@ddstreet thanks for pointing to that other bug report.
After applying the fix from https://github.com/systemd/systemd/pull/16424 to systemd_245.4-4ubuntu3.3, 'systemd show' does work:
$ ./systemctl show -p CapabilityBoundingSet apparmor CapabilityBoundingSet=cap_chown cap_dac_override cap_dac_read_search cap_fowner cap_fsetid cap_kill
But the testcase fails a little bit down the line:
$ ./test-cap-list cap_chown = 0 cap_dac_override = 1 cap_dac_read_search = 2 [...] cap_block_suspend vs. cap_block_suspend cap_audit_read vs. cap_audit_read Assertion 'streq(t1, t)' failed at src/test/test-cap-list.c:61, function test_capability_set_one(). Aborting. Aborted (core dumped)
@ddstreet thanks for pointing to that other bug report.
After applying the fix from https:/ /github. com/systemd/ systemd/ pull/16424 to systemd_ 245.4-4ubuntu3. 3, 'systemd show' does work:
$ ./systemctl show -p CapabilityBound ingSet apparmor ingSet= cap_chown cap_dac_override cap_dac_read_search cap_fowner cap_fsetid cap_kill
CapabilityBound
But the testcase fails a little bit down the line:
$ ./test-cap-list test-cap- list.c: 61, function test_capability _set_one( ). Aborting.
cap_chown = 0
cap_dac_override = 1
cap_dac_read_search = 2
[...]
cap_block_suspend vs. cap_block_suspend
cap_audit_read vs. cap_audit_read
Assertion 'streq(t1, t)' failed at src/test/
Aborted (core dumped)