aboutsummaryrefslogtreecommitdiffstats
path: root/src/firejail/usage.c
diff options
context:
space:
mode:
Diffstat (limited to 'src/firejail/usage.c')
-rw-r--r--src/firejail/usage.c9
1 files changed, 8 insertions, 1 deletions
diff --git a/src/firejail/usage.c b/src/firejail/usage.c
index d3cad1e63..c829b94f2 100644
--- a/src/firejail/usage.c
+++ b/src/firejail/usage.c
@@ -70,6 +70,8 @@ void usage(void) {
70 printf("\t\tFirejail software build and exit.\n\n"); 70 printf("\t\tFirejail software build and exit.\n\n");
71 printf("\t--debug-errnos - print all recognized error numbres in the current\n"); 71 printf("\t--debug-errnos - print all recognized error numbres in the current\n");
72 printf("\t\tFirejail software build and exit.\n\n"); 72 printf("\t\tFirejail software build and exit.\n\n");
73 printf("\t--debug-protocols - print all recognized protocols in the current\n");
74 printf("\t\tFirejail software build and exit.\n\n");
73 printf("\t--debug-syscalls - print all recognized system calls in the current\n"); 75 printf("\t--debug-syscalls - print all recognized system calls in the current\n");
74 printf("\t\tFirejail software build and exit.\n\n"); 76 printf("\t\tFirejail software build and exit.\n\n");
75 printf("\t--defaultgw=address - use this address as default gateway in the new\n"); 77 printf("\t--defaultgw=address - use this address as default gateway in the new\n");
@@ -192,6 +194,10 @@ void usage(void) {
192 printf("\t\tAll modifications are discarded when the sandbox is closed.\n\n"); 194 printf("\t\tAll modifications are discarded when the sandbox is closed.\n\n");
193 195
194 printf("\t--profile=filename - use a custom profile.\n\n"); 196 printf("\t--profile=filename - use a custom profile.\n\n");
197
198 printf("\t--protocol=protocol,protocol,protocol - enable protocol filter.\n");
199 printf("\t\tProtocol values: unix, inet, inet6, netlink, packet.\n\n");
200
195 printf("\t--quiet - turn off Firejail's output.\n\n"); 201 printf("\t--quiet - turn off Firejail's output.\n\n");
196 printf("\t--read-only=dirname_or_filename - set directory or file read-only.\n\n"); 202 printf("\t--read-only=dirname_or_filename - set directory or file read-only.\n\n");
197 printf("\t--rlimit-fsize=number - set the maximum file size that can be created\n"); 203 printf("\t--rlimit-fsize=number - set the maximum file size that can be created\n");
@@ -218,7 +224,8 @@ void usage(void) {
218 printf("\t\tkeyctl, uselib, acct, modify_ldt, pivot_root, io_setup,\n"); 224 printf("\t\tkeyctl, uselib, acct, modify_ldt, pivot_root, io_setup,\n");
219 printf("\t\tio_destroy, io_getevents, io_submit, io_cancel,\n"); 225 printf("\t\tio_destroy, io_getevents, io_submit, io_cancel,\n");
220 printf("\t\tremap_file_pages, mbind, get_mempolicy, set_mempolicy,\n"); 226 printf("\t\tremap_file_pages, mbind, get_mempolicy, set_mempolicy,\n");
221 printf("\t\tmigrate_pages, move_pages, vmsplice, and perf_event_open.\n\n"); 227 printf("\t\tmigrate_pages, move_pages, vmsplice, perf_event_open and\n");
228 printf("\t\tkexec_file_load.\n\n");
222 229
223 printf("\t--seccomp=syscall,syscall,syscall - enable seccomp filter, blacklist the\n"); 230 printf("\t--seccomp=syscall,syscall,syscall - enable seccomp filter, blacklist the\n");
224 printf("\t\tdefault syscall list and the syscalls specified by the command.\n\n"); 231 printf("\t\tdefault syscall list and the syscalls specified by the command.\n\n");
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-08-31 18:57:19 +0000