OS-4693: unable to set CAP_SETFCAP effective capability

Details

Issue Type:Bug
Priority:4 - Normal
Status:Open
Created at:2015-09-02T13:57:02.000Z
Updated at:2017-11-04T18:33:37.918Z

People

Created by:Former user
Reported by:Former user

Related Issues

Labels

lxbrand

Description

On ubuntu 15.04 I used apt to install the jdk and then used apt to remove it. During the remove I see this:

Removing openjdk-7-jdk:amd64 (7u79-2.5.6-0ubuntu1.15.04.1) ...
Setting up systemd (219-7ubuntu6) ...
unable to set CAP_SETFCAP effective capability: Operation not permitted

Comments

Comment by Former user
Created at 2016-07-31T18:40:06.000Z

The same issue happens when you attempt to set privileges on node such that it can listen on a privileged port.

/ # /native/sbin/uname -a
SunOS b350c7a61c89 5.11 joyent_20160729T120040Z i86pc i386 i86pc
/ # setcap 'cap_net_bind_service=+ep' `which node`
unable to set CAP_SETFCAP effective capability: Operation not permitted

Comment by Former user
Created at 2016-08-01T19:37:45.000Z

Support for file-based capabilities will require much more comprehensive capabilities(7) emulation in LX.