From d2a1ba103b4ea22764953d795c36db3d492d50c9 Mon Sep 17 00:00:00 2001
From: Dimitri John Ledkov <xnox@ubuntu.com>
Date: Wed, 2 Aug 2017 09:15:26 +0100
Subject: [PATCH] units: set ConditionVirtualization=!private-users on journald
 audit socket (#6508)

It fails to start in an unprivileged container as audit is not namespace aware.
---
 units/systemd-journald-audit.socket | 1 +
 1 file changed, 1 insertion(+)

diff --git a/units/systemd-journald-audit.socket b/units/systemd-journald-audit.socket
index 541f2cf38d..6ee86214c4 100644
--- a/units/systemd-journald-audit.socket
+++ b/units/systemd-journald-audit.socket
@@ -12,6 +12,7 @@ DefaultDependencies=no
 Before=sockets.target
 ConditionSecurity=audit
 ConditionCapability=CAP_AUDIT_READ
+ConditionVirtualization=!private-users
 
 [Socket]
 Service=systemd-journald.service
-- 
2.25.1