From 72566df15ea562345d5e5ca94e834c5e5504bc20 Mon Sep 17 00:00:00 2001
From: Jakub Janco <jjanco@redhat.com>
Date: May 05 2020 06:25:35 +0000
Subject: remove sys_nice cap permission from mysqld on container setup


Resolves: rhbz#1646155

---

diff --git a/root-common/usr/libexec/container-setup b/root-common/usr/libexec/container-setup
index e4b86bf..c6f3448 100755
--- a/root-common/usr/libexec/container-setup
+++ b/root-common/usr/libexec/container-setup
@@ -57,6 +57,9 @@ mkdir -p /var/lib/mysql/data
 chown -R mysql:0 /var/lib/mysql
 restorecon -R /var/lib/mysql
 
+# remove linux capability of the daemon, since it does not work in the container
+setcap -r ${MYSQL_PREFIX}/libexec/mysqld
+
 # Loosen permission bits for group to avoid problems running container with
 # arbitrary UID
 # When only specifying user, group is 0, that's why /var/lib/mysql must have