From e0ff0f4dd6612e331459a2dec69adc728bc360fe Mon Sep 17 00:00:00 2001
From: Michael Crosby <michael@crosbymichael.com>
Date: Wed, 19 Feb 2014 21:21:49 -0800
Subject: [PATCH] Add CAP_NET_ADMIN Docker-DCO-1.1-Signed-off-by: Michael
 Crosby <michael@crosbymichael.com> (github: crosbymichael)

---
 pkg/libcontainer/capabilities/capabilities.go | 1 +
 pkg/libcontainer/types.go                     | 1 +
 2 files changed, 2 insertions(+)

diff --git a/pkg/libcontainer/capabilities/capabilities.go b/pkg/libcontainer/capabilities/capabilities.go
index 3301e10f7f..c19b719564 100644
--- a/pkg/libcontainer/capabilities/capabilities.go
+++ b/pkg/libcontainer/capabilities/capabilities.go
@@ -21,6 +21,7 @@ var capMap = map[libcontainer.Capability]capability.Cap{
 	libcontainer.CAP_AUDIT_CONTROL:  capability.CAP_AUDIT_CONTROL,
 	libcontainer.CAP_MAC_OVERRIDE:   capability.CAP_MAC_OVERRIDE,
 	libcontainer.CAP_MAC_ADMIN:      capability.CAP_MAC_ADMIN,
+	libcontainer.CAP_NET_ADMIN:      capability.CAP_NET_ADMIN,
 }
 
 // DropCapabilities drops capabilities for the current process based
diff --git a/pkg/libcontainer/types.go b/pkg/libcontainer/types.go
index b5d9932671..fcd00fd4f1 100644
--- a/pkg/libcontainer/types.go
+++ b/pkg/libcontainer/types.go
@@ -15,6 +15,7 @@ const (
 	CAP_AUDIT_CONTROL  Capability = "AUDIT_CONTROL"
 	CAP_MAC_OVERRIDE   Capability = "MAC_OVERRIDE"
 	CAP_MAC_ADMIN      Capability = "MAC_ADMIN"
+	CAP_NET_ADMIN      Capability = "NET_ADMIN"
 
 	CLONE_NEWNS   Namespace = "NEWNS"   // mount
 	CLONE_NEWUTS  Namespace = "NEWUTS"  // utsname