1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
|
'\" te
.\" Copyright (c) 2007, Sun Microsystems, Inc. All Rights Reserved.
.\" The contents of this file are subject to the terms of the Common Development and Distribution License (the "License"). You may not use this file except in compliance with the License.
.\" You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE or http://www.opensolaris.org/os/licensing. See the License for the specific language governing permissions and limitations under the License.
.\" When distributing Covered Code, include this CDDL HEADER in each file and include the License file at usr/src/OPENSOLARIS.LICENSE. If applicable, add the following below this CDDL HEADER, with the fields enclosed by brackets "[]" replaced with your own identifying information: Portions Copyright [yyyy] [name of copyright owner]
.TH labelbuilder 3TSOL "20 Jul 2007" "SunOS 5.11" "Trusted Extensions Library Functions"
.SH NAME
labelbuilder, tsol_lbuild_create, tsol_lbuild_get, tsol_lbuild_set,
tsol_lbuild_destroy \- create a Motif-based user interface for interactively
building a valid label or clearance
.SH SYNOPSIS
.LP
.nf
\fBcc\fR [\fIflag\fR...] \fIfile\fR... \fB-ltsol\fR \fB-lDtTsol\fR [\fIlibrary\fR...]
.fi
.LP
.nf
#include <Dt/ModLabel.h>
\fBModLabelData *tsol_lbuild_create\fR(\fBWidget\fR \fIwidget\fR,
void \fI(*event_handler)\fR() \fIok_callback\fR,
\fBlbuild_attributes\fR \fIextended_operation\fR, ..., \fBNULL\fR);
.fi
.LP
.nf
\fBvoid *tsol_lbuild_get\fR(\fBModLabelData *\fR\fIdata\fR,
\fBlbuild_attributes\fR \fIextended_operation\fR);
.fi
.LP
.nf
\fBvoid tsol_lbuild_set\fR(\fBModLabelData *\fR\fIdata\fR,
\fBlbuild_attributes\fR \fIextended_operation\fR, ..., \fBNULL\fR);
.fi
.LP
.nf
\fBvoid tsol_lbuild_destroy\fR(\fBModLabelData *\fR\fIdata\fR);
.fi
.SH DESCRIPTION
.sp
.LP
The label builder user interface prompts the end user for information and
generates a valid sensitivity label or clearance from the user input based on
specifications in the \fBlabel_encodings\fR(4) file on the system where the
application runs. The end user can build the label or clearance by typing a
text value or by interactively choosing options.
.sp
.LP
Application-specific functionality is implemented in the callback for the OK
pushbutton. This callback is passed to the \fBtsol_lbuild_create()\fR call
where it is mapped to the OK pushbutton widget.
.sp
.LP
When choosing options, the label builder shows the user only those
classifications (and related compartments and markings) dominated by the
workspace sensitivity label unless the executable has the
\fBPRIV_SYS_TRANS_LABEL\fR privilege in its effective set.
.sp
.LP
If the end user does not have the authorization to upgrade or downgrade labels,
or if the user-built label is out of the user's accreditation range, the OK and
Reset pushbuttons are grayed. There are no privileges to override these
restrictions.
.sp
.LP
\fBtsol_lbuild_create()\fR creates the graphical user interface and returns a
pointer variable of type \fBModLabeldata*\fR that contains information on the
user interface. This information is a combination of values passed in the
\fBtsol_lbuild_create()\fR input parameter list, default values for information
not provided, and information on the widgets used by the label builder to
create the user interface. All information except the widget information should
be accessed with the \fBtsol_lbuild_get()\fR and \fBtsol_lbuild_set()\fR
routines.
.sp
.LP
The widget information is accessed directly by referencing the following fields
of the \fBModLabelData\fR structure.
.sp
.ne 2
.mk
.na
\fB\fBlbuild_dialog\fR\fR
.ad
.RS 17n
.rt
The label builder dialog box.
.RE
.sp
.ne 2
.mk
.na
\fB\fBok\fR\fR
.ad
.RS 17n
.rt
The OK pushbutton.
.RE
.sp
.ne 2
.mk
.na
\fB\fBcancel\fR\fR
.ad
.RS 17n
.rt
The Cancel pushbutton.
.RE
.sp
.ne 2
.mk
.na
\fB\fBreset\fR\fR
.ad
.RS 17n
.rt
The Reset pushbutton.
.RE
.sp
.ne 2
.mk
.na
\fB\fBhelp\fR\fR
.ad
.RS 17n
.rt
The Help pushbutton.
