Skip to content

Latest commit

 

History

History

systemd

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
default
default
 
 
system
system
 
 
README.md
README.md
 
 

README.md

example systemd unit files

cp system/* /etc/systemd/system/
cp default/* /etc/default/

systemctl daemon-reload
systemctl enable --now needroleshere.socket
systemctl enable --now needroleshere-ecs-relative.socket

Tricks

The following tricks are implemented in files under system/.

Stable RuntimeDirectory across multiple units

As using both DynamicUser= and PreserveRuntimeDirectory= lets RuntimeDirectory private but we want a stable RuntimeDirectory can be shared with multiple units; Without PreserveRuntimeDirectory=, RuntimeDirectory= are subject for ereasure every time a unit starts or stops (systemd#5394)

To workaround this problem, we need a dedicated systemd unit to hold RuntimeDirectory.

Setup for ecs-relative mode variants

Enable and start:

You can use this socket unit simultaneously with the primary needroleshere.socket.

Utilizing systemd unit template

It is possible to use systemd unit template for the needroleshere bind service unit explained at README.

then systemctl enable [email protected] to pair with somethingawesome.service.

Tips

Giving a permission to DynamicUser

the systemd units utilize DynamicUser=. As long as you keep same User=/Group= and a username specified to User= does not exist, you can use a dynamically allocated user with a static gid.

DynamicUser=yes
User=needroleshere
Group=certificateallowed