOME_VFS_ERROR_NO_MEMORY;		
    756. 

  756. 	}
    757. 

  757. 

  758. 	errno = 0;
    759. 

  759. 	re = acl (path, GETACL, aclcnt, aclp);
    760. 

  760. 	if (re < 0) {
    761. 

  761. 		return aclerrno_to_vfserror (errno);		
    762. 

  762. 	}
    763. 

  763. 	
    764. 

  764. 	re = solaris_acl_read (info->acl, aclp, aclcnt, FALSE);
    765. 

  765. 	if (re < 0) {
    766. 

  766. 		return GNOME_VFS_ERROR_INTERNAL;
    767. 

  767. 	}
    768. 

  768. 

  769. 	info->valid_fields |= GNOME_VFS_FILE_INFO_FIELDS_ACL;
    770. 

  770. 	
    771. 

  771. 	free (aclp);
    772. 

  772. 	
    773. 

  773. 	return GNOME_VFS_OK;
    774. 

  774. 

  775. #elif defined(HAVE_POSIX_ACL)
    776. 

  776. 	acl_t p_acl;
    777. 

  777. 	int   n;
    778. 

  778. 	
    779. 

  779. 	if (info->acl != NULL) {
    780. 

  780. 		gnome_vfs_acl_clear (info->acl);
    781. 

  781. 	} else {
    782. 

  782. 		info->acl = gnome_vfs_acl_new ();
    783. 

  783. 	}
    784. 

  784. 	
    785. 

  785. 	p_acl = acl_get_file (path, ACL_TYPE_ACCESS);
    786. 

  786. 	n = posix_acl_read (info->acl, p_acl, FALSE);
    787. 

  787. 	
    788. 

  788. 	if (p_acl) {
    789. 

  789. 		acl_free (p_acl);
    790. 

  790. 	}
    791. 

  791. 		
    792. 

  792. 	if (S_ISDIR (statbuf->st_mode)) {
    793. 

  793. 		p_acl = acl_get_file (path, ACL_TYPE_DEFAULT);
    794. 

  794. 		
    795. 

  795. 		n += posix_acl_read (info->acl, p_acl, TRUE);
    796. 

  796. 		
    797. 

  797. 		if (p_acl) {
    798. 

  798. 			acl_free (p_acl);
    799. 

  799. 		}
    800. 

  800. 	}
    801. 

  801. 	
    802. 

  802. 	if (n > 0) {
    803. 

  803. 		info->valid_fields |= GNOME_VFS_FILE_INFO_FIELDS_ACL;
    804. 

  804. 	} else {
    805. 

  805. 		g_object_unref (info->acl);
    806. 

  806. 		info->acl = NULL;
    807. 

  807. 	}
    808. 

  808. 	
    809. 

  809. 	return GNOME_VFS_OK;
    810. 

  810. #else
    811. 

  811. 	return GNOME_VFS_ERROR_NOT_SUPPORTED;
    812. 

  812. #endif
    813. 

  813. }
    814. 

  814. 

  815. 

  816. GnomeVFSResult 
    817. 

  817. file_set_acl (const char             *path,
    818. 

  818. 	      const GnomeVFSFileInfo *info,
    819. 

  819.               GnomeVFSContext        *context)
    820. 

  820. {
    821. 

  821. #ifdef HAVE_SOLARIS_ACL
    822. 

  822. 	GList           *acls;
    823. 

  823. 	GList           *entry;
    824. 

  824. 	guint            len;
    825. 

  825. 	GnomeVFSResult   re;
    826. 

  826. 	aclent_t        *new_aclp;
    827. 

  827. 	aclent_t        *taclp;
    828. 

  828. 	guint            aclp_i;
    829. 

  829. 	gboolean         changed;
    830. 

  830. 

  831. 	if (info->acl == NULL) 
    832. 

  832. 		return GNOME_VFS_ERROR_BAD_PARAMETERS;
    833. 

  833. 

  834. 	acls = gnome_vfs_acl_get_ace_list (info->acl);
    835. 

  835. 	if (acls == NULL) return GNOME_VFS_OK;
    836. 

  836. 

  837. 	changed = fixup_acl (info->acl, acls);	
    838. 

  838. 	if (changed) {
    839. 

  839. 		gnome_vfs_acl_free_ace_list (acls);
    840. 

  840. 

  841. 		acls = gnome_vfs_acl_get_ace_list (info->acl);
    842. 

  842. 		if (acls == NULL) return GNOME_VFS_OK;
    843. 

  843. 	}
    844. 

  844. 

  845. 	len = g_list_length (acls);
    846. 

  846. 	if (len <= 0) return GNOME_VFS_OK;
    847. 

  847. 

  848. 	new_aclp = (aclent_t *) malloc (len * sizeof(aclent_t));
    849. 

