mlock() returns EPERM in systemd-nspawn Jul 9, 2020 · hev Set caps: systemd-nspawn --capability=CAP_IPC_LOCK ←Auto-run program in GDB 硬盘盒来电自动启动改造→