From 93a504a5ce23f2960bf7bff28496956ae457d5fe Mon Sep 17 00:00:00 2001
From: Alexey Avramov <hakavlad@gmail.com>
Date: Tue, 3 Dec 2019 22:40:59 +0900
Subject: [PATCH] fix issue#67: add CAP_SYS_RESOURCE in unit

---
 nohang/nohang.service.in | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/nohang/nohang.service.in b/nohang/nohang.service.in
index d7d34d7..90f86f1 100644
--- a/nohang/nohang.service.in
+++ b/nohang/nohang.service.in
@@ -20,8 +20,8 @@ ProtectKernelModules=true
 SystemCallArchitectures=native
 ReadOnlyPaths=/
 ReadWritePaths=/tmp /var /run /dev/shm
-CapabilityBoundingSet=CAP_KILL CAP_IPC_LOCK CAP_SYS_PTRACE CAP_DAC_READ_SEARCH CAP_AUDIT_WRITE CAP_SETUID CAP_SETGID
-AmbientCapabilities=CAP_KILL CAP_IPC_LOCK CAP_SYS_PTRACE CAP_DAC_READ_SEARCH CAP_AUDIT_WRITE CAP_SETUID CAP_SETGID
+CapabilityBoundingSet=CAP_KILL CAP_IPC_LOCK CAP_SYS_PTRACE CAP_DAC_READ_SEARCH CAP_AUDIT_WRITE CAP_SETUID CAP_SETGID CAP_SYS_RESOURCE
+AmbientCapabilities=CAP_KILL CAP_IPC_LOCK CAP_SYS_PTRACE CAP_DAC_READ_SEARCH CAP_AUDIT_WRITE CAP_SETUID CAP_SETGID CAP_SYS_RESOURCE
 
 [Install]
 WantedBy=multi-user.target