From 4545979136a2167e88ab318a04a3bdf774e0524d Mon Sep 17 00:00:00 2001
From: Benoit <forgejo@benoit.jp.net>
Date: Wed, 27 Nov 2024 22:35:11 +0900
Subject: [PATCH] Adguard: Move setcap to unit file

---
 cfg/jobs/adguard.run                  | 1 -
 run/adguard/workspace/adguard.service | 1 +
 2 files changed, 1 insertion(+), 1 deletion(-)

diff --git a/cfg/jobs/adguard.run b/cfg/jobs/adguard.run
index 47e292e..961e4b3 100755
--- a/cfg/jobs/adguard.run
+++ b/cfg/jobs/adguard.run
@@ -35,7 +35,6 @@ cd /tmp && \
 wget --quiet https://github.com/AdguardTeam/AdGuardHome/releases/download/v'"$UPSTREAM_VER"'/AdGuardHome_linux_amd64.tar.gz && \
 tar -xzf AdGuardHome_linux_amd64.tar.gz -C /opt/adguard --strip-components=2 && \
 rm AdGuardHome_linux_amd64.tar.gz
-setcap "CAP_NET_BIND_SERVICE=+eip CAP_NET_RAW=+eip" /opt/adguard/AdGuardHome
 
 install -d -m 755 -o adguard -g adguard /opt/adguard/{data,config}
 
diff --git a/run/adguard/workspace/adguard.service b/run/adguard/workspace/adguard.service
index 42e9add..535e668 100644
--- a/run/adguard/workspace/adguard.service
+++ b/run/adguard/workspace/adguard.service
@@ -5,6 +5,7 @@ ConditionFileIsExecutable=/opt/adguard/AdGuardHome
 After=syslog.target network-online.target
 
 [Service]
+ExecStartPre=+/usr/sbin/setcap "CAP_NET_BIND_SERVICE=+eip CAP_NET_RAW=+eip" /opt/adguard/AdGuardHome
 # First run must run as root, then chown -R adguard: /etc/adguard /opt/adguard
 # And uncomment + restart service
 #User=adguard