.RE
.sp
.LP
The \fBtsol_lbuild_create()\fR parameter list takes the following values:
.sp
.ne 2
.mk
.na
\fBwidget\fR
.ad
.RS 15n
.rt
The widget from which the dialog box is created. Any Motif widget can be
passed.
.RE
.sp
.ne 2
.mk
.na
\fBok_callback\fR
.ad
.RS 15n
.rt
A callback function that implements the behavior of the OK pushbutton on the
dialog box.
.RE
.sp
.ne 2
.mk
.na
\fB\fB\&..., NULL\fR\fR
.ad
.RS 15n
.rt
A \fINULL\fR terminated list of extended operations and value pairs that define
the characteristics and behavior of the label builder dialog box.
.RE
.sp
.LP
\fBtsol_lbuild_destroy()\fR destroys the \fBModLabelData\fR structure returned
by \fBtsol_lbuild_create()\fR.
.sp
.LP
\fBtsol_lbuild_get()\fR and \fBtsol_lbuild_set()\fR access the information
stored in the \fBModLabelData\fR structure returned by
\fBtsol_lbuild_create()\fR.
.sp
.LP
The following extended operations can be passed to \fBtsol_lbuild_create()\fR
to build the user interface, to \fBtsol_lbuild_get()\fR to retrieve information
on the user interface, and to \fBtsol_lbuild_set()\fR to change the user
interface information. All extended operations are valid for
\fBtsol_lbuild_get()\fR, but the \fB*WORK*\fR operations are not valid for
\fBtsol_lbuild_set()\fR or \fBtsol_lbuild_create()\fR because these values are
set from input supplied by the end user. These exceptions are noted in the
descriptions.
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_MODE\fR\fR
.ad
.RS 22n
.rt
Create a user interface to build a sensitivity label or a clearance. Value is
\fBLBUILD_MODE_SL\fR by default.
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_MODE_SL\fR\fR
.ad
.RS 19n
.rt
Build a sensitivity label.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_MODE_CLR\fR\fR
.ad
.RS 19n
.rt
Build a clearance.
.RE
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_VALUE_SL\fR\fR
.ad
.RS 22n
.rt
The starting sensitivity label. This value is \fBADMIN_LOW\fR by default and is
used when the mode is \fBLBUILD_MODE_SL\fR.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_VALUE_CLR\fR\fR
.ad
.RS 22n
.rt
The starting clearance. This value is \fBADMIN_LOW\fR by default and is used
when the mode is \fBLBUILD_MODE_CLR\fR.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_USERFIELD\fR\fR
.ad
.RS 22n
.rt
A character string prompt that displays at the top of the label builder dialog
box. Value is \fINULL\fR by default.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_SHOW\fR\fR
.ad
.RS 22n
.rt
Show or hide the label builder dialog box. Value is \fBFALSE\fR by default.
.sp
.ne 2
.mk
.na
\fB\fBTRUE\fR\fR
.ad
.RS 9n
.rt
Show the label builder dialog box.
.RE
.sp
.ne 2
.mk
.na
\fB\fBFALSE\fR\fR
.ad
.RS 9n
.rt
Hide the label builder dialog box.
.RE
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_TITLE\fR\fR
.ad
.RS 22n
.rt
A character string title that appears at the top of the label builder dialog
box. Value is \fINULL\fR by default.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_WORK_SL\fR\fR
.ad
.RS 22n
.rt
Not valid for \fBtsol_lbuild_set()\fR or \fBtsol_lbuild_create()\fR. The
sensitivity label the end user is building. Value is updated to the end user's
input when the end user selects the Update pushbutton or interactively chooses
an option.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_WORK_CLR\fR\fR
.ad
.RS 22n
.rt
Not valid for \fBtsol_lbuild_set()\fR or \fBtsol_lbuild_create()\fR. The
clearance the end user is building. Value is updated to the end user's input
when the end user selects the Update pushbutton or interactively chooses an
option.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_X\fR\fR
.ad
.RS 22n
.rt
The X position in pixels of the top-left corner of the label builder dialog box
in relation to the top-left corner of the screen. By default the label builder
dialog box is positioned in the middle of the screen.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_Y\fR\fR
.ad
.RS 22n
.rt
The Y position in pixels of the top-left corner of the label builder dialog box
in relation to the top-left corner of the screen. By default the label builder
dialog box is positioned in the middle of the screen.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_LOWER_BOUND\fR\fR
.ad
.RS 22n
.rt
The lowest classification (and related compartments and markings) available to
the user as radio buttons for interactively building a label or clearance. This
value is the user's minimum label.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_UPPER_BOUND\fR\fR
.ad
.RS 22n
.rt
The highest classification (and related compartments and markings) available to
the user as radio buttons for interactively building a label or clearance. A
supplied value should be within the user's accreditation range. If no value is
specified, the value is the user's workspace sensitivity label, or if the
executable has the \fBPRIV_SYS_TRANS_LABEL\fR privilege, the value is the
user's clearance.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_CHECK_AR\fR\fR
.ad
.RS 22n
.rt
Check that the user-built label entered in the Update With field is within the
user's accreditation range. A value of 1 means check, and a value of 0 means do
not check. If checking is on and the label is out of range, an error message is
raised to the end user.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_VIEW\fR\fR
.ad
.RS 22n
.rt
Use the internal or external label representation. Value is
\fBLBUILD_VIEW_EXTERNAL\fR by default.
