nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-27 09:23:01 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #336896 from tomodachi94/enhance/nixos/clamav/systemd-slices

Browse Source
This commit is contained in:
Franz Pletz 2024-08-25 01:45:27 +02:00 committed by GitHub
commit 39c0d9f53d
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
nixos/modules/services/security/clamav.nix
View File

@ -164,6 +164,10 @@ in
environment.etc."clamav/freshclam.conf".source = freshclamConfigFile;
environment.etc."clamav/clamd.conf".source = clamdConfigFile;
systemd.slices.system-clamav = {
description = "ClamAV slice";
};
systemd.services.clamav-daemon = mkIf cfg.daemon.enable {
description = "ClamAV daemon (clamd)";
after = optionals cfg.updater.enable [ "clamav-freshclam.service" ];
@ -181,6 +185,7 @@ in
PrivateTmp = "yes";
PrivateDevices = "yes";
PrivateNetwork = "yes";
Slice = "system-clamav.slice";
};
};
@ -208,6 +213,7 @@ in
Group = clamavGroup;
PrivateTmp = "yes";
PrivateDevices = "yes";
Slice = "system-clamav.slice";
};
};
@ -229,6 +235,7 @@ in
Group = clamavGroup;
PrivateTmp = "yes";
PrivateDevices = "yes";
Slice = "system-clamav.slice";
};
};
@ -255,6 +262,7 @@ in
Group = clamavGroup;
PrivateTmp = "yes";
PrivateDevices = "yes";
Slice = "system-clamav.slice";
};
};
@ -275,6 +283,7 @@ in
serviceConfig = {
Type = "oneshot";
ExecStart = "${cfg.package}/bin/clamdscan --multiscan --fdpass --infected --allmatch ${lib.concatStringsSep " " cfg.scanner.scanDirectories}";
Slice = "system-clamav.slice";
};
};
};