seccomp.2: Document SECCOMP_RET_USER_NOTIF

author Tycho Andersen <tycho@tycho.ws>

Sat, 26 Sep 2020 13:29:47 +0000 (15:29 +0200)

committer Michael Kerrisk <mtk.manpages@gmail.com>

Wed, 9 Jun 2021 22:40:16 +0000 (10:40 +1200)
author Tycho Andersen <tycho@tycho.ws>
Sat, 26 Sep 2020 13:29:47 +0000 (15:29 +0200)
committer Michael Kerrisk <mtk.manpages@gmail.com>
Wed, 9 Jun 2021 22:40:16 +0000 (10:40 +1200)
diff --git a/man2/seccomp.2 b/man2/seccomp.2

index 0019b5a9bd956b011f85595bdc241637420809bf..5ead163b78bfea667f0572e31ae0ff09f9d766a6 100644 (file)
--- a/man2/seccomp.2
+++ b/man2/seccomp.2
@@ -600,6 +600,17 @@ portion of the filter's return value being passed to user space as the
  .IR errno
  value without executing the system call.
  .TP
+.BR SECCOMP_RET_USER_NOTIF " (since Linux 4.21)"
+Forwards the syscall to an attached listener in userspace to allow userspace to
+decide what to do with the syscall. If there is no attached listener (either
+because the filter was not installed with the
+.BR SECCOMP_FILTER_FLAG_NEW_LISTENER
+or because the fd was closed), the filter returns
+.BR ENOSYS
+similar to what happens when a filter returns
+.BR SECCOMP_RET_TRACE
+and there is no tracer. See "Userspace Notification" below for more details.
+.TP
  .BR SECCOMP_RET_TRACE
  When returned, this value will cause the kernel to attempt to notify a
  .BR ptrace (2)-based
author	Tycho Andersen <tycho@tycho.ws>
	Sat, 26 Sep 2020 13:29:47 +0000 (15:29 +0200)
committer	Michael Kerrisk <mtk.manpages@gmail.com>
	Wed, 9 Jun 2021 22:40:16 +0000 (10:40 +1200)