getexecattr-gate Udiff usr/src/man/man3secdb/getexecattr.3secdb

Print this page

9728 3secdb man pages need some tlc

@@ -1,11 +1,12 @@
 '\" te
+.\" Copyright 2018 Peter Tribble
 .\" Copyright (c) 2005, Sun Microsystems, Inc.  All Rights Reserved.
 .\" The contents of this file are subject to the terms of the Common Development and Distribution License (the "License").  You may not use this file except in compliance with the License.
 .\" You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE or http://www.opensolaris.org/os/licensing.  See the License for the specific language governing permissions and limitations under the License.
 .\" When distributing Covered Code, include this CDDL HEADER in each file and include the License file at usr/src/OPENSOLARIS.LICENSE.  If applicable, add the following below this CDDL HEADER, with the fields enclosed by brackets "[]" replaced with your own identifying information: Portions Copyright [yyyy] [name of copyright owner]
-.TH GETEXECATTR 3SECDB "May 27, 2014"
+.TH GETEXECATTR 3SECDB "Aug 13, 2018"
 .SH NAME
 getexecattr, free_execattr, setexecattr, endexecattr, getexecuser, getexecprof,
 match_execattr \- get execution profile entry
 .SH SYNOPSIS
 .LP

@@ -49,11 +50,10 @@
 \fBexecattr_t *\fR\fBmatch_execattr\fR(\fBexecattr_t *\fR\fIep\fR, \fBchar *\fR\fIprofname\fR,
      \fBchar *\fR\fItype\fR, \fBchar *\fR\fIid\fR);
 .fi
 
 .SH DESCRIPTION
-.sp
 .LP
 The \fBgetexecattr()\fR function returns a single \fBexec_attr\fR(4) entry.
 Entries can come from any of the sources specified in the
 \fBnsswitch.conf\fR(4) file.
 .sp

@@ -68,13 +68,13 @@
 structure defined in  <\fBexec_attr.h\fR> with the following members:
 .sp
 .in +2
 .nf
 char              *name;   /* name of the profile */
-char              *type;   /* type of profile */
 char              *policy; /* policy under which the attributes are */
                            /* relevant*/
+char              *type;   /* type of profile */
 char              *res1;   /* reserved for future use */
 char              *res2;   /* reserved for future use */
 char              *id;     /* unique identifier */
 kva_t             *attr;   /* attributes */
 struct execattr_s *next;   /* optional pointer to next profile */

@@ -136,18 +136,16 @@
 matching criteria. In the event that multiple entries meet the matching
 criteria, only a pointer to the first entry is returned. The
 \fBkva_match\fR(3SECDB) function can be used to look up a key in a key-value
 array.
 .SH RETURN VALUES
-.sp
 .LP
 Those functions returning data only return data related to the active policy.
 The \fBgetexecattr()\fR function returns a pointer to a  \fBexecattr_t\fR if it
 successfully enumerates an entry; otherwise it returns \fINULL\fR, indicating
 the end of the enumeration.
 .SH USAGE
-.sp
 .LP
 The \fBgetexecattr()\fR, \fBgetexecuser()\fR, and \fBgetexecprof()\fR functions
 all allocate memory for the pointers they return. This memory should be
 deallocated with the \fBfree_execattr()\fR call. The \fBmatch_execattr()\fR
 function does not allocate any memory. Therefore, pointers returned by this

@@ -186,11 +184,11 @@
 \fBExample 3 \fRTell everything that can be done in the Filesystem Security
 profile.
 .sp
 .in +2
 .nf
-if ((execprof=getexecprof("Filesystem Security", KV_NULL, NULL,
+if ((execprof=getexecprof("Filesystem Security", NULL, NULL,
     GET_ALL))==NULL)) {
         /* do error */
 }
 .fi
 .in -2

@@ -198,16 +196,10 @@
 .LP
 \fBExample 4 \fRTell if the \fBtar\fR utility is in a profile assigned to user
 wetmore. If there is no exact profile entry, the wildcard (*), if defined, is
 returned.
 .sp
-.LP
-The following tells if the \fBtar\fR utility is in a profile assigned to user
-wetmore. If there is no exact profile entry, the wildcard (*), if defined, is
-returned.
-
-.sp
 .in +2
 .nf
 if ((execprof=getexecuser("wetmore", KV_COMMAND, "/usr/bin/tar",
     GET_ONE))==NULL) {
         /* do error */

@@ -214,17 +206,16 @@
 }
 .fi
 .in -2
 
 .SH FILES
-.sp
 .ne 2
 .na
 \fB\fB/etc/nsswitch.conf\fR\fR
 .ad
 .RS 29n
-configuration file lookup information for the name server switch
+configuration file lookup information for the name service switch
 .RE
 
 .sp
 .ne 2
 .na

@@ -250,12 +241,20 @@
 .ad
 .RS 29n
 policy definitions
 .RE
 
-.SH ATTRIBUTES
 .sp
+.ne 2
+.na
+\fB\fB/etc/security/prof_attr\fR\fR
+.ad
+.RS 29n
+profile information
+.RE
+
+.SH ATTRIBUTES
 .LP
 See \fBattributes\fR(5) for descriptions of the following attributes:
 .sp
 
 .sp

@@ -267,10 +266,10 @@
 _
 MT-Level        MT-Safe
 .TE
 
 .SH SEE ALSO
-.sp
 .LP
-\fBgetauthattr\fR(3SECDB), \fBgetuserattr\fR(3SECDB), \fBkva_match\fR(3SECDB),
-\fBexec_attr\fR(4), \fBpasswd\fR(4), \fBpolicy.conf\fR(4), \fBprof_attr\fR(4),
-\fBuser_attr\fR(4), \fBattributes\fR(5)
+\fBgetauthattr\fR(3SECDB), \fBgetprofattr\fR(3SECDB), \fBgetuserattr\fR(3SECDB),
+\fBkva_match\fR(3SECDB), \fBexec_attr\fR(4), \fBpasswd\fR(4),
+\fBpolicy.conf\fR(4), \fBprof_attr\fR(4), \fBuser_attr\fR(4),
+\fBattributes\fR(5)