From 96989965042a515a3cbcb50e9b98243b9b7d4c37 Mon Sep 17 00:00:00 2001 From: Paul Moore Date: Mon, 31 Oct 2022 13:21:33 -0600 Subject: api: add the SCMP_FLTATR_CTL_WAITKILL filter attribute The SCMP_FLTATR_CTL_WAITKILL attribute requests that the SECCOMP_FILTER_FLAG_WAIT_KILLABLE_RECV flag be passed to the seccomp(2) system call when possible, which is currently only when the SECCOMP_FILTER_FLAG_NEW_LISTENER flag is also set. Signed-off-by: Paul Moore Signed-off-by: Tom Hromatka --- doc/man/man3/seccomp_api_get.3 | 5 ++++- doc/man/man3/seccomp_attr_set.3 | 8 +++++++- 2 files changed, 11 insertions(+), 2 deletions(-) (limited to 'doc') diff --git a/doc/man/man3/seccomp_api_get.3 b/doc/man/man3/seccomp_api_get.3 index ea2ea75..549cce1 100644 --- a/doc/man/man3/seccomp_api_get.3 +++ b/doc/man/man3/seccomp_api_get.3 @@ -1,4 +1,4 @@ -.TH "seccomp_api_get" 3 "6 November 2020" "paul@paul-moore.com" "libseccomp Documentation" +.TH "seccomp_api_get" 3 "22 September 2022" "paul@paul-moore.com" "libseccomp Documentation" .\" ////////////////////////////////////////////////////////////////////////// .SH NAME .\" ////////////////////////////////////////////////////////////////////////// @@ -60,6 +60,9 @@ The SCMP_ACT_NOTIFY action and the notify APIs are supported. .TP .B 6 The simultaneous use of SCMP_FLTATR_CTL_TSYNC and the notify APIs are supported. +.TP +.B 7 +The SCMP_FLTATR_CTL_WAITKILL filter attribute is supported. .\" ////////////////////////////////////////////////////////////////////////// .SH RETURN VALUE .\" ////////////////////////////////////////////////////////////////////////// diff --git a/doc/man/man3/seccomp_attr_set.3 b/doc/man/man3/seccomp_attr_set.3 index 4341abc..571010e 100644 --- a/doc/man/man3/seccomp_attr_set.3 +++ b/doc/man/man3/seccomp_attr_set.3 @@ -1,4 +1,4 @@ -.TH "seccomp_attr_set" 3 "06 June 2020" "paul@paul-moore.com" "libseccomp Documentation" +.TH "seccomp_attr_set" 3 "21 September 2022" "paul@paul-moore.com" "libseccomp Documentation" .\" ////////////////////////////////////////////////////////////////////////// .SH NAME .\" ////////////////////////////////////////////////////////////////////////// @@ -132,6 +132,12 @@ A flag to specify if libseccomp should pass system error codes back to the caller instead of the default -ECANCELED. Defaults to off .RI ( value == 0). +.TP +.B SCMP_FLTATR_CTL_WAITKILL +A flag to specify if libseccomp should request wait killable semantics when +possible. Defaults to off +.RI ( value +== 0). .\" ////////////////////////////////////////////////////////////////////////// .SH RETURN VALUE .\" ////////////////////////////////////////////////////////////////////////// -- cgit v1.2.1