NAME seccomp - operate on Secure Computing state of the process LIBRARY Standard C library ( libc ... SYNOPSIS #include <linux/seccomp.h> /* Definition of SECCOMP_* constants */ #i…NAME seccomp_unotify - Seccomp user-space notification mechanism LIBRARY Standard C library ( libc , -lc ) SYNOPSIS ... include <linux/seccomp.h> #include <linux/filter.h> #include…Linux 3.5) Stop the tracee when a seccomp (2) SECCOMP_RET_TRACE rule is triggered ... such that status>>8 == (SIGTRAP | (PTRACE_EVENT_SECCOMP<<8)) While this triggers a PTRACE_EVEN…NAME PR_GET_SECCOMP - get the secure computing mode LIBRARY Standard C library ( libc ... constants */ #include <sys/prctl.h> int prctl(PR_GET_SECCOMP); DESCRIPTION Return the secu…delivering the trap. In the case of seccomp (2), the tracee will be shown ... SIGSYS , generated (since Linux 3.5) when a seccomp filter returns SECCOMP_RET_TRAP , fillsdelivering the trap. In the case of seccomp (2), the tracee will be shown ... SIGSYS , generated (since Linux 3.5) when a seccomp filter returns SECCOMP_RET_TRAP , fillsPDEATHSIG PR_SET_PTRACER PR_SET_SECCOMP PR_GET_SECCOMP PR_SET_SECUREBITS ... 2const), PR_SET_PTRACER (2const), PR_SET_SECCOMP (2const), PR_GET_SECCOMP (2consteach other. For example, setting up a seccomp (2) profile can conflict with a close ... file descriptors are closed before the seccomp (2) profile is set up, the profile setupprivs bit set. As for seccomp (2), this avoids scenarios where unprivileged processes can affectsetscheduler (2) 2.0 sched_yield (2) 2.0 seccomp (2) 3.17 select (2) 1.0 semctlsockets API. This facilitates the creation of seccomp (2) filters that filter sockets system callskernel source tree. SEE ALSO seccomp (2), bpf-helpers (7), socket