TODO: add unprivileged nspawn item

Signed-off-by: Christian Brauner (Microsoft) <brauner@kernel.org>
author: Christian Brauner <brauner@kernel.org> 2022-11-30 16:05:31 +0100
committer: Luca Boccassi <luca.boccassi@gmail.com> 2022-12-01 10:42:47 +0100
commit: 3734fec7278000e2d9203374daeea8c05ce90b71 (patch)
tree: 063231e5adfb78f73837f9ddfee11b11f3d6b8a0
parent: 3922f98212fbd53071c464516c8c432ea37b8cd5 (diff)
download: systemd-3734fec7278000e2d9203374daeea8c05ce90b71.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/TODO b/TODO
index 4ca46a0556..22fcf66385 100644
--- a/TODO
+++ b/TODO
@@ -2234,6 +2234,7 @@ Features:
     investigate whether creating the inner child with CLONE_PARENT isn't better.
   - Reduce the number of sockets that are currently in use and just rely on one
     or two sockets.
+  - Support running nspawn as an unprivileged user.
 
 * machined: add API to acquire UID range. add API to mount/dissect loopback
   file. Both protected by PK. Then make nspawn use these APIs to run
author	Christian Brauner <brauner@kernel.org>	2022-11-30 16:05:31 +0100
committer	Luca Boccassi <luca.boccassi@gmail.com>	2022-12-01 10:42:47 +0100
commit	3734fec7278000e2d9203374daeea8c05ce90b71 (patch)
tree	063231e5adfb78f73837f9ddfee11b11f3d6b8a0
parent	3922f98212fbd53071c464516c8c432ea37b8cd5 (diff)
download	systemd-3734fec7278000e2d9203374daeea8c05ce90b71.tar.gz