From 787e334c3fc2f47ac4bcf861ae913ba2cb1d77e5 Mon Sep 17 00:00:00 2001
From: Daan De Meyer <daan.j.demeyer@gmail.com>
Date: Thu, 21 Mar 2024 13:35:01 +0100
Subject: [PATCH] Only set extra_groups for mkdir() if we were invoked as root

The extra groups of the user are not mapped into the user namespace
we create and as such can't be set when invoking a subprocess if
we weren't invoked as root.
---
 mkosi/user.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/mkosi/user.py b/mkosi/user.py
index 34a9a8a7a..4437fd5e7 100644
--- a/mkosi/user.py
+++ b/mkosi/user.py
@@ -76,7 +76,7 @@ class INVOKING_USER:
             ["mkdir", "--parents", path],
             user=cls.uid if cond else os.getuid(),
             group=cls.gid if cond else os.getgid(),
-            extra_groups=cls.extra_groups() if cond else None,
+            extra_groups=cls.extra_groups() if cls.invoked_as_root and cond else None,
         )
         return path
 
-- 
2.47.2