Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
dont use nogroup for networkd, resolved and timesyncd #74084
Motivation for this change
At the networkd sprint, I switched from scripted networking to networkd and stumbled over some things, one of them being that currently
I noticed this when I added a wireguard interface to my configuration and wanted to pass the private key for an interface as a file, to avoid adding it to the nix store.
flokli left a comment •
@WilliButz can we update
We could use
That way, the nixos vm test should catch the current bug this PR would fix.
Previously systemd-networkd.service ran as systemd-network:nogroup. The wireguard private key file is now owned by root:systemd-network with mode 0640. It is therefore required that the systemd-network user is in the group with the same name, so that it is able to read the key file.
as a consequence of this PR, I seem to now have a