diff options
| author | Max <max@privatevoid.net> | 2022-03-30 01:42:00 +0200 |
|---|---|---|
| committer | Max <max@privatevoid.net> | 2022-04-16 20:48:28 +0200 |
| commit | 72d6d73e3750b6ec4dfffeb05eb0688d6358aeab (patch) | |
| tree | 97d1d5d617323a8254facbbf138687d249180a1a /nixos/modules/services/network-filesystems/ipfs.nix | |
| parent | ce8cbe3c01fd8ee2de526ccd84bbf9b82397a510 (diff) | |
| download | nixpkgs-72d6d73e3750b6ec4dfffeb05eb0688d6358aeab.tar nixpkgs-72d6d73e3750b6ec4dfffeb05eb0688d6358aeab.tar.gz nixpkgs-72d6d73e3750b6ec4dfffeb05eb0688d6358aeab.tar.bz2 nixpkgs-72d6d73e3750b6ec4dfffeb05eb0688d6358aeab.tar.lz nixpkgs-72d6d73e3750b6ec4dfffeb05eb0688d6358aeab.tar.xz nixpkgs-72d6d73e3750b6ec4dfffeb05eb0688d6358aeab.tar.zst nixpkgs-72d6d73e3750b6ec4dfffeb05eb0688d6358aeab.zip | |
nixos/ipfs: Only set ReadWritePaths when hardened
Co-authored-by: Luflosi <Luflosi@users.noreply.github.com>
Diffstat (limited to 'nixos/modules/services/network-filesystems/ipfs.nix')
| -rw-r--r-- | nixos/modules/services/network-filesystems/ipfs.nix | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/nixos/modules/services/network-filesystems/ipfs.nix b/nixos/modules/services/network-filesystems/ipfs.nix index 7e96179b3ca..f63debe13ac 100644 --- a/nixos/modules/services/network-filesystems/ipfs.nix +++ b/nixos/modules/services/network-filesystems/ipfs.nix @@ -280,7 +280,7 @@ in User = cfg.user; Group = cfg.group; StateDirectory = ""; - ReadWritePaths = [ "" cfg.dataDir ]; + ReadWritePaths = optionals (!cfg.autoMount) [ "" cfg.dataDir ]; } // optionalAttrs (cfg.serviceFdlimit != null) { LimitNOFILE = cfg.serviceFdlimit; }; } // optionalAttrs (!cfg.startWhenNeeded) { wantedBy = [ "default.target" ]; |