LDP
/
man-pages
mirror of https://github.com/mkerrisk/man-pages
0
1
Fork 0
Code Releases Activity

ptrace.2: Minor tweaks to Tycho's patch 

Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
Michael Kerrisk 2015-09-11 14:00:59 +02:00
parent e3cfeba2ff
commit b4b436adfb
1 changed files with 12 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
man2/ptrace.2
View File

@ -593,14 +593,18 @@ The seccomp event message data (from the
portion of the seccomp filter rule) can be retrieved with
.BR PTRACE_GETEVENTMSG .
.TP
.BR PTRACE_O_SUSPEND_SECCOMP " (since Linux 4.2)"
Suspend the tracee's seccomp protections. This applies regardless of mode, and
can be used when the tracee has not yet installed seccomp filters. That is, a
valid usecase is to suspend a tracee's seccomp protections before they are
installed by the tracee, let the tracee install the filters, and then clear
this flag when the filters should be resumed. Setting this option requires that
the tracer have
.BR CAP_SYS_ADMIN ,
.BR PTRACE_O_SUSPEND_SECCOMP " (since Linux 4.3)"
.\" commit 13c4a90119d28cfcb6b5bdd820c233b86c2b0237
Suspend the tracee's seccomp protections.
This applies regardless of mode, and
can be used when the tracee has not yet installed seccomp filters.
That is, a valid use case is to suspend a tracee's seccomp protections
before they are installed by the tracee,
let the tracee install the filters,
and then clear this flag when the filters should be resumed.
Setting this option requires that the tracer have the
.BR CAP_SYS_ADMIN
capability,
not have any seccomp protections installed, and not have
.BR PTRACE_O_SUSPEND_SECCOMP
set on itself.