From 6c1e44b950e64588c403510a9f20048f2d69d240 Mon Sep 17 00:00:00 2001
From: Sean Whitton <spwhitton@spwhitton.name>
Date: Tue, 28 Sep 2021 12:50:27 -0700
Subject: :CHROOT.FORK: unshare mount namespace before making temporary mounts

This avoids some cases of interference between the deployment of the chroot
and other system activity.  For example, before this change, the
:ALWAYS-DEPLOYS option to LIBVIRT:KVM-BOOTS-CHROOT{,-FOR} could interact with
Virtiofs in such a way as to break the running VM.

Signed-off-by: Sean Whitton <spwhitton@spwhitton.name>
---
 src/libc.lisp | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 src/libc.lisp

(limited to 'src/libc.lisp')

diff --git a/src/libc.lisp b/src/libc.lisp
new file mode 100644
index 0000000..d2a3f90
--- /dev/null
+++ b/src/libc.lisp
@@ -0,0 +1,10 @@
+(in-package :consfigurator)
+
+#+linux
+(progn
+  (define "_GNU_SOURCE")
+  (include "linux/sched.h"))
+
+#+linux
+(progn
+  (constant (+CLONE_NEWNS+ "CLONE_NEWNS")))
-- 
cgit v1.2.3