fst: set multiarch bit

Signed-off-by: Ophestra <cat@gensokyo.uk>
2025-03-30 22:55:00 +09:00 · 2025-03-30 22:55:00 +09:00 · 7f2c0af5ad
commit 7f2c0af5ad
parent 297b444dfb
1 changed files with 4 additions and 0 deletions
--- a/fst/sandbox.go
+++ b/fst/sandbox.go
@ -97,6 +97,10 @@ func (s *SandboxConfig) ToContainer(sys SandboxSys, uid, gid *int) (*sandbox.Par
 		Seccomp:  s.Seccomp,
 	}

+	if s.Multiarch {
+		container.Seccomp |= seccomp.FlagMultiarch
+	}
+
 	/* this is only 4 KiB of memory on a 64-bit system,
 	permissive defaults on NixOS results in around 100 entries
 	so this capacity should eliminate copies for most setups */