detect-virt: add --private-users switch to check if a userns is active

Various things don't work when we're running in a user namespace, but it's pretty hard to reliably detect if that is true. A function is added which looks at /proc/self/uid_map and returns false if the default "0 0 UINT32_MAX" is found, and true if it finds anything else. This misses the case where an 1:1 mapping with the full range was used, but I don't know how to distinguish this case. 'systemd-detect-virt --private-users' is very similar to 'systemd-detect-virt --chroot', but we check for a user namespace instead.
author: Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> 2016-10-20 23:41:21 -0400
committer: Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> 2016-10-26 20:12:51 -0400
commit: 299a34c11a4241f8c5832ccd5a7bc13263f8488b (patch)
tree: f67f997d142debec99297a095f4687f65bf7c00e /src/basic/virt.h
parent: 24597ee0e626b61f134e09b4e871449ef86b1343 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/src/basic/virt.h b/src/basic/virt.h
index bc5b3ae94d..7d15169112 100644
--- a/src/basic/virt.h
+++ b/src/basic/virt.h
@@ -67,6 +67,7 @@ int detect_vm(void);
 int detect_container(void);
 int detect_virtualization(void);
 
+int running_in_userns(void);
 int running_in_chroot(void);
 
 const char *virtualization_to_string(int v) _const_;
author	Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>	2016-10-20 23:41:21 -0400
committer	Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>	2016-10-26 20:12:51 -0400
commit	299a34c11a4241f8c5832ccd5a7bc13263f8488b (patch)
tree	f67f997d142debec99297a095f4687f65bf7c00e /src/basic/virt.h
parent	24597ee0e626b61f134e09b4e871449ef86b1343 (diff)