From 47cc7758766436fa85663203e651c90a5a83a7ac Mon Sep 17 00:00:00 2001
From: Ma Shimiao <mashimiao.fnst@cn.fujitsu.com>
Date: Sat, 2 Dec 2017 14:01:33 +0800
Subject: [PATCH] add definite limit for username mappings

Signed-off-by: Ma Shimiao <mashimiao.fnst@cn.fujitsu.com>
---
 config-linux.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/config-linux.md b/config-linux.md
index f73d893c9..ed6f71fc4 100644
--- a/config-linux.md
+++ b/config-linux.md
@@ -87,6 +87,7 @@ Each entry has the following structure:
 * **`size`** *(uint32, REQUIRED)* - is the number of ids to be mapped.
 
 The runtime SHOULD NOT modify the ownership of referenced filesystems to realize the mapping.
+The runtime MUST generate an error when user namespace mappings is specified, but a new user namespace is not specified to create.
 Note that the number of mapping entries MAY be limited by the [kernel][user-namespaces].
 
 ### Example