BoomMicrophone/nixpkgs-suyu
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

nixos/lighthouse: add dataDirs to unit ReadWritePaths

Browse source
This commit is contained in:
georgewhewell 2022-11-22 23:24:29 +01:00 committed by Yt
parent dc7783ece2
commit 5b8c42f98c
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
nixos/modules/services/blockchain/ethereum/lighthouse.nix
View file

@ -247,6 +247,7 @@ in {
DynamicUser = true;
Restart = "on-failure";
StateDirectory = "lighthouse-beacon";
ReadWritePaths = [ cfg.beacon.dataDir ];
NoNewPrivileges = true;
PrivateTmp = true;
ProtectHome = true;
@ -287,6 +288,7 @@ in {
serviceConfig = {
Restart = "on-failure";
StateDirectory = "lighthouse-validator";
ReadWritePaths = [ cfg.validator.dataDir ];
CapabilityBoundingSet = "";
DynamicUser = true;
NoNewPrivileges = true;