nspawn: parse PrivateUsers=managed in settings

author George Tsiamasiotis <george@tsiamasiotis.gr>

Mon, 1 Jun 2026 10:02:32 +0000 (13:02 +0300)

committer Luca Boccassi <luca.boccassi@gmail.com>

Mon, 1 Jun 2026 16:35:10 +0000 (17:35 +0100)
author George Tsiamasiotis <george@tsiamasiotis.gr>
Mon, 1 Jun 2026 10:02:32 +0000 (13:02 +0300)
committer Luca Boccassi <luca.boccassi@gmail.com>
Mon, 1 Jun 2026 16:35:10 +0000 (17:35 +0100)
diff --git a/src/nspawn/nspawn-settings.c b/src/nspawn/nspawn-settings.c

index 30c603394c1fe8e0601b39f00430d4fba36d6529..2645bd21e419f0b753d017e216e2575dbb7e8474 100644 (file)
--- a/src/nspawn/nspawn-settings.c
+++ b/src/nspawn/nspawn-settings.c
@@ -697,6 +697,11 @@ int config_parse_private_users(
                  settings->userns_mode = USER_NAMESPACE_FIXED;
                  settings->uid_shift = 0;
                  settings->uid_range = UINT32_C(0x10000);
+        } else if (streq(rvalue, "managed")) {
+                /* managed: User namespace on, and acquire it from systemd-nsresourced */
+                settings->userns_mode = USER_NAMESPACE_MANAGED;
+                settings->uid_shift = UID_INVALID;
+                settings->uid_range = UINT32_C(0x10000);
          } else {
                  const char *range, *shift;
                  uid_t sh, rn;
author	George Tsiamasiotis <george@tsiamasiotis.gr>
	Mon, 1 Jun 2026 10:02:32 +0000 (13:02 +0300)
committer	Luca Boccassi <luca.boccassi@gmail.com>
	Mon, 1 Jun 2026 16:35:10 +0000 (17:35 +0100)