If we only need to map the current user to root, bubblewrap will do
that for us and we don't need to call become_root() after forking.
# capabilities itself, we don't bother figuring out the exact set of capabilities it needs.
user=uid if not scope else None,
group=gid if not scope else None,
- preexec_fn=become_root if not scope else None,
+ preexec_fn=become_root if not scope and not uidmap else None,
env=scope_env() if scope else {},
sandbox=config.sandbox(
binary=virtiofsd,