diff options
Diffstat (limited to 'executor')
| -rw-r--r-- | executor/common.h | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/executor/common.h b/executor/common.h index b1084eb0c..4983802f2 100644 --- a/executor/common.h +++ b/executor/common.h @@ -633,7 +633,7 @@ static int do_sandbox_namespace(int executor_pid, bool enable_tun) epid = executor_pid; etun = enable_tun; mprotect(sandbox_stack, 4096, PROT_NONE); // to catch stack underflows - return clone(namespace_sandbox_proc, &sandbox_stack[sizeof(sandbox_stack) - 8], + return clone(namespace_sandbox_proc, &sandbox_stack[sizeof(sandbox_stack) - 64], CLONE_NEWUSER | CLONE_NEWPID | CLONE_NEWUTS | CLONE_NEWNET, NULL); } #endif |