From d5c7523726550898b13500f8a169cf13cdc42e7a Mon Sep 17 00:00:00 2001
From: Ophestra <cat@gensokyo.uk>
Date: Mon, 7 Jul 2025 14:06:14 +0900
Subject: [PATCH] container/init: fix prctl call

This is a very silly typo. Luckily has no effect due to an upper layer doing PR_SET_NO_NEW_PRIVS already.

Signed-off-by: Ophestra <cat@gensokyo.uk>
---
 container/init.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/container/init.go b/container/init.go
index aa92001..04867ba 100644
--- a/container/init.go
+++ b/container/init.go
@@ -211,7 +211,7 @@ func Init(prepare func(prefix string), setVerbose func(verbose bool)) {
 		}
 	}
 
-	if _, _, errno := Syscall(PR_SET_NO_NEW_PRIVS, 1, 0, 0); errno != 0 {
+	if _, _, errno := Syscall(SYS_PRCTL, PR_SET_NO_NEW_PRIVS, 1, 0); errno != 0 {
 		log.Fatalf("prctl(PR_SET_NO_NEW_PRIVS): %v", errno)
 	}