Interprocess Communications
The Trusted Solaris environment supports labeled interprocess communications (IPC) with access and ownership checks. It supports the transfer of security attribute information for network endpoint objects.
Labeled endpoint communications can be single-level, multilevel, or polyinstantiated:
-
Single-level port connection - Two unprivileged processes communicate at the same sensitivity label.
-
Multilevel port connections - A privileged server communicates with any number of unprivileged clients running at different sensitivity labels.
-
Polyinstantiated port connection (UNIX address family only) - A single-level connection using files of the same name residing in different single-level directories (SLDs) within a multilevel directory (MLD). Polyinstantiated port connections create multiple independent parallel binds.
See the following chapters for information: Chapter 10, Interprocess Communications, Chapter 11, System V Interprocess Communication, Chapter 12, Trusted Security Information Exchange Library, and Chapter 13, Remote Procedure Calls.
- © 2010, Oracle Corporation and/or its affiliates