mirror of https://github.com/mkerrisk/man-pages
proc.5: Update capability requirements for accessing /proc/[pid]/map_files
The requirements changed with kernel commit 12886f8ab10ce6. Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
parent
1e516a820b
commit
167f94b707
13
man5/proc.5
13
man5/proc.5
|
@ -1261,9 +1261,16 @@ Until kernel version 4.3,
|
||||||
this directory appeared only if the
|
this directory appeared only if the
|
||||||
.B CONFIG_CHECKPOINT_RESTORE
|
.B CONFIG_CHECKPOINT_RESTORE
|
||||||
kernel configuration option was enabled.
|
kernel configuration option was enabled.
|
||||||
Additionally, in those kernel versions, privilege
|
.IP
|
||||||
.RB ( CAP_SYS_ADMIN )
|
Capabilities are required to read the contents of the symbolic links in
|
||||||
was required to view the contents of this directory.
|
this directory: before Linux 5.9, the reading process requires
|
||||||
|
.BR CAP_SYS_ADMIN
|
||||||
|
in the initial user namespace;
|
||||||
|
since Linux 5.9, the reading process must have either
|
||||||
|
.BR CAP_SYS_ADMIN
|
||||||
|
or
|
||||||
|
.BR CAP_CHECKPOINT_RESTORE
|
||||||
|
in the user namespace where it resides.
|
||||||
.TP
|
.TP
|
||||||
.I /proc/[pid]/maps
|
.I /proc/[pid]/maps
|
||||||
A file containing the currently mapped memory regions and their access
|
A file containing the currently mapped memory regions and their access
|
||||||
|
|
Loading…
Reference in New Issue