  849. 	if (new_aclp == NULL) return GNOME_VFS_ERROR_NO_MEMORY;
    850. 

  850. 	memset (new_aclp, 0, len * sizeof(aclent_t));
    851. 

  851. 

  852. 	aclp_i = 0;
    853. 

  853. 	taclp  = new_aclp;
    854. 

  854. 	for (entry=acls; entry != NULL; entry = entry->next) {
    855. 

  855. 		GnomeVFSACE *ace = GNOME_VFS_ACE(entry->data);
    856. 

  856. 		
    857. 

  857. 		re = translate_ace_into_aclent (ace, taclp);
    858. 

  858. 		if (re != GNOME_VFS_OK) continue;
    859. 

  859. 

  860. 		aclp_i++;
    861. 

  861. 		taclp++;
    862. 

  862. 	}
    863. 

  863. 

  864. 	/* Sort it out
    865. 

  865. 	 */
    866. 

  866.  	re = aclsort (aclp_i, 0, (aclent_t *)new_aclp);
    867. 

  867. 	if (re == -1) {
    868. 

  868. 		g_free (new_aclp);
    869. 

  869. 		return GNOME_VFS_ERROR_INTERNAL;
    870. 

  870. 	}		
    871. 

  871. 

  872. 	/* Commit it to the file system
    873. 

  873. 	 */
    874. 

  874. 	re = acl (path, SETACL, aclp_i, (aclent_t *)new_aclp); 
    875. 

  875.  	if (re < 0) {
    876. 

  876. 		int err = errno;
    877. 

  877. 

  878. 		g_free (new_aclp);
    879. 

  879. 		return aclerrno_to_vfserror(err);
    880. 

  880. 	}
    881. 

  881. 

  882. 	g_free (new_aclp);
    883. 

  883. 	return GNOME_VFS_OK;
    884. 

  884. 	
    885. 

  885. #elif defined(HAVE_POSIX_ACL)
    886. 

  886. 	GList *acls;
    887. 

  887. 	GList *entry;
    888. 

  888. 	acl_t  acl_obj;
    889. 

  889. 	acl_t  acl_obj_default;
    890. 

  890. 

  891. 

  892. 	if (info->acl == NULL) 
    893. 

  893. 		return GNOME_VFS_ERROR_BAD_PARAMETERS;
    894. 

  894. 	
    895. 

  895. 	/* POSIX ACL object
    896. 

  896. 	 */
    897. 

  897. 	acl_obj_default = acl_get_file (path, ACL_TYPE_DEFAULT);     
    898. 

  898. 

  899. 	acl_obj = acl_get_file (path, ACL_TYPE_ACCESS);      
    900. 

  900. 	if (acl_obj == NULL) return GNOME_VFS_ERROR_GENERIC;
    901. 

  901. 

  902. 	/* Parse stored information
    903. 

  903. 	 */
    904. 

  904. 	acls = gnome_vfs_acl_get_ace_list (info->acl);
    905. 

  905. 	if (acls == NULL) return GNOME_VFS_OK;
    906. 

  906. 

  907. 	for (entry=acls; entry != NULL; entry = entry->next) {
    908. 

  908. 		GnomeVFSACE           *ace        = GNOME_VFS_ACE(entry->data);
    909. 

  909. 		gboolean               is_default = FALSE;
    910. 

  910. 		const char            *id_str;
    911. 

  911. 		GnomeVFSACLKind        kind;
    912. 

  912. 		int                    id;
    913. 

  913. 

  914. 		int                    re;
    915. 

  915. 		acl_tag_t              type;
    916. 

  916. 		mode_t                 perms      = 0;
    917. 

  917. 		acl_entry_t            new_entry  = NULL;
    918. 

  918. 		acl_permset_t          permset    = NULL;
    919. 

  919. 		
    920. 

  920. 		id_str     = gnome_vfs_ace_get_id (ace);
    921. 

  921. 		kind       = gnome_vfs_ace_get_kind (ace);
    922. 

  922. 		is_default = gnome_vfs_ace_get_inherit (ace);
    923. 

  923. 		
    924. 

  924. 		/* Perms
    925. 

  925. 		 */
    926. 

  926. 		if (gnome_vfs_ace_check_perm (ace, GNOME_VFS_ACL_READ))
    927. 

  927. 			perms |= CMD_PERM_READ;
    928. 

  928. 		else if (gnome_vfs_ace_check_perm (ace, GNOME_VFS_ACL_WRITE))
    929. 

  929. 			perms |= CMD_PERM_WRITE;
    930. 

  930. 		else if (gnome_vfs_ace_check_perm (ace, GNOME_VFS_ACL_EXECUTE))
    931. 

  931. 			perms |= CMD_PERM_EXECUTE;
    932. 

  932. 		
    933. 

