db64f7f737
per lorri's readme: lorri creates an indirect garbage collection root for each .drv in $XDG_CACHE_HOME/lorri (~/.cache/lorri/ by default) each time it evaluates your project. ... so it doesn't make sense to have ProtectHome enabled for lorri.service. lorri also needs to be able to modify /nix/var/nix/gcroots/per-user/, so ProtectSystem can't be 'strict'; 'full' is the next strongest. fixes: lorri: ERRO IO error binding to socket: Read-only file system (os error 30) bisecting this error leads to a range of unbuildable commits including 'a31429165204 Merge pull request #243242 from RaitoBezarius/systemd-254', so it's likely that systemd update changed the behaviour of ProtectHome somehow (though the release notes don't have any obvious culprits).
1.4 KiB
1.4 KiB