From: Sam Leonard Date: Mon, 4 Dec 2023 17:33:12 +0000 (+0000) Subject: vmspawn: document --directory and --private-users X-Git-Tag: v256-rc1~899^2~1 X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=7fe9c9909db0b49d4b915cffdda25c10addf504d;p=thirdparty%2Fsystemd.git vmspawn: document --directory and --private-users --- diff --git a/man/systemd-vmspawn.xml b/man/systemd-vmspawn.xml index b84cc9c0629..184ba6e590c 100644 --- a/man/systemd-vmspawn.xml +++ b/man/systemd-vmspawn.xml @@ -69,6 +69,20 @@ Image Options + + + + + Directory to use as file system root for the virtual machine. + + One of either or must be specified. + Note: If mounting a non-root owned directory you may require + to map into the user's subuid namespace. + + + + + @@ -249,7 +263,34 @@ - + + + + User Namespacing Options + + + + UID_SHIFT[:UID_RANGE] + + Controls user namespacing under . + If enabled, virtiofsd1 + is instructed to map user and group ids (UIDs and GIDs). This involves mapping the private UIDs/GIDs used in the virtual machine + (starting with the virtual machine's root user 0 and up) to a range of UIDs/GIDs on the host that are not used for other + purposes (usually in the range beyond the host's UID/GID 65536). + + If one or two colon-separated numbers are specified, user namespacing is turned on. UID_SHIFT + specifies the first host UID/GID to map, UID_RANGE is optional and specifies number of host + UIDs/GIDs to assign to the virtual machine. If UID_RANGE is omitted, 65536 UIDs/GIDs are assigned. + + When user namespaces are used, the GID range assigned to each virtual machine is always chosen identical to the + UID range. + + + + + + + Credentials