The newuidmap sets /proc/[pid]/uid_map based on its command line
arguments and the uids allowed in /etc/subuid. Note that the root
user is not exempted from the requirement for a valid /etc/subuid
After the pid argument, newuidmap expects sets of 3 integers:
Beginning of the range of UIDs inside the user namespace.
Beginning of the range of UIDs outside the user namespace.
Length of the ranges (both inside and outside the user
newuidmap verifies that the caller is the owner of the process
indicated by pid and that for each of the above sets, each of the
UIDs in the range [loweruid, loweruid+count] is allowed to the caller
according to /etc/subuid before setting /proc/[pid]/uid_map.
Note that newuidmap may be used only once for a given process.
This page is part of the shadow-utils (utilities for managing
accounts and shadow password files) project. Information about the
project can be found at ⟨http://pkg-shadow.alioth.debian.org/⟩. If
you have a bug report for this manual page, see
⟨http://pkg-shadow.alioth.debian.org/getinvolved.php⟩. This page was
obtained from the project's upstream Git repository
⟨git://anonscm.debian.org/git/pkg-shadow/shadow.git⟩ on 2017-03-13.
If you discover any rendering problems in this HTML version of the
page, or you believe there is a better or more up-to-date source for
the page, or you have corrections or improvements to the information
in this COLOPHON (which is not part of the original manual page),
send a mail to email@example.com
shadow-utils 4.4 02/18/2017 NEWUIDMAP(1)