Re: [lxc-users] setcap does not work in unprivileged container

2016-02-25 Thread Tamas Papp
On 02/25/2016 08:56 PM, Serge Hallyn wrote: Quoting Tamas Papp (tom...@martos.bme.hu): On 02/25/2016 05:51 PM, Serge Hallyn wrote: Quoting Tamas Papp (tom...@martos.bme.hu): hi All, # /sbin/setcap 'cap_net_bind_service=+ep' /usr/bin/nodejs Failed to set capabilities on file

Re: [lxc-users] setcap does not work in unprivileged container

2016-02-25 Thread Mark Constable
On 26/02/16 05:56, Serge Hallyn wrote: Hopefully in the next month or two I'll get time to get that working in the kernel. Which means a few more months before it'd be really available. Can we expect it to be backported to Xenial? No, but the HWE and such kernels will have it. They are

Re: [lxc-users] setcap does not work in unprivileged container

2016-02-25 Thread Serge Hallyn
Quoting Tamas Papp (tom...@martos.bme.hu): > > > On 02/25/2016 05:51 PM, Serge Hallyn wrote: > >Quoting Tamas Papp (tom...@martos.bme.hu): > >>hi All, > >> > >> > >># /sbin/setcap 'cap_net_bind_service=+ep' /usr/bin/nodejs > >>Failed to set capabilities on file `/usr/bin/nodejs' (Invalid

Re: [lxc-users] setcap does not work in unprivileged container

2016-02-25 Thread Tamas Papp
On 02/25/2016 05:51 PM, Serge Hallyn wrote: Quoting Tamas Papp (tom...@martos.bme.hu): hi All, # /sbin/setcap 'cap_net_bind_service=+ep' /usr/bin/nodejs Failed to set capabilities on file `/usr/bin/nodejs' (Invalid argument) The value of the capability argument is not permitted for a file.

Re: [lxc-users] setcap does not work in unprivileged container

2016-02-25 Thread Serge Hallyn
Quoting Tamas Papp (tom...@martos.bme.hu): > hi All, > > > # /sbin/setcap 'cap_net_bind_service=+ep' /usr/bin/nodejs > Failed to set capabilities on file `/usr/bin/nodejs' (Invalid argument) > The value of the capability argument is not permitted for a file. Or > the file is not a regular

Re: [lxc-users] setcap does not work in unprivileged container

2016-02-25 Thread Tamas Papp
On 02/25/2016 11:49 AM, Mark Constable wrote: On 25/02/16 20:16, Tamas Papp wrote: # /sbin/setcap 'cap_net_bind_service=+ep' /usr/bin/nodejs Failed to set capabilities on file `/usr/bin/nodejs' (Invalid argument) The value of the capability argument is not permitted for a file. Or the file

Re: [lxc-users] setcap does not work in unprivileged container

2016-02-25 Thread Mark Constable
On 25/02/16 20:16, Tamas Papp wrote: # /sbin/setcap 'cap_net_bind_service=+ep' /usr/bin/nodejs Failed to set capabilities on file `/usr/bin/nodejs' (Invalid argument) The value of the capability argument is not permitted for a file. Or the file is not a regular (non-symlink) file Can we

[lxc-users] setcap does not work in unprivileged container

2016-02-25 Thread Tamas Papp
hi All, # /sbin/setcap 'cap_net_bind_service=+ep' /usr/bin/nodejs Failed to set capabilities on file `/usr/bin/nodejs' (Invalid argument) The value of the capability argument is not permitted for a file. Or the file is not a regular (non-symlink) file Can we somehow make it work? 10x