kcmp.2: Note about SECURITY_YAMA

author Shawn Landden <shawn@churchofgit.com>

Thu, 28 Nov 2013 21:42:13 +0000 (13:42 -0800)

committer Michael Kerrisk <mtk.manpages@gmail.com>

Thu, 9 Jun 2016 20:11:53 +0000 (22:11 +0200)
author Shawn Landden <shawn@churchofgit.com>
Thu, 28 Nov 2013 21:42:13 +0000 (13:42 -0800)
committer Michael Kerrisk <mtk.manpages@gmail.com>
Thu, 9 Jun 2016 20:11:53 +0000 (22:11 +0200)
diff --git a/man2/kcmp.2 b/man2/kcmp.2

index b13cc437c5af26915fa200a41b01425b668e7f33..d834a17bfd30c42a4d58925b734123d9658333f8 100644 (file)
--- a/man2/kcmp.2
+++ b/man2/kcmp.2
@@ -187,7 +187,12 @@ is invalid.
  Insufficient permission to inspect process resources.
  The
  .B CAP_SYS_PTRACE
-capability is required to inspect processes that you do not own.
+capability is required to inspect processes that you do not own. Other
+limitations on ptrace apply, such as
+.BR CONFIG_SECURITY_YAMA ,
+which when /proc/sys/kernel/yama/ptrace_scope is 2 (the default) limits
+.BR kcmp()
+to child processes.
  .TP
  .B ESRCH
  Process
author	Shawn Landden <shawn@churchofgit.com>
	Thu, 28 Nov 2013 21:42:13 +0000 (13:42 -0800)
committer	Michael Kerrisk <mtk.manpages@gmail.com>
	Thu, 9 Jun 2016 20:11:53 +0000 (22:11 +0200)