[lxc-users] setcap capabilities

Mark Constable markc at renta.net
Fri Feb 19 03:02:26 UTC 2016


On 19/02/16 12:21, Serge Hallyn wrote:
>>>> Unpacking systemd (229-1ubuntu2) over (228-5ubuntu3) ...
>>>> dpkg: error processing archive /var/cache/apt/archives/systemd_229-1ubuntu2_amd64.deb (--unpack):
>>>>   unable to make backup link of './bin/systemctl' before installing new version: Operation not permitted
> [...]
> What does ls -l /bin/systemctl show?

~ ls -l /bin/systemctl
-rwxr-xr-x 1 root root 659848 Feb 14 22:41 /bin/systemctl

I did an "echo 0 > /proc/sys/fs/protected_hardlinks" on the host and
reran the update which proceeded and installed the rest of the package
updates but along the way I got this...

Failed to set capabilities on file `/usr/bin/systemd-detect-virt' (Invalid argument)
The value of the capability argument is not permitted for a file. Or the file is not a regular (non-symlink) file

~ ls -l /usr/bin/systemd-detect-virt
-rwxr-xr-x 1 root root 35248 Feb 14 22:41 /usr/bin/systemd-detect-virt

~ lsattr /usr/bin/systemd-detect-virt
---------------- /usr/bin/systemd-detect-virt

~ getcap -v /usr/bin/systemd-detect-virt
/usr/bin/systemd-detect-virt


Whereas on the xenial host I get...

~ getcap -v /usr/bin/systemd-detect-virt
/usr/bin/systemd-detect-virt = cap_dac_override,cap_sys_ptrace+ep


So is no one else reporting this problem when upgrading to systemd_229-1ubuntu2?



More information about the lxc-users mailing list