X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=man%2Fsystemd.exec.xml;h=7dbe05d265123e08411eedacfbbb7dd606551591;hb=a03c5fd2d86c4e3f758a5ca0d98638e5c8bd8d8d;hp=252992bc600e1516c020ca74c211894060aa4b51;hpb=66f756d437658cc464bfb5647c97efd0cf77f933;p=elogind.git
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml
index 252992bc6..7dbe05d26 100644
--- a/man/systemd.exec.xml
+++ b/man/systemd.exec.xml
@@ -472,7 +472,7 @@
StandardError=
Controls where file
- descriptor 2 (standard error) of the
+ descriptor 2 (STDERR) of the
executed processes is connected to.
The available options are identical to
those of
@@ -1050,14 +1050,6 @@
write will be
removed from the set.)
-
- Note that setting
- SystemCallFilter=
- implies a
- SystemCallArchitectures=
- setting of native
- (see below), unless that option is
- configured otherwise.
@@ -1071,9 +1063,9 @@
is triggered, instead of terminating
the process immediately. Takes an
error name such as
- EPERM,
- EACCES or
- EUCLEAN. When this
+ EPERM,
+ EACCES or
+ EUCLEAN. When this
setting is not used, or when the empty
string is assigned, the process will be
terminated immediately when the filter
@@ -1088,40 +1080,51 @@
identifiers to include in the system
call filter. The known architecture
identifiers are
- x86,
- x86-64,
- x32,
- arm as well as the
+ x86,
+ x86-64,
+ x32,
+ arm as well as the
special identifier
- native. Only system
+ native. Only system
calls of the specified architectures
will be permitted to processes of this
unit. This is an effective way to
disable compatibility with non-native
architectures for processes, for
- example to prohibit execution of 32-bit
- x86 binaries on 64-bit x86-64
+ example to prohibit execution of
+ 32-bit x86 binaries on 64-bit x86-64
systems. The special
- native identifier
+ native identifier
implicitly maps to the native
architecture of the system (or more
strictly: to the architecture the
system manager is compiled for). Note
that setting this option to a
non-empty list implies that
- native is included
+ native is included
too. By default, this option is set to
the empty list, i.e. no architecture
- system call filtering is applied. Note
- that configuring a system call filter
- with
- SystemCallFilter=
- (above) implies a
- native architecture
- list, unless configured
- otherwise.
+ system call filtering is
+ applied.
+
+ Personality=
+
+ Controls which
+ kernel architecture
+ uname2
+ shall report, when invoked by unit
+ processes. Takes one of
+ x86 and
+ x86-64. This is
+ useful when running 32bit services on
+ a 64bit host system. If not specified
+ the personality is left unmodified and
+ thus reflects the personality of the
+ host system's
+ kernel.
+
@@ -1205,6 +1208,17 @@
tty.
+
+ $MAINPID
+
+ The PID of the units
+ main process if it is known. This is
+ only set for control processes as
+ invoked by
+ ExecReload= and
+ similar.
+
+
$MANAGERPID