nspawn/vmspawn: Add --bind-user-group=wheel

author Daan De Meyer <daan.j.demeyer@gmail.com>

Thu, 30 Oct 2025 22:35:07 +0000 (23:35 +0100)

committer Daan De Meyer <daan.j.demeyer@gmail.com>

Tue, 9 Dec 2025 10:24:19 +0000 (11:24 +0100)
author Daan De Meyer <daan.j.demeyer@gmail.com>
Thu, 30 Oct 2025 22:35:07 +0000 (23:35 +0100)
committer Daan De Meyer <daan.j.demeyer@gmail.com>
Tue, 9 Dec 2025 10:24:19 +0000 (11:24 +0100)
diff --git a/mkosi/__init__.py b/mkosi/__init__.py

index a7be4899abfd8da88da42601972d9d72d9a56435..a5d11d2f737fa5cfcd9289c669ba0f3159b2980b 100644 (file)
--- a/mkosi/__init__.py
+++ b/mkosi/__init__.py
@@ -4270,7 +4270,7 @@ def run_shell(args: Args, config: Config) -> None:
              cmdline += ["--bind", f"{tree.source}:{target}:norbind,{uidmap}"]
  
          if config.bind_user:
-            cmdline += ["--bind-user", getpass.getuser()]
+            cmdline += ["--bind-user", getpass.getuser(), "--bind-user-group=wheel"]
  
          if args.verb == Verb.boot and config.forward_journal:
              with socket.socket(socket.AF_UNIX, socket.SOCK_STREAM) as sock:
diff --git a/mkosi/vmspawn.py b/mkosi/vmspawn.py

index edb86fd7dc8c979917543184e624d4ed484c9507..565b696ed8b9bdf2a852b583c82c10c94220890f 100644 (file)
--- a/mkosi/vmspawn.py
+++ b/mkosi/vmspawn.py
@@ -64,7 +64,7 @@ def run_vmspawn(args: Args, config: Config) -> None:
          cmdline += ["--grow-image", str(config.runtime_size)]
  
      if config.bind_user:
-        cmdline += ["--bind-user", getpass.getuser()]
+        cmdline += ["--bind-user", getpass.getuser(), "--bind-user-group=wheel"]
  
      if config.runtime_network == Network.user:
          cmdline += ["--network-user-mode"]
author	Daan De Meyer <daan.j.demeyer@gmail.com>
	Thu, 30 Oct 2025 22:35:07 +0000 (23:35 +0100)
committer	Daan De Meyer <daan.j.demeyer@gmail.com>
	Tue, 9 Dec 2025 10:24:19 +0000 (11:24 +0100)
mkosi/__init__.py		patch \| blob \| blame \| history
mkosi/vmspawn.py		patch \| blob \| blame \| history