Appendix B List of Trusted Extensions Man Pages

Solaris Trusted Extensions is a configuration of the Solaris OS. This appendix provides a short description of the Solaris man pages that include Trusted Extensions information.

Trusted Extensions Man Pages in Alphabetical Order

The following man pages describe Trusted Extensions software on a Solaris system. These man pages are relevant only on a system that is configured with Trusted Extensions.

Solaris Man Page: Synopsis
add_allocatable(1M): Adds entries to allocation databases
atohexlabel(1M): Converts a human-readable label to its internal text equivalent
blcompare(3TSOL): Compares binary labels
blminmax(3TSOL): Determines the bound of two labels
chk_encodings(1M): Checks the label encodings file syntax
dtappsession(1): Starts a new Application Manager session
fgetlabel(2): Gets the file's label
getdevicerange(3TSOL): Gets the label range of a device
getlabel(1): Displays the label of files
getlabel(2): Gets the label of a file
getpathbylabel(3TSOL): Gets the zone pathname
getplabel(3TSOL): Gets the label of a process
getuserrange(3TSOL): Gets the label range of a user
getzoneidbylabel(3TSOL): Gets zone ID from zone label
getzonelabelbyid(3TSOL): Gets zone label from zone ID
getzonelabelbyname(3TSOL): Gets zone label from zone name
getzonepath(1): Displays the root path of the zone that corresponds to the specified label
getzonerootbyid(3TSOL): Gets zone root pathname from zone root ID
getzonerootbylabel(3TSOL): Gets zone root pathname from zone label
getzonerootbyname(3TSOL): Gets zone root pathname from zone name
hextoalabel(1M): Converts an internal text label to its human-readable equivalent
labelbuilder(3TSOL): Creates a Motif-based user interface for interactively building a valid label or clearance
labelclipping(3TSOL): Translates a binary label and clips the label to the specified width
label_encodings(4): Describes the label encodings file
label_to_str(3TSOL): Converts labels to human-readable strings
labels(5): Describes Solaris Trusted Extensions label attributes
libtsnet(3LIB): Is the Solaris Trusted Extensions network library
libtsol(3LIB): Is the Solaris Trusted Extensions library
m_label(3TSOL): Allocates and frees resources for a new label
pam_tsol_account(5): Checks account limitations that are due to labels
plabel(1): Gets the label of a process
remove_allocatable(1M): Removes entries from allocation databases
sel_config(4): Is the selection rules for copy, cut, paste, and drag-and-drop operations
setflabel(3TSOL): Moves a file to a zone with the corresponding sensitivity label
smtnrhdb(1M): Manages entries in the Trusted Extensions networking database
smtnrhtp(1M): Manages entries in the template database for Trusted Extensions networking
smtnzonecfg(1M): Manages entries in the configuration database for Trusted Extensions networking in non-global zones
str_to_label(3TSOL): Parses human-readable strings to a label
tnctl(1M): Configures Trusted Extensions network parameters
tnd(1M): Is the trusted network daemon
tninfo(1M): Displays kernel-level Trusted Extensions network information and statistics
trusted_extensions(5): Introduces Trusted Extensions
TrustedExtensionsPolicy(4): Is the configuration file for Trusted Extensions X Server Extension
tsol_getrhtype(3TSOL): Gets the host type from Trusted Extensions network information
updatehome(1M): Updates the home directory copy and link files for the current label
XTSOLgetClientAttributes(3XTSOL): Gets the label attributes of an X client
XTSOLgetPropAttributes(3XTSOL): Gets the label attributes of a window property
XTSOLgetPropLabel(3XTSOL): Gets the label of a window property
XTSOLgetPropUID(3XTSOL): Gets the UID of a window property
XTSOLgetResAttributes(3XTSOL): Gets all label attributes of a window or a pixmap
XTSOLgetResLabel(3XTSOL): Gets the label of a window, a pixmap, or a colormap
XTSOLgetResUID(3XTSOL): Gets the UID of a window or a pixmap
XTSOLgetSSHeight(3XTSOL): Gets the height of the screen stripe
XTSOLgetWorkstationOwner(3XTSOL): Gets the ownership of the workstation
XTSOLIsWindowTrusted(3XTSOL): Determines if a window is created by a trusted client
XTSOLMakeTPWindow(3XTSOL): Make this window a Trusted Path window
XTSOLsetPolyInstInfo(3XTSOL): Sets polyinstantiation information
XTSOLsetPropLabel(3XTSOL): Sets the label of a window property
XTSOLsetPropUID(3XTSOL): Sets the UID of a window property
XTSOLsetResLabel(3XTSOL): Sets the label of a window or a pixmap
XTSOLsetResUID(3XTSOL): Sets the UID of a window, a pixmap, or a colormap
XTSOLsetSessionHI(3XTSOL): Sets the session high sensitivity label to the window server
XTSOLsetSessionLO(3XTSOL): Sets the session low sensitivity label to the window server
XTSOLsetSSHeight(3XTSOL): Sets the height of the screen stripe
XTSOLsetWorkstationOwner(3XTSOL): Sets the ownership of the workstation

