infra
/
ignition
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

frigate: Disable systemd filesystem isolation 

When`ProtectSystem` is enabled, systemd sets up a separate mount
namespace for the service.  Unfortunately, this appears to interfere
with Podman and prevents it from cleaning up containers on shutdown.
master
Dustin 2023-09-21 16:31:58 -05:00
parent dffa17410f
commit 22c085b35d
1 changed files with 0 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
frigate.container
View File

@ -21,10 +21,6 @@ AddDevice=/dev/dri/renderD128
Network=host
[Service]
PrivateTmp=yes
ProtectSystem=full
TemporaryFileSystem=/etc/containers/networks
ReadWritePaths=/etc/containers/networks
UMask=0077
Restart=always