[CC += Kir] Hi Alex, On 7/28/21 10:19 PM, Alejandro Colomar wrote: > Signed-off-by: Alejandro Colomar <alx.manpages@xxxxxxxxx> > --- > man7/capabilities.7 | 5 +++-- > 1 file changed, 3 insertions(+), 2 deletions(-) > > diff --git a/man7/capabilities.7 b/man7/capabilities.7 > index 2f9c9a61e..4d08545ed 100644 > --- a/man7/capabilities.7 > +++ b/man7/capabilities.7 > @@ -353,8 +353,9 @@ Set arbitrary capabilities on a file. > .\" commit db2e718a47984b9d71ed890eb2ea36ecf150de18 > Since Linux 5.12, this capability is > also needed to map uid 0 (as in > -.BR unshare\ -Ur , > -.RB see unshare (1). > +.IR "unshare -Ur" , > +see > +.BR unshare (1). > .TP > .B CAP_SETPCAP > If file capabilities are supported (i.e., since Linux 2.6.24): Good. But still a few other things to fix. See my patch below. Thanks, Michael diff --git a/man7/capabilities.7 b/man7/capabilities.7 index 4d08545ed..88dc61e29 100644 --- a/man7/capabilities.7 +++ b/man7/capabilities.7 @@ -352,10 +352,10 @@ Set arbitrary capabilities on a file. .IP .\" commit db2e718a47984b9d71ed890eb2ea36ecf150de18 Since Linux 5.12, this capability is -also needed to map uid 0 (as in -.IR "unshare -Ur" , +also needed to map UID 0 (as in +.IR "unshare \-Ur" ; see -.BR unshare (1). +.BR unshare (1)). .TP .B CAP_SETPCAP If file capabilities are supported (i.e., since Linux 2.6.24): diff --git a/man7/user_namespaces.7 b/man7/user_namespaces.7 index 3378b6057..e35c950ca 100644 --- a/man7/user_namespaces.7 +++ b/man7/user_namespaces.7 @@ -578,8 +578,8 @@ The mapped user IDs (group IDs) must in turn have a mapping in the parent user namespace. .IP 4. .\" commit db2e718a47984b9d71ed890eb2ea36ecf150de18 -If a writing process is root (i.e. UID 0) trying to map host user ID 0, -it must have +If a writing process is root (i.e., UID 0) trying to map host user ID 0, +it must have the .B CAP_SETFCAP capability (since Linux 5.12). .IP 5. -- Michael Kerrisk Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/ Linux/UNIX System Programming Training: http://man7.org/training/
