From 422dd47fd8d1c27371a0260e81e20b78dd24264a Mon Sep 17 00:00:00 2001 From: Michael Kerrisk Date: Sun, 13 Sep 2015 11:59:48 +0200 Subject: [PATCH] getauxval.3: Add some details for AT_SECURE Signed-off-by: Michael Kerrisk --- man3/getauxval.3 | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/man3/getauxval.3 b/man3/getauxval.3 index 93910e756..c42891c07 100644 --- a/man3/getauxval.3 +++ b/man3/getauxval.3 @@ -148,8 +148,10 @@ The address of sixteen bytes containing a random value. .BR AT_SECURE Has a nonzero value if this executable should be treated securely. Most commonly, a nonzero value indicates that the process is -executing a set-user-ID or set-group-ID binary, -or a binary file that has capabilities (see +executing a set-user-ID or set-group-ID binary +(so that it's real and effective UIDs or GIDs differ from one another), +or that it gained capabilities by executing +a binary file that has capabilities (see .BR capabilities (7)). Alternatively, a nonzero value may be triggered by a Linux Security Module.