summarylogtreecommitdiffstats
diff options
context:
space:
mode:
authorndoskrnl2020-11-05 10:30:37 +0800
committerndoskrnl2020-11-05 10:30:37 +0800
commitd55cfdd2a0d6a2c684e3765c9c16ba6242d2fbdb (patch)
treef43436da801477572cf5bc67f0888941389ed78a
parent461183bd6776ca5005969171b43e553f1cf1cd74 (diff)
downloadaur-d55cfdd2a0d6a2c684e3765c9c16ba6242d2fbdb.tar.gz
coredns.service: add necessary capabilities
-rw-r--r--.SRCINFO2
-rw-r--r--.gitignore1
-rw-r--r--PKGBUILD2
-rw-r--r--coredns.service4
4 files changed, 5 insertions, 4 deletions
diff --git a/.SRCINFO b/.SRCINFO
index 40de191c46f..0477f4ceff4 100644
--- a/.SRCINFO
+++ b/.SRCINFO
@@ -13,7 +13,7 @@ pkgbase = coredns-wgsd-git
source = coredns.service
source = coredns-sysusers.conf
sha256sums = SKIP
- sha256sums = 030cd8e938c293c11a9acdb09b138f98b37874772072336792ec4bf0d9eff9b1
+ sha256sums = bbacde21632be9d7a9a758103775c768f9688372539b1b342ccf5c5db6746b4f
sha256sums = 536d03f8b20b0d2d6e8f96edd7e4e4dd7f6fef39ab0e952522d8725f3cc186b7
pkgname = coredns-wgsd-git
diff --git a/.gitignore b/.gitignore
index 8ed9865285d..5a5ff7066cc 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,5 +1,6 @@
src/
pkg/
+wgsd/
*.tar.gz*
*.pkg.tar.*
coredns
diff --git a/PKGBUILD b/PKGBUILD
index 703f6e3692c..5beb32e8bff 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -17,7 +17,7 @@ coredns.service
coredns-sysusers.conf)
sha256sums=('SKIP'
- '030cd8e938c293c11a9acdb09b138f98b37874772072336792ec4bf0d9eff9b1'
+ 'bbacde21632be9d7a9a758103775c768f9688372539b1b342ccf5c5db6746b4f'
'536d03f8b20b0d2d6e8f96edd7e4e4dd7f6fef39ab0e952522d8725f3cc186b7')
pkgver() {
diff --git a/coredns.service b/coredns.service
index 0a8c82b1eac..cfd1a19f570 100644
--- a/coredns.service
+++ b/coredns.service
@@ -7,8 +7,8 @@ After=network.target
PermissionsStartOnly=true
LimitNOFILE=1048576
LimitNPROC=512
-CapabilityBoundingSet=CAP_NET_BIND_SERVICE
-AmbientCapabilities=CAP_NET_BIND_SERVICE
+CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE
+AmbientCapabilities=CAP_NET_ADMIN CAP_NET_BIND_SERVICE
NoNewPrivileges=true
User=coredns
ExecStart=/usr/bin/coredns -conf=/etc/coredns/Corefile