From 56c55ab9f645c08e991dfa563cfbdb87d28a87d7 Mon Sep 17 00:00:00 2001
From: Lerk <lukas@k40s.net>
Date: Wed, 22 Dec 2021 03:34:12 +0000
Subject: [PATCH] Add ReadWritePaths directive to service files (#17178)

* Update mastodon-web.service

* Update mastodon-streaming.service

* Update mastodon-sidekiq.service
---
 dist/mastodon-sidekiq.service   | 1 +
 dist/mastodon-streaming.service | 1 +
 dist/mastodon-web.service       | 1 +
 3 files changed, 3 insertions(+)

diff --git a/dist/mastodon-sidekiq.service b/dist/mastodon-sidekiq.service
index 7d2d72e998..324cd5a398 100644
--- a/dist/mastodon-sidekiq.service
+++ b/dist/mastodon-sidekiq.service
@@ -47,6 +47,7 @@ SystemCallFilter=~@cpu-emulation @debug @keyring @ipc @mount @obsolete @privileg
 SystemCallFilter=@chown
 SystemCallFilter=pipe
 SystemCallFilter=pipe2
+ReadWritePaths=/home/mastodon/live
 
 [Install]
 WantedBy=multi-user.target
diff --git a/dist/mastodon-streaming.service b/dist/mastodon-streaming.service
index 6d71298a56..cf1f2d8bc6 100644
--- a/dist/mastodon-streaming.service
+++ b/dist/mastodon-streaming.service
@@ -45,6 +45,7 @@ SystemCallArchitectures=native
 SystemCallFilter=~@cpu-emulation @debug @keyring @ipc @memlock @mount @obsolete @privileged @resources @setuid
 SystemCallFilter=pipe
 SystemCallFilter=pipe2
+ReadWritePaths=/home/mastodon/live
 
 [Install]
 WantedBy=multi-user.target
diff --git a/dist/mastodon-web.service b/dist/mastodon-web.service
index 16d1d5653c..a5598fdaa8 100644
--- a/dist/mastodon-web.service
+++ b/dist/mastodon-web.service
@@ -47,6 +47,7 @@ SystemCallFilter=~@cpu-emulation @debug @keyring @ipc @mount @obsolete @privileg
 SystemCallFilter=@chown
 SystemCallFilter=pipe
 SystemCallFilter=pipe2
+ReadWritePaths=/home/mastodon/live
 
 [Install]
 WantedBy=multi-user.target
-- 
GitLab