systemd: base "RestrictAddressFamilies" on build options

This allows to not allow `AF_NETLINK` if `smbclient` is not enabled.
2023-09-15 22:27:19 +03:00
parent df069bc456
commit bdfe5e97cd
3 changed files with 9 additions and 4 deletions
--- a/systemd/system/mpd.service.in
+++ b/systemd/system/mpd.service.in
@@ -27,8 +27,7 @@ NoNewPrivileges=yes
 ProtectKernelTunables=yes
 ProtectControlGroups=yes
 ProtectKernelModules=yes
-# AF_NETLINK is required by libsmbclient, or it will exit() .. *sigh*
-RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX AF_NETLINK
+RestrictAddressFamilies=@address_families@
 RestrictNamespaces=yes

 [Install]