[PATCH v7 1/1] man-pages: seccomp.2: document syscall
From: Kees Cook <hidden>
Date: 2014-06-24 19:18:29
Also in:
linux-api, linux-arch, linux-mips, lkml
On Tue, Jun 24, 2014 at 11:06 AM, Andy Lutomirski [off-list ref] wrote:
On Mon, Jun 23, 2014 at 3:01 PM, Kees Cook [off-list ref] wrote:quoted
Combines documentation from prctl, and in-kernel seccomp_filter.txt, along with new details specific to the new syscall. Signed-off-by: Kees Cook <redacted> --- man2/seccomp.2 | 333 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 333 insertions(+) create mode 100644 man2/seccomp.2diff --git a/man2/seccomp.2 b/man2/seccomp.2 new file mode 100644 index 0000000..de7fbf7 --- /dev/null +++ b/man2/seccomp.2@@ -0,0 +1,333 @@ +.\" Copyright (C) 2014 Kees Cook <keescook@chromium.org> +.\" and Copyright (C) 2012 Will Drewry <wad@chromium.org> +.\" and Copyright (C) 2008 Michael Kerrisk <mtk.manpages@gmail.com> +.\" +.\" %%%LICENSE_START(VERBATIM) +.\" Permission is granted to make and distribute verbatim copies of this +.\" manual provided the copyright notice and this permission notice are +.\" preserved on all copies. +.\" +.\" Permission is granted to copy and distribute modified versions of this +.\" manual under the conditions for verbatim copying, provided that the +.\" entire resulting derived work is distributed under the terms of a +.\" permission notice identical to this one. +.\" +.\" Since the Linux kernel and libraries are constantly changing, this +.\" manual page may be incorrect or out-of-date. The author(s) assume no +.\" responsibility for errors or omissions, or for damages resulting from +.\" the use of the information contained herein. The author(s) may not +.\" have taken the same level of care in the production of this manual, +.\" which is licensed free of charge, as they might when working +.\" professionally. +.\" +.\" Formatted or processed versions of this manual, if unaccompanied by +.\" the source, must acknowledge the copyright and authors of this work. +.\" %%%LICENSE_END +.\" +.TH SECCOMP 2 2014-06-23 "Linux" "Linux Programmer's Manual" +.SH NAME +seccomp \- +operate on Secure Computing state of the process +.SH SYNOPSIS +.nf +.B #include <linux/seccomp.h> +.B #include <linux/filter.h> +.B #include <linux/audit.h> +.B #include <linux/signal.h> +.B #include <sys/ptrace.h> + +.BI "int seccomp(unsigned int " operation ", unsigned int " flags , +.BI " unsigned char *" args );At the very least, shouldn't this be void *args?
Yeah, good point. Fixed for the next version... -Kees -- Kees Cook Chrome OS Security