:CHROOT.FORK: unshare mount namespace before making temporary mounts

This avoids some cases of interference between the deployment of the chroot and other system activity. For example, before this change, the :ALWAYS-DEPLOYS option to LIBVIRT:KVM-BOOTS-CHROOT{,-FOR} could interact with Virtiofs in such a way as to break the running VM. Signed-off-by: Sean Whitton <spwhitton@spwhitton.name>
author: Sean Whitton <spwhitton@spwhitton.name> 2021-09-28 12:50:27 -0700
committer: Sean Whitton <spwhitton@spwhitton.name> 2021-10-23 11:18:07 -0700
commit: 6c1e44b950e64588c403510a9f20048f2d69d240 (patch)
tree: 22e1fa0874efaa3c0a6556b6e4cb04261502e269 /src/util.lisp
parent: 0d186cbbc8088e505f3d77e18fe8b17b22cfcfb5 (diff)
download: consfigurator-6c1e44b950e64588c403510a9f20048f2d69d240.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/src/util.lisp b/src/util.lisp
index 11bd496..cb3eace 100644
--- a/src/util.lisp
+++ b/src/util.lisp
@@ -638,6 +638,8 @@ Does not currently establish a PAM session."
 
 (define-error-retval-cfun () "chroot" :int (path :string))
 
+(define-error-retval-cfun () "unshare" :int (flags :int))
+
 
 ;;;; Lisp data files
author	Sean Whitton <spwhitton@spwhitton.name>	2021-09-28 12:50:27 -0700
committer	Sean Whitton <spwhitton@spwhitton.name>	2021-10-23 11:18:07 -0700
commit	6c1e44b950e64588c403510a9f20048f2d69d240 (patch)
tree	22e1fa0874efaa3c0a6556b6e4cb04261502e269 /src/util.lisp
parent	0d186cbbc8088e505f3d77e18fe8b17b22cfcfb5 (diff)
download	consfigurator-6c1e44b950e64588c403510a9f20048f2d69d240.tar.gz