Changeset View
Changeset View
Standalone View
Standalone View
lib/libc/sys/procctl.2
Show All 23 Lines | |||||
.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||||
.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||||
.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||||
.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||||
.\" SUCH DAMAGE. | .\" SUCH DAMAGE. | ||||
.\" | .\" | ||||
.\" $FreeBSD$ | .\" $FreeBSD$ | ||||
.\" | .\" | ||||
.Dd May 12, 2018 | .Dd February 23, 2019 | ||||
.Dt PROCCTL 2 | .Dt PROCCTL 2 | ||||
.Os | .Os | ||||
.Sh NAME | .Sh NAME | ||||
.Nm procctl | .Nm procctl | ||||
.Nd control processes | .Nd control processes | ||||
.Sh LIBRARY | .Sh LIBRARY | ||||
.Lb libc | .Lb libc | ||||
.Sh SYNOPSIS | .Sh SYNOPSIS | ||||
Show All 26 Lines | |||||
.Fa id . | .Fa id . | ||||
.El | .El | ||||
.Pp | .Pp | ||||
The control request to perform is specified by the | The control request to perform is specified by the | ||||
.Fa cmd | .Fa cmd | ||||
argument. | argument. | ||||
The following commands are supported: | The following commands are supported: | ||||
.Bl -tag -width "Dv PROC_TRAPCAP_STATUS" | .Bl -tag -width "Dv PROC_TRAPCAP_STATUS" | ||||
.It Dv PROC_ASLR_CTL | |||||
Controls the Address Space Layour Randomization (ASLR) in the program | |||||
juan.molina_club.fr: s/Layour/Layout | |||||
images created | |||||
by | |||||
.Xr execve 2 | |||||
in the specified process or its descendants that did not changed | |||||
the control nor modified it by other means. | |||||
The | |||||
.Xa arg | |||||
Not Done Inline ActionsIs Xa the correct macro name? 0mp: Is `Xa` the correct macro name? | |||||
parameter must point to the integer variable holding one of the following | |||||
values: | |||||
.Bl -tag -width "Dv PROC_ASLR_FORCE_DISABLE" | |||||
Not Done Inline ActionsMacros are not expanded in the argument provided to -width (in this case ("Dv PROC_ASLR_FORCE_DISABLE")). It is enough to write "PROC_ASLR_FORCE_DISABLE" or even PROC_ASLR_FORCE_DISABLE. 0mp: Macros are not expanded in the argument provided to `-width` (in this case (`"Dv… | |||||
.It Dv PROC_ASLR_FORCE_ENABLE | |||||
Request that ASLR is enabled after execution, even if it is disabled | |||||
system-wide. | |||||
The image flag and set-uid might prevent ASLR enablement still. | |||||
.It Dv PROC_ASLR_FORCE_DISABLE | |||||
Request that ASLR is disabled after execution. | |||||
Same notes as for | |||||
.Dv PROC_ASKR_FORCE_ENABLE | |||||
apply. | |||||
.It Dv PROC_ASLR_NOFORCE | |||||
Use system-wide configured policy for ASLR. | |||||
.El | |||||
.It Dv PROC_ASLR_STATUS | |||||
Returns the current status of ASLR enablement for the target process. | |||||
The | |||||
.Va arg | |||||
parameter must point to the integer variable, where one of the | |||||
following values is written: | |||||
.Bl -tag -width "Dv PROC_ASLR_FORCE_DISABLE" | |||||
Not Done Inline ActionsMacros are not expanded in the argument provided to -width (in this case ("Dv PROC_ASLR_FORCE_DISABLE")). It is enough to write "PROC_ASLR_FORCE_DISABLE" or even PROC_ASLR_FORCE_DISABLE. 0mp: Macros are not expanded in the argument provided to `-width` (in this case (`"Dv… | |||||
.It Dv PROC_ASLR_FORCE_ENABLE | |||||
.It Dv PROC_ASLR_FORCE_DISABLE | |||||
.It Dv PROC_ASLR_NOFORCE | |||||
.El | |||||
.Pp | |||||
If the currently executed image in the process itself has ASLR enabled, | |||||
the | |||||
.Dv PROC_ASLR_ACTIVE | |||||
flag is or-ed with the value listed above. | |||||
.It Dv PROC_SPROTECT | .It Dv PROC_SPROTECT | ||||
Set process protection state. | Set process protection state. | ||||
This is used to mark a process as protected from being killed if the system | This is used to mark a process as protected from being killed if the system | ||||
exhausts the available memory and swap. | exhausts the available memory and swap. | ||||
The | The | ||||
.Fa arg | .Fa arg | ||||
parameter must point to an integer containing an operation and zero or more | parameter must point to an integer containing an operation and zero or more | ||||
optional flags. | optional flags. | ||||
▲ Show 20 Lines • Show All 471 Lines • Show Last 20 Lines |
s/Layour/Layout