Re: [PATCH] setns: add missing info about time ns

From: Alejandro Colomar <alx@kernel.org>
Date: 2025-01-07 14:08:56

Hi Michael,

On Tue, Jan 07, 2025 at 02:57:00PM +0100, Michal Clapinski wrote:

Only singlethreaded processes can setns into time ns.
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/kernel/time/namespace.c?h=v6.12#n309

Signed-off-by: Michal Clapinski <redacted>

Thanks for the patch!  I have slightly adapted the commit message, and
applied the patch.
<https://www.alejandro-colomar.es/src/alx/linux/man-pages/man-pages.git/commit/?h=contrib&id=48618d7701d55ca9401b259bb4e6200d841df6d0>

Cheers,
Alex

quoted hunk ↗ jump to hunk

---
 man/man2/setns.2 | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/man/man2/setns.2 b/man/man2/setns.2
index f32a91bd8..619717b77 100644
--- a/man/man2/setns.2
+++ b/man/man2/setns.2

@@ -237,7 +237,17 @@ Using
 to change the caller's cgroup namespace does not change
 the caller's cgroup memberships.
 .TP
-Network, IPC, time, and UTS namespaces
+Time namespaces
+In order to reassociate itself with a new time namespace,
+the caller must have the
+.B CAP_SYS_ADMIN
+capability both in its own user namespace and in the user namespace
+that owns the target namespace.
+.IP
+A multithreaded process may not change time namespace with
+.BR setns ().
+.TP
+Network, IPC, and UTS namespaces
 In order to reassociate itself with a new network, IPC, time, or UTS namespace,
 the caller must have the
 .B CAP_SYS_ADMIN

-- 
2.47.1.613.gc27f4b7a9f-goog

-- 
<https://www.alejandro-colomar.es/>

Attachments

signature.asc [application/pgp-signature] 833 bytes

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help