From afefea9740419b0ba1c99a13c7199ee62181370e Mon Sep 17 00:00:00 2001
From: Petr Fedchenkov <giggsoff@gmail.com>
Date: Tue, 28 Jun 2022 16:55:32 +0300
Subject: [PATCH] Add CAP_NET_ADMIN capability to sysctl

With linux kernel 5.15+ change of proc/sys/net/ipv4/ip_forward require
CAP_NET_ADMIN (https://github.com/torvalds/linux/commit/8292d7f6). We do
 not use ip_forward now, but we should be ready for future changes of
 conf files.

Signed-off-by: Petr Fedchenkov <giggsoff@gmail.com>
---
 pkg/sysctl/build.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/pkg/sysctl/build.yml b/pkg/sysctl/build.yml
index 471e3993d..52252d06a 100644
--- a/pkg/sysctl/build.yml
+++ b/pkg/sysctl/build.yml
@@ -4,3 +4,4 @@ config:
   readonly: true
   capabilities:
     - CAP_SYS_ADMIN
+    - CAP_NET_ADMIN