CAP_AUDIT_READ is not supported on Xenial

Bug #1704416 reported by Tom Carroll
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
libcap2 (Ubuntu)
Won't Fix
Undecided
Serge Hallyn

Bug Description

I'm encountering the same issue as #1451601 describes. The fix, a more recent libcap2 2.25, has made it into the Yakkety distribution but not Xenial.

Summary of the problem: One cannot raise or lower CAP_AUDIT_READ, which is equal to decimal value 37. As compiled, libcap2 2.24 supports up to CAP_BLOCK_SUSPEND (36).

lsb_release -rd
Description: Ubuntu 16.04.2 LTS
Release: 16.04

apt-cache policy libcap2
libcap2:
  Installed: 1:2.24-12
  Candidate: 1:2.24-12
  Version table:
 *** 1:2.24-12 500
        500 http://us.archive.ubuntu.com/ubuntu xenial/main amd64 Packages
        100 /var/lib/dpkg/status

setcap cap_audit_read=eip /bin/ls
fatal error: Invalid argument
usage: setcap [-q] [-v] (-r|-|<caps>) <filename> [ ... (-r|-|<capsN>) <filenameN> ]

 Note <filename> must be a regular (non-symlink) file.

Revision history for this message
Serge Hallyn (serge-hallyn) wrote :

Sorry - if this is still an issue, please reply here.

Changed in libcap2 (Ubuntu):
assignee: nobody → Serge Hallyn (serge-hallyn)
Revision history for this message
Andrew G. Morgan (morganlibcap) wrote :
Revision history for this message
William Wilson (jawn-smith) wrote :

Marking this as won't fix because xenial is no longer supported. All supported releases have libcap2 2.25 or newer, which fixes this bug.

Changed in libcap2 (Ubuntu):
status: New → Won't Fix
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.