On Mon, Oct 18, 2010 at 5:20 PM, Randy Dunlap <rdunlap@xxxxxxxxxxxx> wrote: > On Fri, 15 Oct 2010 05:04:18 +0300 Lucian Adrian Grijincu wrote: > >> Signed-off-by: Lucian Adrian Grijincu <lucian.grijincu@xxxxxxxxx> >> --- >> Documentation/unshare.txt | 4 ++++ >> 1 files changed, 4 insertions(+), 0 deletions(-) >> >> diff --git a/Documentation/unshare.txt b/Documentation/unshare.txt >> index a864351..911978c 100644 >> --- a/Documentation/unshare.txt >> +++ b/Documentation/unshare.txt >> @@ -155,6 +155,10 @@ DESCRIPTION >> If CLONE_VM is set, the virtual memory of the caller is >> disassociated from the shared virtual memory. >> >> + CLONE_NEWNET >> + If CLONE_NEWNET is set, the network namespace of the >> + caller is disassociated from the shared namespace. >> + >> RETURN VALUE >> On success, zero returned. On failure, -1 is returned and errno is >> >> -- > > > Check with file originator (Janak) and man-pages (hi Michael). Hi Randy (man-pages slowly comes back to life nowadays) I just now sent Lucian my version of the patch to man-pages (copied below). This is what I've gleaned from reading the source (no testing); confirmation of the details would be happily received. Lucian, you may want to revise your kernel patch to add some of the details that I added. Cheers, Michael --- a/man2/unshare.2 +++ b/man2/unshare.2 @@ -89,6 +89,19 @@ requires the .BR CAP_SYS_ADMIN capability. .TP +.BR CLONE_NEWNET " (since Linux 2.6.24) +This flag has the same effect as the +.BR clone (2) +.B CLONE_NEWNET +flag. +Unshare the network namespace, +so that the calling process has a private copy of the +network namespace which is not shared with any other process. +.BR CLONE_NEWNET +requires the +.BR CAP_SYS_ADMIN +capability. +.TP .B CLONE_NEWNS .\" These flag name are inconsistent: .\" CLONE_NEWNS does the same thing in clone(), but CLONE_VM, -- Michael Kerrisk Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/ Author of "The Linux Programming Interface"; http://man7.org/tlpi/ -- To unsubscribe from this list: send the line "unsubscribe linux-doc" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
