Process CMW Label

When a process is started from the workspace, the process CMW label inherits the sensitivity value of the workspace CMW label.

When a new process is created using fork(2), the new process inherits the CMW label values of its calling process.

When a new program is started with exec(1), the exec'ing process must have both discretionary and mandatory access to the new program's file.

The setcmwplabel(2) system call programmatically sets the process CMW label. You would use this call after forking or exec'ing a new process that should operate at another CMW label from the calling process. Privileges may be required. See "Privileged Operations".

Previous: CMW Label Description
Next: Object CMW Label