From 37a21e6c64695d3f64b9d68ee32d43345c9826ec Mon Sep 17 00:00:00 2001
From: John Turner <jturner.usa@gmail.com>
Date: Tue, 26 Aug 2025 21:21:40 -0400
Subject: mention sidcontext

---
 blog/access-control.org | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/blog/access-control.org b/blog/access-control.org
index 0a37efb..79e3039 100644
--- a/blog/access-control.org
+++ b/blog/access-control.org
@@ -236,6 +236,10 @@ Another example would be transitioning from one context to another when executin
 *** how do processes get typed
 With dssp5, processes will start in the ~sys.subj~ context which is basically unconfined and has access to everything. Processes change types via type transitions or with ~runcon~. We will go over type transitions a bit more later when we define the weechat module.
 
+#+BEGIN_SRC
+  (sidcontext init (sys.id sys.role sys.subj sys.lowlow)) ;; userspace_initial_context
+#+END_SRC
+
 *** cil overview
 Cil is the language we will write policy in. It's a simple sexpr based language, with namespaces, types, typeattributes (metatypes), macros and templates.
 
-- 
cgit v1.2.3