Mon Dec 1 15:23:55 PST 2014

On Thu, 20.11.14 09:13, Mantas Mikul─Śnas (grawity at gmail.com) wrote:

> ~ I'm also getting this on every reload:
> systemd[1]: [/usr/lib/systemd/system/systemd-journald.service:24] Failed to
> parse capability in bounding set, ignoring: CAP_AUDIT_READ
> I suppose I can ignore the message. I see that cap_audit_read was added to
> kernel 3.16, but unfortunately it doesn't exist in the current libcap
> release (libcap 2.24).

We currently need one actual operation from libcap, plus the
capability string tables. THat's all. Which really makes me wonder
whether we shouldn't simply do the table and the one syscall in
systemd and get rid of the dep, it's not really that complex, and we
have some caps code anyway in place...


Lennart Poettering, Red Hat

