| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <1406296033-32693-18-git-send-email-drysdale@google.com> Date: Fri, 25 Jul 2014 14:47:13 +0100 From: David Drysdale <drysdale@...gle.com> To: linux-security-module@...r.kernel.org, linux-kernel@...r.kernel.org, Greg Kroah-Hartman <gregkh@...uxfoundation.org> Cc: Alexander Viro <viro@...iv.linux.org.uk>, Meredydd Luff <meredydd@...atehouse.org>, Kees Cook <keescook@...omium.org>, James Morris <james.l.morris@...cle.com>, Andy Lutomirski <luto@...capital.net>, Paolo Bonzini <pbonzini@...hat.com>, Paul Moore <paul@...l-moore.com>, Christoph Hellwig <hch@...radead.org>, linux-api@...r.kernel.org, David Drysdale <drysdale@...gle.com> Subject: [PATCH 6/6] prctl.2: describe PR_SET_OPENAT_BENEATH/PR_GET_OPENAT_BENEATH --- man2/prctl.2 | 35 +++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) diff --git a/man2/prctl.2 b/man2/prctl.2 index 119989183ed3..f5f71af249f2 100644 --- a/man2/prctl.2 +++ b/man2/prctl.2 @@ -295,6 +295,41 @@ A value of 1 indicates .BR execve (2) will operate in the privilege-restricting mode described above. .TP +.BR PR_SET_OPENAT_BENEATH " (since Linux 3.??)" +Set the calling process's +.I openat_beneath +bit to the value in +.IR arg2 . +With +.I openat_beneath +set to 1, all +.BR openat (2) +and +.BR open (2) +operations act as though the +.B O_BENEATH +flag is set. +Once set, this bit cannot be unset. +The setting of this bit is inherited by children created by +.BR fork (2) +and +.BR clone (2), +and preserved across +.BR execve (2). +.TP +.BR PR_GET_OPENAT_BENEATH " (since Linux 3.??)" +Return (as the function result) the value of the +.I openat_beneath +bit for the current process. +A value of 0 indicates the regular behavior. +A value of 1 indicates that +.BR openat (2) +and +.BR open (2) +will operate in the implicit +.B O_BENEATH +mode described above. +.TP .BR PR_SET_PDEATHSIG " (since Linux 2.1.57)" Set the parent process death signal of the calling process to \fIarg2\fP (either a signal value -- 2.0.0.526.g5318336 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists