From 111fa7b828dfe4a88bc7fbb1a311b310469f7eaa Mon Sep 17 00:00:00 2001
From: Claude <noreply@anthropic.com>
Date: Fri, 7 Nov 2025 18:14:24 +0000
Subject: [PATCH] fix: Remove Boot requirement from workspace to avoid audit
 error

- Remove Boot=yes from workspace.nspawn configuration
- Use machinectl shell directly without starting/booting container
- Avoids "Failed to reset audit login UID" error in nested containers
- machinectl shell works with non-booted containers via namespace entry
---
 cfg/setup-user.sh | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/cfg/setup-user.sh b/cfg/setup-user.sh
index bf386f2..ee2afb7 100755
--- a/cfg/setup-user.sh
+++ b/cfg/setup-user.sh
@@ -35,7 +35,6 @@ echo "Creating workspace container configuration..."
 mkdir -p $ROOTFS/etc/systemd/nspawn
 cat > $ROOTFS/etc/systemd/nspawn/workspace.nspawn <<'EOF'
 [Exec]
-Boot=yes
 ResolvConf=copy-host
 
 [Files]
@@ -76,8 +75,6 @@ if [[ -o login ]] && [[ -o interactive ]]; then
     if [[ -z "$INSIDE_WORKSPACE" ]]; then
         # Running as ai user on aios OS - enter workspace container
         export INSIDE_WORKSPACE=1
-        sudo machinectl start workspace 2>/dev/null || true
-        sleep 1
         exec sudo machinectl shell workspace
     else
         # Running as root inside workspace container - start claude