From 432376524c8d757a8ff5ae18f301a9946ea45ab6 Mon Sep 17 00:00:00 2001
From: Thomas Woerner <twoerner@redhat.com>
Date: Wed, 9 Apr 2025 11:35:53 +0200
Subject: [PATCH] infra/image/shdefaults: Add SYS_PTRACE to CAP_DEFAULTS

Debugging is now enabled by default in the containers that are
generated with container_create. "+SYS_PTRACE" has been added to
CAP_DEFAULTS in shdefaults for this.
---
 infra/image/shdefaults | 1 +
 1 file changed, 1 insertion(+)

diff --git a/infra/image/shdefaults b/infra/image/shdefaults
index 86c50ab..b5768cc 100644
--- a/infra/image/shdefaults
+++ b/infra/image/shdefaults
@@ -5,4 +5,5 @@
 # Use +CAP to add the capability and -CAP to drop the capability.
 CAP_DEFAULTS=(
     "+DAC_READ_SEARCH"  # Required for SSSD
+    "+SYS_PTRACE"       # Required for debugging
 )
-- 
GitLab