pid_namespaces.7: Update capability requirements for /proc/sys/kernel/ns_last_pid

Since Linux 5.9, CONFIG_CHECKPOINT_RESTORE also allows writing to /proc/sys/kernel/ns_last_pid. Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
author: Michael Kerrisk <mtk.manpages@gmail.com> 2020-10-27 11:41:18 +0100
committer: Michael Kerrisk <mtk.manpages@gmail.com> 2020-10-27 14:51:44 +0100
commit: 1e516a820b4dfd3e126b048c0c882cc1d555e5ea (patch)
tree: cbb408ca854d092e652dd16719f5368c2f7ec6ec
parent: 1e4d6750e0f7b21fb19e92be800769df6af40d50 (diff)
download: man-pages-1e516a820b4dfd3e126b048c0c882cc1d555e5ea.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/man7/pid_namespaces.7 b/man7/pid_namespaces.7
index 9d893fcf26..62ecd26a53 100644
--- a/man7/pid_namespaces.7
+++ b/man7/pid_namespaces.7
@@ -372,6 +372,8 @@ and when this file is subsequently read it will show that PID.
 .IP
 This file is writable by a process that has the
 .B CAP_SYS_ADMIN
+or (since Linux 5.9)
+.B CAP_CHECKPOINT_RESTORE
 capability inside the user namespace that owns the PID namespace.
 .\" This ability is necessary to support checkpoint restore in user-space
 This makes it possible to determine the PID that is allocated
author	Michael Kerrisk <mtk.manpages@gmail.com>	2020-10-27 11:41:18 +0100
committer	Michael Kerrisk <mtk.manpages@gmail.com>	2020-10-27 14:51:44 +0100
commit	1e516a820b4dfd3e126b048c0c882cc1d555e5ea (patch)
tree	cbb408ca854d092e652dd16719f5368c2f7ec6ec
parent	1e4d6750e0f7b21fb19e92be800769df6af40d50 (diff)
download	man-pages-1e516a820b4dfd3e126b048c0c882cc1d555e5ea.tar.gz