14/05/2020 19:29, Moshe Levi: > > From: Thomas Monjalon > > > +``cap_net_admin`` > > > + For MTU and link state modifications > > It more than that like change mac address . maybe better to write for > interface configuration > You can see the full list in [1] look for CAP_NET_ADMIN > [1] - http://man7.org/linux/man-pages/man7/capabilities.7.html
Changed to "For device configuration." while merging in master. > > > +``cap_net_raw`` > > > + For raw ethernet queue allocation through kernel driver. > Maybe can you add a note that for containers the net_raw is enabled by > default see [1] and you don't need to specify it. > [1] - > https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities It would require a separate patch please.
