From 6c1e44b950e64588c403510a9f20048f2d69d240 Mon Sep 17 00:00:00 2001
From: Sean Whitton <spwhitton@spwhitton.name>
Date: Tue, 28 Sep 2021 12:50:27 -0700
Subject: :CHROOT.FORK: unshare mount namespace before making temporary mounts

This avoids some cases of interference between the deployment of the chroot
and other system activity.  For example, before this change, the
:ALWAYS-DEPLOYS option to LIBVIRT:KVM-BOOTS-CHROOT{,-FOR} could interact with
Virtiofs in such a way as to break the running VM.

Signed-off-by: Sean Whitton <spwhitton@spwhitton.name>
---
 src/util.lisp | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'src/util.lisp')

diff --git a/src/util.lisp b/src/util.lisp
index 11bd496..cb3eace 100644
--- a/src/util.lisp
+++ b/src/util.lisp
@@ -638,6 +638,8 @@ Does not currently establish a PAM session."
 
 (define-error-retval-cfun () "chroot" :int (path :string))
 
+(define-error-retval-cfun () "unshare" :int (flags :int))
+
 
 ;;;; Lisp data files
 
-- 
cgit v1.2.3