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_VIEW_INTERNAL\fR\fR
.ad
.sp .6
.RS 4n
Use the internal names for the highest and lowest labels in the system:
\fBADMIN_HIGH\fR and \fBADMIN_LOW\fR.
.RE
.sp
.ne 2
.mk
.na
\fB\fBLBUILD_VIEW_EXTERNAL\fR\fR
.ad
.sp .6
.RS 4n
Promote an \fBADMIN_LOW\fR label to the next highest label, and demote an
\fBADMIN_HIGH\fR label to the next lowest label.
.RE
.RE
.SH RETURN VALUES
.sp
.LP
The \fBtsol_lbuild_get()\fR function returns \fB\(mi1\fR if it is unable to get
the value.
.sp
.LP
The \fBtsol_lbuild_create()\fR function returns a variable of type
\fBModLabelData\fR that contains the information provided in the
\fBtsol_lbuild_create()\fR input parameter list, default values for information
not provided, and information on the widgets used by the label builder to
create the user interface.
.SH EXAMPLES
.LP
\fBExample 1 \fRCreate a Label Builder.
.sp
.in +2
.nf
(ModLabelData *)lbldata = tsol_lbuild_create(widget0, callback_function,
LBUILD_MODE, LBUILD_MODE_SL,
LBUILD_TITLE, "Setting Sensitivity Label",
LBUILD_VIEW, LBUILD_VIEW_INTERNAL,
LBUILD_X, 200,
LBUILD_Y, 200,
LBUILD_USERFIELD, "Pathname:",
LBUILD_SHOW, FALSE,
NULL);
.fi
.in -2
.sp
.LP
\fBExample 2 \fRQuery the Mode and Display the Label Builder.
.sp
.LP
These examples call the \fBtsol_lbuild_get()\fR function to query the mode
being used, and call the \fBtsol_lbuild_set()\fR function so the label builder
dialog box displays.
.sp
.in +2
.nf
mode = (int)tsol_lbuild_get(lbldata, LBUILD_MODE );
tsol_lbuild_set(lbldata, LBUILD_SHOW, TRUE, NULL);
.fi
.in -2
.sp
.LP
\fBExample 3 \fRDestroy the ModLabelData Variable.
.sp
.LP
This example destroys the \fBModLabelData\fR variable returned in the call to
\fBtsol_lbuild_create()\fR.
.sp
.in +2
.nf
tsol_lbuild_destroy(lbldata);
.fi
.in -2
.sp
.SH FILES
.sp
.ne 2
.mk
.na
\fB\fB/usr/dt/include/Dt/ModLabel.h\fR\fR
.ad
.sp .6
.RS 4n
Header file for label builder functions
.RE
.sp
.ne 2
.mk
.na
\fB\fB/etc/security/tsol/label_encodings\fR\fR
.ad
.sp .6
.RS 4n
The label encodings file contains the classification names, words, constraints,
and values for the defined labels of this system.
.RE
.SH ATTRIBUTES
.sp
.LP
See \fBattributes\fR(5) for descriptions of the following attributes:
.sp
.sp
.TS
tab(�) box;
cw(2.75i) |cw(2.75i)
lw(2.75i) |lw(2.75i)
.
ATTRIBUTE TYPE�ATTRIBUTE VALUE
_
Interface Stability�Committed
_
MT-Level�MT-Safe
.TE
.SH SEE ALSO
.sp
.LP
\fBlibtsol\fR(3LIB), \fBlabel_encodings\fR(4), \fBattributes\fR(5)
.sp
.LP
\fILabel Builder APIs\fR in \fISolaris Trusted Extensions Developer\&'s
Guide\fR
.SH NOTES
.sp
.LP
The functionality described on this manual page is available only if the system
is configured with Trusted Extensions.
|
