LDP
/
man-pages
mirror of https://github.com/mkerrisk/man-pages
0
1
Fork 0
Code Releases Activity

pid_namespaces.7: Correct capability requirements for write to /proc/sys/kernel/ns_last_pid 

CAP_SYS_ADMIN is needed in the user NS that owns the PID NS.

Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
This commit is contained in:
Michael Kerrisk 2020-05-11 14:04:17 +02:00
parent c2f15a1349
commit 439526d153
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
man7/pid_namespaces.7
View File

@ -370,7 +370,7 @@ and when this file is subsequently read it will show that PID.
.IP
This file is writable by a process that has the
.B CAP_SYS_ADMIN
capability inside its user namespace.
capability inside the user namespace that owns the PID namespace.
.\" This ability is necessary to support checkpoint restore in user-space
This makes it possible to determine the PID that is allocated
to the next process that is created inside this PID namespace.