From 57f954d55564de57771e902c44d744edc8279bdf Mon Sep 17 00:00:00 2001 From: Alexander Akhmetov Date: Sun, 17 Nov 2024 16:01:25 +0100 Subject: [PATCH] Add support for CAP_CHECKPOINT_RESTORE privileges --- supervisor/addons/utils.py | 1 + supervisor/docker/const.py | 1 + 2 files changed, 2 insertions(+) diff --git a/supervisor/addons/utils.py b/supervisor/addons/utils.py index 0c8d98f3be5..a88f903eca7 100644 --- a/supervisor/addons/utils.py +++ b/supervisor/addons/utils.py @@ -46,6 +46,7 @@ def rating_security(addon: AddonModel) -> int: privilege in addon.privileged for privilege in ( Capabilities.BPF, + Capabilities.CHECKPOINT_RESTORE, Capabilities.DAC_READ_SEARCH, Capabilities.NET_ADMIN, Capabilities.NET_RAW, diff --git a/supervisor/docker/const.py b/supervisor/docker/const.py index 5c1baf3cbe4..45180576629 100644 --- a/supervisor/docker/const.py +++ b/supervisor/docker/const.py @@ -12,6 +12,7 @@ class Capabilities(StrEnum): """Linux Capabilities.""" BPF = "BPF" + CHECKPOINT_RESTORE = "CHECKPOINT_RESTORE" DAC_READ_SEARCH = "DAC_READ_SEARCH" IPC_LOCK = "IPC_LOCK" NET_ADMIN = "NET_ADMIN"