Page MenuHomeVyOS Platform

Add additional Linux capabilities to container configuration
Closed, ResolvedPublicFEATURE REQUEST

Description

Thanks for implementing T3676, this is very useful! Regarding additional capabilities, it would be nice if a few network related ones could be added. That would allow images like ntopng or zerotier to be run (and would probably bring VyOS mostly on par w/ EdgeOS and UDM for these particular kinds of containers):

  • CAP_NET_RAW; and
  • CAP_SYS_ADMIN

(Hope the way to report this is a-OK)

Details

Difficulty level
Unknown (require assessment)
Version
-
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Improvement (missing useful functionality)

Event Timeline

johannrichard renamed this task from Add additional capabilities to Add additional Linux capabilities to container configuration.Oct 19 2021, 6:17 PM
johannrichard created this task.
Viacheslav changed the task status from Open to In progress.Oct 19 2021, 11:04 PM
Viacheslav changed the task status from In progress to Needs testing.Oct 25 2021, 7:29 PM

WIll be added in the next rolling release, @johannrichard could you test it?

Viacheslav moved this task from Need Triage to Finished on the VyOS 1.4 Sagitta board.

WIll be added in the next rolling release, @johannrichard could you test it?

Thanks! Only found time to test it now, but so far, it looks good.