From 5d5ecd9854330f0655fe73ee2a65f06b89bf9c95 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=B6rg=20Thalheim?= <joerg@thalheim.io>
Date: Tue, 14 Sep 2021 10:56:48 +0200
Subject: [PATCH] tinc: don't restart on upgrade

---
 modules/retiolum/default.nix | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/modules/retiolum/default.nix b/modules/retiolum/default.nix
index 1b934fb..fbbeb9a 100644
--- a/modules/retiolum/default.nix
+++ b/modules/retiolum/default.nix
@@ -72,6 +72,9 @@ in {
       serviceConfig.ExecReload = "${config.services.tinc.networks.${netname}.package}/bin/tinc -n ${netname} reload";
     };
 
+    # this triggers tinc restarts and it is pointless to restart tinc after the key has been created
+    systemd.services."tinc.${netname}-host-keys".restartIfChanged = true;
+
     networking.firewall.allowedTCPPorts = [ 655 ];
     networking.firewall.allowedUDPPorts = [ 655 ];