From e11179975f3bdab5824e967eb6eb8fdf4b0741b3 Mon Sep 17 00:00:00 2001 From: Robert Watson Date: Sat, 22 Jan 2005 18:27:28 +0000 Subject: [PATCH] Change an ordered list to an itemized list. Add mention of the mac_get_peer() interface, and also the ioctls to get and set network interface labels. Sponsored by: SPAWAR, McAfee Research Obtained from: TrustedBSD Project --- .../books/arch-handbook/mac/chapter.sgml | 15 +++++++++++++-- 1 file changed, 13 insertions(+), 2 deletions(-) diff --git a/en_US.ISO8859-1/books/arch-handbook/mac/chapter.sgml b/en_US.ISO8859-1/books/arch-handbook/mac/chapter.sgml index e88e9d890d..cf5e833e7b 100644 --- a/en_US.ISO8859-1/books/arch-handbook/mac/chapter.sgml +++ b/en_US.ISO8859-1/books/arch-handbook/mac/chapter.sgml @@ -506,7 +506,7 @@ The following MAC-related system calls are present in the FreeBSD kernel: - + mac_get_proc() may be used to retrieve the label of the current process. @@ -573,7 +573,18 @@ execution of a new program. This change in label on execution is referred to as a "transition". - + + + mac_get_peer(), actually implemented + via a socket option, retrieves the label of a remote peer on a + socket, if availabl. + + + + In addition to these system calls, the + SIOCSIGMAC and SIOCSIFMAC + network interface ioctls permit the labels on network interfaces to + be retrieved and set.