From 6b28f5dd79f9446258f2f95847b423eaf830c677 Mon Sep 17 00:00:00 2001
From: Daniel Barlow <dan@telent.net>
Date: Sun, 27 Aug 2023 22:05:22 +0100
Subject: [PATCH] chrony: drop privileges

---
 modules/ntp/service.nix | 2 +-
 overlay.nix             | 1 -
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/modules/ntp/service.nix b/modules/ntp/service.nix
index 9fe5a5a..49f00b5 100644
--- a/modules/ntp/service.nix
+++ b/modules/ntp/service.nix
@@ -22,7 +22,7 @@ let
     ++
     (mapAttrsToList (name: opts: "peer ${name} ${concatStringsSep "" opts}")
       p.peers)
-    ++ [ "user #{p.user}" ]
+    ++ [ "user ${p.user}" ]
     ++ (lib.optional (p.makestep != null) "makestep ${toString p.makestep.threshold} ${toString p.makestep.limit}")
     ++ (map (n: "allow ${n}") p.allow)
     ++ (lib.optional (p.bindaddress != null) "bindaddress ${p.bindaddress}")
diff --git a/overlay.nix b/overlay.nix
index 0bcf223..7f54b61 100644
--- a/overlay.nix
+++ b/overlay.nix
@@ -72,7 +72,6 @@ extraPkgs // {
       nspr = null;
       readline = null;
       libedit = null;
-      libcap = null;
       libseccomp = null;
       # should texinfo be in nativeBuildInputs instead of
       # buildInputs?