# grep shutdown /var/log/audit/audit.log | audit2allow -M mypol You can generate a local policy module to allow this access. If you believe that systemctl should have the sys_resource capability by default. * Override max number of consoles on console allocation */įix the cause of the SYS_RESOURCE on your system. * Allow more than 64hz interrupts from the real-time clock */ * Override size restrictions on IPC message queues */ * NOTE: ext2 honors fsuid when checking for resource overrides, so
* Modify data journaling mode on ext3 filesystem (uses journaling * Override reserved space on ext2 filesystem */ Then you need to diagnose why your system is running out of system resources and fix the problem.Īccording to /usr/include/linux/capability.h, sys_resource is required to: If you do not want processes to require capabilities to use up all the system resources on your system
SELinux is preventing /usr/bin/systemctl from using the sys_resource capability. I managed to get the SELinux trouble shoot detail from the issue.
0 kommentar(er)
