black-internet-days-ahead/Xray-install
1
0
Fork 0
mirror of https://github.com/XTLS/Xray-install.git synced 2024-11-21 14:51:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update service files (#14)

Browse source
This commit is contained in:
kirin10000 2020-12-31 05:30:43 +08:00 committed by GitHub
parent daf009f157
commit e81eafaead
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 14 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
install-release.sh
View file

@ -491,6 +491,14 @@ install_xray() {
install_startup_service_file() { install_startup_service_file() {
mkdir -p '/etc/systemd/system/xray.service.d' mkdir -p '/etc/systemd/system/xray.service.d'
mkdir -p '/etc/systemd/system/xray@.service.d/' mkdir -p '/etc/systemd/system/xray@.service.d/'
local temp_CapabilityBoundingSet="CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE"
local temp_AmbientCapabilities="AmbientCapabilities=CAP_NET_ADMIN CAP_NET_BIND_SERVICE"
local temp_NoNewPrivileges="NoNewPrivileges=true"
if [[ "$INSTALL_USER_UID" -eq '0' ]]; then
temp_CapabilityBoundingSet="#${temp_CapabilityBoundingSet}"
temp_AmbientCapabilities="#${temp_AmbientCapabilities}"
temp_NoNewPrivileges="#${temp_NoNewPrivileges}"
fi
cat > /etc/systemd/system/xray.service << EOF cat > /etc/systemd/system/xray.service << EOF
[Unit] [Unit]
Description=Xray Service Description=Xray Service
@ -499,9 +507,9 @@ After=network.target nss-lookup.target
[Service] [Service]
User=$INSTALL_USER User=$INSTALL_USER
CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE ${temp_CapabilityBoundingSet}
AmbientCapabilities=CAP_NET_ADMIN CAP_NET_BIND_SERVICE ${temp_AmbientCapabilities}
NoNewPrivileges=true ${temp_NoNewPrivileges}
ExecStart=/usr/local/bin/xray run -config /usr/local/etc/xray/config.json ExecStart=/usr/local/bin/xray run -config /usr/local/etc/xray/config.json
Restart=on-failure Restart=on-failure
RestartPreventExitStatus=23 RestartPreventExitStatus=23
@ -519,9 +527,9 @@ After=network.target nss-lookup.target
[Service] [Service]
User=$INSTALL_USER User=$INSTALL_USER
CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE ${temp_CapabilityBoundingSet}
AmbientCapabilities=CAP_NET_ADMIN CAP_NET_BIND_SERVICE ${temp_AmbientCapabilities}
NoNewPrivileges=true ${temp_NoNewPrivileges}
ExecStart=/usr/local/bin/xray run -config /usr/local/etc/xray/%i.json ExecStart=/usr/local/bin/xray run -config /usr/local/etc/xray/%i.json
Restart=on-failure Restart=on-failure
RestartPreventExitStatus=23 RestartPreventExitStatus=23