On Tue, Jun 24, 2014 at 11:06 AM, Andy Lutomirski <luto@xxxxxxxxxxxxxx> wrote: > On Mon, Jun 23, 2014 at 3:01 PM, Kees Cook <keescook@xxxxxxxxxxxx> wrote: >> Combines documentation from prctl, and in-kernel seccomp_filter.txt, >> along with new details specific to the new syscall. >> >> Signed-off-by: Kees Cook <keescook@xxxxxxxxxxxx> >> --- >> man2/seccomp.2 | 333 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++ >> 1 file changed, 333 insertions(+) >> create mode 100644 man2/seccomp.2 >> >> diff --git a/man2/seccomp.2 b/man2/seccomp.2 >> new file mode 100644 >> index 0000000..de7fbf7 >> --- /dev/null >> +++ b/man2/seccomp.2 >> @@ -0,0 +1,333 @@ >> +.\" Copyright (C) 2014 Kees Cook <keescook@xxxxxxxxxxxx> >> +.\" and Copyright (C) 2012 Will Drewry <wad@xxxxxxxxxxxx> >> +.\" and Copyright (C) 2008 Michael Kerrisk <mtk.manpages@xxxxxxxxx> >> +.\" >> +.\" %%%LICENSE_START(VERBATIM) >> +.\" Permission is granted to make and distribute verbatim copies of this >> +.\" manual provided the copyright notice and this permission notice are >> +.\" preserved on all copies. >> +.\" >> +.\" Permission is granted to copy and distribute modified versions of this >> +.\" manual under the conditions for verbatim copying, provided that the >> +.\" entire resulting derived work is distributed under the terms of a >> +.\" permission notice identical to this one. >> +.\" >> +.\" Since the Linux kernel and libraries are constantly changing, this >> +.\" manual page may be incorrect or out-of-date. The author(s) assume no >> +.\" responsibility for errors or omissions, or for damages resulting from >> +.\" the use of the information contained herein. The author(s) may not >> +.\" have taken the same level of care in the production of this manual, >> +.\" which is licensed free of charge, as they might when working >> +.\" professionally. >> +.\" >> +.\" Formatted or processed versions of this manual, if unaccompanied by >> +.\" the source, must acknowledge the copyright and authors of this work. >> +.\" %%%LICENSE_END >> +.\" >> +.TH SECCOMP 2 2014-06-23 "Linux" "Linux Programmer's Manual" >> +.SH NAME >> +seccomp \- >> +operate on Secure Computing state of the process >> +.SH SYNOPSIS >> +.nf >> +.B #include <linux/seccomp.h> >> +.B #include <linux/filter.h> >> +.B #include <linux/audit.h> >> +.B #include <linux/signal.h> >> +.B #include <sys/ptrace.h> >> + >> +.BI "int seccomp(unsigned int " operation ", unsigned int " flags , >> +.BI " unsigned char *" args ); > > At the very least, shouldn't this be void *args? Yeah, good point. Fixed for the next version... -Kees -- Kees Cook Chrome OS Security -- To unsubscribe from this list: send the line "unsubscribe linux-api" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
