Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

After setcap cap_ipc_lock, getting Operation not permitted #1042

Closed
thalesfsp opened this issue Feb 8, 2016 · 3 comments
Closed

After setcap cap_ipc_lock, getting Operation not permitted #1042

thalesfsp opened this issue Feb 8, 2016 · 3 comments

Comments

@thalesfsp
Copy link

Following recommendations here:

"In production, you should only consider setting the disable_mlock option on Linux systems that only use encrypted swap or do not use swap at all. Vault does not currently support memory locking on Mac OS X and Windows and so the feature is automatically disabled on those platforms. To give the Vault executable access to the mlock syscall on Linux systems"

I'm doing sudo setcap cap_ipc_lock=+ep $(readlink -f $(which vault)) and after that, when I try to call vault, I get:

root@714f0d1236a0:/# vault
bash: /usr/local/bin/vault: Operation not permitted

PS: Running inside docker, Ubuntu 14.04

Thanks!
@jefferai
Copy link
Member

jefferai commented Feb 8, 2016

Hi there,

I don't know if this is supported inside Docker or what the runtime requirements are to give the correct permissions.

@jefferai
Copy link
Member

jefferai commented Feb 8, 2016

Looks like #121 should help you out!

@jefferai jefferai closed this as completed Feb 8, 2016
@thalesfsp
Copy link
Author

Tkx!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jefferai @thalesfsp