git: 59601a75d6fb - main - cap_net.3: Clarify monotonic reduction in permitted operations
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Wed, 20 May 2026 20:51:08 UTC
The branch main has been updated by emaste:
URL: https://cgit.FreeBSD.org/src/commit/?id=59601a75d6fb1300b1aec2977eaa6adeb0300684
commit 59601a75d6fb1300b1aec2977eaa6adeb0300684
Author: Ed Maste <emaste@FreeBSD.org>
AuthorDate: 2026-05-20 20:27:49 +0000
Commit: Ed Maste <emaste@FreeBSD.org>
CommitDate: 2026-05-20 20:49:22 +0000
cap_net.3: Clarify monotonic reduction in permitted operations
Reviewed by: markj, oshogbo
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D57141
---
lib/libcasper/services/cap_net/cap_net.3 | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/lib/libcasper/services/cap_net/cap_net.3 b/lib/libcasper/services/cap_net/cap_net.3
index ae9a6d820ae3..10d8c8b3f1f6 100644
--- a/lib/libcasper/services/cap_net/cap_net.3
+++ b/lib/libcasper/services/cap_net/cap_net.3
@@ -203,7 +203,8 @@ will consume and apply the limits.
.Pp
Once a set of limits is applied, subsequent calls to
.Fn cap_net_limit
-will fail unless the new set is a subset of the current set.
+may only further restrict the service.
+Any call that would grant operations not currently permitted will fail.
.Pp
If the
.Fn cap_net_limit