user_namespaces.7: Document maximum nesting depth for user namespaces

Signed-off-by: Michael Kerrisk <mtk.manpages@gmail.com>
author: Michael Kerrisk <mtk.manpages@gmail.com> 2014-06-02 11:28:01 +0200
committer: Michael Kerrisk <mtk.manpages@gmail.com> 2014-09-13 20:16:03 -0700
commit: e56b6c42d1cc05bd90c5bbfcfb4021c88b4f3ba8 (patch)
tree: e226bad69846b36f340803808de8976e68d4295a /man7
parent: 8f99aa89d93e3ed6108d3948ab83a5cc60a21fa6 (diff)
download: man-pages-e56b6c42d1cc05bd90c5bbfcfb4021c88b4f3ba8.tar.gz
1 files changed, 11 insertions, 0 deletions
diff --git a/man7/user_namespaces.7 b/man7/user_namespaces.7
index 46b4e47a8e..04081e2fc3 100644
--- a/man7/user_namespaces.7
+++ b/man7/user_namespaces.7
@@ -63,6 +63,17 @@ with the
 .BR CLONE_NEWUSER
 flag.
 
+The kernel imposes (since version 3.11) a limit of 32 nested levels of
+.\" commit 8742f229b635bf1c1c84a3dfe5e47c814c20b5c8
+user namespaces.
+.\" FIXME Explain the rationale for this limit. (What is the rationale?)
+Calls to
+.BR unshare (2)
+or
+.BR clone (2)
+that would cause this limit to be exceeded fail with the error
+.BR EUSERS .
+
 Each process is a member of exactly one user namespace.
 A process created via
 .BR fork (2)
author	Michael Kerrisk <mtk.manpages@gmail.com>	2014-06-02 11:28:01 +0200
committer	Michael Kerrisk <mtk.manpages@gmail.com>	2014-09-13 20:16:03 -0700
commit	e56b6c42d1cc05bd90c5bbfcfb4021c88b4f3ba8 (patch)
tree	e226bad69846b36f340803808de8976e68d4295a /man7
parent	8f99aa89d93e3ed6108d3948ab83a5cc60a21fa6 (diff)
download	man-pages-e56b6c42d1cc05bd90c5bbfcfb4021c88b4f3ba8.tar.gz