Solaris Man Pages That Are Modified by Trusted Extensions

Solaris Trusted Extensions adds information to the following Solaris man pages.

Solaris Man Page: Trusted Extensions Modification
allocate(1): Adds options to support allocating a device in a zone and cleaning the device in a windowed environment
auditconfig(1M): Adds the window policy for labeled information
audit_class(4): Adds X server audit classes
audit_event(4): Adds audit events
auditreduce(1M): Adds a label selector
auth_attr(4): Adds label authorizations
automount(1M): Adds the capability to mount, and therefore view, lower-level home directories
cancel(1): Adds label restrictions to a user's ability to cancel a print job
deallocate(1): Adds options to support deallocating a device in a zone, cleaning the device in a windowed environment, and specifying the type of device to deallocate
device_clean(5): Is invoked by default in Trusted Extensions
exec_attr(4): Adds CDE actions as a type of profile object
getpflags(2): Recognizes the NET_MAC_AWARE and NET_MAC_AWARE_INHERIT process flags
getsockopt(3SOCKET): Gets the mandatory access control status, SO_MAC_EXEMPT, of the socket
getsockopt(3XNET): Gets the mandatory access control status, SO_MAC_EXEMPT, of the socket
ifconfig(1M): Adds the all-zones interface
is_system_labeled(3C): Determines whether the system is configured with Trusted Extensions
ldaplist(1): Adds Trusted Extensions network databases
list_devices(1): Adds attributes, such as labels, that are associated with a device
lp(1): Adds the -nolabels option
lpadmin(1M): Adds label restrictions to the administrator's ability to administer printing
lpmove(1M): Adds label restrictions to the administrator's ability to move a print job
lpq(1B): Adds label restrictions to the display of print queue information
lprm(1B): Adds label restrictions to the caller's ability to remove print requests
lpsched(1M): Adds label restrictions to the administrator's ability to stop and restart the print service
lpstat(1): Adds label restrictions to the display of the print service status
netstat(1M): Adds the -R option to display extended security attributes
privileges(5): Adds Trusted Extensions privileges, such as PRIV_FILE_DOWNGRADE_SL
prof_attr(4): Adds rights profiles, such as Object Label Management
route(1M): Adds the -secattr option to add extended security attributes to a route
setpflags(2): Sets the NET_MAC_AWARE per-process flag
setsockopt(3SOCKET): Sets the SO_MAC_EXEMPT option
setsockopt(3XNET): Sets the mandatory access control, SO_MAC_EXEMPT, on the socket
smexec(1M): Adds options to support the CDE action type
smrole(1M): Adds options to support a role's label
smuser(1M): Adds options to support a user's label and other security attributes, such as permitted idle time
socket.h(3HEAD): Supports the SO_MAC_EXEMPT option for unlabeled peers
tar(1): Adds including labels in tar files and extracting files according to label
tar.h(3HEAD): Adds attribute types that are used in labeled tar files
ucred_getlabel(3C): Adds getting the label value on a user credential
user_attr(4): Adds user security attributes that are specific to Trusted Extensions

Previous: Appendix A Quick Reference to Trusted Extensions Administration