Privileged Operations

The system calls that get and set process and file system object CMW labels require mandatory and discretionary access to the process or file system object and may require privilege if access is denied by the system security policy. See "System Calls" for a list of system calls.

Translating Binary Labels

The calling process needs the sys_trans_label privilege in its effective set to translate a label between binary and text if the label being translated is not dominated by the process's sensitivity label. This privilege is also required to check if a label is valid when the process sensitivity label does not dominate the label being checked.

Setting Process Labels

The calling process needs the proc_setsl privilege in its effective set to set its own sensitivity label to another label not equal to the current sensitivity label.

Downgrading and Upgrading Sensitivity Labels

The calling process needs the file_owner privilege in its effective set to downgrade the sensitivity label on a file not owned by the calling process.

Downgrading Sensitivity Labels

A process can set the sensitivity label on a file system object to a new sensitivity label that does not dominate the object's existing sensitivity label with the file_downgrade_sl privilege in its effective set.

Upgrading Sensitivity Labels

A process can set the sensitivity label on a file system object to a new sensitivity label that dominates the object's existing sensitivity label with the file_upgrade_sl privilege in its effective set.