.\" Updated 2009-02-27, Akihiro MOTOKI, LDP v3.19
.\" Updated 2010-04-11, Akihiro MOTOKI, LDP v3.24
.\"
-.TH CAPABILITIES 7 2010-01-31 "Linux" "Linux Programmer's Manual"
+.TH CAPABILITIES 7 2010-06-19 "Linux" "Linux Programmer's Manual"
.SH ̾Á°
capabilities \- Linux ¤Î¥±¡¼¥Ñ¥Ó¥ê¥Æ¥£ (capability) ¤Î³µÍ×
.SH ÀâÌÀ
-¸¢¸Â¤Î¥Á¥§¥Ã¥¯¤ò¹Ô¤¦´ÑÅÀ¤«¤é¸«¤ë¤È¡¢ÅÁÅýŪ¤Ê Unix ¤Î¼ÂÁõ¤Ç¤Ï
+¸¢¸Â¤Î¥Á¥§¥Ã¥¯¤ò¹Ô¤¦´ÑÅÀ¤«¤é¸«¤ë¤È¡¢ÅÁÅýŪ¤Ê UNIX ¤Î¼ÂÁõ¤Ç¤Ï
¥×¥í¥»¥¹¤ÏÆó¤Ä¤Î¥«¥Æ¥´¥ê¤ËʬÎà¤Ç¤¤ë:
.I Æø¢
¥×¥í¥»¥¹ (¼Â¸ú¥æ¡¼¥¶ID ¤¬ 0 ¤Î¥×¥í¥»¥¹¡£¥æ¡¼¥¶ID 0 ¤Ï
.TP
.B CAP_SETGID
¥×¥í¥»¥¹¤Î GID ¤ÈÄɲäΠGID ¥ê¥¹¥È¤ËÂФ¹¤ëǤ°Õ¤ÎÁàºî¤ò¹Ô¤¦¡£
-Unix ¥É¥á¥¤¥ó¥½¥±¥Ã¥È·Ðͳ¤Ç¥½¥±¥Ã¥È¤Î»ñ³Ê¾ðÊó (credential) ¤òÅϤ¹ºÝ¤Ë
+UNIX ¥É¥á¥¤¥ó¥½¥±¥Ã¥È·Ðͳ¤Ç¥½¥±¥Ã¥È¤Î»ñ³Ê¾ðÊó (credential) ¤òÅϤ¹ºÝ¤Ë
µ¶¤Î GID ¤òÅϤ¹¤³¤È¤¬¤Ç¤¤ë¡£
.TP
.BR CAP_SETFCAP " (Linux 2.6.24 °Ê¹ß)"
.BR setresuid (2),
.BR setfsuid (2))
¤ò¹Ô¤¦¡£
-Unix ¥É¥á¥¤¥ó¥½¥±¥Ã¥È·Ðͳ¤Ç¥½¥±¥Ã¥È¤Î»ñ³Ê¾ðÊó (credential) ¤òÅϤ¹ºÝ¤Ë
+UNIX ¥É¥á¥¤¥ó¥½¥±¥Ã¥È·Ðͳ¤Ç¥½¥±¥Ã¥È¤Î»ñ³Ê¾ðÊó (credential) ¤òÅϤ¹ºÝ¤Ë
µ¶¤Î UID ¤òÅϤ¹¤³¤È¤¬¤Ç¤¤ë¡£
.\" FIXME CAP_SETUID also an effect in exec(); document this.
.TP
¤È
.B KEYCTL_SETPERM
Áàºî¤ò¼Â¹Ô¤¹¤ë¡£
+.IP *
+.BR madvise (2)
+¤Î
+.B MADV_HWPOISON
+Áàºî¤ò¼Â¹Ô¤¹¤ë¡£
.RE
.PD
.TP
.B CAP_SYS_PTRACE
.BR ptrace (2)
¤ò»È¤Ã¤ÆǤ°Õ¤Î¥×¥í¥»¥¹¤ò¥È¥ì¡¼¥¹¤¹¤ë¡£
+Ǥ°Õ¤Î¥×¥í¥»¥¹¤Ë
+.BR get_robust_list (2)
+¤òŬÍѤ¹¤ë¡£
.TP
.B CAP_SYS_RAWIO
I/O ¥Ý¡¼¥ÈÁàºî¤ò¼Â¹Ô¤¹¤ë
¤È
.BR msgctl (2)
»²¾È)¡£
+.IP *
+.I /proc/sys/fs/pipe-max-size
+¤Ë»ØÄꤵ¤ì¤Æ¤¤¤ë¾å¸Â¤òĶ¤¨¤Æ¥Ñ¥¤¥×¤ÎÍÆÎ̤òÁý¤ä¤¹¤Î¤Ë
+.B F_SETPIPE_SZ
+¤ò»ÈÍѤ¹¤ë¡£
.RE
.PD
.TP
.\" ¼Â UID ¤¬ 0 ¤Ç¼Â¸ú UID ¤¬ 0 °Ê³°¤Î¥×¥í¥»¥¹¤¬ exec () ¤ò¹Ô¤¦¤È¡¢
.\" µö²Ä¥±¡¼¥Ñ¥Ó¥ê¥Æ¥£¥»¥Ã¥È¤Ë´Þ¤Þ¤ì¤ëÁ´¤Æ¤Î¥±¡¼¥Ñ¥Ó¥ê¥Æ¥£
.\" ¤¬¼èÆÀ¤µ¤ì¡¢¼Â¸ú¥±¡¼¥Ñ¥Ó¥ê¥Æ¥£¤Ï¼èÆÀ¤µ¤ì¤Ê¤¤¡£
-¤³¤ì¤Ë¤è¤ê¡¢ÅÁÅýŪ¤Ê Unix ¥·¥¹¥Æ¥à¤ÈƱ¤¸¿¶¤ëÉñ¤¤¤¬¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤ë¡£
+¤³¤ì¤Ë¤è¤ê¡¢ÅÁÅýŪ¤Ê UNIX ¥·¥¹¥Æ¥à¤ÈƱ¤¸¿¶¤ëÉñ¤¤¤¬¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤ë¡£
.SS ¥±¡¼¥Ñ¥Ó¥ê¥Æ¥£¡¦¥Ð¥¦¥ó¥Ç¥£¥ó¥°¥»¥Ã¥È
¥±¡¼¥Ñ¥Ó¥ê¥Æ¥£¡¦¥Ð¥¦¥ó¥Ç¥£¥ó¥°¥»¥Ã¥È (capability bounding set) ¤Ï¡¢
.BR execve (2)
OSDN Git Service
