I'm using the hardware-transcode-vaapi plugin.
Something in the systemd peertube.service file prevents ffmpeg to access /dev/dri/renderD128
commenting out the "Sandboxing options to harden security" makes it work again. I left the last section with the CapabilityBoundingSet intact, so that's most likely not the problem.
I'm using the
hardware-transcode-vaapi
plugin. Something in the systemd peertube.service file prevents ffmpeg to access /dev/dri/renderD128commenting out the "Sandboxing options to harden security" makes it work again. I left the last section with the CapabilityBoundingSet intact, so that's most likely not the problem.
I've tried:
ReadWritePaths=/dev/dri
which results in an error. and:
DeviceAllow=/dev/dri/renderD128
which doesn't change anything.
How do we unblock access to the graphics card?