From 9635c70f2b8d570521da47566f1e3866ef69d586 Mon Sep 17 00:00:00 2001 From: Franck Nijhof Date: Thu, 20 Apr 2023 17:03:08 +0200 Subject: [PATCH] Add support for NET_RAW privileges (#4242) --- supervisor/addons/utils.py | 1 + supervisor/docker/const.py | 1 + 2 files changed, 2 insertions(+) diff --git a/supervisor/addons/utils.py b/supervisor/addons/utils.py index 0937ca82f..d8edef4a4 100644 --- a/supervisor/addons/utils.py +++ b/supervisor/addons/utils.py @@ -45,6 +45,7 @@ def rating_security(addon: AddonModel) -> int: privilege in addon.privileged for privilege in ( Capabilities.NET_ADMIN, + Capabilities.NET_RAW, Capabilities.SYS_ADMIN, Capabilities.SYS_RAWIO, Capabilities.SYS_PTRACE, diff --git a/supervisor/docker/const.py b/supervisor/docker/const.py index 31fbfeae1..fcdc205f2 100644 --- a/supervisor/docker/const.py +++ b/supervisor/docker/const.py @@ -8,6 +8,7 @@ class Capabilities(str, Enum): DAC_READ_SEARCH = "DAC_READ_SEARCH" IPC_LOCK = "IPC_LOCK" NET_ADMIN = "NET_ADMIN" + NET_RAW = "NET_RAW" SYS_ADMIN = "SYS_ADMIN" SYS_MODULE = "SYS_MODULE" SYS_NICE = "SYS_NICE"