  933. 		/* Type
    934. 

  934. 		 */
    935. 

  935. 		switch (kind) {
    936. 

  936. 		case GNOME_VFS_ACL_USER:
    937. 

  937. 			id   = string_to_uid (id_str);
    938. 

  938. 			type = ACL_USER;			
    939. 

  939. 			break;
    940. 

  940. 

  941. 		case GNOME_VFS_ACL_GROUP:
    942. 

  942. 			id   = string_to_gid (id_str);
    943. 

  943. 			type = ACL_GROUP;
    944. 

  944. 			break;
    945. 

  945. 

  946. 		case GNOME_VFS_ACL_OTHER:
    947. 

  947. 			type = ACL_OTHER;
    948. 

  948. 			break;
    949. 

  949. 

  950. 		default:
    951. 

  951. 			return GNOME_VFS_ERROR_NOT_SUPPORTED;			
    952. 

  952. 		}
    953. 

  953. 

  954. 		/* Add the entry
    955. 

  955. 		 */
    956. 

  956. 		new_entry = find_entry (acl_obj, type, id);
    957. 

  957. 		if (new_entry == NULL) {
    958. 

  958. 			/* new */
    959. 

  959. 			if (is_default)
    960. 

  960. 				re = acl_create_entry (&acl_obj_default, &new_entry);
    961. 

  961. 			else
    962. 

  962. 				re = acl_create_entry (&acl_obj, &new_entry);
    963. 

  963. 			if (re != 0) return aclerrno_to_vfserror (errno);
    964. 

  964. 			
    965. 

  965. 			/* e_tag */
    966. 

  966. 			re = acl_set_tag_type (new_entry, type);
    967. 

  967. 			if (re != 0) return aclerrno_to_vfserror (errno);
    968. 

  968. 			
    969. 

  969. 			/* e_id */
    970. 

  970. 			re = acl_set_qualifier (new_entry, &id);
    971. 

  971. 			if (re != 0) return aclerrno_to_vfserror (errno);
    972. 

  972. 		}
    973. 

  973. 

  974. 		/* e_perm */
    975. 

  975. 		re = acl_get_permset (new_entry, &permset);
    976. 

  976. 		if (re != 0) return aclerrno_to_vfserror (errno);
    977. 

  977. 		set_permset (permset, perms);
    978. 

  978. 

  979. 		/* Fix it up
    980. 

  980. 		 */
    981. 

  981. 		if (is_default && (acl_obj_default != NULL)) {
    982. 

  982. 			if (! find_entry (acl_obj_default, ACL_USER_OBJ, ACL_UNDEFINED_ID)) {
    983. 

  983. 				clone_entry (acl_obj, ACL_USER_OBJ, &acl_obj_default, ACL_USER_OBJ);
    984. 

  984. 			}
    985. 

  985. 			
    986. 

  986. 			if (! find_entry (acl_obj_default, ACL_GROUP_OBJ, ACL_UNDEFINED_ID)) {
    987. 

  987. 				clone_entry (acl_obj, ACL_GROUP_OBJ, &acl_obj_default, ACL_GROUP_OBJ);
    988. 

  988. 			}
    989. 

  989. 			
    990. 

  990. 			if (! find_entry (acl_obj_default, ACL_OTHER, ACL_UNDEFINED_ID)) {
    991. 

  991. 				clone_entry (acl_obj, ACL_OTHER, &acl_obj_default, ACL_OTHER);
    992. 

  992. 			}			
    993. 

  993. 		}
    994. 

  994. 		
    995. 

  995. 		if (acl_equiv_mode (acl_obj, NULL) != 0) {
    996. 

  996. 

  997. 			if (! find_entry (acl_obj, ACL_MASK, ACL_UNDEFINED_ID)) {                       
    998. 

  998. 				clone_entry (acl_obj, ACL_GROUP_OBJ, &acl_obj, ACL_MASK);
    999. 

  999. 			}
    1000. 

  1000. 

  1001. 			if (is_default)
    1002. 

  1002. 				re = acl_calc_mask (&acl_obj_default);
    1003. 

  1003. 			else 
    1004. 

  1004. 				re = acl_calc_mask (&acl_obj);
    1005. 

  1005. 

  1006. 			if (re != 0) return aclerrno_to_vfserror (errno);
    1007. 

  1007. 		}
    1008. 

  1008. 	}
    1009. 

  1009. 		
    1010. 

  1010. 	gnome_vfs_acl_free_ace_list (acls);
    1011. 

  1011. 	return GNOME_VFS_OK;
    1012. 

  1012. #else
    1013. 

  1013. 	return GNOME_VFS_ERROR_NOT_SUPPORTED;
    1014. 

  1014. #endif
    1015. 

  1015. }
    1016. 

  1016. 

  1017. 

  1018.