mirror of https://github.com/mkerrisk/man-pages
seccomp.2: Document SECCOMP_RET_USER_NOTIF
Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
6fc8b8a0a1
commit
c734bbd265
|
@ -600,6 +600,17 @@ portion of the filter's return value being passed to user space as the
|
||||||
.IR errno
|
.IR errno
|
||||||
value without executing the system call.
|
value without executing the system call.
|
||||||
.TP
|
.TP
|
||||||
|
.BR SECCOMP_RET_USER_NOTIF " (since Linux 4.21)"
|
||||||
|
Forwards the syscall to an attached listener in userspace to allow userspace to
|
||||||
|
decide what to do with the syscall. If there is no attached listener (either
|
||||||
|
because the filter was not installed with the
|
||||||
|
.BR SECCOMP_FILTER_FLAG_NEW_LISTENER
|
||||||
|
or because the fd was closed), the filter returns
|
||||||
|
.BR ENOSYS
|
||||||
|
similar to what happens when a filter returns
|
||||||
|
.BR SECCOMP_RET_TRACE
|
||||||
|
and there is no tracer. See "Userspace Notification" below for more details.
|
||||||
|
.TP
|
||||||
.BR SECCOMP_RET_TRACE
|
.BR SECCOMP_RET_TRACE
|
||||||
When returned, this value will cause the kernel to attempt to notify a
|
When returned, this value will cause the kernel to attempt to notify a
|
||||||
.BR ptrace (2)-based
|
.BR ptrace (2)-based
|
||||||
|
|
Loading…
Reference in New Issue